Re: [dnsext] Advice sought on DNS file format for new RRs
Michael Graff <mgraff@isc.org> Sat, 20 November 2010 10:53 UTC
Return-Path: <mgraff@isc.org>
X-Original-To: dnsext@core3.amsl.com
Delivered-To: dnsext@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 849B23A68B9 for <dnsext@core3.amsl.com>; Sat, 20 Nov 2010 02:53:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GUrf2FYF26gU for <dnsext@core3.amsl.com>; Sat, 20 Nov 2010 02:53:46 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) by core3.amsl.com (Postfix) with ESMTP id 8A2FF3A68F1 for <dnsext@ietf.org>; Sat, 20 Nov 2010 02:53:46 -0800 (PST)
Received: from bikeshed.isc.org (bikeshed.isc.org [IPv6:2001:4f8:3:d::19]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client CN "bikeshed.isc.org", Issuer "ISC CA" (verified OK)) by mx.pao1.isc.org (Postfix) with ESMTPS id 762F7C9422 for <dnsext@ietf.org>; Sat, 20 Nov 2010 10:54:35 +0000 (UTC) (envelope-from mgraff@isc.org)
Received: from dhcp-vlan13-91-252.home.flame.org (unknown [IPv6:2001:470:b8d7:13:61e:64ff:fef5:5604]) (using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits)) (Client did not present a certificate) by bikeshed.isc.org (Postfix) with ESMTPSA id 0D79C216C3B for <dnsext@ietf.org>; Sat, 20 Nov 2010 10:54:34 +0000 (UTC) (envelope-from mgraff@isc.org)
Message-ID: <4CE7A8E5.5090008@isc.org>
Date: Sat, 20 Nov 2010 04:54:29 -0600
From: Michael Graff <mgraff@isc.org>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.12) Gecko/20101027 Thunderbird/3.1.6
MIME-Version: 1.0
To: dnsext@ietf.org
References: <AANLkTimBPLaFZQSbx8W7Dwy0r9SzHsrV-rA9yQU83sZw@mail.gmail.com> <20101119124127.GB8050@shinkuro.com> <AANLkTimX06RCm6_FJSe1mZ5nOi3OTRhh-1QGOtttPpR9@mail.gmail.com> <20101119181144.GK8050@shinkuro.com> <AANLkTi=SYFxL+n+9WuseT+xsWHSzjxatOH2FUX9P2iQq@mail.gmail.com> <4CE6E1F4.4070400@isc.org> <AANLkTimcWPFi7Q1np4JtAe2ozAWdB0oTUtGKJ53JoXBh@mail.gmail.com> <4CE6FB61.8000009@ogud.com> <AANLkTinKyvq8NpZcFAzaPvrbm=CZ2HY-TCj4Sf+KRV5s@mail.gmail.com>
In-Reply-To: <AANLkTinKyvq8NpZcFAzaPvrbm=CZ2HY-TCj4Sf+KRV5s@mail.gmail.com>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Subject: Re: [dnsext] Advice sought on DNS file format for new RRs
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 20 Nov 2010 10:53:47 -0000
On 11/19/10 5:56 PM, Phillip Hallam-Baker wrote: > The constraint here is that if I have a complex binary format, then DNS > servers are going to have to be able to parse a correspondingly complex > syntax to encode the data. That may not be desirable. I really hate to suggest this, but could you go back to basics? What is the data item you are attempting to transmit? I admit I stepped into this conversation in the middle, so if there are references I should be reading kindly point me at TFM. If a single block of data is the goal -- that is, the concept of "a key" or "a certificate" or something, where you really don't want to split the individual components of those items up, why split them at all? With a custom type, you have to choose two things: textual representation and wire format. I would take the idea of using a TXT encoding right off the table from the start so you are free to choose more efficient wire format than a TXT-like encoder would typically use. > That is not the case in DKIM. > > In DKIM the key blobs are encoded in base64 and that is how the data is > stored in the DNS TXT record. If they had used a custom type, that would not have happened. TXT is the record they chose, and of course it's a literal translation from what is in the zone file to what is on the wire. > The TXT approach appears to work in DKIM because the records in question > do not affect the operation of DNS itself. It appears to work, but each user who overloads TXT has to deal with all the other crap that may be there, now or in the future. --Michael
- [dnsext] Advice sought on DNS file format for new… Phillip Hallam-Baker
- Re: [dnsext] Advice sought on DNS file format for… bert hubert
- Re: [dnsext] Advice sought on DNS file format for… Andrew Sullivan
- Re: [dnsext] Advice sought on DNS file format for… Phillip Hallam-Baker
- Re: [dnsext] Advice sought on DNS file format for… Andrew Sullivan
- Re: [dnsext] Advice sought on DNS file format for… Phillip Hallam-Baker
- Re: [dnsext] Advice sought on DNS file format for… Michael Graff
- Re: [dnsext] Advice sought on DNS file format for… Phillip Hallam-Baker
- Re: [dnsext] Advice sought on DNS file format for… Olafur Gudmundsson
- Re: [dnsext] Advice sought on DNS file format for… Phillip Hallam-Baker
- Re: [dnsext] Advice sought on DNS file format for… Michael Graff
- Re: [dnsext] Advice sought on DNS file format for… Patrik Fältström
- Re: [dnsext] Advice sought on DNS file format for… Jeffrey A. Williams
- Re: [dnsext] Advice sought on DNS file format for… Tony Finch
- Re: [dnsext] Advice sought on DNS file format for… Phillip Hallam-Baker