[DNSOP] Breaking the logjam that is draft-ietf-dnsop-svcb-https
Warren Kumari <warren@kumari.net> Thu, 23 February 2023 17:39 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 292E8C15C509 for <dnsop@ietfa.amsl.com>; Thu, 23 Feb 2023 09:39:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZiBuxlFqiVFx for <dnsop@ietfa.amsl.com>; Thu, 23 Feb 2023 09:39:50 -0800 (PST)
Received: from mail-qt1-x82d.google.com (mail-qt1-x82d.google.com [IPv6:2607:f8b0:4864:20::82d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 152EFC1522B9 for <dnsop@ietf.org>; Thu, 23 Feb 2023 09:39:44 -0800 (PST)
Received: by mail-qt1-x82d.google.com with SMTP id r5so1857412qtp.4 for <dnsop@ietf.org>; Thu, 23 Feb 2023 09:39:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari.net; s=google; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=VbkzHLBhZT/bAq4eef6VwvNwGxtHd7isT+vSvM/KFtU=; b=RHBx3rT7HFAkNwAqq0c/vBgcrP2GbkexUNOu/7p/VD9mxzzr58bYDB1bjKeoUFmIse PYLE5ktjKQ8vqe4U2Nr2edbtjmPaMg3wG8N6/d35M8dwDqcxhCwMi4cEJwP7hy1utBux Sd0jT/H9OVrM9kZ5kpWUNUqRZAtgI+QyFI8l3WTuABQ3Nt2DvGf7D0pm48g8+zQpXX7W NVfA8PY6TuH8PXS2+DPTTWje3c3cqWsSllesLTb0ts7qOs1QpqpfLQGXV2ycsVKlhdS5 5XB4tLf/EPHc3lddjR9smOEUfBa6rP5OwA5Y7fCGTSMOiYO1aejbqGIHD2fcv5LzMQyg 5iTw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=VbkzHLBhZT/bAq4eef6VwvNwGxtHd7isT+vSvM/KFtU=; b=kGRR5JBERaWc+JIMQqN5c7aJRsNPFEwrK9l+OKeEsW01umytj+v1I3VYs5O17RJtc4 IOztCdVBgZUdlEsiItKDr9s9u9lwuRDEAzJbBb4FDiTakGWcyzIXd1rpsrRSbIlvLbGS 3cgtK4TyjTELy/lg6aUDJUHFg+/esHHoAxlhMlluqUTmrNXGw/I65rARoF0nXWsbeGPg WIYCjOXfm9r3lRvAklI6G394ChhOx7BLjXtIXs+WK+6uYyAeYvO6zbaJM3jzTmmoPJXo pZaBJOHehXkd8zkc1kDDyOxyJxbgfqukJvnQ3rTelSCTFxCgDPzUQQlOQyiP3cm5QyT0 6pRw==
X-Gm-Message-State: AO0yUKWcXoaMbEr+/jaLcju4D89pmGMWyncwZ7bvP+5NLa4PzTsi46Xa 5dVFGRtWnPmiuk9u/bpf6AGvKhuqGWLzUoCdceCj5cU68FA4Nw==
X-Google-Smtp-Source: AK7set/ETr/WDG3ixew09kh037rnILqgg7aEXCvQ8850GWSrpxLkfh/TTVx+aSaFBdTezAM1L2hfc/NGPcddeHCkFtI=
X-Received: by 2002:ac8:4e49:0:b0:3b8:938e:6ecb with SMTP id e9-20020ac84e49000000b003b8938e6ecbmr2949460qtw.2.1677173982818; Thu, 23 Feb 2023 09:39:42 -0800 (PST)
Received: from 649336022844 named unknown by gmailapi.google.com with HTTPREST; Thu, 23 Feb 2023 11:39:42 -0600
Mime-Version: 1.0
X-Superhuman-Thread-ID: draft001a9b6ba0aa340d
X-Superhuman-ID: lehe2mo8.cbce532b-882a-40b7-b635-954c280dc5a1
X-Superhuman-Draft-ID: draft00ff7a9014f6db30
X-Mailer: Superhuman Desktop (2023-02-22T23:15:16Z)
From: Warren Kumari <warren@kumari.net>
Date: Thu, 23 Feb 2023 11:39:42 -0600
Message-ID: <CAHw9_iKJtLO+f8knyL6Noe_z+Cm8FEG8he9jLEnUSzvQYTB-+g@mail.gmail.com>
To: dnsop <dnsop@ietf.org>, Eric Vyncke <evyncke=40cisco.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="000000000000790a8505f5617fd5"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/5aiWtJbmAoqj7-5oD03Rgw1PEoo>
Subject: [DNSOP] Breaking the logjam that is draft-ietf-dnsop-svcb-https
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Feb 2023 17:39:54 -0000
