decode_header does not follow RFC 2047

[3a8f785c-1b67-44ab-ad47-07911e0b0a24]

BPO	1079
Nosy	@warsaw, @atsuoishimoto, @bitdancer
Files	header_encwd_nows.patch: encoded words don't always require whitespace issue1079-test.patch: test case for encoded word followed immediately by a 'special' rfc2047_embed.patch: embed encoded words in surrounding text if there's no whitespace around them u2u_decode.py: a recipe for decoding non-compliant RFC2047 header python.patch python.patch.2 python.patch3

^{Note: these values reflect the state of the issue at the time it was migrated and might not reflect the current state.}

Show more details

GitHub fields: ```python assignee = 'https://github.com/bitdancer' closed_at = created_at = labels = ['type-bug', 'expert-email'] title = 'decode_header does not follow RFC 2047' updated_at = user = 'https://bugs.python.org/kael' ``` bugs.python.org fields: ```python activity = actor = 'python-dev' assignee = 'r.david.murray' closed = True closed_date = closer = 'r.david.murray' components = ['email'] creation = creator = 'kael' dependencies = [] files = ['13608', '13616', '16857', '19026', '24130', '24131', '24133'] hgrepos = [] issue_num = 1079 keywords = ['patch'] message_count = 23.0 messages = ['55555', '55951', '81068', '85366', '85441', '85448', '85763', '102781', '117434', '150461', '150471', '150501', '150506', '150508', '150509', '150535', '161803', '161861', '162181', '162183', '162216', '162218', '162221'] nosy_count = 13.0 nosy_names = ['barry', 'jafo', 'ishimoto', 'tlynn', 'ggenellina', 'tkikuchi', 'tony_nelson', 'kael', 'r.david.murray', 'leromarinvit', 'python-dev', 'runtux', 'phahn'] pr_nums = [] priority = 'normal' resolution = 'fixed' stage = 'resolved' status = 'closed' superseder = None type = 'behavior' url = 'https://bugs.python.org/issue1079' versions = ['Python 3.3'] ```

[3a8f785c-1b67-44ab-ad47-07911e0b0a24]

email.header.decode_header expect a space or end of line after the end of an encoded word ("?="). There is nothing about that thing in RFC 2047.

Python 2.5.1 ChangeLog seems to indicate that this bug has been solved. Unfortunately, the function still don't work.

A visible effet of the bad regex used has the consequence found in Issue 1467619

it seems there are 2 different regex with the same purpose in two different files (ecre in header.py & ecre in utils.py). the one in utils.py seems to give better results.

[eacf80b2-9081-4882-a7f5-27e9644c3853]

Can you provide an example of an address that triggers this? Preferably in a code sample that can be used to reproduce it? Uber-ideally, a patch to the email module test suite would be great.

[50637b17-1fd1-4c83-96a6-3dd5e6e3b094]

The only difference between the two regexps is that the email/header.py version looks for::

(?=[ \t]|$) # whitespace or the end of the string

at the end (with re.MULTILINE, so $ also matches '\n').

To expand on "There is nothing about that thing in RFC 2047", it says::

IMPORTANT: 'encoded-word's are designed to be recognized as 'atom's by an RFC 822 parser.

RFC 822 says::

   atom        =  1*<any CHAR except specials, SPACE and CTLs>
      ...
   specials    =  "(" / ")" / "<" / ">" / "@"  ; Must be in quoted-
               /  "," / ";" / ":" / "\" / <">  ;  string, to use
               /  "." / "[" / "]"              ;  within a word.

So an example of mis-parsing is::

   >>> import email.header
   >>> h = '=?utf-8?q?=E2=98=BA?=(unicode white smiling face)'
   >>> email.header.decode_header(h)
   [('=?utf-8?q?=E2=98=BA?=(unicode white smiling face)', None)]

The correct result would be::

   >>> email.header.decode_header(h)
   [('\xe2\x98\xba', 'utf-8'), ('(unicode white smiling face)', None)]

which is what you get if you insert a space before the '(' in h.

[a42d0aba-ca34-41c4-9edf-690faa79a2cd]

I think the problem is best viewed as headers are not being parsed according to RFC2822 and decoded after that, so the recognition of encoded words should be looser, and not require whitespace around them, as it is not required in all contexts.

Patch and test, tested on 2.6.1, 2.7trunk. The test mostly just reverses the sense of test_rfc2047_without_whitespace().

