RE: Working Group Last Call: draft-ietf-httpbis-http2-tls13-00
Mike Bishop <mbishop@evequefou.be> Tue, 17 September 2019 20:17 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B076A120A28 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 17 Sep 2019 13:17:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.899
X-Spam-Level:
X-Spam-Status: No, score=-2.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=evequefou.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id A_arv5XbyqLr for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 17 Sep 2019 13:17:54 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C81EE120A0D for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 17 Sep 2019 13:17:54 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1iAJsi-0003TO-Gk for ietf-http-wg-dist@listhub.w3.org; Tue, 17 Sep 2019 20:15:24 +0000
Resent-Date: Tue, 17 Sep 2019 20:15:24 +0000
Resent-Message-Id: <E1iAJsi-0003TO-Gk@frink.w3.org>
Received: from mimas.w3.org ([2603:400a:ffff:804:801e:34:0:4f]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <mbishop@evequefou.be>) id 1iAJse-0003Sc-Dm for ietf-http-wg@listhub.w3.org; Tue, 17 Sep 2019 20:15:20 +0000
Received: from mail-eopbgr770114.outbound.protection.outlook.com ([40.107.77.114] helo=NAM02-SN1-obe.outbound.protection.outlook.com) by mimas.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <mbishop@evequefou.be>) id 1iAJsb-0002bV-LW for ietf-http-wg@w3.org; Tue, 17 Sep 2019 20:15:20 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kZ+wOKQd4WWrICYDCF9RRn5X3ZGEzuDCS1vk0tutR4kPfiIOY/1QihB2i8ZYLB9jbQ7HjrtWXfr0/9MegJJSDAR2obAc6MuQM3eB1sUt5cxrc4ASm6Iu2UpGd0d90cFPext9XsnCfQfYOTlk0YYvzuwl00Euro/5BLFhsetkKADicxeAJW/YHAglBpo+a1ibZ5id3KlsaCuS6zPjDqqUp3TH650BZwjVYH4lzM5FRwSO1Qi6b2WyWly7YOuJkSpQr0JvPDRGrVo94pIUF4uBA+6b+b8R8SMe8OZhlHYm4pk+Q73ik1+Cv+u7kJcZ8ctQ1nFdRFoAiB8WzYj/ta+ETQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HsSsVKgNCmT9HF2WyQKmm06fTPc1aSBz8bb2q28m3R8=; b=nZr9HhTDX8aqOJVbpoyijSrYadvQ6LBWbYgoJI6nDqxkzJqEUNDP3EjUiuTMN/OGnqa8qp2oz2c/l0X+gVCkr/z3Mhl42NBdilZ+81vSsulDYdJe31sXEdD+/y/Htn2Gv1l1Sn8qTpnDU6KAfp4VQ8wnFkMuvatLFC1wWSKf7S+yXQcBdlztkR5MkFDlWiNZuAFSw+Sf9W8kiqMAyKdd9/eSmDZrVBrmF2bjnwRkWPAhzX++/Nja2ARb7fygIKl4SJVEHMmju68bzW6bthGJii5r4Ftovr4Wsn49iROYnxpssOJpfwRwdaVMtvSUS1yg0b44BbwuxkrWYisJJq2t8Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=evequefou.be; dmarc=pass action=none header.from=evequefou.be; dkim=pass header.d=evequefou.be; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=evequefou.onmicrosoft.com; s=selector2-evequefou-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HsSsVKgNCmT9HF2WyQKmm06fTPc1aSBz8bb2q28m3R8=; b=MXha62H2CPhxZpUaNLemuZiQo66774+DwiHIykJEOv17D7xdnlyKDgz4RoZwfkH+7yYQ1lEwZFjKXLUgiGPfy/R3sqVfM+ht3knyG+E887koeIDZygTcjYq1ugMB54RqGTgevN99SFbqj/8m091f0ncu4Ud1ePM0R8E/Mdbbr6g=
Received: from BN6PR2201MB1202.namprd22.prod.outlook.com (10.174.80.146) by BN6PR2201MB1411.namprd22.prod.outlook.com (10.174.82.143) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2263.15; Tue, 17 Sep 2019 20:14:54 +0000
Received: from BN6PR2201MB1202.namprd22.prod.outlook.com ([fe80::288b:d6ec:1e00:c3c]) by BN6PR2201MB1202.namprd22.prod.outlook.com ([fe80::288b:d6ec:1e00:c3c%12]) with mapi id 15.20.2263.023; Tue, 17 Sep 2019 20:14:54 +0000
From: Mike Bishop <mbishop@evequefou.be>
To: Mark Nottingham <mnot@mnot.net>, David Benjamin <davidben@chromium.org>
CC: HTTP Working Group <ietf-http-wg@w3.org>, Tommy Pauly <tpauly@apple.com>, Patrick McManus <mcmanus@ducksong.com>
Thread-Topic: Working Group Last Call: draft-ietf-httpbis-http2-tls13-00
Thread-Index: AQHVY5izGdWnr1BNSEaTFt05uONoNqcjowqAgAOZdoCAAwfCAIAB6ouAgAQzGfA=
Date: Tue, 17 Sep 2019 20:14:53 +0000
