From nobody Wed Jan 13 07:34:16 2021 Return-Path: X-Original-To: tram@ietfa.amsl.com Delivered-To: tram@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E93433A114B for ; Wed, 13 Jan 2021 07:34:14 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.351 X-Spam-Level: X-Spam-Status: No, score=-2.351 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id elxcGT-22PFs for ; Wed, 13 Jan 2021 07:34:13 -0800 (PST) Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2054.outbound.protection.outlook.com [40.107.22.54]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 01F073A1147 for ; Wed, 13 Jan 2021 07:34:12 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=YUIGBQ8spi1yBCsR8Y5aitXBfO+OPOGpwRbswKuCpRqFYFMbBJ1Yhy2Dn4BT3u8eLeRFJOscfq1N2ah1xNf0ng50c+JAPvhtkkK5tVkSNXqV90U7vMozRFa2bLdbv3ECEWuBPU3V56/XXQcPrMPmqV6gPlwlF2WnfMA3ZvDbVvmQX8ArwF19Pl1UrWIkNpX6Xp1Y4jY6uFa6Y/yBL2UQTsDrvgHsR9jiClQ6AwSPlibHSRe5TIpOkR1F8xs2BpClHLDCb4zN334ERBfsY/FlD0gYHqhMlzodyYe6YJdS5yoqN1L7CZJ3JoN9slUpVNcugmhSKW454DijARL996W/1Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=jt0gxDJiYout4djy6k+nAs33Uvj8VcLPQl7G+xUqaOA=; b=TKhRrgDMvSo0r0kPZ4UxvrwUK1moJqV5jmWmmDtFf5IVPzdccRVc2B0hDERx9/PfVaMNO7zqJulIFmXkqq24856d5fYwpYSm/qu1yXyxJzlFeTSdCSGjswXDB9MLDMsHF9GmkkGUIubWzTlg6BfiYeXmXCBHpVk3UxFYZyS0Ee99CiDasl9qI26DDtJx5zulZPfh3CCIW5XNAXwTxID94ms4xn+zLOhEaL0FkDAM2I5zJKUcNcbzAQwGUAGyz7mTNkN1ox5rOMUzMittjWDfQluJbofapae3ioJp/wQwaeqEL+KT4hhh0ARMDI4Tcilau2uaMk8xaESFS4gUatkSPA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=jt0gxDJiYout4djy6k+nAs33Uvj8VcLPQl7G+xUqaOA=; b=kDcgbrjfXbhcA96gNUSBkVNnUm5sJiJ5LigRIrnyoBlW/yhI9AMFAOGXTc7qxe9aX8aXxdR/6B7EZ9tCH6allfCncQkc9Auhg1S1I/F1GJYzyV/F8BXLbXsrDPl55t2krCVWzmVYa2nN/6Vlm4j9Z/sGYI1QevJ8XXpxFeCiTM0= Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com (2603:10a6:7:8e::14) by HE1PR07MB4169.eurprd07.prod.outlook.com (2603:10a6:7:9d::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3763.2; Wed, 13 Jan 2021 15:34:10 +0000 Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace]) by HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace%6]) with mapi id 15.20.3763.009; Wed, 13 Jan 2021 15:34:10 +0000 From: Magnus Westerlund To: "tram@ietf.org" , "magnus.westerlund=40ericsson.com@dmarc.ietf.org" Thread-Topic: [tram] Errata 4826 on RFC 7635 Thread-Index: AQHWkbX4ZUzscKJ4OECwqW+0Y36GFKomX6aA Date: Wed, 13 Jan 2021 15:34:10 +0000 Message-ID: <2473be81b850a647ea56282ffcbd42e69d6b04d1.camel@ericsson.com> References: In-Reply-To: Accept-Language: sv-SE, en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-mailer: Evolution 3.28.5-0ubuntu0.18.04.2 authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=ericsson.com; x-originating-ip: [192.176.1.80] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: c5f93dba-fdb8-42ec-0f31-08d8b7d8ac54 x-ms-traffictypediagnostic: HE1PR07MB4169: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:431; x-ms-exchange-senderadcheck: 1 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0702MB3772.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(346002)(376002)(366004)(396003)(136003)(39860400002)(76116006)(478600001)(64756008)(186003)(966005)(66556008)(66446008)(66946007)(66616009)(66476007)(8936002)(99936003)(4001150100001)(6486002)(8676002)(44832011)(83380400001)(66574015)(71200400001)(316002)(6506007)(2616005)(36756003)(86362001)(5660300002)(26005)(110136005)(2906002)(6512007)(99106002); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata: =?utf-8?B?Q3k5NU84YktMRDZjTjdEamxUK3poalVBN0RWOXBIbE5YVktvalFKVTlscEZs?= =?utf-8?B?cWFPeFM2aTV3MEQyK0VXVmxrMzliU1RXbFVQY2FPU3RoM2U2ZnFvSlNKT3ZS?= =?utf-8?B?bFluenJGL25Nblk1dlFZQm83MzZ1all4M3dEYUpsT0RiUmhZRVdnOHowUnZx?= =?utf-8?B?RERXNTA5RDdhTDNOcmxEMjljYmhXN0RwaGFETnhKK05sWjlhbTUyWDdyR2Uv?= =?utf-8?B?WDlRKzlwYlB6QmlMS2hXYzdiNU4vcEFNeEN2OWxVYVZzNXdSY2htVDBvNnhW?= =?utf-8?B?OHhuWGUxODhqUElIVUNWR2ovTWNTOUhCNWVoaUxFVTZYeWJucDVTMjdac2s5?= =?utf-8?B?UkNXM0NKWHZWdTVjcTE0MEwrLzljakpLcmppOSt4Y25TWXR5bkMyb1lNakpV?= =?utf-8?B?L3VSdktWWGc1dktQYnArMlpHK0M4N1NpVWI4VmhZNGtLeUFWNitnUTJIZkhB?= =?utf-8?B?L2xMNjVvN1JDSEtzLzRsemFWMnRYZFZteDVQcHhVVkJjSmR6QmlsUnc3VVFn?= =?utf-8?B?U0E2Qjh4dFpVL1FtNmdDVjdGZ1l1VmxYZVBKNjJtTU1ZK2R1dDc2ejNHenBt?= =?utf-8?B?d29xaXFFYzBjRUo0V0JyaTZPOG9EU1pVcmhnekRDdG1yQ2Y4bHRXZitJMVhz?= =?utf-8?B?ZEdZMk8zUUhVb09mV29adUVFNGI3aXkxMTVzOGNZdUZjbkQ3d0NqcFcwODE0?= =?utf-8?B?RkNrcC96aUw2NGpXM2xCSkdId3VJdjNXaWRiMm1XbzFndEF2Sm1ZZnhtYTkw?= =?utf-8?B?WGZGOUhkTjNHczd1OUxwS2NvcStRYVRlcVV6ZDF3K1JqQWtERmlWVkRyeVZo?= =?utf-8?B?QkxXV3ZVcko0SlR5VlNQWk9qci9MeWZ1bTEzNVhjN3k1SkFyZ1dTSkcyUGpu?= =?utf-8?B?WitGbFpWRkdvZHN0YkdmeUo5RGh1Zm9PeDdRY1BETUlUVU4rc2phbm5DT0tT?= =?utf-8?B?UDcvY1Z5bjhlUUwvRU9PWUs0SFd2M2JvVi9kc3ZheDk4Y3hCL0plQ1pRYjZ4?= =?utf-8?B?MTF3RXhpRU11ZFpkWlU4SHp6TWxlU0g1T1k5OHVGOXloSUR2OUdUNms3K3ZJ?= =?utf-8?B?NjlKcnZ2R0RtWDdDbHh3dWZhL2ZRUTZSNThyNzhXY3F4SWowTE5qSU1xSHpM?= =?utf-8?B?ZFNEaWplV1FPQlUxUVJNRVpiODJqQUFvS1dEemRnVy9uS1VselJBQ0phajJw?= =?utf-8?B?Qk9CeTY3ZXB1OVA1dUlEM2wrWEFnWmJMRnY0R3dFeXFHUXYxcC9SeUE2bWVJ?= =?utf-8?B?NDVkdlpyb2l0VGY4VGFjLzloOFRVMk9OWG9kdFdESDRqZkZoMVNkYndNdXlj?= =?utf-8?Q?bgnCqdjhQ7Hk0l8iXKRqxMz+pxne7eUKq3?= x-ms-exchange-transport-forked: True Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-g0I2ZXJUC0FBM4FL5WHw" MIME-Version: 1.0 X-OriginatorOrg: ericsson.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: HE1PR0702MB3772.eurprd07.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: c5f93dba-fdb8-42ec-0f31-08d8b7d8ac54 X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jan 2021 15:34:10.3225 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: DozavISP0RjUmBtsJUmoqBrwjOiTq0kL56NLERJlptdJQ9i/6wjfooo3V6r4pTN5K1xNXodzeQgxVJRfIs8XzSZX3TVC9kV48Q+Ao4ItPsw= X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB4169 Archived-At: Subject: Re: [tram] Errata 4826 on RFC 7635 X-BeenThere: tram@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Jan 2021 15:34:15 -0000 --=-g0I2ZXJUC0FBM4FL5WHw Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi, I plan to put this errata into "Hold for document update".=20 I think it a discussion of roles that goes beyond what the document intende= d when written.=20 Cheers Magnus Westerlund On Wed, 2020-09-23 at 14:29 +0000, Magnus Westerlund wrote: > Hi, >=20 > I would like some feedback on what to do with this Errrata? >=20 >=20 https://protect2.fireeye.com/v1/url?k=3D1654cef0-48f4749e-16548e6b-861d41ab= ace8-2d0610ea7fcbda0e&q=3D1&e=3Dbaf40b99-4805-442e-8782-c21c956c6896&u=3Dht= tps%3A%2F%2Fwww.rfc-editor.org%2Ferrata%2Feid4826 >=20 > Errata ID: 4826 > Status: Reported > Type: Technical > Publication Format(s) : TEXT > Reported By: Mih=C3=A1ly M=C3=A9sz=C3=A1ros > Date Reported: 2016-10-10 >=20 > Section 8. says: >=20 > 8. STUN Client Behavior >=20 > o The client looks for the MESSAGE-INTEGRITY attribute in the > response. If MESSAGE-INTEGRITY is absent or the value computed > for message integrity using mac_key does not match the contents of > the MESSAGE-INTEGRITY attribute, then the response MUST be > discarded. >=20 > o If the access token expires, then the client MUST obtain a new > token from the authorization server and use it for new STUN > requests. >=20 > It should say: >=20 > 8. STUN Client Behavior >=20 > o The client looks for the MESSAGE-INTEGRITY attribute in the > response. If MESSAGE-INTEGRITY is absent or the value computed > for message integrity using mac_key does not match the contents of > the MESSAGE-INTEGRITY attribute, then the response MUST be > discarded. >=20 > 9. Application (OAuth Client) Behavior >=20 > o If the access token expires, then the Application (OAuth client)= =20 > MUST obtain a new token from the authorization server, and update > STUN client to use it for new STUN requests. >=20 > o Application SHOULD pass only a subset of the received OAuth=20 > parameters to the STUN client. Only parameters SHOULD be passed=20 > that will be really needed and used by the STUN Client.=20 > In this way, only the kid, the mac_key, and the access_token > parameters SHOULD be passed to the STUN client. > =20 >=20 > ... > Renumber the sections > ... >=20 > Notes: >=20 > 1. Remove from STUN client behaviour the access_token renewal function, > and move this function up to application level. > 2. Pass to STUN only that subset of the OAuth parameters, that will be re= ally > used by STUN Client.=20 >=20 > =20 > Cheers >=20 > Magnus Westerlund=20 >=20 >=20 > ---------------------------------------------------------------------- > Networks, Ericsson Research > ---------------------------------------------------------------------- > Ericsson AB | Mobile +46 73 0949079 > Torshamnsgatan 23 | > SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com > ---------------------------------------------------------------------- >=20 > _______________________________________________ > tram mailing list > tram@ietf.org > https://www.ietf.org/mailman/listinfo/tram --=-g0I2ZXJUC0FBM4FL5WHw Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Disposition: attachment; filename="smime.p7s" Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCErYw ggX0MIID3KADAgECAg8BdlE9InYZOYLl1zGep4IwDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMC U0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENB IHYzMB4XDTIwMTIxMTA5NTg0OVoXDTIzMTIxMjA5NTg0OVowXjERMA8GA1UECgwIRXJpY3Nzb24x GjAYBgNVBAMMEU1hZ251cyBXZXN0ZXJsdW5kMS0wKwYJKoZIhvcNAQkBFh5tYWdudXMud2VzdGVy bHVuZEBlcmljc3Nvbi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIT6U9ddUp UCEryIA27xtF8WsRAIfc5jBavfu0OGDmwITYYRD2PaMEdEK+I4dqz0f6xcCrDnBk2Xj+JxjhaRkq TAifJZima9WE2JoI/uq8UsS2HJWlhspAwKx1osARgtRiMjRZZyyfiRZLbgXHWYpnTt3i9QsuX/uo 9oZFWpDCbZee4Il9uldsUcuBLZx2PyZvBvC8KCUaBXsZX6bwV7hssRVn+BgFCuEievJMx0khTRVh i9goObxu5Jl44RtwbZNYB1UE1IzRWEZw+b3cEvXiQjPl2e3ytMZSmhy+IaKmjxES6ODiuh51KAcm PZfZIaX2djmD76YGi+ETmnb8Xm3dAgMBAAGjggHEMIIBwDAfBgNVHSMEGDAWgBQcexmel5x2rCA9 2NzjkWrj2y2mUzAdBgNVHQ4EFgQUICO/88T0EQvEUm5+HVt/d9Mm+Z8wDgYDVR0PAQH/BAQDAgWg MFUGA1UdIAROMEwwSgYMKwYBBAGCDwIDAQESMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vcmVwb3Np dG9yeS50cnVzdC50ZWxpYXNvbmVyYS5jb20vQ1BTMCkGA1UdEQQiMCCBHm1hZ251cy53ZXN0ZXJs dW5kQGVyaWNzc29uLmNvbTBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsLnRydXN0LnRlbGlh LmNvbS9lcmljc3Nvbm5saW5kaXZpZHVhbGNhdjMuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggr BgEFBQcDAjCBggYIKwYBBQUHAQEEdjB0MCgGCCsGAQUFBzABhhxodHRwOi8vb2NzcDIudHJ1c3Qu dGVsaWEuY29tMEgGCCsGAQUFBzAChjxodHRwOi8vY2EudHJ1c3QudGVsaWFzb25lcmEuY29tL2Vy aWNzc29ubmxpbmRpdmlkdWFsY2F2My5jZXIwDQYJKoZIhvcNAQELBQADggIBANRZXQy+lUW97uaL uApOixnDKLpUoz+N/5Owd/9illmbxQDEY1/pPs4KJSvw88p+F3bmOzb+fLUNa6Mi/2Tw83FzEVmO 3RqzKtca+I9GDpRQ8oWL7hrUPJoNacidSZLmAP4L4kwHIhvGNX4f1c/oB4fAkP/xZsAAxYi7nKxd XA2n/KMWNkezyB9BSsD8ZOS4pWU8UaZjd5r0fzqM5zQbU4EPqHa8jFMSMz1UrYXPKKxl6E4WA3TE w1oLjcli0NWGQHyQ+3Kh7fe6zPoXfLd/2EQjr2o76ssgoqd2V1Mx5TRHdUyxjIMPEOVYpvcerNUB hEBkaOQ9FugYcMhMc8BF7nQZq+hsL/T7idg4gE2sEfNdK9RBf/EVH10GMrmbadqTycztD1gUL3dV Qxik4TCMxIctt9XqtTGHaMewZLQAXp/sHWlU/vmz9brcuzYQ9YVd5hTendGMUyGhWPV/KvxouKPK zdrGeEqUQCeBwWgQASQNOrpTzMJwZAV/Ww3ExQCjHvflvUQzVuU0sC6AEVkgqMATIXS6h6rjLL31 pjt2JV84XRjF5afYkcRIHTsrtcoWeFtOu/GpZNhtq+tde0QvnkSsjczMWU0gKk0hXBmXwEGUimuD Vq/Wvr0mr18d9mKA6xPNQOfn/VL5CWXa11OtOjj8WsTy3XUpyJ6dc9Z72TmKMIIF9DCCA9ygAwIB AgIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQK DAhFcmljc3NvbjElMCMGA1UEAwwcRXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MzAeFw0yMDEy MTEwOTU4NDlaFw0yMzEyMTIwOTU4NDlaMF4xETAPBgNVBAoMCEVyaWNzc29uMRowGAYDVQQDDBFN YWdudXMgV2VzdGVybHVuZDEtMCsGCSqGSIb3DQEJARYebWFnbnVzLndlc3Rlcmx1bmRAZXJpY3Nz b24uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiE+lPXXVKVAhK8iANu8bRfFr EQCH3OYwWr37tDhg5sCE2GEQ9j2jBHRCviOHas9H+sXAqw5wZNl4/icY4WkZKkwInyWYpmvVhNia CP7qvFLEthyVpYbKQMCsdaLAEYLUYjI0WWcsn4kWS24Fx1mKZ07d4vULLl/7qPaGRVqQwm2XnuCJ fbpXbFHLgS2cdj8mbwbwvCglGgV7GV+m8Fe4bLEVZ/gYBQrhInryTMdJIU0VYYvYKDm8buSZeOEb cG2TWAdVBNSM0VhGcPm93BL14kIz5dnt8rTGUpocviGipo8REujg4roedSgHJj2X2SGl9nY5g++m