Re: [dns-privacy] [IANA #1223683] Last Call: <draft-ietf-dprive-dnsoquic-08.txt> (DNS over Dedicated QUIC Connections) to Proposed Standard
Sara Dickinson <sara@sinodun.com> Wed, 26 January 2022 17:09 UTC
Return-Path: <sara@sinodun.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6A49B3A1822 for <dns-privacy@ietfa.amsl.com>; Wed, 26 Jan 2022 09:09:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.1
X-Spam-Level:
X-Spam-Status: No, score=-7.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sinodun.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wg8o5Q9efLGJ for <dns-privacy@ietfa.amsl.com>; Wed, 26 Jan 2022 09:09:50 -0800 (PST)
Received: from balrog.mythic-beasts.com (balrog.mythic-beasts.com [IPv6:2a00:1098:0:82:1000:0:2:1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AF0933A1821 for <dns-privacy@ietf.org>; Wed, 26 Jan 2022 09:09:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=sinodun.com ; s=mythic-beasts-k1; h=To:Date:From:Subject; bh=SWsAp2OVNuisjo5CokEsJVuxdMXASDhUqnCJAruszQQ=; b=jJjxcbD+8gzq3gZEe2NQ/2PCUb 3LMcpdOWbQ6r+mttegnXip2WhabI5UEvfuSLggE9XnITlZBtHdkqhu6mKLvj6CVKkf2wK/VrhUjbP cRiue+m4Kk5GByct3vAdWWq7p5vU74Mx/tAtFXW5zyB+pqpCxHCZshiO8c5ScZsPSXgtH2bNzQBbP Bj+W8bGLJrzwXPsFImDVK0z9TiD/PYVD4yPWC3xKk+UlxmcqlcdzxKljLedODSKSep1SxxKliRCkM 5fzu0aAQHenFvPnj/fC6xdTwGvHkSb/dIIZAGkEOw47PeOIioO5/nmWIulSfd/Llv+YrCNIpuXqiN S+DgzWkQ==;
Received: from [2a02:8010:6a36:102:fffa::53] (port=57461) by balrog.mythic-beasts.com with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92.3) (envelope-from <sara@sinodun.com>) id 1nClnd-0000kG-2o; Wed, 26 Jan 2022 17:09:41 +0000
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.7\))
From: Sara Dickinson <sara@sinodun.com>
In-Reply-To: <rt-4.4.3-20371-1643151494-1193.1223683-37-0@icann.org>
Date: Wed, 26 Jan 2022 17:08:41 +0000
Cc: Christian Huitema <huitema@huitema.net>, tjw.ietf@gmail.com, evyncke@cisco.com, ek.ietf@gmail.com, dns-privacy@ietf.org, brian@innovationslab.net, allison.mankin@gmail.com
Content-Transfer-Encoding: quoted-printable
Message-Id: <BEFAC8A0-8F98-433D-8599-CFA3406378C3@sinodun.com>
References: <RT-Ticket-1223683@icann.org> <RT-Ticket-1221797@icann.org> <164191280859.637.2764847661326111244@ietfa.amsl.com> <rt-4.4.3-12032-1643049551-886.1221797-37-0@icann.org> <ce1e3553-7420-6a1a-05b1-950b734fef85@huitema.net> <rt-4.4.3-20370-1643139413-1317.1223683-37-0@icann.org> <933d72b0-7534-a881-60f4-2448f40aeacc@huitema.net> <rt-4.4.3-20370-1643144117-1150.1223683-37-0@icann.org> <rt-4.4.3-20371-1643151494-1193.1223683-37-0@icann.org>
To: drafts-lastcall@iana.org
X-Mailer: Apple Mail (2.3608.120.23.2.7)
X-BlackCat-Spam-Score: 4
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/LmBwOTsBxACnhcEBBYYDwY3zdi0>
Subject: Re: [dns-privacy] [IANA #1223683] Last Call: <draft-ietf-dprive-dnsoquic-08.txt> (DNS over Dedicated QUIC Connections) to Proposed Standard
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Addition of privacy to the DNS protocol <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Jan 2022 17:09:57 -0000
Hi Sabrina/Christian, The PR changes look good to me too, but I was thinking it would be very useful for future readers to also indicate that a review has happened. I have made a suggestion here: https://github.com/huitema/dnsoquic/pull/140/files#r792845998 Please let me know if this seems reasonable. Regards Sara. > On 25 Jan 2022, at 22:58, Sabrina Tanamal via RT <drafts-lastcall@iana.org> wrote: > > Hi Christian, > > These changes look good. Thank you! > > Best regards, > > Sabrina Tanamal > Lead IANA Services Specialist > > On Tue Jan 25 20:55:17 2022, huitema@huitema.net wrote: >> Hello Sabrina, >> >> Yes, reading the section 10.2 again, I see that there is some leftover >> text from previous iterations, and it creates confusion. I just >> proposed >> a set of changes on our github repo -- >> https://github.com/huitema/dnsoquic/pull/140. The changes affet >> section >> 10.2 as follow: >> >> 1) Remove the line "IANA responded to the early allocation request >> with >> the following TEMPORARY assignment:", since IANA did not do anything >> like that. >> >> 2) Remove the line "The TEMPORARY assignment expires 13th December >> 2022." There is no such temporary assignment. >> >> 3) Delete section 10.2.1, which was already slated for removal. This >> removes the confusing references to port number 784. >> >> Would that address your concerns? >> >> -- Christian Huitema >> >> >> On 1/25/2022 9:36 AM, Sabrina Tanamal via RT wrote: >>> Hi Christian, >>> >>> See [ST] below. >>> >>> On Tue Jan 25 02:04:28 2022,huitema@huitema.net wrote: >>>> On 1/24/2022 8:39 AM, Sabrina Tanamal via RT wrote: >>>>> (BEGIN IANA COMMENTS) >>>>> >>>>> IESG/Authors/WG Chairs: >>>>> >>>>> The IANA Functions Operator has completed its review of draft-ietf- >>>>> dprive-dnsoquic-08. If any part of this review is inaccurate, >>>>> please >>>>> let us know. >>>>> >>>>> The IANA Functions Operator has a question about one of the actions >>>>> requested in the IANA Considerations section of this document. >>>>> >>>>> The IANA Functions Operator understands that, upon approval of this >>>>> document, there are four actions which we must complete. >>>>> >>>>> First, in the TLS Application-Layer Protocol Negotiation (ALPN) >>>>> Protocol IDs registry on the Transport Layer Security (TLS) >>>>> Extensions registry page located at: >>>>> >>>>> https://www.iana.org/assignments/tls-extensiontype-values/ >>>> The registry is located at: >>>> https://www.iana.org/assignments/tls-extensiontype-values/tls- >>>> extensiontype-values.xhtml#alpn-protocol-ids. >>>> >>>> That registry is under the title "TLS Application-Layer Protocol >>>> Negotiation (ALPN) Protocol IDs" >>>> >>>>> a new registration is to be made as follows: >>>>> >>>>> Protocol: DoQ >>>>> Identification Sequence: 0x64 0x6F 0x71 ("doq") >>>>> Reference: [ RFC-to-be ] >>>>> >>>>> As this document requests registrations in an Expert Review (see >>>>> RFC >>>>> 8126) registry, we will initiate the required Expert Review via a >>>>> separate request. This review must be completed before the >>>>> document's >>>>> IANA state can be changed to "IANA OK." >>>>> >>>>> Second, we will update the description and list this document as an >>>>> additional reference for UDP port 853: >>>>> >>>>> Service Name: domain-s >>>>> Port Number: 853 >>>>> Transport Protocol(s): UDP >>>>> Assignee: IETF DPRIVE Chairs >>>>> Contact: Brian Haberman >>>>> Description: DNS query-response protocol run over DTLS or QUIC >>>>> Reference: [RFC7858][RFC8094] This document >>>>> >>>>> In addition, the Description field for the corresponding TCP port >>>>> 853 >>>>> allocation will be changed to 'DNS query-response protocol run over >>>>> TLS'. >>>>> >>>>> IANA Question: We understand from Section 8.1.1 of RFC 6335 that >>>>> the >>>>> IESG should be listed as the assignee and the IETF Chair as the >>>>> contact for an IETF-stream document. Can you confirm that this is >>>>> correct? >>>> Yes. >>>>> IANA Question: Since we didn't make a temporary early allocation >>>>> request for the above port, can the early allocation language be >>>>> removed from the document? We will make the changes as agreed with >>>>> the port experts when the document is approved for publication. >>>> Please explain what you mean by "the early allocation language." >>> [ST] Section 10.2 says, “IANA responded to the early allocation >>> request with the following TEMPORARY assignment:” and states that the >>> allocation expires on 13 December 2022. However, on 13 December 2021, >>> the determination by the port experts was that the existing port >>> would be modified when the document was approved for publication, not >>> that an early allocation or modification would be made. Can this >>> section be rewritten to reflect that a modification is being >>> requested by the document? >>> >>>>> IANA notes that section 10.2.1 contains notes for implementer of >>>>> early experiments and no instructions for IANA. >>>> Section 10.2.1. should be removed once the allocation is done. The >>>> text >>>> says "(RFC EDITOR NOTE: THIS SECTION TO BE REMOVED BEFORE >>>> PUBLICATION)". >>>> It might have been better