IETF Logo Mail Archive

Re: Working Group Last Call: draft-ietf-httpbis-http2-tls13-00

David Benjamin <davidben@chromium.org> Fri, 13 September 2019 22:53 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 47B8E1200FA for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 13 Sep 2019 15:53:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.999
X-Spam-Level:
X-Spam-Status: No, score=-2.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=chromium.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vnMBj4dGI8-k for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 13 Sep 2019 15:53:23 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 87C78120096 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Fri, 13 Sep 2019 15:53:23 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1i8uPu-0003Oj-BL for ietf-http-wg-dist@listhub.w3.org; Fri, 13 Sep 2019 22:51:50 +0000
Resent-Date: Fri, 13 Sep 2019 22:51:50 +0000
Resent-Message-Id: <E1i8uPu-0003Oj-BL@frink.w3.org>
Received: from mimas.w3.org ([2603:400a:ffff:804:801e:34:0:4f]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <davidben@google.com>) id 1i8uPr-0003Nx-0Z for ietf-http-wg@listhub.w3.org; Fri, 13 Sep 2019 22:51:47 +0000
Received: from mail-pf1-x42a.google.com ([2607:f8b0:4864:20::42a]) by mimas.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.89) (envelope-from <davidben@google.com>) id 1i8uPo-0007Zr-Qw for ietf-http-wg@w3.org; Fri, 13 Sep 2019 22:51:46 +0000
Received: by mail-pf1-x42a.google.com with SMTP id b13so18958266pfo.8 for <ietf-http-wg@w3.org>; Fri, 13 Sep 2019 15:51:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=chromium.org; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=hBGPOmfo5oOMc3nseLJkwijDz3OagxXn0sfoTEhQlNs=; b=N+yykT3nhqK5oHSO0bJeNMrst2UdH+ZB1lp9s+YpKszR2hWsNp4wndj6/SygIo/KGl hEUTu5+6+ZwCrvgGHpnfh3vzbpLwRAonMsQwF6dgQUAfzqNUeRoFTrk2hw3cP+4ANcU4 qnV7z8AJd23Slw+4nmyRcUVcfg+WXwM2j3bfQ=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=hBGPOmfo5oOMc3nseLJkwijDz3OagxXn0sfoTEhQlNs=; b=G3fMlegizbHzaAWP7m5TT3204GNHT3p61hYNMqy6bS8DDQmEMFIJ7T0Sp/USesVnKY l3ITBsT4+uCExLgwwkjr73064bFQtk0L/AIpu29CZCDOpLLovaj4AcmUMYOlYQo/WUvQ tcGLFUH8lTuckSiq5Kq5w9oDn4uWcR/QtCbtPGZI2fCBIrQtDz1/YuOXaXvZLq1uhk8q NC/X+O1wvIZ+PDNzlKz4xc2AjOffrMq7n47pcVrNACQqzCfDNfQKwyx4L4DtRi7MCotG uYYtbuij0FMlCQUpjt3YafYWbwROMu5j0HKwJL9uyr/PwYDtgB5j4bJ0muJvx54BzlN1 6BbA==
X-Gm-Message-State: APjAAAX9IZfjMUXH0uIrFU+cenJJcNPa4TwnKAvLNEXfORpk8SLTZe8I v4545XFScGZQ341XRNFdbDYL9Xdnx63i4sFeIgF7
X-Google-Smtp-Source: APXvYqy76cWUn+/6QLyfgRbx4Oy8IqMMeDyHLe3GMiUQeYhzCuIxmuHukn8avbLlId1sUUQY6/kKRkaAjEyzwwzUHrE=
X-Received: by 2002:a17:90a:e98e:: with SMTP id v14mr7651962pjy.99.1568415082846; Fri, 13 Sep 2019 15:51:22 -0700 (PDT)
MIME-Version: 1.0
References: <36F559DD-7E4D-47FE-ADBF-423D09FE5AA9@mnot.net> <BN6PR2201MB120286DF8474D2B943CEC061DAB70@BN6PR2201MB1202.namprd22.prod.outlook.com> <CAF8qwaBO5-go++AbS0gzaQNXuyT7wAdLjnB9Qx3Y-tDyw7K3Uw@mail.gmail.com>
In-Reply-To: <CAF8qwaBO5-go++AbS0gzaQNXuyT7wAdLjnB9Qx3Y-tDyw7K3Uw@mail.gmail.com>
From: David Benjamin <davidben@chromium.org>
Date: Fri, 13 Sep 2019 18:51:06 -0400
Message-ID: <CAF8qwaAx2za6F5RbsFn49ShrxtXqDxL-i1HBBdUjZtGWdUaWvg@mail.gmail.com>
To: Mike Bishop <mbishop@evequefou.be>
Cc: Mark Nottingham <mnot@mnot.net>, HTTP Working Group <ietf-http-wg@w3.org>, Tommy Pauly <tpauly@apple.com>, Patrick McManus <mcmanus@ducksong.com>
Content-Type: multipart/alternative; boundary="000000000000dffccb05927717a4"
Received-SPF: pass client-ip=2607:f8b0:4864:20::42a; envelope-from=davidben@google.com; helo=mail-pf1-x42a.google.com
X-W3C-Hub-Spam-Status: No, score=-13.1
X-W3C-Hub-Spam-Report: AWL=-1.650, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, USER_IN_DEF_SPF_WL=-7.5, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1i8uPo-0007Zr-Qw 521345d99f4036f05e8ad39542afab89
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Working Group Last Call: draft-ietf-httpbis-http2-tls13-00
Archived-At: <https://www.w3.org/mid/CAF8qwaAx2za6F5RbsFn49ShrxtXqDxL-i1HBBdUjZtGWdUaWvg@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37017
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

