IETF Logo Mail Archive

Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-ospf-xaf-te-06: (with DISCUSS)

"Acee Lindem (acee)" <acee@cisco.com> Tue, 27 August 2019 11:00 UTC

Return-Path: <acee@cisco.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D682120098; Tue, 27 Aug 2019 04:00:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.499
X-Spam-Level:
X-Spam-Status: No, score=-14.499 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=Z4MEMkPJ; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=R9ZO4z5x
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SeOFsF4MiDNB; Tue, 27 Aug 2019 04:00:21 -0700 (PDT)
Received: from alln-iport-2.cisco.com (alln-iport-2.cisco.com [173.37.142.89]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0A8F912004A; Tue, 27 Aug 2019 04:00:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=14135; q=dns/txt; s=iport; t=1566903621; x=1568113221; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=40NBE9byTvqh+pcXa12rhrjjMv52neYBtXCt4gHT5ok=; b=Z4MEMkPJbSm0ZTva6B8WwI4odUbfpNY89U+abMpbtbeK7RLGQCmVwFib dXu9R3S/65IXLPr8t2KQiEmuG4Qd/1LviZ25WfzfHII/pwC26vTlpvTpu O3TiFvMpM4Xc9nwsDBigrLv3oD8Fpz4fqa5xvQyfVeoXRclPw5KOQfhBs U=;
IronPort-PHdr: 9a23:G9/6hRWl7FhtTbfXVSwpSoeaMOHV8LGuZFwc94YnhrRSc6+q45XlOgnF6O5wiEPSANiJ8OpK3uzRta2oGXcN55qMqjgjSNRNTFdEwd4TgxRmBceEDUPhK/u/Zic3EexJVURu+DewNk0GUMs=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0A1AAD7C2Vd/5JdJa1lGwEBAQEDAQEBBwMBAQGBVQQBAQELAYEVL1ADbVYgBAsqhCGDRwOKcIJckw2EXIEugSQDVAkBAQEMAQEYAQoKAgEBhD8CF4JdIzYHDgIKAQEEAQEBAgEGBG2FLQyFSgEBAQEDAQEQER0BASwLAQ8CAQgRAwECKAMCAgIlCxQJCAIEAQ0FIoMAAYEdTQMdAQIMnz4CgTiIYXOBMoJ7AQEFhQkYghYDBoE0AYtxGIF/gREnH4JMPoJhAQGCARaCVTKCJoxFglmFE4kKjjYJAoIekFGDdhuCMocwjm2NaoE2lnQCBAIEBQIOAQEFgVcGK4FYcBU7KgGCQYJCg3KFFIU/coEpjlYBAQ
X-IronPort-AV: E=Sophos;i="5.64,436,1559520000"; d="scan'208,217";a="320096404"
Received: from rcdn-core-10.cisco.com ([173.37.93.146]) by alln-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 27 Aug 2019 11:00:17 +0000
Received: from XCH-ALN-001.cisco.com (xch-aln-001.cisco.com [173.36.7.11]) by rcdn-core-10.cisco.com (8.15.2/8.15.2) with ESMTPS id x7RB04tR016996 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 27 Aug 2019 11:00:16 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-ALN-001.cisco.com (173.36.7.11) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 27 Aug 2019 06:00:03 -0500
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 27 Aug 2019 06:00:03 -0500
Received: from NAM05-DM3-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Tue, 27 Aug 2019 06:00:03 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=c8DPSwOG1OJrSqZhRV+vokbCQixw/9dvDykczMLuwI+UMBmSgcsxQj0fJIEViqMyLmeeVWKJFYEIO27OwaqHqbVnbpCQ/gaP85b9Y0t2y/01x3HrnCvaa5nNp7BxAPCEUXjhAxERB9a7DtjZMsRghG636qnxr4e2srGKpHg9JzqfQpRhO4P3H5NklnXEtCvFgEbOmccOP1LkIezpOZk76tCrgrAMytFoIS29GGznNjLugMU/3i4NgfKC4U+0wKd8hztJ1h+3A7ZHFlwoNOVQNhshmPIhBB0PQWZEDcC3xvPOuUKeiF1sv9O2Ioj6CJsdjSfPgc55P7yc1KqTBG/rKw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=40NBE9byTvqh+pcXa12rhrjjMv52neYBtXCt4gHT5ok=; b=f4X/mjKX9EfPsQrb/cGB8qT9sqi5o0f6nhUuYb2dZ1McMgpxDDDbX4bR+2qFPrjj7YKrs8Z0cRYAyqTpHzhda9XDIn/kr6rPSJfVxgsEDtLNDBauaM2uStrYMGeqVD8CaUgIiCxAds18/p1/E9ZNUwTtNUuJUr3vKL3B7X3nCM7SmZWqRvY2nf2UU0f99z1zQRfEZ8UM04zqejalKkoyJZwdNij6lFvqzeDuaUc3Lz20KalYS2r6hUfsxjwGafN1taWIpQNjLIgGNBVLqOWyV+5JVCQBFSBWMElO5zZs+B8MziIPpavnhZmS2EANu5S37p1VSlcb93p4kfHH3B6ClA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=40NBE9byTvqh+pcXa12rhrjjMv52neYBtXCt4gHT5ok=; b=R9ZO4z5xkDvfrp/BWWxCU5JLDZBiUCaiv5PJvoBo8lN8rULNZxDFobt1xCrywX3JdbXmVi09bS+uaftL7calC7UUhVPKNajbWZQvuyTSBzgZAw7mngpFAtVT1dsyQLnHRmmGFx4QWRQXWHPD6hWjV/RBO/ASoEIg5DMvGcBuUgY=
