[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: protocol: closing SASL upon Unbind

To: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Subject: Re: protocol: closing SASL upon Unbind
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Tue, 07 Dec 2004 17:43:45 -0800
Cc: ietf-ldapbis@OpenLDAP.org
In-reply-to: <6.1.2.0.0.20041207085441.030c9b08@127.0.0.1>
References: <hbf.20041206kplu@bombur.uio.no> <6.1.2.0.0.20041206141714.031602d8@127.0.0.1> <hbf.20041206k6gs@bombur.uio.no> <6.1.2.0.0.20041206144418.03090598@127.0.0.1> <hbf.20041207smm3@bombur.uio.no> <6.1.2.0.0.20041207080704.0307cfd0@127.0.0.1> <hbf.20041207rx96@bombur.uio.no> <6.1.2.0.0.20041207085441.030c9b08@127.0.0.1>

My previous suggestion does not adequately cover the
issue of graceful closure of the LDAP session.  That is,
the reason why a particular order was suggested was that
it was thought to be graceful.  So while I have no
problem with removing the ordering aspect of the current
text, I'd like to indicate that Unbind/Notice of Disconnect
are intended to affect a graceful closure.

Hence, I suggest:

   The client, upon transmission of the UnbindRequest, and
   the server, upon receipt of the UnbindRequest are to
   gracefully close the LDAP session by ceasing exchange
   at the LDAP message layer, tearing down any SASL layer,
   tearing down any TLS layer, and closing the transport
   connection.

I note that while the 4 actions the implementation might need
to take are stated in the order which the implementation likely
would need to affect graceful closure of the LDAP session,
the text does not actually prescribe a particular order, nor
does it imply that any exchange within the SASL and/or TLS
layer would been necessary.

Follow-Ups:
- Re: protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- server-initiated connection closure vs. TLS/SASL closure (was: closing SASL upon Unbind)
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

References:
- protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: derefInSearching (was Re: protocol-27 comments #3)
Next by Date: Re: protocol: strongAuthRequired
Index(es):
- Chronological
- Thread