Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-6lo-backbone-router-16: (with DISCUSS and COMMENT)
"Pascal Thubert (pthubert)" <pthubert@cisco.com> Mon, 02 March 2020 10:18 UTC
Return-Path: <pthubert@cisco.com>
X-Original-To: 6lo@ietfa.amsl.com
Delivered-To: 6lo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CC68E3A0797; Mon, 2 Mar 2020 02:18:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.589
X-Spam-Level:
X-Spam-Status: No, score=-9.589 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, T_SPF_TEMPERROR=0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=lf+h6FB1; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=Y4lReEVa
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vE2-24Pl760Z; Mon, 2 Mar 2020 02:18:16 -0800 (PST)
Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5A2433A07EE; Mon, 2 Mar 2020 02:18:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=7410; q=dns/txt; s=iport; t=1583144295; x=1584353895; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=I4Ah9Jo37BFSenKViuXAAGmaC1DpIacCN03fgzi2cQg=; b=lf+h6FB15cTcvHZBztwysGnBtuDgNk7ZR16Tp1sL9YFGVnLF+VLW8laa lz27BKUmn3YOi5yIQoS4+79N3bXM8v3sVPWLi7w4FsvPXmfH5mIVhVl1s UqgX+uz4qUEEYFGKzVTZ9C9M8pjclRh0FoTHoz8dvqDY5I4WKi8gYwbmg c=;
IronPort-PHdr: 9a23:5ioz5B1G5C5Lvn0bsmDT+zVfbzU7u7jyIg8e44YmjLQLaKm44pD+JxKGt+51ggrPWoPWo7JfhuzavrqoeFRI4I3J8RVgOIdJSwdDjMwXmwI6B8vQEVH7MfTndTASF8VZX1gj9Ha+YgBY
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BpDQAC3Vxe/4UNJK1mDoQHJCwFgUQgBAsqCodQA4pnToIRmBWBQoEQA1QGAwEBAQwBAS0CBAEBhEACggskOBMCAw0BAQUBAQECAQUEbYVWDIVjAQEBAQIBEigGAQElEgEECwIBCDYQMiUCBA4NGoVPAw4gAQOfaQKBOYgVAUyCJ4J/AQEFhREYggwJN4EBhSCHBRqBQT+BEUeCTT6EMRyDQYIsjV4SJoIUiHiHPo8/CoI8kFl5hTCCSTGHboRNi3yQP5l9AgQCBAUCDgEBBYFpIoFYcBWDJ1AYDY4pFxWDO4oYPXSBKY8cAYEQAQE
X-IronPort-AV: E=Sophos;i="5.70,506,1574121600"; d="scan'208";a="452145121"
Received: from alln-core-11.cisco.com ([173.36.13.133]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 02 Mar 2020 10:18:11 +0000
Received: from XCH-ALN-002.cisco.com (xch-aln-002.cisco.com [173.36.7.12]) by alln-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 022AIBps007498 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 2 Mar 2020 10:18:11 GMT
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by XCH-ALN-002.cisco.com (173.36.7.12) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Mon, 2 Mar 2020 04:18:10 -0600
Received: from xhs-aln-002.cisco.com (173.37.135.119) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Mon, 2 Mar 2020 05:18:09 -0500
Received: from NAM12-MW2-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Mon, 2 Mar 2020 04:18:09 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hF6UhyKuk4zfyGgMdMFecY7bbWv07erg2AN8hrG8IufF1aMKxYPWB8vYk/gkoW9QAZokzAkOqkZL0bRkIKgv7/yNWseGMMP7RGxdZgtpghJVEJWQJGCQsefEnV+pv2kameIuRIpOlkiwz1aaNcXmQo6jMHCZSVDXDXsxAheMpJY1KtKlmFJJntko9o2XBbSxziYAqvpfjuHFtFhSmL1Fir/C2wV+pPZJr1lyNmi/SJxZ8xuuWxO+fZGA8VQ4p0QtdhxZ5UiEt0hkvQFNMXlRRNnbyUihytfNVDuoGXULld3YQXNlABbZSHFTQS9DHgWXPnaesEg5Fo0zCXLRouIeWg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=+PJ/ccZoz4+HP7sJ28LvilVjllylVASmc9yNNtoXNBo=; b=lqg6aXAzPbDg7PWE/IxMgaJ9vrcG00+ZMgDMEWT8Fv8gapHoR1qbaLqV38RtskonMSqGLvnPF1KgNzDgpk0q9pQXu035SlN8elFPgA7Kj8EdjIMgu8iqmRzFG8Uht2gDDpDyPgNZYMt/hKCzCS/AwEDZdsMfvtlEDB1YDQcnL2/BKbYQoXcCr4w6HWzHPUljv3b83IbyL/zif5R+XRxM3iT/vVk1y5GR/pMP0S5VE5fkejTIfOeE8AhQDNJZ3kU0p5crP5cfl1FMAjJcJSVdlBj0PS0chRxn1lvR3RJm73jiGM1+9OYCTZqWDWddIzODfesJQuupSmPzWWxqgfKGWw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+PJ/ccZoz4+HP7sJ28LvilVjllylVASmc9yNNtoXNBo=; b=Y4lReEVa75wBmYZw3sigQflLyar5IkvID5uR1x1DJ6tizZ88taI4lqDPrXSstzTf3NkxSljFYmE8wn47xnn/kWzxA+4VP2PNlKzf/6952ME4me97k3Y26RLWQb78LjKvtUjQWYWe4olc+X+Z/LdI0novYx8bl5OojgDPRgBKuE8=
