IETF Logo Mail Archive

Re: RFC3484 destination address selection rule 2 is buggy

Mohacsi Janos <mohacsi@niif.hu> Thu, 13 March 2008 23:20 UTC

Return-Path: <ipv6-bounces@ietf.org>
X-Original-To: ietfarch-ipv6-archive@core3.amsl.com
Delivered-To: ietfarch-ipv6-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5841B28CA42; Thu, 13 Mar 2008 16:20:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.078
X-Spam-Level:
X-Spam-Status: No, score=-102.078 tagged_above=-999 required=5 tests=[AWL=-0.540, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, GB_I_LETTER=-2, HELO_MISMATCH_ORG=0.611, J_CHICKENPOX_13=0.6, MIME_8BIT_HEADER=0.3, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NgKoreob+dgF; Thu, 13 Mar 2008 16:20:15 -0700 (PDT)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1E8D028C8D2; Thu, 13 Mar 2008 16:15:43 -0700 (PDT)
X-Original-To: ipv6@core3.amsl.com
Delivered-To: ipv6@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 486A928C875 for <ipv6@core3.amsl.com>; Thu, 13 Mar 2008 16:15:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id slANb87bXOhP for <ipv6@core3.amsl.com>; Thu, 13 Mar 2008 16:15:40 -0700 (PDT)
Received: from mail.ki.iif.hu (mail.ki.iif.hu [IPv6:2001:738:0:411::241]) by core3.amsl.com (Postfix) with ESMTP id BB5A43A6EE6 for <ipv6@ietf.org>; Thu, 13 Mar 2008 16:13:52 -0700 (PDT)
Received: from localhost (localhost [IPv6:::1]) by mail.ki.iif.hu (Postfix) with ESMTP id 35C7C849FB; Fri, 14 Mar 2008 00:11:31 +0100 (CET)
X-Virus-Scanned: by amavisd-new at mignon.ki.iif.hu
Received: from mail.ki.iif.hu ([127.0.0.1]) by localhost (mignon.ki.iif.hu [127.0.0.1]) (amavisd-new, port 10024) with LMTP id swYb9efoVB1D; Fri, 14 Mar 2008 00:11:28 +0100 (CET)
Received: by mail.ki.iif.hu (Postfix, from userid 9002) id 0C396849F8; Fri, 14 Mar 2008 00:11:27 +0100 (CET)
Received: from localhost (localhost [127.0.0.1]) by mail.ki.iif.hu (Postfix) with ESMTP id E4F58848A7; Fri, 14 Mar 2008 00:11:27 +0100 (CET)
Date: Fri, 14 Mar 2008 00:11:27 +0100
From: Mohacsi Janos <mohacsi@niif.hu>
X-X-Sender: mohacsi@mignon.ki.iif.hu
To: Rémi Denis-Courmont <rdenis@simphalempin.com>
Subject: Re: RFC3484 destination address selection rule 2 is buggy
In-Reply-To: <200803140056.10860.rdenis@simphalempin.com>
Message-ID: <20080314000422.X84903@mignon.ki.iif.hu>
References: <alpine.LRH.1.00.0803140026591.6318@netcore.fi> <200803140056.10860.rdenis@simphalempin.com>
MIME-Version: 1.0
Content-Type: MULTIPART/MIXED; BOUNDARY="0-299801186-1205449887=:84903"
Cc: YOSHIFUJI Hideaki / <yoshfuji@linux-ipv6.org>, Iljitsch van Beijnum <iljitsch@muada.com>, ipv6@ietf.org, Pekka Savola <pekkas@netcore.fi>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
Sender: ipv6-bounces@ietf.org
Errors-To: ipv6-bounces@ietf.org



On Fri, 14 Mar 2008, Rémi Denis-Courmont wrote:

> Le Friday 14 March 2008 00:27:26 Pekka Savola, vous avez écrit :
>> This issue was first reported about 5 years ago by Alain Durand et al and
>> yet there is no fix yet (and no mention in the default address selection
>> problem statement), see section 2 of:
>> http://tools.ietf.org/html/draft-ietf-v6ops-v6onbydefault-03
>>
>> The main problem is destination address selection rule 2 which requires
>> that source and destination address scopes must match (which in the case of
>> v4 private and global addresses is not a very useful comparison given the
>> prevalence of NAT).
>
> Indeed. And this was (inconclusively) discussed at the mike during the last
> v6ops meeting. I had also asked about this a few months ago. Nobody seemed to
> care (winter vacation?):
> http://www.ops.ietf.org/lists/v6ops/v6ops.2007/msg01150.html
>
>> Maybe we need a more systematic approach to deal with RFC3484 issues (as
>> in, a numbered list of all the problems noted) instead of doing a nice new
>> features to have PPT slideshow every IETF meeting.
>
> I think we need to "simplify" RFC3484 section 3.2 through removing the IPv4
> site-local scope there: we'd be left with only global scope (public addresses
> + RFC1918) and link-local scope (169.254.0.0/16).
>
> I suspect some implementors (at least Windows) already ignore §3.2 for the
> sake of reliability. I know Linux does implement ?3.2 to the letter of the
> RFC unfortunately. And I have seen people _remove_ AAAA from their server's
> DNS records because of this issue, combined with deficient 6to4 relays.
>
>
> Another problem involves incomplete implementation of RFC3484: some stacks
> apply RFC3484 for IPv6, in connect() and sendto() socket APIs, but fail to do
> RFC3484 in getaddrinfo(), and simply assume IPv6 is first, and IPv4 second. I
> suspect this applies to OSX and BSDs, and also "embedded" C run-times.

Not exactly. The opensource BSD implementations has "proper" RFC 3484 - 
they are treating RFC1918 addresses as global scope.

http://www.ops.ietf.org/lists/v6ops/v6ops.2007/msg01151.html

Unfortunately OSX does not have any RFC 3484 implementation.... I reported 
few months ago to Apple this issue.....

Best Regards,
 		Janos Mohacsi

--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email