randy/draft-l3dl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

more secdir updates

Browse source
This commit is contained in:
Randy Bush 2025-03-27 13:31:29 -07:00
parent c67a751d13
commit 5b75cf0763
1 changed files with 86 additions and 72 deletions
Download patch file Download diff file Expand all files Collapse all files

158
draft-ietf-lsvr-l3dl.xml
View file

@ -10,14 +10,14 @@
<?rfc tocindent="yes"?> <?rfc tocindent="yes"?>
<?rfc tocompact="yes"?> <?rfc tocompact="yes"?>
<rfc consensus="yes" submissionType="IETF" category="exp" docName="draft-ietf-lsvr-l3dl-14" ipr="trust200902" version="2"> <rfc consensus="yes" submissionType="IETF" category="exp" docName="draft-ietf-lsvr-l3dl-15" ipr="trust200902" version="2">
<front> <front>
<title>Layer-3 Discovery and Liveness</title> <title>Layer-3 Discovery and Liveness</title>
<author fullname="Randy Bush" initials="R." surname="Bush"> <author fullname="Randy Bush" initials="R." surname="Bush">
<organization>Arrcus &amp; Internet Initiative Japan</organization> <organization>Arrcus &amp; IIJ Research Lab</organization>
<address> <address>
<postal> <postal>
<street>5147 Crystal Springs</street> <street>5147 Crystal Springs</street>
@ -448,7 +448,7 @@
congestion is not considered a sufficiently significant risk to congestion is not considered a sufficiently significant risk to
warrant additional complexity.</t> warrant additional complexity.</t>
<t>Should a PDU need to be retransmitted, it MUST BE sent as the <t>Should a PDU need to be retransmitted, it MUST be sent as the
identical Datagram set as the original transmission. The identical Datagram set as the original transmission. The
Transmission Sequence Number informs the receiver that it is the Transmission Sequence Number informs the receiver that it is the
same PDU.</t> same PDU.</t>
@ -483,7 +483,7 @@
<list style="hanging"> <list style="hanging">
<t hangText="Version:">Eight-bit Version number of the protocol, <t hangText="Version:">Eight-bit Version number of the protocol,
currently 0. Values other than 0 MUST BE treated as an error. currently 0. Values other than 0 MUST be treated as an error.
The protocol version needs to be in one and only one place, so it The protocol version needs to be in one and only one place, so it
is in the datagram as opposed to, for example, the PDU header.</t> is in the datagram as opposed to, for example, the PDU header.</t>
@ -514,7 +514,7 @@
bit flips, see <xref target="checksum"/>.</t> bit flips, see <xref target="checksum"/>.</t>
<t>If a Datagram fails checksum verification, the datagram is <t>If a Datagram fails checksum verification, the datagram is
invalid and SHOULD be silently discarded. The sender will invalid and MUST be silently discarded. The sender will
retransmit the PDU, and the receiver can assemble it.</t> retransmit the PDU, and the receiver can assemble it.</t>
<t hangText="Payload:">The PDU being transported or a fragment <t hangText="Payload:">The PDU being transported or a fragment
@ -609,7 +609,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
Datagrams, see <xref target="transport"/>.</t> Datagrams, see <xref target="transport"/>.</t>
<!-- <!--
protocol "PDU Type:8,Payload Length:32,Payload ...:24,Sig Type:8,Signature Length:16,Signature:40" protocol "PDU Type:8,Payload Length:32,Payload ...:24,Sig Algo:8,Signature Length:16,Signature:40"
--> -->
<figure> <figure>
@ -621,7 +621,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | Payload ... | ~ | Payload ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Sig Type | Signature Length | ~ | Sig Algo | Signature Length | ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +
