Header protection / memoryhole [was: Re: Header encryption / memoryhole]
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Sun Apr 8 14:18:34 PDT 2018
On Mon 2018-04-02 18:58:28 +0200, Varac wrote:
> I'd like to know the state of header encryption support for
> notmuch (aka memoryhole) [1].
"memoryhole" refers to "protected headers", not just encrypted headers.
That is, the headers can be protected both by cryptographic signature
*and* by encryption. This is a subtlety, but probably worth getting
right as we work on documentation and implementations.
This is on my list of things to work on for notmuch, but i'd be happy if
someone else beat me to it. clearly i've taken too long to get this
done.
fwiw, memory-hole messages do display successfully in all versions of
notmuch i'm aware of, but they do so by rendering the "force-display"
part. so notmuch currently uses the fallback arrangements as explicitly
intended by the original memoryhole draft.
as i see it, the steps are (in order):
* handle encrypted subject correctly during message display time if the
message is being decrypted.
* handle encrypted subject specifically during message decryption at
indexing time, storing it the correct subject field, instead of
storing the "outside" subject.
* suppress display of any "force-display" part during message display
time.
* handle any other cryptographically-protected headers during display
and indexing.
* generate protected headers when encrypting mail.
i welcome help with any of these steps :)
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <http://notmuchmail.org/pipermail/notmuch/attachments/20180408/041eeed7/attachment.sig>
More information about the notmuch
mailing list