Return-Path: X-Original-To: notmuch@notmuchmail.org Delivered-To: notmuch@notmuchmail.org Received: from localhost (localhost [127.0.0.1]) by olra.theworths.org (Postfix) with ESMTP id 637B0429E2F for ; Tue, 31 May 2011 10:33:38 -0700 (PDT) X-Virus-Scanned: Debian amavisd-new at olra.theworths.org X-Spam-Flag: NO X-Spam-Score: -0.789 X-Spam-Level: X-Spam-Status: No, score=-0.789 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, T_MIME_NO_TEXT=0.01] autolearn=disabled Received: from olra.theworths.org ([127.0.0.1]) by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JW8ezTxhEi42 for ; Tue, 31 May 2011 10:33:37 -0700 (PDT) Received: from mail-bw0-f53.google.com (mail-bw0-f53.google.com [209.85.214.53]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by olra.theworths.org (Postfix) with ESMTPS id 9F54E429E2B for ; Tue, 31 May 2011 10:33:36 -0700 (PDT) Received: by bwg12 with SMTP id 12so4350381bwg.26 for ; Tue, 31 May 2011 10:33:35 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:from:to:subject:in-reply-to:references :user-agent:date:message-id:mime-version:content-type; bh=xH5Q8fWHXtV1dusSOczwp/foGtG9hW/cQqy/5GColqM=; b=tDhLhNA9FvUmYvGef1QL9WD84IBDUg9F9U1EjXZPHrWWcae1XjzamC/DfihoeVuYx/ IUujbypzZ8ydof0CRclf6ovI2x8yTR/xyeX6/r80g3NHm4NQsdlZc61LmH+8aOKlj62U jtK/cUTJttGYdY5SrxvACuEBPu7z8fDaHfy4Q= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=from:to:subject:in-reply-to:references:user-agent:date:message-id :mime-version:content-type; b=CDrznlIL6/IOuKPOz55CMXS0o8yHVneQQu0+h1shmU2l0QYvX+u6Vj6pKBq6lV6NFl +ZN1DuAykHq82g4b00/Ha4jRFZxCyJsQOU6rfvn1WpARIJH7Ce6LfeO1jYoEkyqkTwKv iWvzrsl83lsc0mQdbc3O/GWfQxrh3jSimVkOI= Received: by 10.204.128.90 with SMTP id j26mr2249089bks.116.1306863215017; Tue, 31 May 2011 10:33:35 -0700 (PDT) Received: from localhorst.example.com (brln-4d0c69f8.pool.mediaWays.net. [77.12.105.248]) by mx.google.com with ESMTPS id a28sm173251fak.1.2011.05.31.10.33.31 (version=TLSv1/SSLv3 cipher=OTHER); Tue, 31 May 2011 10:33:33 -0700 (PDT) Received: by localhorst.example.com (Postfix, from userid 501) id 7A2DE4225459; Tue, 31 May 2011 19:33:30 +0200 (CEST) From: Felix Geller To: Jameson Graef Rollins , notmuch@notmuchmail.org Subject: Re: Decryption fails In-Reply-To: <87wrh7ibi5.fsf@servo.factory.finestructure.net> References: <87wrh7ibi5.fsf@servo.factory.finestructure.net> User-Agent: Emacs/23.3.1 (x86_64-apple-darwin10.7.0) Date: Tue, 31 May 2011 19:33:29 +0200 Message-ID: MIME-Version: 1.0 Content-Type: multipart/signed; boundary="==-=-="; micalg=pgp-sha1; protocol="application/pgp-signature" X-BeenThere: notmuch@notmuchmail.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 31 May 2011 17:33:38 -0000 --==-=-= Content-Type: multipart/mixed; boundary="=-=-=" --=-=-= On Tue, 31 May 2011 00:18:26 -0700, Jameson Graef Rollins wrote: > Hey, Felix. As David said, all crypto tests should be passing with > libgmime 2.4.24. It would probably be instructive to know which crypto > tests failed and why. Maybe you could supply some output from the > failed crypto tests. Ok, so the following tests pass: PASS emacs delivery of signed message PASS emacs delivery of encrypted + signed message PASS