~ Signature ~ ~ Signature ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -640,23 +640,23 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t hangText="Payload:">The application layer content of the L3DL <t hangText="Payload:">The application layer content of the L3DL
PDU.</t> PDU.</t>
<t hangText="Sig Type:">The type of the Signature, see <xref <t hangText="Sig Algo:">The type of the Signature, see <xref
target="iana-sigtype"/>. Type 0, a null signature, is defined in target="iana-sigtype"/>. Type 0, a null signature, is defined in
this document.</t> this document.</t>
<t>Sig Type 0 indicates a null Signature. For a trivial PDU such <t>Sig Algo 0 indicates a null Signature. For a trivial PDU such
as KEEPALIVE, the underlying Datagram checksum may be sufficient as KEEPALIVE, the underlying Datagram checksum may be sufficient
for integrity, though it lacks authenticity.</t> for integrity, though it lacks authenticity.</t>
<t>Other Sig Types may be defined in other documents, cf. <xref <t>Other Sig Algos may be defined in other documents, cf. <xref
target="I-D.ymbk-lsvr-l3dl-signing"/>.</t> target="I-D.ymbk-lsvr-l3dl-signing"/>.</t>
<t hangText="Signature Length:">The length of the Signature, <t hangText="Signature Length:">The length of the Signature,
possibly including padding, in octets. If Sig Type is 0, possibly including padding, in octets. If Sig Algo is 0,
Signature Length MUST BE 0.</t> Signature Length MUST be 0.</t>
<t hangText="Signature:">The result of running the signature <t hangText="Signature:">The result of running the signature
algorithm specified in Sig Type over all octets of the PDU except algorithm specified in Sig Algo over all octets of the PDU except
for the Signature itself.</t> for the Signature itself.</t>
</list></t> </list></t>
@ -773,7 +773,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
network noise and adjust the inter-HELLO timer accordingly.</t> network noise and adjust the inter-HELLO timer accordingly.</t>
<!-- <!--
protocol "PDU Type = 0:8,Payload Length = 0:32,Sig Type = 0:8,Signature Length = 0:16" protocol "PDU Type = 0:8,Payload Length = 0:32,Sig Algo = 0:8,Signature Length = 0:16"
--> -->
<figure> <figure>
@ -783,7 +783,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| PDU Type = 0 | Payload Length = 0 ~ | PDU Type = 0 | Payload Length = 0 ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | Sig Type = 0 | Signature Length = 0 | ~ | Sig Algo = 0 | Signature Length = 0 |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
</artwork> </artwork>
</figure> </figure>
@ -817,11 +817,11 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>Each device has learned the other's MAC Address from the HELLO <t>Each device has learned the other's MAC Address from the HELLO
exchange, see <xref target="hello"/>. Therefore the OPEN and all exchange, see <xref target="hello"/>. Therefore the OPEN and all
subsequent PDUs MUST BE unicast, as opposed to the HELLO's multicast subsequent PDUs MUST be unicast, as opposed to the HELLO's multicast
frame.</t> frame.</t>
<!-- <!--
protocol "PDU Type = 1:8,Payload Length:32,Nonce:32,LLEI Length:8,My LLEI:32,AttrCount:8,Attribute List ...:24,Auth Type:8,Key Length:16,Key ...:24,Serial Number:32,Sig Type:8,Signature Length:16,Signature ...:8" protocol "PDU Type = 1:8,Payload Length:32,Nonce:32,LLEI Length:8,My LLEI:32,AttrCount:8,Attribute List ...:24,Auth Type:8,Key Length:16,Key ...:24,Serial Number:32,Sig Algo:8,Signature Length:16,Signature ...:8"
--> -->
<figure> <figure>
@ -843,7 +843,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Serial Number | | Serial Number |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Sig Type | Signature Length | Signature ... | | Sig Algo | Signature Length | Signature ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
