IETF Logo Mail Archive

Re: [ippm] Andrew Alston's Discuss on draft-ietf-ippm-ioam-ipv6-options-09: (with DISCUSS)

Martin Duke <martin.h.duke@gmail.com> Thu, 02 March 2023 17:42 UTC

Return-Path: <martin.h.duke@gmail.com>
X-Original-To: ippm@ietfa.amsl.com
Delivered-To: ippm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AAA9AC152F06; Thu, 2 Mar 2023 09:42:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.094
X-Spam-Level:
X-Spam-Status: No, score=-7.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l_lBWdqaEvzE; Thu, 2 Mar 2023 09:41:57 -0800 (PST)
Received: from mail-vs1-xe2c.google.com (mail-vs1-xe2c.google.com [IPv6:2607:f8b0:4864:20::e2c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55E53C15DF4C; Thu, 2 Mar 2023 09:41:57 -0800 (PST)
Received: by mail-vs1-xe2c.google.com with SMTP id o2so24575vss.8; Thu, 02 Mar 2023 09:41:57 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; t=1677778916; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=omFowaWtWhTfT+5f6tqELKHt4+KKw1ROuCcil/YZ9j8=; b=Jg3YtVmS1BCKSGtfVMK6tTSvY3xyio43S9uSpnxsVM7vpnW+dfHYrpMO3dpAgasj3Z Wr/RY+tucNVJARpWGy1ZHysFUoEITTyijv6o3919tLnVXBHU0cs64AJJk7+r2Xm6aalc ruOKT689owS8MFN4kWzljBagZw40iqkOanVXwIPHSGJ98CXbzZlIriVp+Z8cKMjqHVK4 /Pefe8rPIralUUHb9UV0Z/VTHde1VrGk9lbXjLyd3PXvmjOgPTp1lr9g9fJVpZuen2zL AQaf6bE96hoFUoNvPQob0aNKbc/mfW0/HrOF2i+ZMuou1lsXUmH2dmvIBoO6+m1RkmIl 6pMA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1677778916; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=omFowaWtWhTfT+5f6tqELKHt4+KKw1ROuCcil/YZ9j8=; b=FMAQvT4Ol+j5vGSMyhaVRJMffe4n2c9FiBfaijD0PujqVLTH2Z5B63CVWuzpSRm+kg +98hcazm9Ukz02RibcvRpUdSf3+MrbQFe494w2WxXCm0J7m7QPuVjC0cgqTriXCYgD05 sF7nOLoInGCP44uMRFAiHbJvvS7v8eTqkFj4ohNVl/ww41MddGqRG8ZVhbciBVdNdj75 B3dvp+KGjs4jxdr4yvtHvTAUoCy0fQjPGqdNPp6W1bapefdQI4OmNuiLytRPU9g7dRsP 03Z6sKJOOYmQ+Y9O4fEj5tSw93zN6gr+0vBN/o38xlGPzM8CxwLApzCyl1Gp3WDz85vq uYGw==
X-Gm-Message-State: AO0yUKVwtr2B8ram/vq94/dgcCB+Rh5AZGGW13FSDMlHtFjZIcsvj4V/ ydujrW7F/BZMtNiyhN9IT0tgy+sXArKkzXB3o6Y=
X-Google-Smtp-Source: AK7set8WMSXf2MVfZOw678Yus7q9djKxHlYdxzZbJDNRwMdSiLbBm4jKk+tiBx6GDc1QE8Ar2jo4Mx3Jx1rJ0RJ8+3c=
X-Received: by 2002:a05:6102:3097:b0:41e:bccf:5669 with SMTP id l23-20020a056102309700b0041ebccf5669mr1841610vsb.2.1677778916272; Thu, 02 Mar 2023 09:41:56 -0800 (PST)
MIME-Version: 1.0
References: <166982160015.59109.1395167081605852888@ietfa.amsl.com> <MWHPR11MB1311818097CAD96512027635DAF09@MWHPR11MB1311.namprd11.prod.outlook.com>
In-Reply-To: <MWHPR11MB1311818097CAD96512027635DAF09@MWHPR11MB1311.namprd11.prod.outlook.com>
From: Martin Duke <martin.h.duke@gmail.com>
Date: Thu, 02 Mar 2023 09:41:44 -0800
Message-ID: <CAM4esxRVtm1c0Y=9JvA60pkar3UMCDz6HgSeCkFiZay8na4gLg@mail.gmail.com>
To: "Frank Brockners (fbrockne)" <fbrockne=40cisco.com@dmarc.ietf.org>
Cc: Andrew Alston <andrew-ietf@liquid.tech>, The IESG <iesg@ietf.org>, "draft-ietf-ippm-ioam-ipv6-options@ietf.org" <draft-ietf-ippm-ioam-ipv6-options@ietf.org>, "ippm-chairs@ietf.org" <ippm-chairs@ietf.org>, "ippm@ietf.org" <ippm@ietf.org>, "marcus.ihlar@ericsson.com" <marcus.ihlar@ericsson.com>
Content-Type: multipart/alternative; boundary="00000000000050eef205f5ee584c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ippm/MFNCe0kEq0vG5eA0kGe_gJe-Nis>
Subject: Re: [ippm] Andrew Alston's Discuss on draft-ietf-ippm-ioam-ipv6-options-09: (with DISCUSS)
X-BeenThere: ippm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF IP Performance Metrics Working Group <ippm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ippm>, <mailto:ippm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ippm/>
List-Post: <mailto:ippm@ietf.org>
List-Help: <mailto:ippm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ippm>, <mailto:ippm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Mar 2023 17:42:01 -0000

Andrew,

There's a new version of this draft:
https://datatracker.ietf.org/doc/draft-ietf-ippm-ioam-ipv6-options/

Does it adequately address your DISCUSS?