emacs delivery of encrypted message with attachment I'm attaching the full output for the cypto tests. I get the following trace when using show --decrypt to decrypt a specific message (have to kill the process to actually get the trace): #0 0x00000001006121a6 in poll () #1 0x000000010006d3d2 in gpg_ctx_op_step () #2 0x000000010006e5c7 in gpg_decrypt () #3 0x00000001000566cf in g_mime_multipart_encrypted_decrypt () #4 0x000000010000a413 in show_message_part (part=0x10606fc20, #state=0x7fff5fbfd1c0, format=0x10002ef80, params=0x7fff5fbfd2c0, #first=1) at show-message.c:71 So I guess it ends up looping or waiting in poll(), but I can't tell why it would do that. I guess the next step is to post to the gmime mailing list, or? Cheers, Felix --=-=-= Content-Disposition: attachment; filename=crypto_tests.txt Content-Transfer-Encoding: quoted-printable crypto: Testing PGP/MIME signature verification and decryption PASS emacs delivery of signed message FAIL signature verification --- crypto.2.expected 2011-05-31 17:30:47.000000000 +0000 +++ crypto.2.output 2011-05-31 17:30:47.000000000 +0000 @@ -1,23 +1 @@ -[[[{"id": "XXXXX", - "match": true, - "filename": "YYYYY", - "timestamp": 946728000, - "date_relative": "2000-01-01", - "tags": ["inbox","signed"], - "headers": {"Subject": "test signed message 001", - "From": "Notmuch Test Suite ", - "To": "test_suite@notmuchmail.org", - "Cc": "", - "Bcc": "", - "Date": "01 Jan 2000 12:00:00 -0000"}, - "body": [{"id": 1, - "sigstatus": [{"status": "good", - "fingerprint": "5AEAB11F5E33DCE875DDB75B6D92612D94E46381", - "created": 946728000}], - "content-type": "multipart/signed", - "content": [{"id": 2, - "content-type": "text/plain", - "content": "This is a test signed message.\n"}, - {"id": 3, - "content-type": "application/pgp-signature"}]}]}, - []]]] +[] FAIL signature verification with full owner trust --- crypto.3.expected 2011-05-31 17:30:47.000000000 +0000 +++ crypto.3.output 2011-05-31 17:30:47.000000000 +0000 @@ -1,24 +1 @@ -[[[{"id": "XXXXX", - "match": true, - "filename": "YYYYY", - "timestamp": 946728000, - "date_relative": "2000-01-01", - "tags": ["inbox","signed"], - "headers": {"Subject": "test signed message 001", - "From": "Notmuch Test Suite ", - "To": "test_suite@notmuchmail.org", - "Cc": "", - "Bcc": "", - "Date": "01 Jan 2000 12:00:00 -0000"}, - "body": [{"id": 1, - "sigstatus": [{"status": "good", - "fingerprint": "5AEAB11F5E33DCE875DDB75B6D92612D94E46381", - "created": 946728000, - "userid": " Notmuch Test Suite (INSECURE!)"= }], - "content-type": "multipart/signed", - "content": [{"id": 2, - "content-type": "text/plain", - "content": "This is a test signed message.\n"}, - {"id": 3, - "content-type": "application/pgp-signature"}]}]}, - []]]] +[] FAIL signature verification with signer key unavailable --- crypto.4.expected 2011-05-31 17:30:47.000000000 +0000 +++ crypto.4.output 2011-05-31 17:30:47.000000000 +0000 @@ -1,23 +1 @@ -[[[{"id": "XXXXX", - "match": true, - "filename": "YYYYY", - "timestamp": 946728000, - "date_relative": "2000-01-01", - "tags": ["inbox","signed"], - "headers": {"Subject": "test signed message 001", - "From": "Notmuch Test Suite ", - "To": "test_suite@notmuchmail.org", - "Cc": "", - "Bcc": "", - "Date": "01 Jan 2000 12:00:00 -0000"}, - "body": [{"id": 1, - "sigstatus": [{"status": "error", - "keyid": "6D92612D94E46381", - "errors": 2}], - "content-type": "multipart/signed", - "content": [{"id": 2, - "content-type": "text/plain", - "content": "This is a test signed message.