</artwork> </artwork>
</figure> </figure>
@ -876,11 +876,11 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>Key Length is a 16-bit field denoting the length in octets of the <t>Key Length is a 16-bit field denoting the length in octets of the
Key itself, not including the Auth Type or the Key Length. If the Key itself, not including the Auth Type or the Key Length. If the
Auth Type is zero, then the Key Length MUST also be zero, and there Auth Type is zero, then the Key Length MUST also be zero, and there
MUST BE no Key data.</t> MUST be no Key data.</t>
<t>The Key is specific to the operational environment. A failure to <t>The Key is specific to the operational environment. A failure to
authenticate is a failure to start the L3DL session, an ERROR PDU authenticate is a failure to start the L3DL session, an ERROR PDU
MUST BE sent (Error Code 3), and HELLOs MUST be restarted.</t> MUST be sent (Error Code 3), and HELLOs MUST be restarted.</t>
<t>Although delay and jitter in responding with an OPEN were <t>Although delay and jitter in responding with an OPEN were
specified above, beware of load created by long strings of specified above, beware of load created by long strings of
@ -914,6 +914,15 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
sent in the OPEN. If the sender is not trying to resume a dropped sent in the OPEN. If the sender is not trying to resume a dropped
session, the Serial Number MUST be zero.</t> session, the Serial Number MUST be zero.</t>
<t>To prevent downgrade attacks, in an OPEN PDU which is resuming a
session, the Signature Type MUST be either the same as that of the
previous successful OPEN or MAY be ugraded from TOFU to PKI (value
2), assuming a Certificate has been configured.</t>
<t>Similarly, to prevent downgrade attacks, an OPEN PDU which is
resuming a session, MUST use the same Auth Type as that of the
previously successful OPEN.</t>
<t>If the receiver of an OPEN PDU with a non-zero Serial Number can <t>If the receiver of an OPEN PDU with a non-zero Serial Number can
not resume from the requested point, it should return an ACK with an not resume from the requested point, it should return an ACK with an
Error Code of 2, Session could not be continued. The sender of the Error Code of 2, Session could not be continued. The sender of the
@ -935,15 +944,16 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
an unacknowledged OPEN PDU, like other ACKed PDUs, SHOULD use an unacknowledged OPEN PDU, like other ACKed PDUs, SHOULD use
exponential back-off, see <xref target="RFC1122"/>.</t> exponential back-off, see <xref target="RFC1122"/>.</t>
<t>If a properly authenticated OPEN arrives at L3DL speaker A with a <t>If a properly authenticated OPEN (see <xref
new Nonce from an LLEI, speaker B, with which A believes it already target="tofu-open-verifying"/> arrives at L3DL speaker A with a new
has an L3DL session (OPENs have already been exchanged), and the Nonce from an LLEI, speaker B, with which A believes it already has
Serial Number in the OPEN PDU is non-zero, speaker A SHOULD an L3DL session (OPENs have already been exchanged), and the Serial
establish a new sending session by sending an OPEN with the Serial Number in the OPEN PDU is non-zero, speaker A SHOULD establish a new
Number being the same as that of A's last sent and ACKed PDU. A sending session by sending an OPEN with the Serial Number being the
MUST resume sending encapsulations etc. subsequent to the requested same as that of A's last sent and ACKed PDU. A MUST resume sending
Sequence Number. And B MUST retain all previously discovered encapsulations etc. subsequent to the requested Sequence Number.
