Re: [6lo] Future extensibility for the DAR/DAC
"Pascal Thubert (pthubert)" <pthubert@cisco.com> Mon, 21 May 2018 17:19 UTC
Return-Path: <pthubert@cisco.com>
X-Original-To: 6lo@ietfa.amsl.com
Delivered-To: 6lo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2AF6512E8C6 for <6lo@ietfa.amsl.com>; Mon, 21 May 2018 10:19:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01, T_KAM_HTML_FONT_INVALID=0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aU5gB2YklM1Y for <6lo@ietfa.amsl.com>; Mon, 21 May 2018 10:19:35 -0700 (PDT)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BD83C12D77B for <6lo@ietf.org>; Mon, 21 May 2018 10:19:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=52398; q=dns/txt; s=iport; t=1526923174; x=1528132774; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=HUM84xc5X14sqKjq2jCY/R+bS3/1M/OclxeFAyyRZ9A=; b=mOwtbJrmtG55B4COoysZD+k4Ddj/TlH28QkbmQUpoSkDGoR1tkbqi3Nh ocMs63kVAY3lGCWtMZKYHrQhNWhHMnDEc8OO+u6IgSZf51YQtvx46llGK m3tc9ToYm7rxqQbCdGUUtE7aQU/jggMgM9K3aDHT+O0r6x9PiUfUlvdZL Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CnAABe/wJb/49dJa1WBhkBAQEBAQEBAQEBAQEHAQEBAQGCTUcvYX0oCoVKhiWMc4F5gQ+TNhSBYQMLGAEKgxKBNwKCGSE0GAECAQEBAQEBAmwcDIUoAQEBAQMBASs6BxsCAQgOAwQBASEBBgcnCxQJCAEBBAESCIMcgRtkD6oXH4giggoFiDWBVD+BDgGCDX+DEQEBgSgqNBCFHgKHGyGREAkCjk2BP4Nth1mHTokCAhETAYEkARw4gVJwFTuCQ4FwMBeIWYU+b48cgRgBAQ
X-IronPort-AV: E=Sophos;i="5.49,426,1520899200"; d="scan'208,217";a="180743884"
Received: from rcdn-core-7.cisco.com ([173.37.93.143]) by rcdn-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 21 May 2018 17:19:07 +0000
Received: from XCH-RCD-002.cisco.com (xch-rcd-002.cisco.com [173.37.102.12]) by rcdn-core-7.cisco.com (8.14.5/8.14.5) with ESMTP id w4LHJ7na007492 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 21 May 2018 17:19:07 GMT
Received: from xch-rcd-001.cisco.com (173.37.102.11) by XCH-RCD-002.cisco.com (173.37.102.12) with Microsoft SMTP Server (TLS) id 15.0.1320.4; Mon, 21 May 2018 12:19:06 -0500
Received: from xch-rcd-001.cisco.com ([173.37.102.11]) by XCH-RCD-001.cisco.com ([173.37.102.11]) with mapi id 15.00.1320.000; Mon, 21 May 2018 12:19:06 -0500
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Charlie Perkins <charles.perkins@earthlink.net>, "6lo@ietf.org" <6lo@ietf.org>
Thread-Topic: [6lo] Future extensibility for the DAR/DAC
Thread-Index: AdPceQQzGA/oVtUBQ/SWRKN/gEfddwHP47IQA2TuH4AACWXAwA==
Date: Mon, 21 May 2018 17:18:38 +0000
Deferred-Delivery: Mon, 21 May 2018 17:18:11 +0000
Message-ID: <ecf2b247dca24ac3a5e93de71174cadc@XCH-RCD-001.cisco.com>
References: <54678d30cf154c4f90a5159c8eafae50@XCH-RCD-001.cisco.com> <d880c77084c547e69cd7d2beda5019b3@XCH-RCD-001.cisco.com> <de1c35db-b467-3a13-65f4-5838d139b689@earthlink.net>
In-Reply-To: <de1c35db-b467-3a13-65f4-5838d139b689@earthlink.net>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.55.22.5]
Content-Type: multipart/alternative; boundary="_000_ecf2b247dca24ac3a5e93de71174cadcXCHRCD001ciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/6lo/rQdi8RuxfTjrCbfqadxSp7Ozfe8>
Subject: Re: [6lo] Future extensibility for the DAR/DAC
X-BeenThere: 6lo@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Mailing list for the 6lo WG for Internet Area issues in IPv6 over constrained node networks." <6lo.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lo>, <mailto:6lo-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6lo/>
List-Post: <mailto:6lo@ietf.org>
List-Help: <mailto:6lo-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lo>, <mailto:6lo-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 May 2018 17:19:39 -0000
Hello Charlie : This is not simple and I hope the list comes in and helps. The reason for proposing the text below is to enable future codes to be backward compatible with this spec. As written a non-zero split-code is ignored, and a legacy node can still parse the ROVR correctly when a future node uses a non-zero split-code. If we do not split the code, the legacy node cannot parse the message at all if the code is not one of the listed ones, since it cannot fathom the size of the ROVR. Also, if all ROVR sizes are still supported in the future, the addition of a new code will in fact cause the addition of as many codes as there are ROVR sizes. All in all I favor the proposed text that splits the ICMP code. What do others think? Pascal From: 6lo <6lo-bounces@ietf.org> On Behalf Of Charlie Perkins Sent: lundi 21 mai 2018 18:40 To: 6lo@ietf.org Subject: Re: [6lo] Future extensibility for the DAR/DAC Hello folks, I think it would be better to avoid subdividing the Code field as shown below. It may seem simple, but the effect would to require 16 subCodes for every future allocated Code, even if completely unnecessary. Besides that, there is then the complication of additional registries, review procedure, etc., which may not be needed for future Codes. Instead, for the purposes mentioned to enable options, I think it makes a lot more sense to just allocate a different Code for each proposed subcase of ROVR field length. As noted below, I think this would mean 4 codes for DAR and 4 codes for DAC. That is really pretty straightforward, besides only taking two bits instead of four per ICMP type. Regards, Charlie P. On 5/4/2018 8:08 AM, Pascal Thubert (pthubert) wrote: Dear all : The problem at hand is that the way draft 19 is formulated, the