IETF Logo Mail Archive

Re: [Gen-art] Gen-ART review of draft-ietf-ippm-6man-pdm-option: Minor and editorial

<nalini.elkins@insidethestack.com> Mon, 06 March 2017 14:41 UTC

Return-Path: <nalini.elkins@insidethestack.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6798F1297C9 for <gen-art@ietfa.amsl.com>; Mon, 6 Mar 2017 06:41:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_SORBS_SPAM=0.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yahoo.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6sReUYu7eCW5 for <gen-art@ietfa.amsl.com>; Mon, 6 Mar 2017 06:41:22 -0800 (PST)
Received: from nm12.bullet.mail.gq1.yahoo.com (nm12.bullet.mail.gq1.yahoo.com [98.136.218.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 54B92128AB0 for <gen-art@ietf.org>; Mon, 6 Mar 2017 06:41:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1488811282; bh=nL4wOPgAz8tdBZ59wsq/47P19pcR2B6QvcOx91b1ZZg=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:From:Subject; b=OS/if4794RPAKDbOaR7wqgBpXxA1nKMkTbbwpzLmTqNFe4Rs6ZK59vo11MB/KNJAKy3HcLafbVClHeOnmWcTafpfgcK5AOOhBJB0JOpdxWCK3TcHwnSjgYGpmOUp6Q7CxJW1oLxgd71imLVqGtCMcKzDqNLQF7oyEpiQYIA6UWzs1yurCLx906V0wHbsT086KFS4XXrGOmlnKOvoihkdAu1WvAbR1JOQxAfhiWsU7pKiGM1itI0gHBbQZa+r13m6hhdK8qBj3sO+CU7qS7r3UmSDGnkQWEf8rTO/+E9qH2Rq2DsM/BJIhf0mFrPFexEg5cFdikdKpQ24xqIfv5SkNw==
Received: from [98.137.12.190] by nm12.bullet.mail.gq1.yahoo.com with NNFMP; 06 Mar 2017 14:41:22 -0000
Received: from [98.137.12.219] by tm11.bullet.mail.gq1.yahoo.com with NNFMP; 06 Mar 2017 14:41:21 -0000
Received: from [127.0.0.1] by omp1027.mail.gq1.yahoo.com with NNFMP; 06 Mar 2017 14:41:21 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 785369.49893.bm@omp1027.mail.gq1.yahoo.com
X-YMail-OSG: i.uQOcYVM1nKOJnpHaUfKjrBskyghdSr7HYh_dKmtvEIrBm6Za_7HxQ7q7kdilo TGALZkJsV4KJKmdlIiC0ChBhUtYIfteRAbf1_blHAnP2lu0uqucNUAjrQvfo.BmRH00nr1Nt60ua MA3kLsG3cJAtEl_OWW64jmhivnPjWQwTDMFq7PluV51K8XRzYvRfnZb8wLQUG0phWjUDGXwKWB5U j7YKmVVnaN_jD7sakSrAn3mAdpUM8rdqyUEmjoNFC7dXwuMNYzyfm3U2cfZxzg7MtmuFgNdbKDYJ Y1moA0ZhReGUb6dRNen7yGPfq0IWuecl3KVbzr77Hii9JC9M0hhUmxyoRMcOiPqNKuMnxi13CvnQ 2QiazhY.ndL7aCZTCEMIYxCvQLpS00c3mRjxKwSWqjL.rFUPBvDbxrPydw30sM3hptXDJUc5r4sY st38SV1n7c5yVLcdB1OWApjkbJkXiO6AsGhjOkD_qJ9oZO9vuPcqxQgWLDsV3bWObH796kl4ozLE E9.nO6DXMUrAMM64LtkNrkq9_d9f17_ydjPBRmtNj3rtbqxJxGg--
Received: from jws300067.mail.gq1.yahoo.com by sendmailws143.mail.gq1.yahoo.com; Mon, 06 Mar 2017 14:41:21 +0000; 1488811281.222
Date: Mon, 06 Mar 2017 14:41:20 +0000
From: nalini.elkins@insidethestack.com
To: "jouni.nospam" <jouni.nospam@gmail.com>
Message-ID: <1469149167.3278568.1488811280983@mail.yahoo.com>
In-Reply-To: <D75B9709-6A2A-4DB9-B236-D85EFEAE7B07@gmail.com>
References: <1332138488.632081.1487514414996.ref@mail.yahoo.com> <1332138488.632081.1487514414996@mail.yahoo.com> <1447603174.3532009.1488294264199@mail.yahoo.com> <D75B9709-6A2A-4DB9-B236-D85EFEAE7B07@gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_3278567_1834549449.1488811280979"
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/duSQnrB_4HhdJG0flwfXpC8V2NI>
Cc: Robert Hamilton <rhamilton@cas.org>, "draft-ietf-ippm-6man-pdm-option.all@ietf.org" <draft-ietf-ippm-6man-pdm-option.all@ietf.org>, General Area Review Team <gen-art@ietf.org>, Michael Ackermann <mackermann@bcbsm.com>
Subject: Re: [Gen-art] Gen-ART review of draft-ietf-ippm-6man-pdm-option: Minor and editorial
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: nalini.elkins@insidethestack.com
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Mar 2017 14:41:24 -0000