encapsulation and other data received from A.</t> And B MUST retain all previously discovered encapsulation and other
data received from A.</t>
<t>If a properly authenticated OPEN arrives with a new Nonce from an <t>If a properly authenticated OPEN arrives with a new Nonce from an
LLEI with which the receiving logical link endpoint believes it LLEI with which the receiving logical link endpoint believes it
@ -959,7 +969,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<section anchor="ack" title="ACK"> <section anchor="ack" title="ACK">
<!-- <!--
protocol "PDU Type = 3:8,Payload Length = 5:32,ACKed PDU:8,EType:4,Error Code:12,Error Hint:16,Sig Type:8,Signature Length:16,Signature ...:24" protocol "PDU Type = 3:8,Payload Length = 5:32,ACKed PDU:8,EType:4,Error Code:12,Error Hint:16,Sig Algo:8,Signature Length:16,Signature ...:24"
--> -->
<t>The ACK PDU acknowledges receipt of a PDU and reports any error <t>The ACK PDU acknowledges receipt of a PDU and reports any error
@ -974,7 +984,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | ACKed PDU | EType | Error Code | ~ | ACKed PDU | EType | Error Code |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Error Hint | Sig Type |Signature Leng.~ | Error Hint | Sig Algo |Signature Leng.~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | Signature ... | ~ | Signature ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -1073,7 +1083,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>The header for all encapsulation PDUs is as follows:</t> <t>The header for all encapsulation PDUs is as follows:</t>
<!-- <!--
protocol "PDU Type:8,Payload Length:32,Count:24,Serial Number:32,Encapsulation List...:24,Sig Type:8,Signature Length:16,Signature ...:16" protocol "PDU Type:8,Payload Length:32,Count:24,Serial Number:32,Encapsulation List...:24,Sig Algo:8,Signature Length:16,Signature ...:16"
--> -->
<figure> <figure>
@ -1087,7 +1097,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Serial Number | | Serial Number |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Encapsulation List... | Sig Type | | Encapsulation List... | Sig Algo |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Signature Length | Signature ... | | Signature Length | Signature ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -1187,7 +1197,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
interface's addresses and the corresponding prefix lengths.</t> interface's addresses and the corresponding prefix lengths.</t>
<!-- <!--
protocol "PDU Type = 4:8,Payload Length:32,Count:24,Serial Number:32,Encaps Flags:8,IPv4 Address:32,PrefixLen:8,more ...:8,Sig Type:8,Signature Length:16,Signature ...:16" protocol "PDU Type = 4:8,Payload Length:32,Count:24,Serial Number:32,Encaps Flags:8,IPv4 Address:32,PrefixLen:8,more ...:8,Sig Algo:8,Signature Length:16,Signature ...:16"
--> -->
<figure> <figure>
@ -1203,7 +1213,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Encaps Flags | IPv4 Address ~ | Encaps Flags | IPv4 Address ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | PrefixLen | more ... | Sig Type | ~ | PrefixLen | more ... | Sig Algo |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Signature Length | Signature ... | | Signature Length | Signature ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -1223,7 +1233,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
lengths.</t> lengths.</t>
<!-- <!--
protocol "PDU Type = 5:8,Payload Length:32,Count:24,Serial Number:32,Encaps Flags:8,IPv6 Address:128,PrefixLen:8,more ...:8,Sig Type:8,Signature Length:16,Signature ...:16" protocol "PDU Type = 5:8,Payload Length:32,Count:24,Serial Number:32,Encaps Flags:8,IPv6 Address:128,PrefixLen:8,more ...:8,Sig Algo:8,Signature Length:16,Signature ...:16"
--> -->
<figure> <figure>
@ -1245,7 +1255,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+ + + +
| IPv6 Address | | IPv6 Address |
+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| | PrefixLen | more ... | Sig Type | | | PrefixLen | more ... | Sig Algo |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Signature Length | Signature ... | | Signature Length | Signature ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -1294,7 +1304,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
each address.</t> each address.</t>
<!-- <!--
