Re: [DNSOP] Consensus suggestion for EDE and the TC bit
Peter van Dijk <peter.van.dijk@powerdns.com> Fri, 29 November 2019 11:19 UTC
Return-Path: <peter.van.dijk@powerdns.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA4E2120071 for <dnsop@ietfa.amsl.com>; Fri, 29 Nov 2019 03:19:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.197
X-Spam-Level:
X-Spam-Status: No, score=-4.197 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hnXRmu_CqHKc for <dnsop@ietfa.amsl.com>; Fri, 29 Nov 2019 03:19:26 -0800 (PST)
Received: from mx4.open-xchange.com (alcatraz.open-xchange.com [87.191.39.187]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2527412006E for <dnsop@ietf.org>; Fri, 29 Nov 2019 03:19:26 -0800 (PST)
Received: from open-xchange.com (imap.open-xchange.com [10.20.30.10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx4.open-xchange.com (Postfix) with ESMTPS id 796E86A24E; Fri, 29 Nov 2019 12:19:24 +0100 (CET)
Received: from plato (178-85-74-105.dynamic.upc.nl [178.85.74.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by open-xchange.com (Postfix) with ESMTPSA id 5FDE43C0335; Fri, 29 Nov 2019 12:19:24 +0100 (CET)
Message-ID: <bec77b4f469412223a61e0269b707e63492fd124.camel@powerdns.com>
From: Peter van Dijk <peter.van.dijk@powerdns.com>
To: dnsop <dnsop@ietf.org>
Date: Fri, 29 Nov 2019 12:19:23 +0100
In-Reply-To: <CAHbrMsBR6LZ880RXPDW2L+c_gcC6Tpg+L_c78OZvxJs4Gc4pUQ@mail.gmail.com>
References: <yblzhgpwwit.fsf@wu.hardakers.net> <CAHbrMsBR6LZ880RXPDW2L+c_gcC6Tpg+L_c78OZvxJs4Gc4pUQ@mail.gmail.com>
Organization: PowerDNS.COM B.V.
Content-Type: multipart/alternative; boundary="=-LFhIIYexJi3D7JsmXKnM"
User-Agent: Evolution 3.30.5-1.1
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/yzusc6bDtdwWYb_liVOLRpxDbK8>
Subject: Re: [DNSOP] Consensus suggestion for EDE and the TC bit
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Nov 2019 11:19:28 -0000
On Thu, 2019-11-21 at 15:37 +0800, Ben Schwartz wrote: > I think we are talking about performance in a situation that (a) is so pathological that it will almost never happen and (b) at worst, will only slow down failure, not success. For that reason, I would avoid introducing any additional protocol complexity in pursuit of optimization. I think our simplest and most appealing option would be to treat EDE exactly like any existing EDNS Option (i.e. set the TC bit). > > To be clear, we are talking only about the case where a response "fits" until the EDE is added, after which it exceeds the limit and is truncated. If optimizing this situation is important, I would suggest adding a requirement to the EDE draft that EDE be the last option in OPT. Then as a client, I can easily detect this situation, because the truncation point is in the middle of the EDE option. The client logic then is very simple: if I don't care about EDE, I can ignore the TC bit. Please do not write specifications that require software to receive a corrupt packet (in this case, one where the RDLEN of the last record extends beyond the end of the packet) and draw any conclusion from it other than 'this is a corrupt packet'. Also, please do not truncate packets on arbitrary byte boundaries. In other words, please always send well-formed packets that contain what they say they contain in terms of Answer/Additional/Auth counts, and the sizes of those individual records. Kind regards, -- Peter van Dijk PowerDNS.COM BV - https://www.powerdns.com/
- [DNSOP] Consensus suggestion for EDE and the TC b… Wes Hardaker
- Re: [DNSOP] Consensus suggestion for EDE and the … Ben Schwartz
- Re: [DNSOP] Consensus suggestion for EDE and the … Viktor Dukhovni
- Re: [DNSOP] Consensus suggestion for EDE and the … Wes Hardaker
- Re: [DNSOP] Consensus suggestion for EDE and the … Wes Hardaker
- Re: [DNSOP] Consensus suggestion for EDE and the … Petr Špaček
- Re: [DNSOP] Consensus suggestion for EDE and the … Bob Harold
- Re: [DNSOP] Consensus suggestion for EDE and the … Ray Bellis
- Re: [DNSOP] Consensus suggestion for EDE and the … Wes Hardaker
- Re: [DNSOP] Consensus suggestion for EDE and the … Peter van Dijk
- Re: [DNSOP] Consensus suggestion for EDE and the … Ben Schwartz
- Re: [DNSOP] Consensus suggestion for EDE and the … Eric Orth
- Re: [DNSOP] Consensus suggestion for EDE and the … Michael StJohns
- Re: [DNSOP] Consensus suggestion for EDE and the … Puneet Sood
- Re: [DNSOP] Consensus suggestion for EDE and the … Vittorio Bertola
- Re: [DNSOP] Consensus suggestion for EDE and the … Ralf Weber
- Re: [DNSOP] Consensus suggestion for EDE and the … Paul Vixie
- Re: [DNSOP] Consensus suggestion for EDE and the … Michael StJohns
- Re: [DNSOP] Consensus suggestion for EDE and the … Wes Hardaker