Re: [Ohttp] Discovery (no)
Andrew Campling <andrew.campling@419.consulting> Tue, 27 July 2021 15:13 UTC
Return-Path: <andrew.campling@419.consulting>
X-Original-To: ohttp@ietfa.amsl.com
Delivered-To: ohttp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 81F343A09BA for <ohttp@ietfa.amsl.com>; Tue, 27 Jul 2021 08:13:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=netorgft5189650.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oOzxG3C8BXhR for <ohttp@ietfa.amsl.com>; Tue, 27 Jul 2021 08:13:15 -0700 (PDT)
Received: from GBR01-CWL-obe.outbound.protection.outlook.com (mail-eopbgr110085.outbound.protection.outlook.com [40.107.11.85]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A83ED3A09A3 for <ohttp@ietf.org>; Tue, 27 Jul 2021 08:13:13 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=mVeRkzqbbQDu8izOEJ+sDshHOOPFnPkgBhUOnwpRB5TsRO/DEjGjpiPPn6yWJl4tgRXF/qKAFYVGla5b2ep9D4sZwhixzofNVhTFfX1ygN46c6pV2hFBdFewxXcF2RL++R7RlFzdvVMocLACPDNIMLHxTDMLf9u0QpyXpo+bvHzcyieyVWgKQc4RhSvBMcwW1DIMp/6zjQedbzp/ozfWf9Ck8gWxQQ9hgUPC1jtVDUMLKsZ6ddlMejk/akYWKRx89ozauTmPyEDpOs0iv5sMZ0jmdtOP4dQjv8K5Pzafh4MbFwBpI/hHp1shuemfoVe/t+/Gcrk4zkao0iNeM7MPkQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=6zrnXJ33hEGIuVAF1kbUTaXrMKrf6j/f+LetLwutkcA=; b=nGUQ1MCGk2ZGqjDeksiRrcxPe9VnbxB1sbJabx740Netr0uFoPLI/eYh7xJwg9ldT0i+xsehTGjw4xf1xykLGWUcG7GHzZ9qF+zrHERMgwL34mSJoCtovYNDuoRoLBgojxicVEa3J7kPgrGjtn4Z2NKw0VGCghBp08ivj4ozuB0Qy46aXkNCiFECaPw+xfS7G+vXLEs+JB2L9pJNejsyQetjt0jFi5TbmJw83PiWjeZOrXLqqiiRkXzUomrCnhz95Qg4yO9Zh2stl+MiK61Fj4oGyOhwsTo5TdDZ5MjuGhEJuOsOMmUCOPdOy26/vmTpKEHm1uFuHGfqeaW7xRYU+Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=419.consulting; dmarc=pass action=none header.from=419.consulting; dkim=pass header.d=419.consulting; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=NETORGFT5189650.onmicrosoft.com; s=selector1-NETORGFT5189650-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=6zrnXJ33hEGIuVAF1kbUTaXrMKrf6j/f+LetLwutkcA=; b=QWN2zmfi8WXsYHKKng9McSun8bsTNG76tkuNjx/L/IOO497L689mlCyEWQMsWs81PbmR5+U14E35jlYvR6GCNUcMSN34ju4s4RDsPbfAog/pLQ7xK+lBxLpOCTEjzMn1q7qAoku7bituBbBS7zZfKNEnkRKlG2zKsrKiLScoLjE=
Received: from LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:67::18) by LOYP265MB1936.GBRP265.PROD.OUTLOOK.COM (2603:10a6:600:119::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4352.28; Tue, 27 Jul 2021 15:13:11 +0000
Received: from LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM ([fe80::cc51:70f0:c6ab:c8f7]) by LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM ([fe80::cc51:70f0:c6ab:c8f7%3]) with mapi id 15.20.4352.031; Tue, 27 Jul 2021 15:13:11 +0000
From: Andrew Campling <andrew.campling@419.consulting>
To: Thomas Mangin <thomas.mangin@exa.net.uk>, Eric Rescorla <ekr@rtfm.com>
CC: Christopher Wood <caw@heapingbits.net>, "ohttp@ietf.org" <ohttp@ietf.org>
Thread-Topic: [Ohttp] Discovery (no)
Thread-Index: AQHXgt4iQ8gidHZ0G0C8vJ35G54No6tW6q2w
Date: Tue, 27 Jul 2021 15:13:11 +0000
Message-ID: <LO2P265MB0399D2CBC8855EBB0FA28571C2E99@LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM>
References: <CAEm8Q12LUx42gYODFVBpLUd0UbwfAvfScDC5Wnm+jsmaB6osQQ@mail.gmail.com> <3cb3ea05-57d8-4db2-9bdb-78cf8d8cf4c5@www.fastmail.com> <CAEm8Q12MegnasLOOEcCVLkZ_gW9E2JXx9hoWF1hFm+4dcwfXyw@mail.gmail.com> <CABcZeBMMh6rOymV9QB7sgCB33PD91im94nNR1h2gBo7fmEriRQ@mail.gmail.com> <CAEm8Q10PnoCEzUZb4mh7XBkz4T4ZeVoeyR_jx7u2VdG9SpUYLg@mail.gmail.com> <CABcZeBN_NZHXTBfRc9tGKArx71_xXogVHC0Any+0Vs9C626iYQ@mail.gmail.com> <CAEm8Q11wzXNBZzgy3eiU88sg15FPVD2br=v8nVH2YkrRynE66A@mail.gmail.com>
In-Reply-To: <CAEm8Q11wzXNBZzgy3eiU88sg15FPVD2br=v8nVH2YkrRynE66A@mail.gmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: exa.net.uk; dkim=none (message not signed) header.d=none;exa.net.uk; dmarc=none action=none header.from=419.consulting;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: bc856438-2bfb-4a7b-dfd8-08d951110c5f
x-ms-traffictypediagnostic: LOYP265MB1936:
