Re: [Idr] [GROW] WG LC for Extended BGP Administrative Shutdown Communication (bs) - draft-ietf-idr-rfc8203bis-04.txt (7/9 to 7/23) - Extended to 8/6/2019

"Jakob Heitz (jheitz)" <jheitz@cisco.com> Fri, 26 July 2019 04:14 UTC

Return-Path: <jheitz@cisco.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8FCD0120291 for <idr@ietfa.amsl.com>; Thu, 25 Jul 2019 21:14:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=HH+8Zi7k; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=TZ+0mGNI
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Rg4XuIT4nP6Y for <idr@ietfa.amsl.com>; Thu, 25 Jul 2019 21:14:14 -0700 (PDT)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 66A28120281 for <idr@ietf.org>; Thu, 25 Jul 2019 21:14:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=9846; q=dns/txt; s=iport; t=1564114454; x=1565324054; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=TeADZj99iwf5WgE7RE9J+ph0AH+G5HGchdYsk+wdcb0=; b=HH+8Zi7kaiSkxlyem/E3F1fnnP5Yti8pxP2OoZqSrMDG8NYZkv/3piC1 pmFFu3lwJ0dOqSDthN3HSKZiCRQiyRJK97NjOvknVESk9hmGOSGIoiR63 vDfupANBYkqpc2pHAp5IAa3QFE8Fj5e7kx2oxquBLzj+/fYttLB9KC/kA M=;
IronPort-PHdr: =?us-ascii?q?9a23=3ARLqusxzCqBZdzY3XCy+N+z0EezQntrPoPwUc9p?= =?us-ascii?q?sgjfdUf7+++4j5YR2N/u1j2VnOW4iTq+lJjebbqejBYSQB+t7A1RJKa5lQT1?= =?us-ascii?q?kAgMQSkRYnBZuHCUD6MOzCZC0hF8MEX1hgrDm2?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AJAABdfTpd/4MNJK1lGgEBAQEBAgE?= =?us-ascii?q?BAQEHAgEBAQGBUwUBAQEBCwGBQ1ADbVUgBAsqhB6DRwOEUoguTIIPfpZVgS4?= =?us-ascii?q?UgRADVAkBAQEMAQEYDQgCAQGEQAIXgkcjNAkOAQMBAQQBAQIBBm2FHgyFSgE?= =?us-ascii?q?BAQMBAQEQCwYRDAEBLAwEBwQCAQgRBAEBAQICGQYEAwICAiULFAEICAIEARI?= =?us-ascii?q?IGoMBgWoDDg8BAgyhewKBOIhgcYEygnoBAQWFAxiBeRoJgQwoAYpAgR4XgUA?= =?us-ascii?q?/gRFGgXwbBy4+gQSBXQEBAgEXgQsFBAELAQYBIRWCdDKCJowNEoJfhyyTYW0?= =?us-ascii?q?JAoIahlmEboQChGKCLS8+hjiEDIouhBSIRwlWh0qQCwIEAgQFAg4BAQWBUDh?= =?us-ascii?q?ncXAVO4JsCYI5CRoUgzqFFIU/cgGBKIsNAQ4XgiwBAQ?=
X-IronPort-AV: E=Sophos;i="5.64,309,1559520000"; d="scan'208";a="604752029"
Received: from alln-core-1.cisco.com ([173.36.13.131]) by rcdn-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 26 Jul 2019 04:14:13 +0000
Received: from XCH-RCD-003.cisco.com (xch-rcd-003.cisco.com [173.37.102.13]) by alln-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id x6Q4EDHM012302 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 26 Jul 2019 04:14:13 GMT
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by XCH-RCD-003.cisco.com (173.37.102.13) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Thu, 25 Jul 2019 23:14:12 -0500
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 26 Jul 2019 00:14:11 -0400
Received: from NAM01-BY2-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Fri, 26 Jul 2019 00:14:11 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=alfAPh3dU4PZUixG22t8Q8cXozyBR4ZVFF/kemIyAUY9Ba2PMDy2JlL7OvTTqvPiUTmhCzsf91oRrZ9pWN7FGLlJVJ9W0jtQ0M6mNJrlydtBq8vvu6n1P+C/e6fP8RXM8qjeD6mZb8yMr0XheVRjbNc9iVqnrEhovOnlqEdYh+2crf7TR0DItbWN7FtDc1oE9KfSHjOG5Sb4GTJPyO/l36s/U+PZ5lIcLY4UHppbrGbnt+Xwd4lWq/qgrCpENAzVF15c0VFctzYdrOdnc5HD899mUDPN5mw2U4yEcmfFCwjaf/KXOnTx33Dpq9yeAjQi0yg6RJCNIRvHSvjX5tw9zQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TeADZj99iwf5WgE7RE9J+ph0AH+G5HGchdYsk+wdcb0=; b=ZVqA4U7T5DnuIn20Ee57xnJEL3XC1QBrVh59jR28AC2tHJDgZj4akpQjwwGXcFxK2aJFWYAsSWGd4nSoFgky/BppcYdh2RO2+0vWz/uXeX+bXYoVfBLlyM6/30dboPMmNu1YywmhGARaQ5dhKPDBS+bZpbX6aEJO4KvrMhBz4uJ6ewMo3SHqPX8ImLLPignqC1poB/9lVrkYkFr6jTwtER50GQkiBnJetz2iZ0Sh3dAYzHmeuFgFeObytpej5qXGPQ68RBA2pUIgcHAAq3ilr3AzDPPRNkaZ4bmwRe4JN5Z9ofu5WOOGGXAnG+bf5yyKTil36uHGJrF4q3MgPVW9qQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=cisco.com;dmarc=pass action=none header.from=cisco.com;dkim=pass header.d=cisco.com;arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TeADZj99iwf5WgE7RE9J+ph0AH+G5HGchdYsk+wdcb0=; b=TZ+0mGNIddp6rVlc/2e1zMUeDrzbaVsdfbENIXeDWxjHhQ9xegHQonAAmWjFE2QSVTVAuxiguSh/0OlvvNwdxkc095w4FSTZnXWmv/RdEHTQNtyDwWi/RCjbXp+sUGnxZ4bATPFWQN/lbQlE+LFEdGWH9TX/njwlp8w/yDG2Wgg=