BovhE5p2/F5t3QIDAQABo4IBxDCCAcAwHwYDVR0jBBgwFoAUHHsZnpecdqwgPdjc45Fq49stplMw HQYDVR0OBBYEFCAjv/PE9BELxFJufh1bf3fTJvmfMA4GA1UdDwEB/wQEAwIFoDBVBgNVHSAETjBM MEoGDCsGAQQBgg8CAwEBEjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1c3Qu dGVsaWFzb25lcmEuY29tL0NQUzApBgNVHREEIjAggR5tYWdudXMud2VzdGVybHVuZEBlcmljc3Nv bi5jb20wSAYDVR0fBEEwPzA9oDugOYY3aHR0cDovL2NybC50cnVzdC50ZWxpYS5jb20vZXJpY3Nz b25ubGluZGl2aWR1YWxjYXYzLmNybDAdBgNVHSUEFjAUBggrBgEFBQcDBAYIKwYBBQUHAwIwgYIG CCsGAQUFBwEBBHYwdDAoBggrBgEFBQcwAYYcaHR0cDovL29jc3AyLnRydXN0LnRlbGlhLmNvbTBI BggrBgEFBQcwAoY8aHR0cDovL2NhLnRydXN0LnRlbGlhc29uZXJhLmNvbS9lcmljc3Nvbm5saW5k aXZpZHVhbGNhdjMuY2VyMA0GCSqGSIb3DQEBCwUAA4ICAQDUWV0MvpVFve7mi7gKTosZwyi6VKM/ jf+TsHf/YpZZm8UAxGNf6T7OCiUr8PPKfhd25js2/ny1DWujIv9k8PNxcxFZjt0asyrXGviPRg6U UPKFi+4a1DyaDWnInUmS5gD+C+JMByIbxjV+H9XP6AeHwJD/8WbAAMWIu5ysXVwNp/yjFjZHs8gf QUrA/GTkuKVlPFGmY3ea9H86jOc0G1OBD6h2vIxTEjM9VK2FzyisZehOFgN0xMNaC43JYtDVhkB8 kPtyoe33usz6F3y3f9hEI69qO+rLIKKndldTMeU0R3VMsYyDDxDlWKb3HqzVAYRAZGjkPRboGHDI THPARe50GavobC/0+4nYOIBNrBHzXSvUQX/xFR9dBjK5m2nak8nM7Q9YFC93VUMYpOEwjMSHLbfV 6rUxh2jHsGS0AF6f7B1pVP75s/W63Ls2EPWFXeYU3p3RjFMhoVj1fyr8aLijys3axnhKlEAngcFo EAEkDTq6U8zCcGQFf1sNxMUAox735b1EM1blNLAugBFZIKjAEyF0uoeq4yy99aY7diVfOF0YxeWn 2JHESB07K7XKFnhbTrvxqWTYbavrXXtEL55ErI3MzFlNICpNIVwZl8BBlIprg1av1r69Jq9fHfZi gOsTzUDn5/1S+Qll2tdTrTo4/FrE8t11KcienXPWe9k5ijCCBsIwggSqoAMCAQICEFO4foPhnJko k7CbSRzsuOswDQYJKoZIhvcNAQELBQAwNzEUMBIGA1UECgwLVGVsaWFTb25lcmExHzAdBgNVBAMM FlRlbGlhU29uZXJhIFJvb3QgQ0EgdjEwHhcNMTUxMDI3MTIxNjQ2WhcNMjUxMDI3MTIxNjQ2WjBH MQswCQYDVQQGEwJTRTERMA8GA1UECgwIRXJpY3Nzb24xJTAjBgNVBAMMHEVyaWNzc29uIE5MIElu ZGl2aWR1YWwgQ0EgdjMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDs8t8AALhQ8qe7 2FS3xpP348GqO9TDRjS0s85eQ7Y0LTLZdmSz2cl+lYqs0zfSTm+7meisbhkqUXkL7fFzoe4iIZCh /VuYUaW407CZlDCXes4n4TqTSuoklN6uOPhY7EC9ZVbXILlLhRummTdDdxhVW4Leo0awEhfLf98M vWxzwCHzMj8m6YOmNjx+f9TcJE3qaA0piuvSxlfpVdiCulPTlmsmV2RSBSAwqBshZYRcQBIDfqmd vkaoP9EzNKAh7yjthC0hpgHZyZMIs0eNo4v2PUmE0rhu+Zs0nujnwhljPA2/8b8v9tGixD1zbtT7 zoM2Ot1menJpFp4zJVSfdKVgtoWqg5t2H/E0XY1LwJez89W07nscEocyBmpC+zJAmKxKhzEWqIyP 1UrZaEIFu+hO+s0Nm8sOUMa4TlG4rAUikc5U5TmUIGBRQGxulYhfAzqSYf8oLUMLky1DOa9eRu3s p0FdQDEzQlnF/h1L4AK1MOkX1vS+fLgOvBo5LRU1fLPUZQ7FKrDXC6nl2ldvEtljHWstGBmqv25a EvAA+yrrplCh/kYvSBjvZibz9Obbwx4yqS77/NHN1iyZyVP2s52B2BLdvo4yhzk6nRk8S/8zHaUU kBUrrvijPDaGK5FNVSaioGvkC7IKioITKffYLtT9XuirKrHlh3VzkazG46pAVwIDAQABo4IBuDCC AbQwgYoGCCsGAQUFBwEBBH4wfDAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AudHJ1c3QudGVsaWFz b25lcmEuY29tMEsGCCsGAQUFBzAChj9odHRwOi8vcmVwb3NpdG9yeS50cnVzdC50ZWxpYXNvbmVy YS5jb20vdGVsaWFzb25lcmFyb290Y2F2MS5jZXIwEgYDVR0TAQH/BAgwBgEB/wIBADBVBgNVHSAE TjBMMEoGDCsGAQQBgg8CAwEBAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1 c3QudGVsaWFzb25lcmEuY29tL0NQUzBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLTMudHJ1 c3QudGVsaWFzb25lcmEuY29tL3RlbGlhc29uZXJhcm9vdGNhdjEuY3JsMB0GA1UdJQQWMBQGCCsG AQUFBwMCBggrBgEFBQcDBDAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFBx7GZ6XnHasID3Y3OOR auPbLaZTMB8GA1UdIwQYMBaAFPCPWTgAs/WPmpYM1ev6e6oX6BMSMA0GCSqGSIb3DQEBCwUAA4IC AQBQWGvx1Yw7tC6rV0PIjKfDyxaanIX+NZLEGOkdQLKGW2gVLtDUJQEPRs5QtaZiObNHCZ7mmSNM Vek4lkt/0dqfVIFutVw/QkyFGwC99ZmNwXSX9z+OoMyoEBHGvw5RY6vRlZrj0uKvdASzYL4KMaB7 m3NwurNDmmNbG52suRIZ76wBOEOddRZcZiTy50ZkBqYnnl2t3D3oBX2NZCQysshUcqRdUbkS13HT CIChMuTV9W0tzPXUOJoJlJlU9nd91IikhGEOrPwfixWms+C8sF0r9qN1uJGx6ELPOiFrLfNtcMNM MbAqRHwpSLxe3wcNkJGxv9T8LswLi1UrRIQ85AKjqzBnLSsjRGgbMgJ+xKtngmvEA155JmoKfUD7 DRbP6Kp14/Y9XFbR/WuDj84bYNKXe4HdDc1P+UMYm16m2L6LkIIoRlx0A5mi+K7jewuGqzFKkaPN mJ0RLCi+4d4/47Zs3DC3PUNOxdOEEHf4kkdWOaSIuj3TQYhNv+LsgF0uijiBmaz2zUFDa2bcIkKa kDZfAFM4HoHz8K2BZRaHKWhd3dZua/tlSiqokUFX2DxmHmZ1n5HM9OiaAIXP/Zo2x10j/Yb1mM3i 0bqGahxlHYzl/QyEG/dujp3lewuVjCI0mPDkZGphvxyqp4Jo8qS94EnOqBvxOgftYug7OY9EKY+W kDGCAsowggLGAgEBMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQD DBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwDQYJYIZIAWUD BAIBBQCgggFBMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTIxMDEx MzE1MzQwOVowLwYJKoZIhvcNAQkEMSIEIH9ceCE/v/KnJmwFo0j6OxIuqVGTRAwKw2UmMkJqs7S5 MGkGCSsGAQQBgjcQBDFcMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYD VQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwawYLKoZI hvcNAQkQAgsxXKBaMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQKDAhFcmljc3NvbjElMCMGA1UEAwwc RXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MwIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEB AQUABIIBAHLUKBShGDXiNRF+yS4AUapxxnhwT6TJ7oAPyGldYdktqeBUJ3JMBhJGIRnG8oLfdZSZ oM8PmmeQtk0sWo22dnzQBhckUifNltWRz0Dko+eZLDDI1b/SZAtrgsfe+ZxoELcAj3Ufdv6vDOo8 spw7lPbhziZfl0/wdMl83wk9WZIqRn67CCnjwUsFXisDqbzBjMMEgeU8pUEcVqNwAAV4iBi0dQC5 LC81akS8jmWao6id/AefWWMiWuA8ahbd7Cs7yXMfin9ReMrtiEYzYfQ0H7JTkPeY9z/qWZ/haHb6 DD41+p6Otcdzhnkh2L+v0WSQcMEesbpYhsoNpbMPX+nt48YAAAAAAAA= --=-g0I2ZXJUC0FBM4FL5WHw-- From nobody Wed Jan 13 07:42:04 2021 Return-Path: X-Original-To: tram@ietfa.amsl.com Delivered-To: tram@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92ACF3A1092 for ; Wed, 13 Jan 2021 07:42:03 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.351 X-Spam-Level: X-Spam-Status: No, score=-2.351 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JCfo8hDB32S0 for ; Wed, 13 Jan 2021 07:42:01 -0800 (PST) Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80081.outbound.protection.outlook.com [40.107.8.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AD3DA3A115E for ; Wed, 13 Jan 2021 07:42:00 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EMJucer8jpMEs1wGMjB4/CFw+UngSX2ynk/gDTsKgSnZwhsiOBkcQLeoEffo9MehU7JbmP7D53MvgEguE+S7Id7anRYp8EUaHa61Ca8p9RzeQnrgbMAMF1z5DRn/15jN/NBKQhXVXgesAmfD14EvgT4+EJ8MOkBoq3S0qNWmvJAEd1b4kxNEi5zaYCuoXrHkSENYfYKfuTpFCIuHV48s2gl8HCK+qVkcfAX5a96rF/Tp4oPCeLdTVNnNHATFwpwAAmqeOOK5U180f+VvMYdspTwNcNiy5cfUynzBZRe8i+MBW75rgh+C92Ywl5jAwvvXby1ek1eTe8mnhkwBMUmQ3w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JVzkcVpBipeSx+vJH1ZqWidPsRcp/vNEvAzxD0zR02A=; b=maJQJ/sigrNs5uEUH3H/tU20vA4GbAnDip5C3glF3+Yk/20G9saGfYfTj6xvYXeit81lcsb4nyOKguubQqy6DDEVlgTPha3tTrtKFwpdwAad3MBgAdzIfK9ezXA3IKIZWTqFPNegS52Wgn0VZp4a4PFtHpAd/O4CeqFabcj8Ubvp417bVWTFjJwMD+0QMaeSiz+OjCFEnDjsGx09TXvRjMKLYnNJPzl3en3Js1LtqoV46jNL1psfWymU68orR1g/i/PxjVnsoxsdhg2PCWx698vRXXiHVCbIIHCU0fJfDAuBt88Ny+q8uBzAz/OSlxxex71HnAwjDlcxVhvlpp+mwQ== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=JVzkcVpBipeSx+vJH1ZqWidPsRcp/vNEvAzxD0zR02A=; b=cY7pseMyhW5G/NkzyXbsagIrQ6p+/ac5lpM1nSDb6lGIGBJGa97++IzZ9AspKKpsqc1XPqlXrQ2BLmuf7iw/0x4MynFAj/2RfTgV6J8BkXvwcRhS94qEeL8MTILtD+GL4Pupwij1rFdKVHXU88pxldpoUU2brp7naBYPtix7SYg= Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com (2603:10a6:7:8e::14) by HE1PR0702MB3706.eurprd07.prod.outlook.com (2603:10a6:7:8d::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3763.7; Wed, 13 Jan 2021 15:41:54 +0000 Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace]) by HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace%6]) with mapi id 15.20.3763.009; Wed, 13 Jan 2021 15:41:54 +0000 From: Magnus Westerlund To: "tram@ietf.org" , "magnus.westerlund=40ericsson.com@dmarc.ietf.org" Thread-Topic: [tram] Errata 4923 on RFC7635 Thread-Index: AQHWkbXyU5vyQ3bjh0CSjI0e6vropaomYc+A Date: Wed, 13 Jan 2021 15:41:54 +0000 Message-ID: <04db63d37d4218d9ea7b38149f1817b58fd3c14a.camel@ericsson.com> References: In-Reply-To: Accept-Language: sv-SE, en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-mailer: Evolution 3.28.5-0ubuntu0.18.04.2 authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=ericsson.com; x-originating-ip: [192.176.1.80] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: ec49d87b-0d76-4677-2bb4-08d8b7d9c127 x-ms-traffictypediagnostic: HE1PR0702MB3706: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:2657; x-ms-exchange-senderadcheck: 1 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0702MB3772.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(376002)(346002)(136003)(366004)(39860400002)(8676002)(66616009)(186003)(36756003)(26005)(66446008)(6486002)(66476007)(2616005)(66574015)(66556008)(71200400001)(66946007)(64756008)(8936002)(110136005)(44832011)(86362001)(6506007)(316002)(966005)(5660300002)(2906002)(6512007)(83380400001)(478600001)(76116006)(99936003)(99106002); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata: =?utf-8?B?c2xtQUlrK05wSjFLUGsvWjZCN3VJd2F4blZPV0lIdEVRbTF2QW5xUlpiRGh1?= =?utf-8?B?LzNsVVlhQzVSMitEOHZKcm1OMU56NnhJOFE5NlhhNE1zVFYzdDJVSElWditt?= =?utf-8?B?OU4wY1VPSkJGWU1iQkliVUZqcnI2TWVJZllIKzJOdVBzWVVpUk5sREdlK3FL?= =?utf-8?B?cFRnbGNHbTA0dnBTT1dVc3JqMDFoRlpuSktTVkZQTFBkZGRFWjNUcmx4TFZN?= =?utf-8?B?QUxYaVd1bExqcnF5NDJrWU05ZWM0YXVUNGlBNnUvV0c0bGc4bDhHUXpIMTIv?= =?utf-8?B?Nkk1WHJUTFZ6Q2F4dnRwemw3TzNsczJwTzJMQ2RLTlF1QXY5ZWFONVlWSU15?= =?utf-8?B?a3VGNGhOdnc2alBJZmVwbmhsSHA0Z2Rrd2dVQ0lSYi90VndUKzFYalRuYmVr?= =?utf-8?B?RjBKZnQvSzdENWE2TEx5OXNQZVZPN2pMSWxPdWJpaDh0YXFsM2YzSWwxOC9r?= =?utf-8?B?VHRZcW84TzI1eDRFd3g1RlI5cndSWUlJRmR0RlRtRlEzUjlFa0lDUEluRjBm?= =?utf-8?B?akd1eVJlZUVyK0xOY1dZUnBrQjJQUUFwSldaNkFsdkNjVTlEMktyMWEzSzQ4?= =?utf-8?B?dllwcUF6cnovVG1MTzFBSmRkM2MwNExSb0M5UmhiQnRSNFJiZWdlZVJGZVNP?= =?utf-8?B?a0RnbWJoS1RnUmdaNktIaVNyeUF6VVk0cTRuQ25OV0hUSkVxTUNnVXNQajB0?= =?utf-8?B?UU8rY1lSRjhRTVVHSkNYZXh0Ukx6M0R5ZjU5OEZOY0diT0dUL0pid2ZkZDJY?= =?utf-8?B?VEdLOS9rbFBPdVBSZUN1bnJUWGJzNUwycWpIM2xZL2s1Y1pwc1pBTGl0bUhH?= =?utf-8?B?Y3p6NWszZWppSm4xZmtZMWJYZGlrVXp1WmcyaTA5Y3l0Uk0zdlFtUlRUSVky?= =?utf-8?B?UU96MlhNa1dUSFBpNnY4ZmRQQkVFZkxCcDZYb2UvRkEyYkpaUmZQdlA1QUxY?= =?utf-8?B?T21lcEt6elkyekwyNVIzQXJ1NHpINFZZOHUvTnlTU2tSbElnT2IrcC9aenVo?= =?utf-8?B?NENYV2piUWZWTGU1ZjBHYTAzYlJJVXMzdlRDQStIZ2tMWnAyVnhrSytDQitl?= =?utf-8?B?NG80TmNVMnhOYW9jYVo5WDNNUll4T3N0TkdqWStYaFlDbVNJdVFkTmVYcUdu?= =?utf-8?B?VkFFcld5a0xkODZqK1cvNURXdGw2Zjl6U1p6a1EwNmJ6cXhDNTJ4bS9jbTB0?= =?utf-8?B?bnVrV3lKQThZNWhoRitMZE5BTUUvZWdzb1ZjMXBSQ0NPdmNZQzRvYUUzZEVS?= =?utf-8?B?ZzJoN29ya1JtQ2RSZnZHMHRucGRDUy9VQnVRVFJEVDNqOUg2TjdMMndOVndB?= =?utf-8?Q?otc7H6i9WWpp0ERVJ3JOXBXI3B9CfJNLm5?= x-ms-exchange-transport-forked: True Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-JEIAzM9Dsva+d2ls9Y/Y" MIME-Version: 1.0 X-OriginatorOrg: ericsson.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: HE1PR0702MB3772.eurprd07.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: ec49d87b-0d76-4677-2bb4-08d8b7d9c127 X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jan 2021 15:41:54.8521 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: qxqi+LKeylklbEo1fTOuuAEEx2tUxTMNx/totRDzriW3T1WvM17uYpTqbvoMdOnMWVsUG+/5aT661wbklIGk1wQ6PtttFeSwRZMPGaW9heQ= X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0702MB3706 Archived-At: Subject: Re: [tram] Errata 4923 on RFC7635 X-BeenThere: tram@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Jan 2021 15:42:04 -0000 --=-JEIAzM9Dsva+d2ls9Y/Y Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi, I will put this into hold for document update. It appears that this whole applendix is potentially dead anyway as the draft it depends on has not yet= been published and was last updated in 2019.=20 Cheers Magnus On Wed, 2020-09-23 at 14:29 +0000, Magnus Westerlund wrote: > Hi, >=20 > I would like to get some feedback on what to do with this Errata? >=20 >=20 https://protect2.fireeye.com/v1/url?k=3D94a29ef2-ca027e66-94a2de69-86d2114e= ab2f-539e6c232f131c74&q=3D1&e=3D675ca314-74c0-494a-8d82-387c2de12999&u=3Dht= tps%3A%2F%2Fwww.rfc-editor.org%2Ferrata%2Feid4923 >=20 > Errata ID: 4923 > Status: Reported > Type: Technical > Publication Format(s) : TEXT > Reported By: M=C3=A9sz=C3=A1ros Mih=C3=A1ly > Date Reported: 2017-02-03 >=20 > Section Appendix B. says: >=20 > "key":"v51N62OM65kyMvfTI08O" >=20 > It should say: >=20 > "key": "ew0KICAgICJrdHkiOiJvY3QiLA0KICAgICJ > raWQiOiJpZDEyMyIsDQogICAgImFsZyI6IkhTMjU2IiwNCiAgIC > AiayI6IlpvUlNPckZ6Tl9GelVBNVhLTVlvVkh5emZmNW9SSnhsL > UlYUnR6dEo2dUUiDQp9" >=20 > Notes: >=20 > "key" according=20 >=20 https://tools.ietf.org/html/draft-ietf-oauth-pop-key-distribution-02#sectio= n-4.2 > "The 'key' parameter either contains a plain JWK structure or a JWK encry= pted > with a JWE." >=20 > According Example Figure 2. "key" in draft-ietf-oauth-pop-key-distributio= n- > 02#section-4.2 > It seems they missed to write plain JWK MUST be base64 format. > So according the example coorected the above sentence: >=20 > "The 'key' parameter either contains a plain BASE64 ENCODED JWK structure= or a > JWK encrypted with a JWE." >=20 > Anyhow in RFC7635 Appendix B. the > "key" seems to be not in base64 (JWK) or JWE encrypted JWK format. > (Base64 decoded key value string is "Salted__"....)