IETF Logo Mail Archive

Re: [Dime] Ulrich's suggested change #15

"Wiehe, Ulrich (NSN - DE/Munich)" <ulrich.wiehe@nsn.com> Tue, 23 December 2014 18:54 UTC

Return-Path: <ulrich.wiehe@nsn.com>
X-Original-To: dime@ietfa.amsl.com
Delivered-To: dime@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D8F41A1AB9 for <dime@ietfa.amsl.com>; Tue, 23 Dec 2014 10:54:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.901
X-Spam-Level:
X-Spam-Status: No, score=-6.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ySEMrhnznxho for <dime@ietfa.amsl.com>; Tue, 23 Dec 2014 10:54:41 -0800 (PST)
Received: from demumfd002.nsn-inter.net (demumfd002.nsn-inter.net [93.183.12.31]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 47DC71A1AC3 for <dime@ietf.org>; Tue, 23 Dec 2014 10:54:41 -0800 (PST)
Received: from demuprx017.emea.nsn-intra.net ([10.150.129.56]) by demumfd002.nsn-inter.net (8.14.3/8.14.3) with ESMTP id sBNIsbSP030404 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Tue, 23 Dec 2014 18:54:38 GMT
Received: from DEMUHTC004.nsn-intra.net ([10.159.42.35]) by demuprx017.emea.nsn-intra.net (8.12.11.20060308/8.12.11) with ESMTP id sBNIsZnk008009 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 23 Dec 2014 19:54:37 +0100
Received: from DEMUHTC013.nsn-intra.net (10.159.42.44) by DEMUHTC004.nsn-intra.net (10.159.42.35) with Microsoft SMTP Server (TLS) id 14.3.195.1; Tue, 23 Dec 2014 19:54:34 +0100
Received: from DEMUMBX014.nsn-intra.net ([169.254.14.60]) by DEMUHTC013.nsn-intra.net ([10.159.42.44]) with mapi id 14.03.0195.001; Tue, 23 Dec 2014 19:54:34 +0100
From: "Wiehe, Ulrich (NSN - DE/Munich)" <ulrich.wiehe@nsn.com>
To: "Wiehe, Ulrich (NSN - DE/Munich)" <ulrich.wiehe@nsn.com>, ext Ben Campbell <ben@nostrum.com>
Thread-Topic: [Dime] Ulrich's suggested change #15
Thread-Index: AQHQE7dJhQB5e1nbwEev114RSsJu35yHeSWggAL2Z7uAAD8mAIAACZWAgAY/jwCAAU9ggIABPegggAglTQCAAYF28IAAH80AgAAaZ9CAAAAWgIAAFGEAgAAhJyA=
Date: Tue, 23 Dec 2014 18:54:34 +0000
Message-ID: <5BCBA1FC2B7F0B4C9D935572D90006681523AD55@DEMUMBX014.nsn-intra.net>
References: <5486FE71.70205@usdonovans.com> <5BCBA1FC2B7F0B4C9D935572D900066815235215@DEMUMBX014.nsn-intra.net> <54884137.4050209@usdonovans.com> <5AB8BAC5-3CBD-432E-9631-74DF40795844@nostrum.com> <5489A498.5070203@usdonovans.com> <B74498A5-D8BE-4064-925F-5943F0D79CDC@nostrum.com> <5489EFAF.8010702@usdonovans.com> <5BCBA1FC2B7F0B4C9D935572D9000668152358E0@DEMUMBX014.nsn-intra.net> <549046D3.3090104@usdonovans.com> <5BCBA1FC2B7F0B4C9D935572D900066815235AB9@DEMUMBX014.nsn-intra.net> <549826C8.1090809@usdonovans.com> <5BCBA1FC2B7F0B4C9D935572D900066815239CB6@DEMUMBX014.nsn-intra.net> <1FC86658-AB09-4C11-9ED1-0C7FAFC542BE@nostrum.com> <5BCBA1FC2B7F0B4C9D935572D90006681523ACF5@DEMUMBX014.nsn-intra.net> <E0B4F8BD-3FC6-4133-B363-6E8B5A216789@nostrum.com> <5BCBA1FC2B7F0B4C9D935572D90006681523AD21@DEMUMBX014.nsn-intra.net>
In-Reply-To: <5BCBA1FC2B7F0B4C9D935572D90006681523AD21@DEMUMBX014.nsn-intra.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.159.42.109]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-purgate-type: clean
X-purgate-Ad: Categorized by eleven eXpurgate (R) http://www.eleven.de
X-purgate: clean
X-purgate: This mail is considered clean (visit http://www.eleven.de for further information)
X-purgate-size: 13170
X-purgate-ID: 151667::1419360878-00001177-94CABB9B/0/0
Archived-At: http://mailarchive.ietf.org/arch/msg/dime/qumYts73QLWLrYuUb87h3WkP5-8
Cc: "dime@ietf.org" <dime@ietf.org>
Subject: Re: [Dime] Ulrich's suggested change #15
X-BeenThere: dime@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Diameter Maintanence and Extentions Working Group <dime.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dime>, <mailto:dime-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dime/>
List-Post: <mailto:dime@ietf.org>
List-Help: <mailto:dime-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dime>, <mailto:dime-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Dec 2014 18:54:46 -0000

