IETF Logo Mail Archive

Re: [dnssd] Please review substantive changes to Update Lease

Ted Lemon <mellon@fugue.com> Thu, 02 February 2023 22:51 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC490C1575CC for <dnssd@ietfa.amsl.com>; Thu, 2 Feb 2023 14:51:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.895
X-Spam-Level:
X-Spam-Status: No, score=-6.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20210112.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b0R_vHvO_CHL for <dnssd@ietfa.amsl.com>; Thu, 2 Feb 2023 14:51:38 -0800 (PST)
Received: from mail-qv1-xf2e.google.com (mail-qv1-xf2e.google.com [IPv6:2607:f8b0:4864:20::f2e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 66FD0C15952A for <dnssd@ietf.org>; Thu, 2 Feb 2023 14:51:38 -0800 (PST)
Received: by mail-qv1-xf2e.google.com with SMTP id u18so1913068qvv.9 for <dnssd@ietf.org>; Thu, 02 Feb 2023 14:51:38 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20210112.gappssmtp.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=RZ73DotpvQoUBR14XTJQB0jwIF16UL3r/8ECcDoVwo0=; b=ctu8zul+UqYy770lt1OcF802bw04OtmyOK2MrfUqd7/MrFMlOqddbgjjfX+SQ67OXW QhEyr6BE48b5ewCUt+uOZ+DGK35x5GHvewSNpd32MRl+28NBHof3Ouy/49ZJ2lD7kHfU LUcNLG77MqNTCi2akPuMimHlzfWHvcXw5PNRzcLXa8yNUYKv8UoZNrIABbhkN4LrFD1v S0gUIPiN61OiT0Z1YaSFF6eE2HE/lwpaNAyxYS/2/eG0z4mFq1YmRj57isZ7XCTHv89h 0QHckqF1BXwMJ0qTLlhyU8i9EA2i2mw4cv51qnDsqw7sOlTgEB+kQZeYUMNE+UqqE1Jt 3JYg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=RZ73DotpvQoUBR14XTJQB0jwIF16UL3r/8ECcDoVwo0=; b=GAaUzYxfBMC9vdSjbxvZQKj0VngF6Bt9cx8RbXhEoSgeoIhRiy7k5pKSESMFRg6SXQ 1re8ufRphxeFlO6m5ZLmUWsqY5UN2KZmWjL66rvozqq3gbltFFrWCBSyBqWFNDJzYsRU qggr5feRwmV9T4xYPPel00EDNR9BUBDVPfjKyt5kE0Hl92n5mw4tU3SI+ZAEX681jQxB yt1phNAq2vNfrfeNgX2jGzHEGT09fXvsgEWziIrwdtiQtqjEmEz/PADF6fNzxHNX3/ay xREA7JELKzNS4tUtTf97p+TpK9Pg1MQ3/rrU9+a3fI9zt1HlDhkM1R99qeGCk1NoEvcK AcyQ==
X-Gm-Message-State: AO0yUKW0NoGGZgZkFXFfZDpZQn40pJXEqEcVcsiBfYLzGlpvULkswn51 51BQzfPLcCerZO2tPm3kOogyIruXJTbCIb4iSYRXOQ==
X-Google-Smtp-Source: AK7set+d6gWc8XVjlbUs03zzDOle986h0ZuYlCOvXbfzFfy1FXwN1XLUr69X0nkeX9deKHzEPXUgrpuL3ZhWl7J1EUU=
X-Received: by 2002:a0c:dd0e:0:b0:537:7bd7:29c0 with SMTP id u14-20020a0cdd0e000000b005377bd729c0mr526486qvk.1.1675378296821; Thu, 02 Feb 2023 14:51:36 -0800 (PST)
MIME-Version: 1.0
References: <CAPt1N1mZ9+o5vZ3Ut7RH6hdQgQsQqxz36uvyT+7H7GFPyHz1Fg@mail.gmail.com> <CACJ6M179+Rf+Qw-t7P+xKNQeRYcfRma_YRyT3Ayy-Osu8rcgsQ@mail.gmail.com> <CADyWQ+F1-nj5dx7bEAWkUQ9TmNf9pLCQccERi9YzLAiyyQqycw@mail.gmail.com>
In-Reply-To: <CADyWQ+F1-nj5dx7bEAWkUQ9TmNf9pLCQccERi9YzLAiyyQqycw@mail.gmail.com>
From: Ted Lemon <mellon@fugue.com>
Date: Thu, 02 Feb 2023 14:51:01 -0800
Message-ID: <CAPt1N1n0FgHzEA=cj_rK_-AEzRzwAsV95-Wrv5gcawbsyspR=g@mail.gmail.com>
To: Tim Wicinski <tjw.ietf@gmail.com>
Cc: Chris Box <chris.box.ietf@gmail.com>, dnssd <dnssd@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000003f2dba05f3bf6885"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/B9jXXtDrqqxulRRC8DsmCWLkpK0>
Subject: Re: [dnssd] Please review substantive changes to Update Lease
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Feb 2023 22:51:42 -0000

