RE: Link-local IPv6 addresses in URIs
"Manfredi, Albert E" <albert.e.manfredi@boeing.com> Thu, 17 November 2011 19:11 UTC
Return-Path: <albert.e.manfredi@boeing.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AD05811E8088 for <ipv6@ietfa.amsl.com>; Thu, 17 Nov 2011 11:11:52 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.999
X-Spam-Level:
X-Spam-Status: No, score=-5.999 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, J_CHICKENPOX_37=0.6, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IZATDFqbOkx1 for <ipv6@ietfa.amsl.com>; Thu, 17 Nov 2011 11:11:51 -0800 (PST)
Received: from stl-smtpout-01.boeing.com (stl-smtpout-01.boeing.com [130.76.96.56]) by ietfa.amsl.com (Postfix) with ESMTP id A77F911E8086 for <ipv6@ietf.org>; Thu, 17 Nov 2011 11:11:51 -0800 (PST)
Received: from blv-av-01.boeing.com (blv-av-01.boeing.com [130.247.48.231]) by stl-smtpout-01.ns.cs.boeing.com (8.14.4/8.14.4/8.14.4/SMTPOUT) with ESMTP id pAHJBiWb019738 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL) for <ipv6@ietf.org>; Thu, 17 Nov 2011 13:11:48 -0600 (CST)
Received: from localhost (localhost [127.0.0.1]) by blv-av-01.boeing.com (8.14.4/8.14.4/DOWNSTREAM_RELAY) with SMTP id pAHJBhJn003989 for <ipv6@ietf.org>; Thu, 17 Nov 2011 11:11:43 -0800 (PST)
Received: from XCH-MWHT-03.mw.nos.boeing.com (xch-mwht-03.mw.nos.boeing.com [134.57.119.161]) by blv-av-01.boeing.com (8.14.4/8.14.4/UPSTREAM_RELAY) with ESMTP id pAHJBf8r003917 (version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=OK); Thu, 17 Nov 2011 11:11:42 -0800 (PST)
Received: from XCH-MW-08V.mw.nos.boeing.com ([134.57.119.191]) by XCH-MWHT-03.mw.nos.boeing.com ([134.57.119.161]) with mapi; Thu, 17 Nov 2011 13:11:41 -0600
From: "Manfredi, Albert E" <albert.e.manfredi@boeing.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, 6man <ipv6@ietf.org>
Date: Thu, 17 Nov 2011 13:11:38 -0600
Subject: RE: Link-local IPv6 addresses in URIs
Thread-Topic: Link-local IPv6 addresses in URIs
Thread-Index: Acyk5eOn8R87VgKqQTSLHjJHPnm5FgAdsguw
Message-ID: <B0147C3DD45E42478038FC347CCB65FE02B32DDBEF@XCH-MW-08V.mw.nos.boeing.com>
References: <CABOxzu0np9tCJgurrL6zCc1CpHd6KbrUdwnL5UocE6TM8a_G2w@mail.gmail.com> <4EC0E1FD.6050107@gmail.com> <4EC494EB.4070000@gmail.com>
In-Reply-To: <4EC494EB.4070000@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Nov 2011 19:11:52 -0000
Yes from me. Thanks. Bert -----Original Message----- From: ipv6-bounces@ietf.org [mailto:ipv6-bounces@ietf.org] On Behalf Of Brian E Carpenter Sent: Thursday, November 17, 2011 12:00 AM To: 6man Cc: Kerry Lynn Subject: Re: Link-local IPv6 addresses in URIs Dear 6man, Kerry and I talked about this. It seems to me that, given we allow for IPv6 literals in URIs principally for diagnostic purposes, it is indeed unfortunate that http://[fe80::206:98ff:fe00:232%tap0] is not allowed by the formal syntax. This would need to be fixed by a small RFC that updates 3986, just as 2732 updated 2396 in its day. Do people agree that this is a reasonable thing to do? If so, I'll follow it up appropriately (i.e. I will draft something when time permits). Regards Brian On 2011-11-14 22:40, Brian E Carpenter wrote: > Kerry, > > On 2011-11-14 18:41, Kerry Lynn wrote: >> Greetings, >> >> I've noticed that a "bug" has re-appeared in Firefox: >> https://bugzilla.mozilla.org/show_bug.cgi?id=700999 >> >> In older versions of Firefox (e.g. 3.6.23) it is possible to enter URIs of >> the form