IETF Logo Mail Archive

Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis to version 01

David Schinazi <dschinazi@apple.com> Wed, 28 June 2017 21:56 UTC

Return-Path: <dschinazi@apple.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 257C4126CC4 for <v6ops@ietfa.amsl.com>; Wed, 28 Jun 2017 14:56:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.302
X-Spam-Level:
X-Spam-Status: No, score=-4.302 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y3Lh1aHpOnBw for <v6ops@ietfa.amsl.com>; Wed, 28 Jun 2017 14:56:49 -0700 (PDT)
Received: from mail-in7.apple.com (mail-out7.apple.com [17.151.62.29]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 64BAC129B31 for <v6ops@ietf.org>; Wed, 28 Jun 2017 14:56:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=apple.com; s=mailout2048s; c=relaxed/simple; q=dns/txt; i=@apple.com; t=1498687009; h=From:Sender:Reply-To:Subject:Date:Message-id:To:Cc:MIME-version:Content-type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-reply-to:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=pWa18kVmUTqAr8FIXTtWjZVbTK5RiYfwR7weAVpujCY=; b=mP1rR7eSZ++hLxTnXgpKxduPHgoDoqyVPNDsV3uZ4hq0Ifxtd+AP1aiCNErOU9ez i8sbhMdFArnl3OpR9/6W97GfHMOancGxjTYNp+FXm0fKrzBRVzobfeQDtGZXmTDL C5F86mcFIo2FQfrE1+UnALn2w5Fm6mkRmmfsv8y2Ik6iJ1w2J3hxepOc1v2IWcZ0 5IRYqcCEF7bLVIlmCW4s/T+9rXVguF3G2j0gO+1eHx0m+ziS1fdXdcSuGNacGIA8 SeN+7OxgYchOr4G3iutqZ7HxegOUvui6Gcbfll6tt3fNErE0ORHg5+H4S/SjaxR2 UJj4cYvt7zHYWf94v8F3UA==;
Received: from relay5.apple.com (relay5.apple.com [17.128.113.88]) (using TLS with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mail-in7.apple.com (Apple Secure Mail Relay) with SMTP id 95.2A.06195.12624595; Wed, 28 Jun 2017 14:56:49 -0700 (PDT)
X-AuditID: 11973e16-8b5f19c000001833-d9-59542621d04a
Received: from jimbu (jimbu.apple.com [17.151.62.37]) by relay5.apple.com (Apple SCV relay) with SMTP id D6.15.09344.02624595; Wed, 28 Jun 2017 14:56:49 -0700 (PDT)
MIME-version: 1.0
Content-type: multipart/alternative; boundary="Boundary_(ID_x3VnLSgneTYZxUtu5zbttQ)"
Received: from da0602a-dhcp207.apple.com (da0602a-dhcp207.apple.com [17.226.23.207]) by jimbu.apple.com (Oracle Communications Messaging Server 8.0.1.2.20170210 64bit (built Feb 10 2017)) with ESMTPSA id <0OSA00HC12ANN740@jimbu.apple.com>; Wed, 28 Jun 2017 14:56:48 -0700 (PDT)
Sender: dschinazi@apple.com
From: David Schinazi <dschinazi@apple.com>
Message-id: <63B9D8C9-159F-4026-9CF8-75ABB1EF7885@apple.com>
Date: Wed, 28 Jun 2017 14:56:47 -0700
In-reply-to: <4AC6726C-142E-48E5-95CF-2C3AD3331441@consulintel.es>
Cc: IPv6 Ops WG <v6ops@ietf.org>
To: jordi.palet@consulintel.es
References: <149670589074.3841.10812713591494006570@ietfa.amsl.com> <C22244D7-ABF6-430B-8155-8D4C1C1382DF@apple.com> <FA0D06E7-47F9-4029-81D4-2D96BFDD5576@consulintel.es> <65F3C8F4-6533-4C15-83F9-64AFC0EFFA79@apple.com> <4AC6726C-142E-48E5-95CF-2C3AD3331441@consulintel.es>
X-Mailer: Apple Mail (2.3273)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrILMWRmVeSWpSXmKPExsUi2FAYoauoFhJp8P8th8Xf45+ZLU4f28vs wOSxbn+Ax5IlP5kCmKK4bFJSczLLUov07RK4Mhof6xes8az4f/gUUwPjN5suRk4OCQETice9 P5i6GLk4hARWM0l8XjKbESZxadZNRojEMkaJhVc6wRK8AoISPybfYwGxmQXCJLrm9DKB2EIC c5kkrvaqgdjCAtISXRfusnYxcnCwCWhJHFhjBNFqI/Fw0mcmiBI3ib8bVoLZLAKqEjsaOlhB bE4BJ4kHnb/YIMYrSLS9awdbKyIgJ3F3RSvUPTOZJB40f4E6VFbi1uxLzCAJCYE9bBKdDVfY JjAKzUJy6ywkt84CuolZQF1iypRciLC2xJN3F1ghbDWJhb8XMSGLL2BkW8UolJuYmaObmWeu l1hQkJOql5yfu4kRFAfT7cR2MD5cZXWIUYCDUYmHd8Wq4Egh1sSy4srcQ4zSHCxK4rz5cwIj hQTSE0tSs1NTC1KL4otKc1KLDzEycXBKNTAqlT9ZJ3VommL8idqSbapvGC/99KtN6lYq3ztp V9GnrxJFU3PWrBdw/LFl+9/iqn/9j0SmhvSXTWX7eqk4cW3jiz9WH/ydJuyU8lS6dbD+p7uY 2xTzJTVT3og5v77KXliyr35jvO5/ZfYrM6xetuh88f6kfOlFzEepyY3PBM325zwQO2aQ2aWt xFKckWioxVxUnAgArY09t2QCAAA=
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFtrNIsWRmVeSWpSXmKPExsUiON1OVVdRLSTS4OkzFou/xz8zW5w+tpfZ gclj3f4AjyVLfjIFMEVx2aSk5mSWpRbp2yVwZTQ+1i9Y41nx//AppgbGbzZdjJwcEgImEpdm 3WTsYuTiEBJYxiix8EonI0iCV0BQ4sfkeywgNrNAmETXnF4mEFtIYC6TxNVeNRBbWEBaouvC XdYuRg4ONgEtiQNrjCBabSQeTvrMBFHiJvF3w0owm0VAVWJHQwcriM0p4CTxoPMXG8R4BYm2 d+1ga0UE5CTurmiFumcmk8SD5i+MEIfKStyafYl5AiP/LCTnzUJy3iygM5gF1CWmTMmFCGtL PHl3gRXCVpNY+HsRE7L4Aka2VYwCRak5iZWmeokFBTmpesn5uZsYQWHbUBixg/H/MqtDjAIc jEo8vCtWBUcKsSaWFVfmHmKU4GBWEuGtOAsU4k1JrKxKLcqPLyrNSS0+xDiREejLicxSosn5 wKjKK4k3NDExMDE2NjM2Njcxp6WwkjjvittAFwmkJ5akZqemFqQWwRzFxMEp1cC4gbVvpYP/ cmbTRLFK1R26VpKvW8S6azaa5MZxt2oxnbPap3h8W59LrZ1BooFjGWPNOp+mIxtLD/hynv3B FKx+0Sn21PtJFhMY9Rdy6vjevJWjvdB+2csrrrb266ezyX6c/NfhY+42l+fX30y+lvDy4DbD hbemb+0MbjQqeFixX3fuhXtH9+UpsRRnJBpqMRcVJwIAvOGYjs4CAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/V1vnDm0qZU4qBAXf4LVU_-jFFcU>
Subject: Re: [v6ops] Updated draft-ietf-v6ops-rfc6555bis to version 01
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Jun 2017 21:56:52 -0000

