Re: [IPsec] Early code point assignment (was: I-D Action: draft-ietf-ipsecme-chacha20-poly1305-00.txt)
Tero Kivinen <kivinen@iki.fi> Tue, 31 March 2015 16:51 UTC
Return-Path: <kivinen@iki.fi>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2616C1A0404 for <ipsec@ietfa.amsl.com>; Tue, 31 Mar 2015 09:51:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.131
X-Spam-Level:
X-Spam-Status: No, score=-1.131 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_NEUTRAL=0.779, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aCXh4v302mez for <ipsec@ietfa.amsl.com>; Tue, 31 Mar 2015 09:51:13 -0700 (PDT)
Received: from mail.kivinen.iki.fi (fireball.kivinen.iki.fi [IPv6:2001:1bc8:100d::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DE1D21A037C for <ipsec@ietf.org>; Tue, 31 Mar 2015 09:51:09 -0700 (PDT)
Received: from fireball.kivinen.iki.fi (localhost [127.0.0.1]) by mail.kivinen.iki.fi (8.14.8/8.14.8) with ESMTP id t2VGp6CG021439 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Tue, 31 Mar 2015 19:51:06 +0300 (EEST)
Received: (from kivinen@localhost) by fireball.kivinen.iki.fi (8.14.8/8.14.8/Submit) id t2VGp6Av010345; Tue, 31 Mar 2015 19:51:06 +0300 (EEST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Message-ID: <21786.53369.684762.294419@fireball.kivinen.iki.fi>
Date: Tue, 31 Mar 2015 19:51:05 +0300
From: Tero Kivinen <kivinen@iki.fi>
To: Paul Wouters <paul@nohats.ca>
In-Reply-To: <alpine.LFD.2.10.1503311039440.1147@bofh.nohats.ca>
References: <20150330133237.21486.80504.idtracker@ietfa.amsl.com> <D7430231-BDAB-4766-8637-D4609634F3D3@gmail.com> <09B9FFB9-3C87-45F6-96CD-BB02B08C83F1@gmail.com> <alpine.LFD.2.10.1503311001100.1147@bofh.nohats.ca> <9F071A62-C101-4683-AEBD-71BDD4D2BFBC@gmail.com> <alpine.LFD.2.10.1503311039440.1147@bofh.nohats.ca>
X-Mailer: VM 8.2.0b under 24.3.1 (x86_64--netbsd)
X-Edit-Time: 14 min
X-Total-Time: 26 min
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipsec/VmlenjxLKjWhldztreN5p9I3yP0>
Cc: IETF IPsec <ipsec@ietf.org>, Yoav Nir <ynir.ietf@gmail.com>
Subject: Re: [IPsec] Early code point assignment (was: I-D Action: draft-ietf-ipsecme-chacha20-poly1305-00.txt)
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 Mar 2015 16:51:16 -0000
Paul Wouters writes: > On Tue, 31 Mar 2015, Yoav Nir wrote: > >> Can we make it ENCR_CHACHA20_POLY1305 ? > >> Currently IANA mostly has no CamelCase and it is kind of a C habbit to > >> have defines in CAPS :) > > > > I guess, although some of the names don’t quite work as > > identifiers: "AES-GCM with a 8 octet ICV” or "ENCR-AES-CCM_12”, > > which is surprisingly different in terms of dashes vs underscores > > than “ENCR_AES-CCM_8”. How has that happened. Hmmm... looking at the archives that was there from the beginning. And those assignments which were done at the same time as RFC4306 was published (i.e. RFC4309 and RFC4106) never went through the IANA Expert review, hey were simply added to registry without asking from anybody... This was the time when we had some communications issues between IANA and experts... > And I've poked both PaulH and Tero to never ever add more names with a > "-" in it because that has to be replaced by "_" in C. As an IANA expert, I try maintain the registry so it