Re: [Doh] meta qtypes

Ólafur Guðmundsson <olafur@cloudflare.com> Mon, 19 March 2018 12:16 UTC

Return-Path: <olafur@cloudflare.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0F4B7127775 for <doh@ietfa.amsl.com>; Mon, 19 Mar 2018 05:16:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cloudflare.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id w292ZxAoPGCA for <doh@ietfa.amsl.com>; Mon, 19 Mar 2018 05:16:02 -0700 (PDT)
Received: from mail-wm0-x22b.google.com (mail-wm0-x22b.google.com [IPv6:2a00:1450:400c:c09::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F057D1270AE for <doh@ietf.org>; Mon, 19 Mar 2018 05:16:01 -0700 (PDT)
Received: by mail-wm0-x22b.google.com with SMTP id l16so5865854wmh.3 for <doh@ietf.org>; Mon, 19 Mar 2018 05:16:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cloudflare.com; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=uItFKVeVEx/Umych2E3nCI5tC/XKgfpXU9jRSRvhb70=; b=Nk0xu91en08vFE24Ef84OW04+1RszeIebZgEde4fplHlRjEMdbd2mI7oQEjJ8GlDuy xYhZEEiAhzH/59Z3nM/hl7WzDiqdhcERA2AH7gGbrP4N2jPAiWuwP3T2cZG5r8eMNm8n lrCdQbPYcLVlu/nnyKSqwrFOF4tVg47XeQHwk=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=uItFKVeVEx/Umych2E3nCI5tC/XKgfpXU9jRSRvhb70=; b=kLHyHZXa+dlKa+WN5iSdTofKKevdL8sh0GMeLY7mbmkcbJNMsDSv1AY6F57rGSYLp5 TRLM//qgVKiyxsoqQrlj+ZsPYj3JkhoaLXsNMo/DO6pouaAN2QVX8wkhz6ZT+bbrc2eD B8wT1LGi15qKRKjynD3zK+SgS15FOSsiC2Y0ZZgDUG2WQafI0DIskbT7aw2yzXnv6AM2 86R+Xot6AoU52telxkdWgVBFZXTMY8hxn72b6c+arepMSHaHJj3s3Zgo4/peol75VMsr ZJC/VQYK5I9ZgUFuOXtEcxaF3Qlt2YGdLwfoquSyr5eT4fO+0blt7mHxLOa9PiwJxrf/ Obcw==
X-Gm-Message-State: AElRT7Hg7fHC18ys4QqWU7t1/r2AiJeUkRLUuA5XDAOCOexKL+Q4BJI1 uNvbf0z6I/9qtWLhjmj2aqDhga3lc4lO40mZy1tFnw==
X-Google-Smtp-Source: AG47ELtlhiWIE0U3OSGFnhCyjNlYGcBlGGg6DJRQXhsIxHR6D+KbaR5n6kfKFQFogelcj64wIWys5zF+4/b905nkG8k=
X-Received: by 10.28.234.207 with SMTP id g76mr5555198wmi.43.1521461760383; Mon, 19 Mar 2018 05:16:00 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.223.169.41 with HTTP; Mon, 19 Mar 2018 05:15:59 -0700 (PDT)
In-Reply-To: <CAOdDvNoNN98zOuPAepS0=0Nt06+UAGV1ZCrxs0J2TzQaVnJz8w@mail.gmail.com>
References: <20180318143811.bn5kwr7oqo2ux6qm@miek.nl> <CAOdDvNoNN98zOuPAepS0=0Nt06+UAGV1ZCrxs0J2TzQaVnJz8w@mail.gmail.com>
From: =?UTF-8?B?w5NsYWZ1ciBHdcOwbXVuZHNzb24=?= <olafur@cloudflare.com>
Date: Mon, 19 Mar 2018 12:15:59 +0000
Message-ID: <CAN6NTqwA+Ub22Ajr_RGGh2+32aMMUMcKnPdUrUpkk8zF6TBn1Q@mail.gmail.com>
To: Patrick McManus <pmcmanus@mozilla.com>
Cc: DoH WG <doh@ietf.org>
Content-Type: multipart/alternative; boundary="001a11468132c486250567c2ebc9"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/CoBaPS8UxMf9TWtUx9SkLXmCklU>
Subject: Re: [Doh] meta qtypes
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Mar 2018 12:16:05 -0000

I would prefer if the draft did NOT even consider Meta types, but limited
itself to pure queries i.e. excluded query type's 128..255
Additionally doing other things like Updates and Zone transfers should
involve different meta types (lets learn from experience here not repeat
mistakes)

While I do not mind having the udpdnswire format for now,
I think most users would prefer to use a simple Jason format of answers
like the ones that Google provides
https://dns.google.com/resolve?name=www.cloudflare.com?type=aaaa

As for a more expressive format that supports doing DNSSEC validation that
is IMHO a separate  goal,
as we need to think about usage cases i.e. does the client trust the
resolver or not if the client trusts then the AD bit good enough, if the
client wants to verify then the client should express that in the query
either by adding field or ask for different media type.
Just MHO

Olafur


On Sun, Mar 18, 2018 at 3:44 PM, Patrick McManus <pmcmanus@mozilla.com>;
wrote:

> Hi - DoH itself doesn't require axfr/etc anywhere that DNS would not (I'm
> not aware of whether it does or not) - the text is just meant to give the
> HTTP considerations when it does carry larger DNS responses such as that.
>
> WRT HTTP caching - section 4 of DoH talks about how HTTP freshness
> lifetimes should be set for DoH responses. Is there something different
> here?
>
> -Patrick
>
>
> On Sun, Mar 18, 2018 at 2:38 PM, Miek Gieben <miek@miek.nl>; wrote:
>
>> Hi,
>>
>> -03 has the following text in section 7.1.
>>
>>   Other types of DNS data, such as
>>   zone transfers, may be larger and benefit more from revalidation.
>>   DNS API servers may wish to consider whether providing these
>>   validation enabling response headers is worthwhile.
>>
>> this implies DoH servers need to support IXFR/AXFR (fine), but that
>> replies to these may now be cached? I think this is new behavior from a DNS
>> standpoint.
>>
>> (Should the draft also mention dynamic updates, notify messages and other
>> opcodes as being supported?)
>>
>> /Miek
>>
>> --
>> Miek Gieben
>>
>> _______________________________________________
>> Doh mailing list
>> Doh@ietf.org
>> https://www.ietf.org/mailman/listinfo/doh
>>
>
>
> _______________________________________________
> Doh mailing list
> Doh@ietf.org
> https://www.ietf.org/mailman/listinfo/doh
>
>