RFC Errata
RFC 7292, "PKCS #12: Personal Information Exchange Syntax v1.1", July 2014
Note: This RFC has been updated by RFC 9579
Source of RFC: IETF - NON WORKING GROUPArea Assignment: sec
See Also: RFC 7292 w/ inline errata
Errata ID: 4356
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Will Bond
Date Reported: 2015-05-05
Verifier Name: Stephen Farrell
Date Verified: 2016-10-12
Appendix B.2 says:
6. For i=1, 2, ..., c, do the following: A. Set A2=H^r(D||I). (i.e., the r-th hash of D||1, H(H(H(... H(D||I)))) B. Concatenate copies of Ai to create a string B of length v bits (the final copy of Ai may be truncated to create B).
It should say:
6. For i=1, 2, ..., c, do the following: A. Set A_i=H^r(D||I). (i.e., the r-th hash of D||I, H(H(H(... H(D||I)))) B. Concatenate copies of A_i to create a string B of length v bits (the final copy of A_i may be truncated to create B).
Notes:
Step 6A explains a number of rounds of hashing D concatenated with I, however the i.e. clause shows concatenating D with 1 in one place. Also, Step 6A has been changed from "A2" to "A_i", and Step 6B has been changed from "Ai" to "A_i".
[David Thompson sent additional corrections, which have been incorporated above.]