Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-17 -> Updated Version -18 and Flowspec v6

Jeffrey Haas <> Wed, 18 December 2019 16:50 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 66B561209F5; Wed, 18 Dec 2019 08:50:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id t969BAFCiQkN; Wed, 18 Dec 2019 08:50:09 -0800 (PST)
Received: from ( []) by (Postfix) with ESMTP id 4B41B1208B9; Wed, 18 Dec 2019 08:50:06 -0800 (PST)
Received: by (Postfix, from userid 1001) id C10CA1E2F6; Wed, 18 Dec 2019 11:54:35 -0500 (EST)
Date: Wed, 18 Dec 2019 11:54:35 -0500
From: Jeffrey Haas <>
To: Alvaro Retana <>
Cc: Christoph Loibl <>,, "idr@ietf. org" <>,
Message-ID: <>
References: <> <> <> <> <> <> <>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <>
Subject: Re: [Idr] AD Review of draft-ietf-idr-rfc5575bis-17 -> Updated Version -18 and Flowspec v6
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 18 Dec 2019 16:50:11 -0000


[choosing the most terse response]

On Wed, Dec 18, 2019 at 08:17:05AM -0800, Alvaro Retana wrote:
> > On Wed, Dec 18, 2019 at 08:11:37AM +0100, Christoph Loibl wrote:
> > > > You can't parse it, therefore it's malformed.
> Jeff: I interpreted this response as agreeing that if the NLRI can't
> be parsed then it should be discarded (even maybe buying the Typed
> NLRI argument).  It sounds like we're agreeing.  Is that true?


> Personal opinion:  If we (WG) don't buy into the Typed NLRI-like
> argument, then we deal with the "entire NLRI field", but we're also
> stuck with AFI/SAFI disable (or session reset).  If we buy into the
> Typed NLRI-like argument, then it seems like we have the option to
> specify either discard behavior.

IMO, the typed NLRI argument was poorly thought through.  It effectively
devolves into a form of the issues above.  The issue in both cases is that
it's impossible to tell that you're dealing with garbage or not.  The choice
made in that section was discard with exactly the same risks I mentioned.

If the WG converges on discard, so be it.  If an implementation and a
network roll the dice in a lucky fashion, they only encounter such issues
for well-formed unknowns that are discarded.  If not, they get to manually
bounce their peering session.

The fix for flowspec really should be flowspec v2 or capabilities based fix
for later extensions.  The fix for the typed NLRI is effectively similar.

-- Jeff