From unknown Tue Aug 19 18:20:07 2025 X-Loop: help-debbugs@gnu.org Subject: bug#43421: Encoding issue in exported archive signatures Resent-From: Ludovic =?UTF-8?Q?Court=C3=A8s?= Original-Sender: "Debbugs-submit" Resent-CC: bug-guix@gnu.org Resent-Date: Tue, 15 Sep 2020 12:19:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: report 43421 X-GNU-PR-Package: guix X-GNU-PR-Keywords: To: 43421@debbugs.gnu.org X-Debbugs-Original-To: Received: via spool by submit@debbugs.gnu.org id=B.16001723186688 (code B ref -1); Tue, 15 Sep 2020 12:19:02 +0000 Received: (at submit) by debbugs.gnu.org; 15 Sep 2020 12:18:38 +0000 Received: from localhost ([127.0.0.1]:57571 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kI9uv-0001jo-Ti for submit@debbugs.gnu.org; Tue, 15 Sep 2020 08:18:38 -0400 Received: from lists.gnu.org ([209.51.188.17]:47028) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kI9uu-0001jh-Mq for submit@debbugs.gnu.org; Tue, 15 Sep 2020 08:18:37 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:49322) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kI9ut-00055P-1p for bug-guix@gnu.org; Tue, 15 Sep 2020 08:18:36 -0400 Received: from mail2-relais-roc.national.inria.fr ([192.134.164.83]:45495) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kI9un-0000Ms-23 for bug-guix@gnu.org; Tue, 15 Sep 2020 08:18:34 -0400 X-IronPort-AV: E=Sophos;i="5.76,359,1592863200"; d="scan'208";a="467765340" Received: from 91-160-117-201.subs.proxad.net (HELO ribbon) ([91.160.117.201]) by mail2-relais-roc.national.inria.fr with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 15 Sep 2020 14:18:27 +0200 From: Ludovic =?UTF-8?Q?Court=C3=A8s?= X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 30 Fructidor an 228 de la =?UTF-8?Q?R=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Tue, 15 Sep 2020 14:18:17 +0200 Message-ID: <877dsvi67q.fsf@inria.fr> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Received-SPF: pass client-ip=192.134.164.83; envelope-from=ludovic.courtes@inria.fr; helo=mail2-relais-roc.national.inria.fr X-detected-operating-system: by eggs.gnu.org: First seen = 2020/09/15 08:18:27 X-ACL-Warn: Detected OS = ??? X-Spam_score_int: -68 X-Spam_score: -6.9 X-Spam_bar: ------ X-Spam_report: (-6.9 / 5.0 requ) BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-Spam-Score: -1.3 (-) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -2.3 (--) Following the =E2=80=98guix authenticate=E2=80=99 in commit 64cf660f872fb7aaf0d2b463e45b4c756297f743=C2=B9, I=E2=80=99m observing encod= ing issues: guix archive --export \ /gnu/store/3p5wcw2a0844rbcmlrqfjx8bx7b7gq34-r-rvest-0.3.6-guile-builder yield an archive with this signature: --8<---------------cut here---------------start------------->8--- (signature (data (flags rfc6979) (hash sha256 #1DEE0418AF5FD8A05D2142290BA03735176FA27BB68B3A02977C774EA3D= BDAEC#) ) (sig-val (ecdsa (r #072B8E5C6B84D4ED469EC2CF63103621602E9AF3902E454CAD49CFA6BDE2FBF0#) (s "~%*=C3=98w2%YZ=C2=BB+yvc*=C2=A4=C3=8C44C;RM\t3EQIp<=C3=BC") ) ) (public-key (ecc (curve Ed25519) (q #8D156F295D24B0D9A86FA5741A840FF2D24F60F7B6C4134814AD55625971B394#) ) ) ) --8<---------------cut here---------------end--------------->8--- Notice the =E2=80=98s=E2=80=99 field of the signature. The problem does not occur systematically: it depends on the byte string (libgcrypt encodes Latin-1ish strings as strings and other strings as hex sequences.) The problem is similar to . The interesting bit is that this archive can be correctly ingested by a new daemon, but it fails signature verification with an older daemon. Ludo=E2=80=99. =C2=B9 https://issues.guix.gnu.org/43340 From unknown Tue Aug 19 18:20:07 2025 MIME-Version: 1.0 X-Mailer: MIME-tools 5.505 (Entity 5.505) X-Loop: help-debbugs@gnu.org From: help-debbugs@gnu.org (GNU bug Tracking System) To: Ludovic =?UTF-8?Q?Court=C3=A8s?