[PATCH v2 1/4] cli/crypto: treat failure to create a crypto context as fatal.

Subject: [PATCH v2 1/4] cli/crypto: treat failure to create a crypto context as fatal.

Date: Sun, 16 Jul 2017 01:01:43 +0200

To: Notmuch Mail

Cc:

From: Daniel Kahn Gillmor

From: David Bremner <david@tethera.net>

Silently ignoring signed/encrypted parts seems like the wrong idea,
and it also complicates future gmime-3.0 compatibility changes.
---
 mime-node.c | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/mime-node.c b/mime-node.c
index f719422e..7363e222 100644
--- a/mime-node.c
+++ b/mime-node.c
@@ -245,10 +245,12 @@ _mime_node_create (mime_node_t *parent, GMimeObject *part)
 	GMimeContentType *content_type = g_mime_object_get_content_type (part);
 	const char *protocol = g_mime_content_type_get_parameter (content_type, "protocol");
 	cryptoctx = notmuch_crypto_get_context (node->ctx->crypto, protocol);
+	if (!cryptoctx)
+	    return NULL;
     }
 
     /* Handle PGP/MIME parts */
-    if (GMIME_IS_MULTIPART_ENCRYPTED (part) && node->ctx->crypto->decrypt && cryptoctx) {
+    if (GMIME_IS_MULTIPART_ENCRYPTED (part) && node->ctx->crypto->decrypt) {
 	if (node->nchildren != 2) {
 	    /* this violates RFC 3156 section 4, so we won't bother with it. */
 	    fprintf (stderr, "Error: %d part(s) for a multipart/encrypted "
@@ -257,7 +259,7 @@ _mime_node_create (mime_node_t *parent, GMimeObject *part)
 	} else {
 	    node_decrypt_and_verify (node, part, cryptoctx);
 	}
-    } else if (GMIME_IS_MULTIPART_SIGNED (part) && node->ctx->crypto->verify && cryptoctx) {
+    } else if (GMIME_IS_MULTIPART_SIGNED (part) && node->ctx->crypto->verify) {
 	if (node->nchildren != 2) {
 	    /* this violates RFC 3156 section 5, so we won't bother with it. */
 	    fprintf (stderr, "Error: %d part(s) for a multipart/signed message "
-- 
2.13.2

• Previous message (by thread): Re: [PATCH v2 1/4] cli/crypto: treat failure to create a crypto context as fatal.

Thread:

