Re: 6MAN Working group last call: draft-ietf-6man-rdnss-rfc6106bis
"Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com> Tue, 08 March 2016 04:28 UTC
Return-Path: <jaehoon.paul@gmail.com>
X-Original-To: ipv6@ietfc.amsl.com
Delivered-To: ipv6@ietfc.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfc.amsl.com (Postfix) with ESMTP id 803881CDD3E for <ipv6@ietfc.amsl.com>; Mon, 7 Mar 2016 20:28:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.3
X-Spam-Level: *
X-Spam-Status: No, score=1.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HK_NAME_FM_MR_MRS=1.499, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_DBL_ABUSE_BOTCC=2.5] autolearn=no autolearn_force=no
Authentication-Results: ietfc.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.41]) by localhost (ietfc.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lPCTGJBc6j_e for <ipv6@ietfc.amsl.com>; Mon, 7 Mar 2016 20:28:29 -0800 (PST)
Received: from mail-yw0-x242.google.com (mail-yw0-x242.google.com [IPv6:2607:f8b0:4002:c05::242]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfc.amsl.com (Postfix) with ESMTPS id BE0231CDD3A for <ipv6@ietf.org>; Mon, 7 Mar 2016 20:28:28 -0800 (PST)
Received: by mail-yw0-x242.google.com with SMTP id p65so237149ywb.3 for <ipv6@ietf.org>; Mon, 07 Mar 2016 20:28:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=TqcMHeRSwI89ukcTU/oVf2q5nLpxEShU3biwjNRLdc0=; b=SsIR0ai07XVMUSVecEVjTiMfKXNO6J20+Cjfdho926HDcINofxLi68ge1axhaqk1lL jchudIqWIRHC7Kzic4/spi83Q7wSuo5WIWmOgiIWwdaAqltx8vJGR11qNHvHW9g0NXHt w2bN0ee3M4fjmpHCEmbuLEDzKddAlMP9lDHJODF4G4q9ZyhG/u0xEdhJwB2AFb6e5fWH 9hjMqsqNOhK7OMl2bEdwYACFyLWWvgU6wHD6zCIWGbAhSGRe3TeDrFnai8C0hgpkYVb+ f0xzk+X9tAAG/w2eG+G1Z0vjLkelKk9MvRZvp32aUrlnXk51lRO7ytTHYUtmZsYQ0N2r ZWDQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=TqcMHeRSwI89ukcTU/oVf2q5nLpxEShU3biwjNRLdc0=; b=kbdtHRe+8FRiQeDpmenaLColzf8Av8Lp8F4HavVXZ72Y/fbfUmQbs3nYIdAVcC2IYZ yEPyG0l1Ej2FG/9J78D+ItaTOHghiuepNyD5xESbQC3pI7LGbEjahbaMYMRpYe8d50Jq V5xWMYf8WiMtFq1kodt/xF0JBUx4RSVkiMFRb7XSbeb1kUP02LaMmz1tHSnjVloOs37w pZdysFUe8MvWoBc0VsMCLzyFUG8tu+ohjpG8A+aU+I/N8PvSGjXKa66U0qDrKU079UHX NEhTE9QJJaGdxjNZoVQEihVmKXjNocZdQ2qCZ2UTDDUvj4arVQzb9xjAUEqtua8/xxpC 5YnA==
X-Gm-Message-State: AD7BkJJfGOKoy8/IPhHn8nUU5Qd7bvQRQhg+IDzGH91DiOY699PXxPN7e12n8lp2MyLoOX01OVD+jdjm8/KMlg==
X-Received: by 10.129.75.15 with SMTP id y15mr4467366ywa.32.1457411307872; Mon, 07 Mar 2016 20:28:27 -0800 (PST)
MIME-Version: 1.0
Received: by 10.129.83.87 with HTTP; Mon, 7 Mar 2016 20:27:58 -0800 (PST)
In-Reply-To: <CAJE_bqcetbtgsje4TqCpUF+zoUL19RHjWj2-xg+N39i8XodDVQ@mail.gmail.com>
References: <6AC58C26-01B6-4C16-851F-0C1228CDD2AF@employees.org> <CAJE_bqfvE0jGoRi2X=ohpqsXmGx9AVKnjeGH-P8zWp6=3_kbVA@mail.gmail.com> <CAPK2DewJ0uF9i_uaKLCn5gM_KGm2uv5B0a2VFm7cmNNn5acQPQ@mail.gmail.com> <CAJE_bqcetbtgsje4TqCpUF+zoUL19RHjWj2-xg+N39i8XodDVQ@mail.gmail.com>
From: "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com>
Date: Tue, 08 Mar 2016 13:27:58 +0900
Message-ID: <CAPK2DeyZbBCqAiZOtniGPYHG0UDsiq4rVJOPcfdYe89M32P=qw@mail.gmail.com>
Subject: Re: 6MAN Working group last call: draft-ietf-6man-rdnss-rfc6106bis
To: 神明達哉 <jinmei@wide.ad.jp>
Content-Type: multipart/alternative; boundary="001a113f58504c2c47052d8203c7"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipv6/BsfLoCiliqSaYqHpKjKzPbbfJV0>
Cc: Bob Hinden <bob.hinden@gmail.com>, 6man WG <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Mar 2016 04:28:30 -0000
