IETF Logo Mail Archive

[DNSOP] Re: [dtn] Re: Re: IPN and CLA RRTYPEs to support Bundle Protocol RFC9171

Paul Vixie <paul@redbarn.org> Thu, 27 June 2024 01:58 UTC

Return-Path: <paul@redbarn.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E6E9C180B53; Wed, 26 Jun 2024 18:58:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.462
X-Spam-Level:
X-Spam-Status: No, score=-7.462 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.355, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=redbarn.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CyGV1unJwpFb; Wed, 26 Jun 2024 18:58:25 -0700 (PDT)
Received: from util.redbarn.org (util.redbarn.org [IPv6:2001:559:8000:cd::222]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8C090C180B50; Wed, 26 Jun 2024 18:58:25 -0700 (PDT)
Received: from family.redbarn.org (family.redbarn.org [24.104.150.213]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "*.redbarn.org", Issuer "RapidSSL TLS RSA CA G1" (not verified)) by util.redbarn.org (Postfix) with ESMTPS id ADB3919CCAE; Thu, 27 Jun 2024 01:58:24 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=redbarn.org; s=util; t=1719453504; bh=f4s+V/UKkLP9MPCWoKqesRwZK65j4bfj8OzFV6942tM=; h=Subject:To:Cc:References:From:Date:In-Reply-To; b=bjMC05lPgmGF5A5M9829bmd2LCEsn+T+bhlT7UG7+krHGz+/Mc8Se6ITHr0iK4irp PkxK4AaIayj9jWK7hpHcUxClq/mpX8na8KkaVIZRXXieNppPJ1tHLaFs+3Xd+2CUKg I60t9LuPMI3YD0qRNCM+F5gIYgePVxzUqt2TXzwU=
Received: from [24.104.150.159] (dhcp-159.access.rits.tisf.net [24.104.150.159]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by family.redbarn.org (Postfix) with ESMTPSA id 72AF8C3F21; Thu, 27 Jun 2024 01:58:24 +0000 (UTC)
To: Mark Andrews <marka@isc.org>
References: <fa28794e-d02b-aa93-56c8-082a3472c6e4@spacelypackets.com> <F2BD591F-8512-4E3E-ABA2-3DF3F34372CB@isc.org> <16835c41-0e6c-bde4-d197-847928171e55@spacelypackets.com> <047a01dac6b8$43d70ca0$cb8525e0$@gmail.com> <57ca71b8-aa29-8a07-5154-e6b9c44bc64a@spacelypackets.com> <AC5B89B2-DD53-4A36-9B87-4136EC288851@isc.org> <2dec1732-841e-dd38-85a8-3263b1c59885@spacelypackets.com> <C363E260-22EA-43E9-97B6-D7A403C205ED@isc.org> <98976a58-b976-e82c-4b12-76edce92e691@spacelypackets.com> <CAMGpriUVcoJu1CWWLapwREN2NaHJFnVkGUpF45TJotm7uyAxyg@mail.gmail.com> <3cfc8b7c-9128-46b5-c458-ac0ebb9c79bc@spacelypackets.com> <38A5475DE83986499AEACD2CFAFC3F980273735D06@tss-server1.home.tropicalstormsoftware.com> <b3ee82da-ae38-5781-77eb-bab292d5c113@spacelypackets.com> <cca98f92-27ee-d372-b419-81c63777033b@spacelypackets.com> <38A5475DE83986499AEACD2CFAFC3F980273739166@tss-server1.home.tropicalstormsoftware.com> <0910E1D8-C678-498C-BAB5-AC3AA4C75750@isc.org>
From: Paul Vixie <paul@redbarn.org>
Message-ID: <e364da36-00e3-7c14-30b0-34f20b244f0a@redbarn.org>
Date: Wed, 26 Jun 2024 18:58:22 -0700
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 PostboxApp/7.0.60
MIME-Version: 1.0
In-Reply-To: <0910E1D8-C678-498C-BAB5-AC3AA4C75750@isc.org>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Message-ID-Hash: TJERAILHKSC3E7RUQAZTLI3JWKMBED52
X-Message-ID-Hash: TJERAILHKSC3E7RUQAZTLI3JWKMBED52
X-MailFrom: paul@redbarn.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Rick Taylor <rick@tropicalstormsoftware.com>, Scott Johnson <scott@spacelypackets.com>, Erik Kline <ek.ietf@gmail.com>, dnsop <dnsop@ietf.org>, "sburleig.sb@gmail.com" <sburleig.sb@gmail.com>, "dtn@ietf.org" <dtn@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [DNSOP] Re: [dtn] Re: Re: IPN and CLA RRTYPEs to support Bundle Protocol RFC9171
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/_5BMeAH1gGSOR1HtEE1rPRAkfzc>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>


Mark Andrews wrote on 2024-06-26 16:02:
> 
> 
>> ...
> 
> Adding a new RRTYPE requires zero infrastructure upgrades.  It’s a database entry at IANA.  Every DNS server on the planet should handle these transparently.  That was required by RFC 1034 and RFC 1035.  You can even add them to zones before the parsing software is updated using unknown type representation (RFC 3597) which was one thing that was missing from RFC 1035 that would have made adding new types easier.  Nameservers and stub resolvers were always required to treat unknown records as opaque objects.

in terms of dns infrastructure this is true. while the open source 
implementations are fastest to adopt and deploy new rr types, even 
proprietary dns implementations are rarely more than a year behind.

but there's infrastructural middleware for which this is not true. 
registries and registrars and things like "webmin" are usually five to 
ten years behind on adding support for new rr types. thus, the SPF 
debacle in which the application had to back off and go with TXT. and 
thus the tendency today to use an existing rr type and a well-known 
subdomain beginning with an "_" as a way to deploy more or less immediately.

dns itself is not the problem. but there is a real problem here about 
which the dns technical community can do precisely nothing.

> This doesn’t mean that there weren’t mis-implementations of the standards which failed to handle unknown types correctly but there have been 78 types added since RFC 1034 and RFC 1035.  That’s 2-3 per year.  Nameserver developers know how to add new record types quickly.

agreed, but that's not the point being argued.

-- 
P Vixie

v2.40.3 | Report a Bug | By Email | System Status