IETF Logo Mail Archive

Re: [C430] AUTH48 [JM]: RFC 9001 <draft-ietf-quic-tls-34.txt> NOW AVAILABLE

"Martin Thomson" <mt@lowentropy.net> Thu, 29 April 2021 02:24 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: c430@rfc-editor.org
Delivered-To: c430@rfc-editor.org
Received: from localhost (localhost [127.0.0.1]) by rfc-editor.org (Postfix) with ESMTP id 0D186F407B6; Wed, 28 Apr 2021 19:24:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at rfc-editor.org
X-Spam-Flag: NO
X-Spam-Score: -98.69
X-Spam-Level:
X-Spam-Status: No, score=-98.69 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=0.01, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H4=2, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=0.01, SPF_PASS=-0.001, SUBJECT_IN_WHITELIST=-100, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: rfcpa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=jnJzwwIB; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=JHqjbfNn
Received: from rfc-editor.org ([127.0.0.1]) by localhost (rfcpa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5nSBW3M56Ll8; Wed, 28 Apr 2021 19:24:23 -0700 (PDT)
Received: from out3-smtp.messagingengine.com (out3-smtp.messagingengine.com [66.111.4.27]) by rfc-editor.org (Postfix) with ESMTPS id B6BBEF4077B; Wed, 28 Apr 2021 19:24:23 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id A033C5C00C3; Wed, 28 Apr 2021 22:24:34 -0400 (EDT)
Received: from imap10 ([10.202.2.60]) by compute1.internal (MEProxy); Wed, 28 Apr 2021 22:24:34 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :cc:subject:content-type; s=fm2; bh=aMUwch46f1AtgUEMg/2vKWOZHZ0O zAGAfv1Y057NER0=; b=jnJzwwIBQr4F2GFgHJcg8xLpklSqa2gRryy5aqIKZX1z /3p50FKT/rLpRKgiqz7KW12rXuZcPCQRsVJ0BDUHUgZyyxqKqZtAXrphZr5oNgVn BRcvdbVC+F47ppaHy1uOe2oGySdMzAWPo0nb6/HV0oPmTzCRSw9ahyG+Cp4c/SXF IC0d7p/7w2khyhVb4HxepvIaw8BNos2wSQBWwh10Y5txnIzoCP+buexsrewj1JEs HpmAvX3/9ZjRvAq4vNc15q0TjyccgRyQs9I3R8UvgrFArwfcWxql0DzT+5LQcImk o1O+ydNZL8SD1qX0BHFTGu988DEaXOVD3lwye0gB7w==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=aMUwch 46f1AtgUEMg/2vKWOZHZ0OzAGAfv1Y057NER0=; b=JHqjbfNn0rG8RfBd5Yxp0q QZe6rLGOB5fYnNQ7cp/YOz2oULj3Hw4HSyxj9+2VW5DUsCKB7yKQxQ3my60wUOKX hBjAqsjHuFVJ/sAHTqRUbbBeEwy1FjLfhvi4Xuxjqi8UnkafxO0JzEweW/iuekJ/ R5vKefp8xKjPhfdlbgv6gO6jIRY+QWoQaBkCoVy5EKcDMEa0/qHmu2uoLwSOOjWB 4UokHmClhIbhnDx1K7aQpqUlBGXWdiFI1em47lCDOztyW3mfFjlXHSblvEBH9YOl Y2k2tF24bx4yN2JRr5diYoqqOQSUNQury2PnYCM7JSznfDbsCMgjzYQLWZ5FdbSw ==
X-ME-Sender: <xms:4RiKYFnHA_oqTseijyTnQaZyS7oiIlMpiSg4oNRwUxhrXRsuS0_9hw> <xme:4RiKYA3ztxQE-o_xb9d9drRys3h2hZfFU8pJpqHyo3uhs0q2lK1Sjx9pcfCEA2Jmx Gs2M6zYfTP5QpX8jT0>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduledrvddvfedgheejucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepofgfggfkjghffffhvffutgesthdtredtreertdenucfhrhhomhepfdforghr thhinhcuvfhhohhmshhonhdfuceomhhtsehlohifvghnthhrohhphidrnhgvtheqnecugg ftrfgrthhtvghrnheptdetudekleegveehtedtgeduheduieejffekuddugeeuteekffel gffgieegfeetnecuffhomhgrihhnpehgihhthhhusgdrtghomhdprhhftgdqvgguihhtoh hrrdhorhhgnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhho mhepmhhtsehlohifvghnthhrohhphidrnhgvth
X-ME-Proxy: <xmx:4RiKYLqCDGScwsAiyVyoxnYFaNzvTSOco1nB9jsrV6PJsMS_v_VD9w> <xmx:4RiKYFkxIut599zEJNhOQE-mS-t6CVluNB5wKkUJRd9X0h1i7LVgpg> <xmx:4RiKYD29NL4KzNHdMpjD81HoJ_VzPCeYyjyk7wbzvcDdGnOtvh7UPA> <xmx:4hiKYNq0ReKa4LEAQcDDBFTFQsOJ_sQUyLtM_leFH5rVQS7ijri4dQ>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 79CFD4E00C4; Wed, 28 Apr 2021 22:24:33 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.5.0-alpha0-403-gbc3c488b23-fm-20210419.005-gbc3c488b
Mime-Version: 1.0
Message-Id: <3fac22d9-bbbc-4963-92f8-2a3aa399a390@www.fastmail.com>
In-Reply-To: <20210427074149.B07ADF40797@rfc-editor.org>
References: <20210427074149.B07ADF40797@rfc-editor.org>
Date: Thu, 29 Apr 2021 12:24:14 +1000
From: Martin Thomson <mt@lowentropy.net>
To: rfc-editor <rfc-editor@rfc-editor.org>, Sean Turner <sean@sn3rd.com>
Cc: Lars Eggert <lars@eggert.org>, Lucas Pardue <lucaspardue.24.7@gmail.com>, Matt Joras <matt.joras@gmail.com>, Martin Duke <martin.h.duke@gmail.com>, Zaheduzzaman Sarker <Zaheduzzaman.Sarker@ericsson.com>, Mark Nottingham <mnot@mnot.net>, Martin Thomson via C430 <c430@rfc-editor.org>
Content-Type: text/plain
Subject: Re: [C430] AUTH48 [JM]: RFC 9001 <draft-ietf-quic-tls-34.txt> NOW AVAILABLE
X-BeenThere: c430@rfc-editor.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <c430.rfc-editor.org>
List-Unsubscribe: <https://www.rfc-editor.org/mailman/options/c430>, <mailto:c430-request@rfc-editor.org?subject=unsubscribe>
List-Archive: <http://www.rfc-editor.org/pipermail/c430/>
List-Post: <mailto:c430@rfc-editor.org>
List-Help: <mailto:c430-request@rfc-editor.org?subject=help>
List-Subscribe: <https://www.rfc-editor.org/mailman/listinfo/c430>, <mailto:c430-request@rfc-editor.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Apr 2021 02:24:28 -0000

