[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SASL mechanisms that return no data in last leg

Kurt D. Zeilenga wrote:

I'd have to agree with Alexey.  The mechanism for provide data
with the last leg of the exchange is optional.  That is, if there
is data to be sent AND the server chooses not to require
another roundtrip, the server can attach the data to last

Another point is that SASL allows the mechanism data
in any message of the exchange to be any octet string,
including a zero length string.  Hence, it seems that
no string and a zero length string are not necessarily
semantically equivalent here.

This is correct, however LDAP is the first SASL profile I've seen that is able to represent them differently.
Do you think that we should say something about this in the base SASL document?