Re: Objection to draft-ietf-6man-rfc4291bis-07.txt - /63 and /65 RAs on linux

神明達哉 <jinmei@wide.ad.jp> Fri, 03 March 2017 19:03 UTC

Return-Path: <jinmei.tatuya@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EEAAE129990 for <ipv6@ietfa.amsl.com>; Fri, 3 Mar 2017 11:03:19 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.37
X-Spam-Level:
X-Spam-Status: No, score=-2.37 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.229, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PO2chyORAfNU for <ipv6@ietfa.amsl.com>; Fri, 3 Mar 2017 11:03:18 -0800 (PST)
Received: from mail-qk0-x22b.google.com (mail-qk0-x22b.google.com [IPv6:2607:f8b0:400d:c09::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ADC9512998E for <ipv6@ietf.org>; Fri, 3 Mar 2017 11:03:18 -0800 (PST)
Received: by mail-qk0-x22b.google.com with SMTP id g129so7761136qkd.1 for <ipv6@ietf.org>; Fri, 03 Mar 2017 11:03:18 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=WZEPhyzLOrQkwf6N/LJIR+6+BC9+5XHVYlfQXqxP4Og=; b=UdCk8RmLfo1YdSSdAXMP/hr8kNEnNdptt97cL5SrIsPXR6GftSk3KMLA1EaMV2cgXH AN19deWCuM2g6jZRJSaJndvwNHqaUPCb6kyz1IekU3wtQ6YmEkU/gSFBFwlppMu9OYAu 9glQdvhdQXVpNnjjFTP6ePlZPHBTdymXnA/8IyrQ5xIOwIej4RNc6RtoKCVTyolXyZsO O1NV5HeFb+RRLApyWpW4vLXGZSsKaOv5Q9RWS48AmgB+GdEgkU4a+vGCwwMl3uCdrGtI O7QHzw+djQ5DnXqwFPsg5a1JOEiNomvAojUe2WcacKx330U1eHiCNojD7iBLTEwXuy99 3nrg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=WZEPhyzLOrQkwf6N/LJIR+6+BC9+5XHVYlfQXqxP4Og=; b=cGKCtjJKk6yPnEzFah+jCaS8kBlDIjZ/rdW4bJCQFYu0sraIXT0uCNRlsXeykd8Qsg ozRy/t7GFhE3OTgZKS+vmHLT4uWuFz7EvsN2b0IAoW/8W+Y/cDMnULtpelwC+mo3eexQ hv9uJj9UPnzcy3ySjHoEMJzViCihbNTS2cq9ocBounRYCKzFn9WO+ZYFNjURtNIawgOj C2dRaZGLdfdaXoQccgQGCTcAL30QrkRwoLjiw2pDbSmG1k1h/9s+XdK6EoX0jkdwprSj RG200nAdCUcBOaNODtBQkPoXa7izP82mhE1TyGjwPZmXY8mr1SSAzKkrFsqGtz6IZxDm s5qg==
X-Gm-Message-State: AMke39mwUOgSu+NT1BndgRoedwLMjSjlOWL2jGgFAkffpzdAilfMxzQM4GSfmhWtE+yChi7Sn88UqZCqv5DpjA==
X-Received: by 10.55.122.130 with SMTP id v124mr3806659qkc.19.1488567797580; Fri, 03 Mar 2017 11:03:17 -0800 (PST)
MIME-Version: 1.0
Sender: jinmei.tatuya@gmail.com
Received: by 10.237.61.204 with HTTP; Fri, 3 Mar 2017 11:03:17 -0800 (PST)
In-Reply-To: <63d98caf-ab70-088f-ff6b-ad27a11619e0@gmail.com>
References: <20170223134026.GI5069@gir.theapt.org> <CAL9jLaYO=uYgVfSZ0SoSe0SujJ1xgwEKE8WLzo_keJHywgXTtg@mail.gmail.com> <CAN-Dau1vJV5O_Ythp6THkAu4-YZXV82Upny1V+ybbjCVZQQX=A@mail.gmail.com> <27cce319-18ac-5c0e-3497-af92344f0062@gmail.com> <de4988be-6031-08d9-84ce-21c3fa4f9bc9@gmail.com> <98401ef7-cf41-b4a0-4d11-a7d840181bd0@gmail.com> <1047f5fc-ae40-be52-6bab-27f31fe5e045@gmail.com> <9a94feac-8d59-b153-d41c-04fc371e4db4@gmail.com> <CAO42Z2z7v4gDk91b6Of-1sczV88m3B9kzn0MeJU_VBJ416k6Ww@mail.gmail.com> <ae35b45a-0398-840f-fc0d-1f64dd2fcc58@gmail.com> <37851ee3-03be-8bee-6190-f4d28df86305@gmail.com> <alpine.DEB.2.02.1703012051590.30226@uplift.swm.pp.se> <b5784622-c24e-a531-4e68-249b03701941@gmail.com> <CAAedzxrSTFe0GgYuvtXPNE=R_ZCXotxL7HbKdj5A4-869rncmw@mail.gmail.com> <ba025be6-709d-87b4-f388-d6f143408277@gmail.com> <alpine.DEB.2.02.1703021029010.30226@uplift.swm.pp.se> <4e17a9f4-6daf-787f-0321-3327fe601d70@gmail.com> <bead3cd8-f7f9-37b3-66f9-e76ae94056d1@baanhofman.nl> <63d98caf-ab70-088f-ff6b-ad27a11619e0@gmail.com>
From: =?UTF-8?B?56We5piO6YGU5ZOJ?= <jinmei@wide.ad.jp>
Date: Fri, 3 Mar 2017 11:03:17 -0800
X-Google-Sender-Auth: gWnONoGaa5qzWlZWNxRPo9vhqdk
Message-ID: <CAJE_bqcOLSK061p_biSD3GK1y464Ld=8Zp3-hAuJqQ2R2t3JRw@mail.gmail.com>
Subject: Re: Objection to draft-ietf-6man-rfc4291bis-07.txt - /63 and /65 RAs on linux
To: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/EL4SSVr46Es7WTBNYuedi6nPIxM>
Cc: IPv6 IPv6 List <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Mar 2017 19:03:20 -0000