=20 >=20 > --=20 > Cheers >=20 > Magnus Westerlund=20 >=20 >=20 > ---------------------------------------------------------------------- > Networks, Ericsson Research > ---------------------------------------------------------------------- > Ericsson AB | Mobile +46 73 0949079 > Torshamnsgatan 23 | > SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com > ---------------------------------------------------------------------- >=20 > _______________________________________________ > tram mailing list > tram@ietf.org > https://www.ietf.org/mailman/listinfo/tram --=-JEIAzM9Dsva+d2ls9Y/Y Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Disposition: attachment; filename="smime.p7s" Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCErYw ggX0MIID3KADAgECAg8BdlE9InYZOYLl1zGep4IwDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMC U0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENB IHYzMB4XDTIwMTIxMTA5NTg0OVoXDTIzMTIxMjA5NTg0OVowXjERMA8GA1UECgwIRXJpY3Nzb24x GjAYBgNVBAMMEU1hZ251cyBXZXN0ZXJsdW5kMS0wKwYJKoZIhvcNAQkBFh5tYWdudXMud2VzdGVy bHVuZEBlcmljc3Nvbi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIT6U9ddUp UCEryIA27xtF8WsRAIfc5jBavfu0OGDmwITYYRD2PaMEdEK+I4dqz0f6xcCrDnBk2Xj+JxjhaRkq TAifJZima9WE2JoI/uq8UsS2HJWlhspAwKx1osARgtRiMjRZZyyfiRZLbgXHWYpnTt3i9QsuX/uo 9oZFWpDCbZee4Il9uldsUcuBLZx2PyZvBvC8KCUaBXsZX6bwV7hssRVn+BgFCuEievJMx0khTRVh i9goObxu5Jl44RtwbZNYB1UE1IzRWEZw+b3cEvXiQjPl2e3ytMZSmhy+IaKmjxES6ODiuh51KAcm PZfZIaX2djmD76YGi+ETmnb8Xm3dAgMBAAGjggHEMIIBwDAfBgNVHSMEGDAWgBQcexmel5x2rCA9 2NzjkWrj2y2mUzAdBgNVHQ4EFgQUICO/88T0EQvEUm5+HVt/d9Mm+Z8wDgYDVR0PAQH/BAQDAgWg MFUGA1UdIAROMEwwSgYMKwYBBAGCDwIDAQESMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vcmVwb3Np dG9yeS50cnVzdC50ZWxpYXNvbmVyYS5jb20vQ1BTMCkGA1UdEQQiMCCBHm1hZ251cy53ZXN0ZXJs dW5kQGVyaWNzc29uLmNvbTBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsLnRydXN0LnRlbGlh LmNvbS9lcmljc3Nvbm5saW5kaXZpZHVhbGNhdjMuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggr BgEFBQcDAjCBggYIKwYBBQUHAQEEdjB0MCgGCCsGAQUFBzABhhxodHRwOi8vb2NzcDIudHJ1c3Qu dGVsaWEuY29tMEgGCCsGAQUFBzAChjxodHRwOi8vY2EudHJ1c3QudGVsaWFzb25lcmEuY29tL2Vy aWNzc29ubmxpbmRpdmlkdWFsY2F2My5jZXIwDQYJKoZIhvcNAQELBQADggIBANRZXQy+lUW97uaL uApOixnDKLpUoz+N/5Owd/9illmbxQDEY1/pPs4KJSvw88p+F3bmOzb+fLUNa6Mi/2Tw83FzEVmO 3RqzKtca+I9GDpRQ8oWL7hrUPJoNacidSZLmAP4L4kwHIhvGNX4f1c/oB4fAkP/xZsAAxYi7nKxd XA2n/KMWNkezyB9BSsD8ZOS4pWU8UaZjd5r0fzqM5zQbU4EPqHa8jFMSMz1UrYXPKKxl6E4WA3TE w1oLjcli0NWGQHyQ+3Kh7fe6zPoXfLd/2EQjr2o76ssgoqd2V1Mx5TRHdUyxjIMPEOVYpvcerNUB hEBkaOQ9FugYcMhMc8BF7nQZq+hsL/T7idg4gE2sEfNdK9RBf/EVH10GMrmbadqTycztD1gUL3dV Qxik4TCMxIctt9XqtTGHaMewZLQAXp/sHWlU/vmz9brcuzYQ9YVd5hTendGMUyGhWPV/KvxouKPK zdrGeEqUQCeBwWgQASQNOrpTzMJwZAV/Ww3ExQCjHvflvUQzVuU0sC6AEVkgqMATIXS6h6rjLL31 pjt2JV84XRjF5afYkcRIHTsrtcoWeFtOu/GpZNhtq+tde0QvnkSsjczMWU0gKk0hXBmXwEGUimuD Vq/Wvr0mr18d9mKA6xPNQOfn/VL5CWXa11OtOjj8WsTy3XUpyJ6dc9Z72TmKMIIF9DCCA9ygAwIB AgIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQK DAhFcmljc3NvbjElMCMGA1UEAwwcRXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MzAeFw0yMDEy MTEwOTU4NDlaFw0yMzEyMTIwOTU4NDlaMF4xETAPBgNVBAoMCEVyaWNzc29uMRowGAYDVQQDDBFN YWdudXMgV2VzdGVybHVuZDEtMCsGCSqGSIb3DQEJARYebWFnbnVzLndlc3Rlcmx1bmRAZXJpY3Nz b24uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiE+lPXXVKVAhK8iANu8bRfFr EQCH3OYwWr37tDhg5sCE2GEQ9j2jBHRCviOHas9H+sXAqw5wZNl4/icY4WkZKkwInyWYpmvVhNia CP7qvFLEthyVpYbKQMCsdaLAEYLUYjI0WWcsn4kWS24Fx1mKZ07d4vULLl/7qPaGRVqQwm2XnuCJ fbpXbFHLgS2cdj8mbwbwvCglGgV7GV+m8Fe4bLEVZ/gYBQrhInryTMdJIU0VYYvYKDm8buSZeOEb cG2TWAdVBNSM0VhGcPm93BL14kIz5dnt8rTGUpocviGipo8REujg4roedSgHJj2X2SGl9nY5g++m BovhE5p2/F5t3QIDAQABo4IBxDCCAcAwHwYDVR0jBBgwFoAUHHsZnpecdqwgPdjc45Fq49stplMw HQYDVR0OBBYEFCAjv/PE9BELxFJufh1bf3fTJvmfMA4GA1UdDwEB/wQEAwIFoDBVBgNVHSAETjBM MEoGDCsGAQQBgg8CAwEBEjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1c3Qu dGVsaWFzb25lcmEuY29tL0NQUzApBgNVHREEIjAggR5tYWdudXMud2VzdGVybHVuZEBlcmljc3Nv bi5jb20wSAYDVR0fBEEwPzA9oDugOYY3aHR0cDovL2NybC50cnVzdC50ZWxpYS5jb20vZXJpY3Nz b25ubGluZGl2aWR1YWxjYXYzLmNybDAdBgNVHSUEFjAUBggrBgEFBQcDBAYIKwYBBQUHAwIwgYIG CCsGAQUFBwEBBHYwdDAoBggrBgEFBQcwAYYcaHR0cDovL29jc3AyLnRydXN0LnRlbGlhLmNvbTBI BggrBgEFBQcwAoY8aHR0cDovL2NhLnRydXN0LnRlbGlhc29uZXJhLmNvbS9lcmljc3Nvbm5saW5k aXZpZHVhbGNhdjMuY2VyMA0GCSqGSIb3DQEBCwUAA4ICAQDUWV0MvpVFve7mi7gKTosZwyi6VKM/ jf+TsHf/YpZZm8UAxGNf6T7OCiUr8PPKfhd25js2/ny1DWujIv9k8PNxcxFZjt0asyrXGviPRg6U UPKFi+4a1DyaDWnInUmS5gD+C+JMByIbxjV+H9XP6AeHwJD/8WbAAMWIu5ysXVwNp/yjFjZHs8gf QUrA/GTkuKVlPFGmY3ea9H86jOc0G1OBD6h2vIxTEjM9VK2FzyisZehOFgN0xMNaC43JYtDVhkB8 kPtyoe33usz6F3y3f9hEI69qO+rLIKKndldTMeU0R3VMsYyDDxDlWKb3HqzVAYRAZGjkPRboGHDI THPARe50GavobC/0+4nYOIBNrBHzXSvUQX/xFR9dBjK5m2nak8nM7Q9YFC93VUMYpOEwjMSHLbfV 6rUxh2jHsGS0AF6f7B1pVP75s/W63Ls2EPWFXeYU3p3RjFMhoVj1fyr8aLijys3axnhKlEAngcFo EAEkDTq6U8zCcGQFf1sNxMUAox735b1EM1blNLAugBFZIKjAEyF0uoeq4yy99aY7diVfOF0YxeWn 2JHESB07K7XKFnhbTrvxqWTYbavrXXtEL55ErI3MzFlNICpNIVwZl8BBlIprg1av1r69Jq9fHfZi gOsTzUDn5/1S+Qll2tdTrTo4/FrE8t11KcienXPWe9k5ijCCBsIwggSqoAMCAQICEFO4foPhnJko k7CbSRzsuOswDQYJKoZIhvcNAQELBQAwNzEUMBIGA1UECgwLVGVsaWFTb25lcmExHzAdBgNVBAMM FlRlbGlhU29uZXJhIFJvb3QgQ0EgdjEwHhcNMTUxMDI3MTIxNjQ2WhcNMjUxMDI3MTIxNjQ2WjBH MQswCQYDVQQGEwJTRTERMA8GA1UECgwIRXJpY3Nzb24xJTAjBgNVBAMMHEVyaWNzc29uIE5MIElu ZGl2aWR1YWwgQ0EgdjMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDs8t8AALhQ8qe7 2FS3xpP348GqO9TDRjS0s85eQ7Y0LTLZdmSz2cl+lYqs0zfSTm+7meisbhkqUXkL7fFzoe4iIZCh /VuYUaW407CZlDCXes4n4TqTSuoklN6uOPhY7EC9ZVbXILlLhRummTdDdxhVW4Leo0awEhfLf98M vWxzwCHzMj8m6YOmNjx+f9TcJE3qaA0piuvSxlfpVdiCulPTlmsmV2RSBSAwqBshZYRcQBIDfqmd vkaoP9EzNKAh7yjthC0hpgHZyZMIs0eNo4v2PUmE0rhu+Zs0nujnwhljPA2/8b8v9tGixD1zbtT7 zoM2Ot1menJpFp4zJVSfdKVgtoWqg5t2H/E0XY1LwJez89W07nscEocyBmpC+zJAmKxKhzEWqIyP 1UrZaEIFu+hO+s0Nm8sOUMa4TlG4rAUikc5U5TmUIGBRQGxulYhfAzqSYf8oLUMLky1DOa9eRu3s p0FdQDEzQlnF/h1L4AK1MOkX1vS+fLgOvBo5LRU1fLPUZQ7FKrDXC6nl2ldvEtljHWstGBmqv25a EvAA+yrrplCh/kYvSBjvZibz9Obbwx4yqS77/NHN1iyZyVP2s52B2BLdvo4yhzk6nRk8S/8zHaUU kBUrrvijPDaGK5FNVSaioGvkC7IKioITKffYLtT9XuirKrHlh3VzkazG46pAVwIDAQABo4IBuDCC AbQwgYoGCCsGAQUFBwEBBH4wfDAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AudHJ1c3QudGVsaWFz b25lcmEuY29tMEsGCCsGAQUFBzAChj9odHRwOi8vcmVwb3NpdG9yeS50cnVzdC50ZWxpYXNvbmVy YS5jb20vdGVsaWFzb25lcmFyb290Y2F2MS5jZXIwEgYDVR0TAQH/BAgwBgEB/wIBADBVBgNVHSAE TjBMMEoGDCsGAQQBgg8CAwEBAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1 c3QudGVsaWFzb25lcmEuY29tL0NQUzBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLTMudHJ1 c3QudGVsaWFzb25lcmEuY29tL3RlbGlhc29uZXJhcm9vdGNhdjEuY3JsMB0GA1UdJQQWMBQGCCsG AQUFBwMCBggrBgEFBQcDBDAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFBx7GZ6XnHasID3Y3OOR auPbLaZTMB8GA1UdIwQYMBaAFPCPWTgAs/WPmpYM1ev6e6oX6BMSMA0GCSqGSIb3DQEBCwUAA4IC AQBQWGvx1Yw7tC6rV0PIjKfDyxaanIX+NZLEGOkdQLKGW2gVLtDUJQEPRs5QtaZiObNHCZ7mmSNM Vek4lkt/0dqfVIFutVw/QkyFGwC99ZmNwXSX9z+OoMyoEBHGvw5RY6vRlZrj0uKvdASzYL4KMaB7 m3NwurNDmmNbG52suRIZ76wBOEOddRZcZiTy50ZkBqYnnl2t3D3oBX2NZCQysshUcqRdUbkS13HT CIChMuTV9W0tzPXUOJoJlJlU9nd91IikhGEOrPwfixWms+C8sF0r9qN1uJGx6ELPOiFrLfNtcMNM MbAqRHwpSLxe3wcNkJGxv9T8LswLi1UrRIQ85AKjqzBnLSsjRGgbMgJ+xKtngmvEA155JmoKfUD7 DRbP6Kp14/Y9XFbR/WuDj84bYNKXe4HdDc1P+UMYm16m2L6LkIIoRlx0A5mi+K7jewuGqzFKkaPN mJ0RLCi+4d4/47Zs3DC3PUNOxdOEEHf4kkdWOaSIuj3TQYhNv+LsgF0uijiBmaz2zUFDa2bcIkKa kDZfAFM4HoHz8K2BZRaHKWhd3dZua/tlSiqokUFX2DxmHmZ1n5HM9OiaAIXP/Zo2x10j/Yb1mM3i 0bqGahxlHYzl/QyEG/dujp3lewuVjCI0mPDkZGphvxyqp4Jo8qS94EnOqBvxOgftYug7OY9EKY+W kDGCAsowggLGAgEBMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQD DBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwDQYJYIZIAWUD BAIBBQCgggFBMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTIxMDEx MzE1NDE1M1owLwYJKoZIhvcNAQkEMSIEIF/8FNYat0gn+N2/UQRlDvDxhHIC4DJjzse36O40yUUB MGkGCSsGAQQBgjcQBDFcMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYD VQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwawYLKoZI hvcNAQkQAgsxXKBaMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQKDAhFcmljc3NvbjElMCMGA1UEAwwc RXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MwIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEB AQUABIIBAFxLyAfxwfrL1t8k6iYsy8o5yn6jrb7iqwhKuE2doYInn8lh9w9PlWwnUs8P5qaGoekH OpuMMn78PbIJtlMzPUKvhY9dcZj8ocgi6RqB2tNUrb82zIPoQASCh09Mi+Vi8JzCOswMLxQNDMTs 9eSHfnzt8ebVmps+pRUZbZ5saRJqCHKNok8/c57kxEd5HrKZfak6s/lY9D320209oEFp28W2vEiV if3yTGa3+TM4ssZizewccTMyt66yrfIOLm3HVhVbHwxYe4eAzuS7kqEmmvOxZog79SX+kuYnzBB7 1W0B9/3EyzmYOKCLbNnc+3eb1ZhiJkhKfEsX3MaxGk2eslwAAAAAAAA= --=-JEIAzM9Dsva+d2ls9Y/Y-- From nobody Wed Jan 13 07:43:14 2021 Return-Path: X-Original-To: tram@ietfa.amsl.com Delivered-To: tram@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7C9183A1162 for ; Wed, 13 Jan 2021 07:43:12 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.351 X-Spam-Level: X-Spam-Status: No, score=-2.351 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9yHzQkKUJSmH for ; Wed, 13 Jan 2021 07:43:09 -0800 (PST) Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80058.outbound.protection.outlook.com [40.107.8.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 764183A1160 for ; Wed, 13 Jan 2021 07:43:09 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fqzyeYSTnVCPhxeo53rzMSc2DEQi5u8vxq2/yYWi4PyJplIJ6zVmL/vfGwbwzof1oSfUmC1C/tFMI+ACGqaQl78tk3wLRvEoq9SesVB8eySMGtWBHY3TI601ij9WmfT391UJyqe8OBbvMoViYEh7fIWerW1+8Vij3U4pAilJE8C/gzXcSczOQBeN4kNfH+CBNeIOYq50DjjlOd7tPNnI0627l6BfXMcxEXQJHoNpZpmZQW1FzKxRqQpO9h3VD3pv2bVH5lriYfXiZ7Kq78RZyHqLObzraW9WseHvCCIPEvQAQQwFSlqnen93oCZJfRQlFBrckWto3ymmb9EM58JYuA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=F5aDfsnI3Kf1sLrbH9LJQyhyuYGzGUzAp1UYOyYt3Ew=; b=LoEbYzgqF+tu4/ADq/hRNMhxPvdtBn2bdg6MSWhiphSTAispGQMAbnhj190HOaR0PExJOuXCNpxcXlJyYPXIiaxmwWXmVtjkpgYhxfgRCshG3NkJQqefh9CeWsOMXGaaCtUKh3eJBIMRBADh/FHWyJuL1zn8ui6uxO1N5ENwBc4s0W3CwGzFTB2OoVireT1AXZT02R3FJWo2DGHrINr30Hnr2/B+nJ69fRk+WfMyurXr3XgyvMFxG/emw8UCdZxbB3zQx7V1G5jtJSbugKph8+LDzeMhLXUwBndwI6QfJkavqBWwhl3tDlEI3Vy0XVHQkR64T+i4SQFYQx5SmGJ51Q== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=F5aDfsnI3Kf1sLrbH9LJQyhyuYGzGUzAp1UYOyYt3Ew=; b=OPZcYGjlMmQAnVy9huS5i7fbgr5JXLGXJALI4y5zBh3w4s4cOtv+YDdGO+k34+Tl4ES2zelsWqyqHFi0TFVjQVU5B+EH2UW1/wBEo9CKCU3tgG0cUjojQlUmHT630h83zHpIDse5EJ1zJMmV6HJ/abvnByw8U6+QNLDQuup2L6A= Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com (2603:10a6:7:8e::14) by HE1PR0702MB3706.eurprd07.prod.outlook.com (2603:10a6:7:8d::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3763.7; Wed, 13 Jan 2021 15:43:06 +0000 Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace]) by HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace%6]) with mapi id 15.20.3763.009; Wed, 13 Jan 2021 15:43:05 +0000 From: Magnus Westerlund To: "justin@uberti.name" CC: "deadbeef@google.com" , "tram@ietf.org" , "sperreault@jive.com" , "tireddy@cisco.com" , "praspati@cisco.com" , Gonzalo Camarillo , "rmohanr@cisco.com" Thread-Topic: [tram] [Technical Errata Reported] RFC7635 (5059) Thread-Index: AQHS9i9Y0HUi33cifkeKgW+G6emAKql9fXuAgAGrDICArnCqAA== Date: Wed, 13 Jan 2021 15:43:05 +0000 Message-ID: <2e7b5e427f582c2884390b84553640a27e502a58.camel@ericsson.com> References: <20170705232644.C7CE5B80D80@rfc-editor.org> <7d6bcb0becf3790f00cc478af9eeacdc07180e32.camel@ericsson.com> In-Reply-To: Accept-Language: sv-SE, en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-mailer: Evolution 3.28.5-0ubuntu0.18.04.2 authentication-results: uberti.name; dkim=none (message not signed) header.d=none;uberti.name; dmarc=none action=none header.from=ericsson.com; x-originating-ip: [192.176.1.80] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 6f9d8548-2f5f-4642-66b7-08d8b7d9eb80 x-ms-traffictypediagnostic: HE1PR0702MB3706: x-ms-exchange-transport-forked: True x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:962; x-ms-exchange-senderadcheck: 1 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0702MB3772.