Re: Lack of responses on WG Last Calls
Brian E Carpenter <brian.e.carpenter@gmail.com> Thu, 16 December 2010 23:36 UTC
Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ipv6@core3.amsl.com
Delivered-To: ipv6@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5136B3A69F3 for <ipv6@core3.amsl.com>; Thu, 16 Dec 2010 15:36:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.34
X-Spam-Level:
X-Spam-Status: No, score=-103.34 tagged_above=-999 required=5 tests=[AWL=0.259, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id I37TD0dVmeJv for <ipv6@core3.amsl.com>; Thu, 16 Dec 2010 15:36:12 -0800 (PST)
Received: from mail-vw0-f44.google.com (mail-vw0-f44.google.com [209.85.212.44]) by core3.amsl.com (Postfix) with ESMTP id 4EE773A6979 for <ipv6@ietf.org>; Thu, 16 Dec 2010 15:36:12 -0800 (PST)
Received: by vws7 with SMTP id 7so35542vws.31 for <ipv6@ietf.org>; Thu, 16 Dec 2010 15:37:57 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :organization:user-agent:mime-version:to:cc:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=sbAMZXlVxawcmmTwhI6Zurien2LMkF4pm59It3JQYxQ=; b=KL6VG+CQVO8LSDTjOU+cWiStDDQM5gZxgs1scLyPvm8w4yo+jQ9Dfhn9zH170hNDEG vLivMsQKdDhmTdS2HH7oL3efjWdL21/tte0lamnOykorjlcs0aqZZhjk1YaH7BO9VehY rz2rqnX8XNgLUzMwhoayczobWpo8/S7E6exSE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:organization:user-agent:mime-version:to:cc :subject:references:in-reply-to:content-type :content-transfer-encoding; b=Y+ZjfaUH1IHnfXRf1mDN1nFPbbVQBa1FWOG4xRR2AO77ZJ1+DCjKGrUlfRDfDCHxb3 j//CeYxQw3yfufgVOKiFQiM5fzWbAf97bdd8mTV0cnZDGnrt2fkk9EsS1JH9Tn7jiOBw kNlZCa0c2Czr7hQfYOmmzmat6Mjj/q8tE/R/Y=
Received: by 10.220.176.134 with SMTP id be6mr16981vcb.127.1292542677624; Thu, 16 Dec 2010 15:37:57 -0800 (PST)
Received: from [10.1.1.4] ([121.98.190.33]) by mx.google.com with ESMTPS id n13sm226982vcr.41.2010.12.16.15.37.55 (version=SSLv3 cipher=RC4-MD5); Thu, 16 Dec 2010 15:37:56 -0800 (PST)
Message-ID: <4D0AA2CE.8000604@gmail.com>
Date: Fri, 17 Dec 2010 12:37:50 +1300
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: Brian Haberman <brian@innovationslab.net>
Subject: Re: Lack of responses on WG Last Calls
References: <4D0A19C0.4020409@innovationslab.net>
In-Reply-To: <4D0A19C0.4020409@innovationslab.net>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Cc: IPv6 WG Mailing List <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Dec 2010 23:36:13 -0000
For my sins, I was the Gen-ART reviewer for the main RPL spec, so I was able to have a quick glance at these without being completely mystified. On 2010-12-17 02:53, Brian Haberman wrote: > All, > Working group last calls ended 10 days ago for the two RPL-related > drafts (draft-ietf-6man-rpl-option This looks basically OK to me. However: > 9. IANA Considerations > > The RPL option requires an IPv6 Option Number. Shouldn't we have a "TBD" here, as used in the main text? And an instruction to the RFC Editor to resolve the TBD after IANA performs the assignment. > > HEX act chg rest > --- --- --- ----- > 1 01 1 01011 > > > The first two bits indicate that the IPv6 node MUST discard the > packet if it doesn't recognize the option type, and the third bit > indicates that the Option Data may change en-route. > > This document also creates a new IANA registry for the sub-TLVs. No > sub-TLVs are defined in this specification. The policy for this > registry [RFC5226] is IETF Review. I think the IANA will ask for a bit more guidance about the format and name of this registry. and > draft-ietf-6man-rpl-routing-header). This defines a new routing header called RH4 (subject to IANA confirming the "4"). One question that comes to mind is whether this is going to cause more or fewer operational difficulties than an instantiation of draft-ietf-6man-exthdr would. Will legacy nodes treat RH4 as they should (discard the packet), treat it like RH0 due to sloppy coding (which amounts to the same thing under RFC5095) or what? Anyway, it seems clear that RH4 will not successfully cross any non-RPL-aware routers. Now this may be deemed irrelevant because RH4 is "for use strictly within a RPL domain." But it seems highly likely that in practice, the odd non-RPL router will see one of these headers. So at the least, I think the draft should discuss what will happen in that case, even if only to point out that the rules of RFC 2460 mean that the packet (not just the header) will be dropped unless Segments Left is zero. Then: > 6.1. Source Routing Attacks > > [RFC5095] deprecates the Type 0 Routing header due to a number of > significant attacks that are referenced in that document. Such > attacks include network discovery, bypassing filtering devices, > denial-of-service, and defeating anycast. > > Because this document specifies that Type 4 Routing headers are only > for use within a RPL domain, such attacks cannot be mounted from > outside the RPL domain. As described in Section 5, RPL Border > Routers MUST drop datagrams entering or exiting the RPL domain that > contain a Type 4 Routing header in the IPv6 Extension headers. OK, but that implies that such attacks can still be mounted inside the RPL domain. How is that OK, given that ROLL may be deployed in highly dynamic scenarios where roaming nodes drop into a network at will? Brian
- Lack of responses on WG Last Calls Brian Haberman
- RE: Lack of responses on WG Last Calls Don Sturek
- Re: Lack of responses on WG Last Calls Brian E Carpenter
- Re: Lack of responses on WG Last Calls Fred Baker
- RE: Lack of responses on WG Last Calls Don Sturek
- Re: Lack of responses on WG Last Calls Fred Baker
- Re: Lack of responses on WG Last Calls Thomas Narten
- Re: Lack of responses on WG Last Calls Fred Baker
- Re: Lack of responses on WG Last Calls Thomas Narten
- Re: Lack of responses on WG Last Calls Bob Hinden
- Re: Lack of responses on WG Last Calls Bob Hinden
- Re: Lack of responses on WG Last Calls Don Sturek
- RE: Lack of responses on WG Last Calls Don Sturek
- Re: Lack of responses on WG Last Calls JP Vasseur