Re: [Jmap] Roman Danyliw's No Objection on draft-ietf-jmap-sieve-20: (with COMMENT)
Ken Murchison <murch@fastmail.com> Thu, 04 April 2024 14:43 UTC
Return-Path: <murch@fastmail.com>
X-Original-To: jmap@ietfa.amsl.com
Delivered-To: jmap@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C1E20C14F68C; Thu, 4 Apr 2024 07:43:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.86
X-Spam-Level:
X-Spam-Status: No, score=-4.86 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-2.064, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fastmail.com header.b="k18SoGcL"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="Qo1kfCgR"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id edwuwyPEuBT4; Thu, 4 Apr 2024 07:43:29 -0700 (PDT)
Received: from fhigh4-smtp.messagingengine.com (fhigh4-smtp.messagingengine.com [103.168.172.155]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 11041C14F686; Thu, 4 Apr 2024 07:43:24 -0700 (PDT)
Received: from compute6.internal (compute6.nyi.internal [10.202.2.47]) by mailfhigh.nyi.internal (Postfix) with ESMTP id 4F51F11400D4; Thu, 4 Apr 2024 10:43:23 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163]) by compute6.internal (MEProxy); Thu, 04 Apr 2024 10:43:23 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fastmail.com; h= cc:cc:content-transfer-encoding:content-type:content-type:date :date:from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:subject:subject:to:to; s=fm2; t=1712241803; x=1712328203; bh=g1W/b8CI+A2gDJUep+HaOJTtED/x40cMZJLMt7c4IJg=; b= k18SoGcLEpzK7TMTOzStyGRZD78zVEb2rOTYwWaUlu0lVf+iTXpY0di/lkLhkFmw 73h2NqFNnY5VhWfefv9+Pq2eTSvVEuoyCkMfk+t7bXvDD2PBFpCF0l9CTUD8xjqz eq0UDpJimBtageXTS2c4x24fvgtwk+nJdsNwFME4pyQCp3ZbB5TER+Rs/egvSY+h V63l45msnl/2YkNR2geKcJwnuqiiAs3ZdMbiHn1HZDYsYnL4kM4wBeDNkPrc0Uab 3YpT+kQBTfzNbHWVlS5QTBsn6WJdsiW2e9l48DEayviRHKvpxAXiJyFhfM4k7hQM 7hffDSu7eHvQOLHW/HbAvg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:content-type:date:date:feedback-id:feedback-id :from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:subject:subject:to:to:x-me-proxy:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm2; t=1712241803; x= 1712328203; bh=g1W/b8CI+A2gDJUep+HaOJTtED/x40cMZJLMt7c4IJg=; b=Q o1kfCgRf4msbINUZmZgkS6VQdtqEUI9pbK+XK6QHu48+pINza1eJKfOX+Fmsur7n JWmbZeiI4E6GaTmqov5TE88Dk248C3Dkt1CUX2Q/ScHf94N8FGP4YpJlHKSvAvf5 8zRdZ99pGgJbCdymstq6h0y5VBrww2bFhVByaT8i8MOz1pQ1Si1aO0f7MgjM+9el s/ZxVfMN26PEQK85T+yc/htHkvaAp4/4bMI4gU4l0k3Efy0cxjaG5xuGLAqSRJ8a LWrWQsxu19w4AHshK8Q3aMY2XXTSymHMdmzq/sLPcN9ksf3Bh6MSZDyRRek2bYdf CZPTPvRXZ57ysmY55JMzA==
X-ME-Sender: <xms:i7wOZj2SXa0h5qJ_umEg18y9X6M3HW6khLXLmB6R_Lz7BgAjjTcxtA> <xme:i7wOZiEubOBsHk247wXyn2DGdc65KNgW4AOOugrC4mgnxy2J4CzJjwRAYO1Zx2RdD Q-rFYwKPbBgoQ>
X-ME-Received: <xmr:i7wOZj6iTdte0mg92ZyA-a4z3o9oTAAoM3nIy09-RDNptGT1B_62wlrKvC-sg71DMLKlpi_C6hqZy6rxxhp9HcFtSDv8_zMwvg>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvledrudefkedgkedtucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepkfffgggfuffvvehfhfgjtgfgsehtkeertddtfeejnecuhfhrohhmpefmvghn ucfouhhrtghhihhsohhnuceomhhurhgthhesfhgrshhtmhgrihhlrdgtohhmqeenucggtf frrghtthgvrhhnpedvteeuveekgefggffhgfegffehjeekjeethfetffejjeejuddvhfet jeeikeejleenucffohhmrghinhepihgvthhfrdhorhhgnecuvehluhhsthgvrhfuihiivg eptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhurhgthhesfhgrshhtmhgrihhlrdgt ohhm
X-ME-Proxy: <xmx:i7wOZo003bnD2I7AAeZ2meZ7NVFSh9Z8stFgRTUs_tZIOlf0b8agTw> <xmx:i7wOZmHSpdTY-l-N0yRBMq9nX1ImgGiq0v0N_hyjbcXovagAweyuCg> <xmx:i7wOZp9V8BWn60d6VlqCSalM8nRW5CPsHbmgMvbwE8yW0aBNPeaweQ> <xmx:i7wOZjngcodWXEKPR1vOt6IyA4Dq1uu-9RO5tqFwn4hEBlP3ou5-Jg> <xmx:i7wOZr4A-I49584U5nbHPUuQeqEeThbhWoshc8eIt_nIgVMz2imaAXJr>
