Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt
Ben Schwartz <bemasc@google.com> Tue, 22 March 2022 12:17 UTC
Return-Path: <bemasc@google.com>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 079093A11AA for <add@ietfa.amsl.com>; Tue, 22 Mar 2022 05:17:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.609
X-Spam-Level:
X-Spam-Status: No, score=-17.609 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cLF04N8lRet2 for <add@ietfa.amsl.com>; Tue, 22 Mar 2022 05:17:03 -0700 (PDT)
Received: from mail-io1-xd34.google.com (mail-io1-xd34.google.com [IPv6:2607:f8b0:4864:20::d34]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5963B3A11B5 for <add@ietf.org>; Tue, 22 Mar 2022 05:17:03 -0700 (PDT)
Received: by mail-io1-xd34.google.com with SMTP id z7so19979113iom.1 for <add@ietf.org>; Tue, 22 Mar 2022 05:17:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=F028Ebo7XyvmlYxl0dy9jbr5IlQ6q1qqJYE/M/56o1Q=; b=OpEoA+8+dpmFv/i7uvj67GIgF+ywBdajXu58NdfxYrsRcAeLjrE+geHQF/uAPPTda6 U60iqPDGShSTGywnZLFbf++JEiRq63UgFgWUUm9wgLRfydjf6wzOUgDKaEmruwh199hu jsAJkiVd4sn6SUIylkN0Fp7aquEMmBrLHP2pAzpjQajuKJqLwglyEOEXd5KTAjKu1o4M rLVcwvbEM0xkJlmjEHnZJpdKP8b1Vgc2XthWuLRtbTDiG/LikQlOVH2pmj/pwFlXDq4Z AN1QrjeqgcC5m2WVZFyEjzHZWWR7juFDE1rrJWFy541eM9H9gqB2Qxot1UpGXMY4Gvrx NFlw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=F028Ebo7XyvmlYxl0dy9jbr5IlQ6q1qqJYE/M/56o1Q=; b=f/rx+LIwi3TVORXpCZ9bRDZ5MfxkhQTIMRSTBXEWbqbP/0FLFU3/EAOBt7p6oPtdUa D6swvHb0MpoqQEVgQKWMx6wCN+HdlL9hh+PipNTSoewTTyi9bnNVwQZtxwxuGbU/nQDQ 5DuqHfy/LE/W/ZQ9mG8/5PilDXKJKiZeRXKpCVT7Vi2kq33q1jT+3x8wYZ8Up3v+0rEH /6J+T48IlYAjmb83Pp5SVB2zjkLfg4k3cEREnIBAmRNVgajLx1/hBwZIQWN4JcytyxPb mObTp74IqDvfKjyVWZxndQAlpugCiCZIjtfZJ0LN1wyZZdkRvmaHC0/kXqlgWpn+gKav 6n1g==
X-Gm-Message-State: AOAM533pCN92bS81pH8URSkBfoe1MxdqJ7IiJ2sJC7vn8vaJQhzzUSFT UEATIKLTxYcKYgtP+pg2ZpWHseh/v2AHYs5lkG9KPRCzqVu/Vw==
X-Google-Smtp-Source: ABdhPJx/WPb8VCrFHHIKo+osTwSnCL/tYyulazfyEoj+ymSpRFs6vRFSWFrdc3EpzCgfEwPGSGnRwCDHsZEpXIb+Mh8=
X-Received: by 2002:a05:6638:264c:b0:319:c95e:8089 with SMTP id n12-20020a056638264c00b00319c95e8089mr12986424jat.287.1647951421961; Tue, 22 Mar 2022 05:17:01 -0700 (PDT)
MIME-Version: 1.0
References: <164794947626.30561.7200844374087375231@ietfa.amsl.com>
In-Reply-To: <164794947626.30561.7200844374087375231@ietfa.amsl.com>
From: Ben Schwartz <bemasc@google.com>
Date: Tue, 22 Mar 2022 08:16:50 -0400
Message-ID: <CAHbrMsAZKbs37OkD4xepxTK5d+NmaMtp19LXn+UoN9SHcr=cVA@mail.gmail.com>
To: ADD Mailing list <add@ietf.org>
Cc: i-d-announce@ietf.org
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="00000000000023fa1505dacd97bc"
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/Extig3063DUoi7KzOxf0BdW9flA>
Subject: Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Mar 2022 12:17:10 -0000
As I noted in my previous review, this draft is in violation of the IPv6 RA forming requirements: (https://www.rfc-editor.org/rfc/rfc4861#section-9): Options in Neighbor Discovery packets can appear in any order; receivers MUST be prepared to process them independently of their order. By omitting the SvcPriority from the IPv6 RA option, this syntax becomes order-reliant, which is not allowed. (My proposed syntax revision would avoid this problem.) I also note that this draft now says AliasMode (Section 2.4.2 of [I-D.ietf-dnsop-svcb-https]) is not supported because such a mode will trigger additional Do53 queries while the data can be supplied directly by DHCP servers. I don't think we should impose this restriction. As I noted in my previous review, it is easy to identify deployments where additional Do53 queries would be highly preferable, instead of trying to distribute all of this information via DHCP. Do53 followup seems straightforward, since it is exactly name-based DDR and is likely to be implemented in the same codebase, but it could be made optional if this is a concern. On Tue, Mar 22, 2022 at 7:44 AM <internet-drafts@ietf.org> wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the Adaptive DNS Discovery WG of the IETF. > > Title : DHCP and Router Advertisement Options for the > Discovery of Network-designated Resolvers (DNR) > Authors : Mohamed Boucadair > Tirumaleswar Reddy > Dan Wing > Neil Cook > Tommy Jensen > Filename : draft-ietf-add-dnr-06.txt > Pages : 21 > Date : 2022-03-22 > > Abstract: > The document specifies new DHCP and IPv6 Router Advertisement options > to discover encrypted DNS servers (e.g., DNS-over-HTTPS, DNS-over- > TLS, DNS-over-QUIC). Particularly, it allows to learn an > authentication domain name together with a list of IP addresses and a > set of service parameters to reach such encrypted DNS servers. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-add-dnr/ > > There is also an htmlized version available at: > https://datatracker.ietf.org/doc/html/draft-ietf-add-dnr-06 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-add-dnr-06 > > > Internet-Drafts are also available by rsync at rsync.ietf.org: > :internet-drafts > > > -- > Add mailing list > Add@ietf.org > https://www.ietf.org/mailman/listinfo/add >
- [Add] I-D Action: draft-ietf-add-dnr-06.txt internet-drafts
- Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt Ben Schwartz
- Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt tirumal reddy
- Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt Ben Schwartz
- Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt mohamed.boucadair
- Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt mohamed.boucadair
- Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt mohamed.boucadair
- Re: [Add] I-D Action: draft-ietf-add-dnr-06.txt mohamed.boucadair