Re: [Acme] Hyphens in parameter names of ACME CAA extensions
Corey Bonnell <CBonnell@trustwave.com> Fri, 19 January 2018 13:18 UTC
Return-Path: <CBonnell@trustwave.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AE88012D876 for <acme@ietfa.amsl.com>; Fri, 19 Jan 2018 05:18:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FHuv-gXNlJ3h for <acme@ietfa.amsl.com>; Fri, 19 Jan 2018 05:18:56 -0800 (PST)
Received: from seg-node-elk-03.trustwave.com (seg-node-elk-03.trustwave.com [204.13.202.189]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1FBF6126DEE for <acme@ietf.org>; Fri, 19 Jan 2018 05:18:55 -0800 (PST)
Received: from NAM01-BN3-obe.outbound.protection.outlook.com (Not Verified[216.32.180.182]) by seg-node-elk-03.trustwave.com with Trustwave SEG (v7, 5, 7, 10058) (using TLS: TLSv1.2, AES256-SHA256) id <B5a61f03c0001>; Fri, 19 Jan 2018 07:18:52 -0600
Received: from CY4PR07MB3575.namprd07.prod.outlook.com (10.171.253.14) by CY4PR07MB3573.namprd07.prod.outlook.com (10.171.253.12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.428.17; Fri, 19 Jan 2018 13:18:51 +0000
Received: from CY4PR07MB3575.namprd07.prod.outlook.com ([10.171.253.14]) by CY4PR07MB3575.namprd07.prod.outlook.com ([10.171.253.14]) with mapi id 15.20.0428.014; Fri, 19 Jan 2018 13:18:51 +0000
From: Corey Bonnell <CBonnell@trustwave.com>
To: Jacob Hoffman-Andrews <jsha@eff.org>, Ivan Vyshnevskyi <ivan@vyshnevskyi.com>, "acme@ietf.org" <acme@ietf.org>
Thread-Topic: [Acme] Hyphens in parameter names of ACME CAA extensions
Thread-Index: AQHTkHfAEwCzHKnNPEqa2C4wl/RoOKN6XQ4AgAB+QgA=
Date: Fri, 19 Jan 2018 13:18:50 +0000
Message-ID: <E41721D9-9BF5-4877-A69C-A43F370A1773@trustwave.com>
References: <1516287365.2992847.1239759288.6198D1F4@webmail.messagingengine.com> <38b34229-2137-1bed-b96e-37b91babddbb@eff.org>
In-Reply-To: <38b34229-2137-1bed-b96e-37b91babddbb@eff.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=CBonnell@trustwave.com;
x-originating-ip: [204.13.202.248]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; CY4PR07MB3573; 7:MkUdMZrDYIBVjlDTGbViKZOWFYBBRJftSHNLEv4ng34cp5aP7dl99TvZx2zMwhlaQJk3X5CnVCJylnJu61lFYuPkVX6v2NvUVj4/uQcTHKsznm5+yIRfmXlWDOHNe7M8iyiuQzdT5yoau6/fIhISFWgG7qqq+bmNttQODLLkG75V8dLG95Bnpx2lvobclBiT5Xv6OlviSubRNJgJDJg1HLA8/n7M0m6Cv8+6p0YrF98nwIzuL4Grry2v4unEgrVa
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 98b865cb-7aaf-49a3-4b3c-08d55f3f2e97
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4604075)(3008032)(4534125)(4602075)(4627221)(201703031133081)(201702281549075)(2017052603307)(7153060)(7193020); SRVR:CY4PR07MB3573;
x-ms-traffictypediagnostic: CY4PR07MB3573:
x-microsoft-antispam-prvs: <CY4PR07MB357346BFE7F5153055F24783CFEF0@CY4PR07MB3573.namprd07.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(232896897485771)(192374486261705);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040470)(2401047)(8121501046)(5005006)(3002001)(3231023)(2400077)(944501161)(93006095)(93001095)(10201501046)(6041268)(20161123562045)(20161123564045)(20161123560045)(20161123558120)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(6072148)(201708071742011); SRVR:CY4PR07MB3573; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:CY4PR07MB3573;
x-forefront-prvs: 0557CBAD84
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(366004)(396003)(39850400004)(346002)(39380400002)(189003)(199004)(25786009)(102836004)(2950100002)(59450400001)(6116002)(6436002)(6306002)(7736002)(8676002)(106356001)(53546011)(33656002)(99286004)(105586002)(68736007)(5660300001)(81156014)(3660700001)(229853002)(53936002)(6512007)(2501003)(110136005)(966005)(14454004)(6506007)(316002)(8936002)(81166006)(82746002)(26005)(478600001)(36756003)(3846002)(72206003)(6246003)(3280700002)(77096007)(76176011)(2906002)(83716003)(2900100001)(305945005)(80792005)(6486002)(86362001)(575784001)(66066001)(97736004)(217873001)(19400905002); DIR:OUT; SFP:1102; SCL:1; SRVR:CY4PR07MB3573; H:CY4PR07MB3575.namprd07.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: trustwave.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: hBBJtctOUIV40TTJFB2LHsgVDb+EqTZOl20eFDgo3EMB3H7lIz2gac7YlIUI9OozHrUfccrJKdlyKMeistqbxg==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <DB99811EC6CEC14081040AD9F7A90DC1@namprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: trustwave.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 98b865cb-7aaf-49a3-4b3c-08d55f3f2e97
