In the general case, you can't do anything with those bits for the same practical reason why we can't decide to allow QDCOUNT > 1. Too many existing servers expect that those bits can never be validly non-zero and will have unpredictable behavior. It's already out-of-our-control ossified.
If we could do something with those bits (but we unfortunately can't), my recommendation would be to use them to allow QDCOUNT > 1. :P On Wed, Jul 26, 2023 at 7:32 PM Mark Andrews <ma...@isc.org> wrote: > > > > On 27 Jul 2023, at 09:20, Brian Dickson <brian.peter.dick...@gmail.com> > wrote: > > > > > > > > On Wed, Jul 26, 2023 at 4:12 PM George Michaelson <g...@algebras.org> > wrote: > > if QDCOUNT is defined as [0|1] then we have 15 new bits of freedom in > > the header. > > > > What would be interesting uses of the flow-label? Oh wait.. that's > > right, nobody really knows at scale how to use flow-label either. > > > > I tend to "use it for 15 bits of signalling" because there are a lot > > of things I wish were signalled from client to server. > > > > "I am new code" > > "I am at least not ancient code" > > "I'm the same as that other guy you saw over <there>" > > "I like TCP and want to do a persisting session" > > "tell me if you are doing a|b|c|d" > > "I like chocolate and want a pony" > > > > maybe the truth is, we've got 15 bits of zero in the header forever, > amen. > > > > (I deliberately didn't put this in the draft- post from Ray so as not > > to pollute an objective discussion of what it is or is not the value > > proposition) > > > > clue-stick hits welcome. Avoid the stomach. > > > > 15 bits of entropy would maybe be a good use, particularly for short > QNAMEs (and with QNAME minimization, that definitely applies to root and > TLD queries). > > That would augment or compensate for fewer bits available for 0x20 > entropy. > > Or root and TLD servers could just deploy DNS COOKIE. There is no reason > for them not to deploy > DNS COOKIE today other than vendors not implementing it. Time for vendors > to pull their fingers > out. > > DNS COOKIE is standards track. It is a security fix. Deploy it. > > > > > Brian > > _______________________________________________ > > DNSOP mailing list > > DNSOP@ietf.org > > https://www.ietf.org/mailman/listinfo/dnsop > > > -- > Mark Andrews, ISC > 1 Seymour St., Dundas Valley, NSW 2117, Australia > PHONE: +61 2 9871 4742 <+61%202%209871%204742> INTERNET: > ma...@isc.org > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop >
_______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
