IETF Logo Mail Archive

Re: [DNSOP] I-D Action: draft-ietf-dnsop-glue-is-not-optional-03.txt

"Wessels, Duane" <dwessels@verisign.com> Mon, 11 October 2021 23:51 UTC

Return-Path: <dwessels@verisign.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4359D3A0AE2 for <dnsop@ietfa.amsl.com>; Mon, 11 Oct 2021 16:51:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id al3-HNrXjA8y for <dnsop@ietfa.amsl.com>; Mon, 11 Oct 2021 16:51:52 -0700 (PDT)
Received: from mail5.verisign.com (mail5.verisign.com [69.58.187.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6263C3A0ECB for <dnsop@ietf.org>; Mon, 11 Oct 2021 16:51:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=9191; q=dns/txt; s=VRSN; t=1633996313; h=from:to:date:message-id:references:in-reply-to: mime-version:subject; bh=zzHW+bNCSK5KCc5BgoNr3NEqqULjIGJGZl24mQ5Tlp4=; b=JTqbqMicB06pkFRVXYCdRbhE97yqRFvbnYf8PWfCDv0yh3LdEilFkniU XsbZHEhLoc50zDGmdacRQpT7RQQMjGMJcM5qZjqRI+hzW1CBB1ZlAQL8l pVyT+IgfXfYuEJWAgVyeghwNT/3N8emooLJgG0owE7kiMp8Ux51m+ChR0 tmQY1OgPyyMnCg2mey/FEWUy1UYdJlj8fqmnSyAo8w/L4flRnltEoXoIC ePAzVhhzma5JSuB+MiHPvzaWZPZ4fuTU4xcmzJpgYLPfCyT+6eVvB07Vj JvOZXsmxSH0qdzvNFnITCd6FJniq75ug3Wqepbxir7oj9dInkFJ1C8HVv g==;
IronPort-SDR: P+1IguJFOalCs3II7zPlaYUyYm54GNx205JSmcL0ICvriQGJ0XkhoYU5Iu1UKgQHMrhJ98zPgN x7pzW7JuK+wNr0VV+Pgt5iKxhKPgERYTR2pSkLo7o2pSPFURJsGJipk9s/ltFtPBTX5QO+7Zye 5Op1Ij36mhv3RsqMxZ6nlGzPa2ethW/uEEZ3nNK91AfFWcsglFY6TIT/1tax6LdGdH2eLe/z9v 5+IE/RRqvnMbRaS4QPRo9lcjZBbvfo0MkylbAR6otj/LjMYE4QJ2JTfWJLJr5ZUmB+/hHEUD8p MtM=
IronPort-Data: A9a23:738OqaB9dM8mRRVW/7Lhw5YqxClBgxIJ4kV8jS/XYbTApG5w0DVRm 2RNC27UafqON2OhL9l+aoSwoEgAuJDTy4BjTANkpHpgcSlH+JHPbTi7wuccHM8zwunrFh8PA xA2M4GYRCwMo/y1Si6FatANl1ElvU2zbue6WLOs1hxZH1c+EX550Es7wIbVv6Yz6TSHK1LV0 T/Ni5CHULOV82Yc3rU8sv/rRLtH5ZweiRtA1rAMTakjUGz2zhH5OKkiyZSZdBMUdGX08tmSH I4vxJnhlo/Q10l1VoP9yt4XeGVSKlLZFVDmZna7x8FOK/WNz8A/+v9TCRYSVatYoxuvhPla7 JYUjrCPdwF5FZbJ3+YXUSANRkmSPYUekFPGCVKFl5Ws6WD2KyGq3f5pFllwNIFe5PxsBydF8 vlwxDIlN0jF3r3thuvmEa8w16zPL+GyVG8bkn1/wCrCAPI9aY7OWaTR5NBemjw3g6iiGN6HP 5NJN2s1NXwsZTVNCl4xKrlnsN2U3Cn8Kh9Vh26SjrI4tj27IAtZleKF3MDuUtCMXsJNtkeVu myA+H72aiz2L/SV0zzc7XShlreV2DjlQsQXFab9/PksikeVnyoNEgYQE1C8pJFVl3KDZj6WE GRMkgJGkET43BXDogXVN/FgnEO5gw==
IronPort-HdrOrdr: A9a23:2Huw36rYRx1hPaBoGptUyi0aV5r2eYIsimQD101hICG9Ffbo8v xG/c5rtyMc5wxwZJhNo7690cq7Lk80nKQdibX5Vo3SPzUO1lHIEKhSqaXvxDH6EzDz+6p3xc 5bH5RWOZnVAUJhhcj3pCu1A78bquWvweSNif3Fx3lgCTt2bbpthj0VNi+AHlZoSBJ9CZ01KZ qZ6qN8zAadRQ==
X-IronPort-AV: E=Sophos;i="5.85,366,1624334400"; d="p7s'?scan'208";a="10186921"
Received: from BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) by BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.8; Mon, 11 Oct 2021 19:51:49 -0400
Received: from BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d]) by BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d%4]) with mapi id 15.01.2308.008; Mon, 11 Oct 2021 19:51:49 -0400
From: "Wessels, Duane" <dwessels@verisign.com>
To: dnsop <dnsop@ietf.org>
Thread-Topic: [EXTERNAL] [DNSOP] I-D Action: draft-ietf-dnsop-glue-is-not-optional-03.txt
Thread-Index: AQHXvvgXDif1LarSY0+7LVD57xFBRKvOuweA
Date: Mon, 11 Oct 2021 23:51:49 +0000
Message-ID: <F721A7DB-B7F7-43A9-984E-EB41B58F4637@verisign.com>
References: <163399502762.30574.6086641235159213742@ietfa.amsl.com>
In-Reply-To: <163399502762.30574.6086641235159213742@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.120.23.2.7)
x-originating-ip: [10.170.148.18]
Content-Type: multipart/signed; boundary="Apple-Mail=_E80D7835-F5DC-4311-B406-B6DAEC794C1D"; protocol="application/pkcs7-signature"; micalg="sha-256"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/PUv6pj_uA7OyaJOInHcf0E8HSz4>
Subject: Re: [DNSOP] I-D Action: draft-ietf-dnsop-glue-is-not-optional-03.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Oct 2021 23:51:58 -0000

