[TLS] Weekly github digest (TLS Working Group Drafts)

Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 08 August 2021 07:34 UTC

Return-Path: <do_not_reply@mnot.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA3EC3A1FA7 for <tls@ietfa.amsl.com>; Sun, 8 Aug 2021 00:34:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=fYYZ0oBW; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=Wq4E0kL8
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uRkNh7aqlF9h for <tls@ietfa.amsl.com>; Sun, 8 Aug 2021 00:34:05 -0700 (PDT)
Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ECE123A1F80 for <tls@ietf.org>; Sun, 8 Aug 2021 00:34:04 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 2E3F55C00E1 for <tls@ietf.org>; Sun, 8 Aug 2021 03:34:04 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute1.internal (MEProxy); Sun, 08 Aug 2021 03:34:04 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:from:to:subject; s=fm3; bh=KbanhMEbnLI fByN3GWvAsy815iJ+npgx7tQhgwe0stQ=; b=fYYZ0oBW6Dz1XOxSgGNwpjqnKG7 a76Z74CLidt3lsjhMheJgQWRpc1eDTkfqHZGRr4mNErvmEUqalBIYHDT37xLqtlS 0eXKRUSOC4zhjcfcP9W7+Y0+sTyBdSZqnS/P5yWEipSjfiI87rcbEbR25yu3IIkR 9erYMlb0Y2JYBVeLH4sChVQuCAIERVsAHdx6MDzvJ+7MKe41R4GV+sATMW/+7TCW 1nsfi9AHK0l4wzh9SGgNaPZBvt16sMzYid/7fyob0+ZHsBBbSGNowBg5CiqTFfUo JzqZmbn3bcQBpiwPzmOfb3qwtfyYLI4MuAkOsbbSBI6jtd+tVmGqdoTO4NA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:from:mime-version:subject:to :x-me-proxy:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s= fm3; bh=KbanhMEbnLIfByN3GWvAsy815iJ+npgx7tQhgwe0stQ=; b=Wq4E0kL8 yXp/VXyLxQ7eA+V+4UklCdeTrYhcO2Phxwn+8LqOgiVvts9RtaQf/5x5XfUEXaOA 8BBVlNpEe4O2meCvkfT/5TkP52L/GvBj0ntKb/3fSPUBbId7Cnc/tt59Y8yd5/Vi iHTSE9q/H/1VtKVwCmS6qi1Lv/Ffbcd+a/DHz2Ua2n9gKM1G6vqD7KKbzUpz8LXy HX5FbbOqe5jK5ooOTXAI7WeLKsCYkoqZWAyYsVfT7xt1PjAF2GCmHkdRwrJeM4sB Oj9kqJiOwYUbkWbqBjW7OuoqiOG8qHRaUQF1UM9Dq3ayg/u4uD4GzaQZtiPPkc5J +C8wfWiKoNcNsw==
X-ME-Sender: <xms:64gPYW-giMyxGbOWYrpwVDwKmzkm0h3iGHRbZ699zKsoHiawtJCdRw> <xme:64gPYWslmkZdLGADw_3XjkXUZLwdjAUDzPlfr13fRLOiqjaVSzcoikCDWO0ZvrNVo rvIJ6INqmqErM5MQQ>
X-ME-Received: <xmr:64gPYcBoRM3o_ehzozKLWdP6MUJfSNoLVs1RyZsS0Jq3MtwXrCLDxcLkrCuugsbGnqTC1MfpSOVpF7-UsYN1WyjwdqQD95hj8x7ZF4FBOlO9GK9mNF_sq2TTj9CS77V67w>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvtddrjeeggddutdekucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucfpohcuuggrthgvuchfihgvlhguucdlgeelmdenuc fjughrpegtggfhvffusegrtddtredttdejnecuhfhrohhmpeftvghpohhsihhtohhrhicu tegtthhivhhithihucfuuhhmmhgrrhihuceuohhtuceoughopghnohhtpghrvghplhihse hmnhhothdrnhgvtheqnecuggftrfgrthhtvghrnhepkeefvdduteejvdefkeehieevuefg fefhteetveegffekffefteffvdelheduieetnecuffhomhgrihhnpehgihhthhhusgdrtg homhenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpegu ohgpnhhothgprhgvphhlhiesmhhnohhtrdhnvght
X-ME-Proxy: <xmx:64gPYeeFIDLMQ5FTOVHMvPwzkk11NjWtYAAruFuNV7W-OVxUU_sY3A> <xmx:64gPYbNRXo9TeUBNk6s1v8oXuLh3gMcGOC4m8vqrtjP2aR9clCZtkA> <xmx:64gPYYk3etTsw1miOVvtYPxd6UJFD2VX5oQrW0QcK5h1SP6e5qBuoQ> <xmx:7IgPYUbCkMhGL--RnY6fA_LxIozBiIIBG4u-cXYilWxWuI6jiSLBsg>
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <tls@ietf.org>; Sun, 8 Aug 2021 03:34:03 -0400 (EDT)
Content-Type: multipart/alternative; boundary="===============4697178928630945014=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: tls@ietf.org
Message-Id: <20210808073404.ECE123A1F80@ietfa.amsl.com>
Date: Sun, 8 Aug 2021 00:34:04 -0700 (PDT)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/_0Y5b84PZ2EBzGF626PSn-ztgRw>
Subject: [TLS] Weekly github digest (TLS Working Group Drafts)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 08 Aug 2021 07:34:19 -0000



