From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from localhost (localhost [127.0.0.1]) by arlo.cworth.org (Postfix) with ESMTP id ABCAA6DE0EED for ; Tue, 9 Apr 2019 10:50:59 -0700 (PDT) X-Virus-Scanned: Debian amavisd-new at cworth.org X-Spam-Flag: NO X-Spam-Score: -0.7 X-Spam-Level: X-Spam-Status: No, score=-0.7 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=disabled Received: from arlo.cworth.org ([127.0.0.1]) by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XUgMCEiDp5qT for ; Tue, 9 Apr 2019 10:50:58 -0700 (PDT) Received: from mout.gmx.net (mout.gmx.net [212.227.17.22]) by arlo.cworth.org (Postfix) with ESMTPS id CEF476DE0EEA for ; Tue, 9 Apr 2019 10:50:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=gmx.net; s=badeba3b8450; t=1554832245; bh=HJ6V8QcjG1iEe604LhzNhnFHGhNRdeAHj4gj9HqD8u8=; h=X-UI-Sender-Class:From:To:Cc:Subject:In-Reply-To:References:Date; b=P4i5I1HwHURxUcM2TAsJm7zwEPnR518Epb7Ei27PAhnd3e4ctkvKe+6tL6ZNeI9dQ GrZt0YvT77SInykPIrXjNEg7/alPAiPJwldhoiCFDZMf9japlzOsTsUZTd+YmZhuQM X9GG9spWmlGcHHJRcsjmxfaiRPGo8CaWTVcHocxc= X-UI-Sender-Class: 01bb95c1-4bf8-414a-932a-4f6e2808ef9c Received: from localhost ([134.155.85.75]) by mail.gmx.com (mrgmx102 [212.227.17.168]) with ESMTPSA (Nemesis) id 0MZwYd-1hSxq60WNz-00LpED; Tue, 09 Apr 2019 19:50:45 +0200 From: Rainer Gemulla To: David Bremner , notmuch@notmuchmail.org Cc: Daniel Kahn Gillmor Subject: Re: notmuch-show: Verification via epa-verify-region affected by formatting hooks In-Reply-To: <87imvscwrp.fsf@tethera.net> References: <87h8bd23yd.fsf@gemma> <87imvscwrp.fsf@tethera.net> Date: Tue, 09 Apr 2019 19:50:39 +0200 Message-ID: <87tvf7xe34.fsf@gemma> MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-Provags-ID: V03:K1:lFkXuegBj+Hu3lqIijjoBxF3vi/BdBjFoc1UPZwUyrYi3QZNbuT wirQHChUJVnc54SQUW0NmT+TriXimkbQ++WskB5JItp2XeUUgzBJVkODkf8cWH9pX+stKZW ryPmCXL1kJtBQtdiApd4kYuupKzy9kLhFl7YW8lEKC1PUaIkx/SFyLL7AZCo9+jtYOkmiGz v6dM9OmcJcnUcARxZj2Lw== X-UI-Out-Filterresults: notjunk:1;V03:K0:IMDrgAHUFWI=:YsuxZae8Dr0Cc6B5QGxewH VXKADVMIbYKS+97pwFhpe9tDunuPSZFQz8TOjtXfe6I030jbAfpQAO8KlKUb9OBzyqwjLItKm jLH3+7lddy5Lpzl7DVcgesHDVPMKyg/j9Y4AHK2Ew4GVMOA454Je9rcMG4qYAeNYxz/nWgnj+ a7FQW1LRtOC264uKM0BIJzsV14YXNCvYEC1YEbwOXyaFBq7rF07jJjSPar1s0lzSo9pcvOmX5 jwS+awCjXRDXVwmCyQe9d2x39ZTwCJ0KagRV3yjBeZlFYUbKZ0R0MOzNf7iAk41VP8nE/ufrX pygXhJwB3izYpk7gL9PFUCX5sfaktEiu54t7fRT+8HW3chGwLOvsPXEQEtC8nj5IO9qoHpocS P1ioAbL9GqpmaW54di4FTJcG5gP7aU07/kGtLWZwdo/WdfcpEV8DWCMwoS5p6UO95IuLZJiuG NiF8Rx9WjTxBlvT8AjkQGMALfMVMAgqtqc0dDbJ8BbezUDNRe8zwJS7jsnmmPokXt6sXawbNT YJ7QjtngUqWUj9jBV5OG6uhYCiDZAUwlIuZ/mr56wqh0ElkEsdZEfZEB7kzCYQvnP3GBZlZ/B zkIEnw++BxEU0myJnvYHuX0t7JvvrFRcZGaquF2GdubIxebbEoFsgjzcAkOAVd7Isj3M2aBfI OT7X/iPRIBksLI9umq/QdPGd5wwAkBoQcqtQ2//B/yikJHQUTJEdaJqDSdJiPTkAnfKxX/Vh9 hxCaCBA7UPM7JnVser8GkUnEMp+Bke70n3amuZUqG2PIhEH+dQO0AbevbCyZfD9HHvoNyedaI qKUzropzoHJacQ2LH0SlyYhMODZK714TWiEbQeYUGkKniz3nWgESZwyHbB4BjqWkRbXP3jGed KVBNRcmF8pD1UXURyRqBEwfT7sGFp8IB+bIgqCW6v1/McZh5+C1yWXJ7coizjJ X-Mailman-Approved-At: Tue, 09 Apr 2019 12:18:54 -0700 X-BeenThere: notmuch@notmuchmail.