x-microsoft-antispam-prvs: <LOYP265MB1936423042DFE9FA8636FB56C2E99@LOYP265MB1936.GBRP265.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:6790;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(39830400003)(376002)(366004)(136003)(396003)(346002)(4326008)(66476007)(53546011)(66446008)(66946007)(9686003)(186003)(6506007)(8676002)(122000001)(71200400001)(83380400001)(52536014)(5660300002)(2906002)(8936002)(86362001)(76116006)(33656002)(7696005)(38100700002)(44832011)(54906003)(478600001)(316002)(64756008)(110136005)(66556008)(26005)(55016002)(46492011)(38070700004); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_LO2P265MB0399D2CBC8855EBB0FA28571C2E99LO2P265MB0399GBRP_"
MIME-Version: 1.0
X-OriginatorOrg: 419.consulting
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: LO2P265MB0399.GBRP265.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: bc856438-2bfb-4a7b-dfd8-08d951110c5f
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Jul 2021 15:13:11.2819 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9c2ced3e-7522-4755-87dc-f983abc66ec3
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: gTztdwjWN0stsYSjRhPJMTIXBAhn3yIZq9UpZD+QeOMl8GmvS1dcQXYgZceD5NOm7eL1cKEKw5xJF6msAqW9EJoffbgZcY61DWa+7Ec++64=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LOYP265MB1936
Archived-At: <https://mailarchive.ietf.org/arch/msg/ohttp/pEbfeEFm0QR7eLlkRtUdDpgx8cM>
Subject: Re: [Ohttp] Discovery (no)
X-BeenThere: ohttp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Oblivious HTTP <ohttp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ohttp>, <mailto:ohttp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ohttp/>
List-Post: <mailto:ohttp@ietf.org>
List-Help: <mailto:ohttp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ohttp>, <mailto:ohttp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Jul 2021 15:13:22 -0000
On Mon, Jul 26, 2021 at 21:07 Thomas Mangin <thomas.mangin@exa.net.uk<mailto:thomas.mangin@exa.net.uk>> wrote: > > I feel we will have to agree to disagree: if developers can not create two interoperable implementations from a draft/RFC alone, this is not a complete document. They *can* create an interoperable implementation. The entities that interoperate are (a) the client/origin-server and (b) the proxy. It's just that the client/origin server are in two pieces. But that's no more a problem than that in order to do QUIC you need a QUIC stack and a UDP stack but there's not really a standardized interface that goes between them. > > With the same argument, the port could/should be left out of HTTP RFC. You can make interoperable implementations without it, you just need to agree the port outside the RFC. I fail to see your QUIC parallel, I had no issue with the QUIC drafts but I its has been well over a year since I read a draft and I have not read the published RFC. Also there is quite a few "end-to-end" OSS QUIC implementations where developers were able to create QUIC clients and servers. I can not implement a OHTTP stack and make it work with anyone, without out-of-draft discussion. > > But again, I feel that it does no matter on long we discuss this on the ML, we will probably not agree. That said, the draft encoding and components description is very good and clear and I can see no issue with it. I agree that discovery is a necessary part of the development of this protocol: if we rely on unspecified, out-of-band methods for proxies to be determined then we are open to collusion between parties, with associated loss of any privacy protections, as well as risk of further centralisation. In my view, the WG should commit to documenting a fair, open discovery mechanism for proxies that is published alongside the main protocol. No doubt this will come up in the BOF discussion later today. Andrew
- [Ohttp] Discovery (no) Thomas Mangin
- Re: [Ohttp] Discovery (no) Christopher Wood
- Re: [Ohttp] Discovery (no) Thomas Mangin
- Re: [Ohttp] Discovery (no) Eric Rescorla
- Re: [Ohttp] Discovery (no) Thomas Mangin
- Re: [Ohttp] Discovery (no) Eric Rescorla
- Re: [Ohttp] Discovery (no) Thomas Mangin
- Re: [Ohttp] Discovery (no) Andrew Campling
- Re: [Ohttp] Discovery (no) Alissa Cooper
- Re: [Ohttp] Discovery (no) Eric Rescorla
- Re: [Ohttp] Discovery (no) Andrew Campling