IETF Logo Mail Archive

Re: [stir] Proposal for update of erratum #6519

Russ Housley <housley@vigilsec.com> Mon, 19 April 2021 18:36 UTC

Return-Path: <housley@vigilsec.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6A8203A3E32 for <stir@ietfa.amsl.com>; Mon, 19 Apr 2021 11:36:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.002
X-Spam-Level:
X-Spam-Status: No, score=0.002 tagged_above=-999 required=5 tests=[SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bLThLV38D26W for <stir@ietfa.amsl.com>; Mon, 19 Apr 2021 11:36:10 -0700 (PDT)
Received: from mail.smeinc.net (mail.smeinc.net [209.135.209.11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7E7173A3E2D for <stir@ietf.org>; Mon, 19 Apr 2021 11:36:10 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail.smeinc.net (Postfix) with ESMTP id BEC49300B42 for <stir@ietf.org>; Mon, 19 Apr 2021 14:36:07 -0400 (EDT)
X-Virus-Scanned: amavisd-new at mail.smeinc.net
Received: from mail.smeinc.net ([127.0.0.1]) by localhost (mail.smeinc.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id Rfo7VXFHS9L6 for <stir@ietf.org>; Mon, 19 Apr 2021 14:36:06 -0400 (EDT)
Received: from a860b60074bd.fios-router.home (pool-141-156-161-153.washdc.fios.verizon.net [141.156.161.153]) by mail.smeinc.net (Postfix) with ESMTPSA id 7E106300B3D; Mon, 19 Apr 2021 14:36:06 -0400 (EDT)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.17\))
From: Russ Housley <housley@vigilsec.com>
In-Reply-To: <3d8e2fce-d124-99b9-e295-734a36ad564a@petit-huguenin.org>
Date: Mon, 19 Apr 2021 14:36:07 -0400
Cc: Christer Holmberg <christer.holmberg@ericsson.com>, IETF STIR Mail List <stir@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <7558AA11-A7F9-4091-BFD3-F42C742AABAE@vigilsec.com>
References: <42e964d3-2a16-660b-f8b4-fd9daedad115@petit-huguenin.org> <AM0PR07MB38604255784FF9E621257B2D93499@AM0PR07MB3860.eurprd07.prod.outlook.com> <3d8e2fce-d124-99b9-e295-734a36ad564a@petit-huguenin.org>
To: Marc Petit-Huguenin <marc@petit-huguenin.org>
X-Mailer: Apple Mail (2.3445.104.17)
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/0oUiRKGIhrrq5MVzM1mvzd5s3K4>
Subject: Re: [stir] Proposal for update of erratum #6519
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Apr 2021 18:36:15 -0000

> 
> On 4/19/21 9:48 AM, Christer Holmberg wrote:
>> Hi,
>> A few comments:
>> Q1: Instead of talking about "being tolerant", we say that an implementation MUST accept values with or without quotes.
> 
> That would place "with" or "without" quote on equal status, which they do not have.
> 
>> ---
>> Q2: Regarding the following statement:
>> "Note also that the new syntax does not allow for spaces immediately before or immediately after the token when quoted."
>> That is wrong. The syntax DOES allow it.
> 
> No, it does not.  Let's expand it:
> 
> ident-type = "ppt" EQUAL (token / ( SWS DQUOTE token DQUOTE SWS ))

SWS allows CRLF.  Is that allowed in a claim?  If so, I thought that LDQUOT is defined as SWS DQUOTE, and RDQUOT is defined as DQUOTE SWS.

If we are going to take this approach, we need to allow white space before EQUAL, and we also need it for the unquoted token.

Russ

v2.23.0 | Report a Bug | By Email