[Emu] [Errata Verified] RFC7170 (5844)

Wed, 03 Apr 2024 11:17:12 -0700 

The following errata report has been verified for RFC7170,
"Tunnel Extensible Authentication Protocol (TEAP) Version 1". 

--------------------------------------
You may review the report below and at:
https://www.rfc-editor.org/errata/eid5844

--------------------------------------
Status: Verified
Type: Technical

Reported by: Jouni Malinen <j...@w1.fi>
Date Reported: 2019-08-24
Verified by: Paul Wouters (IESG)

Section: C.1

Original Text
-------------
                            <- Crypto-Binding TLV (Request),
                                Result TLV (Success),
                                (Optional PAC TLV)

       Crypto-Binding TLV(Response),
       Result TLV (Success),
       (PAC-Acknowledgement TLV) ->


Corrected Text
--------------
                            <- Intermediate-Result-TLV (Success),
                                Crypto-Binding TLV (Request),
                                Result TLV (Success),
                                (Optional PAC TLV)

       Intermediate-Result-TLV (Success),
       Crypto-Binding TLV(Response),
       Result TLV (Success),
       (PAC-Acknowledgement TLV) ->


Notes
-----
Section 3.3.2 implies that Intermediate-Result TLV is used after each round of 
Basic-Password-Auth-Req/Resp TLVs. However, the example sequence in C.1 does 
not show this. The proposed change in this errata adds the Intermediate-Result 
TLV indication here. Similar change should be done in C.2 (i.e., add 
Intermediate-Result TLV (Failure) to the messages that include Result TLV) 
since the language in 3.3.2 describe the indication to be used for both success 
and failure cases.

In addition to this change in C.1, it would be good to clarify the 
specification globally to avoid confusion about this case since almost all 
discussion regarding Intermediate-Result TLV currently is in the context of 
inner EAP authentication. 3.3.2 should have a MUST statement similar to 3.3.1. 
3.6 should cover success or failure indications of basic password auth like it 
does EAP methods. 4.2.11 should note Intermediate-Result TLV is used with both 
inner EAP and basic password auth. 4.2.13 should mention basic password auth in 
the "regardless of whether there is an inner EAP method authentication or not" 
sentence.

--------------------------------------
RFC7170 (draft-ietf-emu-eap-tunnel-method-10)
--------------------------------------
Title               : Tunnel Extensible Authentication Protocol (TEAP) Version 1
Publication Date    : May 2014
Author(s)           : H. Zhou, N. Cam-Winget, J. Salowey, S. Hanna
Category            : PROPOSED STANDARD
Source              : EAP Method Update
Stream              : IETF
Verifying Party     : IESG

_______________________________________________
Emu mailing list
Emu@ietf.org
https://www.ietf.org/mailman/listinfo/emu

Reply via email to