Re: sockets APIs extensions for Host Identity Protocol

[Keith Moore <moore@cs.utk.edu>]

Miika Komu wrote:
> On Fri, 11 May 2007, Keith Moore wrote:
>
>>> Are you fine with a sockaddr_hit structure that contains only the HIT
>>> and letting a getsockopt() call to figure out the IP addresses in the
>>> context of HIP aware applications? (I think getsockname and
>>> getpeername should return the HITs.)
>>
>> if the sockaddr_hit structure contains only the HIT, how is the kernel
>> going to know where it can contact that peer?  It has to get one or more
>> IP addresses from somewhere.
>
> If the resolver is used, it can send a hint containing this mapping to
> the HIP daemon.

please no.  don't try to hide this stuff from the app in the low-level
API.   the rest of the network keeps trying to force routing decisions
on the apps in the absence of routing information.  ideally, the app
shouldn't have to be doing any routing or address selection or
anything.  but at present, how to cope with this kind of world is an
unsolved problem, and the only place where experimentation can be done
towards learning how to solve that problem is at layer 7.    if you
cripple the API, you prevent that kind of experimentation (at worst) or
(at best) increase the burden on the app writer by forcing him to write
his own kernel extensions.

that, and you still need to expose IP addresses for diagnostic purposes.

what do you gain from trying to hide the IP addresses? 

APIs should not try to be smarter than the apps that use them - they
will always fail at this.  (actually this goes for any kind of middleware)

Keith