[TLS] Weekly github digest (TLS Working Group Drafts)

Repository Activity Summary Bot <do_not_reply@mnot.net> Sun, 04 April 2021 07:43 UTC

Return-Path: <do_not_reply@mnot.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 443AD3A1B7F for <tls@ietfa.amsl.com>; Sun, 4 Apr 2021 00:43:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.216
X-Spam-Level: *
X-Spam-Status: No, score=1.216 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SBL_CSS=3.335, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=lnd7ZoAc; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=ji+HQ8sD
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5887jqGo7YcM for <tls@ietfa.amsl.com>; Sun, 4 Apr 2021 00:43:20 -0700 (PDT)
Received: from out3-smtp.messagingengine.com (out3-smtp.messagingengine.com [66.111.4.27]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EE04D3A1B62 for <tls@ietf.org>; Sun, 4 Apr 2021 00:43:19 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 4764A5C007A for <tls@ietf.org>; Sun, 4 Apr 2021 03:43:19 -0400 (EDT)
Received: from mailfrontend1 ([10.202.2.162]) by compute1.internal (MEProxy); Sun, 04 Apr 2021 03:43:19 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:from:to:subject:message-id:date; s= fm2; bh=Zw+o6FabRgaY09qpspEaZxDOHMsylVpACxoj576hQKM=; b=lnd7ZoAc 0lBrNbdddiDv5MknIvacGJjiykp6Mx12O03JZQgzqs3W1XvlWtnuCaWs0x5u9KmD affZpnFGetyqUJRMqrP9R0+qsTxDRlt/wO1iroai8zL4ifXIEH8PEqT92yULlJU1 xaLVIvY9dnMo0j4aS+y2uaxewArpAVy3tIDsaZLq/zk9sHdKCoSf7ZII9WSL0pMc qZw5JIqPeUtemKBQ4NM2OWMLBJokFf612HMFArMvQYU8DU6jJe57zUFzD1xqbrfO auynTXYLDbmSPA3X5i61xz4FOd/vE6/A33z7q+T4NbtgOtoTdk3BzTKNGNfeEHgX f3MLsGePnqgk7g==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:message-id :mime-version:subject:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm2; bh=Zw+o6FabRgaY09qpspEaZxDOHMsyl VpACxoj576hQKM=; b=ji+HQ8sDv8ybd8m72z9PQwW4p7nuiAXj1n44Z6hpwGm3w 40fxs2+jeu4INXuH/+ddGoq42NNXdu89Gwx0Dhd2y4n+1FKRHa8MU7xqp7i/ZDPZ X/gwulvaYzsnY4OK7vWmfDrNNcn1QfNeyVsnFh7weYvs//yKScckoYmi6Aj9o+Nj XXypVxSY7mdVg2ed4xMleA+1Luv4tgJb5LpEGBmjjPYnktPuMUmhLxdPct95z5Hj I1/p7nSR6WfD/Za0hPm8TtEv6WSo2hBNdhwV4CcgHH8/rqSu7Wx8I0CYUqAtWoaS 47TQk1EN8yqmDVdKgyevmGTQ7R/SzpPzY39G31P4g==
X-ME-Sender: <xms:F25pYAuxmkDlHhh9_-35eo_pl9TYlZOCFH97rmR-W6Fr_RZGSZC94A> <xme:F25pYNdfB4UWSItGQviNpJPzs6H1vFzheYyRYUJQo-6CZ2lgJy5fKoMdagkq_mdjw Ke8dJla2vT5fDO0mQ>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduledrudeiledguddviecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecunecujfgurheptggghffvufesrgdttdertddtje enucfhrhhomheptfgvphhoshhithhorhihucettghtihhvihhthicuufhumhhmrghrhicu uehothcuoeguohgpnhhothgprhgvphhlhiesmhhnohhtrdhnvghtqeenucggtffrrghtth gvrhhnpeekfedvudetjedvfeekheeiveeugfefhfetteevgeffkefffeetffdvleehudei teenucffohhmrghinhepghhithhhuhgsrdgtohhmnecukfhppeegtddrieehrddvvdehrd efvdenucevlhhushhtvghrufhiiigvpedvnecurfgrrhgrmhepmhgrihhlfhhrohhmpegu ohgpnhhothgprhgvphhlhiesmhhnohhtrdhnvght
X-ME-Proxy: <xmx:F25pYLxQ0wfovd7sCnT9BiuvS5LLHRRwyiXfLgGv09Ai7eUBIvxr9A> <xmx:F25pYDO0tekWgZpU0wU9v3YADevH4EfhNm3xiyKY9Mu7DRGP871TTw> <xmx:F25pYA9Qi1cp4Mi9ai9K0uXXyYjK8ooyAQ1iGx6TTkQvHRAk_1OPHQ> <xmx:F25pYOnyDc-cM3ORl29rqjangWC6SNu9y-No1JCUEVefzA-n9Z4lvw>
Received: from fv-az213-537.internal.cloudapp.net (unknown [40.65.225.32]) by mail.messagingengine.com (Postfix) with ESMTPA id 11506240054 for <tls@ietf.org>; Sun, 4 Apr 2021 03:43:19 -0400 (EDT)
Content-Type: multipart/alternative; boundary="===============0216550785338227091=="
MIME-Version: 1.0
From: Repository Activity Summary Bot <do_not_reply@mnot.net>
To: tls@ietf.org
Message-Id: <20210404074319.11506240054@mailuser.nyi.internal>
Date: Sun, 4 Apr 2021 03:43:19 -0400 (EDT)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/kpnxY5mXlNrD4BTHA0AdWcSRyvg>
Subject: [TLS] Weekly github digest (TLS Working Group Drafts)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 04 Apr 2021 07:43:28 -0000



