Re: [pkix] [Technical Errata Reported] RFC3779 (7653)
Job Snijders <job@fastly.com> Wed, 27 September 2023 16:10 UTC
Return-Path: <job@fastly.com>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 653FBC15152E for <pkix@ietfa.amsl.com>; Wed, 27 Sep 2023 09:10:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=fastly.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bArH44MYwJs9 for <pkix@ietfa.amsl.com>; Wed, 27 Sep 2023 09:10:04 -0700 (PDT)
Received: from mail-lf1-x12a.google.com (mail-lf1-x12a.google.com [IPv6:2a00:1450:4864:20::12a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 74556C1519B3 for <pkix@ietf.org>; Wed, 27 Sep 2023 09:09:56 -0700 (PDT)
Received: by mail-lf1-x12a.google.com with SMTP id 2adb3069b0e04-5041bb9ce51so18464020e87.1 for <pkix@ietf.org>; Wed, 27 Sep 2023 09:09:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fastly.com; s=google; t=1695830994; x=1696435794; darn=ietf.org; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:from:to:cc:subject:date:message-id:reply-to; bh=5VZGwrksc6qZvdhakqx+YnWy+eup9o9w0yhUkLJI8io=; b=wLcSe2Ip0Fl22E3p6RnJX0j97j0hVevT+ZFaT4aUrMtZx2OOh0065aAcSN1zUYXgmS jHbYXSu3nWkofRefkgE0nPKadBj9Ca61tXvou8Lr1d5VEncuDDG+FZyaWRZLZAyTsV+N b02AbK//VTEXTDqSeV3iOlcIwynwQoE7DvQYg=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1695830994; x=1696435794; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:cc:to:from:date:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=5VZGwrksc6qZvdhakqx+YnWy+eup9o9w0yhUkLJI8io=; b=GeaWpvzJMGsQ1IeE/e+4DeUAN98H4IpsFmZrG2AUpNxLSRUNXTWx+CSxfFUel7VSWz 4h/nu76t1aCboIfhbXHKagE5jveuHquCbxHAhhJ6zQBJ4hMgL0Q8shsFkFUg6MTAc1qr zKv2wRTg3fwkpwn3JsYrBsCgp1cSqB5Ttthn47J23tqNCCdx+wna+MK8iezpcknm8Duj NA6R/It0VCLbTJHVyY0iUGgcE0opDZLoVRZhjZCE+jTy3X9ZlQU/6If6LWhiW5s7lYXK FdM/s/bF5gS+IK3YBGfnlYH0Pmhgso3RAwFYNOo+bknVrE92bG8gQJcwUgjnHuuHyGdR w4ug==
X-Gm-Message-State: AOJu0YyP9vI4uLE65F3Tu4Xmy6aLjESX/gMvMHBd1QTRnwZVrR1tYU+C 9bxfLQ8eJF88pyyWWJWubFFHAg==
X-Google-Smtp-Source: AGHT+IHay7LHr1e7clMvXTy/m5O+e1Nj4YChImBG9mBBrF8MsMTKt+2GaLCF+UGupU6+ztgs+USl9w==
X-Received: by 2002:a05:6512:33d3:b0:4fd:d64f:c0a6 with SMTP id d19-20020a05651233d300b004fdd64fc0a6mr2290048lfg.48.1695830993656; Wed, 27 Sep 2023 09:09:53 -0700 (PDT)
Received: from snel ([2a10:3781:276:3:16f6:d8ff:fe47:2eb7]) by smtp.gmail.com with ESMTPSA id ek10-20020a056402370a00b00533dd4d2947sm5169767edb.74.2023.09.27.09.09.52 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 27 Sep 2023 09:09:53 -0700 (PDT)
Date: Wed, 27 Sep 2023 18:09:51 +0200
From: Job Snijders <job@fastly.com>
To: Russ Housley <housley@vigilsec.com>
Cc: IETF PKIX <pkix@ietf.org>, "Roman D. Danyliw" <rdd@cert.org>, Paul Wouters <paul.wouters@aiven.io>, Stefan Santesson <stefan@aaa-sec.com>
Message-ID: <ZRRTz8HttwVYHno2@snel>
References: <20230922121745.D1D50E5F67@rfcpa.amsl.com> <67B1F9CD-F8E9-4895-A0AC-C6B32EAE7150@vigilsec.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <67B1F9CD-F8E9-4895-A0AC-C6B32EAE7150@vigilsec.com>
X-Clacks-Overhead: GNU Terry Pratchett
Archived-At: <https://mailarchive.ietf.org/arch/msg/pkix/iZnCd58xgl1C47GSeFemAU9CF1g>
Subject: Re: [pkix] [Technical Errata Reported] RFC3779 (7653)
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pkix/>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Sep 2023 16:10:08 -0000
Dear Russ, On Wed, Sep 27, 2023 at 11:29:51AM -0400, Russ Housley wrote: > Two thoughts below. > > > The following errata report has been submitted for RFC3779, > > "X.509 Extensions for IP Addresses and AS Identifiers". > > > > -------------------------------------- > > You may review the report below and at: > > https://www.rfc-editor.org/errata/eid7653 > > > > -------------------------------------- > > Type: Technical > > Reported by: Job Snijders <job@fastly.com> > > > > Section: 3.2.3 > > > > Original Text > > ------------- > > Section 3.2.3.4: > > Any contiguous series of AS identifiers MUST be combined into a single range > > whenever possible. > > > > Section 3.2.3.8: > > The ASRange type is a SEQUENCE consisting of a min and a max element, > > and is used to specify a range of AS identifier values. > > > > Corrected Text > > -------------- > > Section 3.2.3.4: > > Any contiguous series of AS identifiers MUST be combined into a single range > > or, whenever possible, represented as a single ASId. > > I don't like "or, whenever possible". That is not well specified and > thus unlikely to yield a canonical result. In my view, this text is > not an improvement to the existing text. I see your point. Can someone with the right permissions edit the errata to remove the two sentences about section 3.2.3.4? > > Section 3.2.3.8: > > The ASRange type is a SEQUENCE consisting of a min and a max element, > > and is used to specify a range of AS identifier values. The min and max > > elements MUST specify two distinct AS identifiers. > > This statement seems clear to me, and I think it is an improvement over the current text. Thanks Kind regards, Job
- [pkix] [Technical Errata Reported] RFC3779 (7653) RFC Errata System
- Re: [pkix] [Technical Errata Reported] RFC3779 (7… Russ Housley
- Re: [pkix] [Technical Errata Reported] RFC3779 (7… Job Snijders
- Re: [pkix] [Technical Errata Reported] RFC3779 (7… Stefan Santesson
- Re: [pkix] [Technical Errata Reported] RFC3779 (7… Job Snijders
- Re: [pkix] [Technical Errata Reported] RFC3779 (7… Russ Housley
- Re: [pkix] [Technical Errata Reported] RFC3779 (7… Paul Wouters