From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <dtw@kapsi.fi>
Received: from localhost (localhost [127.0.0.1])
 by arlo.cworth.org (Postfix) with ESMTP id 275AF6DE0C3D
 for <notmuch@notmuchmail.org>; Sat, 25 Jan 2020 11:50:20 -0800 (PST)
Authentication-Results: arlo.cworth.org; dkim=pass (2048-bit key;
 secure) header.d=kapsi.fi header.i=@kapsi.fi header.b="bjQQ3fU7"; 
 dkim-atps=neutral
X-Virus-Scanned: Debian amavisd-new at cworth.org
X-Spam-Flag: NO
X-Spam-Score: -0.95
X-Spam-Level: 
X-Spam-Status: No, score=-0.95 tagged_above=-999 required=5 tests=[AWL=-0.398, 
 DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1,
 HEADER_FROM_DIFFERENT_DOMAINS=0.249, RCVD_IN_DNSWL_LOW=-0.7,
 SPF_PASS=-0.001] autolearn=disabled
Received: from arlo.cworth.org ([127.0.0.1])
 by localhost (arlo.cworth.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id dJ7Ub5OoTB9x for <notmuch@notmuchmail.org>;
 Sat, 25 Jan 2020 11:50:17 -0800 (PST)
Received: from mail.kapsi.fi (mail.kapsi.fi [91.232.154.25])
 by arlo.cworth.org (Postfix) with ESMTPS id 935D76DE0C3A
 for <notmuch@notmuchmail.org>; Sat, 25 Jan 2020 11:50:15 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=kapsi.fi;
 s=20161220; h=Content-Type:MIME-Version:Message-ID:Date:Subject:To:From:
 Sender:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description:
 Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:
 In-Reply-To:References:List-Id:List-Help:List-Unsubscribe:List-Subscribe:
 List-Post:List-Owner:List-Archive;
 bh=TYp6CERuRzyGE0f+/WBTU8Rr36LpzqCoua/lqS3kHuw=; b=bjQQ3fU7Seiav2IJeiV/FTeH39
 0Mzk6hdaYDgc4aoODqnhBBrfREooav/0RWvvSAfY8nSLtvghqK542cNsIx6a6rBDGmIQHPilcbqwB
 aqfA81sf9CHAdfH6l6FaO/YEyzKkbcq9HfMN4Vz0yUiB4b1zQ5Utt+4iRvJQ3nc1alSwPLzy/i7fK
 Os9/yhLDebq7YLFi0TRpPhv3pw3e0oyhlCVFf7K2Fo85AblvRybMGL663ro/Jlc696qVfT7OYRSOK
 cy+55ASPoeqA7YySACYmfY8CwYXjNRntF7OvYuKBoQ8qicEQBAjs0lT4uoFem3uniWGUn1gOtYQFm
 8FmKBPDA==;
Received: from mobile-access-6df04b-25.dhcp.inet.fi ([109.240.75.25]
 helo=mithlond)
 by mail.kapsi.fi with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.89) (envelope-from <tlikonen@iki.fi>) id 1ivRRa-00065g-6J
 for notmuch@notmuchmail.org; Sat, 25 Jan 2020 21:50:10 +0200
From: Teemu Likonen <tlikonen@iki.fi>
To: notmuch@notmuchmail.org
Subject: Suboptimal status line for PGP signature verification
Date: Sat, 25 Jan 2020 21:50:01 +0200
Message-ID: <87zhebiady.fsf@iki.fi>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
 micalg=pgp-sha256; protocol="application/pgp-signature"
X-SA-Exim-Connect-IP: 109.240.75.25
X-SA-Exim-Mail-From: tlikonen@iki.fi
X-SA-Exim-Scanned: No (on mail.kapsi.fi); SAEximRunCond expanded to false
X-BeenThere: notmuch@notmuchmail.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Use and development of the notmuch mail system."
 <notmuch.notmuchmail.org>
List-Unsubscribe: <https://notmuchmail.org/mailman/options/notmuch>,
 <mailto:notmuch-request@notmuchmail.org?subject=unsubscribe>
List-Archive: <http://notmuchmail.org/pipermail/notmuch/>
List-Post: <mailto:notmuch@notmuchmail.org>
List-Help: <mailto:notmuch-request@notmuchmail.org?subject=help>
List-Subscribe: <https://notmuchmail.org/mailman/listinfo/notmuch>,
 <mailto:notmuch-request@notmuchmail.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Jan 2020 19:50:20 -0000

--=-=-=
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

Notmuch Emacs has quite limited status reporting of PGP signature
verification. I'm sure this is nothing new to you but perhaps I found
one more suboptimal case.

When verifying a signature made by an expired key (like this message:
id:87pnfjgnku.fsf@fifthhorseman.net) we get red status line: "Unknown
key [...] or unsupported algorithm". The key is not unknown to me; it is
in my keyring. The signature is good but the signing subkey is just
expired.

In a better world we would probably have more information in the status
line: (1) good or bad signature and (2) key's validity: full, marginal,
expired key, tofu conflict, never...

=2D-=20
///  OpenPGP key: 4E1055DC84E9DFF613D78557719D69D324539450
//  https://keys.openpgp.org/search?q=3Dtlikonen@iki.fi
/  https://keybase.io/tlikonen  https://github.com/tlikonen

--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=Wj/E
-----END PGP SIGNATURE-----
--=-=-=--