IETF Logo Mail Archive

Re: [babel] Comments about rfc7298bis

Juliusz Chroboczek <jch@irif.fr> Wed, 09 May 2018 23:41 UTC

Return-Path: <jch@irif.fr>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D5FD9126CF9 for <babel@ietfa.amsl.com>; Wed, 9 May 2018 16:41:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sfVd_CxaZ9hi for <babel@ietfa.amsl.com>; Wed, 9 May 2018 16:41:45 -0700 (PDT)
Received: from korolev.univ-paris7.fr (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7895A12DA41 for <babel@ietf.org>; Wed, 9 May 2018 16:41:45 -0700 (PDT)
Received: from potemkin.univ-paris7.fr (potemkin.univ-paris7.fr [IPv6:2001:660:3301:8000::1:1]) by korolev.univ-paris7.fr (8.14.4/8.14.4/relay1/75695) with ESMTP id w49Nfh2U022446 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Thu, 10 May 2018 01:41:43 +0200
Received: from mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [81.194.30.253]) by potemkin.univ-paris7.fr (8.14.4/8.14.4/relay2/75695) with ESMTP id w49Nfj9H006058; Thu, 10 May 2018 01:41:45 +0200
Received: from mailhub.math.univ-paris-diderot.fr (localhost [127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTP id 47EE5EB227; Thu, 10 May 2018 01:41:43 +0200 (CEST)
X-Virus-Scanned: amavisd-new at math.univ-paris-diderot.fr
Received: from mailhub.math.univ-paris-diderot.fr ([127.0.0.1]) by mailhub.math.univ-paris-diderot.fr (mailhub.math.univ-paris-diderot.fr [127.0.0.1]) (amavisd-new, port 10023) with ESMTP id Xf1yVYbR8zZ8; Thu, 10 May 2018 01:41:42 +0200 (CEST)
Received: from trurl.irif.fr (unknown [78.194.40.74]) (Authenticated sender: jch) by mailhub.math.univ-paris-diderot.fr (Postfix) with ESMTPSA id 4417CEB226; Thu, 10 May 2018 01:41:42 +0200 (CEST)
Date: Thu, 10 May 2018 01:41:42 +0200
Message-ID: <87sh70wg5l.wl-jch@irif.fr>
From: Juliusz Chroboczek <jch@irif.fr>
To: Denis Ovsienko <denis@ovsienko.info>
Cc: Babel at IETF <babel@ietf.org>
In-Reply-To: <1633cc005b2.fb8883bc31563.5518090263169039684@ovsienko.info>
References: <87fu4huzgj.wl-jch@irif.fr> <1628e298460.cd82970b35329.4945272877112645380@ovsienko.info> <87muyi3eqi.wl-jch@irif.fr> <16296069fec.e13616a29759.8282754479379679955@ovsienko.info> <878ta1y8k0.wl-jch@irif.fr> <87sh7aaqpw.wl-jch@irif.fr> <16322fb2d40.b754c16418709.3274574589997739202@ovsienko.info> <87po2dzntf.wl-jch@irif.fr> <163258f779c.1272194bf35512.5113105590240148496@ovsienko.info> <8736z89zfq.wl-jch@irif.fr> <1632b79a2a7.d0dabacb43120.7322644504922173573@ovsienko.info> <87sh737dci.wl-jch@irif.fr> <1633cc005b2.fb8883bc31563.5518090263169039684@ovsienko.info>
User-Agent: Wanderlust/2.15.9
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset="US-ASCII"
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (korolev.univ-paris7.fr [IPv6:2001:660:3301:8000::1:2]); Thu, 10 May 2018 01:41:43 +0200 (CEST)
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7 (potemkin.univ-paris7.fr [194.254.61.141]); Thu, 10 May 2018 01:41:45 +0200 (CEST)
X-Miltered: at korolev with ID 5AF38737.002 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)!
X-Miltered: at potemkin with ID 5AF38739.000 by Joe's j-chkmail (http : // j-chkmail dot ensmp dot fr)!
X-j-chkmail-Enveloppe: 5AF38737.002 from potemkin.univ-paris7.fr/potemkin.univ-paris7.fr/null/potemkin.univ-paris7.fr/<jch@irif.fr>
X-j-chkmail-Enveloppe: 5AF38739.000 from mailhub.math.univ-paris-diderot.fr/mailhub.math.univ-paris-diderot.fr/null/mailhub.math.univ-paris-diderot.fr/<jch@irif.fr>
X-j-chkmail-Score: MSGID : 5AF38737.002 on korolev.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000
X-j-chkmail-Score: MSGID : 5AF38739.000 on potemkin.univ-paris7.fr : j-chkmail score : . : R=. U=. O=. B=0.000 -> S=0.000
X-j-chkmail-Status: Ham
X-j-chkmail-Status: Ham
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/lIKV14o30A0gIxU6r35bUo5N0Rc>
Subject: Re: [babel] Comments about rfc7298bis
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 May 2018 23:41:48 -0000

Thanks for the explanation, that helps.  I'm going to read 7183 when
I have time.

> Do you see any ways for this to go wrong?

Probably not, but I'm not quite comfortable yet.  Please be patient,
I probably get the details wrong in the following example.

Suppose that Chloe has captured a large number of packets previously sent
by alice.  Alice left the network, and state relevant to Alice has expired
at Bob.

Now Alice joins the network, and sends

  A: Hello, TS/PC = 42

Now Chloe sends a replayed packet:

  C (spoofing A): Update (::/0, 0), TS/PC = 43

Bob sees this as a route announcement from Alice, so he inserts a default
route in its route table.  Since Alice hasn't sent an IHU yet, the link
cost is infinite, so the route doesn't get installed.

Bob sends a Hello:

  B: Hello, TS/PC = 57

and Alice sends an IHU with the correct TS/PC echo:

  A: IHU(TS/PC=57), TS/PC = 43

the IHU gets ignored, due to the obsolete TS/PC (43), but then Alice
resends the IHU:

  A: IHU(TS/PC=57), TS/PC = 44

This packet is correct, so BOB sets its txcost to something finite, and
bang, the route suddenly is selectable, and Bob installs the route that
was spoofed by Chloe.

What am I missing?

-- Juliusz

v2.23.0 | Report a Bug | By Email