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(376002)(346002)(136003)(366004)(39860400002)(8676002)(66616009)(186003)(36756003)(26005)(66446008)(6486002)(66476007)(2616005)(66556008)(71200400001)(4326008)(66946007)(64756008)(8936002)(44832011)(86362001)(6916009)(6506007)(316002)(53546011)(966005)(5660300002)(2906002)(6512007)(54906003)(83380400001)(478600001)(76116006)(99936003)(99106002); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata: =?utf-8?B?ZmlkWllmYUZIVThhc1R2M0t6RjhFMmVWdndOOU4ycGlJRXZOcHZNM1BRYlJk?= =?utf-8?B?ZHptalpwalVUL0NqSGFUM1hzZTF6UjRxaFVGVE5wbW9iVkt0T1VKc1Nna1JG?= =?utf-8?B?YWtzVzE0cUFaWTEvTU5Rai84MzZFS2llZlAxampHS0FsSVowMkF2emxydVhq?= =?utf-8?B?N3AyV1VCK2VIKzNySjdkWngvTGRSQjljZVRXbG5ITnRUdnYvKytTQ1ZGd3Rm?= =?utf-8?B?NWp6MURiRXk1Ynp5Ti9UelRmWVdyT2hwNGdWY0RBRUJndFNtOW42c1AwcjA1?= =?utf-8?B?RnEyQkVSdFlQTWhWZi9xNFIreGRSa2thSUNRc0VZWDVPUmIwRkhQbW5PR2FS?= =?utf-8?B?aktCL2FCQmt3aHRUNTVHRHdvMDFmOXFMK1p3K2c0b245RUFTN0hvV3V1K29r?= =?utf-8?B?RmlwUDlOeWdyR2J3bDUxZ0tvUER6RjJEUmc2NmNSSVNsbk1vb1RaY3R1Mk5U?= =?utf-8?B?OTRNcnVJd1o0aVk4Nk9idmFyZWYyZ1pnOS9CS3dENXJ4aVlnQjVQSzlxczl2?= =?utf-8?B?YW9tQldaNlF1ZFVoUzJMaEdkREd6ZVRIYnlzZnVybHJPL1h5T294NUdkQUtx?= =?utf-8?B?Smg1QkxWaUFQUU1meitNRk5oWEZXWjJZQ1Z2WkRxc1Flc3RaVGdERTYvTnVV?= =?utf-8?B?UEVsakk0aTZ1WnVjbURrUDhpTWZrbTBVZjBkR2IxcURQbmF2MGpIN05UZmI2?= =?utf-8?B?LzQxVk1wbUJqNEU1aWtXN1NWYTgwc21yZmNndldHNHZwUHhRNjBLcFl5eUdw?= =?utf-8?B?RkVpaXlRYUlUQ1Q0YjduQ2wzNTRNdnVXTzNCb0kvTGE4aWlISVZkMGxyNkM5?= =?utf-8?B?cmZSTFd2UE01ZzB0MnRGZTc3RmZOWVFIbVZWdnZFQUNzN3phWExhaWtpdzIy?= =?utf-8?B?R3RxRE5WdGNHeUdCNjhoUklxRGxDL2JaNDlTZVpFN0hXUWVOaFRPMU1mWG5B?= =?utf-8?B?d1dNZENqRzJtdy8vVUpTbWYzQU0ybnRBWWY5Y2YzSFJEQ2lCb1NtUCtCOUx1?= =?utf-8?B?Nks3a3NqbldBKzkxaCtzRDRwWmZWZHdGVHB1a1FJV1VKb1phdndzS2NBUm9V?= =?utf-8?B?SUdqcVh6cFRheThVbUhuaFE5eXpoVmJoT01HNUw2T1pUWUFuQlVzM1pDMEhy?= =?utf-8?B?M2FFNG1BN0EyN2pncjU2cmJLQTc5bEdKUUhNWWVpVW94TUhDUGdBU3pDV0Nm?= =?utf-8?B?SWV6TTFpaWt6dWJ1Y0pqMFd5U3Y0K3hnOEdKeElNckJGTk1Cekh0dlU2NGdG?= =?utf-8?B?em9KZnFyZUFyT2dZdXNqVnVNa2Z2dVlRL0tRbHdMV3ZFejR3RWNPNzR4dFpF?= =?utf-8?Q?DwNE8rhahCAbfLYVelis7MKpml0iVtF4a+?= Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-ZLw2sua0TSP64/Lk82Ua" MIME-Version: 1.0 X-OriginatorOrg: ericsson.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: HE1PR0702MB3772.eurprd07.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 6f9d8548-2f5f-4642-66b7-08d8b7d9eb80 X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jan 2021 15:43:05.8742 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: ATxy5yANrDeLib5rnggEtNfGQM4nyp7bGhyqgpN3pS7G4SxkKr1jD0hgmBmgkUKr0vD6YGMgfPTCx6rSdcmM1vx+PU3UaPNFwNzKm3+1cBI= X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0702MB3706 Archived-At: Subject: Re: [tram] [Technical Errata Reported] RFC7635 (5059) X-BeenThere: tram@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Jan 2021 15:43:13 -0000 --=-ZLw2sua0TSP64/Lk82Ua Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi, I would like to conclude on this. Can I verify it? Cheers Magnus=20 On Thu, 2020-09-24 at 08:50 -0700, Justin Uberti wrote: > This looks correct to me at first glance. Will re-read in context and giv= e a > definitive answer. >=20 > On Wed, Sep 23, 2020 at 7:22 AM Magnus Westerlund < > magnus.westerlund@ericsson.com> wrote: > > Hi, > >=20 > > I would appreciate some response regarding this Errata. Should it be > > verified, > > held for document update, or rejected?=20 > >=20 > > Cheers > >=20 > > Magnus Westerlund > >=20 > > On Wed, 2017-07-05 at 16:26 -0700, RFC Errata System wrote: > > > The following errata report has been submitted for RFC7635, > > > "Session Traversal Utilities for NAT (STUN) Extension for Third-Party > > > Authorization". > > >=20 > > > -------------------------------------- > > > You may review the report below and at: > > > http://www.rfc-editor.org/errata/eid5059 > > >=20 > > > -------------------------------------- > > > Type: Technical > > > Reported by: Taylor Brandstetter > > >=20 > > > Section: 6.2 > > >=20 > > > Original Text > > > ------------- > > > key_length: Length of the session key in octets. The key length = of > > > 160 bits MUST be supported (i.e., only the 160-bit key is used = by > > > HMAC-SHA-1 for message integrity of STUN messages). The key > > > length facilitates the hash agility plan discussed in Section 1= 6.3 > > > of [RFC5389]. > > >=20 > > >=20 > > > Corrected Text > > > -------------- > > > key_length: Length of the session key in octets. > > >=20 > > > Notes > > > ----- > > > RFC2104 section 2 states: > > >=20 > > > The authentication key K can be of any length up to B, the > > > block length of the hash function. Applications that use keys lon= ger > > > than B bytes will first hash the key using H and then use the > > > resultant L byte string as the actual key to HMAC. > > >=20 > > > Meaning any key length is allowed. The fact that the hash output is 2= 0 > > bytes > > > doesn't mean the key needs to be 20 bytes as well. > > >=20 > > > Instructions: > > > ------------- > > > This erratum is currently posted as "Reported". If necessary, please > > > use "Reply All" to discuss whether it should be verified or > > > rejected. When a decision is reached, the verifying party =20 > > > can log in to change the status and edit the report, if necessary.= =20 > > >=20 > > > -------------------------------------- > > > RFC7635 (draft-ietf-tram-turn-third-party-authz-16) > > > -------------------------------------- > > > Title : Session Traversal Utilities for NAT (STUN) Exte= nsion > > for > > > Third-Party Authorization > > > Publication Date : August 2015 > > > Author(s) : T. Reddy, P. Patil, R. Ravindranath, J. Uberti > > > Category : PROPOSED STANDARD > > > Source : TURN Revised and Modernized > > > Area : Transport > > > Stream : IETF > > > Verifying Party : IESG > > >=20 > > > _______________________________________________ > > > tram mailing list > > > tram@ietf.org > > > https://www.ietf.org/mailman/listinfo/tram --=-ZLw2sua0TSP64/Lk82Ua Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Disposition: attachment; filename="smime.p7s" Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCErYw ggX0MIID3KADAgECAg8BdlE9InYZOYLl1zGep4IwDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMC U0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENB IHYzMB4XDTIwMTIxMTA5NTg0OVoXDTIzMTIxMjA5NTg0OVowXjERMA8GA1UECgwIRXJpY3Nzb24x GjAYBgNVBAMMEU1hZ251cyBXZXN0ZXJsdW5kMS0wKwYJKoZIhvcNAQkBFh5tYWdudXMud2VzdGVy bHVuZEBlcmljc3Nvbi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIT6U9ddUp UCEryIA27xtF8WsRAIfc5jBavfu0OGDmwITYYRD2PaMEdEK+I4dqz0f6xcCrDnBk2Xj+JxjhaRkq TAifJZima9WE2JoI/uq8UsS2HJWlhspAwKx1osARgtRiMjRZZyyfiRZLbgXHWYpnTt3i9QsuX/uo 9oZFWpDCbZee4Il9uldsUcuBLZx2PyZvBvC8KCUaBXsZX6bwV7hssRVn+BgFCuEievJMx0khTRVh i9goObxu5Jl44RtwbZNYB1UE1IzRWEZw+b3cEvXiQjPl2e3ytMZSmhy+IaKmjxES6ODiuh51KAcm PZfZIaX2djmD76YGi+ETmnb8Xm3dAgMBAAGjggHEMIIBwDAfBgNVHSMEGDAWgBQcexmel5x2rCA9 2NzjkWrj2y2mUzAdBgNVHQ4EFgQUICO/88T0EQvEUm5+HVt/d9Mm+Z8wDgYDVR0PAQH/BAQDAgWg MFUGA1UdIAROMEwwSgYMKwYBBAGCDwIDAQESMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vcmVwb3Np dG9yeS50cnVzdC50ZWxpYXNvbmVyYS5jb20vQ1BTMCkGA1UdEQQiMCCBHm1hZ251cy53ZXN0ZXJs dW5kQGVyaWNzc29uLmNvbTBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsLnRydXN0LnRlbGlh LmNvbS9lcmljc3Nvbm5saW5kaXZpZHVhbGNhdjMuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggr BgEFBQcDAjCBggYIKwYBBQUHAQEEdjB0MCgGCCsGAQUFBzABhhxodHRwOi8vb2NzcDIudHJ1c3Qu dGVsaWEuY29tMEgGCCsGAQUFBzAChjxodHRwOi8vY2EudHJ1c3QudGVsaWFzb25lcmEuY29tL2Vy aWNzc29ubmxpbmRpdmlkdWFsY2F2My5jZXIwDQYJKoZIhvcNAQELBQADggIBANRZXQy+lUW97uaL uApOixnDKLpUoz+N/5Owd/9illmbxQDEY1/pPs4KJSvw88p+F3bmOzb+fLUNa6Mi/2Tw83FzEVmO 3RqzKtca+I9GDpRQ8oWL7hrUPJoNacidSZLmAP4L4kwHIhvGNX4f1c/oB4fAkP/xZsAAxYi7nKxd XA2n/KMWNkezyB9BSsD8ZOS4pWU8UaZjd5r0fzqM5zQbU4EPqHa8jFMSMz1UrYXPKKxl6E4WA3TE w1oLjcli0NWGQHyQ+3Kh7fe6zPoXfLd/2EQjr2o76ssgoqd2V1Mx5TRHdUyxjIMPEOVYpvcerNUB hEBkaOQ9FugYcMhMc8BF7nQZq+hsL/T7idg4gE2sEfNdK9RBf/EVH10GMrmbadqTycztD1gUL3dV Qxik4TCMxIctt9XqtTGHaMewZLQAXp/sHWlU/vmz9brcuzYQ9YVd5hTendGMUyGhWPV/KvxouKPK zdrGeEqUQCeBwWgQASQNOrpTzMJwZAV/Ww3ExQCjHvflvUQzVuU0sC6AEVkgqMATIXS6h6rjLL31 pjt2JV84XRjF5afYkcRIHTsrtcoWeFtOu/GpZNhtq+tde0QvnkSsjczMWU0gKk0hXBmXwEGUimuD Vq/Wvr0mr18d9mKA6xPNQOfn/VL5CWXa11OtOjj8WsTy3XUpyJ6dc9Z72TmKMIIF9DCCA9ygAwIB AgIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQK DAhFcmljc3NvbjElMCMGA1UEAwwcRXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MzAeFw0yMDEy MTEwOTU4NDlaFw0yMzEyMTIwOTU4NDlaMF4xETAPBgNVBAoMCEVyaWNzc29uMRowGAYDVQQDDBFN YWdudXMgV2VzdGVybHVuZDEtMCsGCSqGSIb3DQEJARYebWFnbnVzLndlc3Rlcmx1bmRAZXJpY3Nz b24uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiE+lPXXVKVAhK8iANu8bRfFr EQCH3OYwWr37tDhg5sCE2GEQ9j2jBHRCviOHas9H+sXAqw5wZNl4/icY4WkZKkwInyWYpmvVhNia CP7qvFLEthyVpYbKQMCsdaLAEYLUYjI0WWcsn4kWS24Fx1mKZ07d4vULLl/7qPaGRVqQwm2XnuCJ fbpXbFHLgS2cdj8mbwbwvCglGgV7GV+m8Fe4bLEVZ/gYBQrhInryTMdJIU0VYYvYKDm8buSZeOEb cG2TWAdVBNSM0VhGcPm93BL14kIz5dnt8rTGUpocviGipo8REujg4roedSgHJj2X2SGl9nY5g++m BovhE5p2/F5t3QIDAQABo4IBxDCCAcAwHwYDVR0jBBgwFoAUHHsZnpecdqwgPdjc45Fq49stplMw HQYDVR0OBBYEFCAjv/PE9BELxFJufh1bf3fTJvmfMA4GA1UdDwEB/wQEAwIFoDBVBgNVHSAETjBM MEoGDCsGAQQBgg8CAwEBEjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1c3Qu dGVsaWFzb25lcmEuY29tL0NQUzApBgNVHREEIjAggR5tYWdudXMud2VzdGVybHVuZEBlcmljc3Nv bi5jb20wSAYDVR0fBEEwPzA9oDugOYY3aHR0cDovL2NybC50cnVzdC50ZWxpYS5jb20vZXJpY3Nz b25ubGluZGl2aWR1YWxjYXYzLmNybDAdBgNVHSUEFjAUBggrBgEFBQcDBAYIKwYBBQUHAwIwgYIG CCsGAQUFBwEBBHYwdDAoBggrBgEFBQcwAYYcaHR0cDovL29jc3AyLnRydXN0LnRlbGlhLmNvbTBI BggrBgEFBQcwAoY8aHR0cDovL2NhLnRydXN0LnRlbGlhc29uZXJhLmNvbS9lcmljc3Nvbm5saW5k aXZpZHVhbGNhdjMuY2VyMA0GCSqGSIb3DQEBCwUAA4ICAQDUWV0MvpVFve7mi7gKTosZwyi6VKM/ jf+TsHf/YpZZm8UAxGNf6T7OCiUr8PPKfhd25js2/ny1DWujIv9k8PNxcxFZjt0asyrXGviPRg6U UPKFi+4a1DyaDWnInUmS5gD+C+JMByIbxjV+H9XP6AeHwJD/8WbAAMWIu5ysXVwNp/yjFjZHs8gf QUrA/GTkuKVlPFGmY3ea9H86jOc0G1OBD6h2vIxTEjM9VK2FzyisZehOFgN0xMNaC43JYtDVhkB8 kPtyoe33usz6F3y3f9hEI69qO+rLIKKndldTMeU0R3VMsYyDDxDlWKb3HqzVAYRAZGjkPRboGHDI THPARe50GavobC/0+4nYOIBNrBHzXSvUQX/xFR9dBjK5m2nak8nM7Q9YFC93VUMYpOEwjMSHLbfV 6rUxh2jHsGS0AF6f7B1pVP75s/W63Ls2EPWFXeYU3p3RjFMhoVj1fyr8aLijys3axnhKlEAngcFo EAEkDTq6U8zCcGQFf1sNxMUAox735b1EM1blNLAugBFZIKjAEyF0uoeq4yy99aY7diVfOF0YxeWn 2JHESB07K7XKFnhbTrvxqWTYbavrXXtEL55ErI3MzFlNICpNIVwZl8BBlIprg1av1r69Jq9fHfZi gOsTzUDn5/1S+Qll2tdTrTo4/FrE8t11KcienXPWe9k5ijCCBsIwggSqoAMCAQICEFO4foPhnJko k7CbSRzsuOswDQYJKoZIhvcNAQELBQAwNzEUMBIGA1UECgwLVGVsaWFTb25lcmExHzAdBgNVBAMM FlRlbGlhU29uZXJhIFJvb3QgQ0EgdjEwHhcNMTUxMDI3MTIxNjQ2WhcNMjUxMDI3MTIxNjQ2WjBH MQswCQYDVQQGEwJTRTERMA8GA1UECgwIRXJpY3Nzb24xJTAjBgNVBAMMHEVyaWNzc29uIE5MIElu ZGl2aWR1YWwgQ0EgdjMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDs8t8AALhQ8qe7 2FS3xpP348GqO9TDRjS0s85eQ7Y0LTLZdmSz2cl+lYqs0zfSTm+7meisbhkqUXkL7fFzoe4iIZCh /VuYUaW407CZlDCXes4n4TqTSuoklN6uOPhY7EC9ZVbXILlLhRummTdDdxhVW4Leo0awEhfLf98M vWxzwCHzMj8m6YOmNjx+f9TcJE3qaA0piuvSxlfpVdiCulPTlmsmV2RSBSAwqBshZYRcQBIDfqmd vkaoP9EzNKAh7yjthC0hpgHZyZMIs0eNo4v2PUmE0rhu+Zs0nujnwhljPA2/8b8v9tGixD1zbtT7 zoM2Ot1menJpFp4zJVSfdKVgtoWqg5t2H/E0XY1LwJez89W07nscEocyBmpC+zJAmKxKhzEWqIyP 1UrZaEIFu+hO+s0Nm8sOUMa4TlG4rAUikc5U5TmUIGBRQGxulYhfAzqSYf8oLUMLky1DOa9eRu3s p0FdQDEzQlnF/h1L4AK1MOkX1vS+fLgOvBo5LRU1fLPUZQ7FKrDXC6nl2ldvEtljHWstGBmqv25a EvAA+yrrplCh/kYvSBjvZibz9Obbwx4yqS77/NHN1iyZyVP2s52B2BLdvo4yhzk6nRk8S/8zHaUU kBUrrvijPDaGK5FNVSaioGvkC7IKioITKffYLtT9XuirKrHlh3VzkazG46pAVwIDAQABo4IBuDCC AbQwgYoGCCsGAQUFBwEBBH4wfDAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AudHJ1c3QudGVsaWFz