[babel] Shepherd review of draft-ietf-babel-hmac-03
Donald Eastlake <d3e3e3@gmail.com> Sun, 24 February 2019 05:53 UTC
Return-Path: <d3e3e3@gmail.com>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 126FC130E68; Sat, 23 Feb 2019 21:53:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.749
X-Spam-Level:
X-Spam-Status: No, score=-1.749 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4xOFqRNHxBPb; Sat, 23 Feb 2019 21:53:51 -0800 (PST)
Received: from mail-io1-xd43.google.com (mail-io1-xd43.google.com [IPv6:2607:f8b0:4864:20::d43]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D91551228B7; Sat, 23 Feb 2019 21:53:50 -0800 (PST)
Received: by mail-io1-xd43.google.com with SMTP id x4so5073766ion.2; Sat, 23 Feb 2019 21:53:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to:cc; bh=YezR0MRNegi0NmLut/WFQhG6EeIM/QQ1Rfz15P2yU34=; b=Kx/G+37czBL1vokE9gzS0BZv3sjvPHjlPSrGByv2TKUT0zakStwZ5xfWL6WX43fq9/ M2A6/UF8dlqhUSL1wxsxB+HEWfqXxmSXzHc4EthE/Y7D7nzh7QuHYr0b5CjaLpxtTa0U Z7BpXfEWn1raG8iTMefMQcYOTS+PuwSex6fdOzGcfX3E6/d8wr5kN6Ofe9oUDpQORZyZ 3BzB83kUN9VTc9SNTxLvTkTKnADiyfdkA9pxCW9x0UaV6qDqwvhJGBmGGmmVrcgggqjo 7VgL9jwDtlyE/zeQaUI2z/ZH4rs8lzVSI0t2TEujWNP4iw41LRif73wcx2/tQvh/bDCV A5Cg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to:cc; bh=YezR0MRNegi0NmLut/WFQhG6EeIM/QQ1Rfz15P2yU34=; b=dLt7ddofBkuwAen7aJ479A/fZZKym8jaJDZD7vAs1KyawH278P1fV2eFmvKQM+ohSb ewojtdzuZElMV/aabRrq16xe67D74lGknqAh5bbOYEhzx512Na778SsCZSqyLnCr4/DW 6Szlf2w1daWLVa1DsV2DPCly8Dj+3Z0Df7neZrvCrYFCqoVadn/z6jwrsfelmEs+X/XJ QdyYIYK3LcFEbD1CA4nOfRtFUuS8D/N0jaofPvuC0fUVeF4sbdGvulhOB/JeIArGMr5q uYSmEKWlOiKf8vXCMOLOxEQViLFtyx6dk8NZaNcFqofJTNy0xMyHXtePoOYUMby2Ocra RNjg==
X-Gm-Message-State: AHQUAubonIo1DjfE/VKMWHgiOO8ax6fthqJB0FELcLbPlYzZSWbMZzsT Cb1gMxuaG/Q2Hzq1VkAza66s2Bxp/3xmmIXCnI+Wtthr
X-Google-Smtp-Source: AHgI3IbIvaAtX8BnVLPrAUTVHya0CouuKtTsUiNABr1lT3tSqvhk8egYAqpp7G20WSNwJzmTjm6SWkK3lA/FhPaqEQg=
X-Received: by 2002:a6b:5006:: with SMTP id e6mr6735065iob.132.1550987629605; Sat, 23 Feb 2019 21:53:49 -0800 (PST)
MIME-Version: 1.0
From: Donald Eastlake <d3e3e3@gmail.com>
Date: Sun, 24 Feb 2019 00:53:37 -0500
Message-ID: <CAF4+nEG0pDf+SGUWJiZrB6y4RnY2aUPTz+bCVn7+FX1NqCjcQA@mail.gmail.com>
To: Babel at IETF <babel@ietf.org>
Cc: draft-ietf-babel-hmac@ietf.org, babel-chairs <babel-chairs@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000b6b81d05829d728e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/pFx85t7Qqh3QvNxVPYtWYCLpFpE>
Subject: [babel] Shepherd review of draft-ietf-babel-hmac-03
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 24 Feb 2019 05:53:53 -0000
Hi, Section 2, Page 4, first sentence: "for cryptographic protection" -> "for HMAC cryptographic protection" or, if you don't want to use HMAC here, could change to "for cryptographic protection as specified herein". Parallel change in the following sentence. Section 4, page 8/9, Section 4.3.1.2, page 10. I'm slightly confused about the interaction of these sections. So, when you receive a packet with a successful Challenge Reply, the PC and Index are stored in the Neighbor Table entry for the sender. Then, a bit further down in Section 4, it says to compare the received PC with the PC in the Neighbor Table and to discard the packet if the PC in the packet is smaller or equal to it. So, if you received a packet with a successful Challenge Reply, you would store the PC and Index and then later find the PC in the packet and Neighbor Table to be equal so you discard the packet, which might be OK since you have already set the Neighbor Table fields. But in 4.3.1.2, it clearly contemplates putting other TLVs into the packet with the Challenge Reply, with TLVs would get discarded. Or am I just confused? Section 5.2. We have already argued over the packet format diagram. I guess we will see what other levels of review say. The various timers here (5 min to discard Neighbor Table entry (Section 4.4), 30 seconds challenge expiry timer (Section 4.3.1.1), and 300ms challenge rate limit (Section 4.3.1.1)) should be described as configurable with a default value of the value currently suggested. The TLV type values have been assigned. Please replace TBDs with the IANA values and the IANA Considerations section should start with something like "IANA has allocated the Type values listed below for the TLVs specified in this document". (See https://www.iana.org/assignments/babel/babel.xhtml) The size limit of 192 for nonces should be motivated. Perhaps "to leave some room for possible future sub-TLV inclusion". Appendix A: Seems like somewhere in the main text body it should say that "Implementations SHOULD be separately configurable to (1) send or not send HMAC security TLVs and (2) process or ignore HMAC security TLVs on receipt." Appendix B: Add after Appendix B header and before Appendix B.1 header: "RFC-Editor: Please remove this section before publication". Thanks, Donald =============================== Donald E. Eastlake 3rd +1-508-333-2270 (cell) 1424 Pro Shop Court, Davenport, FL 33896 USA d3e3e3@gmail.com
- [babel] Shepherd review of draft-ietf-babel-hmac-… Donald Eastlake
- Re: [babel] Shepherd review of draft-ietf-babel-h… Juliusz Chroboczek
- Re: [babel] Shepherd review of draft-ietf-babel-h… Juliusz Chroboczek
- Re: [babel] Shepherd review of draft-ietf-babel-h… Donald Eastlake