DandelionNStuff/dkimpy-smtputf8
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

- Raise error when ARC signing if i= instance limit value of 50 is

Browse Source 
exceeded
This commit is contained in:
Scott Kitterman
2018-10-30 08:55:32 -04:00
parent cd0ebc1ecb
commit 82d01d8a42
2 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
ChangeLog
+2
View File
@@ -2,6 +2,8 @@ UNRELEASED Version 0.8.2
- Updates for experimental ARC support: - Updates for experimental ARC support:
- Limit to rsa-sha256, rsa-sha1 not used by ARC and multi-signature - Limit to rsa-sha256, rsa-sha1 not used by ARC and multi-signature
design TBD design TBD
- Raise error when ARC signing if i= instance limit value of 50 is
exceeded
- Fix DNS lookups to be compatible with EAI addresses in domains and - Fix DNS lookups to be compatible with EAI addresses in domains and
selectors (John Levine) selectors (John Levine)
- Add type Hinting for sign and verify functions (LP: #1782596) - Add type Hinting for sign and verify functions (LP: #1782596)
dkim/__init__.py
+3
View File
@@ -899,6 +899,7 @@ class ARC(DomainSigner):
def sign(self, selector, domain, privkey, srv_id, include_headers=None, def sign(self, selector, domain, privkey, srv_id, include_headers=None,
timestamp=None, standardize=False): timestamp=None, standardize=False):
INSTANCE_LIMIT = 50 # Maximum allowed i= value
# check if authres has been imported # check if authres has been imported
try: try:
AuthenticationResultsHeader AuthenticationResultsHeader
@@ -961,6 +962,8 @@ class ARC(DomainSigner):
instance = 1 instance = 1
if len(arc_headers_w_instance) != 0: if len(arc_headers_w_instance) != 0:
instance = max_instance + 1 instance = max_instance + 1
if instance > INSTANCE_LIMIT:
raise ParameterError("Maximum instance tag value exceeded")
if instance == 1 and chain_validation_status != CV_None: if instance == 1 and chain_validation_status != CV_None:
raise ParameterError("No existing chain found on message, cv should be none") raise ParameterError("No existing chain found on message, cv should be none")