Received: from MN2PR11MB3565.namprd11.prod.outlook.com (2603:10b6:208:ea::31) by MN2PR11MB4549.namprd11.prod.outlook.com (2603:10b6:208:26d::24) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2772.14; Mon, 2 Mar 2020 10:18:07 +0000
Received: from MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::edba:2b0f:7341:2c24]) by MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::edba:2b0f:7341:2c24%6]) with mapi id 15.20.2772.019; Mon, 2 Mar 2020 10:18:07 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Benjamin Kaduk <kaduk@mit.edu>
CC: The IESG <iesg@ietf.org>, "draft-ietf-6lo-backbone-router@ietf.org" <draft-ietf-6lo-backbone-router@ietf.org>, Carles Gomez <carlesgo@entel.upc.edu>, Samita Chakrabarti <samitac.ietf@gmail.com>, "Shwetha Bhandari (shwethab)" <shwethab@cisco.com>, "6lo-chairs@ietf.org" <6lo-chairs@ietf.org>, "6lo@ietf.org" <6lo@ietf.org>
Thread-Topic: Benjamin Kaduk's Discuss on draft-ietf-6lo-backbone-router-16: (with DISCUSS and COMMENT)
Thread-Index: AQHV5ekJFXivV8LUjUCzIPwfEUqnf6giINuwgAKrZgCAEFDGgA==
Date: Mon, 02 Mar 2020 10:17:41 +0000
Deferred-Delivery: Mon, 2 Mar 2020 10:16:47 +0000
Message-ID: <MN2PR11MB3565E8F4920520DD9D1BF796D8E70@MN2PR11MB3565.namprd11.prod.outlook.com>
References: <158198170602.23989.6191753822198720003.idtracker@ietfa.amsl.com> <MN2PR11MB35653C8FAEC9B6EBEA946B05D8130@MN2PR11MB3565.namprd11.prod.outlook.com> <20200221001536.GN97652@kduck.mit.edu>
In-Reply-To: <20200221001536.GN97652@kduck.mit.edu>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-originating-ip: [2.15.172.153]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 94351da0-a26a-4755-7b88-08d7be9300d4
x-ms-traffictypediagnostic: MN2PR11MB4549:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <MN2PR11MB454913CF25D0FDDDC0D5FE9ED8E70@MN2PR11MB4549.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 033054F29A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(39860400002)(376002)(346002)(136003)(366004)(396003)(189003)(199004)(26005)(186003)(8936002)(6916009)(52536014)(316002)(478600001)(2906002)(54906003)(7696005)(33656002)(4326008)(86362001)(8676002)(71200400001)(55016002)(81166006)(81156014)(9686003)(6506007)(66556008)(64756008)(66446008)(6666004)(76116006)(5660300002)(66476007)(66946007); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB4549; H:MN2PR11MB3565.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 5h9iyZVGweUkHAVOBFfAHkuQ7KwND1engTIeZhryFJQeoEFQRMmGs4A0aDTagYQst9/dZKtDiqsSyw2bJFDUca9Bkc8tRKJq/6Lw16jDQznR4/YNxEpsS/tLMT186mFcKjOarPWzkac/YgCaXS83HTwtAhdf4moTpnOlaczFFC1j0j4aV3jb82a8EscGXnYELwiB9vJZC9YhwQRrPbRelZKHk+adA/lenZBf4/T7TVfSbJRCRKo0tjOpp/oLh9Xb1f5soFTTVjIlJFTNT8XiqXg0sVr5LQnG8rw4W1WtMmhkTri8TzgymG8jhQpf81Idh40dvI8p9Ya17HEI0Kilfi7NB0vQMJUxEHCNv7QtakYvlO589fq6NvK5uTQXnMi37cJDfIthSrGo+Xwb2YJdNRiqXndJky70MuhQK2IbHQ2HzU4/M+cgv4qBoCpm3V2R
x-ms-exchange-antispam-messagedata: yGu4aUAYViZSAY0vdZU78d8r9GMes6wNdCNxFn4mjsHUvY2duL4LQFByD2jw4rDmOrSOnzYZJzP2ohfncKVRypjyOayJ7U10M4k2ABnI/FN5uGoFt50R+Qw2EayT20p2PVpjtKrJhhALf4TX/1jzDQ==
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 94351da0-a26a-4755-7b88-08d7be9300d4
