IETF Logo Mail Archive

Re: [spring] A question for draft-fz-spring-srv6-alt-mark

Tom Herbert <tom@herbertland.com> Wed, 17 November 2021 15:01 UTC

Return-Path: <tom@herbertland.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE2E53A0D60 for <ipv6@ietfa.amsl.com>; Wed, 17 Nov 2021 07:01:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20210112.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J5TFCQIe9_n0 for <ipv6@ietfa.amsl.com>; Wed, 17 Nov 2021 07:00:59 -0800 (PST)
Received: from mail-ed1-x52b.google.com (mail-ed1-x52b.google.com [IPv6:2a00:1450:4864:20::52b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 54B213A0D5D for <ipv6@ietf.org>; Wed, 17 Nov 2021 07:00:58 -0800 (PST)
Received: by mail-ed1-x52b.google.com with SMTP id r11so12419684edd.9 for <ipv6@ietf.org>; Wed, 17 Nov 2021 07:00:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20210112.gappssmtp.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=9llnANOdDSya748GR8DzSHpbsaAihfY753LiMU6gZNg=; b=it+KHru90nKLjVNX23JMrPPicOeSZSc5lQz8Mh3adjrHZuJfa7Bpus7Si+TDcamZVd 8G/4Mci7duv6nHmYOooUUJP/2CA+ZO9gbgSnw70Y/86hGAvaMmYfHUvEg3cXbVAaykij r4NmCwAR/3JxZziZbETyB4RYGLbnFdWpQGXPtQPkTiWdJ9VRgPi4jG8qlB+05K8ZeRJz HqZW6Xnjhn3/oydtBOy0Yo7tBZa2w8Tii26o9dmDbQ9LSaLkOOAtHDqPElmv1VC53v3S cHDShjO+na5BFwGeI8bOmBHZDVPjFBw2tvQ7z+dHO09YirnTFPDNZae3lj+8rwkkchNR cfwA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=9llnANOdDSya748GR8DzSHpbsaAihfY753LiMU6gZNg=; b=ENDY7R3HpsVr1QvmVfgZSl09ijFHqHphnJK26aWNSvJS+gfFtwaTdOASIUNgWrH197 /Kw14Dyon4SIODACGNYqdb4MWE3WJ2l2N2eTn8v6m3ppiVHwW0KN5529OAj2FX9q3QTx WVENeUOdZAUgrTsigbsamjlSL0mOwtNwCLxBxqrHUuRyE+19+c7VOp/6IggQ3XZLrlmH C8D97AzXfTFgkdsjsg/9p/uwHjmaHxi3qEeePULwF9svh3iKGjcGWCiFrr8FYiQ4yXGv qx4DFy9/JSufd403Q9R6bI9jPJ0mJsmu5jUR8D8b7MpvEXQdxOLDMn7howdirN0aJDPg JA+A==
X-Gm-Message-State: AOAM533pZvANEQbqozZwXxo+KUog1wCA48vO96JtboLmkwvkd/VIA/Lr 78RkCzTDoH/D4bhqKe9L6j6+/npwllJM/HcLUP4SPg==
X-Google-Smtp-Source: ABdhPJw77m/LusmbdVJVLJg2T+groBad++tcHnhMNmjvWGDatn0cPlqs82gRaSZ6HsRSp5pVqHh+ilKyKT1dsE7Yf0o=
X-Received: by 2002:a17:907:2d10:: with SMTP id gs16mr21918426ejc.353.1637161255517; Wed, 17 Nov 2021 07:00:55 -0800 (PST)
MIME-Version: 1.0
References: <97a70779f92b497faeba0de9592fdd88@huawei.com> <CA+RyBmVxfbc6zw4xnwLgo04+gjnu4-C9BLWRZ6XreogK_j7kyQ@mail.gmail.com> <13b5091a73394d549432066f3e6cd75d@huawei.com>
In-Reply-To: <13b5091a73394d549432066f3e6cd75d@huawei.com>
From: Tom Herbert <tom@herbertland.com>
Date: Wed, 17 Nov 2021 07:00:44 -0800
Message-ID: <CALx6S37vSD6sc6FGTq=nOpS-KMaS3k+RpdRJK1xWRvAKnEKZog@mail.gmail.com>
Subject: Re: [spring] A question for draft-fz-spring-srv6-alt-mark
To: Tianran Zhou <zhoutianran@huawei.com>
Cc: Greg Mirsky <gregimirsky@gmail.com>, Ron Bonica <rbonica@juniper.net>, "draft-fz-spring-srv6-alt-mark@ietf.org" <draft-fz-spring-srv6-alt-mark@ietf.org>, "spring@ietf.org" <spring@ietf.org>, "ipv6@ietf.org" <ipv6@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/QQqoP3KpN70eYvm2ePt6Yn-KXUw>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Nov 2021 15:01:06 -0000

