2009-05-22: Jason Long <jlong@messiah.edu>
* t/signer.t: add a test-case of a message with 10000's of blank
lines; this seems to DoS the canonicalization routines
* lib/Mail/DKIM/Canonicalization/{simple,relaxed,dk_simple}.pm:
fix for bug reported on amavis-user list, patch provided by
Mark Martinec. Thanks!
-- VERSION 0.34 --
2009-05-20: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM.pm: rewrite the description section of the Mail::DKIM
man page
* lib/Mail/DKIM/Verifier.pm: document fetch_author_domain_policies()
* Makefile.PL: release 0.34
2009-05-18: Jason Long <jlong@messiah.edu>
* t/signer.t: add a test-case of a message without a header
* lib/Mail/DKIM/Common.pm (init): initialize variables used by methods
in this class; fixes RT.CPAN.ORG bug #46179
2009-04-04: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm (fetch_author_domain_policies): new method
for fetching ADSP records for a particular message
2009-04-03: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/DkPolicy.pm: moved the DomainKeys-specific policy
stuff from Policy.pm to here
* t/policy.t: change tests to use DkPolicy instead of Policy
* lib/Mail/DKIM/Verifier.pm (fetch_sender_policy): use DkPolicy
class instead of Policy class
2009-04-03: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/AuthorDomainPolicy.pm: first draft of ADSP support
2009-04-03: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm: rename fetch_policies() to policies()
* scripts/dkimverify.pl: replace use of fetch_policies() with
policies()
2009-03-30: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm: document a "temperror" result, which
I will soon provide support for
2009-03-30: Jason Long <jlong@messiah.edu>
* t/verifier.t: add support for testing DNS failures; add tests for
detail messages of public key errors
* t/verifier.t: add some tests of DNS failures
2009-03-30: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm (get_public_key): remember errors and
always report them the same way
2009-03-30: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Policy.pm, DkPolicy.pm: new method "name" to give a
short name of the policy
* scripts/dkimverify.pl: use the new fetch_policies() api to list
the results of applicable policies
2009-03-24: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm (fetch_policies): new method for fetching
all applicable policies, and is guaranteed not to "die".
2009-03-24: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/DNS.pm: use a global variable to specify what Timeout
to use
* lib/Mail/DKIM/DNS.pm: detect DNS resolver errors and report them
* t/public_key.t: test various DNS failures
2009-03-10: Jason Long <jlong@messiah.edu>
* t/simple_canonicalization.t: fix simple-canonicalization test, which
broke when I removed support for prestandardized DKIM signatures
2009-03-10: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Algorithm/*, lib/Mail/DKIM/Canonicalization/*,
lib/Mail/DKIM/Signature.pm, t/verifier.t: remove support and tests
for the prestandardized DKIM signatures (issue #1871948)
* Makefile.PL: bump version
-- VERSION 0.33 --
2009-03-10: Jason Long <jlong@messiah.edu>
* Makefile.PL: release "0.33"
2008-11-19: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm, DkSignature.pm (DEFAULT_PREFIX): new
method which determines what prefix to use in as_string, prettify,
etc.
* lib/Mail/DKIM/KeyValueList.pm (wrap): when splitting the h= field,
only allow breaks prior to ':' symbols
2008-11-19: Jason Long <jlong@messiah.edu>
* t/signature.t: further checks for prettify signatures (found a case
where the new code caused a regression)
* lib/Mail/DKIM/TextWrap.pm (flush): remember to update cur position
when flushing text; use a "may_break" internal variable to know
whether a linebreak is acceptable; other fixes
* t/textwrap.t: another test case illustrating failure in TextWrap.pm
* lib/Mail/DKIM/KeyValueList.pm (wrap): call flush() right after the
';' character; this is a further fix for #2257046.
2008-11-10: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/TextWrap.pm (flush): new method to explicitly allow a
break at the current point in the string
* lib/Mail/DKIM/KeyValueList.pm (wrap): call flush() whenever changing
TextWrap parameters (this should complete the fix for #2257046)
2008-11-06: Jason Long <jlong@messiah.edu>
* t/signature.t: test Mark Martinec's bad-signature-wrapping bug
2008-11-06: Jason Long <jlong@messiah.edu>
* t/verifier.t: use a "fake" dns implementation, so that this test
will pass no matter the user's state of dns
2008-11-06: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/DNS.pm (query): changed API so that it now returns
a list of Net::DNS::RR objects, rather than a Net::DNS::Packet object.
* lib/Mail/DKIM/Policy.pm: update for the change to the DNS.pm api.
* lib/Mail/DKIM/PublicKey.pm: update for the change to the DNS.pm api.
