Network Working Group P. Leach Internet-Draft Microsoft Expires: April 2, 2004 M. MeallingInternet-DraftVeriSign, Inc.Expires: April 1, 2003 P. Leach MicrosoftR. SalzDatapowerDataPower Technology, Inc. October20023, 2003 A UUID URN Namespacedraft-mealling-uuid-urn-00.txtdraft-mealling-uuid-urn-01.txt Status of this Memo This document is an Internet-Draft and is in full conformance with all provisions of Section 10 of RFC2026. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF), its areas, and its working groups. Note that other groups may also distribute working documents asInternet- Drafts.Internet-Drafts. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." The list of current Internet-Drafts can be accessed at http:// www.ietf.org/ietf/1id-abstracts.txt. The list of Internet-Draft Shadow Directories can be accessed at http://www.ietf.org/shadow.html. This Internet-Draft will expire on April1, 2003.2, 2004. Copyright Notice Copyright (C) The Internet Society(2002).(2003). All Rights Reserved. Abstract This specification defines a Uniform Resource Name namespace for UUIDs((Universally Unique IDentifier), also known as GUIDs (Globally Unique IDentifier). A UUID is 128 bits long, andif generated according to the onecan provide a guarantee ofthe mechanisms in this document, is either guaranteed to be different from all other UUIDs/GUIDs generated until 3400 A.D. or extremely likely to be different (depending on the mechanism chosen).uniqueness across space and time. UUIDs were originally used in the Network Computing System (NCS) [1] and later in the Open Software Foundation's (OSF) Distributed Computing Environment [2]. This specification is derived from the latter specification with the kind permission of theOSF.OSF (now known as Theoriginal versionOpen Group). Earlier versions of this documentwas written by Paul Leach and Rich Salz but was unpublished for several years. This is an updated version incorporated as part of the URN registration document.never left draft stage; this document incorporates that information here. Table of Contents 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . .43 2. Motivation . . . . . . . . . . . . . . . . . . . . . . . . .43 3. Namespace Registration Template . . . . . . . . . . . . . .43 4. Specification . . . . . . . . . . . . . . . . . . . . . . .76 4.1 Format . . . . . . . . . . . . . . . . . . . . . . . . . . .76 4.1.1 Variant . . . . . . . . . . . . . . . . . . . . . . . . . .76 4.1.2UUIDLayout and byte order . . . . . . . . . . . . . . . . . . .. . . . . 86 4.1.3 Version . . . . . . . . . . . . . . . . . . . . . . . . . .98 4.1.4 Timestamp . . . . . . . . . . . . . . . . . . . . . . . . .108 4.1.5 Clock sequence . . . . . . . . . . . . . . . . . . . . . . .108 4.1.6 Node . . . . . . . . . . . . . . . . . . . . . . . . . . . .119 4.1.7 Nil UUID . . . . . . . . . . . . . . . . . . . . . . . . . .1110 4.2 Algorithms for creating a time-based UUID . . . . . . . . .1210 4.2.1 Basic algorithm . . . . . . . . . . . . . . . . . . . . . .1210 4.2.2Reading stable storage . . . . . . . . . . . . . . . . . . . 13 4.2.3 System clock resolution . . . . . . . . . . . . . . . . . . 13 4.2.4 Writing stable storage . . . . . . . . . . . . . . . . . . . 14 4.2.5 Sharing state across processes . . . . . . . . . . . .Generation details . . .14 4.2.6 UUID Generation details. . . . . . . . . . . . . . . . . .1412 4.3 Algorithm for creating a name-based UUID . . . . . . . . . .15 5.13 4.4 Algorithms for creating a UUID from truly random or pseudo-random numbers . . . . . . . . . . . . . . . . . . .16 6. Byte order of UUIDs . . . . . . . . . . . . . . . . . . . . 17 7.14 4.5 Node IDswhen no IEEE 802 network card is available . . . . 17 8. Obtaining IEEE 802 addresses . . . . .that do not identify the host . . . . . . . . . . .19 9.15 5. Community Considerations . . . . . . . . . . . . . . . . . .19 10.16 6. Security Considerations . . . . . . . . . . . . . . . . . .20 11. Acknowledgements17 7. Acknowledgments . . . . . . . . . . . . . . . . . . . . . .2017 Normative References . . . . . . . . . . . . . . . . . . . .2017 Authors' Addresses . . . . . . . . . . . . . . . . . . . . .2118 A. Appendix A -UUIDSample Implementation . . . . . . . . . .21. . . 18 B. Appendix B - Sample output of utest . . . . . . . . . . . .3329 C. Appendix C - Some name space IDs . . . . . . . . . . . . . .33 Full29 Intellectual Property and CopyrightStatement . . . . . .Statements . . . . . . .. . . . . 3531 1. Introduction This specification defines a Uniform Resource Name(URN) [4]namespace for UUIDs (Universally UniqueIDentifiers),IDentifier), also known as GUIDs (Globally UniqueIDentifiers).IDentifier). A UUID is 128 bits long, andif generated according to the one of the mechanisms in this document,requires no central registration process. The information here iseither guaranteed to be different from all other UUIDs/GUIDs generated until 3400 A.D. or extremely likelymeant to bedifferent (depending on the mechanism chosen). It is extremely important to note that most of the text in this document originated with Paul Leach and Rich Salz. It has been modified in ordera concise guide for those wishing tobe compliant with URN namespace registration procedures.implement services using UUIDs as URNs. Nothing in this document should be construed to mean that itsupercedessupersedes the DCE standards that defined UUIDs to begin with.The information here is simply meant as a concise guide for those wishing to implement services using UUIDs as URNs.2. Motivation One of the main reasons for using UUIDs is that no centralized authority is required to administer them(beyond the(although onethat allocatesformat uses IEEE 802.1 nodeidentifiers).identifiers, others do not). As a result, generation on demand can be completely automated, and they can be used for a wide variety of purposes. The UUID generation algorithm described here supports very high allocation rates: 10 million per second per machine ifyou need it,necessary, so that they could even be used as transaction IDs. UUIDs arefixed-sizeof a fixed size (128-bits) which is reasonably small relative to other alternatives. Thisfixed, relatively small sizelends itself well to sorting, ordering, and hashing of all sorts, storing in databases, simple allocation, and ease of programming in general. Since UUIDs are unique andpersistent given correct time settings,persistent, they make excellent Uniform Resource Names. The unique ability to generate a newUUIDsUUID without a registration process allows for UUIDs to be one of theURNURNs with the lowest minting cost. 3. Namespace Registration Template Namespace ID: UUID Registration Information: Registration date:2002-10-012003-10-01 Declared registrant of the namespace: JTC 1/SC6 (ASN.1 Rapporteur Group) Declaration of syntactic structure: A UUID is an identifier that is unique across both space and time, with respect to the space of all UUIDs.To be precise, the UUID consists of a finite bit space. Thus the time value used for constructingSince a UUID islimiteda fixed size andwill roll over in the future (approximately atcontains a time field, it is possible for values to rollover (around A.D. 3400,baseddepending