Re: [pkix] DER encoding in RFC 3161
Peter Gutmann <pgut001@cs.auckland.ac.nz> Thu, 30 July 2020 10:15 UTC
Return-Path: <pgut001@cs.auckland.ac.nz>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 89DCD3A0FBC for <pkix@ietfa.amsl.com>; Thu, 30 Jul 2020 03:15:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.017
X-Spam-Level:
X-Spam-Status: No, score=-2.017 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=auckland.ac.nz
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LWMcG4W-D_ld for <pkix@ietfa.amsl.com>; Thu, 30 Jul 2020 03:15:44 -0700 (PDT)
Received: from mx4-int.auckland.ac.nz (mx4-int.auckland.ac.nz [130.216.125.246]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6D5093A0CF3 for <pkix@ietf.org>; Thu, 30 Jul 2020 03:15:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=auckland.ac.nz; i=@auckland.ac.nz; q=dns/txt; s=mail; t=1596104145; x=1627640145; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=Sm/ekVLrEgZtPrKmR2eFc5r4S/KeTLe+35g9iaZM1OM=; b=06yIMxyGsKx1JDpO1TH81JS2loYd7rj8Km9D0iwCvPiJvBxznLoLnbJd 6HmDVfpIEaVyKRnEJJZz+XK53I6a+sKsS4yowceRDbK0wWempkHlXPGeB 59qduuoDETqwFgYoFVi0gFjxdAdAnIL2yyyCVmmrcekxArF2RmPliY9pE TJ4hhpTbuL0uAlPLHpD5qVn2y1yB8UN22mrpypsVkPYnqoEr6p2Ez2wMo k8ypG7GpfryIsde20N4V3SqUT57jJadXh9aCBWWVmbTgSMWHuZLLm1Qgb XQIi11aSHAsn46JLTiVx/agLkUH3/13dAosYUK8BuQxT+BFH+0OUaGeVH Q==;
X-IronPort-AV: E=Sophos;i="5.75,414,1589198400"; d="scan'208";a="149716401"
X-Ironport-HAT: MAIL-SERVERS - $RELAYED
X-Ironport-Source: 10.6.3.2 - Outgoing - Outgoing
Received: from uxcn13-tdc-a.uoa.auckland.ac.nz ([10.6.3.2]) by mx4-int.auckland.ac.nz with ESMTP/TLS/AES256-SHA; 30 Jul 2020 22:15:42 +1200
Received: from uxcn13-ogg-d.UoA.auckland.ac.nz (10.6.2.5) by uxcn13-tdc-a.UoA.auckland.ac.nz (10.6.3.2) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Thu, 30 Jul 2020 22:15:41 +1200
Received: from uxcn13-ogg-d.UoA.auckland.ac.nz ([10.6.2.5]) by uxcn13-ogg-d.UoA.auckland.ac.nz ([10.6.2.5]) with mapi id 15.00.1497.006; Thu, 30 Jul 2020 22:15:40 +1200
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: Phillip Hallam-Baker <phill@hallambaker.com>, Koichi Sugimoto <koichi.sugimoto=40globalsign.com@dmarc.ietf.org>
CC: "pkix@ietf.org" <pkix@ietf.org>
Thread-Topic: [pkix] DER encoding in RFC 3161
Thread-Index: AdZksx18VlMWy5IjSUeqIghIxhGjWgA1PjsAADSNz/I=
Date: Thu, 30 Jul 2020 10:15:40 +0000
Message-ID: <1596104141331.18182@cs.auckland.ac.nz>
References: <PS1PR03MB48921EE23E93434559DF1ECE9D730@PS1PR03MB4892.apcprd03.prod.outlook.com>, <CAMm+LwhdgfkbwXrfX8yiK3UDJRGOGzMJ2mXuyKqZWTdGbBE6gQ@mail.gmail.com>
In-Reply-To: <CAMm+LwhdgfkbwXrfX8yiK3UDJRGOGzMJ2mXuyKqZWTdGbBE6gQ@mail.gmail.com>
Accept-Language: en-NZ, en-GB, en-US
Content-Language: en-NZ
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [130.216.158.4]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/pkix/Rt2wMcXIN-pOHIDD_bOEi0TjTdI>
Subject: Re: [pkix] DER encoding in RFC 3161
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pkix/>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Jul 2020 10:15:47 -0000
Phillip Hallam-Baker <phill@hallambaker.com> writes: >It is sufficiently possible that there are ASN.1 parsers there that insist on >strict DER with definite length encoding throughout Highly unlikely, since too many things would break if you did this, the last parser I know of that did this was in the mid-1990s. The rule has always been "take whatever blob the other side sends you and use that", thus my long ago comment that "there is only one encoding rule and that is memcpy()". So in practice you don't need to worry about it. I mean, in theory you should, but in practice you don't. Peter.
- [pkix] DER encoding in RFC 3161 Koichi Sugimoto
- Re: [pkix] DER encoding in RFC 3161 Phillip Hallam-Baker
- Re: [pkix] DER encoding in RFC 3161 Peter Gutmann
- Re: [pkix] DER encoding in RFC 3161 Todd E. Johnson
- Re: [pkix] DER encoding in RFC 3161 Koichi Sugimoto
- Re: [pkix] DER encoding in RFC 3161 mrex
- Re: [pkix] DER encoding in RFC 3161 Peter Gutmann
- Re: [pkix] DER encoding in RFC 3161 David Chadwick
- Re: [pkix] DER encoding in RFC 3161 mrex
- Re: [pkix] DER encoding in RFC 3161 Peter Gutmann
- Re: [pkix] DER encoding in RFC 3161 Manger, James
- Re: [pkix] DER encoding in RFC 3161 Peter Gutmann