Re: [Softwires] Ben Campbell's No Objection on draft-ietf-softwire-unified-cpe-06: (with COMMENT)

<mohamed.boucadair@orange.com> Tue, 27 September 2016 09:44 UTC

Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: softwires@ietfa.amsl.com
Delivered-To: softwires@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18DB112B0C3; Tue, 27 Sep 2016 02:44:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.916
X-Spam-Level:
X-Spam-Status: No, score=-4.916 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, RP_MATCHES_RCVD=-2.316, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t1-OV0g9zOCF; Tue, 27 Sep 2016 02:44:05 -0700 (PDT)
Received: from relais-inet.orange.com (relais-nor35.orange.com [80.12.70.35]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 04B5012B0BD; Tue, 27 Sep 2016 02:44:05 -0700 (PDT)
Received: from opfednr05.francetelecom.fr (unknown [xx.xx.xx.69]) by opfednr27.francetelecom.fr (ESMTP service) with ESMTP id 24CAAA03D0; Tue, 27 Sep 2016 11:44:03 +0200 (CEST)
Received: from Exchangemail-eme2.itn.ftgroup (unknown [xx.xx.31.32]) by opfednr05.francetelecom.fr (ESMTP service) with ESMTP id CF2122006B; Tue, 27 Sep 2016 11:44:02 +0200 (CEST)
Received: from OPEXCLILMA3.corporate.adroot.infra.ftgroup ([fe80::60a9:abc3:86e6:2541]) by OPEXCLILM32.corporate.adroot.infra.ftgroup ([fe80::8924:188:2124:a046%19]) with mapi id 14.03.0301.000; Tue, 27 Sep 2016 11:44:02 +0200
From: <mohamed.boucadair@orange.com>
To: Ben Campbell <ben@nostrum.com>, The IESG <iesg@ietf.org>
Thread-Topic: Ben Campbell's No Objection on draft-ietf-softwire-unified-cpe-06: (with COMMENT)
Thread-Index: AQHSGEEWO1aIBvYR2UuyZP7j5uSmqqCNEaQA
Date: Tue, 27 Sep 2016 09:44:02 +0000
Message-ID: <787AE7BB302AE849A7480A190F8B933008E2085F@OPEXCLILMA3.corporate.adroot.infra.ftgroup>
References: <147492709451.4992.18088916849265763856.idtracker@ietfa.amsl.com>
In-Reply-To: <147492709451.4992.18088916849265763856.idtracker@ietfa.amsl.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.168.234.3]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/softwires/HPI9k2gSLb9AZ6GYX3K16dJvV7k>
Cc: "draft-ietf-softwire-unified-cpe@ietf.org" <draft-ietf-softwire-unified-cpe@ietf.org>, "softwires@ietf.org" <softwires@ietf.org>, "softwire-chairs@ietf.org" <softwire-chairs@ietf.org>, "cuiyong@tsinghua.edu.cn" <cuiyong@tsinghua.edu.cn>
Subject: Re: [Softwires] Ben Campbell's No Objection on draft-ietf-softwire-unified-cpe-06: (with COMMENT)
X-BeenThere: softwires@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: softwires wg discussion list <softwires.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/softwires>, <mailto:softwires-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/softwires/>
List-Post: <mailto:softwires@ietf.org>
List-Help: <mailto:softwires-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/softwires>, <mailto:softwires-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Sep 2016 09:44:07 -0000

Dear Ben, 

Thank you for the comments. 

Please see inline. 

Cheers,
Med

> -----Message d'origine-----
> De : Ben Campbell [mailto:ben@nostrum.com]
> Envoyé : lundi 26 septembre 2016 23:58
> À : The IESG
> Cc : draft-ietf-softwire-unified-cpe@ietf.org; Yong Cui; softwire-
> chairs@ietf.org; cuiyong@tsinghua.edu.cn; softwires@ietf.org
> Objet : Ben Campbell's No Objection on draft-ietf-softwire-unified-cpe-06:
> (with COMMENT)
> 
> Ben Campbell has entered the following ballot position for
> draft-ietf-softwire-unified-cpe-06: No Objection
> 
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
> 
> 
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about IESG DISCUSS and COMMENT positions.
> 
> 
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-softwire-unified-cpe/
> 
> 
> 
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> - Abstract and Title: Neither the Abstract or Title seem to describe the
> contents of the draft. It seems to be about prioritization among multiple
> s46 mechanisms. It might be worth mentioning that in the abstract. 

[Med] Mirja raised a similar comment. This will be updated.

(Also,
> the title header for pages 2+ does not match the title page title)

[Med] Thank you for catching this. Will be fixed.

> 
> - section 3: "This may lead to setting a different IPv4 service
>    continuity mechanism than the one initially preferred by the network
>    side"
> 
> Are there consequences of that that should be discussed? E.g. bid-down
> attacks, ability to direct packets via a compromised path, etc? (I'm not
> saying there are; I'm just asking.)
> 
[Med] We didn't include examples of such consequences because those attacks depend on the modification of other DHCPv6 options that are not defined in this document. For example, the ability to direct packets via a compromised path will require the modification of the content of DHCPv6 Option #64 or #90 to redirect packets to an illegitimate AFTR/BR. 

What about the following change: 

OLD: 

   Misbehaving intermediate nodes may alter the content of the S46
   Priority Option.  This may lead to setting a different IPv4 service
   continuity mechanism than the one initially preferred by the network
   side.

NEW:

   Misbehaving intermediate nodes may alter the content of the S46
   Priority Option.  This may lead to setting a different IPv4 service
   continuity mechanism than the one initially preferred by the network
   side. For example, a misbehaving node may alter the context of the S46
   Priority Option and other DHCPv6 options (e.g., DHCPv6 Option #64 or #90)
   so that the traffic is intercepted by an illegitimate node.