Re: [sidr] AD Review of draft-ietf-sidr-rpki-validation-reconsidered-07

Declan Ma <madi@zdns.cn> Tue, 14 March 2017 06:28 UTC

Return-Path: <madi@zdns.cn>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA7DC1294EA for <sidr@ietfa.amsl.com>; Mon, 13 Mar 2017 23:28:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZKF3oLjdbtdr for <sidr@ietfa.amsl.com>; Mon, 13 Mar 2017 23:28:42 -0700 (PDT)
Received: from gw1.turbomail.org (gw1.turbomail.org [159.8.83.126]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C0D971293EC for <sidr@ietf.org>; Mon, 13 Mar 2017 23:28:41 -0700 (PDT)
X-TM-DID: df6dfe0c231fb932f029bb3603368d79
Content-Type: text/plain; charset=gb2312
Mime-Version: 1.0 (Mac OS X Mail 10.2 \(3259\))
From: Declan Ma <madi@zdns.cn>
In-Reply-To: <0C92FF0E-E19E-4CA0-967A-D35B17AD203B@lacnic.net>
Date: Tue, 14 Mar 2017 14:23:01 +0800
Content-Transfer-Encoding: quoted-printable
Message-Id: <35D7A05D-153E-4A32-9DB4-1399668403BD@zdns.cn>
References: <5821A5CF-EFF8-4CE3-9AA4-CFDB9C903D63@cisco.com> <20170311222527.324125ACF21@minas-ithil.hactrn.net> <yj9ok27upcws.wl%morrowc@ops-netman.net> <6359B4B1-478D-4017-B259-7B60BA55FF39@zdns.cn> <68C71545-48E4-40B8-91AC-88DE44C4125D@ripe.net> <20170313131155.D22115DCF34@minas-ithil.hactrn.net> <4E57BAB1-8241-495E-A201-D785FFF3AEC9@ripe.net> <20170313151657.281B65DDF63@minas-ithil.hactrn.net> <0C92FF0E-E19E-4CA0-967A-D35B17AD203B@lacnic.net>
To: "Carlos M. Martinez" <carlos@lacnic.net>
X-Mailer: Apple Mail (2.3259)
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/8q0fIDvOE_90-bWFiYpAMOg7pH4>
Cc: Chris Morrow <morrowc@ops-netman.net>, "sidr-chairs@ietf.org" <sidr-chairs@ietf.org>, "sidr@ietf.org" <sidr@ietf.org>, Rob Austein <sra@hactrn.net>, "draft-ietf-sidr-rpki-validation-reconsidered@ietf.org" <draft-ietf-sidr-rpki-validation-reconsidered@ietf.org>
Subject: Re: [sidr] AD Review of draft-ietf-sidr-rpki-validation-reconsidered-07
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Mar 2017 06:28:43 -0000

+1

As far as we programmed to support Validation Reconsidered by using OPENSSL , a bug was found.

For instance, if one calls v3_addr_get_range() in OPENSSEL library to get INR 1::/16 from a RC, one will get a right MAX but a wrong MIN NULL, which should have been 1:: .

Di

> 在 2017年3月13日,23:44,Carlos M. Martinez <carlos@lacnic.net> 写道:
> 
> Rob,
> 
> On 13 Mar 2017, at 12:16, Rob Austein wrote:
> 
>> You are making assumptions about how the library code works.  As it
>> happens, those assumptions are incorrect for the OpenSSL case.
> 
> can you expand on this ? I think if you help us on this front a lot of the concerns and misunderstandings will be sorted out.
> 
> Best regards,
> 
> -Carlos
> 
> _______________________________________________
> sidr mailing list
> sidr@ietf.org
> https://www.ietf.org/mailman/listinfo/sidr