Re: [DNSOP] [Ext] I-D Action: draft-ietf-dnsop-svcb-https-05.txt

Dick Franks <rwfranks@gmail.com> Thu, 06 May 2021 15:50 UTC

Return-Path: <rwfranks@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8B0173A26D4 for <dnsop@ietfa.amsl.com>; Thu, 6 May 2021 08:50:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qsAww8PqStU4 for <dnsop@ietfa.amsl.com>; Thu, 6 May 2021 08:50:29 -0700 (PDT)
Received: from mail-il1-x12e.google.com (mail-il1-x12e.google.com [IPv6:2607:f8b0:4864:20::12e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0EF123A26D6 for <dnsop@ietf.org>; Thu, 6 May 2021 08:50:28 -0700 (PDT)
Received: by mail-il1-x12e.google.com with SMTP id j20so5141194ilo.10 for <dnsop@ietf.org>; Thu, 06 May 2021 08:50:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=aunnuMvO3TOkXQcthl29z5Q7/2qyx1pZUOtDgyMnGLs=; b=kbcFcCikdzvw/LioKgtjEi9kzxxWZZTvHFxOd+yRKIgTJix8yy8p6jJxT8Rirdh1qf aSyXX3YD5eB22VBBwTdJaFACylW/feqOzH1IOYhJvKpRPgO29WFkRsE/mR1AR1ahYg3i gFFGrvbaBxVisJtsaOlr5ZEdTZ3KRWBQSsrnXCN+RgNcdcZTj4chWv6Hc3JwTqr8H9Tu h/t2AZwZpOn3jWfZDfTvR6uxRJRs9M/dnQZrSoySHuoVY1mrhKWLs120tvpM8S4jWMG+ WTglHLPhpf6QNLyWZq+SzkDvj0/MNoULXaEJk7kgJCTZFCst4/pgcuqjGO77CylQpgv1 GqFQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=aunnuMvO3TOkXQcthl29z5Q7/2qyx1pZUOtDgyMnGLs=; b=SSZWGuwevv7vxh5yPwHpklUXNXMTjBibgiILBQBbJOHa9sjzi20Gvu3dDqdsypd0Eo dHxQrtIPszoEWEacJEZIdFg/2K/P6kStQJFS8ED2f5hRC8eJiV7YNGyGyCU1NXFM8YlL 1y+WdiGPzfP+kTa5LsTAD9GQQyZvf7QybbtzEgUprtIR9PQ7tZMMOrLyg2Ez/woJmXeO 3a9yIwURfvQH2SK4RCN66lNZhqI+gl6SDfsJKWHUzeIuTwrFzCI2pfC7EvKpJ76O+TnV TTY5rrG67id1X61k96XpafC/zePcOzn3qdD4QJetRrJL/uDl9jTcNxr4KHjnCpyNbmMb awhg==
X-Gm-Message-State: AOAM533kseCZbXOfYNOMjEdYpsugKDjTDAj4+08f75x0sV4ybDoBXvq3 MR69Ly5U0QXb9kveTMHeGhH6WP9wtjbfZfrExZM=
X-Google-Smtp-Source: ABdhPJy1nc3BjgAfMBcCZ5wH+pp46fDkQ54OIjD0xGX5f1vkdQq8BlEt4sXiJvU3+FkPcVhp0+JsAFp+WRbf4dN5URo=
X-Received: by 2002:a05:6e02:685:: with SMTP id o5mr4957714ils.93.1620316228145; Thu, 06 May 2021 08:50:28 -0700 (PDT)
MIME-Version: 1.0
References: <161901308063.21005.875603362157576926@ietfa.amsl.com> <CAHbrMsA4TMfE+3LAT+un0FF3DGXKsYB1zAtvUwf2YKr97mJ+sQ@mail.gmail.com> <87B615B4-9CA3-4060-93C2-E4B953C11FB2@akamai.com> <CAHbrMsDaqrQ+XDO4z395tC_yOH4MBH8OmoH8zTXWEHfcDC1+Ew@mail.gmail.com> <6245BB4F-4E2F-435F-ABC0-18C0420C8541@akamai.com> <CAHbrMsDGq0usDiqr0HtbFCR4Y8swtyv_0i7UOFf=C_ExW+0FNQ@mail.gmail.com> <303AD4A1-A9BE-4C31-B730-7B4D42587206@akamai.com> <CAHbrMsCj8OToEhjo7O0YkW4WGosGK7stBYTneYHUoX_KckY7Uw@mail.gmail.com> <80539395-F1F6-4BA1-8AFF-667DDF7604B1@icann.org> <CAHbrMsAC3Mb+e18Gv361XnCU3kBOWqCbUXPujuuqOULh4e-v=g@mail.gmail.com> <CAKW6Ri4Yi2v+owa7KABATBoRmEB9u0k_hxd235iDL0ngbGhuLA@mail.gmail.com> <B0F5B473-9A40-447D-9555-F549F54CE0B5@isc.org> <CAHbrMsDNUKzYC__R1z6yzt_9xxyp4Eov1FekumT9sDpFkmPVPw@mail.gmail.com> <CAKW6Ri6bybyLTZOPFjR=Gpus96OYz1_DcxsJe8r+K9u7z=_LXQ@mail.gmail.com> <CAHbrMsCgShoeTbSruFH_zigYtXEQEoEOihjE6kjSUmfW5VSVUw@mail.gmail.com>
In-Reply-To: <CAHbrMsCgShoeTbSruFH_zigYtXEQEoEOihjE6kjSUmfW5VSVUw@mail.gmail.com>
From: Dick Franks <rwfranks@gmail.com>
Date: Thu, 06 May 2021 16:49:51 +0100
Message-ID: <CAKW6Ri6HWTv_7_qcJX5mnxJODfwGsDmc1X2UW4kxPi=ZfZBDcA@mail.gmail.com>
To: Ben Schwartz <bemasc@google.com>
Cc: dnsop <dnsop@ietf.org>, Mark Andrews <marka@isc.org>, Paul Hoffman <paul.hoffman@icann.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/PyFb5liKv2zWxxxCRJyOABVgN0M>
Subject: Re: [DNSOP] [Ext] I-D Action: draft-ietf-dnsop-svcb-https-05.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 May 2021 15:50:32 -0000

On Tue, 4 May 2021 at 21:18, Ben Schwartz <bemasc@google.com> wrote:
>
> On Tue, May 4, 2021 at 12:09 PM Dick Franks <rwfranks@gmail.com> wrote:
>>
>> The brutal reality is that the char-string parser has already
>> obliterated the distinction between escaped and unescaped commas
>> before the value-list parser is invoked.
>
> Yes, hence the use of "\\," for embedded commas in value-list values.

No, this is better characterised as the wound dressing covering the
bullet hole in your foot!

...

>>
>> For the sanity of all concerned, SVCB should adhere to the same
>> standard RFC1035 escape conventions as the other 50+ RRTYPEs.
>
> I think that's a good description of why this arrangement was chosen.

But that is precisely what you are NOT doing.
You have assigned a special significance to the character sequence
"\\," contrary to RFC1035.

The language of RFC1035 is crystal clear that an escaped character is
parsed as plain text, independently, without regard to context, and
that any special meaning does not apply.

Strict application of the RFC1035 rules causes string   "...\\,..."
to be equivalent to "...\092,...".

BIND, NSD, and Net::DNS are all able to arrive at implementations of
SVCB using the RFC1035 standard escape conventions, which demonstrates
beyond reasonable doubt that recognising "\\," is not an essential
requirement.

Appendix A and related features should be removed from the draft.

--Dick