Re: [Masque] Call for MASQUE use cases
Eric Kinnear <ekinnear@apple.com> Mon, 09 March 2020 20:24 UTC
Return-Path: <ekinnear@apple.com>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 034F53A1712 for <masque@ietfa.amsl.com>; Mon, 9 Mar 2020 13:24:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XeNBd-H_gZAE for <masque@ietfa.amsl.com>; Mon, 9 Mar 2020 13:24:00 -0700 (PDT)
Received: from ma1-aaemail-dr-lapp02.apple.com (ma1-aaemail-dr-lapp02.apple.com [17.171.2.68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4E9DB3A16AF for <masque@ietf.org>; Mon, 9 Mar 2020 13:24:00 -0700 (PDT)
Received: from pps.filterd (ma1-aaemail-dr-lapp02.apple.com [127.0.0.1]) by ma1-aaemail-dr-lapp02.apple.com (8.16.0.27/8.16.0.27) with SMTP id 029KJ0o8010543; Mon, 9 Mar 2020 13:23:55 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=sender : from : message-id : content-type : mime-version : subject : date : in-reply-to : cc : to : references; s=20180706; bh=UKYO4veOehBoE36c3IEat7RpgqJ/9QfnCnjAMPLJGgQ=; b=l+WQBtMmFp4lP+Ab5AqCFXdMoSahyMlMUBhdoPsrRAbFvtg5Mwmmkl62L+ldNk0Liyyo QBhbod0NnyFugu5Vm26khcBr2SXZzfvg36CJAs5lApLjZ52el9dum8lvk9t1O2dOZJEE DQhYo50itf8kp0qWzcqJY8mZWttDu6hsoqOiitxJzbry0mJQc8jDcwDl3DP+3EuM9GWv GYya8dzwP1cT0fkw5vzTjcgCov3o0d50riZWrAKEDFgiiXyeLVNkFipd7z6xG0NLLHqk IXE/JkDgiWK1S05z09AZrZmQk4YU8JnuI8qeni57dP1ALJMDP5/bXozn1uHgb9WyD52o Rg==
Received: from rn-mailsvcp-mta-lapp02.rno.apple.com (rn-mailsvcp-mta-lapp02.rno.apple.com [10.225.203.150]) by ma1-aaemail-dr-lapp02.apple.com with ESMTP id 2ym95vhpdr-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Mon, 09 Mar 2020 13:23:55 -0700
Received: from nwk-mmpp-sz13.apple.com (nwk-mmpp-sz13.apple.com [17.128.115.216]) by rn-mailsvcp-mta-lapp02.rno.apple.com (Oracle Communications Messaging Server 8.1.0.1.20190704 64bit (built Jul 4 2019)) with ESMTPS id <0Q6Y000ET0NVBE70@rn-mailsvcp-mta-lapp02.rno.apple.com>; Mon, 09 Mar 2020 13:23:55 -0700 (PDT)
Received: from process_milters-daemon.nwk-mmpp-sz13.apple.com by nwk-mmpp-sz13.apple.com (Oracle Communications Messaging Server 8.0.2.4.20190507 64bit (built May 7 2019)) id <0Q6Y00A000BABJ00@nwk-mmpp-sz13.apple.com>; Mon, 09 Mar 2020 13:23:55 -0700 (PDT)
X-Va-A:
X-Va-T-CD: 2a2baffeed3f0db9a002487c880ffa23
X-Va-E-CD: 7f50815faddd5da4260be1dd86327f7e
X-Va-R-CD: 4ba79b765e5b77679c3f3ab2e12b4f0a
X-Va-CD: 0
X-Va-ID: cd61acde-a607-47e2-a869-39bc2721a874
X-V-A:
X-V-T-CD: 2a2baffeed3f0db9a002487c880ffa23
X-V-E-CD: 7f50815faddd5da4260be1dd86327f7e
X-V-R-CD: 4ba79b765e5b77679c3f3ab2e12b4f0a
X-V-CD: 0
X-V-ID: 4f348bef-63cf-4373-aee6-232c09a1566b
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.572 definitions=2020-03-09_09:2020-03-09, 2020-03-09 signatures=0
Received: from [17.234.94.243] (unknown [17.234.94.243]) by nwk-mmpp-sz13.apple.com (Oracle Communications Messaging Server 8.0.2.4.20190507 64bit (built May 7 2019)) with ESMTPSA id <0Q6Y00L760NSRXA0@nwk-mmpp-sz13.apple.com>; Mon, 09 Mar 2020 13:23:54 -0700 (PDT)
Sender: ekinnear@apple.com
From: Eric Kinnear <ekinnear@apple.com>
Message-id: <8729DB93-D055-4565-B27D-24A0F9FDCDA1@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_77EF6486-5703-4B03-B39B-4EAEA4545BB9"
MIME-version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\))
Date: Mon, 09 Mar 2020 13:23:52 -0700
In-reply-to: <CAG0m4gR2rJ2YsV9w4XyZCvq2isGrSQZ9d1vqXNUXwzHe1WdUtQ@mail.gmail.com>
Cc: David Schinazi <dschinazi.ietf@gmail.com>, Eric Rescorla <ekr@rtfm.com>, MASQUE <masque@ietf.org>, Ben Schwartz <bemasc=40google.com@dmarc.ietf.org>, Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>, Lucas Pardue <lucaspardue.24.7@gmail.com>, Christopher Wood <caw@heapingbits.net>
To: Dragana Damjanovic <dragana.damjano@gmail.com>
References: <D46D764C-F682-472A-AFDA-32DDF5CA5F6B@heapingbits.net> <CABcZeBPMUNgOVWMS_sXPTsCU2R+EaK9JDuZsJQ5KSQROXE+4Sg@mail.gmail.com> <CAHbrMsAVXmyvqJKNzcmHOvM3NvPqhpfC9MuDEq9kNUBKe7=7=g@mail.gmail.com> <CAKKJt-etTk6CAqbL1MdSV6gdCgqC2Wz8cdUqbdzbM2h3LKAMhw@mail.gmail.com> <CAHbrMsDqgx7h+TRKLOgW+a3B3+TLWoRE9_DVBVhcKGRC3G=rog@mail.gmail.com> <CAG0m4gQh7=Gvx2_k53st+szAoj+96ef=OK5hqp8_zKSbKr091Q@mail.gmail.com> <CALGR9oaxe54kPPMpsMWuoMiKDznHoyhTLHwmxJeTXdu-zh_xUg@mail.gmail.com> <CAG0m4gT0vA4qMZ=XFJ8DpF8MW4ARugzbCcQU1mgV5BYeX+rA=w@mail.gmail.com> <CAPDSy+6zdJah6dAZgdN-9k84b-2+O3SJY6UjObVxPt22dn5fBQ@mail.gmail.com> <CAG0m4gR2rJ2YsV9w4XyZCvq2isGrSQZ9d1vqXNUXwzHe1WdUtQ@mail.gmail.com>