Issues
------
* tlswg/draft-ietf-tls-esni (+2/-1/πŸ’¬8)
  2 issues created:
  - Split mode correlation attacks (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/513 
  - Lessen possibility of client implementation choices undermining GREASE cover (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/512 

  3 issues received 8 new comments:
  - #513 Split mode correlation attacks (6 by chris-wood, davidben, pkelsey, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/513 
  - #512 Lessen possibility of client implementation choices undermining GREASE cover (1 by cbartle891)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/512 
  - #429 Clarify handling of transcript at client? (1 by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/429 

  1 issues closed:
  - Clarify handling of transcript at client? https://github.com/tlswg/draft-ietf-tls-esni/issues/429 

* tlswg/tls13-spec (+1/-0/πŸ’¬0)
  1 issues created:
  - Not clear why 0-RTT doesn't provide perfect forward secrecy (by cbartle891)
    https://github.com/tlswg/tls13-spec/issues/1235 

* tlswg/tls-flags (+3/-0/πŸ’¬3)
  3 issues created:
  - IANA registry rules (by martinthomson)
    https://github.com/tlswg/tls-flags/issues/11 
  - Extra length octet (by martinthomson)
    https://github.com/tlswg/tls-flags/issues/10 
  - Repository maintenance (by martinthomson)
    https://github.com/tlswg/tls-flags/issues/9 

  2 issues received 3 new comments:
  - #11 IANA registry rules (2 by martinthomson, yoavnir)
    https://github.com/tlswg/tls-flags/issues/11 
  - #10 Extra length octet (1 by yoavnir)
    https://github.com/tlswg/tls-flags/issues/10 

* tlswg/dtls13-spec (+0/-1/πŸ’¬1)
  1 issues received 1 new comments:
  - #251 Establishing New Associations with Existing Parameters - SHOULD / please add description of the alternatives (1 by boaks)
    https://github.com/tlswg/dtls13-spec/issues/251 

  1 issues closed:
  - Establishing New Associations with Existing Parameters - SHOULD / please add description of the alternatives https://github.com/tlswg/dtls13-spec/issues/251 



Pull requests
-------------
* tlswg/draft-ietf-tls-md5-sha1-deprecate (+2/-0/πŸ’¬0)
  2 pull requests submitted:
  - Remove RFC5246 updates, change Section 2 intro text such that the extension is always included. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/pull/19 
  - Drop RFC7525 Updates. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate/pull/18 

