IETF Logo Mail Archive

Re: A problem with RFC 6465's Uniform Format for Extension Headers

brianjusa <brianjusa@gmail.com> Thu, 06 February 2014 13:41 UTC

Return-Path: <bjones@vt.edu>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C6F901A03CA for <ipv6@ietfa.amsl.com>; Thu, 6 Feb 2014 05:41:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.234
X-Spam-Level:
X-Spam-Status: No, score=-3.234 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.535, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9CrjIDfnGhLs for <ipv6@ietfa.amsl.com>; Thu, 6 Feb 2014 05:41:41 -0800 (PST)
Received: from lennier.cc.vt.edu (lennier.cc.vt.edu [198.82.162.213]) by ietfa.amsl.com (Postfix) with ESMTP id 823DF1A00F2 for <6man@ietf.org>; Thu, 6 Feb 2014 05:41:41 -0800 (PST)
Received: from mr5.cc.vt.edu (mr5.cc.vt.edu [198.82.141.27]) by lennier.cc.vt.edu (8.13.8/8.13.8) with ESMTP id s16Df997018905 for <6man@ietf.org>; Thu, 6 Feb 2014 08:41:10 -0500
Received: from mail-qa0-x234.google.com (mail-qa0-x234.google.com [IPv6:2607:f8b0:400d:c00::234]) by mr5.cc.vt.edu (8.14.4/8.14.4) with ESMTP id s16Df7WA029995 for <6man@ietf.org>; Thu, 6 Feb 2014 08:41:07 -0500
Received: by mail-qa0-f52.google.com with SMTP id j15so2714691qaq.39 for <6man@ietf.org>; Thu, 06 Feb 2014 05:41:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:from:date:message-id:subject:to:cc:content-type; bh=XkRSJMfmXGcDh8nRFCd+Kk63Opmd8YHnzD8fXQGf4jU=; b=R+Za9RkII/rC5jZJi/iZq68jV5BMXODelU241CnPEAImz7DaqGCJ7RhONqqeEidmWL BszY+fuAdJC29+ituIBSrHBTOdrCU7AhJvrYMsKJGQI68uTzvSAqk6aAfiE3D5vLUfKr WmGas5ucDBDC1Yvjl5aUZ9JnJZKVxy0e3eZaJUqBUewHjLRW/wJ2Y48rX3d+skEVw0lf osVqEc4NVMtyg3yrG1D9aYULkbD+VmXe9cc/pLV3Q6EuplV5NBhUkdvnVH4m7wXPHatx ESemLtlNgFVAOC0tCbzrB2w2SV1NgtAZNv69HiTxFNcigDr6V2cz8Mu5Pc3kKbDouaCZ ECXA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:sender:from:date:message-id:subject :to:cc:content-type; bh=XkRSJMfmXGcDh8nRFCd+Kk63Opmd8YHnzD8fXQGf4jU=; b=EMCx8CrnP3ZXi7ZmCei8VXoZXTZiBeJKweyW8i1MpLPMv8QQzehewlHE64004zZgs7 5MaqcLO9GPTOxEg4PMwUR3jYc+wvFNQCxZLTdu55QajEqJ9ocmYPGCtWl21AcFHklMkM upZURtHpqxZylVvpB0FdNrZtu1isVeyQJ9hCzdbvm6T2KkgHneAx+mOEkpdxp0gJIn5L Rbq8tRQOrWfc75m1VOfCF2o6l8Al0BuheHGySYH44HFs/LOu7V2vNE+046vWjDr3qM6z x53KOT9zKw6T3536Y1L0/EmRF7e080mw1u1uNTEr/n6IDBg2GLsTmMxDlsgt3hDWo8Mv Tdpg==
X-Received: by 10.140.49.9 with SMTP id p9mr11580295qga.75.1391694067342; Thu, 06 Feb 2014 05:41:07 -0800 (PST)
X-Gm-Message-State: ALoCoQnyUWR4TxzcJYT5FotKmpdvXWg0YJAjsZHEs9ag+FtG8fKvD9Nmc1yzniSkh0DTG3F8elVz+nrrCEBkPy4fCaVPMvjZrGzDS4fOhlwbEaG+CHxoLTAo7aLrEP9CFHz7HV8Fb56V
X-Received: by 10.140.49.9 with SMTP id p9mr11580227qga.75.1391694066888; Thu, 06 Feb 2014 05:41:06 -0800 (PST)
MIME-Version: 1.0
Sender: bjones@vt.edu
Received: by 10.229.178.68 with HTTP; Thu, 6 Feb 2014 05:40:46 -0800 (PST)
From: brianjusa <brianjusa@gmail.com>
Date: Thu, 06 Feb 2014 08:40:46 -0500
X-Google-Sender-Auth: DOtBK4oJGTFJ9cFfOy4Tlx2jMMA
Message-ID: <CANyqO+EXQAnwJF6CWXURMaXU1-8ZhkC9xj0toSsv31nw67zFWg@mail.gmail.com>
Subject: Re: A problem with RFC 6465's Uniform Format for Extension Headers
To: Fernando Gont <fgont@si6networks.com>
Content-Type: multipart/alternative; boundary="001a11351c9a7eac3604f1bd0648"
X-Mailman-Approved-At: Thu, 06 Feb 2014 06:04:24 -0800
Cc: Thomas Narten <narten@us.ibm.com>, "C. M. Heard" <heard@pobox.com>, Tim Chown <tjc@ecs.soton.ac.uk>, "6man@ietf.org" <6man@ietf.org>, Suresh Krishnan <suresh.krishnan@ericsson.com>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Feb 2014 13:41:47 -0000

