[Dcrup] Re: [standards] [Editorial Errata Reported] RFC8463 (7930)
Steffen Nurpmeso <steffen@sdaoden.eu> Mon, 13 May 2024 20:33 UTC
Return-Path: <steffen@sdaoden.eu>
X-Original-To: dcrup@ietfa.amsl.com
Delivered-To: dcrup@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 80DA9C207967 for <dcrup@ietfa.amsl.com>; Mon, 13 May 2024 13:33:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sdaoden.eu header.b="E6I4ttNB"; dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=sdaoden.eu header.b="+bonEFat"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KeIzRc5FL-I2 for <dcrup@ietfa.amsl.com>; Mon, 13 May 2024 13:33:05 -0700 (PDT)
Received: from sdaoden.eu (sdaoden.eu [217.144.132.164]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EABCDC1E725C for <dcrup@ietf.org>; Mon, 13 May 2024 13:33:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sdaoden.eu; s=citron; t=1715632380; x=1716299046; h=date:author:from:to:cc:subject: message-id:in-reply-to:references:mail-followup-to:openpgp:blahblahblah: mime-version:content-type:content-transfer-encoding:author:from:subject: date:to:cc:resent-date:resent-from:resent-to:resent-cc:in-reply-to: references:mime-version:content-type:content-transfer-encoding:message-id: mail-followup-to:openpgp:blahblahblah; bh=4XVhVURA9PYSeQgLlFjaC9MdCpFKKYkKQFrI+cckUx8=; b=E6I4ttNBMamfHQ2UW1lLLSzcCTn5wF6qDqW5i+r96p9tuyD+uYGvkJsTUCwy8yLECQFM2Vrv RpHV/ZqIu5Jq7D4cR/SGvk150YUYn74JKqt0UsDS43gFLFpyYw7OEgRAeY38XNsmZOHjwqVM+0 YkEestyn9xmg7D/RwlHv+OBNYhRqxbtSxXID+9T9EkEsJPXuXuevSIHZLpT3NWgQGsjNJns5TL 8otMP/VhwLWkj9IiIEc6AlUAubq8Ny64XJLJSEvqH/S5Am3WEWrHOP9hbHL8lNTinuOhnISFlX fySBFrL/CRN36+tCjEv2n7PjoLPuW2h2htYBiQC3BPdRROcA==
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=sdaoden.eu; s=orange; t=1715632380; x=1716299046; h=date:author:from:to:cc:subject: message-id:in-reply-to:references:mail-followup-to:openpgp:blahblahblah: mime-version:content-type:content-transfer-encoding:author:from:subject: date:to:cc:resent-date:resent-from:resent-to:resent-cc:in-reply-to: references:mime-version:content-type:content-transfer-encoding:message-id: mail-followup-to:openpgp:blahblahblah; bh=4XVhVURA9PYSeQgLlFjaC9MdCpFKKYkKQFrI+cckUx8=; b=+bonEFatdhu5p0aXhN9aAkSt2vDTak7aDZfhf4Qq5tZ4zXzd5BwWNl8z9Zl5uyHI/v0/i3jV sjpyA0y68TbgBw==
Date: Mon, 13 May 2024 22:32:59 +0200
Author: Steffen Nurpmeso <steffen@sdaoden.eu>
From: Steffen Nurpmeso <steffen@sdaoden.eu>
To: Hector Santos <hsantos@isdg.net>
Message-ID: <20240513203259.hFdFtvyd@steffen%sdaoden.eu>
In-Reply-To: <ACD165BA-9195-480E-9FA0-44A44097E6A8@isdg.net>
References: <ZkAOictS1ygyIBZe@chardros.imrryr.org> <20240512005258.N-lL8YIA@steffen%sdaoden.eu> <CAL0qLwYPtxxDhYEjH0D5YkcXBf6Qy6Xcux7PdvFtwhJzpaUxyg@mail.gmail.com> <ACD165BA-9195-480E-9FA0-44A44097E6A8@isdg.net>
Mail-Followup-To: Hector Santos <hsantos@isdg.net>, "Murray S. Kucherawy" <superuser@gmail.com>, Viktor Dukhovni <viktor@dukhovni.org>, John R Levine <johnl@taugh.com>, dcrup@ietf.org, Steffen Nurpmeso <steffen@sdaoden.eu>
User-Agent: s-nail v14.9.24-621-g0d1e55f367
OpenPGP: id=EE19E1C1F2F7054F8D3954D8308964B51883A0DD; url=https://ftp.sdaoden.eu/steffen.asc; preference=signencrypt
BlahBlahBlah: Any stupid boy can crush a beetle. But all the professors in the world can make no bugs.
