[TLS] TLS@IETF109: Confirming resolution on lone draft-ietf-tls-dtls-connection-id issue

Sean Turner <sean@sn3rd.com> Wed, 18 November 2020 05:27 UTC

Return-Path: <sean@sn3rd.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA9D83A1446 for <tls@ietfa.amsl.com>; Tue, 17 Nov 2020 21:27:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sn3rd.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nPoGOg6Rc8Da for <tls@ietfa.amsl.com>; Tue, 17 Nov 2020 21:27:32 -0800 (PST)
Received: from mail-io1-xd31.google.com (mail-io1-xd31.google.com [IPv6:2607:f8b0:4864:20::d31]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A5DE3A1443 for <tls@ietf.org>; Tue, 17 Nov 2020 21:27:32 -0800 (PST)
Received: by mail-io1-xd31.google.com with SMTP id d17so714952ion.4 for <tls@ietf.org>; Tue, 17 Nov 2020 21:27:32 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; h=from:content-transfer-encoding:mime-version:subject:message-id:date :to; bh=KM5h3SiSxLn3ZEDR1IG6PsfzjL/+B1utqeNIuOJdYPI=; b=Ee34O7IA+CiJgIK8WqsVEbBQrWWn385Ck4hcCjZXGJRBLBGfgiRKVGMuNcAW+7drhY 7++HHLw1+SwH8NZaid5zUihzj/YlHUFCgQZ2j/mVEVZqrgkoqo4v+IyJAATCvlnrVvJM 1rS1uUMdpUJ5JvE64XdAMXS5UnM8y377h5MQk=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:content-transfer-encoding:mime-version :subject:message-id:date:to; bh=KM5h3SiSxLn3ZEDR1IG6PsfzjL/+B1utqeNIuOJdYPI=; b=d/SNaqh9axiKbZunqmjMHPQIMHypCKesTjG5+ARFoLaX8KgeEhSwioE8F85xJhdX0B eivK67vTme+xVzt+iFA7UsvNyH41BhgY4ZItUd/n6MlBtt9vQ9Nhr3emsLimUfmAIion 4Iy4moupqtZoRumN1ZnaS0cg1RS2rRbzLwQn2LWE4JcZIcSUHD/1kAsZj3zU2GYxVka2 RgYXdMasVf3BqsXnZUmMqjeFUypYnTlRY/qO61lNWK+l8GkTk0Bu95dNZ6ds9nzklhPY Yaco7eh+W6FCLRZgleQKmKJL7IwCeFN4G5lh2zYFsb01Ujv8/WiEHrRpijpvjpDXrJqT MT4w==
X-Gm-Message-State: AOAM533TwmWKbAzH3YIh5OOlwLShFVtv/ZOPr3XVCbSNseDXb2p17ELO BwnWmfA8FEZlI2ltOmudIJ1zbggMaH50WQ==
X-Google-Smtp-Source: ABdhPJwuwcu39RY42x9pkxiewmW13DDhy69hkeEv7iJY/L3Vj329O6joAPYXhXFyB/INWmzBm2Cv8Q==
X-Received: by 2002:a5d:85ce:: with SMTP id e14mr14231030ios.166.1605677251314; Tue, 17 Nov 2020 21:27:31 -0800 (PST)
Received: from [192.168.1.152] (pool-108-31-39-252.washdc.fios.verizon.net. [108.31.39.252]) by smtp.gmail.com with ESMTPSA id b4sm14748925ile.13.2020.11.17.21.27.30 for <tls@ietf.org> (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Tue, 17 Nov 2020 21:27:30 -0800 (PST)
From: Sean Turner <sean@sn3rd.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.4\))
Message-Id: <1B23309B-386D-4102-AE43-A1AF12AA2BBB@sn3rd.com>
Date: Wed, 18 Nov 2020 00:27:29 -0500
To: TLS List <tls@ietf.org>
X-Mailer: Apple Mail (2.3608.120.23.2.4)
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/qnEE_QpueqF4HvDiZr9ttRVUUuc>
Subject: [TLS] TLS@IETF109: Confirming resolution on lone draft-ietf-tls-dtls-connection-id issue
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Nov 2020 05:27:34 -0000

All,

ekr proposed a fix to address the lone remaining AD review issue: tweaking the MAC (AtE) input; see the later messages in [0]. During the session there was consensus to tweak the proposal to be more like what Ben proposed in email, with the CID length before the CID and the on-the-wire header contiguous in the MAC input. Achim noted and ekr agreed in the thread after the session that what was presented needed to be tweaked. However, it appears that the general way forward, i.e., tweak the MAC (AtE), still holds. If you disagree with this please join the discussion in the thread referenced earlier. Once ekr has proposed a PR, we will run a quick consensus check to make sure we can move this I-D along.

Cheers,
Chris, Joe, and Sean

[0] https://mailarchive.ietf.org/arch/msg/tls/fuIKh0KLOBDxEHO14OloItd87o8/