Feedback-ID: ibf914243:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Thu, 4 Apr 2024 10:43:22 -0400 (EDT)
Message-ID: <2f25251e-98e9-b945-2b31-6635aa4968d5@fastmail.com>
Date: Thu, 04 Apr 2024 10:43:21 -0400
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.15.1
Content-Language: en-US
To: Roman Danyliw <rdd@cert.org>, The IESG <iesg@ietf.org>
Cc: draft-ietf-jmap-sieve@ietf.org, jmap-chairs@ietf.org, jmap@ietf.org, brong@fastmailteam.com
References: <171210659281.27279.17657686568767225883@ietfa.amsl.com>
From: Ken Murchison <murch@fastmail.com>
In-Reply-To: <171210659281.27279.17657686568767225883@ietfa.amsl.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/jmap/8izwG3lLOrnBUMlzZT_tLU3czcw>
Subject: Re: [Jmap] Roman Danyliw's No Objection on draft-ietf-jmap-sieve-20: (with COMMENT)
X-BeenThere: jmap@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: JSON Message Access Protocol <jmap.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jmap>, <mailto:jmap-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jmap/>
List-Post: <mailto:jmap@ietf.org>
List-Help: <mailto:jmap-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jmap>, <mailto:jmap-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Apr 2024 14:43:33 -0000
Hi Roman, Thanks for the review. Responses inline. On 4/2/24 9:09 PM, Roman Danyliw via Datatracker wrote: > Roman Danyliw has entered the following ballot position for > draft-ietf-jmap-sieve-20: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ > for more information about how to handle DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-jmap-sieve/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Thank you to Ines Robles for the GENART review. > > ** Section 1.2.1 > > The maximum length, in (UTF-8) octets, allowed for the name of a > SieveScript. For compatibility with ManageSieve, this MUST be at > least 512 (up to 128 Unicode characters). > > What’s a “(UTF-8) octet” as opposed to just a “octet”? I removed "(UTF-8)" since all of JMAP is UTF-8. > ** Section 2.1 > For > compatibility with ManageSieve, servers MUST reject names that > contain control characters > > What is the definition of “control characters”? Recommend either citing > Section 1.6 of RFC5804 or repeating the guidance here. I have listed the prohibited characters per your suggestion. > ** Section 2.4 > If the id is either illegal or nonexistent, it MUST be ignored and > the currently active SieveScript (if any) will remain as such. > > Is an “illegal” id the same as “invalid”? That might be clearer. I changed "illegal" to "invalid" as suggested. > ** Section 2.6 and 5. The SieveScript validation would appear to require the > serve to parse and validate the provided SieveScript. Section 5 cites the > security considerations of RFC5804 and RFC8620. The latter has Section 8.4 > which discusses the considerations for JSON processing. Is there an equivalent > for a Sieve script (which is not JSON). I added the following paragraph: Additionally, implementations MUST treat Sieve script content as untrusted data. As such, script parsers MUST fail gracefully in the face of syntactically invalid or malicious content and MUST be prepared to deal with resource exhaustion (E.g., allocation of enormous strings, lists, or command blocks). -- Kenneth Murchison Senior Software Developer Fastmail US LLC
- [Jmap] Roman Danyliw's No Objection on draft-ietf… Roman Danyliw via Datatracker
- Re: [Jmap] Roman Danyliw's No Objection on draft-… Ken Murchison
- Re: [Jmap] Roman Danyliw's No Objection on draft-… Roman Danyliw