Re: [dnsext] SIG inception/expiration
bmanning@vacation.karoshi.com Tue, 03 January 2012 22:03 UTC
Return-Path: <dnsext-bounces@ietf.org>
X-Original-To: namedroppers-archive-gleetwall6@lists.ietf.org
Delivered-To: ietfarch-namedroppers-archive-gleetwall6@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ED94311E80CE; Tue, 3 Jan 2012 14:03:27 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1325628208; bh=Hxrg2/m2mCHovzXH76NX7slT+ohpEciSj7DhbrtqEaQ=; h=Date:From:To:Message-ID:References:Mime-Version:In-Reply-To:Cc: Subject:List-Id:List-Unsubscribe:List-Archive:List-Post:List-Help: List-Subscribe:Content-Type:Content-Transfer-Encoding:Sender; b=AEoMxhHx/ekvOPSFS8UQ7X741m95PJy02mbDzafrSMtsHvS6xFpK8fFlK9+TjrJXA ftaoyhkz1v+/11lQyaTY+HDx7c+PyGDE963ilJM3jcqzzgoiTyjP8emlgqfrSjh5dh qYnrStqfqyEXp43NY96tSYbXUx6QRJT9gzlOfxmk=
X-Original-To: dnsext@ietfa.amsl.com
Delivered-To: dnsext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B09A811E80CE for <dnsext@ietfa.amsl.com>; Tue, 3 Jan 2012 14:03:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VUrc-welMrMr for <dnsext@ietfa.amsl.com>; Tue, 3 Jan 2012 14:03:25 -0800 (PST)
Received: from vacation.karoshi.com (vacation.karoshi.com [198.32.6.68]) by ietfa.amsl.com (Postfix) with ESMTP id BC60F11E80CC for <dnsext@ietf.org>; Tue, 3 Jan 2012 14:03:25 -0800 (PST)
Received: from karoshi.com (localhost.localdomain [127.0.0.1]) by vacation.karoshi.com (8.12.8/8.12.8) with ESMTP id q03M3PJL000576; Tue, 3 Jan 2012 22:03:25 GMT
Received: (from bmanning@localhost) by karoshi.com (8.12.8/8.12.8/Submit) id q03M3OIf000575; Tue, 3 Jan 2012 22:03:24 GMT
Date: Tue, 03 Jan 2012 22:03:24 +0000
From: bmanning@vacation.karoshi.com
To: Olafur Gudmundsson <ogud@ogud.com>
Message-ID: <20120103220324.GA395@vacation.karoshi.com.>
References: <20120102104613.GB12764@miek.nl> <4F0373E5.1000207@ogud.com>
Mime-Version: 1.0
Content-Disposition: inline
In-Reply-To: <4F0373E5.1000207@ogud.com>
User-Agent: Mutt/1.4.1i
Cc: dnsext@ietf.org
Subject: Re: [dnsext] SIG inception/expiration
X-BeenThere: dnsext@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: DNS Extensions working group discussion list <dnsext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsext>, <mailto:dnsext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsext>
List-Post: <mailto:dnsext@ietf.org>
List-Help: <mailto:dnsext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsext>, <mailto:dnsext-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: dnsext-bounces@ietf.org
Errors-To: dnsext-bounces@ietf.org
On Tue, Jan 03, 2012 at 04:32:21PM -0500, Olafur Gudmundsson wrote: > > I do not remember why/if the order was changed, but seem to recall that > my first DNSSEC code written in fall 1994 (signer) did not inter operate > with later code (resolver spring 1995) and the reason was the order > change and I always coded from current drafts. gahhh... should I pull out my code fm that era? > >In RFC 2535 "time signed" is renamed to "signature inception", but the > >ordering isn't changed. So it's "signature expiration", "signature > >inception". > > > >Does anybody know (remember?) why the switch was made during > >draft-ietf-dnssec-secext-00 and -02? > > > > No and I can not find version 01 anywhere. WDIFF sez: http://ietfreport.isoc.org/cgi-bin/htmlwdiff?f1=..%2Fall-ids%2Fdraft-ietf-dnssec-secext-02.txt&f2=..%2Fall-ids%2Fdraft-ietf-dnssec-secext-01.txt this didn't change btwn 01 and 02... WDIFF sez it didn't change btwn 00 and 01... BUT.... 00-01 has this identical text: 5.1 SIG RDATA Format The RDATA portion of a SIG RR is as shown below. The integrity of the RDATA information and that of the SIG RRs owner, type, and class are protected by the signature field. 1 1 1 1 1 1 1 1 1 1 2 2 2 2 2 2 2 2 2 2 3 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | signer's name | / / +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | original TTL | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | time signed | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | signature expiration | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | sig length | / +-+-+-+-+-+-+-+-+ signature -+ / / +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 01-02 has this identical text: 4.1 SIG RDATA Format The RDATA portion of a SIG RR is as shown below. The integrity of the RDATA information and that of the SIG RRs owner, type, and class are protected by the signature field. 1 1 1 1 1 1 1 1 1 1 2 2 2 2 2 2 2 2 2 2 3 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | type covered | algorithm | labels | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | original TTL | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | signature expiration | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | time signed | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | key footprint | / +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ signer's name / / / +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | signature / / / +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ -------------------------------------------------------------------------------- /bill > > Olafur > _______________________________________________ > dnsext mailing list > dnsext@ietf.org > https://www.ietf.org/mailman/listinfo/dnsext _______________________________________________ dnsext mailing list dnsext@ietf.org https://www.ietf.org/mailman/listinfo/dnsext
- [dnsext] SIG inception/expiration Miek Gieben
- Re: [dnsext] SIG inception/expiration Mark Andrews
- Re: [dnsext] SIG inception/expiration Miek Gieben
- Re: [dnsext] SIG inception/expiration bmanning
- Re: [dnsext] SIG inception/expiration Edward Lewis
- Re: [dnsext] SIG inception/expiration Donald Eastlake
- Re: [dnsext] SIG inception/expiration John Dickinson
- Re: [dnsext] SIG inception/expiration Olafur Gudmundsson
- Re: [dnsext] SIG inception/expiration bmanning
- Re: [dnsext] SIG inception/expiration Mark Andrews
- Re: [dnsext] SIG inception/expiration Miek Gieben