From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=DKIM_INVALID,DKIM_SIGNED,
	HTML_MESSAGE,MAILING_LIST_MULTI,MISSING_HEADERS,RCVD_IN_DNSWL_MED,
	T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.4
Received: (qmail 27166 invoked from network); 27 Jun 2023 15:05:39 -0000
Received: from second.openwall.net (193.110.157.125)
  by inbox.vuxu.org with ESMTPUTF8; 27 Jun 2023 15:05:39 -0000
Received: (qmail 19513 invoked by uid 550); 27 Jun 2023 15:05:36 -0000
Mailing-List: contact musl-help@lists.openwall.com; run by ezmlm
Precedence: bulk
List-Post: <mailto:musl@lists.openwall.com>
List-Help: <mailto:musl-help@lists.openwall.com>
List-Unsubscribe: <mailto:musl-unsubscribe@lists.openwall.com>
List-Subscribe: <mailto:musl-subscribe@lists.openwall.com>
List-ID: <musl.lists.openwall.com>
Reply-To: musl@lists.openwall.com
Received: (qmail 19477 invoked from network); 27 Jun 2023 15:05:35 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=coosto.com; s=google2; t=1687878324; x=1690470324;
        h=cc:subject:message-id:date:from:in-reply-to:references:mime-version
         :from:to:cc:subject:date:message-id:reply-to;
        bh=CSKAN0p4kv5JbEkjHC+0pW8BWjxJPoYhXKrjMMGWE2c=;
        b=Mg0zjbanWY0/9CXj3hLMd6rkQTS0FhXen6IlQgaf0uCguWv2vfyNIkk4ddTwQKOINE
         11fLlX6DAJopskla9rCTJubGQ5OPH3M/GLPLVIY3a3k/rfk1vqjDnOna6BB49Urh2CM6
         J6FrsjZdoKwK7pyX3zfsTXNLlXMuGDK2IkpKowxEreSHD+8hqTAfOPTajOkY16liQXTJ
         1oCxL+94sKuYNtTehuD/3cUv47cY66wc7hT5y+JT+yJ93pnYwDvjpsDyveUg9BwXzL3h
         WW9gw3cCb4fnKOukTxHMWMFW+xL5HxdvnLD421M5aOMtAxeSVKQfVb/wUso+NjUZJeO6
         Mg6w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20221208; t=1687878324; x=1690470324;
        h=cc:subject:message-id:date:from:in-reply-to:references:mime-version
         :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
        bh=CSKAN0p4kv5JbEkjHC+0pW8BWjxJPoYhXKrjMMGWE2c=;
        b=T+o568vxZ+Da/Ty0ngtiJVRMsXMHT1tPfnE9ZxDyqBx5FmZNG3LAHvNrZl64yXJIHt
         otSZIrpZywf2Ym5aAmLQdI1utKKTXuy90qn9hQsD+8mTNFACh1LTsoQFmQggCIsozJnz
         PUjN6W2ubc4RA9y74maSiaN89J1+sTzFcDzJbFj7aicOTcbMcBl6S8Jf4wkzOk4ILmSE
         BPF/We/7zJcGfO209biK7YYqPFYw6g0JWdXZfVXKfB/vfnfViMRK56WMIprjfZd8qnuo
         kWpcyN0m1de9Z1rcPjhPXG8rV7oKQmydxQ4BAsDzGBr3LgVgR6O3gDXgBBZnwqIf+LXS
         /M1A==
X-Gm-Message-State: AC+VfDwSFM3GV2RDtZtGpeWudhByTzZaqL9I8IrMrkZreYVolWY36m/0
	n+i2tcDYsf9pIHdBYseehPcv17FgtPdQhiNwZNxBwxvUQjJelx3Q
X-Google-Smtp-Source: ACHHUZ7Em/BVKxqw/cMMqDJn1QrAmycWmFJc/aILK4TQ3BaswYJ3iJBFdzRafcvZiaHzAXDTb/XT9dHi3JTEI9qQJR0=
X-Received: by 2002:a2e:b042:0:b0:2b5:8102:1843 with SMTP id
 d2-20020a2eb042000000b002b581021843mr17383139ljl.18.1687878323932; Tue, 27
 Jun 2023 08:05:23 -0700 (PDT)
MIME-Version: 1.0
References: <CAPBMcbtvCz6OKR+iQi55-4_nLEzMBJLKTNf6PHME2xCvZ=v6zA@mail.gmail.com>
 <20230627143604.GT4163@brightrain.aerifal.cx>
In-Reply-To: <20230627143604.GT4163@brightrain.aerifal.cx>
From: Rob de Wit <rob.dewit@coosto.com>
Date: Tue, 27 Jun 2023 17:05:13 +0200
Message-ID: <CAPBMcbu3Wqah0XCabjCdzCjyyVS6NkLAPGJ4QWA7N4CkJE13ag@mail.gmail.com>
Cc: musl@lists.openwall.com
Content-Type: multipart/alternative; boundary="000000000000ec291405ff1dcb0a"
Subject: Re: [musl] Clarification on the NOERROR resolving choices

--000000000000ec291405ff1dcb0a
Content-Type: text/plain; charset="UTF-8"

Op di 27 jun 2023 om 16:36 schreef Rich Felker <dalias@libc.org>:

>
> It's not a matter of whether it's something other than A or AAAA; just
> that you have a wildcard in your search domain path. This will never
> give acceptable results unless your goal is to intercept all lookups
> and have them return the same thing (either NODATA or a fixed
> address).
>
> Rich
>

Thanks for the explanation and quick response.

I'm not sure I agree that NOERROR is a valid response if some other record
is queried for. I mean most other implentations do the other thing so even
if this is the correct way, a lot of compatibility is broken, but that is
up to you guys.

This last bit really shows where we went wrong. I'll remember not to use a
wildcard without a proper subdomain (lightly). If I had a wildcard A in the
domain (without subdomain) it would have broken even more by resulting in
the same address for every host tried.

--000000000000ec291405ff1dcb0a
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div dir=3D"ltr"><br></div><br><div class=3D"gmail_quote">=
<div dir=3D"ltr" class=3D"gmail_attr">Op di 27 jun 2023 om 16:36 schreef Ri=
ch Felker &lt;<a href=3D"mailto:dalias@libc.org">dalias@libc.org</a>&gt;:<b=
r></div><blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex=
;border-left:1px solid rgb(204,204,204);padding-left:1ex">
<br>
It&#39;s not a matter of whether it&#39;s something other than A or AAAA; j=
ust<br>
that you have a wildcard in your search domain path. This will never<br>
give acceptable results unless your goal is to intercept all lookups<br>
and have them return the same thing (either NODATA or a fixed<br>
address).<br>
<br>
Rich<br></blockquote><div><br></div><div>Thanks for the explanation and qui=
ck response.<br></div><div><br></div><div>I&#39;m not sure I agree that NOE=
RROR is a valid response if some other record is queried for. I mean most o=
ther implentations do the other thing so even if this is the correct way, a=
 lot of compatibility is broken, but that is up to you guys.<br></div><div>=
<br></div><div>This last bit really shows where we went wrong. I&#39;ll rem=
ember not to use a wildcard without a proper subdomain (lightly). If I had =
a wildcard A in the domain (without subdomain) it would have broken even mo=
re by resulting in the same address for every host tried.</div><div><br></d=
iv><div><br></div><div>=C2=A0<br></div></div></div>

--000000000000ec291405ff1dcb0a--