[Dcrup] Re: [Editorial Errata Reported] RFC8463 (7930)

Rebecca VanRheenen <rvanrheenen@amsl.com> Fri, 10 May 2024 17:53 UTC

Return-Path: <rvanrheenen@amsl.com>
X-Original-To: dcrup@ietfa.amsl.com
Delivered-To: dcrup@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0D33DC14F600 for <dcrup@ietfa.amsl.com>; Fri, 10 May 2024 10:53:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.898
X-Spam-Level:
X-Spam-Status: No, score=-6.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T8dxsT_-MQRu for <dcrup@ietfa.amsl.com>; Fri, 10 May 2024 10:53:26 -0700 (PDT)
Received: from c8a.amsl.com (c8a.amsl.com [4.31.198.40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 45974C14F71A for <dcrup@ietf.org>; Fri, 10 May 2024 10:53:26 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by c8a.amsl.com (Postfix) with ESMTP id 3606D425C26B; Fri, 10 May 2024 10:53:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from c8a.amsl.com ([127.0.0.1]) by localhost (c8a.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rupA3pWg1nJv; Fri, 10 May 2024 10:53:26 -0700 (PDT)
Received: from [IPv6:2601:641:300:5fb0:742f:60ef:479f:58de] (unknown [IPv6:2601:641:300:5fb0:742f:60ef:479f:58de]) by c8a.amsl.com (Postfix) with ESMTPSA id 05151424B427; Fri, 10 May 2024 10:53:26 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.7\))
From: Rebecca VanRheenen <rvanrheenen@amsl.com>
In-Reply-To: <20240509203958.F19D933CD1@rfcpa.amsl.com>
Date: Fri, 10 May 2024 10:53:24 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <55570A01-CF1B-4D47-B74A-D3BDBDD2E65E@amsl.com>
References: <20240509203958.F19D933CD1@rfcpa.amsl.com>
To: "Murray S. Kucherawy" <superuser@gmail.com>, Orie Steele <orie@transmute.industries>
X-Mailer: Apple Mail (2.3608.120.23.2.7)
Message-ID-Hash: YQ6NZR3K6APXGMRTUO2CIBTO27QNSHO5
X-Message-ID-Hash: YQ6NZR3K6APXGMRTUO2CIBTO27QNSHO5
X-MailFrom: rvanrheenen@amsl.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dcrup.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: steffen@sdaoden.eu, standards@taugh.com, dcrup@ietf.org, RFC Editor <rfc-editor@rfc-editor.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Dcrup] Re: [Editorial Errata Reported] RFC8463 (7930)
List-Id: DKIM Crypto Update <dcrup.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dcrup/YNoY5tPTmbMs5osfD7YwKiH7HHY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dcrup>
List-Help: <mailto:dcrup-request@ietf.org?subject=help>
List-Owner: <mailto:dcrup-owner@ietf.org>
List-Post: <mailto:dcrup@ietf.org>
List-Subscribe: <mailto:dcrup-join@ietf.org>
List-Unsubscribe: <mailto:dcrup-leave@ietf.org>

Hi Murray and Orie,

We are unable to verify this erratum that the submitter marked as editorial, so we changed the Type to “Technical”. As Stream Approver, please review and set the Status and Type accordingly (see the definitions at https://www.rfc-editor.org/errata-definitions/)

Note that John Levine recommends rejecting this erratum.

Also note that we are sending this to you as ADs of the ART area; the dcrup WG has concluded. 

You may review the report at: 
https://www.rfc-editor.org/errata/eid7930

Information on how to verify errata reports can be found at: 
https://www.rfc-editor.org/how-to-verify/

Further information on errata can be found at: 
https://www.rfc-editor.org/errata.php

Thank you.

RFC Editor/rv


> On May 9, 2024, at 1:39 PM, RFC Errata System <rfc-editor@rfc-editor.org> wrote:
> 
> The following errata report has been submitted for RFC8463,
> "A New Cryptographic Signature Method for DomainKeys Identified Mail (DKIM)".
> 
> --------------------------------------
> You may review the report below and at:
> https://www.rfc-editor.org/errata/eid7930
> 
> --------------------------------------
> Type: Editorial
> Reported by: Steffen Nurpmeso <steffen@sdaoden.eu>
> 
> Section: A.3
> 
> Original Text
> -------------
> It is about the DKIM signature, baby, it is
> 
> /gCrinpcQOoIfuHNQIbq4pgh9kyIK3AQUdt9OdqQehSwhEIug4D11BusFa3bT3FY5OsU7ZbnKELq+eXdp1Q1Dw==
> 
> (even though this pastes terribly in this HTML)
> 
> Corrected Text
> --------------
> The signature should be
> 
> QGeDV9CRdXSybek0z54GoycZ4/kl1PsNnGoOsCZ0ZOOwiGYFE8Ft0SZpy1XLW/fwlwNFC1k6VaxsnQAH8+9cAA==
> 
> Notes
> -----
> On the DKIM list i wrote
> 
>> I come here because alongside the above i had a look at RFC 8463
>> again, and its example in "A.3.  Signed Message".
>> And if i use its "A.1.  Secret Keys", and (manually) normalize the
>> example message header of A.3 via "relaxed"
> [.]
>> and pass that through RFC 8032 code:
> 
>> privkey: b'nWGxne/9WmC6hEr0kuwsxERJxWl7MmkZcDusAxyuf2A=\n'
>> pubkey : b'11qYAYKxCrfVS/7TyWQHOg7hcvPapiMlrwIaaPcHURo=\n'
>> The message is:
>>>>> b'from:Joe SixPack <joe@football.example.com>\r\nto:Suzie Q <suzie@shopping.example.net>\r\nsubject:Is dinner ready?\r\ndate:Fri, 11 Jul 2003 21:00:37 -0700 (PDT)\r\nmessage-id:<20030712040037.46341.5F8J@football.example.com>\r\ndkim-signature:v=1; a=ed25519-sha256; c=relaxed/relaxed; d=football.example.com; i=@football.example.com; q=dns/txt; s=brisbane; t=1528637909; h=from : to : subject : date : message-id : from : subject : date; bh=2jUSOH9NhtVGCQWNr9BrIAPreKQjO6Sn7XIkfJVOzv8=; b='<<<
>> 
>> then i get
>> 
>> Signature: b'QGeDV9CRdXSybek0z54GoycZ4/kl1PsNnGoOsCZ0ZOOwiGYFE8Ft0SZpy1XLW/fwlwNFC1k6VaxsnQAH8+9cAA==\n'
>> Signature verifies: True
> 
> Instructions:
> -------------
> This erratum is currently posted as "Reported". (If it is spam, it 
> will be removed shortly by the RFC Production Center.) Please
> use "Reply All" to discuss whether it should be verified or
> rejected. When a decision is reached, the verifying party  
> will log in to change the status and edit the report, if necessary.
> 
> --------------------------------------
> RFC8463 (draft-ietf-dcrup-dkim-crypto-14)
> --------------------------------------
> Title               : A New Cryptographic Signature Method for DomainKeys Identified Mail (DKIM)
> Publication Date    : September 2018
> Author(s)           : J. Levine
> Category            : PROPOSED STANDARD
> Source              : DKIM Crypto Update
> Stream              : IETF
> Verifying Party     : IESG
>