From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp12.migadu.com ([2001:41d0:403:4789::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms9.migadu.com with LMTPS id aDmRMfMptWRYPwAASxT56A (envelope-from ) for ; Mon, 17 Jul 2023 13:45:55 +0200 Received: from aspmx1.migadu.com ([2001:41d0:403:4789::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp12.migadu.com with LMTPS id 2PYiMfMptWTOfQAAauVa8A (envelope-from ) for ; Mon, 17 Jul 2023 13:45:55 +0200 Received: from mail.notmuchmail.org (yantan.tethera.net [135.181.149.255]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id 47719526A5 for ; Mon, 17 Jul 2023 13:45:55 +0200 (CEST) Authentication-Results: aspmx1.migadu.com; dkim=none; spf=pass (aspmx1.migadu.com: domain of notmuch-bounces@notmuchmail.org designates 135.181.149.255 as permitted sender) smtp.mailfrom=notmuch-bounces@notmuchmail.org; dmarc=none ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1689594355; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references:list-id:list-help: list-owner:list-unsubscribe:list-subscribe:list-post; bh=DNVbQb2R396DGS8RzRTImmtZ0C/vnmMWPPU4sCpI3wo=; b=UqBO5Yl9Btht5Md90MgSqtzK0/PVXN7DbR5NrAe1r82fuQnxJ5+wdV2r6tr2kO3A+br9Hu gT092MLstblW3qe37Aa1xweu7aFfkkLVyO7dJgaOhnHPasB6swBuSHN8mo1kP8ldyNyix3 FjpPv9aKTfE4fDi+rKJ2bW4YhWy2+nt/B/2nLP2P5PDvzBNwZfZydjsasAFOucguWq3tnN zFdVWscO+UGiyBTz43zLUtUEIDe6t20kupS3G3nVXb5vaxynXSxQuO8koSbVgH5NzdD2va uTZVDP9GiIdS+d0PmihkA24d7xTNNudbfou7dzn7uwWBB9U/DaNCAxKkwevhfA== ARC-Seal: i=1; s=key1; d=yhetil.org; t=1689594355; a=rsa-sha256; cv=none; b=lR+ysc00m6sCrc7+HK/3O0smbCiWdUgOAdMSdajr11AkqOrgKiPFZDHSu6OifVUYwh+4j6 b7o+XZJSdDSJOKTg6vBcntSEEE2462ToTViF7/m8DSWLB8B2e4UHoG8F3OfKmK68JpJqKK MgJ9PGZElxEyL6fU7l8vGFtYUjld4uBdIlPHZlsgYjz3UCTutlrIdm+osHnBF4Fe40vJzy aR0gAznYmebU6oM/BcVOB2+7aqpxUiR+A93cNY/Ar7F1JfkPNVF63lYb/aNUbrtM5XUbSP KMoKuoSIdXLFCCNCKTZ8m+g1toLpXVBHwUPIHKECjQIZHtJiItxdnecWWEaSNA== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=none; spf=pass (aspmx1.migadu.com: domain of notmuch-bounces@notmuchmail.org designates 135.181.149.255 as permitted sender) smtp.mailfrom=notmuch-bounces@notmuchmail.org; dmarc=none Received: from yantan.tethera.net (localhost [127.0.0.1]) by mail.notmuchmail.org (Postfix) with ESMTP id 4A7305E54B; Mon, 17 Jul 2023 11:45:52 +0000 (UTC) Received: from bbox.sascha.silbe.org (bbox.sascha.silbe.org [46.38.230.149]) by mail.notmuchmail.org (Postfix) with ESMTPS id 460495E023 for ; Mon, 17 Jul 2023 11:45:49 +0000 (UTC) Received: from twin.sascha.silbe.org (twin.sascha.silbe.org [192.168.1.2]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "twin.sascha.silbe.org", Issuer "stunnel Pseudo-CA" (verified OK)) by bbox.sascha.silbe.org (Postfix) with ESMTPS id CEB7B62890 for ; Mon, 17 Jul 2023 13:45:47 +0200 (CEST) Received: (nullmailer pid 2002147 invoked by uid 71000); Mon, 17 Jul 2023 11:45:47 -0000 To: David Bremner , notmuch@notmuchmail.org Subject: Re: PGP verification fails consistently for specific sender In-Reply-To: <87pm4t45q8.fsf@tethera.net> References: <87ttu64y2x.fsf@tethera.net> <87pm4t45q8.fsf@tethera.net> Date: