IETF Logo Mail Archive

[Sidrops] Re: draft-ietf-sidrops-8210bis-23 is ambiguous session mismatch handling

Tom Harrison <tomh@apnic.net> Mon, 22 December 2025 05:12 UTC

Return-Path: <tomh@apnic.net>
X-Original-To: sidrops@mail2.ietf.org
Delivered-To: sidrops@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 4DCD49DB7BEA for <sidrops@mail2.ietf.org>; Sun, 21 Dec 2025 21:12:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.696
X-Spam-Level:
X-Spam-Status: No, score=-1.696 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_NONE=0.001] autolearn=no autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=apnic.net
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TOtl2G8wiAFY for <sidrops@mail2.ietf.org>; Sun, 21 Dec 2025 21:11:59 -0800 (PST)
Received: from SY5PR01CU010.outbound.protection.outlook.com (mail-australiaeastazon11022081.outbound.protection.outlook.com [40.107.40.81]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 9F3879DB7BE5 for <sidrops@ietf.org>; Sun, 21 Dec 2025 21:11:59 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=lIYH4DhoYF3gqiUJzOcZy5c0sq4yG7yjueK+sZe2fdXX3dnKi5mCPvqvyRTDSLjDObC43o33ua/OQJ4NPf2EqF5eutroa53VgyBoaR0FAizwLFPR7k35r+G9HulQnxRQuJeMlZJQya+XXtsZ25lyjWmzFY9skO+l/bgEL5rGMg3ot5O11I69wlqFe/W+rXg4QwCpd7VL8+tqoJNsMVPR18Q/ziSfm5l+9x1UgbtZ/DIJREvsy6mzn5gr714T5/pmRuFrPsNc0OwDlX0VA4iHrH5OwORppg44Kng4A3DpaRqouoHYVK94HAq9YBHHSndo4Hin4849AGH1WNcgUl6FuA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=A7y/fRs2bgKTWWGfGbh7CqZLkVKjuka142VeL7d6Iyo=; b=ltrh4oIXsEP/Aq49PjMuY/LMnkdfEZe30hrSFsZlhyAF5iNLaOeTlSkbYhl03IhD1McHvoOBiUv5I+bbw/i23vy7stWKPVKcwzTcy5UWVz5EOK4LfwBHhqn3x5MmKnB3gyDqffZqR7PJq8LYssO7Hd2vpdqSf1h2VjwMJHoK8xOpDqfPz+3BDk5zUE+4B3AJtLHmnLm2TUntPq6gGFGjzZRzPXLHEEmqRnYAwKK4PgHgHFypqihU8e3oCAECMZH+dpU9Uwh3qN/Ym/3/0fWVeh2cRY8b3SS2xqZE7D0O2CGcYdALCAkJdcQKI3m5slor5YAzsNBM1XmyEPDPHEyM6Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=apnic.net; dmarc=pass action=none header.from=apnic.net; dkim=pass header.d=apnic.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apnic.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=A7y/fRs2bgKTWWGfGbh7CqZLkVKjuka142VeL7d6Iyo=; b=Zi8xWzUrJjkKHLrDT6r/m0bwod01XrNnp1fpDyRKYqZPPcxo3uEW7eekESu1h04jQ4A8P6RnlLth9bAZv/h5/BmcF6FWoPZu512Lh7r+PYczLTjla7y/3HHZ5KxiOV5RBk5sEwsoEKbk9evAzJ4UiikvrQw76pUSDnSy/F3Sy48=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=apnic.net;
Received: from SYYP282MB0880.AUSP282.PROD.OUTLOOK.COM (2603:10c6:10:bc::12) by SY7P282MB5658.AUSP282.PROD.OUTLOOK.COM (2603:10c6:10:2d4::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9434.11; Mon, 22 Dec 2025 05:11:49 +0000
Received: from SYYP282MB0880.AUSP282.PROD.OUTLOOK.COM ([fe80::7962:e03e:c34e:92bb]) by SYYP282MB0880.AUSP282.PROD.OUTLOOK.COM ([fe80::7962:e03e:c34e:92bb%3]) with mapi id 15.20.9434.009; Mon, 22 Dec 2025 05:11:48 +0000
Date: Mon, 22 Dec 2025 15:11:47 +1000
From: Tom Harrison <tomh@apnic.net>
To: Ralph Covelli <rcovelli=40he.net@dmarc.ietf.org>
Message-ID: <aUjTEw4hDo1Xji2t@TomH-498551.lan>
Mail-Followup-To: Ralph Covelli <rcovelli=40he.net@dmarc.ietf.org>, sidrops@ietf.org
References: <CAO367rWV4rsnSM9jYG3N1hfPjq8mhqn36m0SLzO9eF6QZAgQ9g@mail.gmail.com> <ab35bfd7-4ac8-4a0f-990c-f4f66bbb9627@he.net> <c2c4ef74-8c26-4a42-b667-555acbbf3532@he.net> <228ff33f-ddb0-46c5-aadf-7b742554165e@he.net> <4df00da3-0ffd-4b58-8671-9aa28ac14fb7@he.net> <ff478e6b-ba0d-47a2-92b7-7b94f7124756@he.net>
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <ff478e6b-ba0d-47a2-92b7-7b94f7124756@he.net>
X-ClientProxiedBy: SY5PR01CA0010.ausprd01.prod.outlook.com (2603:10c6:10:1fa::19) To SYYP282MB0880.AUSP282.PROD.OUTLOOK.COM (2603:10c6:10:bc::12)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: SYYP282MB0880:EE_|SY7P282MB5658:EE_
X-MS-Office365-Filtering-Correlation-Id: 4e4d9767-bc4b-4e04-c368-08de41189c26
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;ARA:13230040|10070799003|366016|1800799024|376014;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:SYYP282MB0880.AUSP282.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(10070799003)(366016)(1800799024)(376014);DIR:OUT;SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: apnic.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 4e4d9767-bc4b-4e04-c368-08de41189c26
X-MS-Exchange-CrossTenant-AuthSource: SYYP282MB0880.AUSP282.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 22 Dec 2025 05:11:48.9367 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 127d8d0d-7ccf-473d-ab09-6e44ad752ded
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: T/4dF7zL86gp4rsgmWEpeu8eAHQ0dS+43P8qopJtp5J5MLzKBKOYnZuJJNWBSQtv
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SY7P282MB5658
Message-ID-Hash: GBK6IMOFP6JYLB4AINLFXLD4HPFDE5T7
X-Message-ID-Hash: GBK6IMOFP6JYLB4AINLFXLD4HPFDE5T7
X-MailFrom: tomh@apnic.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-sidrops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: sidrops@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Sidrops] Re: draft-ietf-sidrops-8210bis-23 is ambiguous session mismatch handling
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/jZNaeKm0f1Tzvb5yvZwdlg7vmnE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Owner: <mailto:sidrops-owner@ietf.org>
List-Post: <mailto:sidrops@ietf.org>
List-Subscribe: <mailto:sidrops-join@ietf.org>
List-Unsubscribe: <mailto:sidrops-leave@ietf.org>