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Jan 2018 13:18:51.0476 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cb1dab68-a067-4b6b-ae7e-c012e8c33f6a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY4PR07MB3573
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/JTkI9Dp8NGpSCGI2c2gCvEyWaNQ>
Subject: Re: [Acme] Hyphens in parameter names of ACME CAA extensions
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Jan 2018 13:18:59 -0000
There is an IETF erratum for RFC 6844 (specifically, erratum 5200: https://www.rfc-editor.org/errata/eid5200) regarding a contradiction about which character is used as a parameter delimiter in "issue"/"issuewild" property tags (section 3 defines the parameter delimiter as a semicolon, whereas section 5.2 defines it as whitespace). Given that the RFC in its current state is contradictory, I imagine this is something that should be resolved before any proposals regarding parameters are finalized. I proposed a fix to the ABNF grammar on the LAMPS WG mailing list last month to make the parameter delimiter defined in section 5.2 align with section 3: https://www.ietf.org/mail-archive/web/spasm/current/msg01073.html. It would be trivial to modify this grammar to allow for hyphens to appear in parameter tags. Allowing for the use hyphens in tags would be win in terms of human readability of CAA records, as I believe "validation-methods" is much more readable than "validationmethods", etc. Thanks, Corey Corey Bonnell Senior Software Engineer t: +1 412.395.2233 Trustwave | SMART SECURITY ON DEMAND On 1/18/18, 7:47 PM, "Acme on behalf of Jacob Hoffman-Andrews" <acme-bounces@ietf.org on behalf of jsha@eff.org> wrote: I don't think that's been discussed before. I think it's reasonable to adjust "account-uri" to "accounturi" and "validation-methods" to "validationmethods" to stick with RFC6844's definitions. On 01/18/2018 06:56 AM, Ivan Vyshnevskyi wrote: > Hi, > > According to the grammar for value of the CAA issue property, that is defined in > the section 5.2 of RFC6844[1], the parameter name (there called “tag”) consists > of one or more alphanumeric characters. The most current version of > the draft-ietf-acme-caa[2] introduces two parameter names with hyphens > in them: “account-uri” and “validation-methods”. > > Was this discrepancy discussed before? Is there a plan to resolve it? > > Regards, > Ivan > > [1]: https://scanmail.trustwave.com/?c=4062&d=hcDh2k_3IAMjh0nijx3Ip1gY1VC-548bPX2OlnrCzQ&s=5&u=https%3a%2f%2ftools%2eietf%2eorg%2fhtml%2frfc6844%23section-5%2e2 > [2]: https://scanmail.trustwave.com/?c=4062&d=hcDh2k_3IAMjh0nijx3Ip1gY1VC-548bPX3SnnvOkA&s=5&u=https%3a%2f%2ftools%2eietf%2eorg%2fhtml%2fdraft-ietf-acme-caa-03 > > _______________________________________________ > Acme mailing list > Acme@ietf.org > https://scanmail.trustwave.com/?c=4062&d=hcDh2k_3IAMjh0nijx3Ip1gY1VC-548bPSvfn3DDxg&s=5&u=https%3a%2f%2fwww%2eietf%2eorg%2fmailman%2flistinfo%2facme _______________________________________________ Acme mailing list Acme@ietf.org https://scanmail.trustwave.com/?c=4062&d=hcDh2k_3IAMjh0nijx3Ip1gY1VC-548bPSvfn3DDxg&s=5&u=https%3a%2f%2fwww%2eietf%2eorg%2fmailman%2flistinfo%2facme
- [Acme] Hyphens in parameter names of ACME CAA ext… Ivan Vyshnevskyi
- Re: [Acme] Hyphens in parameter names of ACME CAA… Jacob Hoffman-Andrews
- Re: [Acme] Hyphens in parameter names of ACME CAA… Corey Bonnell
- Re: [Acme] Hyphens in parameter names of ACME CAA… Tim Hollebeek
- Re: [Acme] Hyphens in parameter names of ACME CAA… Salz, Rich
- Re: [Acme] Hyphens in parameter names of ACME CAA… Tim Hollebeek
- Re: [Acme] Hyphens in parameter names of ACME CAA… Ivan Vyshnevskyi