Re: [dhcwg] [Last-Call] FW: Last Call: <draft-ietf-add-dnr-09.txt> (DHCP and Router Advertisement Options for the Discovery of Network-designated Resolvers (DNR)) to Proposed Standard

Bernie Volz <bevolz@gmail.com> Tue, 28 June 2022 10:30 UTC

Return-Path: <bevolz@gmail.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 243A5C15C7EF; Tue, 28 Jun 2022 03:30:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_PDS_SHORTFWD_URISHRT_QP=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FDcCdUCkSvCI; Tue, 28 Jun 2022 03:30:43 -0700 (PDT)
Received: from mail-qk1-x732.google.com (mail-qk1-x732.google.com [IPv6:2607:f8b0:4864:20::732]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21672C15C7EA; Tue, 28 Jun 2022 03:30:42 -0700 (PDT)
Received: by mail-qk1-x732.google.com with SMTP id k20so9279966qkj.1; Tue, 28 Jun 2022 03:30:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=content-transfer-encoding:from:mime-version:subject:date:message-id :references:cc:in-reply-to:to; bh=qX8VXrWw5iSYjq3p8NnPyZEPnyPMBX7ko75VB421JQU=; b=e0dcqcRKJh6jWvsf4lbNf62k3+0iME9ckDFNs3aZYQaQlI4vebCYEUulw2bvs+4v2U xw3TmJpbiPN2vMNxpjCrZiy2a0kCK17FSGxbnuP+ZDiPEkkEu7tiuBcTtMSzrp/wUk+t nntzbyUVtSfXxZHUK8+Fc4omCt0Ha3pOr+c7iBCEAIfX+o7Mt4sGSxd5D170uLVjzPi4 vcnrL0KPhGszAt98ewjAX9U4OJ143vHB6E/orpDchTRdR1XiIxX2kwhsQVuf8LMH3Q+K eRjIBoBQxjCqaKtVk3HKN+T9kTkyjdjFB2K1xVJSAf+G0nePhO7NZZIqtm7JwDPt+qoa 9+fA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:content-transfer-encoding:from:mime-version :subject:date:message-id:references:cc:in-reply-to:to; bh=qX8VXrWw5iSYjq3p8NnPyZEPnyPMBX7ko75VB421JQU=; b=VMqsC5d4DsUYoyXUdWZemym81RelJ0PMJ2mxdDIOf/fH6nCqygem4cID+JxVvFa2fK alxYnBFgqa+SQ/rdw33bQu3ch1HBoCis5qrnRP9dELuHiphdFC5RvtnI5t8Fj/wYSab2 e10+5LF5rH3MrlQFDqfAcTDYSdke/I65IHj7Q/Z6wROOD8kohGhzZHKoFw8PEe+Uti/l nEuylPMExW3JsGHp4kWj2ysU0mQ2BLcR3yXmK84S21FJyUJD+K3l/btGXzwm6Fc5cbyJ 9pKgrxvdckXB13bwpZJFS83gOqea7E+bltwfhC2+gh8qP+FfyytHI6E1IgdoEu/Kh7OY Y7kg==
X-Gm-Message-State: AJIora8E2T8iWnk9NpIP3dGtv62EXPyvXKy5V1c/XOUIJZ/iNYDBjcxi G7UWz6AlmUuPmG/uT8wyGiCHe+RAAg==
X-Google-Smtp-Source: AGRyM1sZjabYiFseWhWISfNRbCDLamNoStM/caG1DLSFLPkiaVDY3mi7Hwha5rQV74nSwGLqVDJtbg==
X-Received: by 2002:a05:620a:2807:b0:6a6:6ef1:fb9d with SMTP id f7-20020a05620a280700b006a66ef1fb9dmr11022083qkp.146.1656412240808; Tue, 28 Jun 2022 03:30:40 -0700 (PDT)
Received: from smtpclient.apple (d-24-233-121-124.nh.cpe.atlanticbb.net. [24.233.121.124]) by smtp.gmail.com with ESMTPSA id v12-20020a05620a0f0c00b006a73654c19bsm11401139qkl.23.2022.06.28.03.30.40 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 28 Jun 2022 03:30:40 -0700 (PDT)
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
From: Bernie Volz <bevolz@gmail.com>
Mime-Version: 1.0 (1.0)
Date: Tue, 28 Jun 2022 06:30:40 -0400
Message-Id: <C864CB67-790A-4AAE-91B1-613848A41000@gmail.com>
References: <e63dcd41-ba17-4a8b-ad4a-b243482e4a7d@beta.fastmail.com>
Cc: "mohamed.boucadair" <mohamed.boucadair@orange.com>, dhcwg@ietf.org, draft-ietf-add-dnr@ietf.org, add@ietf.org, last-call@ietf.org
In-Reply-To: <e63dcd41-ba17-4a8b-ad4a-b243482e4a7d@beta.fastmail.com>
To: Martin Thomson <mt@lowentropy.net>
X-Mailer: iPad Mail (19F77)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dhcwg/7Y1MonCbg83W5x_-QFeMDJOuwyM>
Subject: Re: [dhcwg] [Last-Call] FW: Last Call: <draft-ietf-add-dnr-09.txt> (DHCP and Router Advertisement Options for the Discovery of Network-designated Resolvers (DNR)) to Proposed Standard
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Dynamic Host Configuration <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jun 2022 10:30:47 -0000

