Re: [Sidrops] rfc8210bis further review - question 5
Job Snijders <job@fastly.com> Fri, 15 March 2024 07:49 UTC
Return-Path: <job@fastly.com>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A9F35C14F5F9 for <sidrops@ietfa.amsl.com>; Fri, 15 Mar 2024 00:49:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.104
X-Spam-Level:
X-Spam-Status: No, score=-7.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=fastly.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QmbOyVi2nnFJ for <sidrops@ietfa.amsl.com>; Fri, 15 Mar 2024 00:49:50 -0700 (PDT)
Received: from mail-pl1-x62f.google.com (mail-pl1-x62f.google.com [IPv6:2607:f8b0:4864:20::62f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED4ECC14F5EB for <sidrops@ietf.org>; Fri, 15 Mar 2024 00:49:50 -0700 (PDT)
Received: by mail-pl1-x62f.google.com with SMTP id d9443c01a7336-1dddbeac9f9so13098405ad.3 for <sidrops@ietf.org>; Fri, 15 Mar 2024 00:49:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fastly.com; s=google; t=1710488990; x=1711093790; darn=ietf.org; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:to:from:date:from:to:cc:subject:date:message-id:reply-to; bh=EiSeIJQYZ0HOshwxYf1FqduTQbJg3fpknqY8ReTH57o=; b=q7jaqUwArWOHDMURO2GnB7RzqTSSAPmu3XSUyBL4da7OR3R586DyX/gOy9QSHE5gre p+sxyiWGpSftMnbi3cocfZScHgOdTGOhmCECQIB8V0iFcrxh4zME15RpnIFav9VU+yle ReX1qnhA63ajRK4fWNkF39CD1ep3a5tuW/JKs=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1710488990; x=1711093790; h=in-reply-to:content-disposition:mime-version:references:message-id :subject:to:from:date:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=EiSeIJQYZ0HOshwxYf1FqduTQbJg3fpknqY8ReTH57o=; b=OVY4QgXnBI5pN60/lMBuIcZSNn1gYlcsQOYF2KZjHIcHvmPrjv1NhNjonbWO1DE47w q32Ki32umAALfnGii1Qpze3ozCTNQnPI82Bo+Zro1zVwU+EfdBgfahgAQJSjOm18evY8 Sj7k9SZisoQCJ6rmBSxXkrbLd44I1PYefVUvxkBRHKJU7jKK4wZ8gNfEJWzXFKPg33r0 Y/+xR2ox0VNGT+lbpMfXrRl3jwEPd5hOkH+CcOW60P0yi4eAiP8+p8QBWlzrUeXUN271 17KypWl5hina+ceqBIlV8WNuFcqsQRi2IHvQWhU1e9gpYbBU/lIunpcGHL/Gq/Zq7kEz +OGA==
X-Gm-Message-State: AOJu0YxNnajjpxgOvNWphScmDN7SAp5VfkeJm8Yz1z5TPR0gOtQHMqR/ zWt6wk9i7NxhqLE4G1N+dFqLpH1mTV6R02D78guY9DpYqyqk2Sgp2dTquXyhFnA9sk9mArYjs6O VlWjtN+QR3rBLjDso9gaN3eiyTQPCn5iYYwEFiHnHYRcyTAC1WxR1uBLeypk0PGiKWcMG6inNK0 wI21ZTMCWRldminH8Al8iJubhrdMkqZQ==
X-Google-Smtp-Source: AGHT+IFKu+ZyZRSkYeXKrdcs07ElukrBJFPhBRdksaeyJjCpT53RGVppfY2bqrbK0fncbuir+e1JIA==
X-Received: by 2002:a17:902:d4cd:b0:1dd:9957:2989 with SMTP id o13-20020a170902d4cd00b001dd99572989mr4824057plg.19.1710488989632; Fri, 15 Mar 2024 00:49:49 -0700 (PDT)
Received: from feather.sobornost.net ([123.254.127.131]) by smtp.gmail.com with ESMTPSA id kt7-20020a170903088700b001d9b537ad0bsm3070871plb.275.2024.03.15.00.49.47 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 15 Mar 2024 00:49:49 -0700 (PDT)
Date: Fri, 15 Mar 2024 07:49:45 +0000
From: Job Snijders <job@fastly.com>
To: sidrops@ietf.org
Message-ID: <ZfP9mVncTNZchnhG@feather.sobornost.net>
References: <ZexJxZYsgNGth_Q7@snel> <ZexN0VtykWRlmGvq@snel> <ZexXrjeni3FRaZ3-@snel> <ZexbncnxQFnMipa1@snel>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <ZexbncnxQFnMipa1@snel>
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/3RoWSQERfLe2t1PoRd9DR2ZwSBo>
Subject: Re: [Sidrops] rfc8210bis further review - question 5
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Mar 2024 07:49:54 -0000
Dear all,
Question 5
==========
In Section 5.12 "ASPA PDU" the current text says:
"The cache MUST deliver the complete data of an ASPA record in a single
ASPA PDU."
and
"The router MUST see at most one ASPA from a cache for a particular
Customer Autonomous System Number active at any time. As a number of
conditions in the global RPKI may present multiple valid ASPA RPKI
records for a single customer to a particular RP cache, this places a
burden on the cache to form the union of multiple ASPA records it has
received from the global RPKI into one ASPA PDU.
The above to me means that, logically, the Provider Autonomous System
Number fields MUST be unique with respect to each other, as the PAS
Numbers are a union set.
It will be easier for the RTR client / router to check in a single pass
whether the PAS Numbers are unique, if those fields are ordered in
ascending order.
Suggestion:
OLD:
There are zero or more 32-bit Provider Autonomous System
Number fields as indicated in the Provider AS Count; see
[I-D.ietf-sidrops-aspa-profile].
NEW:
There are zero or more 32-bit Provider Autonomous System
Number fields as indicated in the Provider AS Count, the
fields MUST be ordered in ascending numerical order; see
[I-D.ietf-sidrops-aspa-profile].
The above requirement allows RTR clients to detect both the presence
of duplicate PAS Numbers and invalid ordering (both indicators that
something is off with the cache), then send a "Corrupt Data" error
report.
Kind regards,
Job
- [Sidrops] rfc8210bis further review - question 1 Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Claudio Jeker
- Re: [Sidrops] rfc8210bis further review - questio… Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Claudio Jeker
- Re: [Sidrops] rfc8210bis further review - questio… Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Randy Bush
- [Sidrops] Re: rfc8210bis further review - questio… Randy Bush
- Re: [Sidrops] rfc8210bis further review - questio… Borchert, Oliver (Fed)
- Re: [Sidrops] rfc8210bis further review - questio… Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Claudio Jeker
- Re: [Sidrops] rfc8210bis further review - questio… Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Claudio Jeker
- [Sidrops] Re: rfc8210bis further review - questio… Job Snijders
- Re: [Sidrops] rfc8210bis further review - questio… Job Snijders
- [Sidrops] Re: rfc8210bis further review - questio… Randy Bush
- Re: [Sidrops] rfc8210bis further review - questio… Borchert, Oliver (Fed)