IETF Logo Mail Archive

Re: [art] Argh!!!! onto https://www.rfc-editor.org/errata.php

Steffen Nurpmeso <steffen@sdaoden.eu> Thu, 21 March 2024 01:27 UTC

Return-Path: <steffen@sdaoden.eu>
X-Original-To: art@ietfa.amsl.com
Delivered-To: art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF1A3C14F68F for <art@ietfa.amsl.com>; Wed, 20 Mar 2024 18:27:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.104
X-Spam-Level:
X-Spam-Status: No, score=-7.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sdaoden.eu header.b="k8on6ANk"; dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=sdaoden.eu header.b="wVZJGt8M"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eqDvE0OIihZU for <art@ietfa.amsl.com>; Wed, 20 Mar 2024 18:27:27 -0700 (PDT)
Received: from sdaoden.eu (sdaoden.eu [217.144.132.164]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D1669C14F6B5 for <art@ietf.org>; Wed, 20 Mar 2024 18:27:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sdaoden.eu; s=citron; t=1710984429; x=1711651095; h=date:author:from:to:cc:subject: message-id:in-reply-to:references:mail-followup-to:openpgp:blahblahblah: mime-version:content-type:content-transfer-encoding:author:from:subject: date:to:cc:resent-date:resent-from:resent-to:resent-cc:in-reply-to: references:mime-version:content-type:content-transfer-encoding:message-id: mail-followup-to:openpgp:blahblahblah; bh=7lVG3fVpJsVe2WhYmNZ6uZDu0I3PW5yp8hns2t75s6U=; b=k8on6ANkja1dqVWnEbUor33O2v1Eu3yBVsEemieLoDKDteLE4CBOnoD5fGPt2iVWHbnn/VkG cnrlhcit9YOnhnpPSDzBhnI16WrncBjPn/Ze6aMcFKVa/Zcb1o4IlYGJKf/HtGtLjbOPmvqcMl Og7HsGdJci60uMSh3ciT8XDn3pgDxUHHEpb/N3s+6ah+0T0Sbr7JBWID3Cm74QOa5rVdVNVItS RbvF1JAXZfJ5lDiXYvXjpWm5ed5qRy8DymnmqrHVYNFQKzEHvrWB8IjJJgb7cMIxepvULUVXSk cNuwpZ5pTyYJyWMfZ+EQHl6Da9+TdVLAMApn40Em2aSiMhcQ==
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=sdaoden.eu; s=orange; t=1710984429; x=1711651095; h=date:author:from:to:cc:subject: message-id:in-reply-to:references:mail-followup-to:openpgp:blahblahblah: mime-version:content-type:content-transfer-encoding:author:from:subject: date:to:cc:resent-date:resent-from:resent-to:resent-cc:in-reply-to: references:mime-version:content-type:content-transfer-encoding:message-id: mail-followup-to:openpgp:blahblahblah; bh=7lVG3fVpJsVe2WhYmNZ6uZDu0I3PW5yp8hns2t75s6U=; b=wVZJGt8M3Zx5SbwPr//nUnA6DxT3RmL+K0ewA3+ru4Dxn0nyY45OCIZgmOwlvEFaGve02Ef5 kK6w3fxxwRLIAA==
Date: Thu, 21 Mar 2024 02:27:08 +0100
Author: Steffen Nurpmeso <steffen@sdaoden.eu>
From: Steffen Nurpmeso <steffen@sdaoden.eu>
To: "Murray S. Kucherawy" <superuser@gmail.com>
Cc: art@ietf.org
Message-ID: <20240321012708.2Jq8Gq5g@steffen%sdaoden.eu>
In-Reply-To: <CAL0qLwYMcUyeTQZZBbTGUEJSwh6uabTyY2cxP1QMEq76QFyhUQ@mail.gmail.com>
References: <20240320002926.rcYv_6Mc@steffen%sdaoden.eu> <CAL0qLwYMcUyeTQZZBbTGUEJSwh6uabTyY2cxP1QMEq76QFyhUQ@mail.gmail.com>
Mail-Followup-To: "Murray S. Kucherawy" <superuser@gmail.com>, art@ietf.org
User-Agent: s-nail v14.9.24-612-g7e3bfac540
OpenPGP: id=EE19E1C1F2F7054F8D3954D8308964B51883A0DD; url=https://ftp.sdaoden.eu/steffen.asc; preference=signencrypt
BlahBlahBlah: Any stupid boy can crush a beetle. But all the professors in the world can make no bugs.
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/art/FaSDlZQyCAs4W4YenXAfEYfe6FU>
Subject: Re: [art] Argh!!!! onto https://www.rfc-editor.org/errata.php
X-BeenThere: art@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Applications and Real-Time Area Discussion <art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/art>, <mailto:art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/art/>
List-Post: <mailto:art@ietf.org>
List-Help: <mailto:art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/art>, <mailto:art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Mar 2024 01:27:33 -0000