on thespecified algorithm).specific algorithm used). A UUID can be used for multiple purposes, from tagging objects with an extremely short lifetime, to reliably identifying very persistent objects across a network. The internal representation of a UUID is aspecficspecific sequence of bits inmemory.memory, as described in Section 4. In order to accurately represent a UUID as aURNURN, it is necessary to convert the bit sequence to a string representation.The exact sequence and meaning of this bit sequence is covered in Section 4Each field is treated as an integer and has its value printed as a zero-filled hexadecimal digit string with the most significant digit first. The hexadecimal values atothrough finclusiveare output as lower case characters, and are case insensitive on input. Thesequence is the same as the UUID constructed type. Theformal definition of the UUID string representation is provided by the following extended BNF: UUID = <time_low> "-" <time_mid> "-" <time_high_and_version> "-" <clock_seq_and_reserved> <clock_seq_low> "-" <node> time_low = 4*<hexOctet> time_mid = 2*<hexOctet> time_high_and_version = 2*<hexOctet> clock_seq_and_reserved = <hexOctet> clock_seq_low = <hexOctet> node = 6*<hexOctet hexOctet = <hexDigit> <hexDigit> hexDigit = "0" | "1" | "2" | "3" | "4" | "5" | "6" | "7" | "8" | "9" | "a" | "b" | "c" | "d" | "e" | "f" | "A" | "B" | "C" | "D" | "E" | "F" The following is an example of the string representation of a UUID as a URN: urn:uuid:f81d4fae-7dec-11d0-a765-00a0c91e6bf6 Relevant ancillary documentation: [2] Identifier uniqueness considerations:DueThis document specifies three algorithms to generate UUIDs: thecombinationfirst leverages the unique values ofspacial and temporal components802.1 MAC addresses to guarantee uniqueness, the second another uses pseudo-random number generators, and thefact that spatial uniquenessthird uses cryptographic hashing and application-provided text strings. As a result, it ismaintained via 802.1 MAC addresses, all UUIDspossible to guarantee thatareUUIDs generated according to thestandards and techniques mentioned in this document aremechanisms here will be unique from all other UUIDs that have been or will be assigned. Identifier persistence considerations: UUIDs are inherently very difficult to resolve in a global sense. This, coupled with the fact that UUIDs are temporally unique within their spatial context, ensures that UUIDs will remain as persistent as possible. Process of identifier assignment:The generation of UUIDsGenerating a UUID does not require that it be a registration authority becontacted for each identifier. Instead, itcontacted. One algorithm requires a unique value over space for eachUUIDgenerator. Thisspatially uniquevalue isspecified astypically an IEEE 802 address,which isusually already availabletoon network-connectedsystems. This 48-bithosts. The address can be assignedbased onfrom an address block obtainedthroughfrom the IEEE registration authority.This section of the UUID specification assumes the availability of an IEEE 802If no such addressto a system desiring to generate a UUID, but if oneisnot availableavailable, or privacy concerns make its use undesirable, Section74.5 specifiesa waytwo alternatives; another approach is togenerate a probabilistically unique one that can not conflict with any properly assigned IEEE 802 address.use version 3 or version 4 UUIDs as defined below. Process for identifier resolution:Due toSince UUIDs are notbeingglobally resolvable, thisvalueis not applicable. Rules for Lexical Equivalence: Consider each field of the UUID to be an unsigned integer as shown in the table in section3.1.Section 4.1.2. Then, to compare a pair of UUIDs, arithmetically compare the corresponding fields from each UUID in order of significance and according to their data type. Two UUIDs are equal if and only if all the corresponding fields are equal.Note: as a practical matter,As an implementation note, on many systemscomparison of two UUIDs forequality comparison can be performedsimply by comparing the 128 bits of their in-memory representation considered as a 128 bit unsigned integer. Here, it is presumed thatbythe time the in- memory representation is obtaineddoing the appropriate byte-ordercanonicalizations have been carried out. Two UUIDs allocated according tocanonicalization, and then treating thesame varianttwo UUIDs as 128-bit unsigned integers. UUIDs as defined in this document can also be ordered lexicographically. Forthe UUID variant herein defined,a pair of UUIDs, the firstof two UUIDsone follows the second if the most significant field in which the UUIDs differ is greater for the first UUID. Thefirst of a pair of UUIDssecond precedes thesecondfirst if the most significant field in which the UUIDs differ is greater for the second UUID. Conformance with URN Syntax: The string representation of a UUIDproduces a string thatis fully compatible with the URN syntax. When converting from an bit-oriented, in-memory representation of a UUID into a URN, care must be taken to strictly adhere to the byte order issues mentioned in the string representation section. Validation mechanism:AppartApart from determining if the timestamp portion of the UUID is in the future andthus notherefore not yet assignable, there is no mechanism for determining if a UUID is 'valid' in any real sense. Scope: UUIDs are global in scope. 4. Specification 4.1 Format In its most general form, all that can be said of the UUID format is that a UUID is 16 octets, and that some bits ofoctet 8 oftheUUID calledeight octet -- the variant field(specified in the next section)specified below -- determine finer structure. 4.1.1 Variant The variant field determines the layout of the UUID. That is, the interpretation of all other bits in the UUID depends on the setting of the bits in the variant field. As such, it could more accurately be called a type field; we retain the original term for compatibility. The variant field consists of a variable number of themsbsmost significant bits of the eighth octet8of the UUID. The following table lists the contents of the variantfield.field, where the letter "x" indicates a "don't-care" value. Msb0 Msb1 Msb2 Description 0- -x x Reserved, NCS backward compatibility. 1 0-x The variant specified in this document. 1 1 0 Reserved, Microsoft Corporation backward compatibility 1 1 1 Reserved for future definition.Other UUID variants may not interoperateInteroperability (in any form) with variants other than theUUID variant specified in this document, where interoperability isone definedas the applicability of operations such as string conversion and lexical ordering across different systems. However, UUIDs allocated according to the stricture of different variants, though they may define different interpretations of the bits outside the variant field, willhere is notresultguaranteed. This is unlikely to be an issue induplicate UUID allocation, because of the differing values of the variant field itself. The remaining fields described below (version, timestamp, etc.) are defined only for the UUID variant noted above.practice. 