IETF Logo Mail Archive

[Last-Call] LC feedback on draft-ietf-6man-rfc6874bis

Mark Nottingham <mnot@mnot.net> Tue, 13 September 2022 00:00 UTC

Return-Path: <mnot@mnot.net>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3A989C1522C5 for <last-call@ietfa.amsl.com>; Mon, 12 Sep 2022 17:00:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.106
X-Spam-Level:
X-Spam-Status: No, score=-7.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=PPoMusWb; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=x6gJvI7u
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hCjl6Hne0i9q for <last-call@ietfa.amsl.com>; Mon, 12 Sep 2022 17:00:12 -0700 (PDT)
Received: from out2-smtp.messagingengine.com (out2-smtp.messagingengine.com [66.111.4.26]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3F449C14F612 for <last-call@ietf.org>; Mon, 12 Sep 2022 17:00:11 -0700 (PDT)
Received: from compute5.internal (compute5.nyi.internal [10.202.2.45]) by mailout.nyi.internal (Postfix) with ESMTP id D27735C0197 for <last-call@ietf.org>; Mon, 12 Sep 2022 20:00:10 -0400 (EDT)
Received: from mailfrontend2 ([10.202.2.163]) by compute5.internal (MEProxy); Mon, 12 Sep 2022 20:00:10 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=cc :content-transfer-encoding:content-type:date:date:from:from :in-reply-to:message-id:mime-version:reply-to:sender:subject :subject:to:to; s=fm3; t=1663027210; x=1663113610; bh=3tfdMLgxOB KkZ+FU7o3tWsjjjDOMfUKn7ckwiov0nQI=; b=PPoMusWbGV0f6hq7r7SOsxa27l 9YBVJOY5UAWpN1bVkwPoJfJA5mHTD8/iQDkyW7ARfbRcB+yhjPltnHJJhaEpfXfS 8VFZng45WdsZVpPTV44U5hNK3GWfh3rGL9IbxfpRZR2z69A6uD5qqySv35i28Qpr F1uRas5+AUU//HpZcMlvX9tzuhUr7wwibpeKKrLnwhdnzRzcZUZxjNgj+0dT1A1N 95NPZscdtyTJdoxMYqWoIDS36cuCZBiyG/DvqO0H9ceBFZBeAyOAU4OSLvm+f/3M ICZy5/ykCkTf2Dge3M2Dt/l27+qvMf90gxjCYl2UdKvuUWT7h7T8sgaSph+w==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:date:feedback-id:feedback-id:from:from:in-reply-to :message-id:mime-version:reply-to:sender:subject:subject:to:to :x-me-proxy:x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s= fm2; t=1663027210; x=1663113610; bh=3tfdMLgxOBKkZ+FU7o3tWsjjjDOM fUKn7ckwiov0nQI=; b=x6gJvI7uLzR+s/B17b05vb/HHdSnBMp9F1qoLJFgcJSh 9YoIsF5sSMRtnlbiRYDVOhUfgn1TaGD3jV+KKzdIKW795F3sVjGg3Ktq8xEAESg7 zSI9Zd4FCSDLzb/UBwIGsuISWmJuXmWG0+GBh7/uRPnmzK7APghTxhENlMiiQ+gW NvZpARDeCi1KsD2SOh/VGeY2V22+btdA3iJVnAdw0qFoUiAnIttd8icmzyw0iiRf 3t0KXHk+m9TldsHnoJJ+Aq3F3KKEntRFiiWxyvMb95cQHJiwz6lgjEQuEzD9qIYf K8V4PowhPOk1C1URV7APyvfl/XvhVK/H5XDwno8X1w==
X-ME-Sender: <xms:CsgfY5Yb37rY5WZwWF_-YG_G-W5oV-S0xDESn6jmKa4olyRPRs66EA> <xme:CsgfYwafBc7i7HOPP06B3q92zXlXA5g-WGXnnRU2dFBdLLoVwF2BSiQYItuB18mkq HlXBaON4SLQDrhRUw>
X-ME-Received: <xmr:CsgfY79xLIpoDpe0GwJ18Hto6ZWsRmI_z_dU8u1kHTPxEqFDxuFfCnOLnfX1NTtG4mK7nenQAku4JwTe913OAeKEMz_kkPbMZcKB4mjOwL87VCFN8nGiX3sE>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvfedrfedufedgfedtucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefhtgfgggfukfffvffosehtqhhmtd hhtddvnecuhfhrohhmpeforghrkhcupfhothhtihhnghhhrghmuceomhhnohhtsehmnhho thdrnhgvtheqnecuggftrfgrthhtvghrnhepkeevvdejuedvkeegtdejuddthfeiheeuue eiieelvdeugedvvdehiedugffffffgnecuffhomhgrihhnpeiffedrohhrghdpfihhrght fihgrdhorhhgpdhgihhthhhusgdrtghomhdpmhhnohhtrdhnvghtnecuvehluhhsthgvrh fuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhnohhtsehmnhhothdrnhgv th
X-ME-Proxy: <xmx:CsgfY3p0FYbkIP4TMFkVIB6FNQJfJSDQZG-ULWKmBAY0yVHSuZJtTQ> <xmx:CsgfY0r4g8aHnpUjFHh0TNELh9L7g-OkUPC5LgsXDpkZHt3PIrpOOw> <xmx:CsgfY9TPYagrzttMzK_AwpT6O1XE2NmsqJthqXz-Z_-lzL6uB6JStw> <xmx:CsgfY6FsIDJQ79NGIqD-Ku_zNbtfrHYYwalkrxbcbyIwbjqpjOtQEw>
Feedback-ID: ie6694242:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA for <last-call@ietf.org>; Mon, 12 Sep 2022 20:00:09 -0400 (EDT)
From: Mark Nottingham <mnot@mnot.net>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.120.41.1.1\))
Message-Id: <40B9FB29-01E1-49CF-A3C9-A788B1A1C233@mnot.net>
Date: Tue, 13 Sep 2022 10:00:05 +1000
To: last-call@ietf.org
X-Mailer: Apple Mail (2.3696.120.41.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/4vEKZosvKvqJ9cufSm5ivsCho_A>
Subject: [Last-Call] LC feedback on draft-ietf-6man-rfc6874bis
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Sep 2022 00:00:17 -0000

