Re: [lamps] Fwd: [Technical Errata Reported] RFC8398 (5418)
Russ Housley <housley@vigilsec.com> Thu, 19 July 2018 17:38 UTC
Return-Path: <housley@vigilsec.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5DCB3130ECA for <spasm@ietfa.amsl.com>; Thu, 19 Jul 2018 10:38:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ptx7sKJN9zx3 for <spasm@ietfa.amsl.com>; Thu, 19 Jul 2018 10:37:59 -0700 (PDT)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6C130130FC1 for <spasm@ietf.org>; Thu, 19 Jul 2018 10:37:59 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id 0B74C300A81 for <spasm@ietf.org>; Thu, 19 Jul 2018 13:37:56 -0400 (EDT)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id x-rVkKH3UCa4 for <spasm@ietf.org>; Thu, 19 Jul 2018 13:37:54 -0400 (EDT)
Received: from dhcp-8ced.meeting.ietf.org (dhcp-8ced.meeting.ietf.org [31.133.140.237]) by mail.smeinc.net (Postfix) with ESMTPSA id F3E463005A8; Thu, 19 Jul 2018 13:37:53 -0400 (EDT)
From: Russ Housley <housley@vigilsec.com>
Message-Id: <79595F35-4F84-49EF-AF9D-6BD4F7FBE711@vigilsec.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_1ACC0297-00B4-482C-A2EE-176E744F1D47"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Date: Thu, 19 Jul 2018 13:37:54 -0400
In-Reply-To: <CAAFsWK239G6khSmyfkaOBxPe7LOtXNhOjx3Hxit-4LaZO7Eqfg@mail.gmail.com>
Cc: Eric Rescorla <ekr@rtfm.com>, SPASM <spasm@ietf.org>
To: Wei Chuang <weihaw@google.com>
References: <CAAFsWK2du1hrF9Uxm1dMKHwJG_KPLuvQuT61sGvQ7Azhj3HOJA@mail.gmail.com> <717C4D29-AF97-4836-9F19-9E41E1646AF3@vigilsec.com> <CAAFsWK239G6khSmyfkaOBxPe7LOtXNhOjx3Hxit-4LaZO7Eqfg@mail.gmail.com>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/FsPF2EycBqYKE8OLqvpHSwfnoRE>
Subject: Re: [lamps] Fwd: [Technical Errata Reported] RFC8398 (5418)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Jul 2018 17:38:05 -0000
Wei: No, but the WG is providing input to the errata reviewer, who is the Area Director. Russ > On Jul 19, 2018, at 1:14 PM, Wei Chuang <weihaw@google.com> wrote: > > Apologies as I'm new to the errata process. Do I get nominated to be a errata verifier? as there appears to be a login page before I can review which it sounds like the WG sets up. > > The documentation here <https://www.rfc-editor.org/how-to-verify/> says "The verifying party (or stream-specific party) is determined by the stream that produced the RFC: IETF, IAB, IRTF, or Independent Submission" which I assume is the WG. > > -Wei > > On Thu, Jul 19, 2018 at 5:51 AM Russ Housley <housley@vigilsec.com <mailto:housley@vigilsec.com>> wrote: > It looks like you should approve this errata. Do you need anything else from the WG? > > Russ > > >> From: Wei Chuang <weihaw=40google.com@dmarc.ietf.org <mailto:weihaw=40google.com@dmarc.ietf.org>> >> Subject: Re: [lamps] [Technical Errata Reported] RFC8398 (5418) >> Date: July 11, 2018 at 5:49:16 PM EDT >> To: rfc-editor@rfc-editor.org <mailto:rfc-editor@rfc-editor.org> >> Cc: ekr@rtfm.com <mailto:ekr@rtfm.com>, Russ Housley <housley@vigilsec.com <mailto:housley@vigilsec.com>>, SPASM <spasm@ietf.org <mailto:spasm@ietf.org>>, kaduk@mit.edu <mailto:kaduk@mit.edu>, Alexey Melnikov <alexey.melnikov@isode.com <mailto:alexey.melnikov@isode.com>>, Dmitry Belyavsky <beldmit@gmail.com <mailto:beldmit@gmail.com>>, tim.hollebeek@digicert.com <mailto:tim.hollebeek@digicert.com> >> >> Hi all, >> >> I agree with the errata report. Background is that I've already been discussing with Dmitry the bug, and suggested he file the errata so we can make the change. The bug is in the SmtpUTF8Mailbox OID <https://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml#smi-numbers-1.3.6.1.5.5.7.8> in the example <https://tools.ietf.org/html/rfc8398#appendix-B> found in the Appendix. I also agree with him that we can update the email address to be consistent with the earlier