This is an epel package but I thought that I would ask here first. I
am encountering unexpected behaviour from this program and I would
like to know if it is a bug, or I am configuring something wrong, of
if this is intended behaviour.
ldns-dane version 1.6.16 (ldns version 1.6.16)
When I attempt to specify the entire certificate as the desired data
source for this program I get the following error:
ldns-dane \
-n -o 0 \
-c CA_HLL_ROOT_2016.pem \
create harte-lyne.ca 443 \
2 0 2
<selector> should be in range [0-1]
Likewise I cannot specify the output format as no-hash.
ldns-dane \
-n -o 0 \
-c CA_HLL_ROOT_2016.pem \
create harte-lyne.ca 443 \
2 1 0
<matching type> should be in range [0-2]
In fact, 0 is not an accepted value in any of these positions:
ldns-dane \
-n -o 0 \
-c CA_HLL_ROOT_2016.pem \
create harte-lyne.ca 443 \
0 1 1
<certificate usage> should be in range [0-3]
Why is zero invalid?
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit sensitive data via e-Mail
Do NOT open attachments nor follow links sent by e-Mail
James B. Byrne mailto:ByrneJB at Harte-Lyne.ca
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3