Network Working Group                       Scott Williamson
Someday an Internet Draft                       Mark Kosters
March 1994                           Network Solutions Inc./
                                                    InterNIC




              Referral Whois Protocol (RWhois)
               <draft-rwhois-protocol-00.txt>


Abstract

This memo describes the client/server interaction of RWhois.
RWhois provides a distributed system for the display of
hierarchical information. This system is hierarchical by
design allowing for the reduction of an original query and
referral of the requester closer to the maintainer of the
information.

Status of this Memo

This document is an Internet Draft. Internet Drafts are
working documents of the Internet Engineering Task Force
(IETF), its Areas, and its Working Groups. Note that other
groups may also distribute working documents as Internet
Drafts.

Internet Drafts are draft documents valid for a maximum of
six months. Internet Drafts may be updated, replaced, or
obsoleted by other documents at any time. It is not
appropriate to use Internet Drafts as reference material or
to cite them other than as a "working draft" or "work in
progress."

To learn the current status of any Internet-Draft, please
check the 1id-abstracts.txt listing contained in the
Internet-Drafts Shadow Directories on ds.internic.net,
nic.nordu.net, ftp.nisc.sri.com, or munnari.oz.au.

1.0 Introduction

Early in ARPANET development, the SRI-NIC established a
centralized whois database that provided host and network
information about the systems connected to the network and
the E-mail addresses of the users on those systems. The
ARPANET experiment has evolved into a global network with
countless people and hundreds of thousands of end systems.
Given the sheer size and effort needed to maintain a
centralized database, an alternate, decentralized approach
to storing and displaying this information is desired.

The Internet portions of the DDN NIC have been transitioned
to what is now known as InterNIC Registration Services (RS).
The charter for InterNIC RS has been reduced to maintain
information only for IP networks, top-level domains,
Autonomous System Numbers, and the points of contact for
each of these particular entities.  In addition, the
InterNIC, in its role as an Internet Registry (IR), has
delegated IP block assignment authority to Regional
Registries such as the RIPE  NCC for Europe,APNIC for the
Asian Pacific region, and to itself for North America and
all non-delegated regions. This has led to a fragmentation
of whois service to the Internet user.

Several different solutions have been proposed and developed
by the various regional IR's. Two solutions have been worked
on extensively: the Shared Whois Project (SWIP) and X.500.

The SWIP project has a common exchange format that can be
parsed by the various IR's for input and output. Thus, one
can synchronize their databases with information obtained
from the other IR's. This project is showing promise and is
now operational. However, this approach still requires a
centralized database for store and display.

The InterNIC has also been involved in the use of X.500 for
display of registration information. Among other things,
this included defining schemas and Directory information
tree structures for the purpose of distributing information
amongst the various IR X.500 DSA's. Unfortunately X.500's
complexity, resource utilization, and lack of Internet
support has made a search for an alternative solution
necessary.

The information that the various IR's maintain is inherently
hierarchical in nature.  ( Examples: hammer.nic.ddn.mil is
under the nic.ddn.mil domain which is under the ddn.mil
domain which is under the .mil domain. 198.41.0.21 is part
of network 198.41.0 which is part of the 256 block of 198.41
which is part of the big block 198.)  The InterNIC may not
have the information, but will at least be able to reduce
the query and point or "refer" the users closer to their
goal.  This has led to the development of a referral whois,
and the corresponding RWhois protocol.

The underlying premise for this project has been to retain
the basic functionality of the whois server and client,
making all of the extensions optional. The server must
respond to the original whois client, currently included
with many operating systems. The RWhois client must also
interact with the original whois server.

Throughout this document the following notations will be
used to describe the RWhois server/client interaction.

   <SP>   space
   [aug]  optional part of the directive or response
   <aug>  required part of the directive or response
   server server's fully qualified domain name
   port   server's TCP/IP port number
   query  question to ask the server
     \    continued on next line

2.0 RWhois client model

The RWhois design requires compatibility with the current
Whois and Whois++ servers.  Therefore, the RWhois client
must wait to determine if the server contacted is an RWhois
server.  The user should have control over the time the
client waits, since this will vary based on network
congestion and capacity. If after the wait the server does
not respond with the %RWhois response, the client must not
send any RWhois extended directives.  In this case, the
client should only send the query. This server
identification feature will allow the RWhois system to
utilize the current Whois and Whois++ infrastructure.
Referrals from RWhois can be directed toward a Whois or
Whois++ server. These non-RWhois servers must be placed as a
leaf on the hierarchical tree.  These servers represent a
mesh structure from the RWhois perspective. This restriction
should not discourage the use of these servers in building
the RWhois structure.



