Re: [dnsext] [Technical Errata Reported] RFC4343 (6361)
Evan Hunt <each@isc.org> Mon, 28 December 2020 18:42 UTC
Return-Path: <each@isc.org>
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CF853A0CEE for <dnsext@ietfa.amsl.com>; Mon, 28 Dec 2020 10:42:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Xm0QhAJNt2ns for <dnsext@ietfa.amsl.com>; Mon, 28 Dec 2020 10:42:29 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [149.20.64.53]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 422353A0CEA for <dnsext@ietf.org>; Mon, 28 Dec 2020 10:42:29 -0800 (PST)
Received: from bikeshed.isc.org (unknown [IPv6:2001:4f8:1:f::88]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.pao1.isc.org (Postfix) with ESMTPS id F0E633BD531; Mon, 28 Dec 2020 18:42:05 +0000 (UTC)
Received: by bikeshed.isc.org (Postfix, from userid 10292) id 908422BFF3; Mon, 28 Dec 2020 18:42:05 +0000 (UTC)
Date: Mon, 28 Dec 2020 18:42:05 +0000
From: Evan Hunt <each@isc.org>
To: Kaspar Etter <me@kasparetter.com>
Cc: Donald Eastlake <d3e3e3@gmail.com>, Eastlake III Donald-LDE008 <Donald.Eastlake@motorola.com>, IETF DNSEXT WG <dnsext@ietf.org>, Erik Kline <ek.ietf@gmail.com>, "Eric Vyncke (evyncke)" <evyncke@cisco.com>, Olafur Gudmundsson <ogud@ogud.com>, RFC Errata System <rfc-editor@rfc-editor.org>
Message-ID: <20201228184205.GA6718@isc.org>
References: <20201222112911.18004F40769@rfc-editor.org> <CAF4+nEHUBiUxF_stf8_VPOipy=vOmwtDMrLaCmEQTz9nF3ibGQ@mail.gmail.com> <611DB60D-9BA1-404C-801B-37374B653255@kasparetter.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <611DB60D-9BA1-404C-801B-37374B653255@kasparetter.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsext/pS7pUSM3SZBA-nu921cVn7IdfJs>
Subject: Re: [dnsext] [Technical Errata Reported] RFC4343 (6361)
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsext/>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Dec 2020 18:42:32 -0000
On Wed, Dec 23, 2020 at 09:51:25AM +0100, Kaspar Etter wrote: > Thanks a lot for the quick reply. Just to make sure that there’s no > misunderstanding: If I figured it out (i.e. I should receive the > capitalization of the label as it is in the server’s database in DNS > responses), then the deployed DNS DOESN’T conform to this RFC. > Examples: > dig IETF.org <http://ietf.org/> => IETF.org <http://ietf.org/> in the answer section of the DNS response > dig ietf.org <http://ietf.org/> => ietf.org <http://ietf.org/> in the answer section of the DNS response This has been ambiguous for a long time. If you check the authoritative servers for ietf.org, the answer section is capitalized as specified in the zone database, not matching the question: $ dig +noall +answer @ns1.ams1.afilias-nst.info. IETF.org ietf.org. 1800 IN A 4.31.198.44 However, some servers use case-insensitive name compression in their responses. Differently-capitalized versions of the same name are treated as duplicates, so if IETF.org appears in the question section, the answer section will refer back to that. In my view, this behavior is incorrect, but it's commonplace. I'm not sure whether this helps with the issue at hand, I just thought the additional context might be useful. -- Evan Hunt -- each@isc.org Internet Systems Consortium, Inc.
- [dnsext] [Technical Errata Reported] RFC4343 (636… RFC Errata System
- Re: [dnsext] [Technical Errata Reported] RFC4343 … Donald Eastlake
- Re: [dnsext] [Technical Errata Reported] RFC4343 … Kaspar Etter
- Re: [dnsext] [Technical Errata Reported] RFC4343 … Evan Hunt
- Re: [dnsext] [Technical Errata Reported] RFC4343 … Donald Eastlake