Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-support
Steven Barth <cyrus@openwrt.org> Thu, 23 July 2015 11:40 UTC
Return-Path: <cyrus@openwrt.org>
X-Original-To: mif@ietfa.amsl.com
Delivered-To: mif@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A386E1A854B for <mif@ietfa.amsl.com>; Thu, 23 Jul 2015 04:40:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.549
X-Spam-Level:
X-Spam-Status: No, score=-1.549 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_DE=0.35, HTML_MESSAGE=0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id is_TVsX8GFjX for <mif@ietfa.amsl.com>; Thu, 23 Jul 2015 04:40:35 -0700 (PDT)
Received: from mail.core-networks.de (mx1.core-networks.de [IPv6:2001:1bc0:d::4:8]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 243661A89B3 for <mif@ietf.org>; Thu, 23 Jul 2015 04:40:27 -0700 (PDT)
Received: from localhost ([127.0.0.1]) by mail.core-networks.de id 1ZIErQ-0004r1-V1 with ESMTPSA (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) for ; Thu, 23 Jul 2015 13:40:25 +0200
To: Jouni Korhonen <jouni.nospam@gmail.com>
References: <55AF52F1.2040802@openwrt.org> <55B0CB0C.1010301@gmail.com>
From: Steven Barth <cyrus@openwrt.org>
Message-ID: <55B0D2A8.4060807@openwrt.org>
Date: Thu, 23 Jul 2015 13:40:24 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.1.0
MIME-Version: 1.0
In-Reply-To: <55B0CB0C.1010301@gmail.com>
Content-Type: multipart/alternative; boundary="------------060904020402040609070502"
Archived-At: <http://mailarchive.ietf.org/arch/msg/mif/hM0tSgcbKcsTH9egdkJK3LrkQUQ>
Cc: "mif@ietf.org" <mif@ietf.org>
Subject: Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-support
X-BeenThere: mif@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiple Interface Discussion List <mif.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mif>, <mailto:mif-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mif/>
List-Post: <mailto:mif@ietf.org>
List-Help: <mailto:mif-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mif>, <mailto:mif-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Jul 2015 11:40:37 -0000
>> This is awkward. Foremost, hosts only send RSs when they change links
>> and also replies to RS may be multicasted to all hosts on the links
>> (and often in practice still are).
>
> And what is the issue in that case if all others on the same link see what you are asking for?
No, what I find awkward is that a multicasted RA may be triggered by that special RS. So one client's
RS now changes RAs for everyone else on the link. Also clients usually do not send RS regularly and rely on multicast RAs. Yes RA servers may behave differently but you should make clear how they should and that shouldn't clash with v6ops / 6man etc.
>
>> In any case I don't see the point of adding the container to the RS and / or
>> maybe the Identity. This is just plain ambiguous.
>
> Could you open more the "plain ambiguous" part? Ambiguous how to implement or how/when to use? If you have a better wording in mind I am happy to see it & incorporate it.
What is ambiguous is "However, including a PVD container or identity options inside a Router Solicitation (RS) NDP messages is also possible ". What's the point for making both possible or
more specifically what's the point of having the container in the RS at all?
Or another way: how would I request exactly: PVD identity inside container or just top-level identity?
>
>> 3 "The PVD container MUST NOT be fragmented i.e., should the
>> IPv6 packet be fragmented, the PVD container and the accompanying PVD
>> identity MUST both be inside the same fragment."
>>
>> The i.e. makes it ambiguous. Now MUST the whole container NOT be fragmented or
>> MUST every fragment have a PVD Identity or only the first one?
>
> Again, what is ambiguous here? The container must not be fragmented. If the ipv6 packet itself is fragmented the container has to be as a whole in one of those fragment. If you have a better wording in mind I am happy to see it & incorporate it.
You are saying "MUST NOT be fragmented" this is clear, but then you explain that statement to mean ("i.e.") that only identity must be in the same fragment as the container. The explanation itself is a bit strange as well since the identity is inside the container.
>
>> 3 "This MAY imply adding
>> padding zero octets to the tail of the PVD container option until the
>> alignment requirement has been met"
>>
>> A MAY padding seems awkward and actually ambiguous. (This also applies to
>> 4 to a lesser degree)
>
> Care to explain more what is ambiguous? You may end up doing padding but not in all cases. If you have a better wording in mind I am happy to see it & incorporate it.
You are using a normative MAY, to me that means if I feel like it I may pad here but if I won't nothing would break.
>
>> 9 RFC 3971 is in informative references but since you use it as source for
>> your signature algorithm should it not be normative?
>
> Hmm.. good point. However, we do not want to mandate entire RFC3971 but only parts of it.
Sure, but I must understand at least parts of that RFC to know the signatures work.
Cheers,
Steven
- [mif] Comments on draft-ietf-mif-mpvd-ndp-support Steven Barth
- Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-sup… Jouni Korhonen
- Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-sup… Steven Barth
- Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-sup… Jouni Korhonen
- Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-sup… Steven Barth
- Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-sup… Jouni Korhonen
- Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-sup… Steven Barth
- Re: [mif] Comments on draft-ietf-mif-mpvd-ndp-sup… Jouni Korhonen