Issues
------
* tlswg/draft-ietf-tls-esni (+2/-0/πŸ’¬48)
  2 issues created:
  - Editorial: Describe ECH chronologically rather than all client behavior then all server behavior (by cbartle891)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/412 
  - Early data and ClientHelloOuter interaction (by davidben)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/408 

  7 issues received 48 new comments:
  - #412 Editorial: Describe ECH chronologically rather than all client behavior then all server behavior (1 by dmcardle)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/412 
  - #408 Early data and ClientHelloOuter interaction (8 by cbartle891, chris-wood, davidben)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/408 
  - #405 public_name edge cases and client checks (23 by bemasc, cbartle891, chris-wood, davidben, dmcardle, richsalz, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/405 
  - #403 public_name and maximum_name_length could be smaller (4 by cbartle891, davidben, dmcardle)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/403 
  - #402 Not all of CHOuter is authenticated (4 by cbartle891, chris-wood, davidben)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/402 
  - #399 The serverhello.random trick is ugly and might interact with ticket handling... (3 by cjpatton, davidben, martinthomson)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/399 
  - #397 Including the client's ephemeral public key in the AAD precludes use of a single-shot HPKE API (5 by chris-wood, davidben, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/issues/397 



Pull requests
-------------
* tlswg/draft-ietf-tls-esni (+6/-0/πŸ’¬22)
  6 pull requests submitted:
  - Mirror early_data in ClientHelloOuter when applicable. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/415 
  - Allow clients send a dummy PSK in ClientHelloOuter (by cjpatton)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/414 
  - Add SHOULD for clients to validate public_name as a DNS hostname. (by dmcardle)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/413 
  - Validate the contents of ClientHelloInner. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/411 
  - Authenticate ClientECH extension position in ClientHelloOuterAAD. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/410 
  - Compress ECHConfigContents. (by chris-wood)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/409 

  2 pull requests received 22 new comments:
  - #413 Add MUST for clients to validate ECHConfig.contents.public_name. (21 by bemasc, cbartle891, chris-wood, davidben, dmcardle, richsalz, sftcd)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/413 
  - #410 Authenticate ClientECH extension position in ClientHelloOuterAAD. (1 by martinthomson)
    https://github.com/tlswg/draft-ietf-tls-esni/pull/410 

* tlswg/dtls-conn-id (+0/-0/πŸ’¬1)
  1 pull requests received 1 new comments:
  - #96 zero-length CID clarification (1 by boaks)
    https://github.com/tlswg/dtls-conn-id/pull/96 

* tlswg/tls-subcerts (+1/-0/πŸ’¬0)
  1 pull requests submitted:
  - Correct text describing valid_time (by lukevalenta)
    https://github.com/tlswg/tls-subcerts/pull/83 


Repositories tracked by this digest:
-----------------------------------
* https://github.com/tlswg/draft-ietf-tls-semistatic-dh
* https://github.com/tlswg/draft-ietf-tls-md5-sha1-deprecate
* https://github.com/tlswg/draft-ietf-tls-esni
* https://github.com/tlswg/certificate-compression
* https://github.com/tlswg/draft-ietf-tls-external-psk-importer
* https://github.com/tlswg/draft-ietf-tls-ticketrequest
* https://github.com/tlswg/tls13-spec
* https://github.com/tlswg/tls-flags
* https://github.com/tlswg/dtls13-spec
* https://github.com/tlswg/dtls-conn-id
* https://github.com/tlswg/tls-subcerts
* https://github.com/tlswg/oldversions-deprecate
* https://github.com/tlswg/sniencryption
* https://github.com/tlswg/tls-exported-authenticator
* https://github.com/tlswg/draft-ietf-tls-ctls
* https://github.com/tlswg/external-psk-design-team