4.1.2UUIDLayoutThe following table gives the format of a UUID for the variant specified herein. The UUID consists of a record of 16 octets.and byte order To minimize confusion about bit assignments within octets, the UUID record definition is defined only in terms of fields that are integral numbers of octets. The fields arein order of significance for comparison purposes,presented with"time_low"the mostsignificant, and "node" the least significant.significant one first. Field Data Type Octet Note # time_low unsigned 32 0-3 The low field of the bit integertimestamp.timestamp time_mid unsigned 16 4-5 The middle field of the bit integertimestamp.timestamp time_hi_and_version unsigned 16 6-7 The high field of the bit integer timestamp multiplexed with the versionnumber.number clock_seq_hi_and_rese unsigned 8 8 The high field of the rved bit integer clock sequence multiplexed with thevariant.variant clock_seq_low unsigned 8 9 The low field of the bit integer clocksequence.sequence node unsigned 48 10-15 The spatially unique bit integer nodeidentifier.identifier In the absence of explicit application or presentation protocol specification to the contrary, a UUID is encoded as a 128-bit object, as follows: the fields are encoded as 16 octets, with the sizes and order of the fields defined above, and with each field encoded with the Most Significant Byte first (this is known as network byte order). 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | time_low | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | time_mid | time_hi_and_version | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |clk_seq_hi_res | clk_seq_low | node (0-1) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | node (2-5) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 4.1.3 Version The version number is in the most significant4four bits of the time stamp (time_hi_and_version). The following table listscurrently defined versions oftheUUID.currently-defined versions for this UUID variant. Msb0 Msb1 Msb2 Msb3 Version Description 0 0 0 1 1 The time-based version specified in this document. 0 0 1 0 2Reserved forDCE Security version, with embedded POSIX UIDs. 0 0 1 1 3 The name-based version specified in thisdocumentdocument. 0 1 0 0 4 The randomly or pseudo- randomly generated version specified in thisdocumentdocument. The version is more accurately a sub-type; again, we retain the term for compatibility. 4.1.4 Timestamp The timestamp is a60 bit60-bit value. For UUID version 1, this is represented by Coordinated Universal Time (UTC) as a count of100- nanosecond100-nanosecond intervals since 00:00:00.00, 15 October 1582 (the date of Gregorian reform to the Christian calendar). For systems that do not have UTC available, but do have the local time, theyMAYmay uselocal timethat instead of UTC, as long as they do so consistently throughout the system. This isNOT RECOMMENDED,not recommended however,and it should be noted thatparticularly since all that is needed to generateUTC, givenUTC from localtime,time is a time zone offset. For UUID version 3,itthe timestamp is a60 bit60-bit value constructed from aname.name as described in Section 4.3. For UUID version 4, it is a randomly or pseudo-randomly generated60 bit value.60-bit value, as described in Section 4.4. 4.1.5 Clock sequence For UUID version 1, the clock sequence is used to help avoid duplicates that could arise when the clock is set backwards in time or if the node ID changes. If the clock is set backwards, or even might have been set backwards (e.g., while the system was powered off), and the UUID generator can not be sure that no UUIDs were generated with timestamps larger than the value to which the clock was set, then the clock sequence has to be changed. If the previous value of the clock sequence is known, it can be just incremented; otherwise it should be set to a random or high-quality pseudo random value. Similarly, if the node ID changes (e.g. because a network card has been moved between machines), setting the clock sequence to a random number minimizes the probability of a duplicate due to slight differences in the clock settings of the machines. (If the value of clock sequence associated with the changed node ID were known, then the clock sequence could just be incremented, but that is unlikely.) The clock sequence MUST be originally (i.e., once in the lifetime of a system) initialized to a random number to minimize the correlation across systems. This provides maximum protection against node identifiers that may move or switch from system to system rapidly. The initial value MUST NOT be correlated to the node identifier. For UUID version 3, it is a14 bit14-bit value constructed from aname.name as described in Section 4.3. For UUID version 4, it is a randomly or pseudo-randomly generated14 bit value.14-bit value as described in Section 4.4. 4.1.6 Node For UUID version 1, the node field consists of the IEEE address, usually the host address. For systems with multiple IEEE 802 addresses, any available address can be used. The lowest addressed octet (octet number 10) contains the global/local bit and the unicast/multicast bit, and is the first octet of the address transmitted on an 802.3 LAN. For systems with no IEEE address, a randomly or pseudo-randomly generated value may beused (see section 4).used; see Section 4.5. The multicast bit must be set in such addresses, in order that they will never conflict with addresses obtained from network cards. For UUID version 3, the node field is a48 bit48-bit value constructed from aname.name as described in Section 4.3. For UUID version 4, the node field is a randomly or pseudo-randomly generated48 bit value.48-bit value as described in Section 4.4. 4.1.7 Nil UUID The nil UUID is special form of UUID that is specified to have all 128 bits set to0 (zero).zero. 4.2 Algorithms for creating a time-based UUID Various aspects of the algorithm for creating a version 1 UUID are discussed in the following sections.UUID generation requires a guarantee of uniqueness within the node ID for a given variant and version. Interoperability is provided by complying with the specified data structure.4.2.1 Basic algorithm The following algorithm is simple, correct, and inefficient: o Obtain asystem widesystem-wide global lock o From asystem widesystem-wide shared stable store (e.g., a file), read the UUID generator state: the values of the time stamp, clock sequence, and node ID used to generate the last UUID. o Get the current time as a60 bit60-bit count of 100-nanosecond intervals since 00:00:00.00, 15 October 1582 o Get the current node ID o If the state was unavailable(non-existent(e.g., non-existent or corrupted), or the saved node ID is different than the current node ID, generate a random clock sequence value o If the state was available, but the saved time stamp is later than the current time stamp, increment the clock sequence value oFormat a UUID from the current time stamp, clock sequence, and node ID values according to the structure in section 3.1 (see section 3.2.6 for more details) oSave the state (current time stamp, clock sequence, and node ID) back to the stable store o Release thesystem wideglobal lock o Format a UUID from the current time stamp, clock sequence, and node ID