IETF Logo Mail Archive

Re: 6man w.g. last call for <draft-ietf-6man-default-iids-11.txt>

Lorenzo Colitti <lorenzo@google.com> Thu, 19 May 2016 09:04 UTC

Return-Path: <lorenzo@google.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2950212D135 for <ipv6@ietfa.amsl.com>; Thu, 19 May 2016 02:04:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.126
X-Spam-Level:
X-Spam-Status: No, score=-4.126 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-1.426, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BiC_UJI7D3Hz for <ipv6@ietfa.amsl.com>; Thu, 19 May 2016 02:04:14 -0700 (PDT)
Received: from mail-yw0-x231.google.com (mail-yw0-x231.google.com [IPv6:2607:f8b0:4002:c05::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 940A712D0F6 for <ipv6@ietf.org>; Thu, 19 May 2016 02:04:14 -0700 (PDT)
Received: by mail-yw0-x231.google.com with SMTP id j74so71731515ywg.1 for <ipv6@ietf.org>; Thu, 19 May 2016 02:04:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=e9WUsVF6Dm8Q35y/3THRh9LSHWTTcNdD2a9fgAsxdaU=; b=oqZUkV/jgcKDKwDi/n570J2qK7oVVGDGeZqGWgZLItvtLpO5CekAAzL8vc08N8R92B 8e75d8ksDaoYM/gY5WFnNplZen2mpeCEufSyhzTuURfqJZkEyOh9d4oQjFDvcIVk74Sr UId9GQESrvaWBG9eKUsXfIJjb+GKUQDcMoSq5UwLCOJ9d+qTVH52o3TYzfy9Ap2fipVz n6nIKzscGpuz+7k+RgXRZlpIqOwhJchCS9MZis9AAVKOM+RxFR4zzJsvlLd2L1osaQc4 kc4xXj2ZLEx74v7ufVqubhyQKeCFWTppi0UWquTesXom7GPId13VzvbhvOitsD9VQFlw B3rQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=e9WUsVF6Dm8Q35y/3THRh9LSHWTTcNdD2a9fgAsxdaU=; b=KqctOkblOLDHiArt3F4SwBa1XtwiQ+wrBoqCx1BHXj1M8hoVGgulAsYZ9qhFTStX35 tK1ODzr6iiph3mNBGUNGTcKoOdDzzy/qhr1I9UqTvQnXLxdU2BecIpT2dYv8gXE1MwgB IcDfvDd0bXlqtFptcXSSmMpkUPbtZHKYZu3PYtJGYfSB8BlzbZqDnczoT154n0RYOQMQ NmwiAi7X1YP7Yu0p/G5jB5I3Emfg7ANUicNGgPXQqEVmfA0v4hNcOSAA0dkIJ4ZHPUpL +zkMskz2fsZhs1lXew2+l4JCDH/KPEBS7ecxa9qasdUztiOsKq9uZ7naPAGmoZhO0Agt R8fw==
X-Gm-Message-State: AOPr4FVieAJ94dvyGF8JwbbfZfPhIKufhzQ9RzsF4MIZQMtK3dG5M3pFbYLJPS8HvylYBSYam/1SofyKVSD8KYWc
X-Received: by 10.129.80.11 with SMTP id e11mr7029241ywb.197.1463648653665; Thu, 19 May 2016 02:04:13 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.37.198.68 with HTTP; Thu, 19 May 2016 02:03:53 -0700 (PDT)
In-Reply-To: <CAO42Z2xNOyYfqjM9s6YgjWrCAscp6bH0cG-cyLraDJAof8GGMg@mail.gmail.com>
References: <20160428004904.25189.43047.idtracker@ietfa.amsl.com> <89CA2C18-AE61-4D40-8997-221201835944@gmail.com> <CAJE_bqdZ_D7jsDdWQ2FJpLH9cXveYfcye0W2J_mSi-7bYBrOKA@mail.gmail.com> <B849F263-9F99-48E8-B903-8FE7D2CDF277@cooperw.in> <CAJE_bqd1AWOuwvQcGzHg+dAWoump29g14HEA1BoVErXDXSMxaw@mail.gmail.com> <573BCFD0.8090801@si6networks.com> <CAJE_bqfKUbO7C6LnxOOUCVBU9e679_=159Yu6Ti0zhOGDuw98Q@mail.gmail.com> <A1111BEA-C14C-4574-9214-3D9B5500FEA1@cooperw.in> <CAKD1Yr23S4yHM=31VXTJq7t11P3__GEbbRhM0c085gBjQEGi-Q@mail.gmail.com> <CAO42Z2xNOyYfqjM9s6YgjWrCAscp6bH0cG-cyLraDJAof8GGMg@mail.gmail.com>
From: Lorenzo Colitti <lorenzo@google.com>
Date: Thu, 19 May 2016 18:03:53 +0900
Message-ID: <CAKD1Yr26N_YMhQQqnj=fqQZt5vY=E_6RnuwJtqTKUBgsvrFaBA@mail.gmail.com>
Subject: Re: 6man w.g. last call for <draft-ietf-6man-default-iids-11.txt>
To: Mark Smith <markzzzsmith@gmail.com>
Content-Type: multipart/alternative; boundary="001a1147d2b214674305332e4257"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipv6/Pfb48v-G33u1Hn1-S6C9o93p0ik>
Cc: Fernando Gont <fgont@si6networks.com>, 神明達哉 <jinmei@wide.ad.jp>, Bob Hinden <bob.hinden@gmail.com>, IPv6 List <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 May 2016 09:04:16 -0000

On Thu, May 19, 2016 at 5:38 PM, Mark Smith <markzzzsmith@gmail.com> wrote:

> So how would the IPv6 layer test that, and if it was tested properly, what
> happens if the test fails?
>
The code that configures both layer 2 and layer 3 can simply call
arc4random_buf (or your favourite random function) and then "ifconfig wlan0
hw ether <foo>", and then pick an EUI-64 IID based on that. Even if the
hardware does not support the hardware address and does not return an
error, but silently continues to use the hardware MAC address, the
resulting IPv6 address is still random and free from privacy concerns.

> I think the testing of layer 2 address randomisation, and coming up with a
> both a user acceptable and friendly scheme to deal with a test failure is
> harder and more complex that just universally applying RFC7217 to all past,
> current and future link layers, regardless of how good or bad their link
> layer addresses are.
>
This is really not hard to test in any hardware qualification lab. Really,
it isn't.

v2.23.0 | Report a Bug | By Email