\n"}, - {"id": 3, - "content-type": "application/pgp-signature"}]}]}, - []]]] +[] PASS emacs delivery of encrypted message with attachment FAIL decryption, --format=3Dtext --- crypto.6.expected 2011-05-31 17:30:48.000000000 +0000 +++ crypto.6.output 2011-05-31 17:30:48.000000000 +0000 @@ -1,25 +1 @@ - message{ id:XXXXX depth:0 match:1 filename:XXXXX - header{ -Notmuch Test Suite (2000-01-01) (encrypted i= nbox) -Subject: test encrypted message 001 -From: Notmuch Test Suite -To: test_suite@notmuchmail.org -Date: 01 Jan 2000 12:00:00 -0000 - header} - body{ - part{ ID: 1, Content-type: multipart/encrypted - part{ ID: 2, Content-type: application/pgp-encrypted -Non-text part: application/pgp-encrypted - part} - part{ ID: 3, Content-type: multipart/mixed - part{ ID: 4, Content-type: text/plain -This is a test encrypted message. - part} - attachment{ ID: 5, Content-type: application/octet-stream -Attachment: TESTATTACHMENT (application/octet-stream) -Non-text part: application/octet-stream - attachment} - part} - part} - body} - message} + FAIL decryption, --format=3Djson --- crypto.7.expected 2011-05-31 17:30:48.000000000 +0000 +++ crypto.7.output 2011-05-31 17:30:48.000000000 +0000 @@ -1,27 +1 @@ -[[[{"id": "XXXXX", - "match": true, - "filename": "YYYYY", - "timestamp": 946728000, - "date_relative": "2000-01-01", - "tags": ["encrypted","inbox"], - "headers": {"Subject": "test encrypted message 001", - "From": "Notmuch Test Suite ", - "To": "test_suite@notmuchmail.org", - "Cc": "", - "Bcc": "", - "Date": "01 Jan 2000 12:00:00 -0000"}, - "body": [{"id": 1, - "encstatus": [{"status": "good"}], - "sigstatus": [], - "content-type": "multipart/encrypted", - "content": [{"id": 2, - "content-type": "application/pgp-encrypted"}, - {"id": 3, - "content-type": "multipart/mixed", - "content": [{"id": 4, - "content-type": "text/plain", - "content": "This is a test encrypted message.\n"}, - {"id": 5, - "content-type": "application/octet-stream", - "filename": "TESTATTACHMENT"}]}]}]}, - []]]] +[] FAIL decryption, --format=3Djson, --part=3D4 --- crypto.8.expected 2011-05-31 17:30:48.000000000 +0000 +++ crypto.8.output 2011-05-31 17:30:48.000000000 +0000 @@ -1,3 +1 @@ -{"id": 4, - "content-type": "text/plain", - "content": "This is a test encrypted message.\n"} + Error: search term did not match precisely one message. FAIL decrypt attachment (--part=3D5 --format=3Draw) --- crypto.9.expected 2011-05-31 17:30:47.000000000 +0000 +++ crypto.9.output 2011-05-31 17:30:48.000000000 +0000 @@ -1 +0,0 @@ -This is a test file. Error: search term did not match precisely one message. FAIL decryption failure with missing key --- crypto.10.expected 2011-05-31 17:30:49.000000000 +0000 +++ crypto.10.output 2011-05-31 17:30:49.000000000 +0000 @@ -1,20 +1 @@ -[[[{"id": "XXXXX", - "match": true, - "filename": "YYYYY", - "timestamp": 