* tlswg/draft-ietf-tls-esni (+30/-19/πŸ’¬40)
  30 pull requests submitted:
  - Remove sentence that is redundant with the paragraph that follows (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/511 
  - Clarify ambiguous grammar (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/510 
  - Clarify the document's assumption of restricted attacker location (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/509 
  - Rework Handshaking with ClientHelloInner to remove conflicts and... (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/508 
  - Replace broader, conflicting description of client retry_config use... (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/507 
  - Adjust caption of Figure 1 (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/506 
  - More accurately describe provider plaintext access (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/505 
  - Fix several typos (by pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/504 
  - Define EncodedClientHelloInner before outer extensions. (by davidben)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/503 
  - not sure if omitting CH in IANA registry for ech_outer_extensions is right or not (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/502 
  - Fix a bit of formatting and remove ref to resolved issue #384 (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/501 
  - ech_retry_requested is a gonner (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/500 
  - trial decryption configuration - "both sides" seems wrong (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/499 
  - retry configs: tweak about subsequent connections  (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/498 
  - Try clarify an odd MUST in 6.1.5 (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/497 
  - Clarify cardinality via the use of the (non-redudant:-) length field (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/496 
  - optional configids seems wrong, maybe random is better? (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/495 
  - config IDs aren't really optional (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/494 
  - A bit more text to introduce EncodedClientHelloInner (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/493 
  - Bit more text on nominal backend processing (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/492 
  - Expand on config_ids. (by davidben)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/491 
  - Clarify a bit why server might send retry configs (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/490 
  - fe0c->fe0d (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/489 
  - sensible-pickers (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/488 
  - note potential config_id collisions (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/487 
  - redundant length (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/486 
  - note experiment (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/485 
  - HPKE isn't draft-08 any more (by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/484 
  - Update codepoints to -13. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/483 
  - Add -12 changelog. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/482 

  15 pull requests received 40 new comments:
  - #511 Remove sentence that is redundant with the paragraph that follows (1 by cbartle891)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/511 
  - #509 Clarify the document's assumption of restricted attacker location (3 by chris-wood, pkelsey)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/509 
  - #502 not sure if omitting CH in IANA registry for ech_outer_extensions is right or not (2 by chris-wood, davidben)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/502 
  - #496 Clarify cardinality via the use of the (non-redudant:-) length field (2 by ekr, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/496 
  - #495 optional configids seems wrong, maybe random is better? (7 by cbartle891, chris-wood, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/495 
  - #494 config IDs aren't really optional (1 by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/494 
  - #493 A bit more text to introduce EncodedClientHelloInner (4 by chris-wood, davidben, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/493 
  - #492 Bit more text on nominal backend processing (6 by chris-wood, davidben, ekr, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/492 
  - #491 Expand on config_ids. (2 by davidben, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/491 
  - #489 fe0c->fe0d (2 by chris-wood, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/489 
  - #487 note potential config_id collisions (1 by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/487 
  - #486 redundant length (6 by davidben, ekr, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/486 
  - #485 note experiment (1 by sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/485 
  - #482 Add -12 changelog. (1 by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/482 
  - #481 Allow the client-facing server to GREASE the extension. (1 by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/481 

