iana-etc: 2.30 -> 20170321 #23621
iana-etc: 2.30 -> 20170321 #23621
Conversation
|
Feedbacks and opinions are welcome before merging. The files produced by this are also much less chatty. Excerpt from # See also protocols(5) and IANA official page :
# https://www.iana.org/assignments/protocol-numbers
#
# Last updated: 2016-06-22
hopopt 0 HOPOPT
icmp 1 ICMP
igmp 2 IGMP
ggp 3 GGP
ipv4 4 IPv4
st 5 ST
tcp 6 TCP
cbt 7 CBT
egp 8 EGP
igp 9 IGPExcerpt from # See also services(5) and IANA official page :
# https://www.iana.org/assignments/service-names-port-numbers
#
# Last updated: 2017-03-03
tcpmux 1/tcp
tcpmux 1/udp
compressnet 2/tcp
compressnet 2/udp
compressnet 3/tcp
compressnet 3/udp
rje 5/tcp
rje 5/udp
echo 7/tcp
echo 7/udp
discard 9/tcp
discard 9/udp
discard 9/sctp
discard 9/dccp
systat 11/tcp
systat 11/udp
daytime 13/tcp
daytime 13/udp
qotd 17/tcpThe "last updated" dates are the ones from the source XML from IANA. |
|
For comparison here is the beginning of the present # See also: protocols(5), http://www.sethwklein.net/projects/iana-etc/
#
# (last updated 2008-02-27)
#
# Registries included below:
# - Assigned Internet Protocol Numbers
#
# Registry Name: Assigned Internet Protocol Numbers
# Reference: [RFC5237]
# Registration Procedures: IESG Approval or Standards Action
# Note: In the Internet Protocol version 4 (IPv4) [RFC791] there is a field
# called "Protocol" to identify the next level protocol. This is an 8
# bit field. In Internet Protocol version 6 (IPv6) [RFC1883], this field
# is called the "Next Header" field.
#
# Registry:
# Decimal Keyword Protocol References
# --------- ---------- --------------------------------------- ----------
# protocol num aliases # comments
hopopt 0 HOPOPT # IPv6 Hop-by-Hop Option [RFC1883]
icmp 1 ICMP # Internet Control Message [RFC792]
igmp 2 IGMP # Internet Group Management [RFC1112]
ggp 3 GGP # Gateway-to-Gateway [RFC823]
ip 4 IP # IP in IP (encapsulation) [RFC2003]
st 5 ST # Stream [RFC1190][RFC1819]
tcp 6 TCP # Transmission Control [RFC793]
cbt 7 CBT # CBT [Ballardie]
egp 8 EGP # Exterior Gateway Protocol [RFC888][DLM1]
igp 9 IGP # any private interior gateway [IANA]
# (used by Cisco for their IGRP)
bbn-rcc-mon 10 BBN-RCC-MON # BBN RCC Monitoring [SGC]
nvp-ii 11 NVP-II # Network Voice Protocol [RFC741,SC3]
pup 12 PUP # PUP [PUP,XEROX]
argus 13 ARGUS # ARGUS [RWS4]
emcon 14 EMCON # EMCON [BN7]And the present # See also: services(5), http://www.sethwklein.net/projects/iana-etc/