X-Mailer: Apple Mail (2.3608.80.23.2.2)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.572 definitions=2020-03-09_09:2020-03-09, 2020-03-09 signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/ijwE82MDnkQQcMa1_27SStIzf3Q>
Subject: Re: [Masque] Call for MASQUE use cases
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Mar 2020 20:24:08 -0000
Continuing the trend of use cases for this, we’ve got several in which we’d really like to have much better support for proxying of datagram flows, and MASQUE looks like it could be a really good start on a solution for those needs. Thanks, Eric > On Mar 7, 2020, at 4:51 AM, Dragana Damjanovic <dragana.damjano@gmail.com> wrote: > > > > On Fri, Mar 6, 2020 at 7:56 PM David Schinazi <dschinazi.ietf@gmail.com <mailto:dschinazi.ietf@gmail.com>> wrote: > Hi Dragana, > > What's your use-case where the client has a set of IP address literals but no hostname? > > > The client has both. > The idea was to use DoH to resolve host name. Send IP address to a proxy and use ESNI (or what ever the new name might be). in this way you do not reveal host names you are connecting to to the proxy. > > dragana > > David > > On Thu, Mar 5, 2020 at 10:00 PM Dragana Damjanovic <dragana.damjano@gmail.com <mailto:dragana.damjano@gmail.com>> wrote: > > > On Thu, Mar 5, 2020 at 3:19 PM Lucas Pardue <lucaspardue.24.7@gmail.com <mailto:lucaspardue.24.7@gmail.com>> wrote: > > > On Thu, Mar 5, 2020 at 2:05 PM Dragana Damjanovic <dragana.damjano@gmail.com <mailto:dragana.damjano@gmail.com>> wrote: > > I was looking into implementing sending an IP address in CONNECT request to a proxy instead of host name. It is not easy to figure out if connect should be retried with another IP address.. Having better error codes would be helpful. > > dragana > > That's an interesting case. IIUC correctly, your client might ask the proxy to use IPv6, which could fail, and your client might then try IPv4? > > > yes. That would be most common case. We may retry a different ip address, but I am actually not sure how often is something like this happening because it may have a long delay depending on the netowrk error(try PIv4 address 1 and if it fails tray IPv4 address 2) > > A failure such as this today would be communicated by returning an HTTP error status. Is there a gap that mean HTTP cannot be used to communicate the specific error condition you describe? > > no, I think you cannot be 100% sure, the error may mean multiple things. > > > Thinking about it more, maybe it would be better to send a list of IP addresses and let proxy chose one or do a happy-eyeballing for example. That would mean a CONNECT with list of IP addresses instead of one or a host name.. > > dragana > > > > > Cheers > Lucas > > > -- > Masque mailing list > Masque@ietf.org <mailto:Masque@ietf.org> > https://www.ietf.org/mailman/listinfo/masque <https://www.ietf.org/mailman/listinfo/masque> > -- > Masque mailing list > Masque@ietf.org > https://www.ietf.org/mailman/listinfo/masque
- [Masque] Call for MASQUE use cases Christopher Wood
- Re: [Masque] Call for MASQUE use cases Eric Rescorla
- Re: [Masque] Call for MASQUE use cases Ben Schwartz
- Re: [Masque] Call for MASQUE use cases Spencer Dawkins at IETF
- Re: [Masque] Call for MASQUE use cases Ted Hardie
- Re: [Masque] Call for MASQUE use cases Spencer Dawkins at IETF
- Re: [Masque] Call for MASQUE use cases Ben Schwartz
- Re: [Masque] Call for MASQUE use cases Spencer Dawkins at IETF
- [Masque] TCP-CONNECT errors in H2 & H3 was Re: Ca… Lucas Pardue
- Re: [Masque] Call for MASQUE use cases Dallas McCall
- Re: [Masque] Call for MASQUE use cases Border, John
- Re: [Masque] Call for MASQUE use cases Ben Schwartz
- Re: [Masque] Call for MASQUE use cases Maxime Piraux
- Re: [Masque] Call for MASQUE use cases Dragana Damjanovic
- Re: [Masque] Call for MASQUE use cases Lucas Pardue
- Re: [Masque] Call for MASQUE use cases Dragana Damjanovic
- Re: [Masque] Call for MASQUE use cases David Schinazi
- Re: [Masque] Call for MASQUE use cases Dragana Damjanovic
- Re: [Masque] Call for MASQUE use cases Eric Kinnear
- Re: [Masque] Call for MASQUE use cases Mirja Kuehlewind