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Mar 2020 10:18:07.8400 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: rQMnaPsWjGe/d7iIUgpFIj3zHW9ZX7TV0SUSxBR6OjKQMU2XGRSZlTcIxQZc8EUBPqv21M8j8kR+rIJzXnO3YA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4549
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.12, xch-aln-002.cisco.com
X-Outbound-Node: alln-core-11.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/6lo/hDQOKSUUZ0borgOHVXxDe-qhgLY>
Subject: Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-6lo-backbone-router-16: (with DISCUSS and COMMENT)
X-BeenThere: 6lo@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Mailing list for the 6lo WG for Internet Area issues in IPv6 over constrained node networks." <6lo.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lo>, <mailto:6lo-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6lo/>
List-Post: <mailto:6lo@ietf.org>
List-Help: <mailto:6lo-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lo>, <mailto:6lo-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Mar 2020 10:18:28 -0000
Hello Benjamin:
> Sorry to make you interrupt your holiday!
Had to go back to hard unwork. But back now : )
> > > --------------------------------------------------------------------
> > > --
> > > DISCUSS:
> > > --------------------------------------------------------------------
> > > --
> > >
> > > Thanks for this -- it was a good read. I just have a few
> > > super-boring poitns of apparent internal inconsistency to fix before
> publication.
> > >
> > > There seems to be an internal inconsistency relating to the handling
> > > of link- local addresses by a Bridging Proxy: Section 8
> > > descriptively says that such addresses are (always) registered
> > > ("[t]he Bridging Proxy registers any Binding including for a
> > > Link-Local address to the 6LBR"), but Section 9 has this behavior as
> > > optional ("[a] Bridging Link Proxy MAY register Local addresses at the 6BBR
> and proxy ND for these addresses over the backbone").
> >
> > For one thing the bridging proxy knows about LL addresses iff they are
> registered to it, which may only happen if the bridging proxy is the 6LR for the
> node, which is typical of hub and spoke (Wi-Fi) but not meshed wireless. In the
> Wi-Fi game you really want to extend the connectivity to the wireless guy, and
> that's possible because of the mac layer continuity (the AP is a L3 bridge). This
> text is already in a section that discusses the node being a 6LR so all I need to
> do s turn this into a SHOULD/MUST like this:
> > "
> > A Bridging Proxy SHOULD register Link Local addresses at the 6BBR and
> > MUST proxy ND for these addresses over the backbone.
> > "
> > The SHOULD is because the 6LBR on the backbone is optional and the proxy
> operation will work without it.
>
> I think I'm confused about how this proposal fits in to the changes in the -17,
> though what's in the -17 itself does look like it resolves the inconsistency.
Yes that was a side thing and badly worded. I ended up with the following in published 17:
"
Acting as Bridging Proxy the 6LR MUST proxy ND over the backbone for registered Link-Local addresses.
"
Happy that -17 overall solves the issue
> > * When an NS(DAD) is received for a tentative address, which means
> > that 2 nodes form the same address at nearly the same time,
> > section 5.4.3 of [RFC4862] cannot sort out the first come and the
> > address is abandoned.
