diff options
Diffstat (limited to 'draft-schanzen-gns.xml')
-rw-r--r-- | draft-schanzen-gns.xml | 21 |
1 files changed, 14 insertions, 7 deletions
diff --git a/draft-schanzen-gns.xml b/draft-schanzen-gns.xml index f30d84b..8345eee 100644 --- a/draft-schanzen-gns.xml +++ b/draft-schanzen-gns.xml | |||
@@ -8,6 +8,7 @@ | |||
8 | <!ENTITY RFC3629 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3629.xml"> | 8 | <!ENTITY RFC3629 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3629.xml"> |
9 | <!ENTITY RFC3686 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3686.xml"> | 9 | <!ENTITY RFC3686 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3686.xml"> |
10 | <!ENTITY RFC3826 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3826.xml"> | 10 | <!ENTITY RFC3826 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3826.xml"> |
11 | <!ENTITY RFC4033 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.4033.xml"> | ||
11 | <!--<!ENTITY RFC3912 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3912.xml">--> | 12 | <!--<!ENTITY RFC3912 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3912.xml">--> |
12 | <!ENTITY RFC5869 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.5869.xml"> | 13 | <!ENTITY RFC5869 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.5869.xml"> |
13 | <!ENTITY RFC5890 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.5890.xml"> | 14 | <!ENTITY RFC5890 PUBLIC '' "http://xml.resource.org/public/rfc/bibxml/reference.RFC.5890.xml"> |
@@ -192,6 +193,12 @@ | |||
192 | UTF-8 characters <xref target="RFC8499"/> with a maximum length of | 193 | UTF-8 characters <xref target="RFC8499"/> with a maximum length of |
193 | 63 bytes. Labels MUST be canonicalized using | 194 | 63 bytes. Labels MUST be canonicalized using |
194 | Normalization Form C (NFC) <xref target="Unicode-UAX15"/>. | 195 | Normalization Form C (NFC) <xref target="Unicode-UAX15"/>. |
196 | The empty label is represented using the character "@" (without | ||
197 | quotes). | ||
198 | The empty label is used to publish resource | ||
199 | records in a zone that can be resolved without providing a specific | ||
200 | label. It is the GNS method provide what is the "zone apex" in DNS | ||
201 | <xref target="RFC4033"/>. | ||
195 | </dd> | 202 | </dd> |
196 | <dt>Name</dt> | 203 | <dt>Name</dt> |
197 | <dd> | 204 | <dd> |
@@ -214,7 +221,7 @@ | |||
214 | <dd> | 221 | <dd> |
215 | A GNS zone contains authoritative information (resource records). | 222 | A GNS zone contains authoritative information (resource records). |
216 | A zone is uniquely identified by its zone key. Unlike DNS zones, | 223 | A zone is uniquely identified by its zone key. Unlike DNS zones, |
217 | a GNS zone does not need to have a SOA record at its apex. | 224 | a GNS zone does not need to have a SOA record under the empty label. |
218 | </dd> | 225 | </dd> |
219 | <dt>Zone Type</dt> | 226 | <dt>Zone Type</dt> |
220 | <dd> | 227 | <dd> |
@@ -893,8 +900,7 @@ zTLD := zkl[126..129].zkl[63..125].zkl[0..62] | |||
893 | determined to be cryptographically insecure, or if an application has | 900 | determined to be cryptographically insecure, or if an application has |
894 | reasons to not support delegation to DNS for reasons such as complexity | 901 | reasons to not support delegation to DNS for reasons such as complexity |
895 | or security. Zone delegation records MUST NOT be stored and published | 902 | or security. Zone delegation records MUST NOT be stored and published |
896 | under the empty label. | 903 | under the empty label. |
897 | <!-- FIXME: Empty label and apex label are not well defined --> | ||
898 | A zone delegation record type value is the same as the respective ztype | 904 | A zone delegation record type value is the same as the respective ztype |
899 | value. | 905 | value. |
900 | The ztype defines the cryptographic primitives for the zone that is | 906 | The ztype defines the cryptographic primitives for the zone that is |
@@ -1921,7 +1927,7 @@ example.com = zk2 | |||