I would hope that this group would not consider hindering IPv6 capability
by designing for NAT compatibility… There is really no need for NAT in the
IPv6 world.

--
Brian


On Thu, Feb 6, 2014 at 7:44 AM, Fernando Gont <fgont@si6networks.com> wrote:

> Hi, Thomas,
>
> On 02/06/2014 09:21 AM, Thomas Narten wrote:
> >> 1) If this problem remains un-addressed, then it's impossible to
> >> differentiate between new upper-layer headers (e.g. a new transport
> >> protocol) and new extension headers. Since such new extension headers
> >> might be leveraged for malicious purposes, the end-result is that
> >> middle-boxes are going to block *everything* (see RFC7045), which means:
> >>
> >>   + no new extension headers
> >>   + no new transport protocols
> >>
> >> ... so I think we really don't want to go there.
> >
> > But we are already there. Folk won't deploy anything other than
> > TCP/UDP because NAT won't deal with it. That has already been reality
> > and is the reason that other or new transport protocols appear to be
> > virtually undeployable today.
>
> Well, IPv6 *might* give a fresh start in this respect -- there *might*
> be IPv6 NAT.. but not necessarily. So.. while the end result might be
> the same, it need not.
>
> I don't think we have widespread deployment of IPv6 NAT ("as we know it"
> for IPv4), nor that we have such a large/massive deployment of IPv6 that
> we can argue "the cat is out of the box".
>
> In any case, I believe this is a discussion to be had. There has been a
> lot of work around fragmentation and extension headers, with the more
> conservative folks still hoping that EHs are usable on the public
> Internet, and the other folks wishing EHs and fragmentation go away
> (and, well, actually making that happen by blocking them).
>
> So there seems to be a disconnect between what we expect the IPv6
> Internet to be, and how it is being shaped (and is) in practice.
>
> IMHO, we should either accept what's becoming more and more of a fact
> (EHs and fragmentation being massively dropped on the public Internet;
> e.g.
> <http://iepg.org/2013-11-ietf88/fgont-iepg-ietf88-ipv6-frag-and-eh.pdf>),
> or
> try to do something to make them usable (after all, we're not planning
> for IPv7 anytime soon).
>
> All the above aside, the uniform format in RFC6465 cannot really work as
> specified. So it looks like, at the very least, a "please ignore section
> X of this document" is warranted... and/or a clear statement that we
> have abandoned the possibility of standardizing any new transport
> protocols (well, unless we encapsulate them over an existing one).
>
> Thoughts?
>
> Thanks!
>
> Cheers,
> --
> Fernando Gont
> SI6 Networks
> e-mail: fgont@si6networks.com
> PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
>
>
>
>
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------
>

v2.23.0 | Report a Bug | By Email