Jouni,
OK.   I will look.   We are also working with a very well respected FreeBSD developer to create a version of FreeBSD which has PDM in it.  
We need to know exactly what choices one has in the OS stack itself. Thanks,
Nalini ElkinsInside Products, Inc.www.insidethestack.com(831) 659-8360

      From: jouni.nospam <jouni.nospam@gmail.com>
 To: nalini.elkins@insidethestack.com 
Cc: General Area Review Team <gen-art@ietf.org>; "draft-ietf-ippm-6man-pdm-option.all@ietf.org" <draft-ietf-ippm-6man-pdm-option.all@ietf.org>; Michael Ackermann <mackermann@bcbsm.com>; Robert Hamilton <rhamilton@cas.org>
 Sent: Sunday, March 5, 2017 4:54 PM
 Subject: Re: Gen-ART review of draft-ietf-ippm-6man-pdm-option: Minor and editorial
   
Hi,

Thank you for the updates. I am fine with them.

I still have one fundamental complaint. There is no discussion or definition of the message timestamp points. All this nanosecond or better accuracy, and the concern of truncation inaccuracy do not really matter if the message timestamp point varies node to node or even within the node. I suggest taking a look at standards like IEEE 802.1AS, IEEE 1588v2 or IEEE 1722 for discussions of this topic. You really need to have a good definition & discussion of the message timestamp point, or justify that in the text why it is not there.

