diff --git a/.github/workflows/archive.yml b/.github/workflows/archive.yml index 6aa2c09..3fca351 100644 --- a/.github/workflows/archive.yml +++ b/.github/workflows/archive.yml @@ -29,6 +29,6 @@ jobs: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: "Save Archive" - uses: actions/upload-artifact@v2 + uses: actions/upload-artifact@v4 with: path: archive.json diff --git a/.github/workflows/ghpages.yml b/.github/workflows/ghpages.yml index 342f9d6..88ddf7e 100644 --- a/.github/workflows/ghpages.yml +++ b/.github/workflows/ghpages.yml @@ -49,12 +49,9 @@ jobs: env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - - name: "Save HTML" - uses: actions/upload-artifact@v2 + - name: "Archive Built Drafts" + uses: actions/upload-artifact@v4 with: - path: "*.html" - - - name: "Save Text" - uses: actions/upload-artifact@v2 - with: - path: "*.txt" + path: | + draft-*.html + draft-*.txt diff --git a/draft-ietf-mls-extensions.md b/draft-ietf-mls-extensions.md index 09d2309..63d70b3 100755 --- a/draft-ietf-mls-extensions.md +++ b/draft-ietf-mls-extensions.md @@ -431,7 +431,8 @@ struct { The safe extension API allows extension designers to sign and encrypt payloads without the need to register their own IANA labels. Following the same pattern, this document also provides ways for extension designers to define their own -wire formats, proposals and credentials. +wire formats, proposals, credentials, and for structured data in the +Additional Authenticated Data. #### Core Struct Extensions @@ -505,6 +506,42 @@ in question with the extension_data containing all other relevant data. Note that any credential defined in this way has to meet the requirements detailed in Section 5.3 of the MLS specification. +#### Additional Authenticated Data (AAD) {#safe-aad} + +The `PrivateContentAAD` struct in MLS can contain arbitrary additional +application-specific AAD in its `authenticated_data` field. This framework +defines a framing used to allow multiple extensions to add AAD safely +without conflicts or ambiguity. + +When any AAD safe extension is included in the `authenticated_data` field, +the "safe" AAD items MUST come before any non-safe data in the +`authenticated_data` field. Safe AAD items are framed using the `SafeAAD` +struct and are sorted in increasing numerical order of the `ExtensionType` +as described below: + +~~~ tls +struct { + ExtensionType extension_type; + opaque aad_item_data; +} SafeAADItem; + +struct { + SafeAADItem aad_items; +} SafeAAD; +~~~ + +If the `SafeAAD` is present or not is determined by the presence of the +`extension_aad` GroupContext extension in the `required_capabilities` of the +group. If `extension_aad` is present in `required_capabilities` but no +"safe" AAD items are present, the `aad_items` is a zero-length vector. + +Each extension which include a `SafeAADItem` needs to advertise its +`ExtensionType` in its LeafNode `capabilities.extensions`. Extensions MAY +require an `ExtensionType` to be included in `required_capabilities`, but +members which encounter a `SafeAADItem` they do not recognize can safely +ignore it. + + ### Extension state: anchoring, storage and agreement The safe extension framework can help an MLS extension ensure that all group @@ -582,6 +619,7 @@ management more costly than via extension-specific proposals, which can, for example, include only the data to be changed for a given GroupContext extension, or define semantics that allow modification based on local data only. + ## Extension Design Guidance While extensions can modify the protocol flow of MLS and the associated @@ -1248,6 +1286,18 @@ no additional data. * Recommended: Y * Reference: RFC XXXX +### extension_aad MLS Extension + +The extension_aad MLS Extension Type is used to signal support for `SafeAAD` +in LeafNode capabilities, and in GroupContext `required_capabilities`. It contains no additional data. + +* Value: 0x000B +* Name: extension_aad +* Message(s): LN,GC: This extension may appear in LeafNode and GroupContext + objects. +* Recommended: Y +* Reference: RFC XXXX + ### safe_extensions MLS Extension The `safe_extensions` MLS Extension Type is used to signal support for the @@ -1342,6 +1392,16 @@ from a group more efficiently than using a `remove` proposal type, as the * Recommended: Y * Reference: RFC XXXX +## MLS Extension Types + +This document modifies the rules of the "MLS Extension Types" registry +to add a new Message type as follows: + +- AD: Authenticated Additional Data + +The `AD` Message type refers to an `ExtensionType` used inside the +`SafeAADItem` structure defined in {{safe-aad}}. + # Security considerations ## AppAck