IETF Logo Mail Archive

Re: [Idr] WG adoption call for draft-abraitis-bgp-version-capability-08, to end September 25

Robert Raszuk <robert@raszuk.net> Thu, 12 January 2023 19:11 UTC

Return-Path: <robert@raszuk.net>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 00DC0C15C503 for <idr@ietfa.amsl.com>; Thu, 12 Jan 2023 11:11:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.096
X-Spam-Level:
X-Spam-Status: No, score=-7.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=raszuk.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jfygQNJ_dwR6 for <idr@ietfa.amsl.com>; Thu, 12 Jan 2023 11:11:13 -0800 (PST)
Received: from mail-wr1-x429.google.com (mail-wr1-x429.google.com [IPv6:2a00:1450:4864:20::429]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5DBF8C15AE03 for <idr@ietf.org>; Thu, 12 Jan 2023 11:11:13 -0800 (PST)
Received: by mail-wr1-x429.google.com with SMTP id co23so19075872wrb.4 for <idr@ietf.org>; Thu, 12 Jan 2023 11:11:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=raszuk.net; s=google; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Dndmt7z4J0zLlT9mNIczcv/9GZ3Y8W7MhQp2zSERT34=; b=Q+xWYuouIkftt9bpoHCRVAGf/WTabgJxCibhQBmWeVv8T4sNWzMd29XisDd7CjJwy6 zdFjgpazKxrdrdS7BxRhFfc+0WHprxyBEa9WVjKMoDCkQw0Ip76ZFDlhYvZQV3N7uRwa sOAttUsUyKrO21Y5z5AWyXXkr+DJNhLx8UpqTKnJLicLRa/rulehKUM6hpOIjxN5cfDb p3wA4uEmFW9C166mpciFCLvLin8lyz+UMajEY7NGMGYJbSVuBIy5qYbjIDrR8SX7luJw P/zhDHxHh1Y8LlvUEm08jo90DaATTUQQkp84nvtXInR1M0TQya0eew+jULyVJIOIE+Ld j7wg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=Dndmt7z4J0zLlT9mNIczcv/9GZ3Y8W7MhQp2zSERT34=; b=v6PdSquxshIbV9tF2NTW1Q+dEdasCh7p7xrEPgbow+MPfMCSx2/xDAiQ2z/tHWClUz FDjkJSAHlHKiFHJE3Co21n/9EWKJ/vGAhZ0cZZnZ/POnh2uMbGdU4+24Y0SV2aTaVwwc jdDtmmCDbriMCdlbOAeuieeSFvaPInoM4Jxc07+jUCyo4vm+yp1HOW9s1LhBaMPS/O55 08hYCTlhFEqwGvt/80k8cuU0l260/fwGbxSUoGc5s2yeB+Fgd5DQ5Vnq3SlV9FicEsQD ohvWho3IEyyKBL0lkBlMf98pIqWwPiL+ftMjRna5/RhiPF66iW+NrkcSa4YFvblzyTu8 0oPg==
X-Gm-Message-State: AFqh2krQf7uaujhoM+za2eqxa54/DWHGL48J27Avrei48uFkMDT+vXrD zm8AgP0LHiHf1Iw0DM9cF2C2cZRQSIs0K3JpD6WOgw==
X-Google-Smtp-Source: AMrXdXsMKZSlI5h+o/FLT/98U3W+bRQm/4nyZNgwao+0b/Al+wic+am1Xb3n7Vo6DKvDM09CyRFErB3keVEUkroGjJU=
X-Received: by 2002:adf:ec0e:0:b0:2b7:17b:ce77 with SMTP id x14-20020adfec0e000000b002b7017bce77mr620085wrn.69.1673550671905; Thu, 12 Jan 2023 11:11:11 -0800 (PST)
MIME-Version: 1.0
References: <CAOj+MMG9BuCBjATYNKO5H0oFUipCE8iBU+DJ0FLDDUZdp+nM3Q@mail.gmail.com> <C9D01C45-90BD-465D-B2C4-0CCA6B2A21A3@juniper.net> <CAOj+MMFrke5-9+pMKZ7QTawiOT+N3fD=2ta8hGEu=CG+qv_OQw@mail.gmail.com> <C264E12E-08DE-4C90-AF36-C0B477825DFE@juniper.net>
In-Reply-To: <C264E12E-08DE-4C90-AF36-C0B477825DFE@juniper.net>
From: Robert Raszuk <robert@raszuk.net>
Date: Thu, 12 Jan 2023 20:11:02 +0100
Message-ID: <CAOj+MMF0R3dFZ+Wo9ymRXfeY1_0YyCWpdMf-WFXsbZ69wfAOaQ@mail.gmail.com>
To: John Scudder <jgs@juniper.net>
Cc: Jeffrey Haas <jhaas@pfrc.org>, Donatas Abraitis <donatas.abraitis@hostinger.com>, "Jakob Heitz (jheitz)" <jheitz@cisco.com>, Alvaro Retana <aretana.ietf@gmail.com>, Bruno Decraene <bruno.decraene@orange.com>, IDR List <idr@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000005015f505f215e1e4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/P5s8WFae-ebazCJshYayxB9GZ-M>
Subject: Re: [Idr] WG adoption call for draft-abraitis-bgp-version-capability-08, to end September 25
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Jan 2023 19:11:18 -0000

