Re: [Idr] AD Review of draft-ietf-idr-tunnel-encaps-15

John Scudder <jgs@juniper.net> Mon, 04 May 2020 20:30 UTC

Return-Path: <jgs@juniper.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 613643A067A; Mon, 4 May 2020 13:30:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=DasLswf2; dkim=pass (1024-bit key) header.d=juniper.net header.b=d1vkMZOu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FYx91k2C1NYt; Mon, 4 May 2020 13:30:30 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 181623A1013; Mon, 4 May 2020 13:29:30 -0700 (PDT)
Received: from pps.filterd (m0108163.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 044KH8Yh017928; Mon, 4 May 2020 13:29:29 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : mime-version; s=PPS1017; bh=GLYqmBw8FfhhDQyIBLIZY3EntaEL4sG/YTz8f2BhAXc=; b=DasLswf2xgEO2NMdN77O21b0kZ4cJpbtbbLj8vd7hWy7DZLOlb0dONYqPNRwI+Tlnmt3 y0+/sVBv1hwQyW3PJEWIVGnS1BLwY64MFIDil/hsTUTGa0AwCHMgpVfE4Dta8gc8Zir9 vvARi+ur8pOv2Jn9GP/7SLN8AzOp/TcFhaRcaDUOvyPTSDCQnWZ0UP34hR2m6myZUid/ KZw1JBQwe0E9C42nKxU1jTncYGVv+Eeki9K3cGQntoyeLV0De3FpzKMHOQY6L+qAr6EY NspzjEOxNrJ22oXLqCEJKcYgZVy3908ROnI30Qq6b6utaJOV4ArYkQ4XCWs7WUqX55VZ hw==
Received: from nam12-bn8-obe.outbound.protection.outlook.com (mail-bn8nam12lp2177.outbound.protection.outlook.com [104.47.55.177]) by mx0b-00273201.pphosted.com with ESMTP id 30trbe0694-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 04 May 2020 13:29:29 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=UdoC1kTt1MSlVlPmqfIZMTa9NL6//8gQYMjEqUUi0vOO6s+c5aikkea9F9ElksRhLxgefADNtB+2G3VcpdUMMCqrR8q1daZ2FEEvssvpBTn9Os7LBuOxkVLG7TnL+GdP8uKgkcuqnjfSGk8JYikUvHVmZVK/ggVd/3JVSxoi3W9ygFI2GH9OfGtVdUuX4cF1278wL0HTIGm2c1NFB303PYBeDVbU5CA5dkpV9ZtghtDzXGveMX20bx6jZWQsV2BRcFfAKmqbc9vcY/G9wLlYSz0f7XVgiiXHTLw49quCTeOYNwP602zoOlV7R8JodpRFSMxzCmKH/KWV06aZfv+Bpw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=GLYqmBw8FfhhDQyIBLIZY3EntaEL4sG/YTz8f2BhAXc=; b=UfjRVRTh8W5Y4YTpcu6S9DLT117SeJ2WO5BlmMk/2TWHVCpEV7Q+5ZEIpBg5W0Z9sBNAYhEgqdsLxWFSHeneyprQEHW7HPC1r/iMVDNqlnTFO2bF6XmS8fcEPXcthz1TwLJKCaw7V9HqLq9xqNf8GcpEmE+BpQN3cNEEFJb2oB90h7IsNsyo/OVaBnZIafxEghjhRFcq1Uw3AL6O/IrBP00p++5nRFzy2AhOp67Ncq/H1xwbzdQW7OFRiczU9NKoka2puVamEkBKQ6c+MZG7BU8b7IuhaKDlJT3PNzBhH1ALw72B4//QeuC7bnPT2JwMhwXwizlqit3viUNDDN4qrg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=GLYqmBw8FfhhDQyIBLIZY3EntaEL4sG/YTz8f2BhAXc=; b=d1vkMZOucgctYtanjBL6EvwdIp+h03urL9obgbU4qZ+5vytri4cMEK3tly9GotwImI4AjIrLkgOCQpY6nR/lLBZpzixGjCu1/ul3a51J3OK+8mDAFim+eeAd36N4oUhF0aUe5OtGmG7WWZlUdkshFRF7KCAaFThVnr0/A/mvDxw=
Received: from BL0PR05MB5076.namprd05.prod.outlook.com (2603:10b6:208:83::12) by BL0PR05MB5540.namprd05.prod.outlook.com (2603:10b6:208:6d::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2979.11; Mon, 4 May 2020 20:29:28 +0000
Received: from BL0PR05MB5076.namprd05.prod.outlook.com ([fe80::d450:6f4c:4c28:b45f]) by BL0PR05MB5076.namprd05.prod.outlook.com ([fe80::d450:6f4c:4c28:b45f%7]) with mapi id 15.20.2979.024; Mon, 4 May 2020 20:29:27 +0000
From: John Scudder <jgs@juniper.net>
To: Alvaro Retana <aretana.ietf@gmail.com>
CC: "draft-ietf-idr-tunnel-encaps@ietf.org" <draft-ietf-idr-tunnel-encaps@ietf.org>, "idr-chairs@ietf.org" <idr-chairs@ietf.org>, "idr@ietf. org" <idr@ietf.org>
Thread-Topic: AD Review of draft-ietf-idr-tunnel-encaps-15
Thread-Index: AQHV6LURgETtNTA88kySyYPq0YikO6iY0/+A
Date: Mon, 4 May 2020 20:29:27 +0000
Message-ID: <7CCCDBC5-394F-413D-AEED-295CD405AE34@juniper.net>
References: <CAMMESsw09LGWWhqyJ_0=jRimUN+_UuCjaXHCdqF9zkpaxSQgVQ@mail.gmail.com>
