IETF Logo Mail Archive

Re: [Snac] M/O Bit reflection behavior of draft-hui-stub-router-ra-flag-02

Mark Smith <markzzzsmith@gmail.com> Thu, 18 April 2024 01:01 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: snac@ietfa.amsl.com
Delivered-To: snac@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EF543C14F73F for <snac@ietfa.amsl.com>; Wed, 17 Apr 2024 18:01:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.597
X-Spam-Level:
X-Spam-Status: No, score=-0.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.998, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nw3u0d2dPsYK for <snac@ietfa.amsl.com>; Wed, 17 Apr 2024 18:01:19 -0700 (PDT)
Received: from mail-ed1-x530.google.com (mail-ed1-x530.google.com [IPv6:2a00:1450:4864:20::530]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 43140C14F71D for <snac@ietf.org>; Wed, 17 Apr 2024 18:01:19 -0700 (PDT)
Received: by mail-ed1-x530.google.com with SMTP id 4fb4d7f45d1cf-56fffb1d14bso543308a12.1 for <snac@ietf.org>; Wed, 17 Apr 2024 18:01:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1713402077; x=1714006877; darn=ietf.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=HS/PUfnO9AXcZvepeFM7r0KqqOlPSVBmWRuj9cBNcas=; b=XUAO6OwnMitnEDnWAHlRmgsd8hh5hGceh/6W6ihvWmKZX/Q7WxB4UO8VlklnXWqFao 5u1bSfhnwj83tUj7mw6QkwEm5fQqNbxRX750MPvga0HqdSIQAyJZQ0L0h4DfVAY18aZd yFn6D2F6QnWbYbdIckXoMDieFrZGq0LCeEWtJaEL46FvMHJ005wCVUJxNMRB4n+1eMLv 2drWQBqG4gh8jauoAniqZj20ZpNDV5mPcGKPztM8N5003VVqVFbatgAJAbmgF6nbDL1y Ikr3goANB/X6CyeVXnlLtVoSvijBoZpGnAm9ifPku/MiXntWGh2p6j+a/rN120vXa1tZ JNLg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1713402077; x=1714006877; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=HS/PUfnO9AXcZvepeFM7r0KqqOlPSVBmWRuj9cBNcas=; b=GOrvW/36UqPxJ75v6Hq+MIK9esagF4A2MUJ562M9WVWA+93KHatYPmgx1aGSNxyZ9+ BwESAKDOfKaPkwQ7AuP0uAsIAwsE5IARPo+45pdZ0Q8stLNfZw+IXbVztmGi+uQDxKOA TapgM6/vwf/lGq0YY/xqFfQrp2pe6Vdd8c0ScXCAoxxlyx4M6IBvyqD6hV22gxga09q/ vO6lP07+fQdXMoCehRRBGizN8rSdnWU01XYdnVFWnW5DzegMnrNCTqv36EGklJ3gSdjn vNzEp5RNSq+9GP+PflSiB+DTJIpSLhzaQFWI3wx697YPH4xtiHzH6ZLiMXYmIytoisEc wTOw==
X-Forwarded-Encrypted: i=1; AJvYcCXEG2EZXEKrTcmzWbXHMXI01v1sRT3BNays7SL2zyWsmwDimvMr8/IoX9ovdQrSumdvZ2ZmAZynvznAODyC
X-Gm-Message-State: AOJu0YxxciqhcfJIrswqIB7Mv/Ly9ZFjNqQjC3MYtRTzlMEz1nZVHqOq Voi8algRpfzXyLQOuxpG3lMmEeTOy7Pvr9nU7joBm7+DZMGvFiFCPb7Ib1bc9dKZ71Y71UbhGn+ ihZ2lrA0WQRXybeCUm9IRhNYjq9hvcA==
X-Google-Smtp-Source: AGHT+IEYFz39NpqDuo0LHLItd/4T/wPRcyHuQ9K4jlIoj0AyLR71YkrcuI8Mdk0pwVxAT3+7Gm534oXblaWuBHRYMz4=
X-Received: by 2002:a50:ccc4:0:b0:56d:fc50:ec50 with SMTP id b4-20020a50ccc4000000b0056dfc50ec50mr546408edj.13.1713402077295; Wed, 17 Apr 2024 18:01:17 -0700 (PDT)
MIME-Version: 1.0
References: <46119458-8B82-4DE0-A5BC-C58F64436FDB@gmail.com> <CAPt1N1mXSPR=7XwyobZhOSZppFohjJd-8DirqM6QFYihQXbvDQ@mail.gmail.com> <DU0P190MB1978F520A848CB9F32AA2385FD082@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM> <CAPt1N1=c5_GHXqqGFzTKrRdg9x1wOgq7Vw=Q0+FsyTHEgSQS8A@mail.gmail.com> <20240417114328.GA18918@unix-ag.uni-kl.de> <CAPt1N1=eyR6f_5UOn2N3g79QyJcur4jw18MJiCy34vMBu9O1SA@mail.gmail.com> <20240417141618.GA5099@unix-ag.uni-kl.de> <CAPt1N1=2Zqw9rSV0F-Mr1+888ht8-_F_Ykg_hABw6h=JJKHZBA@mail.gmail.com> <20240417191858.GA9875@unix-ag.uni-kl.de> <CAPt1N1n74q6nfTjJQ--9nAUb3CHEw8XwtshpyMAzdn4KLa1YoA@mail.gmail.com> <20240417214233.GA26096@unix-ag.uni-kl.de> <CAPt1N1=bTdnc+U80FCLri5g8x0vrcjm9kS_Hrvi-oEfYXC160Q@mail.gmail.com>
In-Reply-To: <CAPt1N1=bTdnc+U80FCLri5g8x0vrcjm9kS_Hrvi-oEfYXC160Q@mail.gmail.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Thu, 18 Apr 2024 11:00:49 +1000
Message-ID: <CAO42Z2zSuYWrZkf8K6wCazfhqg=SXrmY-z5bogOLzs06XMh2cw@mail.gmail.com>
To: Ted Lemon <mellon@fugue.com>
Cc: Erik Auerswald <auerswal@unix-ag.uni-kl.de>, SNAC ML <snac@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/snac/__HAN1S8I8KpZFQsb9O6t3D2Apo>
Subject: Re: [Snac] M/O Bit reflection behavior of draft-hui-stub-router-ra-flag-02
X-BeenThere: snac@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Mailing list for discussing problems relating to the automatic connection of stub networks to existing infrastructure networks. " <snac.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/snac>, <mailto:snac-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/snac/>
List-Post: <mailto:snac@ietf.org>
List-Help: <mailto:snac-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/snac>, <mailto:snac-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Apr 2024 01:01:20 -0000

