[TLS] Weekly github digest (TLS Working Group Drafts)

Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 18 April 2021 07:41 UTC

Return-Path: <do_not_reply@mnot.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CECC43A0E77 for <tls@ietfa.amsl.com>; Sun, 18 Apr 2021 00:41:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=nV+J+pEn; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=KyI+ERae
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F0HDUzvsBiOv for <tls@ietfa.amsl.com>; Sun, 18 Apr 2021 00:41:39 -0700 (PDT)
Received: from out5-smtp.messagingengine.com (out5-smtp.messagingengine.com [66.111.4.29]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8C1523A0E39 for <tls@ietf.org>; Sun, 18 Apr 2021 00:41:39 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 025A95C064A for <tls@ietf.org>; Sun, 18 Apr 2021 03:41:37 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163]) by compute1.internal (MEProxy); Sun, 18 Apr 2021 03:41:37 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:from:to:subject:message-id:date; s= fm2; bh=6XOI1nU3FFuPFSvvRQA2mEvVGpOyJUX2JbbsGkPwiCY=; b=nV+J+pEn 0QjRH2xTDlvPuSBcmA+XRXloSPFzLTgqwYerCvL20oCKZQCKHUSOI2sbCvVITj6a 9+KJrX0U/WqsKVJUcn9sqZKUyBW9NgrKs99PlonrZHoPx9/NTcWGXwfMjJSU2jVN NwOPjLRMfpVPQN5jLncCzXmdLhnAHpJ6DnTUSEAGqUfqdbX9CyRAuOU6kc6Q/ZgI 1Ba4B5H9SgkoZnL5ULeg977cYlfM6lqrljtroXwaiZfG9DMgdJd2HabBXbx5Q6pg +k7CIgxeqoUMFHLBrBGXuEMYFqF8LwNfDVyfXRKJxqHSUX+6sHmiMGgXehjLKcGg 0ByESA3GLE/m8Q==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:message-id :mime-version:subject:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm2; bh=6XOI1nU3FFuPFSvvRQA2mEvVGpOyJ UX2JbbsGkPwiCY=; b=KyI+ERaeP1AKlJOsGA+op7zSK1Ja9BgFmu4rX9SfPY4XM Va4KFYN6/gCXwJOkqwhIR7f7d2JaNo0OSdoleifV8fnRGcz57FQdJUIXj5wROzkU gNEvfEouut2r7DdlNZKMiSrBaz8bdR6sS5lUAbJCpOldYjcf32sKOZZjkZ9c5nkG xr5SUHsdL3CDfhbI2cyGwaSbE43O/KIa2P1beYWssAKSJIYg1p9ea3MQtNgFgTlv HIw0Zmh7MpI9XNfe80xVMjjG3T/aRToMdfylBGfn3kU+u19CXuQpxuGE8/SyHrNM 8yLmUtgzriRAdyfo+RY9yB3KWzhAFroVwwdKzZ8gw==
X-ME-Sender: <xms:sOJ7YO-H4ba4NCT8L8Hz6xeGYLnq881Inu0uQuFVqRhniwW0c2etdw> <xme:sOJ7YOu2cViATtphag6fSO62DXJQ_iTGklfQjquasqk6Xk9CJbsPYj8aW2aZk2XJu p9FVEdvGxH9S6jW0g>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduledrudelkedgvdelucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpegtggfhvffusegrtddtredttdejne cuhfhrohhmpeftvghpohhsihhtohhrhicutegtthhivhhithihucfuuhhmmhgrrhihuceu ohhtuceoughopghnohhtpghrvghplhihsehmnhhothdrnhgvtheqnecuggftrfgrthhtvg hrnhepkeefvdduteejvdefkeehieevuefgfefhteetveegffekffefteffvdelheduieet necuffhomhgrihhnpehgihhthhhusgdrtghomhenucfkphephedvrddufeekrdekhedrle dvnecuvehluhhsthgvrhfuihiivgepvdenucfrrghrrghmpehmrghilhhfrhhomhepugho pghnohhtpghrvghplhihsehmnhhothdrnhgvth
X-ME-Proxy: <xmx:sOJ7YEBcxjTMS7NhFtlkkVSPnPcaZcn19tawGqIpuS4mkcVHYXI2Rw> <xmx:sOJ7YGczOn_KF4SlsmgL41053JcL2n7oNIRYqZTGGFbUj1-vo1leyQ> <xmx:sOJ7YDMxLmdoZGmwW-mIrC11Zjyn0lBe2ySULd7Kye7A6Y_VTZsg1g> <xmx:sOJ7YJ2kpw5PXUQavLsVvc_lViweCK81mb7WvM4Il4SN6d8sIC-s-A>
Received: from fv-az207-445.internal.cloudapp.net (unknown [52.138.85.92]) by mail.messagingengine.com (Postfix) with ESMTPA id BC73F1080069 for <tls@ietf.org>; Sun, 18 Apr 2021 03:41:36 -0400 (EDT)
Content-Type: multipart/alternative; boundary="===============3129496040333991563=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: tls@ietf.org
Message-Id: <20210418074136.BC73F1080069@mailuser.nyi.internal>
Date: Sun, 18 Apr 2021 03:41:36 -0400
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/KtY14C5YkjFfWCooMUTnKh4mDck>
Subject: [TLS] Weekly github digest (TLS Working Group Drafts)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 18 Apr 2021 07:41:51 -0000