With this clarification I withdraw my request for explicit statements; simply deleting the paragraph is sufficient.
Ulrich

-----Original Message-----
From: DiME [mailto:dime-bounces@ietf.org] On Behalf Of ext Wiehe, Ulrich (NSN - DE/Munich)
Sent: Tuesday, December 23, 2014 5:54 PM
To: ext Ben Campbell
Cc: dime@ietf.org
Subject: Re: [Dime] Ulrich's suggested change #15

Thank you for the clarification.

-----Original Message-----
From: ext Ben Campbell [mailto:ben@nostrum.com] 
Sent: Tuesday, December 23, 2014 5:41 PM
To: Wiehe, Ulrich (NSN - DE/Munich)
Cc: ext Steve Donovan; dime@ietf.org
Subject: Re: [Dime] Ulrich's suggested change #15


> On Dec 23, 2014, at 9:55 AM, Wiehe, Ulrich (NSN - DE/Munich) <ulrich.wiehe@nsn.com> wrote:
> 
> When the reporting node is doing things wrong, i.e. sends an OLR of a type that was not advertized (implicitly or explicitly), or sends two OLRs of same type, although the spec says "MUST NOT do so", we cannot expect the reacting node to sort things out.

Given the current MUST NOT, I agree. As I've mentioned in the past, we don't need to specify behavior on what you do when the peer violates the protocol. If a reacting node receives an answer with two OLRs of the same type, or with an OLR of a type it doesn't recognize, what it does is local policy. It could ignore all further DOIC information from that reacting node, and treat it like a non-supporting node. It could ignore all the OLRs in the message, but continue to exchange OC-S-Fs. It could process some (or one) of the OLRs and ignore the rest. It's up to the implementors to decide.

BTW, we don't need text to say that, unless we want to actually favor one strategy over another.

> I do not agree to relax the "MUST NOT do so" requirement for the reporting node.
> 

I did not seriously expect us to. I just tossed it out as something to think about.