Hi Jinmei, Thanks for your comments. I will reflect yours on the revision. 6MAN WG, for Linux implementation for RDNSS, are there any other comments from Jinmei below? >For some peculiar environments that do not provide such an API and >still need to store the DNS information in the user space, it is >necessary to synchronize the DNS information in the kernel space >and the Resolver Repository in user space. For the >synchronization, the implementation should provide a write >operation for updating DNS information from the kernel to the >Resolver Repository. One approach is to have a daemon (or a >program that is called at defined intervals) that keeps monitoring >the Lifetimes of RDNSS addresses and DNS search domain names all >the time. Whenever there is an expired entry in the DNS >Repository, the daemon can delete the corresponding entry from the >Resolver Repository. Thanks. Paul On Tue, Mar 8, 2016 at 3:21 AM, 神明達哉 <jinmei@wide.ad.jp> wrote: > At Mon, 7 Mar 2016 04:21:59 +0900, > "Mr. Jaehoon Paul Jeong" <jaehoon.paul@gmail.com> wrote: > > > > - Section 6 > > > > This seems to assume that "ND runs in the kernel" means that all > > > information in RAs is managed in the kernel. I don't know if > > > there's such an implementation (does Linux work that way?), but it > > > doesn't necessarily have to be so, and is actually different from > > > the BSD implementation: [...] So, I'd at least > > > suggest clarifying that this kind of approach is only necessary for > > > some deviant protocol stack implementation that doesn't even support > > > RFC3542. And, I'd also mention the FreeBSD-style approach as it > > > should be more generic and portable. > > > > > > => I tried the current text as follows: > > I don't think the revised text really addresses my point (or I was not > clear enough). According to a follow-up message from the chairs they > don't seem to be willing to change text that hasn't been changed from > RFC6106, but just in case we can still make it the document more > sense, I'd like to propose alternate text. It replaces the entire > Section 6, although the first paragraph is intact: > > For the configuration and management of DNS information, the > advertised DNS configuration information can be stored and managed in > both the DNS Repository and the Resolver Repository. > > Since there is nothing special in an RA message as a link-local > ICMPv6 message, a user space application should be readily able to > get access to its content including the RDNSS or DNSSL option by > the standard socket API [RFC3542]. Environments where the DNS > information (i.e., RDNSS addresses and DNS search domain names) is > stored in the user space can take this approach. Note that this is > the case even if some other parts of the ND protocol such as router > discovery or link-layer address resolution are performed within the > kernel. > > For some peculiar environments that do not provide such an API and > still need to store the DNS information in the user space, it is > necessary to synchronize the DNS information in the kernel space > and the Resolver Repository in user space. For the > synchronization, the implementation should provide a write > operation for updating DNS information from the kernel to the > Resolver Repository. One approach is to have a daemon (or a > program that is called at defined intervals) that keeps monitoring > the Lifetimes of RDNSS addresses and DNS search domain names all > the time. Whenever there is an expired entry in the DNS > Repository, the daemon can delete the corresponding entry from the > Resolver Repository. > > BTW, out of curiosity is there any such "peculiar" environment? As I > said BSDs shouldn't need such an ugly hack. I don't know much detail > of Linux, but a quick look at the man page of its rdnssd(8) it also > seems to work on the