Re: new "crypto" branch providing full PGP/MIME support

diff --git a/ad/4e20565a1ddf7e1d4a3cb5c4b661deb70ba385 b/ad/4e20565a1ddf7e1d4a3cb5c4b661deb70ba385
new file mode 100644 (file)
index 0000000..0c4bb20
--- /dev/null
+++ b/ad/4e20565a1ddf7e1d4a3cb5c4b661deb70ba385
@@ -0,0 +1,153 @@
+Return-Path: <micah@riseup.net>\r
+X-Original-To: notmuch@notmuchmail.org\r
+Delivered-To: notmuch@notmuchmail.org\r
+Received: from localhost (localhost [127.0.0.1])\r
+       by olra.theworths.org (Postfix) with ESMTP id 257DE431FB6\r
+       for <notmuch@notmuchmail.org>; Thu,  3 Feb 2011 08:25:08 -0800 (PST)\r
+X-Virus-Scanned: Debian amavisd-new at olra.theworths.org\r
+X-Spam-Flag: NO\r
+X-Spam-Score: -0.689\r
+X-Spam-Level: \r
+X-Spam-Status: No, score=-0.689 tagged_above=-999 required=5\r
+       tests=[RCVD_IN_DNSWL_LOW=-0.7, T_MIME_NO_TEXT=0.01,\r
+       UNPARSEABLE_RELAY=0.001] autolearn=disabled\r
+Received: from olra.theworths.org ([127.0.0.1])\r
+       by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024)\r
+       with ESMTP id vNtBaRsL4k4G for <notmuch@notmuchmail.org>;\r
+       Thu,  3 Feb 2011 08:25:07 -0800 (PST)\r
+Received: from mx1.riseup.net (mx1.riseup.net [204.13.164.18])\r
+       (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))\r
+       (No client certificate requested)\r
+       by olra.theworths.org (Postfix) with ESMTPS id 88901431FB5\r
+       for <notmuch@notmuchmail.org>; Thu,  3 Feb 2011 08:25:07 -0800 (PST)\r
+Received: from tern.riseup.net (tern-pn.riseup.net [10.0.1.12])\r
+       (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))\r
+       (Client CN "*.riseup.net", Issuer "Gandi Standard SSL CA" (verified OK))\r
+       by mx1.riseup.net (Postfix) with ESMTPS id 825E0191C74;\r
+       Thu,  3 Feb 2011 08:25:06 -0800 (PST)\r
+Received: from [127.0.0.1] (localhost [127.0.0.1])\r
+       (Authenticated sender: micah@tern.riseup.net)\r
+       with ESMTPSA id D4FBD14C12E\r
+Received: by algae (Postfix, from userid 1000)\r
+       id 82C90419FD; Thu,  3 Feb 2011 11:25:06 -0500 (EST)\r
+From: micah anderson <micah@riseup.net>\r
+To: Jameson Rollins <jrollins@finestructure.net>,\r
+       notmuch <notmuch@notmuchmail.org>\r
+Subject: Re: new "crypto" branch providing full PGP/MIME support\r
+In-Reply-To: <87tygl29vu.fsf@servo.finestructure.net>\r
+References: <4CF15D67.1070904@fifthhorseman.net>\r
+       <87aak08fu8.fsf@servo.finestructure.net>\r
+       <87fwsf9mip.fsf@servo.finestructure.net>\r
+       <87tygl29vu.fsf@servo.finestructure.net>\r
+User-Agent: Notmuch/0.5 (http://notmuchmail.org) Emacs/23.2.1\r
+       (i486-pc-linux-gnu)\r
+Date: Thu, 03 Feb 2011 11:25:06 -0500\r
+Message-ID: <87hbclkrvh.fsf@algae.riseup.net>\r
+MIME-Version: 1.0\r
+Content-Type: multipart/signed; boundary="=-=-=";\r
+       micalg=pgp-sha512; protocol="application/pgp-signature"\r
+X-Virus-Scanned: clamav-milter 0.96.5 at mx1\r
+X-Virus-Status: Clean\r
+X-BeenThere: notmuch@notmuchmail.org\r
+X-Mailman-Version: 2.1.13\r
+Precedence: list\r
+List-Id: "Use and development of the notmuch mail system."\r
+       <notmuch.notmuchmail.org>\r
+List-Unsubscribe: <http://notmuchmail.org/mailman/options/notmuch>,\r
+       <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>\r
+List-Archive: <http://notmuchmail.org/pipermail/notmuch>\r
+List-Post: <mailto:notmuch@notmuchmail.org>\r
+List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>\r
+List-Subscribe: <http://notmuchmail.org/mailman/listinfo/notmuch>,\r
+       <mailto:notmuch-request@notmuchmail.org?subject=subscribe>\r
+X-List-Received-Date: Thu, 03 Feb 2011 16:25:08 -0000\r
+\r
+--=-=-=\r
+Content-Transfer-Encoding: quoted-printable\r
+\r
+On Wed, 02 Feb 2011 17:18:45 -0800, Jameson Rollins <jrollins@finestructure=\r
+.net> wrote:\r
+> Hi, all.  I have pushed a new branch called "crypto" to my notmuch\r
