[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AH and mutable fields, how deep to look?

To: msa@burp.tkv.asdf.org
Subject: Re: AH and mutable fields, how deep to look?
From: itojun@itojun.org (Jun-ichiro itojun Hagino)
Date: Fri, 12 Dec 2003 11:28:10 +0900 (JST)
Cc: kent@bbn.com, ipsec@lists.tislabs.com
In-reply-to: Your message of "Thu, 11 Dec 2003 11:52:05 +0200"<200312110952.hBB9q5Qo019991@burp.tkv.asdf.org>
References: <200312110952.hBB9q5Qo019991@burp.tkv.asdf.org>
Sender: owner-ipsec@lists.tislabs.com

> To make it clear, perhaps change the graphics into (not too happy with
> this, but):
> 
>       ------------------------------------------------------------
> IPv6  |             |hop-by-hop, dest*, |    | dest |     |      |
>       |orig IP hdr  |routing, fragment. | AH | opt* | TCP | Data |
>       ------------------------------------------------------------
>       |<-- mutable fields processing -->/////<--immutable------->|
>       |<---- authenticated except for mutable fields ----------->|

	this is important, when implementing multiple AH on a packet
	(crazy example but possible, and we had interop problem in Connectathon
	between KAME and Solaris)

itojun

Follow-Ups:
- Re: AH and mutable fields, how deep to look?
  - From: Stephen Kent <kent@bbn.com>

References:
- Re: AH and mutable fields, how deep to look?
  - From: Markku Savela <msa@burp.tkv.asdf.org>

Prev by Date: Re: AH and mutable fields, how deep to look?
Next by Date: Re: AH and mutable fields, how deep to look?
Previous by thread: Re: AH and mutable fields, how deep to look?
Next by thread: Re: AH and mutable fields, how deep to look?
Index(es):
- Date
- Thread