[TLS] Weekly github digest (TLS Working Group Drafts)
Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 13 December 2020 07:38 UTC
Return-Path: <do_not_reply@mnot.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 936503A163C for <tls@ietfa.amsl.com>; Sat, 12 Dec 2020 23:38:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.897
X-Spam-Level:
X-Spam-Status: No, score=-0.897 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=UIAv0kxb; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=a29Z4W+w
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TGwxGcFsNmCG for <tls@ietfa.amsl.com>; Sat, 12 Dec 2020 23:38:44 -0800 (PST)
Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 982303A15F1 for <tls@ietf.org>; Sat, 12 Dec 2020 23:38:36 -0800 (PST)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id B2AFA5C00A7 for <tls@ietf.org>; Sun, 13 Dec 2020 02:38:35 -0500 (EST)
Received: from mailfrontend1 ([10.202.2.162]) by compute1.internal (MEProxy); Sun, 13 Dec 2020 02:38:35 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:from:to:subject:message-id:date; s= fm1; bh=kPdqrbIuTEIAy19BzphswJ1KoBXt11yEq8OTFYVWHYg=; b=UIAv0kxb UqbqsVf/y2eRGDv9MLARc75bRsMCADknkwLe9L5djdQuHcc1SnxDp3zt1VBcePSL lOp9ZZgopH6OZ8VgF4WUgSgYxgseVzxw2dd89WavYu1DmIflXc6phUgQK6J0vDjb YQeGoS1BvqLaZiVaQyhbmMnO/74oC8YQ0p6DuUFrWM/KPhDiGaPWk0n8txuLRwy6 DtyjaDTeyMCGz2jRjIEeJPJAydNEUtqh3k1+n6VTZeJvc9MXW83dCpvUQcqfbmmH Gfavb59NxrmAtfLZDn0U0zSTMT9dgns1cgf2W9VrDNZhG7j8qj0+L0+yQ8B7ARQn acwoNezD5/FyBg==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:message-id :mime-version:subject:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm1; bh=kPdqrbIuTEIAy19BzphswJ1KoBXt1 1yEq8OTFYVWHYg=; b=a29Z4W+wUvUp2I/N7STftEL+MbdpAqerz9LVx9W+RiunO n5rPm8GSe+zAtSbzvYOwEvz0ULqgNT4Zj1gRA057mL6IQ+CrOgCor/rnnllMZrXt b9z1ZD3GeG+ovkA/6k9t9lchsJ6idGfYUfZ30cY3NpGOlMmYyEzHkK/P4miiyZ4z iYOPHy8Ohcg7paWqntLgfR/azAtBTc2UUBVy0N8Lg6Zb2UHbSVrS6W1SqZ0E345z bmm+G26i4h9j8bO9ocMOdBh7cn9selznfn8mbn9SFqEO6wog+xbAnQKXSDn6aQjb Nf0i/5Hp6hsS1+DGxJu73hdSEPs5/56NvZsabfpeg==
X-ME-Sender: <xms:-8TVX0lywQT6myN6FTF8tQ5WPY6RQEfoujTP8WSWHx3NBMAwty1-ow> <xme:-8TVXz1bTcTM4lHVEC6zSkM0b_0JMPYRFSBFZhtPq8akqy9jpF28MJ_6EjLb3DXDB 9F0xyWXxfZhvRSouw>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedujedrudekhedgudduudcutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecunecujfgurheptggghffvufesrgdttdertddtje enucfhrhhomheptfgvphhoshhithhorhihucettghtihhvihhthicuufhumhhmrghrhicu uehothcuoeguohgpnhhothgprhgvphhlhiesmhhnohhtrdhnvghtqeenucggtffrrghtth gvrhhnpeekfedvudetjedvfeekheeiveeugfefhfetteevgeffkefffeetffdvleehudei teenucffohhmrghinhepghhithhhuhgsrdgtohhmnecukfhppedufedrjeejrdekuddrud eileenucevlhhushhtvghrufhiiigvpedvnecurfgrrhgrmhepmhgrihhlfhhrohhmpegu ohgpnhhothgprhgvphhlhiesmhhnohhtrdhnvght
X-ME-Proxy: <xmx:-8TVXyr_hA5TA3kimnTVOyzejkJHR2Wo0BFeCX1kmHBiaRP1OFsciw> <xmx:-8TVXwnNe5cPqiwuQ9TLCtZSD_gDW7rob-EornRywaKpV0jxoxey6g> <xmx:-8TVXy0nfMgQiIyyLMq2JeYQtV7eAONvuVbNZVEggAsqnK-DPkMvfQ> <xmx:-8TVX38Q8r-FQCwvX2aPPJ8dBcnVV194TBQ0nZUUz3ci2Uu0NU3g8g>
Received: from fv-az184-911.internal.cloudapp.net (unknown [13.77.81.169]) by mail.messagingengine.com (Postfix) with ESMTPA id 778FB240057 for <tls@ietf.org>; Sun, 13 Dec 2020 02:38:35 -0500 (EST)
Content-Type: multipart/alternative; boundary="===============6948918040883546692=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: tls@ietf.org
Message-Id: <20201213073835.778FB240057@mailuser.nyi.internal>
