Re: [Idr] Color-only bits in draft-ietf-idr-segment-routing-te-policy
Ketan Talaulikar <ketant.ietf@gmail.com> Wed, 23 March 2022 11:56 UTC
Return-Path: <ketant.ietf@gmail.com>
X-Original-To: idr@ietfa.amsl.com
Delivered-To: idr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 391E63A0C02; Wed, 23 Mar 2022 04:56:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kHOG6ON9h9PU; Wed, 23 Mar 2022 04:56:25 -0700 (PDT)
Received: from mail-vk1-xa35.google.com (mail-vk1-xa35.google.com [IPv6:2607:f8b0:4864:20::a35]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C9F533A0BF0; Wed, 23 Mar 2022 04:56:24 -0700 (PDT)
Received: by mail-vk1-xa35.google.com with SMTP id 134so676019vkz.12; Wed, 23 Mar 2022 04:56:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=V1kG12uNTeyTe7jtJLDRO3xegIEOciwaWK2eSbIL87g=; b=O+YiAMpN2+WI3+a9v1GpJ9yodgPCGCSVyGyydKY04Nh4TiycTGg9/kBBkJgkGkuRI2 tz68HkU6sjplZ1FFIkTZC+1RzofdQljOzZVSoG5CEfi6MZ0zgw1VXZ/U60Xx9FB/xYeU KnElLtYSJ+Vzo/X7tXxgBfMuhvdfhSfiBfJS4liKOzuovjhzsWcUnuSoKF7lz9wBFDFQ sPhBkHpNdyKqX1JoLFJzmruLWk9O81wTnWJOPZyKFZ/fGBwrRO4D+Xs7sNHq6BVwDxi4 s3HQJLKLA1dlUCT6AexxL/tGG0BxPpq42mxlWaQkQEbXvt9jeBSpQKJASkxzJkXKquHS 0T0w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=V1kG12uNTeyTe7jtJLDRO3xegIEOciwaWK2eSbIL87g=; b=3RSq8GAZKc2TjWSKWq9k+lB1kR1oZiP3h1DH467r5PD0qNDWlEOwblx3ON2cpe4Fim GioSXtIhGTqFQDgvmv47/qKlDUoyCPu493/lxaeAWwt7kcDmdj5icm/emL/E65SgsPg7 Wzdv5hqoPcr9JXtdN8F/0APc2cBPD/PLShAcjIhR+kGrvee9NsI0f6Oa/SBaxf4mv4k0 QS+rVVIRPdRwz5bVQYuilbzxCTSeXIf2nQfycoxquzPkt/doNChNcKAoChKdya/UQIXV MV0MoqaCnc/tFHAuxc8H/T+8jr9oNTQzjF3IbeIJyKQITahXwgYw7QH8kMEJXI9mnwJG ZpYg==
X-Gm-Message-State: AOAM530sMFAOHvEAijRIc+1FtyEfKdLwBDI6Bkfpt0hewwuVvB8Sj/xK asGvN52xZ3L7frY5QldJDUOQcj1FGFe4jVkSePUilzRV
X-Google-Smtp-Source: ABdhPJwrzriDIalBJP9pQ3dUTuaeMML9MAJXuD9Kr75cBbzK4z0GEMA75U606N1bWjbocYcNMBNBohs6pH+7pYeoTNw=
X-Received: by 2002:a1f:c604:0:b0:339:578b:471d with SMTP id w4-20020a1fc604000000b00339578b471dmr12740671vkf.7.1648036583486; Wed, 23 Mar 2022 04:56:23 -0700 (PDT)
MIME-Version: 1.0
References: <939A4791-5A4A-4E7C-AB32-A09ABD3421B5@juniper.net> <CAH6gdPxRYJcvdCG9-BxuMvcfVQd=1xS9RvapdLxkJekty4eV8w@mail.gmail.com> <CBB34F23-2BC6-487B-8B1E-F1FD999F2988@juniper.net> <CAH6gdPyxUb8=q0aduqpEq93nYPdHQZKqKzwZKzkbRWz6GL2XtQ@mail.gmail.com> <CAH6gdPwkmGRtUR3no2QLq+VAentw9m9JEsdXNTm-mDnq3yZ=HA@mail.gmail.com> <CAH6gdPwVOrbeB9_7vDc4SezciVa4R2pN3diQLNV1DfBGR8P5Bg@mail.gmail.com> <9EBEAD45-664D-4426-8450-5FF5504122CF@pfrc.org> <CAH6gdPzx1N01mjF1tJK7aKcMyD9rbeu00f_xcUwANAMnK9ueSg@mail.gmail.com> <0C174794-C123-408A-B3B0-313DDADFDFC4@pfrc.org> <007401d8330e$65fae5d0$31f0b170$@ndzh.com>
In-Reply-To: <007401d8330e$65fae5d0$31f0b170$@ndzh.com>
From: Ketan Talaulikar <ketant.ietf@gmail.com>
Date: Wed, 23 Mar 2022 17:26:12 +0530
Message-ID: <CAH6gdPzvi-AHUWA7kCQ1Q4Jtr-jYSRVLqoroC7N0V1juzn1WUA@mail.gmail.com>
To: Susan Hares <shares@ndzh.com>
Cc: Jeffrey Haas <jhaas@pfrc.org>, draft-ietf-idr-segment-routing-te-policy@ietf.org, idr@ietf.org
Content-Type: multipart/alternative; boundary="00000000000022b69405dae16b10"
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/coDxBwlBaFGQ5PIA1ObyQROTJVs>
Subject: Re: [Idr] Color-only bits in draft-ietf-idr-segment-routing-te-policy
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Mar 2022 11:56:31 -0000
Hi Sue, Sorry for the delay in response. Before responding on the specific comments, I would like to clarify a couple of things. The bulk of this document is about introducing a new SAFI for signaling SR Policy via BGP. This SAFI uses TEA, not in the sense of RFC9012 (i.e. advertising encap info along with BGP service routes), but more in the spirit of RFC5512 (i.e. advertising a "tunnel" itself). Then there is a very specific section 3 that covers extensions to the Color Extended Community. Now, this Color Extended Community is not applicable to the BGP SR Policy SAFI but to the BGP service routes (e.g. L3VPN) to indicate their steering over the SR Policy. Please check inline below for responses. On Tue, Mar 8, 2022 at 10:33 PM Susan Hares <shares@ndzh.com> wrote: > Ketan: > > > > Thank you for your hard work on these open issues regarding color. > > > > Since Jeff mentions the Color Extended communities, let me add something > that would have come up on my review. > > > > In section 2.3, what does "ignore the Endpoint Sub-TLv and Color-TLV mean? > > Does the peer drops these TLVs from the Tunnel encapsulation attribute