IETF Logo Mail Archive

[regext] RDAP versioning - on client-server interactions and 2-RTT flow

Pawel Kowalik <kowalik@denic.de> Thu, 21 November 2024 17:19 UTC

Return-Path: <kowalik@denic.de>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9E4ADC14F6BF for <regext@ietfa.amsl.com>; Thu, 21 Nov 2024 09:19:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=denic.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5zwlabgV8X0S for <regext@ietfa.amsl.com>; Thu, 21 Nov 2024 09:19:01 -0800 (PST)
Received: from mout-b-110.mailbox.org (mout-b-110.mailbox.org [195.10.208.55]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 47E6DC14F6A5 for <regext@ietf.org>; Thu, 21 Nov 2024 09:19:01 -0800 (PST)
Received: from smtp2.mailbox.org (smtp2.mailbox.org [IPv6:2001:67c:2050:b231:465::2]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by mout-b-110.mailbox.org (Postfix) with ESMTPS id 4XvQ1r62nyz9xN8 for <regext@ietf.org>; Thu, 21 Nov 2024 18:18:56 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=denic.de; s=MBO0001; t=1732209536; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type:autocrypt:autocrypt; bh=Bw6luObgkGSy2h/D8hkR1/p+W7xTYFkA3/gKJ0sFRME=; b=KXr/kS1MCD5MAJONcrLHhRPiqX8IQtZU2u8FGcMqWv3ijnSZA/v8Mfvjg/5Ndu0+Ha/asa KW0D0R4DxfLJZ96BtJqL064BYMIllmm2U4CgEuqRRhEeHj+hQ1+105+m/Mhg6LocZ6VYsf 7shUVQJhyzHe5YKa29Wm8zvE3HitmI3rhJ4rxlmrITJ3UgPKXkLkKPZvMqBoBvzksgK9ID fgu5oRbrUxvbreM/pdqHzwMktg9O98AyopoCM7xrZbU797C0+SFNYHMavkqysp+jeC09P9 kZXh5POO+UuXLo5sGCVFYX9Kef+KiiC/otBb0JbhCx8POyvSJmIe6+qsFjJPGw==
Message-ID: <10ba3faa-8bf7-4202-81bf-e2c99473c3db@denic.de>
Date: Thu, 21 Nov 2024 18:18:55 +0100
MIME-Version: 1.0
Content-Language: en-GB, de-DE
From: Pawel Kowalik <kowalik@denic.de>
Autocrypt: addr=kowalik@denic.de; keydata= xsDNBGS6YiUBDAC6OuRjaAjq7D3yac4fn+p+aO40T1UedFRg5Dq1yzjLJsfi+N4Nkz6hQzrD HzhCckV+yKCiCd4JabPcb/tOiRTqFbtuPdUBfWwVmSXvgs8AWNz/9kGFNcnQvke+wNYjWNoF JFfO8EI4nAAX+2Klec9+nd3+bOjUST4cNzfq9RBGaAKKLleeRIQTbsJBAful1hehSisO43GA R5mqE9zjaxRCGPexyLScbQG2MK8fB8rGNT20E1Cg6gNUOl5iK//4LgF5SUTg0oOva5Baq+g1 2D8u79kt/qxVsOvuHSq851D9+HjP3n0gA8cxExRQzBplCgtdGanqXhr0PHRGCl06uupVByzv yAOhokdoYqW2PLvyBi/1BVnfmIxJLexCIieNJFtgq8YXWa/aJR/xR0N/CAnbDwwF4DBtGN04 3q+qxzPLkLuj76FkxFP4mDn/dMgZ1LELh1wnnH/jP5rGf5xEKdQnjSusPcGKgfVR+y9uiLYW fNkra5tOfASxxz4ptd8SpOMAEQEAAc0gUGF3ZWwgS293YWxpayA8a293YWxpa0BkZW5pYy5k ZT7CwQ0EEwEIADcWIQRi0SqEkOTwxzszEDertiEV97zbBAUCZLpiJgUJBaOagAIbAwQLCQgH BRUICQoLBRYCAwEAAAoJEKu2IRX3vNsERLwL/idQ8KdvSGO6Ie5NejBhV0dMMXDoXnPCKNE4 6YKhZxh5DNqC7xI6CezvfpZJUJnScqHyCYkR6973Ny2ZxSfJmYkPQX03QVFp0dvv5v1stXk3 plcIwcVPwfu0QN1DUxFEoyrVVVng4lKx9fDSCI6M4t1MOTTXsP+j5Gitid8XxK5MxwJK5yqZ nttA8NRpVkxsWj6FQ7pfrEarDwzdT6RDxKexODVeka+Ne/ykkxdu3Dj+kLDlnmAg/7nUmRgu ZnRxkETjzcnjp0/vVR+M96r0FArImUapK0Nd5uehpvDHHTVMRRg2YF7kiNERg22n3J44RNpp koq4S76aMckY47XFu4znzdLPtTvX3o3abTmnADsA77wAakCHFPfy4TqWO0c92575yhUaflfZ FqBaH3NbfijxKSArWU+sZteYqOQJ0Td6fbkzRNBueKQPa+HJ3uZT48/06QaVayzxsImgcnm7 Nl9mIuhP0w2mdtGXjiOL5RczFKVt9qEXR0OkMDrXzgychc7AzQRkumImAQwA2m1PZFBB77yV yJQHzENOhWypvNJTvnvz0727isuMnQ2r0zmvGG2oOYP7nCnrT9bnntfv2SaD8W+ZJmpVj7fq VzPaGk6cj7f0vGUwfp34T7nz+YbjeQnnSXUcoAv0COELC8GQwgBKraJGlKziB7k721e/q3yo XxyEY/wzN0juAz3sLeSd4c5kJqQwggAWqRMf3JKrb3a6hDErhWiDBPg0UzK/hvUNrHv0AqYT iXsVutDrFjvfv2B71F+3FCWYk6LZgRe8gbs2/EHZXkEfXeJZSmoeWZqNY2YpoDZIqstEOK2S KQrTRiqp8KSwkYc6Qm3aqqw9pl+3sSzOGbEnqu00+ejPH/nENWsHZM7iPUsLZ8aWvdclZqYO mO9UBuQy6XVnPt1hAuoYRB83F+hHanDF/zVWscDHyvtbmoB1+ftOkzMlzpmRilibZcyF8MxF 9xAd4UnPkRBNnltS8+NJw9+PJKaseODcx65OtkfFXntxvQ5p01ctn+czxbhzxEH1CYVpABEB AAHCwPwEGAEIACYWIQRi0SqEkOTwxzszEDertiEV97zbBAUCZLpiJwUJBaOagAIbDAAKCRCr tiEV97zbBJgQC/9FelFqki7xUi7MaGq0wSfG7JQKQ4c4RH+igxedEOHIvFXIncpVjqwj3UVV tPe874O6kmofmHlHIdSDWlPQrgdPOTT2/ISihmOtEwXQFLwrUXOTRwunCgMffYZFFRvPFVng uHFQQSQbLjuhkvj+tykgv23b0It4LeaBic7bv43zsOjkxgiWumKMFYE0Qrfjf0DbH1SXt7Mq RICBc2GHiprCDf5sb8Qi033bW53N7ouEg/ScbY+Gn5/AiI0KPu+4LEPV7J2WK0wYgzINIGdY xXaow91CVwKvC3rmo+9fyly/RfgRckvAYGIMswlVsVS91eIQnqeCO+Q4lwXgO7d32ug7SmPd Nq8pHbTpD0L+qkJvQRri7Oi5wpmNrofMxfG6+MyGaiTvGZospWuX6IrS66NXpq+w/VDEh/Vu k0YF30H6G/1W0XH+HH8EGTJlazkOEdDxGabL8P1fxKL4ei7Yp09ngqo+616EiVPKeJiGRmgz KvbZWMgDyLwkuN9Nr7DobZs=
To: "regext@ietf.org" <regext@ietf.org>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------ae97HpJZIqC114VRLd2g2S5S"
X-MBO-RS-ID: cdb83aac16c8338f2a6
X-MBO-RS-META: j5qxuzft1yub6d8fnygo19g7r5x65y9w
Message-ID-Hash: KMIPM34TAPMULULYZVDAE2VOP3FCNBIF
X-Message-ID-Hash: KMIPM34TAPMULULYZVDAE2VOP3FCNBIF
X-MailFrom: kowalik@denic.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-regext.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [regext] RDAP versioning - on client-server interactions and 2-RTT flow
List-Id: Registration Protocols Extensions Working Group <regext.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/-NEA6bgIeA_225vIO-41_BFLNy0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Owner: <mailto:regext-owner@ietf.org>
List-Post: <mailto:regext@ietf.org>
List-Subscribe: <mailto:regext-join@ietf.org>
List-Unsubscribe: <mailto:regext-leave@ietf.org>

