IETF Logo Mail Archive

Re: [lisp] Benjamin Kaduk's Abstain on draft-ietf-lisp-gpe-09: (with COMMENT)

"Fabio Maino (fmaino)" <fmaino@cisco.com> Mon, 04 November 2019 19:54 UTC

Return-Path: <fmaino@cisco.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D6439120025; Mon, 4 Nov 2019 11:54:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=mKEbGv3j; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=lbMjCNKq
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VJqphpqQrOZt; Mon, 4 Nov 2019 11:54:08 -0800 (PST)
Received: from alln-iport-1.cisco.com (alln-iport-1.cisco.com [173.37.142.88]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 670E1120018; Mon, 4 Nov 2019 11:54:08 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=197331; q=dns/txt; s=iport; t=1572897248; x=1574106848; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=JDo5B1AYF7awu9Af7NZ3BUFNebPmiAYY+RIhNSc5ljw=; b=mKEbGv3jXV33poJFb7CkOj7YVrDBYdHpYPO4IIpVCNhK2dELCOr4mJJp oyux4QlAcOiGLHEWRh+Q9ZLjYEn5Zgm2PDJX63yK4VWQEomYt0PdgKOKO jGnDXsI9svWi+ZmmWL+9JnOhGZyYhUIYOfNno4QUKipynoZz7Awsuv8pa 4=;
X-Files: Diff_ draft-ietf-lisp-gpe-09.txt - draft-ietf-lisp-gpe-11.txt.pdf, draft-ietf-lisp-gpe-11.txt : 101418, 35458
IronPort-PHdr: 9a23:1dO0vR1Xz9d3LtdTsmDT+zVfbzU7u7jyIg8e44YmjLQLaKm44pD+JxGOt+51ggrPWoPWo7JfhuzavrqoeFRI4I3J8RVgOIdJSwdDjMwXmwI6B8vQB0jyLfjtRyc7B89FElRi+iLzPA==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CAAACwgcBd/49dJa1cCg4LAQEBAQEBAQEBAQEBAQEBAQERAQEBAQEBAQEBAQGBfYFLJCwFbCstIAQLKoQpg0YDinaCOYEkhx6PYIFCgRADVAIHAQEBCQECAQEjCgIBAYErAYMUAheDdyQ4EwIDCwEBBAEBAQIBBQRthTcMhVICAQMSCAEIHQEBAyISAQ8CAQhCAgICGBglAgQBDQUOFIMAAYJGAx8PAQIMpzYCgTiIYHWBMoJ+AQEFgUhBgw0YghAHCYE2gVOHd4JJGIFAP4ERJwwTgU5JNT6CVwsCAQIBgSIIAQcEBwEHLxUSglIygiyMdCAEgi83hTskboY5hXyBEYh3bgqCJINGgjOBGIFOg1CEIVqCcIEcG4I8L0OGaI1ugWGOQogujU9dgn0CBAIEBQIOAQEFgWkiZ1gRCHAVOyoBOQGCBwlHERSDBgwXg1CFFIUEO3QBMHeLBgINFweCEgEB
X-IronPort-AV: E=Sophos;i="5.68,268,1569283200"; d="pdf'?txt'?scan'208";a="357286120"
Received: from rcdn-core-7.cisco.com ([173.37.93.143]) by alln-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 04 Nov 2019 19:53:45 +0000
Received: from XCH-ALN-006.cisco.com (xch-aln-006.cisco.com [173.36.7.16]) by rcdn-core-7.cisco.com (8.15.2/8.15.2) with ESMTPS id xA4JrjkK030846 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 4 Nov 2019 19:53:45 GMT
Received: from xhs-aln-001.cisco.com (173.37.135.118) by XCH-ALN-006.cisco.com (173.36.7.16) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Mon, 4 Nov 2019 13:53:44 -0600