= Subject: bug#43421: closed (Re: bug#43421: Encoding issue in exported archive signatures) Message-ID: References: <87pn6nrqqn.fsf@gnu.org> <877dsvi67q.fsf@inria.fr> X-Gnu-PR-Message: they-closed 43421 X-Gnu-PR-Package: guix Reply-To: 43421@debbugs.gnu.org Date: Tue, 15 Sep 2020 15:43:01 +0000 Content-Type: multipart/mixed; boundary="----------=_1600184581-14769-1" This is a multi-part message in MIME format... ------------=_1600184581-14769-1 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset="utf-8" Your bug report #43421: Encoding issue in exported archive signatures which was filed against the guix package, has been closed. The explanation is attached below, along with your original report. If you require more details, please reply to 43421@debbugs.gnu.org. --=20 43421: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=3D43421 GNU Bug Tracking System Contact help-debbugs@gnu.org with problems ------------=_1600184581-14769-1 Content-Type: message/rfc822 Content-Disposition: inline Content-Transfer-Encoding: 7bit Received: (at 43421-done) by debbugs.gnu.org; 15 Sep 2020 15:42:58 +0000 Received: from localhost ([127.0.0.1]:60320 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kID6S-0003pf-IV for submit@debbugs.gnu.org; Tue, 15 Sep 2020 11:42:58 -0400 Received: from eggs.gnu.org ([209.51.188.92]:42638) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kID6R-0003pS-1O for 43421-done@debbugs.gnu.org; Tue, 15 Sep 2020 11:42:43 -0400 Received: from fencepost.gnu.org ([2001:470:142:3::e]:47642) by eggs.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1kID6L-00057M-AL for 43421-done@debbugs.gnu.org; Tue, 15 Sep 2020 11:42:37 -0400 Received: from [2a01:e0a:1d:7270:af76:b9b:ca24:c465] (port=37392 helo=ribbon) by fencepost.gnu.org with esmtpsa (TLS1.2:RSA_AES_256_CBC_SHA1:256) (Exim 4.82) (envelope-from ) id 1kID6J-0005G1-Ba for 43421-done@debbugs.gnu.org; Tue, 15 Sep 2020 11:42:35 -0400 From: =?utf-8?Q?Ludovic_Court=C3=A8s?= To: 43421-done@debbugs.gnu.org Subject: Re: bug#43421: Encoding issue in exported archive signatures References: <877dsvi67q.fsf@inria.fr> Date: Tue, 15 Sep 2020 17:42:24 +0200 In-Reply-To: <877dsvi67q.fsf@inria.fr> ("Ludovic =?utf-8?Q?Court=C3=A8s=22?= =?utf-8?Q?'s?= message of "Tue, 15 Sep 2020 14:18:17 +0200") Message-ID: <87pn6nrqqn.fsf@gnu.org> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Spam-Score: -2.3 (--) X-Debbugs-Envelope-To: 43421-done X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -1.0 (-) Hi, Ludovic Court=C3=A8s skribis: > Following the =E2=80=98guix authenticate=E2=80=99 in commit > 64cf660f872fb7aaf0d2b463e45b4c756297f743=C2=B9, I=E2=80=99m observing enc= oding > issues: > > guix archive --export \ > /gnu/store/3p5wcw2a0844rbcmlrqfjx8bx7b7gq34-r-rvest-0.3.6-guile-build= er > > yield an archive with this signature: > > (signature > (data > (flags rfc6979) > (hash sha256 #1DEE0418AF5FD8A05D2142290BA03735176FA27BB68B3A02977C774EA= 3DBDAEC#) > ) > (sig-val > (ecdsa > (r #072B8E5C6B84D4ED469EC2CF63103621602E9AF3902E454CAD49CFA6BDE2FBF0#) > (s "~%*=C3=98w2%YZ=C2=BB+yvc*=C2=A4=C3=8C44C;RM\t3EQIp<=C3=BC") > ) > ) > (public-key > (ecc > (curve Ed25519) > (q #8D156F295D24B0D9A86FA5741A840FF2D24F60F7B6C4134814AD55625971B394#) > ) > ) > ) > > Notice the =E2=80=98s=E2=80=99 field of the signature. > > The problem does not occur systematically: it depends on the byte string > (libgcrypt encodes Latin-1ish strings as strings and other strings as > hex sequences.) The problem is similar to . Fixed in b911d6547444b5f8d17b224bafa5ee1b5aafaff5! > The interesting bit is that this archive can be correctly ingested by a > new daemon, but it fails signature verification with an older daemon. This is because when