Murray S. Kucherawy wrote in
 <CAL0qLwYMcUyeTQZZBbTGUEJSwh6uabTyY2cxP1QMEq76QFyhUQ@mail.gmail.com>:
 |On Wed, Mar 20, 2024 at 10:30 AM Steffen Nurpmeso <steffen@sdaoden.eu>
 |wrote:
 |> WSP has to be replaced with "WSP, CR and LF", unless something
 |> more lengthy is desired.
 |
 |I concur with John, that CR and LF are gone in something that has already
 |been "unfolded", so this change wouldn't mean anything.

I do not, sorry.  In the meantime i made the great and posted an
errata.  It says

  Due to de-facto implementation practice, the term WSP of the
  following two items, as well as in the part that refers to after
  the separating colon (the field body) in the third, has to be
  interpreted differently, and must include all US-ASCII
  whitespace characters, namely %d9 (HT), %d10 (LF), %d11 (VT),
  %d12 (FF), %d12 (CR) as well as %d32 (SP) [?](the isspace(3) set
  of characters in the ISO C "C" locale)[/?]
  [rest unchanged]

and

  As written.  The behaviour *could* originate in a partial
  misunderstanding of the Sendmail milter protocol, which is often
  used to implement DKIM; this protocol *may* send header
  continuation lines separated by lone LF bytes, instead of CRLF.
  (Thanks to Claus Assmann of esmtp.org for this
  in-between-the-lines reading.)

 |Yes, there are some things in OpenDKIM that have to do with the way values
 |are passed in via the milter API, but the intent was to keep those inside
 |the filter code, separate from the library.  The library is supposed to be
 |generic.

I do not know about OpenDKIM, even though i had the tarball laying
around since some years.  (I have read the manual page, for
example.) I only grep(1)ped for canonicalization.

But regardless, the thing is that Google, Microsoft, "amavisd",
rspamd, they all require exactly this behaviour to make the
signature verify!  What do you mean by "generic"?

 |Btw, why does RFC 8601 refer to RFC 2045 *only* for the backing of
 |> authserv-id, as the field is not MIME encoded itself, is it (?),
 |> why is RFC 2045 "value" and "tspecials" any better than "specials"
 |> from RFC 5322 and obs-NO-WS-CTL (or what it actually is; atext?
 |> I just started with that) from the same document?
 |>
 |
 |It basically borrows ABNF tokens from RFC 2045 because we wanted to use the
 |same mechanisms for expressing and encoding values.  The field itself
 |doesn't need to be MIME encoded (whatever that means) to accomplish its
 |goals.

I meant content-transfer-encoded with this.
Ok, thank you.  Well, i extend my newly written, delicate RFC 5322
parser to parse structured headers as quoted-string OR phrase (or,
optionally, dot-atom-text instead of phrase).  This i will use for
my DKIM signer to parse A-R headers.  Doesn't mean a thing if
Microsoft generates A-R without any authserv-id, as posted on
-dkim, anyhow.

Thank you!

--steffen
|
|Der Kragenbaer,                The moon bear,
|der holt sich munter           he cheerfully and one by one
|einen nach dem anderen runter  wa.ks himself off
|(By Robert Gernhardt)

v2.23.0 | Report a Bug | By Email