From e78fbf4d099d4d1b27816a7fe81ace3b51f7d49f Mon Sep 17 00:00:00 2001 From: Basil Guo Date: Wed, 12 Feb 2025 10:00:52 +0800 Subject: [PATCH] Update draft-guo-fc-profile.md --- draft-guo-fc-profile.md | 48 ++++++----------------------------------- 1 file changed, 7 insertions(+), 41 deletions(-) diff --git a/draft-guo-fc-profile.md b/draft-guo-fc-profile.md index 9e31423..f63a0cd 100644 --- a/draft-guo-fc-profile.md +++ b/draft-guo-fc-profile.md @@ -83,6 +83,7 @@ informative: RFC4271: RFC6480: RFC7908: + RFC9582: # A Profile for Route Origin Authorizations (ROAs) --- abstract @@ -149,26 +150,12 @@ ct-FC CONTENT-TYPE ::= ForwardingCommitmentAttestation ::= SEQUENCE { version [0] INTEGER DEFAULT 0, asid ASID, - previousASes SEQUENCE (SIZE(1..N)) OF ASID, - nexthopASes SEQUENCE (SIZE(1..N)) OF ASID, - prefixes SEQUENCE (SIZE(0..N)) OF Prefix, - fc ForwardingCommitment } + previousASes SEQUENCE (SIZE(1..MAX)) OF ASID, + nexthopASes SEQUENCE (SIZE(1..MAX)) OF ASID, + roaASes SEQUENCE (SIZE(0..MAX)) OF ASID } ASID ::= INTEGER (0..4294967295) -Prefix ::= SEQUENCE { - afi AFI, - address IPAddress, - prefixLength INTEGER (SIZE(0..128)} - -AFI ::= OCTET STRING (SIZE(2)) - -IPAddress ::= BIT STRING (SIZE(0..128)) - -ForwardingCommitment ::= SEQUENCE { - id BIT STRING - signature BIT STRING } - END ~~~~~~ {: #fig-eContentFC title="eContent of FC signed object"} @@ -191,33 +178,12 @@ The previousASes field contains the upstream ASes' number of the issuer AS that The nexthopASes field contains the downstream ASes' number of the issuer AS that can receive advertised routes from the issuer AS. -## Type Prefix - -Within the Prefix structure, the prefixes field encodes the set of IP address prefixes announced by the issuer AS in AS_PATH. The prefixes field can be blank which means that all traffic received from upstream ASes defined in previousASes field could be advertised to downstream ASes defined in nexthopASes field. - -### Element afi - -Within the Prefix structure, afi contains the Address Family Identifier of an IP address family. This specification only supports IPv4 and IPv6. Therefore, afi MUST be either 0001 or 0002. +## roaASes -### Element address +The roaASes field contains a set of ASes. It associates with ROAs {{RFC9582}}. -The address field contains the IP address. - -### Element prefixLength - -The prefixLength field contains the length of the IP address prefix. - -## Type ForwardingCommitment - -Within the ForwardingCommitment structure, the fc field encodes the forwarding commitment generated by this AS and will be validated by other AS. - -### Element id - -The id field contains the hash of the current AS-path in the associated BGP-UPDATE plus the next hop AS and above prefix filed. - -### Element signature +Within the Prefix structure, the prefixes field encodes the set of IP address prefixes announced by the issuer AS in AS_PATH. The prefixes field can be blank which means that all traffic received from upstream ASes defined in previousASes field could be advertised to downstream ASes defined in nexthopASes field. -The signature field is a signature signed by the BGP speaker who issues this FC. # FC Validation