Thanks for the work on this document.

I've staged a bunch of changes in our source repository for review.  I will provide updated XML once that process is complete.  For now, I will try to note differences so that there are no surprises.

The complete set of outstanding changes to this document are in progress, so they are either in our working copy:
  https://github.com/quicwg/base-drafts/blob/master/draft-ietf-quic-tls.md
or they are in open pull requests that affect that document:
  https://github.com/quicwg/base-drafts/pulls?q=is%3Apr+is%3Aopen+label%3A-tls

I have only made very minor changes in this document on top of what has been suggested.

One annoying little nit comes from unrelated edits in one paragraph that caused the string 2<sup>-57</sup> to render badly in text.  In text, this now renders with "2^-" on one line and "57" on the next.  Do we have any strategy for dealing with this?  I don't think that moving to a non-breaking hyphen is a good answer for this case.  Changes to xml2rfc so that it avoids line breaks before and inside <sup> (and <sub>) might be worth considering though.

I have not yet worked out how to generate <th> elements instead of <td> for the left column of tables as proposed.  While the rendering from xml2rfc in text of a table like this is terrible enough that I was initially inclined to reject this change, that is a problem with xml2rfc, not the change.  The semantic change is good.  I just wanted to note that I've an open issue to work out how to manage this: https://github.com/quicwg/base-drafts/issues/4872

I note that many <artwork> elements have been converted to <sourcecode>.  This is mostly good, but I don't think that it is appropriate to label the notation we've invented here as "pseudocode".  I've not applied that change.  I note that RFC-to-be 8999 didn't include that change, which in this case is appropriate.  This is deliberately not a formal grammar, it's an illustration aid.

https://www.rfc-editor.org/authors/rfc9001-xmldiff2.html exists, but is broken.  The other XML diff currently shows numbered anchors.  The XML diff completely mangled the appendix, so I've applied changes based on the text diff only.

