-
Notifications
You must be signed in to change notification settings - Fork 47
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Define blip-0032, DNSSEC proof querying over onion messages
- Loading branch information
1 parent
b273c85
commit 9f108e4
Showing
2 changed files
with
134 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,123 @@ | ||
``` | ||
bLIP: 32 | ||
Title: Onion Message DNS Resolution | ||
Status: Active | ||
Author: Matt Corallo <blmmesg@bluematt.me> | ||
Created: 2024-02-10 | ||
License: CC0 | ||
``` | ||
|
||
## Abstract | ||
|
||
This bLIP defines a simple protocol by which a node can request a DNSSEC proof of TXT records at a | ||
given domain in the global DNS. | ||
|
||
## Copyright | ||
|
||
This bLIP is licensed under the CC0 license. | ||
|
||
## Specification | ||
|
||
Two new onion messages are defined, `dnssec_query` and `dnssec_proof`. | ||
|
||
1. type: 65536 (`dnssec_query`) | ||
2. data: | ||
* [`u8`:`domain_name_len`] | ||
* [`domain_name_len*byte`:`domain_name`] | ||
|
||
1. type: 65538 (`dnssec_proof`) | ||
2. data: | ||
* [`u8`:`domain_name_len`] | ||
* [`domain_name_len*byte`:`domain_name`] | ||
* [`u16`:`proof_len`] | ||
* [`proof_len*byte`:`proof`] | ||
|
||
Nodes which accept and reply to `dnssec_query`-containing onion messages from any sender: | ||
* SHOULD set the `dns_query` feature flag in their `node_announcement`. | ||
|
||
Senders of a `dnssec_query`-containing onion message: | ||
* MUST set `reply_path` in the `onionmsg_tlv` stream. | ||
* MUST set `domain_name` to a canonical DNS name, i.e. it MUST be entirely printable ASCII and | ||
MUST end in a ".". | ||
|
||
Recipients of a `dnssec_query`-containing onion message: | ||
* SHOULD attempt to resolve the given `domain_name` into a TXT record response, considering any | ||
relevant CNAME or DNAME records. | ||
* MAY (but certainly are not required to) validate the required DNSSEC signatures required to | ||
validate the query responses. | ||
* SHOULD attempt to resolve the given `domain_name` into an RFC 9102-formatted DNSSEC proof (a | ||
concatenated series of `AuthenticationChain` records, not including the `ExtSupportLifetime` | ||
field at the start of a `DnssecChainExtension`). | ||
* SHOULD return the RFC 9102-formatted DNSSEC proof proving the resulting TXT records in a | ||
`dnssec_proof`-containing onion message to the sender using the provided `reply_path`. | ||
|
||
Senders of a `dnssec_proof`-containing onion message: | ||
* MUST set the `domain_name` to the `domain_name` included in the `dnssec_query`-containing onion | ||
message being responded to. | ||
|
||
Recipients of a `dnssec_proof`-containing onion message: | ||
* MUST validate all DNSSEC signatures to ensure any contained records are signed in an unbroken | ||
chain from the DNSSEC root trust anchor. | ||
* MUST NOT rely on any signatures which rely on SHA-1 or RSA keys shorter than 1024 bits but MAY | ||
accept SHA-1 DS records. | ||
* MUST validate the inception and expiration timestamps of all signatures in the proof. | ||
|
||
## Discussion | ||
|
||
When resolving DNS-based payment instructions, lightning payers wish to resolve DNS names to TXT | ||
records (and associated DNSSEC proofs) in a private way. This bLIP defines a protocol by which | ||
payers can do so utilizing lightning's built-in onion messages, avoiding introducing any | ||
dependencies on native DNS resolution or directly-connected public DNS resolvers. | ||
|
||
### Overall Lightning Name Resolution Protocol | ||
|
||
The overall DNS-based lightning payment instruction resolution protocol is broken across three | ||
separate documents as parts are relevant to different stakeholders. | ||
|
||
First of all, the DNSSEC name resolution is defined in a BIP as it is generic across Bitcoin | ||
payment instructions. A current draft may be found at | ||
<https://github.com/TheBlueMatt/bips/blob/2024-02-dns-payment-instructions/bip-XXXX.mediawiki>. | ||
|
||
Secondly, this document describes a method of fetching DNSSEC proofs without existing the | ||
lightning network. | ||
|
||
Finally, the BOLTs define onion messages containing `offer_request`s or `offer_response`s to lookup | ||
offers over onion messages. | ||
|
||
#### Payer Protocol | ||
|
||
A payer wishing to use these protocols to pay human-readable `user`-`domain` pairs first needs to | ||
be configured with resolver(s) implementing this bLIP. The payer could alternatively find such | ||
nodes by searching the lightning gossip network for nodes announcing the `dns_resolver` feature. | ||
|
||
To look up payment instructions given a `user`, `domain` pair, a payer sends their configured | ||
resolver a `dnssec_query`-containing onion message with a `domain_name` of | ||
`user`.user._bitcoin-payment.`domain`. | ||
|
||
Upon receipt of the responding `dnssec_proof` the payer validates the `proof` against the DNSSEC | ||
root trust anchor and if it passes parses any TXT records which | ||
`user`.user._bitcoin-payment.`domain` resolves to as a `bitcoin:` URI. | ||
|
||
From there, a lightning payer will search for (case-insensitive) `b12` or `omlookup` query | ||
parameters in the resulting URI. If it finds a `b12` query parameter, its value should contain a | ||
full offer, which the payer can simply pay. | ||
|
||
If the payer identifies an `omlookup` query parameter in the resolved URI instead, it will send an | ||
`offer_request`-containing onion message to the blinded path provided in the `omlookup` query | ||
parameter value. Upon receiving the `offer_response`-containing onion message response, the payer | ||
will have a BOLT12 offer which they can pay as normal. | ||
|
||
#### Recipient Configuration | ||
|
||
Recipient configuration is quite straightforward. For a recipient owning their own domain with a | ||
personal offer, they simply add a TXT record at `user`.user._bitcoin-payment.`domain` with the | ||
contents `bitcoin:?b12=OFFER`. | ||
|
||
Alternatively, for recipients which do not wish to publish a unique offer for all possible payees, | ||
a wildcard record may be provisioned as *.user._bitcoin-payment.`domain` with the contents | ||
`bitcoin:?omlookup=hex_encoded_blinded_path`. The node receiving onion messages at the given | ||
blinded path is then expected to respond to `offer_request`-containing onion messages with | ||
`offer_response`-containing onion messages. | ||
|
||
## Reference Implementation | ||
* LDK-based resolver: <https://git.bitcoin.ninja/index.cgi?p=lightning-resolver;a=summary> |