[bitdancer]

Tony, I don't think I agree with your reading of the RFC. IMO, your inversion of test_rfc2047_without_whitespace is not correct. '=' is not a 'special' in RFC[2]822 terms, so the atom does not end at the apparent end of the encoded word. I say apparent because if I'm interpreting the RFC correctly it isn't a valid encoded word. I presume you are thinking that once you've got an atom composed of several encoded words, there's no reason not to parse them into individual words (and I'm inclined to agree with you), but the RFC BNF doesn't support that interpretation as far as I can see. That is, there is no indication I could find that an atom can be composed of multiple encoded words.

The encoded word followed by a 'special' is more subtle. In section 5, the RFC says:

 An 'encoded-word' that appears within a 'phrase' MUST be
 separated from any adjacent 'word', 'text' or
'special' by 'linear-white-space'.

This would apply to encoded words in names in To and From headers. But in other places where an encoded word can appear the requirement of white-space separation from specials is not asserted. It's not clear how to make this RFC compliant without implementing a full BNF parser :(

It would probably be reasonable to fix this case so that a word followed by a special with no intervening white space was allowed. I've attached a test case for the 'special' example based on that idea.

[a42d0aba-ca34-41c4-9edf-690faa79a2cd]

The email package does not follow the RFCs in anything to do with header parsing or decoding. This is a known deficiency. So no, I am not thinking of atoms at all -- and neither is email.header.decode_header()! :-(

Until email.header actually parses headers into atoms and then decodes atoms, it doesn't matter what parsed atoms would look like. Currently, email.header.decode_header() just stumbles through raw text, and doesn't know if it is looking at atoms or not, or usually even what header the text came from.

In order to interpret the RFC correctly, email.header.decode_header() needs either a parser and the name of the header it is decoding, or parsed header data. I think the latter is being considered for a redesign of the email package for 3.1 or 3.2 (3 months to a year or so, and not for 2.x at all), but until then, it is better to decode every likely encoded-word than to skip encoded-words that, for example, have a parenthesis on one side or the other.

[f76e6224-bf87-486c-9d7b-4352d21c7be7]

+1 for Tony's patch.

This patch reverts fix for bpo-1582282 filed by tkikuchi. I cannot understand the rationale for solution proposed in bpo-1582282. How does the fix make easier to read mails from Entourage?

[85b19e23-c1f8-4326-80c7-238410a3fc68]

I got bitten by this too. In addition to not decoding encoded words without whitespace after them, it throws an exception if there is a valid encoded word later in the string and the first encoded word is followed by something that isn't a hex number:

>>> decode_header('aaa=?iso-8859-1?q?bbb?=xxx asdf =?iso-8859-1?q?jkl?=')
Traceback (most recent call last):
  File "<stdin>", line 1, in <module>
  File "/usr/lib/python2.5/email/header.py", line 93, in decode_header
    dec = email.quoprimime.header_decode(encoded)
  File "/usr/lib/python2.5/email/quoprimime.py", line 336, in header_decode
    return re.sub(r'=\w{2}', _unquote_match, s)
  File "/usr/lib/python2.5/re.py", line 150, in sub
    return _compile(pattern, 0).sub(repl, string, count)
  File "/usr/lib/python2.5/email/quoprimime.py", line 324, in _unquote_match
    return unquote(s)
  File "/usr/lib/python2.5/email/quoprimime.py", line 106, in unquote
    return chr(int(s[1:3], 16))
ValueError: invalid literal for int() with base 16: 'xx'

I think it should join the encoded words with the surrounding text if there's no whitespace in between. That seems to be consistent with what the non-RFC-compliant MUAs out there mean when they send such things.

Reverting the change from bpo-1582282 doesn't seem to be a good idea, since it was introduced in response to problems with mailman (see https://bugs.launchpad.net/mailman/+bug/266370). Instead of leaving "Sm=?ISO-8859-1?B?9g==?=rg=?ISO-8859-1?B?5Q==?=sbord" as it is, my patch converts it to [('Sm\xf6rg\xe5sbord', 'iso-8859-1')]. This shouldn't reintroduce the problem mailman was having while fixing ours.

[5915350c-1775-4045-87d2-6dfae2c7871d]

Hi, all

I am against applying these patches because they will insert space separations in re-composed header (with str() function).