#
# (last updated 2008-02-29)
#
# The port numbers are divided into three ranges: the Well Known Ports,
# the Registered Ports, and the Dynamic and/or Private Ports.
#
# The Well Known Ports are those from 0 through 1023.
#
# DCCP Well Known ports SHOULD NOT be used without IANA registration.
# The registration procedure is defined in [RFC4340], Section 19.9.
#
# The Registered Ports are those from 1024 through 49151
#
# DCCP Registered ports SHOULD NOT be used without IANA registration.
# The registration procedure is defined in [RFC4340], Section 19.9.
#
# The Dynamic and/or Private Ports are those from 49152 through 65535
#
# A value of 0 in the port numbers registry below indicates that no port
# has been allocated.
#
# ************************************************************************
# * PLEASE NOTE THE FOLLOWING: *
# * *
# * IESG STATEMENT TO THE IANA *
# * THE IESG BELIEVES THAT IANA MAY ALLOCATE AN ADDITIONAL PORT IN *
# * THE 'USER PORT' RANGE TO PROTOCOLS WHOSE CURRENT PORT ALLOCATION *
# * REQUIRES ACCESS TO A PRIVILEGED PORT. THIS ALLOCATION SHOULD NOT *
# * BE AUTOMATIC, BUT MAY OCCUR UPON APPLICATION BY AN INTERESTED *
# * PARTY WHOSE APPLICATION WOULD OTHERWISE FIT IANA'S POLICIES. *
# * *
# * 1. UNASSIGNED PORT NUMBERS SHOULD NOT BE USED. THE IANA WILL ASSIGN *
# * THE NUMBER FOR THE PORT AFTER YOUR APPLICATION HAS BEEN APPROVED. *
# * *
# * 2. ASSIGNMENT OF A PORT NUMBER DOES NOT IN ANY WAY IMPLY AN *
# * ENDORSEMENT OF AN APPLICATION OR PRODUCT, AND THE FACT THAT NETWORK *
# * TRAFFIC IS FLOWING TO OR FROM A REGISTERED PORT DOES NOT MEAN THAT *
# * IT IS "GOOD" TRAFFIC. FIREWALL AND SYSTEM ADMINISTRATORS SHOULD *
# * CHOOSE HOW TO CONFIGURE THEIR SYSTEMS BASED ON THEIR KNOWLEDGE OF *
# * THE TRAFFIC IN QUESTION, NOT WHETHER THERE IS A PORT NUMBER *
# * REGISTERED OR NOT. *
# ************************************************************************
#
#
# WELL KNOWN PORT NUMBERS
#
# The Well Known Ports are assigned by the IANA and on most systems can
# only be used by system (or root) processes or by programs executed by
# privileged users.
#
# Ports are used in the TCP [RFC793] to name the ends of logical
# connections which carry long term conversations. For the purpose of
# providing services to unknown callers, a service contact port is
# defined. This list specifies the port used by the server process as
# its contact port. The contact port is sometimes called the
# "well-known port".
#
# To the extent possible, these same port assignments are used with the
# UDP [RFC768].
#
# The range for assigned ports managed by the IANA is 0-1023.
#
# Port Assignments:
#
# Keyword Decimal Description References
# ------- ------- ----------- ----------
# 0/tcp Reserved
# 0/udp Reserved
# Jon Postel <postel&isi.edu>
# spr-itunes 0/tcp Shirt Pocket netTunes
# spl-itunes 0/tcp Shirt Pocket launchTunes
# David Nanian <dnanian&shirt-pocket.com> 28 September 2007
tcpmux 1/tcp # TCP Port Service Multiplexer
tcpmux 1/udp # TCP Port Service Multiplexer
# Mark Lottor <MKL&nisc.sri.com>
compressnet 2/tcp # Management Utility
compressnet 2/udp # Management Utility
compressnet 3/tcp # Compression Process
compressnet 3/udp # Compression Process
# Bernie Volz <volz&cisco.com>
# 4/tcp Unassigned
# 4/udp Unassigned
rje 5/tcp # Remote Job Entry
rje 5/udp # Remote Job Entry
# Jon Postel <postel&isi.edu>
# 6/tcp Unassigned
# 6/udp Unassigned
echo 7/tcp # Echo
echo 7/udp # Echo
# Jon Postel <postel&isi.edu>
# 8/tcp Unassigned
# 8/udp Unassigned
discard 9/tcp # Discard
discard 9/udp # Discard
# Jon Postel <postel&isi.edu>
discard 9/sctp # Discard
# IETF TSVWG
# Randall Stewart <rrs&cisco.com>
# [RFC4960]
discard 9/dccp # Discard SC:DISC
# IETF dccp WG, Eddie Kohler <kohler&cs.ucla.edu>, [RFC4340]
# 10/tcp Unassigned
# 10/udp Unassigned
systat 11/tcp # Active Users
systat 11/udp # Active Users
# Jon Postel <postel&isi.edu>
# 12/tcp Unassigned
# 12/udp Unassigned
daytime 13/tcp # Daytime (RFC 867)
