IETF Logo Mail Archive

Re: [v6ops] draft-ietf-6man-rfc4291bis prohibiting non-/64 subnets

Christopher Morrow <morrowc.lists@gmail.com> Fri, 24 February 2017 17:53 UTC

Return-Path: <christopher.morrow@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB97D12944A for <ietf@ietfa.amsl.com>; Fri, 24 Feb 2017 09:53:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.699
X-Spam-Level:
X-Spam-Status: No, score=-1.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FREEMAIL_REPLY=1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uOIDT-GCkEfz for <ietf@ietfa.amsl.com>; Fri, 24 Feb 2017 09:53:08 -0800 (PST)
Received: from mail-qt0-x230.google.com (mail-qt0-x230.google.com [IPv6:2607:f8b0:400d:c0d::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C4146129444 for <ietf@ietf.org>; Fri, 24 Feb 2017 09:53:07 -0800 (PST)
Received: by mail-qt0-x230.google.com with SMTP id r45so22599249qte.3 for <ietf@ietf.org>; Fri, 24 Feb 2017 09:53:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=OdAtWZQDCTsQyn+vgdFWibFtbDH8//2IfbwuAt3PF6U=; b=oOMKFDt2HjJZtmkvfc0e2B2ED1EvEzMoMAyzpZkvjaTHzE4DkXVPF1EeC6Wo6Lpa/V WrPBrAT8+OqxaiGb84ewUnFfIdIh6wcknRhnD9oMHzFJD57x+OQNobNpdmvYaXAgIJl7 SPBxCcAtlhn6ZSR7oidEskaJMRASkbjMFnWIe0CUkQh5eFMV1FEyTCe+cvWXmfLbT/7n 9KC6TsQu/jKTb5998hXl1m2DdkIn507SNLlOKOa6AISDeryJosffaFzXkQiRtdMQ3Bjo ejxSqMOOxp+oAfPgngfRYdvmz9NhwMHSJNxDhvBpXttI907ffInzwqOxU4wYGNO8vwDs c8Bg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=OdAtWZQDCTsQyn+vgdFWibFtbDH8//2IfbwuAt3PF6U=; b=FBHFdMdb9GP5z6zPD+fDnRnqBhzUVDU8UZ5YMa3iwANRlYsi4wGCpbbAArNAKVXm72 lAeR0BQipZ4nPWn7se6jZaa+q1ICgDJBljhvbUKKJR3h/1PPcY+F3JXvJNFuLeZZ6bMq jrNDmt2HMJI60sCmxEkxeE9iJBdgoEvC7H5cbwW9a2hmGUcEGs8cCtwsTFiCzLS6ZiRe dxOpoCiew/8b/n4oCKWAJnBg5aTLc/NulIz1PZb/tmfFWd4esw2zYDyNP0oYhnGMSbu7 fQzHMh3mf2+1Mnzyb+XJsXR0frJTrjmNOucc4coNtxdeWnSpu43RjFtsGhT+m+QVowTN 3jtQ==
X-Gm-Message-State: AMke39n65HemUS8LGiPN6ozU7aBB4+xlbJIGUcIK8Nn5HvyaquVj/eiPqItSEvyg0npfxLSZZk3mziY6RkTB3g==
X-Received: by 10.200.45.137 with SMTP id p9mr3942704qta.201.1487958786828; Fri, 24 Feb 2017 09:53:06 -0800 (PST)
MIME-Version: 1.0
Sender: christopher.morrow@gmail.com
Received: by 10.140.91.71 with HTTP; Fri, 24 Feb 2017 09:53:06 -0800 (PST)
In-Reply-To: <c3e04aa1-40e1-551f-3821-b62732106e3d@gmail.com>
References: <58AF313D.3020905@foobar.org> <CAO42Z2ymnLm9dUNL3doU9+vR0eMzGbr71HQybbibXq9rCObP3A@mail.gmail.com> <21A9AEAE-330D-47F3-88CA-FC845C71AED0@darou.fr> <CAKD1Yr2Q-AUEWQSXFPzjn73Q7dJhMpB2_iHb3wJTCGx4-==Bpg@mail.gmail.com> <DADB35F5-3CB6-4396-A99F-ECE13C3EFE44@darou.fr> <e89b23b0-b037-995e-fd66-335505ecee61@gmail.com> <CAL9jLaY6RzX6pGFFMcReADudt+ewVtNw_XUYp07_BAVKAp8+hQ@mail.gmail.com> <bd05771e-1b03-1ee7-2a4c-0a1fe69b8a14@gmail.com> <CAL9jLaZJR9YzkF-R9Gx6MWBoJG4cSvp0rovYQ_9BALLzbQGiPQ@mail.gmail.com> <c3e04aa1-40e1-551f-3821-b62732106e3d@gmail.com>
From: Christopher Morrow <morrowc.lists@gmail.com>
Date: Fri, 24 Feb 2017 12:53:06 -0500
X-Google-Sender-Auth: hXSdtImlgZUAGkzc6Wu2yaY2gnM
Message-ID: <CAL9jLaZhAp3VWHBJh08XnFoFAHZ_69tQJyUVAXE_YP9ELaDhbA@mail.gmail.com>
Subject: Re: [v6ops] draft-ietf-6man-rfc4291bis prohibiting non-/64 subnets
To: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Content-Type: multipart/alternative; boundary="001a1136fb18edf62405494a66d5"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/U1RJBFO2gJDnf1ZiH8W6YadFRMQ>
Cc: ietf <ietf@ietf.org>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Feb 2017 17:53:09 -0000

