XMPP Council - 2018-01-09

  1. Ge0rG has left

  2. Ge0rG has left

  3. genofire has joined

  4. jere has joined

  5. Ge0rG has left

  6. Ge0rG has left

  7. ralphm has left

  8. ralphm has joined

  9. Ge0rG has left

  10. Ge0rG has left

  11. Ge0rG has left

  12. Ge0rG has left

  13. Tobias has left

  14. Ge0rG has left

  15. Tobias has joined

  16. Ge0rG has left

  17. SouL has left

  18. Ge0rG has left

  19. Ge0rG has left

  20. SamWhited has left

  21. Ge0rG has left

  22. SamWhited has left

  23. Ge0rG has left

  24. Ge0rG has left

  25. Ge0rG has left

  26. Ge0rG has left

  27. Ge0rG has left

  28. SouL has left

  29. Ge0rG has left

  30. Ge0rG has left

  31. genofire has left

  32. Ge0rG has left

  33. Ge0rG has left

  34. jere has left

  35. jere has joined

  36. jere has left

  37. jere has joined

  38. Ge0rG has left

  39. Ge0rG has left

  40. Ge0rG has left

  41. Kev has left

  42. Ge0rG has left

  43. Ge0rG has left

  44. Ge0rG has left

  45. Ge0rG has left

  46. Ge0rG has joined

  47. Ge0rG has left

  48. Ge0rG has left

  49. Ge0rG has joined

  50. ralphm has left

  51. jere has left

  52. jere has joined

  53. Ge0rG has left

  54. ralphm has joined

  55. ralphm has left

  56. Ge0rG has left

  57. ralphm has joined

  58. Ge0rG has left

  59. Ge0rG has left

  60. Zash has joined

  61. ralphm has joined

  62. Kev has joined

  63. Ge0rG has left

  64. Ge0rG has left

  65. Ge0rG has left

  66. Ge0rG has left

  67. ralphm has joined

  68. daniel has left

  69. Ge0rG has left

  70. pep. has left

  71. Ge0rG has left

  72. Ge0rG has left

  73. genofire has left

  74. vanitasvitae has joined

  75. genofire has left

  76. Ge0rG has left

  77. daniel has left

  78. daniel has joined

  79. vanitasvitae has left

  80. Ge0rG has left

  81. daniel has left

  82. daniel has joined

  83. Ge0rG has left

  84. daniel has left

  85. Ge0rG has left

  86. daniel has joined

  87. vanitasvitae has joined

  88. daniel has left

  89. daniel has joined

  90. Ge0rG has left

  91. Ge0rG has left

  92. Ge0rG has left

  93. Ge0rG has left

  94. ralphm has joined

  95. Ge0rG has left

  96. Ge0rG has left

  97. daniel has left

  98. daniel has joined

  99. Ge0rG has left

  100. daniel has left

  101. daniel has joined

  102. Ge0rG has left

  103. vanitasvitae has left

  104. Ge0rG has left

  105. ralphm has left

  106. Ge0rG has left

  107. ralphm has left

  108. Ge0rG has left

  109. pep. has left

  110. Ge0rG has left

  111. daniel has left

  112. daniel has joined

  113. Ge0rG has left

  114. ralphm has left

  115. Ge0rG has left

  116. vanitasvitae has joined

  117. daniel has left

  118. daniel has joined

  119. Ge0rG has left

  120. Ge0rG has left

  121. Ge0rG has left

  122. Dave has joined

  123. Dave

    jonasw, SamWhited - Just running through the Council Agenda for tomorrow - is it only my two ProtoXEPs come in since last time?

  124. SamWhited

    Nothing new from me, just a few old things that have been festering

  125. daniel

    Dave: there is the Avatar conversion

  126. Ge0rG has left

  127. pep. has joined

  128. jonasw

    Dave, three, what daniel said

  129. Ge0rG has left

  130. daniel has left

  131. daniel has joined

  132. vanitasvitae has left

  133. Ge0rG has left

  134. jere has joined

  135. jere has joined

  136. Dave has left

  137. Dave has left

  138. Ge0rG has left

  139. Dave

    The state of isr-sasl2 seems confused - Council voted, that vote has presumably timed out, but no votes at all are recorded in Trello?

