[IPsec] [Technical Errata Reported] RFC7634 (5441)
Tero Kivinen <kivinen@iki.fi> Fri, 27 July 2018 17:33 UTC
Return-Path: <kivinen@iki.fi>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6B439130FF7 for <ipsec@ietfa.amsl.com>; Fri, 27 Jul 2018 10:33:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.121
X-Spam-Level:
X-Spam-Status: No, score=-1.121 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_NEUTRAL=0.779] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id D3C1SglsRpvO for <ipsec@ietfa.amsl.com>; Fri, 27 Jul 2018 10:33:13 -0700 (PDT)
Received: from mail.kivinen.iki.fi (fireball.acr.fi [83.145.195.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 647BB130E20 for <ipsec@ietf.org>; Fri, 27 Jul 2018 10:33:13 -0700 (PDT)
Received: from fireball.acr.fi (localhost [127.0.0.1]) by mail.kivinen.iki.fi (8.15.2/8.15.2) with ESMTPS id w6RHWrx8023966 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Fri, 27 Jul 2018 20:32:53 +0300 (EEST)
Received: (from kivinen@localhost) by fireball.acr.fi (8.15.2/8.14.8/Submit) id w6RHWp4b028729; Fri, 27 Jul 2018 20:32:51 +0300 (EEST)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-ID: <23387.22339.790204.618031@fireball.acr.fi>
Date: Fri, 27 Jul 2018 20:32:51 +0300
From: Tero Kivinen <kivinen@iki.fi>
To: RFC Errata System <rfc-editor@rfc-editor.org>
Cc: ynir.ietf@gmail.com, kaduk@mit.edu, ekr@rtfm.com, david.waltermire@nist.gov, ipsec@ietf.org, andrew.cagney@gmail.com
In-Reply-To: <20180726182923.D548CB8125E@rfc-editor.org>
References: <20180726182923.D548CB8125E@rfc-editor.org>
X-Mailer: VM 8.2.0b under 25.1.1 (x86_64--netbsd)
X-Edit-Time: 4 min
X-Total-Time: 3 min
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/EgdBeaZ-Ml74jSAqHNgr_c5h9qA>
Subject: [IPsec] [Technical Errata Reported] RFC7634 (5441)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Jul 2018 17:33:17 -0000
RFC Errata System writes: > The following errata report has been submitted for RFC7634, > "ChaCha20, Poly1305, and Their Use in the Internet Key Exchange Protocol (IKE) and IPsec". > > -------------------------------------- > You may review the report below and at: > http://www.rfc-editor.org/errata/eid5441 > > -------------------------------------- > Type: Technical > Reported by: Andrew Cagney <andrew.cagney@gmail.com> > > Section: 4 > > Original Text > ------------- > When negotiating the ChaCha20-Poly1305 algorithm for use in IKE or > IPsec, the value ENCR_CHACHA20_POLY1305 (28) should be used in the > transform substructure of the SA payload as the ENCR (type 1) > transform ID. As with other AEAD algorithms, INTEG (type 3) > transform substructures MUST NOT be specified, or just one INTEG > transform MAY be included with value NONE (0). > > Corrected Text > -------------- > When negotiating the ChaCha20-Poly1305 algorithm for use in IKE or > IPsec, the value ENCR_CHACHA20_POLY1305 (28) should be used in the > transform substructure of the SA payload as the ENCR (type 1) > transform ID. > As with other transforms that use a fixed-length key, the Key Length > attribute MUST NOT be specified. > As with other AEAD algorithms, INTEG (type 3) > transform substructures MUST NOT be specified, or just one INTEG > transform MAY be included with value NONE (0). > > Notes > ----- > Reading both RFC7634 and RFC7539 there seems to be a single fixed-length key of 256-bits. > Hence, I think https://tools.ietf.org/html/rfc7296#section-3.3.5: > o The Key Length attribute MUST NOT be used with transforms that use > a fixed-length key. For example, this includes ENCR_DES, > ENCR_IDEA,... > applies (my intent is to clarify this). I think RFC7634 is clear that there is fixed-length key and RFC7296 is clear how those fixed-length keys are negotiated (i.e., no Key Length attribute), I think the current text is clear. Your change would be techinically correct, but not needed, as the same thing is already explained in general processing rules for the Key Length attribute. We could mark this as hold for document update, but I do not really expect that there would be update of this document... -- kivinen@iki.fi
- [IPsec] [Technical Errata Reported] RFC7634 (5441) RFC Errata System
- Re: [IPsec] [Technical Errata Reported] RFC7634 (… Yoav Nir
- Re: [IPsec] [Technical Errata Reported] RFC7634 (… Paul Wouters
- Re: [IPsec] [Technical Errata Reported] RFC7634 (… Tobias Brunner
- Re: [IPsec] [Technical Errata Reported] RFC7634 (… Benjamin Kaduk
- Re: [IPsec] [Technical Errata Reported] RFC7634 (… Valery Smyslov
- [IPsec] [Technical Errata Reported] RFC7634 (5441) Tero Kivinen