IETF Logo Mail Archive

Re: [Idr] RFC-4893 handling malformed AS4_PATH attributes

"John G. Scudder" <jgs@juniper.net> Mon, 15 December 2008 19:41 UTC

Return-Path: <idr-bounces@ietf.org>
X-Original-To: idr-archive@megatron.ietf.org
Delivered-To: ietfarch-idr-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C62A128C117; Mon, 15 Dec 2008 11:41:00 -0800 (PST)
X-Original-To: idr@core3.amsl.com
Delivered-To: idr@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 056DB3A67F7 for <idr@core3.amsl.com>; Mon, 15 Dec 2008 11:41:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.465
X-Spam-Level:
X-Spam-Status: No, score=-6.465 tagged_above=-999 required=5 tests=[AWL=0.135, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GwJaSejWqw9q for <idr@core3.amsl.com>; Mon, 15 Dec 2008 11:40:59 -0800 (PST)
Received: from exprod7og104.obsmtp.com (exprod7og104.obsmtp.com [64.18.2.161]) by core3.amsl.com (Postfix) with ESMTP id B38F228C117 for <idr@ietf.org>; Mon, 15 Dec 2008 11:40:56 -0800 (PST)
Received: from source ([66.129.224.36]) (using TLSv1) by exprod7ob104.postini.com ([64.18.6.12]) with SMTP ID DSNKSUaywcFoZAV0+BA2xk9bOwWIzIB8InOD@postini.com; Mon, 15 Dec 2008 11:40:52 PST
Received: from p-emfe01-sac.jnpr.net (66.129.254.72) by P-EMHUB01-HQ.jnpr.net (172.24.192.35) with Microsoft SMTP Server id 8.1.311.2; Mon, 15 Dec 2008 11:36:37 -0800
Received: from p-emlb01-sac.jnpr.net ([66.129.254.46]) by p-emfe01-sac.jnpr.net with Microsoft SMTPSVC(6.0.3790.3959); Mon, 15 Dec 2008 11:36:36 -0800
Received: from emailsmtp55.jnpr.net ([172.24.18.132]) by p-emlb01-sac.jnpr.net with Microsoft SMTPSVC(6.0.3790.3959); Mon, 15 Dec 2008 11:36:36 -0800
Received: from magenta.juniper.net ([172.17.27.123]) by emailsmtp55.jnpr.net with Microsoft SMTPSVC(6.0.3790.1830); Mon, 15 Dec 2008 11:36:36 -0800
Received: from [172.16.13.200] ([172.16.13.200]) by magenta.juniper.net (8.11.3/8.11.3) with ESMTP id mBFJaZM06166; Mon, 15 Dec 2008 11:36:35 -0800 (PST) (envelope-from jgs@juniper.net)
Message-ID: <5AAFFD16-AF24-4A3A-89BF-C912A46B9F7A@juniper.net>
From: "John G. Scudder" <jgs@juniper.net>
To: Jeffrey Haas <jhaas@pfrc.org>
In-Reply-To: <20081215181155.GC12768@slice>
MIME-Version: 1.0 (Apple Message framework v929.2)
Date: Mon, 15 Dec 2008 14:36:34 -0500
References: <0016361e883459ba8b045e197e41@google.com> <B216E38D-5E44-4375-9CD0-E0E19C47636D@tcb.net> <0016361e883459ba8b045e197e41@google.com> <20081215181155.GC12768@slice>
X-Mailer: Apple Mail (2.929.2)
X-OriginalArrivalTime: 15 Dec 2008 19:36:36.0156 (UTC) FILETIME=[713807C0:01C95EEC]
Cc: Inter-Domain Routing List <idr@ietf.org>
Subject: Re: [Idr] RFC-4893 handling malformed AS4_PATH attributes
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/idr>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"; DelSp="yes"
Sender: idr-bounces@ietf.org
Errors-To: idr-bounces@ietf.org

[resending with cropped cc list to get around brain-damaged ietf  
bogosity filter]

On Dec 15, 2008, at 1:11 PM, Jeffrey Haas wrote:
> On Mon, Dec 15, 2008 at 05:51:33PM +0000, cayle.spandon@gmail.com  
> wrote:
>> Because of this an alternative is available: instead of ignoring the
>> update, we can treat these "illegal" routes as unusable, ie no
>> different
>> than -say- a route with an unreachable next-hop.
>
> In that case, the presumption is that you would *ever* want to use it.
> I suggest simply discarding the update.

Discarding updates without processing them as Cayle describes violates  
the loop free property.  Consider the fact that an advertisement of a  
route is also an implicit withdrawal of any previous advertisement,  
and also consider that an update can also carry explicit withdrawals.   
Simply discarding an update is thus equivalent to ignoring a  
withdrawal.  It's not difficult to construct a scenario in which  
persistent forwarding loops ensue.  A scenario with a persistent  
blackhole is trivial.

If you ever get into a state where the only sensible thing you can do  
is discard an update, you're at the point where BGP's most fundamental  
correctness property is broken.  I think you want to think very, very  
hard about whether the "cure" (dropping the update) is worse than the  
disease (dropping the session).  OTOH, I think it's worth continuing  
the discussion about what kinds of other actions can be taken up to,  
but not including, dropping the update.

> On Mon, Dec 15, 2008 at 11:05:46AM -0700, Danny McPherson wrote:
>> Given that we can be certain AS_CONFED_* segments serve NO
>> function in AS4_PATH, I believe discarding only those segments
>> and continuing normal processing is a reasonable response for
>> a receiver.
>
> The presumption is that the path is malformed in some fashion.  Can  
> you
> really trust that the portions to either side of the confederation
> segments are correct?

This has generally been my position in past iterations of this annual  
debate.  I'm starting to moderate it based on the demonstrated  
operational problems caused in particular by bad optional/transitives.

--John
_______________________________________________
Idr mailing list
Idr@ietf.org
https://www.ietf.org/mailman/listinfo/idr

v2.23.0 | Report a Bug | By Email