Re: [netmod] 6021 ipv4-prefix

[Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>]

On Thu, Apr 18, 2019 at 09:16:15AM +0200, Mikael Abrahamsson wrote:
> On Tue, 16 Apr 2019, 7riw77@gmail.com wrote:
> 
> > We might need to clarify this with the libyang folk.
> 
> I see that Michal fixed the bug in libyang. Good.
> 
> There is another thing I am unsure about.
> 
> What is the netconf server supposed to do if a client tries to store
> 192.168.1.1/24 in ipv4-prefix ? Or 2001:db8::1/64 in ipv6-prefix?
> 
> Reading the canonical format description in 6021 one might intepret that the
> netconf server should just truncate the host bits and store these as
> 192.168.1.0/24 and 2001:db8::/64 ? This means the netconf server actually
> stored something else than the client tried to commit (the resulting uint32
> and uint128 will have different information than was commited by the netconf
> client).

The values 2001:db8::1/64 and 2001:db8::/64 are both legal inputs but
they result in the same value. In situations where multiple inputs
resolve to the same value, we define a canonical representation. And
in the case of ipv6-prefix, the canonical representation is
2001:db8::/64. Hence, if you configure 2001:db8::1/64, then the server
will accept that input report the value back as 2001:db8::/64. The
main reason for having canonical formats is to make comparisons easy
and predictable. Think about xpath expressions - without a predictable
canonical representations, they would become rather complex since they
would have to deal with several different representations.
 
> Or should the netconf server throw an error if the client tries to commit
> data that is not according to the bit pattern described in the canonical
> format?

No, as explained above, the server should accept the input and convert
it into canonical format.

> I guess I am getting confused by the "canonical format" term being used in
> IPv6 for describing the ascii representation of the value, but both in IPv4
> and IPv6 it's also used to describe how the bits should be set (and not be
> set) depending on prefix/mask.

I am not sure what the problem is here. If your implementation stores
the address in binary format, then the canonical representation would
clear the unused bits - or you leave them in and you ignore them when
the server produces the canonical textual representation. This is
implementation detail (I would implement this by clearing the bits
also in the binary format but others may choose to do differently).

> Also, the IPv4 canoncical format representation doesn't describe at all the
> ascii representation, so for instance 192.168.001.001 would be valid
> according to 6021. I haven't seen this to be a problem in reality though,
> because IPv4 addresses are typically "compressed" the same way, all the
> time. If we're revving 6021, then perhaps some text about ascii
> representation format should be to use the format used by the posix function
> inet_ntoa() ?

In both RFCs (6021 and 6991), I think that the pattern takes care of
leading zeros, i.e., 192.168.001.001 will be rejected. I do not know
the POSIX specification of inet_ntoa(), the man pages I have (usually
close to the POSIX specification) do not detail the exact format. The
version agnostic functions are actually inet_ntop() and inet_pton()
and they may not even be a POSIX standard. And inet_ntop() and
inet_pton() likely do the right thing on most systems that also
implement RFC 5952. (The definition of inet_ntop() in the open group
specification [1] is not very tight about the textual format.)

/js

[1] http://pubs.opengroup.org/onlinepubs/9699919799/

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1 | 28759 Bremen | Germany
Fax:   +49 421 200 3103         <https://www.jacobs-university.de/>