From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from localhost (localhost [127.0.0.1]) by olra.theworths.org (Postfix) with ESMTP id 2362B431FBC for ; Thu, 29 Jan 2015 04:43:47 -0800 (PST) X-Virus-Scanned: Debian amavisd-new at olra.theworths.org X-Spam-Flag: NO X-Spam-Score: 2.438 X-Spam-Level: ** X-Spam-Status: No, score=2.438 tagged_above=-999 required=5 tests=[DNS_FROM_AHBL_RHSBL=2.438] autolearn=disabled Received: from olra.theworths.org ([127.0.0.1]) by localhost (olra.theworths.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TV3cxzdi2tZK for ; Thu, 29 Jan 2015 04:43:44 -0800 (PST) Received: from mx.xen14.node3324.gplhost.com (gitolite.debian.net [87.98.215.224]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by olra.theworths.org (Postfix) with ESMTPS id D4949431FAF for ; Thu, 29 Jan 2015 04:43:43 -0800 (PST) Received: from remotemail by mx.xen14.node3324.gplhost.com with local (Exim 4.80) (envelope-from ) id 1YGoQr-0003ZI-8c; Thu, 29 Jan 2015 12:42:49 +0000 Received: (nullmailer pid 9114 invoked by uid 1000); Thu, 29 Jan 2015 12:42:36 -0000 From: David Bremner To: gmime-devel-list@gnome.org Subject: gmime and S/MIME User-Agent: Notmuch/0.19+48~gb74ed1c (http://notmuchmail.org) Emacs/24.4.1 (x86_64-pc-linux-gnu) Date: Thu, 29 Jan 2015 13:42:35 +0100 Message-ID: <87twz9wyf8.fsf@maritornes.cs.unb.ca> MIME-Version: 1.0 Content-Type: text/plain Cc: notmuch@notmuchmail.org X-BeenThere: notmuch@notmuchmail.org X-Mailman-Version: 2.1.13 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 29 Jan 2015 12:43:47 -0000 With a few others, I've been attempting to get S/MIME supported in notmuch (which as you might or might not remember is using gmime underneath). The signature verification part is working OK, but I've gotten a bit bogged down trying to get decryption working. What I have learned is that according RFC5751, smime message (parts) look like Media type: application/pkcs7-mime parameters: any file suffix: any Media type: multipart/signed parameters: protocol="application/pkcs7-signature" file suffix: any Media type: application/octet-stream parameters: any file suffix: p7m, p7s, p7c, p7z Unless I miss something, out of the box there is only support for decrypting multipart/encrypted. In particular the gmime tests for S/MIME use this "container format" [1]. So I'm wondering if I'm confused about the RFC(s), or about GMIME, or is one suppose to write analogs of g_mime_multipart_encrypted_decrypt for other top level parts? Cheers, David [1]: https://github.com/GNOME/gmime/blob/master/tests/test-smime.c