Received: from xhs-rcd-001.cisco.com (173.37.227.246) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Mon, 4 Nov 2019 13:53:43 -0600
Received: from NAM05-DM3-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-001.cisco.com (173.37.227.246) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Mon, 4 Nov 2019 13:53:43 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QmBsOpNIheEOj/un6asu6bA5+PuBc+KC3KQRHJXjG5T2bColVk7ASE9XMdVW3qIlJuOtM2VK9wzffRX3bNAyGQhhOfFbvhqm51XeCLEuJMkf06fnZe0PQ2JzaS8fTRTvqHah2yGD+8OcugRfaoNYl5MWaK0lp5jWhjM+nefCA+VS+tFn5PjDN0K2VAo3QjxLVl/mF7LiOUTEqhCR3bOnZA/nDIcnj5m6gQkykrG35ImSCIO9X9ZLqHZcKRBYEQlf74B5lpvUwtWk8SOE9BDJ3LHs3xJ+tGFKtkkOfnuisfjoyyAOT2M4A2H4SGr3DWYTF9NCfat52pWa8JKpm0ZaYg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=jqh5gX+GAzqLcIeek1TeWmnWGutX5zd81b/0NS7bnJE=; b=M3BjxGVxt+kPyHQgmFbTnMtYwQrANcVtyV6ClT++9Afh0TLpdv+s/hmUBQxg5edvLJ5kscAai7RZleB6ZsnXj5M52Y5NbEC8WqewLd+28Q6s4Ow7uGNkdSiwuGs5KLM1EwUdxx+Rcj40I/NnriYdqIKqVtwbTJsQ74wsrKtwFmh3OTUtW8MAmORQ8fzeCMtSa1ryeYjtB7XHNPm34VKzaN94gGthoJbautVvx9DlE8aQtQCHg5W8gcyG8Xlz9dyeIlddNHJcsFhMyz7XNDtHcgOhPhrCsGF4BFza3BP7IFvNSKhffq09aDjz+gq7k1U4YS8CrSEgZ5kRG9xKrefouw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=jqh5gX+GAzqLcIeek1TeWmnWGutX5zd81b/0NS7bnJE=; b=lbMjCNKq/E0WJHQKQbIGAEyeF9pLPrj89nOfAd5Hxc/6USnXraWBNtHLx0D8egF3cfhOlJh/xWpMBfl7Eel+Lb23jNDSV+vmbpHlA4VqG7/fJoCDqBY95V13dbW7bTv3hjeiG28DmkcJolQiXh81/gcyQq4VEJtG5Xmm8bU87kA=
Received: from BY5PR11MB4420.namprd11.prod.outlook.com (52.132.255.20) by BY5PR11MB4196.namprd11.prod.outlook.com (10.255.89.77) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2408.24; Mon, 4 Nov 2019 19:53:41 +0000
Received: from BY5PR11MB4420.namprd11.prod.outlook.com ([fe80::b9e3:dd7:b0a6:9780]) by BY5PR11MB4420.namprd11.prod.outlook.com ([fe80::b9e3:dd7:b0a6:9780%3]) with mapi id 15.20.2408.024; Mon, 4 Nov 2019 19:53:41 +0000
From: "Fabio Maino (fmaino)" <fmaino@cisco.com>
To: Benjamin Kaduk <kaduk@mit.edu>, The IESG <iesg@ietf.org>
CC: "draft-ietf-lisp-gpe@ietf.org" <draft-ietf-lisp-gpe@ietf.org>, Luigi Iannone <ggx@gigix.net>, "lisp-chairs@ietf.org" <lisp-chairs@ietf.org>, "lisp@ietf.org" <lisp@ietf.org>, "Fabio Maino (fmaino)" <fmaino@cisco.com>
Thread-Topic: Benjamin Kaduk's Abstain on draft-ietf-lisp-gpe-09: (with COMMENT)
Thread-Index: AQHVi5Mop3bfOobVDUePzWSw7CLzGqd69dYA
Date: Mon, 04 Nov 2019 19:53:41 +0000
Message-ID: <03D311AF-6BF8-47AF-9620-859535BCD1D0@cisco.com>
References: <157204919563.2852.6106492473556191612.idtracker@ietfa.amsl.com>
In-Reply-To: <157204919563.2852.6106492473556191612.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.1e.0.191013
