IETF Logo Mail Archive

Re: [Roll] unaware leaves - graceful shutdown of attached-6LR

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Tue, 14 April 2020 08:26 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 771DF3A0597 for <roll@ietfa.amsl.com>; Tue, 14 Apr 2020 01:26:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.619
X-Spam-Level:
X-Spam-Status: No, score=-9.619 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=jobEX0oS; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=0kllyhcF
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iYd0qSSxMmYE for <roll@ietfa.amsl.com>; Tue, 14 Apr 2020 01:26:01 -0700 (PDT)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0D48E3A0593 for <roll@ietf.org>; Tue, 14 Apr 2020 01:26:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=35700; q=dns/txt; s=iport; t=1586852761; x=1588062361; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=IpQKnRqpB2Oe0WklpMaIn5p0pah2lkqRnFVy8kA7mjc=; b=jobEX0oSXAcvulFKw8e6ZzuSrEVPwU5ckaJbKoA8j7/K+3Ol7ohpC3VA o6vrAgvn1FFgGkKvBqXxdU9JjrZjWBr5m3c5haqJIHuS2JYyG1j0JjBDn prXI9fZbkjubxCd5iNgDBujofX9yt8viu3FKgHOOrnwAxhwN3aOzn0OWf E=;
IronPort-PHdr: 9a23:gYeVTxcXJEEA8Iwkk1Scy9QMlGMj4e+mNxMJ6pchl7NFe7ii+JKnJkHE+PFxlwGQD57D5adCjOzb++D7VGoM7IzJkUhKcYcEFnpnwd4TgxRmBceEDUPhK/u/dzA6Ac5PTkNN9HCgOk8TE8H7NBXf
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0BcBQA/c5Ve/5JdJa1mHQIBCRIFBYFrBQwBgSQBLiknBWwPSSAECyqDXECDRgOKZk6CEYEBlyKBQoEQA1QKAQEBDAEBGAEKCgIEAQGERAIXgXokNwYOAgMBAQsBAQUBAQECAQUEbYUqBiYMhXABAQEBAwEBCgYRChMBASUHDA8CAQYCEQQBASEKAgICJQsdCAIEEwgagjlGBAKBfk0DLgEOkWqQZwKBOYhidYEygn8BAQWFEhiCDgMGgTgBgmGCQocRGoFBP4ERQ4FPSQcuPoJnAQECAYFEBBwrgmUygiyRGoYKikaPcQqCQod+gWmOBoJTiEaREIRiiSyKd5MYAgQCBAUCDgEBBYFoIw2BSnAVO4JpUBgNlHWJDYUUhUF0AoEnjkUBAQ
X-IronPort-AV: E=Sophos;i="5.72,382,1580774400"; d="scan'208,217";a="749337930"
Received: from rcdn-core-10.cisco.com ([173.37.93.146]) by rcdn-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 14 Apr 2020 08:25:35 +0000
Received: from XCH-RCD-002.cisco.com (xch-rcd-002.cisco.com [173.37.102.12]) by rcdn-core-10.cisco.com (8.15.2/8.15.2) with ESMTPS id 03E8PZns017244 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL) for <roll@ietf.org>; Tue, 14 Apr 2020 08:25:35 GMT
Received: from xhs-aln-002.cisco.com (173.37.135.119) by XCH-RCD-002.cisco.com (173.37.102.12) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 14 Apr 2020 03:25:35 -0500
Received: from xhs-aln-003.cisco.com (173.37.135.120) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 14 Apr 2020 03:25:34 -0500
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-003.cisco.com (173.37.135.120) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Tue, 14 Apr 2020 03:25:34 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dRbPjzgP/Eq09frwdPxeKMqO5XXvbz8H7IIIdNbMlLp/Z0oSrEJlcTMftGC8BTZbkLgn74ulZp7AyxkbHL8iLDqEJs6SYgnKt2xLYApDsKXqpM+cM0X5BJuq/mg/xCV8sP3Ca/6gquP0dHsqfengrfyo3I0WFqds5lndVgmICK7vuxYkDmuUKyd8DrHEHBzhJKBiAZj7NEp+Re2MhM/C7X8h/1EEjZGqLX4FSyoPTRW/15x42YbSiTfdzBA0tcfIHIWGdvBmPs1DfDoIbjhGl5SBTgFgSDnRPnYYPSCCZW0acHWDcxMAcOTEl/0p+unrPLmjXFw250ZY9EOVfSMZnA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IpQKnRqpB2Oe0WklpMaIn5p0pah2lkqRnFVy8kA7mjc=; b=fjoe+VYRccbhaIGcSBwgWyNiT9Pg86JL7rr977boB5zC459awW/6bEaq84IhFG6sL3Vv4N7ObbPJsePnrIF2u8MJyRqUzOUlfXchhlQ6EQj2+xZITMAsyMDdI6GtMT65Jlnj732892hSptnunWekfKTc0n2prwzOml4MULeWUSED0pyGyWLvDO6DM1fbBJn+FBBDbXt8ispV59b5OAVQ81a9Xo9kVaYYmu0oKSsfu7YgReQmGkDeiqckTx2xfmaYKqtg0VwTEe1GfmnQv60b1nMQ3+Suf3Us68oS8I89yfk5A4UBKfXs/NZU6XecjJvDhcjGCPW1Tg9muOKgYHTiuA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IpQKnRqpB2Oe0WklpMaIn5p0pah2lkqRnFVy8kA7mjc=; b=0kllyhcFnxbcLsSU6Omdb2FlSghudue45DRDhKj8rypdyhf+UEXFy5rHZijEtAYiuWRpoeUf+rWmWajMkUXbrryl8Z0W1Xj5oc3m18d7TMI3q7Bs/GpVv/mUUxPkASVQKlBpzyJP10erImpmYbUFGRBUzdncikYj2mAtBY1eBbg=
