IETF Logo Mail Archive

Re: [dnssd] Second WGLC for draft-ietf-dnssd-srp / does the SRP registrar check IPv6 addresses?

Esko Dijk <esko.dijk@iotconsultancy.nl> Thu, 25 August 2022 15:49 UTC

Return-Path: <esko.dijk@iotconsultancy.nl>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C055C1527A1 for <dnssd@ietfa.amsl.com>; Thu, 25 Aug 2022 08:49:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=iotconsultancy.nl
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XHlgW2w4102X for <dnssd@ietfa.amsl.com>; Thu, 25 Aug 2022 08:49:12 -0700 (PDT)
Received: from EUR03-DBA-obe.outbound.protection.outlook.com (mail-dbaeur03on2106.outbound.protection.outlook.com [40.107.104.106]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DEC48C1526FF for <dnssd@ietf.org>; Thu, 25 Aug 2022 08:49:10 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JpArTCk/jrjtelsDWf6XfOWEytgPuQRkMp7c/Ugmmle6Ai0CY7HBQB0AswoG5z65GEnA0Bh+7HQBLb2PikLiQeE8zMdD9T3wnsNu3fm1MAgEJOEvIcwmN8He7NppatbI7RBlKumOsdrZAooNlJ/1h2Q3a+hxbndIabNJ6T0pCXzE9ukZ04yTW5kEXgAZfahqOK8EwxWsTe3hG7j76SAgjgGjpRM4G2XMvkGM2nPdYMcQd58p8ku95+0cdxFXrHRcRivPSbii5JOAvFB7r+j7Xx898RKPXNyqXIitlQiwTJDn8W8UeJLtQNmKoWBi5skThMRkB9Ea6Z9ttkGTv2vVrw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=kGCBNZwl1KaZF+7ggITKzneEBKVCKuD9hHTFP0TRLj8=; b=ZcBbn0V75i8bt53ds5SAC0P6mS+jNI3f+iRHym+CRoyRJhRpBf+7iNolFeNd1ZKCisNukB9KVdFzsjKfLc0PCJALzQl63J38tTsiqkgmoXRk1uhFUaPNuw+KgjpQlwnaln8LqxcNc52pUMWXJHpbi2vhzATsXMKAvTLxzBIVhQR2CqQCzcPqobn5XDO7J8O/Zsx6XM2iROAux7p3DYD4638xjq7Rw+eIxawhHP0SRIrJ/IGXBfJCUB7GBZyepG1rRoupT5Av9sqSBGoo5/5hLneW3eCAM9WZy+jIUSrq+/cA7KBJNsFS/NnDF0BcXqvn+YeOjOz7VaWeusXrtJ7M0A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=iotconsultancy.nl; dmarc=pass action=none header.from=iotconsultancy.nl; dkim=pass header.d=iotconsultancy.nl; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iotconsultancy.nl; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=kGCBNZwl1KaZF+7ggITKzneEBKVCKuD9hHTFP0TRLj8=; b=dH32/9elmeB4H28hiSo4/b36+WneK6CbewrF/jnnLPf0QOWt3pXqPMNrKJyuONeadVX6YKftB05WwnG7+PCq3P7uHUAKylkQbASLztJP2KI8+0yn8BeL+kD0XQssymV3Idq3rlCfoPLz4CeXOkkW0lB2BVWPVVfIUrJo9MuX/jQ=
Received: from DU0P190MB1978.EURP190.PROD.OUTLOOK.COM (2603:10a6:10:3b9::20) by GVXP190MB1965.EURP190.PROD.OUTLOOK.COM (2603:10a6:150:68::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5566.15; Thu, 25 Aug 2022 15:49:06 +0000
Received: from DU0P190MB1978.EURP190.PROD.OUTLOOK.COM ([fe80::241f:347b:f324:f7a5]) by DU0P190MB1978.EURP190.PROD.OUTLOOK.COM ([fe80::241f:347b:f324:f7a5%3]) with mapi id 15.20.5566.015; Thu, 25 Aug 2022 15:49:05 +0000
From: Esko Dijk <esko.dijk@iotconsultancy.nl>
To: Ted Lemon <mellon@fugue.com>, DNSSD <dnssd@ietf.org>
Thread-Topic: [dnssd] Second WGLC for draft-ietf-dnssd-srp / does the SRP registrar check IPv6 addresses?
Thread-Index: AQHYuJo0j2RYEysSTEKtx4hV6s3Zvw==
Date: Thu, 25 Aug 2022 15:49:05 +0000
Message-ID: <DU0P190MB19788CEF8F707FA96C46DBB1FD729@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM>
References: <510701d8b6fd$4314d710$c93e8530$@yahoo.com> <9E94B637-BB68-43C6-8A69-E7EFD13FE439@fugue.com>
In-Reply-To: <9E94B637-BB68-43C6-8A69-E7EFD13FE439@fugue.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=iotconsultancy.nl;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: bee03a70-87f4-437d-8109-08da86b15738
