IETF Logo Mail Archive

Re: HTTPSSVC record draft

Ilari Liusvaara <ilariliusvaara@welho.com> Wed, 03 July 2019 19:58 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 37B0212029B for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 3 Jul 2019 12:58:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.65
X-Spam-Level:
X-Spam-Status: No, score=-2.65 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.25, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KhZuNwrDsqY4 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 3 Jul 2019 12:58:01 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D9669120165 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 3 Jul 2019 12:58:01 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1hilLk-0001vv-JK for ietf-http-wg-dist@listhub.w3.org; Wed, 03 Jul 2019 19:55:28 +0000
Resent-Date: Wed, 03 Jul 2019 19:55:28 +0000
Resent-Message-Id: <E1hilLk-0001vv-JK@frink.w3.org>
Received: from titan.w3.org ([2603:400a:ffff:804:801e:34:0:4c]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <ilariliusvaara@welho.com>) id 1hilLj-0001v5-AY for ietf-http-wg@listhub.w3.org; Wed, 03 Jul 2019 19:55:27 +0000
Received: from welho-filter4.welho.com ([83.102.41.26]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <ilariliusvaara@welho.com>) id 1hilLg-0003Mh-7g for ietf-http-wg@w3.org; Wed, 03 Jul 2019 19:55:26 +0000
Received: from localhost (localhost [127.0.0.1]) by welho-filter4.welho.com (Postfix) with ESMTP id 2530745BE9 for <ietf-http-wg@w3.org>; Wed, 3 Jul 2019 22:55:01 +0300 (EEST)
X-Virus-Scanned: Debian amavisd-new at pp.htv.fi
Received: from welho-smtp2.welho.com ([IPv6:::ffff:83.102.41.85]) by localhost (welho-filter4.welho.com [::ffff:83.102.41.26]) (amavisd-new, port 10024) with ESMTP id EuG8Ugc9lYNQ for <ietf-http-wg@w3.org>; Wed, 3 Jul 2019 22:54:59 +0300 (EEST)
Received: from LK-Perkele-VII (87-100-246-37.bb.dnainternet.fi [87.100.246.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by welho-smtp2.welho.com (Postfix) with ESMTPSA id 8B99272 for <ietf-http-wg@w3.org>; Wed, 3 Jul 2019 22:54:58 +0300 (EEST)
Date: Wed, 03 Jul 2019 22:54:57 +0300
From: Ilari Liusvaara <ilariliusvaara@welho.com>
To: "ietf-http-wg@w3.org Group" <ietf-http-wg@w3.org>
Message-ID: <20190703195457.GA2536105@LK-Perkele-VII>
References: <CAKC-DJikByP+wX-GoD6ntpUWTbr6ioJzB4i8nGQL4NtPWePL3g@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
In-Reply-To: <CAKC-DJikByP+wX-GoD6ntpUWTbr6ioJzB4i8nGQL4NtPWePL3g@mail.gmail.com>
User-Agent: Mutt/1.10.1 (2018-07-13)
Sender: ilariliusvaara@welho.com
Received-SPF: none client-ip=83.102.41.26; envelope-from=ilariliusvaara@welho.com; helo=welho-filter4.welho.com
X-W3C-Hub-Spam-Status: No, score=-5.8
X-W3C-Hub-Spam-Report: AWL=-1.152, BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_NONE=0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1hilLg-0003Mh-7g cb025e9a19f3b7b406eaa3c6a9efb787
X-Original-To: ietf-http-wg@w3.org
Subject: Re: HTTPSSVC record draft
Archived-At: <https://www.w3.org/mid/20190703195457.GA2536105@LK-Perkele-VII>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/36748
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On Wed, Jul 03, 2019 at 02:45:47PM -0400, Erik Nygren wrote:
> Ben, Mike, and I have submitted the first version of a proposal for an
> "HTTPSSVC" DNS record.
> 
> TL;DR:  This attempts to address a number of problems (ESNI, QUIC
> bootstrapping, HTTP-to-HTTPS redirection via DNS, SRV-equivalent for HTTP,
> etc) in a holistic manner through a new extensible DNS record, rather than
> in a piecemeal fashion.  It is based on some previous proposals such as
> "Alt-Svc in the DNS" and "Service Bindings" but takes into account feedback
> received in DNSOP and elsewhere.
> 
> Feedback is most welcome and we're looking forward to discussing with
> people in Montreal.
> 
> Draft link:
> 
>       https://tools.ietf.org/html/draft-nygren-httpbis-httpssvc-01

Some quick comments:

- What if SvcDomainName has length different from its length field?
  DNS wire-form names are self-delimiting (DNS message parsing relies
  on this).
- What does it mean for SvcDomainName to be absent in alternative
  service form? I would guess it means "same as RRNAME".
- Why there is length field for SvcFieldValue? Why not let it run to
  the end of record?
- 2 byte length field can encode values up to 65535, not 65536. 
  And the length of SvcFieldValue can not be that big, because
  RRDATA and DNS message length limits (both 65535) would be hit.
- Why 302 redirects instead of 307? 302 is frequently buggy.
- I-D.ietf-tls-tls13 -> RFC8446.
- Is there any envisioned use for chained HTTPSSVC records, except
  for type 0 record pointing to type 1 record?
- The MUST requirement to have only one type 0 record and then
  SHOULD behave non-deterministically if this is violated is pretty
  odd.


-Ilari

v2.23.0 | Report a Bug | By Email