Re: [tram] [Technical Errata Reported] RFC7635 (5059)

Magnus Westerlund <magnus.westerlund@ericsson.com> Wed, 13 January 2021 16:03 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B8683A1310 for <tram@ietfa.amsl.com>; Wed, 13 Jan 2021 08:03:45 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.35
X-Spam-Level:
X-Spam-Status: No, score=-2.35 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Da2vCmLevYcV for <tram@ietfa.amsl.com>; Wed, 13 Jan 2021 08:03:42 -0800 (PST)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-eopbgr140081.outbound.protection.outlook.com [40.107.14.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4932E3A129C for <tram@ietf.org>; Wed, 13 Jan 2021 08:03:27 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Ejhkv1caB2V+Y887UQUeD4xPUNn+9m+XfXJDf2gK4wsb2RkzU+1yUPhshVFHplA5CxNX5JCoJtSajcd+rBoHnRU+GlQOe7TR2C/3FxVHNczUK6ijVkz0e5x2sp08YLsZT1vD0sCRW3HV5iR5VyWYpMzHlp6jK8MjT+SeG6k+YC8z33V7OM5pA/tuOhpcdaKu45ODY4YOR1AvaYOe74qmeYi7kb6pDmikK/n2KFUx7TM6m2umRWvn7QgvwMT4nlSdZO02nUGWpbNVImxErd67BYobQm3SwvPtW3QOImUHFjnsjgRyeNSfoX1ISU43ZAn8hV7oAEBfZ8Ewq+ExqaHOHA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=sIf89OSBjqfGf4q4HWJGp1YAVI4vZP8k5VY7dSNl418=; b=VvOuUHGbbpns+nmllBMRyBGlWEpOCKyB5ku3CtVOrDZWz2hwAk4jH58sq2ewn0sy2M76ggQNYslmVsqLDutOpigMaGYCWl4lVTpkjVwTq8wI8+VD/12GxeBffsMp2VGH7dI4WB6T8Av1RtJJZpk35KCHlarByjH8QBnVbVijUhssfTkWGQztDTl/MkV7+0cz05e83M6qXwi6YdPlQd5qcHrwg4J3UDNmGEBGvBl8w3qtjPea4gIdWbga4LcQhABTCH/zvN8jG/RMvnaBdaJNOT7igoc0fyjtai7Sh2KNbx0/r/1XD/Lcnc752AeHExJOb7F+bjXc4SQ49PzrzPjaKg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=sIf89OSBjqfGf4q4HWJGp1YAVI4vZP8k5VY7dSNl418=; b=YBpjEb440MFXiUvgW3ZqAsPTBuLbrZq7IzetblGT95u6gzP11nOqHDd6DcKMuaaM3dqiRLYTsFloGf+CMBCUIwPzbDunLVa6pAoTXEg5kdjscnN1G+8sbzrfnVMc+VoK+6KJ1MtlJoLebBv0SQJmJFtyFaxgS/YIPKUaOt0GjKg=
Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com (2603:10a6:7:8e::14) by HE1PR07MB3097.eurprd07.prod.outlook.com (2603:10a6:7:32::31) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3763.9; Wed, 13 Jan 2021 16:03:24 +0000
Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace]) by HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace%6]) with mapi id 15.20.3763.009; Wed, 13 Jan 2021 16:03:24 +0000
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
To: "justin@uberti.name" <justin@uberti.name>, "magnus.westerlund=40ericsson.com@dmarc.ietf.org" <magnus.westerlund=40ericsson.com@dmarc.ietf.org>
CC: Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>, "tram@ietf.org" <tram@ietf.org>, "sperreault@jive.com" <sperreault@jive.com>, "praspati@cisco.com" <praspati@cisco.com>, "rmohanr@cisco.com" <rmohanr@cisco.com>, "deadbeef@google.com" <deadbeef@google.com>, "tireddy@cisco.com" <tireddy@cisco.com>
Thread-Topic: [tram] [Technical Errata Reported] RFC7635 (5059)
Thread-Index: AQHS9i9Y0HUi33cifkeKgW+G6emAKql9fXuAgAGrDICArnCqAIAABasA
Date: Wed, 13 Jan 2021 16:03:23 +0000
Message-ID: <07187be2caa3bab23da10d0d512600515e5b4541.camel@ericsson.com>
References: <20170705232644.C7CE5B80D80@rfc-editor.org> <7d6bcb0becf3790f00cc478af9eeacdc07180e32.camel@ericsson.com> <CALe60zAorkXz-2jLt2TU=kb=oMGVGT21rJEji97z0+MTse-RTA@mail.gmail.com> <2e7b5e427f582c2884390b84553640a27e502a58.camel@ericsson.com>
In-Reply-To: <2e7b5e427f582c2884390b84553640a27e502a58.camel@ericsson.com>
Accept-Language: sv-SE, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-mailer: Evolution 3.28.5-0ubuntu0.18.04.2