2008-11-06: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm (encode_qp, decode_qp): suppress a warning
about an uninitialized value
* lib/Mail/DKIM/Common.pm (message_originator, message_sender): if a
From/Sender line is present, but blank, still return a valid object
(issue #2126559)
* t/public_key.t: new test to check for DNS problems
-- VERSION 0.32 --
2008-05-09: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Algorithm/dk_rsa_sha1.pm: when populating a DomainKey
signature's identity, record where the identity came from
* lib/Mail/DKIM/DkSignature.pm (identity_source): make the source of
the identity (i.e. sender header or from header) available as a
method
2008-05-09: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm (identity): do quoted-printable encoding/
decoding for the i= tag (issue #1839015)
* t/corpus/good_qp_1.txt, good_qp_2.txt, good_qp_3.txt: three test
files for identities using quoted-printable encoding
2008-04-14: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm: documentation for get_tag()
2008-04-14: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/PublicKey.pm (check_granularity): do case-sensitive
comparison (issue #1938112)
2008-04-14: Jason Long <jlong@messiah.edu>
* t/corpus/badkey_12.txt: fix g= case-sensitivity test so it won't give
false positives on dkim-milter
* t/corpus/badkey_13.txt: test that the verifier checks granularity
against i= tag, not the From header
2008-04-14: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Algorithm/dk_rsa_sha1.pm, rsa_sha1.pm: replace use of
Digest::SHA1 with equivalent Digest::SHA
* Makefile.PL: remove requirement for Digest::SHA1
2008-04-14: Jason Long <jlong@messiah.edu>
* Makefile.PL: bump version
-- VERSION 0.31 --
2008-04-08: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/PrivateKey.pm: allow Cork argument to new() (#1879209)
2008-04-07: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/DkimPolicy.pm: fix "use of uninitialized value in string"
errors
* lib/Mail/DKIM/Signature.pm: provide public API to public-key object of
signatures, e.g. so its flags can be accessed (issue #1879215);
also, if an error occurs fetching the public-key record, the failure
is cached so it won't get tried again
* lib/Mail/DKIM/Signer.pm: document how to create a DomainKey-Signature
2008-02-20: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/TextWrap.pm: implement BreakBefore option;
provided a bunch of documentation for this module
* t/textwrap.t: tests new functionality of TextWrap
* lib/Mail/DKIM/KeyValueList.pm: colon-separated lists are now "wrapped"
with colons appearing at the beginning of the next line instead of
at the end of the current line (hoping this will fix #1868648)
2008-02-06: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm: conserve space by omitting "c=simple"
and "q=dns/txt" (#1878518)
2008-02-06: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Canonicalization/DkCommon.pm, DkimCommon.pm:
bugfix for issue #1878954 (undef value used as an ARRAY ref)
* lib/Mail/DKIM/Canonicalization/DkCommon.pm: some cleanup,
possible bugfix for verifying message with two+ DomainKey signatures
* lib/Mail/DKIM/Verifier.pm: allow caller of fetch_author_policy() to
specify domain (#1879197)
* lib/Mail/DKIM/PrivateKey.pm: cleanup- indentation style;
throw error on load() if missing argument
2008-01-24: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/DkimPolicy.pm, Policy.pm, PublicKey.pm, Verifier.pm:
fix parsing regexes used to split email address into localpart and
domain (issue #1878994)
2008-01-10: Jason Long <jlong@messiah.edu>
* Makefile.PL: bump version
* lib/Mail/DKIM/Signature.pm: make sure all public key problems are
prefixed with "public key:" (most were already, see below for actual
changes)
* lib/Mail/DKIM/PublicKey.pm: since Signature.pm is providing the "public
key:" prefix, it can be omitted in PublicKey.pm error messages
* lib/Mail/DKIM/Verifier: the following result_detail messages have changed:
"no public key available" => "public key: not available"
"key value list syntax error" => "syntax error"
or "public key: syntax error"
* t/verifier.t: test that "public key" is mentioned
-- VERSION 0.30.1 --
2008-01-24: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Algorithm/*: implement wants_pre_signature_headers()
for each algorithm
* lib/Mail/DKIM/Verifier.pm: if the algorithm "wants_pre_signature_headers",
then feed headers found prior to the signature to the
signature-specific algorithm doing the verification. This fixes an
issue where signatures from cisco.com fail to verify (reported by
Mark Martinec).