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Message-ID-Hash: A3ZFW7SP2YLYXLZT7D4ORDJGRM4XRDCD
X-Message-ID-Hash: A3ZFW7SP2YLYXLZT7D4ORDJGRM4XRDCD
X-MailFrom: steffen@sdaoden.eu
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dcrup.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Murray S. Kucherawy" <superuser@gmail.com>, Viktor Dukhovni <viktor@dukhovni.org>, John R Levine <johnl@taugh.com>, dcrup@ietf.org, Steffen Nurpmeso <steffen@sdaoden.eu>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Dcrup] Re: [standards] [Editorial Errata Reported] RFC8463 (7930)
List-Id: DKIM Crypto Update <dcrup.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dcrup/eUhECDleoGezycxs3_a27M87gAA>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dcrup>
List-Help: <mailto:dcrup-request@ietf.org?subject=help>
List-Owner: <mailto:dcrup-owner@ietf.org>
List-Post: <mailto:dcrup@ietf.org>
List-Subscribe: <mailto:dcrup-join@ietf.org>
List-Unsubscribe: <mailto:dcrup-leave@ietf.org>
Hector Santos wrote in <ACD165BA-9195-480E-9FA0-44A44097E6A8@isdg.net>: |And if I may: | |4) Considering Generative AI (GAI) to assist in resolving the conflict \ |you see and also consider using GAI to assist in writing your technical \ |responses. | |My personal say, I trust Levine’s judgement (confirmed by Viktor) \ |this was an implementation coding issue and not an RFC errata issue. \ | Yet, “examples” in many RFC are not always the best, not easy to \ |repeat. It helps when they do especially when you are in a required \ |position to write raw code to implement, i.e. not use a 3rd party API. \ | However, heed Murray’s suggestion #3 - do try to use another 3rd \ |party source to duplicate the answer or problem. This is where GAI \ |like GPT4 will help. In GAI theory, feeding this RFC to the engine \ |with a prompt “create code to duplicate the example” SHOULD give you \ |a good answer. If it cannot, then the RFC needs some fixing perhaps. \ | But I am not going there. <g> Interesting idea, but i do *not* use AI by definition. Of course the saying of the area director is a bit problematic because "repeating with other implementations" is a tremendous effort as they usually require very specific configurations to be matched. This is not easy achievable. Not even with my own code. "It is ok", but i want to say again (there were some private emails and i have forgotten where i said what, i am talking too much, anyway) that RFC 8463 uses *three* digests, whereas RFC 6376 wants *two*. The claim of 6376 is satisfied by passing the headers, not by passing a generated signature, and code paths as are used by implementations require dedicated extra passes to satisfy what seems to be RFC 8463, in addition to what was already posted here is another example: static int sephash = 0; ... #ifdef HAVE_ED25519 } else if (strncmp(optarg, "ed25519-", 8) == 0) { hashalg = optarg + 8; cryptalg = "ed25519"; keyid = EVP_PKEY_ED25519; sephash = 1; #endif --steffen | |Der Kragenbaer, The moon bear, |der holt sich munter he cheerfully and one by one |einen nach dem anderen runter wa.ks himself off |(By Robert Gernhardt)
- [Dcrup] [Editorial Errata Reported] RFC8463 (7930) RFC Errata System
- [Dcrup] Re: [standards] [Editorial Errata Reporte… John R Levine
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Alessandro Vesely
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Steffen Nurpmeso
- [Dcrup] Re: [standards] [Editorial Errata Reporte… John R Levine
- [Dcrup] Re: [Editorial Errata Reported] RFC8463 (… Steffen Nurpmeso
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Viktor Dukhovni
- [Dcrup] Re: [Editorial Errata Reported] RFC8463 (… Viktor Dukhovni
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Steffen Nurpmeso
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Steffen Nurpmeso
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Steffen Nurpmeso
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Steffen Nurpmeso
- [Dcrup] Re: [standards] [Editorial Errata Reporte… John R Levine
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Viktor Dukhovni
- [Dcrup] Re: [Editorial Errata Reported] RFC8463 (… Steffen Nurpmeso
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Hector Santos
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Alessandro Vesely
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Viktor Dukhovni
- [Dcrup] Re: [Editorial Errata Reported] RFC8463 (… Rebecca VanRheenen
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Alessandro Vesely
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Steffen Nurpmeso
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Viktor Dukhovni
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Steffen Nurpmeso
- [Dcrup] Re: [Ietf-dkim] [standards] [Editorial Er… Hector Santos
- [Dcrup] Re: [Ietf-dkim] [standards] [Editorial Er… Viktor Dukhovni
- [Dcrup] Re: [Ietf-dkim] [standards] [Editorial Er… Steffen Nurpmeso
- [Dcrup] Re: [Ietf-dkim] [standards] [Editorial Er… Viktor Dukhovni
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Murray S. Kucherawy
- [Dcrup] Re: [Editorial Errata Reported] RFC8463 (… Murray S. Kucherawy
- [Dcrup] Re: [Editorial Errata Reported] RFC8463 (… Orie Steele
- [Dcrup] Re: [standards] [Editorial Errata Reporte… Murray S. Kucherawy