values according to the steps in Section 4.2.2. If UUIDs do not need to be frequently generated, the above algorithm may be perfectly adequate. For higher performance requirements, however, issues with the basic algorithm include: o Reading the state from stable storage each time is inefficient o The resolution of the system clock may not be 100-nanoseconds o Writing the state to stable storage each time is inefficient o Sharing the state across process boundaries may be inefficient Each of these issues can be addressed in a modular fashion by local improvements in the functions that read and write the state and read the clock. We address each of them in turn in the following sections.4.2.24.2.1.1 Reading stable storage The state only needs to be read from stable storage once at boot time, if it is read into asystem widesystem-wide shared volatile store (and updated whenever the stable store is updated). If an implementation does not have any stable store available, then it can always say that the values were unavailable. This is the least desirable implementation, because it will increase the frequency of creation of new clock sequence numbers, which increases the probability of duplicates. If the node ID can never change (e.g., the net card is inseparable from the system), or if any change also reinitializes the clock sequence to a random value, then instead of keeping it in stable store, the current node ID may be returned.4.2.34.2.1.2 System clock resolution The time stamp is generated from the system time, whose resolution may be less than the resolution of the UUID time stamp. If UUIDs do not need to be frequently generated, the time stamp can simply be the system time multiplied by the number of 100-nanosecond intervals per system time interval. If a system overruns the generator by requesting too many UUIDs within a single system time interval, the UUID service MUST either: return an error, or stall the UUID generator until the system clock catches up. A high resolution time stamp can be simulated by keeping a count of how many UUIDs have been generated with the same value of the system time, and using it to construction the low-order bits of the time stamp. The count will range between zero and the number of100- nanosecond100-nanosecond intervals per system time interval. Note: if the processors overrun the UUID generation frequently, additional node identifiers can be allocated to the system, which will permit higher speed allocation by making multiple UUIDs potentially available for each time stamp value.4.2.44.2.1.3 Writing stable storage The state does not always need to be written to stable store every time a UUID is generated. The timestamp in the stable store can be periodically set to a value larger than any yet used in a UUID; as long as the generated UUIDs have time stamps less than that value, and the clock sequence and node ID remain unchanged, only the shared volatile copy of the state needs to be updated. Furthermore, if the time stamp value in stable store is in the future by less than the typical time it takes the system to reboot, a crash will not cause a reinitialization of the clock sequence.4.2.54.2.1.4 Sharing state across processes If it is too expensive to access shared state each time a UUID is generated, then thesystem widesystem-wide generator can be implemented to allocate a block of time stamps each time it is called, and aper- processper-process generator can allocate from that block until it is exhausted.4.2.6 UUID4.2.2 Generation details Version 1 UUIDs are generated according to the following algorithm: o Determine the values for the UTC-based timestamp and clock sequence to be used in the UUID, as describedabove.in Section 4.2.1. o For the purposes of this algorithm, consider the timestamp to be a 60-bit unsigned integer and the clock sequence to be a 14-bit unsigned integer. Sequentially number the bits in a field, startingfrom 0 (zero)with zero for the least significant bit. o Set the time_low field equal to the least significant32-bits32 bits (bitsnumbered 0 to 31 inclusive)zero through 31) of the time stamp in the same order of significance. o Set the time_mid field equal tothebitsnumbered32tothrough 47inclusive offrom the time stamp in the same order of significance. o Set the 12 least significant bits (bitsnumbered 0 to 11 inclusive)zero through 11) of the time_hi_and_version field equal tothebitsnumbered48tothrough 59inclusive offrom the time stamp in the same order of significance. o Set the4four most significant bits (bitsnumbered12to 15 inclusive)through 15) of the time_hi_and_version field to the4-bitfour-bit version number corresponding to the UUID version being created, as shown in the tablein section 3.1.3.above. o Set the clock_seq_low field to the8eight least significant bits (bitsnumbered 0 to 7 inclusive)zero through seven) of the clock sequence in the same order of significance. o Set the6six least significant bits (bitsnumbered 0 to 5 inclusive)zero through five) of the clock_seq_hi_and_reserved field to the6six most significant bits (bitsnumbered 8 to 13 inclusive)eight through 13) of the clock sequence in the same order of significance. o Set the2two most significant bits (bitsnumbered 6six and7)seven) of the clock_seq_hi_and_reserved to0zero and1,one, respectively. o Set the node field to the 48-bit IEEE address in the same order of significance as the address. 4.3 Algorithm for creating a name-based UUID The version 3 UUID is meant for generating UUIDs from "names" that are drawn from, and unique within, some "namespace". Some examples of names (and, implicitly, name spaces) might be DNS names, URLs, ISO Object IDs (OIDs), reserved words in a programming language, or X.500 Distinguished Names (DNs); thus, thespace." The concept of name and name space should be broadly construed, and not limited to textual names. For example, some name spaces are the domain name system, URLs, ISO Object IDs (OIDs), X.500 Distinguished Names (DNs), and reserved words in a programming language. The mechanisms or conventions for allocating names from, and ensuring their uniqueness within, their name spaces are beyond the scope of this specification. The requirements forsuchversion 3 UUIDs are as follows: o The UUIDs generated at different times from the same name in the same namespace MUST be equal o The UUIDs generated from two different names in the same namespace should be different (with very high probability) o The UUIDs generated from the same name in two different namespaces should be different with (very high probability) o If two UUIDs that were generated from names are equal, then they were generated from the same name in the same namespace (with very high probability). The algorithm for generating the a UUID from a name and a name space are as follows: o Allocate a UUID to use as a "name space ID" for all UUIDs generated from names in that namespacespace; see Appendix C for some pre-defined values o Convert the name to a canonical sequence of octets (as defined by the standards or conventions of its name space); put the name space ID in network byte order o Compute the MD5 [3] hash of the name space ID concatenated with the name o