example on page 6 in case the original is confusing. >> >> -Wei >> >> On Wed, Jul 11, 2018 at 12:46 PM RFC Errata System <rfc-editor@rfc-editor.org <mailto:rfc-editor@rfc-editor.org>> wrote: >> The following errata report has been submitted for RFC8398, >> "Internationalized Email Addresses in X.509 Certificates". >> >> -------------------------------------- >> You may review the report below and at: >> http://www.rfc-editor.org/errata/eid5418 <http://www.rfc-editor.org/errata/eid5418> >> >> -------------------------------------- >> Type: Technical >> Reported by: Belyavskiy Dmitry <beldmit@gmail.com <mailto:beldmit@gmail.com>> >> >> Section: Appendix B >> >> Original Text >> ------------- >> This non-normative example demonstrates using SmtpUTF8Mailbox as an >> otherName in GeneralName to encode the email address >> "u+8001u+5E2B@example.com <mailto:u%2B8001u%2B5E2B@example.com>". >> >> The hexadecimal DER encoding of the email address is: >> A022060A 2B060105 05070012 0809A014 0C12E880 81E5B8AB 40657861 >> 6D706C65 2E636F6D >> >> The text decoding is: >> 0 34: [0] { >> 2 10: OBJECT IDENTIFIER '1 3 6 1 5 5 7 0 18 8 9' >> 14 20: [0] { >> 16 18: UTF8String '...@example.com <http://example.com/>' >> : } >> : } >> >> Figure 2 >> >> The example was encoded on the OSS Nokalva ASN.1 Playground and the >> above text decoding is an output of Peter Gutmann's "dumpasn1" >> program. >> >> >> Corrected Text >> -------------- >> This non-normative example demonstrates using SmtpUTF8Mailbox as an >> otherName in GeneralName to encode the email address >> "u+533Bu+751F@u+5927u+5B66.example.com <http://5b66.example.com/>". >> >> The hexadecimal DER encoding of the block is: >> a0330608 2b060105 05070809 a0270c25 c3a5c28c c2bbc3a7 c294c29f >> 40c3a5c2 a4c2a7c3 a5c2adc2 a62e6578 616d706c 652e636f 6d >> >> >> The text decoding is: >> 2 51: [0] { >> 4 8: OBJECT IDENTIFIER '1 3 6 1 5 5 7 8 9' >> 14 39: [0] { >> 16 37: UTF8String '..@...example.com <http://example.com/>' >> : } >> : } >> >> Figure 2 >> >> The example was encoded on the OSS Nokalva ASN.1 Playground and the >> above text decoding is an output of Peter Gutmann's "dumpasn1" >> program. >> >> Notes >> ----- >> The OID used in Appendix B does not match the OID for id-on-SmtpUTF8Mailbox defined in "Appendix A. ASN.1 Module" and is not mentioned anywhere in the RFC. >> >> Instructions: >> ------------- >> This erratum is currently posted as "Reported". If necessary, please >> use "Reply All" to discuss whether it should be verified or >> rejected. When a decision is reached, the verifying party >> can log in to change the status and edit the report, if necessary. >> >> -------------------------------------- >> RFC8398 (draft-ietf-lamps-eai-addresses-18) >> -------------------------------------- >> Title : Internationalized Email Addresses in X.509 Certificates >> Publication Date : May 2018 >> Author(s) : A. Melnikov, Ed., W. Chuang, Ed. >> Category : PROPOSED STANDARD >> Source : Limited Additional Mechanisms for PKIX and SMIME >> Area : Security >> Stream : IETF >> Verifying Party : IESG >> _______________________________________________ >> Spasm mailing list >> Spasm@ietf.org <mailto:Spasm@ietf.org> >> https://www.ietf.org/mailman/listinfo/spasm <https://www.ietf.org/mailman/listinfo/spasm> > > _______________________________________________ > Spasm mailing list > Spasm@ietf.org <mailto:Spasm@ietf.org> > https://www.ietf.org/mailman/listinfo/spasm <https://www.ietf.org/mailman/listinfo/spasm>
- [lamps] [Technical Errata Reported] RFC8398 (5418) RFC Errata System
- Re: [lamps] [Technical Errata Reported] RFC8398 (… Wei Chuang
- [lamps] Fwd: [Technical Errata Reported] RFC8398 … Russ Housley
- Re: [lamps] Fwd: [Technical Errata Reported] RFC8… Wei Chuang
- Re: [lamps] Fwd: [Technical Errata Reported] RFC8… Russ Housley