> 
> -----Original Message-----
> From: ext Ben Campbell [mailto:ben@nostrum.com] 
> Sent: Tuesday, December 23, 2014 4:06 PM
> To: Wiehe, Ulrich (NSN - DE/Munich)
> Cc: ext Steve Donovan; dime@ietf.org
> Subject: Re: [Dime] Ulrich's suggested change #15
> 
> I don't object to allowing that behavior. But thinking of a less extreme case, where you have two OC-OLRs and only recognize one, I think it would be poor design to ignore the one you do recognize. OTOH, it's not the IETF's job to prevent bad design, as long as it's interoperable and doesn't break everyone else (and the network.)
> 
> But we might want to consider the fact that this puts the work upon the overloaded reporting node to make things right, rather than on the reacting node to figure it out. For example, the use cases I've describe in a separate thread, where you have multiple reacting nodes with different capabilities, might could be mitigated by allowing (not requiring) the reporting node put the OC-OLRs for both in each answer. We don't currently allow that unless they are different types, but I wonder if we should think about relaxing that.
> 
>> On Dec 23, 2014, at 6:30 AM, Wiehe, Ulrich (NSN - DE/Munich) <ulrich.wiehe@nsn.com> wrote:
>> 
>> No, that was not what I’m after.
>> 
>> Imagine the (unlikely) case where an answer message contains hundreds of OC-OLR AVPs.
>> 
>> In this case I want the reacting node to be allowed
>> -          Not to scan through all the OC-OLR AVPs to see whether there is a supported  and not duplicated OLR
>> -          To ignore the complete set of OC-OLR AVPs if at least one of the OLR contains an unsupported report-type or at least two of the OLRs contain  the same report type.
>> 
>> As soon as the reacting node detects that there is something wrong with the set of OLRs it may ignore the complete set of OLRs.
>> 
>> Regards
>> Ulrich
>> 
>> From: ext Steve Donovan [mailto:srdonovan@usdonovans.com] 
>> Sent: Monday, December 22, 2014 3:12 PM
>> To: Wiehe, Ulrich (NSN - DE/Munich); Ben Campbell
>> Cc: dime@ietf.org
>> Subject: Re: [Dime] Ulrich's suggested change #15
>> 
>> I have added the following statements:
>> 
>>   When receiving an answer message with multiple OLRs and multiple of
>>   the OLRs are of the same supported report types, a reporting node
>>   SHOULD ignore the duplicated OLRs.
>> 
>>   A reacting node SHOULD ignore an OC-OLR with a OC-Report-Type AVP
>>   that contains an unrecognized value.
>> Regards,
>> 
>> Steve
>> 
>> On 12/17/14 2:49 AM, Wiehe, Ulrich (NSN - DE/Munich) wrote:
>> Yes please.
>> 
>> -----Original Message-----
>> From: ext Steve Donovan [mailto:srdonovan@usdonovans.com] 
>> Sent: Tuesday, December 16, 2014 3:51 PM
>> To: Wiehe, Ulrich (NSN - DE/Munich); Ben Campbell
>> Cc: dime@ietf.org
>> Subject: Re: [Dime] Ulrich's suggested change #15
>> 
>> I'll delete the paragraph.
>> 
>> Do we need explicit statements for the two conditions below?
>> 
>> Steve
>> 
>> 
>> On 12/15/14, 11:56 AM, Wiehe, Ulrich (NSN - DE/Munich) wrote:
>> Steve, Ben,
>> 
>> I'm fine with deleting the paragraph.
>> But for my clarification please confirm that ignoring the complete set of OLRs is allowed when one of these OLRs contains a report type that was not advertized, or two of the OLRs contain the same report type.
>> 
>> Regards
>> Ulrich
>> 
>> 
>> 
>> -----Original Message-----
>> From: ext Steve Donovan [mailto:srdonovan@usdonovans.com]
>> Sent: Thursday, December 11, 2014 8:26 PM
>> To: Ben Campbell
>> Cc: Wiehe, Ulrich (NSN - DE/Munich); dime@ietf.org
>> Subject: Re: [Dime] Ulrich's suggested change #15
>> 
>> 
>> On 12/11/14, 12:51 PM, Ben Campbell wrote:
>> On Dec 11, 2014, at 8:05 AM, Steve Donovan <srdonovan@usdonovans.com> wrote:
>> 
>> I thought this paragraph was covering unrecognized values for all AVPs.