Set octets0-3zero through three of the time_low field to octets0-3zero through three of the MD5 hash o Set octets0-1zero and one of the time_mid field to octets4-5four and five of the MD5 hash o Set octets0-1zero and one of the time_hi_and_version field to octets6-7six and seven of the MD5 hash o Set theclock_seq_hi_and_reserved field to octet 8four most significant bits (bits 12 through 15) of theMD5 hash o Set the clock_seq_lowtime_hi_and_version field tooctet 9 oftheMD5 hashfour-bit version number from Section 4.1.3. o Setoctets 0-5 ofthenodeclock_seq_hi_and_reserved field tooctets 10-15octet eight of the MD5 hash o Set the2two most significant bits (bitsnumbered6 and 7) of the clock_seq_hi_and_reserved to0zero and1,one, respectively. o Set the4 most significant bits (bits numbered 12clock_seq_low field to15 inclusive)octet nine of thetime_hi_and_version field toMD5 hash o Set octets zero through five of the4-bit version number correspondingnode field to octets then through fifteen of theUUID version being created, as shown in the table above.MD5 hash o Convert the resulting UUID to local byte order.5.4.4 Algorithms for creating a UUID from truly random or pseudo-random numbers The version 4 UUID is meant for generating UUIDs from truly-random or pseudo-random numbers. The algorithm is as follows: o Set the2two most significant bits (bitsnumbered 6six and7)seven) of the clock_seq_hi_and_reserved to0zero and1,one, respectively. o Set the4four most significant bits (bitsnumbered12to 15 inclusive)through 15) of the time_hi_and_version field to the4-bitfour-bit version numbercorresponding to the UUID version being created, as shown in the table above.from Section 4.1.3. o Set all the other bits to randomly (or pseudo-randomly) chosen values.Here are several possible ways to generate the random values: o Use a physical source of randomness:See Section 4.5 forexample, a white noise generator, radioactive decay, or a lava lamp. o Useacryptographic strength random number generator. 6. Byte order of UUIDs UUIDs may be transmitted in many different forms, some of which may be dependent on the presentation or application protocol where the UUID may be used. In such cases, the order, sizes and byte orders of the UUIDs fields on the wire will dependdiscussion onthe relevant presentation or application protocol. However, it is strongly RECOMMENDEDrandom numbers. 4.5 Node IDs that do not identify theorder of the fields conform with ordering set out inhost This section3.1 above. Furthermore, the payload size of each field in the application or presentation protocol MUST be large enough that no information lost in the process of encoding them for transmission. In the absence of explicit application or presentation protocol specificationdescribes how tothe contrary,generate a version 1 UUID if an IEEE 802 address isencoded as a 128-bit object, as follows: the fields are encoded as 16 octets, withnot available, or its use is not desired. One approach is to contact thesizesIEEE andorderget a separate block of addresses. At thefields defined in section 3.1,time of writing, the application could be found at [6], andwith each field encoded withtheMost Significant Byte first (also known as network byte order). 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | time_low | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | time_mid | time_hi_and_version | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |clk_seq_hi_res | clk_seq_low | node (0-1) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | node (2-5) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ 7. Node IDs when no IEEE 802 network card is available If a system wants to generate UUIDs but has no IEE 802 compliant network card or other source of IEEE 802 addresses, then this section describes how to generate one. The idealcost was US$550. A better solution is to obtain a47 bit47-bit cryptographic quality random number, and use it as the low 47 bits of the node ID, with the most significant bit of the first octet of the node ID set to1.one. This bit is the unicast/multicast bit, which will never be set in IEEE 802 addresses obtained from network cards; hence, there can never be a conflict between UUIDs generated by machines with and without network cards. If a system does not havea primitivethe capability to generate cryptographic quality random numbers, then in most systems there are usually a fairly large number of sources of randomness available from which one can be generated. Such sources are system specific, but often include: o the percent of memory in use o the size of main memory in bytes o the amount of free main memory in bytes o the size of the paging or swap file in bytes o free bytes of paging or swap file o the total size of user virtual address space in bytes o the total available user address space bytes o the size of boot disk drive in bytes o the free disk space on boot drive in bytes o the current time o the amount of time since the system booted o the individual sizes of files in various system directories o the creation, last read, and modification times of files in various system directories o the utilization factors of various system resources (heap, etc.) o current mouse cursor position o current caret position o current number of running processes, threads o handles or IDs of the desktop window and the active window o the value of stack pointer of the caller o the process and thread ID of caller o various processor architecture specific performance counters (instructions executed, cache misses, TLB misses)(Note that it precisely the above kinds of sources of randomness that are used to seed cryptographic quality random number generators on systems without special hardware for their construction.)In addition, items such as the computer's name and the name of the operating system, while not strictly speaking random, will help differentiate the results from those obtained by other systems. The exact algorithm to generate a node ID using these data is system specific, because both the data available and the functions to obtain them are often very system specific.However, assuming that one can concatenate all the values from the randomnessA generic approach, however is to accumulate as many sources as possible into a buffer, andthatuse acryptographic hash functionmessage digest such as MD5[3] is available, then any 6[3], take an arbitrary six bytesoffrom theMD5hashof the buffer, withvalue, and set the multicast bit(the high bit of the first byte) set will be an appropriately random node ID.as described above. Other hash functions, such as SHA-1[5] ,[5], can also be used. The only requirement is that the result be suitably random_in the sense that the outputs from a set uniformly distributed inputs are themselves uniformly distributed, and that a single bit change in the input can be expected to cause half of the output bits to change.8. Obtaining IEEE 802 addresses At the time of writing, the following URL http://standards.ieee.org/regauth/oui/pilot-ind.html contains information on how to obtain an IEEE 802 address or "company_id" block. At the time of writing, the cost is $550 US. 9.5. Community Considerations The use