Hi,

Thinking of interactions between the client and server that versioning 
draft assumes I think we are heading towards 2-RTT model for every request.

Step 1: The client makes an HTTP GET request to the /help endpoint of 
the RDAP server.
Step 2: The response is processed to extract rdapConformance and versioning.
Step 3: Compare the server's supported extensions and versions with 
those supported by the client.
Step 4: If compatible configurations are found, the client makes target 
request to a resource endpoint (e.g., domain/foo.com) using headers or 
query parameters to specify the desired configuration.

So we have 2 full RTTs. Of course a client can cache it for some time 
but not forever, as the server may change at any time its configuration. 
In a cold state or a client without capability to cache this will be 
always 2-RTT if the client would like to be aware of the versions.

I don't think this is in line with rfc7480, which assumes "a client 
implementation should be possible using common operating system 
scripting tools (e.g., bash and wget)". Also not with the usage pattern 
defined in Section 1. None of it is normative, however I would not just 
ignore it without discussing consequences of going this way.

I would like to see more that versioning draft would assume 1-RTT model 
as a primary use-case, so that the client would put a range of versions 
it supports into a request and the server would put best efforts to 
fulfil it. This would be also more "redirect friendly", so that a 
redirected request to another server (no matter if with query parameters 
or headers) would have the same information about client capabilities 
and able to serve the response as opposed to getting a request for 
configuration crafted for the origin server of a redirect.

Kind Regards,

Pawel

v2.31.3 | Report a Bug | By Email | System Status