[PATCH 1/4] Do not replace multipart/signed part with content part when doing verification.
Some folks have complained about the part renumbering that occurs when the entire multipart/signed part is replaced with the part contents after verification. This is primarily because it incurs an additional computational cost to retrieve individual parts, since verification has to be performed again to ensure that part numbering is consistent. This patch simply leaves the full multipart/signed part as is. The emacs crypto test is also updated to reflect this change. --- show-message.c |2 -- test/crypto| 24 2 files changed, 20 insertions(+), 6 deletions(-) diff --git a/show-message.c b/show-message.c index 37252b2..849c686 100644 --- a/show-message.c +++ b/show-message.c @@ -105,8 +105,6 @@ show_message_part (GMimeObject *part, } if ((selected || state->in_zone) && format->part_sigstatus) format->part_sigstatus (sigvalidity); - /* extract only data part, and ignore signature part */ - part = g_mime_multipart_get_part (multipart, 0); if (sigvalidity) g_mime_signature_validity_free (sigvalidity); } diff --git a/test/crypto b/test/crypto index c5abcc3..ef35c55 100755 --- a/test/crypto +++ b/test/crypto @@ -57,8 +57,12 @@ expected='[[[{"id": "X", "sigstatus": [{"status": "good", "fingerprint": "'$FINGERPRINT'", "created": 946728000}], + "content-type": "multipart/signed", + "content": [{"id": 2, "content-type": "text/plain", - "content": "This is a test signed message.\n"}]}, + "content": "This is a test signed message.\n"}, + {"id": 3, + "content-type": "application/pgp-signature"}]}]}, [' test_expect_equal \ "$output" \ @@ -88,8 +92,12 @@ expected='[[[{"id": "X", "fingerprint": "'$FINGERPRINT'", "created": 946728000, "userid": " Notmuch Test Suite (INSECURE!)"}], + "content-type": "multipart/signed", + "content": [{"id": 2, "content-type": "text/plain", - "content": "This is a test signed message.\n"}]}, + "content": "This is a test signed message.\n"}, + {"id": 3, + "content-type": "application/pgp-signature"}]}]}, [' test_expect_equal \ "$output" \ @@ -117,8 +125,12 @@ expected='[[[{"id": "X", "sigstatus": [{"status": "error", "keyid": "'$(echo $FINGERPRINT | cut -c 25-)'", "errors": 2}], + "content-type": "multipart/signed", + "content": [{"id": 2, "content-type": "text/plain", - "content": "This is a test signed message.\n"}]}, + "content": "This is a test signed message.\n"}, + {"id": 3, + "content-type": "application/pgp-signature"}]}]}, [' test_expect_equal \ "$output" \ @@ -320,8 +332,12 @@ expected='[[[{"id": "X", "sigstatus": [{"status": "error", "keyid": "6D92612D94E46381", "errors": 8}], + "content-type": "multipart/signed", + "content": [{"id": 2, "content-type": "text/plain", - "content": "This is a test signed message.\n"}]}, + "content": "This is a test signed message.\n"}, + {"id": 3, + "content-type": "application/pgp-signature"}]}]}, [' test_expect_equal \ "$output" \ -- 1.7.4.4
[PATCH 1/4] Do not replace multipart/signed part with content part when doing verification.
Some folks have complained about the part renumbering that occurs when the entire multipart/signed part is replaced with the part contents after verification. This is primarily because it incurs an additional computational cost to retrieve individual parts, since verification has to be performed again to ensure that part numbering is consistent. This patch simply leaves the full multipart/signed part as is. The emacs crypto test is also updated to reflect this change. --- show-message.c |2 -- test/crypto| 24 2 files changed, 20 insertions(+), 6 deletions(-) diff --git a/show-message.c b/show-message.c index 37252b2..849c686 100644 --- a/show-message.c +++ b/show-message.c @@ -105,8 +105,6 @@ show_message_part (GMimeObject *part, } if ((selected || state->in_zone) && format->part_sigstatus) format->part_sigstatus (sigvalidity); - /* extract only data part, and ignore signature part */ - part = g_mime_multipart_get_part (multipart, 0); if (sigvalidity) g_mime_signature_validity_free (sigvalidity); } diff --git a/test/crypto b/test/crypto index c5abcc3..ef35c55 100755 --- a/test/crypto +++ b/test/crypto @@ -57,8 +57,12 @@ expected='[[[{"id": "X", "sigstatus": [{"status": "good", "fingerprint": "'$FINGERPRINT'", "created": 946728000}], + "content-type": "multipart/signed", + "content": [{"id": 2, "content-type": "text/plain", - "content": "This is a test signed message.\n"}]}, + "content": "This is a test signed message.\n"}, + {"id": 3, + "content-type": "application/pgp-signature"}]}]}, [' test_expect_equal \ "$output" \ @@ -88,8 +92,12 @@ expected='[[[{"id": "X", "fingerprint": "'$FINGERPRINT'", "created": 946728000, "userid": " Notmuch Test Suite (INSECURE!)"}], + "content-type": "multipart/signed", + "content": [{"id": 2, "content-type": "text/plain", - "content": "This is a test signed message.\n"}]}, + "content": "This is a test signed message.\n"}, + {"id": 3, + "content-type": "application/pgp-signature"}]}]}, [' test_expect_equal \ "$output" \ @@ -117,8 +125,12 @@ expected='[[[{"id": "X", "sigstatus": [{"status": "error", "keyid": "'$(echo $FINGERPRINT | cut -c 25-)'", "errors": 2}], + "content-type": "multipart/signed", + "content": [{"id": 2, "content-type": "text/plain", - "content": "This is a test signed message.\n"}]}, + "content": "This is a test signed message.\n"}, + {"id": 3, + "content-type": "application/pgp-signature"}]}]}, [' test_expect_equal \ "$output" \ @@ -320,8 +332,12 @@ expected='[[[{"id": "X", "sigstatus": [{"status": "error", "keyid": "6D92612D94E46381", "errors": 8}], + "content-type": "multipart/signed", + "content": [{"id": 2, "content-type": "text/plain", - "content": "This is a test signed message.\n"}]}, + "content": "This is a test signed message.\n"}, + {"id": 3, + "content-type": "application/pgp-signature"}]}]}, [' test_expect_equal \ "$output" \ -- 1.7.4.4 ___ notmuch mailing list notmuch@notmuchmail.org http://notmuchmail.org/mailman/listinfo/notmuch