NAME

CN-2-3-11 - Receiving BU - Invalid Binding Authorization Data option

TARGET

Host

TOPOLOGY

       HA----------R2----------R1----------R0
       |           |           |           |
       |           |           |           |
       |----       |----       |----MN     |----CN(NUT)
       |           |           |           |
       |           |           |           |
   Home Link     Link2       Link1       Link0
               (Foreign)   (Foreign)
Link0 3ffe:501:ffff:100::/64  
Link1 3ffe:501:ffff:101::/64 Foreign Link
Link2 3ffe:501:ffff:102::/64 Foreign Link 2
Home Link 3ffe:501:ffff:104::/64 Home Link
CN(NUT) 3ffe:501:ffff:100::X
Auto Configuration (InterfaceID)		  
MN(in Link1) 3ffe:501:ffff:101::Y
Increased in each test (InterfaceID)		 MN care-of address
MN(in Home Link) 3ffe:501:ffff:104::Y
Increased in each test (InterfaceID)		 MN home address
R0(Link0) 3ffe:501:ffff:100::1  
R1(Link1) 3ffe:501:ffff:101::1  
R2(Link2) 3ffe:501:ffff:102::1  
HA(Home Link) 3ffe:501:ffff:104::1  

INITIALIZATION



Reboot NUT (reboot.rmt)










TEST PROCEDURE


       MN      R1      HA      R0     CN(NUT) 
        |       |       |       |       |
        |       |       |       |------>| 1.RA
        |       |       |       |       |
        |       |       |       |------>| 2.NS
        |       |       |       |       |
        |       |       |       |<------| 3.NA
        |       |       |       |       |
        |-------------->|-------------->| 4.Echo Request
        |       |       |       |       |
        |<--------------|<--------------| 5.Echo Reply
        |       |       |       |       |
        |------------------------------>| 6.Echo Request(Home Address option)
        |       |       |       |       |
        |<------------------------------| 7.BE(Status=1)
        |       |       |       |       |
        |------------------------------>| 8.CoTI
        |       |       |       |       |
        |-------------->|-------------->| 9.HoTI
        |       |       |       |       |
        |<------------------------------| 10.CoT
        |       |       |       |       |
        |<--------------|<--------------| 11.HoT
        |       |       |       |       |
        |------------------------------>| 12.BU(Not include Binding Authorization Data option)
        |       |       |       |       |
        |       |       |       |       | (*1)
        |       |       |       |       |
        |------------------------------>| 13.BU(8 octets of padding after Binding Authorization Data option)
        |       |       |       |       |
        |       |       |       |       | (*2)
        |       |       |       |       |
        |------------------------------>| 14.BU(Invalid Authenticator)
        |       |       |       |       |
        |       |       |       |       | (*3)
        |       |       |       |       |
        |------------------------------>| 15.Echo Request(Home Address option)
        |       |       |       |       |
        |<------------------------------| 16.BE(Status=1) (*4)
        |       |       |       |       |



1. Send Router Advertisement.
2. Send Neighbor Solicitation.
3. Receive Neighbor Advertisement.
4. Send ICMP Echo Request.
5. Receive ICMP Echo Reply.
6. Send ICMP Echo Request(Home Address option).
7. Receive Binding Error(Status=1).
8. Send Care-of Test Init
9. Send Home Test Init
10. Receive Care-of Test.
11. Receive Home Test.
12. Send Binding Update(Not include Binding Authorization Data option).
   *Expire BA timer.
13. Send Binding Update(8 octets of padding after Binding Authorization Data option).
   *Expire BA timer.
14. Send Binding Update(Invalid Authenticator).
   *Expire BA timer.
15. Send ICMP Echo Request(Home Address option).
16. Receive Binding Error(Status=1).



Packet Format
12. Binding Update
      IPv6 header
      Destination Options header
         Home Address option
      Mobility header
         Binding Update
            Nonce Indices option
13. Binding Update
      IPv6 header
      Destination Options header
         Home Address option
      Mobility header
         Binding Update
            Nonce Indices option
            Binding Authorization Data option
            PadN option (N=8)
14. Binding Update
15. ICMP_Echo Request(Home Address option)
16. Binding Error










JUDGEMENT




(*1) MN receives neither Binding Acknowledgement nor Binding Error.



(*2) MN receives neither Binding Acknowledgement nor Binding Error.



(*3) MN receives neither Binding Acknowledgement nor Binding Error.



(*4) MN receives Binding Error. (Binding Cache entry is not created.)
  - The Destination Address is set to the Source Address of ICMP Echo Request (MN care-of address).
  - The Status field is set to 1.










REFERENCE


(draft-ietf-mobileip-ipv6-24.txt)





9.5.1 Receiving Binding Updates



   When the Home Registration (H) bit is not set, the following are also
   required:



      (snip)



   o  The Binding Authorization Data mobility option MUST be present,
      and its contents MUST satisfy rules presented in Section 5.2.6.
      Note that a care-of address different from the Source Address MAY
      have been specified by including an Alternate Care-of Address
      mobility option in the Binding Update.  When such a message is
      received and the return routability procedure is used as an
      authorization method, the correspondent node MUST verify the
      authenticator by using the address within the Alternate Care-of
      Address in the calculations.



   o  The Binding Authorization Data mobility option MUST be the last
      option and MUST NOT have trailing padding.



      (snip)



   For packets carrying Binding Updates that fail to satisfy all of
   these tests for any reason other than insufficiency of the Sequence
   Number, registration type change, or expired nonce index values, they
   MUST be silently discarded.