b25lcmEuY29tMEsGCCsGAQUFBzAChj9odHRwOi8vcmVwb3NpdG9yeS50cnVzdC50ZWxpYXNvbmVy YS5jb20vdGVsaWFzb25lcmFyb290Y2F2MS5jZXIwEgYDVR0TAQH/BAgwBgEB/wIBADBVBgNVHSAE TjBMMEoGDCsGAQQBgg8CAwEBAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1 c3QudGVsaWFzb25lcmEuY29tL0NQUzBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLTMudHJ1 c3QudGVsaWFzb25lcmEuY29tL3RlbGlhc29uZXJhcm9vdGNhdjEuY3JsMB0GA1UdJQQWMBQGCCsG AQUFBwMCBggrBgEFBQcDBDAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFBx7GZ6XnHasID3Y3OOR auPbLaZTMB8GA1UdIwQYMBaAFPCPWTgAs/WPmpYM1ev6e6oX6BMSMA0GCSqGSIb3DQEBCwUAA4IC AQBQWGvx1Yw7tC6rV0PIjKfDyxaanIX+NZLEGOkdQLKGW2gVLtDUJQEPRs5QtaZiObNHCZ7mmSNM Vek4lkt/0dqfVIFutVw/QkyFGwC99ZmNwXSX9z+OoMyoEBHGvw5RY6vRlZrj0uKvdASzYL4KMaB7 m3NwurNDmmNbG52suRIZ76wBOEOddRZcZiTy50ZkBqYnnl2t3D3oBX2NZCQysshUcqRdUbkS13HT CIChMuTV9W0tzPXUOJoJlJlU9nd91IikhGEOrPwfixWms+C8sF0r9qN1uJGx6ELPOiFrLfNtcMNM MbAqRHwpSLxe3wcNkJGxv9T8LswLi1UrRIQ85AKjqzBnLSsjRGgbMgJ+xKtngmvEA155JmoKfUD7 DRbP6Kp14/Y9XFbR/WuDj84bYNKXe4HdDc1P+UMYm16m2L6LkIIoRlx0A5mi+K7jewuGqzFKkaPN mJ0RLCi+4d4/47Zs3DC3PUNOxdOEEHf4kkdWOaSIuj3TQYhNv+LsgF0uijiBmaz2zUFDa2bcIkKa kDZfAFM4HoHz8K2BZRaHKWhd3dZua/tlSiqokUFX2DxmHmZ1n5HM9OiaAIXP/Zo2x10j/Yb1mM3i 0bqGahxlHYzl/QyEG/dujp3lewuVjCI0mPDkZGphvxyqp4Jo8qS94EnOqBvxOgftYug7OY9EKY+W kDGCAsowggLGAgEBMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQD DBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwDQYJYIZIAWUD BAIBBQCgggFBMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTIxMDEx MzE1NDMwNFowLwYJKoZIhvcNAQkEMSIEIAzIfC5tXTIxXLBDm8BUW23nnSXXwT+TpgegJlrhO105 MGkGCSsGAQQBgjcQBDFcMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYD VQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwawYLKoZI hvcNAQkQAgsxXKBaMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQKDAhFcmljc3NvbjElMCMGA1UEAwwc RXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MwIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEB AQUABIIBACJipOvl1bdSYFWRCAPfBEODiJNSFSv5W/9koPMCqRM9VJlBmY/A+n2pFUR1riINeZ+7 ovnSnh2rDlHZ697bXM8zIo+J53DwQNhX8NJ8iuJbnVSrhbFdVCP2Xg8+4e2YburyUaNAQlrLbPw+ Eq6C8lDLdoc5Jhjmx6e1ZAPD5GSwK3SLrXcitXM2Nb89NdPNKsuwYq9EMkA+GF/KK0lWtMq4vflh wyCIC0WrWAWCCyc67k6INMDLJDJ9HAq7Egkh9QMR+0ZYjTTqHnt414nvkzrjTAMoiTVgdXgsu738 DYVCFZX7/uY4Jpj878SiRIfoKbje86Ql8RgXKJL2HsGYUEkAAAAAAAA= --=-ZLw2sua0TSP64/Lk82Ua-- From nobody Wed Jan 13 08:03:53 2021 Return-Path: X-Original-To: tram@ietfa.amsl.com Delivered-To: tram@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B8683A1310 for ; Wed, 13 Jan 2021 08:03:45 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.35 X-Spam-Level: X-Spam-Status: No, score=-2.35 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Da2vCmLevYcV for ; Wed, 13 Jan 2021 08:03:42 -0800 (PST) Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-eopbgr140081.outbound.protection.outlook.com [40.107.14.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4932E3A129C for ; Wed, 13 Jan 2021 08:03:27 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Ejhkv1caB2V+Y887UQUeD4xPUNn+9m+XfXJDf2gK4wsb2RkzU+1yUPhshVFHplA5CxNX5JCoJtSajcd+rBoHnRU+GlQOe7TR2C/3FxVHNczUK6ijVkz0e5x2sp08YLsZT1vD0sCRW3HV5iR5VyWYpMzHlp6jK8MjT+SeG6k+YC8z33V7OM5pA/tuOhpcdaKu45ODY4YOR1AvaYOe74qmeYi7kb6pDmikK/n2KFUx7TM6m2umRWvn7QgvwMT4nlSdZO02nUGWpbNVImxErd67BYobQm3SwvPtW3QOImUHFjnsjgRyeNSfoX1ISU43ZAn8hV7oAEBfZ8Ewq+ExqaHOHA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=sIf89OSBjqfGf4q4HWJGp1YAVI4vZP8k5VY7dSNl418=; b=VvOuUHGbbpns+nmllBMRyBGlWEpOCKyB5ku3CtVOrDZWz2hwAk4jH58sq2ewn0sy2M76ggQNYslmVsqLDutOpigMaGYCWl4lVTpkjVwTq8wI8+VD/12GxeBffsMp2VGH7dI4WB6T8Av1RtJJZpk35KCHlarByjH8QBnVbVijUhssfTkWGQztDTl/MkV7+0cz05e83M6qXwi6YdPlQd5qcHrwg4J3UDNmGEBGvBl8w3qtjPea4gIdWbga4LcQhABTCH/zvN8jG/RMvnaBdaJNOT7igoc0fyjtai7Sh2KNbx0/r/1XD/Lcnc752AeHExJOb7F+bjXc4SQ49PzrzPjaKg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=sIf89OSBjqfGf4q4HWJGp1YAVI4vZP8k5VY7dSNl418=; b=YBpjEb440MFXiUvgW3ZqAsPTBuLbrZq7IzetblGT95u6gzP11nOqHDd6DcKMuaaM3dqiRLYTsFloGf+CMBCUIwPzbDunLVa6pAoTXEg5kdjscnN1G+8sbzrfnVMc+VoK+6KJ1MtlJoLebBv0SQJmJFtyFaxgS/YIPKUaOt0GjKg= Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com (2603:10a6:7:8e::14) by HE1PR07MB3097.eurprd07.prod.outlook.com (2603:10a6:7:32::31) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3763.9; Wed, 13 Jan 2021 16:03:24 +0000 Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace]) by HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace%6]) with mapi id 15.20.3763.009; Wed, 13 Jan 2021 16:03:24 +0000 From: Magnus Westerlund To: "justin@uberti.name" , "magnus.westerlund=40ericsson.com@dmarc.ietf.org" CC: Gonzalo Camarillo , "tram@ietf.org" , "sperreault@jive.com" , "praspati@cisco.com" , "rmohanr@cisco.com" , "deadbeef@google.com" , "tireddy@cisco.com" Thread-Topic: [tram] [Technical Errata Reported] RFC7635 (5059) Thread-Index: AQHS9i9Y0HUi33cifkeKgW+G6emAKql9fXuAgAGrDICArnCqAIAABasA Date: Wed, 13 Jan 2021 16:03:23 +0000 Message-ID: <07187be2caa3bab23da10d0d512600515e5b4541.camel@ericsson.com> References: <20170705232644.C7CE5B80D80@rfc-editor.org> <7d6bcb0becf3790f00cc478af9eeacdc07180e32.camel@ericsson.com> <2e7b5e427f582c2884390b84553640a27e502a58.camel@ericsson.com> In-Reply-To: <2e7b5e427f582c2884390b84553640a27e502a58.camel@ericsson.com> Accept-Language: sv-SE, en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-mailer: Evolution 3.28.5-0ubuntu0.18.04.2 authentication-results: uberti.name; dkim=none (message not signed) header.d=none;uberti.name; dmarc=none action=none header.from=ericsson.com; x-originating-ip: [192.176.1.80] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 4a2f39e5-5624-4ce2-9f2b-08d8b7dcc194 x-ms-traffictypediagnostic: HE1PR07MB3097: x-ms-exchange-transport-forked: True x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:1284; x-ms-exchange-senderadcheck: 1 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0702MB3772.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(346002)(136003)(39860400002)(396003)(366004)(26005)(66616009)(186003)(66476007)(66556008)(83380400001)(4326008)(8676002)(2616005)(66946007)(316002)(71200400001)(966005)(53546011)(2906002)(76116006)(64756008)(66446008)(6506007)(6486002)(110136005)(6512007)(5660300002)(44832011)(36756003)(54906003)(86362001)(8936002)(99936003)(478600001)(99106002); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata: =?utf-8?B?emZvenVGcHA3T2J6aEtDbjRJT0c1TEt3LzY4NWhRaEM3aWc5ODFGbnJ4UEZk?= =?utf-8?B?UVM2QXA5YUVleGtZeTJ1elhnNzFncXVpRHp6Y0VoRm5VVW1ENW9RYTJvREdj?= =?utf-8?B?R1VQdlpwU1V0Q2grR3hBZTA5UFRKRlBNTTZaUUY1UW03R3VwSzlXUHRwZ2tK?= =?utf-8?B?OU0rNlNneGV2NWwwcExBeXpCT3pHUS9RTVdvNENkelpDSmdiTk9pdGZZaHFm?= =?utf-8?B?d2xleGRxT3JtUVRjM0xYOTJNSWgrL2U5Z2w0anBLY0Ztd0g0UlV1bCtlaERm?= =?utf-8?B?cHVKTFJUakRSUjhJRHJoY3dlNm1WYnBUMXlucFA0WGJQbWJROFJmZmFtcUdV?= =?utf-8?B?eURUZS9JZ00renpqekdIRHhaOHNjbEF5SWNKeVhFWk81SURqZTBtem8zd2JC?= =?utf-8?B?dCtxeldUU1pyVi9OZXJzbmYwTW5UNUZBZm8zeGt2cmJlb2p3SG1xdUVEMnV1?= =?utf-8?B?ZmJxMllDUHVYK0tXZ2VYMHo5K0dvQW1tRzRRNkQyK1JCejRXNU9hdXRnaWFI?= =?utf-8?B?ZlJTUUNzaHhkQkpKTDAyWjdxam0rdEpjbHZCYy81MzNIQm1lUUY1QnJLYllm?= =?utf-8?B?c0E4eHl3WXMzWWZkNThSYUR1NUpCZHZEb05MbkpiblFYRmJJYUhDRFdMRTA5?= =?utf-8?B?RFVjWXBaT0JkUUhrTmRpL1dkTjB2QkY2L1hQRkFnekY3eUU2aXJReDFmdCs4?= =?utf-8?B?anFUYTZzYVlpakxDaEFxSTFRaytXTDJpZ2RwR2YxYVIrUWErS0dDQWgyQ2N2?= =?utf-8?B?MmVhekNGVFhpMjNIU29GeGo1aU8weE5lQXpxWk9MdlJXS2grelIzMXRFWlRZ?= =?utf-8?B?dE5TOUdyYnYra2dWYUc2dEJQYXJyK2pzQW5RN1Q1bStoaEJQUTZWS2tDTnZS?= =?utf-8?B?VmdncDBnZkJTY1c5Z1ZzMVNBWWhKUW5MME1xQk1WYTlYUU8zS0JuRU9Ndzdh?= =?utf-8?B?RXJuNE8wQUxLYm5MVHJUOStZSWlHN3VSbGdnVGJoQ21HMGlCMEhqSnh0ZzVZ?= =?utf-8?B?ZHIwZE5xRzk5Mm1yS1U3eXVHYnliK0dxNTR0T21RRkNXQTg0OWFzK3pYSUkr?= =?utf-8?B?SkdGSVR0ekhqM1U0ZlpUeC9lcXp5NEgwQWE5UkMyVVpoSFlmU2YyMmgvMDN3?= =?utf-8?B?N1RYenNPSEdDTWVVV1BXQXNSdEJPaXhuMHIwb2E5ZHNUeXdnbXdnN3JzSmZQ?= =?utf-8?B?QVhFWnd4MnpUVzZZbDduRUVlM1pkUndrSmhMb29TV1Q4YzE5UjhuOGZHZ2Ry?= =?utf-8?B?dHU0REgxQit4S0hlcXBYaUNDMWc2WE9JLzlqd2NhRHBsWnRSUkpmNlduRUlv?= =?utf-8?Q?nAkc3DYADNDYa+jzOt7R8tD7b6pSp/z2gm?= Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-02jS1iaVa8wFhdTn/R/g" MIME-Version: 1.0 X-OriginatorOrg: ericsson.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: HE1PR0702MB3772.eurprd07.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 4a2f39e5-5624-4ce2-9f2b-08d8b7dcc194 X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jan 2021 16:03:23.9727 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: hqairXbhOxfyi2fHN0voB90GckIInEaIYYaDHEsCcyIiXxMMIKchl6yuJKDLbE70CAavCT7FEuYuTqX7pG8b0OvQ/f8LO2BCCWBFq91Ul+0= X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3097 Archived-At: Subject: Re: [tram] [Technical Errata Reported] RFC7635 (5059) X-BeenThere: tram@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Jan 2021 16:03:52 -0000 --=-02jS1iaVa8wFhdTn/R/g Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi, Having read this together with Errata 5060 I think there is an issue with t= his errata. And this issue could result in an interoperability issue.=20 So yes, HMAC function is specified so that it can use any key-length. Howev= er, to ensure interoperability it is clear that both message orignator and rece= iver need to use the same key and the same number of bits as input. The proposed errata does not ensure that the same number of bits are used and I believe = could cause an issue between a SHA-1 based (Pre RFC 8489 implementation) and one = that would follow this errata. This as one can interpret the origianl text to sa= y that one shall truncate the key to 160-bits prior to input rather than givi= ng the full key to HMAC.=20 With the transition to SHA-256 based HHAC per RFC 8489 I think this documen= t needs further clarification. We are now going outside of the permit of Erra= ta. Cheers Magnus On Wed, 2021-01-13 at 15:43 +0000, Magnus Westerlund wrote: > Hi, >=20 > I would like to conclude on this. Can I verify it? >=20 > Cheers >=20 > Magnus=20 >=20 > On Thu, 2020-09-24 at 08:50 -0700, Justin Uberti wrote: > > This looks correct to me at first glance. Will re-read in context and g= ive a > > definitive answer. > >=20 > > On Wed, Sep 23, 2020 at 7:22 AM Magnus Westerlund < > > magnus.westerlund@ericsson.com> wrote: > > > Hi, > > >=20 > > > I would appreciate some response regarding this Errata. Should it be > > > verified, > > > held for document update, or rejected?=20 > > >=20 > > > Cheers > > >=20 > > > Magnus Westerlund > > >=20 > > > On Wed, 2017-07-05 at 16:26 -0700, RFC Errata System wrote: > > > > The following errata report has been submitted for RFC7635, > > > > "Session Traversal Utilities for NAT (STUN) Extension for Third-Par= ty > > > > Authorization". > > > >=20 > > > > -------------------------------------- > > > > You may review the report below and at: > > > >=20 https://protect2.fireeye.com/v1/url?k=3Dd9fdc0e8-8666f9ac-d9fd8073-861d41ab= ace8-c128c9abae0b391d&q=3D1&e=3Dda3ac0e2-12bc-4932-b319-61abe19ea2aa&u=3Dht= tp%3A%2F%2Fwww.rfc-editor.org%2Ferrata%2Feid5059 > > > >=20 > > > > -------------------------------------- > > > > Type: Technical > > > > Reported by: Taylor Brandstetter > > > >=20 > > > > Section: 6.2 > > > >=20 > > > > Original Text > > > > ------------- > > > > key_length: Length of the session key in octets. The key lengt= h of > > > > 160 bits MUST be supported (i.e., only the 160-bit key is use= d by > > > > HMAC-SHA-1 for message integrity of STUN messages). The key > > > > length facilitates the hash agility plan discussed in Section= 16.3 > > > > of [RFC5389]. > > > >=20 > > > >=20 > > > > Corrected Text > > > > -------------- > > > > key_length: Length of the session key in octets. > > > >=20 > > > > Notes > > > > ----- > > > > RFC2104 section 2 states: > > > >=20 > > > > The authentication key K can be of any length up to B, the > > > > block length of the hash function. Applications that use keys l= onger > > > > than B bytes will first hash the key using H and then use the > > > > resultant L byte string as the actual key to HMAC. > > > >=20 > > > > Meaning any key length is allowed. The fact that the hash output is= 20 > > >=20 > > > bytes > > > > doesn't mean the key needs to be 20 bytes as well. > > > >=20 > > > > Instructions: > > > > ------------- > > > > This erratum is currently posted as "Reported". If necessary, pleas= e > > > > use "Reply All" to discuss whether it should be verified or > > > > rejected. When a decision is reached, the verifying party =20 > > > > can log in to change the status and edit the report, if necessary.