Codepoint allocation for TLS extension
Martin Thomson <mt@lowentropy.net> Tue, 08 December 2020 09:41 UTC
Return-Path: <mt@lowentropy.net>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8020A3A0794 for <quic@ietfa.amsl.com>; Tue, 8 Dec 2020 01:41:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.12
X-Spam-Level:
X-Spam-Status: No, score=-2.12 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=IEXvkmFR; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=I8FcgjZi
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dakph0ywgNfv for <quic@ietfa.amsl.com>; Tue, 8 Dec 2020 01:41:06 -0800 (PST)
Received: from out1-smtp.messagingengine.com (out1-smtp.messagingengine.com [66.111.4.25]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A7FD3A074B for <quic@ietf.org>; Tue, 8 Dec 2020 01:41:06 -0800 (PST)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 80C055C0166; Tue, 8 Dec 2020 04:41:05 -0500 (EST)
Received: from imap10 ([10.202.2.60]) by compute1.internal (MEProxy); Tue, 08 Dec 2020 04:41:05 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:date:from:to:cc:subject:content-type; s=fm1; bh=9SuyI7w8YEHmktoW8P/g1iVd/hxn6wiN3W+M3xrXp4M=; b=IEXvk mFRp5w3z20AVnZ0JOGOPFZZGa5r2L+3M223urKSIEpkbv0zzKKPhtPgZemHTFqvV 1BM6ztXKyZIHeFPhK5BZDJt8w8Um6edbBXMbMjLPpV3pU9sgxseb0Y2LtLb8pfw2 AnbHPbJRiRs4Vffz4u7Y6y/BBY201kYKQ2ZRk3hbHTD+OLFDt5DU9rdqSz4r2cOt pgvQgc90py7LSkxZl9ogjuzZ+8Vf9ENy5cTLx9fJSpMVyjAsfScH4jPTPyB4zpQg DRvqWngNqaB1eERNv6dxwShEvN7r5PL35l1MYOy4wVOa36sjjBVYvMRBECuUtJ8b WklYZXwcMIvxtKOYg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:message-id :mime-version:subject:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm1; bh=9SuyI7w8YEHmktoW8P/g1iVd/hxn6 wiN3W+M3xrXp4M=; b=I8FcgjZiwdXNpXOpd9B4CdMSV8R8nUdWIra8AbGRVP2yN 4pTfrnpYCG0xZ3Dhd9Jqk4LDOJqH6w/EOpOKfVJHVDqUWBzVyz3KYV9FxG+RFfj2 RTtwBU21n4s4tmyVv03ks4GJZl5k8MnhBByTKZXFcGxYY/NmRBNbtpDDt8coIGhJ o22NvJuoL2Otu1AF7jYxQCievurKcyWV7e+SIKGPAvswhvK3q9FjM6sEITBz4+RM G7LkokYQkWmhBxtDx8hoO+Y/5QlJddN/JlrOKVQwxgQkWMmbvMJKMksEdMSyJNX1 I77aeB74ImncJsUdiaVbjV3O1jlZK7IlGAPw7RH4g==
X-ME-Sender: <xms:MErPX6seCWERlKWHgInrL5vzckJ90H4nQKOFKHlt00R86un0feI6gQ> <xme:MErPX_fMCVqNx8wdxMJDeSiifuef833Bend2_QWJ1peHbxoD5OFwTnk5va2uVUnYU gqNCjgTHyHYYEbvh3w>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedujedrudejiedgtdeiucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhepofgfggfkfffhvffutgesthdtredtreertdenucfhrhhomhepfdforghrthhi nhcuvfhhohhmshhonhdfuceomhhtsehlohifvghnthhrohhphidrnhgvtheqnecuggftrf grthhtvghrnhepvefguddtgfejfeduueehkeehkeduueegheefgeevkeekgeelveevffeu udffheehnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomh epmhhtsehlohifvghnthhrohhphidrnhgvth
X-ME-Proxy: <xmx:MErPX1yHZkHh5HVqZ9Sqo8cWA8IRa7yFgY4HJ4-o44LztR5m1ukCIQ> <xmx:MErPX1O298tR7GGxofxHpuhfRImCLOfivqNFw4BesLc9uL9MxITmhQ> <xmx:MErPX6_3DrHuh6jW7gH5-rlNI-kWuIOqLkE3WGBIxdNB-1MLlTDX4g> <xmx:MUrPXwkZgie-qT4G2jRIW7y-n0DL1boQTyFpaKCLIAYGhO3_os0Y3g>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id CA7CC201BC; Tue, 8 Dec 2020 04:41:04 -0500 (EST)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.3.0-622-g4a97c0b-fm-20201115.001-g4a97c0b3
Mime-Version: 1.0
Message-Id: <4a606b9e-6dfa-44b7-9a11-626adb02c15a@www.fastmail.com>
Date: Tue, 08 Dec 2020 20:40:44 +1100
From: Martin Thomson <mt@lowentropy.net>
To: quic@ietf.org
Cc: Magnus Westerlund <magnus.westerlund@ericsson.com>, Lucas Pardue <lucaspardue.24.7@gmail.com>, Lars Eggert <lars@eggert.org>
Subject: Codepoint allocation for TLS extension
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/Ng29SerbWbJB-Qn9rBn6GSoroQ0>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Dec 2020 09:41:11 -0000
Hi Everyone, I'm fairly sure that most people are deploying QUIC with the quic_transport_parameters TLS extension using the 0xffa5 codepoint in the current draft. Unfortunately, this can't stand. That's a private use codepoint in TLS. The final version of QUIC will need a permanent allocation. This should be a problem in terms of collisions in the short term as QUIC can't conflict with TCP use of TLS, but TLS expressly permits use of this codepoint for private use, so we can't guarantee that TLS stacks won't try to use this codepoint. I know that this is disruptive, and apologize for this not being clear earlier. It was originally, but a lot of time has passed since then and I'm sure that many, like me, have forgotten this detail. Hopefully this can be rectified without much fuss. IANA has already requested expert review for the allocation (I believe), so it might just be a matter of getting the final allocation. Chairs, and AD, Following the procedures in Section 3.1 of RFC 7120, this is my request for early allocation of a codepoint, in case that is necessary. I've provided more context to those involved privately. I hope to have the final codepoints (version numbers, salt, retry keys, transport parameter extension) in -33, which will go to the IESG for approval in the next few weeks. --Martin
- Codepoint allocation for TLS extension Martin Thomson
- Re: Codepoint allocation for TLS extension David Schinazi
- Re: Codepoint allocation for TLS extension Martin Thomson
- Re: Codepoint allocation for TLS extension Jana Iyengar
- Re: Codepoint allocation for TLS extension Martin Thomson