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 09 Apr 2019 17:50:59 -0000 --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Thanks David! I updated the Wiki accordingly. This issue can be closed from= my point of view. Best, Rainer David Bremner writes: > Rainer Gemulla writes: > >> Hi all, >> >> when a message contains an text/plain part that is signed via inline pgp= and shown in notmuch-show-mode, verification of that part's signature via = epa-mail-verify or epa-verify-region fails.=20 >> >> The reason is that the hooks in notmuch-show-insert-text/plain-hook modi= fy the text (and thus the signature becomes invalid). Calling notmuch-show-= pipe-part with "gpg --verify" works as expected and verifies the correctnes= s of the signature. >> >> Not sure what to do about this, but I find the current behavior confusin= g. The notmuch emacstips documentation also (implicitly) states that verifi= cation of inline pgp can be done via the epa-* functions.=20 >> > > That documentation is wiki. That means both that you should take it with > a grain of salt, and that we welcome updates to it > > https://notmuchmail.org/wikiwriteaccess/ >=20=20=20 >> One option may be to document this behavior. Another one to add a >> function like notmuch-crypto-verify-part (which is what I currently >> do). > > I suppose that you could also customize notmuch-show-insert-text/plain-ho= ok > >> And/or one may be verify each inline pgp signature part by >> default (when crypto processing is enabled) and add a "crypto button". > > As far as documentation in the wiki there is a FAQ about (non) support > for inline PGP. I think dkg (in copy) was working on decryption of > inline PGP, but explicitely not on verifying signatures. You can read a > summary of his issues with inline PGP signatures at > > https://dkg.fifthhorseman.net/notes/inline-pgp-harmful/ --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEmtshwn9RGtTGGzefdKcOvhKikVsFAlys228ACgkQdKcOvhKi kVui+w//Rrqc0N3a9wbzADix7Z/chP2KCWOF8GMw6pZYBU3tCR7U+GbZn7sn4ES8 Hd2gJ+2fDMrH6DBxPE9Og0bfzF5W4dh8m+8HCR/J6uwZuQOxfL0SZwN5bCPUpbg8 m1d8Esb0w1xCt19QcBiVYr3Ju1scxIEyJuQ5LTbTD85lFh+spQQlQeFudB97Ivoz zzM4Q6+FmUaoSW+jsKPT0nSPxd7/AiUjLbKOhHYn6p5a2cn9lkd39Pd3YtAeyv3G pQXCsfY7qD+MWBkGQjgAq/9qOxRk7HBXkxeB0RheG6T+Nz1QgoXr+nXajaT+bymz vsnI2wxseEoRBtz9OXbfBVj6xtL2t5wNt3Ul8Oi81yqbWRcRh1fdVE+wY9Ux/dx1 TnGAEe+YcbSQreF6ZA4WmZ8vEmWbN2+rq/xfIH+qFIcucDi7tvJeymRx9zypiiHZ PIfgaqrQwMrjXdLjfVoBclrC/2FZ1P9FcxfJscVOKhQTVGrgAUEJN10B5xFAmLwC NZMMxFSoQdo+BMLMcDGINGKZIUkRFRVNDZiLcyuIaLcuSJvYO6QdVncZzzNvQAn7 LhSbzJW/hufIxgPRywBSR8CZ/nIDoGJB33ZbkZpVEX7lYpvwrDRndKZ3fkJdCepI t2MEOXNU3MkhpkgqSWZ1yqaaGTkKT7Kn2dkMxBp18AfS3Kul1VE= =xR46 -----END PGP SIGNATURE----- --=-=-=--