http://[fe80::206:98ff:fe00:232%tap0] in the >> location bar and get a positive result. This capability is quite handy in >> simple testing scenarios and obviously requires the client and server >> to be on a common link (so I don't necessarily see how it creates a >> security risk.) >> >> According to a note attached to the bug, the regression occurred as a >> result of fixing a security bug: >> https://bugzilla.mozilla.org/show_bug.cgi?id=<https://bugzilla.mozilla.org/show_bug.cgi?id=700999> >> 504014 <https://bugzilla.mozilla.org/show_bug.cgi?id=504014> >> I don't seem to have access to that bug, so I don't know the complete >> rationale. However, the note on 700999 says the title is "Enforce RFC >> 3986 syntax for IPv6 literals". It goes on to say that RFC 3986 >> "disallows" interface specifiers (a.k.a. zone indices: >> http://en.wikipedia.org/wiki/IPv6_address#Link-local_addresses_and_zone_indices >> ). >> >> I don't see how a link-local address can be used in this context w/o >> using a zone index. > > As soon as there's more than one interface, there is an issue. > >> Granted, RFC 3986 doesn't cover this case but >> it also doesn't prohibit it. > > Yes it does, because the ABNF for IPv6address is for an address, not > a scoped address. A scoped address would not conform to the ABNF, so > that amounts to a prohibition. > >> This leads me to suspect it was an oversight, > > This part of RFC 3986 derives from RFC 2732 (which had broken ABNF, > and didn't allow for a scoped address, because they didn't exist then). > >> so I'm wondering if RFC 3986 needs to be updated to cover it link- >> local IPv6 literals? If so, is there a reference that could be used to >> derive the necessary ABNF? > > I don't believe so. The ABNF has never been extended to cover RFC 4007 > as far as I know. > > Getting RFC 3986 updated would be reasonably complicated I suspect. > It involves a chat with the W3C people for a start. > > Brian > > -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
- Link-local IPv6 addresses in URIs Kerry Lynn
- Re: Link-local IPv6 addresses in URIs Brian E Carpenter
- Re: Link-local IPv6 addresses in URIs Brian E Carpenter
- Re: Link-local IPv6 addresses in URIs Carsten Bormann
- Re: Link-local IPv6 addresses in URIs Kerry Lynn
- Re: Link-local IPv6 addresses in URIs Brian Haberman
- RE: Link-local IPv6 addresses in URIs Manfredi, Albert E
- Re: Link-local IPv6 addresses in URIs Tomoyuki Sahara
- Re: Link-local IPv6 addresses in URIs Kerry Lynn
- Re: Link-local IPv6 addresses in URIs Brian Haberman
- Re: Link-local IPv6 addresses in URIs François-Xavier Le Bail
- Re: Link-local IPv6 addresses in URIs François-Xavier Le Bail
- Re: Link-local IPv6 addresses in URIs Brian E Carpenter
- Link-local IPv6 addresses in the DNS Mark Andrews
- Re: Link-local IPv6 addresses in the DNS Philip Homburg
- Re: Link-local IPv6 addresses in the DNS Brian E Carpenter
- Re: Link-local IPv6 addresses in URIs Brian E Carpenter
- Re: Link-local IPv6 addresses in the DNS Brian E Carpenter
- Re: Link-local IPv6 addresses in the DNS Brian E Carpenter
- Re: Link-local IPv6 addresses in the DNS Mark Andrews
- RE: Link-local IPv6 addresses in the DNS Christian Huitema
- Re: Link-local IPv6 addresses in the DNS Kerry Lynn
- Re: Link-local IPv6 addresses in the DNS Kerry Lynn
- Re: Link-local IPv6 addresses in the DNS Philip Homburg
- Re: Link-local IPv6 addresses in URIs François-Xavier Le Bail