>
> (Perhaps a bit more wordsmithing to do on this one re "cannot detect which
> node first claimed the address")
Applied. It was a reference to "first come first serve".
>
> > * In any fashion, [RFC4862] indicates that a node never responds to
> > a Neighbor Solicitation for a tentative address.
>
> maybe s/fashion/case/? Or just "In all cases".
Applied
>
> > This specification adds information about proxied addresses that
> > helps sort out a duplication (different ROVR) from a movement (same
> > ROVR, different TID), and in the latter case the older registration
> > from the fresher one (by comparing TIDs).
> >
> > When a Registering Node moves from one 6BBR to the next, the new 6BBR
> > sends NA messages to update the NCE in node over the backbone. The
>
> nit: "nodes" (and maybe "on" vs. "over", or "NA messages over the backbone
> to update [...]"?)
I favor your second proposal:
"
When a Registering Node moves from one 6BBR to the next, the new 6BBR sends
NA messages over the backbone to update existing NCEs.
"
>
> > 6BBR may set the Override flag in the NA messages if it is known that
> > the Registering Node will not connect directly to the backbone (e.g.,
> > the Registering Node is attached using a different type of
> > interface).
>
> [obligatory "how would the 6BBR know that?"]
Sadly we do not have signaling for a 6LN that is attached on the backbone to tell the 6BBR that but will always delegate 6ND operation and will not take over until further notice.
That's one of the things we could do at 6MAN I guess if 6MAN takes over the next phase - that's hopeful thinking but any help / support would be strongly appreciated.
For now, we can only provide example cases like a non-bridgeable LLN interface, or configuration. Let me reword.
"
The 6BBR may set the Override flag in the NA messages if it does not
compete with the Registering Node for the NCE in backbone nodes.
This is assured if the Registering Node is attached via an interface
that can not be bridged onto the backbone, making it impossible for
the Registering Node to defend its own addresses there. This may
also be signaled by the Registering Node through a protocol extension
that is not in scope for this specification.
"
> > When the Binding is no more in Tentative state:
>
> "no longer", I think.
Done
> > * an NS or an NA with an EARO that denotes an older registration
> > (same ROVR) is answered with an NA message that carries an EARO
> > with a status of 3 (Moved) to ensure that the stale state is
> > removed rapidly.
> >
> > This behavior is specified in more details in Section 9.
> > "
>
> s/details/detail/ (this is a weird quirk of English).
: )
>
> > In 9.1 (Binding in Tentative state)
> >
> > "
> > The Tentative state covers a DAD period over the backbone during
> > which an address being registered is checked for duplication using
> > procedures defined in [RFC4862].
> >
> > For a Binding in Tentative state:
> >
> > * The Binding MUST be removed if an NA message is received over the
> > Backbone for the Registered Address with no EARO, or containing an
> > EARO that indicates an existing registration owned by a different
> > Registering Node (different ROVR). An NA MUST be sent back to the
> > Registering Node with a status of 1 (Duplicate). This behavior
>
> I'd suggest adding "to indicate that the binding has been [removed|rejected]".
> (My adversarial parser is claiming that "NA MUST be sent back" could be
> misread to apply always, not just when a qualifying NA message was received.)
> Though prepending "In that case" as is done in the next bullet would work,
> too, and has the benefit of being consistent between items.
Doing both.
"
In that case, an NA MUST be
sent back to the Registering Node with a status of 1 (Duplicate)
to indicate that the binding has been rejected. "
> > * The Binding MUST be removed if an NA or an NS(DAD) message is
> > received over the Backbone for the Registered Address containing
> > an EARO with a that indicates a fresher registration ([RFC8505])
>
> Don't we have to assume that an NA/NS(DAD) with no EARO is fresher than
> the local registration?
Yes, this is what we do in the first 2 bullets. Changing text to "in that case..."
> >
> > Please let me know if that works for you;
>
> That works for me, yes.
>
Cool then. I understand that the DISCUSS is behind us now. I'll reply to the original thread for the COMMENTs.
Many thanks!
Pascal
- [6lo] Benjamin Kaduk's Discuss on draft-ietf-6lo-… Benjamin Kaduk via Datatracker
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Benjamin Kaduk
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Benjamin Kaduk
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)