Message-ID: <BN6PR2201MB1202540B8249C00A05667F7DDA8F0@BN6PR2201MB1202.namprd22.prod.outlook.com>
References: <36F559DD-7E4D-47FE-ADBF-423D09FE5AA9@mnot.net> <BN6PR2201MB120286DF8474D2B943CEC061DAB70@BN6PR2201MB1202.namprd22.prod.outlook.com> <CAF8qwaBO5-go++AbS0gzaQNXuyT7wAdLjnB9Qx3Y-tDyw7K3Uw@mail.gmail.com> <CAF8qwaAx2za6F5RbsFn49ShrxtXqDxL-i1HBBdUjZtGWdUaWvg@mail.gmail.com> <B83BFC60-7FC5-4B59-BEA7-10AF4FE99B20@mnot.net>
In-Reply-To: <B83BFC60-7FC5-4B59-BEA7-10AF4FE99B20@mnot.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=mbishop@evequefou.be;
x-originating-ip: [72.246.0.14]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 885b1277-04c4-451b-1e44-08d73babb3fe
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(7021145)(8989299)(5600167)(711020)(4605104)(1401327)(4534185)(7022145)(4603075)(4627221)(201702281549075)(8990200)(7048125)(7024125)(7027125)(7023125)(2017052603328)(7193020); SRVR:BN6PR2201MB1411;
x-ms-traffictypediagnostic: BN6PR2201MB1411:
x-ms-exchange-purlcount: 6
x-microsoft-antispam-prvs: <BN6PR2201MB14113A1A3601677A31429A7EDA8F0@BN6PR2201MB1411.namprd22.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 01630974C0
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(346002)(39830400003)(366004)(136003)(396003)(13464003)(199004)(189003)(229853002)(52536014)(305945005)(7736002)(256004)(53546011)(14454004)(76176011)(66066001)(7696005)(54906003)(110136005)(71200400001)(71190400001)(66446008)(66556008)(11346002)(66946007)(64756008)(66476007)(476003)(102836004)(25786009)(33656002)(6506007)(26005)(316002)(6436002)(99286004)(966005)(8936002)(5660300002)(186003)(76116006)(4326008)(2906002)(446003)(9686003)(486006)(55016002)(6306002)(86362001)(6246003)(508600001)(6116002)(81166006)(3846002)(8676002)(74316002)(81156014); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR2201MB1411; H:BN6PR2201MB1202.namprd22.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: evequefou.be does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: KvUJ/uhpGXJocbhif+4lXh9d/djG0A5kZjKp9varG0nLuDwfK6LI/uNPqlJ12XGAJawwT1lZY2tI/Q+od0isFoKop+hz2gfVLoKHWU5YM95WtRXjzu/6nKpk1OlC+8o//GCwxj8ZM61ywe+WRe4reoI0amH+oCcaO+VrlRopF7acfcL9HmkffGgVvwZHmupgxUgF0gFVatiarLNBwvduJxkX9sBKdt+eRSW4Rb5B7RHFWG24/W8cjsHnkJqvdHaWSshVkcxYeyyuk3rA2JaSX/pzHLVP287615jPGjVt7y9T+mh/1WQu7OZL644YLOmcWc9qUQTSViB5MQqvZ5mL46H6qVdIhIefspneuj+pqlhOrVEnt5QKSZ8lg0b2CTEMuEbVwVOp+4DgEY7r9qwmYU+iav2Dn9ghnep5A+/jybM=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: evequefou.be
X-MS-Exchange-CrossTenant-Network-Message-Id: 885b1277-04c4-451b-1e44-08d73babb3fe
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Sep 2019 20:14:54.0306 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 41eaf50b-882d-47eb-8c4c-0b5b76a9da8f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 5fHaLV5og4pdFv8VMtxZuX594iR0i8+mkrh2C0lI73Qf7bRt4GiJ8mS9firVhUHDpkSqvJWI65fJaMhiRRIu0g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR2201MB1411
Received-SPF: pass client-ip=40.107.77.114; envelope-from=mbishop@evequefou.be; helo=NAM02-SN1-obe.outbound.protection.outlook.com
X-W3C-Hub-Spam-Status: No, score=-3.9
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1iAJsb-0002bV-LW 389cf3cbfc38943db30759f9687866c5
X-Original-To: ietf-http-wg@w3.org
Subject: RE: Working Group Last Call: draft-ietf-httpbis-http2-tls13-00
Archived-At: <https://www.w3.org/mid/BN6PR2201MB1202540B8249C00A05667F7DDA8F0@BN6PR2201MB1202.namprd22.prod.outlook.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37020
