Re: [Roll] AD Review of draft-ietf-roll-useofrplinfo-41
"Pascal Thubert (pthubert)" <pthubert@cisco.com> Tue, 10 November 2020 12:51 UTC
Return-Path: <pthubert@cisco.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F41A3A0D51; Tue, 10 Nov 2020 04:51:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.601
X-Spam-Level:
X-Spam-Status: No, score=-9.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=JMLXUVj4; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=T8o9jzr0
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uYtNalx_OQ-E; Tue, 10 Nov 2020 04:51:46 -0800 (PST)
Received: from alln-iport-6.cisco.com (alln-iport-6.cisco.com [173.37.142.93]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7C9403A0D52; Tue, 10 Nov 2020 04:51:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=5276; q=dns/txt; s=iport; t=1605012706; x=1606222306; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=falsak9I7DC4C5iup2ehC0htcvj9hZsqryKQ13DEEnQ=; b=JMLXUVj4BqSC3jDEELKDUz88jiNGZQUCH3nXt1wqORtStPlYM2UTDF3c BhzM24xoHZeAGvnCP1JF1pzsJkVkvvYk7zJ5DPnKhiGI7X3ibeTgAS/Rx WGVu9xwELMbmbetC9x5WtKhMjez7CXUZHtuV4vvK3T9CAAOPJ/l0MOZHC M=;
X-IPAS-Result: A0C6HgCxi6pffYYNJK1iHAECPQEEBAEEAQcBFoFRgTwCElGBVC8uhD2DSQONVYoVjm2BQoERA1QLAQEBDQEBLQIEAQGESgIXgXsCJTgTAgMBAQEDAgMBAQEBBQEBAQIBBgQUAQGGPAyFcgEBAQQSEREMAQElEgELBAIBBgIOAwQBAQMCJgICAh8RFQgIAgQBDQUIGoVaAy4BkimQagKBO4hodoEygwQBAQWFEQ0LghAJgQ4oAgEBgnGCZU5ChlcbgUE/gRFDgk8+ghuBaRELIIMVM4Isk2ajc1QKgm2VfYU1gxiKFZRHk1GNaI4vhDICBAIEBQIOAQEFgWshgVlwFYMkUBcCDY4rF4NOilh0OAIGAQkBAQMJfIsGgkYBAQ
IronPort-PHdr: 9a23:8kEChRfLFTB2DApWPqNDJdljlGMj4e+mNxMJ6pchl7NFe7ii+JKnJkHE+PFxlwaQAdfU7vtFj6zdtKWzEWAD4JPUtncEfdQMUhIekswZkkQmB9LNEkz0KvPmLklYVMRPXVNo5Te3ZE5SHsutaFjbo3n05jkXSV3zMANvLbHzHYjfx828y+G1/cjVZANFzDqwaL9/NlO4twLU48IXmoBlbK02z0jE
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-AV: E=Sophos;i="5.77,466,1596499200"; d="scan'208";a="622399985"
Received: from alln-core-12.cisco.com ([173.36.13.134]) by alln-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 10 Nov 2020 12:51:45 +0000
Received: from XCH-RCD-004.cisco.com (xch-rcd-004.cisco.com [173.37.102.14]) by alln-core-12.cisco.com (8.15.2/8.15.2) with ESMTPS id 0AACpjAF031258 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 10 Nov 2020 12:51:45 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-RCD-004.cisco.com (173.37.102.14) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 10 Nov 2020 06:51:45 -0600
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 10 Nov 2020 07:51:44 -0500
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Tue, 10 Nov 2020 07:51:44 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=MoL38luCP89zUXQfo+QIaJsL0UGQG4IOWknxgft2fYXr4AKa1MSf66Gf5Qy76/Q4+ToHVoAacR1JeO+GOVSHIVVJw98LerMmDaB53RXMHaL5KEaRwU6VNYyYvO4WLxtInPuNp2kGfpHDyUSqisfJwGZo8yAnZFwtV1guE3TRggS/fDqoHEXhmeZNUN1Ofh2FGNe4hZnhnS7ngVxcWquAX08PUfV0OwA4IGE+xKQzYWUPbMKU/9ozHlW9i18uNQd/jgfTaQQOXhIK15xwBKiAtL6ZPa+WgkvMQhOTdZR0to3Qxjwe9isyvNSVBkPVihakzyPcQmUP/yzNLftZBposAw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=falsak9I7DC4C5iup2ehC0htcvj9hZsqryKQ13DEEnQ=; b=GvSFK5Ll3VEzFv2Ew9Fq/HP6wqaIaYO64GH2LQJtukNe0mkvtmV3GTxbB3k5cDJa/BMXwbHWAiIA/Wx6zhEkGoBZsml2/XpR9lY27iIOuWUxKOC17rclXPWgSEc71hX9N9QlmsD6UT/U23exNiIy87AqkVtpI6/SpBkx6IETl/M/bn5R/0wXDRe8l6J6r5/BthfaSSYc4cr2qvtBx5EVOXdPqfnPyU1L7BuVIGWl97UZg00aglcuyvdONSRlJUHdYuyfGgdZa17e1KeiSxsefihq6j8gUjKgMp3EnYRLGaPrhSnS1bkEK6Ay6id3ZS4JHoAb39eIZwsIqOl3bYbTZA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=falsak9I7DC4C5iup2ehC0htcvj9hZsqryKQ13DEEnQ=; b=T8o9jzr0pxUVisVYGqpw4Ik9/X8CICd1/pxs7tiBbV4dYAVGNqVc142H3bsq5zfmUr2vmNnVUqIwbal3akDT4y/UKq970FLD1vQ86yMn2PqenUp/NmYASxy9VPum/MWYlDdWGbFpXFpx715W9Uq05fFZpwARYBXXRcCsQ/y6ZiI=
