Re: [kitten] Fwd: [Technical Errata Reported] RFC5801 (2825)
Martin Rex <mrex@sap.com> Mon, 14 November 2011 16:12 UTC
Return-Path: <mrex@sap.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 140521F0C82 for <kitten@ietfa.amsl.com>; Mon, 14 Nov 2011 08:12:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.116
X-Spam-Level:
X-Spam-Status: No, score=-10.116 tagged_above=-999 required=5 tests=[AWL=0.133, BAYES_00=-2.599, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MbUeHbmspLGe for <kitten@ietfa.amsl.com>; Mon, 14 Nov 2011 08:12:38 -0800 (PST)
Received: from smtpde01.sap-ag.de (smtpde01.sap-ag.de [155.56.68.170]) by ietfa.amsl.com (Postfix) with ESMTP id 25EC01F0C55 for <kitten@ietf.org>; Mon, 14 Nov 2011 08:12:37 -0800 (PST)
Received: from mail.sap.corp by smtpde01.sap-ag.de (26) with ESMTP id pAEGCWLd022366 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 14 Nov 2011 17:12:32 +0100 (MET)
From: Martin Rex <mrex@sap.com>
Message-Id: <201111141612.pAEGCVL0007860@fs4113.wdf.sap.corp>
To: stephen.farrell@cs.tcd.ie
Date: Mon, 14 Nov 2011 17:12:31 +0100
In-Reply-To: <4EBF2B2A.8000602@cs.tcd.ie> from "Stephen Farrell" at Nov 13, 11 02:27:54 am
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 8bit
X-SAP: out
Cc: kitten@ietf.org, simon@josefsson.org
Subject: Re: [kitten] Fwd: [Technical Errata Reported] RFC5801 (2825)
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: mrex@sap.com
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Nov 2011 16:12:39 -0000
Stephen Farrell wrote: > > Not being on the top of anyone's list, this doesn't > seem to have progressed since June. > > Can we resolve this on the list or at this week's > meeting? I think we stopped here: http://www.ietf.org/mail-archive/web/kitten/current/msg02688.html While GSS_C_AF_NULLADDR(255) would be undoubtedly the correct tag with respect to the original GSS-API spec, we seem to have an installed base which didn't follow the spec. -Martin > On 06/08/2011 11:02 AM, Stephen Farrell wrote: > > > > > > On 08/06/11 09:02, Simon Josefsson wrote: > >> Stephen Farrell<stephen.farrell@cs.tcd.ie> writes: > >> > >>> Hi all, > >>> > >>> Can you confirm that this is correct, or not? > >> > >> I think we could use some more discussion before approving this -- for > >> example, what impact does this have on existing implementations? > > > > Good point. I'm fine with waiting for the WG to give me the > > answer that I'll cut'n'paste into the errata tool:-) Sooner > > is of course better for that. > > > > Thanks, > > S. > > > >> > >> I will try to change my implementation to use 255 instead of 0 and see > >> if it still works and inteoperates with my old version. It would be > >> useful if others could do similar experiments. I don't expect serious > >> problems, but I think we should consider the impact before approving > >> this. > >> > >> I do agree it is a bug in the specification though. > >> > >> /Simon > >> > >>> Thanks, > >>> S. > >>> > >>> -------- Original Message -------- > >>> Subject: [Technical Errata Reported] RFC5801 (2825) > >>> Date: Tue, 7 Jun 2011 20:58:20 -0700 (PDT) > >>> From: RFC Errata System<rfc-editor@rfc-editor.org> > >>> To: simon@josefsson.org, Nicolas.Williams@oracle.com, > >>> stephen.farrell@cs.tcd.ie, turners@ieca.com, tlyu@mit.edu, > >>> kurt.zeilenga@isode.com > >>> CC: thomas.maslen@quest.com, rfc-editor@rfc-editor.org > >>> > >>> > >>> The following errata report has been submitted for RFC5801, > >>> "Using Generic Security Service Application Program Interface (GSS-API) > >>> Mechanisms in Simple Authentication and Security Layer (SASL): The GS2 > >>> Mechanism Family". > >>> > >>> -------------------------------------- > >>> You may review the report below and at: > >>> http://www.rfc-editor.org/errata_search.php?rfc=5801&eid=2825 > >>> > >>> -------------------------------------- > >>> Type: Technical > >>> Reported by: Thomas Maslen<thomas.maslen@quest.com> > >>> > >>> Section: 5.1 > >>> > >>> Original Text > >>> ------------- > >>> The initiator-address-type and acceptor-address-type fields of the > >>> GSS-CHANNEL-BINDINGS structure MUST be set to 0. > >>> > >>> > >>> Corrected Text > >>> -------------- > >>> The initiator-address-type and acceptor-address-type fields of the > >>> GSS-CHANNEL-BINDINGS structure MUST be set to 255 (GSS_C_AF_NULLADDR). > >>> > >>> > >>> Notes > >>> ----- > >>> See RFC 2744, section 3.11, last paragraph: "[...] or omit addressing > >>> information, specifying GSS_C_AF_NULLADDR as the address-types". > >>> > >>> Appendix A of RFC 2744 specifies that the value of GSS_C_AF_NULLADDR is 255. > >>> > >>> Instructions: > >>> ------------- > >>> This errata is currently posted as "Reported". If necessary, please > >>> use "Reply All" to discuss whether it should be verified or > >>> rejected. When a decision is reached, the verifying party (IESG) > >>> can log in to change the status and edit the report, if necessary. > >>> > >>> -------------------------------------- > >>> RFC5801 (draft-ietf-sasl-gs2-20) > >>> -------------------------------------- > >>> Title : Using Generic Security Service Application Program > >>> Interface (GSS-API) Mechanisms in Simple Authentication and Security > >>> Layer (SASL): The GS2 Mechanism Family > >>> Publication Date : July 2010 > >>> Author(s) : S. Josefsson, N. Williams > >>> Category : PROPOSED STANDARD > >>> Source : Simple Authentication and Security Layer > >>> Area : Security > >>> Stream : IETF > >>> Verifying Party : IESG > >> > > _______________________________________________ > > Kitten mailing list > > Kitten@ietf.org > > https://www.ietf.org/mailman/listinfo/kitten > > > _______________________________________________ > Kitten mailing list > Kitten@ietf.org > https://www.ietf.org/mailman/listinfo/kitten >
- [kitten] Fwd: [Technical Errata Reported] RFC5801… Stephen Farrell
- Re: [kitten] Fwd: [Technical Errata Reported] RFC… Simon Josefsson
- Re: [kitten] Fwd: [Technical Errata Reported] RFC… Stephen Farrell
- Re: [kitten] Fwd: [Technical Errata Reported] RFC… Stephen Farrell
- Re: [kitten] Fwd: [Technical Errata Reported] RFC… Shawn M Emery
- Re: [kitten] Fwd: [Technical Errata Reported] RFC… Simon Josefsson
- Re: [kitten] Fwd: [Technical Errata Reported] RFC… Martin Rex
- Re: [kitten] Fwd: [Technical Errata Reported] RFC… Thomas Maslen