On Thu, Feb 2, 2023 at 2:40 PM Tim Wicinski <tjw.ietf@gmail.com> wrote:

> When sending an initial update, the requestor MUST delay the initial
>>> transmission by a random amount of time across the range of 0-3000
>>> milliseconds, with a granularity of no more than 10 milliseconds. This
>>> prevents synchronization of multiple devices of the same type at a site
>>> upon recovery from a power failure. This requirement applies only to the
>>> initial update on startup: since renews include a random factor as well,
>>> any synchronization that occurs after such an event should quickly
>>> normalize.
>>
>>
>> My personal thought on this, wearing no hats, is to wonder how realistic
>> is 10ms accuracy for a low-power device? I understand the rationale, which
>> is to permit 300 different slots in which the transmission could occur.
>> However I wonder if the granularity ought to be a softer requirement. Views
>> from implementers needed.
>>
>
> I figure folks are also considering the more and more movement to PTP on
> devices in general.
>

What does "PTP" stand for?


> This sentence seems wonky:
>
>  If the requestor uses UDP, the requestor MUST NOT coalesce Refresh
> messages if doing so would cause truncation of the message;
> in this case, the requestor should either send multiple messages should
> use TCP to send the entire update at once.
>
> Maybe "or should use TCP to send the entire update"?
>

Grammar is hard.


> Finally, section 8's security considerations are rewritten and greatly
>> expanded. The commit was
>> https://github.com/dnssd-wg/draft-ietf-dnssd-update-lease/pull/19/files.
>>
>> Section 8 <https://rfc-editor.org/rfc/rfc2136#section-8> of [RFC2136
>>> <https://www.ietf.org/archive/id/draft-ietf-dnssd-update-lease-04.html#RFC2136>]
>>> describes problems that can occur around DNS updates. Servers implementing
>>> this specification should follow these recommendations.
>>> Several additional issues can arise when relying on Update Lease. First,
>>> a too-long lease time is not much different than no lease time: the records
>>> associated with this lease time will effectively never be cleaned
>>
>>
> "Several additional issues can arise when relying on Update Lease."
>
> could this be "when relying on an Update Lease"?
>

Hm, maybe so. I was referring to the document, but that's probably not
correct.


> up. Servers implementing Update Lease should have a default upper bound on
>>> the maximum acceptable value both for the LEASE and KEY-LEASE values sent
>>> by the client. Servers MAY provide a way for the operator to change this
>>> upper limit. We recommend that the default values for these limits should
>>> be 24 hours and 7 days, respectively.
>>> The second issue is that a too-short lease can result in increased
>>> server load and a failure to persist data subject to such a short lease.
>>> Servers implementing Update Lease MUST have a default minimum lease
>>
>>
> This sentence reads odd to me (but this could be me).
>
> The second issue is that a lease which is too short can result in
> increased server load and a failure to persist data for such a lease.
>

OK.

Key management strategy is out of scope for this document, however.
>
> Can we drop the "however"?  It just is.
>

Be or be not. There is no try.

thanks for grinding this out Ted
>

:)

v2.23.0 | Report a Bug | By Email