Re: [Doh] [Ext] [Technical Errata Reported] RFC8484 (6033)
Ben Schwartz <bemasc@google.com> Tue, 31 March 2020 15:15 UTC
Return-Path: <bemasc@google.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 529FB3A22BD for <doh@ietfa.amsl.com>; Tue, 31 Mar 2020 08:15:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.699
X-Spam-Level:
X-Spam-Status: No, score=-15.699 tagged_above=-999 required=5 tests=[DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tZsED0KRXgmR for <doh@ietfa.amsl.com>; Tue, 31 Mar 2020 08:15:22 -0700 (PDT)
Received: from mail-wm1-x32e.google.com (mail-wm1-x32e.google.com [IPv6:2a00:1450:4864:20::32e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA7A63A22C1 for <doh@ietf.org>; Tue, 31 Mar 2020 08:15:21 -0700 (PDT)
Received: by mail-wm1-x32e.google.com with SMTP id r16so2902111wmg.5 for <doh@ietf.org>; Tue, 31 Mar 2020 08:15:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=YX3lH4r0hezOHY+DjAVrKvCzrMtbMqHMq4+nSl653E8=; b=s1GHWSJayNb3nzRyNXx3PLXDA9rM90cpkiUCvqjuVJxM8M3SV6+M/0FHKY+TroFiUu nmrvNles+AkilT2vmqFaiotal7Hbs2FAHrQgPsQPx/ykc3GpRVKfbGJMpnvLG0jPQbtG UrPGL0LjXUswSl/LPg4J53wOxQOyJhUWaosFuNOWWkDsYshpVMuflpywvn4O7ZTpnJ1h KRL1qDBf7UqV8BVeKz+ukvUwzc1VS1ydMXBMlgEWwvOg7yo/Gxvjdr2mfYoG987X7QGX b7BHBY+xj5O0gg+fN7Uli6+wlZHgi26eVhGkZSix05CbYz2CJJO+ZYs4QT+Gt9Ew3JlS T8BQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=YX3lH4r0hezOHY+DjAVrKvCzrMtbMqHMq4+nSl653E8=; b=kcQ5caiesKzEmRLrxxuSCIq718CSeY1uYzZEOxku7CtwcIQxBVS3Jo+LjY3Y6P5pZ9 HIWT17Hy8I9ss1xcD/jWJ2A/YA6t56N0zi7UaUibqI4lZSBGipNChE4xLcdnoo4gF7vD aglhmFFVR7BVVRRm7sBrBH7PglbvOumd6NDYRdvkqiK6oLeNXpC7QGDcdbApxSdpGoFn mj/Iy1X/DsStJ+aZ8jrDv42sCgIFbg1h7orsFioJewb0I0IJ7DY+MRzoT9zTdd82MFUw y47YxbH8kbes5574ZMqThaCAr/3Hj+YQeaU2gF+7ABZlvE7Sp9Vhn9exxFq8oKznFkGw 66dg==
X-Gm-Message-State: ANhLgQ3idGWkO7rDsVTw61LSjfeR/NA9x1YXPdtKobHbKmXxjdmzcOjV ytBO7UBwyQ7WtetC/LZPbcCRwa6PFmzhBoMbENvpGQ==
X-Google-Smtp-Source: ADFU+vv/k5APar+zqVb/AR3p6jnKZ1+GA7sx8GD2lIMeHAZ9HzIT3Ns2FvjiYczuj+ORdLeIORIp26sbTAL6YsptXWY=
X-Received: by 2002:a1c:b4c6:: with SMTP id d189mr3798265wmf.132.1585667719898; Tue, 31 Mar 2020 08:15:19 -0700 (PDT)
MIME-Version: 1.0
References: <20200330155304.45AD8F4074B@rfc-editor.org> <CALaySJJ3dAEebgyz==PoSqnhSzFiHcxh0kmynRYBcD6Vjvm+6w@mail.gmail.com> <CALaySJK-FNqt-uHOz6oqANj8Xpwt7BOQkO6Ut-iAZ_OY-arO5Q@mail.gmail.com> <8FCCBEAC-F86C-4454-BC8A-3E637539BBEB@icann.org> <787AE7BB302AE849A7480A190F8B933031489622@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <3BC73714-9E1C-43E1-A76D-F0919C3EA22F@icann.org> <787AE7BB302AE849A7480A190F8B933031489B69@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
In-Reply-To: <787AE7BB302AE849A7480A190F8B933031489B69@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
From: Ben Schwartz <bemasc@google.com>
Date: Tue, 31 Mar 2020 11:15:07 -0400
Message-ID: <CAHbrMsBRxvRhqhwM9-XKM-NhOouNgMP2eGG9q7R1xdnUwSUDQA@mail.gmail.com>
To: mohamed.boucadair@orange.com
