Re: [Idr] AD Review of draft-ietf-idr-bgp-prefix-sid-07
Alvaro Retana <aretana.ietf@gmail.com> Tue, 26 December 2017 14:01 UTC
Return-Path: <aretana.ietf@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E6BF0126FB3; Tue, 26 Dec 2017 06:01:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ok90acIpT49P; Tue, 26 Dec 2017 06:01:30 -0800 (PST)
Received: from mail-ot0-x234.google.com (mail-ot0-x234.google.com [IPv6:2607:f8b0:4003:c0f::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1B1931243FE; Tue, 26 Dec 2017 06:01:30 -0800 (PST)
Received: by mail-ot0-x234.google.com with SMTP id p31so24602610ota.4; Tue, 26 Dec 2017 06:01:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:mime-version:date:message-id:subject:to:cc; bh=IKHqmsXfFEaBlafbSEsQ+oNCn64bEGH+qhdC0ML61jA=; b=aFOsSjvJbNlr7zpBDkoxI042rSjF9bNGq0LPCPNo5zwqa8kTgh1T/SzuS7hKPayyJv hXTAwmVU/Pq9XAuAF7iHgVpujZ1pPxeI5AHJVFoJwaIvKFWEGnpVxzm0QosY7+eBEhNg 8yzl8g0aPJhzhfWoPmBtArGS4VLMRoPw2PCD7ZZ58OrqhkhhWteyBTy4FVKqU63UAfGF nnsn3hrv3apChKFVP4FbywLliUcd/PV2OpA3G3EAUUDW1kLrGpubUkPJpjkaKtLWxwYa 5k3hTtnhXcgyNd2azlST72YaEj088QhytNAOGLV+L/pJ7rHfYZII6ZTVJuPDc349mxLC YaDQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:mime-version:date:message-id:subject:to:cc; bh=IKHqmsXfFEaBlafbSEsQ+oNCn64bEGH+qhdC0ML61jA=; b=FQMOx2C7v97Y1E0YTTpuILII2cVXtC5nBWsdi9KpnWQkBI8wJG4mgsuLN1BH8wMutK 6+VcgItgL+DT7l+J/r0sUNngaClgwFUXPFR9huSKah9FyMtGz78G1okkcbKSFFyMCK2t lDh/KzfaLX9lwxW6JI+UFW76VVeRIIUXG4bdaFuW0mTmpCVu2RbqH15BEw2gFfSaTn0J PSnOSYQVAFt22HLAJJ01O+/C20E/z2GkYndU2zHbV7CiVq5xpOFrRIrBuOZ610H3M7KO Jx31kgD0LYFseREIsYIzErgi7KXJxo+2a8un9e3KcTG+p8uzmb1vzU28fDAqwb3BdxJB Fq9w==
X-Gm-Message-State: AKGB3mIZEWCYY7f2jC9Er0KmP/Cr5Uo47k2RsHqUbs0J9pM7vr0SbO1L M0p7wj7IO2IQbKFJtOXDCrf3SBSbAqPSItG7wBI=
X-Google-Smtp-Source: ACJfBot7UyyfF5LhP7N/jboiVDs1dfdykNUuFXkCgKfcRw0grV2NFl9+yNQEgEysrs9dT2WTAuID54awNTYCVGKZdPA=
X-Received: by 10.157.53.5 with SMTP id o5mr4934719otc.307.1514296889297; Tue, 26 Dec 2017 06:01:29 -0800 (PST)
Received: from 1058052472880 named unknown by gmailapi.google.com with HTTPREST; Tue, 26 Dec 2017 09:01:28 -0500
From: Alvaro Retana <aretana.ietf@gmail.com>
X-Mailer: Airmail (467)
MIME-Version: 1.0
Date: Tue, 26 Dec 2017 09:01:28 -0500
Message-ID: <CAMMESsz50RrJk+q-jU1hxYqDnQYxydft41iqA7JM35EiRitZuQ@mail.gmail.com>
To: Eric C Rosen <erosen@juniper.net>, draft-ietf-idr-bgp-prefix-sid@ietf.org
Cc: idr-chairs@ietf.org, Susan Hares <shares@ndzh.com>, idr@ietf.org
Content-Type: multipart/alternative; boundary="001a11c046c42bd03705613eb8bf"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/CZAZ6SsXAeWI-AxFyA-DIGeDUro>
Subject: Re: [Idr] AD Review of draft-ietf-idr-bgp-prefix-sid-07
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 26 Dec 2017 14:01:33 -0000
On December 22, 2017 at 10:50:25 AM, Eric C Rosen (erosen@juniper.net) wrote: Hi! On 12/21/2017 4:52 PM, Alvaro Retana wrote: I don't think the following point is correct. After thinking about it some more, Eric's right...for the MPLS dataplane where the attribute contains the index. But for IPv6 the attribute contains the SID itself — see more below. (2) Error Handling The error handling (in Section 6) specifies that “attribute discard” (rfc7606) should be used if the attribute is malformed. I think that behavior has a direct effect on the path used to forward the traffic, which puts it then in conflict with rfc7606 because it clearly says that "Attribute discard...MUST NOT be used except in the case of an attribute that has no effect on route selection or installation.” Please see M9 below. M9. If the attribute is malformed then the index or SID in it won’t be used by the receiver (attribute discard) as specified in Section 6. Section 4.1 explains how a local label is assigned if the BGP Prefix-SID attribute is unacceptable. M9.1. I’m assuming that the local label assignment in 4.1 includes the case when the attribute is malformed (i.e. not just the unacceptable case). Is that true? Using a local label would result in successfully delivering the traffic to the destination, but not using the intended SR path, right? If that is true, then the malformed attribute case would have an effect on route selection/installation and could result (among other things) in the traffic taking an unwanted path due to policy, a path that is congested, etc.