< draft-bellis-dnsext-multi-qtypes-00.txt   draft-bellis-dnsext-multi-qtypes-01.txt >
Network Working Group R. Bellis Network Working Group R. Bellis
Internet-Draft Nominet UK Internet-Draft Nominet UK
Intended status: Standards Track March 27, 2012 Intended status: Standards Track March 27, 2012
Expires: September 28, 2012 Expires: September 28, 2012
Title Title
draft-bellis-dnsext-multi-qtypes-00 draft-bellis-dnsext-multi-qtypes-01
Abstract Abstract
This document specifies a method for a DNS client to request This document specifies a method for a DNS client to request
additional DNS record types to be delivered alongside the primary additional DNS record types to be delivered alongside the primary
record type specified in the question section of a DNS query. record type specified in the question section of a DNS query.
Status of this Memo Status of this Memo
This Internet-Draft is submitted in full conformance with the This Internet-Draft is submitted in full conformance with the
skipping to change at page 6, line 6 skipping to change at page 6, line 6
[RFC2181] any authoritative answers received MUST be ranked the same [RFC2181] any authoritative answers received MUST be ranked the same
as the answer for the primary question. as the answer for the primary question.
3.2.3. DNSSEC 3.2.3. DNSSEC
If the DNS client sets the "DNSSEC OK" (DO) bit in the query then the If the DNS client sets the "DNSSEC OK" (DO) bit in the query then the
server MUST also return the related DNSSEC records that would have server MUST also return the related DNSSEC records that would have
been returned in a standalone query for the same QTYPE. been returned in a standalone query for the same QTYPE.
A negative answer from a signed zone MUST contain the appropriate A negative answer from a signed zone MUST contain the appropriate
authenticated denial of existence records, per [RFC3403] and authenticated denial of existence records, per [RFC4034] and
[RFC5155]. [RFC5155].
In a signed zone there is a theoretical risk of valid signatures for In a signed zone there is a theoretical risk of valid signatures for
one RR type and invalid signatures for another. This is the only one RR type and invalid signatures for another. This is the only
case known to the author where the response code for any particular case known to the author where the response code for any particular
QNAME may be inconsistent across different RR types. QNAME may be inconsistent across different RR types.
Should a validating resolver produce NOERROR for some RR types and Should a validating resolver produce NOERROR for some RR types and
SERVFAIL for others it MUST omit the RR types that failed to validate SERVFAIL for others it MUST omit the RR types that failed to validate
from its response and from the QTn fields on the Multiple QTYPE from its response and from the QTn fields on the Multiple QTYPE
skipping to change at page 7, line 9 skipping to change at page 7, line 9
[RFC2119] Bradner, S., "Key words for use in RFCs to Indicate [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate
Requirement Levels", BCP 14, RFC 2119, March 1997. Requirement Levels", BCP 14, RFC 2119, March 1997.
[RFC2181] Elz, R. and R. Bush, "Clarifications to the DNS [RFC2181] Elz, R. and R. Bush, "Clarifications to the DNS
Specification", RFC 2181, July 1997. Specification", RFC 2181, July 1997.
[RFC2671] Vixie, P., "Extension Mechanisms for DNS (EDNS0)", [RFC2671] Vixie, P., "Extension Mechanisms for DNS (EDNS0)",
RFC 2671, August 1999. RFC 2671, August 1999.
[RFC3403] Mealling, M., "Dynamic Delegation Discovery System (DDDS) [RFC4034] Arends, R., Austein, R., Larson, M., Massey, D., and S.
Part Three: The Domain Name System (DNS) Database", Rose, "Resource Records for the DNS Security Extensions",
RFC 3403, October 2002. RFC 4034, March 2005.
[RFC5155] Laurie, B., Sisson, G., Arends, R., and D. Blacka, "DNS [RFC5155] Laurie, B., Sisson, G., Arends, R., and D. Blacka, "DNS
Security (DNSSEC) Hashed Authenticated Denial of Security (DNSSEC) Hashed Authenticated Denial of
Existence", RFC 5155, March 2008. Existence", RFC 5155, March 2008.
Appendix A. Change Log Appendix A. Change Log
NB: to be removed by the RFC Editor before publication. NB: to be removed by the RFC Editor before publication.
draft-bellis-dnsext-multi-qtypes-00 draft-bellis-dnsext-multi-qtypes-00
 End of changes. 3 change blocks. 
5 lines changed or deleted 5 lines changed or added

This html diff was produced by rfcdiff 1.41. The latest version is available from http://tools.ietf.org/tools/rfcdiff/
X-Generator: pyht 0.35