Re: [Add] Comparative DoH Discovery DNS RR Types
Martin Thomson <mt@lowentropy.net> Tue, 30 June 2020 02:25 UTC
Return-Path: <mt@lowentropy.net>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 696863A09F9 for <add@ietfa.amsl.com>; Mon, 29 Jun 2020 19:25:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=mJ3q7ZC3; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=eo/QMxKD
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1V4IxoYASaQM for <add@ietfa.amsl.com>; Mon, 29 Jun 2020 19:25:25 -0700 (PDT)
Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21B543A09F8 for <add@ietf.org>; Mon, 29 Jun 2020 19:25:25 -0700 (PDT)
Received: from compute2.internal (compute2.nyi.internal [10.202.2.42]) by mailout.nyi.internal (Postfix) with ESMTP id 584E45C00CC for <add@ietf.org>; Mon, 29 Jun 2020 22:25:24 -0400 (EDT)
Received: from imap2 ([10.202.2.52]) by compute2.internal (MEProxy); Mon, 29 Jun 2020 22:25:24 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :subject:content-type; s=fm2; bh=VJ7Y3o85MQMbKBsPfx4Sx8vWNEeP/A7 QrbTo315z0js=; b=mJ3q7ZC34JMQioZZdbqLf7rEE/D9idMuDs/WebHvL517arZ jwk9vEyOEjr+2ugPYJtRK28Df2T1qU6gMpw4MMWujj8Vo2/5K8uHRljwkYWGL5t+ 1M91xOFeJw3vIY47VN/ZyWZSbnu54gOHNpAT3yp4yMePP1aeqS/IKq2nGgPWqI+o qhR0P1Hf7NH4ePBWMrd7FgltWyyEgkhbTJS8zeV6eleeJodcBRx6Ii3/fwxlsB2x KfSeWEGFbPVhAlqwI4m+rDr5KS9gcVdHRQuhkaS6qqoLSYqpunaxtCC8+Ow6LrUG EvwIFhWuqQmeoq0xOPPI++Q09P0phR7HjUWt51Q==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=VJ7Y3o 85MQMbKBsPfx4Sx8vWNEeP/A7QrbTo315z0js=; b=eo/QMxKDc0DyD1xZwqqrbv nlCAOLBWCjD6m9WifDmOa36u4Sn3HMYrZbMfR5WhbL69lgxKTkxPu3k6Nj776jOe VXBLKsSp8pMj9Sn/P8aUDeDDjAPJlP4exG7871QbrseQOo7KCnspE8QFvfFiJhot n6Lg7t64K21clJccJmIz79r96UxCCgUUhBNb7ALJSsmMHN2eavTLT4quyNSGtNTs SbC3XEdvalPl+p2ETf8Obvqe4hP9WYLTFAANh1cLFoex0mK7pgL03B8p++A+mDm4 umAhR2Zs1Ds4I2sZo9+ecJN/fmMzDgXUKrP89frZzVPJVY78CRsGFtkG+mO0cn5g ==
X-ME-Sender: <xms:lKL6XkNY-_xR34r2TfpbFcqXJAU_yn6zMnPr5VPSqCb3oMEFj3_6tg>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduhedrvddttddgiedtucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefofgggkfgjfhffhffvufgtsehttd ertderredtnecuhfhrohhmpedfofgrrhhtihhnucfvhhhomhhsohhnfdcuoehmtheslhho figvnhhtrhhophihrdhnvghtqeenucggtffrrghtthgvrhhnpeekteeuieektdekleefke evhfekffevvdevgfekgfeluefgvdejjeegffeigedtjeenucevlhhushhtvghrufhiiigv pedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehmtheslhhofigvnhhtrhhophihrdhnvg ht
X-ME-Proxy: <xmx:lKL6Xq_iCkhq9QgC5TqWMyRqdih2QaO7UXsDVpXD7TZdb0TnOT11Gw> <xmx:lKL6XrQWACeNQwCClw6cUrBt2KdZ7x8_qEBALcWz7p9PefdWzGmnVQ> <xmx:lKL6XsvOQvo1tImggcp2QFkp5bM9hEJAPoTSHq9IiEL89g0yiLPQDQ> <xmx:lKL6Xj-7PVzmbbF-7XFvrVBfLDZD5XRTUJb2T8PmPe-gsGSS0D2oEg>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id EAB01E00B3; Mon, 29 Jun 2020 22:25:23 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.3.0-dev0-576-gfe2cd66-fm-20200629.001-gfe2cd668
Mime-Version: 1.0
Message-Id: <10fa5a67-1894-4bc5-9090-4d4f5aeb2242@www.fastmail.com>
In-Reply-To: <516fcd85-2d67-e853-03b5-49220df9d878@huitema.net>
