Re: [dns-privacy] a qname minimization algorithm
Tony Finch <dot@dotat.at> Thu, 20 March 2014 17:41 UTC
Return-Path: <fanf2@hermes.cam.ac.uk>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C1091A0700 for <dns-privacy@ietfa.amsl.com>; Thu, 20 Mar 2014 10:41:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.447
X-Spam-Level:
X-Spam-Status: No, score=-2.447 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.547] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xt3khb1qZu90 for <dns-privacy@ietfa.amsl.com>; Thu, 20 Mar 2014 10:41:14 -0700 (PDT)
Received: from ppsw-40.csi.cam.ac.uk (ppsw-40-v6.csi.cam.ac.uk [IPv6:2001:630:212:8::e:f40]) by ietfa.amsl.com (Postfix) with ESMTP id 89B8C1A0790 for <dns-privacy@ietf.org>; Thu, 20 Mar 2014 10:41:14 -0700 (PDT)
X-Cam-AntiVirus: no malware found
X-Cam-ScannerInfo: http://www.cam.ac.uk/cs/email/scanner/
Received: from hermes-1.csi.cam.ac.uk ([131.111.8.51]:44729) by ppsw-40.csi.cam.ac.uk (smtp.hermes.cam.ac.uk [131.111.8.156]:25) with esmtpa (EXTERNAL:fanf2) id 1WQgxk-0001TD-lm (Exim 4.82_3-c0e5623) for dns-privacy@ietf.org (return-path <fanf2@hermes.cam.ac.uk>); Thu, 20 Mar 2014 17:41:04 +0000
Received: from fanf2 by hermes-1.csi.cam.ac.uk (hermes.cam.ac.uk) with local id 1WQgxk-0004RK-Nf (Exim 4.72) for dns-privacy@ietf.org (return-path <fanf2@hermes.cam.ac.uk>); Thu, 20 Mar 2014 17:41:04 +0000
Date: Thu, 20 Mar 2014 17:41:04 +0000
From: Tony Finch <dot@dotat.at>
X-X-Sender: fanf2@hermes-1.csi.cam.ac.uk
To: dns-privacy@ietf.org
In-Reply-To: <20140320103354.GA14856@nic.fr>
Message-ID: <alpine.LSU.2.00.1403201734200.31260@hermes-1.csi.cam.ac.uk>
References: <20140320103354.GA14856@nic.fr>
User-Agent: Alpine 2.00 (LSU 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
Sender: Tony Finch <fanf2@hermes.cam.ac.uk>
Archived-At: http://mailarchive.ietf.org/arch/msg/dns-privacy/gAgGx9Zz6W0OfyRdJ0Rx7xxmHDg
Subject: Re: [dns-privacy] a qname minimization algorithm
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Mar 2014 17:41:16 -0000
Stephane doesn't like this because it is too specific, but I thought it would be useful to have something concrete to discuss... (0) If the query can be answered from the cache, do so, otherwise iterate as follows: (1) Find closest enclosing NS RRset in your cache. The owner of this NS RRset will be a suffix of the QNAME - the longest suffix of any NS RRset in the cache. Call this PARENT. (2) Initialize CHILD to the same as PARENT. (3) If CHILD is the same as the QNAME, resolve the original query using PARENT's name servers, and finish. (4) Otherwise, add a label from the QNAME to the start of CHILD. (5) If you have a negative cache entry for the NS RRset at CHILD, go back to step 3. (6) Query for CHILD IN NS using PARENT's name servers. The response can be: (6a) A referral. Cache the NS RRset from the authority section and go back to step 1. (6b) An authoritative answer. Cache the NS RRset from the answer section and go back to step 1. (6c) An NXDOMAIN answer. Return an NXDOMAIN answer in response to the original query and stop. (6d) A NOERROR/NODATA answer. Cache this negative answer and go back to step 3. Tony. -- f.anthony.n.finch <dot@dotat.at> http://dotat.at/ Northwest FitzRoy: Northwesterly 5 or 6, backing westerly or southwesterly 6 to gale 8. Rough or very rough. Showers. Good.
- [dns-privacy] [internet-drafts@ietf.org: I-D Acti… Stephane Bortzmeyer
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Tony Finch
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Phillip Hallam-Baker
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Stephane Bortzmeyer
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Florian Weimer
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Phillip Hallam-Baker
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Stephane Bortzmeyer
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Casey Deccio
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Florian Weimer
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Tony Finch
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Phillip Hallam-Baker
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Stephane Bortzmeyer
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Stephane Bortzmeyer
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Joe Abley
- Re: [dns-privacy] [internet-drafts@ietf.org: I-D … Tony Finch
- Re: [dns-privacy] a qname minimization algorithm Tony Finch