…and that is explicitly the case where rfc7606 specifies that attribute discard MUST NOT be used. It seems that any action beyond attribute discard may be too harsh given that a local label can be assigned…but the current specification ("MUST treat the path as if it came without a Prefix-SID attribute...MUST assign a local (also called dynamic) label”) is in conflict with rfc7606. I would be ok if the document explained the potential issues and made the local label behavior optional (pending a discussion in the WG and maybe an update to rfc7606). BTW, was this discussed in the WG (I couldn’t find a related discussion in the archive)? The presence of absence of the prefix-SID attribute is not taken into account in any way by the BGP bestpath selection process, so it has no effect on "route selection or installation". Thus I don't see any conflict between this draft and RFC 7606. If I understand correctly, the intention of the prefix-SID attribute on a BGP-LU route is the following. When a router receives a BGP-LU route for prefix X with label L1, it propagates that that route with a locally assigned label L2. The prefix-SID attribute tells the router what the value of L2 should be. But if the router uses a different value of L2, that doesn't change the path followed by the data. Thus "treat as withdraw" does not seem like the proper response to a malformed prefix-SID attribute, whereas "attribute-discard" seems appropriate. I'm less sure what the impact of a malformed prefix-SID attribute is when the dataplane is not MPLS. Using the example in Section 5. (Applying Segment Routing in the DC with IPv6 dataplane) of draft-ietf-spring-segment-routing-msdc [1]. If the BGP Prefix-SID attribute is malformed (“attribute discard”) in the advertisement from Node5, then (as currently written in the document) the rest of the network wouldn’t know which SID to use…this means that the expected result of the example: "HostA which needs to send traffic to HostZ via only Node5 (spine node) can do so by sending IPv6 packets with a SRH extension header” can’t be realized. The result would then be that the traffic could be delivered to Node11, but maybe not through Node5. While the attribute is not taken into account in the BGP selection process, it is clear to me that the resulting paths are impacted because not all the expected routes are installed as a result of a malformed attribute. I found this related text in Section 8. (Guidance for Authors of BGP Specifications) of rfc7606: For any malformed attribute that is handled by the "attribute discard" instead of the "treat-as-withdraw" approach, it is critical to consider the potential impact of doing so. In particular, if the attribute in question has or may have an effect on route selection or installation, the presumption is that discarding it is unsafe unless careful analysis proves otherwise. The analysis should take into account the tradeoff between preserving connectivity and potential side effects. I think this is one of those cases where the combination of a policy (“send traffic via Node5”) and a discarded attribute (resulting in no SID for Node5) could result in an unanticipated effect…yes, not directly related to the selection process, but to the paths that can be installed and used. In line with the text above, I would be happy if some analysis was written into the text: Just like in the MPLS case, there could be an alternate procedure that could be used to still be able to instantiate the desired path…or simply making operators aware of the potential effect of discarding the attribute would be enough. Thanks! Alvaro. [1] https://tools.ietf.org/html/draft-ietf-spring-segment-routing-msdc-05#section-5
- [Idr] AD Review of draft-ietf-idr-bgp-prefix-sid-… Alvaro Retana
- Re: [Idr] AD Review of draft-ietf-idr-bgp-prefix-… Eric C Rosen
- Re: [Idr] AD Review of draft-ietf-idr-bgp-prefix-… Alvaro Retana
- Re: [Idr] AD Review of draft-ietf-idr-bgp-prefix-… Acee Lindem (acee)
- Re: [Idr] AD Review of draft-ietf-idr-bgp-prefix-… Acee Lindem (acee)
- Re: [Idr] AD Review of draft-ietf-idr-bgp-prefix-… Acee Lindem (acee)
- Re: [Idr] AD Review of draft-ietf-idr-bgp-prefix-… Alvaro Retana