RFC Errata
Found 5 records.
Status: Verified (4)
RFC 4357, "Additional Cryptographic Algorithms for Use with GOST 28147-89, GOST R 34.10-94, GOST R 34.10-2001, and GOST R 34.11-94 Algorithms", January 2006
Source of RFC: IETF - NON WORKING GROUPArea Assignment: sec
Errata ID: 1473
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Serguei Leontiev
Date Reported: 2008-07-16
Verifier Name: Russ Housley
Date Verified: 2010-03-11
Section 7 says:
This algorithm creates a GOST 28147-89 key Kd, given GOST R 34.10-94 or GOST R 34.10-2001 secret key K and diversification data D of size 4..40 bytes.
It should say:
This algorithm creates a GOST 28147-89 key Kd, produced from given 256-bit secret key K and diversification data D of size 4..40 bytes.
Notes:
In this place "secret key" means any key, which MUST NOT be used to
protect of raw data. For example, private keys, shared secret keys,
wrap/unwrap keys, etc.
Russian-English terminology translation bug
Errata ID: 5927
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Stanislav Smyshlyaev
Date Reported: 2019-12-06
Verifier Name: Paul Wouters
Date Verified: 2024-01-16
Section 10.6 says:
Gost28147-89-ParamSet FROM Gost28147-89-EncryptionSyntax ... GostR3410-94-PublicKeyParameters ::= SEQUENCE { publicKeyParamSet OBJECT IDENTIFIER ( id-GostR3410-94-TestParamSet | -- Only for testing purposes id-GostR3410-94-CryptoPro-A-ParamSet | id-GostR3410-94-CryptoPro-B-ParamSet | id-GostR3410-94-CryptoPro-C-ParamSet | id-GostR3410-94-CryptoPro-D-ParamSet | id-GostR3410-94-CryptoPro-XchA-ParamSet | id-GostR3410-94-CryptoPro-XchB-ParamSet | id-GostR3410-94-CryptoPro-XchC-ParamSet ), digestParamSet OBJECT IDENTIFIER ( id-GostR3411-94-TestParamSet | -- Only for testing purposes id-GostR3411-94-CryptoProParamSet ), encryptionParamSet Gost28147-89-ParamSet OPTIONAL }
It should say:
id-Gost28147-89-CryptoPro-A-ParamSet, Gost28147-89-ParamSet FROM Gost28147-89-EncryptionSyntax ... GostR3410-94-PublicKeyParameters ::= SEQUENCE { publicKeyParamSet OBJECT IDENTIFIER ( id-GostR3410-94-TestParamSet | -- Only for testing purposes id-GostR3410-94-CryptoPro-A-ParamSet | id-GostR3410-94-CryptoPro-B-ParamSet | id-GostR3410-94-CryptoPro-C-ParamSet | id-GostR3410-94-CryptoPro-D-ParamSet | id-GostR3410-94-CryptoPro-XchA-ParamSet | id-GostR3410-94-CryptoPro-XchB-ParamSet | id-GostR3410-94-CryptoPro-XchC-ParamSet ), digestParamSet OBJECT IDENTIFIER ( id-GostR3411-94-TestParamSet | -- Only for testing purposes id-GostR3411-94-CryptoProParamSet ), encryptionParamSet Gost28147-89-ParamSet DEFAULT id-Gost28147-89-CryptoPro-A-ParamSet }
Notes:
The parameters structures of GostR3410-94-PublicKeyParameters defined in RFC 4357 and RFC 4491 that do not match. In RFC4491, a DEFAULT is provided for the 'encryptionParamSet' object identifier, while in RFC 4357, the 'encryptionParamSet' object identifier is OPTIONAL.
---Verifier Notes:---
Paul Wouters (AD): Closed as Verified. There won't be any updates for RFC 4357 as the algorithms are not used anymore.
The current GOST algorithms are defined in RFC 6986, RFC 7801 and RFC 7836.
