Re: [Idr] John Scudder's Discuss on draft-ietf-idr-rfc7752bis-14: (with DISCUSS and COMMENT)
Ketan Talaulikar <ketant.ietf@gmail.com> Tue, 21 February 2023 06:34 UTC
Return-Path: <ketant.ietf@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D753C14CF1B; Mon, 20 Feb 2023 22:34:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.095
X-Spam-Level:
X-Spam-Status: No, score=-7.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Zo2gJstbeN6F; Mon, 20 Feb 2023 22:34:19 -0800 (PST)
Received: from mail-ed1-x52b.google.com (mail-ed1-x52b.google.com [IPv6:2a00:1450:4864:20::52b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 340DEC14CF15; Mon, 20 Feb 2023 22:34:19 -0800 (PST)
Received: by mail-ed1-x52b.google.com with SMTP id cq23so12596566edb.1; Mon, 20 Feb 2023 22:34:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=n5J5wTj15JO+0DUgxlyFU2+N0SbLySAlUnNKZ4QL8kE=; b=Dx9PmfW6zFh+5P6udkxwk++I2TrGLU7p0aoGsTPgijVTHOebZccAHj0qTSi1nI6WL9 H26DdJZqlPIGYknuJP3Ahi59oAXokIWWe5u9cxzMKqZPj6APScEpoiHWtR0ntnVDpFyr jJtdKocEwm/AATPU/m/PndcZmlwCHflIDiCip2t9GPjRAYD66m4rPONaMuvKZvQ3BhAK jjUEfO98KIBLeMzaqj5Pr++knlqyr6BA9pbiphlgC3dYNgTs31vHPNBMeBg97RCEoh5M Qd6UNkWyZ9DW10L5RFXl42Ffhw0kzyRHX17hOjxuo6XlHHUqw6mr+RAuJLyWQ59s72a0 JVKw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=n5J5wTj15JO+0DUgxlyFU2+N0SbLySAlUnNKZ4QL8kE=; b=uCoKDyYtZ4BavzaXkAVp+83nvz+7fbv6WGwLgnjEDHBcNu+hegN31klCIjdmSwihkF 9OdQdO32DtZG948zyRFcvL2qOwmR82GjhUiIAZPFR/uMyGJitPfWnkWVAZoZAuA2DasT WjBJ185ZrFE7XeXTsshrkGlvGDHMcjf23XRLHZAFK2qDj8KOfgvPcs0UGdulL/B1EB02 9C5hsZFV33NfYgrGqUf7zJGGjLZUqjGQ02hwvAw7OemVXnDNs6UPwA+3+mqeDbFCcYyi uIOSvcOA9O5yXYenUuOaRZhN+8vtL9LtTQVypALgti6IjKi9ujePS6kdPlrlXVbX9b73 N08g==
X-Gm-Message-State: AO0yUKUh/zR5EjASPQo0b/9H08voT0S77GM0Kk1s8I6mUNAVplVoqnaX 0pvKCqN9CxJGsCC7Ls7P+7m47iAYZP02V3O92E82hrjvyoo=
X-Google-Smtp-Source: AK7set9rdrEesTVU72XxcF0XjdHhRtjCqXsp34fBoIaFUoW05eR6aHTJ0MPmVBta5nMvVAihcZMY9vnyIoYTaYgrwk8=
X-Received: by 2002:a17:906:869a:b0:879:9c05:f5fb with SMTP id g26-20020a170906869a00b008799c05f5fbmr5333586ejx.5.1676961256819; Mon, 20 Feb 2023 22:34:16 -0800 (PST)
MIME-Version: 1.0
References: <167089498765.45764.5586703047949203559@ietfa.amsl.com> <CAH6gdPxs5nqz3ZLLa0pG3z+eN4JgaePw1=e8CNYFjjTEfcK5qQ@mail.gmail.com> <78361597-2317-4CF9-AF28-3EA501EE182A@juniper.net>
In-Reply-To: <78361597-2317-4CF9-AF28-3EA501EE182A@juniper.net>
From: Ketan Talaulikar <ketant.ietf@gmail.com>
Date: Tue, 21 Feb 2023 12:04:05 +0530
Message-ID: <CAH6gdPx-UPCyo+jyKZpXxC=u=3BqTF-5jQj4C4HkZehrTgeFcw@mail.gmail.com>
To: John Scudder <jgs@juniper.net>
Cc: The IESG <iesg@ietf.org>, "draft-ietf-idr-rfc7752bis@ietf.org" <draft-ietf-idr-rfc7752bis@ietf.org>, "idr-chairs@ietf.org" <idr-chairs@ietf.org>, IDR List <idr@ietf.org>, Hares Susan <shares@ndzh.com>, Jeffrey Haas <jhaas@pfrc.org>, Alvaro Retana <aretana.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="00000000000003d02005f52ff8b0"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/CQIFPW4-bN_CDA1feeDWSrZT4do>
Subject: Re: [Idr] John Scudder's Discuss on draft-ietf-idr-rfc7752bis-14: (with DISCUSS and COMMENT)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Feb 2023 06:34:23 -0000
Hi John, Thanks for your feedback and further comments/responses. Please check inline below with KT2 for my responses. I have also posted an update with the changes as discussed below: https://datatracker.ietf.org/doc/html/draft-ietf-idr-rfc7752bis-16 On Mon, Feb 20, 2023 at 11:19 PM John Scudder <jgs@juniper.net> wrote: > Hi Ketan, > > I’ve reviewed your replies and change set, looks good to me for the large > part. A few replies are in line below (I’ve trimmed the agreed points for > brevity). > > —John > > ## COMMENTS > > > On Feb 17, 2023, at 6:20 AM, Ketan Talaulikar <ketant.ietf@gmail.com> > wrote: > ... > > ### Section 4 > > > > You set up, but do not resolve, a conflict, in your first two paragraphs: > > > > ``` > > The origination and propagation of IGP link-state information via BGP > > needs to provide