of UUIDs is extremely pervasive in computing. They comprise the core identifier infrastructure for many operating systems (Microsoft Windows) and applications (the Mozilla browser) and in many cases, become exposed to the web in many non-standard ways. This specification attempts to standardize that practice as openly as possible and in a way that attempts to benefit the entire Internet.10.6. Security ConsiderationsIt shouldDo notbe assumedassume that UUIDs are hard to guess; they should not be used ascapabilities. It should alsocapabilities, for example. Do notbe assumedassume that it is easy to determine if a UUID has been slightly transposed in order to redirect a reference to another object. Humans do not have the ability to easily check the integrity of a UUID by simply glancing at it.11. Acknowledgements Ninety-five percent of this document is original to Paul Leach and Rich Salz. The conversion to the format for registering a URN namespace was done by Michael Mealling who is indebted to them for providing a clear and extremely thorough document from which to start. The fact that their original document is still referenced even in draft form is a testament to a well done document that is timely and useful.7. Acknowledgments This document draws heavily on the OSF DCE specification for UUIDs. Ted Ts'o provided helpful comments, especially on the byte ordering section which we mostly plagiarized from a proposed wording he supplied (all errors in that section are our responsibility, however). Normative References [1] Zahn, L., Dineen, T. and P. Leach, "Network Computing Architecture", ISBN 0-13-611674-4, January 1990. [2] "DCE: Remote Procedure Call", Open Group CAE Specification C309, ISBN 1-85912-041-5, August 1994. [3] Rivest, R., "The MD5 Message-Digest Algorithm", RFC 1321, April 1992. [4] Moats, R., "URN Syntax", RFC 2141, May 1997. [5] National Institute of Standards and Technology, "Secure Hash Standard", FIPS PUB 180-1, April 1995, <http://www.itl.nist.gov/ fipspubs/fip180-1.htm>. [6] <http://standards.ieee.org/regauth/oui/pilot-ind.html> Authors' AddressesMichael Mealling VeriSign, Inc. 21345 Ridgetop Circle Dulles, VA 21345 US Phone: +1 770-717-0732 EMail: michael@neonym.net URI: http://www.verisignlabs.comPaul J. Leach Microsoft 1 Microsoft Way Redmond, WA 98052 US Phone: +1 425-882-8080 EMail: paulle@microsoft.com Michael Mealling VeriSign, Inc. 21345 Ridgetop Circle Dulles, VA 21345 US Phone: +1 678-581-9656 URI: http://www.verisignlabs.com Rich SalzDatapowerDataPower Technology, Inc. 1 Alewife Center Cambridge, MA 02142 US Phone: +1 617-864-0455 EMail: rsalz@datapower.com URI: http://www.datapower.com Appendix A. Appendix A -UUIDSample Implementation This implementation consists of 5 files: uuid.h, uuid.c, sysdep.h, sysdep.c and utest.c. The uuid.* files are the system independent implementation of the UUID generation algorithms described above, with all the optimizations described above except efficient state sharing across processes included. The code has been tested on Linux (Red Hat 4.0) with GCC (2.7.2), and Windows NT 4.0 with VC++ 5.0. The code assumes64 bit64-bit integer support, which makes it a lot clearer. All the following source files should be considered to have the following copyright notice included: copyrt.h /* ** Copyright (c) 1990- 1993, 1996 Open Software Foundation, Inc. ** Copyright (c) 1989 by Hewlett-Packard Company, Palo Alto, Ca. & ** Digital Equipment Corporation, Maynard, Mass. ** Copyright (c) 1998 Microsoft. ** To anyone who acknowledges that this file is provided "AS IS" ** without any express or implied warranty: permission to use, copy, ** modify, and distribute this file for any purpose is hereby ** granted without fee, provided that the above copyright notices and ** this notice appears in all source code copies, and that none of ** the names of Open Software Foundation, Inc., Hewlett-Packard ** Company, or Digital Equipment Corporation be used in advertising ** or publicity pertaining to distribution of the software without ** specific, written prior permission. Neither Open Software ** Foundation, Inc., Hewlett-Packard Company, Microsoft, nor DigitalEquipment** Equipment Corporation makes any representations about the suitabilityof** of this software for any purpose. */ uuid.h #include "copyrt.h" #undef uuid_t typedef struct_uuid_t{ unsigned32 time_low; unsigned16 time_mid; unsigned16 time_hi_and_version; unsigned8 clock_seq_hi_and_reserved; unsigned8 clock_seq_low; byte node[6]; } uuid_t; /* uuid_create -- generate a UUID */ int uuid_create(uuid_t * uuid); /* uuid_create_from_name -- create a UUID using a "name" from a "name space" */ void uuid_create_from_name( uuid_t* uuid,*uuid, /* resulting UUID */ uuid_t nsid, /* UUIDto serve as context, so identical names from different name spaces generate different UUIDsof the namespace */ void* name,*name, /* the name from which to generate a UUID */ int namelen /* the length of the name */ ); /* uuid_compare -- Compare two UUID's "lexically" and return -1 u1 is lexically before u2 0 u1 is equal to u2 1 u1 is lexically after u2Note:Note that lexical ordering is not temporal ordering! */ int uuid_compare(uuid_t *u1, uuid_t *u2); uuid.c #include "copyrt.h" #include <string.h> #include <stdio.h> #include <stdlib.h> #include <time.h> #include "sysdep.h" #include "uuid.h" /* various forward declarations */ static int read_state(unsigned16 *clockseq, uuid_time_t *timestamp, uuid_node_t* node);*node); static void write_state(unsigned16 clockseq, uuid_time_t timestamp, uuid_node_t node); static void format_uuid_v1(uuid_t* uuid,*uuid, unsigned16 clockseq, uuid_time_t timestamp, uuid_node_t node); static void format_uuid_v3(uuid_t* uuid,*uuid, unsigned char hash[16]); static void get_current_time(uuid_time_t* timestamp);*timestamp); static unsigned16 true_random(void); /* uuid_create -- generator a UUID */ int uuid_create(uuid_t* uuid)*uuid) { uuid_time_t timestamp, last_time; unsigned16 clockseq; uuid_node_t node; uuid_node_t last_node; int f; /* acquiresystem widesystem-wide lock so we're alone */ LOCK; /* getcurrent time */ get_current_time(×tamp); /* gettime, nodeID */ get_ieee_node_identifier(&node); /* getID, saved state fromNVnon-volatile storage */ get_current_time(×tamp); get_ieee_node_identifier(&node); f = read_state(&clockseq, &last_time, &last_node); /* if no NV state, or if clock went backwards, or node ID changed (e.g.,net card swap)new network card) change clockseq */ if (!f || memcmp(&node, &last_node,sizeof(uuid_node_t)))sizeof node)) clockseq = true_random(); else if (timestamp < last_time) clockseq++; /*stuff fields into the UUID */ format_uuid_v1(uuid, clockseq, timestamp, node); /*save the state for next time */ write_state(clockseq, timestamp, node); UNLOCK;return(1); };/* stuff fields into the UUID */ format_uuid_v1(uuid, clockseq, timestamp, node); return 1; } /* format_uuid_v1 -- make a UUID from the timestamp, clockseq, and node ID */ voidformat_uuid_v1(uuid_t *format_uuid_v1(uuid_t* uuid, unsigned16 clock_seq, uuid_time_t timestamp, uuid_node_t node) { /* Construct a version 1 uuid with the information we've gathered*plus a few constants. */ uuid->time_low = (unsigned