Issues
------
* tlswg/draft-ietf-tls-esni (+0/-5/💬1)
  1 issues received 1 new comments:
  - #398 Is the outer compression really worthwhile? (1 by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/398 

  5 issues closed:
  - Is the outer compression really worthwhile? https://github.com/tlswg/draft-ietf-tls-esni/issues/398 
  - public_name and maximum_name_length could be smaller https://github.com/tlswg/draft-ietf-tls-esni/issues/403 
  - Not all of CHOuter is authenticated https://github.com/tlswg/draft-ietf-tls-esni/issues/402 
  - PSK usage sticks out https://github.com/tlswg/draft-ietf-tls-esni/issues/384 
  - Server enforcement of ClientHelloInner invariants https://github.com/tlswg/draft-ietf-tls-esni/issues/406 

* tlswg/tls13-spec (+1/-0/💬0)
  1 issues created:
  - Timing of sending NST from the server (by ueno)
    https://github.com/tlswg/tls13-spec/issues/1226 

* tlswg/dtls13-spec (+0/-9/💬7)
  4 issues received 7 new comments:
  - #236 Retransmissions (2 by chris-wood, ekr)
    https://github.com/tlswg/dtls13-spec/issues/236 [propose-close] 
  - #235 AEAD Limits (1 by kaduk)
    https://github.com/tlswg/dtls13-spec/issues/235 [pr-exists] 
  - #225 Feedback by Éric Vyncke  (2 by ekr, kaduk)
    https://github.com/tlswg/dtls13-spec/issues/225 [pr-exists] 
  - #224 Invalid records and impact on timers (2 by ekr, kaduk)
    https://github.com/tlswg/dtls13-spec/issues/224 [propose-close] 

  9 issues closed:
  - Retransmissions https://github.com/tlswg/dtls13-spec/issues/236 [propose-close] 
  - Invalid records and impact on timers https://github.com/tlswg/dtls13-spec/issues/224 [propose-close] 
  - Remove ACK from flight table https://github.com/tlswg/dtls13-spec/issues/237 
  - Feedback by Éric Vyncke  https://github.com/tlswg/dtls13-spec/issues/225 [pr-exists] 
  - Bernard Aboba Comments https://github.com/tlswg/dtls13-spec/issues/231 [pr-exists] 
  - Francesca Palombini Comments https://github.com/tlswg/dtls13-spec/issues/229 [pr-exists] 
  - AEAD Limits https://github.com/tlswg/dtls13-spec/issues/235 [pr-exists] 
  - Martin Duke Comments https://github.com/tlswg/dtls13-spec/issues/230 [pr-exists] 
  - Erik Kline comments https://github.com/tlswg/dtls13-spec/issues/228 [pr-exists] 

* tlswg/dtls-conn-id (+1/-9/💬6)
  1 issues created:
  - new "connection_id" extension codepoint after MAC semantics change? (by kaduk)
    https://github.com/tlswg/dtls-conn-id/issues/99 

  4 issues received 6 new comments:
  - #99 new "connection_id" extension codepoint after MAC semantics change? (1 by ekr)
    https://github.com/tlswg/dtls-conn-id/issues/99 
  - #80 Section 9 comment from Ben (3 by ekr, kaduk)
    https://github.com/tlswg/dtls-conn-id/issues/80 
  - #79 Section 8 comment from Ben's review (1 by kaduk)
    https://github.com/tlswg/dtls-conn-id/issues/79 
  - #18 Available implementations? (1 by ekr)
    https://github.com/tlswg/dtls-conn-id/issues/18 

  9 issues closed:
  - Section 9 comment from Ben https://github.com/tlswg/dtls-conn-id/issues/80 
  - new "connection_id" extension codepoint after MAC semantics change? https://github.com/tlswg/dtls-conn-id/issues/99 
  - IANA section slight reorg https://github.com/tlswg/dtls-conn-id/issues/91 
  - Section 8 comment from Ben's review https://github.com/tlswg/dtls-conn-id/issues/79 
  - Missing RFC 8174 boilerplate https://github.com/tlswg/dtls-conn-id/issues/88 
  - Assorted typos https://github.com/tlswg/dtls-conn-id/issues/90 
  - Available implementations? https://github.com/tlswg/dtls-conn-id/issues/18 
  - Zero-length CID clarifications https://github.com/tlswg/dtls-conn-id/issues/89 
  - more clarity about "real_type" https://github.com/tlswg/dtls-conn-id/issues/97 



Pull requests
-------------
* tlswg/draft-ietf-tls-esni (+4/-5/💬12)
  4 pull requests submitted:
  - Hrr inner 2 main (by cjpatton)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/423 
  - Use ECH payload to distinguish CHI from CHO (by cjpatton)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/422 
  - Wrap some lines so that the build succeeds (by cjpatton)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/421 
  - Relax computation of the acceptance signal. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/420 