Received: from MN2PR11MB4221.namprd11.prod.outlook.com (52.135.38.14) by MN2PR11MB3824.namprd11.prod.outlook.com (20.178.254.87) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2178.19; Tue, 27 Aug 2019 11:00:01 +0000
Received: from MN2PR11MB4221.namprd11.prod.outlook.com ([fe80::cdc1:a2cf:eb3:a420]) by MN2PR11MB4221.namprd11.prod.outlook.com ([fe80::cdc1:a2cf:eb3:a420%6]) with mapi id 15.20.2199.021; Tue, 27 Aug 2019 11:00:01 +0000
From: "Acee Lindem (acee)" <acee@cisco.com>
To: Alvaro Retana <alvaro.retana@futurewei.com>, Roman Danyliw <rdd@cert.org>
CC: "draft-ietf-ospf-xaf-te@ietf.org" <draft-ietf-ospf-xaf-te@ietf.org>, "lsr-chairs@ietf.org" <lsr-chairs@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>, The IESG <iesg@ietf.org>
Thread-Topic: [Lsr] Roman Danyliw's Discuss on draft-ietf-ospf-xaf-te-06: (with DISCUSS)
Thread-Index: AQHVTaFu/LhpWSp75UesCG26kgaBBqbxDwYAgAzUhgCAEMtFgA==
Date: Tue, 27 Aug 2019 11:00:00 +0000
Message-ID: <FD13467D-E7F0-4D60-96DB-1171404E1C21@cisco.com>
References: <156523836349.8333.11718470720848600275.idtracker@ietfa.amsl.com> <etPan.5d4bfafc.52b855f9.11001@futurewei.com> <etPan.5d56be3d.127de4d2.4894@futurewei.com>
In-Reply-To: <etPan.5d56be3d.127de4d2.4894@futurewei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=acee@cisco.com;
x-originating-ip: [2001:420:c0c4:1003::119]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 38b47676-af08-4aa9-51b2-08d72addb51c
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600166)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:MN2PR11MB3824;
x-ms-traffictypediagnostic: MN2PR11MB3824:
x-ms-exchange-purlcount: 3
x-microsoft-antispam-prvs: <MN2PR11MB38241377F076A44DE75E0FFDC2A00@MN2PR11MB3824.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 0142F22657
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(376002)(396003)(39860400002)(136003)(346002)(366004)(199004)(189003)(486006)(8676002)(316002)(5660300002)(236005)(2616005)(476003)(14454004)(76116006)(2906002)(6436002)(66946007)(478600001)(6306002)(54896002)(966005)(64756008)(66556008)(66476007)(66446008)(11346002)(110136005)(33656002)(76176011)(229853002)(6512007)(46003)(86362001)(53936002)(36756003)(8936002)(186003)(53546011)(6506007)(81166006)(6486002)(81156014)(9326002)(99286004)(66574012)(25786009)(71190400001)(71200400001)(6246003)(14444005)(256004)(4326008)(6116002)(102836004)(54906003)(446003)(7736002); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB3824; H:MN2PR11MB4221.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: PuBpegtt/NIvByJhHRChpDz0koQhvaJZS9CaOiiJCqZb/N0r4uRH2TQL4+Ga+XLBcphFPstIeF1WY8ypeIk+179v5P3+7pQC372aNI8F4PQEI0ZJ6S9yHwMEMWWa5BhmFXUdyhDnSjAMBp3VL9kfqyLWxTXPQMNg+IywibyiWInAb6CvWI/7pFXtT5fNIZCa15cC304KNYWoeCQZsqjHOgQ9DPbUJBOZbjPkyLOFCPwrEnIRVdrVdffBZCMHWsUj6Rrt6hSg/y9qjUA1VV3Riun+/cDFLq2CnDN9eE991hgVPhOEb/GR211QlmlOn32coO13pr04qeA/qjr9KGTeM95a2/j0STOEthffLXdZQgMv25MB1SKHc6wA+HAs4aLrv6XQQ7YFbU2GQGCmBsOvif6iP41Catcw0ESSaEqTyUw=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_FD13467DE7F04D6096DB1171404E1C21ciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 38b47676-af08-4aa9-51b2-08d72addb51c
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Aug 2019 11:00:00.8926 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: JWBROgvUxFtTdhHNUY26qyCX/O7U+1iQhDcv9qplrnqUmtA6yituwshtQU02JILv
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB3824
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.11, xch-aln-001.cisco.com
X-Outbound-Node: rcdn-core-10.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/I9MrtxTDAWe6MJswOq2fUx6dV1Y>
Subject: Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-ospf-xaf-te-06: (with DISCUSS)
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Aug 2019 11:00:25 -0000

