Re: [OSPF] Kathleen Moriarty's Discuss on draft-ietf-ospf-prefix-link-attr-10: (with DISCUSS)
"Acee Lindem (acee)" <acee@cisco.com> Wed, 19 August 2015 18:07 UTC
Return-Path: <acee@cisco.com>
X-Original-To: ospf@ietfa.amsl.com
Delivered-To: ospf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 133971A877A; Wed, 19 Aug 2015 11:07:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.511
X-Spam-Level:
X-Spam-Status: No, score=-14.511 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q8jokaDrWD95; Wed, 19 Aug 2015 11:07:35 -0700 (PDT)
Received: from alln-iport-1.cisco.com (alln-iport-1.cisco.com [173.37.142.88]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 18D491A8798; Wed, 19 Aug 2015 11:07:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=5486; q=dns/txt; s=iport; t=1440007655; x=1441217255; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=ZI2NJRFw42ChIhE/+6wLCjwjLnfgpBiR+BIM/M+3l/4=; b=Ezesxfkj5R00z+Bj5j6YZTdx2tArpAfhIe4bNmBhb5vLhMPKMwZbDeEb JQcDiOiRcp3ixMeMeMGFjBB43jfZjhZ/hFLKcmz8pwNhO7dAtNHlhBAjE qn7Ce/NDIrREBo5Tjc29Xw7lygosDzNdDYnfvgIW/MUDntP01yML9I4TZ Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CGAgAhxdRV/4kNJK1dgxtUaQaDH7orAQmBeYV5AhyBKDgUAQEBAQEBAYEKhCQBAQQjEUUQAgEIGAICJgICAh8RFRACBAENBQmIEAMSDbkekDQNhVcBAQEBAQEBAQEBAQEBAQEBAQEBGYEiijGCT4FiJjMHgmmBQwWVJAGHK4NUgW2BSpEwg0+DaCaCP4E+cQGBBEOBBAEBAQ
X-IronPort-AV: E=Sophos;i="5.15,711,1432598400"; d="scan'208";a="180255096"
Received: from alln-core-4.cisco.com ([173.36.13.137]) by alln-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 19 Aug 2015 18:07:34 +0000
Received: from XCH-ALN-011.cisco.com (xch-aln-011.cisco.com [173.36.7.21]) by alln-core-4.cisco.com (8.14.5/8.14.5) with ESMTP id t7JI7Y9W021906 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 19 Aug 2015 18:07:34 GMT
Received: from xch-aln-011.cisco.com (173.36.7.21) by XCH-ALN-011.cisco.com (173.36.7.21) with Microsoft SMTP Server (TLS) id 15.0.1104.5; Wed, 19 Aug 2015 13:07:33 -0500
Received: from xhc-aln-x10.cisco.com (173.36.12.84) by xch-aln-011.cisco.com (173.36.7.21) with Microsoft SMTP Server (TLS) id 15.0.1104.5 via Frontend Transport; Wed, 19 Aug 2015 13:07:33 -0500
Received: from xmb-aln-x06.cisco.com ([169.254.1.223]) by xhc-aln-x10.cisco.com ([173.36.12.84]) with mapi id 14.03.0248.002; Wed, 19 Aug 2015 13:07:33 -0500
From: "Acee Lindem (acee)" <acee@cisco.com>
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>, Alia Atlas <akatlas@gmail.com>
Thread-Topic: Kathleen Moriarty's Discuss on draft-ietf-ospf-prefix-link-attr-10: (with DISCUSS)
Thread-Index: AQHQ2T4vD1u2/uPu+k2Rr3P197oiCp4SLaKA///lEgCAAEyNgP//2HWAgABEpwD//74IgAAsnZPNAAJZlYA=
Date: Wed, 19 Aug 2015 18:07:32 +0000
Message-ID: <D1FA3D76.2C070%acee@cisco.com>
References: <20150817200640.5272.4712.idtracker@ietfa.amsl.com> <D1F7DABC.2BC37%acee@cisco.com> <CAHbuEH4Cwj4EmiqpBmb1g+SVezPNjJff9RiMuVi-B0EmtSTF2Q@mail.gmail.com> <D1F8DE85.2BD4C%acee@cisco.com> <CAHbuEH7f=qFnj3SrgDvP=Dnmp93GWzPGyBgP+6dvp-GA_=dLBA@mail.gmail.com> <D1F9004C.2BD9D%acee@cisco.com> <CAHbuEH4wwar_CnrS9WMFcZrexRwNPDtjc8pWtGFOXobCU9hN_A@mail.gmail.com> <D1F9025A.2BDBA%acee@cisco.com> <CAHbuEH6p9nsK=RGq5qtN4O2BEaO5AmEhrOTHz-1B++REuZS_RA@mail.gmail.com> <CAG4d1rfgD50kCmprXY4CG9rvTadcd7UZDYz3M2uoyawbmUDivA@mail.gmail.com> <CAHbuEH6rOvzzqJT3fHR8C=-kVJiT2ajx2nGFwuwGgUMtGE6y1w@mail.gmail.com>
In-Reply-To: <CAHbuEH6rOvzzqJT3fHR8C=-kVJiT2ajx2nGFwuwGgUMtGE6y1w@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [173.36.7.28]
Content-Type: text/plain; charset="utf-8"
Content-ID: <CA985F0451B65743A833B8D369A0EA31@emea.cisco.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/ospf/xseCkKMpFz-bzPY04Mpz27LSv3Q>
Cc: "ospf@ietf.org" <ospf@ietf.org>, "draft-ietf-ospf-prefix-link-attr@ietf.org" <draft-ietf-ospf-prefix-link-attr@ietf.org>, "draft-ietf-ospf-prefix-link-attr.shepherd@ietf.org" <draft-ietf-ospf-prefix-link-attr.shepherd@ietf.org>, "draft-ietf-ospf-prefix-link-attr.ad@ietf.org" <draft-ietf-ospf-prefix-link-attr.ad@ietf.org>, The IESG <iesg@ietf.org>, "ospf-chairs@ietf.org" <ospf-chairs@ietf.org>
Subject: Re: [OSPF] Kathleen Moriarty's Discuss on draft-ietf-ospf-prefix-link-attr-10: (with DISCUSS)
X-BeenThere: ospf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: The Official IETF OSPG WG Mailing List <ospf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ospf>, <mailto:ospf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ospf/>
