IETF Logo Mail Archive

Re: [dnssd] Adoption call for draft-sctl-advertising-proxy

Lanlan Pan <abbypan@gmail.com> Tue, 17 August 2021 14:33 UTC

Return-Path: <abbypan@gmail.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7393F3A17D8 for <dnssd@ietfa.amsl.com>; Tue, 17 Aug 2021 07:33:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wK5xvrHMSkvy for <dnssd@ietfa.amsl.com>; Tue, 17 Aug 2021 07:33:02 -0700 (PDT)
Received: from mail-qk1-x729.google.com (mail-qk1-x729.google.com [IPv6:2607:f8b0:4864:20::729]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 60EAA3A17DF for <dnssd@ietf.org>; Tue, 17 Aug 2021 07:33:02 -0700 (PDT)
Received: by mail-qk1-x729.google.com with SMTP id m21so5349440qkm.13 for <dnssd@ietf.org>; Tue, 17 Aug 2021 07:33:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=kdcFY4jw7Ah6GxIRd1cAUPCK49VqZuusvQT7TdlwidU=; b=q6bbcTmWhi210tPr2IwqBdtb5y74ZpMNHwvh1TZjj3ygi2IZiiIgvZZRZ4GO879QJx rM8clVf1ln0gciz6xlnPf9zqjbcu9DxmtbOKFgTeZv+vVwHg1BC/IyO0ylzwi+LYywp+ nQ8p4b8roSJZ+ym1fCspsF1jQsRZlHZd/n0vygTDBK/GjpwFSsKGeBOQfbI7T3/RGbzN 7kzat1Bhr0TPoj+xT9kgyXmeXJSedRKZUGC8ogFJN0owEak/qjBJKX+N/n3UeDEhDU8L Bnoc5ieaprVbdZTLJsRUkKeWHeLDluXBKniUzRWkOVxC4XBQsglNSoUQJFsBv3oQ7OUq dVLA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=kdcFY4jw7Ah6GxIRd1cAUPCK49VqZuusvQT7TdlwidU=; b=ZW8+BiETHP+fGXlk0crIMfRwx1mdxUWCGdHv9lLRr9E35NrcVhZdP8x3q60kyXLZ1V FOGYWjhtkf70/yHUnz2CkJzxRpy86JFg6UqzvqbQ1jRZi0/KbBzeFubUyQ5DqHXmtAem A7XrIhp+VbrgmnX1iUcRwb4cEtuaePSabU7Cr9n77cfQwHepCB8ARCoQmZed6zaQUzCN auG0U3USdaZR6qeKOz5YYE4o9jU806TYYDqaYRJ1Sacubjdq2LqWumLzCOYSYZaAlwnM 5GofyGFAteVBG+WB+upltuoe08CFHSc9ELE5BBEtuh947tuHuZZyPvbo55selL88/OYg E/9A==
X-Gm-Message-State: AOAM532vIXo76awZmCnMOWvEs3kObXt7fE3bdJyNFrh5PLI6h7Qhg4MJ CLyrFBl8JSNVHVZVelIvkBsyS/zsKD7H+XLa4UygdhrbGKU=
X-Google-Smtp-Source: ABdhPJyEKkdqZVtP0X1myQ1SvuZu3gLKu5BGqa5xTyjh/3oc9O4aWkvAwYsFxKbnmmFfY8w0VFi2LU7w3NdPL4judKU=
X-Received: by 2002:a05:620a:15a5:: with SMTP id f5mr4183866qkk.80.1629210780236; Tue, 17 Aug 2021 07:33:00 -0700 (PDT)
MIME-Version: 1.0
References: <CADPZrgTu8QeR=yAM+9w0zDJ45Uz7Lgs12-6PKzutTW_p1RkA4Q@mail.gmail.com> <CAPt1N1=NgRRVnD1L_dJ_mZYuE5ReXOv0sK_cL6RcjcmpdQZOYg@mail.gmail.com>
In-Reply-To: <CAPt1N1=NgRRVnD1L_dJ_mZYuE5ReXOv0sK_cL6RcjcmpdQZOYg@mail.gmail.com>
From: Lanlan Pan <abbypan@gmail.com>
Date: Tue, 17 Aug 2021 22:32:48 +0800
Message-ID: <CANLjSvV45ki5ZjGut62uJTtyJ8+J8AwXcPKNMUTimDUoga5qkA@mail.gmail.com>
To: Ted Lemon <mellon@fugue.com>
Cc: Simon Lin <simonlin=40google.com@dmarc.ietf.org>, dnssd <dnssd@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000d1fe5105c9c231a4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/vPVEUEzwcUxxJu-Ffifz107Alus>
Subject: Re: [dnssd] Adoption call for draft-sctl-advertising-proxy
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Aug 2021 14:33:08 -0000

