IETF Logo Mail Archive

Re: [dnssd] Genart last call review of draft-ietf-dnssd-push-20

David Schinazi <dschinazi.ietf@gmail.com> Fri, 12 July 2019 00:32 UTC

Return-Path: <dschinazi.ietf@gmail.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4683512011B; Thu, 11 Jul 2019 17:32:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.702
X-Spam-Level:
X-Spam-Status: No, score=-0.702 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cBdJBhUJcExk; Thu, 11 Jul 2019 17:32:34 -0700 (PDT)
Received: from mail-lj1-x22b.google.com (mail-lj1-x22b.google.com [IPv6:2a00:1450:4864:20::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 519601200C7; Thu, 11 Jul 2019 17:32:34 -0700 (PDT)
Received: by mail-lj1-x22b.google.com with SMTP id p17so7617126ljg.1; Thu, 11 Jul 2019 17:32:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=FlAFn65gGGe1zMJz/Mzp5fViLkHj+NVL3aqANuDiArA=; b=nIR5XHy/Fc9v4WFYNljLdqeX3F/bGK+x0jRPKbP4nTuirJfb5aO6XmeCJlWqkuRjcB wkPb/xgjOtw+0Ykq8DqWFwZdzEIYiGz9GCakS4Sc32U1T7Qzv7PxiqkvCUIqKWw8b6+H FCzN7SVWCr3xEeWmUgweFkivN6hjFHMMp+ctxvozxZFPndAurWKxQCcH4uagdyXDQLmB x7YGfDRNfHOZGz3nixX3DY2fNEVoCYIJEDlWBG/fBoYXqQTUUzLLJljv7io6m3RjmYQ5 nSEOumiLR2NYO6fznxOjZyk9UabQJhthuLSGIyJC7jfchWh7OjsRe2F47LiNyamkSFDi xFjg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=FlAFn65gGGe1zMJz/Mzp5fViLkHj+NVL3aqANuDiArA=; b=Scwj/1TwUym//XLcnuz0ugrwnMekyq5JqQ8AJskwSIv+ZKsag8Qr/Ftyceonvkndq8 t2BncejwBYgm1/RC1o9SzCLMr62J+IzUVt8ex1gqUMBeQV+/oAqJTmCXd+oAKwzutaP/ LtcJAZHBNO1yMjMNz3X6Uxr/d7YBVXKR4x5tVJhX6E6aJR3C5JWvQp3EjesD/I4Q4O8g wCFjhKLeHv73YaljalcEoDXZApNrYi3IVSH5MbCgOCm2Kh09tBGIjVh+L9Ck72fyW7Nv zkjZ7ldM7gF2O7diSS7piHPyIOqGC0eWma81qzHsu0MClqqCcq1mumFX6O8yQHg3rEiJ t9Qw==
X-Gm-Message-State: APjAAAV67jZYETQRJm0n8VMhsr65ncKX22gSdA6kK8HdL4kc2h+1GROw GLxnhJNw3rsXucGp58Nk3/ZLdTtCkkYA1m/hCCs=
X-Google-Smtp-Source: APXvYqyEzcK6bB5iSgnjlqpg4Hcx67suBrsSPJUjV71a0Dw61I8VqrznluYdUQH5Sf8g9KYwZN8xWRMGILMWAFpWwVk=
X-Received: by 2002:a2e:94cb:: with SMTP id r11mr3972865ljh.212.1562891552512; Thu, 11 Jul 2019 17:32:32 -0700 (PDT)
MIME-Version: 1.0
References: <156175221593.21875.9525138908968318905@ietfa.amsl.com> <9E6DE124-9262-4870-A920-4E707A38DC08@bangj.com> <CAPDSy+7om=cBW51cyuPea9nabgJuRV3M+++gA7sy8VzfNpkn6Q@mail.gmail.com> <9F8CFF4A-ABC1-4005-AE65-6CE64940B59F@apple.com> <CAPDSy+6V+ooWDe7XezmWA_XKNQXRAOex8DE5CiTnZdz8zc-9CA@mail.gmail.com> <F6DD5CEF-E644-46E3-84B5-18309F6B44C5@apple.com> <270A8516-8BE8-441A-A6CC-4FDE8EFE2B10@fugue.com> <BF75518F-25E9-4283-B647-6382F50A5CCA@bangj.com> <ED99C670-3149-417C-B465-99A48D70C584@bangj.com> <6CCF9E3C-A153-401B-B5A7-5877FFFB4A85@apple.com>
In-Reply-To: <6CCF9E3C-A153-401B-B5A7-5877FFFB4A85@apple.com>
From: David Schinazi <dschinazi.ietf@gmail.com>
Date: Thu, 11 Jul 2019 17:32:21 -0700
Message-ID: <CAPDSy+5qnEtM0BmY-bQqPKfwN-4y7RcJH0S05q5A1u2YQYNS4w@mail.gmail.com>
To: Stuart Cheshire <cheshire@apple.com>
Cc: Tom Pusateri <pusateri@bangj.com>, Ted Lemon <mellon@fugue.com>, Eric Rescorla <ekr@rtfm.com>, DNSSD <dnssd@ietf.org>, draft-ietf-dnssd-push.all@ietf.org, Robert Sparks <rjsparks@nostrum.com>
Content-Type: multipart/alternative; boundary="000000000000cf6018058d710b85"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/YyUIO6oxQY2cRsmO9ZsPi8p1ZQ0>
Subject: Re: [dnssd] Genart last call review of draft-ietf-dnssd-push-20
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Jul 2019 00:32:37 -0000

Hi Tom,

You wrote:

> There is no back to back reconnect in the #2 case. The server shouldn’t
> accept the connection after sending a RETRY DELAY to this client. The
> client may ignore the RETRY DELAY but this doesn’t matter. It’s only a
> courtesy that the SERVER tells the client how long it has to wait.


When you say that the server shouldn't accept the second connection, how
does the server know that the new connection comes from the same client?
Unless you're using TLS client certificates, you have no way of
differentiating clients because of NAT. Or am I missing something?

Thanks,
David


On Thu, Jul 11, 2019 at 4:40 PM Stuart Cheshire <cheshire@apple.com> wrote:

> On 11 Jul 2019, at 14:46, Tom Pusateri <pusateri@bangj.com> wrote:
>
> > 1. CLIENT receives SUBSCRIBE from server
> > 3. CLIENT receives PUSH with no change notifications
> > 4. CLIENT receives PUSH notification with ‘collective remove’ TTL and
> non-zero RDLEN
> > 5. CLIENT receives PUSH notification with DNS message length larger than
> 16k
> > 6. CLIENT receives UNSUBSCRIBE from SERVER
>
> Reviewing the list above, I realize that we state explicitly that
> SUBSCRIBE and UNSUBSCRIBE sent from server are both invalid. But we don’t
> enumerate the other bogus message directions.
>
> I have added some clarifying text around this, and will submit an updated
> draft once they open for submissions again. Not that it was every really
> unclear, but it doesn’t hurt to be abundantly unambiguous. I have added:
>
> A server MUST NOT send a RECONFIRM message.
> A client MUST NOT send a SUBSCRIBE response.
> A client MUST NOT send a PUSH message.
>
> All three are fatal errors of the “this should never ever happen” variety.
>
> Stuart Cheshire
>
>

v2.23.0 | Report a Bug | By Email