IETF Logo Mail Archive

Re: [Roll] Benjamin Kaduk's No Objection on draft-ietf-roll-unaware-leaves-26: (with COMMENT)

Michael Richardson <mcr+ietf@sandelman.ca> Thu, 17 December 2020 19:48 UTC

Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 483933A0F0C; Thu, 17 Dec 2020 11:48:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VQFoGeKwD7I1; Thu, 17 Dec 2020 11:48:32 -0800 (PST)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [209.87.249.19]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2C1153A0F0A; Thu, 17 Dec 2020 11:48:30 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by tuna.sandelman.ca (Postfix) with ESMTP id D9869389B2; Thu, 17 Dec 2020 14:51:15 -0500 (EST)
Received: from tuna.sandelman.ca ([127.0.0.1]) by localhost (localhost [127.0.0.1]) (amavisd-new, port 10024) with LMTP id CX6xhE5V8rYj; Thu, 17 Dec 2020 14:51:14 -0500 (EST)
Received: from sandelman.ca (obiwan.sandelman.ca [209.87.249.21]) by tuna.sandelman.ca (Postfix) with ESMTP id 928F3389B1; Thu, 17 Dec 2020 14:51:14 -0500 (EST)
Received: from localhost (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id BB6DE11B4; Thu, 17 Dec 2020 14:48:28 -0500 (EST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: Routing Over Low power and Lossy networks <roll@ietf.org>
cc: Benjamin Kaduk <kaduk@mit.edu>, The IESG <iesg@ietf.org>, "draft-ietf-roll-unaware-leaves@ietf.org" <draft-ietf-roll-unaware-leaves@ietf.org>, "roll-chairs@ietf.org" <roll-chairs@ietf.org>
In-Reply-To: <CO1PR11MB4881AF374C813CDD9850756AD8C40@CO1PR11MB4881.namprd11.prod.outlook.com>
References: <160819432500.25662.694953130654522537@ietfa.amsl.com> <CO1PR11MB4881AF374C813CDD9850756AD8C40@CO1PR11MB4881.namprd11.prod.outlook.com>
X-Mailer: MH-E 8.6+git; nmh 1.7+dev; GNU Emacs 26.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Thu, 17 Dec 2020 14:48:28 -0500
Message-ID: <16278.1608234508@localhost>
Archived-At: <https://mailarchive.ietf.org/arch/msg/roll/Tk_denFfkp0O5oTCN7c2waVnbnw>
Subject: Re: [Roll] Benjamin Kaduk's No Objection on draft-ietf-roll-unaware-leaves-26: (with COMMENT)
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/roll/>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Dec 2020 19:48:34 -0000

About how to mark MOP=7

Pascal Thubert \(pthubert\) <pthubert=40cisco.com@dmarc.ietf.org> wrote:
    > I have (plenty of) coffee, it's early afternoon, I had (almost) no red
    > wine at lunch... I'm ready for your review comments : ) : )

I'm thinking that there is a market for caffeinated red wine.
Maybe that's already covered by Redbull+Vodka for some.

    bk> I still feel that if we're going to incrementally add new properties to MOP 7, we
    bk> should list the relevant documents as references in the registry until MOP 7 is
    bk> fully specified.  In this case we can arguably get away with not doing so since this
    bk> document Updates: RFC 6550 already and thus could be said to be doing the
    bk> reservation by modification of the core protocol, but we are not using that
    bk> procedure universally (e.g., for turnon-rfc8138) and it seems prudent to use a
    bk> consistent mechanism.

    > Yes, we have a github page for that, see
    > https://github.com/roll-wg/RPLv2; I added your concern above in there.

But, Ben is suggested that turnon-rfc8138, unaware-leaves and useofrpinfo
should all be listed under IANA MOP=7 until we actually publish RFC6550
and/or mopex/capex.

Ben, I hadn't thought of that, and I like it.
How do we do this?

    >> A RUL is not expected to support the compression method defined in
    >> [RFC8138].  For that reason, the border router uncompresses the
    >> packet before forwarding it over an external route to a RUL
    >> [USEofRPLinfo].
    >>
    >> Just to confirm: the "border router" here is not the 6LBR but rather a "normal"
    >> 6LR (i.e., an "RPL border router")?

    > Yes; I changed to " the border router (the 6LR here)". Since we now
    > have external routes, we now have a southern border as well.

Yeah, so we have international (EGP) borders, and we have municipal (IGP/ND) borders.
But, even EGP/IGP are really inaccurate terms, since the 6LBR could well speak OSPFv3,
to the rest of the Enterprise.   I wonder if the RTG-area group might want to
suggest some new terms here for us.

    >> message are taken from the Transaction ID and the Address
    >> Registration lifetime in the NS(EARO) message from the 6LN.
    >>
    >> Reusing an identifier taken from one context in one protocol to play a role in a
    >> different context in a different protocol has historically led to security-relevant
    >> flaws/attacks.  What kind of analysis has been done to consider the risk of such
    >> issues here?

    > None. I have no idea what opening this creates.
    > All I can say is that as opposed maybe to your examples, the TID was
    > designed to be mapped onto RPL from the beginning and to mean the same
    > thing.

    > If you look at the text in RFC 8505 for the TID: It is the verbatim
    > copy of the text for the Path Sequence in RPL. It's easier to drive
    > when you know where's you're going 😊. For the lifetime, we had to go
    > through a translation.

These are identifiers at the ICMPv6/"ND" level.
It might be important to recognize that RPL control messages live inside IPv6
ICMPv6.  So they are alongside ND messages as well.
The typical case where the identifier problem occurs has been for things that
received different kinds of protection.
I feel confident that it's okay.

--
]               Never tell me the odds!                 | ipv6 mesh networks [
]   Michael Richardson, Sandelman Software Works        |    IoT architect   [
]     mcr@sandelman.ca  http://www.sandelman.ca/        |   ruby on rails    [


--
Michael Richardson <mcr+IETF@sandelman.ca>   . o O ( IPv6 IøT consulting )
           Sandelman Software Works Inc, Ottawa and Worldwide

v2.23.0 | Report a Bug | By Email