RFC Errata
Found 5 records.
Status: Verified (3)
RFC 6402, "Certificate Management over CMS (CMC) Updates", November 2011
Source of RFC: pkix (sec)
Errata ID: 3860
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Russ Housley
Date Reported: 2014-01-05
Verifier Name: Sean Turner
Date Verified: 2014-01-06
Section Appendix A says:
EnrollmentMessageSyntax-2011-v88
{ iso(1) identified-organization(3) dod(6) internet(1)
security(5) mechanisms(5) pkix(7) id-mod(0)
id-mod-enrollMsgSyntax-2011-88(76) }
It should say:
EnrollmentMessageSyntax-2011-v88
{ iso(1) identified-organization(3) dod(6) internet(1)
security(5) mechanisms(5) pkix(7) id-mod(0)
id-mod-enrollMsgSyntax-2011-88(75) }
Notes:
The ASN.1 modules in Appendix A.1 and Appendix A.2 use the same module identifier. This correction fixes this situation, and aligns with the module identifiers assignments.
Errata ID: 5931
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Russ Housley
Date Reported: 2019-12-07
Verifier Name: Benjamin Kaduk
Date Verified: 2019-12-11
Section Appendix A.1 says:
id-kp-cmcCA OBJECT IDENTIFIER ::= { id-kp 27 }
id-kp-cmcRA OBJECT IDENTIFIER ::= { id-kp 28 }
id-kp-cmcArchive OBJECT IDENTIFIER ::= { id-kp 28 }
It should say:
id-kp-cmcCA OBJECT IDENTIFIER ::= { id-kp 27 }
id-kp-cmcRA OBJECT IDENTIFIER ::= { id-kp 28 }
id-kp-cmcArchive OBJECT IDENTIFIER ::= { id-kp 29 }
Notes:
id-kp-cmcRA and id-kp-cmcArchive are supposed to be different values. This change matches what is already in Appendix A.2.
Errata ID: 6571
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Russ Housley
Date Reported: 2021-05-04
Verifier Name: Roman Danyliw
Date Verified: 2022-05-10
Section Appendix A.1 says:
pendInfo PendInfo,
extendedFailInfo SEQUENCE {
It should say:
pendInfo PendInfo,
extendedFailInfo [1] SEQUENCE {
Notes:
The ASN.1 module will not compile properly without a tag on one of these elements. The ASN.1 module in Appendix A.2 has a tag in this spot.
Status: Reported (1)
RFC 6402, "Certificate Management over CMS (CMC) Updates", November 2011
Source of RFC: pkix (sec)
Errata ID: 8385
Status: Reported
Type: Editorial
Publication Format(s) : TEXT
Reported By: Russ Housley
Date Reported: 2025-04-18
Section 2.8 says:
ChangeSubjectName ::= SEQUENCE {
subject Name OPTIONAL,
subjectAlt SubjectAltName OPTIONAL
}
(WITH COMPONENTS {..., subject PRESENT} |
COMPONENTS {..., subjectAlt PRESENT} )
It should say:
ChangeSubjectName ::= SEQUENCE {
subject Name OPTIONAL,
subjectAlt [1] SubjectAltName OPTIONAL
}
(WITH COMPONENTS {..., subject PRESENT} |
WITH COMPONENTS {..., subjectAlt PRESENT} )
Notes:
The missing "WITH" is necessary for the ASN.1 to compile properly. The "WITH" is present in the ASN.1 module in Appendix A.2.
In addition, the tag is added. See errata 3943 about that change.
Status: Held for Document Update (1)
RFC 6402, "Certificate Management over CMS (CMC) Updates", November 2011
Source of RFC: pkix (sec)
Errata ID: 3943
Status: Held for Document Update
Type: Technical
Publication Format(s) : TEXT
Reported By: Jim Schaad
Date Reported: 2014-04-02
Held for Document Update by: Benjamin Kaduk
Date Held: 2019-12-16
Section 2.8, says:
ChangeSubjectName ::= SEQUENCE {
subject Name OPTIONAL,
subjectAlt SubjectAltName OPTIONAL
}
(WITH COMPONENTS {..., subject PRESENT} |
COMPONENTS {..., subjectAlt PRESENT} )
It should say:
ChangeSubjectName ::= SEQUENCE {
subject Name OPTIONAL,
subjectAlt [1] SubjectAltName OPTIONAL
}
(WITH COMPONENTS {..., subject PRESENT} |
COMPONENTS {..., subjectAlt PRESENT} )
Notes:
Both Name and SubjectAltName use the same tag (SEQUENCE) so it is not possible to distinguish between the two fields without having a tag on one of them. This fix adds an (arbitrarily chosen) tag so that it is possible to differentiate the two fields.