IETF Logo Mail Archive

Re: [v6ops] A common problem with SLAAC in "renumbering" scenarios

神明達哉 <jinmei@wide.ad.jp> Tue, 26 February 2019 17:16 UTC

Return-Path: <jinmei.tatuya@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A947312785F; Tue, 26 Feb 2019 09:16:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.902
X-Spam-Level:
X-Spam-Status: No, score=-0.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.018, FREEMAIL_FROM=0.001, FROM_EXCESS_BASE64=0.979, HEADER_FROM_DIFFERENT_DOMAINS=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YJ_ZfM_uRsqj; Tue, 26 Feb 2019 09:16:40 -0800 (PST)
Received: from mail-wm1-f48.google.com (mail-wm1-f48.google.com [209.85.128.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B394124B0C; Tue, 26 Feb 2019 09:16:40 -0800 (PST)
Received: by mail-wm1-f48.google.com with SMTP id n19so3183990wmi.1; Tue, 26 Feb 2019 09:16:40 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=5LBmknigahiuE7ihP1kUMXnQh0fCKnGyUXOb0msRlFo=; b=Tx78sUdcdd0WY7x+j8F++n0ePocBpL3+DtJB0aBpi0r8XYasMO3DtlrKA4zwXasvwd x8ghLVKniv32Q8w60Cov6swcAGf+X0JONP3hNWSx8yR/LcUd98BVSYkDmY1EYsSGXfOm /2bsmjAPJdhf+OhumqY30p6HRqLVYvZyhY/hZm5RgOXeJW/CGi+unhhLiq6wkR6bdrF2 K8gZ1zDMI2pBiXyJ0ROK4Ixt5GRyOg3LJYJaHFBy6SsDB4qnH+90u8VCBqdSqaCCNwzT lgHb2Z7dnWmTJz15EBqxPTVF6mPJkklOWIno0s4qqfXFGGZ54VtQXD7VA3dYNZEOMLLT AHew==
X-Gm-Message-State: AHQUAubTD/sOyFCgP3kwuZeG3apLUBdmEc5+qh/Yic+EFlCQBIeexqxO 7PEtFu+EOqfiYHfDX++felD39znhA/oQH5F/aak=
X-Google-Smtp-Source: AHgI3Ib75je0VOytmjr5s4dci3WkzSudq609Xr5xYRJOgQb9+uivQbNU/7OTUNIwL3H84dUpMD4euMMur37H3zZHzLg=
X-Received: by 2002:a1c:6409:: with SMTP id y9mr3528574wmb.68.1551201398450; Tue, 26 Feb 2019 09:16:38 -0800 (PST)
MIME-Version: 1.0
References: <6D78F4B2-A30D-4562-AC21-E4D3DE019D90@consulintel.es> <20190220213107.GS71606@Space.Net> <019c552eb1624d348641d6930829fd1f@boeing.com> <CAKD1Yr0HBG+rhyFWg9zh0t3mW486Mjx9umjn+CRqAZg4z9r0dg@mail.gmail.com> <20190221073530.GT71606@Space.Net> <CAO42Z2wmB2W52b4MZ2h9sW5E9cQKm-HRjyf--q8C26jezS7LXQ@mail.gmail.com> <a73818d31db7422b99a524bc431b00ed@boeing.com> <CAO42Z2z9-48Gbb_Exf+oWUqDO=axSLpZBtqeDcxkAoFq5OziGw@mail.gmail.com> <CALx6S3624hnGauG1HaSWPMvQw0t2Q5R3gb8W4R8w3kuK7dcrWQ@mail.gmail.com> <1F07F2BB-2F37-4D12-9731-7892DF4E3D88@consulintel.es> <0a582916-af14-bd82-a4cd-002a36f8830b@huitema.net> <67515a73-26a5-3ed0-da88-1a4ce64550d3@foobar.org> <360afa02-cf23-375c-4876-780d3c2aa5ac@gont.com.ar> <CAHL_VyD34V=TRcsCp0DOO9HJNHyy5xkiMQ_cZoBa7zTE4fe5OA@mail.gmail.com> <ead01e0a-9211-7944-88d6-ae8d037c03a8@si6networks.com> <FB8B77EE-CC16-4418-BB5E-D44EE66D6B72@jisc.ac.uk> <29dcc6ed-03f6-3ead-6866-eecbefdf1483@si6networks.com> <F4F90B88-3EED-4AF2-82FE-5F1023A05605@employees.org> <c3562b5b-0eec-636b-3bb1-1b0381109542@si6networks.com>
In-Reply-To: <c3562b5b-0eec-636b-3bb1-1b0381109542@si6networks.com>
From: 神明達哉 <jinmei@wide.ad.jp>
Date: Tue, 26 Feb 2019 09:16:25 -0800
Message-ID: <CAJE_bqdttuCfqbjyVRiyZrUOvckLhWMNr21eMfeXBVmv+UbTkA@mail.gmail.com>
Subject: Re: [v6ops] A common problem with SLAAC in "renumbering" scenarios
To: Fernando Gont <fgont@si6networks.com>
Cc: Ole Troan <otroan@employees.org>, IPv6 Operations <v6ops@ietf.org>, "6man@ietf.org" <6man@ietf.org>, Fernando Gont <fernando@gont.com.ar>
Content-Type: multipart/alternative; boundary="0000000000005470a70582cf385e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/aZntdzZLmYHFukt5E6bjv_XPLmw>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 26 Feb 2019 17:16:43 -0000

