[websec] Re: [Editorial Errata Reported] RFC6797 (8186)
Joe Hildebrand <hildjj@cursive.net> Mon, 02 December 2024 21:33 UTC
Return-Path: <hildjj@cursive.net>
X-Original-To: websec@ietfa.amsl.com
Delivered-To: websec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 41B6DC180B56 for <websec@ietfa.amsl.com>; Mon, 2 Dec 2024 13:33:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cursive.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GejZq1xq6kQG for <websec@ietfa.amsl.com>; Mon, 2 Dec 2024 13:33:25 -0800 (PST)
Received: from mail-ot1-x32e.google.com (mail-ot1-x32e.google.com [IPv6:2607:f8b0:4864:20::32e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9266EC14F70D for <websec@ietf.org>; Mon, 2 Dec 2024 13:33:25 -0800 (PST)
Received: by mail-ot1-x32e.google.com with SMTP id 46e09a7af769-71d59d86ba7so2429061a34.2 for <websec@ietf.org>; Mon, 02 Dec 2024 13:33:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cursive.net; s=google; t=1733175204; x=1733780004; darn=ietf.org; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=uqkX874EMwjvENLlZCKcW3+TeqyHLoNj84EVnH+0QYI=; b=eDvMpX7LoUE6cTp9ClqebDE53sV6vDLzECMVGTUA4zhSFN9e2v9Z1R9lubDcRW9X7W /7TptFY0syif0tKXm7y5D3piBoNJv9rPjL42Fhv3ejwgmsxTNOTBt4cmW6NUY6xwIHKC vdYqyC92nX4n6/1Hwv9fTNVo8ZPRI5lF5i6Ek=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1733175204; x=1733780004; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=uqkX874EMwjvENLlZCKcW3+TeqyHLoNj84EVnH+0QYI=; b=xE+JeEhNqztv9oVoWnaD6ammNtHrMIodO+1jEO3jdl6pCSnOPICFQKzbeFMQe2z4c4 PQXG5XGXdmsGFMllYHm+obLvZkXfYiPo2Q/REAcG0FkCgkBlUerx0LwafaCSRoh4G4K2 BHKlZFz8a0G4qYampFfXjnB1aRqtAL9fpJQj67+msLOmvbJWtkJ/5vKK3PNdSSk4hrxj n8cyhdBgDoaZT3/VbibbPm7g/y0v9qubk7EIFPS4a0zfgrqJjDDAsrXoyj1lf+QNfa7x Yvg+4edeH9Lkb6rNU1TtvPj+mxzGtLhGS+Zix1YlctE4qNEqMMuBRhtFUJyc+5qpxe/s 84rA==
X-Forwarded-Encrypted: i=1; AJvYcCX64eRABDUqDnmjHkAl4D4lO4Kdmumu8vRSWVNVDlp/pM/cTWLG1eOFCtZZ+y4JXHz+LsOgDY8=@ietf.org
X-Gm-Message-State: AOJu0Yw3WEqoDmo/cVpbLsMH/6m1DSop4Qi/QTi+JtpLMk3jUkcAvhgh i4vMkwfRQYT7hXvOJbzGj3MFhTNr6Oe9uuanmdswfA6vEBHFEFQis8wLFH9E+w==
X-Gm-Gg: ASbGncsDHUsW5xkl5jeqOUnLaD+kFQH2VCSnUDQDmFxpitNqWqGG35Kwm1mdwLq0oRm S2TToo/v+srLFol7LE0K8LXttWfO2tlkI1vz7DsAJZQwRTbFc4HvlXPHXXlttW0YqTA8VnQav9n ugssIdLWTOLAJSecVKkPzv26J6APJwG4U4BeBUFxH3e77OBOri7we9ldGRVfKXz/gFzHPFZjf78 FFf/1NW1hZull5flCnPnUoPRTKKlEWQMBmdESGmN7HdBjhLkRa5aBcfMZ7HykH7QwnElSOUTps=
X-Google-Smtp-Source: AGHT+IFwPrUHPwCfPvPYWUrRJjQT4FnQpKfh0LaGJPPn+NzaoheMYBxd+0zSWhprL9HU1zhsfdBDFw==
X-Received: by 2002:a05:6808:1b26:b0:3e7:bcab:8f0d with SMTP id 5614622812f47-3ea6dc24ffdmr24526998b6e.24.1733175204676; Mon, 02 Dec 2024 13:33:24 -0800 (PST)
Received: from smtpclient.apple ([2601:282:2181:450f:7830:a395:8124:f98a]) by smtp.gmail.com with ESMTPSA id 5614622812f47-3ea8621e422sm2519160b6e.39.2024.12.02.13.33.22 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 02 Dec 2024 13:33:23 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3826.200.121\))
From: Joe Hildebrand <hildjj@cursive.net>
In-Reply-To: <20241122205718.278841BC19C@rfcpa.rfc-editor.org>