= =20 > > > >=20 > > > > -------------------------------------- > > > > RFC7635 (draft-ietf-tram-turn-third-party-authz-16) > > > > -------------------------------------- > > > > Title : Session Traversal Utilities for NAT (STUN) > > > > Extension > > >=20 > > > for > > > > Third-Party Authorization > > > > Publication Date : August 2015 > > > > Author(s) : T. Reddy, P. Patil, R. Ravindranath, J. Ubert= i > > > > Category : PROPOSED STANDARD > > > > Source : TURN Revised and Modernized > > > > Area : Transport > > > > Stream : IETF > > > > Verifying Party : IESG > > > >=20 > > > > _______________________________________________ > > > > tram mailing list > > > > tram@ietf.org > > > > https://www.ietf.org/mailman/listinfo/tram >=20 > _______________________________________________ > tram mailing list > tram@ietf.org > https://www.ietf.org/mailman/listinfo/tram --=-02jS1iaVa8wFhdTn/R/g Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Disposition: attachment; filename="smime.p7s" Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCErYw ggX0MIID3KADAgECAg8BdlE9InYZOYLl1zGep4IwDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMC U0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENB IHYzMB4XDTIwMTIxMTA5NTg0OVoXDTIzMTIxMjA5NTg0OVowXjERMA8GA1UECgwIRXJpY3Nzb24x GjAYBgNVBAMMEU1hZ251cyBXZXN0ZXJsdW5kMS0wKwYJKoZIhvcNAQkBFh5tYWdudXMud2VzdGVy bHVuZEBlcmljc3Nvbi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIT6U9ddUp UCEryIA27xtF8WsRAIfc5jBavfu0OGDmwITYYRD2PaMEdEK+I4dqz0f6xcCrDnBk2Xj+JxjhaRkq TAifJZima9WE2JoI/uq8UsS2HJWlhspAwKx1osARgtRiMjRZZyyfiRZLbgXHWYpnTt3i9QsuX/uo 9oZFWpDCbZee4Il9uldsUcuBLZx2PyZvBvC8KCUaBXsZX6bwV7hssRVn+BgFCuEievJMx0khTRVh i9goObxu5Jl44RtwbZNYB1UE1IzRWEZw+b3cEvXiQjPl2e3ytMZSmhy+IaKmjxES6ODiuh51KAcm PZfZIaX2djmD76YGi+ETmnb8Xm3dAgMBAAGjggHEMIIBwDAfBgNVHSMEGDAWgBQcexmel5x2rCA9 2NzjkWrj2y2mUzAdBgNVHQ4EFgQUICO/88T0EQvEUm5+HVt/d9Mm+Z8wDgYDVR0PAQH/BAQDAgWg MFUGA1UdIAROMEwwSgYMKwYBBAGCDwIDAQESMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vcmVwb3Np dG9yeS50cnVzdC50ZWxpYXNvbmVyYS5jb20vQ1BTMCkGA1UdEQQiMCCBHm1hZ251cy53ZXN0ZXJs dW5kQGVyaWNzc29uLmNvbTBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsLnRydXN0LnRlbGlh LmNvbS9lcmljc3Nvbm5saW5kaXZpZHVhbGNhdjMuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggr BgEFBQcDAjCBggYIKwYBBQUHAQEEdjB0MCgGCCsGAQUFBzABhhxodHRwOi8vb2NzcDIudHJ1c3Qu dGVsaWEuY29tMEgGCCsGAQUFBzAChjxodHRwOi8vY2EudHJ1c3QudGVsaWFzb25lcmEuY29tL2Vy aWNzc29ubmxpbmRpdmlkdWFsY2F2My5jZXIwDQYJKoZIhvcNAQELBQADggIBANRZXQy+lUW97uaL uApOixnDKLpUoz+N/5Owd/9illmbxQDEY1/pPs4KJSvw88p+F3bmOzb+fLUNa6Mi/2Tw83FzEVmO 3RqzKtca+I9GDpRQ8oWL7hrUPJoNacidSZLmAP4L4kwHIhvGNX4f1c/oB4fAkP/xZsAAxYi7nKxd XA2n/KMWNkezyB9BSsD8ZOS4pWU8UaZjd5r0fzqM5zQbU4EPqHa8jFMSMz1UrYXPKKxl6E4WA3TE w1oLjcli0NWGQHyQ+3Kh7fe6zPoXfLd/2EQjr2o76ssgoqd2V1Mx5TRHdUyxjIMPEOVYpvcerNUB hEBkaOQ9FugYcMhMc8BF7nQZq+hsL/T7idg4gE2sEfNdK9RBf/EVH10GMrmbadqTycztD1gUL3dV Qxik4TCMxIctt9XqtTGHaMewZLQAXp/sHWlU/vmz9brcuzYQ9YVd5hTendGMUyGhWPV/KvxouKPK zdrGeEqUQCeBwWgQASQNOrpTzMJwZAV/Ww3ExQCjHvflvUQzVuU0sC6AEVkgqMATIXS6h6rjLL31 pjt2JV84XRjF5afYkcRIHTsrtcoWeFtOu/GpZNhtq+tde0QvnkSsjczMWU0gKk0hXBmXwEGUimuD Vq/Wvr0mr18d9mKA6xPNQOfn/VL5CWXa11OtOjj8WsTy3XUpyJ6dc9Z72TmKMIIF9DCCA9ygAwIB AgIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQK DAhFcmljc3NvbjElMCMGA1UEAwwcRXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MzAeFw0yMDEy MTEwOTU4NDlaFw0yMzEyMTIwOTU4NDlaMF4xETAPBgNVBAoMCEVyaWNzc29uMRowGAYDVQQDDBFN YWdudXMgV2VzdGVybHVuZDEtMCsGCSqGSIb3DQEJARYebWFnbnVzLndlc3Rlcmx1bmRAZXJpY3Nz b24uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiE+lPXXVKVAhK8iANu8bRfFr EQCH3OYwWr37tDhg5sCE2GEQ9j2jBHRCviOHas9H+sXAqw5wZNl4/icY4WkZKkwInyWYpmvVhNia CP7qvFLEthyVpYbKQMCsdaLAEYLUYjI0WWcsn4kWS24Fx1mKZ07d4vULLl/7qPaGRVqQwm2XnuCJ fbpXbFHLgS2cdj8mbwbwvCglGgV7GV+m8Fe4bLEVZ/gYBQrhInryTMdJIU0VYYvYKDm8buSZeOEb cG2TWAdVBNSM0VhGcPm93BL14kIz5dnt8rTGUpocviGipo8REujg4roedSgHJj2X2SGl9nY5g++m BovhE5p2/F5t3QIDAQABo4IBxDCCAcAwHwYDVR0jBBgwFoAUHHsZnpecdqwgPdjc45Fq49stplMw HQYDVR0OBBYEFCAjv/PE9BELxFJufh1bf3fTJvmfMA4GA1UdDwEB/wQEAwIFoDBVBgNVHSAETjBM MEoGDCsGAQQBgg8CAwEBEjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1c3Qu dGVsaWFzb25lcmEuY29tL0NQUzApBgNVHREEIjAggR5tYWdudXMud2VzdGVybHVuZEBlcmljc3Nv bi5jb20wSAYDVR0fBEEwPzA9oDugOYY3aHR0cDovL2NybC50cnVzdC50ZWxpYS5jb20vZXJpY3Nz b25ubGluZGl2aWR1YWxjYXYzLmNybDAdBgNVHSUEFjAUBggrBgEFBQcDBAYIKwYBBQUHAwIwgYIG CCsGAQUFBwEBBHYwdDAoBggrBgEFBQcwAYYcaHR0cDovL29jc3AyLnRydXN0LnRlbGlhLmNvbTBI BggrBgEFBQcwAoY8aHR0cDovL2NhLnRydXN0LnRlbGlhc29uZXJhLmNvbS9lcmljc3Nvbm5saW5k aXZpZHVhbGNhdjMuY2VyMA0GCSqGSIb3DQEBCwUAA4ICAQDUWV0MvpVFve7mi7gKTosZwyi6VKM/ jf+TsHf/YpZZm8UAxGNf6T7OCiUr8PPKfhd25js2/ny1DWujIv9k8PNxcxFZjt0asyrXGviPRg6U UPKFi+4a1DyaDWnInUmS5gD+C+JMByIbxjV+H9XP6AeHwJD/8WbAAMWIu5ysXVwNp/yjFjZHs8gf QUrA/GTkuKVlPFGmY3ea9H86jOc0G1OBD6h2vIxTEjM9VK2FzyisZehOFgN0xMNaC43JYtDVhkB8 kPtyoe33usz6F3y3f9hEI69qO+rLIKKndldTMeU0R3VMsYyDDxDlWKb3HqzVAYRAZGjkPRboGHDI THPARe50GavobC/0+4nYOIBNrBHzXSvUQX/xFR9dBjK5m2nak8nM7Q9YFC93VUMYpOEwjMSHLbfV 6rUxh2jHsGS0AF6f7B1pVP75s/W63Ls2EPWFXeYU3p3RjFMhoVj1fyr8aLijys3axnhKlEAngcFo EAEkDTq6U8zCcGQFf1sNxMUAox735b1EM1blNLAugBFZIKjAEyF0uoeq4yy99aY7diVfOF0YxeWn 2JHESB07K7XKFnhbTrvxqWTYbavrXXtEL55ErI3MzFlNICpNIVwZl8BBlIprg1av1r69Jq9fHfZi gOsTzUDn5/1S+Qll2tdTrTo4/FrE8t11KcienXPWe9k5ijCCBsIwggSqoAMCAQICEFO4foPhnJko k7CbSRzsuOswDQYJKoZIhvcNAQELBQAwNzEUMBIGA1UECgwLVGVsaWFTb25lcmExHzAdBgNVBAMM FlRlbGlhU29uZXJhIFJvb3QgQ0EgdjEwHhcNMTUxMDI3MTIxNjQ2WhcNMjUxMDI3MTIxNjQ2WjBH MQswCQYDVQQGEwJTRTERMA8GA1UECgwIRXJpY3Nzb24xJTAjBgNVBAMMHEVyaWNzc29uIE5MIElu ZGl2aWR1YWwgQ0EgdjMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDs8t8AALhQ8qe7 2FS3xpP348GqO9TDRjS0s85eQ7Y0LTLZdmSz2cl+lYqs0zfSTm+7meisbhkqUXkL7fFzoe4iIZCh /VuYUaW407CZlDCXes4n4TqTSuoklN6uOPhY7EC9ZVbXILlLhRummTdDdxhVW4Leo0awEhfLf98M vWxzwCHzMj8m6YOmNjx+f9TcJE3qaA0piuvSxlfpVdiCulPTlmsmV2RSBSAwqBshZYRcQBIDfqmd vkaoP9EzNKAh7yjthC0hpgHZyZMIs0eNo4v2PUmE0rhu+Zs0nujnwhljPA2/8b8v9tGixD1zbtT7 zoM2Ot1menJpFp4zJVSfdKVgtoWqg5t2H/E0XY1LwJez89W07nscEocyBmpC+zJAmKxKhzEWqIyP 1UrZaEIFu+hO+s0Nm8sOUMa4TlG4rAUikc5U5TmUIGBRQGxulYhfAzqSYf8oLUMLky1DOa9eRu3s p0FdQDEzQlnF/h1L4AK1MOkX1vS+fLgOvBo5LRU1fLPUZQ7FKrDXC6nl2ldvEtljHWstGBmqv25a EvAA+yrrplCh/kYvSBjvZibz9Obbwx4yqS77/NHN1iyZyVP2s52B2BLdvo4yhzk6nRk8S/8zHaUU kBUrrvijPDaGK5FNVSaioGvkC7IKioITKffYLtT9XuirKrHlh3VzkazG46pAVwIDAQABo4IBuDCC AbQwgYoGCCsGAQUFBwEBBH4wfDAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AudHJ1c3QudGVsaWFz b25lcmEuY29tMEsGCCsGAQUFBzAChj9odHRwOi8vcmVwb3NpdG9yeS50cnVzdC50ZWxpYXNvbmVy YS5jb20vdGVsaWFzb25lcmFyb290Y2F2MS5jZXIwEgYDVR0TAQH/BAgwBgEB/wIBADBVBgNVHSAE TjBMMEoGDCsGAQQBgg8CAwEBAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1 c3QudGVsaWFzb25lcmEuY29tL0NQUzBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLTMudHJ1 c3QudGVsaWFzb25lcmEuY29tL3RlbGlhc29uZXJhcm9vdGNhdjEuY3JsMB0GA1UdJQQWMBQGCCsG AQUFBwMCBggrBgEFBQcDBDAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFBx7GZ6XnHasID3Y3OOR auPbLaZTMB8GA1UdIwQYMBaAFPCPWTgAs/WPmpYM1ev6e6oX6BMSMA0GCSqGSIb3DQEBCwUAA4IC AQBQWGvx1Yw7tC6rV0PIjKfDyxaanIX+NZLEGOkdQLKGW2gVLtDUJQEPRs5QtaZiObNHCZ7mmSNM Vek4lkt/0dqfVIFutVw/QkyFGwC99ZmNwXSX9z+OoMyoEBHGvw5RY6vRlZrj0uKvdASzYL4KMaB7 m3NwurNDmmNbG52suRIZ76wBOEOddRZcZiTy50ZkBqYnnl2t3D3oBX2NZCQysshUcqRdUbkS13HT CIChMuTV9W0tzPXUOJoJlJlU9nd91IikhGEOrPwfixWms+C8sF0r9qN1uJGx6ELPOiFrLfNtcMNM MbAqRHwpSLxe3wcNkJGxv9T8LswLi1UrRIQ85AKjqzBnLSsjRGgbMgJ+xKtngmvEA155JmoKfUD7 DRbP6Kp14/Y9XFbR/WuDj84bYNKXe4HdDc1P+UMYm16m2L6LkIIoRlx0A5mi+K7jewuGqzFKkaPN mJ0RLCi+4d4/47Zs3DC3PUNOxdOEEHf4kkdWOaSIuj3TQYhNv+LsgF0uijiBmaz2zUFDa2bcIkKa kDZfAFM4HoHz8K2BZRaHKWhd3dZua/tlSiqokUFX2DxmHmZ1n5HM9OiaAIXP/Zo2x10j/Yb1mM3i 0bqGahxlHYzl/QyEG/dujp3lewuVjCI0mPDkZGphvxyqp4Jo8qS94EnOqBvxOgftYug7OY9EKY+W kDGCAsowggLGAgEBMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQD DBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwDQYJYIZIAWUD BAIBBQCgggFBMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTIxMDEx MzE2MDMyMlowLwYJKoZIhvcNAQkEMSIEIDyaCiATlFK6yDgEB3TkdIiX7vNmeLtUW6ZhUFHKvTFr MGkGCSsGAQQBgjcQBDFcMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYD VQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwawYLKoZI hvcNAQkQAgsxXKBaMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQKDAhFcmljc3NvbjElMCMGA1UEAwwc RXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MwIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEB AQUABIIBAAHv/XgAx7uMBkrLAvvDy1rFO3Ea0t5XqgONsOwxLQQiIkkldzOkUYVFOMNtlE2KHFpS m+N5ZVPQPEicpuXU6hEJMP8P9Uo0vdjrA1OkPOmQuiD+hhGaZmtSrw1vlMC2v+Cp2aqOgRZ/5rHs wWpJAvMtg4XWwtH2znMXVxIWQ4PMTSOwTii1F/JRRG31hJze4WMnj+6QNeGISe70zHxdrTBnfxnu AzctLvQYJpsoV8D6978rb+xYurxyGFiUy6wbJx0pruLXgZ7MMU+hTLOpMxz5PNC5ayjFRYrnuaFM JESXjvTUYq1xTCo2xQZ7LOOoAmYeftI51p+8/ZSoOn8AwbQAAAAAAAA= --=-02jS1iaVa8wFhdTn/R/g-- From nobody Wed Jan 13 08:07:02 2021 Return-Path: X-Original-To: tram@ietfa.amsl.com Delivered-To: tram@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3A9AD3A1181 for ; Wed, 13 Jan 2021 08:07:01 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.35 X-Spam-Level: X-Spam-Status: No, score=-2.35 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0ya1DW3tFhyW for ; Wed, 13 Jan 2021 08:06:58 -0800 (PST) Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-he1eur04on0619.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe0d::619]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3D9823A1180 for ; Wed, 13 Jan 2021 08:06:58 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=FD3K+IXcpEwuU+CNOVK9CKZpsFBrcmxrp3ZHx7wNWJFgDSJCx9zEoub6pfinKYS+wwhXE0aMIniATspTJIaEQbuvtqe6u+Q9ZbOpNz4CQcFlyl6AnZ8Z/j5uRoDEmygH8/KUXyAOf/n3h/cg8DkXE109Yy8RNDD5lYg8MtwHZB28I198quc+rlAavv1yB/VCSklD0hEs+RN9gARtK2HqlmvKb7SlnljyoinLnlRjhsvl0HVRdN0Vj34Jql5Rnt4tarZCw6PRiixiKm4sM/CTxEGWTjowOV+cMlaWUvG4mju6SRPOpIWHsUEGaHnYYG8p1EUltY+cnfq32H3/Svdbkw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=RsPg6F0g1rQlJojZKg5+Z/DKGGKOANuBHY0XA96eWzU=; b=eJ6df7ISdBIKPQc3yfL9oPQdQPkRqpI/gzI9vkRd12TVUxgTVsJE72trektohWiI5DN+L9Njb7BkRdVFrgzMlTn5NgSsf/09tKzIuyEp98Jgq5XnhhybreVLUTPyQHwn/SUsvA1FN5gdYMuHLuxEV6B/2QXliijCnCZHhBB2G0dFFmNTsEl1hstg3RlOukyzuAzmzW+wR4VcZXfpioDlBRpcOYAHmutRNwoE2L2vzwQdwWACGsMAphJC8R39GIerLoe8sXbgI5w2bhVvGbLPZd1iVXoiA01Op0ANluGE4jWorbb70+tcsXiUCHDxpkWMOn5tnHIQc5FfOiwd7Ww4LA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=RsPg6F0g1rQlJojZKg5+Z/DKGGKOANuBHY0XA96eWzU=; b=Y7oxewiGCEI7UUAGCMyE8QP/bfMEBSBHqW1O+vTbwGOgAwIqaIOK8IDZzQyMnANbloB3qmgrEjXSGDu3tMM7R5R2A/sygQbxbafyjvkJ6jofxZI/uxFtPdoKxcgjagD+dp/zCkWm6vZmJIGdjQQJDKeWvRwOgI4UJ+a0DqAcang= Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com (2603:10a6:7:8e::14) by HE1PR07MB3098.eurprd07.prod.outlook.com (2603:10a6:7:38::30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3763.9; Wed, 13 Jan 2021 16:06:41 +0000 Received: from HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace]) by HE1PR0702MB3772.eurprd07.prod.outlook.com ([fe80::8cd:496:65de:4ace%6]) with mapi id 15.20.3763.009; Wed, 13 Jan 2021 16:06:41 +0000 From: Magnus Westerlund To: "justin@uberti.name" CC: "deadbeef@google.com" , "tram@ietf.org" , "sperreault@jive.com" , "tireddy@cisco.com" , "praspati@cisco.com" , Gonzalo Camarillo , "rmohanr@cisco.com" Thread-Topic: [tram] [Technical Errata Reported] RFC7635 (5060) Thread-Index: AQHS9i9YLmhOJmR48EWZzOd55mC6Nql9faqAgAGq94CArncmgA== Date: Wed, 13 Jan 2021 16:06:41 +0000 Message-ID: <28a67fc2d953e7bcd7db16aefd3bb237af2f2b1a.camel@ericsson.com> References: <20170705233508.0F530B80DD9@rfc-editor.org> <076210c82130159ac25a2663f331cf29af0cd28d.camel@ericsson.com> In-Reply-To: Accept-Language: sv-SE, en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-mailer: Evolution 3.28.5-0ubuntu0.18.04.2 authentication-results: uberti.name; dkim=none (message not signed) header.d=none;uberti.name; dmarc=none action=none header.from=ericsson.com; x-originating-ip: [192.176.1.80] x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 93b0bd65-2c23-42a1-faad-08d8b7dd3719 x-ms-traffictypediagnostic: HE1PR07MB3098: x-ms-exchange-transport-forked: True x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:2512; x-ms-exchange-senderadcheck: 1 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0702MB3772.