Re: [6lo] Future extensibility for the DAR/DAC
"Pascal Thubert (pthubert)" <pthubert@cisco.com> Fri, 04 May 2018 15:09 UTC
Return-Path: <pthubert@cisco.com>
X-Original-To: 6lo@ietfa.amsl.com
Delivered-To: 6lo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C9B0B12D7F1 for <6lo@ietfa.amsl.com>; Fri, 4 May 2018 08:09:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.51
X-Spam-Level:
X-Spam-Status: No, score=-14.51 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zufvMDWn5US1 for <6lo@ietfa.amsl.com>; Fri, 4 May 2018 08:09:09 -0700 (PDT)
Received: from alln-iport-7.cisco.com (alln-iport-7.cisco.com [173.37.142.94]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BEBBC12D940 for <6lo@ietf.org>; Fri, 4 May 2018 08:09:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=44769; q=dns/txt; s=iport; t=1525446543; x=1526656143; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=NiYQHTh89L5Xyx8kiJsBBO8j8gFPUdOz0tmjSdDnCFA=; b=iZi4i1Rz8E2/KgqtpFaCqufVjCoQ29iCwL2dR2Y//6RPfjvUyv3E/Znd XvSA9PjVhaLlewsTaPNtDenJIzqfFw6SkGoVqcbg9yxaDMBfcr8fWsZyj RPHqTiSdBeTk3cDykC6BXiz/OWnHHf1r91OMLadzKdNLcTYZRHa36gAG+ A=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CnAABdd+xa/5JdJa1WBhkBAQEBAQEBAQEBAQEHAQEBAQGCTUcwYRdjKAqLZYxxgXiBD5MbFIFkC4RsAoI4ITQYAQIBAQEBAQECbCiFKAEBAQEDLToiAgEIEQQBASEBDTIdCAEBBAESCIQoZKoRiEKCQoglgVQ/gQ4BgwuEOyo0hS4ChzKQawgCjkKBPYNgh0WHQYheAhETAYEkARw4gVJwFYJ+giAXjhdvjyiBGAEB
X-IronPort-AV: E=Sophos;i="5.49,362,1520899200"; d="scan'208,217";a="108964524"
Received: from rcdn-core-10.cisco.com ([173.37.93.146]) by alln-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 04 May 2018 15:08:55 +0000
Received: from XCH-RCD-005.cisco.com (xch-rcd-005.cisco.com [173.37.102.15]) by rcdn-core-10.cisco.com (8.14.5/8.14.5) with ESMTP id w44F8txG025018 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 4 May 2018 15:08:55 GMT
Received: from xch-rcd-001.cisco.com (173.37.102.11) by XCH-RCD-005.cisco.com (173.37.102.15) with Microsoft SMTP Server (TLS) id 15.0.1320.4; Fri, 4 May 2018 10:08:54 -0500
Received: from xch-rcd-001.cisco.com ([173.37.102.11]) by XCH-RCD-001.cisco.com ([173.37.102.11]) with mapi id 15.00.1320.000; Fri, 4 May 2018 10:08:54 -0500
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: "6lo@ietf.org" <6lo@ietf.org>, "Adrian Farrel (adrian@olddog.co.uk)" <adrian@olddog.co.uk>
Thread-Topic: Future extensibility for the DAR/DAC
Thread-Index: AdPceQQzGA/oVtUBQ/SWRKN/gEfddwHP47IQ
Date: Fri, 04 May 2018 15:08:47 +0000
Deferred-Delivery: Fri, 4 May 2018 15:08:29 +0000
Message-ID: <d880c77084c547e69cd7d2beda5019b3@XCH-RCD-001.cisco.com>
References: <54678d30cf154c4f90a5159c8eafae50@XCH-RCD-001.cisco.com>
In-Reply-To: <54678d30cf154c4f90a5159c8eafae50@XCH-RCD-001.cisco.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.228.216.39]
Content-Type: multipart/alternative; boundary="_000_d880c77084c547e69cd7d2beda5019b3XCHRCD001ciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/6lo/zdfnT_qVhu2Vmc5vwDaJLIIBaAc>
Subject: Re: [6lo] Future extensibility for the DAR/DAC
X-BeenThere: 6lo@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Mailing list for the 6lo WG for Internet Area issues in IPv6 over constrained node networks." <6lo.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lo>, <mailto:6lo-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6lo/>
List-Post: <mailto:6lo@ietf.org>
List-Help: <mailto:6lo-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lo>, <mailto:6lo-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 May 2018 15:09:12 -0000
Dear all :
The problem at hand is that the way draft 19 is formulated, the DAR/DAC messages can never have options. This is barring future capabilities, in particular using the DAR/DAC over the backbone as discussed at the last IETF - I still need ot propose text on that.