stays consistent, but unfortunately when the registry already had those ENCR_AES-CCM_8, ENCR-AES-CCM_* and AES-GCM with * octet ICV values already in before expert was every consulted, those are still there. The AEs-GCM values have annoyed me, as they are only ones without ENCR_* prefix. I have never really noticed that ENCR-AES-CCM had - not _ in between ENCR-AES, the one between AES-CCM I have noticed, but haven't bothered to fix those yet. On the other hand all of these are just strings so they do not affect protocol. > My apologies I wasn't very active at the time this happened :) If people feel it would be better to fix those, we can do that, i.e. change: 14 ENCR_AES-CCM_8 15 ENCR-AES-CCM_12 16 ENCR-AES-CCM_16 18 AES-GCM with a 8 octet ICV 19 AES-GCM with a 12 octet ICV 20 AES-GCM with a 16 octet ICV 25 ENCR_CAMELLIA_CCM with an 8-octet ICV 26 ENCR_CAMELLIA_CCM with a 12-octet ICV 27 ENCR_CAMELLIA_CCM with a 16-octet ICV To: 14 ENCR_AES_CCM_8 15 ENCR_AES_CCM_12 16 ENCR_AES_CCM_16 18 ENCR_AES_GCM with a 8 octet ICV 19 ENCR_AES_GCM with a 12 octet ICV 20 ENCR_AES_GCM with a 16 octet ICV 25 ENCR_CAMELLIA_CCM with an 8-octet ICV 26 ENCR_CAMELLIA_CCM with a 12-octet ICV 27 ENCR_CAMELLIA_CCM with a 16-octet ICV Or even change the "n-octet" term to be consistent: 14 ENCR_AES_CCM_8 15 ENCR_AES_CCM_12 16 ENCR_AES_CCM_16 18 ENCR_AES_GCM with a 8-octet ICV 19 ENCR_AES_GCM with a 12-octet ICV 20 ENCR_AES_GCM with a 16-octet ICV 25 ENCR_CAMELLIA_CCM with an 8-octet ICV 26 ENCR_CAMELLIA_CCM with a 12-octet ICV 27 ENCR_CAMELLIA_CCM with a 16-octet ICV Or even go wild and change them: 14 ENCR_AES_CCM_8 15 ENCR_AES_CCM_12 16 ENCR_AES_CCM_16 18 ENCR_AES_GCM_8 19 ENCR_AES_GCM 12 20 ENCR_AES_GCM_16 25 ENCR_CAMELLIA_CCM_8 26 ENCR_CAMELLIA_CCM_12 27 ENCR_CAMELLIA_CCM_16 -- kivinen@iki.fi
- [IPsec] I-D Action: draft-ietf-ipsecme-chacha20-p… internet-drafts
- [IPsec] Two questions about draft-ietf-ipsecme-ch… Yoav Nir
- Re: [IPsec] Two questions about draft-ietf-ipsecm… Yoav Nir
- Re: [IPsec] Two questions about draft-ietf-ipsecm… Scott Fluhrer (sfluhrer)
- [IPsec] Early code point assignment (was: I-D Act… Yoav Nir
- [IPsec] Two questions about draft-ietf-ipsecme-ch… Tero Kivinen
- Re: [IPsec] Early code point assignment (was: I-D… Yoav Nir
- Re: [IPsec] Early code point assignment (was: I-D… Paul Wouters
- Re: [IPsec] Early code point assignment (was: I-D… Yoav Nir
- Re: [IPsec] Early code point assignment (was: I-D… Paul Wouters
- Re: [IPsec] Early code point assignment (was: I-D… Tero Kivinen
- Re: [IPsec] Early code point assignment (was: I-D… Paul Wouters
- Re: [IPsec] Early code point assignment (was: I-D… Tero Kivinen
- Re: [IPsec] Early code point assignment (was: I-D… Yoav Nir
- Re: [IPsec] Early code point assignment (was: I-D… Paul Wouters
- Re: [IPsec] Early code point assignment Yaron Sheffer
- Re: [IPsec] Early code point assignment (was: I-D… Tero Kivinen
- Re: [IPsec] Two questions about draft-ietf-ipsecm… Yoav Nir
- Re: [IPsec] Two questions about draft-ietf-ipsecm… Yoav Nir
- Re: [IPsec] Two questions about draft-ietf-ipsecm… Yaron Sheffer
- Re: [IPsec] Two questions aboutdraft-ietf-ipsecme… Valery Smyslov
- Re: [IPsec] Two questions about draft-ietf-ipsecm… Michael Richardson