Hi Roman,
Can we clear the DISCUSS on Alvaro’s update?
Thanks,
Acee

From: Alvaro Retana <alvaro.retana@futurewei.com>
Date: Friday, August 16, 2019 at 10:32 AM
To: Roman Danyliw <rdd@cert.org>
Cc: Acee Lindem <acee@cisco.com>, "draft-ietf-ospf-xaf-te@ietf.org" <draft-ietf-ospf-xaf-te@ietf.org>, "lsr-chairs@ietf.org" <lsr-chairs@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>, The IESG <iesg@ietf.org>
Subject: Re: [Lsr] Roman Danyliw's Discuss on draft-ietf-ospf-xaf-te-06: (with DISCUSS)

[Author]

Roman:

Hi!

I just uploaded a new version.  Please take a look.

Thanks!

Alvaro.


On August 8, 2019 at 6:36:51 AM, Alvaro Retana (alvaro.retana@futurewei.com<mailto:alvaro.retana@futurewei.com>) wrote:
On August 8, 2019 at 12:26:07 AM, Roman Danyliw via Datatracker (noreply@ietf.org<mailto:noreply@ietf.org>) wrote:

[Document author.]

Roman:

Sure…we’ll add something like that in the next revision.

Thanks!

Alvaro.

----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

An easy item to address. Per Section 5, “Specifically, TE traffic may be
delivered to the wrong tail-end router, which could lead to suboptimal routing
or even traffic loops”, the impact could also include providing access to an
attacker. Perhaps:

OLD:
Specifically, TE traffic may be delivered to the wrong tail-end router, which
could lead to suboptimal routing or even traffic loops.

NEW:
Specifically, TE traffic may be delivered to the wrong tail-end router, which
could lead to suboptimal routing; traffic loops; or expose the traffic to
attacker inspection or modification.



_______________________________________________
Lsr mailing list
Lsr@ietf.org
https://www.ietf.org/mailman/listinfo/lsr

v2.23.0 | Report a Bug | By Email