Received: from BYAPR11MB3751.namprd11.prod.outlook.com (20.178.238.144) by BYAPR11MB3047.namprd11.prod.outlook.com (20.177.225.220) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2073.14; Fri, 26 Jul 2019 04:14:09 +0000
Received: from BYAPR11MB3751.namprd11.prod.outlook.com ([fe80::a894:a92:ad6e:ee2a]) by BYAPR11MB3751.namprd11.prod.outlook.com ([fe80::a894:a92:ad6e:ee2a%7]) with mapi id 15.20.2115.005; Fri, 26 Jul 2019 04:14:09 +0000
From: "Jakob Heitz (jheitz)" <jheitz@cisco.com>
To: "bruno.decraene@orange.com" <bruno.decraene@orange.com>, John Scudder <jgs=40juniper.net@dmarc.ietf.org>, Hares Susan <shares@ndzh.com>, idr wg <idr@ietf.org>
Thread-Topic: [Idr] [GROW] WG LC for Extended BGP Administrative Shutdown Communication (bs) - draft-ietf-idr-rfc8203bis-04.txt (7/9 to 7/23) - Extended to 8/6/2019
Thread-Index: AQHVQzpi5T5+NetmSECG+m10ezeT9abcSeSQ
Date: Fri, 26 Jul 2019 04:14:09 +0000
Message-ID: <BYAPR11MB3751BCDBFC3CB0434A49A825C0C00@BYAPR11MB3751.namprd11.prod.outlook.com>
References: <034e01d5432f$8841b870$98c52950$@ndzh.com> <680B90BD-9201-4B89-BAF4-79925825AC67@juniper.net> <20045_1564094518_5D3A3036_20045_426_1_53C29892C857584299CBF5D05346208A48BB98D4@OPEXCAUBM43.corporate.adroot.infra.ftgroup>
In-Reply-To: <20045_1564094518_5D3A3036_20045_426_1_53C29892C857584299CBF5D05346208A48BB98D4@OPEXCAUBM43.corporate.adroot.infra.ftgroup>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=jheitz@cisco.com;
x-originating-ip: [2001:420:c0c8:1001::216]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f2bf315a-b99c-4efd-775f-08d7117fb542
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:BYAPR11MB3047;
x-ms-traffictypediagnostic: BYAPR11MB3047:
x-ms-exchange-purlcount: 3
x-microsoft-antispam-prvs: <BYAPR11MB30473A5735A69DE58AD7DA61C0C00@BYAPR11MB3047.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 01106E96F6
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(376002)(39860400002)(396003)(346002)(366004)(136003)(199004)(189003)(13464003)(86362001)(6246003)(6436002)(55016002)(99286004)(6306002)(9686003)(66446008)(76116006)(66946007)(66476007)(66556008)(33656002)(64756008)(446003)(2906002)(53936002)(11346002)(186003)(110136005)(316002)(6116002)(476003)(46003)(71190400001)(71200400001)(2501003)(7696005)(478600001)(8936002)(6506007)(486006)(102836004)(8676002)(53546011)(229853002)(76176011)(966005)(74316002)(14454004)(68736007)(25786009)(305945005)(5024004)(14444005)(256004)(7736002)(5660300002)(52536014)(81156014)(81166006); DIR:OUT; SFP:1101; SCL:1; SRVR:BYAPR11MB3047; H:BYAPR11MB3751.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: W4KiyA2O9ZcRzmE5GsaovvHhZYWGH9+ObJvzha/Aeam4WGnSlMPa5RcGY9HRSLO1v3iEIG1jRCG+v9KxZJl/Swc3JQlAW+r2X8POjMqD5gIfba5b0dpRYPnSDzBpwCqssMPkY0EQNk71/oq/HS9vK1ya3RQ6XHTL/PJzmKAlFrhreoYyDRU5zC+VuoEN/PFnSnM6jJlZq91tfvHFAByeDYkoAZQ/HK2dSNMrAuBdhsGCjRaPkNZy4AxWbgWb//zgFYODHJ9G+3nJoUU4DDZAxYA6xb3iZn4H29nywGx7OGOKXdvCAhA8/Lopc7vLh8ht6LLHjS1bGNoiJeBAO1l7nOtSoZ8aDZMdti4I6q+ProV6HZ744PwGe7YpVVDcP83saDZ6kprwsiON47xT5b1XxoCjehM0u8n+Nt7taP21CGY=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: f2bf315a-b99c-4efd-775f-08d7117fb542
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Jul 2019 04:14:09.3826 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: jheitz@cisco.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3047
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.13, xch-rcd-003.cisco.com
X-Outbound-Node: alln-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/TAlYQRAXzmvcdIX2sitcnOCIa_0>
Subject: Re: [Idr] [GROW] WG LC for Extended BGP Administrative Shutdown Communication (bs) - draft-ietf-idr-rfc8203bis-04.txt (7/9 to 7/23) - Extended to 8/6/2019
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Jul 2019 04:14:19 -0000

