[lamps] Fwd: [Errata Verified] RFC5652 (6250)
Russ Housley <housley@vigilsec.com> Fri, 07 August 2020 12:14 UTC
Return-Path: <housley@vigilsec.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A3D633A0ADE for <spasm@ietfa.amsl.com>; Fri, 7 Aug 2020 05:14:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1ZAUEHHcJAUm for <spasm@ietfa.amsl.com>; Fri, 7 Aug 2020 05:14:39 -0700 (PDT)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 70EDD3A0AB5 for <spasm@ietf.org>; Fri, 7 Aug 2020 05:14:39 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id CB690300AA6 for <spasm@ietf.org>; Fri, 7 Aug 2020 08:14:36 -0400 (EDT)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id 0ZpeqCmvsOc6 for <spasm@ietf.org>; Fri, 7 Aug 2020 08:14:34 -0400 (EDT)
Received: from a860b60074bd.fios-router.home (pool-141-156-161-153.washdc.fios.verizon.net [141.156.161.153]) by mail.smeinc.net (Postfix) with ESMTPSA id BD368300B50 for <spasm@ietf.org>; Fri, 7 Aug 2020 08:14:34 -0400 (EDT)
From: Russ Housley <housley@vigilsec.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_5661D35A-5849-4768-9705-949B88450903"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.15\))
Message-Id: <A0F6AF7A-4B6E-4832-863E-63FC2CCBBC88@vigilsec.com>
References: <20200807050034.F1740F4074E@rfc-editor.org>
To: LAMPS WG <spasm@ietf.org>
Date: Fri, 07 Aug 2020 08:14:35 -0400
X-Mailer: Apple Mail (2.3445.104.15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/gjiU1eeLxS2QgjHKOGefw8aw-lE>
Subject: [lamps] Fwd: [Errata Verified] RFC5652 (6250)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Aug 2020 12:14:42 -0000
> From: RFC Errata System <rfc-editor@rfc-editor.org> > Subject: [Errata Verified] RFC5652 (6250) > Date: August 7, 2020 at 1:00:34 AM EDT > To: housley@vigilsec.com, housley@vigilsec.com > Cc: kaduk@mit.edu, iesg@ietf.org, smime@ietf.org, rfc-editor@rfc-editor.org > > The following errata report has been verified for RFC5652, > "Cryptographic Message Syntax (CMS)". > > -------------------------------------- > You may review the report below and at: > https://www.rfc-editor.org/errata/eid6250 > > -------------------------------------- > Status: Verified > Type: Technical > > Reported by: Russ Housley <housley@vigilsec.com> > Date Reported: 2020-08-06 > Verified by: Benjamin Kaduk (IESG) > > Section: 9.2 > > Original Text > ------------- > If the authAttrs field is present, the content-type attribute (as > described in Section 11.1) and the message-digest attribute (as > described in Section 11.2) MUST be included, and the input to the MAC > calculation process is the DER encoding of authAttrs. A separate > encoding of the authAttrs field is performed for message digest > calculation. The IMPLICIT [2] tag in the authAttrs field is not used > for the DER encoding, rather an EXPLICIT SET OF tag is used. That > is, the DER encoding of the SET OF tag, rather than of the IMPLICIT > [2] tag, is to be included in the message digest calculation along > with the length and content octets of the authAttrs value. > > Corrected Text > -------------- > If the authAttrs field is present, the content-type attribute (as > described in Section 11.1) and the message-digest attribute (as > described in Section 11.2) MUST be included, and the input to the MAC > calculation process is the DER encoding of authAttrs. A separate > encoding of the authAttrs field is performed for message digest > calculation. The IMPLICIT [2] tag in the authAttrs field is not used > for the DER encoding, rather an EXPLICIT SET OF tag is used. That > is, the DER encoding of the SET OF tag, rather than of the IMPLICIT > [2] tag, is to be included in the MAC calculation along > with the length and content octets of the authAttrs value. > > Notes > ----- > The paragraph is talking about the input to a MAC calculation, not the input to message digest calculation. > > -------------------------------------- > RFC5652 (draft-ietf-smime-rfc3852bis-00) > -------------------------------------- > Title : Cryptographic Message Syntax (CMS) > Publication Date : September 2009 > Author(s) : R. Housley > Category : DRAFT STANDARD > Source : S/MIME Mail Security > Area : Security > Stream : IETF > Verifying Party : IESG
- [lamps] Fwd: [Errata Verified] RFC5652 (6250) Russ Housley