Received: from MN2PR11MB3565.namprd11.prod.outlook.com (2603:10b6:208:ea::31) by MN2PR11MB3758.namprd11.prod.outlook.com (2603:10b6:208:f6::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2900.17; Tue, 14 Apr 2020 08:25:33 +0000
Received: from MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::113b:3127:ef12:ea7]) by MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::113b:3127:ef12:ea7%7]) with mapi id 15.20.2900.028; Tue, 14 Apr 2020 08:25:33 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Routing Over Low power and Lossy networks <roll@ietf.org>
Thread-Topic: [Roll] unaware leaves - graceful shutdown of attached-6LR
Thread-Index: AQHWEZQvbgNuDRZQpEGmjIYHLkz6MKh3KT0IgAC0VwSAAFNOAA==
Date: Tue, 14 Apr 2020 08:25:19 +0000
Deferred-Delivery: Tue, 14 Apr 2020 08:24:44 +0000
Message-ID: <MN2PR11MB3565E4FB6ECA0B86327478FCD8DA0@MN2PR11MB3565.namprd11.prod.outlook.com>
References: <BM1PR01MB4020A5C1C43CDC700477C39EA9DA0@BM1PR01MB4020.INDPRD01.PROD.OUTLOOK.COM>
In-Reply-To: <BM1PR01MB4020A5C1C43CDC700477C39EA9DA0@BM1PR01MB4020.INDPRD01.PROD.OUTLOOK.COM>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [2a01:cb1d:4ec:2200:78e6:82b7:33d:3c62]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b7842a90-5861-40a2-8754-08d7e04d66a0
x-ms-traffictypediagnostic: MN2PR11MB3758:
x-microsoft-antispam-prvs: <MN2PR11MB3758B140BC3902DF9583B672D8DA0@MN2PR11MB3758.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0373D94D15
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB3565.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(10009020)(4636009)(39860400002)(396003)(376002)(366004)(136003)(346002)(81156014)(71200400001)(52536014)(8936002)(66946007)(66446008)(66476007)(76116006)(66556008)(64756008)(8676002)(86362001)(6506007)(6666004)(53546011)(478600001)(5660300002)(33656002)(2906002)(186003)(45080400002)(966005)(9686003)(55016002)(6916009)(66574012)(316002)(7696005); DIR:OUT; SFP:1101;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: UfGrp4RbQgNJydgfTYW2iuPAKGHgJGdmg6kLkd6FM4l6E6Y7p1c9tmIrrXOzRjQ4k9E7u0CTSOLM7ZGn9YuwWWVgFNouzuovZ9lULoB7PwJw/vqhYBontaCkV3EudRr1TJhr6wqdVUjshUbX1G2cgzUmSHI5hyh4k/s5CLv3zsmvzNkTapX24Skw6+q8TCUuxsbKX8+ufykE+rvXj4dNDQ==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_MN2PR11MB3565E4FB6ECA0B86327478FCD8DA0MN2PR11MB3565namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: b7842a90-5861-40a2-8754-08d7e04d66a0
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Apr 2020 08:25:33.3405 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: TtO2m1eVQkt/Y2nwfVMflQ2hyi30NUTp4rTgVuC9Ukif/AOgKp7aQ1G6/xfryFHfiMgRl9iFbV/CYusn4okVtg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB3758
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.12, xch-rcd-002.cisco.com
X-Outbound-Node: rcdn-core-10.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/roll/1Oh_U535ghUqS8WgNOZXGtnjpWU>
Subject: Re: [Roll] unaware leaves - graceful shutdown of attached-6LR
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/roll/>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Apr 2020 08:26:04 -0000

