Re: draft-ietf-6man-icmp-limits-05
Tom Herbert <tom@herbertland.com> Tue, 17 September 2019 00:53 UTC
Return-Path: <tom@herbertland.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2F3A0120144 for <ipv6@ietfa.amsl.com>; Mon, 16 Sep 2019 17:53:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0a3dft11uMQa for <ipv6@ietfa.amsl.com>; Mon, 16 Sep 2019 17:53:35 -0700 (PDT)
Received: from mail-ed1-x52c.google.com (mail-ed1-x52c.google.com [IPv6:2a00:1450:4864:20::52c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7B7521200D6 for <6man@ietf.org>; Mon, 16 Sep 2019 17:53:35 -0700 (PDT)
Received: by mail-ed1-x52c.google.com with SMTP id r4so1711273edy.4 for <6man@ietf.org>; Mon, 16 Sep 2019 17:53:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=MCxS9Tn5x7rEZJSRYOFrsMT2XoShV4DirhwSTkXJ/8k=; b=qiiIo670YpV7bdJJdijGMW1rVyHmJMt3b/Uzf+mYb0Qf+ntSLD2xAgcDqJLxbPj81v gvHjZMalru0rz4W8UJUZF8hPziFGrupOTgPfETna4n7bfpDMRliuGkChurozAdnWOh8s e6G21kWNMkof5iln8NPijgDLnO4FOjSZ4s/+WhvMF3g0a6Q0jyJKFamT4bo+CjIrJ6c1 7yVlmGgDKLaSv8mpWY4vICR6TSU/Ef874udKNPnQqM3pC4gdnJ3GDUGEHZuezDF7rt8W iJRlfMK/jCq7Nu/aE1skbHB2mYqsZRAMM2YyGqVqmrp310rUBNmgCXZ/trhZLOSkUkHy pFDw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=MCxS9Tn5x7rEZJSRYOFrsMT2XoShV4DirhwSTkXJ/8k=; b=D0ZRPJzrhffb3JAax8ZOCpOIBpXNQNY6cbmDWVLO0IiOcu3p2XU83L7P0kdG0gwQAd nyijI7/nxdK0gaH63061VLWNnAW5kjqbOZ7yzz3V+eGv81Qj/x+nqnF39uIn2Z2glvnI sA64tkyj7TUH7aaa1NQM8dBcSYVKprhBZi19xTc1MpeRXDtBVkFH27aNmpsFSZ7BSgbN 6eu0xSNGxtx3RWAJudp0nKkk7TXR/FV/uZf9v+cfK9UiH1Nb5FgZuhevFpqdqSNFBGyo gRw8YSEY+Mx60+RWSdtahTav4sNu4S5EI8La1G3Rou4KC3HgQytHkrw1DCD+aPu5yHs6 dzCw==
X-Gm-Message-State: APjAAAVvIwjgbxh+GWP5/GKRVsYBCnPMjhJwBZM0RrS+8XZG9SKi9QpL yPZ4pWaQahlNGkHwU9BOP24neq9hFDqlqR3BkQnCZg==
X-Google-Smtp-Source: APXvYqyOJlmh7wHMNM9EvHAOjBMhjnFvHDp72fR1lp7fa21M2Dm3REMETx88R1EbWBMmusLFCIpRfrbLIsPD9/VDRNQ=
X-Received: by 2002:a50:9402:: with SMTP id p2mr2069154eda.111.1568681613927; Mon, 16 Sep 2019 17:53:33 -0700 (PDT)
MIME-Version: 1.0
References: <BYAPR05MB5463C784BD5C5DCD52AAE425AE8C0@BYAPR05MB5463.namprd05.prod.outlook.com> <17B9B735-94F3-405B-9885-21427E9628FD@gmail.com> <CALx6S37vXK-EypbJ_-5iO2QTqPLGQk7Pc6wZXMfAskOxCwKFaA@mail.gmail.com> <BYAPR05MB5463668B642AFDC688685C50AE8F0@BYAPR05MB5463.namprd05.prod.outlook.com>
In-Reply-To: <BYAPR05MB5463668B642AFDC688685C50AE8F0@BYAPR05MB5463.namprd05.prod.outlook.com>
From: Tom Herbert <tom@herbertland.com>
Date: Mon, 16 Sep 2019 17:53:23 -0700
Message-ID: <CALx6S34zoVYXS-ESb47HkQTrCRt=PdK3+2xghp_P2feKLzG-fg@mail.gmail.com>
Subject: Re: draft-ietf-6man-icmp-limits-05
To: Ron Bonica <rbonica@juniper.net>
Cc: Bob Hinden <bob.hinden@gmail.com>, 6man <6man@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/70sG5g9KsuswdwgpunobqqrQhWM>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Sep 2019 00:53:38 -0000
