[DNSOP] Re: draft-ietf-dnsop-zoneversion maybe does handle this OK

John Levine <johnl@taugh.com> Mon, 17 June 2024 19:50 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A331EC1516F3 for <dnsop@ietfa.amsl.com>; Mon, 17 Jun 2024 12:50:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.457
X-Spam-Level:
X-Spam-Status: No, score=-1.457 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=iecc.com header.b="EsDyZG4I"; dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=taugh.com header.b="mdgYNMhb"
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 64IypOv8Svpt for <dnsop@ietfa.amsl.com>; Mon, 17 Jun 2024 12:50:05 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC175C14F603 for <dnsop@ietf.org>; Mon, 17 Jun 2024 12:50:04 -0700 (PDT)
Received: (qmail 12082 invoked by uid 100); 17 Jun 2024 19:50:02 -0000
Date: Mon, 17 Jun 2024 19:50:02 -0000
Message-ID: <v4q419$9sv$1@gal.iecc.com>
From: John Levine <johnl@taugh.com>
To: dnsop@ietf.org
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=iecc.com; h=date:message-id:from:to:subject:references:mime-version:content-type:content-transfer-encoding:in-reply-to:cleverness; s=2f2a6670936a.k2406; i=news@user.iecc.com; bh=Aes9VHzQtOZ7kd/HaLcri2EGo17nu65GFeOxt7mUdio=; b=EsDyZG4IbXhenfQX2ERO/dUJ9oz3IG6sxcBMn2T9D000gQtr6SnqVFMCUsHoDWA4AW/didFrCrIg3Ii5vxQOgb/NayY6305rwYRCELfhgll28lfIR3PTacU5Fl1Fe2g9iRE+b3/R+5Rae/oBkoY3TVL5lMgCxWQN/LYmexM53KYoRABLP1SjmtGq2EigMA4MRk92s9ITs1MCFanUigG6osMiI0TSCCuiMJqdzwMr7YWNXvnwfhE7EpII34sqyQqpxnSQcEk0xPYlJ1UCPmFayjyVW9MzSNhihW/p5CmpKCHNDFVHkN7ATTqpJwMNS+ZLlcSKe1umSJ0vWRC3qF0dfA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed; d=taugh.com; h=date:message-id:from:to:subject:references:mime-version:content-type:content-transfer-encoding:in-reply-to:cleverness; s=2f2a6670936a.k2406; olt=news@user.iecc.com; bh=Aes9VHzQtOZ7kd/HaLcri2EGo17nu65GFeOxt7mUdio=; b=mdgYNMhbYpihPT4dUWQqACrrIkMhf6r6tz+yTC2d5zLwJ8vqPtoh7/oL9alTqDeWYqonkj/QWmMSPP4dxM+Pq7d7Jwt5b7DgIVs2CK4lmlT/ai5HQ40coS9pzCdg2DCG+kRhPmKSSqhd+dpnvuksQQWMptBXBDlf9gl59ZQnhfCxRaZu7E3ItzTsmxUjmg5UBq3Lfb12Y7Rzvyh91/HKAtrErchoenbh6mUtbCcMrzk7wENW9qOpfUPny7c4p0Sj49kw/ZeEhow378RLQ1pO9H89bY2h3rF02gSUEpB8FeBNgDMUuLmsB1+86CgBbH7OtVXVOQYm4cc7oDxJVkLivQ==
Organization: Taughannock Networks
References: <CAHw9_iJMCxSdXM3DKP1yN8mk-05App-CAEYnZ5xMnNOnkR3WGw@mail.gmail.com> <cb32865e-ac5b-5145-c5ef-23866f58170c@iecc.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
In-Reply-To: <CAHw9_iJMCxSdXM3DKP1yN8mk-05App-CAEYnZ5xMnNOnkR3WGw@mail.gmail.com> <cb32865e-ac5b-5145-c5ef-23866f58170c@iecc.com>
Cleverness: some
X-Newsreader: trn 4.0-test77 (Sep 1, 2010)
Originator: johnl@iecc.com (John Levine)
Message-ID-Hash: JP4EHFHD2CQZJ5RRNDUCGPFZER6HUFA4
X-Message-ID-Hash: JP4EHFHD2CQZJ5RRNDUCGPFZER6HUFA4
X-MailFrom: johnl@iecc.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [DNSOP] Re: draft-ietf-dnsop-zoneversion maybe does handle this OK
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/sSqqjGGKxOFUGaTeqA9TdglvWMI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

According to John R. Levine  <johnl@iecc.com>:
>It currently says:
>
>  A name server MAY include more than one ZONEVERSION option in the
>  response if it supports multiple TYPEs. A name server MUST NOT include
>  more than one ZONEVERSION option for a given TYPE. ...
>;; QUESTION SECTION:
>;com.ws.sp.am.			IN	A
>
>;; ANSWER SECTION:
>ws.sp.am.		300	IN	DNAME	whois.services.net.
>com.ws.sp.am.		300	IN	CNAME	com.whois.services.net.
>com.whois.services.net.	300	IN	CNAME	whois.verisign-grs.com.

Hmmn. I think it means it should only return a zoneversion for
ws.sp.am because it matches the query, and if I want info on the
second CNAME I should ask for it separately.

Might be worth adding that it MUST NOT return version info for any
records that don't match the original query.  Yeah, it should be
obvious, but at least one person (me) got confused.

R's,
John
-- 
Regards,
John Levine, johnl@taugh.com, Primary Perpetrator of "The Internet for Dummies",
Please consider the environment before reading this e-mail. https://jl.ly