[pkix] Re: [Technical Errata Reported] RFC5272 (8027)

Sean Turner <sean@sn3rd.com> Thu, 25 July 2024 17:57 UTC

Return-Path: <sean@sn3rd.com>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD2AAC180B54 for <pkix@ietfa.amsl.com>; Thu, 25 Jul 2024 10:57:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sn3rd.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cbVo55jQD_4q for <pkix@ietfa.amsl.com>; Thu, 25 Jul 2024 10:57:05 -0700 (PDT)
Received: from mail-pl1-x630.google.com (mail-pl1-x630.google.com [IPv6:2607:f8b0:4864:20::630]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4B534C16940D for <pkix@ietf.org>; Thu, 25 Jul 2024 10:57:00 -0700 (PDT)
Received: by mail-pl1-x630.google.com with SMTP id d9443c01a7336-1fc692abba4so11392045ad.2 for <pkix@ietf.org>; Thu, 25 Jul 2024 10:57:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; t=1721930219; x=1722535019; darn=ietf.org; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=KFCvmQKVPwAA+iwlqyPwtiELl8eBYT579amdwIK1AHg=; b=RWh8aCriAt7nrbzi81aeTCZd1h3VqR6I2zzVbLqggiF5+RjpYKEQruhiF2uSNx/Foq +0SWu17fwoke4T+gvFOMLSK+n+HBbOEN9SZeGScEAeCdZco/bZ4zamV3A1N3M3iEpG2v tkEXEcGD9if/zo64VJzsrCGOn4D3PwSK4IGu8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1721930219; x=1722535019; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=KFCvmQKVPwAA+iwlqyPwtiELl8eBYT579amdwIK1AHg=; b=c8By9rPsgVmKUnM/+qFkjI9NhAK+oCo02h4TFNjjMO+2aeAiy4knkmJvHDJ2GJgAeZ VHo7sNL1XSCG0f0e4WWBxx+0yyvk2P8kzW36nWYSrAxGdQf9oGlN4ORA19qNKkRQYNxZ af4zjpNEKp/Av35H6BvX0/T0jjjEmjVGwgzdTYajYcyXsyZHMBCbiy+VUhniwBGsNXe5 uU0yJiVPY5hCSl2dm3epbvV57xKzkkMD/8EBxs3qITMzbFN8AYjb8WRNpGe5qxrEDKsz KuLDmmkkRzfpXpcMlVOEWv/vy6SEAKMOl/JoTxetHYkXv2FMEJmVn/FeKtKzkYSqbQnd h6eA==
X-Forwarded-Encrypted: i=1; AJvYcCWcXZTTTVtbslHNgCUafl0ahsGG5e5nq/PHrV+1EgNSg7usOAifsySAx0cjKQkh7JkLSwPYWYvCpJAIkVnU
X-Gm-Message-State: AOJu0YzrApGlv9m+fX3wH1Ck7aL3P50vpccSj8Yv6+6NFBb0D7bDUzuy go5hIE8wXC3bMfVg41+s7sDLYauFgcuDHFsRZbM+Wed/bjnMSx6vbig83aJeHlI=
X-Google-Smtp-Source: AGHT+IG6hcp3VRIHfJFqWOXVsQ5REkZNusDTJ8UhTFJrl8V4K4ENfUUZw59wSW+A+oFyhv5A8knxdw==
X-Received: by 2002:a17:902:e5ca:b0:1fc:6a13:a39f with SMTP id d9443c01a7336-1fed387d8femr50063625ad.25.1721930219116; Thu, 25 Jul 2024 10:56:59 -0700 (PDT)
Received: from smtpclient.apple ([2001:67c:370:128:c141:5151:f25f:742e]) by smtp.gmail.com with ESMTPSA id d9443c01a7336-1fed7c80044sm17172335ad.14.2024.07.25.10.56.58 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 25 Jul 2024 10:56:58 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.15\))
From: Sean Turner <sean@sn3rd.com>
In-Reply-To: <20240711191244.177327FA60@rfcpa.rfc-editor.org>
Date: Thu, 25 Jul 2024 10:56:57 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <35E693A4-7995-4714-8F2A-EE892852270B@sn3rd.com>
References: <20240711191244.177327FA60@rfcpa.rfc-editor.org>
To: Deb Cooley <debcooley1@gmail.com>
X-Mailer: Apple Mail (2.3654.120.0.1.15)
Message-ID-Hash: HDUQMYC2YX2A6DYCCAE7PIZAGYM2NHC5
X-Message-ID-Hash: HDUQMYC2YX2A6DYCCAE7PIZAGYM2NHC5
X-MailFrom: sean@sn3rd.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-pkix.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: jimsch@nwlink.com, RFC Errata System <rfc-editor@rfc-editor.org>, mmyers@fastq.com, Paul Wouters <paul.wouters@aiven.io>, kent@bbn.com, Stefan Santesson <stefan@aaa-sec.com>, pkix@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [pkix] Re: [Technical Errata Reported] RFC5272 (8027)
List-Id: PKIX Working Group <pkix.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/pkix/ixTvdAtr2t88VcbK7T5hZKDNetY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pkix>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Owner: <mailto:pkix-owner@ietf.org>
List-Post: <mailto:pkix@ietf.org>
List-Subscribe: <mailto:pkix-join@ietf.org>
List-Unsubscribe: <mailto:pkix-leave@ietf.org>

I think you can marked this one as verified. I’ve got an AI to add it to -rfc5272bbis.

spt

> On Jul 11, 2024, at 12:12, RFC Errata System <rfc-editor@rfc-editor.org> wrote:
> 
> The following errata report has been submitted for RFC5272,
> "Certificate Management over CMS (CMC)".
> 
> --------------------------------------
> You may review the report below and at:
> https://www.rfc-editor.org/errata/eid8027
> 
> --------------------------------------
> Type: Technical
> Reported by: Carl Wallace <carl@redhoundsoftware.com>
> 
> Section: Appendix B
> 
> Original Text
> -------------
> recipientInfos.riid.issuerSerialNumber = <NULL, 201>
> 
> Corrected Text
> --------------
> recipientInfos.riid.issuerSerialNumber = <NULL-DN, 201>
> 
> Notes
> -----
> In ASN.1, NULL is a type that is encoded as 0x0500. NULL is not appropriate in this context because the corresponding field is defined as a Name. NULL-DN is defined in RFC4210 as "a zero-length SEQUENCE OF RelativeDistinguishedNames". A NULL-DN is encoded as 0x3000. This is almost certainly what was intended here. Note, RFC4210 is not referenced by RFC5272 currently, so that would need to be changed as well to reference NULL-DN.
> 
> Instructions:
> -------------
> This erratum is currently posted as "Reported". (If it is spam, it 
> will be removed shortly by the RFC Production Center.) Please
> use "Reply All" to discuss whether it should be verified or
> rejected. When a decision is reached, the verifying party  
> will log in to change the status and edit the report, if necessary.
> 
> --------------------------------------
> RFC5272 (draft-ietf-pkix-2797-bis-07)
> --------------------------------------
> Title               : Certificate Management over CMS (CMC)
> Publication Date    : June 2008
> Author(s)           : J. Schaad, M. Myers
> Category            : PROPOSED STANDARD
> Source              : Public-Key Infrastructure (X.509)
> Stream              : IETF
> Verifying Party     : IESG
> 
> _______________________________________________
> pkix mailing list -- pkix@ietf.org
> To unsubscribe send an email to pkix-leave@ietf.org