On Mon, 26 Jun 2017, Jan Včelák wrote:
It is maybe suboptimal that wire format for DS/DNSKEY delete-request was not specified in the document.
The reason we did not, was that we did not mean to have anything "special" on either the presentation or the wire format, so there was no need to specify a wire format. When Mathijs noticed it was different, we added his disclaimer that the presentation format (and thus wireformat) was different. Once we added the additional zeros, we were no longer using a different format, so we removed that disclaimer again. We thought we no longer asked something non-standard.
The implementers should be careful and avoid the trouble. In this sense, I think parent zone should accept both zero-length and one-byte long digests/keys as a request to remove the DS.
Yes that seems best. In fact, it could ignore the entire digest field content when algorithm 0 is found. And the cross this with another giant ietf-thread, that is a correct application of the Postel Principle :P Paul _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
