Re: [Lake] Error message => Discontinue #208
John Mattsson <john.mattsson@ericsson.com> Mon, 24 January 2022 17:54 UTC
Return-Path: <john.mattsson@ericsson.com>
X-Original-To: lake@ietfa.amsl.com
Delivered-To: lake@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2065F3A0E55 for <lake@ietfa.amsl.com>; Mon, 24 Jan 2022 09:54:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.476
X-Spam-Level:
X-Spam-Status: No, score=-7.476 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.576, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, MIME_HTML_ONLY=0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eXrEZs-uXSyJ for <lake@ietfa.amsl.com>; Mon, 24 Jan 2022 09:54:28 -0800 (PST)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2089.outbound.protection.outlook.com [40.107.22.89]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4898A3A0E4F for <lake@ietf.org>; Mon, 24 Jan 2022 09:54:28 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=oARzmXiJ2roLBfSIoAf3EbvIgqO3v9IZ6ygbt6OzKXhQRvOFTQCdTc2er0G3Msoq9PVZxkvGNGXfO2B6Y90qI9fSgXk8cUsjigct/68sD5/JqwTz4flVyG78c2nGyT72GT5EKcRpgVJn+RyxCBq1Y/9FhuVbvcFQ0PDZTf8dVlB9tqFhXkaLhp+ACnDUImdUmPO52XCj2jxEbQBos7Mkh3I7lTmMYcDuGjC/0CIsV9lcxRmmRRKthmiga6+i1+Ko/dVGtJAo3Jc6EFDkfgbRpsItHREKFKJbt95SVbcHFv/NUSHewTKkqfIC3vIVdsdocKFFE5CPP2xLxn4kaIwipg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=IO4H+sZsLALBk/iUErVHgbtzrqtcGV6legGwo8ibucg=; b=SsHsLNb6wNyK5gqF1xFFBefMT/+exNVoo6nuSiKPT6tke/chTQy6xtnNk+SsOl1mBQAyCuVka9IJ7DmzP7/3rWdHjWvhk04z0b4Hzn1N1+wkyapXhJugN0c8kmznRBsBTPkvnRsMbuq5zQJgd5IoL+Po0LoWpAYXzRAIOKR7sk/S3oG3jwETWfkepiU1gwLolXM6SXqVP0g0pBos9nkzrdcz/QlYfX+3+xBDNanDFhMr55ij9qvWyPVy3BN2joTOYAKIrrnh1obvDgHFeisMP/0T1pyyEvf4q1DWR+RCthjihzN44ibn1wcV4pw+wHaLCdqpKMazKWy/usl4VC1F0Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IO4H+sZsLALBk/iUErVHgbtzrqtcGV6legGwo8ibucg=; b=J94byeV2w171vpxIa6SFScEJBZ1EXRTHRvX46vbinuyBiORM90iZcj7aMiAdQfIPZBGu9nfJpmPX5GDMuZ8C+Y+sz5D10wHIf8+nR0kC1ZAYc/vOqyK6pSefUoITZy5Vm5nbuiwK4TzXwVDylzRaKCtcfqDjS1Ww2dxqrhtxwNI=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by HE1PR0701MB2924.eurprd07.prod.outlook.com (2603:10a6:3:4c::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4930.14; Mon, 24 Jan 2022 17:54:24 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::ec63:344f:ebbc:a251]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::ec63:344f:ebbc:a251%10]) with mapi id 15.20.4930.009; Mon, 24 Jan 2022 17:54:23 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: Marco Tiloca <marco.tiloca=40ri.se@dmarc.ietf.org>, "lake@ietf.org" <lake@ietf.org>
Thread-Topic: [Lake] Error message => Discontinue #208
Thread-Index: AQHYERrYsNJbfN5mFEi+baS1YUTLZaxyU+SAgAAeawk=
Date: Mon, 24 Jan 2022 17:54:22 +0000
Message-ID: <HE1PR0701MB3050D9F059E3B2BA180E7DB1895E9@HE1PR0701MB3050.eurprd07.prod.outlook.com>
References: <HE1PR0701MB3050FC92A1A6983ABF6C9EA6895E9@HE1PR0701MB3050.eurprd07.prod.outlook.com> <b7ffe052-58ab-0c2e-e84c-d94ed447e3e5@ri.se>
In-Reply-To: <b7ffe052-58ab-0c2e-e84c-d94ed447e3e5@ri.se>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 8247de3b-a845-4e16-5832-08d9df628e31
x-ms-traffictypediagnostic: HE1PR0701MB2924:EE_
x-microsoft-antispam-prvs: <HE1PR0701MB29245B859D481DA573F92AF0895E9@HE1PR0701MB2924.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(66574015)(15650500001)(316002)(110136005)(5660300002)(2906002)(71200400001)(33656002)(44832011)(55016003)(91956017)(86362001)(82960400001)(8676002)(186003)(66476007)(76116006)(8936002)(122000001)(66946007)(38070700005)(99936003)(64756008)(508600001)(66446008)(66556008)(52536014)(166002)(83380400001)(26005)(7696005)(6506007)(9686003)(53546011)(966005)(38100700002)(20210929001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="sha256"; boundary="_D28A1A52-E9D3-694D-BCE4-9DA93E52766F_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8247de3b-a845-4e16-5832-08d9df628e31
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Jan 2022 17:54:22.7680 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: VQZxN+2zSlVssansfKv2bc6phlnLh4319ost+IseXmzgpu2/yjGfXzWcRVhjBSIf1TRTc4zktufp1f075kC2O7nlsaWnj+/S2Fmqf7/9Gc4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2924
Archived-At: <https://mailarchive.ietf.org/arch/msg/lake/RA9VAiL9zo_ZEjGz8yOAy0Esn7w>
Subject: Re: [Lake] Error message => Discontinue #208
X-BeenThere: lake@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Lightweight Authenticated Key Exchange <lake.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lake>, <mailto:lake-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lake/>
List-Post: <mailto:lake@ietf.org>
List-Help: <mailto:lake-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lake>, <mailto:lake-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Jan 2022 17:54:33 -0000
Or would the right choice be to differentiate between errors where the message might be retried and errors where the message may be retried later?