• David Bremner— [inbox, unread]
  • David Bremner—[PATCH 01/23] emacs: convert to use format-version 3 [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 02/23] devel/schemata: describe version 4 [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 03/23] cli: implement structured output version 4 [inbox, notmuch::patch, notmuch::pushed, unread]
    • David Bremner—Re: [PATCH 03/23] cli: implement structured output version 4 [inbox, unread]
  • David Bremner—[PATCH 04/23] test/multipart: reorganize creation of multipart message [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 05/23] test: mark inclusion of headers as broken in gmime-2.x [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 06/23] test: mark test as broken in gmime 3.0 [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 07/23] test/crypto: mark extra space in userid as a bug in gmime-2.6 [inbox, notmuch::patch, notmuch::pushed, unread]
    • Tomi Ollila—Re: [PATCH 07/23] test/crypto: mark extra space in userid as a bug in gmime-2.6 [inbox, unread]
      • Daniel Kahn Gillmor—Re: [PATCH 07/23] test/crypto: mark extra space in userid as a bug in gmime-2.6 [inbox, signed, unread]
  • David Bremner—[PATCH 08/23] test: add test for modified pgp/mime signed message [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 09/23] test/crypto: add test for corrupted signatures [inbox, notmuch::patch, notmuch::pushed, unread]
    • David Bremner—Re: [PATCH 09/23] test/crypto: add test for corrupted signatures [inbox, signed, unread]
  • David Bremner—[PATCH 10/23] test: test parsing of malformed from addresses [inbox, notmuch::patch, notmuch::wontfix, unread]
  • David Bremner—[PATCH 11/23] cli: replace use of g_mime_message_get_date_as_string [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 12/23] cli: replace use of g_mime_message_get_reply_to [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 13/23] lib/cli: replace use of g_mime_message_get_sender [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 14/23] cli: replace use of g_mime_message_get_recipients [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 15/23] util: fake gmime-2.6 compatible API for gmime-3.0 [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 16/23] cli: generalize use of GMIME_SIGNATURE_{ERROR, STATUS} to gmime-3 [inbox, notmuch::patch, notmuch::pushed, unread]
    • Daniel Kahn Gillmor—Re: [PATCH 16/23] cli: generalize use of GMIME_SIGNATURE_{ERROR, STATUS} to gmime-3 [inbox, unread]
  • David Bremner—[PATCH 17/23] cli: hide rename of GMimeCertificateTrust [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 18/23] lib: wrap use of g_mime_utils_header_decode_date [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 19/23] lib: refactor _notmuch_messsage_file_get_combined_header [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 20/23] lib: add version of _n_m_f_get_combinded_header for gmime 3.0 [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 21/23] lib: paper over allocation difference [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 22/23] cli: make keyid from fingerprint in gmime 3.0 [inbox, notmuch::patch, notmuch::pushed, unread]
  • David Bremner—[PATCH 23/23] cli: wrap getting uid [inbox, notmuch::patch, notmuch::pushed, unread]
    • Daniel Kahn Gillmor—[PATCH 1/3] config: deprecate/drop crypto.gpg_path under gmime 2.6/3.0 [inbox, notmuch::patch, notmuch::pushed, unread]
      • Daniel Kahn Gillmor—[PATCH 2/3] clean up use of constants in g_mime_multipart_ wrappers [inbox, notmuch::patch, notmuch::pushed, unread]
      • Daniel Kahn Gillmor—[PATCH 3/3] crypto: Avoid explicit handling of GMimeCryptoContext in gmime 3.0 [inbox, notmuch::obsolete, notmuch::patch, unread]
        • David Bremner—Re: [PATCH 3/3] crypto: Avoid explicit handling of GMimeCryptoContext in gmime 3.0 [inbox, unread]
        • David Bremner—[PATCH 1/4] cli/crypto: treat failure to create a crypto context as fatal. [inbox, notmuch::obsolete, notmuch::patch, unread]
          • David Bremner—[PATCH 2/4] cli/crypto: eliminated compiler warnings about unused arguments [inbox, notmuch::obsolete, notmuch::patch, unread]
          • David Bremner—[PATCH 3/4] crypto: Avoid explicit handling of GMimeCryptoContext in gmime 3 [inbox, notmuch::obsolete, notmuch::patch, unread]
            • Daniel Kahn Gillmor—Re: [PATCH 3/4] crypto: Avoid explicit handling of GMimeCryptoContext in gmime 3 [inbox, signed, unread]
              • Daniel Kahn Gillmor—[PATCH v2 1/4] cli/crypto: treat failure to create a crypto context as fatal. [inbox, notmuch::patch, notmuch::pushed, unread]
                • Daniel Kahn Gillmor—[PATCH v2 2/4] cli/crypto: eliminated compiler warnings about unused arguments [inbox, notmuch::patch, notmuch::pushed, unread]
                • Daniel Kahn Gillmor—[PATCH v2 3/4] crypto: Avoid explicit handling of GMimeCryptoContext in gmime 3 [inbox, notmuch::patch, notmuch::pushed, unread]
                • Daniel Kahn Gillmor—[PATCH v2 4/4] crypto: clean up unused definitions in gmime 3.0 [inbox, notmuch::patch, notmuch::pushed, unread]
                • David Bremner—Re: [PATCH v2 1/4] cli/crypto: treat failure to create a crypto context as fatal. [inbox, unread]
          • David Bremner—[PATCH 4/4] crypto: clean up unused definitions in gmime 3.0 [inbox, notmuch::obsolete, notmuch::patch, unread]
      • Daniel Kahn Gillmor—Re: [PATCH 1/3] config: deprecate/drop crypto.gpg_path under gmime 2.6/3.0 [inbox, signed, unread]