[OAUTH-WG] Re: [Technical Errata Reported] RFC7519 (8060)

Pieter Kasselman <pieter.kasselman@microsoft.com> Thu, 01 August 2024 14:33 UTC

Return-Path: <pieter.kasselman@microsoft.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C769AC14F68F for <oauth@ietfa.amsl.com>; Thu, 1 Aug 2024 07:33:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.254
X-Spam-Level:
X-Spam-Status: No, score=-7.254 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.148, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9hK1r3MiaUFh for <oauth@ietfa.amsl.com>; Thu, 1 Aug 2024 07:33:11 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2101.outbound.protection.outlook.com [40.107.22.101]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1CE4DC14E515 for <oauth@ietf.org>; Thu, 1 Aug 2024 07:33:10 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=TnAdzbDjQH5k2k8t163CQTeZtkzxKKdlWSmB5NqvBu5gDVQbegSvoJHCL0gZl0970JY1ct2Z6dEFxHLKVvu1rWwb90qtVuKHB/71KyerBVRBc7hMq0xM1d7EJkq01DkcZLAe3dk6d2YIzlE8/iOvCJlyaMn5QD7ElAwjwNRC4k7aEU8LTXuBvsUw7Em7DR8xy/4C5R+7e8neQTThoqIISnzFhxRq+g4pBnx9K748LqUW/d+21KZoIQs7+5MP7eT+LoS3i7UtpbS0QUGr72OZowd3XE1s7s0PGDTHC+fmvcH8oiWviq1OvDYRh+yWUHd6mbra5zYFIT705LcZ5yM4WA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=aD2k7cs4izEESKB9kq/C9b4MWvsjvAeVU1lkK7U10fo=; b=u4j2G0TBkdE+wo9wdUZExI5FAiLkArJlRQM1odfR3E8dxVtX5coN8boLUGPGtCJzXn2c8DDzY00mBlnXu6lmc48yhiWj9fqAmBblIB6OooRROthk0o/95zFErgaAttjL+m4A/dcIX5LEiDWkP+JAb0H7+VuSJlyCV7ziMhtE8elW5vwOKncJyz4uIuZDVfLDYsMhOFEPWtJN3yjoIj0KeOqNjz0xqI5ItUqINdyHAypVsWXaNxUY6VOv74jmX7kT7SnPIgH3T6bfkEIWvJ7op1tPkVtZlmIXzxsHqVE07ToUpFkEjNtM0xNZ/e8BV/Jtoo83AKSmIX89xnVOfRrCpw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=aD2k7cs4izEESKB9kq/C9b4MWvsjvAeVU1lkK7U10fo=; b=KY6TFcmqUaVXKzk+TLAruLSkjRbpFIdGqSlb+cVDRaWcabPljx72j30Afbq1O4YZ9okWgGBuH7KEZiuo1ypTSuh9pM/1iVYpdvm2I+cO57nc4bLkya7YZWVu9UuzyPuPPypusvaYGAkTd6wnv1OF8cnm8AqvH7QrePKvfpS4G1A=
Received: from DBAPR83MB0437.EURPRD83.prod.outlook.com (2603:10a6:10:19e::6) by PA1PR83MB0726.EURPRD83.prod.outlook.com (2603:10a6:102:484::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7849.6; Thu, 1 Aug 2024 14:33:07 +0000
Received: from DBAPR83MB0437.EURPRD83.prod.outlook.com ([fe80::9ee1:305:cfd7:dded]) by DBAPR83MB0437.EURPRD83.prod.outlook.com ([fe80::9ee1:305:cfd7:dded%3]) with mapi id 15.20.7849.005; Thu, 1 Aug 2024 14:33:07 +0000
From: Pieter Kasselman <pieter.kasselman@microsoft.com>
To: Paul Wouters <paul.wouters=40aiven.io@dmarc.ietf.org>, Brian Campbell <bcampbell@pingidentity.com>
Thread-Topic: [OAUTH-WG] Re: [Technical Errata Reported] RFC7519 (8060)
Thread-Index: AQHa41CeTZar3Osyq0OMWLFy+Hb0NLIQ3QtQgAAuWQCAACRwgIABQ0Ig
Date: Thu, 01 Aug 2024 14:33:07 +0000
Message-ID: <DBAPR83MB043762B970631E79DACA729191B22@DBAPR83MB0437.EURPRD83.prod.outlook.com>
References: <20240731132617.0FE6C3B873@rfcpa.rfc-editor.org> <CA+k3eCSU45mnmRQxdNhf-cJ6FEfxon9d64bO0jJ4u3G99bEvqA@mail.gmail.com> <DBAPR83MB0437A90177CB7B34DBD67F1291B12@DBAPR83MB0437.EURPRD83.prod.outlook.com> <CA+k3eCQ_8NAmdYejmj7oLW=QeLM1=AHKnPQyM2qhc65=hNwqTw@mail.gmail.com> <CAGL5yWYde01JQYc5h4iESgQG=rRNGBREbKDD3U3oYvNHH4VG9Q@mail.gmail.com>
In-Reply-To: <CAGL5yWYde01JQYc5h4iESgQG=rRNGBREbKDD3U3oYvNHH4VG9Q@mail.gmail.com>
Accept-Language: en-IE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=9ba48aea-3576-46b7-84c5-8584cfc38dbc;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2024-08-01T14:12:35Z;MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DBAPR83MB0437:EE_|PA1PR83MB0726:EE_
x-ms-office365-filtering-correlation-id: f506c52c-e357-4abd-1c79-08dcb236dc32
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|4022899009|376014|1800799024|366016|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DBAPR83MB0437.EURPRD83.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(4022899009)(376014)(1800799024)(366016)(38070700018);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_DBAPR83MB043762B970631E79DACA729191B22DBAPR83MB0437EURP_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DBAPR83MB0437.EURPRD83.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f506c52c-e357-4abd-1c79-08dcb236dc32
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Aug 2024 14:33:07.1851 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: EPWP1YlsRCwSsHPM5q/GZtTNKneDyLMpmp5dabEHC1SmtqeGxhfoQEw74Y2UUP0HyOGKFQKhW9df4F6BCD+wwTbfjoi6WJ47Ugd1gJgx7wg=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PA1PR83MB0726
Message-ID-Hash: MYW7ZFJKKISBYA6DYD3AB3ZXRK7RQIUL
X-Message-ID-Hash: MYW7ZFJKKISBYA6DYD3AB3ZXRK7RQIUL
X-MailFrom: pieter.kasselman@microsoft.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-oauth.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: RFC Errata System <rfc-editor@rfc-editor.org>, "prkasselman@gmail.com" <prkasselman@gmail.com>, "oauth@ietf.org" <oauth@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [OAUTH-WG] Re: [Technical Errata Reported] RFC7519 (8060)
List-Id: OAUTH WG <oauth.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/ZW3vP1OhnzP_YjitmYKCQeTAt1Y>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Owner: <mailto:oauth-owner@ietf.org>
List-Post: <mailto:oauth@ietf.org>
List-Subscribe: <mailto:oauth-join@ietf.org>
List-Unsubscribe: <mailto:oauth-leave@ietf.org>

