[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: protocol: closing SASL upon Unbind

To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: protocol: closing SASL upon Unbind
From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Date: Wed, 8 Dec 2004 17:50:49 +0100
Cc: ietf-ldapbis@OpenLDAP.org
In-reply-to: <6.1.2.0.0.20041207173305.03727f90@127.0.0.1>
References: <hbf.20041206kplu@bombur.uio.no> <6.1.2.0.0.20041206141714.031602d8@127.0.0.1> <hbf.20041206k6gs@bombur.uio.no> <6.1.2.0.0.20041206144418.03090598@127.0.0.1> <hbf.20041207smm3@bombur.uio.no> <6.1.2.0.0.20041207080704.0307cfd0@127.0.0.1> <hbf.20041207rx96@bombur.uio.no> <6.1.2.0.0.20041207085441.030c9b08@127.0.0.1> <6.1.2.0.0.20041207173305.03727f90@127.0.0.1>

Kurt D. Zeilenga writes:
> (...) while I have no
> problem with removing the ordering aspect of the current
> text, I'd like to indicate that Unbind/Notice of Disconnect
> are intended to affect a graceful closure.
>
> Hence, I suggest:
>
>    The client, upon transmission of the UnbindRequest, and
>    the server, upon receipt of the UnbindRequest are to
>    gracefully close the LDAP session by ceasing exchange
>    at the LDAP message layer, tearing down any SASL layer,
>    tearing down any TLS layer, and closing the transport
>    connection.
>
> I note that while the 4 actions the implementation might need
> to take are stated in the order which the implementation likely
> would need to affect graceful closure of the LDAP session,
> the text does not actually prescribe a particular order, nor
> does it imply that any exchange within the SASL and/or TLS
> layer would been necessary.

It still looks like a list of actions to take to me, so if it is
supposed to be unordered I'd prefer to swap SASL and TLS so it fits
[SASL] if one does take it to be ordered.  That seems more important
than listing it in the order which looks more graceful.

BTW, just to have stated it publicly: I didn't quite understand your
previous objection to "SASL and TLS layers" without comma, and as
discussed privately I disagree with part of your previous message
anyway, but hopefully that's irrelevant now.

-- 
Hallvard

Follow-Ups:
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

References:
- protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: protocol: closing SASL upon Unbind
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: protocol: closing SASL upon Unbind
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: protocol: strongAuthRequired
Next by Date: server-initiated connection closure vs. TLS/SASL closure (was: closing SASL upon Unbind)
Index(es):
- Chronological
- Thread