Re: [tram] [Technical Errata Reported] RFC8489 (6268)

Marc Petit-Huguenin <petithug@acm.org> Mon, 05 October 2020 12:00 UTC

Return-Path: <petithug@acm.org>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 50BF83A07A0 for <tram@ietfa.amsl.com>; Mon, 5 Oct 2020 05:00:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.447
X-Spam-Level:
X-Spam-Status: No, score=-1.447 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NICE_REPLY_A=-0.213, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 80RuR0KHlJaz for <tram@ietfa.amsl.com>; Mon, 5 Oct 2020 05:00:06 -0700 (PDT)
Received: from implementers.org (implementers.org [92.243.22.217]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DB6483A0876 for <tram@ietf.org>; Mon, 5 Oct 2020 05:00:05 -0700 (PDT)
Received: from [IPv6:2601:648:8400:8e7d:d485:513f:dd89:caa7] (unknown [IPv6:2601:648:8400:8e7d:d485:513f:dd89:caa7]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "Marc Petit-Huguenin", Issuer "implementers.org" (verified OK)) by implementers.org (Postfix) with ESMTPS id 169D6AE287; Mon, 5 Oct 2020 14:00:00 +0200 (CEST)
To: Magnus Westerlund <magnus.westerlund@ericsson.com>, "renthraysk@gmail.com" <renthraysk@gmail.com>
Cc: "jdrosen@jdrosen.net" <jdrosen@jdrosen.net>, "tram@ietf.org" <tram@ietf.org>, "martin.h.duke@gmail.com" <martin.h.duke@gmail.com>, "dwing-ietf@fuggles.com" <dwing-ietf@fuggles.com>, "philip_matthews@magma.ca" <philip_matthews@magma.ca>, "rohan.ietf@gmail.com" <rohan.ietf@gmail.com>
References: <20200830152251.37CA9F4076B@rfc-editor.org> <f48eb512-5c17-20bd-dfd6-2d368e9fd4b9@petit-huguenin.org> <CABNgG1g3Tx1QroP+eo+WeQXxD2XPvf+n67pekBqRi8+QzgX8_Q@mail.gmail.com> <65838ad3-7ee9-3339-1326-8c2d212f6fa6@petit-huguenin.org> <HE1PR0702MB3772F26F7B3E91B8DC6982D695280@HE1PR0702MB3772.eurprd07.prod.outlook.com> <d0498051-d762-855d-bf74-d65a8bdf88da@petit-huguenin.org> <b3cae3bd-2b7f-d8c5-fcb4-55be9f11a3ce@petit-huguenin.org> <CABNgG1hzNyM-qqCpprXBUJ4y-X7OOMZHK72wpPL_rJ+TLXrz-g@mail.gmail.com> <4803aae689ab3839beb9f2a65762001495bc31f8.camel@ericsson.com> <4fb78f8080c69a727fb392d1c4462ffa63fe45c2.camel@ericsson.com> <CABNgG1gXeekROCX4_aHo4RYX8fZg6b967AZEPRRhxTH9PxQdGA@mail.gmail.com> <78fdd4cae92837f303b13e5d9412467fdecca870.camel@ericsson.com> <1b3ee8eb-1d0b-4991-e6c1-f65dd2d4154a@acm.org> <404d19bd2192de644dbc61c64e82605c96446450.camel@ericsson.com> <8786ffe9-d8aa-d112-05fb-b39ac92e27dd@acm.org> <917e9acb845dde2468c7201a846e70c67f527952.camel@ericsson.com>
From: Marc Petit-Huguenin <petithug@acm.org>
Message-ID: <a1d6cf11-f12c-04ce-a11c-5922668fa75c@acm.org>
Date: Mon, 5 Oct 2020 04:59:58 -0700
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.3.1
MIME-Version: 1.0
In-Reply-To: <917e9acb845dde2468c7201a846e70c67f527952.camel@ericsson.com>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/IGyMH_PuL_tvO6os6TmK2nQ1n_8>
Subject: Re: [tram] [Technical Errata Reported] RFC8489 (6268)
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Oct 2020 12:00:07 -0000

Hi Magnus,

I still think that this errata misrepresents the purpose of the test-vector.  But anyway Ren Thraysk provided an updated test vector, so you have everything you need to update the errata.

Thanks.

On 9/30/20 1:45 AM, Magnus Westerlund wrote:
> On Mon, 2020-09-28 at 07:54 -0700, Marc Petit-Huguenin wrote:
>> On 9/28/20 7:36 AM, Magnus Westerlund wrote:
>>> Hi,
>>>
>>> A question here. Is the key used in the MESSAGE-INTEGRITY-SHA256 the MD5
>>> derived
>>> one, or one derived using SHA256? If it is the former, then fine the lets
>>> just
>>> add a sentence of clarification as the option exist. But, Jared's previous
>>> comments appear to indicate the the key for the HMAC-SHA256 used in the
>>> intergrity was derived using SHA256. If it is the later, then I don't see
>>> any
>>> option than to include the password algorithm attribute and its algorithm
>>> indicator as it is a necessary component to correctly derive the key and
>>> thus
>>> being able to verify the MESSAGE-INTEGRITY. 
>>
>> SHA256.
> 
> So in this case then the PASSWORD-ALGORITM attribute is required unless I
> missinterpret the RFC. I understand that there is some work in preparing the
> message and calculate the integrity. However, in this case it is necessary
> information and a mandated value so can you please prepare a new message with
> the attribute include indicating the correct value?
> 
> 
> Cheers
> 
> Magnus Westerlund 
> 

-- 
Marc Petit-Huguenin
Email: marc@petit-huguenin.org
Blog: https://marc.petit-huguenin.org
Profile: https://www.linkedin.com/in/petithug