Add EDNS0 and DNSSEC behavior

|<img alt="BobNovas's avatar" src="https://avatars.githubusercontent.com/u/0?s=50" width="50" height="50">| BobNovas reported|
|-|-|
|Trac ID|trac#5454|
|Type|enhancement|
|Created|2012-01-18 18:14:17Z|

This patch, applied to twisted 11.1.0 in addition to but AFTER the patch in [#5453](https://github.com/twisted/twisted/issues/5453), will add EDNS0 and DNSSEC behavior.  EDNS0 behavior includes the ability to specify EDNS0 version (currently only version 0 is defined), the ability to set the DNSSEC OK flag which requests a security aware resolver to respond with DNSSEC records, and the ability to specify a maximum UDP Packet length that the path between this stub resolver and the recursive resolver can handle. This value can be as large as 65535, though smaller values, such as 1492 for WAN or 4096 for LAN or 8192 for local (e.g., 127.0.0.1) are more relevant. DNSSEC behavior includes the ability to receive and decode all the DNSSEC record types, and the ability to decode the AD (Authentic Data) flag. This means that with this patch, twisted.names client resolver can function as a security-aware non-validating stub resolver. In conjunction with a validating recursive resolver such as provided locally (e.g., 127.0.0.1) by dnssec-trigger (http://nlnetlabs.nl/projects/dnssec-trigger/) or by any comcast resolver, this allows a python client to determine if a name is secure.

Attachments:

* [add edns0-dnssec-behavior-02.patch](https://raw.githubusercontent.com/twisted/twistedmatrix.com-trac-attachments/trunk/ticket/767/7676610da8860c85121518160221926c6b30d0f9/d4cba6723bea0d6af2ca6f7d71ee54d31ed2b0fd.patch) (11536 bytes) - added by BobNovas on 2012-01-18 18:15:20Z - adds EDNS0 and DNSSEC behavior to twisted (requires 5453)
* [AddEDNS0andDNSSEC5454.patch](https://raw.githubusercontent.com/twisted/twistedmatrix.com-trac-attachments/trunk/ticket/767/7676610da8860c85121518160221926c6b30d0f9/73dbc47e2688241afdef1c7afce58fcedc9e4e76.patch) (81224 bytes) - added by BobNovas on 2012-03-09 21:00:51Z - patch for ticket 5454
* [addEdsn0AndDnssec5454V02.patch](https://raw.githubusercontent.com/twisted/twistedmatrix.com-trac-attachments/trunk/ticket/767/7676610da8860c85121518160221926c6b30d0f9/74c19a2a89d0464627b4c5aaf69f95b259da7992.patch) (97567 bytes) - added by BobNovas on 2012-03-13 17:27:08Z - patch for ticket 5454
* [addEdsn0AndDnssec5454V03.patch](https://raw.githubusercontent.com/twisted/twistedmatrix.com-trac-attachments/trunk/ticket/767/7676610da8860c85121518160221926c6b30d0f9/a82b2c3716af00ee30ef8e34f2817a452eb402a5.patch) (104114 bytes) - added by BobNovas on 2012-03-15 00:35:24Z - replaces V02 file of similar name
* [addEdsn0AndDnssec5454V04.patch](https://raw.githubusercontent.com/twisted/twistedmatrix.com-trac-attachments/trunk/ticket/767/7676610da8860c85121518160221926c6b30d0f9/2d1d19853bade2dd3858675b8e28df1184454df6.patch) (107578 bytes) - added by BobNovas on 2012-04-04 12:48:48Z - addresses tjijs' comments

<details><summary>Searchable metadata</summary>

```
trac-id__5454 5454
type__enhancement enhancement
reporter__BobNovas BobNovas
priority__normal normal
milestone__ 
branch__ 
branch_author__ 
status__new new
resolution__None None
component__names names
keywords__ 
time__1326910457000000 1326910457000000
changetime__1393356153000000 1393356153000000
version__None None
owner__ 
cc__thijs
```
</details>


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add EDNS0 and DNSSEC behavior #5454

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

	BobNovas reported
Trac ID	trac#5454
Type	enhancement
Created	2012-01-18 18:14:17Z