[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Changes in version 8 resulting from comments in: Re: Retransmission of I2 messages

To: Matthijs Mekking <matthijs@NLnetLabs.nl>
Subject: Changes in version 8 resulting from comments in: Re: Retransmission of I2 messages
From: marcelo bagnulo braun <marcelo@it.uc3m.es>
Date: Wed, 7 Mar 2007 19:35:39 +0100
Cc: shim6@psg.com
In-reply-to: <457D1E8F.1080809@NLnetLabs.nl>
References: <457D1E8F.1080809@NLnetLabs.nl>


El 11/12/2006, a las 10:02, Matthijs Mekking escribió:

Hi,

I have a question about the proto draft. In section 7.12, the draftsays

 "If the initiator does not receive an R2 message after I2_TIMEOUT time
after sending an I2 message it MAY retransmit the I2 message" and "Thus
the initiator SHOULD fall back to retransmitting the I1 message when
there is no R2 received after retransmitting the I2 message
I2_RETRIES_MAX times."

I am concerned about keywords MAY and SHOULD in section 7.12. If an
implementation decides not to implement these retransmissions, then

according to the protocol specification, the fall back toretransmitting

I1 messages would never occur (because this SHOULD happen after
I2_RETRIES_MAX retransmissions of I2). If the I2 is not accepted by the
responder, and no retransmissions are sent, than the context would stay
in I2-SENT, and is never able to reach ESTABLISHED.

I think the host MAY retransmit I2 messages, but MUST fall back after a
certain amount of time, to avoid this deadlock situation. The same
applies for retransmitting I2bis messages.


I have rephrased this section  in order to clarify this.

the section is now:

If the initiator does not receive an R2 message after I2_TIMEOUT
time after sending an I2 message it MAY retransmit the I2 message, using
binary exponential backoff and randomized timers.
The Responder Validator option might have

a limited lifetime, that is, the peer might reject Responder Validatoroptionsthat are older than VALIDATOR_MIN_LIFETIME to avoid replay attacks. Inthe case thatthe initiator decides not to retransmit I2 messages or in the case thatthe

initiator still does not recieve an R2 message after
retransmitting I2 messages I2_RETRIES_MAX times,
the initiator SHOULD retransmit the I1 message.

Hope this clarifies this issue

Thanks for the review,

regards, marcelo

Furthermore, last week I have sent an e-mail with questions about the

proto6 draft (http://ops.ietf.org/lists/shim6/msg01738.html). I wouldbe

very grateful if someone could answer them.

With kind regards,

Matthijs Mekking
matthijs@NLnetLabs.nl
NLnetLabs/Radboud University

Follow-Ups:
- Re: Changes in version 8 resulting from comments in: Re: Retransmission of I2 messages
  - From: Matthijs Mekking <matthijs@NLnetLabs.nl>

References:
- Retransmission of I2 messages
  - From: Matthijs Mekking <matthijs@NLnetLabs.nl>

Prev by Date: Changes in version 8 resulting from comments in: Re: questions about draft-ietf-shim6-proto-06.txt
Next by Date: Changes in version 8 resulting from comments in: Re: teardown of the ULID-pair context
Previous by thread: Re: Retransmission of I2 messages
Next by thread: Re: Changes in version 8 resulting from comments in: Re: Retransmission of I2 messages
Index(es):
- Date
- Thread