IETF Logo Mail Archive

Re: [kitten] Adoption of draft-mccallum-kitten-krb-service-discovery?

Petr Spacek <pspacek@redhat.com> Mon, 06 June 2016 13:45 UTC

Return-Path: <pspacek@redhat.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E4C112D7A8 for <kitten@ietfa.amsl.com>; Mon, 6 Jun 2016 06:45:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.328
X-Spam-Level:
X-Spam-Status: No, score=-8.328 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-1.426, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3SC_LTDDxi00 for <kitten@ietfa.amsl.com>; Mon, 6 Jun 2016 06:45:11 -0700 (PDT)
Received: from mx1.redhat.com (mx1.redhat.com [209.132.183.28]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5CAA412D7A9 for <kitten@ietf.org>; Mon, 6 Jun 2016 06:45:11 -0700 (PDT)
Received: from int-mx13.intmail.prod.int.phx2.redhat.com (int-mx13.intmail.prod.int.phx2.redhat.com [10.5.11.26]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.redhat.com (Postfix) with ESMTPS id 20946112772; Mon, 6 Jun 2016 13:45:11 +0000 (UTC)
Received: from pspacek.brq.redhat.com (ovpn-204-43.brq.redhat.com [10.40.204.43]) by int-mx13.intmail.prod.int.phx2.redhat.com (8.14.4/8.14.4) with ESMTP id u56Dj8X7017180 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 6 Jun 2016 09:45:10 -0400
To: Nico Williams <nico@cryptonector.com>
References: <1463500163.2432.9.camel@redhat.com> <20160519162545.GB19530@localhost> <1463676437.31173.36.camel@redhat.com> <9533fb26-6513-caca-efbc-158ebf6ca408@redhat.com> <20160520150629.GH19530@localhost> <15d233ce-0c10-f13e-b87c-8b942163736d@redhat.com> <20160602172059.GA4935@localhost>
From: Petr Spacek <pspacek@redhat.com>
Organization: Red Hat
Message-ID: <2cfa33ef-1a6c-ed8b-5707-20e355bab522@redhat.com>
Date: Mon, 06 Jun 2016 15:45:08 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.1.0
MIME-Version: 1.0
In-Reply-To: <20160602172059.GA4935@localhost>
Content-Type: text/plain; charset="windows-1252"
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.68 on 10.5.11.26
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.39]); Mon, 06 Jun 2016 13:45:11 +0000 (UTC)
Archived-At: <https://mailarchive.ietf.org/arch/msg/kitten/aTbFIIcEvwqrpK9n4gAG1G2hWHQ>
Cc: kitten@ietf.org
Subject: Re: [kitten] Adoption of draft-mccallum-kitten-krb-service-discovery?
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Jun 2016 13:45:17 -0000

On 2.6.2016 19:21, Nico Williams wrote:
> On Wed, Jun 01, 2016 at 12:46:18PM +0200, Petr Spacek wrote:
>> On 20.5.2016 17:06, Nico Williams wrote:
>>> Er, OK, how do we help you implement it?  :)
>>
>> Personally I think that this can be solved by some clever usage of an existing
>> bidirectional language + some metadata.
> 
> I'm not sure what you mean.  "Bi-directional language", to me, refers to
> natural languages where writing is done in two directions.

I'm sorry for being terse but the long answer is here:
https://www.cis.upenn.edu/~bcpierce/papers/lenses-etapsslides.pdf

"Need to find a way of deriving both functions from a single
description" (of RR type in our case).

Of course the description could be encoded in any format. The main point is
that this conversion should be based on very solid theory to eliminate risk of
encode()/decode() inconsistencies.


>> My experience with Augeas shows that it works quite well and that people
>> ironed out a lot of details and difficult corner cases so might be worth
>> investigating this direction.
> 
> The configuration editing tool??
Yes, Augeas is using an bidirectional language.


>> If you do not like bidirectional languages look at
>> https://datatracker.ietf.org/doc/draft-levine-dnsextlang/
>> and implement it :-)
> 
> My preference would be to use XML (I know, I know[*]), mostly because
> people could (and almost certainly would) then write XSLs to generate
> client- and maybe server-side code for dealing with unknown RR types.
> 
> Mostly you just need to generate a tiny bit of HTML and JavaScript to
> present a UI specific to any given RR type, type-check user inputs,
> provide help bubbles and such, format the RDATA with valid
> user inputs, and produce hex-encoded RDATA that the server can then use
> (the server doesn't need to validate the RDATA, but it could do that
> too, also with generated code).
> 
> [*] XSLT is what makes XML tolerable and even desirable for this task.
> 
> I suppose one would have to... design an XML schema for this, write an
> I-D and sample XSLs, submit, and see if dnsop has interest.  I don't
> have the cycles for this :(

I share the same problem :-(

-- 
Petr Spacek  @  Red Hat

v2.23.0 | Report a Bug | By Email