-- VERSION 0.30 --
2007-12-10: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm (is_subdomain): do case-insensitive
comparison
* t/corpus/good_dk_7.txt: tests DK signature with domain names that
differ only in case
* t/corpus/good_rfc4871_4.txt: tests DKIM signature with i= and d=
contain domain names differing in case
* t/corpus/badkey_12.txt: tests public key where i=JLong, g=jl*ng
2007-12-07: Jason Long <jlong@messiah.edu>
* t/verifier.t: three new DK tests
* t/corpus/good_dk_6.txt: tests DK signature without h= tag
* t/corpus/bad_dk_2.txt: tests DK signature w/o h= tag, Sender has
been added
* t/corpus/dk_multiple_1.txt: tests two DK signatures (with different
domains) in a single message... both should pass
* Makefile.PL: version bump
2007-12-07: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm, lib/Mail/DKIM/Algorithm/dk_rsa_sha1.pm,
lib/Mail/DKIM/Canonicalization/DkCommon.pm:
domainkeys: determine identity from algorithm object. Currently the
DomainKeys identity is determined by the Verifier. It is
theoretically possible for two different DomainKeys signatures on
the same message to have different identities. (This happens when
one DomainKey signature includes a Sender header, and the other one
does not.) This patch moves the determination of identity to the
algorithm object.
2007-12-07: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm, lib/Mail/DKIM/Common.pm: initialize
signatures early. This patch makes Mail::DKIM::Verifier initialize
and check the signature object as soon as it is parsed, and
subsequent headers are fed into the algorithm as they are read,
instead of waiting for the end of header.
* lib/Mail/DKIM/Verifier.pm: fix DK identity. The previous patch broke
identity-checking for DomainKeys signatures. This patch moves some
things around so that identity checking still works.
2007-12-07: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm (add_signature): changed to take a
signature object, instead of an unparsed header line
2007-11-21: Jason Long <jlong@messiah.edu>
* t/corpus/bad_dk_2.txt renamed to dk_headers_2.txt: revert this
rename from earlier... the message should "pass" after
all (the Sender header was not part of the signature)
2007-11-21: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signer.pm: provide documentation for Key parameter
* lib/Mail/DKIM/PrivateKey.pm: created documentation for this package
* lib/Mail/DKIM/Signature.pm: implement Key parameter for constructor,
and key() method to get/set the private key
2007-11-14: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm: for DomainKeys signatures, use the message
sender as the identity
* lib/Mail/DKIM/DkSignature.pm: allow verifier to supply the signing
identity
* lib/Mail/DKIM/Verifier.pm, PublicKey.pm: hack for allowing
DomainKeys signatures to use public keys with empty g= tags
2007-11-14: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm, Signer.pm: update documentation for
message_sender() and message_originator() methods, which are now
guaranteed to return an object
* lib/Mail/DKIM/Common.pm (message_sender, message_originator):
always return a Mail::Address object, even if the relevant headers
were not found
* t/corpus/dk_headers_2.txt renamed to bad_dk_2.txt: it turns out this
message should've been failing all along, since the Sender header
doesn't match the domain of the signature
* lib/Mail/DKIM/Verifier.pm: slight change to the "unsupported version"
detail message (don't want nested parenthesis)
2007-11-14: Jason Long <jlong@messiah.edu>
* t/corpus/goodkey_4.txt: tests signature with i=a@b, public key implied g=
* lib/Mail/DKIM/PublicKey.pm (check_granularity): fixed broken
ends-with check, reported by Mark Martinec
* t/corpus/good_dk_3.txt, good_dk_4.txt, good_dk_5.txt:
these files test DomainKeys signatures with g= values in the public keys
* t/corpus/bad_dk_1.txt: this one should fail, since the signature
domain does not match the From/Sender header
* scripts/dkimsign.pl: added option to override signature's d= tag
* t/corpus/badkey_11.txt: tests a valid, but unmatched h= in public key
2007-11-08: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Canonicalization/relaxed.pm,
lib/Mail/DKIM/Canonicalization/nowsp.pm,
lib/Mail/DKIM/Canonicalization/DkCommon.pm,
lib/Mail/DKIM/Canonicalization/dk_simple.pm,
lib/Mail/DKIM/Canonicalization/simple.pm,
lib/Mail/DKIM/Canonicalization/dk_nofws.pm,
lib/Mail/DKIM/Canonicalization/DkimCommon.pm,
lib/Mail/DKIM/MessageParser.pm:
more speed-up optimizations by Mark Martinec, now multiple lines
at once can be fed into the canonicalization bits
2007-11-08: Jason Long <jlong@messiah.edu>
* Makefile.PL, others: version bump to 0.30
2007-11-08: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm: minor doc edit
* scripts/dkimsign.pl: generate "pretty" signatures;
die on unrecognized signature type
2007-11-07: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Algorithm/Base.pm: cleanup (delete commented-out code)
* lib/Mail/DKIM/Algorithm/dk_rsa_sha1.pm (finish_message): fix bug
where DomainKeys signatures were not "pretty",
reported by Byung-Hee HWANG.
2007-11-07: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm: allow Timestamp to be specified to new()
* lib/Mail/DKIM/Signer.pm: allow Timestamp to be specified to new(),
requested by Mark Martinec
* t/signer.t: test timestamp creation
2007-11-06: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Canonicalization/simple.pm,
lib/Mail/DKIM/Canonicalization/Base.pm,
lib/Mail/DKIM/MessageParser.pm: speedup optimizations contributed
by Mark Martinec.
