Re: [DNSOP] [Technical Errata Reported] RFC8078 (5049)

Ondřej Caletka <Ondrej.Caletka@cesnet.cz> Sat, 24 June 2017 15:45 UTC

To: Dick Franks <rwfranks@acm.org>, Ólafur Guðmundsson <olafur@cloudflare.com>
References: <20170623105434.22478B810AB@rfc-editor.org> <CAN6NTqyBg74NF-F8imGiK0ArwxAbhc0uE_xXbX-No+Le8E9DUg@mail.gmail.com> <CAKW6Ri7npS57gupPrUc2aGhsg21u8csx+69GKrCFkeQ6H5Dnxw@mail.gmail.com>
Cc: RFC Editor <rfc-editor@rfc-editor.org>, tjw.ietf@gmail.com, IETF DNSOP WG <dnsop@ietf.org>, suzworldwide@gmail.com, pwouters@redhat.com, bclaise@cisco.com, Olafur Gudmundsson <olafur+ietf@cloudflare.com>
From: Ondřej Caletka <Ondrej.Caletka@cesnet.cz>
Message-ID: <9284fde5-ea75-a25a-3aa1-2e521753dc3e@cesnet.cz>
Date: Sat, 24 Jun 2017 17:45:47 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <CAKW6Ri7npS57gupPrUc2aGhsg21u8csx+69GKrCFkeQ6H5Dnxw@mail.gmail.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms020301030305010100060603"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/QiSuDsoYBfELWb8upexJKVPr0gc>
Subject: Re: [DNSOP] [Technical Errata Reported] RFC8078 (5049)
Precedence: list

Hello,

Dne 24.6.2017 v 15:25 Dick Franks napsal(a):
> I beg to disagree.
> 
> In each case,
> 
>       CDS 0 0 0 0
> 
>       CDNSKEY 0 3 0 0
> 
> the final "0" is a conventional token representing a zero-length key
> field. In neither case is it an attempt to specify a single octet key value.

I believe this has been discussed between 04 and 06 versions of the
draft in this thread:

https://mailarchive.ietf.org/arch/msg/dnsop/PsRIQOtd1bxFSEEm9lfv0WaHKeE

The result that made it to the RFC is that there should be indeed one
byte with value of 00 in the Digest/Public key field instead of no data
at all. This avoids the need of defining new format and updating all the
deployed software. It's not only about parsers of the wire format but
also about zone file parsers, that would need an update as the single
zero is not conformant with currently defined presentation format of
CDS/CDNSKEY RRs.

I believe changing RRdata format just for this one purpose would add an
unnecessary complexity.

--
Best regards,
Ondřej Caletka

Attachment: smime.p7s

[DNSOP] [Technical Errata Reported] RFC8078 (5049) RFC Errata System
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Ólafur Guðmundsson
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Dick Franks
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Ondřej Caletka
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Dick Franks
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Paul Hoffman
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Dick Franks
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Matthijs Mekking
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Jan Včelák
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Paul Wouters
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Dick Franks
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Dick Franks
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Matthijs Mekking
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Dick Franks
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Mark Andrews
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Jan Včelák
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Dick Franks
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Mark Andrews
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Matthijs Mekking
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Ondřej Caletka
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Ondřej Caletka
Re: [DNSOP] [Technical Errata Reported] RFC8078 (… Warren Kumari

Re: [DNSOP] [Technical Errata Reported] RFC8078 (5049)

Attachment: smime.p7s