At Tue, 26 Feb 2019 07:43:00 -0300,
Fernando Gont <fgont@si6networks.com> wrote:

> > In the DHCP PD case they should also be counted down in real time.
> > And the lifetimes can be dynamically adjusted.
>
> They should. However, quite frequently the DHCPv6-PD part is a different
> piece of software from the ra{d,dvd} part. Both pieces are glued by some
> script, and the lifetime is *not* dynamically adjusted.

It's a clear violation of Section 18.2.10.1 of RFC8415:

      If the client uses a delegated prefix to configure addresses on
      interfaces on itself or other nodes behind it, the preferred and
      valid lifetimes of those addresses MUST be no longer than the
      remaining preferred and valid lifetimes, respectively, for the
      delegated prefix at any time.  In particular, if the delegated
      prefix or a prefix derived from it is advertised for stateless
      address autoconfiguration [RFC4862], the advertised preferred and
      valid lifetimes MUST NOT exceed the corresponding remaining
      lifetimes of the delegated prefix.

while we cannot completely ignore non-compliant implementations (if
any) in practice, IMO the existence of violators shouldn't be the
primary reason for tweaking the protocol.

Besides, I'm actually not so sure if it's so difficult to comply with
today's tools.  RFC4861 has the concept of dynamically decrementing
the advertised lifetimes as a protocol parameter (with a MAY):

                        AdvValidLifetime
[...]
                               - a time that decrements in real time,
                                 that is, one that will result in a
                                 Lifetime of zero at the specified time
                                 in the future, or
[...]
                        AdvPreferredLifetime
[...]
                               - a time that decrements in real time,
                                 that is, one that will result in a
                                 Lifetime of zero at a specified time in
                                 the future, or

and I suspect that non-negligible number of implementations support
this concept.  BSD's rtadvd does, apparently so does Linux radvd.
For these implementations, it's just a matter of configuration, even
if the DHCP-PD client and RA advertisement are implemented as
different pieces of software: a "script" takes the lifetimes from
DHCPv6 PD and dumps the RA configuration by setting AdvXXXLifetimes to
that values that decrement in real time.

I don't necessarily oppose to the idea of revising the default prefix
lifetimes currently specified in RFC4861.  The growing deployment of
mobile environments may justify an update, for example.  But the
discussion should be based on accurate understanding of what's
possible with the current specification and actual implementations,
rather than speculative "red herring".

--
JINMEI, Tatuya

v2.23.0 | Report a Bug | By Email