RFC Errata
RFC 5246, "The Transport Layer Security (TLS) Protocol Version 1.2", August 2008
Note: This RFC has been obsoleted by RFC 8446
Source of RFC: tls (sec)
Errata ID: 5352
Status: Rejected
Type: Technical
Reported By: Loic Etienne
Date Reported: 2018-05-09
Rejected by: Eric Rescorla
Date Rejected: 2018-05-10
Section 6.2.3.3. says:
struct {
opaque nonce_explicit[SecurityParameters.record_iv_length];
aead-ciphered struct {
opaque content[TLSCompressed.length];
};
} GenericAEADCipher;
It should say:
struct {
opaque nonce_explicit[SecurityParameters.record_iv_length];
aead-ciphered struct {
opaque content[TLSCiphertext.length];
};
} GenericAEADCipher;
Notes:
6.2.3.3. says: "The aead_output consists of the ciphertext output by the AEAD encryption operation. The length will generally be larger than TLSCompressed.length, [...]".
The definition is duplicated at A.1., and needs the same adjustment.
--VERIFIER NOTES--
aead-ciphered is an operator that takes content as the input.