IETF Logo Mail Archive

Re: [DNSOP] status of the aname and svcb/httpsvc drafts

"Andrew M. Hettinger" <AHettinger@Prominic.NET> Wed, 26 February 2020 22:28 UTC

Return-Path: <AHettinger@Prominic.NET>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B79803A0946; Wed, 26 Feb 2020 14:28:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SZw2_u1V9xka; Wed, 26 Feb 2020 14:28:23 -0800 (PST)
Received: from dispatch1-us1.ppe-hosted.com (dispatch1-us1.ppe-hosted.com [148.163.129.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 213373A0948; Wed, 26 Feb 2020 14:28:23 -0800 (PST)
X-Virus-Scanned: Proofpoint Essentials engine
Received: from domino-42.prominic.net (domino-42.prominic.net [199.103.3.42]) by mx1-us3.ppe-hosted.com (PPE Hosted ESMTP Server) with ESMTP id A825B480064; Wed, 26 Feb 2020 22:28:20 +0000 (UTC)
In-Reply-To: <f5f17c26-e673-119e-e7aa-bc88f8ef46a3@nic.cz>
References: <b34f1b0d-fa65-23d4-1b2b-761b965a2aae@knipp.de> <CAG8jCEzO7zrfL5G5CzdJ=c5wipJgqqHfyeA-a3-QjquoyPYgvg@mail.gmail.com> <3ead518d-f166-1c36-c3e9-18aeb355d160@pletterpet.nl> <20200220221517.GA16177@isc.org> <alpine.DEB.2.20.2002222349530.27562@grey.csi.cam.ac.uk> <CAH1iCiq+rOxs9c8zoJhAWbB6-0SP_WC5onF-DrbekwX=8iR49Q@mail.gmail.com> <CA+nkc8Coe8D1ECfrRwRUnzJ3azyJfXXUq3HMy63AL-4SOvmaaw@mail.gmail.com> <OF4062C1E9.B42128F1-ON86258519.006893C9-86258519.00690F29@prominic.net> <f5f17c26-e673-119e-e7aa-bc88f8ef46a3@nic.cz>
X-KeepSent: 5AE72066:0D99A54C-8625851A:007A2D9A; type=4; name=$KeepSent
To: Vladimír Čunát <vladimir.cunat+ietf@nic.cz>
Cc: "dnsop@ietf.org WG" <dnsop@ietf.org>, DNSOP <dnsop-bounces@ietf.org>
X-Mailer: IBM Notes Release 9.0.1 October 14, 2013
Message-ID: <OF5AE72066.0D99A54C-ON8625851A.007A2D9A-8625851A.007B71BC@prominic.net>
From: "Andrew M. Hettinger" <AHettinger@Prominic.NET>
Date: Wed, 26 Feb 2020 16:28:19 -0600
X-MIMETrack: Serialize by Router on domino-42.prominic.net/PNI(Release 10.0.1FP3|August 09, 2019) at 02/26/2020 04:28:19 PM
MIME-Version: 1.0
Content-type: multipart/alternative; Boundary="0__=09BB0F89DFE9AB0A8f9e8a93df938690918c09BB0F89DFE9AB0A"
Content-Disposition: inline
X-MDID: 1582756101-fvoLOpaIcMos
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/sr23yEADVipG-uuVf4iOTsMbOz4>
Subject: Re: [DNSOP] status of the aname and svcb/httpsvc drafts
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Feb 2020 22:28:26 -0000

"DNSOP" <dnsop-bounces@ietf.org> wrote on 02/26/2020 08:34:55:

> From: "Vladimír Čunát" <vladimir.cunat+ietf@nic.cz>
> To: "dnsop@ietf.org WG" <dnsop@ietf.org>
> Cc: "Andrew M. Hettinger" <AHettinger@Prominic.NET>
> Date: 02/26/2020 08:35
> Subject: Re:  [External]  [DNSOP] status of the aname and svcb/httpsvc
drafts
> Sent by: "DNSOP" <dnsop-bounces@ietf.org>
>
> On 2/25/20 8:07 PM, Andrew M. Hettinger wrote:
> > Frankly, you've got it exactly the wrong way around: even with httpsvc
> > speced out completely, it will take time for it to be deployed to
> > browsers. That's assuming you can get enough buying from (mostly)
> > google to even make it happen at all.
>
> I don't think it's so simple.  The current ANAME draft specifies new
> behavior for resolvers, and there I'd expect even slower overall
> upgrades/deployment than in browsers.  Also I'm unsure how big a part of
> authoritative implementations will want to do ANAME expansion.  (It
> seems unlikely for "our" Knot DNS, for example.)
>

Is there actually a commitment from browser makers to implement it?

That's was the whole reason we don't just use the existing svc entries for
http/https: browsers refused to implement it. This will be the second time
trying to push a solution of this nature on the browser makers. Why is it
going to work this time? I mean, if it does, great. I will joyously hold my
hat and admit I was wrong.

But let's be clear, the biggest group that we need buy-in from are the
chromium devs. Without them, this isn't worth the bits we've sent down the
wire discussing it.

> Of course, none of this will really prevent anyone from deploying it,
> even though it won't be ideal, e.g. often without more precise answers
> due to non-supporting resolvers.  Clearly we do have deployments even
> now :-)
>
> --Vladimir
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email