{daemon,lib}: sync EDE codes supported by libknot. (!1585) · Merge requests · Knot projects / Knot Resolver

menakite requested to merge menakite/knot-resolver:sync-ede-libknot into master Aug 07, 2024

Adds the following extended error codes, supported by current libknot:

25 (Signature Expired before Valid): KNOT_EDNS_EDE_EXPIRED_INV
26 (Too Early): KNOT_EDNS_EDE_TOO_EARLY
27 (Unsupported NSEC3 Iterations Value): KNOT_EDNS_EDE_NSEC3_ITERS
28 (Unable to conform to policy): KNOT_EDNS_EDE_NONCONF_POLICY
29 (Synthesized): KNOT_EDNS_EDE_SYNTHESIZED

KNOT_EDNS_EDE_TOO_EARLY is a QUIC error, it is set when a query received before the handshake has completed is REFUSED, so I think an higher priority is correct. Btw, there's no DoQ in Knot Resolver, so technically it can have whatever value...

KNOT_EDNS_EDE_NONCONF_POLICY instead was allocated by an expired Internet Draft so I believe it shouldn't be used and hence has no "priority".

Admin message

Admin message

{daemon,lib}: sync EDE codes supported by libknot.

Merge request reports