* lib/Mail/DKIM/Canonicalization/dk_simple,pm
lib/Mail/DKIM/Canonicalization/relaxed.pm: more speed up optimizations
by Mark Martinec.
-- VERSION 0.29 --
2007-11-07: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm: signatures() is now public
2007-10-30: Jason Long <jlong@messiah.edu>
* t/corpus/good_rfc4871_3.txt: to test extra tags in signature
* scripts/dkimsign.pl: allow user to specify arbitrary extra tags for
putting in the signature
* lib/Mail/DKIM/MessageParser.pm: make "not implemented" messages
more helpful
* t/corpus/badkey_10.txt: to test key with t=s
* lib/Mail/DKIM/Verifier.pm: allow check_granularity() to return different
detail messages; describe two additional result_detail possibilities
* lib/Mail/DKIM/PublicKey.pm (check_granularity): check for empty g= value;
check for subdomain usage;
(subdomain_flag): helper method to look for "s" in flags
(flags): return default value if no t= tag
2007-10-26: Jason Long <jlong@messiah.edu>
* t/corpus/badkey_9.txt: to test empty g= in selector
* t/corpus/ignore_8.txt: to test bad i= value in signature
* lib/Mail/DKIM/Verifier.pm: check signature identity value
2007-10-24: Jason Long <jlong@messiah.edu>
* t/corpus/badkey_8.txt, ignore_5.txt, ignore_6.txt: fix signature so
it would verify if not for the flaw in the public key
* scripts/dkimsign.pl: allow key protocol to be specified on command
line
* lib/Mail/DKIM/Verifier.pm: update documentation on possible error
codes
* lib/Mail/DKIM/PublicKey.pm: cleanup error code
2007-10-24: Jason Long <jlong@messiah.edu>
* t/corpus/badkey_*.txt: changed subjects to indicate which test it is
* t/corpus/badkey_7.txt, badkey_8.txt, goodkey_1.txt, goodkey_2.txt,
goodkey_3.txt: additional tests of public key features
* t/corpus/verifier.t: test the new test messages
* lib/Mail/DKIM/Verifier.pm (check_public_key): check key granularity
and report the problem if it doesn't match
* lib/Mail/DKIM/PublicKey.pm (check_granularity): a method for testing
the granularity
(granularity): return the default value of '*' if g= not defined
* scripts/dkimsign.pl: ability to set i= tag from command-line
2007-10-24: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm (check_signature): do signature version check
here
(finish_header): report invalid signature details to the signature
object
(signatures): return all parsed signatures, not just "valid" signatures
* lib/Mail/DKIM/Signature.pm: some misc. cleanup
(check_version): version check is now a separate method, rather than
being part of parse()
* lib/Mail/DKIM/DkSignature.pm (check_version): always true
* t/corpus/multiple_2.txt: a message testing multiple signatures with
different results
* t/verifier.t: verify that each signature's results are available and
correct
2007-10-24: Jason Long <jlong@messiah.edu>
* t/corpus/ignore_7.txt: a message with an expired signature
* lib/Mail/DKIM/Signature.pm: recognize Expiration as a parameter
* scripts/dkimsign.pl: make it possible to create a signature with an
x= tag
* t/verifier.t: test ignore_7.txt message, should "ignore"
* lib/Mail/DKIM/Verifier.pm: check signature expiration when verifying
* lib/Mail/DKIM/Signature.pm (check_expiration): new method
2007-10-08: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signer.pm: use "Key" property instead of "private" to
store the private key; new methods key() and key_file(); allow each
signature to have its own private key
* t/signer_policy.t: test specifying a key file in a policy
2007-10-04: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/MessageParser.pm: return nonzero for PRINT and CLOSE
* lib/Mail/DKIM/DkSignature.pm: make expiration() for DomainKey-Signature
behave more compatibly with expiration() for DKIM-Signature
* lib/Mail/DKIM/Verifier.pm: remove dependency on Error module
* README: what I'm interested in if make test fails
* lib/Mail/DKIM/Signer.pm: fix bug reported by dairiki, who noticed that
the Signer class ignored the signature-specified algorithm when
building the algorithm object
* scripts/dkimsign.pl: update POD a bit
* scripts/dkimverify.pl: add POD
* lib/Mail/DKIM/Canonicalization/Base.pm, Algorithm/Base.pm:
add see also, author, copyright sections to POD
* lib/Mail/DKIM/Algorithm/rsa_sha1.pm, rsa_sha256.pm: remove useless pod
* ...and others...: inline documentation (POD) cleanup
2007-10-03: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Canonicalization/DkCommon.pm: attempt at making the
header handling algorithm easier to understand
* t/signer.t: test case for unreadable private key
* lib/Mail/DKIM/PrivateKey.pm: die if unable to open private key file
* lib/Mail/DKIM/Signer.pm: no more need for a separate existance check
on the private key filename
* lib/Mail/DKIM/Signature.pm: allow Identity to be specified in new()
* lib/Mail/DKIM/Signer.pm: allow Identity to be specified in new()
* t/signer.t: test that specifying Identity works
2007-10-02: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Canonicalization/DkCommon.pm: there are some varying
opinions about how to verify DomainKey-signed messages when there is
an h= tag and the headers are in a different order... this is an
attempt at making our verifier more compatible with other
implementations
* dk_headers.txt: some notes on multiple-occuring headers