Date: Sun, 13 Dec 2020 02:38:35 -0500
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/XpUK02owKEtnZTqLAlAIWJCoUdE>
Subject: [TLS] Weekly github digest (TLS Working Group Drafts)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 13 Dec 2020 07:38:48 -0000
Issues ------ * tlswg/draft-ietf-tls-esni (+0/-0/π¬12) 3 issues received 12 new comments: - #369 Potential SNI leak via cross-ECH resumption (3 by cbartle891, chris-wood, kjacobs-moz) https://github.com/tlswg/draft-ietf-tls-esni/issues/369 - #359 Transcript hash construction (1 by kylon94) https://github.com/tlswg/draft-ietf-tls-esni/issues/359 [ready-for-text] - #354 "Don't stick out" considerations for ECH (8 by bemasc, cbartle891, chris-wood, cjpatton, ekr, huitema) https://github.com/tlswg/draft-ietf-tls-esni/issues/354 * tlswg/tls13-spec (+1/-0/π¬0) 1 issues created: - More clarity on what should be in the cookies. (by ekr) https://github.com/tlswg/tls13-spec/issues/1206 * tlswg/dtls13-spec (+7/-2/π¬8) 7 issues created: - Ben Kaduk's review requested a number of example fixes. (by ekr) https://github.com/tlswg/dtls13-spec/issues/187 - When can you send NCID and RCID (by ekr) https://github.com/tlswg/dtls13-spec/issues/186 - Add an example for KeyUpdate (by ekr) https://github.com/tlswg/dtls13-spec/issues/176 - PDU appendix generator is not working properly. (by ekr) https://github.com/tlswg/dtls13-spec/issues/175 - Say something about how large cert messages may cause congestion (by ekr) https://github.com/tlswg/dtls13-spec/issues/174 - DTLS version number (by ekr) https://github.com/tlswg/dtls13-spec/issues/170 - Encryption limits are too long for SN encryption (by ekr) https://github.com/tlswg/dtls13-spec/issues/167 4 issues received 8 new comments: - #187 Ben Kaduk's review requested a number of example fixes. (2 by ekr) https://github.com/tlswg/dtls13-spec/issues/187 - #186 When can you send NCID and RCID (1 by kaduk) https://github.com/tlswg/dtls13-spec/issues/186 - #170 DTLS version number (2 by davidben, ekr) https://github.com/tlswg/dtls13-spec/issues/170 - #167 Encryption limits are too long for SN encryption (3 by ekr, kaduk, martinthomson) https://github.com/tlswg/dtls13-spec/issues/167 2 issues closed: - PDU appendix generator is not working properly. https://github.com/tlswg/dtls13-spec/issues/175 - Encryption limits are too long for SN encryption https://github.com/tlswg/dtls13-spec/issues/167 Pull requests ------------- * tlswg/draft-ietf-tls-esni (+1/-0/π¬1) 1 pull requests submitted: - Clarify privacy goal scope (by kjacobs-moz) https://github.com/tlswg/draft-ietf-tls-esni/pull/371 1 pull requests received 1 new comments: - #371 Clarify privacy goal scope (1 by kjacobs-moz) https://github.com/tlswg/draft-ietf-tls-esni/pull/371 * tlswg/dtls13-spec (+18/-9/π¬2) 18 pull requests submitted: - Rationale for spare cids (by ekr) https://github.com/tlswg/dtls13-spec/pull/185 - Some proposed editorial improvements from Ben Kaduk (by ekr) https://github.com/tlswg/dtls13-spec/pull/184 - Remove stale text about out-of-epoch records (by ekr) https://github.com/tlswg/dtls13-spec/pull/183 - Not totally indefinitely (by ekr) https://github.com/tlswg/dtls13-spec/pull/182 - Some textual clarifications around when ACKs are sent (by ekr) https://github.com/tlswg/dtls13-spec/pull/181 - Alerts are unreliable (by ekr) https://github.com/tlswg/dtls13-spec/pull/180 - Rcid excessive (by ekr) https://github.com/tlswg/dtls13-spec/pull/179 - Clarify when you can reset the timer (by ekr) https://github.com/tlswg/dtls13-spec/pull/178 - Records with bogus epochs should be discarded, not generate alerts (by ekr) https://github.com/tlswg/dtls13-spec/pull/177 - Fix some issues around the Finished message (by ekr) https://github.com/tlswg/dtls13-spec/pull/173 - The advise to aggressively age out was too aggressive (by ekr) https://github.com/tlswg/dtls13-spec/pull/172 - Don't require always buffering and require that retransmission be ideβ¦ (by ekr) https://github.com/tlswg/dtls13-spec/pull/171 - Stop citing RFC2522 (by ekr) https://github.com/tlswg/dtls13-spec/pull/169 - PMTU estimates (by ekr) https://github.com/tlswg/dtls13-spec/pull/168 - Require that cipher suites define a record number encryption algorithm (by ekr) https://github.com/tlswg/dtls13-spec/pull/166 - Fixed portions of the record layer (by ekr) https://github.com/tlswg/dtls13-spec/pull/165 - Clean up use of connection and association (by ekr) https://github.com/tlswg/dtls13-spec/pull/164 - Reference tls-old-versions-deprecate (by ekr) https://github.com/tlswg/dtls13-spec/pull/163 2 pull requests received 2 new comments: - #179 Rcid excessive (1 by ekr) https://github.com/tlswg/dtls13-spec/pull/179 - #161 Ciphersuites seems to miss a "_8" (1 by ekr) https://github.com/tlswg/dtls13-spec/pull/161 9 pull requests merged: - Remove stale text about out-of-epoch records https://github.com/tlswg/dtls13-spec/pull/183 - Not totally indefinitely https://github.com/tlswg/dtls13-spec/pull/182 - Some textual clarifications around when ACKs are sent https://github.com/tlswg/dtls13-spec/pull/181 - Clarify when you can reset the timer https://github.com/tlswg/dtls13-spec/pull/178 - Fix some issues around the Finished message https://github.com/tlswg/dtls13-spec/pull/173 - Fixed portions of the record layer https://github.com/tlswg/dtls13-spec/pull/165 - Clean up use of connection and association https://github.com/tlswg/dtls13-spec/pull/164 - Reference tls-old-versions-deprecate https://github.com/tlswg/dtls13-spec/pull/163 - editorial/nits from AD review https://github.com/tlswg/dtls13-spec/pull/160 * tlswg/dtls-conn-id (+1/-0/π¬0) 1 pull requests submitted: - It is no longer true that an empty CID and no CID are the same (by ekr) https://github.com/tlswg/dtls-conn-id/pull/78 * tlswg/tls-subcerts (+0/-0/π¬3) 1 pull requests received 3 new comments: - #77 Add in test vectors (3 by chris-wood, claucece, wbl) https://github.com/tlswg/tls-subcerts/pull/77 Repositories tracked by this digest: ----------------------------------- * https://github.com/tlswg/draft-ietf-tls-semistatic-dh * https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate * https://github.com/tlswg/draft-ietf-tls-esni * https://github.com/tlswg/certificate-compression * https://github.com/tlswg/draft-ietf-tls-external-psk-importer * https://github.com/tlswg/draft-ietf-tls-ticketrequest * https://github.com/tlswg/tls13-spec * https://github.com/tlswg/tls-flags * https://github.com/tlswg/dtls13-spec * https://github.com/tlswg/dtls-conn-id * https://github.com/tlswg/tls-subcerts * https://github.com/tlswg/oldversions-deprecate * https://github.com/tlswg/sniencryption * https://github.com/tlswg/tls-exported-authenticator * https://github.com/tlswg/draft-ietf-tls-ctls * https://github.com/tlswg/external-psk-design-team
- [TLS] Weekly github digest (TLS Working Group Dra⦠Repository Activity Summary Bot