Re: [Idr] I-D Action: draft-wang-idr-bgp-error-enhance-00.txt
Robert Raszuk <robert@raszuk.net> Sun, 24 October 2021 13:47 UTC
Return-Path: <robert@raszuk.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A553B3A1493 for <idr@ietfa.amsl.com>; Sun, 24 Oct 2021 06:47:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fW9Q5BFZE4OQ for <idr@ietfa.amsl.com>; Sun, 24 Oct 2021 06:47:07 -0700 (PDT)
Received: from mail-vk1-xa2a.google.com (mail-vk1-xa2a.google.com [IPv6:2607:f8b0:4864:20::a2a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA6A63A1497 for <idr@ietf.org>; Sun, 24 Oct 2021 06:47:06 -0700 (PDT)
Received: by mail-vk1-xa2a.google.com with SMTP id 20so1290395vkc.8 for <idr@ietf.org>; Sun, 24 Oct 2021 06:47:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=pmJIqWO0UVKS9ZMN2eZKFjIb/Gt8l+ubqbJ2/FzQolQ=; b=PxbhoT9z/npIjVKWFq3SpyDn9LkxJvlDQjWFW7iMRjbiw51FqdLGaWnWyK4LXzuty0 Wma9S1W0RHA7cqnMV9Yt1WfWv8sz8gYX/Pd/Etgs99Z5gY+SHmdiqasOsBGxMN5G3Cvb azWOq9NMUpQ5bN10SDc6V7fqiDx72WNM7o1LOqbIItLvitLUWM1ToRCmI2pkjFlidatr vW0wUuljNtFRSm8pDIAjz8AV7y12KmCfnIs8wONcTm7K0BBy+6bt8w0EZVV8IboO/AG2 +sbEPv/5QaL9jEdiSb6l7nkGpllttIpv2B7yDwIFw/PL6szeKi6yqgQzhd65jdo/PhPY yEVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=pmJIqWO0UVKS9ZMN2eZKFjIb/Gt8l+ubqbJ2/FzQolQ=; b=QxuJ0e3rJRh12NJU9JekXFQwp6SPvptbrBu/ntH4wLlZGqju1N5Z28Oj2K7NR/XQSO YQWkhdA9OvU8rWzyAs2QueYNQQlaVV1w/maJzOW3bKhG0aJy+1pG24aOh+yvVRurOVm0 6D6ApAHxovRjo/221aux1JkIkyM9XU63q5LwFIQ8Eh+pR+0HeJqGV4i/o1KGq1m9zNzq t4SAw2sZEzS4328UGeGRcYJqVjTRsCQKMLsxb3kbta6F26LI8JTl2gFWB4M6tS7z1SI+ f4Yqc8TAcB/wnHU+KEmnd5SZrkTabJspkjqXmZh8Z56qBjBdrQrUpdr5TNAspuHKKhvi BOXw==
X-Gm-Message-State: AOAM53392hBTgZjt41rMfNkOIPeYkBDydeYlzFC614OM0E1BRwdiLl/e dOu1Jf6bpLSwXkl1t1j678EeVz/R10nTbxl7zRFPJw==
X-Google-Smtp-Source: ABdhPJwLUDBE4YT2KAfHtyamhZRS0oy/QCXdg8hSGcjRI4F5KFuyqDFTD2AGfnXNsba7bmA22m39qxsDN2VbCUxdIVs=
X-Received: by 2002:a1f:2ac3:: with SMTP id q186mr10361958vkq.12.1635083225411; Sun, 24 Oct 2021 06:47:05 -0700 (PDT)
MIME-Version: 1.0
References: <163507718592.16183.4414540420076189232@ietfa.amsl.com>
In-Reply-To: <163507718592.16183.4414540420076189232@ietfa.amsl.com>
From: Robert Raszuk <robert@raszuk.net>
Date: Sun, 24 Oct 2021 15:46:59 +0200
Message-ID: <CAOj+MMG=Ve+_BuOGY6tAU-CjY5GUg2uEHPtXO_HeSVFsBdDerQ@mail.gmail.com>
To: "Wanghaibo (Rainsword)" <rainsword.wang@huawei.com>, shenming2@huawei.com, "Dongjie (Jimmy)" <jie.dong@huawei.com>
Cc: "idr@ietf. org" <idr@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000d4475905cf197afa"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/nEjFNnAz1hXY6nXURWcZ5bkemp0>
Subject: Re: [Idr] I-D Action: draft-wang-idr-bgp-error-enhance-00.txt
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 24 Oct 2021 13:47:12 -0000
Dear Authors, Below are my comments after review of your proposal. 1) There is no such thing as "MP_REACH_UNLRI" ... Please swap all occurances to "MP_UNREACH_NLRI". Likewise please adjust all "UNLRI" or define a priori what you mean by this abbreviation. 2) Section 3.1 - You say: "Then we may also try to continue parse the next update packet if we can correctly find it." I don't think this is a good suggestion for the Standards track document. 3) Section 3.2 - I disagree with the suggestion. If a speaker is sending more than one MP_REACH_NLRI or MP_UNREACH_NLRI it should be cut out as soon as possible from causing more damage. 4) Section 4.1 - I am not sure why there is any need to enumerate the same specific special IP addresses and not to list others. For example if I receive IPv4 next hop as 127.0.0.1 is this cool ? I recommend editing this: "f) The IP address is not a invalid ip address." I think you mean to say: "f) The IP address is not a valid ip address." 5) Section 4.2 - I don't think this is a good suggestion. Likewise in the case of same prefix being present in both MP_REACH_NLRI and MP_UNREACH_NRLI suggestion to "firstly process the Prefixes in the MP_REACH_NLRI then process the Prefixes in the MP_REACH_UNLRI" is not good. 6) Section 4.3 - How can you treat it as withdraw something which is part of the "malformed prefix-SID attribute" ? 