IETF Logo Mail Archive

Re: [Http-srv] Alternative to SRV?

Erik Nygren <erik+ietf@nygren.org> Wed, 29 August 2018 18:10 UTC

Return-Path: <nygren@gmail.com>
X-Original-To: http-srv@ietfa.amsl.com
Delivered-To: http-srv@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D6AA7130E06 for <http-srv@ietfa.amsl.com>; Wed, 29 Aug 2018 11:10:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.001, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fKQ4bgCKKLy2 for <http-srv@ietfa.amsl.com>; Wed, 29 Aug 2018 11:10:22 -0700 (PDT)
Received: from mail-it0-f47.google.com (mail-it0-f47.google.com [209.85.214.47]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 24CDA130DFE for <http-srv@ietf.org>; Wed, 29 Aug 2018 11:10:22 -0700 (PDT)
Received: by mail-it0-f47.google.com with SMTP id e14-v6so8995885itf.1 for <http-srv@ietf.org>; Wed, 29 Aug 2018 11:10:21 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=0dRj+TMSEfCsZZY88qABmygQZC9bzS/HD3KHW+vFvj4=; b=kjrc2fI01YDUWxX2LjVtvBVG5yrnSzfNRYTbzY2y94iC9QBOmz+A7gvqE2xEPaRIvb attc+vUU8Bd2GUPQ9L9ERMsI32ufdNY4hUacgNyG0Y88p+8YyOOb2O7Xsfs0vHy5v8+g 9rRGOmynMjOyPrOYGQkzCpyA1hVEV+x5+sU2Asp26qGPNbZLKo7Kp1+zxvbJ5dwXzhMv NHYJCdy/+dl+WLYCYBfBpmtURrX/P/aUoxyr5iMd+Q1OWemz3Wxj7okKplikqX0fvGWX Hu3grnXi5f3sNSxQ/iJZsWN4us2mJ9RKD5iGzI5rRqfWF2t8N0jiz6/7/7r1O14r2nnE VEoQ==
X-Gm-Message-State: APzg51A5nqb7nP9pE+TsfgDjfglezPgSE8Uu65MfSwmmfStZFMqwUigg zMfBT77yJPSc/N9KOIFRVVOQTANBbLyhpxUzGNtx6uIF
X-Google-Smtp-Source: ANB0VdZBia+xpEAmAngo54LK8HKkpQvIjQ7kDzIk9rQJdNBL0zzOXt2XzNmzMpmXVPCzwafHPiB6A9Mlhahv4ej38Sg=
X-Received: by 2002:a02:70d7:: with SMTP id f206-v6mr6316915jac.142.1535566220881; Wed, 29 Aug 2018 11:10:20 -0700 (PDT)
MIME-Version: 1.0
References: <6aceab29-cf81-8644-20cd-e02281e6394c@bellis.me.uk> <DDFF92A9-9F1D-4883-AF5C-1372EBDAB156@isc.org> <CAKC-DJj3uGYwgd5v+VUEWCDS08NMcFne+1iZ2EC3FVr2qKmcwg@mail.gmail.com> <CAHPuVdWFbB_u7ppkGsF6A-8qXDqdmAyP0v5E_OAO2vzUsD9Ayg@mail.gmail.com> <9093d0e6-3546-c742-91a1-2cac4e26984e@bellis.me.uk> <CAHPuVdVuMV0CBaZCik_utFFV_jek4XagDaw-BmUV0Lof5bJvNQ@mail.gmail.com>
In-Reply-To: <CAHPuVdVuMV0CBaZCik_utFFV_jek4XagDaw-BmUV0Lof5bJvNQ@mail.gmail.com>
From: Erik Nygren <erik+ietf@nygren.org>
Date: Wed, 29 Aug 2018 14:10:10 -0400
Message-ID: <CAKC-DJg0-hoL0zCVqNk-L1CcQcH_oaKVJHV9Sco0AqzZaGunWA@mail.gmail.com>
To: Shumon Huque <shuque@gmail.com>
Cc: Ray Bellis <ray@bellis.me.uk>, http-srv@ietf.org
Content-Type: multipart/alternative; boundary="0000000000001ff779057496df2e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/http-srv/lXqRIs9seP8HxEFxBvuqzWRYIo8>
Subject: Re: [Http-srv] Alternative to SRV?
X-BeenThere: http-srv@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Using DNS SRV Records with HTTP <http-srv.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/http-srv>, <mailto:http-srv-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/http-srv/>
List-Post: <mailto:http-srv@ietf.org>
List-Help: <mailto:http-srv-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/http-srv>, <mailto:http-srv-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Aug 2018 18:10:25 -0000

On Fri, Aug 24, 2018 at 7:06 AM Shumon Huque <shuque@gmail.com> wrote:

> On Fri, Aug 24, 2018 at 6:36 AM Ray Bellis <ray@bellis.me.uk> wrote:
>
[deleted]


>
>
>> FWIW, I'd also like to do away with underscore labels for these records,
>> since (again from the web / DNS hosting point of view) they interact
>> badly with DNS wildcard records.
>>
>
> Yes, I think this issue is definitely worth addressing. One question is:
> does HTTP need port or other parameter specific redirection, which
> presumably is why the DNS ALTSVC record has the underscore labels. And if
> so, what is the best way to achieve that? Pushing those parameters into the
> RDATA is one way, but that will lead into predictable arguments about
> record subtyping and inability to surgically extract just the required
> response.
>

They unfortunately may be needed as otherwise we'd be back in the same boat
around CNAMEs at the zone apex.  At least for the CDN use-case, once a
non-trivial amount of information shows up in the rrtype, it likely needs
to be managed by the CDN.  Having "_443._https.example.com" means it can be
a CNAME'd whereas if was a record on "example.com" we'd be back in the same
boat.

The underscore labels also provide the ability to have multiple services on
the same hostname.

I haven't fully thought it through, but perhaps there is a better way to
support underscore labels and wildcards in a way that only authorities need
to worry about?  For example, allowing for "_443._https.*" records in an "
example.com" zone in a way that authorities could know how to handle?

      Erik

v2.23.0 | Report a Bug | By Email