Hi John,

Yes the following example I did not quote was about major support of IPv6.
But it was just an example.

But my point I think got lost in this discussion. IMO it is a feature not a
bug to close the session when I am receiving stuff I do not understand.

Please kindly observe that we are not talking about stopping in the middle
of the flight .. we are talking about taking off or not.

If you follow last paragraph of section 3 of RFC5492 and drop on the floor
what I am sending to you then it is like I am talking chinese or hindu to
you and you just ignore it. It does no one any good. In fact disabling this
on the sender seems like a good thing to do.

With that IMO BGP Capabilities (and perhaps one subset of their dynamic
flavor) is not the right container to carry unrelated to BGP protocol and
its operation free form text fields.

So if we were to go for 5492-bis I would instead suggest removing the last
paragraph of section 3.

Kind regards,
R.









On Thu, Jan 12, 2023 at 7:24 PM John Scudder <jgs@juniper.net> wrote:

> > On Jan 12, 2023, at 12:48 PM, Robert Raszuk <robert@raszuk.net> wrote:
> >
> >
> > Hi John,
> >
> > But as you see based on real life deployments the very same happens with
> BGP Capabilities too hence not much of practical difference.
>
> I disagree. Yes, it’s true that there have, historically, been
> implementations that have a bug. Some blame falls to me — that Notification
> code should never have been called “Unsupported Capability” — even though
> the spec was ‘right’, the naming was wrong. :-( But I think the updated
> language in RFC 5492 is explicit enough that anyone still shipping this
> class of bug almost 13 years after publication has a lot of explaining to
> do.
>
> > And section 3 of RFC5492 allows so ...
> >
> >    If a BGP speaker that supports a certain capability determines that
> >    its peer doesn't support this capability, the speaker MAY send a
> >    NOTIFICATION message to the peer and terminate peering (see Section
> >    "Extensions to Error Handling" for more details).
>
> No. You’re taking that quote out of context, you left out the example that
> follows — and that example should already have been enough for you to
> understand your mistake. The behavior allowed by RFC 5492 is, “if I needed
> my peer to send me a capability, and it didn’t, then I can close the
> session”. The problematic behavior with respect to Optional Parameters is
> “if my peer sent me a parameter I don’t understand, then I must close the
> session”. These are completely different things. The first is caused by a
> thing that is not there. The second is caused by a thing that is there. The
> two examples you sent earlier are a third category, a bug where some
> implementor decided to do the wrong thing. If it’s a recent version then
> shame on them, see above.
>
> > The only difference seems to be MUST in RFC4271 in respect to
> Unsupported Optional Parameters vs MAY in RFC5492 in respect to Unsupported
> Capability.
>
> No. See above.
>
> The bottom line is, Capabilities are BGP’s main extensibility mechanism.
> In my opinion (as, to be clear, an individual contributor to the WG) they
> work OK and are fit for purpose, notwithstanding historical implementation
> errors. They are suitable for the extension under discussion, just as they
> are for other extensions.
>
> On the other hand, if the WG thinks Capabilities are *not* fit for
> purpose, the WG should get to work on a replacement that obsoletes and
> replaces RFC 5492. But saying “oh we’re too scared to extend the protocol
> because there were bugs in the past” does not seem like a good way to
> proceed.
>
> FWIW, as far as I know, the behavior permitted by the paragraph you quote
> has never been used. If that’s true, it might not be a bad idea to do an
> update of RFC 5492 that removes the paragraph and deprecates the
> Unsupported Capability error code entirely, to avoid future generations
> going through the same confusion. If the WG wants to do this, I’d be
> willing to participate, although the first step would be to do a survey to
> make sure nobody actually is making use of the feature and I’d want someone
> else to lead on that.
>
> —John

v2.23.0 | Report a Bug | By Email