IETF Logo Mail Archive

Re: rfc4941bis: Invalid addresses used by ongoing sessions

Tom Herbert <tom@herbertland.com> Tue, 11 February 2020 04:30 UTC

Return-Path: <tom@herbertland.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4747E1200E0 for <ipv6@ietfa.amsl.com>; Mon, 10 Feb 2020 20:30:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Wwvlp8C4AUE4 for <ipv6@ietfa.amsl.com>; Mon, 10 Feb 2020 20:30:46 -0800 (PST)
Received: from mail-ed1-x52a.google.com (mail-ed1-x52a.google.com [IPv6:2a00:1450:4864:20::52a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 99134120072 for <6man@ietf.org>; Mon, 10 Feb 2020 20:30:45 -0800 (PST)
Received: by mail-ed1-x52a.google.com with SMTP id f8so3128176edv.2 for <6man@ietf.org>; Mon, 10 Feb 2020 20:30:45 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=X+XrTDi8CWi2V4yEpiR7ge5SEc8oVZL3Udu6TORFGfU=; b=laHna9jJ1CuYmlxS9spLWi+wct05u0RWcEFgwQXH6YfZR3uYEwoOPlgCPwW5/jxIPq XRe94qRo91YkIXneCVn34wbR7hbgZfbFhHzvrSFB/Su340hnkSXYg/GbioCjQRsECwRn On/2pBVotnlLpk1g2clX6aCoCFb54Zv1yTY/1vskPTQvTlXgr0lhF9/81tRf5xrgGVxf LhIucP/NMVzAg8niTqugliw+fbVPCHbabSAW6OQFc+q+1Rh77dA6Hz3XDTYXqN1FM8eT yx62XLLSyQvtvV7EmKv8hyVHpWJgoxBv/Q/MJrnwENj5r149eQVWfasj+p/gwQ9eZ8pQ +LiA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=X+XrTDi8CWi2V4yEpiR7ge5SEc8oVZL3Udu6TORFGfU=; b=FvblKCOghR3oyNiCM4X1lFvO0/2gIsIKRj+SP69GIzV2Ve3Ml/bV8uV+mo0RLbPNbT IMoNTvAPyjJcKpkkUB717YQB2xeIawnL2e+vn7Q0iZsiC8wzKiQIb+igv2NVcvXeIXIh azhWAHEgO02WTmgPhLMWFiA4bwdeZZtTbiJVVPSX8QcBT5iEdUe2JeXVGvjdO2lzwcbc Ef2m+recZnbEVbTTFTR2+3raLVA61Y1i8wByTszSSRuhlLt/EkS2ZPxn1dmm/UVaMpy1 lzfnXdLmWBPfrbk6STx2HTqxa+JssrncFuAQoHfSAkIZgpqPO9/J2Gnq/uKvp4uFA7xA qceA==
X-Gm-Message-State: APjAAAUaWJPAqnDo73JjrU+sRvw9lrzNaB7QVKxIHui4Xq/xk3jYERAr FaXXmkxqbjs8zF2fU8DZYgursPO9OziW8ceAyTneHA==
X-Google-Smtp-Source: APXvYqzNzaLwcB6C0oaF6KtP0U8dJ3S7exyZKLlpBaEBXuFadPwSEGtml/w30+Z+cRi4CDplEMue+sWujjrNenUx3bM=
X-Received: by 2002:a17:906:55d3:: with SMTP id z19mr4236956ejp.304.1581395444017; Mon, 10 Feb 2020 20:30:44 -0800 (PST)
MIME-Version: 1.0
References: <c6ba9a00-cb44-2022-5009-34211966518c@si6networks.com> <CABNhwV0mb8dL_4Ef5UxAbcRbP18nH9Ztvx8XHJ0Z0GM-NaCwgw@mail.gmail.com>
In-Reply-To: <CABNhwV0mb8dL_4Ef5UxAbcRbP18nH9Ztvx8XHJ0Z0GM-NaCwgw@mail.gmail.com>
From: Tom Herbert <tom@herbertland.com>
Date: Mon, 10 Feb 2020 18:30:32 -1000
Message-ID: <CALx6S36YJ1cnCznw_BbfLmubZ+s1BQgAb5fyJ=UFhge1igq77Q@mail.gmail.com>
Subject: Re: rfc4941bis: Invalid addresses used by ongoing sessions
To: Gyan Mishra <hayabusagsm@gmail.com>
Cc: Fernando Gont <fgont@si6networks.com>, 6MAN <6man@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000b0bf87059e4551d8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/MOCmTig1YJhU59fzeZvdMVBN5ok>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Feb 2020 04:30:48 -0000

