Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-ospf-xaf-te-06: (with DISCUSS)

Alvaro Retana <alvaro.retana@futurewei.com> Thu, 08 August 2019 10:36 UTC

Return-Path: <alvaro.retana@futurewei.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9A84E12011B; Thu, 8 Aug 2019 03:36:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4CCy2QJjmNQ7; Thu, 8 Aug 2019 03:36:35 -0700 (PDT)
Received: from NAM01-BY2-obe.outbound.protection.outlook.com (mail-eopbgr810098.outbound.protection.outlook.com [40.107.81.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 75C6C12011C; Thu, 8 Aug 2019 03:36:35 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=FIQ3zsFJcig/dxp8CNo7sRJq5imRlMSM2EnV2by4MAMA9jdxnxOQEUfMlQgCRyKbLSAy0C4JFhvyvWxj3vjedd+FHwRn6qhHHwdpKVVz3nT+sT2gtT9ZWSIrNXSL8h4C83tjCNNqtTOBTeMj57mIpb04nmsvq7Sj8b7eWBr/7UZqVbqyTe0Tu/9t2efml8TkbESC1y0KgMz+wF+XYwIH5YP35FW313MJ7s1WxcIFDdIpAfkuxtSPEgb1/QdnaR6TjkUYnOObxIzpyWDUvM4Nb2WjJ5iT+QXM59OZxwXpTZJVup3r/RILWiOiWJ53M4l+Fy8325UEbYTSRpRZdfnwwQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=tLdzQFmPyzcBF5jZQO9OYw+D0C3Pnd0P1jQBU3LlVHA=; b=KXx1Wx8trfaaSbf2M6Uvh1HhLfEfHXU2SOETOD55q1tstvLagWDb5WO1uYpjs1gBYhGo36gzGemfdg+8GRFrRq1oKtGFYSOgdcnLCYQExJPUMhVGv44rYgioZDRhzYuOPCRN4VMMRrWFbjM4do5TrEIOHYJR937JdNfqlf3oKi2qHDNH7ysg8u4RJpFccUI4sGkVMJ+DinSQHNvJofo+nYELW0SXVhz/vShRK1Gzcij8xCAxY5Sha3ti+JrJwEv67odLZ5oXCmSm+k68ik0UQQPpchHUGua9eJno+Q9s7w06CzKSBTfeuaOo8/Nf3nHcAnMeZxfBH7mNI3MhODcOjw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=tLdzQFmPyzcBF5jZQO9OYw+D0C3Pnd0P1jQBU3LlVHA=; b=PgzAKjjTNm040DjK051rbMffiW1ouMFoYT9s6xeUCSyBQUZiD7pW+P/cCAIRHlx6MuGNsV9faLcgA2p+j9/XVCjyzO49oAZfWdV6y+D/7h3zjmE+/tsQJFs/iTNWKhuW4/wzzmbRI1vkdKTjQ0+xLNZwfWN6B68sfr2yJDiG66o=
Received: from BN6PR13MB1619.namprd13.prod.outlook.com (10.175.130.145) by BN6PR13MB1764.namprd13.prod.outlook.com (10.171.176.10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2157.11; Thu, 8 Aug 2019 10:36:33 +0000
Received: from BN6PR13MB1619.namprd13.prod.outlook.com ([fe80::6446:ece6:259d:47b3]) by BN6PR13MB1619.namprd13.prod.outlook.com ([fe80::6446:ece6:259d:47b3%5]) with mapi id 15.20.2157.015; Thu, 8 Aug 2019 10:36:33 +0000
From: Alvaro Retana <alvaro.retana@futurewei.com>
To: The IESG <iesg@ietf.org>, Roman Danyliw <rdd@cert.org>
CC: Acee Lindem <acee@cisco.com>, "draft-ietf-ospf-xaf-te@ietf.org" <draft-ietf-ospf-xaf-te@ietf.org>, "lsr-chairs@ietf.org" <lsr-chairs@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>
Thread-Topic: Roman Danyliw's Discuss on draft-ietf-ospf-xaf-te-06: (with DISCUSS)
Thread-Index: AQHVTaFlzpUePueCSEijOKNaE1qXaKbxDskA
Date: Thu, 8 Aug 2019 10:36:32 +0000
Message-ID: <etPan.5d4bfafc.52b855f9.11001@futurewei.com>
References: <156523836349.8333.11718470720848600275.idtracker@ietfa.amsl.com>
In-Reply-To: <156523836349.8333.11718470720848600275.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=alvaro.retana@futurewei.com;
x-originating-ip: [65.190.21.9]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0e48f41d-bfa7-45fa-7bfb-08d71bec481b
