IETF Logo Mail Archive

Re: [Tls-reg-review] [IANA #1287144] Re: Early IANA code allocations for draft-ietf-tls-esni

"Salz, Rich" <rsalz@akamai.com> Wed, 13 December 2023 13:57 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: tls-reg-review@ietfa.amsl.com
Delivered-To: tls-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0945AC14F5FF for <tls-reg-review@ietfa.amsl.com>; Wed, 13 Dec 2023 05:57:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1Z4sTP8imXSj for <tls-reg-review@ietfa.amsl.com>; Wed, 13 Dec 2023 05:57:00 -0800 (PST)
Received: from mx0a-00190b01.pphosted.com (mx0a-00190b01.pphosted.com [IPv6:2620:100:9001:583::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1D8FBC14F5F1 for <tls-reg-review@ietf.org>; Wed, 13 Dec 2023 05:57:00 -0800 (PST)
Received: from pps.filterd (m0122332.ppops.net [127.0.0.1]) by mx0a-00190b01.pphosted.com (8.17.1.22/8.17.1.22) with ESMTP id 3BDDKrrL001207; Wed, 13 Dec 2023 13:56:36 GMT
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h= from:to:cc:subject:date:message-id:references:in-reply-to :content-type:content-id:content-transfer-encoding:mime-version; s=jan2016.eng; bh=KMtErVK/JIRlNkuOmW97At2KHtndBxqPUB+LDB/TXsw=; b= FEoqnlcNSglvkcX8J/Pn6ApaHeU4xzTn3QG/rs+58dlNLyJpsAvC3CNpOUFNO8uT KUhI0xkRo3o6VloUmjyEcNpJIpPY6ihrxbTkEUD2s8u3CVYBEkd+qDTG4z/+JLPm lGQ6j2aBviGKP7gOX38IyDEyzzANsoF7upObmL5i8Hr5Im8/qSIBygkYwSfndUHa kGcf47UZ5J3CviCyV5WBorRJgMhsSKSDVKsQgW+zsLh/HUjPvU7d2pNmdBvrRYJx eipjeBmGKc6cm9ewWj3HY5QrJU7ARDCRssg+HU6gRGM493YqAtuqbhJOq0oPPQC5 mWC0y4zPGyn83GhH+Tr79w==
Received: from prod-mail-ppoint8 (a72-247-45-34.deploy.static.akamaitechnologies.com [72.247.45.34] (may be forged)) by mx0a-00190b01.pphosted.com (PPS) with ESMTPS id 3uxsvmru6u-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 13 Dec 2023 13:56:35 +0000 (GMT)
Received: from pps.filterd (prod-mail-ppoint8.akamai.com [127.0.0.1]) by prod-mail-ppoint8.akamai.com (8.17.1.19/8.17.1.19) with ESMTP id 3BDBlbK6022337; Wed, 13 Dec 2023 08:56:34 -0500
Received: from email.msg.corp.akamai.com ([172.27.50.201]) by prod-mail-ppoint8.akamai.com (PPS) with ESMTPS id 3uvmf2md0q-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 13 Dec 2023 08:56:34 -0500
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com (172.27.50.203) by ustx2ex-dag4mb2.msg.corp.akamai.com (172.27.50.201) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1258.28; Wed, 13 Dec 2023 05:56:33 -0800
Received: from ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) by ustx2ex-dag4mb4.msg.corp.akamai.com ([172.27.50.203]) with mapi id 15.02.1258.028; Wed, 13 Dec 2023 05:56:33 -0800
From: "Salz, Rich" <rsalz@akamai.com>
To: "iana-prot-param-comment@iana.org" <iana-prot-param-comment@iana.org>
CC: "ynir.ietf@gmail.com" <ynir.ietf@gmail.com>, "tls-reg-review@ietf.org" <tls-reg-review@ietf.org>, "rsalz=40akamai.com@dmarc.ietf.org" <rsalz=40akamai.com@dmarc.ietf.org>
Thread-Topic: [IANA #1287144] Re: Early IANA code allocations for draft-ietf-tls-esni
Thread-Index: AQHaLVvqe056Z4iUcUmMc07Q4q3AP7Cnb+6A
Date: Wed, 13 Dec 2023 13:56:33 +0000
Message-ID: <A4BBF397-ECBF-480B-820D-62DF9B3EB4DA@akamai.com>
References: <RT-Ticket-1287144@icann.org> <9AA6E007-90C6-43F9-8033-B9EB6F15EFCD@sn3rd.com> <5FFCD06C-AF34-4A76-8A0A-C6F7FD3FC3CD@sn3rd.com> <rt-5.0.3-657427-1702427572-1862.1287144-9-0@icann.org>
In-Reply-To: <rt-5.0.3-657427-1702427572-1862.1287144-9-0@icann.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.78.23102801
x-originating-ip: [172.27.118.139]
Content-Type: text/plain; charset="utf-8"
Content-ID: <8CE2DC3522223F46991A227319426F20@akamai.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.997,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2023-12-13_06,2023-12-13_01,2023-05-22_02
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxlogscore=999 bulkscore=0 adultscore=0 malwarescore=0 mlxscore=0 spamscore=0 suspectscore=0 phishscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2311290000 definitions=main-2312130100
X-Proofpoint-GUID: p2gdDpviH-OhTI2QEJtcaG-dSapVXUHv
X-Proofpoint-ORIG-GUID: p2gdDpviH-OhTI2QEJtcaG-dSapVXUHv
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.997,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2023-12-13_06,2023-12-13_01,2023-05-22_02
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 adultscore=0 spamscore=0 lowpriorityscore=0 mlxscore=0 mlxlogscore=999 clxscore=1011 impostorscore=0 priorityscore=1501 phishscore=0 suspectscore=0 malwarescore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2311290000 definitions=main-2312130101
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls-reg-review/En5bf9636HAqmQ_-7sjW20Ca33g>
Subject: Re: [Tls-reg-review] [IANA #1287144] Re: Early IANA code allocations for draft-ietf-tls-esni
X-BeenThere: tls-reg-review@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: TLS REVIEW <tls-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls-reg-review/>
List-Post: <mailto:tls-reg-review@ietf.org>
List-Help: <mailto:tls-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls-reg-review>, <mailto:tls-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Dec 2023 13:57:04 -0000