DAR/DAC messages can never have options. This is barring future capabilities, in particular using the DAR/DAC over the backbone as discussed at the last IETF - I still need ot propose text on that. To address this issue, I suggest that the initial use of the ICMP code (at some point odd values would mean support to this spec) in DAR/DAC message is extended so the size of the ROVR field is clearly indicated in a subfield of the ICMP code. The proposed change is as follows: 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Type |CodePfx|CodeSfx| Checksum | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Status | TID | Registration Lifetime | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | ... Registration Ownership Verifier ... | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + + | | + Registered Address + | | + + | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ Figure 2: Duplicate Address Messages Format Modified Message Fields: Code: The ICMP Code as defined in [RFC4443]. With this specification, the ICMP Code for Duplicate Address Messages is split in 2 fields, the Code Prefix and the Code Suffix, each a 4-bits field. The Code Prefix MUST be set to zero by the sender and MUST be ignored by the receiver. A non-null value of the Code Suffix indicates support for this specification. It MUST be set to 1 when operating in a backward- compatible mode with a ROVR size of 64 bits. It MAY be 2, 3 or 4, denoting a ROVR size of 128, 192, and 256 bits, respectively. Also this means a chnage in the IANA section: 9.2. ICMP Codes IANA is requested to create 2 new subregistries of the ICMPv6 "Code" Fields registry, which itself is a subregistry of the Internet Control Message Protocol version 6 (ICMPv6) Parameters for the ICMP codes. The new subregistries relate to the ICMP type 157, Duplicate Address Request (shown in Table 3), and 158, Duplicate Address Confirmation (shown in Table 4), respectively. For those ICMP types, the ICMP Code field is split in 2 subfields, the "Code Prefix" and the "Code Suffix". The new subregistries relate to the "Code Suffix" portion of the ICMP Code. The range of "Code Suffix" is 0..15 in all cases. The policy is "IETF Review" or "IESG Approval" [RFC8126] for both subregistries. The new subregistries are initialized as follows: New Code Suffixes for ICMP types 157 DAR message +--------------+---------------------------------------+------------+ | Code Suffix | Meaning | Reference | +--------------+---------------------------------------+------------+ | 0 | RFC6775 DAR message | RFC 6775 | | | | | | 1 | EDAR message with 64bits-long ROVR | This RFC | | | field | | | | | | | 2 | EDAR message with 128bits-long ROVR | This RFC | | | field | | | | | | | 3 | EDAR message with 192bits-long ROVR | This RFC | | | field | | | | | | | 4 | EDAR message with 256bits-long ROVR | This RFC | | | field | | | | | | | 5...15 | Unassigned | | +--------------+---------------------------------------+------------+ Table 3: New Code Suffixes for the DAR message New Code Suffixes for ICMP types 158 DAC message +-------------+----------------------------------------+------------+ | Code Suffix | Meaning | Reference | +-------------+----------------------------------------+------------+ | 0 | RFC6775 DAC message | RFC 6775 | | | | | | 1 | EDAC message with 64bits-long ROVR | This RFC | | | field | | | | | | | 2 | EDAC message with 128bits-long ROVR | This RFC | | | field | | | | | | | 3 | EDAC message with 192bits-long ROVR | This RFC | | | field | | | | | | | 4 | EDAC message with 256bits-long ROVR | This RFC | | | field | | | | | | | 5...15 | Unassigned | | +-------------+----------------------------------------+------------+ Table 4: New Code Suffixes for the DAC message Please let us know if there is an issue with this, cc'ing Adrian since we discussed this unusual use of the ICMP Code during his review. All the best, Pascal From: 6lo <6lo-bounces@ietf.org><mailto:6lo-bounces@ietf.org> On Behalf Of Pascal Thubert (pthubert) Sent: mercredi 25 avril 2018 11:54 To: 6lo@ietf.org<mailto:6lo@ietf.org> Subject: [6lo] Future extensibility for the DAR/DAC Dear all : As it stands in RFC 6775 update, the fact that the DAR and DAC messages are in fact extended DAR and DAC is indicated by the ICMP code of 1. In that case, the size of the message determines the size of the ROVR field that carries the ex-EUI-64 field, now ROVR field, which can be extended up to 256 bits for use as a cryptographic proof of ownership in AP-ND. Keeping it that way may be problematic if we want to add future extensions (e.g., options at the end of the message) and stay backward compatible. An alternate way is to block 2 bits of the ICMP code and use the values 0, 1, 2, and 3 denoting a ROVR size of 64, 128, 192 and 256 bits respectively. Should we / shouldn't we do that? Pascal _______________________________________________ 6lo mailing list 6lo@ietf.org<mailto:6lo@ietf.org> https://www.ietf.org/mailman/listinfo/6lo
- [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Charlie Perkins
- Re: [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Charlie Perkins
- Re: [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Charlie Perkins
- Re: [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Charlie Perkins
- Re: [6lo] Future extensibility for the DAR/DAC Michael Richardson