gh-145552: smtplib: quoteaddr() returns malformed address for input '<'#145553
gh-145552: smtplib: quoteaddr() returns malformed address for input '<'#145553stefanzetzsche wants to merge 10 commits intopython:mainfrom
quoteaddr() returns malformed address for input '<'#145553Conversation
Input starting with '<' but missing closing '>' was returned verbatim. Ensure the result always ends with '>'.
Add testQuoteAddr for basic quoteaddr behavior and testQuoteAddrMalformedAngleBracket for inputs starting with '<' but missing closing '>'. The latter fails without the fix.
|
Most changes to Python require a NEWS entry. Add one using the blurb_it web app or the blurb command-line tool. If this change has little impact on Python users, wait for a maintainer to apply the |
|
All commit authors signed the Contributor License Agreement. |
…stefanzetzsche/cpython into fix/smtplib_quoteaddr_malformed
| # parseaddr couldn't parse it, wrap it in angle brackets. | ||
| if addrstring.strip().startswith('<'): | ||
| return addrstring | ||
| if addrstring.strip().endswith('>'): |
There was a problem hiding this comment.
Sorry for the delay in responding.
I'd prefer to do addrstring.strip() == '<>', which theoretically matches the old behavior. (I say theoretically because the code the old version of this code was calling has moved on as well and I don't feel like going down that rabbit hole.) In any case, it should be correct: only <> is a special case per RFC 5321; we otherwise don't want to do more to fix user errors than to ensure that the provided originator address is sorrounded by the angle quotes.
|
A Python core developer has requested some changes be made to your pull request before we can consider merging it. If you could please address their requests along with any other requests in other reviews from core developers that would be appreciated. Once you have made the requested changes, please leave a comment on this pull request containing the phrase And if you don't make the requested changes, you will be put in the comfy chair! |
2 participants
Problem
quoteaddr()formats addresses for SMTPMAIL FROM:andRCPT TO:commands, which require angle-bracket format (<addr>). It first triesemail.utils.parseaddr(); when that fails (for inputs like'<','< ','@'), a fallback path checks if the input starts with<and returns it verbatim — without verifying it also ends with>.The
startswith('<')check was introduced in 4c14bba as part of #51733. Before that commit, unparseable input was unconditionally wrapped in<>.Reproducer
Why not unconditional wrapping?
Simply removing the
startswith('<')branch and always wrapping with"<%s>"would break the null sender<>, which is a valid SMTP construct (RFC 5321 bounce path).parseaddr('<>')returns('', '')— a parse failure — so unconditional wrapping would produce<<>>, which is malformed. Thestartswith('<')check exists specifically to preserve already-bracketed input thatparseaddrcan't handle.Fix
Keep the
startswith('<')check but add anendswith('>')guard. Already-bracketed input (like<>) passes through; half-open input (like<) falls through to unconditional wrapping: