[TLS] Late DLS 1.3 issue

Christopher Wood <caw@heapingbits.net> Tue, 05 October 2021 23:15 UTC

Return-Path: <caw@heapingbits.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0BDDC3A0CB0 for <tls@ietfa.amsl.com>; Tue, 5 Oct 2021 16:15:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=heapingbits.net header.b=rSJeN4Vi; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=JFAb9TZh
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VaZl8UrVO2cM for <tls@ietfa.amsl.com>; Tue, 5 Oct 2021 16:15:10 -0700 (PDT)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E934C3A0CB7 for <TLS@ietf.org>; Tue, 5 Oct 2021 16:15:10 -0700 (PDT)
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.west.internal (Postfix) with ESMTP id 2C6A332019B4 for <TLS@ietf.org>; Tue, 5 Oct 2021 19:15:10 -0400 (EDT)
Received: from imap41 ([10.202.2.91]) by compute5.internal (MEProxy); Tue, 05 Oct 2021 19:15:10 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=heapingbits.net; h=mime-version:message-id:date:from:to:subject:content-type; s= fm2; bh=E1HjYA5xa9bY+vN4SnXunl/QeqqBQuqv4352z+Hwyjg=; b=rSJeN4Vi QqpjSO3C3tEwwPRyBAWTniduWMgIWSRotOROt4iR095B1IVw+A7NLjvF3qblgDZv vs4upwQn3fTQY5MYfqqpIp/R+BoaGeX8wZ2qaZjHQW5CRUzjSq1gx9trYU/xW4+f rI2YJxGtPcReUAw0xbYqEsx8MmaQRlGk48M5N8qLRp/eErkqTsZXWnCwvsK+OUg6 DKo4eu2HFxaJU6ZIslNSJNyfRhfR1LePXi9CJxYWleiflV6aJVoKYVnkXekrkYrY FDBlMo6NjEgjkknR/V7H30kZN3LNSGJGP6/N5A8/4P0gSJjt4aH9wXWwa6UY5kXp 8UuXJylMoV+qeA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:message-id :mime-version:subject:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm1; bh=E1HjYA5xa9bY+vN4SnXunl/QeqqBQ uqv4352z+Hwyjg=; b=JFAb9TZhAEhJdWOiCsuGiZl1+Y/Z7nZBSDE1JhNn/ruyo G6aU7jre0uiFypfoJMwhYlxGMzdGqafuswZZiYcf7AwUjxLY1kTBD8auT6i6y07P E4Bvmmuq4gb/UHxMf/EvQICN8RmzuJibbQ1KQqpuWM/djvMOVIQ5lxBkLFbWQHK0 61ElqLgfxhDE6mXNoFEDh8U58THYCD7f1SBvXh6i7TGdEDo+w3L0/je8DV+7Lnas ROb6XZ3udktEPW6i1GfuFYX7JZUrwWVKl5HYbAUx5rlBZ4YFUJvMpS7FHXZr9xvZ rAEpQW22aobHDKWBKaE0hmDCtnIzCHNWw/tXbJR7w==
X-ME-Sender: <xms:fdxcYarhuD6i1ZNnsYsKDPO6ndxsLm3G35wb_WDs16gicJAZ1oiJFg> <xme:fdxcYYrtJIxnnzQcdXDBheTk8IazUjpryFSG-cvN37Tdl3lfZOKajt216uLc18bb3 DC2epY2Act_PO63Zts>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvtddrudelhedgudejucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefofgggkfffhffvufgtsehttdertd erredtnecuhfhrohhmpedfvehhrhhishhtohhphhgvrhcuhghoohgufdcuoegtrgifsehh vggrphhinhhgsghithhsrdhnvghtqeenucggtffrrghtthgvrhhnpeefleekheeffffhhe eiieejgefgkedtffetjeekledtheffteeukedvtedtfeejgeenucffohhmrghinhepghhi thhhuhgsrdgtohhmnecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilh hfrhhomheptggrfieshhgvrghpihhnghgsihhtshdrnhgvth
X-ME-Proxy: <xmx:fdxcYfN3u3dBGcWThcARNvj5O6nu5hhTm2fHvpWx5-wMFpQBWD0ptQ> <xmx:fdxcYZ7Qfft7uNs6vcjmccS-pITk9p6ApXYHKsC4uLpRQxHAYGtXlQ> <xmx:fdxcYZ6L66_FXZbECyWjncZ9-jIXTIZyB03psZWMngUw_Kxg_gOvtA> <xmx:fdxcYbEX4KmziGJiaHzllUQaY1AVZpELTP_82rrZPtk6qnIAgn9IEw>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id A63063C0246; Tue, 5 Oct 2021 19:15:09 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.5.0-alpha0-1322-g921842b88a-fm-20210929.001-g921842b8
Mime-Version: 1.0
Message-Id: <3e98642a-a232-471f-aacc-2f7a723be320@www.fastmail.com>
Date: Tue, 05 Oct 2021 16:14:49 -0700
From: Christopher Wood <caw@heapingbits.net>
To: "TLS@ietf.org" <TLS@ietf.org>
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/ao_5FBj4l4EE_KDT9j_RuoDuOOQ>
Subject: [TLS] Late DLS 1.3 issue
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Oct 2021 23:15:17 -0000

Hi folks,

There's one late breaking issue we need to resolve for DTLS 1.3 before it proceeds to publication:

   https://github.com/tlswg/dtls13-spec/issues/249

Based on discussions with some people involved in the security analysis of TLS 1.3, a proposed fix is here:

   https://github.com/tlswg/dtls13-spec/pull/255

We'd like to merge this to resolve the issue and continue forward progress. To that end, please review the issue and change and indicate whether or not it is workable for you. Barring objections, we'll merge the PR on Friday, October 15. 

Best,
Chris, for the chairs