IETF Logo Mail Archive

Re: [sipcore] draft-ietf-sipcore-digest-scheme comments

Christer Holmberg <christer.holmberg@ericsson.com> Sat, 25 May 2019 18:17 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C37E1120099 for <sipcore@ietfa.amsl.com>; Sat, 25 May 2019 11:17:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.011
X-Spam-Level:
X-Spam-Status: No, score=-2.011 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 83A1HaRGJjPo for <sipcore@ietfa.amsl.com>; Sat, 25 May 2019 11:17:11 -0700 (PDT)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-eopbgr130080.outbound.protection.outlook.com [40.107.13.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D3A56120086 for <sipcore@ietf.org>; Sat, 25 May 2019 11:17:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=gc0E1RabyhaO6Wht/raReZ5ya8UxEkjC0mzVjRZVetY=; b=ZreNX/6LzIiSvgNeNc9vlcFVz/UbzTkjWqS2suDD4eMZlI8UI1VRD/Ed+C5Oi00rVQJUErwrz0GgmtxqwFS674g/0eH3wV4L1UqWM3/gc8UFl4HcedmghadlSB5XhvuEPVQfjk1qBc/arbh7YMcqrPlp76Wy5DZ/RNZjLZtc2+Q=
Received: from VI1PR07MB3167.eurprd07.prod.outlook.com (10.175.243.17) by VI1PR07MB5310.eurprd07.prod.outlook.com (20.178.11.204) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1943.7; Sat, 25 May 2019 18:17:07 +0000
Received: from VI1PR07MB3167.eurprd07.prod.outlook.com ([fe80::701a:45d2:1c1e:8c61]) by VI1PR07MB3167.eurprd07.prod.outlook.com ([fe80::701a:45d2:1c1e:8c61%5]) with mapi id 15.20.1943.007; Sat, 25 May 2019 18:17:07 +0000
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Rifaat Shekh-Yusef <rifaat.ietf@gmail.com>
CC: "Olle E. Johansson" <oej@edvina.net>, SIPCORE <sipcore@ietf.org>
Thread-Topic: [sipcore] draft-ietf-sipcore-digest-scheme comments
Thread-Index: AQHVDLXhQrBFZP79BUqVpCNPfRzS+KZxOB6AgAJLmwCAAqM3AIAFmuiAgABqJQD//9GFAIAASdoA///mjwCAADcSAA==
Date: Sat, 25 May 2019 18:17:07 +0000
Message-ID: <74E1C0B9-8DBE-4301-998F-66A8329CB408@ericsson.com>
References: <DE595AFF-5DEA-4A32-8527-10B841D6C7C1@edvina.net> <CAGL6epLMHoneH6PNgeF5TgJhveh-xWeZSW6XQDBB2Gf5mS9eRQ@mail.gmail.com> <C1431DCD-C4DD-4BFA-9C5D-E4DFE7B0F2DA@edvina.net> <B4A08741-A092-480C-AE12-2DD25D7835D0@ericsson.com> <CAGL6epJTv+Dytk_VHNi4Sk0mimVj=cMqWR4u9uSg1q+RcUQJ_Q@mail.gmail.com> <98D9E38D-4EA3-4F55-B37D-5334FA42F362@ericsson.com> <CAGL6epL7y0jiOqBdt3UOkx31ueQofh-W8vPwjvOUZhHZsaDq3A@mail.gmail.com> <2BD32E4F-AA3F-4C61-BE9F-037353FA4083@ericsson.com> <CAGL6ep+F4Wj6uQMyLttvRaTDmROg=J8__6nwkeCNHgJTR1db_A@mail.gmail.com>
In-Reply-To: <CAGL6ep+F4Wj6uQMyLttvRaTDmROg=J8__6nwkeCNHgJTR1db_A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.19.0.190512
authentication-results: spf=none (sender IP is ) smtp.mailfrom=christer.holmberg@ericsson.com;
x-originating-ip: [178.55.236.10]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 42fd4121-9d7d-416b-138c-08d6e13d329c
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600148)(711020)(4605104)(1401327)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:VI1PR07MB5310;
x-ms-traffictypediagnostic: VI1PR07MB5310:
x-microsoft-antispam-prvs: <VI1PR07MB53102831994863C5578E16CE93030@VI1PR07MB5310.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0048BCF4DA
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(39860400002)(396003)(366004)(346002)(136003)(199004)(189003)(18543002)(6116002)(6436002)(316002)(3846002)(33656002)(6506007)(68736007)(4326008)(66946007)(478600001)(82746002)(73956011)(8936002)(7736002)(6486002)(76116006)(102836004)(64756008)(66446008)(91956017)(86362001)(66476007)(54906003)(66556008)(25786009)(76176011)(6512007)(53936002)(14454004)(26005)(476003)(5660300002)(66066001)(6246003)(14444005)(44832011)(486006)(2616005)(11346002)(446003)(229853002)(256004)(6916009)(58126008)(81156014)(81166006)(8676002)(99286004)(305945005)(2906002)(36756003)(186003)(83716004)(71190400001)(71200400001); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR07MB5310; H:VI1PR07MB3167.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: lYpBm984yl7YJtWX2xc5q+7bHyl8Wsx4fIbFUurH/igDleamQAbkoycpT/HvY9oinDLeCE3XZNhswJIJmpLsII4PxixhDi4yIub7fOuOexJyE4HIfZDqmYE8Xyji+v1GX/ycwwT71es2as8LJC+wDnj9q27LgTo/sr63ATC2Df/OV0g539zOvE9QRDB0WfJAPfBHowziZnk16LrwwQbRmxhoZ3eOu+FHNOkv7OOhS+ZgK76QxPJmSQcisNg6xnq0hvVNWfBwNj4o6H3/WGJX85D5BTR1MWis1rPzu8VTqmXLxxriNypHvS+NlOneo29WMDf/3bp8gna8bzbwJ1z18IWUEpf1HqWz/7ID8ecIfTEvsWv1vVUCDru3nNWzzp3pbK+WHPSvvAbA3GYQ+lCMrDFQCUcOSoRZSGHWCJ4hWng=
Content-Type: text/plain; charset="utf-8"
Content-ID: <11AF1676CE8FAD49921D0A50FB121B3A@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 42fd4121-9d7d-416b-138c-08d6e13d329c
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 May 2019 18:17:07.6978 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: christer.holmberg@ericsson.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR07MB5310
Archived-At: <https://mailarchive.ietf.org/arch/msg/sipcore/C2rzazYy19TTI0eEIlCKG1gz5h8>
Subject: Re: [sipcore] draft-ietf-sipcore-digest-scheme comments
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sipcore/>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 May 2019 18:17:14 -0000

