[lamps] Fwd: [Technical Errata Reported] RFC8398 (5418)

Russ Housley <housley@vigilsec.com> Thu, 19 July 2018 12:51 UTC

Return-Path: <housley@vigilsec.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 22C73130DD5 for <spasm@ietfa.amsl.com>; Thu, 19 Jul 2018 05:51:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bbK4AaYVOWsy for <spasm@ietfa.amsl.com>; Thu, 19 Jul 2018 05:51:42 -0700 (PDT)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10B76129619 for <spasm@ietf.org>; Thu, 19 Jul 2018 05:51:42 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id D1528300A0A for <spasm@ietf.org>; Thu, 19 Jul 2018 08:51:39 -0400 (EDT)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 9zSLVV30-fii for <spasm@ietf.org>; Thu, 19 Jul 2018 08:51:37 -0400 (EDT)
Received: from [172.20.7.12] (unknown [207.96.246.27]) by mail.smeinc.net (Postfix) with ESMTPSA id 543B5300260; Thu, 19 Jul 2018 08:51:37 -0400 (EDT)
From: Russ Housley <housley@vigilsec.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_F82BA849-BF0B-4F29-A8FD-1A5DD433045F"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Date: Thu, 19 Jul 2018 08:51:35 -0400
References: <CAAFsWK2du1hrF9Uxm1dMKHwJG_KPLuvQuT61sGvQ7Azhj3HOJA@mail.gmail.com>
Cc: SPASM <spasm@ietf.org>
To: Eric Rescorla <ekr@rtfm.com>
Message-Id: <717C4D29-AF97-4836-9F19-9E41E1646AF3@vigilsec.com>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/WkUML0ARaWRMa_B758a_f3QhlbI>
Subject: [lamps] Fwd: [Technical Errata Reported] RFC8398 (5418)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Jul 2018 12:51:45 -0000

It looks like you should approve this errata.  Do you need anything else from the WG?

Russ


> From: Wei Chuang <weihaw=40google.com@dmarc.ietf.org>
> Subject: Re: [lamps] [Technical Errata Reported] RFC8398 (5418)
> Date: July 11, 2018 at 5:49:16 PM EDT
> To: rfc-editor@rfc-editor.org
> Cc: ekr@rtfm.com, Russ Housley <housley@vigilsec.com>om>, SPASM <spasm@ietf.org>rg>, kaduk@mit.edu, Alexey Melnikov <alexey.melnikov@isode.com>om>, Dmitry Belyavsky <beldmit@gmail.com>om>, tim.hollebeek@digicert.com
> 
> Hi all,
> 
> I agree with the errata report.  Background is that I've already been discussing with Dmitry the bug, and suggested he file the errata so we can make the change.  The bug is in the SmtpUTF8Mailbox OID <https://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml#smi-numbers-1.3.6.1.5.5.7.8> in the example <https://tools.ietf.org/html/rfc8398#appendix-B> found in the Appendix.  I also agree with him that we can update the email address to be consistent with the earlier example on page 6 in case the original is confusing.
> 
> -Wei
> 
> On Wed, Jul 11, 2018 at 12:46 PM RFC Errata System <rfc-editor@rfc-editor.org <mailto:rfc-editor@rfc-editor.org>> wrote:
> The following errata report has been submitted for RFC8398,
> "Internationalized Email Addresses in X.509 Certificates".
> 
> --------------------------------------
> You may review the report below and at:
> http://www.rfc-editor.org/errata/eid5418 <http://www.rfc-editor.org/errata/eid5418>
> 
> --------------------------------------
> Type: Technical
> Reported by: Belyavskiy Dmitry <beldmit@gmail.com <mailto:beldmit@gmail.com>>
> 
> Section: Appendix B
> 
> Original Text
> -------------
>    This non-normative example demonstrates using SmtpUTF8Mailbox as an
>    otherName in GeneralName to encode the email address
>    "u+8001u+5E2B@example.com <mailto:u%2B8001u%2B5E2B@example.com>".
> 
>       The hexadecimal DER encoding of the email address is:
>       A022060A 2B060105 05070012 0809A014 0C12E880 81E5B8AB 40657861
>       6D706C65 2E636F6D
> 
>       The text decoding is:
>         0  34: [0] {
>         2  10:   OBJECT IDENTIFIER '1 3 6 1 5 5 7 0 18 8 9'
>        14  20:   [0] {
>        16  18:     UTF8String '...@example.com <http://example.com/>'
>              :     }
>              :   }
> 
>                                  Figure 2
> 
>    The example was encoded on the OSS Nokalva ASN.1 Playground and the
>    above text decoding is an output of Peter Gutmann's "dumpasn1"
>    program.
> 
> 
> Corrected Text
> --------------
>    This non-normative example demonstrates using SmtpUTF8Mailbox as an
>    otherName in GeneralName to encode the email address
>    "u+533Bu+751F@u+5927u+5B66.example.com <http://5b66.example.com/>".
> 
>    The hexadecimal DER encoding of the block is:
>    a0330608 2b060105 05070809 a0270c25 c3a5c28c c2bbc3a7 c294c29f 
>    40c3a5c2 a4c2a7c3 a5c2adc2 a62e6578 616d706c 652e636f 6d
> 
> 
>    The text decoding is:
>      2  51: [0] {
>      4   8:   OBJECT IDENTIFIER '1 3 6 1 5 5 7 8 9'
>     14  39:   [0] {
>     16  37:     UTF8String '..@...example.com <http://example.com/>'
>           :     }
>           :   }
> 
>                                  Figure 2
> 
>    The example was encoded on the OSS Nokalva ASN.1 Playground and the
>    above text decoding is an output of Peter Gutmann's "dumpasn1"
>    program.
> 
> Notes
> -----
> The OID used in Appendix B does not match the OID for id-on-SmtpUTF8Mailbox defined in "Appendix A.  ASN.1 Module" and is not mentioned anywhere in the RFC.
> 
> Instructions:
> -------------
> This erratum is currently posted as "Reported". If necessary, please
> use "Reply All" to discuss whether it should be verified or
> rejected. When a decision is reached, the verifying party  
> can log in to change the status and edit the report, if necessary. 
> 
> --------------------------------------
> RFC8398 (draft-ietf-lamps-eai-addresses-18)
> --------------------------------------
> Title               : Internationalized Email Addresses in X.509 Certificates
> Publication Date    : May 2018
> Author(s)           : A. Melnikov, Ed., W. Chuang, Ed.
> Category            : PROPOSED STANDARD
> Source              : Limited Additional Mechanisms for PKIX and SMIME
> Area                : Security
> Stream              : IETF
> Verifying Party     : IESG
> _______________________________________________
> Spasm mailing list
> Spasm@ietf.org
> https://www.ietf.org/mailman/listinfo/spasm