Received: from CO1PR11MB4881.namprd11.prod.outlook.com (2603:10b6:303:91::20) by MWHPR11MB0029.namprd11.prod.outlook.com (2603:10b6:301:67::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3541.24; Tue, 10 Nov 2020 12:51:43 +0000
Received: from CO1PR11MB4881.namprd11.prod.outlook.com ([fe80::ad88:1b7e:c9f2:b30d]) by CO1PR11MB4881.namprd11.prod.outlook.com ([fe80::ad88:1b7e:c9f2:b30d%6]) with mapi id 15.20.3541.025; Tue, 10 Nov 2020 12:51:43 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Alvaro Retana <aretana.ietf@gmail.com>, "draft-ietf-roll-useofrplinfo@ietf.org" <draft-ietf-roll-useofrplinfo@ietf.org>
CC: Peter van der Stok <consultancy@vanderstok.org>, "roll-chairs@ietf.org" <roll-chairs@ietf.org>, Routing Over Low power and Lossy networks <roll@ietf.org>
Thread-Topic: AD Review of draft-ietf-roll-useofrplinfo-41
Thread-Index: AQHWtsopWPGpKPyXqka248pIzpGi46nBUOXw
Date: Tue, 10 Nov 2020 12:51:29 +0000
Deferred-Delivery: Tue, 10 Nov 2020 12:51:25 +0000
Message-ID: <CO1PR11MB48817CE5980B4B9E0E03B23DD8E90@CO1PR11MB4881.namprd11.prod.outlook.com>
References: <CAMMESsw9Ryj+aLmhqYu+NwkdQ11BoWxsEfbAvCr8OBk_DwRUGw@mail.gmail.com>
In-Reply-To: <CAMMESsw9Ryj+aLmhqYu+NwkdQ11BoWxsEfbAvCr8OBk_DwRUGw@mail.gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2a01:cb1d:4ec:2200:e06f:f44a:8c4f:831d]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 53e7bcfa-6af3-4dd3-a324-08d88577600e
x-ms-traffictypediagnostic: MWHPR11MB0029:
x-microsoft-antispam-prvs: <MWHPR11MB00293ED5D63F96D1EE97E8E8D8E90@MWHPR11MB0029.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: GR8kgkud3lE8GkiiTNNP7CGLWQFEQsSad+XxZNLO2bHu92xE8yzwmzowziRKXfDdFBPWcS6fCbWW1l7r+yC68/G4mJ0W7mE3A5JHis62TJr9drIBUrCYTXx+I3WiZUZwdcO/cujMk3fyMcRDShcS13AoS+o2zzqyhIpiZirozQMppKWjeKrepU/zj9gf6D/UrwiEZwyRPy10BW/Q18LCWPw3+ZQWdcJfWv6FDe9JWJ72AhL7LbvIp+ZkBpYPjzvAn4mecN5HGgYDi2HyZLcn3EKW++UEe84X6JKArJ2hvoPVN00jZzKO9FDIwY/BsTTTEecE7wYoQ9Wx1xNZq+Qycw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB4881.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(346002)(376002)(396003)(136003)(39860400002)(366004)(5660300002)(7696005)(2906002)(8936002)(71200400001)(4326008)(66946007)(76116006)(66476007)(83380400001)(9686003)(6506007)(66556008)(64756008)(110136005)(54906003)(33656002)(316002)(8676002)(186003)(6666004)(52536014)(53546011)(478600001)(66446008)(86362001)(55016002)(66574015); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB4881.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 53e7bcfa-6af3-4dd3-a324-08d88577600e
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Nov 2020 12:51:43.1840 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Fok8k2qj4VRP+Y9IJBL2AA6nukSz7olxcuJvzOchTp7p2UkMwVyn75/AHEOCjEmn1CupNH8luTbc4XknBxRTiQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR11MB0029
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.14, xch-rcd-004.cisco.com
X-Outbound-Node: alln-core-12.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/roll/OLt8HWY-aCJE1NsiXN2qHFtrRfw>
Subject: Re: [Roll] AD Review of draft-ietf-roll-useofrplinfo-41
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/roll/>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Nov 2020 12:51:49 -0000
