--- /dev/null
+Return-Path: <dkg@fifthhorseman.net>\r
+X-Original-To: notmuch@notmuchmail.org\r
+Delivered-To: notmuch@notmuchmail.org\r
+Received: from localhost (localhost [127.0.0.1])\r
+ by arlo.cworth.org (Postfix) with ESMTP id ABC0D6DE1B25\r
+ for <notmuch@notmuchmail.org>; Sun, 31 Jan 2016 12:40:16 -0800 (PST)\r
+X-Virus-Scanned: Debian amavisd-new at cworth.org\r
+X-Spam-Flag: NO\r
+X-Spam-Score: 0\r
+X-Spam-Level: \r
+X-Spam-Status: No, score=0 tagged_above=-999 required=5 tests=[none]\r
+ autolearn=disabled\r
+Received: from arlo.cworth.org ([127.0.0.1])\r
+ by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024)\r
+ with ESMTP id KoK8TWdLVPHZ for <notmuch@notmuchmail.org>;\r
+ Sun, 31 Jan 2016 12:40:15 -0800 (PST)\r
+Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108])\r
+ by arlo.cworth.org (Postfix) with ESMTP id 70A176DE17BD\r
+ for <notmuch@notmuchmail.org>; Sun, 31 Jan 2016 12:40:09 -0800 (PST)\r
+Received: from fifthhorseman.net (ip-64-134-185-108.public.wayport.net\r
+ [64.134.185.108])\r
+ by che.mayfirst.org (Postfix) with ESMTPSA id 60EBCF99D\r
+ for <notmuch@notmuchmail.org>; Sun, 31 Jan 2016 15:40:06 -0500 (EST)\r
+Received: by fifthhorseman.net (Postfix, from userid 1000)\r
+ id 26E432024D; Sun, 31 Jan 2016 15:40:06 -0500 (EST)\r
+From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>\r
+To: Notmuch Mail <notmuch@notmuchmail.org>\r
+Subject: Allow indexing cleartext of encrypted messages (v3)\r
+Date: Sun, 31 Jan 2016 15:39:45 -0500\r
+Message-Id: <1454272801-23623-1-git-send-email-dkg@fifthhorseman.net>\r
+X-Mailer: git-send-email 2.7.0.rc3\r
+X-BeenThere: notmuch@notmuchmail.org\r
+X-Mailman-Version: 2.1.20\r
+Precedence: list\r
+List-Id: "Use and development of the notmuch mail system."\r
+ <notmuch.notmuchmail.org>\r
+List-Unsubscribe: <https://notmuchmail.org/mailman/options/notmuch>,\r
+ <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>\r
+List-Archive: <http://notmuchmail.org/pipermail/notmuch/>\r
+List-Post: <mailto:notmuch@notmuchmail.org>\r
+List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>\r
+List-Subscribe: <https://notmuchmail.org/mailman/listinfo/notmuch>,\r
+ <mailto:notmuch-request@notmuchmail.org?subject=subscribe>\r
+X-List-Received-Date: Sun, 31 Jan 2016 20:40:16 -0000\r
+\r
+This is the third draft of the series initially announced in\r
+id:1449718786-28000-1-git-send-email-dkg@fifthhorseman.net (second\r
+draft was in\r
+id:1453258369-7366-1-git-send-email-dkg@fifthhorseman.net). It\r
+differs from v2 in that it incorporates the recent improvements in\r
+detecting and processing S/MIME signatures.\r
+\r
+>From the v2 description:\r
+\r
+> Notmuch currently doesn't index the cleartext of encrypted mail. This\r
+> is the right choice by default, because the index is basically\r
+> cleartext-equivalent, and we wouldn't want every indexed mailstore to\r
+> leak the contents of its encrypted mails.\r
+> \r
+> However, if a notmuch user has their index in a protected location,\r
+> they may prefer the convenience of being able to search the contents\r
+> of (at least some of) their encrypted mail.\r
+> \r
+> This series of patches enables notmuch to index the cleartext of\r
+> specific encrypted messages when they're being added via "notmuch new"\r
+> or "notmuch insert", via a new --try-decrypt flag.\r
+> \r
+> If --try-decrypt is used, and decryption is successful for part of a\r
+> message, the message gets an additional "index-decrypted" tag. If\r
+> decryption of part of a message fails, the message gets an additional\r
+> "index-decryption-failed" tag.\r
+\r
+v2 addresses the concerns raised from the helpful feedback on the\r
+previous series, and adds a notmuch_indexopts_t object that can be\r
+used to declare options for indexing messages, including a\r
+"try_decrypt" boolean.\r
+\r
+Additionally, this series adds a new function to libnotmuch:\r
+\r
+ notmuch_message_reindex (notmuch_message_t *message,\r
+ notmuch_indexopts_t *indexopts)\r
+\r
+Which allows user of the library to adjust the indexing options of a\r
+given message.\r
+\r
+The CLI is additionally augmented with a new notmuch subcommand,\r
+"notmuch reindex", which also has a --try-decrypt flag.\r
+\r
+So a user who has their message index stored securely and wants to\r
+index the cleartext of all encrypted messages they've received can do\r
+something like:\r
+\r
+ notmuch reindex --try-decrypt tag:encrypted and not tag:index-decrypted\r
+\r
+Or can clear all indexed cleartext from their database with:\r
+\r
+ notmuch reindex tag:encrypted and tag:index-decrypted\r
+\r
+\r
projects / notmuch-archives.git / commitdiff