At Thu, 2 Mar 2017 13:36:44 +0100,
Alexandre Petrescu <alexandre.petrescu@gmail.com>; wrote:

> Yes, the IP-over-Eth RFC2464 mandates "An IPv6 address prefix used for
> stateless autoconfiguration [ACONF] of an Ethernet interface must have a
> length of 64 bits".
>
> It does not say which prefix of [ACONF/RFC2462] must be /64?  Is it a
> global prefix in RA?  Or is it the link-local prefix?  Both these
> prefixes are relevant for the above phrase, both are mentioned in ACONF,
> yet only one is present in RA (the one linux complains about when at
> 65).  Is the mandate cited above applying to the prefix in RA?  Or to
> the link-local prefix?  If the mandate applies to the prefix in RA then

Both, and I believe at least most implementers have had no difficulty
in interpreting the spec that way.

> linux is right to complain, on Ethernet.  If the mandate applies only to
> the LL prefix, then linux is wrong to complain about 65 in RA.  If the
> mandate applies to both then RFC4291 is wrong when it says fe80::/10.

Like in my previous message, I don't know what "it says fe80::/10" in
this context.  I also don't know implementation details of the Linux
kernel either, but the BSD implementation uses:

- uses the 64-bit IID (as specified in RFC2464)
- uses the fe80::/64 prefix (as defined in RFC4291 Section 2.5.6)
- combine these to configure a link-local address fe80::<64-bit IID>
  as specified in Section 5.3 of RFC4862

To me there's nothing confusing or unclear here, and I suspect the
Linux implementation essentially does the same thing.

> RFC2464 does not say "the prefix in an RA on Ethernet MUST be 64".

That's fine.  The only thing this RFC is expected to say is the length
of IIDs.  RFC4862 defines how we use the IID to (auto)configure
addresses.  And RFC4862 applies it to both link-local and global.

> It does not forbid that that 64bit prefix be formed by self-appending a
> 0 to a /63 from the RA, or other mechanism.

It's not the job of RFC2464.  RFC4862 imposes the restriction through
its Section 5.5.3 bullet d):

      If the sum of the prefix length and interface identifier length
      does not equal 128 bits, the Prefix Information option MUST be
      ignored.

> Besides, RFC4862 (successor to 2462) says "If the sum of the prefix
> length and interface identifier length does not equal 128 bits, the
> Prefix Information option MUST be ignored." And linux does _not_ ignore
> a /63 in the RA: it adds a rt entry for that /63 prefix.  That's not
> normal either.

I suspect you're probably conflating SLAAC with on-link prefix
determination.  I guess that "rt entry for that /63 prefix" is to
treat the /63 prefix as on-link (assuming the corresponding PIO has L
bit on).  If so, that's the correct behavior per RFC4861 (not 4862).
It's also correct to ignore that prefix for SLAAC per RFC4862 (not
4861).  Nothing wrong here.

--
JINMEI, Tatuya