[Idr] John Scudder's No Objection on draft-ietf-idr-bgp-ls-app-specific-attr-14: (with COMMENT)
John Scudder via Datatracker <noreply@ietf.org> Fri, 24 June 2022 21:51 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: idr@ietf.org
Delivered-To: idr@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 23F06C15A725; Fri, 24 Jun 2022 14:51:00 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: John Scudder via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-idr-bgp-ls-app-specific-attr@ietf.org, idr-chairs@ietf.org, idr@ietf.org, shares@ndzh.com, keyur@arrcus.com, keyur@arrcus.com
X-Test-IDTracker: no
X-IETF-IDTracker: 8.4.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: John Scudder <jgs@juniper.net>
Message-ID: <165610746013.12557.1605670125437890816@ietfa.amsl.com>
Date: Fri, 24 Jun 2022 14:51:00 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/idr/rn6vWqhWfXtkrnXZo4ahaH-YWtk>
Subject: [Idr] John Scudder's No Objection on draft-ietf-idr-bgp-ls-app-specific-attr-14: (with COMMENT)
X-BeenThere: idr@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Inter-Domain Routing <idr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/idr>, <mailto:idr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/idr/>
List-Post: <mailto:idr@ietf.org>
List-Help: <mailto:idr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/idr>, <mailto:idr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Jun 2022 21:51:00 -0000
John Scudder has entered the following ballot position for draft-ietf-idr-bgp-ls-app-specific-attr-14: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-idr-bgp-ls-app-specific-attr/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Thanks for all the work to help clear up my DISCUSS! Version 14 looks good, modulo some questions about §4.1 I've sent in a separate reply (but which are only COMMENT level). -- Previous DISCUSS: I'd like to DISCUSS some questions I have about the content of Section 4's IS-IS rules. I don't expect it will be difficult to resolve these, I just want to be sure we have the conversation. 1. In §4 (2.C), C. The SRLGs advertised in IS-IS SRLG ASLA TLVs and the other link attributes advertised in IS-IS ASLA sub-TLVs are REQUIRED to be collated, on a per-application basis, for all applications that have their bit set in the SABM/UDABM in at least one of the aforementioned TLV types. Is there some reason that there's no need to consider the case where both of the TLV types in question have zero-length application bit masks? 2. Later in the same paragraph, When performing this collation, only the TLVs with the application's bit set in SABM/UDABM MUST be used when such TLVs are available from either TLV types. I suspect you aren't saying what you mean, and the "only... MUST" construct is hard to puzzle out. Do you perhaps mean TLVs that don’t have the application's bit set MUST NOT be used? Because as you've written it, - All TLVs with the bit set MUST be collated, - Any TLVs without the bit set MAY be collated (by implication). Which doesn't seem very sensible AFAICT. A possible rewrite, if I've understood your intention correctly, might be "When performing this collation, every TLV with the application's bit set in SABM/UDABM MUST be included, when such TLVs are available from either TLV type." (Note also a minor fix for agreement in number, s/types/type/ in the last word.) 3. And still later in the same paragraph, If the bit for an application is set in the SABM/UDABM of only one of the TLV types, then the attributes from the other TLV type with zero-length application bit mask MUST be also collated for that application, if such TLV is available. I'm confused by the reference to a zero-length application bit mask. Can't the other TLV type have a nonzero-length application bit mask, but still have the application bit in question not set within the bit mask? I guess probably what you mean is, if the other TLV type is present and has a zero-length application bit mask, since a zero-length SABM/UDABM basically is a wildcard, the equivalent of all bits being set (as I read RFC 8920). If that's right, then a change seems in order, along the lines of If the bit for an application is set in the SABM/UDABM of only one of the TLV types, and if the other TLV type has a zero-length application bit mask, then the attributes from the other TLV type with zero-length application bit mask MUST be also collated for that application, if such TLV is available. I just interpolated the "and" clause. It's a bit wordy and could probably be further condensed, but I think it clarifies sufficiently. On the other hand, if I'm not right about this (very possible) then I'd appreciate further discussion on what I got wrong, so we can figure out if the text needs clarification or if I just need a clue bat. Previous COMMENT: 4. In §2 you reference "SABML". I was going to ask you to expand it on first use, but you only use it once. So, please just write it out in words as "SABM Length" and don't introduce an extra acronym. 