IETF Logo Mail Archive

Re: SRH insertion vs SRH insertion + encapsulation

Brian E Carpenter <brian.e.carpenter@gmail.com> Sun, 08 September 2019 03:37 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6A85D1201E4; Sat, 7 Sep 2019 20:37:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1v7FfSPUY6oj; Sat, 7 Sep 2019 20:37:48 -0700 (PDT)
Received: from mail-pg1-x52a.google.com (mail-pg1-x52a.google.com [IPv6:2607:f8b0:4864:20::52a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 880A91201DB; Sat, 7 Sep 2019 20:37:48 -0700 (PDT)
Received: by mail-pg1-x52a.google.com with SMTP id 4so5727716pgm.12; Sat, 07 Sep 2019 20:37:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=172odH0ASSCuNL4DhrHPeJqGjFBAnPrbwhWF1IxydRo=; b=B5BSLnoJp7hKr2nGBTqDE8qVXHBjjMavKyZHv09sAcjQwieijateUFrivGx5OAXWG6 NELqzLNrKzSGm9MbG4ggN4ElU/ImtQaCzDX2iqG9z31MK9HqtS7X+FhWzCF42L/LtwEE FTyoqPRYR99Z2KzHhMvemqn6hdNpIbznxkLDt8uGhwEffCGP9pUa+QAWVg0+Dogw15Du /1TbuB/blsGCEdVBVQAkweuASp8GkVIfCqro3g0yYwhjb27nUENmxhkty+UCQEohRaIo nRYrlLtNx5iQ7poeR4od0vWBxfiuBJ/Y/TkB0jPvfjLPlcxbDQ5aTTVwGiaaWvBeCm9m n+uw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=172odH0ASSCuNL4DhrHPeJqGjFBAnPrbwhWF1IxydRo=; b=o0hVdE41ChcN62qo3vOcQH22aYCVmO8x68MROGj3gUYttLGwkud4EzkH0f54wg38JR AFSxAbDFKhLkVWOY4lDx+NC8lSH15V+o4Wer+30jm3oJ8/zDyS/z+ltVx1xVCcRXI47Q qeUVn4iVYZbwsnMfjO0alLXU7FAU293WUJ58Ox/z/u2PXY4mTF8lH0g+ooq5UEeKcSPB QSsbClZIXXEq2u5NZFbC2wfucjDU/aJl2D8cLUSGqWRlCrWmYqyS5AfMisT2GO2SW2na 2cTbH/F/vIjhOd3eQ3pJ/9PRU28M9NjEouE2e48yuSCCYtdiDSfEinbLH5aw5utV/Hbm JRzg==
X-Gm-Message-State: APjAAAV4l+85wrWHa406yaNTXFlbQxZNorxKLwYrR3ZEQf5eMoLJjUr4 35KGJh9TDrnN4ZJy0n+BF6URkoUA
X-Google-Smtp-Source: APXvYqwxdMGmPaCElixnGpiO4D8aDQ5gOmJviM7fjB377IeUr1reKefK3BCPCdlcC+a/py31Hw3/lQ==
X-Received: by 2002:aa7:91d7:: with SMTP id z23mr19431286pfa.262.1567913868053; Sat, 07 Sep 2019 20:37:48 -0700 (PDT)
Received: from [192.168.178.30] (82.206.69.111.dynamic.snap.net.nz. [111.69.206.82]) by smtp.gmail.com with ESMTPSA id x8sm10203585pfm.35.2019.09.07.20.37.44 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 07 Sep 2019 20:37:46 -0700 (PDT)
Subject: Re: SRH insertion vs SRH insertion + encapsulation
To: Ole Troan <otroan@employees.org>, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org>
Cc: draft-voyer-6man-extension-header-insertion <draft-voyer-6man-extension-header-insertion@ietf.org>, "6man@ietf.org" <6man@ietf.org>, Robert Raszuk <robert@raszuk.net>
References: <BYAPR05MB5463306B3328F460C2417764AEB50@BYAPR05MB5463.namprd05.prod.outlook.com> <32ED6621-3D17-4EC8-AC11-AFE64F05E6A9@employees.org>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Message-ID: <72256cfe-755d-861a-2a0c-558311bc70b4@gmail.com>
Date: Sun, 08 Sep 2019 15:37:42 +1200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <32ED6621-3D17-4EC8-AC11-AFE64F05E6A9@employees.org>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/6kfZc64kijQmEIdZ41nOrfkCyu4>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 08 Sep 2019 03:37:50 -0000

Ole,

On 08-Sep-19 15:02, Ole Troan wrote:
> Ron,
> 
>> IMHO, EH insertion modifies the semantics of the IPv6 source address. Today, the IPv6 source address indicates the source of an IP packet and **ALL** of its contents. If transit routers are allowed to insert extension headers, downstream routers can no longer identify the source of a packet and all of its contents.
>>
>>  
>>
>> Granted, in some cases, transit routers are allowed to modify a packet (e.g., Hop Count, DHCP, mutable options). But there is a big difference between changing a field whose value is know to me mutable and inserting a new option.
>>
> 
> 6296?
> 
> And I am pointing that out because of what feels like moral righteousness and hypocrisy to me, not because I think header insertion is a good idea or even doable. 

I think the real question here is whether we want it to be possible *in principle* to verify that a packet has not been modified in transit, except for fields that are known to be mutable. NPTv6 is indeed a case where we consciously made this worse. ("NPTv6 involves modifying IP headers in transit, so it is not compatible with security mechanisms, such as the IPsec Authentication Header, that provide integrity protection for the IP header.") Addresses are not mutable as far as AH is concerned.

If we are willing to say that a feature is useable only within a domain where AH is not used, that seems OK, but only if the concepts of a domain, its membership, and its boundary nodes, are well defined. (To be clear, I don't think draft-voyer-6man-extension-header-insertion-06 is anywhere near explaining how a domain is defined and managed.) Or the IETF decides to declare AH dead. In any case, it's wider than a 6man decision.

   Brian

v2.23.0 | Report a Bug | By Email