notmuch/test/T350-crypto.sh, branch nmweb thread-based email index, search, and tagging https://git.notmuchmail.org/git/notmuch/atom?h=nmweb 2023-07-21T10:41:50Z test: support testing notmuch as installed 2023-07-21T10:41:50Z David Bremner david@tethera.net 2023-04-09T14:26:26Z urn:sha1:ec26eeaeec87781dee7dbf720103a5bc9b6bba5d We put some effort into testing the built copy rather than some installed copy. On the other hand for people like packagers, testing the installed copy is also of interest. When NOTMUCH_TEST_INSTALLED is set to a nonempty value, tests do not require a built notmuch tree or running configure. Some of the tests marked as broken when running against installed notmuch are probably fixable. test: compute expected keyid from fingerprint 2022-09-20T01:19:35Z Justus Winter justus@sequoia-pgp.org 2022-09-09T16:12:50Z urn:sha1:acb31939bb01b68dbcd90f6657f859ba35b74e7c emacs: use cached encoded copy for fcc 2022-01-26T11:22:09Z David Bremner david@tethera.net 2022-01-20T03:22:07Z urn:sha1:da302e1cbaaab89b2bbb32c0f59e1aa6ee708455 This fixes the bug reported by dkg in [1]. The movement of the call to n-m-setup-message-for-saving is so the cleanup of Fcc headers happens in the encoded version (otherwise Fcc headers may be saved to disk). [1]: id:87k1zm225v.fsf@fifthhorseman.net test/emacs: known broken test for matching fcc and sent message 2022-01-26T11:22:09Z David Bremner david@tethera.net 2022-01-20T01:23:30Z urn:sha1:8179c3d1146b6b19c64200f0617c4a1ba7588569 Based on the method outlined by Daniel Kahn Gillmor in id:87k1zm225v.fsf@fifthhorseman.net. With a delay of 0.2 seconds the test becomes flaky on my machine. With a 1 second delay it fails consistently for more than 1600 iterations. cli/show: produce "email" element in sigstatus 2021-06-26T16:07:47Z Daniel Kahn Gillmor dkg@fifthhorseman.net 2021-05-27T01:44:58Z urn:sha1:8c29a5da096b0314c6cca8889b740b79a9a548ed When the certificate that signs a message is known to be valid, GMime is capable of reporting on the e-mail address embedded in the certificate. We pass this information along to the caller of "notmuch show", as often only the e-mail address of the certificate has actually been checked/verified. Furthermore, signature verification should probably at some point compare the e-mail address of the caller against the sender address of the message itself. Having to parse what gmime thinks is a "userid" to extract an e-mail address seems clunky and unnecessary if gmime already thinks it knows what the e-mail address is. See id:878s41ax6t.fsf@fifthhorseman.net for more motivation and discussion. Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net> test: source $NOTMUCH_SRCDIR/test/test-lib-emacs.sh 2021-06-03T12:29:27Z Tomi Ollila tomi.ollila@iki.fi 2021-05-23T07:34:43Z urn:sha1:572af2795007464ffbf9cd4656e0e5736d78d362 Sourcing test-lib.sh will cd to TMP_DIRECTORY, so relative path in $0 will not work in previous version . $(dirname "$0")/test-lib-emacs.sh Now individual test scripts -- e.g. ./test/T310-emacs.sh will work. test: split emacs functionality to its own file 2021-05-17T10:29:04Z Felipe Contreras felipe.contreras@gmail.com 2021-05-15T20:47:44Z urn:sha1:92454bc0935604f4a623e75dec9506c0283eee70 This way it's easier to identify the tests that do require emacs stuff. Signed-off-by: Felipe Contreras <felipe.contreras@gmail.com> test: add external prereqs to many emacs tests 2021-05-02T00:15:27Z Felipe Contreras felipe.contreras@gmail.com 2021-05-01T11:54:16Z urn:sha1:fe9616aef19a1584de550ea536dfc7b42a13636a The tests fail otherwise. Signed-off-by: Felipe Contreras <felipe.contreras@gmail.com> cli/show: emit new whole-message crypto status output 2019-05-26T11:20:23Z Daniel Kahn Gillmor dkg@fifthhorseman.net 2019-05-25T18:04:06Z urn:sha1:4cb789aa090fb6ba3c7897584ecbcc0a547b2f81 This allows MUAs that don't want to think about per-mime-part cryptographic status to have a simple high-level overview of the message's cryptographic state. Sensibly structured encrypted and/or signed messages will work fine with this. The only requirement for the simplest encryption + signing is that the message have all of its encryption and signing protection (the "cryptographic envelope") in a contiguous set of MIME layers at the very outside of the message itself. This is because messages with some subparts signed or encrypted, but with other subparts with no cryptographic protection is very difficult to reason about, and even harder for the user to make sense of or work with. For further characterization of the Cryptographic Envelope and some of the usability tradeoffs, see here: https://dkg.fifthhorseman.net/blog/e-mail-cryptography.html#cryptographic-envelope test/crypto: add_gnupg_home should have ultimate trust on "its own" key 2019-05-07T09:42:21Z Daniel Kahn Gillmor dkg@fifthhorseman.net 2019-05-04T21:33:28Z urn:sha1:7d48604157477054624d010fca496f7eb0d1168b The typical use case for gpg is that if you control a secret key, you mark it with "ultimate" ownertrust. The opaque --import-ownertrust mechanism is GnuPG's standard mechanism to set up ultimate ownertrust (the ":6:" means "ultimate", for whatever reason). We adjust the test suite to match this change, inverting the sense of one test: since the default is now that the user ID of the suite's own key is valid, we change the test to make sure that the user ID is not emitted when it is *not* valid. Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>