Re: [kitten] review of draft-ietf-kitten-gssapi-extensions-iana-07
Nico Williams <nico@cryptonector.com> Mon, 05 August 2013 19:54 UTC
Return-Path: <nico@cryptonector.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0909621F9E28 for <kitten@ietfa.amsl.com>; Mon, 5 Aug 2013 12:54:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PEqWYWmSRHRe for <kitten@ietfa.amsl.com>; Mon, 5 Aug 2013 12:54:13 -0700 (PDT)
Received: from homiemail-a73.g.dreamhost.com (caiajhbdccac.dreamhost.com [208.97.132.202]) by ietfa.amsl.com (Postfix) with ESMTP id D06FA21F9E27 for <kitten@ietf.org>; Mon, 5 Aug 2013 12:54:12 -0700 (PDT)
Received: from homiemail-a73.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a73.g.dreamhost.com (Postfix) with ESMTP id 429CB1F008D for <kitten@ietf.org>; Mon, 5 Aug 2013 12:54:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h= mime-version:in-reply-to:references:date:message-id:subject:from :to:cc:content-type; s=cryptonector.com; bh=/OyA/CweQH8mKGpfZxvr Hy8O/Kw=; b=kx7F4r8PR1KQWTy1urzXwRdYL43XfT+tTI7sBNUa/hxZ/b6VFM76 V0Ucmx5FsT9LFIcfq5cEWBaoKuaHVR+qeFjPiocyHKTltk0phgaw/f/siOspvhoB sjKuPxI9DW+ASZMQJzicTZhvwjYlRfnSkxFlRDH1b3q+vkdTLf8DICw=
Received: from mail-wi0-f170.google.com (mail-wi0-f170.google.com [209.85.212.170]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by homiemail-a73.g.dreamhost.com (Postfix) with ESMTPSA id DD1F61F008A for <kitten@ietf.org>; Mon, 5 Aug 2013 12:54:11 -0700 (PDT)
Received: by mail-wi0-f170.google.com with SMTP id hi8so1960793wib.1 for <kitten@ietf.org>; Mon, 05 Aug 2013 12:54:10 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=t0ZQ4XjVmPeGad+ZHnsIDTzRrHR5aPjOChnamjlZO/o=; b=YaD7E+/dDaT+KKvKDOlIXkcWNGNdL/b7rlk9ZURd3HzMGwD5PunDm0Umt4gjpYMvry k7I7Zs8AMmnxTX413+bXhjV0O7nAz/fu2sWTJZbklZ+VQcf+BVkNp68HOSPP7uZMPjKR ilaWcUDN7vBTWwXxhzb3mEF0QO+0/R7VnnHZyYiJ1GvUoZFaZGImMVMjX5806qgCWSF7 mevWH6RiklAosO6Y+1xA4BeJmZDu4Lr/+qmFHrqSfSrwLC0AWK2RedmEbSYBjuHAwzb8 MqJEWV94LxqNCbMuRpUEmf7yn+tNmaTYZKsh8cnxiMGexbC2ASEzqhdUdC+6mhbb4ZRQ ifhg==
MIME-Version: 1.0
X-Received: by 10.180.187.175 with SMTP id ft15mr7660931wic.20.1375732450063; Mon, 05 Aug 2013 12:54:10 -0700 (PDT)
Received: by 10.216.21.138 with HTTP; Mon, 5 Aug 2013 12:54:10 -0700 (PDT)
In-Reply-To: <509BD173.9000606@mnt.se>
References: <50992138.9030200@sunet.se> <509BC801.8060506@isode.com> <509BD173.9000606@mnt.se>
Date: Mon, 05 Aug 2013 14:54:10 -0500
Message-ID: <CAK3OfOhQVP=JLeNOy4cBdw04KRgdJ78oihYtPAhT4bh_taZheQ@mail.gmail.com>
From: Nico Williams <nico@cryptonector.com>
To: Leif Johansson <leifj@mnt.se>
Content-Type: text/plain; charset="UTF-8"
Cc: "kitten@ietf.org" <kitten@ietf.org>
Subject: Re: [kitten] review of draft-ietf-kitten-gssapi-extensions-iana-07
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Aug 2013 19:54:18 -0000
On Thu, Nov 8, 2012 at 9:36 AM, Leif Johansson <leifj@mnt.se> wrote: >> The short answer to this is: if we know what the exact guidance is, we >> wouldn't need to use the Expert Review. So this is by design. > > I object to that answer. Hmm, well, we could certainly spend some time on providing GSS API design perls of wisdom. But then, if we proceed with the channel bound thing and async I/O... well, we'll be rototilling the whole thing. That will be great because the API will get easier to use, but it may also change some of those perls of wisdom. > Expert review should absolutely have guidance. I'm fine saying "use your > good > judgement" or not even having a guidance section and relying on implicit > good sense. "Take API design 101, and preferably 201 too". > However, the current text claims to provide guidance to reviewers but > probably > won't help anyone who doesn't already understand what to do. > > I say skip it, but if ppl are really married to it I'm fine with that > too :-) I'll provide a handful of perls now: - *always* include an OM_uint32 *minor_status argument in the C bindings of any new GSS functions - always specify all major status codes a new function may return, and if it may return as-yet-undefined errors, then say so (or maybe that should always be allowed for new functions?) - if you add any new opaque types always add a GSS_Duplicate_<type>() function - wherever possible use the naming attributes API for extensions You already have to follow the naming conventions (GSS_S_.*, GSS_C_.*, ...), so no need to go there. I could add more. Someone else take a turn first. Nico --
- [kitten] review of draft-ietf-kitten-gssapi-exten… Leif Johansson
- Re: [kitten] review of draft-ietf-kitten-gssapi-e… Alexey Melnikov
- Re: [kitten] review of draft-ietf-kitten-gssapi-e… Leif Johansson
- Re: [kitten] review of draft-ietf-kitten-gssapi-e… Benjamin Kaduk
- Re: [kitten] review of draft-ietf-kitten-gssapi-e… Nico Williams
- Re: [kitten] review of draft-ietf-kitten-gssapi-e… Alexey Melnikov
- Re: [kitten] review of draft-ietf-kitten-gssapi-e… Benjamin Kaduk