Re: [Gen-art] Gen-ART review of draft-ietf-httpbis-tunnel-protocol-04
Jari Arkko <jari.arkko@piuha.net> Thu, 11 June 2015 10:25 UTC
Return-Path: <jari.arkko@piuha.net>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BBBEF1B2EB2 for <gen-art@ietfa.amsl.com>; Thu, 11 Jun 2015 03:25:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V1yeuYICfzTK for <gen-art@ietfa.amsl.com>; Thu, 11 Jun 2015 03:25:21 -0700 (PDT)
Received: from p130.piuha.net (p130.piuha.net [193.234.218.130]) by ietfa.amsl.com (Postfix) with ESMTP id DF96B1B2EAB for <gen-art@ietf.org>; Thu, 11 Jun 2015 03:25:20 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by p130.piuha.net (Postfix) with ESMTP id 3B2772CED4; Thu, 11 Jun 2015 13:25:20 +0300 (EEST) (envelope-from jari.arkko@piuha.net)
X-Virus-Scanned: amavisd-new at piuha.net
Received: from p130.piuha.net ([127.0.0.1]) by localhost (p130.piuha.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id s8G0op-SxHlG; Thu, 11 Jun 2015 13:25:19 +0300 (EEST)
Received: from [127.0.0.1] (p130.piuha.net [IPv6:2a00:1d50:2::130]) by p130.piuha.net (Postfix) with ESMTP id 5BE842CEB6; Thu, 11 Jun 2015 13:25:19 +0300 (EEST) (envelope-from jari.arkko@piuha.net)
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
Content-Type: multipart/signed; boundary="Apple-Mail=_539636A6-1E6E-4090-B2A5-349B2E8C04CC"; protocol="application/pgp-signature"; micalg="pgp-sha512"
X-Pgp-Agent: GPGMail 2.5
From: Jari Arkko <jari.arkko@piuha.net>
In-Reply-To: <CABkgnnUTEeWwaTXC2Vedr3QatL5ijQmM1rpPm7vbxXt1QYA2xA@mail.gmail.com>
Date: Thu, 11 Jun 2015 13:25:17 +0300
Message-Id: <BA093E2F-4BBC-4725-9B0C-283CB8C19087@piuha.net>
References: <7594FB04B1934943A5C02806D1A2204B1D82B57A@ESESSMB209.ericsson.se> <CABkgnnUTEeWwaTXC2Vedr3QatL5ijQmM1rpPm7vbxXt1QYA2xA@mail.gmail.com>
To: Martin Thomson <martin.thomson@gmail.com>
X-Mailer: Apple Mail (2.1878.6)
Archived-At: <http://mailarchive.ietf.org/arch/msg/gen-art/MttY_9z5KBRXgYfok6_KELj1OOY>
Cc: "draft-ietf-httpbis-tunnel-protocol.all@tools.ietf.org" <draft-ietf-httpbis-tunnel-protocol.all@tools.ietf.org>, "gen-art@ietf.org" <gen-art@ietf.org>
Subject: Re: [Gen-art] Gen-ART review of draft-ietf-httpbis-tunnel-protocol-04
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Jun 2015 10:25:23 -0000
Thanks for your review, Christer. Martin, is the ABNF now OK (even if not necessarily submitted as a new version)? Jari On 04 Jun 2015, at 07:50, Martin Thomson <martin.thomson@gmail.com> wrote: > I apologize for missing this, it was badly filed. Thanks for the > comments. Fresh eyes are always helpful here, and you identified lots > of little pieces of potentially confusing text. > > The changes will be in -05, but you can preview them on github: > https://httpwg.github.io/http-extensions/tunnel-protocol.html > > On 22 May 2015 at 01:26, Christer Holmberg > <christer.holmberg@ericsson.com> wrote: >> ALPN = "ALPN":" protocol-id *(COMMA protocol-id) > > Julian has corrected this also. The production that is used is > described in RFC 7230, as referenced immediately before the rule. > >> Are proxies prevented from implementing any tunneled protocol? If not, >> should the text say “Proxies might not implement the tunneled protocol”? > > They aren't really proxies when they implement the tunneled protocol, > are they? That's them taking off their proxy hat and putting on a > <some other protocol> server hat (or maybe their MitM hat). > > >> Do you need both sentences, or could they be combined into a single >> sentence? > > Good point. It was a little redundant: > https://github.com/httpwg/http-extensions/commit/fb18ad4 > >> “For a tunnel that is then secured using TLS [RFC5246], the header field > >> I think it would be useful to add a reference to RFC 7301 after TLS >> handshake: >> “…be carried within the TLS handshake [RFC7301].” > > https://github.com/httpwg/http-extensions/commit/970b37f36 > >> What if TLS is NOT used? > > No problem. Application protocols can still have an identifier. Note > that we say "Other substrates could negotiate the application protocol > differently." and also, later, have a whole section on the subject: > https://tools.ietf.org/html/draft-ietf-httpbis-tunnel-protocol-04#section-2.3 > >> Who makes the choice of application protocol then? > > That is not known. The ALPN identifiers - if the proxy understands > them - will probably have to include a definition that covers how the > protocol is negotiated. All the current ones do. > >> What if the recipient does not support, or does not want to use, the >> protocol(s) indicated by the client? > > That's a little piece of necessary uncertainty. Just as the proxy > cannot rely on this header field being present, it cannot rely on the > two peers actually negotiating the indicated protocol. It can check, > but TLS is (or will be) designed to make that hard. > >> The text says that the ALPN header field will contain the protocol that will >> be used within the tunnel. >> >> I think “will” is wrong wording, as the recipient has the final saying on >> what will be used. Later in the document the text says “intended to be >> used”, and I think that would fit here too. > > You are right: > https://github.com/httpwg/http-extensions/commit/1bbe0aa4504 > >> “For a CONNECT tunnel that conveys a TLS session that in turn >> encapsulates another protocol,…” >> >> The text is confusing. Shouldn’t it simply say “A tunnel that is secured >> using TLS”, or something? > > Yeah, it's a little overwrought. How about: > For a CONNECT tunnel that conveys a protocol secured with TLS > https://github.com/httpwg/http-extensions/commit/3e470d644 > >> “When used in the ALPN header field, the ALPN identifier and registry >> are used…” >> >> What is meant by “registry” here? > > Yeah, that's a little confusing. > How about: "When used in the ALPN header field, an ALPN identifier is used ..." > https://github.com/httpwg/http-extensions/commit/cdf620a > > _______________________________________________ > Gen-art mailing list > Gen-art@ietf.org > https://www.ietf.org/mailman/listinfo/gen-art
- [Gen-art] Gen-ART review of draft-ietf-httpbis-tu… Christer Holmberg
- Re: [Gen-art] Gen-ART review of draft-ietf-httpbi… Paul Kyzivat
- Re: [Gen-art] Gen-ART review of draft-ietf-httpbi… Martin Thomson
- Re: [Gen-art] Gen-ART review of draft-ietf-httpbi… Jari Arkko