long)(timestamp & 0xFFFFFFFF); uuid->time_mid = (unsigned short)((timestamp >> 32) & 0xFFFF); uuid->time_hi_and_version = (unsigned short)((timestamp >> 48) & 0x0FFF); uuid->time_hi_and_version |= (1 << 12); uuid->clock_seq_low = clock_seq & 0xFF; uuid->clock_seq_hi_and_reserved = (clock_seq & 0x3F00) >> 8; uuid->clock_seq_hi_and_reserved |= 0x80; memcpy(&uuid->node, &node, sizeof uuid->node);};} /* data type for UUID generator persistent state */ typedef struct { uuid_time_t ts; /* saved timestamp */ uuid_node_t node; /* saved node ID */ unsigned16 cs; /* saved clock sequence */ } uuid_state; static uuid_state st; /* read_state -- read UUID generator state from non-volatile store */ int read_state(unsigned16 *clockseq, uuid_time_t *timestamp, uuid_node_t *node) {FILE * fd;static int inited = 0; FILE *fp; /* only need to read state once per boot */ if (!inited) {fdfp = fopen("state", "rb"); if(!fd)(fp == NULL) return(0);0; fread(&st,sizeof(uuid_state),sizeof st, 1,fd); fclose(fd);fp); fclose(fp); inited = 1;};} *clockseq = st.cs; *timestamp = st.ts; *node = st.node;return(1); };return 1; } /* write_state -- save UUID generator state back to non-volatile storage */ void write_state(unsigned16 clockseq, uuid_time_t timestamp, uuid_node_t node) {FILE * fd;static int inited = 0; static uuid_time_t next_save; FILE* fp; if (!inited) { next_save = timestamp; inited = 1;};} /* always save state to volatile shared state */ st.cs = clockseq; st.ts = timestamp; st.node = node; if (timestamp >= next_save) {fdfp = fopen("state", "wb"); fwrite(&st,sizeof(uuid_state),sizeof st, 1,fd); fclose(fd);fp); fclose(fp); /* schedule next save for 10 seconds from now */ next_save = timestamp + (10 * 10 * 1000 * 1000);}; };} } /* get-current_time -- get time as60 bit60-bit 100ns ticks sincewhenever.UUID epoch. Compensate for the fact that real clock resolution is less than 100ns. */ void get_current_time(uuid_time_t* timestamp)*timestamp) {uuid_time_t time_now;static int inited = 0; static uuid_time_t time_last; static unsigned16 uuids_this_tick;static int inited = 0;uuid_time_t time_now; if (!inited) { get_system_time(&time_now); uuids_this_tick = UUIDS_PER_TICK; inited = 1;}; while (1)} for ( ; ; ) { get_system_time(&time_now); /* if clock reading changed since last UUIDgenerated...generated, */ if (time_last != time_now) { /* reset count of uuids gen'd with this clock reading */ uuids_this_tick = 0; break;};} if (uuids_this_tick < UUIDS_PER_TICK) { uuids_this_tick++; break;};} /* going too fast for our clock; spin */};} /* add the count of uuids to low order bits of the clock reading */ *timestamp = time_now + uuids_this_tick;};} /* true_random -- generate a crypto-quality random number.This**This sample doesn't dothat.that.** */ static unsigned16 true_random(void) { static int inited = 0; uuid_time_t time_now; if (!inited) { get_system_time(&time_now); time_now =time_now/UUIDS_PER_TICK;time_now / UUIDS_PER_TICK; srand((unsigned int)(((time_now >> 32) ^time_now)&0xffffffff));time_now) & 0xffffffff)); inited = 1;};} return(rand());rand(); } /* uuid_create_from_name -- create a UUID using a "name" from a "name space" */ voiduuid_create_from_name( uuid_t * uuid, /* resulting UUID */uuid_create_from_name(uuid_t *uuid, uuid_t nsid,/* UUID to serve as context, so identical names from different name spaces generate different UUIDs */void* name, /* the name from which to generate a UUID */*name, intnamelen /* the length of the name */ )namelen) { MD5_CTX c; unsigned char hash[16]; uuid_t net_nsid; /*context UUID in network byte order */ /*put name space ID in network byte order so it hashes the same no matter what endian machine we're on */ net_nsid = nsid; htonl(net_nsid.time_low); htons(net_nsid.time_mid); htons(net_nsid.time_hi_and_version); MD5Init(&c); MD5Update(&c, &net_nsid,sizeof(uuid_t));sizeof net_nsid); MD5Update(&c, name, namelen); MD5Final(hash, &c); /* the hash is in network byte order at this point */ format_uuid_v3(uuid, hash);};} /* format_uuid_v3 -- make a UUID from a (pseudo)random128 bit128-bit number */ void format_uuid_v3(uuid_t* uuid,*uuid, unsigned char hash[16]) { /*Construct a version 3 uuid with the (pseudo-)random number * plus a few constants. */ memcpy(uuid, hash, sizeof(uuid_t)); /*convert UUID to local byte order */ memcpy(uuid, hash, sizeof *uuid); ntohl(uuid->time_low); ntohs(uuid->time_mid); ntohs(uuid->time_hi_and_version); /* put in the variant and version bits */ uuid->time_hi_and_version &= 0x0FFF; uuid->time_hi_and_version |= (3 << 12); uuid->clock_seq_hi_and_reserved &= 0x3F; uuid->clock_seq_hi_and_reserved |= 0x80;};} /* uuid_compare -- Compare two UUID's "lexically" and return-1 u1 is lexically before u2 0 u1 is equal to u2 1 u1 is lexically after u2 Note: lexical ordering is not temporal ordering!*/int uuid_compare(uuid_t *u1, uuid_t *u2) { int i;#define CHECK(f1, f2) if (f1 != f2) return f1 < f2 ? -1 : 1; int uuid_compare(uuid_t *u1, uuid_t *u2) { int i; CHECK(u1->time_low, u2->time_low); CHECK(u1->time_mid, u2->time_mid); CHECK(u1->time_hi_and_version, u2->time_hi_and_version); CHECK(u1->clock_seq_hi_and_reserved, u2->clock_seq_hi_and_reserved); CHECK(u1->clock_seq_low, u2->clock_seq_low) for (i = 0; i < 6; i++) { if (u1->node[i] < u2->node[i]) return -1; if (u1->node[i] > u2->node[i]) return 1; } return 0;};} #undef CHECK sysdep.h #include "copyrt.h" /* remove the following define if you aren't running WIN32 */ #define WININC 0 #ifdef WININC #include <windows.h> #else #include <sys/types.h> #include <sys/time.h> #include <sys/sysinfo.h> #endif #include "global.h" /* change to point to where MD5 .h'slive */ /* get MD5 sample implementation fromlive; RFC 1321 has sample implementation */ #include"global.h" #include"md5.h" /* set the following to the number of 100ns ticks of the actual resolution of your system's clock */ #define UUIDS_PER_TICK 1024 /* Set the following to acallcalls toacquireget and release asystem wideglobal lock */ #define LOCK #define UNLOCK typedef unsigned long unsigned32; typedef unsigned short unsigned16; typedef unsigned char unsigned8; typedef unsigned char byte; /* Set this to what your compiler uses for64 bit64-bit data type */ #ifdef WININC #define unsigned64_t unsigned __int64 #define I64(C) C #else #define unsigned64_t unsigned long long #define I64(C) C##LL #endif typedef unsigned64_t uuid_time_t; typedef struct { char nodeID[6]; } uuid_node_t; void get_ieee_node_identifier(uuid_node_t *node); void get_system_time(uuid_time_t *uuid_time); void get_random_info(char seed[16]); sysdep.c #include "copyrt.h" #include <stdio.h> #include "sysdep.h" /* system dependent call to get IEEE node ID. This sample implementation generates a random nodeIDID. */ void get_ieee_node_identifier(uuid_node_t *node) {char seed[16]; FILE * fd;static inited = 0; static uuid_node_t saved_node; char seed[16]; FILE *fp; if (!inited) {fdfp = fopen("nodeid", "rb"); if(fd)(fp) { fread(&saved_node,sizeof(uuid_node_t),sizeof saved_node, 1,fd); fclose(fd);fp); fclose(fp); } else { get_random_info(seed); seed[0] |= 0x80; memcpy(&saved_node, seed,sizeof(uuid_node_t)); fdsizeof saved_node); fp = fopen("nodeid", "wb"); if(fd)(fp) { fwrite(&saved_node,sizeof(uuid_node_t),sizeof saved_node, 