Re: [IPv6] RFC 6724 shouldn't prefer partial reachability over reachability

Brian E Carpenter <brian.e.carpenter@gmail.com> Sat, 25 November 2023 00:22 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4993FC1516E1 for <ipv6@ietfa.amsl.com>; Fri, 24 Nov 2023 16:22:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.196
X-Spam-Level:
X-Spam-Status: No, score=-2.196 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-0.091, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Id9oaL13pePe for <ipv6@ietfa.amsl.com>; Fri, 24 Nov 2023 16:22:05 -0800 (PST)
Received: from mail-il1-x131.google.com (mail-il1-x131.google.com [IPv6:2607:f8b0:4864:20::131]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9EC5AC14CEE3 for <ipv6@ietf.org>; Fri, 24 Nov 2023 16:22:05 -0800 (PST)
Received: by mail-il1-x131.google.com with SMTP id e9e14a558f8ab-3580b94ac2eso7919815ab.0 for <ipv6@ietf.org>; Fri, 24 Nov 2023 16:22:05 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1700871724; x=1701476524; darn=ietf.org; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:date:message-id :from:to:cc:subject:date:message-id:reply-to; bh=YOAMbQfnZxU78YK8k93xYLN1NKclZVKbiv/GY7m4eGQ=; b=JM/OlkUaWl74ItSz9Moq/+o5dEPJdIemC5YpS/GAJfEBvMxCczK3PNgFOnXw+QDaOt CNDPr8iJbkC35dnXjYXCn0AhjuokAUCQgh+kxPIFXj01mu7GJaYqAJ42K3V55Wz3O3la 1sGfvV7HtNI2KrFXy72FACo34+KFPdyrmSlo18fLMZgd/pepH7GaN0xAYclXDIG7iu0W AkDgYFfSF2+7E997iwxEFyNqvsRDtricy2f6NmYR6JswI9YDLoVeE4j8Wx07ThVskCvi uEbmMjXJL2yfkEtJ5Vz/rT6lZWc8EKkhrR43yBY90hHiYcV4Pdo5AFp/mbAaZCPPTNd+ bR4A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1700871724; x=1701476524; h=content-transfer-encoding:in-reply-to:from:references:cc:to :content-language:subject:user-agent:mime-version:date:message-id :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=YOAMbQfnZxU78YK8k93xYLN1NKclZVKbiv/GY7m4eGQ=; b=k2GRFdXpVIEitCu5K1NWZrX9joiMyTv/y8cripCjqDzZE4uHG0Bqk1ixKmmSPrzjLQ Pj7jfTw5dmv1ZAq5/O7ExgzEsDFbfiIsGVKPCAe7kct+4GjUkUTDdtiIbu1Zmv+fOGJ0 ldBHqHge3ZTUlKJ/aW+vmLd2RvwpNHeXbDsRpuyB4rISrIunofibwC8sw9fR/GW0FbID TKQwGv5i16Vwl0rUQRsi9NVURAGj2H1w8DqBDbIDrFVXiTl8IBfAKMbpPu6D1tNfBU7M SZn7IcdOL7RFAiG2+GqRMKcKWDdc48HDxv8drdwYCejFPFRWCWQ1wMJlA49X8rx5jHye yjgQ==
X-Gm-Message-State: AOJu0Ywvgqh4SqfAVTMRJwyAdQjqZxIEVFU9ue3cORTzj7yK8AavVKXD Y7t6q4tRop6k2wPH5XwrikajlFkT2UqYOA==
X-Google-Smtp-Source: AGHT+IH9RU8mDBlHL1DOXqbdEgWoqIoivW3V2O+3YpjuWXWIlUO8qa91Z4yokAuKNCpoA4S0bv1q4g==
X-Received: by 2002:a05:6e02:1aa8:b0:35b:2622:b7d1 with SMTP id l8-20020a056e021aa800b0035b2622b7d1mr6943456ilv.11.1700871724615; Fri, 24 Nov 2023 16:22:04 -0800 (PST)
Received: from ?IPV6:2404:4400:541d:a600:44b7:2c2e:2bc6:8707? ([2404:4400:541d:a600:44b7:2c2e:2bc6:8707]) by smtp.gmail.com with ESMTPSA id a28-20020aa78e9c000000b006b5922221f4sm3366042pfr.8.2023.11.24.16.22.02 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Fri, 24 Nov 2023 16:22:04 -0800 (PST)
Message-ID: <a24c332c-e949-32cc-f660-a4434aab4eef@gmail.com>
Date: Sat, 25 Nov 2023 13:21:58 +1300
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:91.0) Gecko/20100101 Thunderbird/91.10.0
Content-Language: en-US
To: Kyle Rose <krose@krose.org>, Ed Horley <ed@hexabuild.io>
Cc: 6man WG <ipv6@ietf.org>
References: <CAJU8_nV2QoGjZoegcUSXELqgeqW6OheTt32qq6YQ5XV0g5MPQw@mail.gmail.com> <10D22CA5-CD7A-471A-B4A9-21B77D16F5F7@employees.org> <CAJU8_nVQFvp_5ZnkByCvBeA7wFz9J5FVAeud2CD1Xd4UkyL_3Q@mail.gmail.com> <4202668E-EEBE-4FA6-9801-F2A9FC92CBD8@tiesel.net> <CAO42Z2y9g3ebZ2VuXDFSK71p3X2VMVQu2=h+sXSVhcfvvxn-Qg@mail.gmail.com> <CACMsEX8q7dmRAVXuOZFVS+z_hrks=n0ChBHR4Bz9gB9ryF0ZAA@mail.gmail.com> <CAO42Z2yFiKs09K-O+SxDytLst_Uu4MAae65PTgz3URLnc5MnQw@mail.gmail.com> <CAE=N4xcFU+87wXy8NkHuO7rZ-T7Z7VmTkfcYFJH3PAJ+8+NPww@mail.gmail.com> <CAJU8_nWEAwzEw-2RpYxyf-i8x_0t8AS5O4GQ8=uB0GGYDFB5jA@mail.gmail.com>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
In-Reply-To: <CAJU8_nWEAwzEw-2RpYxyf-i8x_0t8AS5O4GQ8=uB0GGYDFB5jA@mail.gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: base64
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/JPDFzDFKHOjLhdSbgNFs9kmbm5s>
Subject: Re: [IPv6] RFC 6724 shouldn't prefer partial reachability over reachability
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Nov 2023 00:22:06 -0000

On 25-Nov-23 13:11, Kyle Rose wrote:
> On Fri, Nov 24, 2023 at 5:49 PM Ed Horley <ed@hexabuild.io <mailto:ed@hexabuild.io>> wrote:
> 
>     Other option is to just remove the ULA prefix entirely from 6724 and then the OS doesn’t see it as any different then GUA
> 
> 
> That won't work for any deployment that doesn't NAT/NPT ULA space (which is most of them) because without the label distinction a ULA source and GUA destination might be chosen, resulting in one of several obvious classes of unreachability in one direction or the other.
> 
> ULA and GUA must be treated differently for purposes of address selection: what remains in dispute is exactly *how* that treatment should differ, not *whether* it should.

Yes. What we want, I think, is ULA->ULA to win over GUA->GUA and that means picking source and destination simultaneously. And we want ULA->GUA to never be tried unless the stack knows that NPTv6 is in place. And we can't do any of that correctly based on getaddrinfo() alone. So the draft is the best compromise given that we currently live with getaddrinfo().

    Brian

> 
> Kyle
> 
> 
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------