[DNSOP] Re: Alternative approach to draft-ietf-dnsop-structured-dns-error
Mukund Sivaraman <muks@mukund.org> Wed, 25 March 2026 15:11 UTC
Return-Path: <muks@mukund.org>
X-Original-To: dnsop@mail2.ietf.org
Delivered-To: dnsop@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 02973D144009 for <dnsop@mail2.ietf.org>; Wed, 25 Mar 2026 08:11:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=mukund.org
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6wh_qGU0EmJL for <dnsop@mail2.ietf.org>; Wed, 25 Mar 2026 08:11:54 -0700 (PDT)
Received: from mx.mukund.org (mx.mukund.org [188.40.188.216]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 9A55ED144000 for <dnsop@ietf.org>; Wed, 25 Mar 2026 08:11:54 -0700 (PDT)
Date: Wed, 25 Mar 2026 15:11:44 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mukund.org; s=mail; t=1774451507; bh=dmBHluK9yhcZdrpk4yxTQXvgSJ7fY0Lgvmm4bqnR0Bo=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=rXwXaIbYTQWHPu+xhyRyYcedQa2l8FZfrHz+8ydyRmhI6awmEF6Eviplyf3d09zxy zJPDIK7QEB6Ih8B7sycK/ijbtYQ4snhq9rRlowOZfxfovMyTT8AdpDKDhx3KskBjHh Xd0VOvJ4jT7CsBwYdmV0xsJQrk/coyc5IDyoglSIWLIyy2DbG22hxAsPCMz2kuYDs+ 3uCo5xHrwN+T9JeSWq97vHtaSBkPVLBr7ul2i514CkHpU5/L5kT99kSpOS9NvzxTLf LyMRsErpUtswVNrtu64gWEzBbzJV6dP2soaarD5IX1ZhfTp/Mqd+IIeP4Z2tgo47TU JTKf6oOYsEFPQ==
From: Mukund Sivaraman <muks@mukund.org>
To: Benno Overeinder <benno@nlnetlabs.nl>
Message-ID: <acP7MAFMQk0xd66X@p5>
References: <ab3_lUoIC2_Zp_JJ@p5> <ab61DCnhBEuVd7P7@p5> <ab618q96p2Hks15U@p5> <69307198-9d4f-410c-85b6-a724374f3947@NLnetLabs.nl>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="bZP105UNHTG5LRV5"
Content-Disposition: inline
In-Reply-To: <69307198-9d4f-410c-85b6-a724374f3947@NLnetLabs.nl>
Message-ID-Hash: 2XQUCDTGSCYGJ35VTUOOXFOS5BQNQUNL
X-Message-ID-Hash: 2XQUCDTGSCYGJ35VTUOOXFOS5BQNQUNL
X-MailFrom: muks@mukund.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: DNSOP Working Group <dnsop@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [DNSOP] Re: Alternative approach to draft-ietf-dnsop-structured-dns-error
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/7pvLiggQJHsnuyhfmc4l4ga87uA>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>
Hi Benno On Wed, Mar 25, 2026 at 02:52:56PM +0100, Benno Overeinder wrote: > Hi Mukund, > > On 21/03/2026 16:14, Mukund Sivaraman wrote: > > On Sat, Mar 21, 2026 at 03:11:08PM +0000, Mukund Sivaraman wrote: > > > This is all I can do to show my displeasure at the design of > > > dnsop-structured-dns-error, by describing how it should have been > > > done. Feel free to use the contents of this draft as you wish. > > > > To be fair, I understand I've come in really late in the WG process to > > say these things. I am very sorry about that. My review of this draft on > > 2023-06-28 is about the same. > > As for the new draft, draft-muks-dns-filtering, it will be looked at and > discussed on its own in the WG, not as part of the WGLC for > draft-ietf-dnsop-structured-dns-error. That sounds fine. As mentioned earlier, I do not intend to block the last-call of this draft. My intention in preparing draft-muks-dns-filtering was to demonstrate to the authors of draft-ietf-dnsop-structured-dns-error how it should have been designed and what that would have been like without using JSON or overriding RFC 8914. It appears we are dug in and don't agree, and that's ok. We are half-way through implementing both draft-ietf-dnsop-structured-dns-error as well as draft-muks-dns-filtering in Loop as they can co-exist. If a client signals that it wants a structured DNS error JSON, it will receive it. Otherwise any client will receive the filtering EDNS options alongside RFC 8914 EDE when filtering occurs. I will update draft-muks-dns-filtering with a comparison vs. draft-dnsop-structured-dns-error. As you intend to move ahead with the WGLC for draft-dnsop-structured-dns-error, please do so as I can then reference the contact URI schemes registry that dnsop-structured-dns-error creates in draft-muks-dns-filtering. So far draft-muks-dns-filtering hasn't received any responses at all in support in the dnsop@ list, so I may leave it as a draft or submit it independently. We will first get the EDNS option codepoints allocated and finish implementing support in Loop. Thank you. Mukund
- [DNSOP] Re: Alternative approach to draft-ietf-dn… Mukund Sivaraman
- [DNSOP] Re: Alternative approach to draft-ietf-dn… Mukund Sivaraman
- [DNSOP] Alternative approach to draft-ietf-dnsop-… Mukund Sivaraman
- [DNSOP] Re: Alternative approach to draft-ietf-dn… Benno Overeinder
- [DNSOP] Re: Alternative approach to draft-ietf-dn… Mukund Sivaraman