IETF Logo Mail Archive

Re: [DNSOP] I-D Action: draft-ietf-dnsop-svcb-https-04.txt

Miek Gieben <miek@miek.nl> Fri, 19 March 2021 10:18 UTC

Return-Path: <miek@miek.nl>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2B5133A0C5D for <dnsop@ietfa.amsl.com>; Fri, 19 Mar 2021 03:18:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=miek-nl.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YgOoImewbLQc for <dnsop@ietfa.amsl.com>; Fri, 19 Mar 2021 03:18:36 -0700 (PDT)
Received: from mail-ej1-x62f.google.com (mail-ej1-x62f.google.com [IPv6:2a00:1450:4864:20::62f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 93D9E3A0C5C for <dnsop@ietf.org>; Fri, 19 Mar 2021 03:18:36 -0700 (PDT)
Received: by mail-ej1-x62f.google.com with SMTP id va9so8782012ejb.12 for <dnsop@ietf.org>; Fri, 19 Mar 2021 03:18:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=miek-nl.20150623.gappssmtp.com; s=20150623; h=date:from:to:cc:subject:message-id:mail-followup-to:references :mime-version:content-disposition:in-reply-to; bh=3st2UmxQQUM3WKvocsa4hnMtobm19U4wFYN+9pR+pq4=; b=1e8UN/rEZ/twagw/8OChpsAHLf618PFSj/dctqt3ChVRbingWPUpgWSK2zza4ZPXDG pnd1g/134LGXKDLYnS2mJnXYEBOSdEi6KYHydIgv7we44Xg7sQgzinnLKOrnNpPOSJ6C xI5DlG/PzreDXHKuJ+Aj+UCjtsBMw1xsGc4Dds7an73sMmupL7Z+tYpQVzVhcRm0grXd TL2kzu1uKTwIjoGICdcTHBTsTbg0hUQm+2m4kOnnRHkLxB1E+Epy4arBhoocSwiIqg8f c71IZoH+zuuF75PnSaBJNuI6kvTPeSxDOHn0jRmiJHYGXNeTyoqmCHQXxnCGkzsJDmwV 0s5w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:date:from:to:cc:subject:message-id :mail-followup-to:references:mime-version:content-disposition :in-reply-to; bh=3st2UmxQQUM3WKvocsa4hnMtobm19U4wFYN+9pR+pq4=; b=Y9DY5Oov6UzeIsO2oOPN8S4lCgeeR5vJG4vwU/L9VuUnZnbHUObJ9g0ZN6vprcwDIz Gfg91nE3GBuP+eQ7+SQfM+Xh0NYlfQ+f6o2mx1bqJKJXdGZvjZAHhyCIK6IDy9xOYjtw XeIKSO/fH5/5RSk8XMqEd+QW03rBJr/DTqfKgadOhd60GeBjWc/tEeZTYd3aqTQAvWE+ 1UKfk0uOVqLe5e0zvebzi10SwH4Ijuda84ZzpKL3NVdSe7QAkitB1TGfB3gKLP2SETuc RAGhXWEjLW/tkx5xYTp5wDU4EeMQ9yE9fQ9xdTtgO0XselvG9OrB37bWJqGwq6nLHcKr NJ8Q==
X-Gm-Message-State: AOAM530N/z1LQ7Z3tNRwUnzbtyObQ/jjfcgOZ6CTJ/EohcG3HchfY3ip JTTDDWR41iXBYuhDosYPnEu2Hg==
X-Google-Smtp-Source: ABdhPJwMecsEoKQIupj84I6n0lH8Rjqwz3EPIqp379XyvFnOENis9HPm+lHvXA4j0l176z4+gHOjfw==
X-Received: by 2002:a17:906:66cf:: with SMTP id k15mr3402539ejp.296.1616149113594; Fri, 19 Mar 2021 03:18:33 -0700 (PDT)
Received: from miek.nl (dhcp-077-251-206-012.chello.nl. [77.251.206.12]) by smtp.gmail.com with ESMTPSA id i2sm3831373edy.72.2021.03.19.03.18.32 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 19 Mar 2021 03:18:33 -0700 (PDT)
Date: Fri, 19 Mar 2021 11:18:30 +0100
From: Miek Gieben <miek@miek.nl>
To: Willem Toorop <willem@nlnetlabs.nl>
Cc: dnsop@ietf.org, Dick Franks <rwfranks@acm.org>
Message-ID: <20210319101830.GB12830@miek.nl>
Mail-Followup-To: Willem Toorop <willem@nlnetlabs.nl>, dnsop@ietf.org, Dick Franks <rwfranks@acm.org>
References: <161600103837.12472.4123883592260330100@ietfa.amsl.com> <CAHbrMsA3NzpY9RFNhWsvYgQ0hqcqEDuMUrw7HmGBJZ1+uaLtNA@mail.gmail.com> <600ED9AF-2C6F-429F-AF39-445E29E686EF@apple.com> <4DFDEFA6-4132-42CA-8DA7-D0537C5FC29A@isc.org> <99cdd98b-ac59-c96c-a73f-a58729c2ca52@nic.cz> <fbeb99ad-9ccc-1050-a0d2-3b6e5287ed7a@nlnetlabs.nl>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Content-Disposition: inline
In-Reply-To: <fbeb99ad-9ccc-1050-a0d2-3b6e5287ed7a@nlnetlabs.nl>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/dZlFF51AesRHJ-LAbV8dydGjklE>
Subject: Re: [DNSOP] I-D Action: draft-ietf-dnsop-svcb-https-04.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Mar 2021 10:18:39 -0000

[ Quoting <willem@nlnetlabs.nl> in "Re: [DNSOP] I-D Action: draft-ietf-..." ]
>No version of NSD, Unbound, ldns and getdns with SVCB and HTTPS support
>has been released yet, so no problem for us to change the name of
>SvcParamKey 5 to ech for us there, but ...
>
>The Net::DNS perl library does have parsing and printing of SVCB and
>HTTPS based on draft-ietf-dnsop-svcb-https-01 since version 1.26
>(released on August 6, 2020). @Dick, what is your position on this?
>
>I am aware of only 1 deployed HTTPS RR with echconfig:
>
>crypto.cloudflare.com.	300	IN	HTTPS	1 . alpn=h2
>ipv4hint=162.159.135.79,162.159.136.79
>echconfig=AEf+CQBDABNjbG91ZGZsYXJlLWVzbmkuY29tACAjs5LfHm27uMBFmLDI++shXFnrIB3tDgU6gMZfkJoFYAAgAAQAAQABAAAAAA==
>ipv6hint=2606:4700:7::a29f:874f,2606:4700:7::a29f:884f

miekg/dns has support for the draft version of SVCB since Oct 11 2020:

https://github.com/miekg/dns/pull/1067

this is used by cloudflare and who knows how many other projects. The PR speaks of testing
against a Python implementation, so that _also_ has support for the older draft.


/Miek

--
Miek Gieben

v2.23.0 | Report a Bug | By Email