Re: [DNSOP] [Ext] order of records in DNAME responses
Olafur Gudmundsson <ogud@ogud.com> Sat, 25 February 2017 19:52 UTC
Return-Path: <ogud@ogud.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CDE2C1294AC for <dnsop@ietfa.amsl.com>; Sat, 25 Feb 2017 11:52:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.62
X-Spam-Level:
X-Spam-Status: No, score=-2.62 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zuXlDHS72NAF for <dnsop@ietfa.amsl.com>; Sat, 25 Feb 2017 11:52:17 -0800 (PST)
Received: from smtp133.dfw.emailsrvr.com (smtp133.dfw.emailsrvr.com [67.192.241.133]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8169B1294A5 for <dnsop@ietf.org>; Sat, 25 Feb 2017 11:52:17 -0800 (PST)
Received: from smtp25.relay.dfw1a.emailsrvr.com (localhost [127.0.0.1]) by smtp25.relay.dfw1a.emailsrvr.com (SMTP Server) with ESMTP id 9B005C0137; Sat, 25 Feb 2017 14:52:16 -0500 (EST)
X-Auth-ID: ogud@ogud.com
Received: by smtp25.relay.dfw1a.emailsrvr.com (Authenticated sender: ogud-AT-ogud.com) with ESMTPSA id 0E349C0133; Sat, 25 Feb 2017 14:52:15 -0500 (EST)
X-Sender-Id: ogud@ogud.com
Received: from [10.20.30.43] (pool-71-191-33-181.washdc.fios.verizon.net [71.191.33.181]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384) by 0.0.0.0:587 (trex/5.7.12); Sat, 25 Feb 2017 14:52:16 -0500
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 10.2 \(3259\))
From: Olafur Gudmundsson <ogud@ogud.com>
In-Reply-To: <20170224173519.GB55999@isc.org>
Date: Sat, 25 Feb 2017 14:52:15 -0500
Content-Transfer-Encoding: quoted-printable
Message-Id: <4DAB3353-9DCF-44F5-B87F-13C10A88FCD5@ogud.com>
References: <20170223232432.GA41294@isc.org> <475CA1CA-E1D3-44D8-AE4D-6629A52C068C@icann.org> <20170224173519.GB55999@isc.org>
To: Evan Hunt <each@isc.org>
X-Mailer: Apple Mail (2.3259)
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/Oo05FDUQrqSf1QYEDUw7YNTZ_VQ>
Cc: Edward Lewis <edward.lewis@icann.org>, "dnsop@ietf.org" <dnsop@ietf.org>
Subject: Re: [DNSOP] [Ext] order of records in DNAME responses
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Feb 2017 19:52:19 -0000
> On Feb 24, 2017, at 12:35 PM, Evan Hunt <each@isc.org> wrote: > > On Fri, Feb 24, 2017 at 02:46:28PM +0000, Edward Lewis wrote: >> The reason I point this out is that the order of records in a section has >> been famously undefined, with the convention of supporting round robin >> (an undocumented feature of the protocol) hanging around, for all of >> eternity. I can see an implementation recommendation note because it >> makes sense, but, if we use the old rule of "for interoperability" I >> don't see specifying the order of records as necessary. > > The order of RR's within an RRset is undefined and needs to remain so, but > can there be constraints on the order of RRsets within a section? While I would love to say Yes to above, that can not be any stronger than “SHOULD” The old RFC’s are much less prescriptive than modern ones. If we ever do a RFC2181-bis or followup work then this should be one of the topics There are basically two ways to handle it - Prescribe order - Dicate that whole section must be consumed and “ordered” before processing. One corner case that I seen on couple of occasions is CNAME chain out of order, I have no idea how that can happen … > >> I also think that goats have already left the burning barn on this. >> Going forward code might put the DNAME ahead of the CNAME, but if past >> code doesn't, going forward code must account for that. > > It took us a very long time to encounter the first server that did > CNAME-first. Most are going to do DNAME-first because it's simpler to > code that way: it's easier to append to a message than insert something > into the middle. > > IMHO the problem is now big enough to see, but still small enough > to step on by declaring we didn't mean for it to be legal. > I was around the time DNAME was defined, and my recollection was that CNAME after DNAME was so obvious that no-one thought is was needed to specify. >> Not to mention the difficulties in writing so-called clarification >> documents. They aren't all that pleasant... > > Well, that's why I started with an email thread… Thank you for bringing real issue to WG Olafur
- Re: [DNSOP] order of records in DNAME responses Wessels, Duane
- [DNSOP] order of records in DNAME responses Evan Hunt
- Re: [DNSOP] order of records in DNAME responses Matthäus Wander
- Re: [DNSOP] [Ext] order of records in DNAME respo… Edward Lewis
- Re: [DNSOP] order of records in DNAME responses Evan Hunt
- Re: [DNSOP] [Ext] Re: order of records in DNAME r… Edward Lewis
- Re: [DNSOP] [Ext] order of records in DNAME respo… Evan Hunt
- Re: [DNSOP] [Ext] order of records in DNAME respo… Edward Lewis
- Re: [DNSOP] [Ext] order of records in DNAME respo… Olafur Gudmundsson
- Re: [DNSOP] [Ext] order of records in DNAME respo… Edward Lewis