Thanks for the clarification. I had misunderstood your email. Sorry for the confusion. -Ekr
On Fri, Apr 24, 2026 at 10:09 AM Russ Housley <[email protected]> wrote: > Eric: > > It is corrected many months ago in rfc8773bis. > > Russ > > On Apr 24, 2026, at 12:09 PM, Eric Rescorla <[email protected]> wrote: > > I think that's the wrong answer. If we know there is a technical error, we > should correct it in AUTH 48. > > -Ekr > > > On Fri, Apr 24, 2026 at 7:23 AM Russ Housley <[email protected]> wrote: > >> Dear Security ADs: >> >> This should be HFDU, since 8773bis is already in the RFC Editor's queue. >> >> Russ >> >> >> > On Apr 24, 2026, at 7:06 AM, RFC Errata System < >> [email protected]> wrote: >> > >> > The following errata report has been submitted for RFC8773, >> > "TLS 1.3 Extension for Certificate-Based Authentication with an >> External Pre-Shared Key". >> > >> > -------------------------------------- >> > You may review the report below and at: >> > https://www.rfc-editor.org/errata/eid8888 >> > >> > -------------------------------------- >> > Type: Technical >> > Reported by: Muhammad Usama Sardar <[email protected] >> > >> > >> > Section: 7 >> > >> > Original Text >> > ------------- >> > Early Secret = HKDF-Extract(External PSK, 0) >> > >> > Corrected Text >> > -------------- >> > Early Secret = HKDF-Extract(0, External PSK) >> > >> > Notes >> > ----- >> > As discussed in >> https://mailarchive.ietf.org/arch/msg/tls/6Wk82oBGd61rTK23DgfYb7BmRKM/ >> and https://github.com/tlswg/rfc8773bis/pull/2 >> > >> > Instructions: >> > ------------- >> > This erratum is currently posted as "Reported". (If it is spam, it >> > will be removed shortly by the RFC Production Center.) Please >> > use "Reply All" to discuss whether it should be verified or >> > rejected. When a decision is reached, the verifying party >> > will log in to change the status and edit the report, if necessary. >> > >> > -------------------------------------- >> > RFC8773 (draft-ietf-tls-tls13-cert-with-extern-psk-07) >> > -------------------------------------- >> > Title : TLS 1.3 Extension for Certificate-Based >> Authentication with an External Pre-Shared Key >> > Publication Date : March 2020 >> > Author(s) : R. Housley >> > Category : EXPERIMENTAL >> > Source : Transport Layer Security >> > Stream : IETF >> > Verifying Party : IESG >> >> _______________________________________________ >> TLS mailing list -- [email protected] >> To unsubscribe send an email to [email protected] >> > >
_______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