On Tue, Nov 16, 2021 at 11:38 PM Tianran Zhou <zhoutianran@huawei.com> wrote:
>
> Hi Greg,
>
> In real word, upgrade all devices is hard, especially for multi-vendors. And there are devices not able to update the fast path.
> Supporting only SRH but not other IPv6 EHs is normal.

Tianran,

I do not know what "normal" means in this context, please quantify.

If you're saying that supporting SRH and not other EHs is protocol
conformant with RFC8200  then I might argue it's not (although
considering that SRH already breaks at least one other in AH, I
suppose the argument is academic). If you're saying that SRH is
already widely deployed in the relatively short time RFC8754 has been
published, then, considering that supporting SRH requires hardware
change, that would apparently contradict the statement that upgrade of
devices is hard. If you're saying that vendors are choosing to support
SRH and not other EHs then please define what it means to support and
EH. If a vendor supports SRH but not SRH TLVs, which AFAIK is common
for hardware implementations, then is that really supporting SRH? As
previously discussed if TLVs aren't supported then defining a TLV is
pointless.

I believe the crux of your argument comes down to the fact, or
preception, that the TLVs in Hop-by-Hop Options before the header and
Destination Options before the routing header MUST be processed where
as RFC8754 explicitly allows SRH TLVs to be ignored. RFC8200 relaxed
the requirement on Hop-by-Hop options being processed at every node.
RFC8200 was published in 2017, so an obvious question is what has been
the impact, are vendors ignoring HBH options them instead of dropping?
I asked that question in 6man last week and the answer seems to be
that the impact is not known yet (because it takes several years to
reach sufficient deployment levels of a new protocol because upgrade
of devices is hard). For Destination Options they would be required to
be processed by every intermediate destination, but that could be
adapted to allow them to be ignored.

IMO, if vendors are able to support a new EH protocol as complex as
SRH, and especially if they're going to add SRH TLV support, then
there's no reason why they can't support other EHs like Hop-by-Hop
options or at least ignore them.

