Server IP : 85.214.239.14 / Your IP : 18.191.150.83 Web Server : Apache/2.4.62 (Debian) System : Linux h2886529.stratoserver.net 4.9.0 #1 SMP Tue Jan 9 19:45:01 MSK 2024 x86_64 User : www-data ( 33) PHP Version : 7.4.18 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, MySQL : OFF | cURL : OFF | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : OFF Directory : /usr/share/perl5/Mail/DKIM/Canonicalization/ |
Upload File : |
package Mail::DKIM::Canonicalization::seal; use strict; use warnings; our $VERSION = '1.20230212'; # VERSION # ABSTRACT: arc seal canonicalization # Copyright 2017 FastMail Pty Ltd. All Rights Reserved. # Bron Gondwana <brong@fastmailteam.com> # This program is free software; you can redistribute it and/or # modify it under the same terms as Perl itself. # This canonicalization is for the ARC-Seal header from # https://tools.ietf.org/html/draft-ietf-dmarc-arc-protocol-06 # Rather than having a 'h' property, it processes the headers in # a pre-defined way. # # 5.1.1.3. Deterministic (Implicit) 'h' Tag Value for ARC-Seal # # In this section, the term "scope" is used to indicate those header # fields signed by an ARC-Seal header field. A number in parentheses # indicates the instance of that field, starting at 1. The suffix "- # no-b" is used with an ARC-Seal field to indicate that its "b" field # is empty at the time the signature is computed, as described in # Section 3.5 of [RFC6376]. "AAR" refers to ARC-Authentication- # Results, "AMS" to ARC-Message-Signature, "AS" to ARC-Seal, and "ASB" # to an ARC-Seal with an empty "b" tag. # # Generally, the scope of an ARC set for a message containing "n" ARC # sets is the concatenation of the following, for x (instance number) # from 1 to n: # # o AAR(x); # # o AMS(x); # # o ASB(x) if x = n, else AS(x) # # Thus for a message with no seals (i.e., upon injection), the scope of # the first ARC set is AAR(1):AMS(1):ASB(1). The ARC set thus # generated would produce a first ARC-Seal with a "b" value. The next # ARC set would include in its signed content the prior scope, so it # would have a scope of AAR(1):AMS(1):AS(1):AAR(2):AMS(2):ASB(2). # # Note: Typically header field sets appear within the header in # descending instance order. use base 'Mail::DKIM::Canonicalization::relaxed'; use Carp; sub init { my $self = shift; $self->SUPER::init; } sub _output_indexed_header { my ( $self, $headers, $h, $i ) = @_; foreach my $hdr (@$headers) { # this ugly pattern matches header: field; field; ... i=N next unless $hdr =~ m/^$h:\s*(?:[^;]*;\s*)*i=(\d+)/i and $1 == $i; $hdr =~ s/\015\012\z//s; $self->output( $self->canonicalize_header($hdr) . "\015\012" ); return; } } sub finish_header { my $self = shift; my %args = @_; my $i = $self->{Signature}->identity(); return unless $i =~ m{^\d+$}; # don't waste time if i= is bogus my $chain = $args{Chain}; $chain = $self->{Signature}->chain() if ! defined $chain; # we include the seal for everything else # if the previous status was pass if ( $chain eq 'pass' ) { foreach my $n ( 1 .. ( $i - 1 ) ) { $self->_output_indexed_header( $args{Headers}, 'ARC-Authentication-Results', $n ); $self->_output_indexed_header( $args{Headers}, 'ARC-Message-Signature', $n ); $self->_output_indexed_header( $args{Headers}, 'ARC-Seal', $n ); } } # always include this header set $self->_output_indexed_header( $args{Headers}, 'ARC-Authentication-Results', $i ); $self->_output_indexed_header( $args{Headers}, 'ARC-Message-Signature', $i ); # we don't add ARC-Seal at our index, because that is this signature, and it's # formed with standard DKIM style, so automatically appeneded } sub add_body { # no body add } 1; __END__ =pod =encoding UTF-8 =head1 NAME Mail::DKIM::Canonicalization::seal - arc seal canonicalization =head1 VERSION version 1.20230212 =head1 AUTHORS =over 4 =item * Jason Long <jason@long.name> =item * Marc Bradshaw <marc@marcbradshaw.net> =item * Bron Gondwana <brong@fastmailteam.com> (ARC) =back =head1 THANKS Work on ensuring that this module passes the ARC test suite was generously sponsored by Valimail (https://www.valimail.com/) =head1 COPYRIGHT AND LICENSE =over 4 =item * Copyright (C) 2013 by Messiah College =item * Copyright (C) 2010 by Jason Long =item * Copyright (C) 2017 by Standcore LLC =item * Copyright (C) 2020 by FastMail Pty Ltd =back This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself, either Perl version 5.8.6 or, at your option, any later version of Perl 5 you may have available. =cut