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:BN6PR13MB1764;
x-ms-traffictypediagnostic: BN6PR13MB1764:
x-microsoft-antispam-prvs: <BN6PR13MB17643072E86EB98D9EEE18A4EFD70@BN6PR13MB1764.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:5797;
x-forefront-prvs: 012349AD1C
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(376002)(396003)(346002)(366004)(39850400004)(136003)(189003)(199004)(11346002)(6486002)(110136005)(2616005)(54906003)(25786009)(99286004)(478600001)(4326008)(446003)(6436002)(71200400001)(229853002)(476003)(316002)(76176011)(486006)(44832011)(2906002)(4744005)(71190400001)(7736002)(66574012)(14454004)(64756008)(66556008)(66476007)(66446008)(36756003)(86362001)(186003)(5660300002)(236005)(26005)(8936002)(6512007)(54896002)(6506007)(8676002)(81156014)(66066001)(76116006)(66946007)(81166006)(53936002)(14444005)(256004)(3846002)(6116002)(102836004)(6246003); DIR:OUT; SFP:1102; SCL:1; SRVR:BN6PR13MB1764; H:BN6PR13MB1619.namprd13.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: futurewei.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: w1G/TUWbxr4mcMyQ9lccKXdb4BV43bP66ZISTlLxpKGbg3/tmhfkLA9aeIE5fVtfgmmLG6vwzax0EUgYdKPZGfkkyZyAJsOm9zqJAxQ2UmnwQ0m5if3RbIBs6AfcZnyyJ87xmxhi7r6CxD3JZQ260W5PBes0OonHEVL3/w6dffIKMR+JMEUmiFCxp5e0TOeZnB9+PbTc24Qf0GcwUTNrUoRA9eUt74U4rXvhVlfpSjktKbinNV6R+785FOmuOOsgNfPxyG2clogMAOcYTiTGJ/vMIyXaIW2EF85TUvwvg9/NjvHrreFJoIOw99XOWQfx9pDRdFlFqQ3MS97NSLxR+rLS//cDn8dnGt9+re8u7xTJTMGexRnzbfxSrLDPIfAIVFXmAsn+l58tWL8b+e6CVI7pPfhuBDopnk2COUsePck=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_etPan5d4bfafc52b855f911001futureweicom_"
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0e48f41d-bfa7-45fa-7bfb-08d71bec481b
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Aug 2019 10:36:32.8608 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: EhsjeMiz7HTMxBKUzVHI9w9wP7dboZVGv9PQ2EeT8YxBC9FEXLAEG4/XgFBK8WUduc1f7GqjiH5vUVn+87H53A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR13MB1764
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/8cSWCDDY-i31WcvK6SzV0qkZ5-o>
Subject: Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-ospf-xaf-te-06: (with DISCUSS)
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Aug 2019 10:36:38 -0000

On August 8, 2019 at 12:26:07 AM, Roman Danyliw via Datatracker (noreply@ietf.org<mailto:noreply@ietf.org>) wrote:

[Document author.]

Roman:

Sure…we’ll add something like that in the next revision.

Thanks!

Alvaro.

----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

An easy item to address. Per Section 5, “Specifically, TE traffic may be
delivered to the wrong tail-end router, which could lead to suboptimal routing
or even traffic loops”, the impact could also include providing access to an
attacker. Perhaps:

OLD:
Specifically, TE traffic may be delivered to the wrong tail-end router, which
could lead to suboptimal routing or even traffic loops.

NEW:
Specifically, TE traffic may be delivered to the wrong tail-end router, which
could lead to suboptimal routing; traffic loops; or expose the traffic to
attacker inspection or modification.