x-ms-traffictypediagnostic: GVXP190MB1965:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DU0P190MB1978.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230016)(366004)(136003)(346002)(39830400003)(396003)(376002)(66946007)(66556008)(5660300002)(76116006)(52536014)(8936002)(71200400001)(66476007)(66446008)(64756008)(478600001)(38100700002)(8676002)(966005)(122000001)(41300700001)(44832011)(110136005)(316002)(55016003)(83380400001)(186003)(53546011)(33656002)(7696005)(6506007)(2906002)(9686003)(86362001)(38070700005)(166002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: zKk8SCbui30YS4gzku911/hUzzHnhZuRaNW5O25+CVCzN4yVG4EDnjxrFOvLCkYtVrRD7o/WfKmHoahxEsZrH+o3aVVt+funpRNIBRo9B8Qi3KFmyWA6SamfgXTH7+F67R51N8Jp1ELwXZdghV4AHHy4YuJZA0N5H+PylhSnDFvPEgPGCLzqQQ7g+4Qaq+TcCXnI6qdtK8Ni4M3v0piBncx4ehVOohDGowRtWtqI5erGwy37rkuQdN5bC7ga/xNRiTbmrJlCNOzo0zqUgit12hReOhstNvuv4JNtrhu7NrnPmS8yHbwTtOk0mxaEwoyYpN7M/VSbsI6c69CjHlaNdqY+qL1GM0ncdoY3Ld9PTU2KE24hb1KzBtqrDlww5trGtv3jmmQ5EJo4NLBiqtHK5dpDEaQclWv739ikMp8SGXeuyaAgoTaT2vnx6IJf1bYjbNJxeW9qpkYJOQ/xWsRYAJ6kM/a6ys4rTTbwZWyW5WppIy2qpket3neyzh7AAbw047X9ciBWbiltNpTX+4XEymLTcJpXQcJAYe1Ccok+ijPxdLHAMOqwGz+CMipEo5p7wCGcxD8Oye+LwO11z1A3MAU/4iNLSyiY+5T7ey8tZ038hJtMyZl6bZLn1SokW6WbUSiI0R5r9efq/Moy0XNsUqZE8HsSg9S5uGt1bioKDyXUvSRoMYXB7J80CkMxxRXgunBNxOXcl5eL/5hLShbpQy1iDlfDjvTe+DPW4eQddliaUslDI6Bc8rIPty49JlaR3y/QhUemKgJxPqYAU1XNYZ9lM9GKFveTXDqeuNf2c9A7lybsTDRJxeC2t5GT3/g2a8oAuO5HSmIWdUqMTAvP67/pGeCmzqoVfCFeRnn3BeqbOESA7Ejep9A2d3lb37j0tD1hj6aNw8VxLQi2iHVAIsawitGwZ/OlpnYpI/RnRqSpNX2Kkco25FVtTavQNwtn8UTgoAhQ16RRH+p4vOhuLEJCK4a3+5FMZ+sHazn/vYm0VR1SD9etW+eBToiZMZ7XjaptqfuM3hITmhRyANSBiFAo0Rwps6mhgr80P+NL7wi6SEPWQ7asbPLP+i3GNua1X4QaWhN8JzHY++ebb3veWZZGQcUeyLfm6foDCESKPmkh9cM49Ggg43KNYWTY+sJm/Xpcqs6qKpMhWQcD52zfzkwzs0pOE9qRVN7rx0TwZAZv29OMEGEFe1Jq1/i03gyh915isxgT0rAfqawPLFWn81j6s8cOliJGPXg1FCmmql1yJWvVX4bi7P7fbQ5qElKAm0qs8Lyn0Iwb6J67FZQWq5ho9LfXxSbcHM4q8cD2I1xeHsAsGdJzJNdgPFlo4TcFsWyW2zBaqytrV5Nwp+zZL1bmISGhGh1HKyy2OGFsTM0cK70dmnrubWHnEzEhPZai7TyYpi8OAqMKK8KcpJ1O5RjFLVZ+hHOo1sMiAKWoPJoi6BpJBxC5STH/Bn22QJ4Ks95csLXSuyf3mF7VKoVAG62wQefx2GT/BYMRiD6JaRBhxBXcjB+4ZR0xaP8ZF9yfaEDYUk4Ri5gvstVwXeYddIS6MMJeF6ZbQzFOxQzRq7akuAW7qH4Hd90SrRYB8ZbnrSwby4wpa74SwKTssRkgpfRAWj6w01Y341j6x7V7r2pZBvYkwL+eXItptRIG0dLWVD52mLoVC22fxP5SBOaB1g==
Content-Type: multipart/alternative; boundary="_000_DU0P190MB19788CEF8F707FA96C46DBB1FD729DU0P190MB1978EURP_"
MIME-Version: 1.0
X-OriginatorOrg: iotconsultancy.nl
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DU0P190MB1978.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: bee03a70-87f4-437d-8109-08da86b15738
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Aug 2022 15:49:05.6844 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 58bbf628-15d2-46bc-820b-863b6774d44b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tPrGEuFW0xQFWUFTTJKITY+58HEPQ+V9lM+PPPRFHLBXCkrfQJhL4wfr+nXI+PpSJZAR6w7t07wqppJL7Xc/5bTyBgynTvscJOwYLFMT9QI=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GVXP190MB1965
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/1k9iT56uMxMoxnRuhdsRamrZW0c>
Subject: Re: [dnssd] Second WGLC for draft-ietf-dnssd-srp / does the SRP registrar check IPv6 addresses?
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Aug 2022 15:49:17 -0000

