[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: RADIUS Design Guidelines

To: <radiusext@ops.ietf.org>
Subject: RE: RADIUS Design Guidelines
From: "Nelson, David" <dnelson@enterasys.com>
Date: Mon, 28 Aug 2006 15:35:26 -0400
In-reply-to: <20060828191422.GA21726@pit.databus.com>

Barney Wolff writes...

> Let me try it again:  What's wrong with using the special value of 0
for
> extended-type to indicate that this extended attribute is a
continuation
> of the previous one?  That way, extra logic is only exercised when
needed.

OK. Let's be a little more specific here.  I think what we are
discussing is the following format:

      0                   1                   2                   3
      0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
     |     Type      |  Length       |            Vendor-Id
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
         Vendor-Id (cont)            | Extended type |    Length2    |
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
     |      Tag      |     Data (Value)...
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-

I think that we have proposed that the Extended Attribute VSA (EA-VSA),
i.e. the VSA with a Vendor-Id = IETF, may contain multiple instances of
an Extended Attribute -- maybe we should call this an Encapsulated
Extended Attribute (EEA) to distinguish it from the EA-VSA wrapper.  For
example:

      0                   1                   2                   3
      0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
     |     Type      |  Length       |            Vendor-Id
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
         Vendor-Id (cont)            | Extended type |    Length2    |
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
     |      Tag      |     Data (Value)...
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
     | Extended type |    Length2    |      Tag      |  Data (Value)...
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
     |      Data  (cont) ...
     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-

In this example, if *second* instance of "Extended type" were zero,
would the value (data) portion of the second EEA be a continuation of
the first EEA in this EA, or would it possibly be a continuation of as
EEA in some other EA?

I think that this can get very complicated if we allow (a) tagging for
data structuring, and (b) multiple extended attributes in a single VSA,
and (c) a continuation "marker" of whatever sort.

Could you please restate you proposal for a "zero" EEA-type as
continuation flag, given this discussion?  I'm trying to be sure that
I'm not confused.
 
> Pardon me for grumbling, but it was specifically to avoid this sort of
> debate that some of us suggested we adopt the Diameter attribute
header.

Well, yeah, but that's not where the WG consensus came down.  Folks in
the WG wanted something much simpler.  We're just trying to nail down
all the corner conditions and figure out which ones we need to address,
and which we can simply declare off limits.


--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Re: RADIUS Design Guidelines
  - From: Barney Wolff <barney@databus.com>

References:
- Re: RADIUS Design Guidelines
  - From: Barney Wolff <barney@databus.com>

Prev by Date: Re: RADIUS Design Guidelines
Next by Date: Re: RADIUS Design Guidelines
Previous by thread: Re: RADIUS Design Guidelines
Next by thread: Re: RADIUS Design Guidelines
Index(es):
- Date
- Thread