1921 | In each step of the recursive name resolution, there is an | 1927 | In each step of the recursive name resolution, there is an |
1922 | authoritative zone zk and a name to resolve. The name may be empty. | 1928 | authoritative zone zk and a name to resolve. The name may be empty. |
1923 | Initially, the authoritative zone is the start zone. If the name | 1929 | Initially, the authoritative zone is the start zone. If the name |
1924 | is empty, it is interpreted as the apex label "@". | 1930 | is empty, it is interpreted as the empty label "@". |
1925 | </t> | 1931 | </t> |
1926 | <t> | 1932 | <t> |
1927 | From here, the following steps are recursively executed, in order: | 1933 | From here, the following steps are recursively executed, in order: |
@@ -2079,7 +2085,7 @@ example.com = zk2 | |||
2079 | and provide a consistent security profile for all name resolutions. | 2085 | and provide a consistent security profile for all name resolutions. |
2080 | Such resolvers would return an empty record set upon encountering | 2086 | Such resolvers would return an empty record set upon encountering |
2081 | a GNS2DNS record during the recursion. However, if GNS2DNS records | 2087 | a GNS2DNS record during the recursion. However, if GNS2DNS records |
2082 | are encountered in the record set for the apex and a GNS2DNS record | 2088 | are encountered in the record set for the empty label and a GNS2DNS record |
2083 | is explicitly requested by the application, such records MUST | 2089 | is explicitly requested by the application, such records MUST |
2084 | still be returned, even if DNS support is disabled by the | 2090 | still be returned, even if DNS support is disabled by the |
2085 | GNS resolver configuration. | 2091 | GNS resolver configuration. |
@@ -2109,7 +2115,7 @@ example.com = zk2 | |||
2109 | Implementations MAY support any subset of ztypes. | 2115 | Implementations MAY support any subset of ztypes. |
2110 | Handling of | 2116 | Handling of |
2111 | Implementations MUST NOT process zone delegation for the empty | 2117 | Implementations MUST NOT process zone delegation for the empty |
2112 | apex label "@". Upon encountering a zone delegation record under | 2118 | label "@". Upon encountering a zone delegation record under |
2113 | this label, resolution fails and an error MUST be returned. The | 2119 | this label, resolution fails and an error MUST be returned. The |
2114 | implementation MAY choose not to return the reason for the failure, | 2120 | implementation MAY choose not to return the reason for the failure, |
2115 | merely impacting troubleshooting information for the user. | 2121 | merely impacting troubleshooting information for the user. |
@@ -2118,7 +2124,7 @@ example.com = zk2 | |||
2118 | If the remainder of the name to resolve is empty and we have | 2124 | If the remainder of the name to resolve is empty and we have |
2119 | received a record set containing only a single delegation record, the | 2125 | received a record set containing only a single delegation record, the |
2120 | recursion is continued with the record value as authoritative zone | 2126 | recursion is continued with the record value as authoritative zone |
2121 | and the empty apex label "@" as remaining name. | 2127 | and the empty label "@" as remaining name. |
2122 | Except in the case where the desired record type as specified by | 2128 | Except in the case where the desired record type as specified by |
2123 | the client is equal to the ztype, in which case the delegation | 2129 | the client is equal to the ztype, in which case the delegation |
2124 | record is returned. | 2130 | record is returned. |
@@ -3030,6 +3036,7 @@ c9d7b9ab | |||
3030 | </references> | 3036 | </references> |
3031 | <references> | 3037 | <references> |
3032 | <name>Informative References</name> | 3038 | <name>Informative References</name> |
3039 | &RFC4033; | ||
3033 | &RFC6781; | 3040 | &RFC6781; |
3034 | &RFC7363; | 3041 | &RFC7363; |
3035 | &RFC8324; | 3042 | &RFC8324; |