Re: [tram] [Technical Errata Reported] RFC8489 (6268)

Magnus Westerlund <magnus.westerlund@ericsson.com> Wed, 30 September 2020 08:45 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CF7C03A1302 for <tram@ietfa.amsl.com>; Wed, 30 Sep 2020 01:45:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.301
X-Spam-Level:
X-Spam-Status: No, score=-3.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.2, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6jJe7-lmgkcx for <tram@ietfa.amsl.com>; Wed, 30 Sep 2020 01:45:44 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2041.outbound.protection.outlook.com [40.107.22.41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 416253A1301 for <tram@ietf.org>; Wed, 30 Sep 2020 01:45:44 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=N28+yliEypKBS60gq8RUFJsyNqf2L7x3ZzRNnG30uHNBfBxcsakYKsLjL2I+tdvzPC/wJ5iOUw9j79yhC/Ig8A7VC6ezxVU5MCrRh6qf3oRA7x54QsvEtdVHRohI6uFYFBCXd/fjmPI56uU6BO9of+tdvo6/tVWcKfCNshs3I2AWzqAjmimGhi5N/yZLJLEK//MWFuLoN54U2KvynYVY05q1Ogz5JVWMJ+zxCGNrERZ40u+cnwPVV1/ywJpfSyyih2iHsGj0m9mBzFkQXqTQISJfb0u0EjQs0G70jSsKhTpp1pfjRT4qmovuEGoMFcTWBoDmNkFU5wBZzvLGiVLV5A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=J55Y3NhRdUzJqTu2V2mf9fUsNlfhZI2+aSUTQ/rFsM0=; b=ieJiJ+OaUXSCFPE5RGA3suW/I2Icddgm8eBUUhHEx/FFdsPqmdohuoZki4sS0j/mzJyAfnxNnMl19YTxuvzcawNHioLZ16vDrmXhxyUEU0QoazXmhrVQlblKE4WBrehg+sKVly5C5WBZDSrP0DgMDI/C240sJKR488UDRKJnQEqCGlC8lHOuvDY8JrEKrMGl0n6Wic/E0R1kk57F1fW5Y2R5A+rZx/ALIdqiCmadXV61q7NRIDiLosuFQ2xkWq6Vznc+cPZFro+1Cm3pHdRkhefRGhq+gPFLsZ17vK+pGim4gvNu3vpWaaJx7t1E/Q9qF78PoZsW6kshQ2d5Q9RM0g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=J55Y3NhRdUzJqTu2V2mf9fUsNlfhZI2+aSUTQ/rFsM0=; b=Pbq2PnTRpsu0PP4t5nVPpPEdI/ORf6exzV3ScF9X5d8D8HwFW7ckl+UV23jqt9yWLGBSGR2T0wQUZuDrA5GVju2mZNFGFUlo5vHSnsjYmYniBqtkDsjWQcvBeAWaimzS1ptCdY5uqVQN5fWbfCplrUXKlQny8yzm8SFhkaKrqp8=
Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com (2603:10a6:7:8e::14) by HE1PR0701MB2346.eurprd07.prod.outlook.com (2603:10a6:3:68::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3433.13; Wed, 30 Sep 2020 08:45:41 +0000
Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::c98a:9a0c:1eea:3fdc]) by HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::c98a:9a0c:1eea:3fdc%6]) with mapi id 15.20.3433.032; Wed, 30 Sep 2020 08:45:41 +0000
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
To: "petithug@acm.org" <petithug@acm.org>, "renthraysk@gmail.com" <renthraysk@gmail.com>
CC: "jdrosen@jdrosen.net" <jdrosen@jdrosen.net>, "tram@ietf.org" <tram@ietf.org>, "martin.h.duke@gmail.com" <martin.h.duke@gmail.com>, "dwing-ietf@fuggles.com" <dwing-ietf@fuggles.com>, "philip_matthews@magma.ca" <philip_matthews@magma.ca>, "rohan.ietf@gmail.com" <rohan.ietf@gmail.com>
Thread-Topic: [tram] [Technical Errata Reported] RFC8489 (6268)
Thread-Index: AQHWfuF5dRZ7aF/vA0OYP087ogZzZKlSU3kAgAAfVoCAAS6igIAJpSSAgAARDgCAAA2PgIAAAGWQgAACowCACswlAIAAGeGAgAASQACADgqBAIAALMwAgAKNPoCABN/GAIAARwUAgAAE/ACAArv4gA==
Date: Wed, 30 Sep 2020 08:45:41 +0000
Message-ID: <917e9acb845dde2468c7201a846e70c67f527952.camel@ericsson.com>
References: <20200830152251.37CA9F4076B@rfc-editor.org> <B09AFC19-A790-46C5-A97B-69572411A229@cisco.com> <7bbe51fd9a5a226752597825f276f6baad70add7.camel@ericsson.com> <f48eb512-5c17-20bd-dfd6-2d368e9fd4b9@petit-huguenin.org> <CABNgG1g3Tx1QroP+eo+WeQXxD2XPvf+n67pekBqRi8+QzgX8_Q@mail.gmail.com> <65838ad3-7ee9-3339-1326-8c2d212f6fa6@petit-huguenin.org> <HE1PR0702MB3772F26F7B3E91B8DC6982D695280@HE1PR0702MB3772.eurprd07.prod.outlook.com> <d0498051-d762-855d-bf74-d65a8bdf88da@petit-huguenin.org> <b3cae3bd-2b7f-d8c5-fcb4-55be9f11a3ce@petit-huguenin.org> <CABNgG1hzNyM-qqCpprXBUJ4y-X7OOMZHK72wpPL_rJ+TLXrz-g@mail.gmail.com> <4803aae689ab3839beb9f2a65762001495bc31f8.camel@ericsson.com> <4fb78f8080c69a727fb392d1c4462ffa63fe45c2.camel@ericsson.com> <CABNgG1gXeekROCX4_aHo4RYX8fZg6b967AZEPRRhxTH9PxQdGA@mail.gmail.com> <78fdd4cae92837f303b13e5d9412467fdecca870.camel@ericsson.com> <1b3ee8eb-1d0b-4991-e6c1-f65dd2d4154a@acm.org> <404d19bd2192de644dbc61c64e82605c96446450.camel@ericsson.com> <8786ffe9-d8aa-d112-05fb-b39ac92e27dd@acm.org>
In-Reply-To: <8786ffe9-d8aa-d112-05fb-b39ac92e27dd@acm.org>
Accept-Language: sv-SE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Evolution 3.28.5-0ubuntu0.18.04.2
authentication-results: acm.org; dkim=none (message not signed) header.d=none;acm.org; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [158.174.130.68]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 67194aad-f3da-43a6-23a5-08d8651d36a2
x-ms-traffictypediagnostic: HE1PR0701MB2346:
x-microsoft-antispam-prvs: <HE1PR0701MB2346178F78256669EE47F3C195330@HE1PR0701MB2346.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: lZIaJXjIcWJx2r0/Z7CDy7h73JHnGwvkhi/dL2s1hgqzf8JxcxiD6cGeGyWV025esczWJdSh7lDWLhKK4Hp8J0BrCcqjPDxQ1hRpl2a1KRhRBaL0nlCbWRw3WS6Ja8zqJe8brLx9+HlmfGHze1+8F6pPZChnJswuCUYxRcvs4ruSg29sj8YNJG/WizZF5kh/eXetA+nXZXdPKgIKeLNhcX+NN0OSMD+sbuubqw1ZjbwJJ4zu/HPZFC6EuUpg2yggzD6/QC3J8cYqcQs5atIyDFCbXwnIHuIdsbNaRq/e+yB3KSLO7gRGmqd/ok8DQy5tH8jzk+euJnBMinQMeV9y3vB7bfz/AKJGqjaPfrFZId9iwdMbgz1ErYToXbttWfZ0
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0702MB3772.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(366004)(396003)(136003)(39860400002)(346002)(83380400001)(2616005)(6512007)(71200400001)(2906002)(6486002)(36756003)(478600001)(26005)(186003)(4326008)(6506007)(53546011)(66946007)(76116006)(64756008)(86362001)(66446008)(66556008)(66476007)(316002)(8936002)(44832011)(5660300002)(110136005)(54906003)(8676002)(99106002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <241EA3BE68E89D41B8FCBBB68A818A42@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0702MB3772.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 67194aad-f3da-43a6-23a5-08d8651d36a2
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Sep 2020 08:45:41.6718 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: yWdYMerAp0QFqImbAImZtsuMVtqp+W/ltlyuf0nKZ0ip9/wWeU4FOuxGXji3Fs0tF0b1VPT4/+KgCLFgq49P78ATiqntXpRpm9v0/u9vvsg=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2346
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/76LbNFJTKIA_z3RwvIrQMX0y9DA>
Subject: Re: [tram] [Technical Errata Reported] RFC8489 (6268)
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Sep 2020 08:45:46 -0000

