IETF Logo Mail Archive

Re: [Anima] Content-Transfer-Encoding and HTTP 1.x in ANIMA BRSKI

Brian E Carpenter <brian.e.carpenter@gmail.com> Thu, 20 June 2019 16:04 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76A7912012D for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 20 Jun 2019 09:04:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.899
X-Spam-Level:
X-Spam-Status: No, score=-2.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8etJzxau3Ezp for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 20 Jun 2019 09:04:55 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 23377120124 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 20 Jun 2019 09:04:54 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1hdzXT-0008Kg-P1 for ietf-http-wg-dist@listhub.w3.org; Thu, 20 Jun 2019 16:03:51 +0000
Resent-Message-Id: <E1hdzXT-0008Kg-P1@frink.w3.org>
Received: from mimas.w3.org ([2603:400a:ffff:804:801e:34:0:4f]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <ylafon@w3.org>) id 1hdzXQ-0008JO-Pp for ietf-http-wg@listhub.w3.org; Thu, 20 Jun 2019 16:03:48 +0000
Received: from raoul.w3.org ([128.30.52.128]) by mimas.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <ylafon@w3.org>) id 1hdzX1-0002W0-KJ for ietf-http-wg@w3.org; Thu, 20 Jun 2019 16:03:47 +0000
Received: from platy.fdn.fr ([80.67.176.7] helo=[192.168.1.129]) by raoul.w3.org with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <ylafon@w3.org>) id 1hdzX1-0002eK-9Z for ietf-http-wg@w3.org; Thu, 20 Jun 2019 16:03:23 +0000
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
Content-Type: text/plain; charset="utf-8"
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
In-Reply-To: <BN7PR11MB25473A12F646FAC8C19C1118C9EF0@BN7PR11MB2547.namprd11.prod.outlook.com>
Resent-From: Yves Lafon <ylafon@w3.org>
Date: Thu, 13 Jun 2019 20:33:59 +0000
Cc: Julian Reschke <julian.reschke@gmx.de>, "draft-ietf-pkix-est@ietf.org" <draft-ietf-pkix-est@ietf.org>, Carsten Bormann <cabo@tzi.org>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>, Anima WG <anima@ietf.org>
Content-Transfer-Encoding: quoted-printable
Resent-Date: Thu, 20 Jun 2019 18:03:22 +0200
Message-Id: <1b9a76bb-4b95-8e30-1fec-bb1fb011fab5@gmail.com>
Resent-To: HTTP Working Group <ietf-http-wg@w3.org>
References: <32410.1560275231@localhost> <15839.1560351718@localhost> <8a538f76-787d-de13-97f1-16195daae8ce@gmx.de> <F896BCBC-6C32-4107-B4B5-C12617F81326@tzi.org> <AD4DC1AA-C332-4BC7-B095-0CDD30700B99@cisco.com> <909.1560436148@localhost> <BN7PR11MB25473A12F646FAC8C19C1118C9EF0@BN7PR11MB2547.namprd11.prod.outlook.com>
X-Name-Md5: efe3dad792d606410c9cc49cedaffc94
To: "Panos Kampanakis (pkampana)" <pkampana@cisco.com>, Michael Richardson <mcr+ietf@sandelman.ca>, Eliot Lear <lear@cisco.com>
X-Mailer: Apple Mail (2.3445.104.11)
X-W3C-Hub-Spam-Status: No, score=-0.1
X-W3C-Hub-Spam-Report: ALL_TRUSTED=-1, AWL=-1.714, BAYES_20=-0.001, DKIM_ADSP_CUSTOM_MED=0.001, FORGED_GMAIL_RCVD=1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, NML_ADSP_CUSTOM_MED=0.9, W3C_NW=0.5
X-W3C-Scan-Sig: mimas.w3.org 1hdzX1-0002W0-KJ 6aff96d833e5a558f44c007717ce80dd
X-Original-To: ietf-http-wg@w3.org
Subject: Re: [Anima] Content-Transfer-Encoding and HTTP 1.x in ANIMA BRSKI
Archived-At: <https://www.w3.org/mid/1b9a76bb-4b95-8e30-1fec-bb1fb011fab5@gmail.com>
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/36729
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On 14-Jun-19 05:18, Panos Kampanakis (pkampana) wrote:
> The libest server or proxy will generate the CTE header as specified in RFC7030. The libest client will parse it, but it will not reject the response if the header is not there. It expects base64 encoded PKCS#7, not binary though. Note that in _https://datatracker.ietf.org/doc/draft-ietf-ace-coap-est/_ we assume all cert payloads are binary.
>  
> Now, I don’t know how other EST clients would act. There are many out there by now that we can’t safely tell if they would act up.
>  
> The commercial and enterprise CAs I tested with interoped fine with the libest client and they were not all sending the CTE field. They payload was base64 though.
>  
> To address the erratum, I would lean towards a recommendation against using the CTE header based on the referenced standards and state that base64 encoding is implied.

https://tools.ietf.org/html/rfc7231#appendix-A from June 2014 makes it all very plain. However, there is a small problem of running code.

There's already an erratum: https://www.rfc-editor.org/errata/eid5107

For whatever reason, it is sitting in state "reported" since 2017.

   Brian

v2.23.0 | Report a Bug | By Email