Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

On Fri, Jun 5, 2020, at 03:54, Russ Housley wrote: > > On Jun 4, 2020, at 12:37 PM, Eric Rescorla wrote: > > Changing: > > TLS 1.3 does not permit the server to send a CertificateRequest > > message when a PSK is being used. This restriction is removed when > > the "tls_cert_with_extern_psk" ex

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

> On Jun 4, 2020, at 12:37 PM, Eric Rescorla wrote: > > > > On Thu, Jun 4, 2020 at 9:24 AM Russ Housley > wrote: > Eric: > >>> On Wed, Jun 3, 2020 at 6:07 PM Martin Thomson >> > wrote: >>> I think that this is a useful erratum and it

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

On Thu, Jun 4, 2020 at 9:24 AM Russ Housley wrote: > Eric: > > On Wed, Jun 3, 2020 at 6:07 PM Martin Thomson wrote: >> >>> I think that this is a useful erratum and it should be approved/HFDU. >>> The extension to which this text alludes is RFC 8773, not >>> post_handshake_auth. >>> >> >> Yes, a

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

Eric: >> On Wed, Jun 3, 2020 at 6:07 PM Martin Thomson > > wrote: >> I think that this is a useful erratum and it should be approved/HFDU. The >> extension to which this text alludes is RFC 8773, not post_handshake_auth. >> >> Yes, although 8773 actually is not super

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

On Thu, Jun 4, 2020 at 8:46 AM Russ Housley wrote: > Eric: > > On Wed, Jun 3, 2020 at 6:07 PM Martin Thomson wrote: > >> I think that this is a useful erratum and it should be approved/HFDU. >> The extension to which this text alludes is RFC 8773, not >> post_handshake_auth. >> > > Yes, although

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

Martin: > I think that this is a useful erratum and it should be approved/HFDU. The > extension to which this text alludes is RFC 8773, not post_handshake_auth. > > There is one other piece to this that is very confusing, and less clear. > > "Servers which are authenticating with a PSK MUST NO

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

Eric: > On Wed, Jun 3, 2020 at 6:07 PM Martin Thomson > wrote: > I think that this is a useful erratum and it should be approved/HFDU. The > extension to which this text alludes is RFC 8773, not post_handshake_auth. > > Yes, although 8773 actually is not super-clear

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

On Wed, Jun 3, 2020, at 6:47 PM, Martin Thomson wrote: > On Thu, Jun 4, 2020, at 11:44, Eric Rescorla wrote: > > I think it would help to be more explicit here: > > Servers which are authenticating with a resumption PSK MUST NOT send > > the CertificateRequest message in the main handshake, [..

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

On Thu, Jun 4, 2020, at 11:44, Eric Rescorla wrote: > I think it would help to be more explicit here: > Servers which are authenticating with a resumption PSK MUST NOT send > the CertificateRequest message in the main handshake, [...], > Servers which are authenticating with an external PSK MUST N

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

On Wed, Jun 3, 2020 at 6:07 PM Martin Thomson wrote: > I think that this is a useful erratum and it should be approved/HFDU. The > extension to which this text alludes is RFC 8773, not post_handshake_auth. > Yes, although 8773 actually is not super-clear about post-handshake, so that's actually

Re: [TLS] [Editorial Errata Reported] RFC8446 (6204)

I think that this is a useful erratum and it should be approved/HFDU. The extension to which this text alludes is RFC 8773, not post_handshake_auth. There is one other piece to this that is very confusing, and less clear. "Servers which are authenticating with a PSK MUST NOT send the Certific

[TLS] [Editorial Errata Reported] RFC8446 (6204)

The following errata report has been submitted for RFC8446, "The Transport Layer Security (TLS) Protocol Version 1.3". -- You may review the report below and at: https://www.rfc-editor.org/errata/eid6204 -- Type: Editorial Re