authentication-results: uberti.name; dkim=none (message not signed) header.d=none;uberti.name; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [192.176.1.80]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4a2f39e5-5624-4ce2-9f2b-08d8b7dcc194
x-ms-traffictypediagnostic: HE1PR07MB3097:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <HE1PR07MB30978BCE1E0D01E1C085F33595A90@HE1PR07MB3097.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:1284;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0702MB3772.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(346002)(136003)(39860400002)(396003)(366004)(26005)(66616009)(186003)(66476007)(66556008)(83380400001)(4326008)(8676002)(2616005)(66946007)(316002)(71200400001)(966005)(53546011)(2906002)(76116006)(64756008)(66446008)(6506007)(6486002)(110136005)(6512007)(5660300002)(44832011)(36756003)(54906003)(86362001)(8936002)(99936003)(478600001)(99106002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?utf-8?B?emZvenVGcHA3T2J6aEtDbjRJT0c1TEt3LzY4NWhRaEM3aWc5ODFGbnJ4UEZk?= =?utf-8?B?UVM2QXA5YUVleGtZeTJ1elhnNzFncXVpRHp6Y0VoRm5VVW1ENW9RYTJvREdj?= =?utf-8?B?R1VQdlpwU1V0Q2grR3hBZTA5UFRKRlBNTTZaUUY1UW03R3VwSzlXUHRwZ2tK?= =?utf-8?B?OU0rNlNneGV2NWwwcExBeXpCT3pHUS9RTVdvNENkelpDSmdiTk9pdGZZaHFm?= =?utf-8?B?d2xleGRxT3JtUVRjM0xYOTJNSWgrL2U5Z2w0anBLY0Ztd0g0UlV1bCtlaERm?= =?utf-8?B?cHVKTFJUakRSUjhJRHJoY3dlNm1WYnBUMXlucFA0WGJQbWJROFJmZmFtcUdV?= =?utf-8?B?eURUZS9JZ00renpqekdIRHhaOHNjbEF5SWNKeVhFWk81SURqZTBtem8zd2JC?= =?utf-8?B?dCtxeldUU1pyVi9OZXJzbmYwTW5UNUZBZm8zeGt2cmJlb2p3SG1xdUVEMnV1?= =?utf-8?B?ZmJxMllDUHVYK0tXZ2VYMHo5K0dvQW1tRzRRNkQyK1JCejRXNU9hdXRnaWFI?= =?utf-8?B?ZlJTUUNzaHhkQkpKTDAyWjdxam0rdEpjbHZCYy81MzNIQm1lUUY1QnJLYllm?= =?utf-8?B?c0E4eHl3WXMzWWZkNThSYUR1NUpCZHZEb05MbkpiblFYRmJJYUhDRFdMRTA5?= =?utf-8?B?RFVjWXBaT0JkUUhrTmRpL1dkTjB2QkY2L1hQRkFnekY3eUU2aXJReDFmdCs4?= =?utf-8?B?anFUYTZzYVlpakxDaEFxSTFRaytXTDJpZ2RwR2YxYVIrUWErS0dDQWgyQ2N2?= =?utf-8?B?MmVhekNGVFhpMjNIU29GeGo1aU8weE5lQXpxWk9MdlJXS2grelIzMXRFWlRZ?= =?utf-8?B?dE5TOUdyYnYra2dWYUc2dEJQYXJyK2pzQW5RN1Q1bStoaEJQUTZWS2tDTnZS?= =?utf-8?B?VmdncDBnZkJTY1c5Z1ZzMVNBWWhKUW5MME1xQk1WYTlYUU8zS0JuRU9Ndzdh?= =?utf-8?B?RXJuNE8wQUxLYm5MVHJUOStZSWlHN3VSbGdnVGJoQ21HMGlCMEhqSnh0ZzVZ?= =?utf-8?B?ZHIwZE5xRzk5Mm1yS1U3eXVHYnliK0dxNTR0T21RRkNXQTg0OWFzK3pYSUkr?= =?utf-8?B?SkdGSVR0ekhqM1U0ZlpUeC9lcXp5NEgwQWE5UkMyVVpoSFlmU2YyMmgvMDN3?= =?utf-8?B?N1RYenNPSEdDTWVVV1BXQXNSdEJPaXhuMHIwb2E5ZHNUeXdnbXdnN3JzSmZQ?= =?utf-8?B?QVhFWnd4MnpUVzZZbDduRUVlM1pkUndrSmhMb29TV1Q4YzE5UjhuOGZHZ2Ry?= =?utf-8?B?dHU0REgxQit4S0hlcXBYaUNDMWc2WE9JLzlqd2NhRHBsWnRSUkpmNlduRUlv?= =?utf-8?Q?nAkc3DYADNDYa+jzOt7R8tD7b6pSp/z2gm?=
Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-02jS1iaVa8wFhdTn/R/g"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0702MB3772.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4a2f39e5-5624-4ce2-9f2b-08d8b7dcc194
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jan 2021 16:03:23.9727 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: hqairXbhOxfyi2fHN0voB90GckIInEaIYYaDHEsCcyIiXxMMIKchl6yuJKDLbE70CAavCT7FEuYuTqX7pG8b0OvQ/f8LO2BCCWBFq91Ul+0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3097
Archived-At: <https://mailarchive.ietf.org/arch/msg/tram/Q0JVJe0s2euETZCDd3daTBLZMhg>
Subject: Re: [tram] [Technical Errata Reported] RFC7635 (5059)
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jan 2021 16:03:52 -0000

Hi,

Having read this together with Errata 5060 I think there is an issue with this
errata. And this issue could result in an interoperability issue. 