protocol "PDU Type = 6:8,Payload Length:32,Count:24,Serial Number:32,Encaps Flags:8,MPLS Label List ...:16,IPv4 Address:32,PrefixLen:8,more ...:8,Sig Type:8,Signature Length:16,Signature:32" protocol "PDU Type = 6:8,Payload Length:32,Count:24,Serial Number:32,Encaps Flags:8,MPLS Label List ...:16,IPv4 Address:32,PrefixLen:8,more ...:8,Sig Algo:8,Signature Length:16,Signature:32"
--> -->
<figure> <figure>
@ -1312,7 +1322,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ IPv4 Address | PrefixLen | ~ IPv4 Address | PrefixLen |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| more ... | Sig Type | Signature Length | | more ... | Sig Algo | Signature Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Signature | | Signature |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -1332,7 +1342,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
lengths, and the corresponding labels which will be accepted for lengths, and the corresponding labels which will be accepted for
each address.</t> each address.</t>
<!-- <!--
protocol "PDU Type = 7:8,Payload Length:32,Count:24,Serial Number:32,Encaps Flags:8,MPLS Label List ...:16,IPv6 Address:128,Prefix Len:8,more ...:8,Sig Type:8,Signature Length:16,Signature ...:32" protocol "PDU Type = 7:8,Payload Length:32,Count:24,Serial Number:32,Encaps Flags:8,MPLS Label List ...:16,IPv6 Address:128,Prefix Len:8,more ...:8,Sig Algo:8,Signature Length:16,Signature ...:32"
--> -->
<figure> <figure>
@ -1356,7 +1366,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+ +-+-+-+-+-+-+-+-+ + +-+-+-+-+-+-+-+-+
| | Prefix Len | | | Prefix Len |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| more ... | Sig Type | Signature Length | | more ... | Sig Algo | Signature Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Signature ... | | Signature ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -1377,7 +1387,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
PDU is defined as follows:</t> PDU is defined as follows:</t>
<!-- <!--
protocol "Type = 8:9,Payload Length:32,ULPC Type:8,AttrCount:8,Attribute List ...:24,Sig Type:8,Signature Len:16,Signature ...:24" protocol "Type = 8:9,Payload Length:32,ULPC Type:8,AttrCount:8,Attribute List ...:24,Sig Algo:8,Signature Len:16,Signature ...:24"
--> -->
<figure> <figure>
@ -1389,7 +1399,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | ULPC Type | AttrCount | ~ ~ | ULPC Type | AttrCount | ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ Attribute List ... | Sig Type | Signature Len ~ ~ Attribute List ... | Sig Algo | Signature Len ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | Signature ... | ~ | Signature ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -1473,7 +1483,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
Attribute may be used to signal preferences.</t> Attribute may be used to signal preferences.</t>
<t>If a peering address has been announced as a loopback, <t>If a peering address has been announced as a loopback,
i.e. MUST BE flagged as such in the L3DL Encapsulation PDU (see i.e. MUST be flagged as such in the L3DL Encapsulation PDU (see
<xref target="eflags"/>), a two or three hop <xref target="eflags"/>), a two or three hop
BGP session will be established. Otherwise a direct one hop BGP session will be established. Otherwise a direct one hop
session is used. The BGP session to a loopback will forward to session is used. The BGP session to a loopback will forward to
@ -1588,10 +1598,9 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>The BGP Authentication sub-TLV provides any authentication <t>The BGP Authentication sub-TLV provides any authentication
data needed to OPEN the BGP session. Depending on operator data needed to OPEN the BGP session. Depending on operator
configuration of the environment, it might be a simple MD5 key configuration of the environment, it might be a simple MD5 key
(see <xref target="RFC2385"/>), the name of a key chain in a (see <xref target="RFC2385"/>), or the name of a key chain in a
KARP database (see <xref target="RFC7210"/>), or one of multiple KARP database (see <xref target="RFC7210"/>), or data to support
Authentication sub-TLVs to support <xref other BGP authentication algorithms.</t>
target="RFC4808"/>.</t>
<!-- <!--
protocol "Attr Type = 4:8,Attr Len:8,BGP Authentication Data ...:48" protocol "Attr Type = 4:8,Attr Len:8,BGP Authentication Data ...:48"