daytime 13/udp # Daytime (RFC 867)
# Jon Postel <postel&isi.edu>
# 14/tcp Unassigned
# 14/udp Unassigned
# 15/tcp Unassigned [was netstat]
# 15/udp Unassigned
# 16/tcp Unassigned
# 16/udp Unassigned
qotd 17/tcp # Quote of the Day |
|
I agree with @LnL7 about the alias, but LGTM. |
$ wc -l /etc/protocols && wc -l /nix/store/23x5l7i5rfhgkkfkbylq0khnz5xmnlxs-iana-etc-20170307/etc/protocols
522 /etc/protocols
139 /nix/store/23x5l7i5rfhgkkfkbylq0khnz5xmnlxs-iana-etc-20170307/etc/protocolsand $ wc -l /etc/services && wc -l /nix/store/23x5l7i5rfhgkkfkbylq0khnz5xmnlxs-iana-etc-20170307/etc/services
15551 /etc/services
11358 /nix/store/23x5l7i5rfhgkkfkbylq0khnz5xmnlxs-iana-etc-20170307/etc/services |
|
Alias |
pkgs/data/misc/iana-etc/default.nix
Outdated
|
|
||
|
|
||
| phases = [ "installPhase" ]; | ||
| buildInputs = [ stdenv ]; |
There was a problem hiding this comment.
Is it really necessary to add stdenv to build inputs?
There was a problem hiding this comment.
Hrm I believed I needed it to be able to gawk
There was a problem hiding this comment.
It shouldn't be; anything that's part of the stdenv is added to the build environment implicitly. Adding stdenv to inputs is like asking to extend the environment with itself, which at least conceptually is the identity operation (not sure if that's the case in practice).
There was a problem hiding this comment.
It makes total sense indeed.
Just tested without that input and it works the same. I will remove it.
|
Removed the unnecessary |
pkgs/data/misc/iana-etc/default.nix
Outdated
| urls = [ | ||
| "https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xml" | ||
| "ftp://ftp.iana.org/assignments/protocol-numbers/protocol-numbers.xml" | ||
| ]; |
There was a problem hiding this comment.
This url does not looks stable to me. Maybe we can mirror the content somewhere else?
There was a problem hiding this comment.
That was also my concern when writing this because IANA does not version those files (contrary to tzdata for example). So if/when the source is edited this definition will need an update to refresh the SHA hashes.
But for me it is acceptable since :
protocolsrarely change,servicesis modified more often but not every two days ;- we should have the package substitute available in the cache so it won't break networking on NixOS machines.
For illustration : the source of the old iana-etc package was missing for years (wrong URL) and no one noticed until #23167
But it is totally possible to change that. The alternative approach I envisioned is simply store a copy of the two XML right here on our GH repo next to default.nix and just import them. And we would just manually copy newer versions regularly, like before a new release branch-out.
|
Do we have more concerns on this ? |
c0bw3b
force-pushed
the
pkg/iana-etc
branch
2 times, most recently
from
1c3f1c1
to
a1b6c4e
Compare
|
@c0bw3b I created a github project, which automatically check for new IANA updates and create new releases using python: https://github.com/Mic92/iana-etc What do you think of it? |
c0bw3b
force-pushed
the
pkg/iana-etc
branch
2 times, most recently
from
e00b417
to
3ec4dde
Compare
|
So IANA has edited service-names-port-numbers.xml many times in the last few days, proving my initial assumption to be false. Moreover, we don't really need to keep a close track of what IANA changed. On many occasions, the update concerns people and organizations info, not the actual services numbers. We only need to have XML sources that are recent enough. I just pushed a refactor where I copy the two XML here on the GH repo newt to |
|
@c0bw3b if you download the tarballs, there is no python included just the processed files. I used python because xml cannot be parsed reliable with awk and it also seems that it skipped some lines: |
|
Mhm adding |
And 200 LOC in python to redo what can be done in 2x15 lines of
Yes it can. This is an empty claim. The source can be XML or plain text it would just change the script.