Hi,

... 

>>>>>> Section 2.4:
>>>>>>
>>>>>> "When the UAC receives a response with multiple header fields with the
>>>>>>   same realm it SHOULD use the topmost header field that it supports,
>>>>>>   unless a local policy dictates otherwise.”
>>>>>>
>>>>>> Why a SHOULD? I would prefer a MUST.
>>>>>
>>>>> I can do that, but the last part of this paragraph states that local policy can override this recommendations anyway.
>>>>> So, does it make any difference?
>>>>> Should we allow that? Why would local policy enforce a downgrade?
>>>>>
>>>>>> “When the UAC receives a 401 response with multiple WWW-Authenticate
>>>>>>   header fields with different realms it SHOULD retry and include an
>>>>>>   Authorization header field containing credentials that match the
>>>>>>   topmost header field of any one of the realms.”
>>>>>>
>>>>>> If you are disallowing multiple Authorization headers for the same realm,
>>>>>> but with different algorithms I think this should be clearly written. In my
>>>>>> view, that would be a good thing.
>>>>>
>>>>> This is allowed.
>>>>
>>>> RFC 3261 does not say anything about using the topmost header, does it?
>>>>
>>>> I was referring to this document.
>>>
>>> So, the should-use-topmost is something new, defined in this document?
>>
>> Yes, as per RFC7616.
>
> Perhaps then say "As defined in RFC7617,...."
>
> And, perhaps mention it in section 2, where the changes are listed.
>
> The normative text for SIP is specified in this document, so I do not see the need to add such a sentence.

When we update an RFC, it is good to have an overview about what the updates are, so that people don't have to start reading 3261, 7617 and try to figure out themselves. They will obviously have to read the RFCs to figure out the details, but it helps if they know what the updates are about.

Regards,

Christer

v2.23.0 | Report a Bug | By Email