IETF Logo Mail Archive

Re: [TLS] Proposed text for dnsssec chain extension draft

Paul Wouters <paul@nohats.ca> Thu, 26 April 2018 15:31 UTC

Return-Path: <paul@nohats.ca>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29DE612DA21 for <tls@ietfa.amsl.com>; Thu, 26 Apr 2018 08:31:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nohats.ca
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d-D2auy7z_SM for <tls@ietfa.amsl.com>; Thu, 26 Apr 2018 08:30:58 -0700 (PDT)
Received: from mx.nohats.ca (mx.nohats.ca [193.110.157.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C20AC126FDC for <tls@ietf.org>; Thu, 26 Apr 2018 08:30:58 -0700 (PDT)
Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 40X1HN52fYz1q2; Thu, 26 Apr 2018 17:30:56 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1524756656; bh=NuOglzq9Pp+N0RY9Ej0iAlsG1Lrje652g7IvrkmM5L0=; h=Date:From:To:cc:Subject:In-Reply-To:References; b=uoLKxkbt8JrJZWzIc4LrK2bvA/S1gL+SYvOxCap/3MrDmktdvrkbUV6sZN6DIqsOK OTjphRZDT0b7h+qWRQ3734jIMBaQTDwQbg40bhwvweFWgxEkVkM6gIIi0GHGWNGkun QS0jkLlP11ehVyyt++p6LWEcKBKe+WIWlkccPX/4=
X-Virus-Scanned: amavisd-new at mx.nohats.ca
Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id MaSR42J_GOyW; Thu, 26 Apr 2018 17:30:55 +0200 (CEST)
Received: from bofh.nohats.ca (bofh.nohats.ca [76.10.157.69]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS; Thu, 26 Apr 2018 17:30:54 +0200 (CEST)
Received: by bofh.nohats.ca (Postfix, from userid 1000) id 8AE8A59F119; Thu, 26 Apr 2018 11:30:53 -0400 (EDT)
DKIM-Filter: OpenDKIM Filter v2.11.0 bofh.nohats.ca 8AE8A59F119
Received: from localhost (localhost [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id 7E2B540C103E; Thu, 26 Apr 2018 11:30:53 -0400 (EDT)
Date: Thu, 26 Apr 2018 11:30:53 -0400
From: Paul Wouters <paul@nohats.ca>
To: Eric Rescorla <ekr@rtfm.com>
cc: TLS WG <tls@ietf.org>
In-Reply-To: <CABcZeBPNwBKqVLmNR=KqrxhwbxJZPs_-oK26XbK8oq1yRaS8eg@mail.gmail.com>
Message-ID: <alpine.LRH.2.21.1804261125150.30646@bofh.nohats.ca>
References: <1D2EB7F1-B796-4459-93C2-443A7104F33A@dukhovni.org> <CABcZeBPNwBKqVLmNR=KqrxhwbxJZPs_-oK26XbK8oq1yRaS8eg@mail.gmail.com>
User-Agent: Alpine 2.21 (LRH 202 2017-01-01)
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/YtCCdQ8xuYnKtT40-td2N37RR9M>
Subject: Re: [TLS] Proposed text for dnsssec chain extension draft
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Apr 2018 15:31:01 -0000

On Wed, 25 Apr 2018, Eric Rescorla wrote:

> The conventional reason to reserve this kind of field is that you need to leave
> space for an extension in some PDU, because it's hard to add later. But that's
> not true here (or in TLS in general) because we already have an extension
> mechanism (indeed, the one that's being used by this specification). If we
> end up having consensus to do pinning, then it's straightforward to define
> a new TLS extension that provides it.

The pinning is not about DANE pinning but about extension pinning. To
make a 2nd extension to pin a 1st extension seems very wrong to me.

Additionally, as explained before, since all pinning text has consensus
to be removed, this would leave clients completely in the dark about
what to do when the extension vanishes. Adding the two byte zeroes
allows the document to clearly and unequivocally say to NOT pin this
extension with some magic local policy.

> That doesn't seem like a good set of tradeoffs.

This has nothing to do with trade-offs. It has to do with carefully
specifying client behaviour for use with _this_ extension. It makes
no sense to leave that unspecified for another document.

Paul

v2.14.0 | Report a Bug | By Email