authentication-results: spf=none (sender IP is ) smtp.mailfrom=fmaino@cisco.com;
x-originating-ip: [2001:420:30a:4e05:ec2e:2bfd:a4bb:7fd7]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 974a0437-5dc4-420a-f4fe-08d76160b14c
x-ms-traffictypediagnostic: BY5PR11MB4196:
x-ms-exchange-purlcount: 7
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <BY5PR11MB4196FDCD782DD9D97BBBCC89C27F0@BY5PR11MB4196.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0211965D06
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(136003)(346002)(366004)(396003)(376002)(39860400002)(189003)(199004)(446003)(966005)(11346002)(14454004)(4326008)(186003)(8676002)(71200400001)(5024004)(14444005)(71190400001)(54906003)(316002)(2171002)(256004)(6246003)(33656002)(6436002)(36756003)(110136005)(66574012)(229853002)(58126008)(25786009)(6486002)(6116002)(478600001)(99936001)(6506007)(102836004)(2616005)(81156014)(64756008)(66946007)(66576008)(66476007)(66556008)(99286004)(6512007)(5660300002)(107886003)(86362001)(46003)(8936002)(305945005)(66446008)(6306002)(76116006)(76176011)(2906002)(7736002)(81166006)(476003)(486006); DIR:OUT; SFP:1101; SCL:1; SRVR:BY5PR11MB4196; H:BY5PR11MB4420.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: vZraebUFI6Ag1nyFW9Go1uptKfB9eEs2vJaFGjBZ5U4c94fFOByZM5KZHnglu3eC+ovOgYHJb+arKFmkiqhscgLCQ2tB33tY7BKTs1yFJnqixel+NNiZ/JdgrLpGA4T/eM4CmpfbJAzNwHNRuK/TSmPz8LznHlZ2KW1xA1P9/Z/6tpJXU/Pqv3S+bhdf0nPLDaofvAAnHnOBxGB3vn8Gpq4cQG6PnKmQbvj00mx95wGEN37W15cASoponzV3nLQJ6N4Hld2oZZkClZH3elOZV7Gr3erhl3bFnnYhkc1R0BLETZ0fNwmpr9DPppVU4tdtRqeJMHCo+E19fmz6oDZXe9MD+P8alvBeMQYraRx+PJUBkCDYpGPYcKRhq+r0NefOQTVEfLXZJ1UD0hGPJ8yThxnWj3Ho4Fn9FrWCONXbFjZY4Ck8k6yP/3EHlVmcWFsLhchzZWo6sPJVL/I+4Fq9qoZ8GUnMiJkFLV4v0+dkCys=
Content-Type: multipart/mixed; boundary="_003_03D311AF6BF847AF9620859535BCD1D0ciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 974a0437-5dc4-420a-f4fe-08d76160b14c
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Nov 2019 19:53:41.1852 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: W60JcqRhn3/KUKO895JM8XxtO6I5OrpGuQrUV/UGQHP1PfI6cu8pDpOLUvNCN4NNI7HC+LewgTRYYG+Lnb0OwA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR11MB4196
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.16, xch-aln-006.cisco.com
X-Outbound-Node: rcdn-core-7.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/9uhsjx-f3sO3RwJI0Vv43xubO28>
Subject: Re: [lisp] Benjamin Kaduk's Abstain on draft-ietf-lisp-gpe-09: (with COMMENT)
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Nov 2019 19:54:14 -0000