946728000, - "date_relative": "2000-01-01", - "tags": ["encrypted","inbox"], - "headers": {"Subject": "test encrypted message 001", - "From": "Notmuch Test Suite ", - "To": "test_suite@notmuchmail.org", - "Cc": "", - "Bcc": "", - "Date": "01 Jan 2000 12:00:00 -0000"}, - "body": [{"id": 1, - "encstatus": [{"status": "bad"}], - "content-type": "multipart/encrypted", - "content": [{"id": 2, - "content-type": "application/pgp-encrypted"}, - {"id": 3, - "content-type": "application/octet-stream"}]}]}, - []]]] +[] PASS emacs delivery of encrypted + signed message FAIL decryption + signature verification --- crypto.12.expected 2011-05-31 17:30:50.000000000 +0000 +++ crypto.12.output 2011-05-31 17:30:50.000000000 +0000 @@ -1,25 +1 @@ -[[[{"id": "XXXXX", - "match": true, - "filename": "YYYYY", - "timestamp": 946728000, - "date_relative": "2000-01-01", - "tags": ["encrypted","inbox"], - "headers": {"Subject": "test encrypted message 002", - "From": "Notmuch Test Suite ", - "To": "test_suite@notmuchmail.org", - "Cc": "", - "Bcc": "", - "Date": "01 Jan 2000 12:00:00 -0000"}, - "body": [{"id": 1, - "encstatus": [{"status": "good"}], - "sigstatus": [{"status": "good", - "fingerprint": "5AEAB11F5E33DCE875DDB75B6D92612D94E46381", - "created": 946728000, - "userid": " Notmuch Test Suite (INSECURE!)"= }], - "content-type": "multipart/encrypted", - "content": [{"id": 2, - "content-type": "application/pgp-encrypted"}, - {"id": 3, - "content-type": "text/plain", - "content": "This is another test encrypted message.\n"}]}]}, - []]]] +[] FAIL reply to encrypted message --- crypto.13.expected 2011-05-31 17:30:50.000000000 +0000 +++ crypto.13.output 2011-05-31 17:30:50.000000000 +0000 @@ -1,7 +1 @@ -From: Notmuch Test Suite -Subject: Re: test encrypted message 002 =09=20 -On 01 Jan 2000 12:00:00 -0000, Notmuch Test Suite wrote: -Non-text part: multipart/encrypted -Non-text part: application/pgp-encrypted -> This is another test encrypted message. FAIL signature verification with revoked key --- crypto.14.expected 2011-05-31 17:30:50.000000000 +0000 +++ crypto.14.output 2011-05-31 17:30:50.000000000 +0000 @@ -1,23 +1 @@ -[[[{"id": "XXXXX", - "match": true, - "filename": "YYYYY", - "timestamp": 946728000, - "date_relative": "2000-01-01", - "tags": ["inbox","signed"], - "headers": {"Subject": "test signed message 001", - "From": "Notmuch Test Suite ", - "To": "test_suite@notmuchmail.org", - "Cc": "", - "Bcc": "", - "Date": "01 Jan 2000 12:00:00 -0000"}, - "body": [{"id": 1, - "sigstatus": [{"status": "error", - "keyid": "6D92612D94E46381", - "errors": 8}], - "content-type": "multipart/signed", - "content": [{"id": 2, - "content-type": "text/plain", - "content": "This is a test signed message.\n"}, - {"id": 3, - "content-type": "application/pgp-signature"}]}]}, - []]]] +[] gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model gpg: depth: 0 valid: 1 signed: 0 trust: 0-, 0q, 0n, 0m, 0f, 1u --=-=-=-- --==-=-= Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.17 (Darwin) iEYEARECAAYFAk3lJmoACgkQMxgKfMb9y5ZIOwCg9get97nGgNgNmxbuvCqHZr7E V7cAoPKiJJefIIKjNsXnS2FTeTVqxGiC =+Atj -----END PGP SIGNATURE----- --==-=-=--