IETF Logo Mail Archive

Re: Stephen Farrell's Discuss on draft-ietf-httpbis-tunnel-protocol-04: (with DISCUSS and COMMENT)

Barry Leiba <barryleiba@computer.org> Thu, 11 June 2015 16:00 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB7FC1B302F for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 11 Jun 2015 09:00:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.29
X-Spam-Level:
X-Spam-Status: No, score=-6.29 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_HI=-5, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pDuCImKl-LD6 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 11 Jun 2015 09:00:13 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 856441B303A for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 11 Jun 2015 09:00:13 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.80) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1Z34ra-0002Xg-E9 for ietf-http-wg-dist@listhub.w3.org; Thu, 11 Jun 2015 15:57:54 +0000
Resent-Date: Thu, 11 Jun 2015 15:57:54 +0000
Resent-Message-Id: <E1Z34ra-0002Xg-E9@frink.w3.org>
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtps (TLS1.2:DHE_RSA_AES_128_CBC_SHA1:128) (Exim 4.80) (envelope-from <barryleiba@gmail.com>) id 1Z34rN-0002UV-9S for ietf-http-wg@listhub.w3.org; Thu, 11 Jun 2015 15:57:41 +0000
Received: from mail-ie0-f169.google.com ([209.85.223.169]) by lisa.w3.org with esmtps (TLS1.2:RSA_ARCFOUR_SHA1:128) (Exim 4.80) (envelope-from <barryleiba@gmail.com>) id 1Z34rJ-0002SN-At for ietf-http-wg@w3.org; Thu, 11 Jun 2015 15:57:39 +0000
Received: by iesa3 with SMTP id a3so8250516ies.2 for <ietf-http-wg@w3.org>; Thu, 11 Jun 2015 08:57:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type:content-transfer-encoding; bh=iPni8Lrl1bLQHK1JTux9z+kNfHDNtLcM9rYQ8AkTZw4=; b=iD7qzDQlg55zUuC5jSG2s+WJShly+8LPm2OvDs5HU2R59qVjnSx6ij5IyuaM+sWoHn SYoQY1+rOkax/u0FwJv6dFlvnqt1S6MJBHtvDNW+PQAXbDI10Fh4QciWDvzht8sfyat3 WiTmqVOmCp6Neu5QuP4vPQGRUnuJjU76C6bITkOT35GOZMg/3SMNudLUZHDjALJnWvnq hMNOjsIMh9xw/JzXmMj3q1jUxhbQzCyFTi4Qidjo9JkMxTfWJpWps+F3UBjf4L/zsl1m yP2OoA+t7JX0HkMgaO+b7Upg02sVN8GzWAg2gjAReYQUeMTkmPIqyo8WRgmSrdlp/qQ0 hkbw==
MIME-Version: 1.0
X-Received: by 10.50.43.227 with SMTP id z3mr13800585igl.12.1434038231633; Thu, 11 Jun 2015 08:57:11 -0700 (PDT)
Sender: barryleiba@gmail.com
Received: by 10.107.16.222 with HTTP; Thu, 11 Jun 2015 08:57:11 -0700 (PDT)
In-Reply-To: <CABkgnnXbVyVS5-suX9xFO4jmEQqSnO5C+Qu8FMac+hLwZef3uQ@mail.gmail.com>
References: <20150608130135.22475.59784.idtracker@ietfa.amsl.com> <0D9D95B0-54F0-47BF-9CC8-11BF4E8D763A@mnot.net> <CABkgnnXbVyVS5-suX9xFO4jmEQqSnO5C+Qu8FMac+hLwZef3uQ@mail.gmail.com>
Date: Thu, 11 Jun 2015 16:57:11 +0100
X-Google-Sender-Auth: MUzCO7sY-DhD2Zx281gKqXfBh9U
Message-ID: <CALaySJJ=r+o2rkFehLYdFvW49yCpkifJ5ZOg5cBfp2UZRSezXw@mail.gmail.com>
From: Barry Leiba <barryleiba@computer.org>
To: Martin Thomson <martin.thomson@gmail.com>
Cc: Mark Nottingham <mnot@mnot.net>, httpbis-chairs@ietf.org, draft-ietf-httpbis-tunnel-protocol.shepherd@ietf.org, draft-ietf-httpbis-tunnel-protocol.ad@ietf.org, HTTP Working Group <ietf-http-wg@w3.org>, The IESG <iesg@ietf.org>, draft-ietf-httpbis-tunnel-protocol@ietf.org, Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Received-SPF: pass client-ip=209.85.223.169; envelope-from=barryleiba@gmail.com; helo=mail-ie0-f169.google.com
X-W3C-Hub-Spam-Status: No, score=-7.7
X-W3C-Hub-Spam-Report: AWL=1.907, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, W3C_AA=-1, W3C_DB=-1, W3C_IRA=-1, W3C_IRR=-3, W3C_WL=-1
X-W3C-Scan-Sig: lisa.w3.org 1Z34rJ-0002SN-At 0b841982b984fc0c13d4e4a4fc38d09e
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Stephen Farrell's Discuss on draft-ietf-httpbis-tunnel-protocol-04: (with DISCUSS and COMMENT)
Archived-At: <http://www.w3.org/mid/CALaySJJ=r+o2rkFehLYdFvW49yCpkifJ5ZOg5cBfp2UZRSezXw@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/29766
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

