DKIM-Signature: a=rsa-sha1; d=example.net; s=brisbane;
c=simple; q=dns; i=(_at_)eng(_dot_)example(_dot_)net;
b=dzd.....YzR;
h=A:B;
A: <SP> X <CRLF>
B: <SP> Y <CRLF>
<SP> Z <CRLF>
<CRLF>
C <CRLF>
D <SP><TAB><SP> E <CRLF>
is canonicalized to:
a:X<CRLF>b:YZ<CRLF><CRLF>CDE
<CRLF>dkim-signature:a=rsa-sha1;d=example.net;
s=brisbane;c=simple;q=dns;i=(_at_)eng(_dot_)example(_dot_)net;b=;h=A:B
I don't have any references to look at right now but I think you're missing
the CRLF at the end of the message body. I think it canonicalizes to this:
a:X<CRLF>b:YZ<CRLF><CRLF>CDE<CRLF>
<CRLF>dkim-signature:a=rsa-sha1;d=example.net;
s=brisbane;c=simple;q=dns;i=(_at_)eng(_dot_)example(_dot_)net;b=;h=A:B
PS: is the dkim-dev maling list active yet? I haven't
received any mail from it yet.
I'm on it but nobody is posting there so far.
--
Arvel