On Fri, Dec 30, 2022 at 6:11 AM Frank Brockners (fbrockne) <fbrockne=
40cisco.com@dmarc.ietf.org> wrote:

> Hi Andrew,
>
>
>
> Thanks a lot for your review and comments. Please see inline.
>
>
>
> >
>
> > ----------------------------------------------------------------------
>
> > DISCUSS:
>
> > ----------------------------------------------------------------------
>
> >
>
> > Hi There,
>
> >
>
> > Firstly thanks for the document.  I have two issues I'd like to discuss
> and see
>
> > if we can find some clarity on.
>
> >
>
> > The first stems from RFC8200 Section 4.8 Third Paragraph, which reads:
>
> >
>
> > New hop-by-hop options are not recommended because nodes may be
>
> >    configured to ignore the Hop-by-Hop Options header, drop packets
>
> >    containing a Hop-by-Hop Options header, or assign packets containing
>
> >    a Hop-by-Hop Options header to a slow processing path.  Designers
>
> >    considering defining new hop-by-hop options need to be aware of this
>
> >    likely behavior.  There has to be a very clear justification why any
>
> >    new hop-by-hop option is needed before it is standardized.
>
> >
>
> > I believe that the document potentially needs to spell out a clearer
>
> > justification to meet the requirements laid out in the above text.
>
>
>
> ...FB: The best justification are probably implementations. There are
> several vendor implementations (e.g., from Cisco
> <https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipv6_nman/configuration/15-mt/ip6n-15-mt-book/ioam-ipv6.html>
> and Huawei
> <https://info.support.huawei.com/info-finder/encyclopedia/en/IOAM.html>),
> and probably more interesting here, there are also two open source
> implementations – one in FD.io/VPP
> <https://docs.fd.io/vpp/17.01/ioam_plugin_doc.html> and one in the Linux
> Kernel. IOAM for IPv6 is available from kernel version 5.15 onwards,
> support for in-transit traffic (with v6 in v6) is available since kernel
> version 5.16. Details are found here:
> https://github.com/Advanced-Observability/ioam-linux-kernel. It was the
> Linux kernel implementation that also drove the early allocation for code
> points for v6 options.
>
>
>
> We’d be happy to add a paragraph with those details to the document, but
> are wondering whether such a paragraph would really be appropriate for a
> standards document, given that the information about is really a current
> snapshot and as such pretty temporary. Just let us know whether you feel
> like we should add such a paragraph – and will fit it in.
>
>
>
> >
>
> > The second question relates to dealing with IOAM in the context of
> SRv6.  With
>
> > the HbH option - this is processed on a hop-by-hop basis and, as per
> RFC8200,
>
> > is placed directly after the IPv6 header.  This I don't see as a
> problem.  My
>
> > question comes in the case of the destination option.  In SRv6, where a
> SID is,
>
> > for all intents and purposes, acting like an address - I'd like to see
> some
>
> > text dealing with what happens when the DO is applied in the context of
> the
>
> > SRv6 where the destination address is not a normal address - but rather
> an IPv6
>
> > SID.   Does the router drop the entire packet?  Does the router
> "de-encap" as
>
> > if it were a tunneled packet? Basically - I see a situation where that
> could
>
> > lead to undefined behavior that always makes me nervous.
>
> >
>
> > Could the authors, therefore, expand slightly on how the destination
> option is
>
> > handled in the context of SRv6 and its various flavors?
>
>
>
> …FB: IOAM and its use of a destination option isn’t alone when it comes to
> answering the question of “what is the destination” if deployed along side
> with SRv6. PDM (RFC8250) or Alt-Marking (RFC9343) face similar challenges.
> If IOAM and SRv6 are considered ships in the night, then the original DA
> would be the IOAM decapsulating node and intermediate SR hops should leave
> the IOAM DO untouched. But even then, you could argue that SR policy might
> decide to handle the packet completely differently and the packet might
> never reach the original destination. The only proper way to resolve things
> is to integrate “the two ships”: Combine IOAM and SRv6. Alt-Marking went
> that way (draft-fz-spring-srv6-alt-mark) and IOAM did the same, see
> draft-ali-spring-ioam-srv6. draft-ali-spring-ioam-srv6 integrates IOAM data
> fields into the SRH, rather than carries the IOAM data in another option
> header, and that way avoids the complications with the destination option.
>
>
>
> To address your concern, would it be ok to simply add a reference to the
> document that states:
>
> “Deployments which require both, IOAM and SRv6, SHOULD follow
> draft-ali-spring-ioam-srv6.”?
>
>
>
> Thanks again, Frank
>
>
>
> >
>
> >
>
> >
>
> >
>
>
>

v2.23.0 | Report a Bug | By Email