[Gen-art] gen-art review of draft-ietf-dprive-dnsodtls-12

"jouni.nospam" <jouni.nospam@gmail.com> Thu, 17 November 2016 10:03 UTC

Return-Path: <jouni.nospam@gmail.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76077129426; Thu, 17 Nov 2016 02:03:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id i-XXre4btN_j; Thu, 17 Nov 2016 02:03:15 -0800 (PST)
Received: from mail-pg0-x234.google.com (mail-pg0-x234.google.com [IPv6:2607:f8b0:400e:c05::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E5FEE129418; Thu, 17 Nov 2016 02:03:11 -0800 (PST)
Received: by mail-pg0-x234.google.com with SMTP id f188so89918221pgc.3; Thu, 17 Nov 2016 02:03:11 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:content-transfer-encoding:mime-version:subject:message-id:date :cc:to; bh=aeM0PqdvuQZ0L3yxfHCVx51DpN67tEKQQJ1AdR/Ibec=; b=z2ocXWAq5NEinlaD18FU6+6sIPLuMSDTBjaJ/X+juNeAkarSQcNPNnpsPy1xN+rCyi vAkWZtdKIkmFmJRRX6oDzOmcqBDGJYB74bvU0XB88JjxmspbRRQ88F7y2TaJoYO2JOU4 l0/SZb94Iz+t/TFB8fi28AB1NVYzmhY0XMsk5jQXqnkXsKj2yqCxjyFll+fby4V17SYo iVVZXQ6D6JuE4gUz6+wWZkWZHrC6nrorakfckytTA4Qu4xMt8HIHXc/e5n5zQdt0sRMe p6Tx0w6FGM8oaMij80CO6jC+yl8lGUmykU0QLimSI0gMUfzNuYD+CkSwHgH+x2hrpCDH N7Hg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:content-transfer-encoding:mime-version :subject:message-id:date:cc:to; bh=aeM0PqdvuQZ0L3yxfHCVx51DpN67tEKQQJ1AdR/Ibec=; b=lrn/qafWTfRg5my4OJfFIqr/w7shzeSfnbZz42sGv2N2OaiiWYAxF7PVh8IJxMBqG6 uL64BVLYQgZ4d0WNkVKKUUW1+HuLi31XajaNnqbBFyE0JJq4GFwUoMaOymtDIYGubfdE 5GtuR5QMTgQO1DnWM9bv4hrXsnGWhsEquLQ3TXo/2F45JvkEJLZsAtT3jcBHMdts9BGg Yq8EXyOhGEzga7L9FzJ/7Ju0PUqvnFEOqljvcRS0qVJ+aO6Byil0ADkPamYEXab9Q/GL 5K8DHM8XXi6Lu9XvQ//RWUXAE/zFtFnwcrNw5qqvTUO8AeOUmJgUz1ZIMbfEyup+0cdV dkJA==
X-Gm-Message-State: ABUngveg9swDuji66qDf0KNyR4wVk23iKaNiLbSV4Ml1owMzTZ+lmEIVzoc10PbVRlxGLA==
X-Received: by 10.98.86.157 with SMTP id h29mr3589143pfj.25.1479376991070; Thu, 17 Nov 2016 02:03:11 -0800 (PST)
Received: from t2001067c0370012851d3db54149d19aa.v6.meeting.ietf.org ([2001:67c:370:128:51d3:db54:149d:19aa]) by smtp.gmail.com with ESMTPSA id q26sm5459996pfk.94.2016.11.17.02.03.09 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 17 Nov 2016 02:03:10 -0800 (PST)
From: "jouni.nospam" <jouni.nospam@gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 10.1 \(3251\))
Message-Id: <B1F5F8A7-0D09-49BC-9544-27EB32D84BEB@gmail.com>
Date: Thu, 17 Nov 2016 02:03:04 -0800
To: gen-art@ietf.org
X-Mailer: Apple Mail (2.3251)
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/yLh9on-_tEBn_zgoCUjNIB_sQa0>
Cc: draft-ietf-dprive-dnsodtls.all@ietf.org
Subject: [Gen-art] gen-art review of draft-ietf-dprive-dnsodtls-12
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Nov 2016 10:03:16 -0000

I am the assigned Gen-ART reviewer for this draft. The General Area
Review Team (Gen-ART) reviews all IETF documents being processed
by the IESG for the IETF Chair.  Please treat these comments just
like any other last call comments.

For more information, please see the FAQ at

<http://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>.

Document: draft-ietf-dprive-dnsodtls-12
Reviewer: Jouni Korhonen
Review Date: 2016-11-17
IETF LC End Date: 2016-11-16
IESG Telechat date: 2016-12-15

Summary:

The document is ready for publication.

Comments/questions:

o Section 3.1. has “first-come, first-served” port range. What port range this 
  actually is? Does it refer to ephemeral port range (rfc6335).

o Section 6 describes a case where an anycasted DTLS packet reaches a DNS server
  that does not have an existing security association with the client. A DTLS
  session resumption should initiated as a result. Is it possible that the next
  DTLS message again reaches another DNS server without security association, which
  would cause a new fatal alert to be returned.. etc?? If this is the case there should
  be some text pointing at this case. If I am just confused the current text is fine.