2007-09-06: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Policy.pm (get_lookup_name): new method that determines
the name of the record to lookup
* lib/Mail/DKIM/DkimPolicy.pm: no longer need to override fetch(), now
it just overrides get_lookup_name()
-- VERSION 0.28 --
2007-07-31: Jason Long <jlong@messiah.edu>
* Makefile.PL: OpenSSL 0.23 segfaults on certain signatures, so
the requirement is now Crypt::OpenSSL::RSA 0.24 or better
* lib/Mail/DKIM/KeyValueList.pm: don't split the header in the middle
of a tag name
-- VERSION 0.27 --
2007-07-25: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm (identity_matches): new method to help
comparing a From/Sender address with the signature identity
* lib/Mail/DKIM/DkimPolicy.pm, Policy.pm: use identity_matches function
2007-07-18: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm: changed fetch_policy() back to
fetch_author_policy(); added fetch_sender_policy();
save results for each signature
* lib/Mail/DKIM/Policy.pm: now implements just Dk policies
* lib/Mail/DKIM/DkimPolicy.pm: a new module for DKIM signing practices
* lib/Mail/DKIM/Signature.pm: can now get/set the verification result
for each signature
* scripts/dkimsign.pl: handle DOS-formated input
* scripts/dkimverify.pl: show multiple signatures' results; show
both policy results
2007-06-11: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm: public_key no longer available as a
verifier property; use eval block instead of try...otherwise;
experimental signatures() method
* lib/Mail/DKIM/Verifier.pm: added description section to Perldocs;
replaced a couple try...otherwise blocks with eval blocks
2007-06-08: Jason Long <jlong@messiah.edu>
* policies.txt: some thoughts on dealing with two different types of
policy records
* lib/Mail/DKIM/Policy.pm: default() is now a private class method
* lib/Mail/DKIM/PublicKey.pm: moved DNS query to DNS.pm
* lib/Mail/DKIM/Policy.pm: moved DNS query to DNS.pm
* lib/Mail/DKIM/DNS.pm: new module that does the common DNS lookups
2007-06-07: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Common.pm: change "parse Mail::Address" to my preferred
"Mail::Address->parse" style
* t/policy.t: test policy lookup by email address instead of domain;
test policy lookups on a few well known domains
* lib/Mail/DKIM/Verifier.pm: minor doc changes; renamed
fetch_author_policy() to fetch_policy(); fetch_author_policy still
works for backward compatibility
* lib/Mail/DKIM/Policy.pm: allow lookups given sender/from addresses
(location): new method to determine where the policy came from
2007-06-05: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Policy.pm: create the default policy only once;
(is_implied_default_policy): new method to check whether the policy
was explicit or implied
(fetch): get policy record at the Yahoo!-DomainKeys-defined location,
rather than the location in the not-yet-finished DKIM SSP spec.
* t/policy.t: test is_implied_default_policy method
-- VERSION 0.26 --
2007-05-24: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm: accept and use v=1 tag instead of v=0.5
* lib/Mail/DKIM/Policy.pm: oops, left a syntax error in here
* t/signer.t: new expected signature value, since signature now has v=1
2007-05-10: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/PublicKey.pm: simplify error handling in fetch()
* lib/Mail/DKIM/Policy.pm: simplify error handling in fetch()
-- VERSION 0.25 --
2007-05-10: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/KeyValueList.pm: separator should be "\015\012" not "\n";
allow splitting on whitespace in a colon-separated list value
* Makefile.PL: it seems version 0.22 or better is required of
Crypt::OpenSSL::RSA
2007-05-01: Jason Long <jlong@messiah.edu>
* t/signature.t: test prettify_safe()
* lib/Mail/DKIM/TextWrap.pm: new wrapping module to help with prettifying
the signature
* lib/Mail/DKIM/KeyValueList.pm (wrap): new method to help wrap the
signature
* lib/Mail/DKIM/Signature.pm: wrap the signature
* lib/Mail/DKIM/Algorithm/Base.pm: oops, prettify() should only be called
when we're _making_ the signature
* lib/Mail/DKIM/KeyValueList.pm (wrap): only do something if TextWrap
has been loaded (no longer automatically load it)
* lib/Mail/DKIM/Signature.pm (prettify): better default value for Start
2007-04-16: Jason Long <jlong@messiah.edu>
* t/signature.t: test that prettify() doesn't choke
* lib/Mail/DKIM/Algorithm/Base.pm: call prettify() before hashing the
signature header
* lib/Mail/DKIM/Signer.pm: call prettify_safe() after generating the
signature data
* lib/Mail/DKIM/Signature.pm: stubs for prettify() and prettify_safe()
* lib/Mail/DKIM/KeyValueList.pm: parse() can now be called on an existing
key-value-list to regenerate the tag data from a string
2007-04-15: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/PublicKey.pm: bug fix- if Net::DNS caused an exception,
there was a race condition for resetting the alarm
* lib/Mail/DKIM/Signer.pm: limit which headers are signed
* t/signer.t: test that undesirable headers are not signed
-- VERSION 0.24 --
2007-03-09: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/PublicKey.pm, lib/Mail/DKIM/Signature.pm,
lib/Mail/DKIM/KeyValueList.pm: fix for linebreaks in public key data;
provided by Mark Martinec.