+> repository [0].  This branch provides full support for PGP/MIME signed\r
+> and encrypted messages, including emacs UI support.  It has been applied\r
+> on top of cworth's current master (21e97c50).  It includes the\r
+> following:\r
+>=20\r
+> * David Edmondson's improved multipart handling patch series (cherry-pick=\r
+ed)\r
+> * Daniel Gillmor's PGP/MIME signature verification patch series (cherry-p=\r
+icked)\r
+> * my PGP/MIME decryption+verification patch series\r
+> * a test suite for signature verification and decryption\r
+> * emacs support for the above\r
+\r
+Don't forget that you also included man page changes!\r
+\r
+> Please test and provide feedback.  I would really like to see this\r
+> series merged into the mainline for the next release, if at all\r
+> possible.\r
+\r
+I've really really really wanted this functionality, so I pulled this\r
+right away and have been testing it, its really slick! I like how the\r
+emacs UI gives you good visual feedback for different signature states\r
+(I had red for a signature from Sebastian Spaeth because I did not have\r
+the key; orange for when I obtained that key; and green for Jameson and\r
+dkg's mails because I have exchanged keys with them and have full\r
+validity for them; and purple for a decryption error). The minor delay\r
+in opening a thread with signatures is not bad, and is to be expected.\r
+\r
+And messages that are PGP/MIME encrypted are decrypted automatically,\r
+wow, this is amazing. I enthusiastically support merging this into\r
+mainline for the next release.\r
+\r
+I have a couple points of feedback that I do not think should hold up\r
+merging this work:\r
+\r
+1. I personally think notmuch-show-process-pgpmime should default to\r
+true\r
+\r
+2. in-line pgp messages don't have any processing done on them. getting\r
+the mime-encoded processing work is a huge step and I'm happy that\r
+works, in-line can (and IMHO, should) come later\r
+\r
+3. i'm not sure expired/revoked keys are handled properly - tested on a\r
+message that was encrypted by a key that was revoked and got "End of\r
+file during parsing"\r
+\r
+4. messages that I sent encrypted to someone are not also encrypted to\r
+myself, which means that a thread which contains my replies isn't able\r
+to decrypt my messages in that thread and results in a purple\r
+'decryption error'. Perhaps this is an emacs UI tweak that needs to be\r
+made to get messages also encrypted to my own key?\r
+\r
+5. unknown keys are represented in a long format,\r
+eg. '0x5585F58CC827A062' when most tools represent them just with their\r
+shortened keyid (in this case this one would be: 0xC827A062), is there a\r
+particular reason for this? I recognize some people's keyids in the\r
+short form, but do not in the longform.\r
+\r
+6. this is awesome, huge thanks to everyone who has worked on this!\r
+\r
+micah\r
+\r
+--=-=-=\r
+Content-Type: application/pgp-signature\r
+\r
+-----BEGIN PGP SIGNATURE-----\r
+Version: GnuPG v1.4.10 (GNU/Linux)\r
+\r
+iQIcBAEBCgAGBQJNStbiAAoJEIy/mjIoYaeQ8SEP/RpOut1mWwOla0rQGmAyg7wi\r
+wAwdtCxlCFCRsNLg9FjPodaB76/exmnPGAYamZwT7z4OdMjq+BZI/iNY+Bqsl6wX\r
+mr/pASDgxXLnsM40fJUP3UiqhJVwyryenBZSY3n8TSjnSiDS9RUxmyQsjznW8BQu\r
+s6iyV60KEGSP4fRvdPvQXcFaxkAUxu3wobhbc+o5OqokbY6nh7UxMWEoFJ4AnpyC\r
+KB0mCQ1eFT+3yecRvhzt4gReVFrCM6KCAnsYI+24t8+WlWTdfRct+ZcStiZC8Ky9\r
+A/wRP+4qjJBAkJ9QWmVD0R+N78bNVAC63ki9/ty8xnOOzvjNllNqc67Ch2fm707U\r
+VzrLViuT3WGHb32+S8reJ7bF8FGkL+LKtgCefvqAUJNSJN6HRHmmqoAMWM4Bdoc/\r
+tFlrqxHyXJfTOxIkrK4MR8IQjzYThT7PMRm1iF6xhn9oNcITZJdpyEU2yN+nMyuv\r
+ufojuc4MkUaCqXZaPoPI5gHlpjxMckE8moLgaypJsvs9KFRXpqdXt3JjhHW8vPCe\r
+dALlLxgybn4k1SOXQ5y/bxTMQkBoBDw2UhUlT6Wcv1/ZPds8BE06lJ2MZ5IxuwZB\r
+YBeU35UdSB5NdVd+3FCtiNqv1x+GGjh02tdK+J6YVh2qy1pVDrGoc+Ag8Wtd4Uv7\r
+/zrgtmsN2wdOs3E88FzT\r
+=s9mc\r
+-----END PGP SIGNATURE-----\r
+--=-=-=--\r