Confirmed.

As for footnote vs references vs just-wait, I'm fine with whatever you decide.

On 12/12/23, 7:32 PM, "Amanda Baber via RT" <iana-prot-param-comment@iana.org <mailto:iana-prot-param-comment@iana.org>> wrote:


Hi Rich, Yoav,


Before we make the TLS ExtensionType registrations for this document, can you confirm that you're OK with listing "CH" as the TLS 1.3 entry for ech_outer_extensions (as opposed to leaving it blank)? The comment "Only appears in inner CH" will be added in the future. See below.


I should add that if you want us to, and Sean agrees, we could add that comment now as a temporary footnote, either in the TLS 1.3 field or the Reference field.


See Sean's message below.


thanks,
Amanda


=====


These changes are based on the following PRs:
https://urldefense.com/v3/__https://github.com/tlswg/draft-ietf-tls-esni/pull/584/files__;!!GjvTz_vk!SdkivvVzFz2cbYyEeEtkEeJo3UyFd02qHOzAYdL9oOAa6PGNfQvtSWThP6lSvV7hiyLFMsznEYB8I5R9KK19m-0$ <https://urldefense.com/v3/__https://github.com/tlswg/draft-ietf-tls-esni/pull/584/files__;!!GjvTz_vk!SdkivvVzFz2cbYyEeEtkEeJo3UyFd02qHOzAYdL9oOAa6PGNfQvtSWThP6lSvV7hiyLFMsznEYB8I5R9KK19m-0$> 
https://urldefense.com/v3/__https://github.com/tlswg/draft-ietf-tls-esni/pull/597/files__;!!GjvTz_vk!SdkivvVzFz2cbYyEeEtkEeJo3UyFd02qHOzAYdL9oOAa6PGNfQvtSWThP6lSvV7hiyLFMsznEYB8I5R9o8T7cI4$ <https://urldefense.com/v3/__https://github.com/tlswg/draft-ietf-tls-esni/pull/597/files__;!!GjvTz_vk!SdkivvVzFz2cbYyEeEtkEeJo3UyFd02qHOzAYdL9oOAa6PGNfQvtSWThP6lSvV7hiyLFMsznEYB8I5R9o8T7cI4$> 


*****
NOTE: The instructions from Section 11.1 #2 include a reference to a “Comment” column. That column does not yet exist. It is being created by draft-ietf-tls-rfc8447bis; you can see the IANA instructions in the following link:
https://urldefense.com/v3/__https://tlswg.org/rfc8447bis/draft-ietf-tls-rfc8447bis.html <https://urldefense.com/v3/__https://tlswg.org/rfc8447bis/draft-ietf-tls-rfc8447bis.html>*name-adding-comment-column__;Iw!!GjvTz_vk!SdkivvVzFz2cbYyEeEtkEeJo3UyFd02qHOzAYdL9oOAa6PGNfQvtSWThP6lSvV7hiyLFMsznEYB8I5R9EgdZzSo$ 


draft-ietf-tls-rfc8447bis has one remaining issue and will therefore track draft-ietf-tls-esni very closely. We would like to manage adding the value for the Comment column later based on these instructions later in the process. We prefer not to have a normative reference to draft-ietf-tls-rfc8447bis.
*****




The amended request is as follows:


11.1. Update of the TLS ExtensionType Registry


IANA is requested to create the following entries in the existing
registry for ExtensionType (defined in [RFC8446]):


1. encrypted_client_hello(0xfe0d), with "TLS 1.3" column values set to
"CH, HRR, EE", "DTLS-Only" column set to "N", and "Recommended" column set
to "Yes”.


2. ech_outer_extensions(0xfd00), with the "TLS 1.3" column values set to "CH",
"DTLS-Only" column set to "N", "Recommended" column set to "Yes", and the
"Comment" column set to "Only appears in inner CH."


11.2. Update of the TLS Alert Registry


IANA is requested to create an entry, ech_required(121) in the
existing registry for Alerts (defined in [RFC8446]), with the "DTLS-
OK" column set to "Y”.


spt

v2.23.0 | Report a Bug | By Email