Sm=?ISO-8859-1?B?9g==?=rg=?ISO-8859-1?B?5Q==?=sbord -> [('Sm', None), ('\xf6', 'iso-8859-1'), ('rg', None), ('\xe5', 'iso-8859-1'), ('sbord', None)] -> Sm =?iso-8859-1?q?=F6?= rg =?iso-8859-1?q?=E5?= sbord

Instead, I submit a small recipe for decoding non-compliant RFC2047 header where space separation is not properly inserted between encoded_word and us-ascii characters.

Please try!

[045f8f0d-9bfc-4a14-9319-6b326ddadb21]

maybe it would be a good start to include the examples at the end of RFC2047 into the regression tests? These examples at least support the case that a '?' may immediately follow an encoded string:

encoded form displayed as (=?ISO-8859-1?Q?a?= =?ISO-8859-1?Q?b?=) (ab)

when trying this in python 2.7:

>>> decode_header ('(=?ISO-8859-1?Q?a?= =?ISO-8859-1?Q?b?=)')
[('(', None), ('a', 'iso-8859-1'), ('=?ISO-8859-1?Q?b?=)', None)]

this fails. So I consider this a bug.

Note that although RFC2047 is vague concerning the interpretation if two encoded strings could follow each other without a whitespace, these *are seen in the wild and *are interpreted correctly by the mailers I've tested: mutt, thunderbird, exchange in various versions, even lotus notes seems to get this right. So I guess python should be "liberal in what you accept" and parse something like '(=?ISO-8859-1?Q?a?==?ISO-8859-1?Q?b?=)' into [ ('(', None) , ('a', 'iso-8859-1') , ('b', 'iso-8859-1') , (')', None) ]

[bitdancer]

The RFC isn't at all vague about encoded words not separated by white space. That isn't allowed by the BNF. As you say, though, they occur in the wild and should be parsed correctly.

In your other point I think you mean "immediately followed by a )", right? Yes, that is allowed and no, we don't currently parse that correctly.

Adding the RFC tests would be great (patches gladly accepted). Fixes for ones we fail would be great, too, but at the very least we can mark them as expected failures. I don't usually like adding tests that we expect to fail, but in the case of externally defined tests such as the RFC examples I think it is worthwhile, so that we can check in a complete test set.

[045f8f0d-9bfc-4a14-9319-6b326ddadb21]

Fine, I see what you mean, this involves very careful reading of the RFC and could have been a little more verbose ...

Right. Should have been a ')'

Adding the RFC tests would be great (patches gladly accepted). Fixes for ones we fail would be great, too, but at the very least we can mark them as expected failures. I don't usually like adding tests that we expect to fail, but in the case of externally defined tests such as the RFC examples I think it is worthwhile, so that we can check in a complete test set.

Patch attached (against current tip, 74241:120a79b8bb11). We currently fail *all* of the tests in the RFC due to the same problem, the closing ')', I've marked them accordingly.

I've made the 5th test (with newline in the string) two cases, one with \r\n for the newline, one with only \n. They fail differently.

I plan to look into this a little more, my current plan is to make the outer regex non-greedy (if possible) and remove the trailing whitespace. That would involve parsing (and ignoring) additional whitespace *between* encoded words but not at the boundary to a non-encoded word.

Any objections/further infos?

Ralf -- Dr. Ralf Schlatterbeck Tel: +43/2243/26465-16 Open Source Consulting www: http://www.runtux.com Reichergasse 131, A-3411 Weidling email: office@runtux.com osAlliance member email: rsc@osalliance.com

[045f8f0d-9bfc-4a14-9319-6b326ddadb21]

enclosed please find a fixed patch -- decode_header consolidates multiple encoded strings with the same encoding into a single entry in the returned parts. -- Dr. Ralf Schlatterbeck Tel: +43/2243/26465-16 Open Source Consulting www: http://www.runtux.com Reichergasse 131, A-3411 Weidling email: office@runtux.com osAlliance member email: rsc@osalliance.com

[bitdancer]

Well, a caution that tweaking the regex can have unexpected consequences as past issues have proven (but by all means go for it), and a note that the parsing strategy is going to change completely in email6 (see http://pypi.python.org/email and http://hg.python.org/features/email6). I think your tests should pass on that branch; I'll be interested to try it when I get some time.

(Note: I'm removing 3.1 from versions since it doesn't get bug fixes any more.)

