1 Return-Path: <dkg@fifthhorseman.net>
\r
2 X-Original-To: notmuch@notmuchmail.org
\r
3 Delivered-To: notmuch@notmuchmail.org
\r
4 Received: from localhost (localhost [127.0.0.1])
\r
5 by arlo.cworth.org (Postfix) with ESMTP id 0A6356DE1557
\r
6 for <notmuch@notmuchmail.org>; Tue, 19 Jan 2016 18:53:23 -0800 (PST)
\r
7 X-Virus-Scanned: Debian amavisd-new at cworth.org
\r
11 X-Spam-Status: No, score=-0.023 tagged_above=-999 required=5
\r
12 tests=[AWL=-0.023] autolearn=disabled
\r
13 Received: from arlo.cworth.org ([127.0.0.1])
\r
14 by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024)
\r
15 with ESMTP id mc6Kx0W171IG for <notmuch@notmuchmail.org>;
\r
16 Tue, 19 Jan 2016 18:53:21 -0800 (PST)
\r
17 Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108])
\r
18 by arlo.cworth.org (Postfix) with ESMTP id D51E26DE1478
\r
19 for <notmuch@notmuchmail.org>; Tue, 19 Jan 2016 18:53:15 -0800 (PST)
\r
20 Received: from fifthhorseman.net (unknown [38.109.115.130])
\r
21 by che.mayfirst.org (Postfix) with ESMTPSA id 7594FF989
\r
22 for <notmuch@notmuchmail.org>; Tue, 19 Jan 2016 21:53:10 -0500 (EST)
\r
23 Received: by fifthhorseman.net (Postfix, from userid 1000)
\r
24 id C43EF20085; Tue, 19 Jan 2016 18:53:10 -0800 (PST)
\r
25 From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
\r
26 To: Notmuch Mail <notmuch@notmuchmail.org>
\r
27 Subject: Allow indexing cleartext of encrypted messages (v2)
\r
28 Date: Tue, 19 Jan 2016 21:52:33 -0500
\r
29 Message-Id: <1453258369-7366-1-git-send-email-dkg@fifthhorseman.net>
\r
30 X-Mailer: git-send-email 2.7.0.rc3
\r
31 X-BeenThere: notmuch@notmuchmail.org
\r
32 X-Mailman-Version: 2.1.20
\r
34 List-Id: "Use and development of the notmuch mail system."
\r
35 <notmuch.notmuchmail.org>
\r
36 List-Unsubscribe: <https://notmuchmail.org/mailman/options/notmuch>,
\r
37 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
\r
38 List-Archive: <http://notmuchmail.org/pipermail/notmuch/>
\r
39 List-Post: <mailto:notmuch@notmuchmail.org>
\r
40 List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
\r
41 List-Subscribe: <https://notmuchmail.org/mailman/listinfo/notmuch>,
\r
42 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
\r
43 X-List-Received-Date: Wed, 20 Jan 2016 02:53:23 -0000
\r
45 This is the second draft of the series initially announced in
\r
46 id:1449718786-28000-1-git-send-email-dkg@fifthhorseman.net:
\r
48 > Notmuch currently doesn't index the cleartext of encrypted mail. This
\r
49 > is the right choice by default, because the index is basically
\r
50 > cleartext-equivalent, and we wouldn't want every indexed mailstore to
\r
51 > leak the contents of its encrypted mails.
\r
53 > However, if a notmuch user has their index in a protected location,
\r
54 > they may prefer the convenience of being able to search the contents
\r
55 > of (at least some of) their encrypted mail.
\r
57 > This series of patches enables notmuch to index the cleartext of
\r
58 > specific encrypted messages when they're being added via "notmuch new"
\r
59 > or "notmuch insert", via a new --try-decrypt flag.
\r
61 > If --try-decrypt is used, and decryption is successful for part of a
\r
62 > message, the message gets an additional "index-decrypted" tag. If
\r
63 > decryption of part of a message fails, the message gets an additional
\r
64 > "index-decryption-failed" tag.
\r
66 v2 addresses the concerns raised from the helpful feedback on the
\r
67 previous series, and adds a notmuch_indexopts_t object that can be
\r
68 used to declare options for indexing messages, including a
\r
69 "try_decrypt" boolean.
\r
71 Additionally, this series adds a new function to libnotmuch:
\r
73 notmuch_message_reindex (notmuch_message_t *message,
\r
74 notmuch_indexopts_t *indexopts)
\r
76 Which allows user of the library to adjust the indexing options of a
\r
79 The CLI is additionally augmented with a new notmuch subcommand,
\r
80 "notmuch reindex", which also has a --try-decrypt flag.
\r
82 So a user who has their message index stored securely and wants to
\r
83 index the cleartext of all encrypted messages they've received can do
\r
86 notmuch reindex --try-decrypt tag:encrypted and not tag:index-decrypted
\r
88 Or can clear all indexed cleartext from their database with:
\r
90 notmuch reindex tag:encrypted and tag:index-decrypted
\r