randy/draft-8210bis
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

reworked negotiation and added renegotiation requires tear-down

Browse source
This commit is contained in:
Randy Bush 2024-01-10 19:43:10 -08:00
parent f812c253dc
commit f60f7a55ed
1 changed files with 31 additions and 59 deletions
Download patch file Download diff file Expand all files Collapse all files

90
draft-ietf-sidrops-8210bis.xml
View file

@ -1188,74 +1188,37 @@
and the session is considered open. and the session is considered open.
</t> </t>
<t> <t>
If a cache which supports version N receives a query with If a cache which supports version C receives a query with
Protocol Version Q &lt; N, and the cache does not support Protocol Version Q &lt; C, and the cache does not support
versions &lt;= Q, the cache MUST send an Error Report (<xref versions &lt;= Q, the cache MUST send an Error Report (<xref
target="error"/>) with Protocol Version N and Error Code 4 target="error"/>) with Protocol Version C and Error Code 4
("Unsupported Protocol Version") and disconnect the transport ("Unsupported Protocol Version") and disconnect the transport,
session. as negotiation is hopeless.
</t> </t>
<t> <t>
If a cache which supports version N receives a query with If a cache which supports version C receives a query with
Protocol Version Q &lt; N, the cache MUST downgrade to protocol Protocol Version Q &lt; C, and the ache can support version Q,
version Q, <xref target="RFC6810"/> or <xref target="RFC8210"/>, the cache MUST downgrade to protocol version Q, <xref
and respond with a Cache Response (<xref target="RFC6810"/> or <xref target="RFC8210"/>, and respond with
target="cacheresponse"/>) of that Protocol Version and the a Cache Response (<xref target="cacheresponse"/>) of that
session is considered open. Protocol Version, Q, and the RPKI-Rtr session is considered
open.
</t> </t>
<t> <t>
If the router query has version Q > N, the cache MUST send an If the the cache which supports C as its highest verion receives
Error Report (<xref target="error"/>) with Protocol Version a query of version Q &gt; C, the cache MUST send an Error Report
N and Error Code 4 ("Unsupported Protocol Version"), and the with Protocol Version C and Error Code 4. The router SHOULD
router SHOULD send another query with a Protocol Version Q of send another query with a Protocol Version Q with Q == the
the version N in the Error Report, unless it has already version C in the Error Report; unless it has already failed at
failed at that version. This MAY repeat with the router that version, which indicates a fatal error in programming of
attempting to negotiate lower and lower versions until they the cache which SHOULD result in transport termination.
agree.
</t> </t>
<t> <t>
If the router requests Q == 0 and it still fails with the cache If the router requests Q == 0 and it still fails with the cache
sending an Error Report (<xref target="error"/>) with Error Code responding with an Error Report with Error Code 4, then the
4 ("Unsupported Protocol Version"), then the router MUST abort router MUST abort the transport connection, as negotiation is
the transport connection. hopeless.
</t> </t>
<!--
<t>
A router MUST start each transport connection by issuing either a
Reset Query or a Serial Query. This query MUST tell the cache
the highest version of this protocol the router implements.
</t>
<t>
If a cache which supports version N receives a Reset Query with
Version Q &lt; N, the cache MUST downgrade to protocol version Q
<xref target="RFC6810"/> or <xref target="RFC8210"/>. If the
router's Reset Request was Q &gt; N, the cache MUST send a
version 2 Error Report PDU with Error Code 4 ("Unsupported
Protocol Version"), and the router MUST send another Reset Query
with a lower Version Q. This MAY repeat. If the router
requests Q == 0 and it still fails, then the router MUST abort
the session, sending a version 2 Error Report PDU with Error
Code 4 ("Unsupported Protocol Version").
</t>
<t>
If a router which supports version N sends a query to a cache
which only supports version C &lt; N, one of two things will
happen:
<list style="numbers">
<t>
The cache may terminate the connection, perhaps with a
version 2 Error Report PDU with Error Code 4 ("Unsupported
Protocol Version"). In this case, the router MAY retry the
connection using protocol version C.
</t>
<t>
The cache may reply with a version C response. In this
case, the router MUST either downgrade to version C or
terminate the connection.
</t>
</list>
</t>
-->
<t> <t>
In any of the downgraded combinations above, the new features of In any of the downgraded combinations above, the new features of
the higher version will not be available, and all PDUs MUST have the higher version will not be available, and all PDUs MUST have
@ -1295,6 +1258,15 @@
discussion of the interaction between Protocol Version and discussion of the interaction between Protocol Version and
Session ID. Session ID.
</t> </t>
<t>
The configured transport security, the negotiated RPKI-Rtr
version, etc. may not be changed once a session has been
established. If one side or the other wishes to try a different
transport, protocol version, etc. they MUST terminate the
transport and restart the entire transport and version
negotiation process, <xref target="Transport"/> and <xref
target="version"/>.
</t>
<t> <t>
If either party receives a PDU for a different Protocol If either party receives a PDU for a different Protocol
Version once the above negotiation completes, that party MUST Version once the above negotiation completes, that party MUST