Hi Ben, 
Here is how we propose to move forward. 

Given that with LISP-GPE we have the opportunity to add additional protocol features defining new shim headers, we have removed the Nonce, Map-Versioning, and LSBs fields from the main LISP-GPE header. 

It will then be possible to define a LISP-GPE shim header that includes a 64-bit (or even 128-bit) Nonce, as well as a proper Map-versioning and LSBs fields. That could be done with an appropriate separate draft, that hopefully will address the concerns about those 3 features that have been expressed in the review of 6830bis. 

I have attached rev -11 of the draft and a diff file that reflects the approach above.

It'd be great to hear your thoughts. 

We will discuss this approach with the WG in Singapore, and if there's support, we could go to LC right after the meeting. 

Thanks,
Fabio

 





On 10/25/19, 5:20 PM, "Benjamin Kaduk via Datatracker" <noreply@ietf.org> wrote:

    Benjamin Kaduk has entered the following ballot position for
    draft-ietf-lisp-gpe-09: Abstain
    
    When responding, please keep the subject line intact and reply to all
    email addresses included in the To and CC lines. (Feel free to cut this
    introductory paragraph, however.)
    
    
    Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
    for more information about IESG DISCUSS and COMMENT positions.
    
    
    The document, along with other ballot positions, can be found here:
    https://datatracker.ietf.org/doc/draft-ietf-lisp-gpe/
    
    
    
    ----------------------------------------------------------------------
    COMMENT:
    ----------------------------------------------------------------------
    
    Thank you for addressing my Discuss-level points (I can accept that for the -09
    that RFC 8060 need not be a normative reference).  I am balloting Abstain because
    I am uncomfortable with only 16 bits of nonce, but I recognize that there is a need
    for this sort of encapsulation and it must fit within the constraints of the core protocol.
    Though, given Alissa's Discuss, it is technically still possible for the core protocol to
    grow a larger nonce that would alleviate my concerns.  But, since the issue stems from
    a different document (and because I did not raise the issue earlier), it is not appropriate
    for me to ballot Discuss on this document for that point.
    
    [original COMMENT section unchanged; contents presumably stale]
    
    Section 1
    
       LISP-GPE MAY also be used to extend the LISP Data-Plane header, that
       has allocated all by defining a Next Protocol "shim" header that
    
    nit: allocated all of what?
    
    Section 3
    
    This is not exactly the responsibility of LISP-GPE merely because it
    allocates the last bit in this bitmap, but it seems like it would be quite
    useful to have a table of which combinations of values are valid vs.
    nonsensical, given the somewhat complicated interaction between some of
    these flag bits.
    
          Similarly, the encoding of the Source and Dest Map-Version fields,
          compared with [I-D.ietf-lisp-rfc6830bis], is reduced from 12 to 8
          bits.  This still allows to associate 256 different versions to
          each Endpoint Identifier to Routing Locator (EID-to-RLOC) mapping
          to inform commmunicating ITRs and ETRs about modifications of the
          mapping.
    
    Are we limited to 256 versions total, or is there some sort of larger
    version space that we truncate to send (a la a wraparound process)?
    I understand that map-versioning is primarily in a separate document but it
    seems important for this document to describe to what extent it is limiting
    functionality.
    
    Section 3.1
    
       To ensure that protocols that are encapsulated in LISP-GPE will work
       well from a transport interaction perspective, the specification of a
       new encapsulated payload MUST contain an analysis of how LISP-GPE
       SHOULD deal with outer UDP Checksum, DSCP mapping, and Explicit
       Congestion Notification (ECN) bits whenever they apply to the new
       encapsulated payload.
    
    This MUST is duplicated in the next three paragraphs; I would suggest
    leaving this introduction as non-normative, with something like "needs to
    contain an analysis of how LISP-GPE will deal with [...]"
    Also, nit: "the outer UDP Checksum"
    
    Section 4
    
       When encapsulating IP packets to a non LISP-GPE capable router the
       P-bit MUST be set to 0.  [...]
    
       A LISP-GPE router MUST NOT encapsulate non-IP packets (that have the
       P-bit set to 1) to a non-LISP-GPE capable router.
    
    I'm failing to see how these two sentences are not redundant.
    
    Section 5.1
    
    Just to be clear, the intent is that if there is some non-IETF protocol
    that we want to encapsulate, we write a two-page Standards-Track RFC that
    says "this GPE codepoint means to do what this non-IETF document says"?
    
    Section 6
    
                           However, the use of common anti-spoofing
       mechanisms such as uRPF prevents this form of attack.
    
    I think "mitigates" is probably better than "prevents" in this case.
    
       LISP-GPE, as many encapsulations that use optional extensions, is
       subject to on-path adversaries that by manipulating the g-Bit and the
       packet itself can remove part of the payload.  Typical integrity
       protection mechanisms (such as IPsec) SHOULD be used in combination
       with LISP-GPE by those protocol extensions that want to protect from
       on-path attackers.
    
    The g-Bit is present in the Map-Reply message, which can in the general
    case be sent via triangle-routing, in which case the establishment and
    selection of IPsec security associations is somewhat nontrivial and
    probably does not quality as "typical", based on my limited experience.
    I think a more general scheme for providing integrity protection for
    mapping messages is needed as a mandatory mechanism, but that's a topic for
    the control-plane document so I will not belabor it here.

v2.23.0 | Report a Bug | By Email