On Fri, Feb 24, 2017 at 12:09 PM, Alexandre Petrescu <
alexandre.petrescu@gmail.com> wrote:

>
>
> Le 24/02/2017 à 17:27, Christopher Morrow a écrit :
>
>>
>>
>> On Fri, Feb 24, 2017 at 10:48 AM, Alexandre Petrescu
>> <alexandre.petrescu@gmail.com <mailto:alexandre.petrescu@gmail.com>>
>> wrote:
>>
>>
>>
>> Le 24/02/2017 à 15:59, Christopher Morrow a écrit :
>>
>>
>>
>> On Fri, Feb 24, 2017 at 9:09 AM, Alexandre Petrescu
>> <alexandre.petrescu@gmail.com <mailto:alexandre.petrescu@gmail.com>
>> <mailto:alexandre.petrescu@gmail.com
>> <mailto:alexandre.petrescu@gmail.com>>> wrote:
>>
>>
>> A question to Windows is the following: what prefixlen does it set
>> when the end user manually assigns an address on an interface
>> without specifiying a prefixlen?
>>
>>
>> I don't think this matters... 'end users' will in almost all cases
>> just attach and get connectivity.
>>
>>
>> Let me go next in cycle: what does linux do when one ifconfig add an
>> IPv6 address without telling the plen?  Is it adding an entry in the
>> rt table?  Which plen?  Is that plen normal?
>>
>>
>> still don't think this matters. If a user messes up what they type,
>> they messed up. if the instructions aren't complete, they aren't
>> complete and there will be mistakes. An interface configuration
>> requires all proper parameters be set, or problems will arise.
>> Assumptions about current and future behavior are proven wrong time
>> and again.
>>
>> non-deterministic behavior over time is the hallmark of this
>> space... please do not rely on defaults for hand-managed/bespoke
>> configurations if you expect things to work reliably and repeatably.
>>
>
> That means the following: Windows please make the plen parameter
> mandatory.  Dont leave it optional only to subversively set it to 64.
> That's a software bug because nobody asks you to set the plen to 64 when
> the end user does not specify one.
>
> I guess the same bug is is in BSD, linux and what have you.
>
>
yes, I think so.. for linux:
$ sudo ip -6 addr add 2001:700:4::1 dev em1

gets me:
 inet6 2001:700:4::1/128 scope global

so that actually seems correct.


>
>> If they are in a place where someone says: "Hey, you should go
>> if/ipconfig ...." then .. they are 'consenting adults' and can do
>> whatever they please.
>>
>>
>> I assume you assume that ip/ifconfig by consenting adults means the
>> adults type a plen in the CLI, right?
>>
>>
>> sure, or a script/program/etc does this, it's not important how the
>> 'ifconfig' happens, it's important that when it happens the right
>> parameters are passed to the 'ifconfig' command.
>>
>
> I agree.  If 'ifconfig' silently assumes 64 then that assumption is
> wrong.  The ifconfig programmer should take that as a software bug.
> It's not an RFC that requires them to put 64 there.
>
>
ok


> That makes it mandatory that the CLI _requires_ a plen, right?  That
>> CLI should not allow silence for a plen parameter.
>>
>>
>> sure, or you are at the mercy of the implementor of that command:
>> Today I like /64! It's tomorrow and now I like /62!!
>>
>> don't rely on defaults.
>>
>
> I agree.
>
> Because silent plen means 64.  And I dont think it's right to assume
>> a by-default 64 plen.  Because many people think 64 is right and
>> others think it's wrong, there does not seem to be a commonly agreed
>> 'by default' value for plen.
>>
>>
>> correct, so.. be specific in your configuration effort please...
>> which again, means that the 'what is the default?" conversation is
>> moot.
>>
>
> I am not asking what is the default.
>
> I am saying that apparently numerous implementations out there consider
> the default to be 64.  This consideration is wrong.
>
>
yes, I agree with you here.


> A 'default' value is something that everybody agrees with.  For example,
> one can leave out '::' from a command line adding a default route and
> just say 'default'.  There is an agreed standard that says that
> 'default' is '::'.
>
> But there is by far no single standard that says the default prefix
> length is 64.
>
> That's why it's a bug.
>
> It's like boxes with pre-defined passwords admin/admin.  The local
> programmer imagined it a good 'default' but never asked around the
> validity of such assumption.  And that creates problems.


ok, cool, i think we agree on all of this at least :)


>

Alex
>
>
>
>>
>> Alex
>>
>>
>>
>> again the proposed text (now 175+ messages back) really covers this
>> already..
>>
>>
>>

v2.23.0 | Report a Bug | By Email