  19 pull requests merged:
  - Replace broader, conflicting description of client retry_config use...
    https://github.com/tlswg/draft-ietf-tls-esni/pull/507 
  - Clarify ambiguous grammar
    https://github.com/tlswg/draft-ietf-tls-esni/pull/510 
  - Remove sentence that is redundant with the paragraph that follows
    https://github.com/tlswg/draft-ietf-tls-esni/pull/511 
  - More accurately describe provider plaintext access
    https://github.com/tlswg/draft-ietf-tls-esni/pull/505 
  - Adjust caption of Figure 1
    https://github.com/tlswg/draft-ietf-tls-esni/pull/506 
  - Fix several typos
    https://github.com/tlswg/draft-ietf-tls-esni/pull/504 
  - Clarify a bit why server might send retry configs
    https://github.com/tlswg/draft-ietf-tls-esni/pull/490 
  - sensible-pickers
    https://github.com/tlswg/draft-ietf-tls-esni/pull/488 
  - Allow the client-facing server to GREASE the extension.
    https://github.com/tlswg/draft-ietf-tls-esni/pull/481 
  - Define EncodedClientHelloInner before outer extensions.
    https://github.com/tlswg/draft-ietf-tls-esni/pull/503 
  - trial decryption configuration - "both sides" seems wrong
    https://github.com/tlswg/draft-ietf-tls-esni/pull/499 
  - note experiment
    https://github.com/tlswg/draft-ietf-tls-esni/pull/485 
  - Clarify cardinality via the use of the (non-redudant:-) length field
    https://github.com/tlswg/draft-ietf-tls-esni/pull/496 
  - Fix a bit of formatting and remove ref to resolved issue #384
    https://github.com/tlswg/draft-ietf-tls-esni/pull/501 
  - Expand on config_ids.
    https://github.com/tlswg/draft-ietf-tls-esni/pull/491 
  - ech_retry_requested is a gonner
    https://github.com/tlswg/draft-ietf-tls-esni/pull/500 
  - HPKE isn't draft-08 any more
    https://github.com/tlswg/draft-ietf-tls-esni/pull/484 
  - Update codepoints to -13.
    https://github.com/tlswg/draft-ietf-tls-esni/pull/483 
  - Grease and HRR leak
    https://github.com/tlswg/draft-ietf-tls-esni/pull/419 

* tlswg/tls-flags (+1/-2/πŸ’¬0)
  1 pull requests submitted:
  - Seven bits? (by martinthomson)
    https://github.com/tlswg/tls-flags/pull/8 

  2 pull requests merged:
  - Editorial WGLC comment by Victor Dukhovni
    https://github.com/tlswg/tls-flags/pull/7 
  - Seven bits?
    https://github.com/tlswg/tls-flags/pull/8 

* tlswg/dtls-conn-id (+2/-0/πŸ’¬0)
  2 pull requests submitted:
  - Use same trailing ) position. (by boaks)
    https://github.com/tlswg/dtls-conn-id/pull/123 
  - Use wording similar to other length field. (by boaks)
    https://github.com/tlswg/dtls-conn-id/pull/122 

* tlswg/tls-exported-authenticator (+1/-0/πŸ’¬0)
  1 pull requests submitted:
  - Nick/aug5reviews (by grittygrease)
    https://github.com/tlswg/tls-exported-authenticator/pull/74 

* tlswg/draft-ietf-tls-ctls (+1/-0/πŸ’¬0)
  1 pull requests submitted:
  - Removal of varint encoding (by hannestschofenig)
    https://github.com/tlswg/draft-ietf-tls-ctls/pull/36 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/tlswg/draft-ietf-tls-semistatic-dh
* https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate
* https://github.com/tlswg/draft-ietf-tls-esni
* https://github.com/tlswg/certificate-compression
* https://github.com/tlswg/draft-ietf-tls-external-psk-importer
* https://github.com/tlswg/draft-ietf-tls-ticketrequest
* https://github.com/tlswg/tls13-spec
* https://github.com/tlswg/tls-flags
* https://github.com/tlswg/dtls13-spec
* https://github.com/tlswg/dtls-conn-id
* https://github.com/tlswg/tls-subcerts
* https://github.com/tlswg/oldversions-deprecate
* https://github.com/tlswg/sniencryption
* https://github.com/tlswg/tls-exported-authenticator
* https://github.com/tlswg/draft-ietf-tls-ctls
* https://github.com/tlswg/external-psk-design-team