Thanks Paul

Brian, how about the following:

   5.  Verify that the resulting JOSE Header includes only parameters
        and values whose syntax and semantics are both understood and
        supported or that are specified as being ignored when not
        understood.
*     If the JWT is a JWS, the steps specified in RFC7515 takes
       precedence when validating JOSE Header parameters.
*     If the JWT is a JWE, the steps specified in RFC7516 takes
       precedence when validating JOSE Header parameters.

Cheers

Pieter

From: Paul Wouters <paul.wouters=40aiven.io@dmarc.ietf.org>
Sent: Wednesday, July 31, 2024 7:56 PM
To: Brian Campbell <bcampbell@pingidentity.com>
Cc: Pieter Kasselman <pieter.kasselman@microsoft.com>; RFC Errata System <rfc-editor@rfc-editor.org>; prkasselman@gmail.com; oauth@ietf.org
Subject: Re: [OAUTH-WG] Re: [Technical Errata Reported] RFC7519 (8060)

You don't often get email from paul.wouters=40aiven.io@dmarc.ietf.org<mailto:paul.wouters=40aiven.io@dmarc.ietf.org>. Learn why this is important<https://aka.ms/LearnAboutSenderIdentification>
The ADs can make edits. Go ahead and propose your edits via this email thread.

Paul

On Wed, Jul 31, 2024 at 12:45 PM Brian Campbell <bcampbell@pingidentity.com<mailto:bcampbell@pingidentity.com>> wrote:
I honestly don't know. Perhaps the copied AD or someone on the receiving end of the also copied rfc-editor@rfc-editor.org<mailto:rfc-editor@rfc-editor.org> can advise on the best course of action with respect to the errata process.