Errata ID: 5928
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Stanislav Smyshlyaev
Date Reported: 2019-12-06
Verifier Name: Paul Wouters
Date Verified: 2024-01-16
Section 10.8 says:
Gost28147-89-ParamSet FROM Gost28147-89-EncryptionSyntax ... GostR3410-2001-PublicKeyParameters ::= SEQUENCE { publicKeyParamSet OBJECT IDENTIFIER ( id-GostR3410-2001-TestParamSet | -- Only for testing purposes id-GostR3410-2001-CryptoPro-A-ParamSet | id-GostR3410-2001-CryptoPro-B-ParamSet | id-GostR3410-2001-CryptoPro-C-ParamSet | id-GostR3410-2001-CryptoPro-XchA-ParamSet | id-GostR3410-2001-CryptoPro-XchB-ParamSet ), digestParamSet OBJECT IDENTIFIER ( id-GostR3411-94-TestParamSet | -- Only for testing purposes id-GostR3411-94-CryptoProParamSet ), encryptionParamSet Gost28147-89-ParamSet OPTIONAL }
It should say:
id-Gost28147-89-CryptoPro-A-ParamSet, Gost28147-89-ParamSet FROM Gost28147-89-EncryptionSyntax ... GostR3410-2001-PublicKeyParameters ::= SEQUENCE { publicKeyParamSet OBJECT IDENTIFIER ( id-GostR3410-2001-TestParamSet | -- Only for testing purposes id-GostR3410-2001-CryptoPro-A-ParamSet | id-GostR3410-2001-CryptoPro-B-ParamSet | id-GostR3410-2001-CryptoPro-C-ParamSet | id-GostR3410-2001-CryptoPro-XchA-ParamSet | id-GostR3410-2001-CryptoPro-XchB-ParamSet ), digestParamSet OBJECT IDENTIFIER ( id-GostR3411-94-TestParamSet | -- Only for testing purposes id-GostR3411-94-CryptoProParamSet ), encryptionParamSet Gost28147-89-ParamSet DEFAULT id-Gost28147-89-CryptoPro-A-ParamSet }
Notes:
The parameters structures of GostR3410-2001-PublicKeyParameters defined in RFC 4357 and RFC 4491 do not match. In RFC4491, a DEFAULT is provided for the 'encryptionParamSet' object identifier, while in RFC 4357, the 'encryptionParamSet' object identifier is OPTIONAL.
---Verifier Notes:---
Paul Wouters (AD): Closed as Verified. There won't be any updates for RFC 4357 as the algorithms are not used anymore.
The current GOST algorithms are defined in RFC 6986, RFC 7801 and RFC 7836.
Errata ID: 1467
Status: Verified
Type: Editorial
Publication Format(s) : TEXT
Reported By: Serguei Leontiev
Date Reported: 2008-07-09
Verifier Name: Russ Housley
Date Verified: 2010-03-11
Section 13.2 says:
[RFDSL] "Russian Federal Digital Signature Law", 10 Jan 2002 N 1-FZ
It should say:
[RFDSL] "Russian Federal Electronic Digital Signature Law", 10 Jan 2002 N 1-FZ.
Notes:
Russian-English terminology translation bug
Status: Rejected (1)
RFC 4357, "Additional Cryptographic Algorithms for Use with GOST 28147-89, GOST R 34.10-94, GOST R 34.10-2001, and GOST R 34.11-94 Algorithms", January 2006
Source of RFC: IETF - NON WORKING GROUPArea Assignment: sec
Errata ID: 4221
Status: Rejected
Type: Technical
Publication Format(s) : TEXT
Reported By: Dick Franks
Date Reported: 2015-01-05
Rejected by: Kathleen Moriarty
Date Rejected: 2015-03-31
Section 11.4 says:
163 30 159: SEQUENCE { 166 06 7: OBJECT IDENTIFIER : id-GostR3410-2001-CryptoPro-A-ParamSet 175 30 147: SEQUENCE { 178 02 33: INTEGER : 00 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF : FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FD : 94 213 02 2: INTEGER 166 217 02 33: INTEGER : 00 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF : FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FD : 97 ...
It should say:
163 30 159: SEQUENCE { 166 06 7: OBJECT IDENTIFIER : id-GostR3410-2001-CryptoPro-A-ParamSet 175 30 147: SEQUENCE { 178 02 33: INTEGER : 00 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF : FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FD : 94 213 02 2: INTEGER A6 217 02 33: INTEGER : 00 FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF : FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FD : 97 ...
Notes:
EC parameter 'b' is incorrectly specified using its base10 value where base16 expected.
--VERIFIER NOTES--
From Jim Schaad:
Short integers are dumped by the tool using base 10 not base 16. This was auto generated from the tool.
The difference in the format easy to see from the single line to the multiple line for base16 dumps.
(At best it is editorial in terms of clarification between bases)