>> I agree that's what it covered. But I think we failed to cover the unrecognized AVP case. If we don't have anything to say beyond what 6733 says, then it might not be strictly necessary, but it might still be worth saying that "unrecognized sub-AVPs are treated as per RFC6733".
>> That is probably worth saying.
>>   Maybe it is better to remove the paragraph entirely and make sure that the definition of each AVP addresses what is done with unrecognized values.
>> Possibly. There are AVPs where there's no such thing as an unrecognized value. There may be AVPs where the allowed values vary by algorithm. If we do take that route, we probably need language here that says unrecognized values are handled as described by the AVP definition or the algorithm.
>> Agreed.
>> Steve
>> 
>> On 12/10/14, 5:26 PM, Ben Campbell wrote:
>> On Dec 10, 2014, at 6:48 AM, Steve Donovan <srdonovan@usdonovans.com> wrote:
>> 
>> Ulrich,
>> 
>> Actually, the wording you suggested wasn't quite right.  It should be:
>> 
>>    When receiving an OC-OLR AVP with unknown values, the overload report
>>    SHOULD be silently discarded by reacting nodes and the event SHOULD
>>    be logged.
>> 
>> It's not just about report type values but unknown values for any of the AVPs in the OLR.
>> 
>> This seems like a good requirement to include in the specification to ensure common behavior in reacting nodes.  I don't feel strongly about this but I would like to hear other opinions.
>> I think this is still not quite complete.
>> 
>> If you receive a sub-AVP that you don't understand, then you should ignore that sub-avp, not the whole OC-OLR AVP.  (Unless of course the unknown AVP has the m-bit set.) If you receive a known sub-AVP, with a value you don't understand, the behavior should be AVP specific. For Report-Type, that means ignore the whole OLR.
>> 
>> It's not clear to me whether the original text was about arbitrary avps, or Report-Type.
>> 
>> Steve
>> 
>> On 12/9/14, 11:04 AM, Wiehe, Ulrich (NSN - DE/Munich) wrote:
>> Hi Steve,
>> 
>> I think it was pointed out by Ben that we do not specify behaviour of a node for cases where it detects that another node is breaking the rule.
>> The rule is:
>>     A reporting node MUST NOT send overload reports of a type that has
>>     not been advertised as supported by the reacting node.
>> See section 4.2.3.
>> 
>> Regards
>> Ulrich
>> 
>>    From: DiME [mailto:dime-bounces@ietf.org] On Behalf Of ext Steve Donovan
>> Sent: Tuesday, December 09, 2014 2:52 PM
>> To: dime@ietf.org
>> Subject: [Dime] Ulrich's suggested change #15
>> 
>> Ulrich,
>> 
>> For your suggested change #15:
>> Section 4.2.1.3, 4th paragraph:
>> Existing text:
>>     When receiving an OC-OLR AVPs with unknown values, a reacting node
>>     SHOULD be silently discarded by reacting nodes and the event SHOULD
>>     be logged.
>> Comment: text is confusing. Maybe the intention was to say:
>>     When receiving an OC-OLR AVPs with an unsupported report type value, a reacting node
>>     SHOULD silently discarded the OC-OLR AVP and the event SHOULD
>>     be logged.
>> But even that is not correct.
>> Proposal: Remove the paragraph.
>> The intent was that an OC-OLR that contains unknown values should be discarded.  I agree that the wording needs to be changes as you suggested.  I don't agree with removing the paragraph.  Can you elaborate on why you think it is not correct when changed as you suggested?
>> 
>> Regards,
>> 
>> Steve
>> 
>> _______________________________________________
>> DiME mailing list
>> DiME@ietf.org
>> https://www.ietf.org/mailman/listinfo/dime
>> 
>> 
>> 
>> 
> 

_______________________________________________
DiME mailing list
DiME@ietf.org
https://www.ietf.org/mailman/listinfo/dime

v2.23.0 | Report a Bug | By Email