1 | tstr | Do not automatically retry error
2 | tstr | May retry later error
Most be not client errors should not be retried while most but not all server errors might be retried.
Carsten had the opinion that different EDHOC errors should lead to different automatic processing. But I think nothing like the above was ever discussed.
John
From: Marco Tiloca <marco.tiloca=40ri.se@dmarc.ietf.org>
Date: Monday, 24 January 2022 at 16:57
To: John Mattsson <john.mattsson@ericsson.com>, lake@ietf.org <lake@ietf.org>
Subject: Re: [Lake] Error message => Discontinue #208
Hi John,
I think it's good to have something like in your second proposal and without "Unspecified" (as you say, the error is specified in the text string), that is:
1 | tstr | Sender error
2 | tstr | Receiver error
Without bothering about which among client and server exactly has the Initiator or Responder role in the EDHOC session, the above can be read as:
1 --> "something wrong done by the sender of the message that resulted in this error message"
2 --> "something locally wrong happened at the receiver of the message that resulted in this error message"
The mapping with high-level classes from CoAP/HTTP would be limited to responses only, and for CoAP it was basically sketched in Appendix A.3.1:
"In particular, it is RECOMMENDED that such error responses have response code either 4.00 (Bad Request) in case of client error (e.g., due to a malformed EDHOC message), or 5.00 (Internal Server Error) in case of server error (e.g., due to failure in deriving EDHOC key material)."
This can be expanded to highlight the use of 4.00 responses for ERR_CODE 1 (Sender error) and the use of 5.00 responses for ERR_CODE 2 (Receiver error).
Best,
/Marco
On 2022-01-24 13:08, John Mattsson wrote:
Hi,
Issue #208 was opened based on two different review comments from
Marco and Sean on different aspects of error messages.
I have tried to address Marco's and Sean's comments in PR #234
https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-523a547beadf021c&q=1&e=d0e610e8-e168-45d3-95fb-39c7150c896c&u=https%3A%2F%2Fgithub.com%2Flake-wg%2Fedhoc%2Fpull%2F234" rel="nofollow">https://github.com/lake-wg/edhoc/pull/234
While working on this I noticed than one cause for Marcos comment might be
that EDHOC only talkes about what HTTP and CoAP calls "client error",
i.e., there was something wrong in the received message.
HTTP and CoAP defines errrors into two classes "client error" (there is something
wrong with you) and "server error" (there is something wrong with me).
EDHOC does currently not follow this design and only has a single error
1 | tstr | Unspecified
Should EDHOC instead have have something like?
1 | tstr | Unspecified Initiator error
2 | tstr | Unspecified Responder error
or
1 | tstr | Unspecified Sender error
2 | tstr | Unspecified Reciever error
The choice would likely be whatever is easiest for an implementation.
I think we should discuss this. This type of high level classes was not discussed before. We only discussed what kind of detailed errors we should standardized and agreed on none.
Also is "Unspecified" a good name? The intention is that it is specified in the tstr.
Cheers,
John
--
Marco Tiloca
Ph.D., Senior Researcher
Division: Digital System
Department: Computer Science
Unit: Cybersecurity
RISE Research Institutes of Sweden
https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-3d296ae5721cac2b&q=1&e=d0e610e8-e168-45d3-95fb-39c7150c896c&u=https%3A%2F%2Fwww.ri.se%2F" rel="nofollow">https://www.ri.se
Phone: +46 (0)70 60 46 501
Isafjordsgatan 22 / Kistagången 16
SE-164 40 Kista (Sweden)
- [Lake] Error message => Discontinue #208 John Mattsson
- Re: [Lake] Error message => Discontinue #208 Marco Tiloca
- Re: [Lake] Error message => Discontinue #208 John Mattsson