A quick check reveals you have duplicated entries in your processed [...]
subntbcst-tftp 247/tcp # SUBNTBCST_TFTP
subntbcst_tftp 247/tcp # SUBNTBCST_TFTP
subntbcst-tftp 247/udp # SUBNTBCST_TFTP
subntbcst_tftp 247/udp # SUBNTBCST_TFTP
[...]
redstorm-join 2346/tcp # Game Connection Port
redstorm_join 2346/tcp # Game Connection Port
redstorm-join 2346/udp # Game Connection Port
redstorm_join 2346/udp # Game Connection Port
redstorm-find 2347/tcp # Game Announcement and Location
redstorm_find 2347/tcp # Game Announcement and Location
redstorm-find 2347/udp # Game Announcement and Location
redstorm_find 2347/udp # Game Announcement and Location
redstorm-info 2348/tcp # Information to query for game status
redstorm_info 2348/tcp # Information to query for game status
redstorm-info 2348/udp # Information to query for game status
redstorm_info 2348/udp # Information to query for game status
redstorm-diag 2349/tcp # Diagnostics Port
redstorm_diag 2349/tcp # Diagnostics Port
redstorm-diag 2349/udp # Diagnostics Port
redstorm_diag 2349/udp # Diagnostics Port
[...]
mapper-nodemgr 3984/tcp # MAPPER network node manager
mapper-nodemgr 3984/udp # MAPPER network node manager
mapper-mapethd 3985/tcp # MAPPER TCP/IP server
mapper-mapethd 3985/udp # MAPPER TCP/IP server
mapper-ws-ethd 3986/tcp # MAPPER workstation server
mapper-ws_ethd 3986/tcp # MAPPER workstation server
mapper-ws-ethd 3986/udp # MAPPER workstation server
mapper-ws_ethd 3986/udp # MAPPER workstation serverAlso proving the point that XML parsing done in Python is not more reliable just because it's Python. |
c0bw3b
force-pushed
the
pkg/iana-etc
branch
2 times, most recently
from
e3655c0
to
de92806
Compare
Move away from an outdated package and fetch content directly from IANA Hence we do not rely on a third party for an up-to-date system file. iana_etc -> iana-etc : - align the attribute name with the package name for clarity - iana_etc is now an alias for iana-etc
|
This has been reworked one last time to :
With this Nix(OS) won't rely on a third-party for the generation of system files (like the old iana-etc package). |
|
|
||
| phases = [ "buildPhase" ]; | ||
| buildInputs = [ cacert curl ]; | ||
| builder = ./builder.sh; |
There was a problem hiding this comment.
You can only access the network with a fixed output drv when sandboxing is enabled, I'm pretty sure this will fail on hydra.
|
Could this infrastructure be used to generate the /etc/protocols and /etc/services files which we just track directly? I know that's not the usual practice but
|
|
Okay SGTM, thanks for the reponse (here and on the other PR)! |
Motivation for this change
Some time ago I push a quick PR to fix the source of the old
iana-etcpackage : see #23167When looking at it I realised NixOS relied on an outdated package that does not seem maintained anymore. The last version is from 2008-MAR-05.
Present
/etc/servicesand/etc/protocolscontent is just as old as this package and probably incomplete/outdated.This PR propose to fetch the information directly from IANA.
Truth be told, this is heavily inspired by what Arch does.
As an added bonus, this PR rename the attribute name to
iana-etcinstead of iana_etc. For clarity it seems proper to align attr and pkg name.Things done
(nix.useSandbox on NixOS,
or option
build-use-sandboxinnix.confon non-NixOS)
nix-shell -p nox --run "nox-review wip"./result/bin/)