<div><div><div dir="auto">Dear Lou,</div></div><div dir="auto"><br></div><div dir="auto">I have some follow up questions:</div><div dir="auto"><br></div><div dir="auto">- when was this bug introduced?</div><div dir="auto"><br></div><div dir="auto">- why is the session flapping at all? Doesn’t RFC 7606 suggest to handle such instances in a more graceful way, aka “treat-as-withdraw” rather than destroy the world and kill the session? Or perhaps rfc 5512 section 6 is of relevance too.</div><div dir="auto"><br></div><div dir="auto">- what timeline do you propose? Right now these quagga deployments are obstructing legitimate research (the experiment isn’t about finding broken BGP implementations).</div><div dir="auto"><br></div><div dir="auto">Kind regards,</div><div dir="auto"><br></div><div dir="auto">Job</div></div><div><div><br><div class="gmail_quote"><div dir="ltr">On Tue, Jan 8, 2019 at 11:31 Lou Berger <<a href="mailto:lberger@labn.net" target="_blank">lberger@labn.net</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">To add some more detail here. The root cause of the this issue was the <br>
use of a BGP attribute reserved for development in the VNC code[1]. The <br>
original intent was to disable use of this attribute by VNC[1] and FRR <br>
in production, but this didn't happen. My apologies for this. A proper <br>
fix has been submitted for all active releases and is undergoing <br>
testing. For those who are interested, release specific PRs can be <br>
found at [3].<br>
<br>
Lou<br>
<br>
[3] <a href="https://github.com/FRRouting/frr/pulls" rel="noreferrer" target="_blank">https://github.com/FRRouting/frr/pulls</a><br>
<br>
On 1/7/2019 1:31 PM, Quentin Young wrote:<br>
> Hello operators,<br>
><br>
> This morning some users running FRR BGP noticed that their sessions were<br>
> flapping. Investigation revealed that this was caused by an experiment being<br>
> run by SwiNOG [0] which was triggering an undesired code path in FRR.<br>
> Specifically, FRR uses attribute type 0xFF as the attribute code for VNC [1].<br>
> This code was intended to be turned off by default, but our current published<br>
> builds [2] have it turned on. Consequently, bgpd attempts to parse the received<br>
> attribute as a VNC attribute and fails, triggering a session reset.<br>
><br>
> We have a patch in testing now and expect to have new build artifacts published<br>
> shortly. Additionally, we have contacted the experiment operators and requested<br>
> a pause in the experiment while we handle this issue.<br>
><br>
> Thank you to the operators that notified us this morning!<br>
><br>
> - FRR maintainer team<br>
><br>
> [0] <a href="http://lists.swinog.ch/public/swinog/2018-December/007110.html" rel="noreferrer" target="_blank">http://lists.swinog.ch/public/swinog/2018-December/007110.html</a><br>
> [1] <a href="http://docs.frrouting.org/en/latest/vnc.html" rel="noreferrer" target="_blank">http://docs.frrouting.org/en/latest/vnc.html</a><br>
> [2] <a href="https://github.com/FRRouting/frr/releases" rel="noreferrer" target="_blank">https://github.com/FRRouting/frr/releases</a><br>
> _______________________________________________<br>
> frog mailing list<br>
> <a href="mailto:frog@lists.frrouting.org" target="_blank">frog@lists.frrouting.org</a><br>
> <a href="https://lists.frrouting.org/listinfo/frog" rel="noreferrer" target="_blank">https://lists.frrouting.org/listinfo/frog</a><br>
<br>
_______________________________________________<br>
frog mailing list<br>
<a href="mailto:frog@lists.frrouting.org" target="_blank">frog@lists.frrouting.org</a><br>
<a href="https://lists.frrouting.org/listinfo/frog" rel="noreferrer" target="_blank">https://lists.frrouting.org/listinfo/frog</a><br>
</blockquote></div></div>
</div>