If you have more than one instance, you need a way to handle that because of the way options are concatenated.

If the DNR Instance Data Length was only a byte, the data would be limited to 255 bytes in length. That could not accommodate the longest possible domain name plus the additional data. Probably very unlikely someone would use such a long domain name, but safest to accommodate it?

- Bernie Volz

> On Jun 27, 2022, at 8:09 PM, Martin Thomson <mt@lowentropy.net> wrote:
> 
> How feasible is it to have multiple instances of ADN+IP+parameters in DHCPv4?  (I agree that the changes look good, but is this likely to ever allow anything more than say 2 instances?
> 
> Related: why is "DNR Instance Data Length" 2 bytes?
> 
>> On Mon, Jun 27, 2022, at 16:06, mohamed.boucadair@orange.com wrote:
>> Hi Bernie,
>> 
>> Thank you for the comment.
>> 
>> Please check https://tinyurl.com/latest-dnr-changes and let me know if 
>> any other change is needed. 
>> 
>> Cheers,
>> Med
>> 
>>> -----Message d'origine-----
>>> De : Bernie Volz <bevolz@gmail.com>
>>> Envoyé : samedi 25 juin 2022 04:02
>>> À : Eric Vyncke (evyncke) <evyncke=40cisco.com@dmarc.ietf.org>
>>> Cc : ipv6@ietf.org; dhcwg@ietf.org; draft-ietf-add-dnr@ietf.org;
>>> add@ietf.Org; last-call@ietf.org
>>> Objet : Re: [dhcwg] FW: Last Call: <draft-ietf-add-dnr-09.txt>
>>> (DHCP and Router Advertisement Options for the Discovery of
>>> Network-designated Resolvers (DNR)) to Proposed Standard
>>> 
>>> Hi:
>>> 
>>> Thanks Eric for adding dhc wg. I have the following comment
>>> related to DHCP.
>>> 
>>> For DHCPv4, you will need to reconsider the option encoding as
>>> multiple instances of options are usually concatenated as per RFC
>>> 3396. As an example, you may want to refer to how the Vender-
>>> Identifying Vendor-Specific Information Option (127) is handled -
>>> see RFC 3925. You already reference RFC 3396 to be able to encode
>>> long domain names. Basically RFC 3925 uses an additional “data”
>>> length field for each instance (this adds one additional octet per
>>> instance). You might want to consider whether that is a single
>>> octet or perhaps two octets given the potential size of the
>>> option?
>>> 
>>> - Bernie Volz, dhc co-chair
>>> 
>>>> On Jun 24, 2022, at 2:16 PM, Eric Vyncke (evyncke)
>>> <evyncke=40cisco.com@dmarc.ietf.org> wrote:
>>>> 
>>>> Extending the IETF Last Call to DHC and 6MAN WG as this IETF
>>> draft contains extension to DHC and IPv6 RA.
>>>> 
>>>> Please keep add@ietf.Org and last-call@ietf.org in cc in all
>>> your replies.
>>>> 
>>>> Thank very much in advance for your review
>>>> 
>>>> Regards
>>>> 
>>>> -éric
>>>> 
>>>> 
>>>> On 24/06/2022, 19:31, "iesg-secretary@ietf.org on behalf of The
>>> IESG" <iesg-secretary@ietf.org> wrote:
>>>> 
>>>> 
>>>>   The IESG has received a request from the Adaptive DNS
