Re: [secdir] SecDir review of draft-ietf-pim-hello-intid-01
Chris Lonvick <clonvick@cisco.com> Mon, 15 August 2011 19:28 UTC
Return-Path: <clonvick@cisco.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8613511E80EB; Mon, 15 Aug 2011 12:28:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -103.632
X-Spam-Level:
X-Spam-Status: No, score=-103.632 tagged_above=-999 required=5 tests=[AWL=-1.633, BAYES_00=-2.599, J_CHICKENPOX_42=0.6, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yGnEvwDab+Kr; Mon, 15 Aug 2011 12:28:12 -0700 (PDT)
Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) by ietfa.amsl.com (Postfix) with ESMTP id C7C1A11E80D7; Mon, 15 Aug 2011 12:28:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=clonvick@cisco.com; l=2165; q=dns/txt; s=iport; t=1313436538; x=1314646138; h=date:from:to:cc:subject:in-reply-to:message-id: references:mime-version; bh=WgLSJWfVa7Y6kPcAS4nAebQxF+Tu+hSKpIdrnO9PqNU=; b=Z/ClvEFjtkEwiklZhxcyXiXT9sW7//TfGkiNZm/OP+4UDMvUka4Nnfgu tION26c279rE7f93Nxn6uLepsqFNu6IZ4obk2GdvcAsk4c3DmaVFkf+1t SGAzcaEe/+T93diyTP2VZAajVnvQ862GLre6tw9jcmd0C6fGzaG/Ak8rt s=;
X-IronPort-AV: E=Sophos;i="4.67,375,1309737600"; d="scan'208";a="13310433"
Received: from mtv-core-2.cisco.com ([171.68.58.7]) by rcdn-iport-1.cisco.com with ESMTP; 15 Aug 2011 19:28:56 +0000
Received: from sjc-cde-021.cisco.com (sjc-cde-021.cisco.com [171.69.20.56]) by mtv-core-2.cisco.com (8.14.3/8.14.3) with ESMTP id p7FJSuES028585; Mon, 15 Aug 2011 19:28:56 GMT
Date: Mon, 15 Aug 2011 12:28:56 -0700
From: Chris Lonvick <clonvick@cisco.com>
To: Stig Venaas <stig@venaas.com>
In-Reply-To: <4E41A777.4030401@venaas.com>
Message-ID: <Pine.GSO.4.63.1108151207440.2825@sjc-cde-021.cisco.com>
References: <Pine.GSO.4.63.1108081328200.22397@sjc-cde-021.cisco.com> <Pine.GSO.4.63.1108081358020.22397@sjc-cde-021.cisco.com> <4E41A777.4030401@venaas.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"; format="flowed"
Cc: draft-ietf-pim-hello-intid.all@tools.ietf.org, Michael McBride <mmcbride@cisco.com>, iesg@ietf.org, secdir@ietf.org
Subject: Re: [secdir] SecDir review of draft-ietf-pim-hello-intid-01
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Aug 2011 19:28:12 -0000
Hi Stig, On Tue, 9 Aug 2011, Stig Venaas wrote: <some elided> >> > >> > While PIM is certainly not my strong suit the document is >> > understandable except for the following paragraph from Section 2.1: >> > >> > The Local Interface Identifier MUST be non-zero. The reason for >> > this, is that some protocols may want to only optionally refer to an >> > Interface using the Interface Identifier Hello option, and use the >> > value of 0 to show that it is not referred to. Note that the value >> > of 0 is not a valid ifIndex as defined in [RFC1213]. >> > >> > This seems to be saying that the Local Interface Identifier must not >> > be 0, except when some protocol wants to use the Interface Identifier >> > Hello to not refer to any actual interface. Which leaves me confused. > > Perhaps there is a better way to explain it. To see what I'm talking > about, please have a look at section 3.6.2 of > http://tools.ietf.org/html/draft-hou-pim-ecmp-01 > > The message format includes both Neighbor address and Interface ID, > but use of the Interface ID is optional. If the Neighbor address is > sufficient for uniqueness, then Interface ID 0 is sent. Basically, > the idea is that instead of using some TLV format, it is easier to > always have an Interface ID field, and use the value 0 as saying > not in use, or unspecified. > > I'm happy if you can think of a better way of phrasing it. How about: The Local Interface Identifier is normally non-zero. Since the value of 0 is not a valid ifIndex as defined in [RFC1213], it's use in this field has special meaning. A Local Interface Identifier of 0 will indicate that the Router Identifier is sufficiently unique for identification for the protocol using it. For example, this field is non-zero when used in IPv4 when one or more RPF neighbors in the ECMP bundle are unnumbered. For other IPv4 usage, this field is zero'ed when sent, and ignored when received. If the "Router ID" part of the "Interface ID" is zero, the field MUST be ignored, regardless of its value. Does that work? Thanks, Chris
- [secdir] SecDir review of draft-ietf-pim-hello-in… Chris Lonvick
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Chris Lonvick
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Stig Venaas
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Chris Lonvick
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Chris Lonvick
- Re: [secdir] SecDir review of draft-ietf-pim-hell… Stig Venaas