IETF Logo Mail Archive

Re: [Idr] WG Adoption call for draft-spaghetti-idr-bgp-sendholdtimer-09 (2/28/2023 to 3/14/2023)

Jeff Tantsura <jefftant.ietf@gmail.com> Wed, 08 March 2023 15:58 UTC

Return-Path: <jefftant.ietf@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B1FFBC151556 for <idr@ietfa.amsl.com>; Wed, 8 Mar 2023 07:58:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.095
X-Spam-Level:
X-Spam-Status: No, score=-7.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b4YXmhhozePa for <idr@ietfa.amsl.com>; Wed, 8 Mar 2023 07:57:58 -0800 (PST)
Received: from mail-pg1-x533.google.com (mail-pg1-x533.google.com [IPv6:2607:f8b0:4864:20::533]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 28926C151554 for <idr@ietf.org>; Wed, 8 Mar 2023 07:57:58 -0800 (PST)
Received: by mail-pg1-x533.google.com with SMTP id 16so9879455pge.11 for <idr@ietf.org>; Wed, 08 Mar 2023 07:57:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; t=1678291077; h=to:in-reply-to:cc:references:message-id:date:subject:mime-version :from:content-transfer-encoding:from:to:cc:subject:date:message-id :reply-to; bh=LiWWJeOlfTmBQc3d//FdzmQZMj16qBRuIeOVm3jImaE=; b=qiXlUOJjEL4CrZoX4ChAdVJqPGjmutKzpQakDRzhiiYi6Avri8YTKkNqguZsB8DioP i3/F0Ytn3mfdwA2am6TMjlQF5IhVZLGiwX3WrEqZQvyOdCWOw+PbwSOMINzL8679XXD8 91oMff3KU/ci2Z/gdqR+cSUbS7cW+SvdG0am4Y/dpTLQtrunB3TRZ7PmE5gxnfAb0tnV la6VLFv8B46Up9dn47B3wnslfmsttKJNl1AkoEDWG79gvi1B4bgpvJ4REW0qve8JmGJ5 tAglVQbrnJRsT/ufaOsqEFkTXx5SgiHGIW4TTJHKC+quHycr5/eIde5WwoPS11IJ1PGw MOfg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1678291077; h=to:in-reply-to:cc:references:message-id:date:subject:mime-version :from:content-transfer-encoding:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=LiWWJeOlfTmBQc3d//FdzmQZMj16qBRuIeOVm3jImaE=; b=0phYxaK7DoDL6b6taA5TmbS8HwHbKvAOiYYBK5bMHe2bMuNaDpEWRm4ZuXx3W50BFk H1PNdjguNNB+/kA3gje7rc3+yaMpI0MtA6bDu6IEYFNE87fjXBg3y6rWR7VpgxxqD4+C 3oz+zJ4JQtf+pnEDTBtkRpby2bdXIhfRV6sZiST6JOCUFLBTfhpuHbR3TMkW9Dq5sw5F WLRmCBm0BfiVGUox5nchudY48egCsJchKpbzGz1VU8uFmXE+ZRsx6FrIWUBJbOeUq06R kTRUzNl0T34NdL1iEiVQoh9jdd8GL6qZRxQ8buUk+DmpSiTOnCPlpm5tOmtD5R9LZDdu wDLQ==
X-Gm-Message-State: AO0yUKW0JL2Sj2bMoJD5zB4eGKIyLuSYLJdQVjZ2OBFnuGzFcEptlvkc yEnXhpwVWbk+rAKubtUSeta0RXjqAHA=
X-Google-Smtp-Source: AK7set+0xuID2tqQS7iEkqq3wACiVj10/mOuWk78G2M0qkta+vqsNKW4U5SniuLodQBA7EK7MtgIkg==
X-Received: by 2002:aa7:8f33:0:b0:5aa:464e:8c46 with SMTP id y19-20020aa78f33000000b005aa464e8c46mr17031441pfr.22.1678291077565; Wed, 08 Mar 2023 07:57:57 -0800 (PST)
Received: from smtpclient.apple (c-73-63-232-212.hsd1.ca.comcast.net. [73.63.232.212]) by smtp.gmail.com with ESMTPSA id a5-20020a62bd05000000b005afda1496c6sm9532634pff.31.2023.03.08.07.57.56 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Wed, 08 Mar 2023 07:57:57 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: Jeff Tantsura <jefftant.ietf@gmail.com>
Mime-Version: 1.0 (1.0)
Date: Wed, 08 Mar 2023 07:57:46 -0800
Message-Id: <85A20D91-FF6B-4E4A-9D79-AA35F415A996@gmail.com>
References: <ZAZSyywxxg0HkaDw@snel>
Cc: idr@ietf.org
In-Reply-To: <ZAZSyywxxg0HkaDw@snel>
To: Job Snijders <job=40fastly.com@dmarc.ietf.org>
X-Mailer: iPhone Mail (20D67)
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/HpksnOSkmWGrEIP7KuX9JxEVNSw>
Subject: Re: [Idr] WG Adoption call for draft-spaghetti-idr-bgp-sendholdtimer-09 (2/28/2023 to 3/14/2023)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Mar 2023 15:58:01 -0000

Yes, support 

Cheers,
Jeff

> On Mar 6, 2023, at 12:53, Job Snijders <job=40fastly.com@dmarc.ietf.org> wrote:
> 
> On Mon, Mar 06, 2023 at 11:53:11AM -0800, Randy Bush wrote:
>>> But technically what is in this draft and apparently prototyped in
>>> one open source implementation has a very limited (read narrow)
>>> applicability.
> 
> Worth pointing out: two widely used open-source implementations and one
> closed-source implementation already exist. All three interopable and
> independently authored, see Appendix A of the draft.
> 
>> adding complexity and significan new code to bgp when, as you and enke
>> point out, the vendors can merely flush out their tcp implementation
>> where the solution is already specified.
> 
> 'adding complexity' is a highly subjective assessment.
> 
> The changeset to introduce sendholdtimer in OpenBGPD's FSM is very
> readable and concise: https://marc.info/?l=openbsd-tech&m=160820754925261&w=2
> The above changeset has been tested against exploit code we developed,
> it works.
> 
> On the other hand, the solution Raszuk and Enke advocate was broken from
> the 90s until Linux Kernel 5.11 arrived, requiring a bugfix [1] that
> seems of similar 'complexity' as the OpenBGPD approach.
> 
> So yes, new code somewhere in the stack will need to be added to deal
> with broken remote peers that are stuck in this particular problematic
> state.
> 
> Using a recently fixed Linux-specific feature certainly is one way of
> doing it, but certainly not the only way.
> 
> Kind regards,
> 
> Job
> 
> [1]: https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net.git/commit/?id=9d9b1ee0b2d1c9e02b2338c4a4b0a062d2d3edac
> 
> _______________________________________________
> Idr mailing list
> Idr@ietf.org
> https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email