>>> Discovery WG (add) to
>>>>   consider the following document: - 'DHCP and Router
>>> Advertisement Options for
>>>>   the Discovery of Network-
>>>>      designated Resolvers (DNR)'
>>>>     <draft-ietf-add-dnr-09.txt> as Proposed Standard
>>>> 
>>>>   The IESG plans to make a decision in the next few weeks, and
>>> solicits final
>>>>   comments on this action. Please send substantive comments to
>>> the
>>>>   last-call@ietf.org mailing lists by 2022-07-08.
>>> Exceptionally, comments may
>>>>   be sent to iesg@ietf.org instead. In either case, please
>>> retain the beginning
>>>>   of the Subject line to allow automated sorting.
>>>> 
>>>>   Abstract
>>>> 
>>>> 
>>>>      The document specifies new DHCP and IPv6 Router
>>> Advertisement options
>>>>      to discover encrypted DNS resolvers (e.g., DNS-over-HTTPS,
>>> DNS-over-
>>>>      TLS, DNS-over-QUIC).  Particularly, it allows a host to
>>> learn an
>>>>      authentication domain name together with a list of IP
>>> addresses and a
>>>>      set of service parameters to reach such encrypted DNS
>>> resolvers.
>>>> 
>>>> 
>>>> 
>>>> 
>>>>   The file can be obtained via
>>>>   https://datatracker.ietf.org/doc/draft-ietf-add-dnr/
>>>> 
>>>>   The ADD WG has another document
>>> https://datatracker.ietf.org/doc/draft-ietf-add-ddr/, which should
>>> probably be reviewed at the same time.
>>>> 
>>>>   No IPR declarations have been submitted directly on this I-D.
>>>> 
>>>> 
>>>> 
>>>> 
>>>> 
>>>> 
>>>> _______________________________________________
>>>> dhcwg mailing list
>>>> dhcwg@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/dhcwg
>> 
>> _________________________________________________________________________________________________________________________
>> 
>> Ce message et ses pieces jointes peuvent contenir des informations 
>> confidentielles ou privilegiees et ne doivent donc
>> pas etre diffuses, exploites ou copies sans autorisation. Si vous avez 
>> recu ce message par erreur, veuillez le signaler
>> a l'expediteur et le detruire ainsi que les pieces jointes. Les 
>> messages electroniques etant susceptibles d'alteration,
>> Orange decline toute responsabilite si ce message a ete altere, deforme 
>> ou falsifie. Merci.
>> 
>> This message and its attachments may contain confidential or privileged 
>> information that may be protected by law;
>> they should not be distributed, used or copied without authorisation.
>> If you have received this email in error, please notify the sender and 
>> delete this message and its attachments.
>> As emails may be altered, Orange is not liable for messages that have 
>> been modified, changed or falsified.
>> Thank you.
>> 
>> -- 
>> last-call mailing list
>> last-call@ietf.org
>> https://www.ietf.org/mailman/listinfo/last-call