IETF Logo Mail Archive

Re: [Lsvr] AD Review of draft-ietf-lsvr-bgp-spf-19

Alvaro Retana <aretana.ietf@gmail.com> Thu, 09 March 2023 20:45 UTC

Return-Path: <aretana.ietf@gmail.com>
X-Original-To: lsvr@ietfa.amsl.com
Delivered-To: lsvr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A4FF5C1526E9; Thu, 9 Mar 2023 12:45:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.096
X-Spam-Level:
X-Spam-Status: No, score=-7.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TaWUslGrQ5DV; Thu, 9 Mar 2023 12:45:55 -0800 (PST)
Received: from mail-pf1-x429.google.com (mail-pf1-x429.google.com [IPv6:2607:f8b0:4864:20::429]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21017C152577; Thu, 9 Mar 2023 12:45:55 -0800 (PST)
Received: by mail-pf1-x429.google.com with SMTP id z11so2337487pfh.4; Thu, 09 Mar 2023 12:45:55 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; t=1678394754; h=content-transfer-encoding:cc:to:subject:message-id:date :mime-version:references:in-reply-to:from:from:to:cc:subject:date :message-id:reply-to; bh=vtR0EYVU0V8N9vYVHe2qJQlJhBPceq7zwJEHmmrkjoA=; b=VvQsbve1ilwJjuTeSVPy9csRJQTboNSKJBoZv/0ODPiOJHzKXQzUS9SmzpTWovEX2Z WlnCm/HtD73LTmTaokIDOZIFYxKHH41w++Bpq7hYf1iJQsf0Zuw0BqjcOx5PrfJFtS3p JjBAqsJkdKAzpK7dsCGpdKP2XQmhkTNjsIrCMEuFj9bdgmBLL4FaIIQNH5rD648ZQRQW XVv4rcZOxinl3cbZxz9EPj2OM2dadPl+85wfpJRSGP7z2PP7B5VChJ7O3HUr4DVm/uZC i9SgvftnUK6eG5GM6StAWnx91HiSg3u87roWmrfJ85MjdOg/QITk2EMrYOYUt/P0JYJv 8j6A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1678394754; h=content-transfer-encoding:cc:to:subject:message-id:date :mime-version:references:in-reply-to:from:x-gm-message-state:from:to :cc:subject:date:message-id:reply-to; bh=vtR0EYVU0V8N9vYVHe2qJQlJhBPceq7zwJEHmmrkjoA=; b=mCjknlQnc4E/93T/ckbFdDXP69fl/GjwRJGoccOGNnazZLoKuAjRk80MH+g23ZsJl2 xd4+Ijm+UocHTzaOWoGDqLC0qQynsYW2z17RL4/MY96g9s7c3XylLmj2Bxj1xScR6fiM XVyVFjn4ez4GAOhUl+9i64aMbLh69tutsi1Bp50ESX6itpKPv9K0vUj3x/1ZQ7USUg6z Jp/+Zy70uzvlo4GPs1Xw0C+ywZNVd1dyw+vBiXSeDod4eG4X+RxhPF19ec8Yfo5wa93Q 2lTLV0J1YrBiMnfOqQLdeTd7aETuneVp6oYtSfk7s8SXhL6xGD3r5vIoYJeEBf1QOSCv NZcw==
X-Gm-Message-State: AO0yUKXgNsbp98faWTR1l/BrcPqCnvFeqJ8qZs106NV75oZHE8xh1As8 YmEtbnQpe820BoMKKyDmL9FH5TKq7GDrRJJJteDhT9fx
X-Google-Smtp-Source: AK7set+QAXoUav7kJTQ7G/snW2jOrKW+1q4z5UIj1chUns2JfSh490FKRQ/ery9iH0g55MEt7GGbPBw+nRZmNnPD6gk=
X-Received: by 2002:a63:7f51:0:b0:4fb:935c:67f with SMTP id p17-20020a637f51000000b004fb935c067fmr8163192pgn.0.1678394754383; Thu, 09 Mar 2023 12:45:54 -0800 (PST)
Received: from 1058052472880 named unknown by gmailapi.google.com with HTTPREST; Thu, 9 Mar 2023 12:45:53 -0800
From: Alvaro Retana <aretana.ietf@gmail.com>
In-Reply-To: <7A7004BC-FD6B-4159-85D0-AEA1FB047788@gmail.com>
References: <CAMMESsyqvrTH70NXGBpB9DLW6VHvpyY8TSm2m_rovXoxZKPyVQ@mail.gmail.com> <7A7004BC-FD6B-4159-85D0-AEA1FB047788@gmail.com>
MIME-Version: 1.0
Date: Thu, 09 Mar 2023 12:45:53 -0800
Message-ID: <CAMMESsyp_7VSwE5geAKagQJ5vaJCTDmQgYwTSFr2Kfwr7Njn=A@mail.gmail.com>
To: Acee Lindem <acee.ietf@gmail.com>
Cc: draft-ietf-lsvr-bgp-spf@ietf.org, Victor Kuarsingh <victor@jvknet.com>, "lsvr@ietf.org" <lsvr@ietf.org>, lsvr-chairs@ietf.org
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsvr/m-nrKXtgZOzTOKdz-WsjZ8_WaXY>
Subject: Re: [Lsvr] AD Review of draft-ietf-lsvr-bgp-spf-19
X-BeenThere: lsvr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Link State Vector Routing <lsvr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsvr>, <mailto:lsvr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsvr/>
List-Post: <mailto:lsvr@ietf.org>
List-Help: <mailto:lsvr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsvr>, <mailto:lsvr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Mar 2023 20:45:55 -0000

On March 9, 2023 at 2:41:17 PM, Acee Lindem wrote:

Acee:

Hi!

It looks like the review was truncated, you replied up to line 372,
but the complete review goes all the way to line 1513. :-(

  https://mailarchive.ietf.org/arch/msg/lsvr/80Awa3weqFJC5G--ep0EZVYFfmc/


...
> > My main concern is still the lack of semantic checking (see my
> > comments in §7.*). BGP-LS (rfc7752bis) only does syntactic validation
> > because any semantic checking is left to the BGP-LS Consumer (and the
> > specifics left out of scope). The way BGP SPF uses the information is
> > different (all the nodes run SPF), so the validity of the contents
> > need to be verified
>
> Keyur and I discussed and we’re not sure you think is missing.

This is an example (comment at line 1513):

=====
  [major] The validation in rfc7752bis is syntactic, checking that the lengths
  are ok, etc.  What about semantic validation?  For example, if TLV 516 is
  present, but the value of the ID is 0, what should the receiver do?  Is the
  TLV valid?  Is the Node Descriptor valid?  Is the NLRI valid?

  This is just an example -- we should go through all the TLVs.  Note that none
  of the BGP-LS documents talk about semantic validation, so there isn't a
  place to point to :-( because the Consumer is expected to take care of that -
  - and how it operates is out of scope.  IOW, BGP-LS can be a garbage-in-
  garbage-out transport from a semantic point of view, but BGP SPF can't!
=====



Alvaro.

v2.23.0 | Report a Bug | By Email