[dns-operations] DNS error reporting

Robert Edmonds edmonds at mycre.ws
Thu Feb 11 18:27:30 UTC 2016

Tony Finch wrote:
> Petr Spacek <pspacek at redhat.com> wrote:
> >
> > I think that URI in response is a good idea but it cannot suffice. Most
> > importantly, if local recursive resolver is dead the URI with a host name will
> > simply not work :-)
> > Can we invent something which is structured enough so the end node can
> > translate the message for the user? Or even advise what might be wrong?
> I think you can augment a broad-brush error code (e.g. RRSIG validity
> period doesn't cover my current time) with a parametrized URL containing
> further details. I don't know whether the URL format should include
> standard parts or whether it's OK to make it entirely ad-hoc.

Or just POST the raw problem details document, which would keep the URI
a stable identifier and avoid turning it into a format string.  (Or pass
the JSON via stdin to a local helper script, etc.)

Robert Edmonds

More information about the dns-operations mailing list