foolo
commented
2 months ago Looking a bit more at this, and realized that we probably also should make sure that every sanitized key is a valid ASN1 (DER) key. Yes, we could just remove certain characters and hope that the resulting value is a valid key value, but the keys could be broken in many ways that are hard to predict, and a hot-fix might just give more trouble.
So I would suggest the approach below, which is more work, but it would solve this and parts of other issues at the same time:
- First, implement https://github.com/zkemail/archive.prove.email/issues/83
- Update the logic so that it verifies that all new keys we add to the database are either valid ASN1 or empty. If we really want to store broken keys, we could flag them as "invalid" in the database.
- Batch process existing keys in the database and verify that they are either valid or empty. If not, do a new improved DNS lookup according to 1. and 2. If the keys are then still invalid, remove them, or mark as "invalid", so that we never present them to the user.
Divide-By-0
(Found when investigating non-matching keys found by the RSA GCD solver.)
Some DNS records are faulty and include none-base64 characters, which makes the key incorrect, but the key matches the results if we remove those extra characters.
Example:
dig Intel._domainkey.intel.com TXT +shortResult:
Note the extra space in the second partial string
We should probably clean these up before adding them to the database, and also fix existing such values in the database.