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(2906002)(71200400001)(4326008)(186003)(6916009)(66616009)(44832011)(53546011)(6506007)(966005)(8936002)(6486002)(36756003)(26005)(66946007)(66446008)(2616005)(83380400001)(64756008)(66476007)(66556008)(6512007)(498600001)(5660300002)(54906003)(86362001)(99936003)(76116006)(8676002)(99106002); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata: =?utf-8?B?VksxQ0prdVduQ0g2dk9FODErdTJraDNPRE5seFBqMmhQTC9EZ3ZCSDVNNy9J?= =?utf-8?B?WEdoaFJkSDhQWmdPbkJEM0JOWTFjMnBGMDRtYUUyWGcwaFdjaE45SWZEY0RC?= =?utf-8?B?d29EQ3gwOWVVWGFQbW4yREh2QU44RlpQWHk4MWU4Q3F4QW13UW53dG55d3Fr?= =?utf-8?B?WHFwY0RHUGRMOXpGSGZzWndvSnFNandIUnA1UUtrNVNwQ01YdWdHWFdqdTRF?= =?utf-8?B?RDFvd0FzQ0lkY1BYVzJZeEovcmRMN05ReWo0K3QxZkdzVEhaU1pJQS8wTFQy?= =?utf-8?B?alMxVjh1emZja0ZjZTZFQ096ampQUjBYaUdxT1hZRi9LVHhIRzRscXEvVXZm?= =?utf-8?B?cU8zeGlGVkZ6SDVBYjhhNTZGQWJhRkVYV3ZhcHRpNCtaTmNFU3lTL0sxenJ6?= =?utf-8?B?NWhRL0VzU3N4QU9LUUVWQTNLelpnamJBY2dRNjlUcUI2WE15QklGV1UzbnZp?= =?utf-8?B?Tm5vNUtXRXpQa1pPdzFSYkZCRElNSlJMK1FjQlNMOS9jbWN4ejgrenBIVG5D?= =?utf-8?B?RCtaNWd5NTJaTXI2N2ptNEhUV0NEQUdzNDgzYXdQVGQ0d0pzY0pCaklPT3la?= =?utf-8?B?aWJieWFRbmhMdDlvdnA3NktSRFNoa25XRitQbGM3SzlocnA3N0xJRGNodGo1?= =?utf-8?B?SElJNHM3c3lFY2twSHVTL01YSXpXazVXR3JNL0tPRVBmYTU4Vzl3UWZKZ0pj?= =?utf-8?B?K01hTWVpa2swbnErY1Z5elFuSjVTdG5IU2NQRE5LN3pNK2hrakZvb0pSbnBH?= =?utf-8?B?WS9DQUNvbWx1ck8zSXVqZmFrZi82TDJnZ3lYZUtSOGVjMmFWcE9jMExsZTF1?= =?utf-8?B?SEhQdmR6b0I4UUxzODRVOFBDb0FlZFAwRTVHSU9tN2xBNFBGNVdNc2hqSHdn?= =?utf-8?B?T3lMdUFlcWd3K3I0aVc4ejR5Tzc5WEtnN2ZUUzVyYWZUNmU2dytjM2FWYk1X?= =?utf-8?B?NjgxZW5maHBwZlZYbk0wSjJnY0JsZm0xdFJydXJhZnI2T3hJRVhxUmd6MWZS?= =?utf-8?B?T0x2QTZLbmRPVVUzQ1B2aXUvQnViSkIrbU9mY2pabWRXaW5TVjd1dUF4Tm9R?= =?utf-8?B?aVBnNmJTaUQ0ZFJnbjkyRU1mNDhBTk1qQlBuRDZGQ0pib1BFbU9hVEdvUVpm?= =?utf-8?B?U3E0azNHMmVDVjZpRThQNnJZUTFWQUFBcjlPLzhTa2E4Mk9aMHI2KzRDVGZJ?= =?utf-8?B?ZUpzMjJLLzhLbDB1Mkh4TWtiT2F4bHd0dnNZMld0bGc5NUtBelVNcFZJZE9v?= =?utf-8?B?a3I5eGZ2aUExdTN2MVM4eFpNYlkwWkRKaVJIOGd3ckFlN2RTSFRBNnJIQ1pj?= =?utf-8?Q?vReiGUtnB8QErCijtfNaEfRYf/XPW6IVXs?= Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-Fz0mV2n2rWibDCSvLNk/" MIME-Version: 1.0 X-OriginatorOrg: ericsson.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: HE1PR0702MB3772.eurprd07.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 93b0bd65-2c23-42a1-faad-08d8b7dd3719 X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jan 2021 16:06:41.1450 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: ADQ0Yksp1qNYkOmEZTgqvPttiBCf5Q4sGaFmjs4RLjHeFg5T631A4fWpzBAkHBziOHCGhLOES6g9izfZ5+DTrvaYTjbO8b6BvsBSmvLUfjA= X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3098 Archived-At: Subject: Re: [tram] [Technical Errata Reported] RFC7635 (5060) X-BeenThere: tram@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Jan 2021 16:07:01 -0000 --=-Fz0mV2n2rWibDCSvLNk/ Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi, Per discussion for Errata 5059 I think there is an interoperability issue h= ere due to the change from an implied truncation to using a longer than 160-bit= s input that will produce different hashing results.=20 I will also note that Appendix B is further suspect as the referenced forma= t has not yet been published and appears to have made no progress since 2019.=20 Thus, I am leaning towards Hold for document update for this one.=20 Cheers Magnus On Thu, 2020-09-24 at 08:51 -0700, Justin Uberti wrote: > This looks correct to me at first glance. Will re-read in context and giv= e a > definitive answer. >=20 > On Wed, Sep 23, 2020 at 7:22 AM Magnus Westerlund < > magnus.westerlund@ericsson.com> wrote: > > Hi, > >=20 > > I would appreciate some response regarding this Errata. Should it be > > verified, > > held for document update, or rejected?=20 > >=20 > > Cheers > >=20 > > Magnus Westerlund > >=20 > > On Wed, 2017-07-05 at 16:35 -0700, RFC Errata System wrote: > > > The following errata report has been submitted for RFC7635, > > > "Session Traversal Utilities for NAT (STUN) Extension for Third-Party > > > Authorization". > > >=20 > > > -------------------------------------- > > > You may review the report below and at: > > > http://www.rfc-editor.org/errata/eid5060 > > >=20 > > > -------------------------------------- > > > Type: Technical > > > Reported by: Taylor Brandstetter > > >=20 > > > Section: Appendix B > > >=20 > > > Original Text > > > ------------- > > > [STUN] supports hash agility and accomplishes this agility by > > > computing message integrity using both HMAC-SHA-1 and > > > HMAC-SHA-256-128. The client signals the algorithm supported by i= t > > > to the authorization server in the 'alg' parameter defined in > > > [POP-KEY-DIST]. The authorization server determines the length of > > > the mac_key based on the HMAC algorithm conveyed by the client. I= f > > > the client supports both HMAC-SHA-1 and HMAC-SHA-256-128, then it > > > signals HMAC-SHA-256-128 to the authorization server, gets a 256-b= it > > > key from the authorization server, and calculates a 160-bit key fo= r > > > HMAC-SHA-1 using SHA1 and taking the 256-bit key as input. > > >=20 > > > Corrected Text > > > -------------- > > > [STUN] supports hash agility and accomplishes this agility by > > > computing message integrity using both HMAC-SHA-1 and > > > HMAC-SHA-256-128. The client signals the algorithm supported by i= t > > > to the authorization server in the 'alg' parameter defined in > > > [POP-KEY-DIST]. The authorization server determines the length of > > > the mac_key based on the HMAC algorithm conveyed by the client. I= f > > > the client supports both HMAC-SHA-1 and HMAC-SHA-256-128, then it > > > signals HMAC-SHA-256-128 to the authorization server, and gets a > > > 256-bit key from the authorization server, which can be used to > > > compute both the HMAC-SHA-1 and HMAC-SHA-256-128 hashes. If the > > > client only supports HMAC-SHA-1, the authorization server could > > > return a 160-bit key, as keys longer than the HMAC-SHA-1 output > > > size of 160-bits would not significantly increase the function's > > > strength. > > >=20 > > > Notes > > > ----- > > > The SHA-1 block size is 512 bits, so a 256-bit key does not need to b= e > > > shortened to compute a HMAC-SHA-1 hash. > > >=20 > > > Also added an example for "if the client only supports HMAC-SHA-1", t= o > > make > > > the hash agility logic more clear. > > >=20 > > > Instructions: > > > ------------- > > > This erratum is currently posted as "Reported". If necessary, please > > > use "Reply All" to discuss whether it should be verified or > > > rejected. When a decision is reached, the verifying party =20 > > > can log in to change the status and edit the report, if necessary.= =20 > > >=20 > > > -------------------------------------- > > > RFC7635 (draft-ietf-tram-turn-third-party-authz-16) > > > -------------------------------------- > > > Title : Session Traversal Utilities for NAT (STUN) Exte= nsion > > for > > > Third-Party Authorization > > > Publication Date : August 2015 > > > Author(s) : T. Reddy, P. Patil, R. Ravindranath, J. Uberti > > > Category : PROPOSED STANDARD > > > Source : TURN Revised and Modernized > > > Area : Transport > > > Stream : IETF > > > Verifying Party : IESG > > >=20 > > > _______________________________________________ > > > tram mailing list > > > tram@ietf.org > > > https://www.ietf.org/mailman/listinfo/tram --=-Fz0mV2n2rWibDCSvLNk/ Content-Type: application/x-pkcs7-signature; name="smime.p7s" Content-Disposition: attachment; filename="smime.p7s" Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCErYw ggX0MIID3KADAgECAg8BdlE9InYZOYLl1zGep4IwDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMC U0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENB IHYzMB4XDTIwMTIxMTA5NTg0OVoXDTIzMTIxMjA5NTg0OVowXjERMA8GA1UECgwIRXJpY3Nzb24x GjAYBgNVBAMMEU1hZ251cyBXZXN0ZXJsdW5kMS0wKwYJKoZIhvcNAQkBFh5tYWdudXMud2VzdGVy bHVuZEBlcmljc3Nvbi5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIT6U9ddUp UCEryIA27xtF8WsRAIfc5jBavfu0OGDmwITYYRD2PaMEdEK+I4dqz0f6xcCrDnBk2Xj+JxjhaRkq TAifJZima9WE2JoI/uq8UsS2HJWlhspAwKx1osARgtRiMjRZZyyfiRZLbgXHWYpnTt3i9QsuX/uo 9oZFWpDCbZee4Il9uldsUcuBLZx2PyZvBvC8KCUaBXsZX6bwV7hssRVn+BgFCuEievJMx0khTRVh i9goObxu5Jl44RtwbZNYB1UE1IzRWEZw+b3cEvXiQjPl2e3ytMZSmhy+IaKmjxES6ODiuh51KAcm PZfZIaX2djmD76YGi+ETmnb8Xm3dAgMBAAGjggHEMIIBwDAfBgNVHSMEGDAWgBQcexmel5x2rCA9 2NzjkWrj2y2mUzAdBgNVHQ4EFgQUICO/88T0EQvEUm5+HVt/d9Mm+Z8wDgYDVR0PAQH/BAQDAgWg MFUGA1UdIAROMEwwSgYMKwYBBAGCDwIDAQESMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vcmVwb3Np dG9yeS50cnVzdC50ZWxpYXNvbmVyYS5jb20vQ1BTMCkGA1UdEQQiMCCBHm1hZ251cy53ZXN0ZXJs dW5kQGVyaWNzc29uLmNvbTBIBgNVHR8EQTA/MD2gO6A5hjdodHRwOi8vY3JsLnRydXN0LnRlbGlh LmNvbS9lcmljc3Nvbm5saW5kaXZpZHVhbGNhdjMuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMEBggr BgEFBQcDAjCBggYIKwYBBQUHAQEEdjB0MCgGCCsGAQUFBzABhhxodHRwOi8vb2NzcDIudHJ1c3Qu dGVsaWEuY29tMEgGCCsGAQUFBzAChjxodHRwOi8vY2EudHJ1c3QudGVsaWFzb25lcmEuY29tL2Vy aWNzc29ubmxpbmRpdmlkdWFsY2F2My5jZXIwDQYJKoZIhvcNAQELBQADggIBANRZXQy+lUW97uaL uApOixnDKLpUoz+N/5Owd/9illmbxQDEY1/pPs4KJSvw88p+F3bmOzb+fLUNa6Mi/2Tw83FzEVmO 3RqzKtca+I9GDpRQ8oWL7hrUPJoNacidSZLmAP4L4kwHIhvGNX4f1c/oB4fAkP/xZsAAxYi7nKxd XA2n/KMWNkezyB9BSsD8ZOS4pWU8UaZjd5r0fzqM5zQbU4EPqHa8jFMSMz1UrYXPKKxl6E4WA3TE w1oLjcli0NWGQHyQ+3Kh7fe6zPoXfLd/2EQjr2o76ssgoqd2V1Mx5TRHdUyxjIMPEOVYpvcerNUB hEBkaOQ9FugYcMhMc8BF7nQZq+hsL/T7idg4gE2sEfNdK9RBf/EVH10GMrmbadqTycztD1gUL3dV Qxik4TCMxIctt9XqtTGHaMewZLQAXp/sHWlU/vmz9brcuzYQ9YVd5hTendGMUyGhWPV/KvxouKPK zdrGeEqUQCeBwWgQASQNOrpTzMJwZAV/Ww3ExQCjHvflvUQzVuU0sC6AEVkgqMATIXS6h6rjLL31 pjt2JV84XRjF5afYkcRIHTsrtcoWeFtOu/GpZNhtq+tde0QvnkSsjczMWU0gKk0hXBmXwEGUimuD Vq/Wvr0mr18d9mKA6xPNQOfn/VL5CWXa11OtOjj8WsTy3XUpyJ6dc9Z72TmKMIIF9DCCA9ygAwIB AgIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQK DAhFcmljc3NvbjElMCMGA1UEAwwcRXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MzAeFw0yMDEy MTEwOTU4NDlaFw0yMzEyMTIwOTU4NDlaMF4xETAPBgNVBAoMCEVyaWNzc29uMRowGAYDVQQDDBFN YWdudXMgV2VzdGVybHVuZDEtMCsGCSqGSIb3DQEJARYebWFnbnVzLndlc3Rlcmx1bmRAZXJpY3Nz b24uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiE+lPXXVKVAhK8iANu8bRfFr EQCH3OYwWr37tDhg5sCE2GEQ9j2jBHRCviOHas9H+sXAqw5wZNl4/icY4WkZKkwInyWYpmvVhNia CP7qvFLEthyVpYbKQMCsdaLAEYLUYjI0WWcsn4kWS24Fx1mKZ07d4vULLl/7qPaGRVqQwm2XnuCJ fbpXbFHLgS2cdj8mbwbwvCglGgV7GV+m8Fe4bLEVZ/gYBQrhInryTMdJIU0VYYvYKDm8buSZeOEb cG2TWAdVBNSM0VhGcPm93BL14kIz5dnt8rTGUpocviGipo8REujg4roedSgHJj2X2SGl9nY5g++m BovhE5p2/F5t3QIDAQABo4IBxDCCAcAwHwYDVR0jBBgwFoAUHHsZnpecdqwgPdjc45Fq49stplMw HQYDVR0OBBYEFCAjv/PE9BELxFJufh1bf3fTJvmfMA4GA1UdDwEB/wQEAwIFoDBVBgNVHSAETjBM MEoGDCsGAQQBgg8CAwEBEjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1c3Qu dGVsaWFzb25lcmEuY29tL0NQUzApBgNVHREEIjAggR5tYWdudXMud2VzdGVybHVuZEBlcmljc3Nv bi5jb20wSAYDVR0fBEEwPzA9oDugOYY3aHR0cDovL2NybC50cnVzdC50ZWxpYS5jb20vZXJpY3Nz b25ubGluZGl2aWR1YWxjYXYzLmNybDAdBgNVHSUEFjAUBggrBgEFBQcDBAYIKwYBBQUHAwIwgYIG CCsGAQUFBwEBBHYwdDAoBggrBgEFBQcwAYYcaHR0cDovL29jc3AyLnRydXN0LnRlbGlhLmNvbTBI BggrBgEFBQcwAoY8aHR0cDovL2NhLnRydXN0LnRlbGlhc29uZXJhLmNvbS9lcmljc3Nvbm5saW5k aXZpZHVhbGNhdjMuY2VyMA0GCSqGSIb3DQEBCwUAA4ICAQDUWV0MvpVFve7mi7gKTosZwyi6VKM/ jf+TsHf/YpZZm8UAxGNf6T7OCiUr8PPKfhd25js2/ny1DWujIv9k8PNxcxFZjt0asyrXGviPRg6U UPKFi+4a1DyaDWnInUmS5gD+C+JMByIbxjV+H9XP6AeHwJD/8WbAAMWIu5ysXVwNp/yjFjZHs8gf