[Ietf-dkim] RFC 8463: DNS textual form underspecified
Steffen Nurpmeso <steffen@sdaoden.eu> Sun, 14 April 2024 00:51 UTC
Return-Path: <steffen@sdaoden.eu>
X-Original-To: ietf-dkim@ietfa.amsl.com
Delivered-To: ietf-dkim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2F6C7C14F5EA for <ietf-dkim@ietfa.amsl.com>; Sat, 13 Apr 2024 17:51:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SC_bfqJ2gUTG for <ietf-dkim@ietfa.amsl.com>; Sat, 13 Apr 2024 17:51:32 -0700 (PDT)
Received: from sdaoden.eu (sdaoden.eu [217.144.132.164]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5F4A3C14F60F for <ietf-dkim@ietf.org>; Sat, 13 Apr 2024 17:51:31 -0700 (PDT)
Date: Sun, 14 Apr 2024 02:51:26 +0200
Author: Steffen Nurpmeso <steffen@sdaoden.eu>
From: Steffen Nurpmeso <steffen@sdaoden.eu>
To: ietf-dkim@ietf.org
Message-ID: <20240414005126.pzjJO4pr@steffen%sdaoden.eu>
Mail-Followup-To: ietf-dkim@ietf.org
User-Agent: s-nail v14.9.24-612-g7e3bfac540
OpenPGP: id=EE19E1C1F2F7054F8D3954D8308964B51883A0DD; url=https://ftp.sdaoden.eu/steffen.asc; preference=signencrypt
BlahBlahBlah: Any stupid boy can crush a beetle. But all the professors in the world can make no bugs.
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-dkim/-_wOwkGh8CUrd6My6gw8FrFJDlY>
Subject: [Ietf-dkim] RFC 8463: DNS textual form underspecified
X-BeenThere: ietf-dkim@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DKIM List <ietf-dkim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-dkim/>
List-Post: <mailto:ietf-dkim@ietf.org>
List-Help: <mailto:ietf-dkim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-dkim>, <mailto:ietf-dkim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 14 Apr 2024 00:51:37 -0000
Hello. Thanks to Hanno Böck (known from ossec and more) i was pointed to my falsely published ED25519 DKIM key. Until now that simply was the complete ED25519 public key, just like for RSA, instead of extracting the actual "bitstring data" from the standardized ASN.1 container, which starts at offset 16 (or -offset=12 if you use "openssl asn1parse -noout -out -" aka the binary blob). I realize that RFC 8463 says repeatedly that the base64-encoded representation of an ED25519 key is 44 bytes, and that the examples go for this. Still there is no wording that the entire ASN.1 structure shall be thrown away. --steffen | |Der Kragenbaer, The moon bear, |der holt sich munter he cheerfully and one by one |einen nach dem anderen runter wa.ks himself off |(By Robert Gernhardt)
- [Ietf-dkim] RFC 8463: DNS textual form underspeci… Steffen Nurpmeso
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… Steffen Nurpmeso
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… John Levine
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… Steffen Nurpmeso
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… Scott Kitterman
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… Steffen Nurpmeso
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… Scott Kitterman
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… Steffen Nurpmeso
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… Scott Kitterman
- Re: [Ietf-dkim] RFC 8463: DNS textual form unders… Steffen Nurpmeso