< draft-ietf-dnsop-extended-error-07.txt		draft-ietf-dnsop-extended-error-08.txt >
	skipping to change at page 1, line 16 ¶		skipping to change at page 1, line 16 ¶
	Expires: February 10, 2020 ISC		Expires: February 10, 2020 ISC
	R. Arends		R. Arends
	ICANN		ICANN
	W. Hardaker		W. Hardaker
	USC/ISI		USC/ISI
	D. Lawrence		D. Lawrence
	Oracle + Dyn		Oracle + Dyn
	August 09, 2019		August 09, 2019
	Extended DNS Errors		Extended DNS Errors
	draft-ietf-dnsop-extended-error-07		draft-ietf-dnsop-extended-error-08
	Abstract		Abstract
	This document defines an extensible method to return additional		This document defines an extensible method to return additional
	information about the cause of DNS errors. Though created primarily		information about the cause of DNS errors. Though created primarily
	to extend SERVFAIL to provide additional information about the cause		to extend SERVFAIL to provide additional information about the cause
	of DNS and DNSSEC failures, the Extended DNS Errors option defined in		of DNS and DNSSEC failures, the Extended DNS Errors option defined in
	this document allows all response types to contain extended error		this document allows all response types to contain extended error
	information.		information.
	skipping to change at page 8, line 37 ¶		skipping to change at page 8, line 37 ¶
	TBD Extended DNS Error TBD [ This document ]		TBD Extended DNS Error TBD [ This document ]
	5.2. New Double-Index Registry Table for Extended Error Codes		5.2. New Double-Index Registry Table for Extended Error Codes
	This document defines a new double-index IANA registry table, where		This document defines a new double-index IANA registry table, where
	the index value is the INFO-CODE from the Extended DNS Error EDNS		the index value is the INFO-CODE from the Extended DNS Error EDNS
	option defined in this document. The IANA is requested to create and		option defined in this document. The IANA is requested to create and
	maintain this "Extended DNS Error codes" registry. The code-point		maintain this "Extended DNS Error codes" registry. The code-point
	space for each INFO-CODE index is to be broken into 3 ranges:		space for each INFO-CODE index is to be broken into 3 ranges:
	o 0 - : Specification required.		o 0 - 32767: Specification required.
	o 65023 - 65279: First come, first served.		o 32768 - 49151: First come, first served.
	o 65280 - 32767: Experimental / Private use		o 49152 - 65535: Experimental / Private use
	A starting set of entries, based on the contents of this document, is		A starting set of entries, based on the contents of this document, is
	as follows:		as follows:
	INFO-CODE: 0		INFO-CODE: 0
	Purpose: Other Error		Purpose: Other Error
	Reference: Section 4.1		Reference: Section 4.1
	INFO-CODE: 1		INFO-CODE: 1
	Purpose: Unsupported DNSKEY Algorithm		Purpose: Unsupported DNSKEY Algorithm
	skipping to change at page 11, line 11 ¶		skipping to change at page 11, line 11 ¶
	response into already untrusted data -- ideally clients and resolvers		response into already untrusted data -- ideally clients and resolvers
	would not trust any unauthenticated information, but until we live in		would not trust any unauthenticated information, but until we live in
	an era where all DNS answers are authenticated via DNSSEC or other		an era where all DNS answers are authenticated via DNSSEC or other
	mechanisms, there are some tradeoffs. As an example, an attacker who		mechanisms, there are some tradeoffs. As an example, an attacker who
	is able to insert the DNSSEC Bogus Extended Error into a packet could		is able to insert the DNSSEC Bogus Extended Error into a packet could
	instead simply reply with a fictitious address (A or AAAA) record.		instead simply reply with a fictitious address (A or AAAA) record.
	7. Acknowledgements		7. Acknowledgements
	The authors wish to thank Joe Abley, Mark Andrews, Stephane		The authors wish to thank Joe Abley, Mark Andrews, Stephane
	Bortzmeyer, Vladimir Cunat, Peter DeVries, Peter van Dijk, Donald		Bortzmeyer, Vladimir Cunat, Ralph Dolmans, Peter DeVries, Peter van
	Eastlake, Bob Harold, Geoff Huston, Shane Kerr, Edward Lewis, Carlos		Dijk, Donald Eastlake, Bob Harold, Geoff Huston, Shane Kerr, Edward
	M. Martinez, George Michelson, Michael Sheldon, Petr Spacek, Ondrej		Lewis, Carlos M. Martinez, George Michelson, Michael Sheldon, Puneet
	Sury, Loganaden Velvindron, and Paul Vixie. They also vaguely		Sood, Petr Spacek, Ondrej Sury, Loganaden Velvindron, and Paul Vixie.
	remember discussing this with a number of people over the years, but		They also vaguely remember discussing this with a number of people
	have forgotten who all they were -- if you were one of them, and are		over the years, but have forgotten who all they were -- if you were
	not listed, please let us know and we'll acknowledge you.		one of them, and are not listed, please let us know and we'll
			acknowledge you.
	I also want to thank the band "Infected Mushroom" for providing a		I also want to thank the band "Infected Mushroom" for providing a
	good background soundtrack (and to see if I can get away with this!)		good background soundtrack (and to see if I can get away with this!)
	Another author would like to thank the band "Mushroom Infectors".		Another author would like to thank the band "Mushroom Infectors".
	This was funny at the time we wrote it, but we cannot remember why...		This was funny at the time we wrote it, but we cannot remember why...
	8. References		8. References
	8.1. Normative References		8.1. Normative References
End of changes. 3 change blocks.
	11 lines changed or deleted		12 lines changed or added
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/