Re: [TLS] Closing on PSS. PR#1114

Martin Thomson <martin.thomson@gmail.com> Tue, 05 December 2017 01:35 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5EF53126DED for <tls@ietfa.amsl.com>; Mon, 4 Dec 2017 17:35:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V7lC0vGFEk8r for <tls@ietfa.amsl.com>; Mon, 4 Dec 2017 17:35:43 -0800 (PST)
Received: from mail-oi0-x235.google.com (mail-oi0-x235.google.com [IPv6:2607:f8b0:4003:c06::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D2542120725 for <tls@ietf.org>; Mon, 4 Dec 2017 17:35:42 -0800 (PST)
Received: by mail-oi0-x235.google.com with SMTP id w131so13180852oiw.0 for <tls@ietf.org>; Mon, 04 Dec 2017 17:35:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=SEckeGgQnf8dT3dxx5AFcwk9WvYD0Fc8nc4ik2tdADA=; b=fzHUtydEfEv4FHRJvZrH21COr/hZnD8bm0d9cxxCcJ4OeXF7j+v19a7GxWEWEJXtRC /Et4f2tNST1iPBT5BvN+/1qJbzk+b7QWZMOcPwwES4fzzGRnwWeXuw8704w2FXEJwCO3 KSKDPXWGV6q5Jeyn2zIPOR0Xs28qvsuoEzPt6H6sU5H1Ba2zbWPfe0fO5Fmq4mHJZVS+ 1lrQT4aQk+XtTHQQ11hEZlq788+8lquSL3thCrZYSIt2oy/uEfhtelinpmcn8xCqYFA2 jz7nQOSvE4Vu1POb8PREcdO2+lOuFzVtTVCWib/ZepaJNb8WlaM6kwF0OCkDa9SsNk8x izBw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=SEckeGgQnf8dT3dxx5AFcwk9WvYD0Fc8nc4ik2tdADA=; b=OoyF9UmceCk1Rr9ZCDp/iNR3vLCK4FNi+NBUV9Tk5MEo/AM5/cH8hP7Dp9fhZWDaYC cvFBLbABM7Bs8HRnKuoUa79VB3vHW8emAGTN8MqwfxPCGP4jzF9nDjTY7rOBfHia8yc6 t4/1m5IZyBu3AUtpVW1v1NYMBbiz1DxeU/qawzvSMNJi0ASojQc9OsBMxU5B+1W7/e6A lkXC+sX8OWlAmrs5Ob+8B+Tr6XpZBZzBpw3v8x+Fkee8+s96lSoBPCDbRR3E+SgvQ/EE PDsbKfzIkjxiy7IAwTzEuiFfgBthGkRp4Bm6PmGJC4ded3uSifxEAP6Om4KuUU03BAfX x1Lw==
X-Gm-Message-State: AJaThX7wcbA5XKlzVO3l8CduHM73bdNBvlXUxup6d08ixn/sxhlHUx0X y5jlGcHNv4W75UQdhPV11wb5Kv6nOUunJ5WF9Ev5fA==
X-Google-Smtp-Source: AGs4zMZuuMfpHQhcN+EYT0A+Tg05SoCg+XU2pyVXe4sbEjRe4jEGRdSlrBWbM4kMf0+U8n1qd3xYfvpmGMDMWbkAkII=
X-Received: by 10.202.48.8 with SMTP id w8mr15076922oiw.284.1512437742130; Mon, 04 Dec 2017 17:35:42 -0800 (PST)
MIME-Version: 1.0
Received: by 10.157.8.11 with HTTP; Mon, 4 Dec 2017 17:35:41 -0800 (PST)
In-Reply-To: <CABcZeBPyZvvoZ_OQfj2k1uDz8cc3_ASTMWvD17axJx3+WFDRUw@mail.gmail.com>
References: <CABcZeBPyZvvoZ_OQfj2k1uDz8cc3_ASTMWvD17axJx3+WFDRUw@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Tue, 5 Dec 2017 12:35:41 +1100
Message-ID: <CABkgnnWSLPyyveV7cWftiYS=_qL_nj0UVb1wFkz6zxT7mf2XCg@mail.gmail.com>
To: Eric Rescorla <ekr@rtfm.com>
Cc: "tls@ietf.org" <tls@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/yo1aDhr2B_4rjj3ocJ3snxcdpmo>
Subject: Re: [TLS] Closing on PSS. PR#1114
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Dec 2017 01:35:44 -0000

On Tue, Dec 5, 2017 at 12:24 PM, Eric Rescorla <ekr@rtfm.com>; wrote:
> - A separate extension that refers only to the cert chain
> - Two sets of RSA code points, one for PSS and one for PKCS#1.

To be clear, this is two sets of RSA-PSS code points, one for PSS SPKI
and one for PKCS#1 SPKI.

That's awful, but I agree that it is necessary.  I like the overlap
with signature_algorithms and signature_algorithms_cert, because it
makes the simple design possible without making the horrible
intermediate steps possible.