On Mon, Feb 10, 2020, 4:12 PM Gyan Mishra <hayabusagsm@gmail.com> wrote:

>
>
>
> On Mon, Feb 10, 2020 at 11:12 AM Fernando Gont <fgont@si6networks.com>
> wrote:
>
>> Folks,
>>
>> As currently specified, temporary addresses are removed when they become
>> invalid (i.e., the Valid Lifetime expires).
>>
>> Section 6 ("6.  Future Work") of the draft
>> (https://tools.ietf.org/id/draft-ietf-6man-rfc4941bis-06.txt) still
>> keeps the following text from RFC4941.
>>
>> 6.  Future Work
>>
>>    An implementation might want to keep track of which addresses are
>>    being used by upper layers so as to be able to remove a deprecated
>>    temporary address from internal data structures once no upper layer
>>    protocols are using it (but not before).  This is in contrast to
>>    current approaches where addresses are removed from an interface when
>>    they become invalid [RFC4862], independent of whether or not upper
>>    layer protocols are still using them.  For TCP connections, such
>>    information is available in control blocks.  For UDP-based
>>    applications, it may be the case that only the applications have
>>    knowledge about what addresses are actually in use.  Consequently, an
>>    implementation generally will need to use heuristics in deciding when
>>    an address is no longer in use.
>>
>>
>> I wonder if this text should be:
>>
>> 1) moved more into the body of the document and made a "MAY" (which for
>> TCP is very straightforward),
>>
>> 2) Be left "as is", or,
>>
>> 3) Removed from the document
>>
>>
>> The implications of #1 above is that it can't prevent long-lived
>> connections that employ temporary addresses from being torn down, at the
>> expense of possibly increasing the number of concurrent IPv6 addresses.
>
>
>   Gyan> So for TCP apps it maybe easier to track via active TCB blocks so
> those long lived connections could be tracked.  So those long lived TCP
> connections would not be impacted and torn down.  Other apps using UDP may
> not be as easily tracked and so maybe using the deprecated address, however
> due to difficulty of tracking maybe torn down as a side effect of option
> #1.
>

Gyan,

Connected UDP sockets should work like TCP.

For unconnected sockets, the applications respond to whatever address
packets are received from. If the address for a UDP flow changes the
application needs to adjust to the new address. Note this characteristic
already exists, for instance the apparent endpoint of a UDP flow can change
due to NAT state eviction, and application protocols like QUIC handle this
case.

Tom


>>
>> Thoughts?
>>
>> Thanks!
>>
>> Cheers,
>> --
>> Fernando Gont
>> SI6 Networks
>> e-mail: fgont@si6networks.com
>> PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
>>
>>
>>
>>
>> --------------------------------------------------------------------
>> IETF IPv6 working group mailing list
>> ipv6@ietf.org
>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> --------------------------------------------------------------------
>>
> --
>
> Gyan  Mishra
>
> Network Engineering & Technology
>
> Verizon
>
> Silver Spring, MD 20904
>
> Phone: 301 502-1347
>
> Email: gyan.s.mishra@verizon.com
>
>
>
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------
>

v2.23.0 | Report a Bug | By Email