On Mon, Sep 16, 2019 at 5:28 PM Ron Bonica <rbonica@juniper.net> wrote: > > Tom, > > When you send an ICMP Destination Unreachable with code equal to aggregate header limit exceeded, does the pointer always point beyond the end of the IPv6 header chain? Not always. Consider this example: a device has a parsing buffer of 128 bytes. It starts parsing the packets, IP header, extension headers, encapsulations, transport, headers, etc. For some packet it finds that it needs parse beyond 128 bytes to get the information it needs. If it drops the packet, then it sends Unreachable with point equal to 128. In this case the pointer might be at an EH, an IP header, transport header, encap header, ... Note that this error has the lowest precedence so that Parameter Problem is reported for any limits exceeded relating to EH. Tom > > Ron > > > Juniper Business Use Only > > -----Original Message----- > From: Tom Herbert <tom@herbertland.com> > Sent: Monday, September 16, 2019 6:00 PM > To: Bob Hinden <bob.hinden@gmail.com> > Cc: Ron Bonica <rbonica@juniper.net>; 6man <6man@ietf.org> > Subject: Re: draft-ietf-6man-icmp-limits-05 > > On Mon, Sep 16, 2019 at 2:10 PM Bob Hinden <bob.hinden@gmail.com> wrote: > > > > > > > > > On Sep 16, 2019, at 11:48 AM, Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org> wrote: > > > > > > Tom, > > > > > > In draft-ietf-6man-icmp-limits-05, you propose sending and ICMP Parameter Problem message when the following errors occur: > > > > > > - Extension header too big > > > - Extension header chain too long > > > - Too many options in extension header > > > - Option too big > > > > > > However, you send an ICMP Destination Unreachable message in response to aggregate header limits. > > > > > > Why not send an ICMP Parameter Problem message in cases? > > > > Good question. It would make the draft simpler and avoid having to create RFC4884 extension headers. > > > > Ron, Bob, > > There was already discussion of this on the list. > > Originally, Parameter Problem code was defined for this, however that was considered inconsistent with the definition of Parameter Problem > (RFC4443): > > "If an IPv6 node processing a packet finds a problem with a field in the IPv6 header or extension headers such that it cannot complete processing the packet" > > Aggregate header limits can apply to headers other than just IP header and extension headers (e.g. UDP encapsulation headers). Hence, we went with Destination Unreachable and subsequently why we need to invoke the ICMP extended header format to get the error pointer. > > Tom > > > > Bob > > > > > > > > > > > > > Ron > > > > > > > > > Juniper Business Use Only > > > -------------------------------------------------------------------- > > > IETF IPv6 working group mailing list ipv6@ietf.org Administrative > > > Requests: > > > https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/ip > > > v6__;!8WoA6RjC81c!Tr9t_Imk6fHhld_RTnhilL4gppaKBxhvwff7Y6ZeeMo_eoEjPT > > > TXdBfNvMophbc9$ > > > -------------------------------------------------------------------- > >
- draft-ietf-6man-icmp-limits-05 Ron Bonica
- Re: draft-ietf-6man-icmp-limits-05 Bob Hinden
- Re: draft-ietf-6man-icmp-limits-05 Tom Herbert
- RE: draft-ietf-6man-icmp-limits-05 Ron Bonica
- Re: draft-ietf-6man-icmp-limits-05 Tom Herbert