To address this issue, I suggest that the initial use of the ICMP code (at some point odd values would mean support to this spec) in DAR/DAC message is extended so the size of the ROVR field is clearly indicated in a subfield of the ICMP code.
The proposed change is as follows:
0 1 2 3
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Type |CodePfx|CodeSfx| Checksum |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| Status | TID | Registration Lifetime |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
... Registration Ownership Verifier ...
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
| |
+ +
| |
+ Registered Address +
| |
+ +
| |
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
Figure 2: Duplicate Address Messages Format
Modified Message Fields:
Code: The ICMP Code as defined in [RFC4443]. With this
specification, the ICMP Code for Duplicate Address
Messages is split in 2 fields, the Code Prefix and
the Code Suffix, each a 4-bits field. The Code
Prefix MUST be set to zero by the sender and MUST be
ignored by the receiver. A non-null value of the
Code Suffix indicates support for this specification.
It MUST be set to 1 when operating in a backward-
compatible mode with a ROVR size of 64 bits. It MAY
be 2, 3 or 4, denoting a ROVR size of 128, 192, and
256 bits, respectively.
Also this means a chnage in the IANA section:
9.2. ICMP Codes
IANA is requested to create 2 new subregistries of the ICMPv6 "Code"
Fields registry, which itself is a subregistry of the Internet
Control Message Protocol version 6 (ICMPv6) Parameters for the ICMP
codes. The new subregistries relate to the ICMP type 157, Duplicate
Address Request (shown in Table 3), and 158, Duplicate Address
Confirmation (shown in Table 4), respectively. For those ICMP types,
the ICMP Code field is split in 2 subfields, the "Code Prefix" and
the "Code Suffix". The new subregistries relate to the "Code Suffix"
portion of the ICMP Code. The range of "Code Suffix" is 0..15 in all
cases. The policy is "IETF Review" or "IESG Approval" [RFC8126] for
both subregistries. The new subregistries are initialized as
follows:
New Code Suffixes for ICMP types 157 DAR message
+--------------+---------------------------------------+------------+
| Code Suffix | Meaning | Reference |
+--------------+---------------------------------------+------------+
| 0 | RFC6775 DAR message | RFC 6775 |
| | | |
| 1 | EDAR message with 64bits-long ROVR | This RFC |
| | field | |
| | | |
| 2 | EDAR message with 128bits-long ROVR | This RFC |
| | field | |
| | | |
| 3 | EDAR message with 192bits-long ROVR | This RFC |
| | field | |
| | | |
| 4 | EDAR message with 256bits-long ROVR | This RFC |
| | field | |
| | | |
| 5...15 | Unassigned | |
+--------------+---------------------------------------+------------+
Table 3: New Code Suffixes for the DAR message
New Code Suffixes for ICMP types 158 DAC message
+-------------+----------------------------------------+------------+
| Code Suffix | Meaning | Reference |
+-------------+----------------------------------------+------------+
| 0 | RFC6775 DAC message | RFC 6775 |
| | | |
| 1 | EDAC message with 64bits-long ROVR | This RFC |
| | field | |
| | | |
| 2 | EDAC message with 128bits-long ROVR | This RFC |
| | field | |
| | | |
| 3 | EDAC message with 192bits-long ROVR | This RFC |
| | field | |
| | | |
| 4 | EDAC message with 256bits-long ROVR | This RFC |
| | field | |
| | | |
| 5...15 | Unassigned | |
+-------------+----------------------------------------+------------+
Table 4: New Code Suffixes for the DAC message
Please let us know if there is an issue with this, cc'ing Adrian since we discussed this unusual use of the ICMP Code during his review.
All the best,
Pascal
From: 6lo <6lo-bounces@ietf.org> On Behalf Of Pascal Thubert (pthubert)
Sent: mercredi 25 avril 2018 11:54
To: 6lo@ietf.org
Subject: [6lo] Future extensibility for the DAR/DAC
Dear all :
As it stands in RFC 6775 update, the fact that the DAR and DAC messages are in fact extended DAR and DAC is indicated by the ICMP code of 1.
In that case, the size of the message determines the size of the ROVR field that carries the ex-EUI-64 field, now ROVR field, which can be extended up to 256 bits for use as a cryptographic proof of ownership in AP-ND.
Keeping it that way may be problematic if we want to add future extensions (e.g., options at the end of the message) and stay backward compatible.
An alternate way is to block 2 bits of the ICMP code and use the values 0, 1, 2, and 3 denoting a ROVR size of 64, 128, 192 and 256 bits respectively.
Should we / shouldn't we do that?
Pascal
- [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Charlie Perkins
- Re: [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Charlie Perkins
- Re: [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Charlie Perkins
- Re: [6lo] Future extensibility for the DAR/DAC Pascal Thubert (pthubert)
- Re: [6lo] Future extensibility for the DAR/DAC Charlie Perkins
- Re: [6lo] Future extensibility for the DAR/DAC Michael Richardson