IETF Logo Mail Archive

Re: [dns-privacy] John Scudder's No Objection on draft-ietf-dprive-dnsoquic-10: (with COMMENT)

John Scudder <jgs@juniper.net> Tue, 22 March 2022 13:07 UTC

Return-Path: <jgs@juniper.net>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1696C3A11FA; Tue, 22 Mar 2022 06:07:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.109
X-Spam-Level:
X-Spam-Status: No, score=-7.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=YmbKbkvb; dkim=pass (1024-bit key) header.d=juniper.net header.b=Cv6BqJrk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gIL8EaKATw_R; Tue, 22 Mar 2022 06:07:24 -0700 (PDT)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2E7EB3A1271; Tue, 22 Mar 2022 06:07:21 -0700 (PDT)
Received: from pps.filterd (m0108156.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.1.2/8.16.1.2) with ESMTP id 22M8Aap8010009; Tue, 22 Mar 2022 06:07:21 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=vaKlc7qJbcbTGZluL1EzPRAKOTX90NaosejMABGD1Uk=; b=YmbKbkvbJoXHnpuP9aNoN2Ywqbazo7+k3GjPzhc69sHw5wD+VqIxKXOejREbZuIEPKYF YZ7BT280g0jwnpaCqIqevnsEL7OjqzrT+/tTaP/E9BsfT1RveUeQpqCVgcW6Bifw3dRK 1W+jilK784kHlHm6EGp2UUJCg0agrvzNBx/OzktswTqhJZj6nv8ndUK/qegp5sRkaq/T A7otn6HHbQjEsFYB+d3LdahZSEmT7lFZv/ADQY0EhJKWsIRkLSrX5RFZpt9kC+EjrEmK rkPZeB4LYZnI2SItrJm0l7aVc40rAkofijg91Cjm9W/pFu4BbGfWJwHWwrWda0UssGQ6 Hg==
Received: from nam11-bn8-obe.outbound.protection.outlook.com (mail-bn8nam11lp2170.outbound.protection.outlook.com [104.47.58.170]) by mx0a-00273201.pphosted.com (PPS) with ESMTPS id 3eyaqd8hrm-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 22 Mar 2022 06:07:20 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=VvuGRe2yZxsXTMreqSpO8ujbymoTyzcT+pvMBe0ruanLFN1hUqIT1iJqHu678gQJ6PU1grGVlizSSuq74ljI6x3sYep2geSsV5LnYEsuNe7/idI8G/3sN7x4/jz/Ahop3U8dpYmhzj2QzlQrq1qoushjwMX1xUzwSMt/BzHx6FevhfwDVNxnLAaaXS7Y6Mr4xOxypRrU0dLa2psq+uRDDh/lX/fseeQLrcAg8VoeTMiEHkVogJZyPVzCP0RCeTFdPpiAPvZtNrsBPmFdPA9uI7o74U1L4pq3/8W4BSI9Hjk2z4K7qVDnqglm8uMhyz5OZX+sU/+JJl93HO5Md9cD8w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=vaKlc7qJbcbTGZluL1EzPRAKOTX90NaosejMABGD1Uk=; b=dmjgy6fuECoWQgSNa7HtAZjrJUKab1cTYsFgFWI+Tjv1eFwTRfOpiZKOGR4T9zHctKX4BriUsId/dGBQRi+r25sDwG7qeb5U8wAKLZXj3ANGXgn7DBGy+4xZIYakHpHMvWxnXiaeO+Gr3E5oAeXdLfeNNYq6r0ouAG6pJq5Ojfcpnwnh+LQ9NPwLHFNxQssbULek7W+inKvUnMPYE7k2jkRGNb6Ag17IUHaKBC7f8uhFLv/z3sQPu4TLi1vXSPY0LiClnbULEOWwPFPbFOu2hA6mBSXF4J4ze4oH6LnQMkVM/o9pHnzWvRMFAuyCj0lKGDqUTScxitP97c9UqngJwQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=vaKlc7qJbcbTGZluL1EzPRAKOTX90NaosejMABGD1Uk=; b=Cv6BqJrk6m36D56oSuekvtCmf431tmABOHhK+UVMewBbErHfSO2swGA3sx5UdaEX0v2knVhPaz5fFzcS318PBHTevL18wVeKymWnfbSUsn5BIzTGE+u4e7o1ucpW2xPWZ2MLfaGt7VVLiERyGV53EgEVumdqRks+B9iKO6PQI0g=
Received: from MN2PR05MB6109.namprd05.prod.outlook.com (2603:10b6:208:c4::20) by MWHPR05MB3565.namprd05.prod.outlook.com (2603:10b6:301:44::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5102.16; Tue, 22 Mar 2022 13:07:12 +0000
Received: from MN2PR05MB6109.namprd05.prod.outlook.com ([fe80::8cd3:9859:9c55:6eb8]) by MN2PR05MB6109.namprd05.prod.outlook.com ([fe80::8cd3:9859:9c55:6eb8%5]) with mapi id 15.20.5102.016; Tue, 22 Mar 2022 13:07:11 +0000
From: John Scudder <jgs@juniper.net>
To: Sara Dickinson <sara@sinodun.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-dprive-dnsoquic@ietf.org" <draft-ietf-dprive-dnsoquic@ietf.org>, "dprive-chairs@ietf.org" <dprive-chairs@ietf.org>, "dns-privacy@ietf.org" <dns-privacy@ietf.org>, "brian@innovationslab.net" <brian@innovationslab.net>
Thread-Topic: John Scudder's No Objection on draft-ietf-dprive-dnsoquic-10: (with COMMENT)
Thread-Index: AQHYNIrD859TiNqwakCOPQAtxSw7A6zLOImAgAA53YA=
Date: Tue, 22 Mar 2022 13:07:11 +0000
Message-ID: <F78CA2AB-DC91-426C-A3BF-A36DD48FA3CF@juniper.net>
References: <164692235007.27715.1964541243761693354@ietfa.amsl.com> <0BC2BEB1-1889-4E25-A8C9-FA0110DF79F3@sinodun.com>
In-Reply-To: <0BC2BEB1-1889-4E25-A8C9-FA0110DF79F3@sinodun.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3696.80.82.1.1)
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b86a79c9-9d8f-4461-23a7-08da0c04e0e3
x-ms-traffictypediagnostic: MWHPR05MB3565:EE_
x-ms-exchange-atpmessageproperties: SA|SL
x-microsoft-antispam-prvs: <MWHPR05MB356537E51CD2397E2BE91040AA179@MWHPR05MB3565.namprd05.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR05MB6109.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(66946007)(64756008)(76116006)(8676002)(38070700005)(66476007)(4326008)(66556008)(8936002)(66446008)(5660300002)(86362001)(26005)(966005)(6486002)(508600001)(122000001)(166002)(71200400001)(53546011)(91956017)(6506007)(6512007)(6916009)(316002)(38100700002)(54906003)(2906002)(2616005)(186003)(33656002)(36756003)(83380400001)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_F78CA2ABDC91426CA3BFA36DD48FA3CFjunipernet_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR05MB6109.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b86a79c9-9d8f-4461-23a7-08da0c04e0e3
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Mar 2022 13:07:11.6700 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Ag2Xj9H1vzZuyAkHnCCqai1Vefd/qjKqJ70zfz6yhBPxXujkdrJXq1EYO1GYlkoi
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR05MB3565
X-Proofpoint-GUID: hvpNFSaMdDG2C0AMZH6lRP6pVAqDZqpH
X-Proofpoint-ORIG-GUID: hvpNFSaMdDG2C0AMZH6lRP6pVAqDZqpH
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.850,Hydra:6.0.425,FMLib:17.11.64.514 definitions=2022-03-22_04,2022-03-22_01,2022-02-23_01
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 suspectscore=0 malwarescore=0 mlxscore=0 spamscore=0 priorityscore=1501 adultscore=0 impostorscore=0 lowpriorityscore=0 mlxlogscore=999 phishscore=0 bulkscore=0 clxscore=1011 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2202240000 definitions=main-2203220076
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/LwFFGuNji3zU8KLdK2SaIzGkwzE>
Subject: Re: [dns-privacy] John Scudder's No Objection on draft-ietf-dprive-dnsoquic-10: (with COMMENT)
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Addition of privacy to the DNS protocol <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Mar 2022 13:07:29 -0000

