Skip to content

Commit 678061e

Browse files
author
ietf-corpus-bot
committed
auto-ingest: ietf-elements backfill — 206 new elements (2026-07-12)
1 parent 23d0778 commit 678061e

206 files changed

Lines changed: 1914 additions & 0 deletions

File tree

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.
Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,9 @@
1+
document: rfc-9484
2+
kind: design-rationale
3+
summary: Context IDs are split into even (client-allocated) and odd (proxy-allocated) values to avoid requiring synchronization between endpoints when allocating new Context IDs for protocol extensions. Once allocated, a Context ID may be used by either endpoint regardless of who allocated it.
4+
section: "5"
5+
topics:
6+
- ip
7+
- http
8+
extracted_by: claude-sonnet-4-6
9+
extracted_at: "2026-07-12"
Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,11 @@
1+
document: rfc-9484
2+
kind: design-rationale
3+
summary: The Hop Count (TTL) is decremented upon encapsulation rather than decapsulation, matching the behavior of IPsec. This prevents infinite forwarding loops when routing loops exist in the network. The decrement does not apply to IP packets generated by the IP proxying endpoint itself.
4+
section: "7.2"
5+
topics:
6+
- ip
7+
- routing
8+
- vpn
9+
- ipsec
10+
extracted_by: claude-sonnet-4-6
11+
extracted_at: "2026-07-12"
Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,8 @@
1+
document: rfc-9484
2+
kind: interoperability-note
3+
summary: ICMP traffic is always allowed through an IP proxying tunnel regardless of the 'ipproto' URI Template variable value or the IP Protocol field in ROUTE_ADVERTISEMENT entries. This ensures ICMP error signalling (e.g., Packet Too Big, Destination Unreachable) always functions.
4+
section: "4.6"
5+
topics:
6+
- ip
7+
extracted_by: claude-sonnet-4-6
8+
extracted_at: "2026-07-12"
Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,10 @@
1+
document: rfc-9484
2+
kind: normative-requirement
3+
summary: In ROUTE_ADVERTISEMENT capsules, endpoints MUST NOT send routes that overlap via the IP Protocol = 0 (all protocols) ambiguity. If a receiver detects such overlap, it MUST abort the IP proxying request stream (validating this is OPTIONAL, but the abort upon detection is required).
4+
section: 4.7.3
5+
rfc2119_level: MUST NOT
6+
topics:
7+
- ip
8+
- routing
9+
extracted_by: claude-sonnet-4-6
10+
extracted_at: "2026-07-12"
Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,11 @@
1+
document: rfc-9484
2+
kind: normative-requirement
3+
summary: IP proxies MUST validate whether the decoded 'target' and 'ipproto' URI Template variables meet format requirements. If 'target' is a DNS name, the IP proxy MUST perform DNS resolution before replying. On DNS errors, the proxy MUST reject the request and SHOULD send a Proxy-Status header field with the dns_error proxy error type.
4+
section: "4.1"
5+
rfc2119_level: MUST
6+
topics:
7+
- http
8+
- ip
9+
- dns
10+
extracted_by: claude-sonnet-4-6
11+
extracted_at: "2026-07-12"
Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,10 @@
1+
document: rfc-9484
2+
kind: normative-requirement
3+
summary: IP proxying endpoints that operate as routers and support IPv6 MUST ensure that the IP tunnel link MTU is at least 1280 bytes. If using QUIC DATAGRAM frames and the QUIC MTU is too low to allow sending 1280 bytes, the endpoint MUST abort the IP proxying request stream.
4+
section: "7.2"
5+
rfc2119_level: MUST
6+
topics:
7+
- ip
8+
- quic
9+
extracted_by: claude-sonnet-4-6
10+
extracted_at: "2026-07-12"
Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,12 @@
1+
document: rfc-9484
2+
kind: normative-requirement
3+
summary: IP proxying over HTTP MUST be operated over TLS or QUIC encryption, or another equivalent encryption protocol, to provide confidentiality, integrity, and authentication.
4+
section: "4"
5+
rfc2119_level: MUST
6+
topics:
7+
- http
8+
- ip
9+
- security
10+
- crypto
11+
extracted_by: claude-sonnet-4-6
12+
extracted_at: "2026-07-12"
Lines changed: 10 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,10 @@
1+
document: rfc-9484
2+
kind: normative-requirement
3+
summary: The URI Template used to configure clients MUST be a level 3 template or lower, MUST be in absolute form with non-empty scheme, authority, and path components, and MUST NOT contain non-ASCII Unicode characters or use Reserved/Fragment/Label/Path-Segment expansion operators. If a client detects any requirement violation, it MUST reject its configuration and abort the request.
4+
section: "3"
5+
rfc2119_level: MUST
6+
topics:
7+
- http
8+
- ip
9+
extracted_by: claude-sonnet-4-6
10+
extracted_at: "2026-07-12"
Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,9 @@
1+
document: rfc-9484
2+
kind: normative-requirement
3+
summary: When implementing scoping or routing by Internet Protocol Number, implementations MUST walk the chain of IPv6 extension headers to find the outermost non-extension Internet Protocol Number when matching against scoping rules. IP proxies MAY reject requests scoped to extension header protocol numbers.
4+
section: "4.8"
5+
rfc2119_level: MUST
6+
topics:
7+
- ip
8+
extracted_by: claude-sonnet-4-6
9+
extracted_at: "2026-07-12"
Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,9 @@
1+
document: rfc-9484
2+
kind: normative-requirement
3+
summary: When IP packet forwarding fails (e.g., no route, policy rejection, MTU exceeded), IP proxying endpoints SHOULD use ICMP/ICMPv6 to signal the forwarding error to the peer by generating ICMP packets and sending them via HTTP Datagrams. Relevant errors include Destination Unreachable and Packet Too Big.
4+
section: 7.2.1
5+
rfc2119_level: SHOULD
6+
topics:
7+
- ip
8+
extracted_by: claude-sonnet-4-6
9+
extracted_at: "2026-07-12"

0 commit comments

Comments
 (0)