[Bug 6287] New: DKIM validation fails with "PUBLIC KEY: UNSUPPORTED KEY TYPE"

Sat, 16 Jan 2010 07:16:32 -0800 

https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6287

           Summary: DKIM validation fails with "PUBLIC KEY: UNSUPPORTED
                    KEY TYPE"
           Product: Spamassassin
           Version: 3.2.5
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P5
         Component: Plugins
        AssignedTo: [email protected]
        ReportedBy: [email protected]


Created an attachment (id=4645)
 --> (https://issues.apache.org/SpamAssassin/attachment.cgi?id=4645)
example e-mail which fails DKIM validation

Although DKIM validation works OK for some sites, for some it fails with
"unsupported key type".

Error looks like this:
[1353] dbg: config: fixed relative path:
/var/lib/spamassassin/3.002005/updates_spamassassin_org/25_dkim.cf
[1353] dbg: config: using
"/var/lib/spamassassin/3.002005/updates_spamassassin_org/25_dkim.cf" for
included file
[1353] dbg: config: read file
/var/lib/spamassassin/3.002005/updates_spamassassin_org/25_dkim.cf
[1353] dbg: config: fixed relative path:
/var/lib/spamassassin/3.002005/updates_spamassassin_org/60_whitelist_dkim.cf
[1353] dbg: config: using
"/var/lib/spamassassin/3.002005/updates_spamassassin_org/60_whitelist_dkim.cf"
for included file
[1353] dbg: config: read file
/var/lib/spamassassin/3.002005/updates_spamassassin_org/60_whitelist_dkim.cf
[1353] dbg: dkim: performing public key lookup and signature verification
[1353] dbg: dkim: signing identity: [email protected], d=kiva.org, a=rsa-sha1,
c=nofws
[1353] dbg: dkim: signing identity: @kiva.org, d=kiva.org, a=rsa-sha1,
c=simple/simple
[1353] dbg: dkim: signature verification result: INVALID (PUBLIC KEY:
UNSUPPORTED KEY TYPE)
[1353] dbg: dkim: FAILED author signature by id [email protected], author
[email protected], MATCHES whitelist_auth ^...@kiva\.org$
[1353] dbg: dkim: FAILED author signature by id [email protected], author
[email protected], no valid matches
[1353] dbg: dkim: FAILED author signature by id @kiva.org, author
[email protected], MATCHES whitelist_auth ^...@kiva\.org$
[1353] dbg: dkim: FAILED author signature by id @kiva.org, author
[email protected], no valid matches
[1353] dbg: dkim: author [email protected], found in whitelist_auth BUT IGNORED
[1353] dbg: dkim: policy: performing lookup
[1353] dbg: dkim: policy result neutral: o=~

Why is this public key type unsupported, and can that be fixed ?

System is Debian Lenny (AMD64), spamassin is 3.2.5-2+lenny1.1~volatile1.
Validation fails with same error both with default Lenny libmail-dkim-perl
(0.32-1) and with the newer one from squeeze (0.37-1)

-- 
Configure bugmail: 
https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

Reply via email to