IETF Logo Mail Archive

Re: [kitten] Fwd: [Technical Errata Reported] RFC5801 (2825)

Shawn M Emery <shawn.emery@oracle.com> Mon, 14 November 2011 08:03 UTC

Return-Path: <shawn.emery@oracle.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BDEC11E824C for <kitten@ietfa.amsl.com>; Mon, 14 Nov 2011 00:03:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.598
X-Spam-Level:
X-Spam-Status: No, score=-6.598 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, UNPARSEABLE_RELAY=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gISreY18pazH for <kitten@ietfa.amsl.com>; Mon, 14 Nov 2011 00:03:22 -0800 (PST)
Received: from rcsinet15.oracle.com (rcsinet15.oracle.com [148.87.113.117]) by ietfa.amsl.com (Postfix) with ESMTP id 4C89111E80B5 for <kitten@ietf.org>; Mon, 14 Nov 2011 00:03:22 -0800 (PST)
Received: from ucsinet22.oracle.com (ucsinet22.oracle.com [156.151.31.94]) by rcsinet15.oracle.com (Switch-3.4.4/Switch-3.4.4) with ESMTP id pAE83KIu014632 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for <kitten@ietf.org>; Mon, 14 Nov 2011 08:03:21 GMT
Received: from acsmt358.oracle.com (acsmt358.oracle.com [141.146.40.158]) by ucsinet22.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id pAE83J2O020786 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <kitten@ietf.org>; Mon, 14 Nov 2011 08:03:20 GMT
Received: from abhmt111.oracle.com (abhmt111.oracle.com [141.146.116.63]) by acsmt358.oracle.com (8.12.11.20060308/8.12.11) with ESMTP id pAE83EVB018355 for <kitten@ietf.org>; Mon, 14 Nov 2011 02:03:14 -0600
Received: from dhcp-1599.meeting.ietf.org (/10.159.223.32) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Mon, 14 Nov 2011 00:03:14 -0800
Message-ID: <4EC0CB2F.10706@oracle.com>
Date: Mon, 14 Nov 2011 01:02:55 -0700
From: Shawn M Emery <shawn.emery@oracle.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:8.0) Gecko/20111105 Thunderbird/8.0
MIME-Version: 1.0
To: kitten@ietf.org
References: <4DEF26FE.5070904__4175.18786057389$1307518736$gmane$org@cs.tcd.ie> <87d3ioycn4.fsf@latte.josefsson.org> <4DEF48C0.3000508@cs.tcd.ie> <4EBF2B2A.8000602@cs.tcd.ie>
In-Reply-To: <4EBF2B2A.8000602@cs.tcd.ie>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Source-IP: ucsinet22.oracle.com [156.151.31.94]
X-CT-RefId: str=0001.0A090205.4EC0CB49.00DE,ss=1,re=0.000,fgs=0
Subject: Re: [kitten] Fwd: [Technical Errata Reported] RFC5801 (2825)
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Nov 2011 08:03:27 -0000

On 11/12/11 7:27 PM, Stephen Farrell wrote:
> Folks,
>
> Not being on the top of anyone's list, this doesn't
> seem to have progressed since June.
>
> Can we resolve this on the list or at this week's
> meeting?

Let's discuss this during the session.

Simon,

What was the result of your tests running against the updated version of 
GNU SASL?

