Re: [Technical Errata Reported] RFC9729 (8843) from David Schinazi on 2026-03-19 (ietf-http-wg@w3.org from January to March 2026)

From: David Schinazi <dschinazi.ietf@gmail.com>
Date: Wed, 18 Mar 2026 18:07:26 -0700
To: RFC Errata System <rfc-editor@rfc-editor.org>
Cc: david@guardianproject.info, jonathan.hoyland@gmail.com, httpbis-ads@ietf.org, mnot@mnot.net, tpauly@apple.com, yixins@virginia.edu, ietf-http-wg@w3.org
Message-ID: <CAPDSy+6CRXvF4shdE1dQAXbH_WOeOzKTx4ei8ijP2GNh_BvpOA@mail.gmail.com>

This erratum is correct, thank you for reporting it!
David

On Wed, Mar 18, 2026 at 10:07 PM RFC Errata System <
rfc-editor@rfc-editor.org> wrote:

> The following errata report has been submitted for RFC9729,
> "The Concealed HTTP Authentication Scheme".
>
> --------------------------------------
> You may review the report below and at:
> https://www.rfc-editor.org/errata/eid8843
>
> --------------------------------------
> Type: Technical
> Reported by: Yixin Sun <yixins@virginia.edu>
>
> Section: 4
>
> Original Text
> -------------
> concealed-integer-param-value =  %x31-39 1*4( DIGIT ) / "0"
>
> Corrected Text
> --------------
> concealed-integer-param-value =  %x31-39 *4( DIGIT ) / "0"
>
> Notes
> -----
> The original ABNF syntax requires at least two digits (or "0"), excluding
> 1-9. Updating this to be compatible with the integer parameter
> descriptions, i.e., the "s" parameter that goes in the range of 0-65535.
>
> This should not cause any problems in current implementations as the
> bigger 0x0000-0x0200 range is reserved for backward compatibility (see IANA
> "TLS SignatureScheme" registry
> https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-signaturescheme),
> but it will still be good to fix the syntax.
>
> Instructions:
> -------------
> This erratum is currently posted as "Reported". (If it is spam, it
> will be removed shortly by the RFC Production Center.) Please
> use "Reply All" to discuss whether it should be verified or
> rejected. When a decision is reached, the verifying party
> will log in to change the status and edit the report, if necessary.
>
> --------------------------------------
> RFC9729 (draft-ietf-httpbis-unprompted-auth-12)
> --------------------------------------
> Title               : The Concealed HTTP Authentication Scheme
> Publication Date    : February 2025
> Author(s)           : D. Schinazi, D. Oliver, J. Hoyland
> Category            : PROPOSED STANDARD
> Source              : HTTP
> Stream              : IETF
> Verifying Party     : IESG
>

Received on Thursday, 19 March 2026 01:07:41 UTC