Mon, 17 Jul 2023 13:45:05 +0200 Message-ID: MIME-Version: 1.0 From: Sascha Silbe Message-ID-Hash: C7EWBXZPVUAR77V6WKSQA4ZLIG2S66M7 X-Message-ID-Hash: C7EWBXZPVUAR77V6WKSQA4ZLIG2S66M7 X-MailFrom: sascha-ml-email-notmuch-notmuch@silbe.org X-Mailman-Rule-Hits: nonmember-moderation X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-notmuch.notmuchmail.org-0 X-Mailman-Version: 3.3.3 Precedence: list List-Id: "Use and development of the notmuch mail system." List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Content-Type: multipart/mixed; boundary="===============4449979664467884062==" X-Migadu-Country: DE X-Migadu-Flow: FLOW_IN X-Spam-Score: -6.96 X-Migadu-Queue-Id: 47719526A5 X-Migadu-Scanner: mx1.migadu.com X-Migadu-Spam-Score: -6.96 X-TUID: g6rUAEveofDg --===============4449979664467884062== Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hello David, David Bremner writes: >>> Is anyone interested in debugging this failure? I can provide a copy of >>> a failing mail off-list but don't have time myself to dive into the gory >>> details of PGP/MIME verification right now. [...] > I got as far as verifying that the problem occurs to me too, and seems > to happen inside libgmime. I didn't yet figure out how to construct a > test case for libgmime, but before I go further I'll need test data I > can share. Thanks again for looking into it! The sending software seems to be open-source [1]; I've asked on GitHub for a sample that can be shared [2]. =F0=9F=A4=9E My original hope was that once you figure out the reason you could create a synthetic example. Unfortunately I don't have control over the sender side myself, I can only ask them to send me an email over this system. And because it's a (hosted) production instance it will always include personal data (of the sender) that shouldn't be published. :-/ It's fine to share with individual developers of other projects like libgmime, though, as long as it doesn't end up anywhere public (e.g. git repo, public bug tracker). Sascha [1] https://otobo.de/en/ [2] https://github.com/RotherOSS/otobo/discussions/2400 --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE7Ycc2t6Wt6eY1E5VwY9q6IEw7ZcFAmS1KcEACgkQwY9q6IEw 7ZcLCw//a4MVJj+ZT6IROR3e1USGtoYtuH0vKh1zDKgD67G8jVV9Bg2M6i5Uh1LD Wi4eeRuOYYG5tqHmC/HlMW3xFHa9ZRO185d4DcA6LoHnajYNhhbsIFjekVZGtuNr FAUzCKHjqlOXwBUNSKGEz2ACEPVh1O+nID6Ycmpj78K/hbvFc9NRopSrfXiLN8GK a3YG/pUmhnO3xOiBlv0zYGVzH7p5DStBcDoCuMaAJP7fY11zRq0XOjkt6XXFDPM1 uKOr8+PGPGjTsR4EnEHKAx9vv0cpvYNjp7/WGqUz0/lXQzYajPUNF4qSisyGtpHe OixILXcH/+so1B42bmloER09VH+Kjc9e+l7ccKNAASTtkPhMENVDa1/b9XRQdN60 EECWACxEeH4aA6VldYgLR83O+NFsnEDCzOLv/7CEPQSouVn5ACuxnrKKQwaRolWM RDPLkpiPldu+hX0jf2pd/WRGNn57ptU21m0i3hRfXrjJIoCATl9TGB1obhQlNtSL aKVhacLZqVMXmVotLHleUzUEocrh4iKJrHFLpFBg5lgt7yfBomvXRT+s0R5pLDHa PopsNEB3T6Z88thH/7ivPjdscsSCDjr8fx/cu2xpFwsKW+uqon4VJEITAWjqsMDm 6wViahm5qk4IMZnNKdOQcviXMlbOm9XMDcDSFQvREUx0Yp0t5tw= =0oHM -----END PGP SIGNATURE----- --=-=-=-- --===============4449979664467884062== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline --===============4449979664467884062==--