@ -1656,7 +1665,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<section anchor="vendor" title="VENDOR - Vendor Extensions"> <section anchor="vendor" title="VENDOR - Vendor Extensions">
<!-- <!--
protocol "PDU Type = 255:8,Payload Length:32,Serial Number:32,Enterprise Number:24,Ent Type:8,Enterprise Data ...:32,Sig Type:8,Signature Length:16,Signature ...:32" protocol "PDU Type = 255:8,Payload Length:32,Serial Number:32,Enterprise Number:24,Ent Type:8,Enterprise Data ...:32,Sig Algo:8,Signature Length:16,Signature ...:32"
--> -->
<figure> <figure>
@ -1672,7 +1681,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Ent Type | Enterprise Data ... ~ | Ent Type | Enterprise Data ... ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | Sig Type | Signature Length | ~ | Sig Algo | Signature Length |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Signature ... | | Signature ... |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
@ -1696,7 +1705,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<section anchor="keepalive" title="KEEPALIVE - Layer-2 Liveness"> <section anchor="keepalive" title="KEEPALIVE - Layer-2 Liveness">
<!-- <!--
protocol "PDU Type = 2:8,Payload Length = 0:32,Sig Type = 0:8,Signature Length = 0:16" protocol "PDU Type = 2:8,Payload Length = 0:32,Sig Algo = 0:8,Signature Length = 0:16"
--> -->
<figure> <figure>
@ -1706,7 +1715,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| PDU Type = 2 | Payload Length = 0 ~ | PDU Type = 2 | Payload Length = 0 ~
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
~ | Sig Type = 0 | Signature Length = 0 | ~ | Sig Algo = 0 | Signature Length = 0 |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
</artwork> </artwork>
</figure> </figure>
@ -1716,7 +1725,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
configurable, with a default of ten seconds. A receiver may choose configurable, with a default of ten seconds. A receiver may choose
to ignore KEEPALIVE PDUs.</t> to ignore KEEPALIVE PDUs.</t>
<t>An operational deployment MUST BE configured whether to use <t>An operational deployment MUST be configured whether to use
KEEPALIVEs or not, either globally, or as finely as to per-link KEEPALIVEs or not, either globally, or as finely as to per-link
granularity. Disagreement MAY result in repeated session failure granularity. Disagreement MAY result in repeated session failure
and reestablishment.</t> and reestablishment.</t>
@ -1894,6 +1903,10 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
session. A mechanism for 'rolling' from the current public key session. A mechanism for 'rolling' from the current public key
to a fresh one is described in <xref target="roll"/>.</t> to a fresh one is described in <xref target="roll"/>.</t>
<t>While trust anchor maintenance is a bit beyond the scope of
this document, Section 4.4 of <xref target="RFC4210"/> may be
applicable. </t>
<section anchor="algo" title="Signature Algorithm Identifiers"> <section anchor="algo" title="Signature Algorithm Identifiers">
<t>To avoid the creation of yet another IANA registry for <t>To avoid the creation of yet another IANA registry for
@ -1971,11 +1984,11 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t> <t>
Verify that the PDU is syntactically correct, and extract Verify that the PDU is syntactically correct, and extract
the Auth Type, Key, Sig Type, and Signature fields. the Auth Type, Key, Sig Algo, and Signature fields.
</t> </t>
<t> <t>
Verify that Auth Type and Sig Type refer to the same Verify that Auth Type and Sig Algo refer to the same
algorithm suite, and that said algorithm suite is one that algorithm suite, and that said algorithm suite is one that
the implementation understands. the implementation understands.
</t> </t>
@ -2029,11 +2042,11 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t> <t>
Verify that the PDU is syntactically correct, and extract Verify that the PDU is syntactically correct, and extract
the Sig Type and Signature fields. the Sig Algo and Signature fields.
</t> </t>
<t> <t>
Verify that Sig Type refers to the same algorithm suite as Verify that Sig Algo refers to the same algorithm suite as
the Auth Type recorded during verification of the OPEN PDU. the Auth Type recorded during verification of the OPEN PDU.