2.1 DIRECTIVES:  Client to Server Interaction

The RWhois client sends directives to the RWhois server.
These directives are prefaced with the '-' character always
at the start of a new line.  However, for compatibility with
older Whois clients, the query is not prefaced with the '-'
character. Only after the client is certain that the server
is an RWhois server should these directives be sent.
Compatibility with the original Whois server is required.
The following are acceptable RWhois server directives:

<query>
-RWhois<SP>V-<numeric version #>
-load
-limit<SP><value>
-schema<SP>[type]
-xfer<SP>[type]
-quit
-status
-cache<SP><on/off>
-holdconnect<SP><on/off>
-forward
-soa<SP>[authority area]
-badref<SP><server:port:query>
-recurref<SP><server:port:query>
-register<SP>on<SP><add/mod/del><SP><e-mail contact>\
     <SP><authority info>*
-register<SP>off

 * Must work on some type of authentication for unsupervised
   delegation.

Considering the requirement for compatibility with the
original whois, the RWhois client in default mode must
operate exactly like the current Whois client. However, in
the enhanced mode, the RWhois client can do much more based
on information received from the RWhois server.


2.2 RWhois Client model.

Server <-------> Client

START:
<------ Connection ( record time to connect)
        Wait up to specified time for ------> "%RWhois"
          ( recommend wait of 5 seconds )

if  "%RWhois" is not received from server assume that it is
 not an RWhois server
    goto QUERY:

else if "%RWhois" is received from server
    <------- send "-RWhois -VX.X"
    --------> receive "%ok"
    COMMAND: if command for server
               <------- send  command
               -------> receive server response
               if %ok received
                 goto COMMAND:
               if %error received
                 process error then goto COMMAND:
             else if no more commands for server
                goto QUERY:
QUERY:
    <-------- send query
    --------> Receive and display response
    PROCESS: if %referral received
                if first referral
                   restart server list
                else
                   add to server list
            if %see-also received
                insert server into current list
            if in holdconnection mode
                goto COMMAND:
            if no directive (%)
                goto END:
            goto PROCESS:
END:
server will disconnect
if more servers on Queue and multi or referral mode active
    goto START:


Every time the RWhois client receives a referral or see-also
response from the RWhois server it must compare the
host:port:query with those already executed. If the client
discovers that it is being directed to repeat the same query
to a server that it has already visited, it must not repeat
that query. As an example, the experimental RWhois client
maintains a server trail and compares each new directive
with the entire list. If a recursive act is about to occur,
the client will notify the user and exit.

The original Whois client opens a TCP connection, sends the
query, and displays the response.  The RWhois client must be
more robust in order to handle multiple server queries,
servers that do not exist, and recursive referrals. The
client must also remain connected while sending directives
and receiving responses. All of these features have been
incorporated into the experimental RWhois client.


3.0 RWhois server model


3.1 Original Whois server

The RWhois server will behave similarly to the original
whois server in terms of display formats and restrictions:

Display format Keywords:

?             Expand
~             no sub displays
%             sub displays
summary       Give a short summary for the query on one
                to many hits (defaults on multiple hits).
full          Give the full record output one to many hits
                (defaults on one hit only).
dump          Display the record in a parsable format.
#             same as dump above.

Data Restriction Format Keywords:
!             Query on Handle only
user          Query on User records only*
host          Query on Host records only*
domain        Query on Domain records only*
network       Query on Network Records only*
asn           Query on Autonomous System Numbers only*

* These objects are defined in configuration files that are
not hard-coded into the server. New Objects can be easily
designed with no code change necessary in the server.

3.2 RWhois directives (commands) Extensions

The RWhois server must allow for additional commands such as
Boolean queries and attribute=value query combinations.
Partial matches can be found by post fixing a "*" at the end
of the search item or inserting a "." for unknown
characters.