On Sat, Dec 20, 2025 at 09:41:46PM -0500, Ralph Covelli wrote:
> On 12/20/2025 9:29 PM, Ralph Covelli wrote:
>> On 12/20/2025 9:05 PM, Ralph Covelli wrote:
>>> On 12/20/2025 8:54 PM, Ralph Covelli wrote:
>>>> On 12/17/2025 1:46 PM, Ralph Covelli wrote:
>>>>> On 12/17/2025 8:38 AM, Marco Marzetti wrote:
>>>>>> Dear members of the SIDROPS WG,
>>>>>> 
>>>>>> I am working on a Python implementation of a RTR Cache,
>>>>>> and I noticed some ambiguity around how session mismatch
>>>>>> should be handled.
>>>>>> 
>>>>>> At 5.1. (Fields of a PDU) the draft states that:
>>>>>>
>>>>>>    If, at any time after the
>>>>>>    protocol version has been negotiated (Section 7), either the
>>>>>>    router or the cache finds that the value of the Session ID is not
>>>>>>    the same as the other's, the party which detects the mismatch MUST
>>>>>>    immediately terminate the session with an Error Report PDU with
>>>>>>    code 0 ("Corrupt Data"), and the router MUST flush all data
>>>>>>    learned from that cache.
>>>>>>
>>>>>> While at 5.3. (Serial Query), the it states:
>>>>>>
>>>>>>    The Session ID tells the cache what instance the router expects to
>>>>>>    ensure that the Serial Numbers are commensurate, i.e., the cache
>>>>>>    session has not been changed.  If the Session ID does not match, the
>>>>>>    cache MUST respond with a Cache Reset.
>>>>>> 
>>>>>> Does that mean that the Cache should send the Error
>>>>>> Report PDU in all cases but not in response to a Serial
>>>>>> Query?
>>>>>
>>>>> The 5.3 wording was added because of me.  Perhaps it can use
>>>>> a little more tweaking.
>>>>> 
>>>>> Both Reset Queries and Serial Queries can be the first command issued.
>>>>> 
>>>>> When the Serial Query is the *first command issued* and the
>>>>> session ID numbers do not match the RTR cache, then the RTR
>>>>> cache should send a Cache Reset.
>>>>> 
>>>>> If a later Serial Query is issued and the session ID number
>>>>> somehow changes the RTR cache must terminate the session.

I think the extra text that was added in 5.3 should instead be
removed, for a few reasons:

 - It's more consistent with RFC 8210.
 - It simplifies the implementation for both the client and the
   server, since there is no need to distinguish different session ID
   mismatch scenarios.
 - If a cache or a router sees an unexpected session ID, then some
   sort of error has occurred (e.g. cache has lost the data for a
   previously-established session).  Compare e.g. a serial query for a
   serial number that is no longer available due to the removal of
   stale data, which is not an error as such.
 - It is not clear what advantage is gained by having the cache send
   a Cache Reset when it receives an unexpected/unknown session ID.

-Tom

v2.39.1 | Report a Bug | By Email | System Status