</t> </t>
@ -2188,7 +2201,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
also signs the new public key to create a new L3DL certificate.</t> also signs the new public key to create a new L3DL certificate.</t>
<!-- <!--
protocol "Type = 8:8,Payload Length:16,New Key Algor:8,New Key Length:16,New Key ...:32,New Cert Length:16,New Certificate ...:32,Old Sig Type:8,Old Signature Length:16,Old Signature ...:40" protocol "Type = 8:8,Payload Length:16,New Key Algor:8,New Key Length:16,New Key ...:32,New Cert Length:16,New Certificate ...:32,Old Sig Algo:8,Old Signature Length:16,Old Signature ...:40"
--> -->
<figure> <figure>
@ -2308,15 +2321,16 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
session being alive.</t> session being alive.</t>
<t>As the ULPC PDU may contain keying material, see <xref <t>As the ULPC PDU may contain keying material, see <xref
target="bgpmd5"/>, it SHOULD BE signed.</t> target="bgpmd5"/>, it MUST be signed.</t>
<t>Any keying material in the PDU SHOULD BE salted and hashed.</t> <t>Any keying material in the PDU SHOULD BE salted and hashed.</t>
<t>The BGP Authentication sub-TLV provides for provisioning MD5, <t>The BGP Authentication sub-TLV provides describes provisioning
which is a quite weak hash, horribly out of fashion, and kills MD5, which is a quite weak hash, horribly out of fashion, and kills
puppies. But, like it or not, it has been sufficient against the puppies. But, like it or not, it has been sufficient against the
kinds of attacks BGP TCP sessions have endured. So it is what BGP kinds of attacks BGP TCP sessions have endured. So it is what BGP
deployments use.</t> deployments use. The BGP Authentication sub-TLV is actually
algorithm agnostic; so other/better alorithms are encouraged.</t>
<t>The TOFU method requires a leap of faith to accept the key in the <t>The TOFU method requires a leap of faith to accept the key in the
OPEN PDU, as it can not be verified against any authority. Hence it OPEN PDU, as it can not be verified against any authority. Hence it
@ -2337,8 +2351,8 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
one draws the line between rigidity, flexibility, and security one draws the line between rigidity, flexibility, and security
varies.</t> varies.</t>
<t>The REKEY PDU is open to abuse to create a signature algorithm <t>The NEWKEY PDU is open to abuse to create a signature algorithm
downgrade attack.</t> or Auth Type downgrade attack.</t>
<t>If L3DL is used in a WAN deployment, as opposed to tightly <t>If L3DL is used in a WAN deployment, as opposed to tightly
controlled data center, the use SHOULD be restricted to iBGP peers controlled data center, the use SHOULD be restricted to iBGP peers
@ -2355,7 +2369,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>This document requests the IANA create a registry for L3DL PDU <t>This document requests the IANA create a registry for L3DL PDU
Type, which may range from 0 to 255. The name of the registry Type, which may range from 0 to 255. The name of the registry
should be L3DL-PDU-Type. The policy for adding to the registry is should be L3DL-PDU-Type. The policy for adding to the registry is
RFC Required per <xref target="RFC5226"/>, either standards track or RFC Required per <xref target="RFC8126"/>, either standards track or
experimental. The initial entries should be the following:</t> experimental. The initial entries should be the following:</t>
<figure> <figure>
<artwork> <artwork>
@ -2384,7 +2398,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>This document requests the IANA create a registry for L3DL ULPC <t>This document requests the IANA create a registry for L3DL ULPC
Type, which may range from 0 to 255. The name of the registry Type, which may range from 0 to 255. The name of the registry
should be L3DL-ULPC-Type. The policy for adding to the registry is should be L3DL-ULPC-Type. The policy for adding to the registry is
RFC Required per <xref target="RFC5226"/>, either standards track or RFC Required per <xref target="RFC8126"/>, either standards track or
experimental. The initial entries should be the following:</t> experimental. The initial entries should be the following:</t>
