From: Simon Josefsson <simon@josefsson.org>
To: emacs-devel@gnu.org, ding@gnus.org, Kenichi Handa <handa@m17n.org>
Subject: rfc2104 change on 2008-02-01
Date: Fri, 25 Apr 2008 12:42:36 +0200 [thread overview]
Message-ID: <87iqy6cj1f.fsf@mocca.josefsson.org> (raw)
Hi.
I have tracked down a problem sending authenticated e-mail that resulted
in randomly failed CRAM-MD5 authentication (it sometimes work, usually
after 2-3 retries). The cause is:
2008-02-01 Kenichi Handa <handa@m17n.org>
* rfc2104.el (rfc2104-hexstring-to-byte-list): Renamed from
rfc2104-hexstring-to-bitstring and changed to return a byte list.
(rfc2104-hash): Convert the result of concat to unibyte string.
The significant patch is:
- (funcall hash (concat k_opad (rfc2104-hexstring-to-bitstring
- ;; perform inner hash
- (funcall hash (concat k_ipad text)))))))
+ (funcall hash
+ (encode-coding-string
+ (concat k_opad (rfc2104-hexstring-to-byte-list
+ ;; perform inner hash
+ (funcall hash (concat k_ipad text))))
+ 'iso-latin-1))))
The data to be hashed contains binary data, printed it just looks like
garbage. Presumably, the reason the operation fails is because it can't
be encoded into latin-1 which as far as I recall have some reserved
parts. This would be consistent with only happening sometimes, since it
may happen that a string doesn't contain any reserved characters.
I have experimented with fixes, and changed the 'iso-latin-1 to 'binary
and that appears to work.
There is nothing iso-latin-1 specific about CRAM-MD5 so if that is the
right thing, I think there should be a comment to explain why.
Handa, could you explain the motivation for this change?
To resolve it, we can chose:
1) Revert the patch.
2) Change 'iso-latin-1 to 'binary.
There may be other options too.
I propose to change it to 'binary if I don't hear anything.
If there were mailing list discussions about this, I'd appreciate a
pointer to that. I don't think I was cc'ed, and I couldn't find any
discussion now that I search for it.
Thoughts?
Thanks,
Simon
next reply other threads:[~2008-04-25 10:42 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-04-25 10:42 Simon Josefsson [this message]
2008-04-25 11:37 ` Reiner Steib
2008-04-25 13:40 ` Simon Josefsson
2008-04-25 16:03 ` Thien-Thi Nguyen
2008-04-25 14:28 ` Stefan Monnier
2008-04-26 6:59 ` Gabor Z. Papp
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=87iqy6cj1f.fsf@mocca.josefsson.org \
--to=simon@josefsson.org \
--cc=ding@gnus.org \
--cc=emacs-devel@gnu.org \
--cc=handa@m17n.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).