Tom

>
> Best,
> Tianran
>
> -----Original Message-----
> From: Greg Mirsky [mailto:gregimirsky@gmail.com]
> Sent: Tuesday, November 16, 2021 11:48 AM
> To: Tianran Zhou <zhoutianran@huawei.com>
> Cc: Ron Bonica <rbonica@juniper.net>; Tom Herbert <tom@herbertland.com>; draft-fz-spring-srv6-alt-mark@ietf.org; spring@ietf.org; ipv6@ietf.org
> Subject: Re: [spring] A question for draft-fz-spring-srv6-alt-mark
>
> Hi Tianran,
> as I imagine it, the deployment of SRH in a production network, i.e., a network with legacy nodes, will require upgrading SW and firmware. If that is the case, the decision of supporting in the upgrades only the SRH but not other IPv6 EHs, e.g., Destination and HbH, seems unreasonable to me and does not rise to the level that justifies the duplication of ways to support the Alternate Marking method in IPv6 networks.
>
> Regards,
> Greg
>
> On Mon, Nov 15, 2021 at 5:03 PM Tianran Zhou <zhoutianran@huawei.com> wrote:
>
> > Hi Ron,
> > Please see my reply in line.
> >
> > Thanks,
> > Tianran
> >
> > -----邮件原件-----
> > 发件人: Ron Bonica [mailto:rbonica@juniper.net]
> > 发送时间: 2021年11月16日 6:20
> > 收件人: Tianran Zhou <zhoutianran@huawei.com>; Tom Herbert <
> > tom@herbertland.com>
> > 抄送: draft-fz-spring-srv6-alt-mark@ietf.org; spring@ietf.org;
> > ipv6@ietf.org
> > 主题: RE: [spring] A question for draft-fz-spring-srv6-alt-mark
> >
> > Folks,
> >
> > The SRH TLV for Alternate Marking isn't needed because its meaning is
> > identical to the AltMark Option when it appears in a Destination
> > Options Header that precedes the SRH.
> >
> > Arguments regarding the HBH are orthogonal to this issue. The HBH is
> > processed at every node along a packet's deliver path, while the
> > Destination Options header that precedes the SRH is processed " by the
> > first destination that appears in the IPv6 Destination Address field
> > plus subsequent destinations listed in the Routing header.
> >
> > ZTR> This is clear to me. But this is not my point to propose the SRH
> > ZTR> TLV
> > method.
> >
> > Arguments regarding whether a complete IPv6 implementation must
> > support the Destination Options header have already been settled by RFC 8200.
> >
> > ZTR> I am sorry, I do not understand what do you mean hear. Could you
> > please give more hint?
> >
> > Arguments about whether it is easier to parse two smaller extension
> > headers or one larger extension headers are not appropriate in the
> > IETF, because they are platform dependent.
> >
> > ZTR> My point is not about parsing two smaller EH vs. one larger EH.
> > ZTR> My
> > point is the deployment when a network that support SRH but not
> > support other EHs.
> >
> >
> >
> >                                         Ron
> >
> >
> >
> >
> >
> >
> >
> > Juniper Business Use Only
> >
> > -----Original Message-----
> > From: spring <spring-bounces@ietf.org> On Behalf Of Tianran Zhou
> > Sent: Friday, November 12, 2021 3:56 AM
> > To: Tom Herbert <tom@herbertland.com>
> > Cc: draft-fz-spring-srv6-alt-mark@ietf.org; spring@ietf.org;
> > ipv6@ietf.org
> > Subject: Re: [spring] A question for draft-fz-spring-srv6-alt-mark
> >
> > [External Email. Be cautious of content]
> >
> >
> > Hi Tom,
> >
> > Firstly, the proposed solution follows the same logic as RFC8200, as
> > in your text. So I do not see any problem. We just find another away
> > to "ignore the options".
> > " RFC8200 relaxed the requirement for all nodes to process HBH options
> > and acknowledged that this is reality. From an application
> > perspective, if the TLVs can't be processed in a "fast path" it is best to ignore the options."
> >
> > Secondly, I agree with the complexity of processing TLV. But we have
> > already implemented the function with line rate. So the "core problem"
> > from my perspective is how to deploy it.
> >
> > We are always on the way to performance optimization. I've read your
> > draft, and your solution is very interesting.
> >
> > Best,
> > Tianran
> >
> > -----Original Message-----
> > From: Tom Herbert [mailto:tom@herbertland.com]
> > Sent: Friday, November 12, 2021 1:05 AM
> > To: Tianran Zhou <zhoutianran@huawei.com>
> > Cc: Joel M. Halpern <jmh@joelhalpern.com>;
> > draft-fz-spring-srv6-alt-mark@ietf.org; spring@ietf.org; ipv6@ietf.org
> > Subject: Re: [spring] A question for draft-fz-spring-srv6-alt-mark
> >
> > On Wed, Nov 10, 2021 at 10:48 PM Tianran Zhou <zhoutianran@huawei.com>
> > wrote:
> > >
> > > Hi Tom,
> > >
> > > Please see my reply below.
> > >
> > > Best,
> > > Tianran
> > >
> > > -----邮件原件-----
> > > 发件人: Tom Herbert [mailto:tom@herbertland.com]