> On Jun 28, 2017, at 01:18, JORDI PALET MARTINEZ <jordi.palet@consulintel.es> wrote:
> 
>    I don't think the document needs to mandate making constants configurable. Modern operating systems receive periodic software updates that can change the values as we work our way towards deprecating Happy Eyeballs. Average smartphone users shouldn't be bothered with this (if you can't configure it you can't misconfigure it).
> 
> [Jordi] I understand that, however, having parameter in the OS, it means other apps can change that if they need it, even before there is an OS update. There are many users that don’t update the OS, so this is not a good way to ensure a correct future behaviour. Remember recent wannacry, etc., because outdates OS?

[DS] I don't believe the benefit of increasing HE timers outweighs the risk of misconfiguration.
The section is titled "Summary of Configurable Values" which means OS implementers can choose to make these configurable. Some implementers will not.

>    As we discussed in Chicago, end users should never be made aware of IPv6 network failures as they are not their burden or responsibility to fix. Network operators shouldn't expect their users to be the first ones to notice something's broken. In effect HE will be deprecated when ISPs stop routing IPv4.
> 
> [Jordi] Yes, and not. This is the intend of HE, but if HE only sort outs part of the possible issues, then one way or the other, the user notice it … so this is related with the suggestion for PMTUD failures to be also sorted out by HE …
> 
>    Regarding PMTUD, I'm not sure what you're suggesting. HE doesn't currently help with the issue so we marked it out of scope. Are you suggesting a remedy?
> 
> [Jordi]  Exactly, what I’m suggesting is to improve a bit more HE and be able to verify the PMTUD filtering, so if IPv6 is faster than IPv4, but then PMTUD is filtered, then HE can also “take” the decision to use IPv4. This way we got what you wanted: User not aware of IPv6 failures! I don’t get then the “warning” to the ISP, but we can find a different way for that problem of course …

[DS] Solving PMTUD issues is currently done inside the TCP stack not HE, I'm not certain of the value of adding complexity to HE for this.

>    Regarding section 7.1, old socket APIs are out of scope as HE is implemented above or alongside sockets. Applications using sockets directly will not get any of these benefits.
> 
> [Jordi] I understand that, and I’m somehow ignorant about how OS do this internally, so just wondering if we can take also the opportunity to also allow them to use HE.

[DS] That isn't possible with current architectures, but either way we're moving away from sockets so I don't think there's much value in solving this issue:
https://tools.ietf.org/html/draft-trammell-taps-post-sockets <https://tools.ietf.org/html/draft-trammell-taps-post-sockets>

> [Jordi] Final comment. Do you think we can further extend HE in order to provide a way to warn the ISP that HE is forcing IPv4, because IPv6 performance is low? I think we can find several ways to do that, may be a common dns name such as he-fail.isp.com or something similar, that IF the ISP want to implement, gets info about those failures, but the ISP is free to implement it or not. This is useful for those ISPs that really do a good job monitoring their networks, of course, but I think is a perfect opportunity from HE instead of something different.

[DS] That sounds reasonable to me, I think it deserves its own draft though (and will require a serious discussion about user privacy implications).

Thanks,
David Schinazi

v2.23.0 | Report a Bug | By Email