1,fd); fclose(fd); }; };fp); fclose(fp); } } inited = 1;};} *node = saved_node;};} /* system dependent call to get the current system time. Returned as 100ns ticks sinceOct 15, 1582,UUID epoch, but resolution may be less than 100ns. */ #ifdef _WINDOWS_ void get_system_time(uuid_time_t *uuid_time) { ULARGE_INTEGER time;GetSystemTimeAsFileTime((FILETIME *)&time);/* NT keeps time in FILETIME format which is 100ns ticks since Jan 1, 1601. UUIDs use time in 100ns ticks since Oct 15, 1582. The difference is 17 Days in Oct + 30 (Nov) + 31 (Dec) + 18 years and 5 leap days. */ GetSystemTimeAsFileTime((FILETIME *)&time); time.QuadPart += (unsigned __int64) (1000*1000*10) // seconds * (unsigned __int64) (60 * 60 * 24) // days * (unsigned __int64) (17+30+31+365*18+5); // # of days *uuid_time = time.QuadPart;};} void get_random_info(char seed[16]) { MD5_CTX c;typedefstruct { MEMORYSTATUS m; SYSTEM_INFO s; FILETIME t; LARGE_INTEGER pc; DWORD tc; DWORD l; char hostname[MAX_COMPUTERNAME_LENGTH + 1]; }randomness; randomnessr; MD5Init(&c);/* memory usage stats */GlobalMemoryStatus(&r.m);/* random system stats */GetSystemInfo(&r.s);/* 100ns resolution (nominally) time of day */GetSystemTimeAsFileTime(&r.t);/* high resolution performance counter */QueryPerformanceCounter(&r.pc);/* milliseconds since last boot */r.tc = GetTickCount(); r.l = MAX_COMPUTERNAME_LENGTH + 1; GetComputerName(r.hostname,&r.l );&r.l); MD5Update(&c, &r,sizeof(randomness));sizeof r); MD5Final(seed, &c);};} #else void get_system_time(uuid_time_t *uuid_time) { struct timeval tp; gettimeofday(&tp, (struct timezone *)0); /* Offset between UUID formatted times and Unix formatted times. UUID UTC base time is October 15, 1582. Unix base time is January 1,1970. */1970.*/ *uuid_time = (tp.tv_sec * 10000000) + (tp.tv_usec * 10) + I64(0x01B21DD213814000);};} void get_random_info(char seed[16]) { MD5_CTX c;typedefstruct { struct sysinfo s; struct timeval t; char hostname[257]; }randomness; randomnessr; MD5Init(&c); sysinfo(&r.s); gettimeofday(&r.t, (struct timezone *)0); gethostname(r.hostname, 256); MD5Update(&c, &r,sizeof(randomness));sizeof r); MD5Final(seed, &c);};} #endif utest.c #include "copyrt.h" #include "sysdep.h" #include <stdio.h> #include "uuid.h" uuid_t NameSpace_DNS = { /* 6ba7b810-9dad-11d1-80b4-00c04fd430c8 */ 0x6ba7b810, 0x9dad, 0x11d1, 0x80, 0xb4, 0x00, 0xc0, 0x4f, 0xd4, 0x30, 0xc8 }; /* puid -- print a UUID */ void puid(uuid_tu);u) { int i; printf("%8.8x-%4.4x-%4.4x-%2.2x%2.2x-", u.time_low, u.time_mid, u.time_hi_and_version, u.clock_seq_hi_and_reserved, u.clock_seq_low); for (i = 0; i < 6; i++) printf("%2.2x", u.node[i]); printf("\n"); } /* Simple driver for UUID generator */ void main(int argc, char **argv) { uuid_t u; int f; uuid_create(&u);printf("uuid_create() ->printf("uuid_create(): "); puid(u); f = uuid_compare(&u, &u); printf("uuid_compare(u,u): %d\n", f); /* should be 0 */ f = uuid_compare(&u, &NameSpace_DNS); printf("uuid_compare(u, NameSpace_DNS): %d\n", f); /* s.b. 1 */ f = uuid_compare(&NameSpace_DNS, &u); printf("uuid_compare(NameSpace_DNS, u): %d\n", f); /* s.b. -1 */ uuid_create_from_name(&u, NameSpace_DNS, "www.widgets.com", 15);printf("uuid_create_from_name() ->printf("uuid_create_from_name(): "); puid(u);}; void puid(uuid_t u) { int i; printf("%8.8x-%4.4x-%4.4x-%2.2x%2.2x-", u.time_low, u.time_mid, u.time_hi_and_version, u.clock_seq_hi_and_reserved, u.clock_seq_low); for (i = 0; i < 6; i++) printf("%2.2x", u.node[i]); printf("\n"); };} Appendix B. Appendix B - Sample output of utestuuid_create() ->uuid_create(): 7d444840-9dc0-11d1-b245-5ffdce74fad2 uuid_compare(u,u): 0 uuid_compare(u, NameSpace_DNS): 1 uuid_compare(NameSpace_DNS, u): -1uuid_create_from_name() ->uuid_create_from_name(): e902893a-9d22-3c7e-a7b8-d6e313b71d9f Appendix C. Appendix C - Some name space IDs This appendix lists the name space IDs for some potentially interesting name spaces, as initialized C structures and in the string representation definedin section 3.5above. /* Name string is a fully-qualified domain name */ uuid_t NameSpace_DNS = { /* 6ba7b810-9dad-11d1-80b4-00c04fd430c8 */ 0x6ba7b810, 0x9dad, 0x11d1, 0x80, 0xb4, 0x00, 0xc0, 0x4f, 0xd4, 0x30, 0xc8 }; /* Name string is a URL */ uuid_t NameSpace_URL = { /* 6ba7b811-9dad-11d1-80b4-00c04fd430c8 */ 0x6ba7b811, 0x9dad, 0x11d1, 0x80, 0xb4, 0x00, 0xc0, 0x4f, 0xd4, 0x30, 0xc8 }; /* Name string is an ISO OID */ uuid_t NameSpace_OID = { /* 6ba7b812-9dad-11d1-80b4-00c04fd430c8 */ 0x6ba7b812, 0x9dad, 0x11d1, 0x80, 0xb4, 0x00, 0xc0, 0x4f, 0xd4, 0x30, 0xc8 }; /* Name string is an X.500 DN (in DER or a text output format) */ uuid_t NameSpace_X500 = { /* 6ba7b814-9dad-11d1-80b4-00c04fd430c8 */ 0x6ba7b814, 0x9dad, 0x11d1, 0x80, 0xb4, 0x00, 0xc0, 0x4f, 0xd4, 0x30, 0xc8 }; Intellectual Property Statement The IETF takes no position regarding the validity or scope of any intellectual property or other rights that might be claimed to pertain to the implementation or use of the technology described in this document or the extent to which any license under such rights might or might not be available; neither does it represent that it has made any effort to identify any such rights. Information on the IETF's procedures with respect to rights in standards-track and standards-related documentation can be found in BCP-11. Copies of claims of rights made available for publication and any assurances of licenses to be made available, or the result of an attempt made to obtain a general license or permission for the use of such proprietary rights by implementors or users of this specification can be obtained from the IETF Secretariat. The IETF invites any interested party to bring to its attention any copyrights, patents or patent applications, or other proprietary rights which may cover technology that may be required to practice this standard. Please address the information to the IETF Executive Director. Full Copyright Statement Copyright (C) The Internet Society(2002).(2003). All Rights Reserved. This document and translations of it may be copied and furnished to others, and derivative works that comment on or otherwise explain it or assist in its implementation may be prepared, copied, published and distributed, in whole or in part, without restriction of any kind, provided that the above copyright notice and this paragraph are included on all such copies and derivative works. However, this document itself may not be modified in any way, such as by removing the copyright notice or references to the Internet Society or other Internet organizations, except as needed for the purpose of developing Internet standards in which case the procedures for copyrights defined in the Internet Standards process must be followed, or as required to translate it into languages other than English. The limited permissions granted above are perpetual and will not be revoked by the Internet Society or its successors orassigns.assignees. This document and the information contained herein is provided on an "AS IS" basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING TASK FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Acknowledgement Funding for the RFC Editor function is currently provided by the Internet Society.