received RA content directly (though not using > the standard API - Linux is notorious about its lack of support of the > API). If this "environment" is only an imaginary thing, I'd even > consider removing the third paragraph (or the second paragraph of the > original draft). > > > > - Section 6.3: this section largely repeats the text of Section 6.2 > > > and looks redundant to me. I'd consider unifying these two sections > > > and eliminate unnecessary duplicates. > > > > > > => Done. > > I'd also remove the duplicate 'e.g.' from the first sentence of > Section 6.3: > > When an IPv6 host receives the information of multiple DNSSL domain > names within a network (e.g., campus network and company network) > > > > I don't think this "RECOMMENDED" is realistic. As a matter of fact, > > > SEND isn't even widely implemented, and, IMO, its deployability > > > issues are not easily resolved. I don't have a specific suggestion > > > on how to make the whole text realistic, but I'd at least suggest > > > stopping to make such an unrealistic requirement, especially with an > > > RFC2119 keyword. > > > > > > => I replaced "RECOMMENDED" with "MAY" as follows: > > The Secure Neighbor Discovery (SEND) protocol [RFC3971] MAY be used > > as a security mechanism for ND. In this case, ND can use SEND to > > allow all the ND options including the RDNSS and DNSSL options to > be > > automatically included in the signatures. Other approaches > specified > > in [RFC4861] can be used for securing the RA options for DNS > > configuration. > > Personally, I don't even see the need for using an RFC2119 keyword > here, but if non one else bothers I wouldn't object. But in any case > I think this change has to be noted in Appendix A. > > -- > JINMEI, Tatuya > -- =========================== Mr. Jaehoon (Paul) Jeong, Ph.D. Assistant Professor Department of Software Sungkyunkwan University Office: +82-31-299-4957 Email: jaehoon.paul@gmail.com, pauljeong@skku.edu Personal Homepage: http://iotlab.skku.edu/people-jaehoon-jeong.php <http://cpslab.skku.edu/people-jaehoon-jeong.php>
- 6MAN Working group last call: draft-ietf-6man-rdn… otroan
- Re: 6MAN Working group last call: draft-ietf-6man… Fernando Gont
- Re: 6MAN Working group last call: draft-ietf-6man… otroan
- Reviewers needed (Re: 6MAN Working group last cal… Fernando Gont
- Re: 6MAN Working group last call: draft-ietf-6man… 神明達哉
- RE: 6MAN Working group last call: draft-ietf-6man… Liubing (Leo)
- Re: 6MAN Working group last call: draft-ietf-6man… Fernando Gont
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… 神明達哉
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… otroan
- Re: 6MAN Working group last call: draft-ietf-6man… 神明達哉
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… otroan
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… 神明達哉
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… 神明達哉
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Tassos Chatzithomaoglou
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Lorenzo Colitti
- Re: 6MAN Working group last call: draft-ietf-6man… Fernando Gont
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Lorenzo Colitti
- Re: 6MAN Working group last call: draft-ietf-6man… Fernando Gont
- Re: 6MAN Working group last call: draft-ietf-6man… 神明達哉
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Lorenzo Colitti
- Re: 6MAN Working group last call: draft-ietf-6man… otroan
- Re: 6MAN Working group last call: draft-ietf-6man… Tassos Chatzithomaoglou
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Mr. Jaehoon Paul Jeong
- Re: 6MAN Working group last call: draft-ietf-6man… Fernando Gont