IETF Logo Mail Archive

Re: [lamps] draft-ietf-lamps-samples: PKCS12 expertise needed (including objects for comparison)

Daniel Kahn Gillmor <dkg@fifthhorseman.net> Sun, 01 August 2021 00:27 UTC

Return-Path: <dkg@fifthhorseman.net>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D46F43A2274 for <spasm@ietfa.amsl.com>; Sat, 31 Jul 2021 17:27:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=fifthhorseman.net header.b=wYfo8t1n; dkim=pass (2048-bit key) header.d=fifthhorseman.net header.b=qbq++37y
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1UTadE93ETMy for <spasm@ietfa.amsl.com>; Sat, 31 Jul 2021 17:27:23 -0700 (PDT)
Received: from che.mayfirst.org (che.mayfirst.org [IPv6:2001:470:1:116::7]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D37AC3A2272 for <spasm@ietf.org>; Sat, 31 Jul 2021 17:27:22 -0700 (PDT)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=fifthhorseman.net; i=@fifthhorseman.net; q=dns/txt; s=2019; t=1627777640; h=from : to : subject : in-reply-to : references : date : message-id : mime-version : content-type : from; bh=F5ROuW5ZFKQaT1tzs1n5pFQRqTiRMn4T5SN9JRar7CE=; b=wYfo8t1nM1qfegRN69OwNqXHy3Jrd7y0zUYHPBln7BdI9jBtnOIVx4LvtTi3zuj0vKZ4l 6a8X3NXCeLzTj84Dg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=fifthhorseman.net; i=@fifthhorseman.net; q=dns/txt; s=2019rsa; t=1627777640; h=from : to : subject : in-reply-to : references : date : message-id : mime-version : content-type : from; bh=F5ROuW5ZFKQaT1tzs1n5pFQRqTiRMn4T5SN9JRar7CE=; b=qbq++37yi0ihTsIlIKHr6p6TBN8RbivB4rqt5tAriuK58vavoJivjwWO9/L878IuVENqT QVLuxW9WA0iPTP3HZv2ipM7vF0ew4AWA30IFC/YCvZA0CdHL7yNIEmgx39vLsLRDy7Ts+Mp Filxye/5bODIg0pl/sUlQrBCXdJJ7s9YMllIIWd86PAeOlqZGPWWFvg+WG1L2Re39b43687 qheae2JNhWgsIBmtMopl3FkwhOKNk1BioMzMw74dTH4wL5fosnOnh6vwRJD3Y1dQfFUOgac a/0xi/cBphIq/BXMGRGz28NfTEizoNvzHh9T1go4un8soMMZ2i9LHWGy0rNA==
Received: from fifthhorseman.net (lair.fifthhorseman.net [108.58.6.98]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by che.mayfirst.org (Postfix) with ESMTPSA id A4C37F9A6 for <spasm@ietf.org>; Sat, 31 Jul 2021 20:27:20 -0400 (EDT)
Received: by fifthhorseman.net (Postfix, from userid 1000) id 1BC4E2033B; Sat, 31 Jul 2021 01:19:44 -0400 (EDT)
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
To: LAMPS WG <spasm@ietf.org>
In-Reply-To: <FF939B28-528B-47F9-9C0C-6585D1B02FBE@vigilsec.com>
References: <87czr0ww0d.fsf@fifthhorseman.net> <FF939B28-528B-47F9-9C0C-6585D1B02FBE@vigilsec.com>
