[lisp] Paul Wouters' Discuss on draft-ietf-lisp-name-encoding-11: (with DISCUSS)
Paul Wouters via Datatracker <noreply@ietf.org> Wed, 07 August 2024 15:29 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: lisp@ietf.org
Delivered-To: lisp@ietfa.amsl.com
Received: from [10.244.2.66] (unknown [104.131.183.230]) by ietfa.amsl.com (Postfix) with ESMTP id B68BBC169419; Wed, 7 Aug 2024 08:29:59 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Paul Wouters via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 12.21.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <172304459941.1013121.11937367259711040068@dt-datatracker-6dd76c4557-2mkrj>
Date: Wed, 07 Aug 2024 08:29:59 -0700
Message-ID-Hash: 7U3JPYRCVRULTCIFN6FWYIZ7HHP5BUA4
X-Message-ID-Hash: 7U3JPYRCVRULTCIFN6FWYIZ7HHP5BUA4
X-MailFrom: noreply@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-lisp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: draft-ietf-lisp-name-encoding@ietf.org, lisp-chairs@ietf.org, lisp@ietf.org
X-Mailman-Version: 3.3.9rc4
Reply-To: Paul Wouters <paul.wouters@aiven.io>
Subject: [lisp] Paul Wouters' Discuss on draft-ietf-lisp-name-encoding-11: (with DISCUSS)
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/YuYIWRlNhl_tenid0-Y75ZS0-sY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Owner: <mailto:lisp-owner@ietf.org>
List-Post: <mailto:lisp@ietf.org>
List-Subscribe: <mailto:lisp-join@ietf.org>
List-Unsubscribe: <mailto:lisp-leave@ietf.org>
Paul Wouters has entered the following ballot position for draft-ietf-lisp-name-encoding-11: Discuss When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-lisp-name-encoding/ ---------------------------------------------------------------------- DISCUSS: ---------------------------------------------------------------------- Thanks to Rich Salz for his SecDir review. I strongly agree with his comments. The core problem of this document is that it specifies a namespace without specifying the rules of the namespace. Saying "ASCII" is not a proper specification. Is Distinguished Name (DN) the same as the X.509 meaning? I cannot tell from its IANA registry allocation as all that is listed there is an email address? :/ If so, their format is not "ASCII", eg it is more something like: "a string consisting of a sequence of attribute type/value pairs separated by a semicolon (';' U+003B)'. Sometimes comma's are also considered. It also allows non-ASCII values. What about unprintable ASCII values, eg value 0x07 which is "audible bell" ? Is "ietf.name" the same as "IETF.name" ? Why not UTF8? Or if this is deemed to have the "hierarchical properties" of DNS names, why not Punycode ? Diagram section 3 is wrongly formatted. It shows a two octet AFI field, followed by a two octet ASCII field, followed by a 23 bit ASCII field, followed by a 9 bit "0" field ? But the description and text does not support this. Is the "." a special character ? Or "," or ";" (both used as separators of DNs in X.509), how about a space/tab? Or a dot (") ? Is backslash (\) used for masking? Is \\ supported to denote a backslash? The example uses mask to split a string on dot, eg "ietf.name". Is a mask on a non-dot valid? What would "ie" or "tf.name" mean? "There are no security considerations." What about mask-len's outside the ASCII string? What about mask-len pointing at the 0 octet? What about strings without trailing 0 octet? What about similar looking strings? What about privacy concerns for strings? What about indistinguishable Distinguished Name? What about a NULL name of length 1? What about an invalid length 0 that cannot include the 0 octet ? What about excessively long length or mask specifications? What about matching case sensitive or insensitive? What about special ASCII characters?
- [lisp] Paul Wouters' Discuss on draft-ietf-lisp-n… Paul Wouters via Datatracker
- [lisp] Re: Paul Wouters' Discuss on draft-ietf-li… Dino Farinacci