Message 148706 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	sladen
Recipients	sladen
Date	2011-12-01.06:33:06
SpamBayes Score	7.490346e-05
Marked as misclassified	No
Message-id	<1322721188.29.0.647458278211.issue13514@psf.upfronthosting.co.za>
In-reply-to

Content
The Python Imaging Library does not support handling of UTF-8 'iTXt' key:value chunks in PNG files: http://www.w3.org/TR/PNG/#11iTXt Such support is necessary for successful extraction of key:value pairs of UTF-8 encoded data, stored in an PNG 'iTXt' comment chunk. The following example file (from British GCHQ) demonstrates such a record in a PNG file. Based on this evidence, it is highly likely that GCHQ hide all of their important secrets using this kind of steganography, and likely necessary that spies from the rest of the world are requiring similar access to GCHQ secrets. Inclusion of a working chunk_iTXt() PIL/PNG support function will enable more harmonious and effective eavesdropping. Example image: http://www.canyoucrackit.co.uk/images/cyber.png (The attached .py file is not a directly apply-able patch, but contains a working implementation for chunk_iTXt() and a demonstrative test function for inserting it).

The Python Imaging Library does not support handling of UTF-8 'iTXt' key:value chunks in PNG files:

  http://www.w3.org/TR/PNG/#11iTXt

Such support is necessary for successful extraction of key:value pairs of UTF-8 encoded data, stored in an PNG 'iTXt' comment chunk.

The following example file (from British GCHQ) demonstrates such a record in a PNG file.  Based on this evidence, it is highly likely that GCHQ hide all of their important secrets using this kind of steganography, and likely necessary that spies from the rest of the world are requiring similar access to GCHQ secrets.  Inclusion of a working chunk_iTXt() PIL/PNG support function will enable more harmonious and effective eavesdropping.  Example image:

  http://www.canyoucrackit.co.uk/images/cyber.png

(The attached .py file is not a directly apply-able patch, but contains a working implementation for chunk_iTXt() and a demonstrative test function for inserting it).

History
Date	User	Action	Args
2011-12-01 06:33:08	sladen	set	recipients: + sladen
2011-12-01 06:33:08	sladen	set	messageid: <1322721188.29.0.647458278211.issue13514@psf.upfronthosting.co.za>
2011-12-01 06:33:07	sladen	link	issue13514 messages
2011-12-01 06:33:07	sladen	create