Re: Standard URL safe digest form and hash algorithm list
Roberto Polli <roberto@teamdigitale.governo.it> Fri, 29 April 2022 06:44 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A89FFC1594A7 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 28 Apr 2022 23:44:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.751
X-Spam-Level:
X-Spam-Status: No, score=-2.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.248, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=teamdigitale.governo.it
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jjh_-zq_0dwS for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 28 Apr 2022 23:44:13 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E4899C157B57 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 28 Apr 2022 23:44:12 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.92) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1nkKKF-00048d-LC for ietf-http-wg-dist@listhub.w3.org; Fri, 29 Apr 2022 06:41:59 +0000
Resent-Date: Fri, 29 Apr 2022 06:41:59 +0000
Resent-Message-Id: <E1nkKKF-00048d-LC@lyra.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by lyra.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <roberto@teamdigitale.governo.it>) id 1nkKK8-00047k-IK for ietf-http-wg@listhub.w3.org; Fri, 29 Apr 2022 06:41:52 +0000
Received: from mail-ed1-x52b.google.com ([2a00:1450:4864:20::52b]) by titan.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.92) (envelope-from <roberto@teamdigitale.governo.it>) id 1nkKK6-0007R1-HV for ietf-http-wg@w3.org; Fri, 29 Apr 2022 06:41:52 +0000
Received: by mail-ed1-x52b.google.com with SMTP id z99so7944407ede.5 for <ietf-http-wg@w3.org>; Thu, 28 Apr 2022 23:41:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=teamdigitale.governo.it; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=w5GQEWodVMPZGUcznzP4pTFfvquUnV3z6HwTCTpiDQo=; b=cMJLyMsEJiqQUUNMnG4YJGevsy6hBIIuYytwKUBzAc7Sc7qdITD2Fr+HGiYLqMAY74 jZjErkgFOmL/s+KLebjJ6qkfj5AwJAl4Qe7qn9jlpIcHaTskys1wOxlOz5CQZxsJj40o xP8SrqhRK6GJYm3RG5AtHA6zQlOjwVrXBIb5wrWmTzixofbZ+zIGduXhHph74w2ijauS 2S08kpGAgAdqsYmgjRsrfeO8xEodQT1+V+tx6UzLc1j7UOQj0letE0gY8kRXljckNUvh o7/OcDPa+EPE20s1QrBF/zNk43qc+Co3UkSIsKyzLjbkC0JxBYhkYZanfpz9GCjyEp1r /pxw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=w5GQEWodVMPZGUcznzP4pTFfvquUnV3z6HwTCTpiDQo=; b=P9WJGq7S1FmcW4ZVPDc2YTel/7/g/2o0d77VRBdeN55SQR9Fmd8BL4OivyiYvG5i52 up03pVyAPTY403wlvWpDpF2cZPgI/t5wZDOZBdDqFDqI34NEVZVrdcW0NHx4ImupuBag sH424nQ/IYl68xikhyAB+wtp9Y6oLnnqORb2sWgUs/wno80cXw0a5sKPu06GuAIprh83 nlgySbeXAag98Qx0oe6rlSmO6JI+xMcrX9ux3q6gCM4zzed/5kOuNv9FgID7DxlajrR1 6uHaR4Rt97jbPVBp5qbH3gFeMNtxl7LfeJxTxPJLY80UC6wEqm8lnpso8VY8kOOmMOCY ZSAA==
X-Gm-Message-State: AOAM530r1lMZV33rr6HcDsiiyMYF1fRgkcS4OLhG/nY8VSRTkEBh725q 78kP9Q9KWC4vHyvMzUDNCsj4GkAC1TFrmLNZRLsv6A==
X-Google-Smtp-Source: ABdhPJw3hL3W413JhFS7axV88A4V9SEP4+Tj5WbUlwNjYKVp5uC2Ga/kQarjmr8aESOX8dtotYtBd5T9x5rMh1X01/g=
X-Received: by 2002:a05:6402:280a:b0:426:3178:4560 with SMTP id h10-20020a056402280a00b0042631784560mr4527540ede.84.1651214498812; Thu, 28 Apr 2022 23:41:38 -0700 (PDT)
MIME-Version: 1.0
References: <e878f0c7-26d0-163b-def4-7b51c3e031c0@profian.com>
In-Reply-To: <e878f0c7-26d0-163b-def4-7b51c3e031c0@profian.com>
From: Roberto Polli <roberto@teamdigitale.governo.it>
Date: Fri, 29 Apr 2022 08:41:27 +0200
Message-ID: <CAMRHeuzfTOEX_f70MogQXp+=BMRDLTgbmrvyv9Xs7m+5jcSqiw@mail.gmail.com>
To: Roman Volosatovs <roman@profian.com>
Cc: HTTP Working Group <ietf-http-wg@w3.org>, nathaniel@profian.com
Content-Type: multipart/alternative; boundary="000000000000a6640005ddc5555f"
Received-SPF: pass client-ip=2a00:1450:4864:20::52b; envelope-from=roberto@teamdigitale.governo.it; helo=mail-ed1-x52b.google.com
X-W3C-Hub-DKIM-Status: validation passed: (address=roberto@teamdigitale.governo.it domain=teamdigitale.governo.it), signature is good
X-W3C-Hub-Spam-Status: No, score=-8.0
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1nkKK6-0007R1-HV 14e9988252cb5c11a19c555e5e9860bd
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Standard URL safe digest form and hash algorithm list
Archived-At: <https://www.w3.org/mid/CAMRHeuzfTOEX_f70MogQXp+=BMRDLTgbmrvyv9Xs7m+5jcSqiw@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/40013
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Hi Roman, Can you please file a github issue requesting the registration of two more digest algorithms? About the encoding, we decided to delegate it to SF. I don't remember why it was decided to use but instead of b64url though... Isn't decode/encode a viable solution? Kind regards, R Il mar 26 apr 2022, 11:31 Roman Volosatovs <roman@profian.com> ha scritto: > Hello HTTP Working Group, > > Regarding the "Digest Fields" draft-ietf-httpbis-digest-headers-08: > > > 1. The digest values, being binary data, are encoded as colon-delimited > Base64 values as defined in RFC 8941. The digest values, therefore, are not > safe for use in URL paths and require an additional encoding step for that > particular use case, for example percent-encoding or base64url encoding. > > This presents an issue in particular in context of content-addressable > stores and usability of thereof. A content-addressable store exposing a > REST API, for example, would require usage of two different encodings of > the same digest - the `sf-binary` form specified in the headers and some > alternative form safe to use in the URL path. > > It does not seem feasible to remove the need for two different encodings > of the digest due to the explicit usage of "base64" in RFC 8941, however it > would greatly improve the situation if a canonical URL safe encoding of the > digest values could be explicitly defined in the document. > > > 2. Some of our customer use cases require usage of sha-384 and sha-224 > algorithms, both of which are described in RFC 6234, however omitted in > https://www.iana.org/assignments/http-dig-alg/http-dig-alg.xhtml and not > explicitly mentioned in Section 5, Table 1 of the draft. > > Would it be possible to add these two algorithms to the table to mark them > as explicitly allowed and supported for use in the header? > > > Thanks, > > Roman > > > > > >
- Standard URL safe digest form and hash algorithm … Roman Volosatovs
- Re: Standard URL safe digest form and hash algori… Roberto Polli
- Re: Standard URL safe digest form and hash algori… Lucas Pardue