Hi,

On Thu, 18 Apr 2024 at 08:04, Ted Lemon <mellon@fugue.com> wrote:
>
> If we want to document the correct behavior of the M&O bits, that would definitely be a 6man thing, not a SNAC thing. I don't oppose that—I'm just reporting that that has been tried before and we did not succeed due to a lack of any clear consensus.
>

I'm not sure I understand the comments that M&O aren't defined. RFC
4861 defines what the bits mean, and also says that routers should
validate other routers' RAs for consistency, and specifically mentions
a consistency check on the M & O bits, and should then log any
inconsistencies.

I don't think two different routers on a link announcing different M &
O bit values is invalid though, even though it may be inconsistent. A
link could support both SLAAC and stateful DHCPv6 for addressing, for
example during a graceful transition period between using SLAAC to
stateful DHCPv6 for addressing or vice-versa.

OpenWRT enables M & O by default, so both SLAAC and stateful DHCPv6
are enabled by default. It's been this way for quite a number of
years, so common IPv6 hosts that support both SLAAC and stateful
DHCPv6 would seem to be coping with doing both.

> SNAC definitely can't solve this problem.
>
> The problem with tracking M&O bits is that they don't have lifetimes.

That's an interesting point, and it seems there are other parameters
and options with the same issue that don't have their own lifetime
fields, such as 'Cur Hop Limit' value, Default Router Preference bits
and 'MTU' options.

I would guess those parameter and option values' lifetimes are as long
as the advertising router continues to be reachable via Neighbor
Discovery (and changed via subsequent RAs from the same router) and
perhaps if the interface goes down (I can't seem to find anything in
RFC 4861 about that situation right now.)

Regards,
Mark.


