Refeds


Subject Re: SCHAC OIDs
From Heather Flanagan <hlflanagan@xxxxxxxxx>
Date Mon, 13 Oct 2014 16:17:51 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/13/14 5:50 AM, Brook Schofield wrote:
> When you say "Original" what time period do you mean? ...and
> therefore for "Update" when do you mean?

Ah, ancient history lesson time!

If you go to the page that refers to the original IANA assignment,
http://www.terena.org/activities/tf-emc2/oid.html, you will see:

The branch 1.3.6.1.4.1.25178.1 is reserved for SCHAC.

    1.3.6.1.4.1.25178.1.1 - Branch for SCHAC LDAP object classes
    1.3.6.1.4.1.25178.1.2 - Branch for SCHAC LDAP attributes


However, if you go to the URN registry,
https://urnreg.terena.org/browser/browser-oid.php?go=1.3.6.1.4.1.25178.1,
you will see:

    1.3.6.1.4.1.25178.1.2 - SCHAC attributes that are being tested or
were tested at some point in time.”
    1.3.6.1.4.1.25178.1.1 - Attributes that have been accepted as
official in SCHAC”


I don't know why there is this discrepancy, and it seems like several
people have implemented the OID structure as registered with IANA.

Who will actually, not just theoretically, have things break if we
make things match the registry?  Fascinating question, and hopefully
the organizations who have implemented SCHAC are looking at this
mailing list and can let us know if this would be a horrible breaking
change.  I can tell you that NOT fixing it is considered a horrible
breaking change to some members of the SCHAC editorial board.

Does that help?
Heather



> 
> 
> I'm looking at 1.4.0 and it has:
> 
> objectIdentifier TERENA 1.3.6.1.4.1.25178
> 
> objectIdentifier schac TERENA:1 objectIdentifier schacExperimental
> schac:0 objectIdentifier schacObjectClass schac:1 objectIdentifier
> schacAttributeType schac:2 objectIdentifier schacExpObjClass
> schacExperimental:1 objectIdentifier schacExpAttr
> schacExperimental:2
> 
> so therefore "Current" is:
> 
> 1.3.6.1.4.1.25178.1.0.1 <-- schac experimental object class 
> 1.3.6.1.4.1.25178.1.0.2 <-- schac experimental attrs
> 
> 1.3.6.1.4.1.25178.1.1 <-- schac object class(es) 
> 1.3.6.1.4.1.25178.1.2 <-- schac attrs
> 
> From all the versions of SCHAC:
> 
> 
> 2 objectIdentifier schac RedIRIS:4.6 5 objectIdentifier schac
> TERENA:1 <-- base of SCHAC changed from v1.1.1 onward
> 
> 7 objectIdentifier schacObjectClass schac:1 <-- good no change here
> (except for 1.1.1 base) 7 objectIdentifier schacAttributeType
> schac:2
> 
> 2 objectIdentifier schacExperimental schac:0 <-- introduced in
> 1.4.0 + later 2 objectIdentifier schacExpAttr schacExperimental:2 2
> objectIdentifier schacExpObjClass schacExperimental:1
> 
> 
> so I'm really confused about redefining:
> 
> 1.3.6.1.4.1.25178.1.1 <-- schac object class(es) to: 
> “1.3.6.1.4.1.25178.1.1 - Attributes that have been accepted as
> official in SCHAC”
> 
> and
> 
> 1.3.6.1.4.1.25178.1.2 <-- schac attrs to: “1.3.6.1.4.1.25178.1.2 -
> SCHAC attributes that are being tested or were tested at some point
> in time.”
> 
> particularly for those that have performed a schema extension
> within LDAP.
> 
> I'm probably missing something here - I'm either way off base - or
> very confused.
> 
> -Brook
> 
> 
> 
> 
> 
> 
> On 13 October 2014 12:48, Leif Johansson <leifj@xxxxxxxx 
> <mailto:leifj@xxxxxxxx>> wrote:
> 
> On 2014-10-12 19:32, Heather Flanagan wrote:
> 
>> Hello REFEDS,
> 
>> Several years ago, an error was introduced into the SCHAC OID 
>> structure:
> 
>> Original: “1.3.6.1.4.1.25178.1.2 - Branch for SCHAC LDAP 
>> attributes” “1.3.6.1.4.1.25178.1.1 - Branch for SCHAC LDAP
>> object classes”
> 
>> Update: “1.3.6.1.4.1.25178.1.2 - SCHAC attributes that are being 
>> tested or were tested at some point in time.” 
>> “1.3.6.1.4.1.25178.1.1 - Attributes that have been accepted as 
>> official in SCHAC”
> 
> 
>> After discussion with the SCHAC editorial board, we are
>> proposing to fix this error and reconcile the URN registry with
>> the original information.
> 
>> Community input is welcome.  If no discussion or argument is
>> heard, we will make this change on November 15, 2014.
> 
>> Heather Flanagan
> 
> 
> My head hurts. Who will get bitten by this: everyone, those have 
> deployed current OIDs or nobody at all?
> 
> 
> 
> 
> -- =================================================== Brook
> Schofield, TERENA Project Development Officer TERENA Secretariat,
> Singel 468 D, 1017 AW Amsterdam, The Netherlands Tel +31 20 530
> 4488    Fax +31 20 530 4499    Mob +31 65 155 3991 www.terena.org
> <http://www.terena.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org

iQEcBAEBAgAGBQJUPF2fAAoJEBTitMubYA+RyQkH/3MsUlKKYmra+Y4J7+RdUvzR
OXWOfri0rWV2ddETt/IzwQQubBMNtll31qau+AKD2NlrWYhE61IlV3xvcYWVdBwE
R6S/37E14OzyVy4X9p323S3gqQNGIEi2t42HEBac7dpDLpSsOCk+F0kQRWMsdnbs
VIgxl5+QsEopU5Hs5Ev2JubvLdXNlA14RaIXPVPpWRJY0j0ye7JdG4l/HHx8lV01
5JIwPrVrMDcLVUYYeQ/cKNb1rrs8a7nlczOeQ3uE7H9FK1bvIpD0x5eo4m4d7OcT
XZexlLiGGUhYeviwL36vI5OGVklyasldNTDmalsiDYV+oUmaMDphOewpliSScLA=
=BFJN
-----END PGP SIGNATURE-----