IETF Logo Mail Archive

Re: [dhcwg] RFC4388: Revision or new option needed?

Pavan Kurapati <pavan.kurapati@gmail.com> Thu, 03 June 2010 12:01 UTC

Return-Path: <pavan.kurapati@gmail.com>
X-Original-To: dhcwg@core3.amsl.com
Delivered-To: dhcwg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 4C7953A69EF for <dhcwg@core3.amsl.com>; Thu, 3 Jun 2010 05:01:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.602
X-Spam-Level:
X-Spam-Status: No, score=0.602 tagged_above=-999 required=5 tests=[BAYES_50=0.001, HTML_MESSAGE=0.001, J_CHICKENPOX_12=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3z1vyR2FU2p8 for <dhcwg@core3.amsl.com>; Thu, 3 Jun 2010 05:00:58 -0700 (PDT)
Received: from mail-gw0-f44.google.com (mail-gw0-f44.google.com [74.125.83.44]) by core3.amsl.com (Postfix) with ESMTP id 8F42D3A6984 for <dhcwg@ietf.org>; Thu, 3 Jun 2010 05:00:58 -0700 (PDT)
Received: by gwj19 with SMTP id 19so5605031gwj.31 for <dhcwg@ietf.org>; Thu, 03 Jun 2010 05:00:43 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:cc:content-type; bh=w17y3cS4vkNVRvO5+ELec89Jtvy4NNIEjnCnAxnuBBk=; b=OtKPayNpVyQL6q+XvIaELIrrRwhaqe2MMUg7bJexv/SMjx10HyZcDKKJnyMnJcz/I+ O0DXZPOUVdhZFggUSLQDYU8g/diM3RM/rpwknqlJMutY2EKEO8fvT6xIrwKRTGDx/BIF W64uBz9zL4cuuZUSEGDTzGHBtXRspACrh4JfE=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; b=yHwqFrga0yc4EvhpH/O5SyMKkkKKP5UK9IkiwZluPicb6q7uLgwtpZWRqL+zwB02z1 kD7+UspnNRyTPwa1aey39MqyDo4daw+bQFOhQJ/niQHW/Ufy827Il6NRDu8iZcVav/cc mNemSQtZyTU8rZl+/mr/s7iVOQDDwMkQde5co=
MIME-Version: 1.0
Received: by 10.229.191.146 with SMTP id dm18mr1897658qcb.46.1275566442791; Thu, 03 Jun 2010 05:00:42 -0700 (PDT)
Received: by 10.229.189.66 with HTTP; Thu, 3 Jun 2010 05:00:42 -0700 (PDT)
In-Reply-To: <4C07899B.50108@ucd.ie>
References: <4C07899B.50108@ucd.ie>
Date: Thu, 03 Jun 2010 17:30:42 +0530
Message-ID: <AANLkTinFKJiLKGMZJ1TCcGXhCmBXgp9GUvGVaSqi98vu@mail.gmail.com>
From: Pavan Kurapati <pavan.kurapati@gmail.com>
To: Niall O'Reilly <Niall.oReilly+IETF@ucd.ie>
Content-Type: multipart/alternative; boundary="0016361e7ceab5c41d04881ef480"
Cc: DHC-WG WG <dhcwg@ietf.org>
Subject: Re: [dhcwg] RFC4388: Revision or new option needed?
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dhcwg>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Jun 2010 12:01:00 -0000

Hi Niall,
Please find replies inline

Thanks,
Pavan

On Thu, Jun 3, 2010 at 4:23 PM, Niall O'Reilly
<Niall.oReilly+IETF@ucd.ie<Niall.oReilly%2BIETF@ucd.ie>
> wrote:

>        Hello.
>
>        I'ld like to understand what the WG's sense of the "right"
>        joint reading of RFCs 4388 and 2131 is, with regard to a use
>        case which seems to me to be unreasonably constrained.
>
>        Depending on the outcome, I may be minded to propose
>        either a revoision to RFC4388 or a new IPv4 DHCP option.
>
>        In RFC4388, the following text appears.
>        [Apologies for possible line-wrapping problems, passim]
>
> 5. Protocol Overview
>
>   In the following discussion of the DHCPLEASEQUERY message, the
>   client of the message is assumed to be an access concentrator.
>   Note that access concentrators are not the only allowed (or
>   required) consumers of the information provided by the
>   DHCPLEASEQUERY message, but they do give readers a concrete
>   feel for how the message might be used.
>
>        This seems to suggest that not only in-path devices such
>        as access concentrators and DHCP relays, but also
>        out-of-path processes, might legitimately send a
>        DHCPLEASEQUERY message.  An examples of such a process
>        might be a persistent management application, or an
>        ephemeral utility.
>
>        Now, in RFC2131, the destination of a reply to a DHCP
>        request is specified as follows.
>
>   If the 'giaddr' field in a DHCP message from a client is non-zero,
>   the server sends any return messages to the 'DHCP server' port on
>   the BOOTP relay agent whose address appears in 'giaddr'.
>
>        Unfortunately, although RFC4388 seems to admit the possibility
>        of a variety of sources for the DHCPLEASEQUERY message, the
>        lack of any text updating the above passage from RFC2131
>        constrains this variety in the following ways.
>
>        A "DHCPLEASEQUERY application" cannot usually run on the
>        same host as a DHCP server, as the 'DHCP server' port
>        typically needs to be reserved for the DHCP server process.
>
> It may sound strange as to why an application running on DHCP server would
need a leasequery mechanism to retrieve the lease data. Couldnt it retrieve
just from the lease database?
Are you going to suggest removing the constraint of adding 'giaddr' in
leasequery message (Thus indicating there was no relay agent in between)? If
so, the same condition applies when L2RAs are used and is mentioned in
draft-ietf-dhc-l2ra-extensions which also covers leasequery.


>        A "DHCPLEASEQUERY application" must run with sufficient
>        privilege to acquire access to the 'DHCP server' port.
>        This is a small nuisance for a persistent application, as
>        the usual technique is available of starting with elevated
>        privileges and retaining these only for as long as is
>        necessary to acquire the relevant system resources.
>        For an ephemeral process, such as a worker script for a
>        monitoring application, this approach is not available.
>
> I believe this requirement is rather implementation/deployment specific.

>        I'ld appreciate an indication of both
>
>   (a)  whether the WG feels that these constraints are intended
>        in RFC4388,
>
>        and
>
>   (b)  whether the WG would welcome a draft proposing one or
>        more remedies for these constraints.
>
>
>        Thanks and best regards,
>
>        Niall O'Reilly
> _______________________________________________
> dhcwg mailing list
> dhcwg@ietf.org
> https://www.ietf.org/mailman/listinfo/dhcwg
>

v2.23.0 | Report a Bug | By Email