>SNAC devices never want to turn them on, but if we are required to track them, it's actually technically difficult to understand how we would track them.
>
> For professionally managed networks, SNAC isn't really necessary or appropriate. You could build a solution grounded in SNAC that could live in this environment, but it would have to be manageable, just like any other router.
>
> We do actually have an appendix that talks about this issue. It's currently not in a published version of the draft, but you can find it here:
>
> https://github.com/ietf-wg-snac/draft-ietf-snac-simple/pull/53/files
>
> Can you take a look at that and see what you think?
>
> On Wed, Apr 17, 2024 at 5:42 PM Erik Auerswald <auerswal@unix-ag.uni-kl.de> wrote:
>>
>> Hi Ted,
>>
>> all I do is provide another point of view, based on experience, and make
>> suggestions how to possibly improve this point of the SNAC description.
>> I don't demand anything.
>>
>> But how hard is it to describe that SNAC imagines a host to follow the
>> infrastructure router's RA with M&O bits with DHCPv6 for default route
>> communications, and the SNAC router's RA for stub network communications?
>> Since anything goes, this goes.  This does not prescribe host behavior,
>> changes nothing, just states an assumption.  There must be some idea of
>> how hosts might behave since you state that they work correctly, even
>> if this is not standardized.  The wording could be quite vague, saying
>> that host behavior is not standardized, but, e.g., the above would work,
>> and hosts are assumed to work in some SNAC-compatible way.
>>
>> To put this differently, you want a SNAC router to also do its thing
>> on a (perhaps partially) managed network, not only on an unmanaged one.
>> A short description of how this is supposed to work seems not that big
>> a burden.
>>
>> The person troubleshooting could then read how the SNAC stuff is intended
>> to work, and compare that to actual behavior.  IMHO this would be much
>> better than nothing.
>>
>> The SNAC WG tried to find a comprehensive solution by reflecting M&O
>> bits from infrastructure routers, but not SNAC routers, but this did not
>> pan out.  That is OK for me.  But I do not like the idea of ignoring this
>> detail with a silent assumption of "correct" host behavior, without any
>> description of what "correct" even is.
>>
>> So perhaps if the SNAC WG describes how they assume hosts would work in
>> a SNAC environment, this would be shot down by the IETF as out of scope?
>> I would describe that as "process failure".  Still, you could just say so,
>> and a poor soul digging into how SNAC was supposed to work might be able
>> to find this.  This would not provide a solution, but perhaps closure.
>>
>> Just not mentioning possible rough edges might seem like an easier way
>> to an RFC.  Most reviewers are more likely to notice things written down
>> than things not even mentioned.  Again, I'd call this "process failure".
>>
>> I only care about the result.  I still do not demand anything.
>>
>> ¯\_(ツ)_/¯
>>
>> Br,
>> Erik
>>
>>
>> On Wed, Apr 17, 2024 at 03:46:32PM -0400, Ted Lemon wrote:
>> > We've tried to update the documentation on the M&O bits before in the IETF.
>> > It's failed because we can't get consensus.
>> >
>> > Anyway, you're making a bunch of assertions here about what we have to do,
>> > but not backing them with anything but your gut feeling based on
>> > 20-year-old experiences. I don't think this is helpful. I'm not trying to
>> > minimize the importance of getting this right, and I appreciate your wish
>> > to make sure that we do. But it's not clear to me that you are actually
>> > talking about a real problem we need to solve. There was a lot of expertise
>> > on this in the room when we discussed it, and the general consensus is that
>> > the stuff you're describing is old news, and we don't need to worry about
>> > it anymore.
>> >
>> > It is true that the behavior of hosts is not consistent, because there is
>> > no standard that tells them how to behave. But it is not true that there is
>> > a problem, as far as we are able to tell. If you have data that suggests
>> > otherwise, please share it. But please do not demand that we do very
>> > difficult work to solve a problem that you haven't documented.
>> >
>> > Also, on a more practical note, making changes to host behavior and the
>> > treatment of M&O bits is very much not in charter for SNAC... :)
>> >
>> > On Wed, Apr 17, 2024 at 3:18 PM Erik Auerswald <auerswal@unix-ag.uni-kl.de>
>> > wrote:
>> >
>> > > Hi Ted,
>> > >
>> > > On Wed, Apr 17, 2024 at 11:25:42AM -0400, Ted Lemon wrote:
>> > > >
>> > > > The behavior of the M and O bits isn’t defined anywhere.  Modern
>> > > > hosts have had to adapt to this.  During the discussions we had in
>> > > > Brisbane the consensus was that they do now handle inconsistent M&O
>> > > > bits correctly.
>> > >
>> > > If the handling is not defined, no handling is incorrect.  But SNAC could
>> > > describe how exactly hosts need to handle it to be compatible with SNAC.
>> > > This would at least allow to troubleshoot the breakage.
>> > >
>> > > Alternatively, SNAC could refrain from sending RAs onto a managed link
>> > > to prevent incompatibilities leading to problems.
>> > >
>> > > Alternatively, SNAC could make an honest effort to adapt to managed links,
>> > > even if this does not work in all possible cases, and document the known
>> > > problems in a section on operational considerations.
>> > >
>> > > Br,
>> > > Erik
>
> --
> Snac mailing list
> Snac@ietf.org
> https://www.ietf.org/mailman/listinfo/snac

v2.23.0 | Report a Bug | By Email