Re: Proposed Up/Down protocol description

To: Robert Loomans <robertl@apnic.net>, Byron Ellacott <bje@apnic.net>
Subject: Re: Proposed Up/Down protocol description
From: Geoff Huston <gih@apnic.net>
Date: Thu, 24 May 2007 14:15:13 +1000
Cc: Resource Cert List <rescert@apnic.net>
In-reply-to: <4654FA0D.8020006@apnic.net>
References: <7.0.0.16.2.20070516122258.07116810@apnic.net> <20070517225346.BA1DA22826@thrintun.hactrn.net> <7.0.0.16.2.20070518165228.014415b8@apnic.net> <20070518175247.9CCFF22826@thrintun.hactrn.net> <AC9A3E81-D0BB-4B18-8C40-015875E46084@apnic.net> <4651AABA.9020804@psg.com> <7.0.0.16.2.20070522114938.029556a0@apnic.net> <4654134B.50908@ripe.net> <7.0.0.16.2.20070524080257.0142a508@apnic.net> <2BA6F6CF-ACFF-4F0D-9690-12B5D444C087@apnic.net> <4654FA0D.8020006@apnic.net>

At 12:35 PM 24/05/2007, Robert Loomans wrote:

> It's possible to restrict the minimum and maximum length of otherwise
> freeform strings with XML Schema Datatypes.  It is also relatively
> trivial.  It is harder to agree on a sensible maximum length, since
> there are so many reasonable choices that are driven primarily by
> preference.

Some of the strings have natural lengths:

- type, status, code, etc are enumerated
- g(SKI) and g(AKI) are an exact length

(BTW, do we *mean* g(SKI), ie, g(SHA1(public key)), or do we really just
want to put in the hex of SKI, ie, SHA1(public key), instead? The only
interesting thing about g(SKI) was that it's filesystem/URL safe.)



SKI = sha1(public key) in my lexicon

so g(ski) is g(sha1(public key))

- suggested_sia_head is a filesystem path so it should be some sort of
lowest common denominator of the PATH_MAX of the platforms that will be
running this (typically 1K)
- cert serial length(decimal(2^(8*20))) (RFC 3280 says 20 octets)
- msg_ref is length(decimal(2^64)) (or maybe length(decimal(2^128)))

The remaining fields, sender, recipient, class name and the
resource_set_*, we could take one of two approaches:

- try to estimate what would be "sensible" maximums based on the
conceivable maximum number of entities involved. eg, sender, recipient,
and classname are 255 chars, resource_set_* are 4k

- make the maximums stupidly large. eg, sender, recipient, and classname
can be 1K (or 4K, or....), resource_set_* are 8k (or 16k, or....)



see my prev posting on this for an initial suggestion


g

Follow-Ups:
- Re: Proposed Up/Down protocol description
  - From: Robert Loomans <robertl@apnic.net>

References:
- Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Rob Austein <sra@hactrn.net>
- Re: Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Rob Austein <sra@hactrn.net>
- Re: Proposed Up/Down protocol description
  - From: Byron Ellacott <bje@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Randy Bush <randy@psg.com>
- Re: Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Robert Kisteleki <robert@ripe.net>
- Re: Proposed Up/Down protocol description
  - From: Geoff Huston <gih@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Byron Ellacott <bje@apnic.net>
- Re: Proposed Up/Down protocol description
  - From: Robert Loomans <robertl@apnic.net>

Prev by Date: Re: Proposed Up/Down protocol description
Next by Date: Re: Proposed Up/Down protocol description
Previous by thread: Re: Proposed Up/Down protocol description
Next by thread: Re: Proposed Up/Down protocol description
Index(es):
- Date
- Thread