Bruno,

Would you be happy if we make mention of these points in the security considerations?

Regards,
Jakob.

-----Original Message-----
From: Idr <idr-bounces@ietf.org> On Behalf Of bruno.decraene@orange.com
Sent: Thursday, July 25, 2019 3:42 PM
To: John Scudder <jgs=40juniper.net@dmarc.ietf.org>rg>; Hares Susan <shares@ndzh.com>om>; idr wg <idr@ietf.org>
Subject: Re: [Idr] [GROW] WG LC for Extended BGP Administrative Shutdown Communication (bs) - draft-ietf-idr-rfc8203bis-04.txt (7/9 to 7/23) - Extended to 8/6/2019

John, thank you for the summary.

Sue, I support progressing this document.

Following a light 15 seconds review, I can see 2 consequences for this light change:

a) Extended/new speakers are not compliant with RFC8203 since they violate the original MUST.
However,
- I don't see a protocol issue: additional text is just likely to be cut after the 8203 limit. I don't really know how much there is a risk of changing the last printed character in case of multi-bytes characters cut in the middle. But even in the general case, there is a risk of miscommunication. E.g.  a message finishing with "9000" may be received as finishing by "90". You may consider raising this risk, even though it's limited to the transition period.
- I don't see any operational risk: in the end, the session is been closed.

b) In theory, as per RFC 8203 security consideration section, there is an increased security risk that "carefully constructed Shutdown Communication might be formatted by receiving systems in a way to make them appear  as additional syslog messages."
In order to mitigate, what about adding a specific delimiter before & after this Communication message, in order to highlight the separation from regular/local syslog messages? Note that the choice of the delimiter could be local/not specified in this doc and may be phrased as optional (MAY)

Regards,
--Bruno

-----Original Message-----
From: GROW [mailto:grow-bounces@ietf.org] On Behalf Of John Scudder
Sent: Thursday, July 25, 2019 6:10 PM
To: Hares Susan; idr wg
Cc: grow@ietf.org
Subject: Re: [GROW] [Idr] WG LC for Extended BGP Administrative Shutdown Communication (bs) - draft-ietf-idr-rfc8203bis-04.txt (7/9 to 7/23) - Extended to 8/6/2019

(As an individual contributor and co-author.)

