IETF Logo Mail Archive

Re: [Idr] RFC-4893 handling malformed AS4_PATH attributes

Enke Chen <enkechen@cisco.com> Wed, 17 December 2008 17:44 UTC

Return-Path: <idr-bounces@ietf.org>
X-Original-To: idr-archive@megatron.ietf.org
Delivered-To: ietfarch-idr-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id CD00928C1BD; Wed, 17 Dec 2008 09:44:33 -0800 (PST)
X-Original-To: idr@core3.amsl.com
Delivered-To: idr@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id DBFE428C1B9 for <idr@core3.amsl.com>; Wed, 17 Dec 2008 09:44:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ciflAxNhMb51 for <idr@core3.amsl.com>; Wed, 17 Dec 2008 09:44:31 -0800 (PST)
Received: from sj-iport-6.cisco.com (sj-iport-6.cisco.com [171.71.176.117]) by core3.amsl.com (Postfix) with ESMTP id 1B87F28C1B8 for <idr@ietf.org>; Wed, 17 Dec 2008 09:44:31 -0800 (PST)
X-IronPort-AV: E=Sophos;i="4.36,238,1228089600"; d="scan'208";a="214846432"
Received: from sj-dkim-2.cisco.com ([171.71.179.186]) by sj-iport-6.cisco.com with ESMTP; 17 Dec 2008 17:44:23 +0000
Received: from sj-core-2.cisco.com (sj-core-2.cisco.com [171.71.177.254]) by sj-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP id mBHHiN5F001356; Wed, 17 Dec 2008 09:44:23 -0800
Received: from xbh-sjc-231.amer.cisco.com (xbh-sjc-231.cisco.com [128.107.191.100]) by sj-core-2.cisco.com (8.13.8/8.13.8) with ESMTP id mBHHiKJg023700; Wed, 17 Dec 2008 17:44:20 GMT
Received: from xfe-sjc-211.amer.cisco.com ([171.70.151.174]) by xbh-sjc-231.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Wed, 17 Dec 2008 09:44:19 -0800
Received: from [10.21.79.92] ([10.21.79.92]) by xfe-sjc-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Wed, 17 Dec 2008 09:44:19 -0800
Message-ID: <49493A73.5030801@cisco.com>
Date: Wed, 17 Dec 2008 09:44:19 -0800
From: Enke Chen <enkechen@cisco.com>
User-Agent: Thunderbird 2.0.0.18 (Windows/20081105)
MIME-Version: 1.0
To: Paul Jakma <paul@clubi.ie>
References: <CD705FABA8532448AA1FB7A96C88FF140898F8A4@emailbng1.jnpr.net> <4D86C4C6-F7CD-46B9-ABBE-04530F4D1278@juniper.net> <164BE5B4-1A18-42D7-A11B-DE2056890C78@tcb.net> <4946AC94.2080605@cisco.com> <5340D990-F446-4C37-8307-1DB31ADF2273@tcb.net> <4946B996.4040907@cisco.com> <A35E9CEC-BC77-4CDF-AF3D-1ECFE63D8FD3@tcb.net> <4946F36B.8050903@cisco.com> <alpine.LFD.2.00.0812160932000.5839@localhost.localdomain> <20081216140212.GA55748@verdi> <alpine.LFD.2.00.0812161618080.5839@localhost.localdomain> <F5B1A3A0-C1DA-4370-9051-0F12E46B0EAD@juniper.net> <alpine.LFD.2.00.0812170808130.5839@localhost.localdomain> <6F174CCF-5295-4FB1-BAB2-8DC7DF1592E0@juniper.net> <alpine.LFD.2.00.0812171603230.5839@localhost.localdomain>
In-Reply-To: <alpine.LFD.2.00.0812171603230.5839@localhost.localdomain>
X-OriginalArrivalTime: 17 Dec 2008 17:44:19.0511 (UTC) FILETIME=[16B11470:01C9606F]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=2092; t=1229535864; x=1230399864; c=relaxed/simple; s=sjdkim2002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=enkechen@cisco.com; z=From:=20Enke=20Chen=20<enkechen@cisco.com> |Subject:=20Re=3A=20[Idr]=20RFC-4893=20handling=20malformed =20AS4_PATH=20attributes |Sender:=20; bh=ab8pGvEFJWwJNfY3Q74MArjV6UqH3jpY834Hu+fm2so=; b=jNd9inWLDF4zy5ygLtnOkf+CxkRJm6tOisLSuEyDT/rbIlB9DLDORQ7NGH 3Vp+KWs0i87GuaPjaF3PGy7EYxWKumFnSPAW1AoYCDoiKoFDI3qOBqNoVV4L W1zoBMOnW4;
Authentication-Results: sj-dkim-2; header.From=enkechen@cisco.com; dkim=pass ( sig from cisco.com/sjdkim2002 verified; );
Cc: Inter-Domain Routing List <idr@ietf.org>
Subject: Re: [Idr] RFC-4893 handling malformed AS4_PATH attributes
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/idr>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Sender: idr-bounces@ietf.org
Errors-To: idr-bounces@ietf.org

Hi, Paul:

Paul Jakma wrote:
> On Wed, 17 Dec 2008, John G. Scudder wrote:
>
>> That's more or less correct, modulo the adverb :-).  The point is 
>> that as long as the loop gets broken, regardless of by whom (in this 
>> case the OLD speaker preceding the NEW speaker which removed the 
>> AS4_PATH), it will proceed to unwind.  That is to say, it's only a 
>> transient loop.
>> Keep in mind this behavior SHOULD never be seen in the wild since 
>> it's predicated on broken behavior along the path someplace to begin 
>> with;
>
> Things like private-AS removal technically are broken, I guess, yes.
>
> Also, it's not clear to me whether the "the number of AS numbers" in 
> the reconciliation scheme means literally that or the traditional 
> path-length metric from 4271

It is specified in RFC 4893, Sect. 4.2.3:

   In order to construct the AS path information, it would be necessary
   to first calculate the number of AS numbers in the AS_PATH and
   AS4_PATH attributes using the method specified in Section 9.1.2.2
   [BGP] and [RFC3065] for route selection.


-- Enke


> . I presume it means it literally. That might come into play for 
> things like where an OLD speaker receives:
>
>     1_2_{23456,23456,23456}
>
> and then re-announces the set as, say due to how it implements as-set 
> sorting:
>
>     1_2_{23456}
>
> Though, I guess that's not much of a worry.
>
>> with luck this is just a chalkboard exercise.  I for one find it 
>> heartening that the protocol appears to be robust even in the face of 
>> certain types of mangling of the AS4_PATH.
>
> It's reassuring, that it's robust in this way, yes. It would be more 
> robust if NEW speakers considered AS_TRANS to == any >65535 ASN. E.g. 
> it's not robust if two OLD speakers in a cycle each remove the other's 
> ASN, with the remaining speakers on the cycle all being NEW.
>
> I don't see why we would want to leave loop-detection degraded in this 
> way, given a respin, when it seems so trivial to strengthen it.
>
> But anyway.. :)
>
> regards,

_______________________________________________
Idr mailing list
Idr@ietf.org
https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email