Regards,
    Jouni



> On Feb 28, 2017, at 7:04 AM, nalini.elkins@insidethestack.com wrote:
> 
> 
> 
> Jouni,
> 
> We have posted a new version which addresses the minor and editorial comments. It is below.  I am waiting for your response to the major comments & then I will integrate.  As far as I know now, I have addressed all outstanding issues.  My comments to your editorial / minor is below.
> 
> https://datatracker.ietf.org/doc/draft-ietf-ippm-6man-pdm-option/
> 
> 
> Nits/editorial comments: 
> 
>> 1) Section 1.4 numbered list: add missing full stops. 
> 
> Actually, I think it is better to remove the full stops from the two that have it.  These are sentence 
> fragments. 
> 
>> 2) Section 3.2: remove 
> 
>> "The 5-tuple consists of 
> 
>>  the source and destination IP addresses, the source and destination 
> 
>>  ports, and the upper layer protocol (ex. TCP, ICMP, etc)." 
> 
>> since this is unnecessary repetition. 
> 
> 
> This is in the section below: 
> 
> Old 
> ---- 
> Packet Sequence Number This Packet (PSNTP) 
> 
> 16-bit unsigned integer.  This field will wrap. It is intended for 
> use while analyzing packet traces. 
> 
> Initialized at a random number and incremented monotonically for each 
> packet of the session flow of the 5-tuple.  The 5-tuple consists of 
> the source and destination IP addresses, the source and destination 
> ports, and the upper layer protocol (ex. TCP, ICMP, etc).  The 
> random number initialization is intended to make it harder to spoof 
> and insert such packets. 
> 
> New 
> ---- 
> Packet Sequence Number This Packet (PSNTP) 
> 
> 16-bit unsigned integer.  This field will wrap. It is intended for 
> use while analyzing packet traces. 
> 
> Initialized at a random number and incremented monotonically for each 
> packet of the session flow of the 5-tuple. 
> 
> 
>> 3) Section 3.2: remove 
> 
>> "Operating systems MUST NOT implement a single 
> 
>> counter for all connections." 
> 
>> Seems again like unnecessary repetition to previous sentence. 
> 
> 
> This is in the section on "Packet Sequence Number This Packet (PSNTP)" 
> 
> Old 
> --- 
> Operating systems MUST implement a separate packet sequence number 
> counter per 5-tuple. Operating systems MUST NOT implement a single 
> counter for all connections. 
> 
> New 
> --- 
> Operating systems MUST implement a separate packet sequence number 
> counter per 5-tuple. 
> 
> 
>> 4) Section 3.2 again unnecessary repetition of IPv6 basics that can be read from RFC2460. Suggest strongly to remove: 
> 
>> "This indicates the following processing requirements: 
> 
>>  00 - skip over this option and continue processing the header. 
> 
>>  RFC2460 [RFC2460] defines other values for the Option Type field. 
> 
>> These MUST NOT be used in the PDM." 
> 
>> and 
> 
>> "The possible values are as follows: 
> 
>> 0 - Option Data does not change en-route 
> 
>>  1 - Option Data may change en-route 
> 
>>  The three high-order bits described above are to be treated as part 
> 
>>  of the Option Type, not independent of the Option Type.  That is, a 
> 
>> particular option is identified by a full 8-bit Option Type, not just 
> 
>> the low-order 5 bits of an Option Type." 
> 
> 
> Old 
> ---- 
> Option Type 
> 
> The two highest-order bits of the Option Type field are encoded to 
> indicate specific processing of the option; for the PDM destination 
> option, these two bits MUST be set to 00. This indicates the 
> following processing requirements: 
> 
> 00 - skip over this option and continue processing the header. 
> 
> RFC2460 [RFC2460] defines other values for the Option Type field. 
> These MUST NOT be used in the PDM. 
> 
> In keeping with RFC2460 [RFC2460], the third-highest-order bit of the 
> Option Type specifies whether or not the Option Data of that option 
> can change en-route to the packet's final destination. 
> 
> In the PDM, the value of the third-highest-order bit MUST be 0.  The 
> possible values are as follows: 
> 
> 0 - Option Data does not change en-route 
> 
> 1 - Option Data may change en-route 
> 
> The three high-order bits described above are to be treated as part 
> of the Option Type, not independent of the Option Type.  That is, a 
> particular option is identified by a full 8-bit Option Type, not just 
> the low-order 5 bits of an Option Type. 
> 
> 
> 
> New 
> ---- 
> Option Type 
> 
> In keeping with RFC2460[RFC2460], the two high order bits of the Option Type field are encoded to 
> indicate specific processing of the option; for the PDM destination 
> option, these two bits MUST be set to 00. 
> 
> The third high order bit of the Option Type specifies whether or not the Option Data of that option 
> can change en-route to the packet's final destination. 
> 