Looks good, thanks.

—John

On Mar 22, 2022, at 5:40 AM, Sara Dickinson <sara@sinodun.com<mailto:sara@sinodun.com>> wrote:


On 10 Mar 2022, at 14:25, John Scudder via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>> wrote:

John Scudder has entered the following ballot position for
draft-ietf-dprive-dnsoquic-10: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://urldefense.com/v3/__https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/__;!!NEt6yMaO-gk!Wu89gEt6BSBMlrVVVqtPKEgp2gFbSm-kD7hYo_PGJgCh-sP7Sw9WRCqRg5c79Q$
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-dprive-dnsoquic/__;!!NEt6yMaO-gk!Wu89gEt6BSBMlrVVVqtPKEgp2gFbSm-kD7hYo_PGJgCh-sP7Sw9WRCrpa1JmiQ$



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Thanks for this, I found it clear and easy to read. I have just a couple
comments.

Hi John,

Many thanks for the comments - please see the updates in version -11 which was just published, which we hope address your comments.


1. In §5.2, there is

Servers MAY defer processing of a query until the STREAM FIN has been
indicated on the stream selected by the client. Servers and clients
MAY monitor the number of "dangling" streams for which the expected
queries or responses have been received but not the STREAM FIN.
Implementations MAY impose a limit on the number of such dangling
streams. If limits are encountered, implementations MAY close the
connection.

Wouldn’t a stream be dangling even if the expected queries and responses hadn’t
been received? I.e., isn’t the thing that makes a stream “dangling” simply the
lack of a STREAM FIN?

We’ve updated the text in 5.2 related to dangling streams so please review to see if this clarifies the issue?


2. In §5.4,

Client and servers
that send packets over a connection discarded by their peer MAY
receive a stateless reset indication.

This seems like a misuse of the RFC 2119 MAY. Do you mean "may" or better
still, "might" or "could"? If you really mean the 2119 keyword, then a rewrite
seems to be in order to put this in terms of the other party being permitted to
send the reset.

We’ve changed MAY to might - thanks!

Best regards

Sara.

v2.23.0 | Report a Bug | By Email