I've now uploaded draft-ietf-httpbis-http2-tls13-01 which includes that PR.

https://tools.ietf.org/html/draft-ietf-httpbis-http2-tls13-01 (link doesn't
work as of writing but presumably will work later)
https://www.ietf.org/id/draft-ietf-httpbis-http2-tls13-01.txt
https://www.ietf.org/rfcdiff?url2=draft-ietf-httpbis-http2-tls13-01

On Wed, Sep 11, 2019 at 8:34 PM David Benjamin <davidben@chromium.org>
wrote:

> On Mon, Sep 9, 2019 at 1:52 PM Mike Bishop <mbishop@evequefou.be> wrote:
>
>> Giving this document a re-read, I take some issue with one wording choice
>> that seems to be consistent throughout:
>> ~~~
>>    The former shares the same problems with multiplexed protocols, but
>>    has a different name.  This makes it ambiguous whether post-handshake
>>    authentication is allowed in TLS 1.3.
>>
>>    This document clarifies that the prohibition applies to post-
>>    handshake authentication but not to key updates.
>> ~~~
>> It's not at all ambiguous whether the prohibitions in RFC7540 apply to
>> TLS 1.3 -- they don't.    "Deployments of HTTP/2 that negotiate TLS 1.3 or
>> higher need only support and use the SNI extension; deployments of TLS 1.2
>> are subject to the requirements in the following sections."  The sections
>> you're discussing are very explicitly excluded from covering TLS 1.3.
>>
>
> Aha! Somehow I'd missed that sentence. Thanks! I've applied MT's
> suggestion and then reworded the document accordingly in
> https://github.com/httpwg/http-extensions/pull/929.
>
>
>> But the reasons for them still apply, so you're here defining those
>> prohibitions against the new world of TLS 1.3.  This isn't a clarification
>> of anything formerly ambiguous, but a new definition in the same spirit and
>> for the same reason.
>>
>> The requirements themselves, I support.
>>
>> -----Original Message-----
>> From: Mark Nottingham <mnot@mnot.net>
>> Sent: Wednesday, September 4, 2019 11:16 PM
>> To: HTTP Working Group <ietf-http-wg@w3.org>
>> Cc: Tommy Pauly <tpauly@apple.com>; Patrick McManus <mcmanus@ducksong.com
>> >
>> Subject: Working Group Last Call: draft-ietf-httpbis-http2-tls13-00
>>
>> David indicates that he thinks we're ready for WGLC on this document:
>>
>>  https://tools.ietf.org/html/draft-ietf-httpbis-http2-tls13-00
>>
>> Please have a look through and bring up any issues here or on the issues
>> list, and please indicate support (or lack thereof) for advancement on the
>> mailing list. If you are implementing or intend to implement the
>> specification, that would be useful information for us.
>>
>> WGLC will end on 19 September.
>>
>> Cheers,
>>
>> --
>> Mark Nottingham   https://www.mnot.net/
>>
>>
>>
>>

v2.23.0 | Report a Bug | By Email