Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End Jul 02 2015
Brian Haberman <brian@innovationslab.net> Wed, 24 June 2015 14:54 UTC
Return-Path: <brian@innovationslab.net>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1160D1A1A6C for <sidr@ietfa.amsl.com>; Wed, 24 Jun 2015 07:54:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Q7m5Bl7W8wmg for <sidr@ietfa.amsl.com>; Wed, 24 Jun 2015 07:54:09 -0700 (PDT)
Received: from uillean.fuaim.com (uillean.fuaim.com [206.197.161.140]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C394E1A1A5B for <sidr@ietf.org>; Wed, 24 Jun 2015 07:54:09 -0700 (PDT)
Received: from clairseach.fuaim.com (clairseach-high.fuaim.com [206.197.161.158]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by uillean.fuaim.com (Postfix) with ESMTP id 98271880E1 for <sidr@ietf.org>; Wed, 24 Jun 2015 07:54:09 -0700 (PDT)
Received: from brians-mbp.jhuapl.edu (swifi-nat.jhuapl.edu [128.244.87.133]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by clairseach.fuaim.com (Postfix) with ESMTP id EDFAA1368260 for <sidr@ietf.org>; Wed, 24 Jun 2015 07:54:08 -0700 (PDT)
Message-ID: <558AC489.1030900@innovationslab.net>
Date: Wed, 24 Jun 2015 10:54:01 -0400
From: Brian Haberman <brian@innovationslab.net>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
MIME-Version: 1.0
To: sidr@ietf.org
References: <55828BEC.9010605@ops-netman.net> <BDDD7570-1F1C-4A25-8755-6E2A2E361659@gmail.com>
In-Reply-To: <BDDD7570-1F1C-4A25-8755-6E2A2E361659@gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="Utj2lhQ9lDjjW0TH6dADH2QUAG8taROaE"
Archived-At: <http://mailarchive.ietf.org/arch/msg/sidr/R-IPEQvwMrGJZib5m38W6jRQmPM>
Subject: Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End Jul 02 2015
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jun 2015 14:54:17 -0000
Hi Geoff,
Thanks for the review. Some responses in-line...
On 6/23/15 10:26 PM, Geoff Huston wrote:
> section 3.1, bullet 4 - s/notaion/notation/
Will fix.
>
> Bullet 4 of this list looks confused
>
> * Date and time fields MUST be converted to 64-bit NTP Timestamp Format [RFC5905].
>
> thats a binary value, 32 bits of seconds since epoch and 32 bitss of fractions - right?
In the code I wrote a few years ago, I convert the timestamp to an ascii
string representation. Some of the conversion logic is in 5905 and the
rest is based on the C libraries for managing time.
> Does this also mean that the Era is 1 January 1900?
Yes, it does... and that may be a problem in 21 years. Changing this to
the 128-bit Date Format from 5905 doesn't appear to be an issue. When I
get some time in the next few days, I will update my prototype code and
test it out.
>
> * AS numbers MUST be converted to ASPLAIN syntax [RFC5396].
>
> hang on - thats ascii - why is the time field binary and this field ascii?
As noted above, the time is converted to ASCII.
>
> * IPv6 addresses must be canonicalized as defined in [RFC5952].
>
> this is also ascii
Yes.
>
> * IPv4 addresses MUST be converted to a 32-bit representation
> (e.g., Unix's inet_aton()).
>
> inet_aton returns a binary struct - which is NOT ascii.
>
But can be converted to the ASCII representation of the 32-bit number.
I will update the draft to be explicit about that.
>
> * All IP prefixes (IPv4 and IPv6) MUST be represented in CIDR
> notaion [RFC4632].
>
Yes, as described in RPSL (RFCs 2280 and 2622).
>
> I assume that this means that at times this will be a list of addresses
> (i.e. the range of addresses 10.0.0.1 - 10.0.0.2 is 10.0.0.1/32 and 10.0.0.2/32)
>
> Are you wanting a cononical CIDR form? (i.e. should the pair of prefixes 10.0.0.0/24 and 10.0.1.0/24
> be represented as 10.0.0.0/23?)
>
>
> Other RPKI specs (e.g. RFC6487) referenced the canonical representation of a
> set of addresses as defined in RFC3779. I assume you had a good reason not to
> use the same approach
>
The 3779 approach moves away from the RPSL representation of prefixes.
Introducing ASN.1-based representations to RPSL seems... odd.
Regards,
Brian
- [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End Jul 0… Chris Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Geoff Huston
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Geoff Huston
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Geoff Huston
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Brian Haberman
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Geoff Huston
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Brian Haberman
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Geoff Huston
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Stephen Kent
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Stephen Kent
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Christopher Morrow
- Re: [sidr] WGLC: draft-ietf-sidr-rpsl-sig - End J… Sandra Murphy