* lib/Mail/DKIM/Signature.pm: fix default value q=dns/txt; this fixes a bug
for DKIM signatures without q= tags
* t/verifier.t: added six new tests that test problems with the public key
(e.g. revoked, syntax, etc.)
-- VERSION 0.23 --
2007-02-22: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/PublicKey.pm: catch certain OpenSSL errors; tweak
diagnostics
* lib/Mail/DKIM/Verifier.pm: changed OpenSSL error catching code to
match that found in PublicKey; document more possible diagnostic codes
* lib/Mail/DKIM/Signature.pm: tweaked diagnostics for missing public key
* Makefile.PL: check for Test::Simple, which is required for `make test'
2007-02-21: Jason Long <jlong@messiah.edu>
* t/signer_policy.t: signature should still work even if no value is
returned from signer policy
* t/signer.t: now uses v=0.5 signature, which changes the signature
* t/verifier.t: added three tests of empty body messages
* lib/Mail/DKIM/Signer.pm: fixed bug where if signer policy was a
sub ref, and didn't return a true value, the message would get skipped
* lib/Mail/DKIM/Canonicalization/simple.pm: argh, hack for handling
empty body
* lib/Mail/DKIM/MessageParser.pm: fixed bug in handling of messages
without bodies
* lib/Mail/DKIM/Signature.pm: output v=0.5 signatures now
* scripts/dkimsign.pl: new --binary option to disable line-ending conversion
2007-02-19: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/DkSignature: provide default value for a= tag
(thanks to mark.martinec@ijs.si for the patch)
* t/corpus/good_dk_2.txt: test for missing q= and a= tags on DomainKey
signature
2007-02-09: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm, DkSignature.pm: better diagnostic messages;
allow missing q= tag for domainkey signatures
(thanks to mark.martinec@ijs.si for the patch)
-- VERSION 0.22 --
2007-01-19: Jason Long <jlong@messiah.edu>
* t/verifiter.t: relaxed the OpenSSL check a little more
* DKIM.pm, README, others: updated copyright to include 2007;
updated abstract to include DomainKeys; updated version number
2007-01-19: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Verifier.pm: in case of unsupported algorithm,
canonicalization method, or key protocol, list the bad protocol
in the error message to make diagnosing easier
* lib/Mail/DKIM/DkSignature.pm: fix a use-of-undefined-scalar bug
2007-01-17: Jason Long <jlong@messiah.edu>
* t/verifier.t: fixed testing bug that was too strict about what
error message OpenSSL generates
* lib/Mail/DKIM/Verifier.pm: handle OpenSSL panic message better
-- VERSION 0.21 --
2006-11-27: Jason Long <jlong@messiah.edu>
* t/verifier.t: test domainkey message with trailing blank line
* lib/Mail/DKIM/Canonicalization/dk_nofws.pm: fixed bug where DomainKey-
signed message with trailing blank line was not canonicalized correctly,
reported by Mark Martinec.
