IETF Logo Mail Archive

[dnsext] WGLC: RFC6195bis IANA guidance

Donald Eastlake <d3e3e3@gmail.com> Mon, 02 July 2012 14:22 UTC

Return-Path: <dnsext-bounces@ietf.org>
X-Original-To: namedroppers-archive-gleetwall6@lists.ietf.org
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D591621F8690; Mon, 2 Jul 2012 07:22:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1341238952; bh=EzsXML8E73E4qrvH0SU2TrGqkj89UWUy4/7mSx6no74=; h=MIME-Version:In-Reply-To:References:From:Date:Message-ID:To:Cc: Subject:List-Id:List-Unsubscribe:List-Archive:List-Post:List-Help: List-Subscribe:Content-Type:Content-Transfer-Encoding:Sender; b=ul9+akvAvbXIek91S2elBoH9RDpjeqAhK+mKcrNdezOh5s599y2LIedqFd66koABm 1YydGykl79CeY6U1B3FwFzaJOjJfgMpaIJkxU14sVfnoGvr1D95mBAqLW8vUHw8bps I6t52DJ1WnQPVVGccEmXcclXecWr9kMZXFjSk4w4=
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 52A7A21F8690 for <dnsext@ietfa.amsl.com>; Mon, 2 Jul 2012 07:22:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.511
X-Spam-Level:
X-Spam-Status: No, score=-103.511 tagged_above=-999 required=5 tests=[AWL=0.088, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P-xjUIcWkTMT for <dnsext@ietfa.amsl.com>; Mon, 2 Jul 2012 07:22:30 -0700 (PDT)
Received: from mail-yw0-f53.google.com (mail-yw0-f53.google.com [209.85.213.53]) by ietfa.amsl.com (Postfix) with ESMTP id 3D89121F8636 for <dnsext@ietf.org>; Mon, 2 Jul 2012 07:22:30 -0700 (PDT)
Received: by yhp26 with SMTP id 26so5725164yhp.26 for <dnsext@ietf.org>; Mon, 02 Jul 2012 07:22:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=QXpeJsJBHlDhMaCWms7lOY20G9N9aCkCIjFN1qbzNZ4=; b=C3HceIr+2Ri6QnfXPpq42VhGZTyIV/YR5eoA6rZliXiBy5mWVeDD2vzed4YmZ8asxS lsJSNMjbum+2W5YGY0u7IrLKmjkcXEf7dD58hq5kQwPUnr5kX2gqOpkK9Qy+6o8OL2Sy wuo9jAoo1MBkKWZbx/ElngV9yCtaS43ykll5vPbNj2/TN0gw4J7KQbb8SuGh/gykPx5h q5ydaD47pm1ouRaChqMy65Z9Cre5k+umzbi8OY+A0GnSs6DS90/CZ8ZRiGye/z2aTQvP 6iqrGs6nzu4aNd0SgIzU+dlP4oERGH8DMm72GUlAXMaqwmB2/NyHYj63Ph2u346tpaAt uA1Q==
Received: by 10.50.213.106 with SMTP id nr10mr5432505igc.58.1341238955086; Mon, 02 Jul 2012 07:22:35 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.64.16.227 with HTTP; Mon, 2 Jul 2012 07:22:14 -0700 (PDT)
In-Reply-To: <CAF4+nEGbZavii4p_km2kRik-5B2RB19wJ2TFZJ-tSbX-x=Nh6A@mail.gmail.com>
References: <20120613090016.205a61dff9fc1684c258b274662bb912.d2ce8b95d9.wbe@email00.secureserver.net> <CAF4+nEGbZavii4p_km2kRik-5B2RB19wJ2TFZJ-tSbX-x=Nh6A@mail.gmail.com>
From: Donald Eastlake <d3e3e3@gmail.com>
Date: Mon, 02 Jul 2012 10:22:14 -0400
Message-ID: <CAF4+nEHdtq2dRknB8NEasfz7THUOfpPaE7Qr189CjQpZVt5D2w@mail.gmail.com>
To: Mark Andrews <marka@isc.org>
Cc: IETF DNSEXT WG <dnsext@ietf.org>
Subject: [dnsext] WGLC: RFC6195bis IANA guidance
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: dnsext-bounces@ietf.org
Errors-To: dnsext-bounces@ietf.org

[cc'ed to DNSEXT with permission]

Hi Mark,

Thanks for the comments. Stuff in curly braces ("{ }") is stuff I've added.

On Thu, Jun 28, 2012 at 11:04 PM, Mark Andrews <marka@isc.org> wrote:
>
>   {existing draft:}
>    The AA, TC, RD, RA, AD, and CD bits are each theoretically meaningful
>    only in queries or only in responses, depending on the bit. However,
>    some DNS implementations copy the query header as the initial value
>    of the response header without clearing bits. Thus, any attempt to
>    use a "query" bit with a different meaning in a response or to define
>    a query meaning for a "response" bit is dangerous, given existing
>    implementation. Such meanings may only be assigned by a Standards
>    Action.
>
>   {proposed:}
>    The AA, TC, RD, RA, AD[1], and CD bits are each theoretically meaningful
>    only in queries or only in responses, depending on the bit.  Only
>    RD and CD are expected to be copied from the query to the response
>    however some DNS implementations copy all the query header as the
>    initial value of the response header.  Thus, any attempt to
>    use a "query" bit with a different meaning in a response or to define
>    a query meaning for a "response" bit is dangerous, given existing
>    implementation. Such meanings may only be assigned by a Standards
>    Action.
>
>    [1] AD is expected to have seperate but related meanings in both the
>    query and response.

OK. I don't have a problem with the proposed text except that I'd like
to know where the expectation that AD has a meaning in queries comes
from...

>    2.2 OpCode Assignment
>
>    Status is reserved in RFC 1035 but not behaviour is defined.

OK. I can add "Although the Status OpCode is reserved in [RFC1035],
its behavior has not been specified."

>    2.3 RCODE Assignment
>
>         NOTAUTH is also overloaded and you need to look at the TSIG
>         result code to work out which.   If the TSIG result code
>         is zero or does not exist then it is not authoritative.
>
>         "Not authoritative"     [RFC 2136]
>         "Not authorised"        [RFC 2845]

OK. I can change the table entry to point to a note right after the
RCODE table saying that.

>    RRTYPE assignments need to say something about the rdata format
>    no longer being subject to change.  Its not for reserving a code
>    point as it will be coded into implementations.

I'm not quite certain what you mean above. That the RDATA format
approved as part of the RRTYPE assignment process can never be changed
later? Seems reasonable that it can't be changed unilaterally. But I
don't see why you shouldn't be able to change it by going through the
process again. Maybe there is some field or value or flag or something
that is just wrong or can't possibly work or whatever that wasn't
spotted when the application was initially processed. Or maybe even
for problems not that bad. Of course, you could always get another
RRTYPE but that has problems as well, with having to query both, etc.
There are various engineering trade offs so I don't think a flat
prohibition on any changes, if that is what you are saying, is
reasonable. Question B.1 on the RRTYPE Application temple already asks
if it is a new assignment or a modification of a previously assigned
RRTYPE.

Thanks,
Donald
=============================
 Donald E. Eastlake 3rd   +1-508-333-2270 (cell)
 155 Beaver Street, Milford, MA 01757 USA
 d3e3e3@gmail.com

> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: marka@isc.org
_______________________________________________
dnsext mailing list
dnsext@ietf.org
https://www.ietf.org/mailman/listinfo/dnsext

v2.23.0 | Report a Bug | By Email