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Looks good to me -- ship it! -----Original Message----- From: Mark Nottingham <mnot@mnot.net> Sent: Sunday, September 15, 2019 12:07 AM To: David Benjamin <davidben@chromium.org> Cc: Mike Bishop <mbishop@evequefou.be>; HTTP Working Group <ietf-http-wg@w3.org>; Tommy Pauly <tpauly@apple.com>; Patrick McManus <mcmanus@ducksong.com> Subject: Re: Working Group Last Call: draft-ietf-httpbis-http2-tls13-00 Folks, please have a read of the diff below, and say whether or not it addresses the WGLC comments. WGLC will end later this week. Cheers, > On 14 Sep 2019, at 8:51 am, David Benjamin <davidben@chromium.org> wrote: > > I've now uploaded draft-ietf-httpbis-http2-tls13-01 which includes that PR. > > https://tools.ietf.org/html/draft-ietf-httpbis-http2-tls13-01 (link > doesn't work as of writing but presumably will work later) > https://www.ietf.org/id/draft-ietf-httpbis-http2-tls13-01.txt > https://www.ietf.org/rfcdiff?url2=draft-ietf-httpbis-http2-tls13-01 > > On Wed, Sep 11, 2019 at 8:34 PM David Benjamin <davidben@chromium.org> wrote: > On Mon, Sep 9, 2019 at 1:52 PM Mike Bishop <mbishop@evequefou.be> wrote: > Giving this document a re-read, I take some issue with one wording choice that seems to be consistent throughout: > ~~~ > The former shares the same problems with multiplexed protocols, but > has a different name. This makes it ambiguous whether post-handshake > authentication is allowed in TLS 1.3. > > This document clarifies that the prohibition applies to post- > handshake authentication but not to key updates. > ~~~ > It's not at all ambiguous whether the prohibitions in RFC7540 apply to TLS 1.3 -- they don't. "Deployments of HTTP/2 that negotiate TLS 1.3 or higher need only support and use the SNI extension; deployments of TLS 1.2 are subject to the requirements in the following sections." The sections you're discussing are very explicitly excluded from covering TLS 1.3. > > Aha! Somehow I'd missed that sentence. Thanks! I've applied MT's suggestion and then reworded the document accordingly in https://github.com/httpwg/http-extensions/pull/929. > > But the reasons for them still apply, so you're here defining those prohibitions against the new world of TLS 1.3. This isn't a clarification of anything formerly ambiguous, but a new definition in the same spirit and for the same reason. > > The requirements themselves, I support. > > -----Original Message----- > From: Mark Nottingham <mnot@mnot.net> > Sent: Wednesday, September 4, 2019 11:16 PM > To: HTTP Working Group <ietf-http-wg@w3.org> > Cc: Tommy Pauly <tpauly@apple.com>; Patrick McManus > <mcmanus@ducksong.com> > Subject: Working Group Last Call: draft-ietf-httpbis-http2-tls13-00 > > David indicates that he thinks we're ready for WGLC on this document: > > https://tools.ietf.org/html/draft-ietf-httpbis-http2-tls13-00 > > Please have a look through and bring up any issues here or on the issues list, and please indicate support (or lack thereof) for advancement on the mailing list. If you are implementing or intend to implement the specification, that would be useful information for us. > > WGLC will end on 19 September. > > Cheers, > > -- > Mark Nottingham https://www.mnot.net/ > > > -- Mark Nottingham https://www.mnot.net/
- Working Group Last Call: draft-ietf-httpbis-http2… Mark Nottingham
- Re: Working Group Last Call: draft-ietf-httpbis-h… Martin Thomson
- Re: Working Group Last Call: draft-ietf-httpbis-h… David Benjamin
- Re: Working Group Last Call: draft-ietf-httpbis-h… Christopher Wood
- RE: Working Group Last Call: draft-ietf-httpbis-h… Mike Bishop
- Re: Working Group Last Call: draft-ietf-httpbis-h… David Benjamin
- Re: Working Group Last Call: draft-ietf-httpbis-h… David Benjamin
- Re: Working Group Last Call: draft-ietf-httpbis-h… Mark Nottingham
- RE: Working Group Last Call: draft-ietf-httpbis-h… Mike Bishop