2006-11-13: Jason Long <jlong@messiah.edu>
* t/verifier.t: test invalid signature length
* lib/Mail/DKIM/Verifier.pm: fixed bug where OpenSSL error was not
reported by moved "local $@" outside try block, thanks to Mark Martinec
for finding this; detect OpenSSL error and clean up the error message
-- VERSION 0.20 --
2006-10-24: Jason Long <jlong@messiah.edu>
* t/signer_policy.t, t/signer.t: use new() instead of new_object()
* lib/Mail/DKIM/Algorithm/Base.pm: allow debugging body canonicalization
* lib/Mail/DKIM/MessageParser.pm: removed problematic check for
"control characters"
* scripts/dkimsign.pl: document --type argument; replace signer policy class
with signer policy subroutine
2006-10-23: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signer.pm: bugfix - signatures weren't setup correctly when
policy built the signature
* lib/Mail/DKIM/Signature.pm: bugfix - empty headerlist should return empty
list
* lib/Mail/DKIM/Canonicalization/Base.pm: moved support for Debug_Canonicalization
here from Algorithm/*
* lib/Mail/DKIM/Algorithm/Base.pm: removed Debug_Canonicalization support
* lib/Mail/DKIM/Algorithm/dk_rsa_sha1.pm: removed Debug_Canonicalization support
2006-10-23: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signer.pm, lib/Mail/DKIM/Verifier.pm: use new() instead of
new_object(); new_object() still supported; documented
Debug_Canonicalization option
2006-10-20: Jason Long <jlong@messiah.edu>
* t/signer_policy.t: added test for creating DomainKeys signature;
added test for creating multiple signatures
* lib/Mail/DKIM/SigningFilter.pm: removed (obsolete)
* scripts/test_signing_filter.pl: removed (obsolete)
* lib/Mail/DKIM/Signer.pm: added signatures method
2006-10-20: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM.pm, lib/Mail/DKIM/Signer.pm, lib/Mail/DKIM/Verifier.pm:
various documentation fixes
* lib/Mail/DKIM/Verifier.pm: set signature property when result is determined
* lib/Mail/DKIM/Signer.pm: support addition of multiple signatures;
changed default canonicalization method to "relaxed"
2006-10-20: Jason Long <jlong@messiah.edu>
* t/signer_policy.t: tests different forms of signing policies
* lib/Mail/DKIM/Signer.pm: support code references as a signing policy;
removed support for build_signature (I'm gonna do this a different way)
2006-10-20: Jason Long <jlong@messiah.edu>
* t/verifier: added a message containing multiple signatures, only one of
which is valid
- t/corpus/multiple_1.txt: the new message
* lib/Mail/DKIM/Algorithm/Base.pm: added signature method; changed method
signature of verify method (no parameters needed any more)
* lib/Mail/DKIM/Algorithm/rsa_sha1.pm,
lib/Mail/DKIM/Algorithm/rsa_sha256.pm,
lib/Mail/DKIM/Algorithm/dk_rsa_sha1.pm: updated verify method
* lib/Mail/DKIM/Verifier.pm: support verification of multiple signatures
* lib/Mail/DKIM/Signer.pm: documented use of policy _function_ rather than
policy object; but no implementation yet
* lib/Mail/DKIM/Common.pm (add_body): support multiple algorithms (needed
to verify multiple signatures)
* lib/Mail/DKIM/Signature.pm: renamed signature() to data(); signature still
available for backwards compatibility
2006-10-19: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/SignerPolicy.pm: document mechanism for users to
construct the signature themselves
* lib/Mail/DKIM/Canonicalization/DkCommon.pm,
* lib/Mail/DKIM/Canonicalization/dk_simple.pm,
lib/Mail/DKIM/Canonicalization/dk_nofws.pm: implemented DomainKeys'
canonicalization methods
* lib/Mail/DKIM/Canonicalization/Base.pm: clarify use of add_body method
* lib/Mail/DKIM/Algorithm/Base.pm: clarify use of add_body method
* lib/Mail/DKIM/DkSignature.pm: implements DomainKeys signatures
* lib/Mail/DKIM/Signer.pm: allow policy to construct the signature, if
it implements the build_signature method; allow policy access to
header field names (headers method)
* lib/Mail/DKIM/Signature.pm: replace use of obsolete method() with
canonicalization()
* scripts/dkimsign.pl: allow user to specify signature type
2006-10-12: Jason Long <jlong@messiah.edu>
* t/verifier: added two new DomainKeys messages to test
- t/corpus/good_dk_yahoo.txt
- t/corpus/good_dk_gmail.txt
* lib/Mail/DKIM/Canonicalization/dk_nofws.pm: added support for the
DomainKeys "nofws" canonicalization method
* lib/Mail/DKIM/Verifier.pm: recognize DomainKeys signatures;
signatures now determine which algorithm class to use
* lib/Mail/DKIM/Algorithm/Base.pm: refactored a few things to better
accomodate non-DKIM algorithms
* lib/Mail/DKIM/Algorithm/dk_rsa_sha1.pm: implements the DomainKeys
rsa-sha1 algorithm
* lib/Mail/DKIM/DkSignature.pm: handles DomainKeys signatures
* lib/Mail/DKIM/Signer.pm: signature now determines which algorithm class
to use