Ted Lemon <mellon@fugue.com> 于2021年8月13日周五 下午7:19写道:

> On August 12, 2021 at 11:08:44 PM, Simon Lin (
> simonlin=40google.com@dmarc.ietf.org) wrote:
>
> > Specifically,
> > imagine a dual-radio device (WiFi and Thread) which for some reason
> > migrates from being an SRP client to an mDNS client or vice versa.
>
> Interesting—I'm realizing I completely misread Martin's question. I was
> assuming that this client would continue to be an SRP client, not switch
> between SRP and mDNS.
>
> What's the solution to resolve the case where an SRP client migrates
> to be an mDNS client. When the mDNS client tries to advertise its DNS
> service, it will conflict with the SRP server of the original SRP
> client. I don't think SRP replication can solve this problem.
>
> As Jonathan said, always using SRP regardless of whether the device is
> connected via Thread or WiFi can solve this problem. Also maybe the
> device can unregister itself from SRP when it has migrated to WiFi,
> which requires the device to remember the IP address of the SRP
> server, or to use draft-tljd-dnssd-zone-discover.
>
> I don't think dnssd-zone-discover helps with this. I think the client
> needs to either unregister itself with SRP before migrating, or follow the
> same protocol I mentioned earlier with respect to its service
> advertisement: advertise without asserting uniqueness.
>
+1,  advertise without asserting uniqueness.
To join in a Thread zone,  srp client should be authenticated through
J-PAKE or other protocols. the srp client only its own the srp server, the
srp server can only ensure the uniqueness in its zone, but not asserting
the uniqueness with other zones.
If srp client migrating to a mdns client, just follow the mdns conflicts
policy.

> > The way I'm currently proposing to address this is by requiring SRP
> > replication when there is more than one SRP server, and by not renaming,
> > but rather waiting for the conflict to resolve.
>
> Agree that SRP replication is the most user-friendly way of addressing
> this problem.
>
> > An additional mitigation strategy is to not actually detect conflicts.
> If
> > we have two conflicting registrations, and SRP replication doesn't
> resolve
> > them, then they just coexist until one goes away.
>
> Does this strategy violate mDNS protocol? Moreover, if two different
> devices register their service on different SRP servers using the same
> name, it's not a good idea to not resolve the conflict since the
> conflict will last for a long time.
>
> No, it's allowed. If two devices claim the same name, we're now assuming
> that this conflict will be resolved out of band rather than through mDNS
> conflict detection. TBH, the only time I've ever actually seen an mDNS
> conflict happen outside of deliberate testing was when a single device was
> connected through two interfaces to the same link and didn't know it.
>
> On the other hand we see conflicts all the time with SRP because of the
> two-SRP-server mDNS conflict detection algorithm, so it's pretty clear that
> SRP + mDNS conflict detection is a recipe for creating conflicts.
>
> > The only other alternative is to rename. I think this is too heavy of a
> > solution, but I'm open to debate.
>
> It increases the complexity on every device that needs to browse for
> mDNS services. I would prefer SRP replication to renaming.
>
> This is a good point—SRP replication also increases complexity, but it
> constrains it nicely to the more capable nodes on the network—the ones that
> are acting as ad-hoc infrastructure and not as end nodes.
> _______________________________________________
> dnssd mailing list
> dnssd@ietf.org
> https://www.ietf.org/mailman/listinfo/dnssd
>

v2.8.7 | Report a Bug | By Email