On Mon, 2020-09-28 at 07:54 -0700, Marc Petit-Huguenin wrote:
> On 9/28/20 7:36 AM, Magnus Westerlund wrote:
> > Hi,
> > 
> > A question here. Is the key used in the MESSAGE-INTEGRITY-SHA256 the MD5
> > derived
> > one, or one derived using SHA256? If it is the former, then fine the lets
> > just
> > add a sentence of clarification as the option exist. But, Jared's previous
> > comments appear to indicate the the key for the HMAC-SHA256 used in the
> > intergrity was derived using SHA256. If it is the later, then I don't see
> > any
> > option than to include the password algorithm attribute and its algorithm
> > indicator as it is a necessary component to correctly derive the key and
> > thus
> > being able to verify the MESSAGE-INTEGRITY. 
> 
> SHA256.

So in this case then the PASSWORD-ALGORITM attribute is required unless I
missinterpret the RFC. I understand that there is some work in preparing the
message and calculate the integrity. However, in this case it is necessary
information and a mandated value so can you please prepare a new message with
the attribute include indicating the correct value?


Cheers

Magnus Westerlund 


----------------------------------------------------------------------
Networks, Ericsson Research
----------------------------------------------------------------------
Ericsson AB                 | Mobile +46 73 0949079
Torshamnsgatan 23           |
SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
----------------------------------------------------------------------