List-Post: <mailto:ospf@ietf.org>
List-Help: <mailto:ospf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ospf>, <mailto:ospf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Aug 2015 18:07:42 -0000
Hi Kathleen, On 8/19/15, 2:00 PM, "Kathleen Moriarty" <kathleen.moriarty.ietf@gmail.com> wrote: >Hi Alia, > >Thanks for the write up. I have a couple of questions in-line. > >On Wed, Aug 19, 2015 at 11:57 AM, Alia Atlas <akatlas@gmail.com> wrote: >> Hi Kathleen, >> >> As discussed, the type field in the TLVs and sub-TLVs are limited to >>their >> range. >> This draft in the IANA considerations specifies what the range for those >> values are. >> This is just as has been done with other OSPF TLVs ( for example >> >>http://www.iana.org/assignments/ospf-traffic-eng-tlvs/ospf-traffic-eng-tl >>vs.xhtml#top-level >> ) >> For future extensibility, it is important to be able to distribute >>unknown >> TLVs >> throughout the IGP; sometimes, only routers in particular roles will >>care >> about the information. >> >> However, the length field constrains how big the value can be and any >> problems >> with parsing it into an opaque value would cause the LSA to be >>considered >> malformed. > >But there are no restrictions on values that have not been defined and >they are stored and forwarded anyway? This is the main concern in >that there are no checks on these values (and I'm assuming there are >programming checks on the defined values whose length can vary in >terms of the # of octets for any value and could be 4 to 32 or more >octets). Because of the range of acceptable length values for defined >TLVs, it would be hard to know if you have something malformed or >containing an exploit on undefined values, right? If it is malformed, it would be highly unlikely that all the length parsing would come out correctly. The key is that you NEVER want to reference beyond the end of the LSA and the LSA should never overflow the end of the OSPF packet. >What if a code >condition was reached because an undefined value is stored and >'reflooded' to all the peers? If, by chance, the parsing came out correctly, the malformed information in the LSA would simply be interpreted as unknown TLVs. Thanks, Acee > >> >> I hope this clarifies? > >Yes, thank you, but I'm still a little concerned. > >Thanks, >Kathleen >> >> Thanks, >> Alia >> >> On Wed, Aug 19, 2015 at 10:44 AM, Kathleen Moriarty >> <kathleen.moriarty.ietf@gmail.com> wrote: >>> >>> Hi Acee, >>> >>> Alia and I talked about this yesterday and she will be following up >>> from that discussion. It may just point back to previous RFCs that >>> cover my concern or may result in a change to text. >>> >>> Stand by... >>> >>> Thank you. >>> >>> On Tue, Aug 18, 2015 at 3:42 PM, Acee Lindem (acee) <acee@cisco.com> >>> wrote: >>> > >>> > >>> > On 8/18/15, 3:38 PM, "Kathleen Moriarty" >>> > <kathleen.moriarty.ietf@gmail.com> wrote: >>> > >>> >>On Tue, Aug 18, 2015 at 3:35 PM, Acee Lindem (acee) <acee@cisco.com> >>> >>wrote: >>> >>> Hi Kathleen, >>> >>> >>> >>> On 8/18/15, 1:54 PM, "Kathleen Moriarty" >>> >>> <kathleen.moriarty.ietf@gmail.com> wrote: >>> >>> >>> >>>>Acee, >>> >>>> >>> >>>>On Tue, Aug 18, 2015 at 1:20 PM, Acee Lindem (acee) >>><acee@cisco.com> >>> >>>>wrote: >>> >>>>> Hi Kathleen, >>> >>>>> >>> >>>>> On 8/18/15, 10:57 AM, "Kathleen Moriarty" >>> >>>>> <kathleen.moriarty.ietf@gmail.com> wrote: >>> >>>>> >>> >>>>>>Thank you for your quick response, Acee. I just have one tweak >>> >>>>>> inline >>> >>>>>>that is usually important from a security standpoint. >>> >>>>>> >>> >>>>>>On Mon, Aug 17, 2015 at 6:46 PM, Acee Lindem (acee) >>><acee@cisco.com> >>> >>>>>>wrote: >>> >>>>>>> Hi Kathleen, >>> >>>>>>> Here are the updated "Security Considerations” after addressing >>> >>>>>>>Alvaro’s >>> >>>>>>> comments. >>> >>>>>>> >>> >>>>>>> 6. Security Considerations >>> >>>>>>> >>> >>>>>>> In general, new LSAs defined in this document are subject to >>> >>>>>>> the >>> >>>>>>>same >>> >>>>>>> security concerns as those described in [OSPFV2] and >>>[OPAQUE]
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Alia Atlas
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)
- Re: [OSPF] Kathleen Moriarty's Discuss on draft-i… Acee Lindem (acee)