Shawn.
--
> On 06/08/2011 11:02 AM, Stephen Farrell wrote:
>>
>>
>> On 08/06/11 09:02, Simon Josefsson wrote:
>>> Stephen Farrell<stephen.farrell@cs.tcd.ie>  writes:
>>>
>>>> Hi all,
>>>>
>>>> Can you confirm that this is correct, or not?
>>>
>>> I think we could use some more discussion before approving this -- for
>>> example, what impact does this have on existing implementations?
>>
>> Good point. I'm fine with waiting for the WG to give me the
>> answer that I'll cut'n'paste into the errata tool:-) Sooner
>> is of course better for that.
>>
>> Thanks,
>> S.
>>
>>>
>>> I will try to change my implementation to use 255 instead of 0 and see
>>> if it still works and inteoperates with my old version.  It would be
>>> useful if others could do similar experiments.  I don't expect serious
>>> problems, but I think we should consider the impact before approving
>>> this.
>>>
>>> I do agree it is a bug in the specification though.
>>>
>>> /Simon
>>>
>>>> Thanks,
>>>> S.
>>>>
>>>> -------- Original Message --------
>>>> Subject: [Technical Errata Reported] RFC5801 (2825)
>>>> Date: Tue,  7 Jun 2011 20:58:20 -0700 (PDT)
>>>> From: RFC Errata System<rfc-editor@rfc-editor.org>
>>>> To: simon@josefsson.org, Nicolas.Williams@oracle.com,
>>>> stephen.farrell@cs.tcd.ie, turners@ieca.com, tlyu@mit.edu,
>>>> kurt.zeilenga@isode.com
>>>> CC: thomas.maslen@quest.com, rfc-editor@rfc-editor.org
>>>>
>>>>
>>>> The following errata report has been submitted for RFC5801,
>>>> "Using Generic Security Service Application Program Interface 
>>>> (GSS-API)
>>>> Mechanisms in Simple Authentication and Security Layer (SASL): The GS2
>>>> Mechanism Family".
>>>>
>>>> --------------------------------------
>>>> You may review the report below and at:
>>>> http://www.rfc-editor.org/errata_search.php?rfc=5801&eid=2825
>>>>
>>>> --------------------------------------
>>>> Type: Technical
>>>> Reported by: Thomas Maslen<thomas.maslen@quest.com>
>>>>
>>>> Section: 5.1
>>>>
>>>> Original Text
>>>> -------------
>>>> The initiator-address-type and acceptor-address-type fields of the
>>>> GSS-CHANNEL-BINDINGS structure MUST be set to 0.
>>>>
>>>>
>>>> Corrected Text
>>>> --------------
>>>> The initiator-address-type and acceptor-address-type fields of the
>>>> GSS-CHANNEL-BINDINGS structure MUST be set to 255 (GSS_C_AF_NULLADDR).
>>>>
>>>>
>>>> Notes
>>>> -----
>>>> See RFC 2744, section 3.11, last paragraph:  "[...] or omit addressing
>>>> information, specifying GSS_C_AF_NULLADDR as the address-types".
>>>>
>>>> Appendix A of RFC 2744 specifies that the value of 
>>>> GSS_C_AF_NULLADDR is 255.
>>>>
>>>> Instructions:
>>>> -------------
>>>> This errata is currently posted as "Reported". If necessary, please
>>>> use "Reply All" to discuss whether it should be verified or
>>>> rejected. When a decision is reached, the verifying party (IESG)
>>>> can log in to change the status and edit the report, if necessary.
>>>>
>>>> --------------------------------------
>>>> RFC5801 (draft-ietf-sasl-gs2-20)
>>>> --------------------------------------
>>>> Title               : Using Generic Security Service Application 
>>>> Program
>>>> Interface (GSS-API) Mechanisms in Simple Authentication and Security
>>>> Layer (SASL): The GS2 Mechanism Family
>>>> Publication Date    : July 2010
>>>> Author(s)           : S. Josefsson, N. Williams
>>>> Category            : PROPOSED STANDARD
>>>> Source              : Simple Authentication and Security Layer
>>>> Area                : Security
>>>> Stream              : IETF
>>>> Verifying Party     : IESG
>>>
>> _______________________________________________
>> Kitten mailing list
>> Kitten@ietf.org
>> https://www.ietf.org/mailman/listinfo/kitten
>>
> _______________________________________________
> Kitten mailing list
> Kitten@ietf.org
> https://www.ietf.org/mailman/listinfo/kitten

v2.43.4 | Report a Bug | By Email | System Status