OK... the telechat is over, and Martin has some updates queued.
Martin, please post the updates, let's wait for Stephen to get back
home and review them (that might take until the end of the month), and
in the meantime let's make sure the httpbis working group is OK with
the changes.

Barry, ART Director

On Tue, Jun 9, 2015 at 10:09 PM, Martin Thomson
<martin.thomson@gmail.com> wrote:
> Finally getting^Wmaking some time for this.
>
> On 8 June 2015 at 18:15, Mark Nottingham <mnot@mnot.net> wrote:
>>> Care must be taken when such identifiers may leak personally
>>> identifiable information, or when such leakage may lead to
>>> profiling or to leaking of sensitive information.  If any of
>>> these apply to this new protocol identifier, the identifier
>>> SHOULD NOT be used in TLS configurations where it would be
>>> visible in the clear, and documents specifying such protocol
>>> identifiers SHOULD recommend against such unsafe use.
>>>
>>> That last sentence seems to imply that you ought replicate such
>>> guidance here.
>>
>> Seems reasonable to me.
>
> Likewise.  https://github.com/httpwg/http-extensions/commit/6c7b987
>
>>> - I can see situations where I might want to not tell the proxy
>>> what protocol I'll be using inside TLS and when TLS1.3 hides
>>> ALPM from the proxy (I hope:-) then could there be value
>>> registering a "I'm not telling" ALPN value so that a UA
>>> wouldn't have to lie to the proxy?
>>
>> Or the UA could omit the header, or the UA could send the header with no value.
>
> I think those are better options.  Do you think we need to say that
> with the other agreed changes already in place?
>
>>> - I think you ought say what you expect a proxy to do if the
>>> ALPN header field and the ALPN TLS extension value do not match
>>> and I think that ought say that a CONNECT recipient in such
>>> cases SHOULD NOT drop the connection solely on that basis.  If
>>> they have some policy about it fine, but they shouldn't barf
>>> just because there's a different order or spelling or just a
>>> different value.
>>
>> Seems reasonable to me.
>
> I'll roll that into the point below.
>
>>> - Replicating values at multiple protocol layers produces a
>>> common failure mode where code only uses one copy to do access
>>> control or authorization or where two nodes in sequence use
>>> different copies, with unexpected behaviour resulting. I think
>>> you should call that out in the security considerations section
>>> as it keeps happening.
>>
>> Again, seems reasonable.
>>
>> I wonder if it would be helpful to explicitly motivate it — i.e., say this header is there to make the information available at the HTTP layer during CONNECT, so that the server can refuse the connection gracefully if they like (e.g., with a 403); without it, the server would have to sniff ALPN in the tunnel and then close the connection rudely.
>
> I think that we're going to need some review on this change.
>
> https://github.com/httpwg/http-extensions/commit/a62c60a
>

v2.23.0 | Report a Bug | By Email