So yes, HMAC function is specified so that it can use any key-length. However,
to ensure interoperability it is clear that both message orignator and receiver
need to use the same key and the same number of bits as input. The proposed
errata does not ensure that the same number of bits are used and I believe could
cause an issue between a SHA-1 based (Pre RFC 8489 implementation) and one that
would follow this errata. This as one can interpret the origianl text to say
that one shall truncate the key to 160-bits prior to input rather than giving
the full key to HMAC. 

With the transition to SHA-256 based HHAC per RFC 8489 I think this document
needs further clarification. We are now going outside of the permit of Errata.

Cheers

Magnus

On Wed, 2021-01-13 at 15:43 +0000, Magnus Westerlund wrote:
> Hi,
> 
> I would like to conclude on this. Can I verify it?
> 
> Cheers
> 
> Magnus 
> 
> On Thu, 2020-09-24 at 08:50 -0700, Justin Uberti wrote:
> > This looks correct to me at first glance. Will re-read in context and give a
> > definitive answer.
> > 
> > On Wed, Sep 23, 2020 at 7:22 AM Magnus Westerlund <
> > magnus.westerlund@ericsson.com> wrote:
> > > Hi,
> > > 
> > > I would appreciate some response regarding this Errata. Should it be
> > > verified,
> > > held for document update, or rejected? 
> > > 
> > > Cheers
> > > 
> > > Magnus Westerlund
> > > 
> > > On Wed, 2017-07-05 at 16:26 -0700, RFC Errata System wrote:
> > > > The following errata report has been submitted for RFC7635,
> > > > "Session Traversal Utilities for NAT (STUN) Extension for Third-Party
> > > > Authorization".
> > > > 
> > > > --------------------------------------
> > > > You may review the report below and at:
> > > > 
https://protect2.fireeye.com/v1/url?k=d9fdc0e8-8666f9ac-d9fd8073-861d41abace8-c128c9abae0b391d&q=1&e=da3ac0e2-12bc-4932-b319-61abe19ea2aa&u=http%3A%2F%2Fwww.rfc-editor.org%2Ferrata%2Feid5059
> > > > 
> > > > --------------------------------------
> > > > Type: Technical
> > > > Reported by: Taylor Brandstetter <deadbeef@google.com>
> > > > 
> > > > Section: 6.2
> > > > 
> > > > Original Text
> > > > -------------
> > > >    key_length:  Length of the session key in octets.  The key length of
> > > >       160 bits MUST be supported (i.e., only the 160-bit key is used by
> > > >       HMAC-SHA-1 for message integrity of STUN messages).  The key
> > > >       length facilitates the hash agility plan discussed in Section 16.3
> > > >       of [RFC5389].
> > > > 
> > > > 
> > > > Corrected Text
> > > > --------------
> > > >    key_length:  Length of the session key in octets.
> > > > 
> > > > Notes
> > > > -----
> > > > RFC2104 section 2 states:
> > > > 
> > > >    The authentication key K can be of any length up to B, the
> > > >    block length of the hash function.  Applications that use keys longer
> > > >    than B bytes will first hash the key using H and then use the
> > > >    resultant L byte string as the actual key to HMAC.
> > > > 
> > > > Meaning any key length is allowed. The fact that the hash output is 20
> > > 
> > > bytes
> > > > doesn't mean the key needs to be 20 bytes as well.
> > > > 
> > > > Instructions:
> > > > -------------
> > > > This erratum is currently posted as "Reported". If necessary, please
> > > > use "Reply All" to discuss whether it should be verified or
> > > > rejected. When a decision is reached, the verifying party  
> > > > can log in to change the status and edit the report, if necessary. 
> > > > 
> > > > --------------------------------------
> > > > RFC7635 (draft-ietf-tram-turn-third-party-authz-16)
> > > > --------------------------------------
> > > > Title               : Session Traversal Utilities for NAT (STUN)
> > > > Extension
> > > 
> > > for
> > > > Third-Party Authorization
> > > > Publication Date    : August 2015
> > > > Author(s)           : T. Reddy, P. Patil, R. Ravindranath, J. Uberti
> > > > Category            : PROPOSED STANDARD
> > > > Source              : TURN Revised and Modernized
> > > > Area                : Transport
> > > > Stream              : IETF
> > > > Verifying Party     : IESG
> > > > 
> > > > _______________________________________________
> > > > tram mailing list
> > > > tram@ietf.org
> > > > https://www.ietf.org/mailman/listinfo/tram
> 
> _______________________________________________
> tram mailing list
> tram@ietf.org
> https://www.ietf.org/mailman/listinfo/tram