* lib/Mail/DKIM/PublicKey.pm: change an error message from "headers have
been alterered" to "message has been altered" (if the headers have been
altered, we really cannot imply that the body is still intact)
* lib/Mail/DKIM/Common.pm: removed get_algorithm_class (this is now a
signature method)
* lib/Mail/DKIM/Signature.pm: added get_algorithm_class; documented
get_public_key method
2006-09-28: Jason Long <jlong@messiah.edu>
* README: include "Error" in the list of dependencies
* lib/Mail/DKIM/Common.pm (get_algorithm_class): return undef instead of
throwing an error when an unsupported algorithm is presented
* lib/Mail/DKIM/Signature.pm (parse): allow v=0.5 tag
(check_protocol): checks for dns option /txt (i.e. "dns/txt")
(version): new method for getting/setting v= tag
* lib/Mail/DKIM/Verifier.pm (check_signature): fixed algorithm check
* t/verifier: added several additional sample emails to verify, including
a ietf05 signature, and six cases where the signature should be ignored
for one reason or another
-- VERSION 0.19 --
2006-06-15: Jason Long <jlong@messiah.edu>
* Makefile.PL: change Perl version check to v5.6.1 instead of 5.8
* t/verifier.t: use binmode function instead of ":raw" layer, for
Perl 5.6.1 compatibility
-- VERSION 0.18 --
2006-06-09: Jason Long <jlong@messiah.edu>
* t/verifier.t: open message in ":raw" mode to avoid CRLF->LF
conversion (reported by Eugene Pivovarav)
2006-06-08: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/PublicKey.pm: rewrote verify_digest() so that it uses
the Crypt::OpenSSL::RSA module exclusively, no longer relying on
Crypt::RSA::Primitives
* lib/Mail/DKIM/PrivateKey.pm: rewrote sign_digest() so it uses
Crypt::OpenSSL::RSA exclusively
* lib/Mail/DKIM/Key.pm: calculate_EM() - remove dependency on
Crypt::RSA::DataFormat
* Makefile.PL, README: remove mentions of Crypt::RSA and
Crypt::OpenSSL::Bignum
-- VERSION 0.17 --
2006-05-26: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Algorithm/Base.pm: check_body_hash() - new method
that verifies the body hash against the bh= tag; format for
canonicalization debugging output has changed
* lib/Mail/DKIM/Algorithm/rsa_sha1.pm: call check_body_hash() before
returning results to verify()
* lib/Mail/DKIM/Algorithm/rsa_sha256.pm: call check_body_hash() before
returning results to verify()
* lib/Mail/DKIM/Canonicalization/DkimCommon.pm: fixed bug where extra
CRLF was being canonicalized
* lib/Mail/DKIM/Key.pm: moved calculate_EM function here from PrivateKey
after realizing that it would be needed when verifying
* lib/Mail/DKIM/PublicKey.pm: now SHA256 hashes can be verified as well;
also, the verification can distinguish between wrong hash and a
bad signature
* lib/Mail/DKIM/Verifier.pm: provide result details when verification
fails; added documentation for the result_detail() method
* t/corpus/: added several sample signed messages for the testing routines
2006-04-17: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Algorithm/Base.pm: common class for DKIM algorithms
* lib/Mail/DKIM/Algorithm/rsa_sha1.pm: now subclasses Algorithm::Base.
* lib/Mail/DKIM/Algorithm/rsa_sha256.pm: new class for handling the
rsa-sha256 DKIM algorithm
* lib/Mail/DKIM/Common.pm: recognize rsa-sha256 algorithm
* lib/Mail/DKIM/PrivateKey.pm: implemented signing of a SHA-256 digest
* lib/Mail/DKIM/PublicKey.pm: implemented verifying of a SHA-256 digest
* lib/Mail/DKIM/Signature.pm: allows algorithm to be "rsa-sha256";
body_hash() - new method handling the bh tag;
hash_algorithm() - new method to determine what hash is being used;
* lib/Mail/DKIM/Verifier.pm: check_public_key() - new method for checking
the validity of a fetched public key
* Makefile.PL: added Digest::SHA as a dependency
2006-03-26: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Common.pm: remove version number from this file
* lib/Mail/DKIM.pm: bump version to 0.17
* README: bump version to 0.17
-- VERSION 0.16 --
2006-03-03: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Policy.pm: new() and testing() are now warning-free
(thanks to jm@jmason.org for the patch)
* t/policy.t: tests the Policy package
2006-03-01: Jason Long <jlong@messiah.edu>
* lib/Mail/DKIM/Signature.pm: correctly handle spaces around = character
* t/signature.t: test for spaces around = character in signature
2006-02-24: Jason Long <jlong@messiah.edu>
* t/: wrote some tests and added them to the project
* README, Makefile.PL: discovered additional dependency:
Crypt::OpenSSL::Bignum
* lib/Mail/DKIM/Signature.pm: fixed a warning that could occur if
the h= tag was left undefined
2006-02-23: Jason Long <jlong@messiah.edu>
* converted to ExtUtils::MakeMaker package format,
see the dkimproxy project for revision history prior to 2006-02-23.