Autocrypt: addr=dkg@fifthhorseman.net; prefer-encrypt=mutual; keydata= mDMEX+i03xYJKwYBBAHaRw8BAQdACA4xvL/xI5dHedcnkfViyq84doe8zFRid9jW7CC9XBiI0QQf FgoAgwWCX+i03wWJBZ+mAAMLCQcJEOCS6zpcoQ26RxQAAAAAAB4AIHNhbHRAbm90YXRpb25zLnNl cXVvaWEtcGdwLm9yZ/tr8E9NA10HvcAVlSxnox6z62KXCInWjZaiBIlgX6O5AxUKCAKbAQIeARYh BMKfigwB81402BaqXOCS6zpcoQ26AADZHQD/Zx9nc3N2kj13AUsKMr/7zekBtgfSIGB3hRCU74Su G44A/34Yp6IAkndewLxb1WdRSokycnaCVyrk0nb4imeAYyoPtBc8ZGtnQGZpZnRoaG9yc2VtYW4u bmV0PojRBBMWCgCDBYJf6LTfBYkFn6YAAwsJBwkQ4JLrOlyhDbpHFAAAAAAAHgAgc2FsdEBub3Rh dGlvbnMuc2VxdW9pYS1wZ3Aub3JnL0Gwxvypz2tu1IPG+yu1zPjkiZwpscsitwrVvzN3bbADFQoI ApsBAh4BFiEEwp+KDAHzXjTYFqpc4JLrOlyhDboAAPkXAP0Z29z7jW+YzLzPTQML4EQLMbkHOfU4 +s+ki81Czt0WqgD/SJ8RyrqDCtEP8+E4ZSR01ysKqh+MUAsTaJlzZjehiQ24MwRf6LTfFgkrBgEE AdpHDwEBB0DkKHOW2kmqfAK461+acQ49gc2Z6VoXMChRqobGP0ubb4kBiAQYFgoBOgWCX+i03wWJ BZ+mAAkQ4JLrOlyhDbpHFAAAAAAAHgAgc2FsdEBub3RhdGlvbnMuc2VxdW9pYS1wZ3Aub3Jnfvo+ nHoxDwaLaJD8XZuXiaqBNZtIGXIypF1udBBRoc0CmwICHgG+oAQZFgoAbwWCX+i03wkQPp1xc3He VlxHFAAAAAAAHgAgc2FsdEBub3RhdGlvbnMuc2VxdW9pYS1wZ3Aub3JnaheiqE7Pfi3Atb3GGTw+ jFcBGOaobgzEJrhEuFpXREEWIQQttUkcnfDcj0MoY88+nXFzcd5WXAAAvrsBAIJ5sBg8Udocv25N stN/zWOiYpnjjvOjVMLH4fV3pWE1AP9T6hzHz7hRnAA8d01vqoxOlQ3O6cb/kFYAjqx3oMXSBhYh BMKfigwB81402BaqXOCS6zpcoQ26AADX7gD/b83VObe14xrNP8xcltRrBZF5OE1rQSPkMNy+eWpk eCwA/1hxiS8ZxL5/elNjXiWuHXEvUGnRoVj745Vl48sZPVYMuDgEX+i03xIKKwYBBAGXVQEFAQEH QIGex1WZbH6xhUBve5mblScGYU+Y8QJOomXH+rr5tMsMAwEICYjJBBgWCgB7BYJf6LTfBYkFn6YA CRDgkus6XKENukcUAAAAAAAeACBzYWx0QG5vdGF0aW9ucy5zZXF1b2lhLXBncC5vcmcEAx9vTD3b J0SXkhvcRcCr6uIDJwic3KFKxkH1m4QW0QKbDAIeARYhBMKfigwB81402BaqXOCS6zpcoQ26AAAX mwD8CWmukxwskU82RZLMk5fm1wCgMB5z8dA50KLw3rgsCykBAKg1w/Y7XpBS3SlXEegIg1K1e6dR fRxL7Z37WZXoH8AH
Date: Sat, 31 Jul 2021 01:19:43 -0400
Message-ID: <87mtq3ukk0.fsf@fifthhorseman.net>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/e4jm2tzFbWc9WW2ov8_KWeJzfG4>
Subject: Re: [lamps] draft-ietf-lamps-samples: PKCS12 expertise needed (including objects for comparison)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 01 Aug 2021 00:27:28 -0000

On Fri 2021-07-30 10:57:25 -0400, Russ Housley wrote:

> 40-bit RC2? Really?

hey, i just clicked the buttons, i didn't set any knobs!

afaict, it looks to me like the 40-bit RC2 in bob.laundered.p12 is
wrapping the certificates themselves, not the associated secret keys,
which i think are inside the pkcs-12-pkcs-8ShroudedKeyBag objects, which
are protected with pbeWithSHAAnd3-KeyTripleDES-CBC instead?

hm, looks like bob.laundered.p12 is also missing the cross-signed
intermediate CA cert, but that is probably due to operator error when i
was trying to figure out what to select in Thunderbird's certificate
manager to make the exported p12 object contain the right keys.

Seems to me like there's no need to encrypt any of the public objects
(certificates) in a PKCS12 file, and 40-bit RC2 doesn't seem that much
worse than cleartext.

do folks here think it's a bug that Keychain Access isn't capable of
reading bob.p12, but is capable of reading bob.laundered.p12?  or is
bob.p12 actually malformed in some way?

I confess i don't understand the definite length encoding vs. indefinite
encoding question.  are these both acceptable PKCS#12 structures?

     --dkg

v2.23.0 | Report a Bug | By Email