Though I did say I wouldn't update references, I have done so for the two that had changes here.  We have another tooling issue to work through; <refcontent> is being stripped out for the moment, but I'm working on that.

On Tue, Apr 27, 2021, at 17:41, rfc-editor@rfc-editor.org wrote:
> 2) <!-- [rfced] Please review the items marked "Note:" and let us know 
> if any should be marked as <aside>.  Some are not clear to us, 
> especially those that contain RFC 2119 keywords.  
> 
> For example:
>    Note:  An endpoint MUST NOT reject a ClientHello that offers a cipher
>       suite that it does not support, or it would be impossible to
>       deploy a new cipher suite.  This also applies to
>       TLS_AES_128_CCM_8_SHA256.
> 
> -->

I found two such cases and have proposed changes that remove the "note: " lead-in.  The others are all appropriate uses of <aside/> and I've also proposed a matching change.  Now, if the rendering of <aside> in text weren't so terrible I'd be happy about this outcome.

I would say that better support in the grammar for notes would be worth exploring.  <aside prologue="Note"> would be a very useful feature.

> 3) <!-- [rfced]  We are having difficulty parsing the following sentence. 
> 
> Current:
>    The same number of bytes are always sampled, but an allowance needs 
>    to be made for the endpoint removing protection, which will not know 
>    the length of the Packet Number field.
> 
> Perhaps:
>    The same number of bytes are always sampled, but an allowance needs 
>    to be made for the removal of protection by the endpoint, which 
>    will not know the length of the Packet Number field. 
> -->

That is better, though endpoint role here probably needs clarification.  I've used "receiving endpoint" instead. 

> 4) <!-- [rfced]  FYI  We have updated the following cross reference to point 
> to Section 9.5 (Header Protection Timing Side Channels) rather than 
> 9.4 (Header Protection Analysis). Please let us know if changes are 
> necessary:

Yes, this is a good change.  Thanks.

> 5) <!-- [rfced]  We are having difficulty parsing the following:
> 
> Current:
>    Using dummy keys will generate no variation in the
>    timing signal produced by attempting to remove packet protection, and
>    results in all packets with an invalid Key Phase bit being rejected.
> 
> Perhaps:
>    The use of dummy keys introduces no variation in the
>    timing signal, which could be altered by attempting to remove packet 
>    protection, and results in all packets with an invalid Key Phase bit 
>    being rejected.
> -->

That would subtly change the meaning.

I'm going to suggest:

> Using randomized keys ensures that attempting to remove packet protection does not result in timing variations, and results in packets with an invalid Key Phase bit being rejected.

An aside: someone noted that "dummy" was problematic and so I've separately changed this to "randomized" in the preceding sentence also.

> 6) <!-- [rfced]  FYI  We have made the following edit to improve readability.
>    QUIC extensions MUST either describe how replay attacks affect their
>    operation or prohibit the use of the extension in 0-RTT.  

This is good.

> 7) <!-- [rfced]  Note that we have updated the date and URL listed for 
> [AEBounds] 

Thanks.

> 8) <!-- [rfced]  FYI  We have made the following update to improve 
> readability. 
>    *  The number of ciphertext blocks an attacker uses in forgery
>       attempts is bounded by v * l, which is the number of forgery 
>       attempts multiplied by the size of each packet (in blocks). 

Also good, thanks.

> 9) <!-- [rfced] Throughout the text, the following term appears to be used 
> inconsistently. Please review these occurrences and let us know if/how they
> may be made consistent.  
> 
> application data / Application Data / Application data
> 
> Note that RFC-to-be 9000 <draft-ietf-quic-transport> uses the lowercase 
> form consistently.  

Yes. I have reviewed this and I think that I've made it more consistent.  The outcome is that figures will use title case for consistency (as appropriate) and text will use the lowercase form.  There is one reference to TLS Application Data, where I have kept the title case to match the usage in RFC 8446.

v2.23.0 | Report a Bug | By Email