none
[MS-WCCE] typos in "CR_PROP_CRLSTATE" description RRS feed

  • Question

  • In [MS-WCCE], §3.2.1.4.3.2.20 description for CR_PROP_CRLSTATE has:


    Current sentence: "The client has requested to identify which signing certificate is associated with the key used to publish CRLs."

    Expected sentence: "The client has requested to identify the status of signing certificate used to publish CRLs."

    return value is state, not something else.


    Current sentence: "If the signing certificate is valid and its associated key was used to sign the base CRL stored in the same row, the CA MUST return 0x00 as the status for this signing certificate."

    Expected sentence: "If the signing certificate is valid and its associated key was used to sign the base CRL stored in the same row, the CA MUST return 0x03 as the status for this signing certificate."

    In certsrv.h, CA_DISP_VALID is defined as 0x03.


    Vadims Podāns, aka Crypt32
    My weblog: www.sysadmins.lv
    PowerShell PKI Module: PSPKI
    Check out new: SSL Certificate Verifier
    Check out new: ASN.1 Editor tool.

    Wednesday, June 10, 2020 9:30 AM

Answers

  • Hi Vadims,

    We have updated the [MS-WCCE] for the next release as follows:

    3.2.1.4.3.2.20 PropID = 0x00000014 (CR_PROP_CRLSTATE) "CA CRL State"

    The client has requested the CRL status of all CA signing certificates.

    [...]

    • If the signing certificate is valid and its associated key was used to sign the base CRL stored in the same row, the CA MUST return 0x03 as the status for this signing certificate.

    I hope that helps!


    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Tuesday, July 28, 2020 9:35 PM
    Moderator

All replies

  • Hi Vadims

    Thanks for the question about Open Specifications.

    One of the Open Specifications Engineer will respond shortly to assist you.


    HungChun Yu (MSFT)

    Wednesday, June 10, 2020 2:50 PM
  • Hi Vadims:

    I'll help you with this issue and will be in touch as soon as I have an answer.


    Regards, Obaid Farooqi

    Sunday, June 14, 2020 4:47 PM
    Owner
  • Hi Vadims,

    Thank you for reporting these issues with [MS-WCCE]. I will file a request to update the document and follow up. 

    Thanks,


    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Tuesday, June 23, 2020 5:21 PM
    Moderator
  • please, let me know if product team can confirms this. 

    Vadims Podāns, aka Crypt32
    My weblog: www.sysadmins.lv
    PowerShell PKI Module: PSPKI
    Check out new: SSL Certificate Verifier
    Check out new: ASN.1 Editor tool.

    Tuesday, June 23, 2020 6:33 PM
  • Hi Vadims,

    We have updated the [MS-WCCE] for the next release as follows:

    3.2.1.4.3.2.20 PropID = 0x00000014 (CR_PROP_CRLSTATE) "CA CRL State"

    The client has requested the CRL status of all CA signing certificates.

    [...]

    • If the signing certificate is valid and its associated key was used to sign the base CRL stored in the same row, the CA MUST return 0x03 as the status for this signing certificate.

    I hope that helps!


    Jeff McCashland | Microsoft Protocols Open Specifications Team

    Tuesday, July 28, 2020 9:35 PM
    Moderator
  • Thanks!

    Vadims Podāns, aka Crypt32
    My weblog: www.sysadmins.lv
    PowerShell PKI Module: PSPKI
    Check out new: SSL Certificate Verifier
    Check out new: ASN.1 Editor tool.

    Wednesday, July 29, 2020 5:27 AM