IETF Logo Mail Archive

Re: [homenet] I-D.ietf-homenet-prefix-assignment (RFC 4193 conformance)

Brian E Carpenter <brian.e.carpenter@gmail.com> Thu, 09 October 2014 00:23 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5DDF01A8737 for <homenet@ietfa.amsl.com>; Wed, 8 Oct 2014 17:23:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0bVj-teS1Jkv for <homenet@ietfa.amsl.com>; Wed, 8 Oct 2014 17:23:33 -0700 (PDT)
Received: from mail-oi0-x230.google.com (mail-oi0-x230.google.com [IPv6:2607:f8b0:4003:c06::230]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5CDF41A872C for <homenet@ietf.org>; Wed, 8 Oct 2014 17:23:33 -0700 (PDT)
Received: by mail-oi0-f48.google.com with SMTP id g201so435723oib.35 for <homenet@ietf.org>; Wed, 08 Oct 2014 17:23:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:organization:user-agent:mime-version:to:cc :subject:references:in-reply-to:content-type :content-transfer-encoding; bh=mH60x9yw+8tQteP1WZjw24ksDGMONPPbwp4nKPTbL9Q=; b=IJWbWGiJdzefx3GvBUR4F65N/AmsFxJMBMIYfKSNmLjAR+guTikUiIioSe2NbHi6D3 5gX4hqT1cShTw7i46vnzd0K2QlwP765hzz5p8kGWylEdQMx5OSQQkqzB0qKnNJeiVKKQ 0zTSJs7cztUjr2RaKD+t8/C4yCadf5Z+v+DGKmGelql+u/eM5KTiPnWUAQwT509cPP5M Fww6Ikprt9Fhkow6InW/sJIcerYySVACb5CjP6trQMrzrD2MyXhE9OHIB0Jt9/05S8Me kihRqljzywh6Sb+2KiNM5C69VK9oBbEmAfEBh8nX8UDSkeK9vRl3wMdKn6H+lxjQjcmB GfxA==
X-Received: by 10.182.28.100 with SMTP id a4mr17169401obh.24.1412814212834; Wed, 08 Oct 2014 17:23:32 -0700 (PDT)
Received: from [192.168.178.23] (129.195.69.111.dynamic.snap.net.nz. [111.69.195.129]) by mx.google.com with ESMTPSA id f15sm1334375obs.18.2014.10.08.17.23.29 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 08 Oct 2014 17:23:31 -0700 (PDT)
Message-ID: <5435D586.20806@gmail.com>
Date: Thu, 09 Oct 2014 13:23:34 +1300
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
User-Agent: Thunderbird 2.0.0.6 (Windows/20070728)
MIME-Version: 1.0
To: Pierre Pfister <pierre.pfister@darou.fr>
References: <CADhXe52TRJy0MA861bCnWY8LjLZnGQiPbb=qXQhxCirm_DHQ0Q@mail.gmail.com> <54348606.7010507@gmail.com> <A250131C-6D1B-4054-A8AE-EBC1BD899B7E@darou.fr>
In-Reply-To: <A250131C-6D1B-4054-A8AE-EBC1BD899B7E@darou.fr>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: http://mailarchive.ietf.org/arch/msg/homenet/Bierjz7bHfiuHpWe01y2tnUJeLQ
Cc: HOMENET Working Group <homenet@ietf.org>, James Woodyatt <jhw@nestlabs.com>
Subject: Re: [homenet] I-D.ietf-homenet-prefix-assignment (RFC 4193 conformance)
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Oct 2014 00:23:35 -0000

On 08/10/2014 20:50, Pierre Pfister wrote:
> Hello Brian
> 
> Please find my answer inline.
> 
> Le 8 oct. 2014 à 02:32, Brian E Carpenter <brian.e.carpenter@gmail.com> a écrit :
> 
>> On 08/10/2014 12:14, James Woodyatt wrote:
>>
>> (quoting draft-ietf-homenet-prefix-assignment-00)
>>
>>>   prefix.  If no ULA prefix can be found in stable storage, it MUST be
>>>   randomly generated, or generated from hardware specific values.
>> That sentence is not OK. It should be:
>>
>> If no ULA prefix can be found in stable storage, it MUST be generated
>> as specified in [RFC4193].
> 
> The point was to have a pseudo-random algorithm that always generates the same ULA.
> Stable storage can be used, but on most crappy home routers, writing on the SSD too much will kill it in a few thousands writes.

There is nothing in RFC 4193 that prevents saving the generated ULA in
stable storage for future use; so I think you need to be clearer that
when a ULA is generated, it SHOULD be stored for future use (until the
next factory reset). I don't see why that generates more than a very few
writes to SSD.

> [RFC4193] states:
> 3.2.1.  Locally Assigned Global IDs
> 
>    Locally assigned Global IDs MUST be generated with a pseudo-random
>    algorithm consistent with [RANDOM].
> 
> If remembering the ULA prefix and using it again and again (using stable storage) is OK, I don’t see why we would need cryptographic pseudo-randomness here.
> And actually that’s even worse. Why would a cryptographic pseudo-random function would be used with a *known* seed. 
> The ULA doesn’t need to be secret. It just needs to be random enough to avoid collisions.

Well, yes, but randomness is randomness, i.e. all values are equally likely.
It's really the same thing. I think the assumption was that any box capable
of generating a ULA would already have something better than rand() built in
for other reasons.

> My point here is that if we conform to RFC4193, we lose the stability of the generated ULA, and IMHO we win nothing.

But if you deviate from the standard you need to say so explicitly.
"This procedure deviates from [RFC4193] because...".

> Correct me if I’m wrong, but I think using hardware specific values as seed is perfectly fine with the collision-avoidance requirement.

I would expect so, and I'm not against what you propose, it just needs
to be clearly documented.

    Brian

> Cheers,
> 
> Pierre
> 
>>> The requirements keywords in this section make for a pretty serious interop
>>> clash with Thread networks <http://threadgroup.org/>, which generate their
>>> own ULA prefix based on a method defined by its current conventions.
>> I sincerely hope that method conforms to RFC4193.
>>
>>    Brian
>>
>> _______________________________________________
>> homenet mailing list
>> homenet@ietf.org
>> https://www.ietf.org/mailman/listinfo/homenet
> 
>

v2.23.0 | Report a Bug | By Email