Dear DNSOP,

Changes to this draft from the previous version are as follows:
 
   *  Clarified scope to focus only on name server responses, and not
      zone/registry data.
   *  Reorganized with section 2 as Types of Glue and section 3 as
      Requirements.
   *  Removed any discussion of promoted / orphan glue.
   *  Use appropriate documentation addresses and domain names.
   *  Added Sibling Cyclic Glue example.

I'd say we still do not have consensus on treatment of sibling glue.  Section 3.2 currently has the strict requirements with optional more lenient requirements in [square brackets]:

3.2.  Sibling Glue

   This document clarifies that when a name server generates a referral
   response, it MUST [SHOULD] include available sibling glue records in
   the additional section.  If all sibling glue records do not fit in a
   UDP response, the name server MUST [is NOT REQUIRED to] set TC=1.


DW


> On Oct 11, 2021, at 4:30 PM, internet-drafts@ietf.org wrote:
> 
> Caution: This email originated from outside the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe. 
> 
> A New Internet-Draft is available from the on-line Internet-Drafts directories.
> This draft is a work item of the Domain Name System Operations WG of the IETF.
> 
>        Title           : Glue In DNS Referral Responses Is Not Optional
>        Authors         : M. Andrews
>                          Shumon Huque
>                          Paul Wouters
>                          Duane Wessels
> 	Filename        : draft-ietf-dnsop-glue-is-not-optional-03.txt
> 	Pages           : 9
> 	Date            : 2021-10-11
> 
> Abstract:
>   The DNS uses glue records to allow iterative clients to find the
>   addresses of nameservers that are contained within a delegated zone.
>   Authoritative Servers are expected to return all available glue
>   records in referrals.  If message size constraints prevent the
>   inclusion of all glue records in a UDP response, the server MUST set
>   the TC flag to inform the client that the response is incomplete, and
>   that the client SHOULD use TCP to retrieve the full response.  This
>   document updates RFC 1034 to clarify correct server behavior.
> 
> 
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-dnsop-glue-is-not-optional/
> 
> There is also an HTML version available at:
> https://www.ietf.org/archive/id/draft-ietf-dnsop-glue-is-not-optional-03.html
> 
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-dnsop-glue-is-not-optional-03
> 
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
> 
> 
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

v2.23.0 | Report a Bug | By Email