IETF Logo Mail Archive

[dane] case sensitivity and draft-ietf-dane-smime / draft-wouters-dane-openpgp

Paul Wouters <paul@cypherpunks.ca> Mon, 09 September 2013 15:01 UTC

Return-Path: <paul@cypherpunks.ca>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0876F21F9F1B for <dane@ietfa.amsl.com>; Mon, 9 Sep 2013 08:01:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.185
X-Spam-Level:
X-Spam-Status: No, score=-0.185 tagged_above=-999 required=5 tests=[BAYES_40=-0.185]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id juQBtBOqixD9 for <dane@ietfa.amsl.com>; Mon, 9 Sep 2013 08:01:05 -0700 (PDT)
Received: from mx.nohats.ca (mx.nohats.ca [193.110.157.68]) by ietfa.amsl.com (Postfix) with ESMTP id C5AFB11E81EC for <dane@ietf.org>; Mon, 9 Sep 2013 07:52:36 -0700 (PDT)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 3cYXQz0kcnz3mk; Mon, 9 Sep 2013 10:52:27 -0400 (EDT)
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id NQm41VupFA0d; Mon, 9 Sep 2013 10:52:26 -0400 (EDT)
Received: from bofh.nohats.ca (bofh.nohats.ca [76.10.157.69]) by mx.nohats.ca (Postfix) with ESMTP; Mon, 9 Sep 2013 10:52:26 -0400 (EDT)
Received: by bofh.nohats.ca (Postfix, from userid 500) id 6E50E848E5; Mon, 9 Sep 2013 10:52:26 -0400 (EDT)
Received: from localhost (localhost [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id 62964811F6; Mon, 9 Sep 2013 10:52:26 -0400 (EDT)
Date: Mon, 09 Sep 2013 10:52:26 -0400
From: Paul Wouters <paul@cypherpunks.ca>
X-X-Sender: paul@bofh.nohats.ca
To: dane WG list <dane@ietf.org>
Message-ID: <alpine.LFD.2.10.1309091040120.14065@bofh.nohats.ca>
User-Agent: Alpine 2.10 (LFD 1266 2009-07-14)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; format="flowed"; charset="US-ASCII"
Cc: Paul Hoffman <paul.hoffman@vpnc.org>
Subject: [dane] case sensitivity and draft-ietf-dane-smime / draft-wouters-dane-openpgp
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Sep 2013 15:01:19 -0000

It was brought to my attention by Matthias Wimmer that we overlooked
an important issue with respect to the base32 generation of the base32
encoded left hand side of the email address.

Mail servers and mail clients do not treat email addresses as
case-insensitive. When encoding an LHS with base32, the case matters.
Using the wrong case will cause you to not find the SMIMEA / OPENPGPKEY
record.

paul@bofh:$ python
Python 2.7.3 (default, Aug  9 2012, 17:23:57) 
[GCC 4.7.1 20120720 (Red Hat 4.7.1-5)] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> import base64
>>> base64.b32encode("paul")
'OBQXK3A='
>>> base64.b32encode("Paul")
'KBQXK3A='
>>>

We should probably add a section explaining this, and perhaps suggest to
lowercase before base32'ing the LHS for the lookup.

Paul

v2.23.0 | Report a Bug | By Email