7) Sections 4.4 & 4.5 & 4.6 - Why are you suggesting again to check and detect special cases of *only* all zero addresses ? There are lot's of special IPv4 or even more IPv6 addresses to detect. I am not sure if we need to educate implementers about those in the BGP spec. Conclusion: If WG agrees that there are some valid suggestions in your proposal we should issue a RFC7606bis and not separate draft updating it like you are suggesting. So far to me like there is no substance to even go for -bis version of 7606. Yes, the BGP-4 protocol running on TCP is not bullet proof when it comes to handling bad implementations or malicious protocol attacks. Your figure 1 illustrates this well. But even with all suggestions listed there still remains lot's of attack vectors if someone has access to inject bad BGP packets to your network. I think we should consider using new transport which no longer runs on TCP and essentially not only treats all SAFIs as fully independent streams but also cut's interdependencies between all NLRI even with given SAFI. Good news is that some proposals in this direction are starting to pop-up in this WG, IMO already opening new doors for the new (hopefully much more robust) BGP version. Many thx, Robert On Sun, Oct 24, 2021 at 2:06 PM <internet-drafts@ietf.org> wrote: > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > > > Title : Revised Error Handling for BGP Messages > Authors : Haibo Wang > Ming Shen > Jie Dong > Filename : draft-wang-idr-bgp-error-enhance-00.txt > Pages : 8 > Date : 2021-10-24 > > Abstract: > This document supplements and revises RFC7606. According to RFC > 7606, when an UPDATE packet received from a neighbor contains an > attribute of incorrect format, the BGP session cannot be reset > directly. Instead, the BGP session must be reset based on the > specific problem. Error packets must minimize the impact on routes > and do not affect the correctness of the protocol. Different error > handling methods are used. The error handling methods include > discarding attributes, withdrawing routes, disabling the address > family, and resetting sessions. > > RFC 7606 specifies the error handling methods of some existing > attributes and provides guidance for error handling of new > attributes. > > This document supplements the error handling methods for common > attributes that are not specified in RFC7606, and provides > suggestions for revising the error handling methods for some > attributes. The general principle remains unchanged: Maintain > established BGP sessions and keep valid routes updated. However, > discard or delete incorrect attributes or packets to minimize the > impact on the current session. > > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-wang-idr-bgp-error-enhance/ > > There is also an htmlized version available at: > https://datatracker.ietf.org/doc/html/draft-wang-idr-bgp-error-enhance-00 > > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > > _______________________________________________ > I-D-Announce mailing list > I-D-Announce@ietf.org > https://www.ietf.org/mailman/listinfo/i-d-announce > Internet-Draft directories: http://www.ietf.org/shadow.html > or ftp://ftp.ietf.org/ietf/1shadow-sites.txt >
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Robert Raszuk
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Wanghaibo (Rainsword)
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Enke Chen
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Jakob Heitz (jheitz)
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… bruno.decraene
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… UTTARO, JAMES
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Jakob Heitz (jheitz)
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… bruno.decraene
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Robert Raszuk
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… UTTARO, JAMES
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Wanghaibo (Rainsword)
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Jeffrey Haas
- Re: [Idr] I-D Action: draft-wang-idr-bgp-error-en… Gyan Mishra