5. In §3: All the BGP-LS Attribute TLVs defined in the table above are REQUIRED to be advertised as a top-level TLV in the BGP-LS Attribute for carrying link attributes specific to RSVP-TE. I suggest “... when used to carry” instead of “... for carrying”. Also, “listed in the table”, not defined in it. 6. Much of §4 is dedicated to a special case for IS-IS: 2. In the case of IS-IS, the following specific procedures are to be followed: It would be nice to spend a few words mentioning why IS-IS needs a special case and OSPF doesn't, so that the reader doesn't have to wonder. I'm guessing that this relates to the way IS-IS uses sub-TLVs for various things whereas OSPF doesn't, so you need rules to reconcile the values in IS-IS but not OSPF? 7. §4 (2.B) needs some adjectives, "IS-IS" and "BGP-LS", respectively, to make clear which flavor of "ASLA sub-TLV" you're talking about. I *think* that here, B. When the ASLA sub-TLV has the RSVP-TE application bit set, then the link attributes for the corresponding ASLA sub-TLV MUST be encoded using the respective BGP-LS top-level TLVs as per [RFC7752] [RFC8571] [RFC9104]. the first reference to "ASLA sub-TLV" is the IS-IS flavor, and the second is to the BGP-LS flavor -- but please be specific. 8. In §4, These rules ensure that a BGP-LS originator performs the advertisement for all application-specific link attributes from the IGP nodes that support or do not support the ASLA extension. I don't understand this sentence. :-( For one thing, applying simple logic to "IGP nodes that support or do not support the ASLA extension" we can rewrite it as "IGP nodes", full stop, since "support or do not support" covers the entire universe by definition. That would imply the sentence could be rewritten as These rules ensure that a BGP-LS originator performs the advertisement for all application-specific link attributes from the IGP nodes. Which doesn't really help me. :-( 9. In §5, It is recommended that nodes supporting this specification are selected as originators of BGP-LS information when advertising the link-state information from the IGPs. Do you mean only such nodes should be selected? Or is it that at least one such should be among those selected? Either is supportable, I think. Whatever the answer, please clarify the text correspondingly. Although, more generally I guess BGP-LS originators ought to support all the extensions in use in a given IGP, not limited to this one, so this is really a special case of a general principle. 10. In §5, They would, however, not be able to support neither the application-specific link attributes nor newer applications that may be encoded only using the ASLA TLV. Drop the "not". Also, again this seems like a special case of a general principle -- of course a BGP-LS consumer that doesn't understand a given extension can't do the thing that the extension covers. But, it's fine to remind the reader of this. 11. In §8, It is assumed that the IGP instances originating these TLVs will support all the required security (as described in [RFC8919] and [RFC8920]) to prevent any security issues when propagating the TLVs into BGP-LS. I think purporting to "prevent any security issues" is a case of seriously overpromising. A very similar issue existed in draft-ietf-idr-bgp-ls-sbfd-extensions-08. Perhaps a similar fix could be applied, although in this case, when I took a quick look at RFCs 8919 and 8920 I didn't find any "required security" of note, so I'm really not sure what if anything is being actually promised by this sentence? Can you help me understand what properties I should be expecting? In any case, for the most part it seems fine to say your security model is the same as that of RFCs 8919 and 8920, since as we know BGP-LS tries to be just a re-rendering of the data from those suppliers. But, we should keep in mind this consideration from RFC 7752: Additionally, it may be considered that the export of link-state and TE information as described in this document constitutes a risk to confidentiality of mission-critical or commercially sensitive information about the network. Might it be worth reminding the reader that if there's any sensitive information contained in the new stuff you're propagating, they should take this warning to heart, since the scope across which the information is being propagated can increase considerably? I don't insist on this, I'm only raising it as a point to consider. Nits and very minor comments -- 12. The document talks about new this, new that. This probably won't age well -- keep in mind that the RFC this document will become will be around for decades, at which point none of this stuff will be "new". It's obviously not a big deal but if it were my document I'd find a way to rewrite those "new" in a way that won't be instantly obsolete. 13. In §4, The application-specific attribute value received via sub-TLVs within the ASLA TLV have preference over the value received via the top-level TLVs. There's an agreement in number problem here -- perhaps rewrite as "An application-specific attribute value received via a sub-TLV within the ASLA TLV has precedence over the value received via a top-level TLV"?
- [Idr] John Scudder's No Objection on draft-ietf-i… John Scudder via Datatracker