<figure> <figure>
<artwork> <artwork>
@ -2401,9 +2415,9 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<section anchor="iana-sigtype" title="Signature Type"> <section anchor="iana-sigtype" title="Signature Type">
<t>This document requests the IANA create a registry for L3DL <t>This document requests the IANA create a registry for L3DL
Signature Type, AKA Sig Type, which may range from 0 to 255. The Signature Type, AKA Sig Algo, which may range from 0 to 255. The
name of the registry should be L3DL-Signature-Type. The policy for name of the registry should be L3DL-Signature-Type. The policy for
adding to the registry is RFC Required per <xref target="RFC5226"/>, adding to the registry is RFC Required per <xref target="RFC8126"/>,
either standards track or experimental. The initial entries should either standards track or experimental. The initial entries should
be the following:</t> be the following:</t>
<figure> <figure>
@ -2424,7 +2438,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>This document requests the IANA create a registry for L3DL PL <t>This document requests the IANA create a registry for L3DL PL
Flag Bits, which may range from 0 to 7. The name of the registry Flag Bits, which may range from 0 to 7. The name of the registry
should be L3DL-PL-Flag-Bits. The policy for adding to the registry is should be L3DL-PL-Flag-Bits. The policy for adding to the registry is
RFC Required per <xref target="RFC5226"/>, either standards track or RFC Required per <xref target="RFC8126"/>, either standards track or
experimental. The initial entries should be the following:</t> experimental. The initial entries should be the following:</t>
<figure> <figure>
<artwork> <artwork>
@ -2445,7 +2459,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<t>This document requests the IANA create a registry for L3DL Error <t>This document requests the IANA create a registry for L3DL Error
Codes, a 16 bit integer. The name of the registry should be Codes, a 16 bit integer. The name of the registry should be
L3DL-Error-Codes. The policy for adding to the registry is RFC L3DL-Error-Codes. The policy for adding to the registry is RFC
Required per <xref target="RFC5226"/>, either standards track or Required per <xref target="RFC8126"/>, either standards track or
experimental. The initial entries should be the following:</t> experimental. The initial entries should be the following:</t>
<figure> <figure>
<artwork> <artwork>
@ -2500,10 +2514,10 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<?rfc include="reference.RFC.4760.xml"?> <?rfc include="reference.RFC.4760.xml"?>
<?rfc include="reference.I-D.ietf-lsvr-bgp-spf.xml"?> <?rfc include="reference.I-D.ietf-lsvr-bgp-spf.xml"?>
<?rfc include="reference.RFC.5082.xml"?> <?rfc include="reference.RFC.5082.xml"?>
<?rfc include="reference.RFC.5226.xml"?>
<?rfc include="reference.RFC.5880.xml"?> <?rfc include="reference.RFC.5880.xml"?>
<?rfc include="reference.RFC.6286.xml"?> <?rfc include="reference.RFC.6286.xml"?>
<?rfc include="reference.RFC.9552.xml"?> <?rfc include="reference.RFC.9552.xml"?>
<?rfc include="reference.RFC.8126.xml"?>
<?rfc include="reference.RFC.8174.xml"?> <?rfc include="reference.RFC.8174.xml"?>
<?rfc include="reference.I-D.ietf-idr-bgpls-segment-routing-epe.xml"?> <?rfc include="reference.I-D.ietf-idr-bgpls-segment-routing-epe.xml"?>
<?rfc include="reference.I-D.ietf-idr-bgp-ls-segment-routing-ext.xml"?> <?rfc include="reference.I-D.ietf-idr-bgp-ls-segment-routing-ext.xml"?>
@ -2553,7 +2567,7 @@ uint32_t sbox_checksum_32(const uint8_t *b, const size_t n)
<?rfc include="reference.RFC.1122.xml"?> <?rfc include="reference.RFC.1122.xml"?>
<?rfc include="reference.RFC.1982.xml"?> <?rfc include="reference.RFC.1982.xml"?>
<?rfc include="reference.RFC.2385.xml"?> <?rfc include="reference.RFC.2385.xml"?>
<?rfc include="reference.RFC.4808.xml"?> <?rfc include="reference.RFC.4210.xml"?>
<?rfc include="reference.RFC.5280.xml"?> <?rfc include="reference.RFC.5280.xml"?>
<?rfc include="reference.RFC.7210.xml"?> <?rfc include="reference.RFC.7210.xml"?>
<?rfc include="reference.I-D.malhotra-bess-evpn-lsoe.xml"?> <?rfc include="reference.I-D.malhotra-bess-evpn-lsoe.xml"?>