Hi there all, I was really hoping that it wouldn't come to this, but… We approved draft-ietf-dnsop-svcb-https on 2022-05-22, and has been stuck in MISREF state ever since[0], waiting on draft-ietf-tls-esni - "TLS Encrypted Client Hello" <https://datatracker.ietf.org/doc/draft-ietf-tls-esni/> . This is basically as long as it takes to make a whole person… There are multiple documents in the RFC Editor queue waiting on the svcb-https document: https://www.rfc-editor.org/cluster_info.php?cid=C461. Unfortunately it now seems that tls-esni is not likely to be published anytime soon because they want deployment experience before advancing it, and that's not going to happen for some months. This means that the svcb-https document, and, by extension, the other documents in the cluster will be stuck for an indeterminate amount of time. The part of svcb-https that "needs" tls-esni is sort of an optional feature, and none of the other documents in this cluster seem to rely on it. Instead of just having all of these document stuck indefinitely, I'm proposing that we: 1: Ask the RFC Editor to return the document to the IESG & IETF[1]. 2: I return it to the WG. 3: The authors remove the bits that rely on ESNI 4: The document progresses "normally" - it gets another WGLC, IETF LC, IESG Eval, etc. Hopefully this can be expedited - it's already gone though all of these steps once, and the updated document would be very similar to the original. 5: If / when tls-esni is published, the svcb-https authors submit a -bis (while will likely just be 'git checkout <current_version>'), and we progress this just like any other WG document. I've discussed this with the authors of the documents, the DNSOP and TLS chairs, the relevant ADs and the full IESG. However, before doing all this, I'd like to confirm that the WG doesn't object to the plan…. W [0]: Possibly modulo the annoyingly painful "AliasMode clarification" change: https://author-tools.ietf.org/iddiff?url1=draft-ietf-dnsop-svcb-https-10&url2=draft-ietf-dnsop-svcb-https-11&difftype=--html [1]: While we prefer not do to this sort of thing, we have done it before - as an example: https://datatracker.ietf.org/doc/draft-ietf-netmod-syslog-model/history/
- [DNSOP] Breaking the logjam that is draft-ietf-dn… Warren Kumari
- Re: [DNSOP] Breaking the logjam that is draft-iet… Joe Abley
- Re: [DNSOP] Breaking the logjam that is draft-iet… Tim Wicinski
- Re: [DNSOP] Breaking the logjam that is draft-iet… Christopher Wood
- Re: [DNSOP] Breaking the logjam that is draft-iet… Benjamin Schwartz
- Re: [DNSOP] [Ext] Breaking the logjam that is dra… Paul Hoffman
- Re: [DNSOP] [Ext] Breaking the logjam that is dra… David Schinazi
- Re: [DNSOP] [Ext] Breaking the logjam that is dra… Jeremy Saklad
- Re: [DNSOP] [Ext] Breaking the logjam that is dra… Benjamin Schwartz
- Re: [DNSOP] [Ext] Breaking the logjam that is dra… Tim Wicinski
- Re: [DNSOP] Breaking the logjam that is draft-iet… Martin Thomson
- Re: [DNSOP] Breaking the logjam that is draft-iet… Ralf Weber
- Re: [DNSOP] Breaking the logjam that is draft-iet… Tommy Pauly
- Re: [DNSOP] Breaking the logjam that is draft-iet… Warren Kumari