In-Reply-To: <CAMMESsw09LGWWhqyJ_0=jRimUN+_UuCjaXHCdqF9zkpaxSQgVQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.80.23.2.2)
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [66.129.241.14]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 296f81ad-8c39-4bfb-29cc-08d7f069d7c9
x-ms-traffictypediagnostic: BL0PR05MB5540:
x-microsoft-antispam-prvs: <BL0PR05MB55401C64030F29E981329912AAA60@BL0PR05MB5540.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:7219;
x-forefront-prvs: 03932714EB
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: XQJ67VEEnsbJrdnOGw1IPvXslqkBHQHGBtCYFQ8kpi3Ln2sCkInlZ3Rm//8guXtyXPO5MGAJ8W6Hz1836qvv0r0EWFdE+fNRZHsgBkFy9qmZy5HK3aFeBWKMTVuTQpn380UiXdEPPscDi1rMmotqXFpUna9HtlOx+gMNItAXK8GKS+hB40r3qyn+DSnbiLgMqtwiKKNyRlHWW3cXPO6PUSbiEsGymVbIVVj9G32Wgyr3Mds/H+7ZviXYs43ZP1M0BsAoeH8pZALUX3b59mWB8U0iZUbvLgrnliyR7BEQckDoJZvR/EouUkYubKNyVLSJAm7YMn06p6zzmyyd45le55xSBfA4Awj/4UxZCEugmbvA3V2DTEiekFejNWoe897QgDbfvVzdGBNI0/DcnZKBrYcGPwoFxwCjMAg9hvHPTmR3Qach1BmxtvUl0IZWquZi
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL0PR05MB5076.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(376002)(136003)(396003)(39860400002)(346002)(366004)(6486002)(2906002)(4744005)(316002)(54906003)(36756003)(4326008)(478600001)(8676002)(86362001)(5660300002)(6512007)(33656002)(8936002)(71200400001)(186003)(26005)(64756008)(6506007)(66556008)(66446008)(66946007)(66476007)(2616005)(53546011)(6916009)(76116006); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_7CCCDBC5394F413DAEED295CD405AE34junipernet_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 296f81ad-8c39-4bfb-29cc-08d7f069d7c9
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 May 2020 20:29:27.7742 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 9KX9tND7+dV0KOge4qFXWJVIfdA1sFy9PnZf0r+rYB6Qf14dfxpee1xgVdu3sibY
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL0PR05MB5540
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.676 definitions=2020-05-04_11:2020-05-04, 2020-05-04 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 adultscore=0 clxscore=1015 mlxscore=0 priorityscore=1501 phishscore=0 suspectscore=0 mlxlogscore=718 impostorscore=0 spamscore=0 lowpriorityscore=0 malwarescore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2003020000 definitions=main-2005040159
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/R7QZRQUKrRNDId3C2Uy2q-u_sJ0>
Subject: Re: [Idr] AD Review of draft-ietf-idr-tunnel-encaps-15
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 May 2020 20:30:32 -0000

Hi Alvaro,

On Feb 21, 2020, at 7:47 AM, Alvaro Retana <aretana.ietf@gmail.com<mailto:aretana.ietf@gmail.com>> wrote:

431    o  It can be determined that the IP address in the sub-TLV's address
432       subfield does not belong to the non-zero AS whose number is in the
433       its Autonomous System subfield.  (See section Section 13 for
434       discussion of one way to determine this.)

[major] "one way"  I hope that it is the MTI way -- otherwise, the
determination of the sub-TLV being malformed is not deterministic.

ISTM (I am just guessing though) that the “it can be determined” language was finely crafted to avoid this exact objection. It makes the entire clause optional.

If we try to make determination of IP address belonging to a given AS mandatory, I think we are opening a can of worms, since although RPKI deployment has made a lot of progress, it’s far from universal. I think we are better off leaving this as written, IMO.

—John