X-Scanned-BY: MIMEDefang 2.68 on 10.5.11.26 MIME-Version: 1.0 In-Reply-To: X-Spam-Status: No, score=-7.5 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_HI, RP_MATCHES_RCVD autolearn=ham autolearn_force=no version=3.4.0 References: <53428B8B.7060303@redhat.com> <20140407143004.5EEAA12912F9@rock.dv.isc.org> <5342B985.9030400@redhat.com> Message-ID: <53B3C1AF.3020705@redhat.com> Content-Type: text/plain; charset=UTF-8; format=flowed Organization: Red Hat X-RT-Original-Encoding: utf-8 Received: from mx.pao1.isc.org (mx.pao1.isc.org [149.20.64.53]) by bugs.isc.org (Postfix) with ESMTP id A38E92D20051 for ; Wed, 2 Jul 2014 08:24:21 +0000 (UTC) Received: from mx1.redhat.com (mx1.redhat.com [209.132.183.28]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mx1.redhat.com", Issuer "Red Hat IS CA" (not verified)) by mx.pao1.isc.org (Postfix) with ESMTPS id 316623493B4 for ; Wed, 2 Jul 2014 08:24:19 +0000 (UTC) (envelope-from pspacek@redhat.com) Received: from int-mx13.intmail.prod.int.phx2.redhat.com (int-mx13.intmail.prod.int.phx2.redhat.com [10.5.11.26]) by mx1.redhat.com (8.14.4/8.14.4) with ESMTP id s628OHO6032085 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for ; Wed, 2 Jul 2014 04:24:17 -0400 Received: from pspacek.brq.redhat.com (pspacek.brq.redhat.com [10.34.4.156]) by int-mx13.intmail.prod.int.phx2.redhat.com (8.14.4/8.14.4) with ESMTP id s628OF8H017162 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=NO) for ; Wed, 2 Jul 2014 04:24:17 -0400 Delivered-To: bind-suggest@bugs.isc.org Subject: Re: [ISC-Bugs #35707] Support for draft-ietf-dnsop-delegation-trust-maintainance ? User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0 Return-Path: X-Original-To: bind-suggest@bugs.isc.org Date: Wed, 02 Jul 2014 10:24:15 +0200 X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mx.pao1.isc.org To: bind-suggest@isc.org Content-Transfer-Encoding: 7bit From: Petr Spacek RT-Message-ID: Content-Length: 1325 On 7.4.2014 16:43, Petr Spacek via RT wrote: > On 7.4.2014 16:30, Mark Andrews via RT wrote: >> In message , "Petr Spacek via >> RT" writes: >>> Hello, >>> >>> I would like to know if you are planning to support >>> http://tools.ietf.org/html/draft-ietf-dnsop-delegation-trust-maintainance-03 >>> in a near future. >>> >>> It seems that sections 3 and 5 are stable and rest of the draft seems to be >>> not very interesting for DNS servers. >>> >>> I wonder if you can: >>> - add support for CDS and CDNSKEY records >> >> It's a little early to ask for CDNSKEY as there is no type code assigned. > > I'm sorry! I have seen code 59 for CDS and (wrongly) anticipated that CDNSKEY > is also assigned ... According to http://www.iana.org/assignments/dns-parameters/dns-parameters.txt CDS and CDNSKEY RR types have type codes assigned now and the RFC seems to be close to publication. It would be nice to get support for them when possible. Thank you! Petr Spacek >>> - add a switch (for in-line signing and dnssec-signzone) "always copy all >>> DNSKEY records to CDNSKEY records and also to CDS records". >>> >>> IMHO this behavior is allowed: >>> http://tools.ietf.org/html/draft-ietf-dnsop-delegation-trust-maintainance-03# >>> section-5 >>> >>> Thank you for your time.