Cc: Paul Hoffman <paul.hoffman@icann.org>, "doh@ietf.org" <doh@ietf.org>, David Lawrence <tale@dd.org>, Patrick McManus <mcmanus@ducksong.com>, "Murray S. Kucherawy" <superuser@gmail.com>, Barry Leiba <barryleiba@computer.org>, RFC Editor <rfc-editor@rfc-editor.org>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="000000000000356db205a228093a"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/SL0f3vfgt_03ze-UEPf6JrLbnRE>
Subject: Re: [Doh] [Ext] [Technical Errata Reported] RFC8484 (6033)
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 Mar 2020 15:15:24 -0000
The purpose of this text is to reiterate that DNS records pushed from untrusted and unrecognized sources must be discarded. As Barry noted, the word "simply" is important here. It is being used as a synonym for "merely", i.e. there must be some other good reason to use the record. Following a redirect seems like a good reason! On Tue, Mar 31, 2020 at 11:10 AM <mohamed.boucadair@orange.com> wrote: > Paul, > > (1) > > I went with an errata because I thought the document does not contain any > internal inconsistency, but this discussion reveals there is one. While > waiting for a document, I do think that at minimum we need a record for > this. Tagging this errata as "held for document update" would be > appropriate. > > (2) > > What about this part of the errata: > > * How a different URI can be discovered using server push? Can you please > provide a flow example? > > A DoH client MUST NOT use a different URI simply because it was > ^^^^^^^^^^^^^^^^ > discovered outside of the client's configuration (such as through > ^^^^^^^^^^^^^^^^ > HTTP/2 server push) > ^^^^^^^^^^^^^^^^^^ > > Thank you. > > Cheers, > Med > > > -----Message d'origine----- > > De : Paul Hoffman [mailto:paul.hoffman@icann.org] > > Envoyé : mardi 31 mars 2020 16:48 > > À : BOUCADAIR Mohamed TGI/OLN > > Cc : doh@ietf.org; David Lawrence; Ben Schwartz; Patrick McManus; > > Murray S. Kucherawy; Barry Leiba; RFC Editor > > Objet : Re: [Doh] [Ext] [Technical Errata Reported] RFC8484 (6033) > > > > On Mar 31, 2020, at 2:03 AM, mohamed.boucadair@orange.com wrote: > > > I'm now more puzzled about the intent of the document with regards > > to redirection: > > > > That's fine, and you are not alone. But the proper resolution of that > > puzzlement is not an erratum, it is a document update. > > > > --Paul Hoffman >
- [Doh] [Technical Errata Reported] RFC8484 (6033) RFC Errata System
- Re: [Doh] [Technical Errata Reported] RFC8484 (60… Barry Leiba
- Re: [Doh] [Technical Errata Reported] RFC8484 (60… Barry Leiba
- Re: [Doh] [Technical Errata Reported] RFC8484 (60… Barry Leiba
- Re: [Doh] [Ext] [Technical Errata Reported] RFC84… Paul Hoffman
- Re: [Doh] [Technical Errata Reported] RFC8484 (60… mohamed.boucadair
- Re: [Doh] [Ext] [Technical Errata Reported] RFC84… mohamed.boucadair
- Re: [Doh] [Ext] [Technical Errata Reported] RFC84… Barry Leiba
- Re: [Doh] [Ext] [Technical Errata Reported] RFC84… Paul Hoffman
- Re: [Doh] [Ext] [Technical Errata Reported] RFC84… mohamed.boucadair
- Re: [Doh] [Ext] [Technical Errata Reported] RFC84… Ben Schwartz
- Re: [Doh] [Ext] [Technical Errata Reported] RFC84… Patrick McManus