References: <7325C546-587D-4CD9-8059-0887C33F3503@cable.comcast.com> <26559974.PdTMpzyJZD@linux-9daj> <18350.1593475069@localhost> <516fcd85-2d67-e853-03b5-49220df9d878@huitema.net>
Date: Tue, 30 Jun 2020 12:25:05 +1000
From: Martin Thomson <mt@lowentropy.net>
To: add@ietf.org
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/dDq3uOURQCKlsv24GcfWqIFZi50>
Subject: Re: [Add] Comparative DoH Discovery DNS RR Types
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jun 2020 02:25:26 -0000
On Tue, Jun 30, 2020, at 12:14, Christian Huitema wrote: > I heard EKR make two arguments for using CNAME: not just middlebox > compatibility, but also software simplicity. The latter is interesting, > and might be worth explaining a bit. The way I understand it, Mozilla > would rather use a well known API like getaddrinfo(), rather than a more > capable API that supports different record types. I can guess that this > is a software simplicity/complexity trade-off. I suppose that the more > capable API tend to be implemented slightly differently on different > OSes, which leads to more complex code with a variety of #ifdef to > accommodate the different platform, more tests, and probably more bugs. > But I may be getting it wrong, and I would rather hear what Mozilla > actually thinks... I'm not super close to this, but my understanding is that we now have two resolution paths: one native and one for DoH. On the DoH path, we have greater ability to manage new RRtypes and queries. However, this specific case cannot follow that path. As this has to be cross-platform, there is a non-trivial amount of plumbing required to support doing anything other than the getaddrinfo() call. Our abstractions are pretty old and have never had to grow the ability grow features like the ability to handle new RRtypes. In other words, Christian, your guess is spot on. As this is (currently) driven by a need for expediency, and CNAME works, it wasn't worth investing a whole lot of effort in finding something better, especially when it is clear that the matter was not settled. If presented with an IETF consensus position on the topic, that would likely be a different story.
- [Add] Comparative DoH Discovery DNS RR Types Livingood, Jason
- Re: [Add] Comparative DoH Discovery DNS RR Types Paul Vixie
- [Add] DNS and middleboxes (was Re: Comparative Do… Adam Roach
- Re: [Add] Comparative DoH Discovery DNS RR Types Tommy Pauly
- Re: [Add] Comparative DoH Discovery DNS RR Types Michael Richardson
- Re: [Add] Comparative DoH Discovery DNS RR Types Daniel Migault
- Re: [Add] Comparative DoH Discovery DNS RR Types Christian Huitema
- Re: [Add] Comparative DoH Discovery DNS RR Types Martin Thomson
- Re: [Add] Comparative DoH Discovery DNS RR Types Paul Vixie
- Re: [Add] Comparative DoH Discovery DNS RR Types Rob Sayre
- Re: [Add] Comparative DoH Discovery DNS RR Types dagon
- Re: [Add] Comparative DoH Discovery DNS RR Types tirumal reddy
- Re: [Add] Comparative DoH Discovery DNS RR Types tirumal reddy
- Re: [Add] Comparative DoH Discovery DNS RR Types Paul Wouters
- Re: [Add] Comparative DoH Discovery DNS RR Types Paul Wouters