Thanks for extending this, Sue. Maybe it will help the WG to have a reminder about what this document does. 

It’s a revision of RFC 8203. First, here is the rfcdiff vs. RFC 8203: 
http://tools.ietf.org/tools/rfcdiff/rfcdiff.pyht?url1=rfc8203&url2=draft-ietf-idr-rfc8203bis
It is quite short, especially when you skip over the boilerplate and "RFC EDITOR: REMOVE BEFORE PUBLICATION” sections. 

The sole normative change vs. 8203 is the deletion of one sentence:

OLD:
   Length:  this 8-bit field represents the length of the Shutdown
      Communication field in octets.  The length value MUST range from 0
      to 128 inclusive.  When the length value is zero, no Shutdown
      Communication field follows.
NEW:
   Length:  this 8-bit field represents the length of the Shutdown
      Communication field in octets.  When the length value is zero, no
      Shutdown Communication field follows.

The reason for this change is summarized in in Appendix B:

   Feedback from operators based in regions which predominantly use
   multibyte character sets, showed that messages similar in meaning to
   what can be send in other languages in using single-byte encoding,
   failed to fit within the Length constraints as specified by
   [RFC8203].  For example, the phrase: 'Planned work to add switch to
   stack.  Completion time - 30 minutes' has length 65 bytes.  Its
   translation in Russian
   '&#1055;&#1083;&#1072;&#1085;&#1086;&#1074;&#1099;&#1077;
   &#1088;&#1072;&#1073;&#1086;&#1090;&#1099; &#1087;&#1086; &#1076;&#10
   86;&#1073;&#1072;&#1074;&#1083;&#1077;&#1085;&#1080;&#1102; &#1082;&#
   1086;&#1084;&#1084;&#1091;&#1090;&#1072;&#1090;&#1086;&#1088;&#1072;&
   #1074;
   &#1089;&#1090;&#1077;&#1082;.&#1042;&#1088;&#1077;&#1084;&#1103; &#10
   79;&#1072;&#1074;&#1077;&#1088;&#1096;&#1077;&#1085;&#1080;&#1103; -
   30&#1084;&#1080;&#1085;&#1091;&#1090;' (See PDF for non-ASCII
   character string) has length 139 bytes.

Now you do not need to actually go read the draft in order to know everything you need to respond to the WGLC. :-)

Thanks,

—John


> On Jul 25, 2019, at 5:25 PM, Susan Hares <shares@ndzh.com> wrote:
> 
> Greetings IDR: 
>  
> The IDR WG call for input on draft-ietf-idr-rfc8203bis-04.txt has received only 2 comments.  Since this is a draft that updates an operationally needed feature,  I am extending the WG LC until 8/6/2019.  
>  
> If you believe this draft is ready for publication, please respond to this WG LC. 
>  
> Sue Hares 
>  
> From: Idr [mailto:idr-bounces@ietf.org] On Behalf Of Susan Hares
> Sent: Tuesday, July 9, 2019 9:13 AM
> To: 'idr wg'
> Subject: [Idr] WG LC for Extended BGP Administrative Shutdown Communication (bs) - draft-ietf-idr-rfc8203bis-04.txt (7/9 to 7/23)
>  
> This begins a 2 week WG last call for draft-ietf-idr-rfc8203bis-04.txt from July 9, 2019 to July 23, 2019. . 
>  
> Please consider if you believe this revision of RFC8203 (Administrative Shutdown)
> a)      Will benefit operational networks,
> b)      is technically complete, and 
> c)       ready for publication. 
>  
> In your comments, please indicate whether you “support” or “do not support” its publication. 
>  
> This draft contains IPR notice that causes “IPR warnings”.   The authors believe that this text is automatically generated by the IETF tools and the warning is not appropriate.   
>  
> As the shepherd, I am  investigating this issue.   If you have specific knowledge on this issue, you may send it to the list or to me directly. 
>  
> Cheerily, Susan Hares 
>  
_______________________________________________
GROW mailing list
GROW@ietf.org
https://www.ietf.org/mailman/listinfo/grow

_________________________________________________________________________________________________________________________

Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.

_______________________________________________
Idr mailing list
Idr@ietf.org
https://www.ietf.org/mailman/listinfo/idr