Example: last-name=williamson and first-name=scott


The RWhois server adds the following Data Restriction Format
Keywords:

nsap       Query on Network Service Access Point address
           only*



3.3 RESPONSES: Server to client interaction

Responses from the RWhois server are prefaced with the '%'
character at the start of the line. Acceptable responses
are:

%RWhois<SP>server<SP>V-<numeric version #><SP><server name>
[example: %RWhois rs.internic.net V-1.0.1]

%referral <SP><host:port><SP><reduced query>
[example: %referral nic.ddn.mil:43 .mil]

  This refers the query to another whois server (could be
  whois, RWhois, or whois++). If <reduced query> = query
  then the referral is a link. If <reduced query> != query
  then the referral is a reduction. If <reduced query> = ""
  then the referral is a punt. ( Punt means the server is
  not a root and cannot answer the query and is referring
  the client to the next level)

%see-also<SP><host:port:query>
[example: %see-also prmd.merit.edu:43:handle=xxx]

  This brings additional information to this particular
  record.

%load <SP><current><SP><average>
[example: %load 5.68 1.32]

%ok

%error<SP><error number><SP><error text>
[example: %error<SP>400<SP>Invalid Server Directive]
  There is some sort of error on the server

%soa<SP>authority:<SP><authority area>
%soa<SP>ttl:<SP><seconds>
%soa<SP>serial:<SP><number>
%soa<SP>refresh:<SP><seconds>
%soa<SP>retry:<SP><seconds>
%soa<SP>tech-contact:<SP><e-mail address>
%soa<SP>admin-contact:<SP><e-mail address>
%soa<SP>hostmaster:<SP><e-mail address>

[example: %soa authority: netsol.com
          %soa ttl: 7500
          %soa serial: 45
          %soa refresh: 3600
          %soa retry: 3600
          %soa tech-contact: markk@netsol.com
          %soa admin-contact: joe@netsol.com
          %soa hostmaster: hostmaster@netsol.com
          %ok ]

     authority:
          The authority name of the SOA. [string] ( Example:
          internic.net or 198.41.0.0/24 )
     ttl:
          The time to live for data within this authority
          area that another serve may cache. The server
          caching the data should consider the data expired
          after the time given. [numeric]
     serial:
          Serial number of the data contained in the
          authority area. The serial number must be
          incremented every time data in the authority area
          has changed. The number must be numeric. A single
          decimal point may be used. [numeric (no more than
          one decimal)] ( 1, 1.1, and 1.123 are acceptable.
          1.1.2 is not acceptable.)
     refresh:
          The time to completely remove cached data after
          failure to update. [numeric]
     retry:
          The time to wait before retrying contact of a
          server that appears to be out-of-service.
          [numeric]
     tech-contact:
          E-mail address of the person or role account
          responsible for the operation of the server.
          [string: legal e-mail address]
     admin-contact:
          E-mail address of the person or role account
          responsible for the data contained on the server.
          [string: legal e-mail address]
     hostmaster:
          E-mail address that changes to the data should be
          send. Data edit tool can automatically send
          changes to data. [string: legal e-mail address]


%status<SP>limit:<SP><current limit>
%status<SP>load:<SP><current load>
%status<SP>cache:<SP><on/off>
%status<SP>holdconnect:<SP><on/off>

[Example: %status limit: 1500
          %status load: 1.234
          %status cache: on
          %status holdconnect: off]

     limit:
        Current session's limit. Either the default limit or
        the limit set by the "-limit" directive. [numeric]

     load:
        Current load of the system hosting the RWhois
        server. [numeric]

     cache:
        Current status of the cache flag. This will either
        be "on" or "off". [string: on/off]

     holdconnect:
        Current status of the holdconnect flag. This will
        either be "on" or "off". [string: on/off]


The critical component of the referral whois server is the
ability to reduce the query to find a server that is
"closer" to the data. The search algorithm of the server is
the following:

1) accept a query,
2) find any local matches - display them
3) find any referrals - display them
4) if no local or referral hits, reduce the query and goto 3

Here is an example of the query ietf.cnri.reston.va.us :

 1) query whois for ietf.cnri.reston.va.us
 2) search rs.internic.net for information (no hits).
 3) search referrals for ietf.cnri.reston.va.us (no hits).
 4) search referrals for cnri.reston.va.us (no hits).
 5) search referrals for reston.va.us (no hits).
 6) search referrals for va.us (no hits).
 7) search referrals for us (referral found) - referral to
       isi.edu.
[currently on rs.internic.net:4343 for proof of concept].