  4 pull requests received 12 new comments:
  - #420 Relax computation of the acceptance signal. (1 by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/420 
  - #419 Grease and HRR leak (3 by cbartle891, cjpatton)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/419 
  - #417 HRR applies to both (1 by cjpatton)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/417 
  - #413 Add MUST for clients to validate ECHConfig.contents.public_name. (7 by chris-wood, davidben, dmcardle, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/413 

  5 pull requests merged:
  - Clarify "don't stick out" considerations
    https://github.com/tlswg/draft-ietf-tls-esni/pull/382 
  - Compress ECHConfigContents.
    https://github.com/tlswg/draft-ietf-tls-esni/pull/409 
  - Authenticate ClientECH extension position in ClientHelloOuterAAD.
    https://github.com/tlswg/draft-ietf-tls-esni/pull/410 
  - Allow clients to send a dummy PSK in ClientHelloOuter
    https://github.com/tlswg/draft-ietf-tls-esni/pull/414 
  - Validate the contents of ClientHelloInner.
    https://github.com/tlswg/draft-ietf-tls-esni/pull/411 

* tlswg/dtls13-spec (+3/-7/💬1)
  3 pull requests submitted:
  - Clarify invalid records. Fixes #224 (by ekr)
    https://github.com/tlswg/dtls13-spec/pull/242 
  - Ack isn't really a flight. Fixes #237 (by ekr)
    https://github.com/tlswg/dtls13-spec/pull/241 
  - Vyncke comments. Fixes #225 (by ekr)
    https://github.com/tlswg/dtls13-spec/pull/240 

  1 pull requests received 1 new comments:
  - #239 Clients SHOULD offer a connection ID (1 by hannestschofenig)
    https://github.com/tlswg/dtls13-spec/pull/239 

  7 pull requests merged:
  - Clarify invalid records. Fixes #224
    https://github.com/tlswg/dtls13-spec/pull/242 
  - Ack isn't really a flight. Fixes #237
    https://github.com/tlswg/dtls13-spec/pull/241 
  - Vyncke comments. Fixes #225
    https://github.com/tlswg/dtls13-spec/pull/240 
  - Addressing feedback by Francesca Palombini
    https://github.com/tlswg/dtls13-spec/pull/234 
  - Martin Duke's comments. Fixes #230
    https://github.com/tlswg/dtls13-spec/pull/238 
  - Eric Kline editorial. Fixes #228
    https://github.com/tlswg/dtls13-spec/pull/232 
  - Lars Eggert's comments
    https://github.com/tlswg/dtls13-spec/pull/227 

* tlswg/dtls-conn-id (+4/-8/💬3)
  4 pull requests submitted:
  - fix nit (by kaduk)
    https://github.com/tlswg/dtls-conn-id/pull/102 
  - IANA updates. Fixes #99. (by ekr)
    https://github.com/tlswg/dtls-conn-id/pull/101 
  - Try to clean up the text a bit (by ekr)
    https://github.com/tlswg/dtls-conn-id/pull/100 
  - Clarify what real_type describes (by kaduk)
    https://github.com/tlswg/dtls-conn-id/pull/98 

  2 pull requests received 3 new comments:
  - #101 IANA updates. Fixes #99. (1 by ekr)
    https://github.com/tlswg/dtls-conn-id/pull/101 
  - #100 Try to clean up the text a bit (2 by ekr)
    https://github.com/tlswg/dtls-conn-id/pull/100 

  8 pull requests merged:
  - fix nit
    https://github.com/tlswg/dtls-conn-id/pull/102 
  - Try to clean up the text a bit
    https://github.com/tlswg/dtls-conn-id/pull/100 
  - IANA updates. Fixes #99.
    https://github.com/tlswg/dtls-conn-id/pull/101 
  - Improved readability of the IANA Consideration Section
    https://github.com/tlswg/dtls-conn-id/pull/94 
  - zero-length CID clarification
    https://github.com/tlswg/dtls-conn-id/pull/96 
  - Clarify what real_type describes
    https://github.com/tlswg/dtls-conn-id/pull/98 
  - Nits
    https://github.com/tlswg/dtls-conn-id/pull/93 
  - Added Acknowledgements
    https://github.com/tlswg/dtls-conn-id/pull/95 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/tlswg/draft-ietf-tls-semistatic-dh
* https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate
* https://github.com/tlswg/draft-ietf-tls-esni
* https://github.com/tlswg/certificate-compression
* https://github.com/tlswg/draft-ietf-tls-external-psk-importer
* https://github.com/tlswg/draft-ietf-tls-ticketrequest
* https://github.com/tlswg/tls13-spec
* https://github.com/tlswg/tls-flags
* https://github.com/tlswg/dtls13-spec
* https://github.com/tlswg/dtls-conn-id
* https://github.com/tlswg/tls-subcerts
* https://github.com/tlswg/oldversions-deprecate
* https://github.com/tlswg/sniencryption
* https://github.com/tlswg/tls-exported-authenticator
* https://github.com/tlswg/draft-ietf-tls-ctls
* https://github.com/tlswg/external-psk-design-team