  140. Ge0rG has left

  141. Kev

    It wasn't clear to me which of the several versions of ISR we were voting on from the minutes. So I sent out a vote based on what I thought we were voting on, and a -1 otherwise.

  142. Dave

    Looks like Daniel, Kev and I all voted for.

  143. Dave

    Kev, I think his latest advertised is what's in the inbox. I was assuming we were voting for the isr-sasl2.html in the inbox anyway.

  144. Ge0rG

    I think the general idea is to accept something that looks generally implementable and to finish the spec afterwards?

  145. Kev

    Ah, ok. I thought his latest wasn't in the inbox yet.

  146. Kev

    Ge0rG: As long as it doesn't look harmfully the wrong approach for some reason, I accept generally, yes.

  147. Ge0rG

    So the exact version in the inbox doesn't matter too much?

  148. Kev

    There is an argument to be made for that, yes.

  149. Dave

    Ge0rG, Yes, although ironically I thought I'd implement this afternoon and found I can't because he's tied it into the SASL mechanism, which I hadn't really appreciated.

  150. jere has left

  151. jere has joined

  152. Ge0rG

    Dave: I'd really love to scale back the SASL thing and just let ISR be an additional token that immediately gives you your old 0198 session

  153. Dave

    Ge0rG, Why? The immediacy can be achieved simply enough without tying it into a SASL mechanism, and gives us flexibility over authentication.

  154. Kev

    And I'm interested in using 'instant re-auth with this key' without involving 198, FWIW.

  155. Dave has left

  156. Kev

    Because I think fast resync is a worthwhile problem to solve, without 198.

  157. Dave

    Kev, CLIENT-KEY can do that, longer-term. But it does mandate an atomic counter at both ends, which might be painful in a cluster.

  158. Dave

    Kev, Flow's HT-* mechanism family should manage it, but it's tied into 198 quite heavily.

  159. Ge0rG has left

  160. Ge0rG

    Kev: I'd say that a instant re-auth that's tied to a short-lived 0198 after-session is technically not a new authentication, as opposed to something like CLIENT-KEY

  161. jonasw has left

  162. Ge0rG has left

  163. Dave

    Ge0rG, Well, you connect, do *magic* and then the server knows who you are.

  164. Dave

    Ge0rG, Which makes me suspect that *magic* includes an authentication.

  165. jere has joined

  166. Dave has left

  167. Ge0rG has left

  168. jere has joined

  169. daniel has left

  170. daniel has joined

  171. jonasw has joined

  172. jonasw has left

  173. jonasw has joined

  174. daniel has left

  175. Ge0rG has left

  176. daniel has joined

  177. Kev has left

  178. vanitasvitae has joined

  179. daniel has left

  180. daniel has joined

  181. Tobias has joined

  182. Dave has left

  183. Tobias has joined

  184. Ge0rG has left

  185. ralphm has joined

  186. vanitasvitae has left

  187. Ge0rG has left

  188. SouL has left

  189. Dave has left

  190. Ge0rG has left

  191. daniel has left

  192. daniel has joined

  193. SouL has left

  194. Dave has left

  195. Ge0rG has left

  196. jonasw has left

  197. SouL has left

  198. jonasw has joined

  199. daniel has left

  200. daniel has joined

  201. Ge0rG has left

  202. Dave has left

  203. daniel has left

  204. daniel has joined

  205. Ge0rG has left

  206. daniel has left

  207. daniel has joined

  208. SouL has left

  209. daniel has left

  210. daniel has joined

  211. SouL has left

  212. Ge0rG has left

  213. Dave has left

  214. Dave has left

  215. Tobias has left

  216. Tobias has joined

  217. daniel has left

  218. daniel has joined

  219. Ge0rG has left

  220. SouL has left

  221. SouL has left

  222. Ge0rG has left

  223. Dave has left

  224. Kev has left

  225. Ge0rG has left

  226. Ge0rG

    Dave: so I have a TCP session with TLS on top of it that I didn't send any data over for half an hour, and then I send another packet, and the other side knows it's from me - is that authentication as well?

  227. SouL has left

  228. Ge0rG

    How often do I need to enter an OTP code?