Also, I'm not sure the (non-essential) change to consolidate like-charset encoded words is appropriate for a bug fix. It's hard to see how it would break anything, but why take the risk if it isn't needed to fix the bug.

[bitdancer]

Gah, that's what I get for not reading carefully (or looking at the patch first). Your test change is fine, of course.

[045f8f0d-9bfc-4a14-9319-6b326ddadb21]

Attached please find a patch that

• keeps all spaces between non-encoded and encoded parts
• doesn't create spaces between non-encoded and encoded parts in case these are already there or not needed (because they are non-ctext characters of RFC822 like ')') in the methods "encode" and "__str__" of class Header. in all other cases spaces are still inserted, this keeps many tests happy and probably won't break too much existing code.

I've re-read RFC2047 (and parts of 822) and now share your opinion that it requires that encoded parts *must* be followed by a 'linear-white-space' if the following (or preceding) token is text or ctext. (p.7 5. Use of encoded-words in message headers)

With the special-casing of ctext characters mentioned above, roundtripping is now possible, so if you parse a normalized string consisting of encoded and non-encoded parts, (even multiple) whitespace is preserved.

I still think we should do it like everyone else and *not* automatically insert whitespace at boundaries between encoded and non-encoded words, even if the RFC requires it. Someone wanting to create headers consisting of mixed encoded/non-encoded parts without whitespace must know what to do anyway -- the previous implementation also didn't check for all border cases.

I've *not yet* tested this against the email6 branch you mentioned.

Note that I didn't have to make the regex non-greedy, it already was. I've just removed the whitespace at the end of the regex.

I've changed all the tests that test for removal of whitespace between non-encoded and encoded parts. Obviously I've also changed a test that relied on failing to parse adjacent encoded strings. But please look at my changes of the tests.

The rfc2047 tests now all pass.

The patch also fixes bpo-1467619 "Header.decode_header eats up spaces"

Ralf -- Dr. Ralf Schlatterbeck Tel: +43/2243/26465-16 Open Source Consulting www: http://www.runtux.com Reichergasse 131, A-3411 Weidling email: office@runtux.com osAlliance member email: rsc@osalliance.com

[bitdancer]

Ralf, thanks very much for this patch. I'm considering applying it. Given that the current code breaks on parsing various legitimate constructs, it seems like the behavior change (preserving whitespace in the non-EW parts...which IMO is correct) should be an acceptable tradeoff.

Could you please submit a contributor agreement? (http://www.python.org/psf/contrib/)

[045f8f0d-9bfc-4a14-9319-6b326ddadb21]

On Mon, May 28, 2012 at 08:15:05PM +0000, R. David Murray wrote:

R. David Murray \rdmurray@bitdance.com\ added the comment:

Ralf, thanks very much for this patch. I'm considering applying it. Given that the current code breaks on parsing various legitimate constructs, it seems like the behavior change (preserving whitespace in the non-EW parts...which IMO is correct) should be an acceptable tradeoff.

Could you please submit a contributor agreement? (http://www.python.org/psf/contrib/)

Thanks for considering my patch. I've just sent the agreement.

Ralf

[1762cc99-3127-4a62-9baf-30c3d0f51ef7]

New changeset 8c03fe231877 by R David Murray in branch 'default': bpo-1079: Fix parsing of encoded words. http://hg.python.org/cpython/rev/8c03fe231877

[bitdancer]

I've applied this to 3.3. Because the preservation of spaces around the ascii parts is a visible behavior change that could cause working programs to break, I don't think I can backport it. I'm going to leave this open until I can consult with Barry to see if he thinks a backport is justified. Anyone else can feel free to chime in with an opinion as well :)

[warsaw]

On Jun 02, 2012, at 09:59 PM, R. David Murray wrote:

I've applied this to 3.3. Because the preservation of spaces around the ascii parts is a visible behavior change that could cause working programs to break, I don't think I can backport it. I'm going to leave this open until I can consult with Barry to see if he thinks a backport is justified. Anyone else can feel free to chime in with an opinion as well :)

I think a backport is risky.

[bitdancer]

OK, I'm closing this, then, and will close the related issues as well.

Thanks again for the patch, Ralf.

[1762cc99-3127-4a62-9baf-30c3d0f51ef7]

New changeset 0808cb8c60fd by R David Murray in branch 'default': bpo-2658: Add test for issue fixed by fix for bpo-1079. http://hg.python.org/cpython/rev/0808cb8c60fd