IETF Logo Mail Archive

Re: [IPv6] Second Working Group Last Call for <draft-ietf-6man-rfc6724-update>

Kyle Rose <krose@krose.org> Thu, 11 April 2024 13:51 UTC

Return-Path: <krose@krose.org>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA14AC151717 for <ipv6@ietfa.amsl.com>; Thu, 11 Apr 2024 06:51:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=krose.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id f4fZ61YnGgwF for <ipv6@ietfa.amsl.com>; Thu, 11 Apr 2024 06:51:26 -0700 (PDT)
Received: from mail-ej1-x62e.google.com (mail-ej1-x62e.google.com [IPv6:2a00:1450:4864:20::62e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 245E9C1D5C45 for <ipv6@ietf.org>; Thu, 11 Apr 2024 06:45:28 -0700 (PDT)
Received: by mail-ej1-x62e.google.com with SMTP id a640c23a62f3a-a522e8e283eso883266b.1 for <ipv6@ietf.org>; Thu, 11 Apr 2024 06:45:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=krose.org; s=google; t=1712843126; x=1713447926; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=SuqTxcCnd7N9+EkKx8wHqwwI9Ovd6VqnWK9UV6HGRVo=; b=WqTtbIj+zpmjY1H7ygvQ3M7CoEhvywUbOdFg6NT3zTMS5JXmLG/xgTzgzEyXRcOsq5 pY4/EPNZiwGBBIa7OPYBp0VAR4e2MD/niCDcslThYVF+AMw06w5WLKiB3CQzz2CuvwQj eAkZXKGWTPFPwOB8hmDeDjnOZ6EUB0rJah/W8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712843126; x=1713447926; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=SuqTxcCnd7N9+EkKx8wHqwwI9Ovd6VqnWK9UV6HGRVo=; b=T8OfddkWsKdj/FclrTEsIPPa2g2kAnk1+SBzwSrHve1R5y8QC1ph47FV9xwz/9RTDl slDbdnyapLz6YB+lyC97UMyph6Xp42N6RMoK6keZ7GT2zdldub/Xqf0l6EUaM+krdq9J KIYjz0pW5iEKH1aH8umf1waV0zsWnTC68PcqJF4O1OCSTttO9JpxFKSda+a1IgkpJzOm JAwKGorvE3ZWawJVwpBdCbW146dP2RaoKbMvgToQLgCRnlY3eECq1PeNMc5On9MF2F7q TlZhAld66VgEyUcpcJQbHYOt7sN4EhiLPUr85XjsIEakvfEkXKmJQg7+2FtqcrVsc4SX NmBQ==
X-Forwarded-Encrypted: i=1; AJvYcCXiqrxxkNndqcNgXFTdVcBXIgWWNwE8QV+tkVRkZRf9gyMuSaARcNswiDA5Z61qSfo0K2VF5oJfiQAW49qE
X-Gm-Message-State: AOJu0Yx/dCFksF6yc5IbWIsT8PWj6SfreISeMjWryTpN/1a5lrfW/4bD ctjvJkaMMWBtcmF4HLJe36fFkBbPicgFkw6IW8nixZkc0BTZMx7YX8dJp2258qG++pLvXXUXshc ++A4ZhyA3RTqJGBj1po+JK044NJUMbh+XXfN1mg==
X-Google-Smtp-Source: AGHT+IG7yQiBrjoWqSvprC5epxdX8W3GcJS6ZHdCgwnNQNh1uXeDdVm15zThs8iRtpmFPP9tktgyouVk6ZkgRPqQsNM=
X-Received: by 2002:a17:906:184a:b0:a52:882:abaa with SMTP id w10-20020a170906184a00b00a520882abaamr3339800eje.76.1712843126123; Thu, 11 Apr 2024 06:45:26 -0700 (PDT)
MIME-Version: 1.0
References: <6A5E5F35-B35F-4358-8EE1-3BD82329141E@jisc.ac.uk> <6FBC1B5A-BF28-4B05-B2B2-A60DA4707755@gmail.com> <CAPt1N1m-Ye8vfOVnsPesFshLMV5QuVoxWqM=HVZiJ37zaBg6AA@mail.gmail.com> <CAKD1Yr1NTvFj0zB0=+nnUKck7TBtwHFz2XoFkD1smx4yCuZohQ@mail.gmail.com> <CAJU8_nWyE5TqBTXB9wfSkn6refaqYNVN967YAtCp-0VMk-5qWQ@mail.gmail.com> <CAPt1N1mqszfafMMY=54ezpoRymoy=bBjeVnWzxj6A27smR1eig@mail.gmail.com> <CAJU8_nWDDfwWEoahU4dqTEh3_HCq2UfpkFjefnXohb+5DAbjew@mail.gmail.com> <CAPt1N1nTJ1sDEQrn1iNUbvreu5bt0BweWgX7iOw6fmPgNBvUqw@mail.gmail.com> <CAJU8_nWsg=eGxu59akfB0+pOTJ-TYud-a_wGhtgnpp1RizVhrw@mail.gmail.com> <CAPt1N1nbTuSH4GGrimFAxe3YqTLbhiTX5KVjYsw+JRjoadzzrw@mail.gmail.com>
In-Reply-To: <CAPt1N1nbTuSH4GGrimFAxe3YqTLbhiTX5KVjYsw+JRjoadzzrw@mail.gmail.com>
From: Kyle Rose <krose@krose.org>
Date: Thu, 11 Apr 2024 09:45:14 -0400
Message-ID: <CAJU8_nU-+PcARtdLZ4cTOP_TQX5FQXPfALfs5MsivP84tFihPQ@mail.gmail.com>
To: Ted Lemon <mellon@fugue.com>
Cc: Lorenzo Colitti <lorenzo=40google.com@dmarc.ietf.org>, Bob Hinden <bob.hinden@gmail.com>, IPv6 List <ipv6@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000016caf30615d25eb6"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/ndh3A9wT5d44nv8ikEXnpJAJ3IY>
Subject: Re: [IPv6] Second Working Group Last Call for <draft-ietf-6man-rfc6724-update>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Apr 2024 13:51:31 -0000

On Thu, Apr 11, 2024 at 9:29 AM Ted Lemon <mellon@fugue.com> wrote:

> Kyle, I don't know if you can see this from where you're sitting, but you
> are making a religious argument here. It is not a misconfiguration to put a
> ULA in the DNS right now in the sense that it causes a problem.
>

This is not true. As I've noted several times over the past year, the
current behavior of glibc's getaddrinfo in Debian stable and maybe other
Linux distributions is to prefer ULA to IPv4, contra 6724. It does this by
combining the 6724 labels (so ULA and GUA are not mixed) with the 3484
precedences (so all IPv6 is preferred to all IPv4). I have no idea who made
that change or when it was introduced, but that person was a visionary;
BUT, in doing so, it would break (timeout/rejection, retry, etc.) with
unreachable ULA.

It's a misconfiguration because it doesn't match your mental model of How
> Things Should Be.
>

I am indeed arguing that putting unreachable addresses in global DNS is a
misconfiguration. As a site administrator, I wouldn't put either RFC 1918
addresses or ULA into global DNS if I wanted clients to be able to connect
without timeouts and retries. There are certainly alternate histories of
the internet in which such a model would have been okay, but that's not the
internet we have in this timeline.

Kyle

v2.23.0 | Report a Bug | By Email