On Wed, Jul 31, 2024 at 8:01 AM Pieter Kasselman <pieter.kasselman=40microsoft.com@dmarc.ietf.org<mailto:40microsoft.com@dmarc.ietf.org>> wrote:
Thanks Brain – is there a way to edit errata, or do I just submit another one?

From: Brian Campbell <bcampbell=40pingidentity.com@dmarc.ietf.org<mailto:40pingidentity.com@dmarc.ietf.org>>
Sent: Wednesday, July 31, 2024 2:49 PM
To: RFC Errata System <rfc-editor@rfc-editor.org<mailto:rfc-editor@rfc-editor.org>>
Cc: mbj@microsoft.com<mailto:mbj@microsoft.com>; n-sakimura@nri.co.jp<mailto:n-sakimura@nri.co.jp>; paul.wouters@aiven.io<mailto:paul.wouters@aiven.io>; prkasselman@gmail.com<mailto:prkasselman@gmail.com>; oauth@ietf.org<mailto:oauth@ietf.org>
Subject: [OAUTH-WG] Re: [Technical Errata Reported] RFC7519 (8060)


That is a good catch of an inconsistency in JWT/RFC7519 that is deserving of errata. Note however that JWE/RFC7516 says that the "rules about handling Header Parameters that are not understood by the implementation are also the same [as JWS]"* so the correcting errata text should probably be more generally applicable to all JWTs.

* see https://datatracker.ietf.org/doc/html/rfc7516#section-4

On Wed, Jul 31, 2024 at 7:27 AM RFC Errata System <rfc-editor@rfc-editor.org<mailto:rfc-editor@rfc-editor.org>> wrote:
The following errata report has been submitted for RFC7519,
"JSON Web Token (JWT)".

--------------------------------------
You may review the report below and at:
https://www.rfc-editor.org/errata/eid8060

--------------------------------------
Type: Technical
Reported by: Pieter Kasselman <prkasselman@gmail.com<mailto:prkasselman@gmail.com>>

Section: 7.2

Original Text
-------------
   5.   Verify that the resulting JOSE Header includes only parameters
        and values whose syntax and semantics are both understood and
        supported or that are specified as being ignored when not
        understood.

Corrected Text
--------------
   5.   Verify that the resulting JOSE Header includes only parameters
        and values whose syntax and semantics are both understood and
        supported or that are specified as being ignored when not
        understood. If the JWT is a JWS, the steps specified in
        RFC7515 takes precedence when validating JOSE Header parameters.

Notes
-----
Validation step 5 in section 7.2 of RFC 7519 states that header parameters should only be ignored if they are explicitly specified as needing to be ignored.

This is contrary to step 7 in section 7.2 which requires that the processing rules of RFC 1515 be used if the JWT is a JWS (defined in RFC 1515). RFC 7515 does not include any special provisions for only ignoring header parameters if they are specified as being ignored, but instead requires all header parameters to be ignored if they are not understood (repeated below for convenience).

"Unless listed as a critical Header Parameter, per
   Section 4.1.11, all Header Parameters not defined by this
   specification MUST be ignored when not understood."

A discussion with the authors at IETF 120 confirmed that all header parameters that are not understood must be ignored.

The proposed errata aims to clarify that if the JWT is a JWS, the processing rules of RFC 7151 should apply (including ignoring header parameters that are not understood). This is consistent with point 7.2, which requires that RFC 7515 [JWS] rules applies and avoids the impression that a new requirement on when parameters are ignored is being introduced in (i.e. the need to be explicitly defined as needing to be ignored).

Instructions:
-------------
This erratum is currently posted as "Reported". (If it is spam, it
will be removed shortly by the RFC Production Center.) Please
use "Reply All" to discuss whether it should be verified or
rejected. When a decision is reached, the verifying party
will log in to change the status and edit the report, if necessary.

--------------------------------------
RFC7519 (draft-ietf-oauth-json-web-token-32)
--------------------------------------
Title               : JSON Web Token (JWT)
Publication Date    : May 2015
Author(s)           : M. Jones, J. Bradley, N. Sakimura
Category            : PROPOSED STANDARD
Source              : Web Authorization Protocol
Stream              : IETF
Verifying Party     : IESG

_______________________________________________
OAuth mailing list -- oauth@ietf.org<mailto:oauth@ietf.org>
To unsubscribe send an email to oauth-leave@ietf.org<mailto:oauth-leave@ietf.org>

CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited.  If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.

CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited.  If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.