QUrA/GTkuKVlPFGmY3ea9H86jOc0G1OBD6h2vIxTEjM9VK2FzyisZehOFgN0xMNaC43JYtDVhkB8 kPtyoe33usz6F3y3f9hEI69qO+rLIKKndldTMeU0R3VMsYyDDxDlWKb3HqzVAYRAZGjkPRboGHDI THPARe50GavobC/0+4nYOIBNrBHzXSvUQX/xFR9dBjK5m2nak8nM7Q9YFC93VUMYpOEwjMSHLbfV 6rUxh2jHsGS0AF6f7B1pVP75s/W63Ls2EPWFXeYU3p3RjFMhoVj1fyr8aLijys3axnhKlEAngcFo EAEkDTq6U8zCcGQFf1sNxMUAox735b1EM1blNLAugBFZIKjAEyF0uoeq4yy99aY7diVfOF0YxeWn 2JHESB07K7XKFnhbTrvxqWTYbavrXXtEL55ErI3MzFlNICpNIVwZl8BBlIprg1av1r69Jq9fHfZi gOsTzUDn5/1S+Qll2tdTrTo4/FrE8t11KcienXPWe9k5ijCCBsIwggSqoAMCAQICEFO4foPhnJko k7CbSRzsuOswDQYJKoZIhvcNAQELBQAwNzEUMBIGA1UECgwLVGVsaWFTb25lcmExHzAdBgNVBAMM FlRlbGlhU29uZXJhIFJvb3QgQ0EgdjEwHhcNMTUxMDI3MTIxNjQ2WhcNMjUxMDI3MTIxNjQ2WjBH MQswCQYDVQQGEwJTRTERMA8GA1UECgwIRXJpY3Nzb24xJTAjBgNVBAMMHEVyaWNzc29uIE5MIElu ZGl2aWR1YWwgQ0EgdjMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDs8t8AALhQ8qe7 2FS3xpP348GqO9TDRjS0s85eQ7Y0LTLZdmSz2cl+lYqs0zfSTm+7meisbhkqUXkL7fFzoe4iIZCh /VuYUaW407CZlDCXes4n4TqTSuoklN6uOPhY7EC9ZVbXILlLhRummTdDdxhVW4Leo0awEhfLf98M vWxzwCHzMj8m6YOmNjx+f9TcJE3qaA0piuvSxlfpVdiCulPTlmsmV2RSBSAwqBshZYRcQBIDfqmd vkaoP9EzNKAh7yjthC0hpgHZyZMIs0eNo4v2PUmE0rhu+Zs0nujnwhljPA2/8b8v9tGixD1zbtT7 zoM2Ot1menJpFp4zJVSfdKVgtoWqg5t2H/E0XY1LwJez89W07nscEocyBmpC+zJAmKxKhzEWqIyP 1UrZaEIFu+hO+s0Nm8sOUMa4TlG4rAUikc5U5TmUIGBRQGxulYhfAzqSYf8oLUMLky1DOa9eRu3s p0FdQDEzQlnF/h1L4AK1MOkX1vS+fLgOvBo5LRU1fLPUZQ7FKrDXC6nl2ldvEtljHWstGBmqv25a EvAA+yrrplCh/kYvSBjvZibz9Obbwx4yqS77/NHN1iyZyVP2s52B2BLdvo4yhzk6nRk8S/8zHaUU kBUrrvijPDaGK5FNVSaioGvkC7IKioITKffYLtT9XuirKrHlh3VzkazG46pAVwIDAQABo4IBuDCC AbQwgYoGCCsGAQUFBwEBBH4wfDAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AudHJ1c3QudGVsaWFz b25lcmEuY29tMEsGCCsGAQUFBzAChj9odHRwOi8vcmVwb3NpdG9yeS50cnVzdC50ZWxpYXNvbmVy YS5jb20vdGVsaWFzb25lcmFyb290Y2F2MS5jZXIwEgYDVR0TAQH/BAgwBgEB/wIBADBVBgNVHSAE TjBMMEoGDCsGAQQBgg8CAwEBAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3JlcG9zaXRvcnkudHJ1 c3QudGVsaWFzb25lcmEuY29tL0NQUzBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vY3JsLTMudHJ1 c3QudGVsaWFzb25lcmEuY29tL3RlbGlhc29uZXJhcm9vdGNhdjEuY3JsMB0GA1UdJQQWMBQGCCsG AQUFBwMCBggrBgEFBQcDBDAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFBx7GZ6XnHasID3Y3OOR auPbLaZTMB8GA1UdIwQYMBaAFPCPWTgAs/WPmpYM1ev6e6oX6BMSMA0GCSqGSIb3DQEBCwUAA4IC AQBQWGvx1Yw7tC6rV0PIjKfDyxaanIX+NZLEGOkdQLKGW2gVLtDUJQEPRs5QtaZiObNHCZ7mmSNM Vek4lkt/0dqfVIFutVw/QkyFGwC99ZmNwXSX9z+OoMyoEBHGvw5RY6vRlZrj0uKvdASzYL4KMaB7 m3NwurNDmmNbG52suRIZ76wBOEOddRZcZiTy50ZkBqYnnl2t3D3oBX2NZCQysshUcqRdUbkS13HT CIChMuTV9W0tzPXUOJoJlJlU9nd91IikhGEOrPwfixWms+C8sF0r9qN1uJGx6ELPOiFrLfNtcMNM MbAqRHwpSLxe3wcNkJGxv9T8LswLi1UrRIQ85AKjqzBnLSsjRGgbMgJ+xKtngmvEA155JmoKfUD7 DRbP6Kp14/Y9XFbR/WuDj84bYNKXe4HdDc1P+UMYm16m2L6LkIIoRlx0A5mi+K7jewuGqzFKkaPN mJ0RLCi+4d4/47Zs3DC3PUNOxdOEEHf4kkdWOaSIuj3TQYhNv+LsgF0uijiBmaz2zUFDa2bcIkKa kDZfAFM4HoHz8K2BZRaHKWhd3dZua/tlSiqokUFX2DxmHmZ1n5HM9OiaAIXP/Zo2x10j/Yb1mM3i 0bqGahxlHYzl/QyEG/dujp3lewuVjCI0mPDkZGphvxyqp4Jo8qS94EnOqBvxOgftYug7OY9EKY+W kDGCAsowggLGAgEBMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYDVQQD DBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwDQYJYIZIAWUD BAIBBQCgggFBMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0BBwEwHAYJKoZIhvcNAQkFMQ8XDTIxMDEx MzE2MDYzOVowLwYJKoZIhvcNAQkEMSIEIOB744NCyo5W73qfKyBkZlIexupEfOgghLsD1+ob8XSw MGkGCSsGAQQBgjcQBDFcMFowRzELMAkGA1UEBhMCU0UxETAPBgNVBAoMCEVyaWNzc29uMSUwIwYD VQQDDBxFcmljc3NvbiBOTCBJbmRpdmlkdWFsIENBIHYzAg8BdlE9InYZOYLl1zGep4IwawYLKoZI hvcNAQkQAgsxXKBaMEcxCzAJBgNVBAYTAlNFMREwDwYDVQQKDAhFcmljc3NvbjElMCMGA1UEAwwc RXJpY3Nzb24gTkwgSW5kaXZpZHVhbCBDQSB2MwIPAXZRPSJ2GTmC5dcxnqeCMA0GCSqGSIb3DQEB AQUABIIBAFfy57woJwpXzx+Rofc+Nv4Dvtlc4HhJxsn+4ifq+nGYdBO4MaFlibBhP2QdDtXvSLHZ MHabmFaCifLX30NTFWgnPUH/xd8mKMu4TTwMWKhDPOBybEBfFGcnU06kjq3GIf/1Nqmf1+u2Jh6l YQv/BFpm35Gh8eLNq5qF31YTUdzZdPvoSD9qSyrweuWdAsSSyee3JSc5cOPB/bzY8Wb1BtcfnAJb N4NKjAC23KcfpH7v0Zb4xyNJoOSiiRGqXcFuu/2ypaktWPfOE+qAmsU9DjvJ8Ua+hvdN1I5TJGOX CGkV+JluLaNmGqg25+3H5IClR9N2VcNA//4IrDYE3UTePpcAAAAAAAA= --=-Fz0mV2n2rWibDCSvLNk/-- From nobody Thu Jan 14 05:59:48 2021 Return-Path: X-Original-To: tram@ietfa.amsl.com Delivered-To: tram@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8D6BB3A0DAD; Thu, 14 Jan 2021 05:59:42 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.902 X-Spam-Level: X-Spam-Status: No, score=-0.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, CTE_8BIT_MISMATCH=0.998, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bzPF1QWQ6fV2; Thu, 14 Jan 2021 05:59:41 -0800 (PST) Received: from rfc-editor.org (rfc-editor.org [4.31.198.49]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F0C973A0D6D; Thu, 14 Jan 2021 05:59:40 -0800 (PST) Received: by rfc-editor.org (Postfix, from userid 30) id DEBEFF4071E; Thu, 14 Jan 2021 05:59:29 -0800 (PST) To: misi@niif.hu, tireddy@cisco.com, praspati@cisco.com, rmohanr@cisco.com, justin@uberti.name X-PHP-Originating-Script: 1005:errata_mail_lib.php From: RFC Errata System Cc: magnus.westerlund@ericsson.com, iesg@ietf.org, tram@ietf.org, rfc-editor@rfc-editor.org Content-Type: text/plain; charset=UTF-8 Message-Id: <20210114135929.DEBEFF4071E@rfc-editor.org> Date: Thu, 14 Jan 2021 05:59:29 -0800 (PST) Archived-At: Subject: [tram] [Errata Held for Document Update] RFC7635 (4923) X-BeenThere: tram@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 14 Jan 2021 13:59:43 -0000 The following errata report has been held for document update for RFC7635, "Session Traversal Utilities for NAT (STUN) Extension for Third-Party Authorization". -------------------------------------- You may review the report below and at: https://www.rfc-editor.org/errata/eid4923 -------------------------------------- Status: Held for Document Update Type: Technical Reported by: Mészáros Mihály Date Reported: 2017-02-03 Held by: Magnus Westerlund (IESG) Section: Appendix B. Original Text ------------- "key":"v51N62OM65kyMvfTI08O" Corrected Text -------------- "key": "ew0KICAgICJrdHkiOiJvY3QiLA0KICAgICJ raWQiOiJpZDEyMyIsDQogICAgImFsZyI6IkhTMjU2IiwNCiAgIC AiayI6IlpvUlNPckZ6Tl9GelVBNVhLTVlvVkh5emZmNW9SSnhsL UlYUnR6dEo2dUUiDQp9" Notes ----- "key" according https://tools.ietf.org/html/draft-ietf-oauth-pop-key-distribution-02#section-4.2 "The 'key' parameter either contains a plain JWK structure or a JWK encrypted with a JWE." According Example Figure 2. "key" in draft-ietf-oauth-pop-key-distribution-02#section-4.2 It seems they missed to write plain JWK MUST be base64 format. So according the example coorected the above sentence: "The 'key' parameter either contains a plain BASE64 ENCODED JWK structure or a JWK encrypted with a JWE." Anyhow in RFC7635 Appendix B. the "key" seems to be not in base64 (JWK) or JWE encrypted JWK format. (Base64 decoded key value string is "Salted__"....) -------------------------------------- RFC7635 (draft-ietf-tram-turn-third-party-authz-16) -------------------------------------- Title : Session Traversal Utilities for NAT (STUN) Extension for Third-Party Authorization Publication Date : August 2015 Author(s) : T. Reddy, P. Patil, R. Ravindranath, J. Uberti Category : PROPOSED STANDARD Source : TURN Revised and Modernized Area : Transport Stream : IETF Verifying Party : IESG From nobody Thu Jan 14 06:00:52 2021 Return-Path: X-Original-To: tram@ietfa.amsl.com Delivered-To: tram@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 787B23A0E04; Thu, 14 Jan 2021 06:00:50 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.902 X-Spam-Level: X-Spam-Status: No, score=-0.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, CTE_8BIT_MISMATCH=0.998, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IYKdoIIHSOPZ; Thu, 14 Jan 2021 06:00:49 -0800 (PST) Received: from rfc-editor.org (rfc-editor.org [4.31.198.49]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2B81E3A0DAD; Thu, 14 Jan 2021 06:00:49 -0800 (PST) Received: by rfc-editor.org (Postfix, from userid 30) id 280DBF40720; Thu, 14 Jan 2021 06:00:38 -0800 (PST) To: bakfitty@gmail.com, tireddy@cisco.com, praspati@cisco.com, rmohanr@cisco.com, justin@uberti.name X-PHP-Originating-Script: 1005:errata_mail_lib.php From: RFC Errata System Cc: magnus.westerlund@ericsson.com, iesg@ietf.org, tram@ietf.org, rfc-editor@rfc-editor.org Content-Type: text/plain; charset=UTF-8 Message-Id: <20210114140038.280DBF40720@rfc-editor.org> Date: Thu, 14 Jan 2021 06:00:38 -0800 (PST) Archived-At: Subject: [tram] [Errata Held for Document Update] RFC7635 (4826) X-BeenThere: tram@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 14 Jan 2021 14:00:51 -0000 The following errata report has been held for document update for RFC7635, "Session Traversal Utilities for NAT (STUN) Extension for Third-Party Authorization". -------------------------------------- You may review the report below and at: https://www.rfc-editor.org/errata/eid4826 -------------------------------------- Status: Held for Document Update Type: Technical Reported by: Mihály Mészáros Date Reported: 2016-10-10 Held by: Magnus Westerlund (IESG) Section: 8. Original Text ------------- 8. STUN Client Behavior o The client looks for the MESSAGE-INTEGRITY attribute in the response. If MESSAGE-INTEGRITY is absent or the value computed for message integrity using mac_key does not match the contents of the MESSAGE-INTEGRITY attribute, then the response MUST be discarded. o If the access token expires, then the client MUST obtain a new token from the authorization server and use it for new STUN requests. Corrected Text -------------- 8. STUN Client Behavior o The client looks for the MESSAGE-INTEGRITY attribute in the response. If MESSAGE-INTEGRITY is absent or the value computed for message integrity using mac_key does not match the contents of the MESSAGE-INTEGRITY attribute, then the response MUST be discarded. 9. Application (OAuth Client) Behavior o If the access token expires, then the Application (OAuth client) MUST obtain a new token from the authorization server, and update STUN client to use it for new STUN requests. o Application SHOULD pass only a subset of the received OAuth parameters to the STUN client. Only parameters SHOULD be passed that will be really needed and used by the STUN Client. In this way, only the kid, the mac_key, and the access_token parameters SHOULD be passed to the STUN client. ... Renumber the sections ... Notes ----- 1. Remove from STUN client behaviour the access_token renewal function, and move this function up to application level. 2. Pass to STUN only that subset of the OAuth parameters, that will be really used by STUN Client. -------------------------------------- RFC7635 (draft-ietf-tram-turn-third-party-authz-16) -------------------------------------- Title : Session Traversal Utilities for NAT (STUN) Extension for Third-Party Authorization Publication Date : August 2015 Author(s) : T. Reddy, P. Patil, R. Ravindranath, J. Uberti Category : PROPOSED STANDARD Source : TURN Revised and Modernized Area : Transport Stream : IETF Verifying Party : IESG From nobody Mon Jan 18 10:24:59 2021 Return-Path: X-Original-To: tram@ietf.org Delivered-To: tram@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id C02AC3A0C1D; Mon, 18 Jan 2021 10:24:57 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: IETF Meeting Session Request Tool To: Cc: magnus.westerlund@ericsson.com, simon.perreault@logmein.com, tram-chairs@ietf.org, tram@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.24.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <161099429769.28892.1611296428207505075@ietfa.amsl.com> Date: Mon, 18 Jan 2021 10:24:57 -0800 Archived-At: Subject: [tram] tram - Not having a session at IETF 110 X-BeenThere: tram@ietf.org X-Mailman-Version: 2.1.29 List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Jan 2021 18:24:58 -0000 Simon Perreault, a chair of the tram working group, indicated that the tram working group does not plan to hold a session at IETF 110. This message was generated and sent by the IETF Meeting Session Request Tool.