OpenARC
OpenARC copied to clipboard
trusteddomainproject
OpenARC failing to sign previously ARC signed messages
The following 2 tests of the signing ARC test suite fail:
i1_base i2_base
OpenARC seems like it categorically does not correctly sign messages that have already been signed by a previous intermediary. I haven't looked closely, but at the very least it messes up creating AMS's as it seems to strip the b= tag from the previous AMS header & canonicalizes that instead of creating a new AMS with an empty b=
This now appears to work; please re-test after rebasing onto the end of the "develop" branch.
i1_base: https://github.com/ValiMail/arc_test_suite/blob/master/tests/arc-draft-sign-tests.yml#L453 i2_base: https://github.com/ValiMail/arc_test_suite/blob/master/tests/arc-draft-sign-tests.yml#L516
i am experiencing same issue - just build from "develop" branch - my server unable to sign messages that forwarded from gmail.
It took me a while to find it, but I believe c01bb430d488304fd024583cca03435319e2d390 fixes this. Can someone confirm?
Hello @mskucherawy Thanks for your response! i had tested following commits from develop branch: c01bb43 Fix AMS canonicalization. 8a5a4b0 Coding style.
and faced another issue - at gmail when i checked source - header "ARC-Authentication-Results:" doesn't start from newline - at this moment header "ARC-Authentication-Results:" added in the end of the line - "Received: from some host by some other host"
in other email providers like yahoo or AOL when i looking at source i see space before headers: ARC-Authentication-Results: ARC-Message-Signature: ARC-Seal:
And this leads that google and others ignore ARC related headers that were added by my email host.
I think some related things were fixed in the Beta1 release, which I just cut. Could you try this again, please?
tested today on commit 7bd568508b1d9e89627e3388ddfc767d28602e15 from develop branch, it works fine, thank you very much @mskucherawy !