Re: [MMUSIC] Benjamin Kaduk's Discuss on draft-ietf-mmusic-sdp-uks-06: (with DISCUSS and COMMENT)

"Martin Thomson" <mt@lowentropy.net> Wed, 07 August 2019 04:27 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D5F16120118; Tue, 6 Aug 2019 21:27:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=k+XMTTUO; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=twRezpnL
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R-ANM-24EhcB; Tue, 6 Aug 2019 21:27:05 -0700 (PDT)
Received: from out1-smtp.messagingengine.com (out1-smtp.messagingengine.com [66.111.4.25]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7DA5012010E; Tue, 6 Aug 2019 21:27:05 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 8992721FC6; Wed, 7 Aug 2019 00:27:04 -0400 (EDT)
Received: from imap2 ([10.202.2.52]) by compute1.internal (MEProxy); Wed, 07 Aug 2019 00:27:04 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :cc:subject:content-type; s=fm2; bh=+gPZDjMtNt1qcWhLWcecRsO44iIM dUlicmmqm6Z6aY0=; b=k+XMTTUOwN3P6PuNNLa+8lCBn2b6BXS2l3PG8X6ptkTS ourYc9GGxd922DDSb39eOT60U1AsRktwsbENNaYrBYl5g6Qlsnupb92JxtU7wTZf CE7vLoraOP2Iji2vPAN6LSDj8wdF3/U0DBFISqXt6Ho0WwI9UxfDV67cD698NCVG LDVQfCGZefks8eOhmQR5XAXmA5N6oAWV6FdX9aZNL01cwrHluU866axKTkecNoXv y0GCWsdgiqQkWIjqEgNoPsR4sqqBwd+9oyj55zFv68uqo9W43O1PFC0+VzQgElzX d4rCmCFS667GV9EiX+nTmzBEdJUrrMOEfgYZlCgBgA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=+gPZDj MtNt1qcWhLWcecRsO44iIMdUlicmmqm6Z6aY0=; b=twRezpnLHAtBxMYVqPigSw vKw0smpES7Cpl+c6DopSBQiPpQSDHL3W3fnyu0v0awPYzwpPfH83LqR38Q47hWl3 dmULcIa3WtYTPgfuMkWDCZbJN4d2Kcv2dwMw6L6cIA2ajxlJmDQyYXR7O0/5Vwvc GT0YYLyJS1e+3Hxk+OSDLrr+R78uYS6Y5HKZGVUPzhBeOHZ/jOf9YM3ybjc7vPzv c7dFd9GaNwo/JVDmZu3lFmBkwzaKaBP0vPsw8TMXTHHrDlk0V2KksPSTMNy54V0A eYCW1ncl9KJ62j9IdtKoRo+EXmSpntxq1l31FHM4Suh5VMqFz2aMkBjMQ0bePQog ==
X-ME-Sender: <xms:F1NKXVWuvuuUZLtR-0aH7P39f07Yn848aZV_NLddk4UvSrJODjUIWA>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduvddrudduuddgkeegucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepofgfggfkjghffffhvffutgesthdtredtreerjeenucfhrhhomhepfdforghr thhinhcuvfhhohhmshhonhdfuceomhhtsehlohifvghnthhrohhphidrnhgvtheqnecurf grrhgrmhepmhgrihhlfhhrohhmpehmtheslhhofigvnhhtrhhophihrdhnvghtnecuvehl uhhsthgvrhfuihiivgeptd
X-ME-Proxy: <xmx:F1NKXUffn-xqcv7Uu4LPzdjukEWSgsOIQgjcstLIkWhOhhYB-K0F_g> <xmx:F1NKXbogy52F5m6mob7L8dAfA4-P8hR5hkss8H1UXN0384GVqnBM7g> <xmx:F1NKXeqkbJP7d-Or_wy7JK0HkKtCBaeNdTCazioo9CUTyMkY_6CidQ> <xmx:GFNKXVtQE_KsNZfpXyfPIVUO-3JdjNzKN7lj4kEE-wKiniJaS4NpDg>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 85951E00A2; Wed, 7 Aug 2019 00:27:03 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.1.6-808-g930a1a1-fmstable-20190805v2
Mime-Version: 1.0
Message-Id: <991e9668-92e9-4900-bf34-85df5c0927f9@www.fastmail.com>
In-Reply-To: <20190807033109.GP59807@kduck.mit.edu>
References: <156502247647.24440.17878436939662954486.idtracker@ietfa.amsl.com> <071b74eb-cab2-4a82-9d02-bf86c96d4f41@www.fastmail.com> <20190806193209.GK59807@kduck.mit.edu> <42a62093-9b2a-4be0-80a0-c4bda3529deb@www.fastmail.com> <20190807033109.GP59807@kduck.mit.edu>
Date: Wed, 07 Aug 2019 14:27:06 +1000
From: "Martin Thomson" <mt@lowentropy.net>
To: "'Benjamin Kaduk'" <kaduk@mit.edu>
Cc: "The IESG" <iesg@ietf.org>, draft-ietf-mmusic-sdp-uks@ietf.org, mmusic <mmusic@ietf.org>, "mmusic-chairs@ietf.org" <mmusic-chairs@ietf.org>
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/gz0ifRMWqvgd_FtNyPalBCJoaIo>
Subject: Re: [MMUSIC] =?utf-8?q?Benjamin_Kaduk=27s_Discuss_on_draft-ietf-mmus?= =?utf-8?q?ic-sdp-uks-06=3A_=28with_DISCUSS_and_COMMENT=29?=
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Aug 2019 04:27:07 -0000

On Wed, Aug 7, 2019, at 13:31, Benjamin Kaduk wrote:
> On the other hand, "An endpoint that does not produce an identity binding
> MUST generate an empty external_id_hash extension in its ClientHello or -
> if a client provides the extension - in ServerHello or EncryptedExtensions"
> is better about qualifying when it's allowed by the underlying protocol to
> "do X", though a truly adversarial reader might claim that it is saying
> that "all endpoints producing an identity binding MUST generate a
> ClientHello".

Thanks for narrowing it down.  Again, I completely overlooked that bit.  My bad.  Changed in both cases to:

In TLS 1.3, an `xxx` extension sent by a server MUST be sent in the EncryptedExtensions message.