thr3ads.net - nsd users - [nsd-users] Prevent name compression on some RR types? [Nov 2012]

If this information is useful, please help other people find it:
Share via:

Stephane Bortzmeyer

2012-Nov-17 10:05 UTC

[nsd-users] Prevent name compression on some RR types?

RFC 6742, section 2.4.1.2, says:
> A sender MUST NOT use DNS name compression on the FQDN field when
> transmitting an LP RR.
I do not see how to implement this with NSD 3. When I call
zadd_rdata_domain() in zparser.y, there is apparently no option to
register in the compiled zone database the fact that this must not be
compressed. As a result, the name is compressed, violating the RFC.

Such a rule seems to have been present only for DNSSEC-related RR
types until now. These DNSSEC RR types have a special handling in the
name server but I find nothing for other types.

Matthijs Mekking

2012-Nov-19 09:34 UTC

head link

[nsd-users] Prevent name compression on some RR types?

On 11/17/2012 11:05 AM, Stephane Bortzmeyer wrote:> RFC 6742, section 2.4.1.2, says:
> 
>> A sender MUST NOT use DNS name compression on the FQDN field when
>> transmitting an LP RR.
> 
> I do not see how to implement this with NSD 3. When I call
> zadd_rdata_domain() in zparser.y, there is apparently no option to
> register in the compiled zone database the fact that this must not be
> compressed. As a result, the name is compressed, violating the RFC.
There is: RDATA formats in NSD are registered in dns.c. There is a table
of RRs, describing each RDATA formats. For LP, this would be:

{ RDATA_WF_SHORT, RDATA_WF_UNCOMPRESSED_DNAME }
{ RDATA_ZF_SHORT, RDATA_ZF_DNAME }
> Such a rule seems to have been present only for DNSSEC-related RR
> types until now. These DNSSEC RR types have a special handling in the
> name server but I find nothing for other types.
This new RR type is perfectly following RFC 3597, Handling of Unknown
DNS RR Types:

   Future specifications for new RR types that contain domain names
   within their RDATA MUST NOT allow the use of name compression for
   those names, and SHOULD explicitly state that the embedded domain
   names MUST NOT be compressed.

Best regards,
  Matthijs
> 
> _______________________________________________
> nsd-users mailing list
> nsd-users at NLnetLabs.nl
> http://open.nlnetlabs.nl/mailman/listinfo/nsd-users
> 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 551 bytes
Desc: OpenPGP digital signature
URL:
<http://lists.nlnetlabs.nl/pipermail/nsd-users/attachments/20121119/2b61129b/attachment.bin>

nsd users - Nov 2012 - Prevent name compression on some RR types?

[nsd-users] Prevent name compression on some RR types?

[nsd-users] Prevent name compression on some RR types?