Re: [btns] Minor connection-latch problem in AUTH48

Nicolas Williams <> Mon, 19 October 2009 22:25 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id B31193A687E for <>; Mon, 19 Oct 2009 15:25:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -5.506
X-Spam-Status: No, score=-5.506 tagged_above=-999 required=5 tests=[AWL=0.540, BAYES_00=-2.599, HELO_MISMATCH_COM=0.553, RCVD_IN_DNSWL_MED=-4]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id bINTBc3328PJ for <>; Mon, 19 Oct 2009 15:25:26 -0700 (PDT)
Received: from (brmea-mail-2.Sun.COM []) by (Postfix) with ESMTP id CA0CD3A635F for <>; Mon, 19 Oct 2009 15:25:25 -0700 (PDT)
Received: from ([]) by (8.13.6+Sun/8.12.9) with ESMTP id n9JMPWpj003754 for <>; Mon, 19 Oct 2009 22:25:32 GMT
Received: from binky.Central.Sun.COM (binky.Central.Sun.COM []) by (8.13.8+Sun/8.13.8/ENSMAIL, v2.2) with ESMTP id n9JMPWRv062562 for <>; Mon, 19 Oct 2009 16:25:32 -0600 (MDT)
Received: from binky.Central.Sun.COM (localhost []) by binky.Central.Sun.COM (8.14.3+Sun/8.14.3) with ESMTP id n9JMEAtV003391; Mon, 19 Oct 2009 17:14:10 -0500 (CDT)
Received: (from nw141292@localhost) by binky.Central.Sun.COM (8.14.3+Sun/8.14.3/Submit) id n9JMEAfg003390; Mon, 19 Oct 2009 17:14:10 -0500 (CDT)
X-Authentication-Warning: binky.Central.Sun.COM: nw141292 set sender to using -f
Date: Mon, 19 Oct 2009 17:14:10 -0500
From: Nicolas Williams <>
To: "Laganier, Julien" <>
Message-ID: <20091019221410.GN892@Sun.COM>
References: <20091015221608.GC907@Sun.COM> <> <20091016203953.GQ892@Sun.COM> <> <20091016211652.GV892@Sun.COM> <> <20091019164014.GF892@Sun.COM> <>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <>
User-Agent: Mutt/1.5.7i
Cc: "" <>
Subject: Re: [btns] Minor connection-latch problem in AUTH48
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Better-Than-Nothing-Security Working Group discussion list <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 19 Oct 2009 22:25:26 -0000

On Mon, Oct 19, 2009 at 02:59:31PM -0700, Laganier, Julien wrote:
> Nicolas Williams wrote:
> > OK, this way the changes are much smaller and localized -- only the
> > description of CREATE_CONNECTION_LATCH() changes, to:
> Hmm. Better, but somehow I'd rather take the 2 last paragraphs about
> the "larval" state completely out, because right now it IMHO says
> either too much or too less. It's not precise enough to tell an
> implementer who hasn't followed that discussion what to do yet it
> outlines at alternative to the key manager establishing the SA
> straight and the ULP latching the connection on the SA.

I really want to leave the MAY in, as well as the note that that implies
a state that we're not describing.  I'm willing to remove the
parenthetical note, since that's really informative of something that
implementors, who chose to implement that MAY, would figure out on their
own anyways.

> If you want to keep the "larval" text in, I've did some wordsmithing
> below that you might want to consider:

I can't tell what's particularly different in your text.  You did split
a sentence, but I think I'll just re-write that sentence this way:

"Such an implementation may require an additional state in the
connection latch state machine: a "LARVAL" state, so to speak, that is
not described herein."

I think the colon helps more than either the comma I had written
originally, or than a period.