Update SVCB by DesWurstes · Pull Request #1341 · miekg/dns

DesWurstes · 2022-02-20T19:46:27Z

The only breaking change worth mentioning is renaming SVCB_ECHCONFIG to SVCB_ECH. We can avoid this and use its legacy name internally if you wish.

I had chosen ( #1067 (comment) ) to forbid IPv4 addresses in ipv6hint to be consistent with the rest of the library. I don't know why ( MikeBishop/dns-alt-svc#361 ) but the SVCB spec requires otherwise.

@miekg @tmthrgd Would you like to review?

miekg · 2022-02-21T09:57:19Z

Breaking changes in this record I fine, it's still draft IIRC

I had chosen ( #1067 (comment) ) to forbid IPv4 addresses in ipv6hint to be consistent with the rest of the library. I don't know why ( MikeBishop/dns-alt-svc#361 ) but the SVCB spec requires otherwise.

That sgtm, internal consistency is a good thing to have

miekg · 2022-02-21T10:03:57Z

+//
+// It is incumbent upon the user of this library to reject the RRSet if
+// or avoid constructing such an RRSet that:
+// - "mandatory" is included as one of the keys of mandatory


if you want this to make a list in godoc you need empty lines before and after. Maybe just make this more prose?

I can't turn this list into a paragraph; it would be unreadable.

miekg · 2022-02-21T10:13:30Z

-type SVCBECHConfig struct {
-	ECH []byte
+type SVCBECH struct {
+	ECHConfigList []byte // includes the redundant length prefix


this is too long. Just Config? What does the draft use?

The draft uses ECHConfigList which is taken from the RFC draft of ECH/ESNI. Makes sense to keep the original name so that an ESNI dev can easily see what this represents.

#1067 (comment) and MikeBishop/dns-alt-svc#361

DesWurstes · 2022-02-21T18:47:19Z

@miekg Many thanks for your review. I have addresses your comments except "if you want this to make a list in godoc you need empty lines before and after. Maybe just make this more prose?" because I don't know how to turn this into a paragraph without making it unreadable.

I had chosen ( #1067 (comment) ) to forbid IPv4 addresses in ipv6hint to be consistent with the rest of the library. I don't know why ( MikeBishop/dns-alt-svc#361 ) but the SVCB spec requires otherwise.

That sgtm, internal consistency is a good thing to have

On the SVCB side, they decided to update their example, after which I updated the relevant code here. How this library treats IPv6-IPv4 subtypes is now SVCB-compliant and self-consistent.

tmthrgd

Most of the change is fine, but I really don't think we can or should make backwards incompatible changes. Nothing here was marked as WIP or anything. Considering the name changes don't have any actual impact on the code, I think they should be left as-is regardless of whether that differs from the draft spec or not. I'm fine with the other changes though.

DesWurstes · 2022-03-12T10:22:27Z

Thanks for the review. I addressed the issues.

tmthrgd

LGTM.

DesWurstes · 2022-03-20T10:20:29Z

Hello again @miekg . I have been impatiently waiting for Cloudflare to implement ECH over SVCB so it would be great if we could get this merged unless further reviews are planned. Many thanks.

DesWurstes · 2022-04-01T12:31:00Z

👍thank you

* Rename ECH, bump draft number * AliasForm new treatment * alpn is no longer mandatory by default * Document the non-empty value requirement * new test cases * more test cases * Continue forbidding v4-map-v6 but not v4-embed-v6 miekg#1067 (comment) and MikeBishop/dns-alt-svc#361 * Update documentation * revert rename ech * Reword AliasMode with key=value pairs

DesWurstes added 6 commits February 20, 2022 16:54

Rename ECH, bump draft number

abf0999

AliasForm new treatment

2241748

alpn is no longer mandatory by default

6f736b7

Document the non-empty value requirement

f0320fc

new test cases

0858508

more test cases

330adef

DesWurstes requested review from miekg and tmthrgd as code owners February 20, 2022 19:46