to describe an IANA action rather than at >>>> RFC >>>> EDITOR action, but the intent is clear. >>> [ST] If a port allocation is required here, please clarify what the >>> IANA actions should be. >>> >>> Thank you, >>> >>> Sabrina Tanamal >>> Lead IANA Services Specialist >>> >>>>> Third, in the Extended DNS Error Codes registry on the Domain Name >>>>> System (DNS) Parameters registry page located at: >>>>> >>>>> https://www.iana.org/assignments/dns-parameters/ >>>>> >>>>> a new registration will be made as follows: >>>>> >>>>> INFO-CODE: [ TBD-at-Registration ] >>>>> Purpose: Too Early >>>>> Reference: [ RFC-to-be ] >>>> Yes. >>>>> Fourth, a new registry is to be created called the DNS over QUIC >>>>> Error Codes registry. The new registry will be located on the >>>>> Domain >>>>> Name System (DNS) Parameters registry page located at: >>>>> >>>>> https://www.iana.org/assignments/dns-parameters/ >>>>> >>>>> The registration rules for the new registry are: >>>>> >>>>> 0x00 - 0x3f require Standards Action or IESG Approval >>>>> >>>>> Permanent registrations for values larger than 0x3f, which are >>>>> assigned using the Specification Required policy (as defined in >>>>> [RFC8126]) >>>>> >>>>> Provisional registrations for values larger than 0x3f, which >>>>> require >>>>> Expert Review, as defined in Section 4.5 of [RFC8126]. >>>>> >>>>> There are initial registrations in the new registry as follows: >>>>> >>>>> +==========+=======================+================+============================+ >>>>> |Value | Error |Description | Specification | >>>>> +==========+=======================+================+============================+ >>>>> |0x0 | DOQ_NO_ERROR |No error | [ RFC-to-be; Section 5.3 ] | >>>>> +----------+-----------------------+---------------- >>>>> +----------------------------+ >>>>> |0x1 | DOQ_INTERNAL_ERROR |Implementation | [ RFC-to-be; Section >>>>> 5.3 >>>>> ] | >>>>> | | |error | | >>>>> +----------+-----------------------+---------------- >>>>> +----------------------------+ >>>>> |0x2 | DOQ_PROTOCOL_ERROR |Generic protocol| [ RFC-to-be; Section >>>>> 5.3 >>>>> ] | >>>>> | | |violation | | >>>>> +----------+-----------------------+---------------- >>>>> +----------------------------+ >>>>> |0x3 | DOQ_REQUEST_CANCELLED |Request | [ RFC-to-be; Section 5.3 ] >>>>> | >>>>> | | |cancelled by | | >>>>> | | |client | | >>>>> +----------+-----------------------+---------------- >>>>> +----------------------------+ >>>>> |0x4 | DOQ_EXCESSIVE_LOAD |Closing a | [ RFC-to-be; Section 5.3 ] | >>>>> | | |connection for | | >>>>> | | |excessive load | | >>>>> +----------+-----------------------+---------------- >>>>> +----------------------------+ >>>>> |0xd098ea5e| DOQ_ERROR_RESERVED |Alternative | [ RFC-to-be; Section >>>>> 5.3 ] | >>>>> | | |error code used | | >>>>> | | |for tests | | >>>>> +----------+-----------------------+---------------- >>>>> +----------------------------+ >>>>> >>>>> The IANA Functions Operator understands that these are the only >>>>> actions required to be completed upon approval of this document. >>>> Yes. >>>>> Note: The actions requested in this document will not be completed >>>>> until the document has been approved for publication as an RFC. >>>>> This >>>>> message is meant only to confirm the list of actions that will be >>>>> performed. >>>>> >>>>> Thank you, >>>>> >>>>> Sabrina Tanamal >>>>> Lead IANA Services Specialist >>>>> >>>>> (END IANA COMMENTS) >>>> Thank you! >>>> >>>> -- Christian Huitema >>> _______________________________________________ >>> dns-privacy mailing list >>> dns-privacy@ietf.org >>> https://www.ietf.org/mailman/listinfo/dns-privacy >
- [dns-privacy] [IANA #1221797] Last Call: <draft-i… Sabrina Tanamal via RT
- Re: [dns-privacy] [IANA #1221797] Last Call: <dra… Christian Huitema
- [dns-privacy] [IANA #1223683] Re: Last Call: <dra… Sabrina Tanamal via RT
- Re: [dns-privacy] [IANA #1223683] Re: Last Call: … Christian Huitema
- [dns-privacy] [IANA #1223683] Re: Last Call: <dra… Sabrina Tanamal via RT
- Re: [dns-privacy] [IANA #1223683] Last Call: <dra… Sara Dickinson