IETF Logo Mail Archive

Re: [stir] Proposal for update of erratum #6519

Marc Petit-Huguenin <marc@petit-huguenin.org> Mon, 19 April 2021 23:56 UTC

Return-Path: <marc@petit-huguenin.org>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 646813A49F7 for <stir@ietfa.amsl.com>; Mon, 19 Apr 2021 16:56:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.001
X-Spam-Level:
X-Spam-Status: No, score=-0.001 tagged_above=-999 required=5 tests=[NICE_REPLY_A=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EfVTFEegdHMI for <stir@ietfa.amsl.com>; Mon, 19 Apr 2021 16:56:21 -0700 (PDT)
Received: from implementers.org (implementers.org [IPv6:2001:4b98:dc0:45:216:3eff:fe7f:7abd]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8546E3A49F4 for <stir@ietf.org>; Mon, 19 Apr 2021 16:56:21 -0700 (PDT)
Received: from [IPv6:2601:648:8400:8e7d:d250:99ff:fedf:93cd] (unknown [IPv6:2601:648:8400:8e7d:d250:99ff:fedf:93cd]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "Marc Petit-Huguenin", Issuer "implementers.org" (verified OK)) by implementers.org (Postfix) with ESMTPS id ABCC3AE255; Tue, 20 Apr 2021 01:56:16 +0200 (CEST)
To: Roman Shpount <roman@telurix.com>
Cc: Russ Housley <housley@vigilsec.com>, IETF STIR Mail List <stir@ietf.org>, Christer Holmberg <christer.holmberg@ericsson.com>
References: <42e964d3-2a16-660b-f8b4-fd9daedad115@petit-huguenin.org> <AM0PR07MB38604255784FF9E621257B2D93499@AM0PR07MB3860.eurprd07.prod.outlook.com> <3d8e2fce-d124-99b9-e295-734a36ad564a@petit-huguenin.org> <7558AA11-A7F9-4091-BFD3-F42C742AABAE@vigilsec.com> <167dde10-f242-2b6f-a7ce-96991158589a@petit-huguenin.org> <CAD5OKxvkN+BSY0XuBmfApDDWOLhqCLLFuQgVQryE+yHUftWs4w@mail.gmail.com>
From: Marc Petit-Huguenin <marc@petit-huguenin.org>
Message-ID: <15fc4a20-b5c8-cd27-b30e-76e1f479b4ff@petit-huguenin.org>
Date: Mon, 19 Apr 2021 16:56:14 -0700
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.9.0
MIME-Version: 1.0
In-Reply-To: <CAD5OKxvkN+BSY0XuBmfApDDWOLhqCLLFuQgVQryE+yHUftWs4w@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/WnfgCIE6HzYZrH8xiZsOxrYnUFA>
Subject: Re: [stir] Proposal for update of erratum #6519
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Apr 2021 23:56:26 -0000

On 4/19/21 3:06 PM, Roman Shpount wrote:
> On Mon, Apr 19, 2021 at 3:26 PM Marc Petit-Huguenin <marc@petit-huguenin.org>
> wrote:
> 
>>
>>> SWS allows CRLF.  Is that allowed in a claim?
>>
>> No, but that's why I said 'a quoted value whose unquoted part is
>> equivalent to the token in the "ppt" parameter'.  All these are the same
>> claim ('\' used to wrap)
>>
>> ppt=test
>> ppt=TeST
>> ppt="test"
>> ppt="TeST"
>> ppt = test
>> ppt = "test"
>> ppt \
>>     = \
>>       "teSt"
>>
>> These are different claims than above:
>>
>> ppt=" test"
>> ppt="test "
>> ppt="test
>> ppt=test"
>> ppt = "\
>>     test"
>> ppt = "test\
>>    "
>>
>>> If so, I thought that LDQUOT is defined as SWS DQUOTE, and RDQUOT is
>> defined as DQUOTE SWS.
>>>
>>> If we are going to take this approach, we need to allow white space
>> before EQUAL, and we also need it for the unquoted token.
>>
>> EQUAL is SWS "=" SWS, so no need.
>>
> 
> If we define ident-type = "ppt" EQUAL ( token / ( LDQUOT token RDQUOT ) )
> then
> ppt=" test"
> ppt="test "
> ppt="test
> ppt=test"
> ppt = "\
>     test"
> ppt = "test\
>    "
> are all invalid. A token cannot contain a space. Both quotes are required
> if either is present.

A literalist.  Fantastic.

Now, can we go back to fix that text ?

> 
> Also, I thought the group decision was endpoints MUST accept ppt value as a
> token with or without quotes. Endpoints MUST send a token in quotes. I have
> explicitly asked if the group wanted SHOULD in either place, and the
> preference was for the MUST level requirements. I think the errata should
> say this unless there is a good reason to change it.

That was not my understanding.

-- 
Marc Petit-Huguenin
Email: marc@petit-huguenin.org
Blog: https://marc.petit-huguenin.org
Profile: https://www.linkedin.com/in/petithug

v2.23.0 | Report a Bug | By Email