Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more down the naming rathole.
Petr Špaček <petr.spacek@nic.cz> Thu, 22 February 2018 11:20 UTC
Return-Path: <petr.spacek@nic.cz>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2F2BE12EA24 for <dnsop@ietfa.amsl.com>; Thu, 22 Feb 2018 03:20:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.009
X-Spam-Level:
X-Spam-Status: No, score=-7.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nic.cz
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M8WINkp_6hjA for <dnsop@ietfa.amsl.com>; Thu, 22 Feb 2018 03:20:34 -0800 (PST)
Received: from mail.nic.cz (mail.nic.cz [IPv6:2001:1488:800:400::400]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AAD6C12E9DD for <dnsop@ietf.org>; Thu, 22 Feb 2018 03:20:34 -0800 (PST)
Received: from [IPv6:2001:1488:fffe:6:308f:eaff:fe76:4b70] (unknown [IPv6:2001:1488:fffe:6:308f:eaff:fe76:4b70]) by mail.nic.cz (Postfix) with ESMTPSA id 57B2E60ABB; Thu, 22 Feb 2018 12:20:32 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=nic.cz; s=default; t=1519298432; bh=oDczYFCo2UXf+eDs68O+xOY+uvb8WI/G+2AtlqpCd50=; h=To:From:Date; b=yP7BcRJtnuOkR7AudmJAHdHvTMYQ9UdcOOMYEBfMldF0yn5j/bZSCB6jErf0sZmVC KXhFTl9NL/QiHhv4pZo9V5HaGbt8BpZsI397fPV+XxlE4Rfm4BEZzlST9CVJ5NXEZU 8efl0Gt6xUO4ZXAKh5L5pc83EiNOMNcDxhHEnfmU=
To: Joe Abley <jabley@hopcount.ca>
Cc: dnsop@ietf.org
References: <CAHw9_iLqEerV-So7704qu7A2mbD6YQbzdF8A3FEGtUPOE+6NWw@mail.gmail.com> <DC8845C9-6329-4A02-97F9-45C991726F71@vpnc.org> <CA+nkc8D6zbVMJmntTtEub0iLSB=3Qf8khMu6VibOGrDM55oXpA@mail.gmail.com> <CAJhMdTPLdVVFCdRTzr9B3sZKGcf0D2pw6C80+V18GqX_=K-2ag@mail.gmail.com> <41098C27-BA7F-4B47-9C97-6536CD353665@verisign.com> <8632B472-F466-4E1F-827D-549167B51DA1@icann.org> <3478d544-ebef-3af3-7e8d-19804199fc0c@nic.cz> <CAJhMdTN+TBHyr-RbLUscxKLR364bhcVYi=s1DUgLJhKvNFzNiw@mail.gmail.com>
From: Petr Špaček <petr.spacek@nic.cz>
Organization: CZ.NIC
Message-ID: <c827ef3c-1e42-afe2-69f7-ccbbec34ecf8@nic.cz>
Date: Thu, 22 Feb 2018 12:20:27 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0
MIME-Version: 1.0
In-Reply-To: <CAJhMdTN+TBHyr-RbLUscxKLR364bhcVYi=s1DUgLJhKvNFzNiw@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-Virus-Scanned: clamav-milter 0.99.2 at mail
X-Virus-Status: Clean
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/B18gIA3Nz7sZneJdtDMggdUXvFA>
Subject: Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more down the naming rathole.
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Feb 2018 11:20:39 -0000
On 22.2.2018 11:38, Joe Abley wrote: > Hi Petr, > >> On Feb 22, 2018, at 04:03, Petr Špaček <petr.spacek@nic.cz> wrote: >> >> I would prefer decimal for user-friendliness, and zero padding to make >> implementation easier and faster. > > A few people now have mentioned that they like zero padding. What is > it about zero padding or fixed-size labels that makes implementation > easier than specifying no zero padding? It is important to note that this 'special label trigger' is not seen anywhere else in DNS, so this is first piece of code which has to match DNS labels in the 'hot path'. I think it is a good and easy optimization to minimize use of regexes/string matching in the hot path, and simple condidion if (label_len == X || label_len == Y) before the heavy-weight pattern matching will reduce frequency of regex use significantly. We can live without it, but it is so cheap optimization that I do not see a reason not do it. Petr Špaček @ CZ.NIC > Since zero padding for key tags is not generally seen anywhere else it > seems more consistent (and hence perhaps less error-prone) to specify > no zero padding in labels
- [DNSOP] KSK-Sentinal: Once more down the naming r… Warren Kumari
- Re: [DNSOP] KSK-Sentinal: Once more down the nami… Paul Hoffman
- Re: [DNSOP] KSK-Sentinal: Once more down the nami… Bob Harold
- Re: [DNSOP] KSK-Sentinal: Once more down the nami… Joe Abley
- Re: [DNSOP] KSK-Sentinal: Once more down the nami… Wessels, Duane
- Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more dow… Edward Lewis
- Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more dow… Petr Špaček
- Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more dow… Ralph Dolmans
- Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more dow… Joe Abley
- Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more dow… Petr Špaček
- Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more dow… Matt Larson
- Re: [DNSOP] [Ext] Re: KSK-Sentinal: Once more dow… Joe Abley