4.0 INTERACTION: Client directive and acceptable server
responses

Expected responses to directives:

GENERAL

   %ok
   %error<SP>400<SP>Invalid Server Directive
   %error<SP>100<SP>Get Peer Name query failed
   %error<SP>500<SP>Memory Allocation Problem
   %error<SP>401<SP>Not authorized for directive
   %error<SP>402<SP>Unidentified error ... continue
   %error<SP>502<SP>Unrecoverable error ... goodbye

ON CONNECTION

   %RWhois<SP>server<SP>V-<numeric version #>
   %error<SP>501<SP>Service not available
   %referral<SP><host:port>


<QUERY>

   <answer>
   %referral <SP><host:port>
   %see-also<SP><host:port:query>
   %error<SP>334<SP>pre-query directive not implemented
   %error<SP>230<SP>No Records Found
   %error<SP>130<SP>Not authority for answer ... TTL good
   %error<SP>231<SP>Not authority for answer ... TTL expired


-RWhois<SP>V-<numeric version #>
   %error<SP>300<SP>Not compatible with that version number

-load
   %load<SP>XX.XX<SP>XX.XX
   %error<SP>335<SP>Systems load not available

-limit<SP>< value >
   %error<SP>330<SP>Exceeded Max Records Limit
   %error<SP>331<SP>Invalid Max Records Size

-schema<SP>[type]
   %error<SP>330<SP>schema type not found


-xfer<SP>[ type ]
   %error<SP>332<SP>Nothing to transfer
   %error<SP>330<SP>schema type not found

-quit
   %ok

-cache<SP><on/off>
   %error<SP>232<SP>Cache disabled

-status
   %status<SP>limit:<SP><current limit>
   %status<SP>load:<SP><current load>
   %status<SP>cache:<SP><on/off>
   %status<SP>holdconnect:<SP><on/off>

-forward
   %error<SP>431<SP>Server cannot forward request
   %error<SP>433<SP>Bad reference on forward


-soa
   %soa<SP>domain:<SP><domain area>
   %soa<SP>ttl:<SP><time to live>
   %soa<SP>serial:<SP><serial number>
   %soa<SP>refresh:<SP>< >
   %soa<SP>retry:<SP>< >
   %soa<SP>tech-contact:<SP><technical POC e-mail>
   %soa<SP>admin-contact:<SP><admin POC e-mail>
   %soa<SP>hostmaster:<SP><hostmaster e-mail>
   %error<SP>333<SP>Not SOA for requested authority area


-badref<SP><server:port:query>



-recurref<SP><server:port:query>


-register<SP>on<SP><add/mod/del><SP><e-mail contact> \
     <SP><authority>

-register<SP>off


5.0 Error codes

The error code immediately follows the %error response from
the RWhois server. The definition of the error codes are
below. The error codes are descriptive so that the client
can group the error message in order to determine group
action that must be taken before taking error specific
action. Error codes should remain consistant without
variable extensions. If a client receives a '6' in the
second position of the error code and the client does not
support the extended code received the client must act on
the first position code. (Example: If a client received
"%error 561" and the client did not support the extended
error codes for the server currently connected the client
would exit based on the '5' in the first position of the
error code.)


X00

   1 - information only, no action required
   2 - information, action required
   3 - Specific command error, retry that command or try
       another directive
   4 - Serious for current directive, may correct with
       another directive
   5 - Fatal, must disconnect

0X0

   0(1,2) - System wide, no specific directive
   3(4,5) - Specific directive
   6 - Extended message ( version specific )

00X

   Sequential order

5.1 Error code list

Below is an ordered list of RWhois error codes. These codes
may be extended with implementation specific codes.  These
extended codes will have a '6' in the second position of the
code.

100 Get Peer Name query failed
130 Not authority for answer ... TTL good

230 No Records Found
231 Not authority for answer ... TTL expired
232 Cache disabled

300 Not compatible with that version number
330 Exceeded Max Records Limit
331 Invalid Max Records Size
332 Nothing to transfer
333 Not SOA for requested authority area
334 pre-query directive not implemented
335 Systems load not available
336 schema type not found

400 Invalid Server Directive
401 Not authorized for directive
402 Unidentified error ... continue
431 Server cannot forward request
433 Bad reference on forward
432 Not authorized to transfer

500 Memory Allocation Problem
501 Service not available
502 Unrecoverable error ... goodbye




Authors' Address:

Scott Williamson
505 Huntmar Park Dr.
Herndon, VA 22070
Phone: (703) 742-4820
email: scottw@internic.net

Mark Kosters
505 Huntmar Park Dr.
Herndon, VA 22070
Phone: (703) 742-4795
email: markk@internic.net