[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: GnuPG and trailing whitespace handling

To: jcallas@xxxxxxx (Jon Callas)
Subject: Re: GnuPG and trailing whitespace handling
From: ulf@xxxxxxxx (Ulf Möller)
Date: Sun, 14 Feb 1999 01:24:51 +0100 (MET)
Cc: ietf-open-pgp@xxxxxxx
In-reply-to: <3.0.3.32.19990212162725.03ec1110@xxxxxxxxxxxx> from "Jon Callas" at Feb 12, 99 04:27:25 pm
List-archive: <http://www.imc.org/ietf-open-pgp/mail-archive/>
List-unsubscribe: <mailto:ietf-open-pgp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-open-pgp@xxxxxxx

> When you receive a message, don't go interpreting it. Do nothing. Compute
> the signature. In the case where you have a non-blank-trimmed literal
> packet, don't even look for the flaw here.

It is not that simple for detached signatures (a detached signature is
one where the PGP message consists of the signature packet only and
the signed text is specified externally). When you verify a detached
text-mode signature, you *have to* convert the text to canonical
format first. And, conversely, when you generate a detached signature,
modifying the original file usually is not an option.

> It's my opinion that if a 2440 application wants to send a textmode message
> with trailing blanks then the obvious, right way to do it is to put a
> binarymode signature after the textmode literal.

RFC 2440 doesn't expressly say whether or not you can do that, but as
far as I remember, PGP just throws funny error messages at you when
you try it.

References:
- Re: GnuPG and trailing whitespace handling
  - From: Jon Callas

Prev by Date: Re: GnuPG and trailing whitespace handling
Next by Date: Abandon e-mail and go to direct connections?
Previous by thread: Re: GnuPG and trailing whitespace handling
Next by thread: Re: GnuPG and trailing whitespace handling
Index(es):
- Date
- Thread