or > leave these sub-TLVs in the attribute? > KT> The Color Sub-TLV of the TEA is ignored since it is not required for the BGP SR Policy SAFI as the Color of the SR Policy is indicated in the NLRI. The same goes for the Endpoint Sub-TLV. If they are present in the TEA, they can be left as is. That is why the draft does not talk about removing them. > > > This draft should indicate you update RFC9012 since this draft is changing > the definition of RFC9012 for the flag bits. > KT> Generally, when a new document defines new flags or bits from the reserved fields or unallocated bits, we do not use the "updates" tag for the base spec. At least, that is my observation. Here, the specification of RFC9012 with the "default" steering mode (i.e. Type 0) is unchanged, and new/additional modes are being introduced. > Please provide additional text on error handling in your document (see > section 4.3 of RFC9012 below). > KT> This document does not change the base handling of the Color Extended Community as specified in RFC9012. I agree that we do need some more text to clarify the new steering modes and mechanisms related to it. We will work on this and get back. > > > How does RFC 9012 recursive next-hop error handling work for the ignored > sub-TLV? > KT> The sub-TLVs are ignored as they are not applicable for the new SAFI and hence nothing needs to be done for them. > > > For example, if you ignore the sub-TLVs and include one or more Extended > Communities with color, can you prevent the condition given in paragraph 2 > of the text? > > > > Thanks, Sue > > > > > > > > Specific text is listed below > > ========== > > > > Text in draft-ietf-idr-segment-routing-te-policy: > > > > *2.3 > <https://datatracker.ietf.org/doc/html/draft-ietf-idr-segment-routing-te-policy-16#section-2.3>. > Remote Endpoint and Color* > > > > The Remote Endpoint and Color sub-TLVs, as defined in [RFC9012 > <https://datatracker.ietf.org/doc/html/rfc9012>], MAY > > also be present in the SR Policy encodings. > > > > The Remote Endpoint and Color Sub-TLVs of the Tunnel Encapsulation > > Attribute are not used for SR Policy encodings and therefore their > > value is irrelevant in the context of the SR Policy SAFI NLRI. If > > present, the Remote Endpoint sub-TLV and the Color sub-TLV MUST be > > ignored by the BGP speaker. > > > > > > Why are you not indicating you are modifying RFC9012 on the front page of > your draft? > KT> This draft is introducing a new SAFI and explains the use of the existing TEA attribute for the new SAFI. It does not change or update anything for the TEA itself. > > > > > RFC 9012 - 4.3. <https://www.rfc-editor.org/rfc/rfc9012.html#section-4.3>Color > Extended Community > <https://www.rfc-editor.org/rfc/rfc9012.html#name-color-extended-community> > > The Color Extended Community is a Transitive Opaque Extended Community > with the encoding shown in Figure 15 > <https://www.rfc-editor.org/rfc/rfc9012.html#ref-color-extended-community> > . > > 0 1 2 3 > > 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 > > +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ > > | 0x03 (1 octet)| 0x0b (1 octet)| Flags (2 octets) | > > +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ > > | Color Value (4 octets) | > > +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ > > Figure 15 <https://www.rfc-editor.org/rfc/rfc9012.html#figure-15>: Color > Extended Community > <https://www.rfc-editor.org/rfc/rfc9012.html#name-color-extended-community-2> > > *Error handling: * > > No flags are defined in this document; this field *MUST* be set to zero > by the originator and ignored by the receiver; the value *MUST NOT* be > changed when propagating this extended community. The Color Value field is > encoded as a 4-octet value by the administrator and is outside the scope of > this document. For the use of this extended community, please see Section > 8 <https://www.rfc-editor.org/rfc/rfc9012.html#recursive-nh-resolution>. > > *Section 8: (RFc9012) * > > > > (paragraph 2). > > However, suppose that one of the TLVs in U2's Tunnel Encapsulation > attribute contains one or more Color sub-TLVs. In that case, packet P *MUST > NOT* be sent through the tunnel contained in that TLV, unless U1 is > carrying a Color Extended Community that is identified in one of U2's Color > sub-TLVs. > KT> I am not sure of the applicability of this text to the document under discussion as explained at