IETF Logo Mail Archive

[DNSOP] DNS HTTPS/SVCB record type support in iOS 14

Tommy Pauly <tpauly@apple.com> Fri, 25 September 2020 19:58 UTC

Return-Path: <tpauly@apple.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 71FB03A0869; Fri, 25 Sep 2020 12:58:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.796
X-Spam-Level:
X-Spam-Status: No, score=-3.796 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.695, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M4PwAjQOHn9P; Fri, 25 Sep 2020 12:58:30 -0700 (PDT)
Received: from ma1-aaemail-dr-lapp03.apple.com (ma1-aaemail-dr-lapp03.apple.com [17.171.2.72]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 99FB03A0853; Fri, 25 Sep 2020 12:58:30 -0700 (PDT)
Received: from pps.filterd (ma1-aaemail-dr-lapp03.apple.com [127.0.0.1]) by ma1-aaemail-dr-lapp03.apple.com (8.16.0.42/8.16.0.42) with SMTP id 08PJvYQu035050; Fri, 25 Sep 2020 12:58:29 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=from : content-type : mime-version : subject : message-id : date : to; s=20180706; bh=J+k5qc+SPtdoHleSbPXDIZpovnsCQ81+G24gPwS+sKo=; b=pzhZCz/Q5UyJMFm0n7NIrKdyNlB/DVkSvG7lbGnKifny3dNn4hq8/lL7ma1AnckVXGJw uyWt16Ryfcl6eS0YuOPGwXFfsZh0jperDK87YhD6cvKoaIWGIXxy/oEbdMDK/bl2qJPj pDok1yVeeNyAbUG9a4FAL/MtFGQbuprSv8XN9rEenUGixoh0qrDyunUroMvU6224c2Hs gTznfOVVQvL3p5gliy/xnSOK1O9CRdahPf8N9LDE2kcL6YWnZcBLg6qNEoE5X4AsPxBj W1Q0n/hx0HuFsWTvIuD8KEzKcTrbKn0rPDjp57A4wGLraDglGnkbQ19NCsdst+pr7aE5 DQ==
Received: from rn-mailsvcp-mta-lapp01.rno.apple.com (rn-mailsvcp-mta-lapp01.rno.apple.com [10.225.203.149]) by ma1-aaemail-dr-lapp03.apple.com with ESMTP id 33ngywagy7-6 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Fri, 25 Sep 2020 12:58:29 -0700
Received: from rn-mailsvcp-mmp-lapp01.rno.apple.com (rn-mailsvcp-mmp-lapp01.rno.apple.com [17.179.253.14]) by rn-mailsvcp-mta-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.6.20200729 64bit (built Jul 29 2020)) with ESMTPS id <0QH800R05CTEQYC0@rn-mailsvcp-mta-lapp01.rno.apple.com>; Fri, 25 Sep 2020 12:58:28 -0700 (PDT)
Received: from process_milters-daemon.rn-mailsvcp-mmp-lapp01.rno.apple.com by rn-mailsvcp-mmp-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.6.20200729 64bit (built Jul 29 2020)) id <0QH800700C7WMF00@rn-mailsvcp-mmp-lapp01.rno.apple.com>; Fri, 25 Sep 2020 12:58:28 -0700 (PDT)
X-Va-A:
X-Va-T-CD: 65bc0c648f62ce2e65cfa78577075f51
X-Va-E-CD: c42843ba1a3af769be80248338857213
X-Va-R-CD: 93129b97177b7332238dac8ebc9e30bf
X-Va-CD: 0
X-Va-ID: 18d264d7-66c4-4a5c-a342-cc609edf5f21
X-V-A:
X-V-T-CD: 65bc0c648f62ce2e65cfa78577075f51
X-V-E-CD: c42843ba1a3af769be80248338857213
X-V-R-CD: 93129b97177b7332238dac8ebc9e30bf
X-V-CD: 0
X-V-ID: 4b1cebb1-66d0-46c8-afb6-8a1ee618557b
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.687 definitions=2020-09-25_17:2020-09-24, 2020-09-25 signatures=0
Received: from localhost.localdomain (unknown [17.234.68.71]) by rn-mailsvcp-mmp-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.6.20200729 64bit (built Jul 29 2020)) with ESMTPSA id <0QH800Z67CTEX300@rn-mailsvcp-mmp-lapp01.rno.apple.com>; Fri, 25 Sep 2020 12:58:27 -0700 (PDT)
From: Tommy Pauly <tpauly@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_E1492263-AF85-42EF-B6BB-43DD5D65BEA6"
MIME-version: 1.0 (Mac OS X Mail 14.0 \(3654.0.3.2.26\))
Message-id: <6694476E-A51B-44AD-AE53-A31D705B9DC4@apple.com>
Date: Fri, 25 Sep 2020 12:58:26 -0700
To: dnsop WG <dnsop@ietf.org>, QUIC WG <quic@ietf.org>
X-Mailer: Apple Mail (2.3654.0.3.2.26)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.687 definitions=2020-09-25_17:2020-09-24, 2020-09-25 signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/ldaCto09yaOuSXM92HgJhGqmPJw>
Subject: [DNSOP] DNS HTTPS/SVCB record type support in iOS 14
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Sep 2020 19:58:32 -0000

Hello DNSOP & QUIC,

I wanted to provide an update that the production version of iOS 14, which shipped last week, includes support for sending HTTPS (SVCB) DNS queries (RR type 65) for applications using our system networking APIs.

The implementation status has been updated here: https://github.com/MikeBishop/dns-alt-svc/blob/master/svcb-implementations.md <https://github.com/MikeBishop/dns-alt-svc/blob/master/svcb-implementations.md>

For those with HTTP/3 QUIC deployments, this means that (when HTTP/3 experimental support is enabled) iOS will use the ALPN indication in the HTTPS record to enable HTTP/3 prior to receiving an Alt-Svc indication. As previously noted on the DNSOP list, Cloudflare is already supporting publishing these records, and we’d encourage other server deployments that support QUIC to do the same.

To note, this behavior is the same in the betas of macOS 11.

Best,
Tommy

v2.23.0 | Report a Bug | By Email