oversized-header-chains: Receipt of illegal first-fragments

Fernando Gont <fgont@si6networks.com> Wed, 18 July 2012 20:36 UTC

Return-Path: <fgont@si6networks.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 8B07411E8162 for <ipv6@ietfa.amsl.com>; Wed, 18 Jul 2012 13:36:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id GLWbAOXMhq1G for <ipv6@ietfa.amsl.com>; Wed, 18 Jul 2012 13:36:35 -0700 (PDT)
Received: from web01.jbserver.net (web01.jbserver.net [IPv6:2a00:d10:2000:e::3]) by ietfa.amsl.com (Postfix) with ESMTP id EA81E11E80AA for <ipv6@ietf.org>; Wed, 18 Jul 2012 13:36:34 -0700 (PDT)
Received: from [2001:5c0:1000:a::14b] by web01.jbserver.net with esmtpsa (TLSv1:CAMELLIA256-SHA:256) (Exim 4.76) (envelope-from <fgont@si6networks.com>) id 1Srazq-0007Wy-94; Wed, 18 Jul 2012 22:37:22 +0200
Message-ID: <50071E54.30708@si6networks.com>
Date: Wed, 18 Jul 2012 21:36:36 +0100
From: Fernando Gont <fgont@si6networks.com>
Organization: SI6 Networks
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:13.0) Gecko/20120615 Thunderbird/13.0.1
MIME-Version: 1.0
To: "ipv6@ietf.org" <ipv6@ietf.org>
Subject: oversized-header-chains: Receipt of illegal first-fragments
X-Enigmail-Version: 1.4.2
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Jul 2012 20:36:35 -0000


There's one issue that came up during my recent exchange with Suresh on
which I'd like others (including Suresh) to weigh in:

Since first-fragments that fail to include the entire header chain will
be illegal, I think it would be appropriate to include an additional
requirement in draft-ietf-6man-oversized-header-chain along the lines of:

"A host that receives a first-fragment that fails to include the entire
IPv6 header chain MUST silently drop the aforementioned fragment".

Clearly, since such packets are illegal, they shouldn't exist in the
first place... so dropping them makes sense.



Best regards,
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492