the start of the email. Please do let me know if I am missing something. Thanks, Ketan > > > > > > > *From:* Idr [mailto:idr-bounces@ietf.org] *On Behalf Of *Jeffrey Haas > *Sent:* Tuesday, March 8, 2022 11:22 AM > *To:* Ketan Talaulikar > *Cc:* draft-ietf-idr-segment-routing-te-policy@ietf.org; Sue Hares; > idr@ietf.org > *Subject:* Re: [Idr] Color-only bits in > draft-ietf-idr-segment-routing-te-policy > > > > Ketan, > > > > The point you're hearing is that this is a well known hole in the specs. > There's already some level of discussion that's happened at least with the > IDR chairs that we need to get broader discussion about the point in the > BGP related working groups. > > > > If you're aware of implementations that actually use more than one > community, please unicast it to me and I'll collect it for the wiki. I'm > personally aware of implementations that just pick "the first one", which > may not be the one encoded on the wire as "first". > > > > > > > > - Jeff > > > > > > On Mar 8, 2022, at 1:46 AM, Ketan Talaulikar <ketant.ietf@gmail.com> > wrote: > > > > Hi Jeff, > > > > I tried to do a search for specs that use/reference the Color Extended > community and if they were assuming or introducing any semantics that > indicated the "singleton" usage that you bring up in your email. I was not > able to find any. It is possible that I've missed something and if so, > please point me to the concerned spec. > > > > There is no limitation for the use of multiple Color Extended communities > of different colors with a route (irrespective of the reserved/flags field > values). This is possible for the steering use-cases over SR Policy and I > am aware of this support by implementations. > > > > We can update this spec with clarification on this aspect, if necessary. > > > > Thanks, > > Ketan > > > > > > On Tue, Mar 8, 2022 at 3:35 AM Jeffrey Haas <jhaas@pfrc.org> wrote: > > Ketan, > > > > While I was reviewing the update you note below, I had a question > regarding color extended community handling. > > > > One of the changes the color extended community had between RFC 5512 and > RFC 9012 was moving the previously Reserved field to a flags field. > > > > In the prior context as a Reserved field, I believe many implementations > treated the Color Extended Community as many BESS style Extended > Communities are incidentally treated: singletons. I.e. there should have > only been a single instance of such an Extended Community on a route. > > > > A current fault in BESS specifications is the lack of clarity for what to > do for such singleton entries. We're desperately in need of a draft > discussing the matter. :-) > > > > While I don't think this matter is something of your creation, since the > SR-TE-Policy document is the first populating the Flags fields, it's > perhaps important to discuss what should happen here. Is it reasonable to > think that the current desired behavior with the new flags is that it's a > singleton entry and there should only be one Extended Community of type > Color on a route, no matter their CO flags? And perhaps similarly even if > CO flags are present, there shouldn't be additional Extended Communities > with those flags 00? > > > > It might be useful to discuss this in the draft. > > > > A complicating matter is whether there's ever likely to be Extended > Community Colors that have other bits outside of the CO that you're > defining wherein you'll want more than one Extended Community of that type. > > > > -- Jeff > > > > > > On Mar 7, 2022, at 7:38 AM, Ketan Talaulikar <ketant.ietf@gmail.com> > wrote: > > > > A further update was posted earlier today with changes in the Color > Extended Community related sections to align with the latest updates to > draft-ietf-spring-segment-routing-policy > > > > > https://datatracker.ietf.org/doc/html/draft-ietf-idr-segment-routing-te-policy-16 > > > > Thanks, > > Ketan > > > > > > On Sat, Mar 5, 2022 at 4:21 PM Ketan Talaulikar <ketant.ietf@gmail.com> > wrote: > > Hi John/Sue/WG, > > > > We have just posted an update with the changes along the lines suggested > by John. > > > > > https://datatracker.ietf.org/doc/html/draft-ietf-idr-segment-routing-te-policy-15 > > > > I understand that John may have further inputs that we can incorporate in > the next update. Wanted to post this version in view of the upcoming > cut-off so that the WG can provide their feedback. > > > > Thanks, > > Ketan > > > > > > On Thu, Feb 17, 2022 at 8:22 PM Ketan Talaulikar <ketant.ietf@gmail.com> > wrote: > > Hi John, > > > > I'll work on these changes along with my co-authors for the IDR document > first and share it with you/WG for feedback. > > > > Thanks, > > Ketan > > > > > > On Thu, Feb 17, 2022 at 12:51 AM John Scudder <jgs@juniper.net> wrote: > > Hi Ketan, > > > On Feb 16, 2022, at 6:32 AM, Ketan Talaulikar <ketant.ietf@gmail.com> > wrote: > > > > Thanks for your feedback and I agree that this is a somewhat odd > situation. I also agree with your proposed changes and can work on them as > a co-author of the IDR document. > > Thanks. > > > Would you have any suggestions on how to address the remainder of your > concerns? Considering that this document is past WGLC in IDR, do you think > this content could move from the IDR to the SPRING document? > > I would, instead, have imagined it moving in the other direction, both > because it seems as though it makes more sense in the IDR doc, and because > the SPRING doc is even further along (past WGLC, past IETF LC, scheduled > for tomorrow’s IESG telechat). I don’t want to cross the streams of > discussion more than necessary, but the reason I see it being more natural > in the IDR than the SPRING doc is because "Given that > [draft-ietf-spring-segment-routing-policy] is an architecture document, it > describes the architecture and not really the protocol mechanisms. This is > in line with other SPRING documents. The normative language for the BGP > mechanism is in the IDR document.” > > I acknowledge it’s not a cut-and-dried question and there are other ways > to resolve it that while less satisfying in terms of making the documents > self-contained, also are less invasive. The minimal one, I guess, is to > provide a table of names and values in the IDR document, something along > the lines of > > Type Code Symbolic Name Description > ————— ——————— ————— > 0 Default handling Steering falls back to > default handling if no policy with color > 1 Prefer color Steering favors following > policies with the given color, but respects BGP next hop > 2 Override next hop Steering favors following > policies with the given color, overriding BGP next hop if necessary > 3 Reserved Reserved for > future use > > You may not agree with the symbolic names and descriptions I’ve just > written out, that’s fine, it’s just a first attempt. The table would be > accompanied by an expansion of the descriptive prose in the section, to > give the reader at least a general idea of what’s going on over in the > SPRING doc. > > Also, the more I think about it, the more I think that creating an IANA > registry for these code points is a good idea. It seems fussy for a single > unallocated code point, but might prevent something unfortunate like two > future drafts both trying to allocate the reserved code point for > themselves. > > (I assume it’s way too late to move the field to the other end of the > Reserved bits? If it were at the other end it would be possible to grow it > naturally in the future if required, by allocating additional bits. As it > is now, if you grew it by one bit, code point 1 would become code point 2, > 2 would become 4, and so on. Or if you prefer, 0b01 would become 0b010, > 0b10 would become 0b010, and so on. Oh well, too bad so sad.) > > —John > > _______________________________________________ > Idr mailing list > Idr@ietf.org > https://www.ietf.org/mailman/listinfo/idr > > > > >
- [Idr] Color-only bits in draft-ietf-idr-segment-r… John Scudder
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Ketan Talaulikar
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… John Scudder
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Ketan Talaulikar
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Ketan Talaulikar
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Ketan Talaulikar
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Jeffrey Haas
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Ketan Talaulikar
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Jeffrey Haas
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Susan Hares
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Ketan Talaulikar
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Susan Hares
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Ketan Talaulikar
- Re: [Idr] Color-only bits in draft-ietf-idr-segme… Susan Hares