Re: [kitten] RFC2743 errata 4251

Greg Hudson <ghudson@mit.edu> Wed, 25 February 2015 21:37 UTC

Return-Path: <ghudson@mit.edu>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D470E1A6EFC for <kitten@ietfa.amsl.com>; Wed, 25 Feb 2015 13:37:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.211
X-Spam-Level:
X-Spam-Status: No, score=-4.211 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HjblkarqUU8g for <kitten@ietfa.amsl.com>; Wed, 25 Feb 2015 13:37:04 -0800 (PST)
Received: from dmz-mailsec-scanner-3.mit.edu (dmz-mailsec-scanner-3.mit.edu [18.9.25.14]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 290C71A88E4 for <kitten@ietf.org>; Wed, 25 Feb 2015 13:37:02 -0800 (PST)
X-AuditID: 1209190e-f79bb6d0000030e8-43-54ee407dd11c
Received: from mailhub-auth-2.mit.edu ( [18.7.62.36]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-3.mit.edu (Symantec Messaging Gateway) with SMTP id 16.0E.12520.D704EE45; Wed, 25 Feb 2015 16:37:01 -0500 (EST)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-2.mit.edu (8.13.8/8.9.2) with ESMTP id t1PLatWb006345; Wed, 25 Feb 2015 16:36:55 -0500
Received: from [18.101.8.121] (vpn-18-101-8-121.mit.edu [18.101.8.121]) (authenticated bits=0) (User authenticated as ghudson@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id t1PLaksU031018 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Wed, 25 Feb 2015 16:36:54 -0500
Message-ID: <54EE406E.2070505@mit.edu>
Date: Wed, 25 Feb 2015 16:36:46 -0500
From: Greg Hudson <ghudson@mit.edu>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0
MIME-Version: 1.0
To: Benjamin Kaduk <kaduk@mit.edu>, kitten@ietf.org
References: <alpine.GSO.1.10.1411241330400.19231@multics.mit.edu> <20141124185114.GM3200@localhost> <alpine.GSO.1.10.1412091618550.23489@multics.mit.edu> <20141209215519.GI12979@localhost> <alpine.GSO.1.10.1412091856160.23489@multics.mit.edu> <20141210002441.GP12979@localhost> <alpine.GSO.1.10.1412101349030.23489@multics.mit.edu> <548F185E.70701@mit.edu> <5492032F.9050607@mit.edu> <20141217230505.GD9443@localhost> <20141220001633.GD12662@localhost> <1421269970.18482.184.camel@minbar.fac.cs.cmu.edu> <alpine.GSO.1.10.1501201620290.23489@multics.mit.edu> <alpine.GSO.1.10.1501201908540.23489@multics.mit.edu> <alpine.GSO.1.10.1502251131520.3953@multics.mit.edu>
In-Reply-To: <alpine.GSO.1.10.1502251131520.3953@multics.mit.edu>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 7bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrIIsWRmVeSWpSXmKPExsUixG6nolvr8C7EYOVFHoujm1exODB6LFny kymAMYrLJiU1J7MstUjfLoEro+P+TMaCs5wVN583sDcwzmfvYuTkkBAwkWjft40NwhaTuHBv PZgtJLCYSWLHh7AuRi4geyOjxM6N36ASR5gk5h8T7mLk4OAVUJN41ScKEmYRUJXYOH82K4jN JqAssX7/VhYQW1QgTOL75h3MIDavgKDEyZlPwOIiAsYSd3/eALOFBTQldn69xQqxawarxPP5 78CO4xRwlOj5tJEJxGYW0JPYcf0XK4QtL7H97RzmCYwCs5DMnYWkbBaSsgWMzKsYZVNyq3Rz EzNzilOTdYuTE/PyUot0jfVyM0v0UlNKNzGCQpJTkm8H49eDSocYBTgYlXh4D8i8CRFiTSwr rsw9xCjJwaQkyvvM9l2IEF9SfkplRmJxRnxRaU5q8SFGCQ5mJRFeZSugHG9KYmVValE+TEqa g0VJnHfTD74QIYH0xJLU7NTUgtQimKwMB4eSBG+ePVCjYFFqempFWmZOCUKaiYMTZDgP0PBO kBre4oLE3OLMdIj8KUZFKXHeOJCEAEgiozQPrheWMl4xigO9IswrDVLFA0w3cN2vgAYzAQ3e 8/gVyOCSRISUVANjpcMRLUPR29bvbthc46+f8Wd37Ckf18RC1chTCt9WaOav3xVY8vnoSR75 BV85NDmu2DDeKa5LNNFfaPro56EZxVF1Z/8kLjseOH/e9ukX9BldXeWib5wqecu00oRpQ129 depLNosgnd0tPzfWfJA8aStxzvyIqaJNf8HGbd7fpe7u2SAUzBWqxFKckWioxVxUnAgAcMDT 3/QCAAA=
Archived-At: <http://mailarchive.ietf.org/arch/msg/kitten/C-EF6lZfVmquPvgjqS2i5Yp2l7M>
Subject: Re: [kitten] RFC2743 errata 4251
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Feb 2015 21:37:06 -0000

On 02/25/2015 11:40 AM, Benjamin Kaduk wrote:
>   It should say:
> 
>      o  GSS_S_FAILURE indicates that the context is recognized, but
>      either the GSS_Process_context_token() operation could not be
>      performed for reasons unspecified at the GSS-API level, or the peer
>      had an error consuming the last context token sent to it.  The latter
>      occurs when the local side became fully established and produced one
>      last token which was sent to the peer, but the peer encountered an
>      error while processing that last context token.  In either case the
>      minor status code provides additional information.
> 
>      In the case of successful processing of error tokens, the minor
>      status code provides information from the input token.  The display
>      string outputs of GSS_Display_status() as applied to such minor
>      status codes should indicate that the error originated on the remote
>      peer, along with the nature of the error.  Note that there is no
>      way to distinguish failures of GSS_Process_context_token() from
>      error token information other than to read the human-readable status
>      display strings.

This seems okay to me.