  229. Zash

    With every TCP segment!

  230. Ge0rG

    Zash: TCP is a stream of bytes. So I think you mean with every byte.

  231. Ge0rG

    But then again, there is TLS overhead.

  232. Zash

    TLS uses blocks somewhat larger than single bytes IIRC

  233. Ge0rG

    Now you made me wonder how TLS operates. Does it fill up its data up to the MSS? Is it playing weird games with Nagle?

  234. Ge0rG

    Do I really want to know?

  235. Zash

    You probably don't want to know.

  236. Ge0rG

    So back to my original question. When does it stop to be the continuation of an ongoing authenticated session and begins to be a new authentication?

  237. SamWhited has joined

  238. Ge0rG

    Does it need to run in the same TLS session? Same TCP session? Same pair of entities? What if I export the TLS state from one entity to another?

  239. Zash

    There's some framing, padding to the cipher block size and a MAC.

  240. Ge0rG

    Zash: that totally doesn't answer my question.

  241. Zash

    I was just telling you what you don't wanna know.

  242. vanitasvitae has joined

  243. Ge0rG has left

  244. Ge0rG has left

  245. SouL has left

  246. vanitasvitae has left

  247. daniel has left

  248. daniel has joined

  249. daniel has left

  250. jere has joined

  251. jere has joined

  252. Ge0rG has left

  253. daniel has joined

  254. SamWhited has left

  255. daniel has left

  256. daniel has joined

  257. SouL has left

  258. daniel has left

  259. Ge0rG has left

  260. genofire has joined

  261. daniel has left

  262. SouL has left

  263. SamWhited has joined

  264. Ge0rG has left

  265. Dave has left

  266. ralphm has joined

  267. daniel has left

  268. Dave has left

  269. Ge0rG has left

  270. Dave has left

  271. Dave has left

  272. SouL has left

  273. Ge0rG has left

  274. daniel has left

  275. Tobias has left

  276. Tobias has joined

  277. vanitasvitae has joined

  278. ralphm has joined

  279. SouL has left

  280. Ge0rG has left

  281. daniel has left

  282. genofire has joined

  283. Ge0rG has left

  284. Dave has left

  285. SamWhited has joined

  286. Dave has left

  287. Dave has left

  288. Dave has joined

  289. ralphm has joined

  290. SouL has left

  291. Ge0rG has left

  292. daniel has joined

  293. daniel has joined

  294. pep. has joined

  295. jere has left

  296. jere has joined

  297. SouL has left

  298. ralphm has joined

  299. Ge0rG has left

  300. Dave has left

  301. Dave has joined

  302. Dave has left

  303. Dave has joined

  304. genofire has joined

  305. SouL has left

  306. Ge0rG has left

  307. SouL has left

  308. Syndace has left

  309. Syndace has joined

  310. Ge0rG has left

  311. Dave has left

  312. Dave has joined

  313. ralphm has joined

  314. Ge0rG has left

  315. SouL has left

  316. Ge0rG has left

  317. genofire has left

  318. Dave has left

  319. Dave has joined

  320. SouL has left

  321. Ge0rG has left

  322. vanitasvitae has left

  323. vanitasvitae has joined

  324. SouL has left

  325. Ge0rG has left

  326. vanitasvitae has left

  327. Dave has left

  328. Dave has joined

  329. Dave has left

  330. Dave has joined

  331. SouL has left

  332. Ge0rG has left

  333. ralphm has joined

  334. SouL has left

  335. Ge0rG has left

  336. Zash has left

  337. jere has joined

  338. SamWhited has left

  339. Dave has left

  340. Dave has joined

  341. Dave has left

  342. Dave has joined

  343. SouL has left

  344. Ge0rG has left

  345. genofire has joined

  346. SouL has left

  347. Ge0rG has left

  348. pep. has joined

  349. SouL has left

  350. Dave has left

  351. Dave has joined

  352. Dave has left

  353. Dave has joined

  354. Ge0rG has left

  355. Ge0rG has left

  356. SouL has left

  357. vanitasvitae has joined

  358. Ge0rG has left

  359. Dave has left

  360. Dave has joined

  361. SouL has left