One question just came up during testing:  how can the phrase “IPv6 address(es) of the host where the service resides” be interpreted?

My take was that it could be any IPv6 address that’s registered in the AAAA record, it doesn’t need to be an actually currently valid IPv6 address (e.g. maybe the address is being configured or comes back online later), or it doesn’t need to be the address of the SRP requestor itself, for the SRP Update to succeed.
So the Requestor could do updates on behalf of services on other hosts, in theory.

An alternative view is that the SRP registrar may check the IPv6 address, and may check that is an address held by the SRP requestor. (That would seem not ok to me – too restrictive.)

Regards
Esko

From: Ted Lemon <mellon@fugue.com>
Sent: Tuesday, August 23, 2022 18:19
To: g_e_montenegro@yahoo.com
Cc: g_e_montenegro=40yahoo.com@dmarc.ietf.org; Nathan Dyck <nathan@nanoleaf.me>; Esko Dijk <esko.dijk@iotconsultancy.nl>; David Schinazi <dschinazi.ietf@gmail.com>; DNSSD <dnssd@ietf.org>
Subject: Re: [dnssd] Second WGLC for draft-ietf-dnssd-srp

On Aug 23, 2022, at 10:33 AM, g_e_montenegro@yahoo.com<mailto:g_e_montenegro@yahoo.com> wrote:
The other changes are not urgent, as you say. Good call. So it’s ok with the minor changes per your response below.

Thanks. I’ve actually changed my mind about the IANA comment—I was feeling a bit overwhelmed last night, but that’s no reason not to include it. :]


Section 8.1



OLD:

IANA is requested, with the approval of IAB

NEW:

IANA is requested, with the approval of IAB (per https://www.iab.org/documents/correspondence-reports-documents/2017-2/iab-statement-on-the-registration-of-special-use-names-in-the-arpa-domain/)

I don’t want to add this reference—it’s not an RFC. We didn’t do this for previous documents that took advantage of the registry, so I don’t think it’s necessary. Is there a reason you think this is newly necessary in this case?

I think the correct place to put this is actually in the delegation section. I’ve made that change in this pull request—let me know what you think:

https://github.com/dnssd-wg/draft-ietf-dnssd-srp/pull/13

v2.23.0 | Report a Bug | By Email