IETF Logo Mail Archive

Re: a draft about on-link and subnet prefixes

神明達哉 <jinmei@wide.ad.jp> Fri, 17 March 2017 21:12 UTC

Return-Path: <jinmei.tatuya@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 178A312957C for <ipv6@ietfa.amsl.com>; Fri, 17 Mar 2017 14:12:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.402
X-Spam-Level:
X-Spam-Status: No, score=-2.402 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.197, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FH7k3zTBpo9y for <ipv6@ietfa.amsl.com>; Fri, 17 Mar 2017 14:12:48 -0700 (PDT)
Received: from mail-qk0-x22e.google.com (mail-qk0-x22e.google.com [IPv6:2607:f8b0:400d:c09::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 42667129579 for <ipv6@ietf.org>; Fri, 17 Mar 2017 14:12:48 -0700 (PDT)
Received: by mail-qk0-x22e.google.com with SMTP id p64so74715993qke.1 for <ipv6@ietf.org>; Fri, 17 Mar 2017 14:12:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=QWf+x+x6oCyjFwa7J5ZweptLr7aEdLGOi1W1Ky/Qw0U=; b=lhg9JAxuMb/L+ZDZJfLKgvLeQIoJ2tc9ztLlqwpL3CoB1stN3eE6DQG7mjRls/Fzgt Ly3w4lN4x9DEJAkZ3TTNnrBNPPD3x78mDlQSZ6JFe32eQzhnAtS2HNu4NTVmDA3TEiEk vY0tzy6AedOoVHmvOPQ2IUeKhkKlegDcRUZDreKm8L3wvyedtCv3n/pyx6yvA5M5ULyL 9qHfX4OhxsDTwUiOz9elTHD/vp1CGAi8zlwlAB+uoU/f4GMe9nLSIpGUAsysYQ+iLqGx yZpfRLiY550/tayvR0PIvzifTxppGJrVC8vqbVfYEUBgIV1kkc2YDLoqq118XPelYU0M mu5g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=QWf+x+x6oCyjFwa7J5ZweptLr7aEdLGOi1W1Ky/Qw0U=; b=qVFDTd4U6b8GOCKMavHy//+wbIpWMMkL11fmUcaFSPekPC7cv8saB1iUn1PjYTv16O 867PzUOtEP1qUYK3l4C+MoOuqoxXtNOEhCMDrIgXxwQHXKe23rNrN/Ut0mSQMkIPUOzr Ndh/jC0cwvS5Qe6T4QnB7LvJ5OCm/IlVidBo4MBOmfpFLXZKB+EisZxjAZk/M44BP1gY iBTE+OVuaa+F3lhGy2llgE9Lnxf+x+uZ564NUqtlBCMTTQH4G/XzI+MHkK3/+hCl+zhJ Za8FbBxhTq449/LPQMnqBNiHx0dVn60FzMJcwsv+adst1UB9v9BMwLtS1WoinjUimK+r Ud2A==
X-Gm-Message-State: AFeK/H12ogKKlgGyuRrpgyFoHHcm+9fgU0ZKq5yAp3cFN9VkKf3tz9aAWPVlg5ACC6yCYY8B13/DSq67RfHqUQ==
X-Received: by 10.55.189.130 with SMTP id n124mr15882811qkf.235.1489785167018; Fri, 17 Mar 2017 14:12:47 -0700 (PDT)
MIME-Version: 1.0
Sender: jinmei.tatuya@gmail.com
Received: by 10.237.61.204 with HTTP; Fri, 17 Mar 2017 14:12:46 -0700 (PDT)
In-Reply-To: <c93d109d-9337-352f-e012-a67d54ca3a69@gmail.com>
References: <CAJE_bqdd9OXOi+SZ8_OfGWXxEoKSfoR6=Lp3-_=vEaWbjx4udw@mail.gmail.com> <018c1f82-cd5c-7d59-f92b-9401ddfb11fb@gmail.com> <CAJE_bqfGLngOuGzyTyRFrSOjn1kCkz3RBO0rojFCqqpYWgOZNw@mail.gmail.com> <97e0eff9-9f85-7f55-b3dc-c9b4a4b2bf62@gmail.com> <CAJE_bqexpdnrGfNkj09jv25Ng8J2MsNGVnjczM6ayeZqL2KfTA@mail.gmail.com> <c93d109d-9337-352f-e012-a67d54ca3a69@gmail.com>
From: 神明達哉 <jinmei@wide.ad.jp>
Date: Fri, 17 Mar 2017 14:12:46 -0700
X-Google-Sender-Auth: JkNSdvEK-MerRh2m0zGiOqhGNFc
Message-ID: <CAJE_bqcEkkL=gyMj7Fi80xvLh5PO5DHnhOV5B9xw2iCAtPCz7g@mail.gmail.com>
Subject: Re: a draft about on-link and subnet prefixes
To: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Cc: IPv6 IPv6 List <ipv6@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/7jcqp6vuBduEAILwR5meeH2Naec>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Mar 2017 21:12:50 -0000

