[openpgp] [Technical Errata Reported] RFC4880 (7970)

RFC Errata System <rfc-editor@rfc-editor.org> Tue, 04 June 2024 14:02 UTC

Return-Path: <wwwrun@rfcpa.rfc-editor.org>
X-Original-To: openpgp@ietf.org
Delivered-To: openpgp@ietfa.amsl.com
Received: from rfcpa.rfc-editor.org (unknown [167.172.21.234]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1030FC14CE31; Tue, 4 Jun 2024 07:02:54 -0700 (PDT)
Received: by rfcpa.rfc-editor.org (Postfix, from userid 461) id 6D978B8FFA; Tue, 4 Jun 2024 07:02:53 -0700 (PDT)
To: jon@callas.org, lutz@iks-jena.de, hal@finney.org, dshaw@jabberwocky.com, rodney@canola-jones.com, debcooley1@gmail.com, paul.wouters@aiven.io, stephen.farrell@cs.tcd.ie, dkg@fifthhorseman.net
From: RFC Errata System <rfc-editor@rfc-editor.org>
Content-Type: text/plain; charset="UTF-8"
Message-Id: <20240604140253.6D978B8FFA@rfcpa.rfc-editor.org>
X-MailFrom: wwwrun@rfcpa.rfc-editor.org
X-Mailman-Rule-Hits: max-recipients
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-openpgp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-size; news-moderation; no-subject; digests; suspicious-header
Message-ID-Hash: QECUVPNUBRWPW24WTF2HDA5GRRMHTKFF
X-Message-ID-Hash: QECUVPNUBRWPW24WTF2HDA5GRRMHTKFF
X-Mailman-Approved-At: Tue, 18 Jun 2024 16:16:13 -0700
CC: openpgp@ietf.org, rfc-editor@rfc-editor.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [openpgp] [Technical Errata Reported] RFC4880 (7970)
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/ZHUErubJSQIXJcLeLYB6pgSiA-w>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Owner: <mailto:openpgp-owner@ietf.org>
List-Post: <mailto:openpgp@ietf.org>
List-Subscribe: <mailto:openpgp-join@ietf.org>
List-Unsubscribe: <mailto:openpgp-leave@ietf.org>
Date: Tue, 04 Jun 2024 14:02:54 -0000
X-Original-Date: Tue, 4 Jun 2024 07:02:53 -0700 (PDT)

The following errata report has been submitted for RFC4880,
"OpenPGP Message Format".

--------------------------------------
You may review the report below and at:
https://www.rfc-editor.org/errata/eid7970

--------------------------------------
Type: Technical
Reported by: Daniel Huigens <d.huigens@protonmail.com>

Section: 13.1.3

Original Text
-------------
     2. Using the list in Section 5.2.2, produce an ASN.1 DER value for
        the hash function used.  Let T be the full hash prefix from
        Section 5.2.2, and let tLen be the length in octets of T.

Corrected Text
--------------
     2. Using the list in Section 5.2.2, produce an ASN.1 DER value for
        the hash function used and the hash digest.  Let T be the full
        hash prefix from Section 5.2.2, concatenated with the hash
        digest H, and let tLen be the length in octets of T.

Notes
-----
This section is an informational (non-normative) copy of section 9.2 of RFC 3447.
However, it mistakenly omits the hash digest from the value T, and thus unintentionally diverges from RFC 3447.
Technically speaking, this does not affect the rest of RFC 4880 as its other sections refer to RFC 3447 rather than this section, but it is nevertheless incorrect and potentially confusing.
All implementations implement it correctly, however, so accepting this erratum should not lead to any changes in implementations.

Instructions:
-------------
This erratum is currently posted as "Reported". (If it is spam, it 
will be removed shortly by the RFC Production Center.) Please
use "Reply All" to discuss whether it should be verified or
rejected. When a decision is reached, the verifying party  
will log in to change the status and edit the report, if necessary.

--------------------------------------
RFC4880 (draft-ietf-openpgp-rfc2440bis-22)
--------------------------------------
Title               : OpenPGP Message Format
Publication Date    : November 2007
Author(s)           : J. Callas, L. Donnerhacke, H. Finney, D. Shaw, R. Thayer
Category            : PROPOSED STANDARD
Source              : Open Specification for Pretty Good Privacy
Stream              : IETF
Verifying Party     : IESG