Hello Rahul

For the lifetime I do not necessarily agree with your wording. My reading is that the registration lifetime is requested by the 6LN and granted by the 6LBR. What the 6LBR returns might be less than what the 6LN requested. This might not be very explicit in RFC 6775 but “5.5.2.  Processing a Neighbor Advertisement” says

“

   The host saves the Registration Lifetime from the ARO
   for use to trigger a new NS well before the lifetime expires.
”
Which tells you that the network has the ultimate control, which is good in a managed network.

Then “8.2.3.  6LR Sending a Duplicate Address Request” says
“

      The EUI-64 and Registration Lifetime are copied from the ARO

      received from the host.
”
Which tells you that the 6LR is just an transmission but has no say in the story.

Normally:
- If the 6LR stops being a router at all the signal is a final RA. We could actually mandate to unicast it to all registered nodes.
- If the 6LR accepts a registration it should keep it as long as it is a router so ‘removed’ comes from above.
- if the 6LR keeps the registration but stops being a router, then signal is the ‘R’ flag only.

So we are talking about a unexpected case where the 6LR would drop an NCE on its own but continue being a router, IOW break its contract with the 6LN.

I see the value of using status “Removed” there. The problem I have here is to clarify what comes from the 6LBR which means that the address is not usable at all vs what comes from the 6LR, which means that this 6LR is not useable, but the 6LN can try with another 6LR. I thought the lifetime helped but on second thought it does not. “Removed” and lifetime are both 6LBR decisions.

If that’s a problem with the 6LR only, we need to signal that. RFC 8505 helps us there. Section “5.7.  Maintaining the Registration States” indicates that
“

   space is exhausted.  In that situation, the EARO is returned in an NA

   message with a status code of "Neighbor Cache Full" (Status 2; see

   [RFC6775<https://tools.ietf.org/html/rfc6775>] and Table 1), and the Registering Node may attempt to

   register to another 6LR.



   If the registry in the 6LBR is full, then the 6LBR cannot decide

   whether a registration for a new address is a duplicate.  In that

   case, the 6LBR replies to an EDAR message with an EDAC message that

   carries a new status code indicating "6LBR Registry Saturated"

   (Table 1).  Note: This code is used by 6LBRs instead of "Neighbor

   Cache Full" when responding to a Duplicate Address message exchange

   and is passed on to the Registering Node by the 6LR.  There is no

   point in the node retrying this registration via another 6LR, since

   the problem is network-wide.  The node may abandon that address,

   de-register other addresses first to make room, or keep the address

   "tentative" [RFC4861<https://tools.ietf.org/html/rfc4861>] and retry later.


“

So I’d suggest that we mandate unicast final RA if the router goes away, and if the router just drops that NCE then use "Neighbor Cache Full" in the NA.
Works?

Note: The 6BBR draft uses it for the 6LBR to clean up a state in the old 6BBR when registering to a new 6BBR. As a second thought it appears that ‘moved’ would be better. That’s what 6BBRs do with one another when it’s a different 6LBR. I’ll fix that unless someone raises an issue.

Regards,

Pascal


Le 14 avr. 2020 à 04:05, Rahul Jadhav <nyrahul@outlook.com> a écrit :

Please find my response inline.

________________________________
From: Roll <roll-bounces@ietf.org> on behalf of Pascal Thubert (pthubert) <pthubert=40cisco.com@dmarc.ietf.org>
Sent: 13 April 2020 11:14 PM
To: Routing Over Low power and Lossy networks <roll@ietf.org>
Subject: Re: [Roll] unaware leaves - graceful shutdown of attached-6LR

Great point Rahul.

Normally this is done using a final RA. But the RA is broadcast so unicasting a NA with ‘R’ flag off is a great idea. This is the exact signal that this router does not serve this node. Lifetime 0 would indicate that the router removes the NCE.
Status removed indicates an error. I’d rather use status 0, lifetime 0, ‘R’ off. Don’t you think?

[RJ] Imo, Lifetime is something that is controlled by the target/owner. There has never been (?) a case where someone else changes lifetime on behalf of the target node.
RFC 8505 states: "Removed: The binding state was removed.  This Status MAY be placed in an NA(EARO) message that is sent as the rejection of a proxy registration to an IPv6 ND Registrar, or in an asynchronous NA(EARO), at any time."
I still feel using Status="Removed", 'R' off may be applicable more.

Keep safe.

Pascal


Le 13 avr. 2020 à 15:07, Rahul Jadhav <nyrahul@outlook.com> a écrit :

Hello Pascal/Authors,

In the event that the attached 6LR needs to gracefully shutdown, it needs to inform the RUL(s) to detach and possibly move to another 6LR.
I believe this could be done using NA(EARO, Status="Removed"); from the attached-6LR. Can this NA be multicasted if the attached-6LR has more than one RULs attached to it?
Is this correct/allowed? For RPL we have route-poisoning using which a 6LR does a graceful shutdown, but the route-poisoning is not applicable to RULs.. I believe this should be clarified in the text.

Regards,
Rahul
_______________________________________________
Roll mailing list
Roll@ietf.org
https://www.ietf.org/mailman/listinfo/roll
_______________________________________________
Roll mailing list
Roll@ietf.org
https://www.ietf.org/mailman/listinfo/roll

v2.14.0 | Report a Bug | By Email