At Fri, 17 Mar 2017 14:34:35 +0100,
Alexandre Petrescu <alexandre.petrescu@gmail.com> wrote:

> >>> [...]  This means that, for example, if the length of interface
> >>> identifiers for the link is specified as 63, 64, or 65, then the
> >>>  SLAAC subnet prefix length must be 65, 64, or 63, respectively;
> >>>  otherwise the PIO is ignored for the purpose of SLAAC.
> >>
> >> But this text does not say what is the plen of routes towards that
> >>  subnet.
> >
> > If "routes towards that subnet" means the SLAAC subnet prefix is to
> > be considered on-link, that's not what the current specs allow.
>
> By "routes towards that subnet" I mean the entries in a routing table of
> a Router that is in the path from the Internet towards that link.

I now understand you're more concerned about those configuration
matters.  But I have to say that's out of scope of my draft.  It
basically talks about host behaviors regarding on-link and subnet
prefixes.  You may not like the scope, but I have no plan to broaden
it to that direction (I basically want to keep it focused).  If you
think that's an important topic, my last word on that point in this
thread is this famous phrase: feel free to write your own draft on
that topic.  (Below I'm basically skipping points relevant to this
particular point.)

> > I just took a quick look at RFC7278 (just as an example), but I
> > don't find anything obvious in it that misunderstands the separation
> > of on-link and SLAAC subnet prefixes (it certainly does something
> > awkward if not non-compliant, like re-advertising a prefix learned
> > from a 3GPP interface to a LAN interface, but such oddity is
> > irrelevant to the separation of on-link and SLAAC subnet prefixes).
>
> I agree.
>
> I would say that using 64share is incompatible with the capability of
> providing separation between onlink and SLAAC prefixes.  A prefix that
> is '64shared' can not be further separated into 'onlink' and a 'SLAAC'
> prefix.
>
> Whereas a /63 prefix (not a 64shared prefix) could be divided into a /64
> prefix for SLAAC, and another /64 for onlink determination.
>
> Moreover, a prefix allocated with DHCPv6-PD could be divided into a
> prefix for SLAAC and another for onlink determination.

I don't see how this is relevant to this draft.

> > Can you be more specific about specifically which text of RFC7278
> > misunderstand the separation?
>
> For example this from RFC7278:
> > The LAN link is configured as a /64 and the 3GPP radio interface is
> > configured as a /128.

This behavior (using an RA on an interface/link than the received one,
re-advertising a received RA on the other link) itself is already
quite peculiar, but I still don't see confusion between on-link and
SLAAC subnet prefixes here.

> Which one of those two prefixes is the on-link and which is the SLAAC?
> Maybe neither?

Ignoring the peculiarity, the UE performs SLAAC with the received /64
prefix and generates a 128-bit IPv6 address
2001:db8:ac10:f002:1234:4567:0:9.  So this /64 is an SLAAC subnet
prefix.  The /128 notation simply means it's a 128-bit IPv6 address.
When re-advertising the /64 to the LAN interface, while it's not
really clear from the RFC text itself, but I guess it usually has both
the L and A flags set, so they would be used both as an SLAAC subnet
and on-link prefixes.

> Another example is this:
> > The gateway routes the entire /64 to the UE and does not perform ND
> > or Neighbor Unreachability Detection (NUD) [RFC4861].
>
> What kind of prefix is that for which there is neither NUD nor ND
> overall, yet an address is formed on the interface?  Is it SLAAC?  Is it
> onlink?  Is it neither?

neither.

> _If_ we said that the dichotomy onlink|SLAAC was the possibility to have
> /48 as onlink and /60 as SLAAC, then the people making routes would take
> the smallest (/48) and make a /48 route towards the subnet.
>
> That comes down to the following paragraph in your draft:
> > If a link-type specification defines the interface identifier length
> > to be 64 bits, the SLAAC subnet prefix must be 128 - 64 = 64 bits.
>
> should rather say "the SLAAC subnet prefix could be for example 63bit".

It couldn't, unless we update RFC4862 as such.  I don't even
understand how the external route setup affects the length of
interface identifiers, but even if there's some sensible explanation
of it, that doesn't change the fact that RFC4862 doesn't allow an
SLAAC subnet prefix to be other than 64 when the length of IID is 64.
If you don't like the current protocol limitation, that's fine -
please write a new proposal to update RFC4862.  But that's out of
scope of this draft: it only explains what's current specified without
stating that's good or bad.

--
JINMEI, Tatuya

v2.23.0 | Report a Bug | By Email