using the new daemon on both sides, we were encoding/decoding strings as UTF-8, which made no sense but worked well. Older implementations rightfully expect =E2=80=9Craw strings=E2=80=9D aka. ISO-8859-1. Ludo=E2=80=99. ------------=_1600184581-14769-1 Content-Type: message/rfc822 Content-Disposition: inline Content-Transfer-Encoding: 7bit Received: (at submit) by debbugs.gnu.org; 15 Sep 2020 12:18:38 +0000 Received: from localhost ([127.0.0.1]:57571 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kI9uv-0001jo-Ti for submit@debbugs.gnu.org; Tue, 15 Sep 2020 08:18:38 -0400 Received: from lists.gnu.org ([209.51.188.17]:47028) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1kI9uu-0001jh-Mq for submit@debbugs.gnu.org; Tue, 15 Sep 2020 08:18:37 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]:49322) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kI9ut-00055P-1p for bug-guix@gnu.org; Tue, 15 Sep 2020 08:18:36 -0400 Received: from mail2-relais-roc.national.inria.fr ([192.134.164.83]:45495) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1kI9un-0000Ms-23 for bug-guix@gnu.org; Tue, 15 Sep 2020 08:18:34 -0400 X-IronPort-AV: E=Sophos;i="5.76,359,1592863200"; d="scan'208";a="467765340" Received: from 91-160-117-201.subs.proxad.net (HELO ribbon) ([91.160.117.201]) by mail2-relais-roc.national.inria.fr with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 15 Sep 2020 14:18:27 +0200 From: =?utf-8?Q?Ludovic_Court=C3=A8s?= To: Subject: Encoding issue in exported archive signatures X-URL: http://www.fdn.fr/~lcourtes/ X-Revolutionary-Date: 30 Fructidor an 228 de la =?utf-8?Q?R=C3=A9volution?= X-PGP-Key-ID: 0x090B11993D9AEBB5 X-PGP-Key: http://www.fdn.fr/~lcourtes/ludovic.asc X-PGP-Fingerprint: 3CE4 6455 8A84 FDC6 9DB4 0CFB 090B 1199 3D9A EBB5 X-OS: x86_64-pc-linux-gnu Date: Tue, 15 Sep 2020 14:18:17 +0200 Message-ID: <877dsvi67q.fsf@inria.fr> User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Received-SPF: pass client-ip=192.134.164.83; envelope-from=ludovic.courtes@inria.fr; helo=mail2-relais-roc.national.inria.fr X-detected-operating-system: by eggs.gnu.org: First seen = 2020/09/15 08:18:27 X-ACL-Warn: Detected OS = ??? X-Spam_score_int: -68 X-Spam_score: -6.9 X-Spam_bar: ------ X-Spam_report: (-6.9 / 5.0 requ) BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-Spam-Score: -1.3 (-) X-Debbugs-Envelope-To: submit X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: debbugs-submit-bounces@debbugs.gnu.org Sender: "Debbugs-submit" X-Spam-Score: -2.3 (--) Following the =E2=80=98guix authenticate=E2=80=99 in commit 64cf660f872fb7aaf0d2b463e45b4c756297f743=C2=B9, I=E2=80=99m observing encod= ing issues: guix archive --export \ /gnu/store/3p5wcw2a0844rbcmlrqfjx8bx7b7gq34-r-rvest-0.3.6-guile-builder yield an archive with this signature: --8<---------------cut here---------------start------------->8--- (signature (data (flags rfc6979) (hash sha256 #1DEE0418AF5FD8A05D2142290BA03735176FA27BB68B3A02977C774EA3D= BDAEC#) ) (sig-val (ecdsa (r #072B8E5C6B84D4ED469EC2CF63103621602E9AF3902E454CAD49CFA6BDE2FBF0#) (s "~%*=C3=98w2%YZ=C2=BB+yvc*=C2=A4=C3=8C44C;RM\t3EQIp<=C3=BC") ) ) (public-key (ecc (curve Ed25519) (q #8D156F295D24B0D9A86FA5741A840FF2D24F60F7B6C4134814AD55625971B394#) ) ) ) --8<---------------cut here---------------end--------------->8--- Notice the =E2=80=98s=E2=80=99 field of the signature. The problem does not occur systematically: it depends on the byte string (libgcrypt encodes Latin-1ish strings as strings and other strings as hex sequences.) The problem is similar to . The interesting bit is that this archive can be correctly ingested by a new daemon, but it fails signature verification with an older daemon. Ludo=E2=80=99. =C2=B9 https://issues.guix.gnu.org/43340 ------------=_1600184581-14769-1--