a consistent and true view of the topology of the > > IGP domain. > > ``` > > and, > > > > ``` > > The link-state information advertised in BGP-LS from the IGPs is > > derived from the IGP LSDB built using the OSPF Link State > > Advertisements (LSAs) or the IS-IS Link State Packets (LSPs). > > However, it does not serve as a true reflection of the originating > > router's LSDB. > > ``` > > What's a reader to think when they encounter this contradiction, between > "needs > > to provide... a true view" and "does not serve as a true reflection"? I > guess > > the former talks about the *topology* and the latter talks about the > *LSDB*, > > but if you intend to make something of this subtle difference, it's > escaped me. > > > > KT> Yes, that is indeed the difference and it was not meant to be > subtle. Because this is important for the reader to grasp. Any suggestions > to improve would be most helpful. > > > > I presume that having set up this dichotomy, you have some resolution in > mind > > for it -- please don't leave it as a conundrum to be solved by the > reader. > > > > KT> There is no dichotomy here to be resolved. It is just a factual > statement. > > Maybe I should have said “superficial dichotomy”, but the repetition of > “true” makes it hard for me not to see it that way. A simple change that > could mitigate this would be changing the second “true” to “verbatim”. And > now that I’m thinking about it, even the first “true” could probably use an > edit. After all, what is truth? Especially in a protocol with > eventual-consistency semantics? I joke, but only partly — we probably don’t > want to get into metaphysics in the IETF stream RFCs (we can leave that for > the April 1 series). Is there any problem with removing “and true” from the > first quoted use? With those two edits, we’d have: > > OLD: > The origination and propagation of IGP link-state information via BGP > needs to provide a consistent and true view of the topology of the > IGP domain. BGP-LS provides an abstraction of the IGP specifics and > BGP-LS Consumers may be varied types of applications. > > The link-state information advertised in BGP-LS from the IGPs is > derived from the IGP LSDB built using the OSPF Link State > Advertisements (LSAs) or the IS-IS Link State Packets (LSPs). > However, it does not serve as a true reflection of the originating > router's LSDB. > > NEW: > The origination and propagation of IGP link-state information via BGP > needs to provide a consistent view of the topology of the > IGP domain. BGP-LS provides an abstraction of the IGP specifics and > BGP-LS Consumers may be varied types of applications. > > The link-state information advertised in BGP-LS from the IGPs is > derived from the IGP LSDB built using the OSPF Link State > Advertisements (LSAs) or the IS-IS Link State Packets (LSPs). > However, it does not serve as a verbatim reflection of the originating > router's LSDB. > > (Or if you miss the first “and true”, perhaps change to “and accurate”?) > KT2> I get your point now and your suggestions look good to me. > > […] > > > ### Section 5.3, limiting the size of the BGP-LS Attribute > > > > Thanks for this discussion. One of the points you raise is: > > > > ``` > > BGP-LS Producers MUST > > ensure that they limit the TLVs included in the BGP-LS Attribute to > > ensure that a BGP UPDATE message for a single Link-State NLRI does > > not cross the maximum limit for a BGP message. The determination of > > the types of TLVs to be included may be made by the BGP-LS Producer > > based on the BGP-LS Consumer applications requirement and is outside > > the scope of this document. > > ``` > > In other words, it's a policy decision. But that means that in this > scenario > > such policy filtering of TLVs would be expected on a per-producer basis > -- does > > this motivate any concern that inconsistent policy being applied at > different > > BGP-LS Producers could lead to redundant but non-comparable information > being > > propagated into BGP-LS? If so, is this worth noting? > > > > KT> Ack. Added text to that effect. > > You’ve added “(in a consistent manner)” and changed “the BGP-LS Producer” > to “all the BGP-LS Producers”. This does indeed address my point, although > it does so in kind of a minimal and easy-to-ignore way. For example, an > implementor could hardcode such a filtering policy and either ignore the > “in a consistent manner” text since it’s thrown in parenthetically and > non-normatively, or if they paused to consider it they might decide “oh > well my implementation will behave completely consistently with itself”. > But, if deployed in a mixed-vendor or even mixed-version network, there > might still be inconsistent policies applied, and it would be even worse if > the policies were hardcoded rather than configured by the operator. > > Given that overrunning the update size is arguably a case of “the network > is already broken” I’m not going to elevate this to a DISCUSS or insist > that you make any particular change — but please give one more careful > thought to whether anything more helpful can go here. Options I can think > of include adding a paragraph of text describing potential consequences if > the guidance isn’t followed and inconsistent filtering is done, > strengthening the guidance from the very soft lower-case “may” to a SHOULD > or MUST, or even some more drastic mitigation like requiring the session to > drop if the NLRI would exceed the maximum PDU size. > > In reviewing this again I also notice that (as mentioned above) the text > is exceedingly deferential: "The determination of the types of TLVs to be > included may be made (in a consistent manner) by all the BGP-LS Producer > Producers based on the BGP-LS Consumer applications requirement and is > outside the scope of this document.” The “may” is pretty odd there. I guess > I should put out at least some straw man replacement text to spur > discussion. Here’s an attempt, > > NEW: > If the NLRI would cause the BGP message size limit to be exceeded, > implementations will have to take some steps to avoid doing so, otherwise, > a protocol error would ensue. The exact mitigation to be used is > implementation-specific and beyond the scope of this specification. > However, if the implementation chooses to mitigate the problem by excluding > some TLVs from the NLRI, this exclusion MUST be done consistently by all > routers within a given BGP-LS domain. Because of this requirement for > consistency, it would be better for the exclusion policy to be > configurable, but in any case, it must be documented. If different routers > in a given BGP-LS domain do inconsistently exclude TLVs, the result would > be redundant, non-comparable information being propagated into BGP-LS. > > […] > KT2> I've taken some of your suggestions above - please check if this works. However, since we are talking about TLVs in the BGP-LS Attribute, the inconsistency in exclusion of TLVs won't cause "redundant, non-comparable info" - it would just result in a somewhat flaky behavior where the consumers may get different link-state attribute information based on the BGP decision process along the way - depending in which producer's update goes through. So it isn't a BGP(-LS) problem per se, but that for the consumer applications. > > ## NITS > > “copes” -> “copies” > > “value..” -> “value” > KT2> Ack to both. Thanks, Ketan
- [Idr] John Scudder's Discuss on draft-ietf-idr-rf… John Scudder via Datatracker
- Re: [Idr] John Scudder's Discuss on draft-ietf-id… John Scudder
- Re: [Idr] John Scudder's Discuss on draft-ietf-id… Jeffrey Haas
- Re: [Idr] John Scudder's Discuss on draft-ietf-id… John Scudder
- Re: [Idr] John Scudder's Discuss on draft-ietf-id… Ketan Talaulikar
- Re: [Idr] John Scudder's Discuss on draft-ietf-id… John Scudder
- Re: [Idr] John Scudder's Discuss on draft-ietf-id… Ketan Talaulikar
- Re: [Idr] John Scudder's Discuss on draft-ietf-id… John Scudder