IETF Logo Mail Archive

Re: [DNSOP] Benjamin Kaduk's Discuss on draft-ietf-dnsop-session-signal-15: (with DISCUSS and COMMENT)

Ted Lemon <mellon@fugue.com> Mon, 01 October 2018 20:23 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA0481252B7 for <dnsop@ietfa.amsl.com>; Mon, 1 Oct 2018 13:23:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9ibjNu15fV5y for <dnsop@ietfa.amsl.com>; Mon, 1 Oct 2018 13:23:49 -0700 (PDT)
Received: from mail-qk1-x729.google.com (mail-qk1-x729.google.com [IPv6:2607:f8b0:4864:20::729]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 876EF1293FB for <dnsop@ietf.org>; Mon, 1 Oct 2018 13:23:47 -0700 (PDT)
Received: by mail-qk1-x729.google.com with SMTP id m8-v6so4190408qka.12 for <dnsop@ietf.org>; Mon, 01 Oct 2018 13:23:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=from:message-id:mime-version:subject:date:in-reply-to:cc:to :references; bh=fOUKn97JwFuu92YlAcED9kjUp1zIc0QX4ehuy9p8EnY=; b=zep6bTRUJPyvpedu7JGlQPScIDVUaC83VkA2rff1M9wXQ6KvLCEao/KWKa3KF0QO8e yqGDYS8dFpm4FIRtAApJa74iWE3n4c7Kjd0O4VIbnCyy/W4nxAUTyxwYSe8Ii70gR3xJ B5xh4DCZCDh7xHkwounjD9wcbcmR4wp6OHmnuuqfqZqeKizt9zQGADVZ0/kY6XR+C8Zu Cu2qGB8QztKy3oE1sF0UMxNT3H5sHMJFaZvOUy8zKa0VuS/DioxmKgY03anLtaxad+wd hELz3XZXB/XsQ5WknlYaWn5Q2vEf0IYeScFbLyqgDSy2d+I3KfJRK+t9a6HeRgeTy2KR pIdA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:message-id:mime-version:subject:date :in-reply-to:cc:to:references; bh=fOUKn97JwFuu92YlAcED9kjUp1zIc0QX4ehuy9p8EnY=; b=ROTaF2H8i36yPBhmuh7pPzMnVyQXsRATzscMuo3I8PEfNvLF3OW7C660QsMJpDezPD xI33qGBuwaO3QJSOs3T+EhOI2KePJV2V9dr1OGdyuKYWl5wrWFzEJTxobZpHvLxxnvJQ pmX22K72lTcVuzlu9p7eNzW3iA4iHFuL2LjpNemRoLL0OETyDjeSRrb+kRICjtF1Q26w +DpexvYQxy/TD8cehXmeV5Y6p+Jl0tKiQpAbiIGy+0r3/CLJ5L0Hku1JrGAy2phSNaOa I1djlwB6RMS4x75miLqd8H9jIcSPuyoFKBxnLdasAJss4La5S60ULdQV3R2dY1CZZ+1s AyHg==
X-Gm-Message-State: ABuFfogtdVCz+W8InD8TTGzGlOscKtaWWgYP4ZODCoQbDqUPOT4wFp4/ Vw2pp5sdl728VzBx0zICZO3u7w==
X-Google-Smtp-Source: ACcGV62AbCds+CHUgV4dN3LUpLSNJ5OAzMsEWpnLkut7wn+hoyAt729Q4QhNfG3ixJfBf2hyj0btyQ==
X-Received: by 2002:a37:5641:: with SMTP id k62-v6mr9707319qkb.40.1538425426503; Mon, 01 Oct 2018 13:23:46 -0700 (PDT)
Received: from [10.0.100.12] (c-73-167-89-221.hsd1.nh.comcast.net. [73.167.89.221]) by smtp.gmail.com with ESMTPSA id s17-v6sm6363234qtj.31.2018.10.01.13.23.45 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 01 Oct 2018 13:23:45 -0700 (PDT)
From: Ted Lemon <mellon@fugue.com>
Message-Id: <07556FA3-7C22-4B68-B78A-FAA0B73C0208@fugue.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_BA5ABD68-4219-477F-B8E2-E2670C8794CA"
Mime-Version: 1.0 (Mac OS X Mail 12.0 \(3445.100.39\))
Date: Mon, 01 Oct 2018 16:23:43 -0400
In-Reply-To: <20181001155057.GB24695@kduck.kaduk.org>
Cc: The IESG <iesg@ietf.org>, draft-ietf-dnsop-session-signal@ietf.org, Tim Wicinski <tjw.ietf@gmail.com>, dnsop-chairs@ietf.org, dnsop@ietf.org
To: Benjamin Kaduk <kaduk@mit.edu>
References: <153722313579.24693.3934580046706676407.idtracker@ietfa.amsl.com> <D11FA275-9CC3-470D-B8EC-3EE5ED38C20E@fugue.com> <82F4E1E2-2672-4C3A-B51F-67BFB2E4EEFC@fugue.com> <20181001155057.GB24695@kduck.kaduk.org>
X-Mailer: Apple Mail (2.3445.100.39)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/2Uf5rvwNNmdsvc4t9EM6cumF5e4>
Subject: Re: [DNSOP] Benjamin Kaduk's Discuss on draft-ietf-dnsop-session-signal-15: (with DISCUSS and COMMENT)
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Oct 2018 20:23:51 -0000

On Oct 1, 2018, at 11:50 AM, Benjamin Kaduk <kaduk@mit.edu> wrote:
> But just to double-check my understanding: the idea is that the TCP Fast
> Open payloads will only be used when TLS 1.3 is in use, and some be
> something like (client's first handshake flight + early data) and (server's
> first handshake flight + 0.5-RTT data), with the DSO operations being in
> the early data and 0.5-RTT data records' payloads?

Yeah, that's actually a change from what the document originally said.   We could have text for what to do if you get data in the initial SYN packet without TLS, and in fact that's what I initially wrote, but it was overly complicated and didn't seem all that valuable, so I left it out.

v2.23.0 | Report a Bug | By Email