Date: Mon, 02 Dec 2024 14:33:11 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <2D559FB8-CFB1-43DB-8C8D-0615DD5FA59C@cursive.net>
References: <20241122205718.278841BC19C@rfcpa.rfc-editor.org>
To: RFC Editor <rfc-editor@rfc-editor.org>
X-Mailer: Apple Mail (2.3826.200.121)
Message-ID-Hash: RCXM3LQ5ZNR2SWZEJXVZSP55FHV6WWCZ
X-Message-ID-Hash: RCXM3LQ5ZNR2SWZEJXVZSP55FHV6WWCZ
X-MailFrom: hildjj@cursive.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-websec.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Jeff.Hodges@paypal.com" <Jeff.Hodges@PayPal.com>, collin.jackson@sv.cmu.edu, Adam Barth <ietf@adambarth.com>, websec@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [websec] Re: [Editorial Errata Reported] RFC6797 (8186)
List-Id: Web Application Security Minus Authentication and Transport <websec.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/websec/MaGPnSxkACmuYc5XanUucO_5Ee8>
List-Archive: <https://mailarchive.ietf.org/arch/browse/websec>
List-Help: <mailto:websec-request@ietf.org?subject=help>
List-Owner: <mailto:websec-owner@ietf.org>
List-Post: <mailto:websec@ietf.org>
List-Subscribe: <mailto:websec-join@ietf.org>
List-Unsubscribe: <mailto:websec-leave@ietf.org>
This errata can be rejected. rfc6797 relies on the bespoke BNF from 2616, which uses '|' instead of '/'. — Joe Hildebrand > On Nov 22, 2024, at 1:57 PM, RFC Errata System <rfc-editor@rfc-editor.org> wrote: > > The following errata report has been submitted for RFC6797, > "HTTP Strict Transport Security (HSTS)". > > -------------------------------------- > You may review the report below and at: > https://www.rfc-editor.org/errata/eid8186 > > -------------------------------------- > Type: Editorial > Reported by: Joe Hildebrand <joe-ietf@cursive.net> > > Section: 6.1 > > Original Text > ------------- > directive-value = token | quoted-string > > Corrected Text > -------------- > directive-value = token / quoted-string > > Notes > ----- > The "directive-value" production should use a "/" for alternatives, not a "|". See RFC 5234, which should be referenced by this spec but isn't. This is an editorial nitpick. > > Instructions: > ------------- > This erratum is currently posted as "Reported". (If it is spam, it > will be removed shortly by the RFC Production Center.) Please > use "Reply All" to discuss whether it should be verified or > rejected. When a decision is reached, the verifying party > will log in to change the status and edit the report, if necessary. > > -------------------------------------- > RFC6797 (draft-ietf-websec-strict-transport-sec-14) > -------------------------------------- > Title : HTTP Strict Transport Security (HSTS) > Publication Date : November 2012 > Author(s) : J. Hodges, C. Jackson, A. Barth > Category : PROPOSED STANDARD > Source : Web Security > Stream : IETF > Verifying Party : IESG
- [websec] [Editorial Errata Reported] RFC6797 (818… RFC Errata System
- [websec] Re: [Editorial Errata Reported] RFC6797 … Joe Hildebrand