From 4179601bf0283aca27938d5a5899c484fd3ae217 Mon Sep 17 00:00:00 2001 From: Randy Bush Date: Thu, 5 Jun 2025 16:24:19 -0700 Subject: [PATCH] edits from Luigi Iannone review --- draft-ietf-sidrops-8210bis.xml | 48 ++++++++++++++++++---------------- 1 file changed, 25 insertions(+), 23 deletions(-) diff --git a/draft-ietf-sidrops-8210bis.xml b/draft-ietf-sidrops-8210bis.xml index 0e709be..077f954 100644 --- a/draft-ietf-sidrops-8210bis.xml +++ b/draft-ietf-sidrops-8210bis.xml @@ -8,7 +8,7 @@ - @@ -1517,7 +1517,7 @@ Cache Router Caches and routers MAY use Transport Layer Security (TLS) transport using port rpki-rtr-tls (324); see . Conformance to modern cipher suites is REQUIRED. + target="BCP195"/> modern cipher suites is REQUIRED. @@ -1747,9 +1747,9 @@ Cache Router described. - describes an optional but RECOMMENDED - ordering of all PDUs which allows mitigation of the race - conditions described in . + describes a RECOMMENDED ordering of all + PDUs which allows mitigation of the race conditions described in + . describes how a router MAY process @@ -1759,7 +1759,7 @@ Cache Router
- When a cache is sending ROA (IPv4 or IPv6) VRPs to a router + When a cache is sending ROA (IPv4 or IPv6) VRPs to a router, undesirable race conditions are possible: @@ -1804,27 +1804,29 @@ Cache Router exceptions in above, ordering MUST be, as follows: - - +
    +
  1. PDUs are first ordered by PDU Type, - - +
    2. +
  2. IPv4 and IPv6 Prefix VRPs are ordered by: first IPvX Prefix, - second Prefix Length, third Max Length, and fourth Autonomous - System Number. Treating announcements of VPUs with AS 0 as - sorting last, and withdrawals as sorting first, fulfills the "AS - 0" requirement of . Treating - announcements of sub-prefixes as sorting first fulfills the - "Longest Prefix Match" requirement of . - - + second Prefix Length (largest value first for announcements, + lowest value first for withdrawals), third Max Length, and + fourth Autonomous System Number. Treating announcements of + VPUs with AS 0 as sorting last, and withdrawals as sorting + first, fulfills the "AS 0" requirement of . Treating announcements of sub-prefixes as + sorting first fulfills the "Longest Prefix Match" + requirement of . +
    3. +
  3. Router Key PDUs are ordered by AS Number and then Subject Public Key Info. - - +
    4. +
  4. And ASPA PDUs ordered by Customer AS. - - +
    5. +
Unless specifically configured for a particular cache, a router MUST NOT depend on payload PDU ordering. @@ -2139,12 +2141,12 @@ Cache Router - +