Hello,

I appreciate the effort that the authors and WG have put into this document, and I don't have any substantial technical issues with the document as written (although I have not reviewed it deeply).

That said, the IESG needs to consider this publication carefully. The targeted implementers (web browsers) have very clearly said they will not be implementing. From their issue of record:

> Overall, our internal consensus is that <zone_id>'s are bonkers on many grounds - the technical ambiguity (and RFC 6874 doesn't really resolve the ambiguity as much as it fully owns it and just says #YOLOSWAG) - and supporting them would add a lot of complexity for what is explicitly and admittedly a limited value use case.

-- <https://www.w3.org/Bugs/Public/show_bug.cgi?id=27234#c2>

And, in their URL specification:

> Support for <zone_id> is intentionally omitted.

-- <https://url.spec.whatwg.org/#host-representation>

This is not just a question of getting them interested, nor one of resourcing. As their discussion points out, there are likely a number of additional security and user interface issues which would need to be addressed.

The Shepherd Writeup says that has been circulated with the W3C TAG, the HTTP WG, and the ART area. 

The TAG review was requested less than an hour ago:
  https://github.com/w3ctag/design-reviews/issues/774

At a minimum, the IESG should allow that process to complete. Given the size of their queue, this may take some time.

In the HTTP WG, I only see two relevant messages:
  https://www.w3.org/mid/CAPxZtjHf29s-b8M68uAcphpznbqBhjgfw0EYZHi__0DitE-i6Q@mail.gmail.com
I wouldn't characterise this as a review.

I couldn't find any relevant messages on the ART list in the last two years. If I've missed something in either case, pointers would be appreciated.

The questions that I think the IESG needs to address in evaluating this document are:

1. Should we be publishing a document where there is zero demonstrated implementation interest, and furthermore significant implementer concerns (as outlined above)?
2. Should lower-layer WGs be documenting how higher-layer protocols actually use the lower layer constructs, without buy-in or substantial review from those higher layer communities?
3. If so, what precedent does that set for the network determining how applications use it? Here, I'm particularly concerned about the struggles regarding security and privacy between the layers.
4. Given the above, will publishing this document impact the IETF's credibility/legitimacy in the eyes of browser implementers and other communities?

Cheers,


--
Mark Nottingham   https://www.mnot.net/

v2.20.0 | Report a Bug | By Email