[Acme] [Errata Verified] RFC8555 (5729)
RFC Errata System <rfc-editor@rfc-editor.org> Thu, 11 January 2024 14:07 UTC
Return-Path: <wwwrun@rfcpa.amsl.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC4C3C14F700; Thu, 11 Jan 2024 06:07:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.658
X-Spam-Level:
X-Spam-Status: No, score=-1.658 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.249, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JFA_Bhl2_BYq; Thu, 11 Jan 2024 06:07:37 -0800 (PST)
Received: from rfcpa.amsl.com (rfcpa.amsl.com [50.223.129.200]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2FADEC14F6EE; Thu, 11 Jan 2024 06:07:37 -0800 (PST)
Received: by rfcpa.amsl.com (Postfix, from userid 499) id A6A901A2161B; Thu, 11 Jan 2024 06:07:36 -0800 (PST)
To: rob@sectigo.com, rlb@ipv.sx, jsha@eff.org, cpu@letsencrypt.org, jdkasten@umich.edu
From: RFC Errata System <rfc-editor@rfc-editor.org>
Cc: rdd@cert.org, iesg@ietf.org, acme@ietf.org, iana@iana.org, rfc-editor@rfc-editor.org
Content-Type: text/plain; charset="UTF-8"
Message-Id: <20240111140736.A6A901A2161B@rfcpa.amsl.com>
Date: Thu, 11 Jan 2024 06:07:36 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/ahSvgcNEjXVkTvwTzEP77lBAQ0M>
X-Mailman-Approved-At: Fri, 12 Jan 2024 03:05:43 -0800
Subject: [Acme] [Errata Verified] RFC8555 (5729)
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Jan 2024 14:07:42 -0000
The following errata report has been verified for RFC8555, "Automatic Certificate Management Environment (ACME)". -------------------------------------- You may review the report below and at: https://www.rfc-editor.org/errata/eid5729 -------------------------------------- Status: Verified Type: Technical Reported by: Rob Stradling <rob@sectigo.com> Date Reported: 2019-05-22 Verified by: Roman Danyliw.com (IESG) Section: 7.5.1 Original Text ------------- The client indicates to the server that it is ready for the challenge validation by sending an empty JSON body ("{}") carried in a POST request to the challenge URL (not the authorization URL). Corrected Text -------------- The client indicates to the server that it is ready for the challenge validation by sending a POST request to the challenge URL (not the authorization URL), where the body of the POST request is a JWS object whose JSON payload is a response object (see Section 8). For all challenge types defined in this document, the response object is the empty JSON object ("{}"). Notes ----- It's clear from other text in section 7.5.1 that the "empty JSON body" is interpreted by the ACME server as a "response object". (The first function of this erratum is to clarify this point). Section 8 says that "The definition of a challenge type includes...Contents of response objects", and section 7.5.1 notes that "the challenges in this document do not define any response fields, but future specifications might define them". (The second function of this erratum is to permit clients to send response objects that contain response fields). -------------------------------------- RFC8555 (draft-ietf-acme-acme-18) -------------------------------------- Title : Automatic Certificate Management Environment (ACME) Publication Date : March 2019 Author(s) : R. Barnes, J. Hoffman-Andrews, D. McCarney, J. Kasten Category : PROPOSED STANDARD Source : Automated Certificate Management Environment Area : Security Stream : IETF Verifying Party : IESG
- [Acme] [Errata Verified] RFC8555 (5729) RFC Errata System