> In the PDM, the value of the third high order bit MUST be 0. 
> 
> 
> 
> 5) Section 3.3 same as in comment 4). Suggest strongly removing: 
> 
>> "This follows the order defined in RFC2460 [RFC2460] 
> 
>>              IPv6 header 
> 
>>              Hop-by-Hop Options header 
> 
>>            Destination Options header  <-------- 
> 
>>            Routing header 
> 
>>          Fragment header 
> 
>>          Authentication header 
> 
>>        Encapsulating Security Payload header 
> 
>>        Destination Options header <------------ 
> 
>>      upper-layer header" 
> 
> 
> 
>> 6) Suggest removing entire Section 3.4 and moving the following text to Section 3.3: 
> 
>> "PDM MUST be placed before the ESP header in 
> 
>> order to work.  If placed before the ESP header, the PDM header will 
> 
>> flow in the clear over the network thus allowing gathering of 
> 
>> performance and diagnostic data without sacrificing security." 
> 
> 
> ESP processing with PDM was changed because of comments from security reviewer. 
> 
> 
> 
>> 7) Section 3.6 suggest removing the following text. I see no value it would add to what has already been said: 
> 
>> "As with all other destination options extension headers, the PDM is 
> 
>>  for destination nodes only. As specified above, intermediate devices 
> 
>>  MUST neither set nor modify this field." 
> 
> 
> Done 
> 
> 
>> 8) Section 3.6 suggest removing the following 5-tuple text as it has already been described earlier in Section 2: 
> 
>> "The 5-tuple is: 
> 
>>  SADDR : IP address of the sender SPORT : Port for sender DADDR : IP 
> 
>>  address of the destination DPORT : Port for destination PROTC : 
> 
>>  Protocol for upper layer (ex. TCP, UDP, ICMP)" 
> 
> Done 
> 
> 
>> 9) Sections 4.2 and 4.3 suggest removing them entirely. I see what value these sections add. I acknowledge they are good 
>> to know information of timer hardware implementation difference but do not really add value on the on-wire encoding of the PDM option. 
> 
>> 10) Section 4.4 suggest removing the entire section. Time Base was already described in detail enough in Section 3.2. 
> 
>> 11) Section 4.5 time base for picoseconds is 11 not 00. 
> 
>> 12) Section 4.5 suggest removing the following text, since it does not add any more clarity to what has already been said in my opinion. This is because all the examples follow nice nybble increment in scaling: 
> 
>> "Sample binary values (high order 16 bits taken) 
> 
>>  1 psec            1                                              0001 
> 
>>  1 nsec          3E8                                    0011 1110 1000 
> 
>>  1 usec        F4240                          1111 0100 0010 0100 0000 
> 
>>  1 msec    3B9ACA00          0011 1011 1001 1010 1100 1010 0000 0000 
> 
>>  1 sec    E8D4A51000 1110 1000 1101 0100 1010 0101 0001 0000 0000 0000" 
> 
>> 12) Section 4.6 I do not understand why this section is here. I strongly suggest removing it. Sections 4.5 and 3.2 already describe how I would encode the delta time using scaling as a separate fields not embedded (option fields ScaleDTLR and ScaleDTLS). Did I misunderstand something here? 
> 
> 
> Points 9 - 12 refer to the timing calculations.  The timebase has been fixed to be attoseconds. 
> The entire timing section has been re-written.  It has also been moved to an appendix. 
> Please let us know if it this addresses your concerns. 
> 
> 
> 
>> 13) Section 5 suggest removing the following text because of it repeating what has already been said earlier: 
> 
>> "Each packet, in addition to the PDM contains information on the 
> 
>> sender and receiver. As discussed before, a 5-tuple consists of: 
> 
>>  SADDR : IP address of the sender 
> 
>>  SPORT : Port for sender 
> 
>>  DADDR : IP address of the destination 
> 
>>  DPORT : Port for destination 
> 
>>  PROTC : Protocol for upper layer (ex. TCP, UDP, ICMP) 
> 
>> It should be understood that the packet identification information is 
> 
>> in each packet. We will not repeat that in each of the following 
> 
>> steps." 
> 
> 
> This is now in Appendix B.  It has been removed from that section. 
> 
> 
> 
>> 14) Section 5.3 suggest merging the following text into one example and do necessary rewording. There is no need to do the same 
>>  calculation twice on almost adjacent lines: 
> 
>> "Sending time : packet 2 - receive time : packet 1 
> 
>> We will call the result of this calculation: Delta Time Last Received 
> 
>> (DELTATLR) 
> 
>> That is: 
> 
>> Delta Time Last Received = (Sending time: packet 2 - receive time: packet 1)" 
> 
> Done 
> 
> 
>> 15) Expand RTT and PSN on their first use. 
> 
> Done
> 
> Thanks,
> 
> Nalini Elkins
> Inside Products, Inc.
> www.insidethestack.com
> (831) 659-8360

v2.23.0 | Report a Bug | By Email