Hello Alvaro and all Just to point out that during Alvaro's review of unaware leaves, we also mentioned the security aspect of injecting an RPI. There are 3 cases: - the leaf is an external router that passes a packet that it did not generate and that carries an unrelated RPI - we need to rewrite it - the leaf is an attacker that tries to inject traffic in a protected instance - we need to rewrite out or drop - the leaf is aware of the RPL instance and passes a correct RPI - to make the difference, the 6LR needs a configuration that allows that leaf to inject in that instance. This is why we ended up SHOULDing the rewrite. Do we need more text like the aboce in the security section? Keep safe; Pascal > -----Original Message----- > From: Alvaro Retana <aretana.ietf@gmail.com> > Sent: lundi 9 novembre 2020 19:57 > To: draft-ietf-roll-useofrplinfo@ietf.org > Cc: Peter van der Stok <consultancy@vanderstok.org>; roll-chairs@ietf.org; > Routing Over Low power and Lossy networks <roll@ietf.org> > Subject: AD Review of draft-ietf-roll-useofrplinfo-41 > > Dear authors: > > Thank you for all the work on this draft. > > I have a couple of comments in-line -- nothing hard to address. I mostly > looked at the diffs (wrt -31) and so my comments are just on new text. > > I want to progress this draft with unaware-leaves -- to make it easier on the > IESG. I'll start the IETF LC when both are ready. > > Thanks! > > Alvaro. > > > >From idnits: > > ** The abstract seems to contain references ([RFC8138]), which it > shouldn't. Please replace those with straight textual mentions of the > documents in question. > > > > [Line numbers from idnits.] > > > ... > 66 4. Updates to RFC6553, RFC6550 and RFC8138 . . . . . . . . . . . 7 > 67 4.1. Updates to RFC6550: Advertising External Routes with Non- > 68 Storing Mode Signaling. . . . . . . . . . . . . . . . . . 7 > 69 4.2. Updates to RFC6553: Indicating the new RPI Option Type. . 8 > 70 4.3. Updates to RFC6550: > 71 Configuration Options and Mode > 72 of Operation . . . . . . . . . . . . . . . . . . . . . . 11 > 73 4.4. Updates to RFC6550: Indicating the new RPI in the > 74 DODAG Configuration option Flag. . . . . . . . . . . . . 12 > 75 4.5. Updates to RFC8138: Indicating the way to decompress with > 76 the new RPI Option Type. . . . . . . . . . . . . . . . . 13 > > [nit - no action needed, just a suggestion] Group all the updates to > rfc6550: either in one sub-section or in consecutive ones. > > > ... > 493 4.3. Updates to RFC6550: Configuration Options and Mode of > Operation > > 495 RFC6550 section 6.7.6 describes the DODAG Configuration > Option. In > 496 this option are a series of Flags in the first octet of the payload. > 497 These flags are described by the DODAG Configuration Option Flags > 498 registry [dodagcfg], in section 20.14 of RFC6550. > > 500 Anticipating future work to revise RPL relating to how the LLN and > 501 DODAG is configured, this document changes the interpretation of > the > 502 [dodagcfg] Registry to be limited to Mode-of-Operation (MOP) > 503 specific. The MOP is described in [RFC6550] section 6.3.1. The > 504 Options Flags Registry is renamed, and applies to MOP values zero > (0) > 505 to six (6) only, leaving the flags reserved for MOP value seven (7). > > 507 In addition, this document reserves MOP value 7 for future > expansion. > > [] NEW> > Section 6.7.6 of RFC6550 describes the DODAG Configuration Option as > containing a series of Flags in the first octet of the payload
- [Roll] AD Review of draft-ietf-roll-useofrplinfo-… Alvaro Retana
- Re: [Roll] AD Review of draft-ietf-roll-useofrpli… Pascal Thubert (pthubert)
- Re: [Roll] AD Review of draft-ietf-roll-useofrpli… Alvaro Retana
- Re: [Roll] AD Review of draft-ietf-roll-useofrpli… Ines Robles
- Re: [Roll] AD Review of draft-ietf-roll-useofrpli… Michael Richardson
- Re: [Roll] AD Review of draft-ietf-roll-useofrpli… Alvaro Retana
- Re: [Roll] AD Review of draft-ietf-roll-useofrpli… Alvaro Retana