[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: WG Last Call: draft-ietf-sasl-gs2-02.txt

To: Alexey Melnikov <alexey.melnikov@xxxxxxxxx>
Subject: Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
From: Nicolas Williams <Nicolas.Williams@xxxxxxx>
Date: Tue, 5 Sep 2006 00:15:53 -0500
Cc: Simon Josefsson <jas@xxxxxxxxxxx>, ietf-sasl@xxxxxxx
In-reply-to: <44FC4836.3090803@xxxxxxxxx>
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
Mail-followup-to: Alexey Melnikov <alexey.melnikov@xxxxxxxxx>, Simon Josefsson <jas@xxxxxxxxxxx>, ietf-sasl@xxxxxxx
References: <7.0.1.0.0.20060831104340.03a589a0@xxxxxxxxxxxx> <87r6yvzzp5.fsf@xxxxxxxxxxxxxxxxxxx> <20060901160504.GN29007@xxxxxxxxxxxxxxxxxxxxx> <44F86667.1000602@xxxxxxxxx> <87k64kx6zt.fsf@xxxxxxxxxxxxxxxxxxx> <44FC4836.3090803@xxxxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx
User-agent: Mutt/1.5.7i

On Mon, Sep 04, 2006 at 04:37:26PM +0100, Alexey Melnikov wrote:
> Simon Josefsson wrote:
> 
> >A maxbuf value of 0 has weird semantics -- it is a error-state, and
> >authentication using a maxbuf=0 value with security layers should not
> >succeed.
> > 
> >
> Yes. (So is maxbuf=1)

Good point!  So is maxbuf == 2, or any impractically small value.

Is this an error state for the framework or for the application?  I say
the latter.

> >It seems simpler to use it to signal something else (i.e., no buffer
> >size limit) than to use 0xFFFFFF for the same thing on the wire AND
> >ALSO describe the behaviour for the error state.
> > 
> >
> I would like to have consistency accross multiple SASL mechanisms. GS1 
> or DIGEST-MD5 don't treat 0 specially.

Me too.

> If you insist on using 0 in way different from GS1 and DIGEST-MD5, 
> please stick a big note saying that GS2 is different from GS1 in 
> handling of maxbuf==0.

I don't think GS2 should treat maxbuf==0 differently than other SASL
mechanisms unless those other mechanisms' treatment of it is itself
broken.

Nico
--

Follow-Ups:
- Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
  - From: Alexey Melnikov

References:
- WG Last Call: draft-ietf-sasl-gs2-02.txt
  - From: Kurt D. Zeilenga
- Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
  - From: Simon Josefsson
- Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
  - From: Nicolas Williams
- Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
  - From: Alexey Melnikov
- Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
  - From: Simon Josefsson
- Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
  - From: Alexey Melnikov

Prev by Date: Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
Next by Date: Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
Previous by thread: Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
Next by thread: Re: WG Last Call: draft-ietf-sasl-gs2-02.txt
Index(es):
- Date
- Thread