> > > 发送时间: 2021年11月11日 2:32
> > > 收件人: Tianran Zhou <zhoutianran@huawei.com>
> > > 抄送: Joel M. Halpern <jmh@joelhalpern.com>;
> > > draft-fz-spring-srv6-alt-mark@ietf.org; spring@ietf.org;
> > > ipv6@ietf.org
> > > 主题: Re: [spring] A question for draft-fz-spring-srv6-alt-mark
> > >
> > > On Tue, Nov 9, 2021 at 7:41 PM Tianran Zhou <zhoutianran@huawei.com>
> > wrote:
> > > >
> > > > Hi Joel,
> > > >
> > > > I do not need to assume a device that support SRH will support
> > > > this
> > new TLV.
> > > > We only assume the device that do not support this new TLV can
> > > > ignore
> > and bypass the packet, not to drop.
> > > > I see text from RFC8754 section 2.1.
> > > > " all TLVs are ignored unless local configuration indicates otherwise "
> > > > " Thus, TLV and HMAC support  is optional for any implementation "
> > > > " Type Length Value (TLV) entries contain OPTIONAL information that may
> > > >    be used by the node identified in the Destination Address (DA)
> > > > of
> > the
> > > >    packet. "
> > > > " The Length field of the TLV is used to skip the TLV while inspecting
> > > >    the SRH in case the node doesn't support or recognize the Type. "
> > > >
> > > > My understanding on SRH can support my assumption.
> > >
> > > Tianran,
> > >
> > > RFC8200 allows intermediate nodes to ignore TLVs in HBH options, and
> > > I
> > did propose allowing intermediate destinations to ignore destination
> > options before the routing header in draft-herbert-ipv6-update-opts.
> > >
> > > ZTR> It is true, but this is another story. RFC8200 is new, while
> > RFC2460 has been widely deployed. The industry need time to evolve. I
> > talked about the reality. The new proposal is motivated by the real
> > deployment.
> > >
> > > But allowing nodes to ignore TLVs only mitigates the problems of
> > > packet
> > loss in the presence of TLVs; the obvious purpose of defining a new
> > TLV is that it _will_ be processed, lest the host sender is just
> > wasting cycles and bandwidth sending bits no one looks at. If all
> > implementations of SRH ignore TLVs then defining the TLV is pointless
> > (AFAIK only Linux and maybe VPP software implementations support SRH
> > TLVs). For the purposes of actually processing a TLV, like alt mark, I
> > still don't see any advantage to putting this in SRH as opposed to Destination options or HBH options.
> > >
> > > ZTR> We consider the incremental deployment case, or the deployment
> > > ZTR> with
> > multi-vendors. That means the supportive node could process SRH TLV
> > well, while the non-supportive node could still transit. This is still
> > valuable for operators to narrow down the scope when packet loss
> > happens. This could also encourage the new tech development and
> > deployment. I see this is very useful.
> >
> > Tianran,
> >
> > I think you're dancing around the core problem. Hardware
> > implementations didn't support Hop-by-Hop options because they contain
> > TLVs which are considered to be hard to process in a high performance
> > datapath hardware pipeline. RFC2460 did mandate that all intermediate
> > nodes need to process the HBH options which left hardware vendors with
> > three choices: 1) process them in a software slow path and adhere to
> > RFC2460 2) ignore them altogether and violate RFC2460 3) drop the
> > packet which technically adheres to RFC2460, but obviously kills any
> > utility of feature. RFC8200 relaxed the requirement for all nodes to
> > process HBH options and acknowledged that this is reality. From an
> > application perspective, if the TLVs can't be processed in a "fast
> > path" it is best to ignore the options.
> >
> > So the underlying problem is in fact the complexity of processing TLVs
> > in hardware datapath. Just replicating the same TLV mechanism in more
> > protocols like SRH does nothing to help solve the problem. Until this
> > is solved I don't believe we'll ever see TLVs being productively used
> > in L3 (I suppose this might the anticipated industry evolution to
> > which you referred). On the other hand if the problem is solved and a
> > deployable an economical solution is presented that hardware vendors
> > would adopt, then the problem would be solved for a whole class of use
> > case (i.e. the same basic TLV construct is used in HBH, DestOpts, SRH,
> > TCP options, IP options, UDP options, etc.).
> >
> > If you're interested, I will be outlining the solution to this problem
> > that we're working on in IPv6/v6ops meeting tomorrow.
> >
> > Tom
> >
> > >
> > > Tom
> > >
> > > >
> > > > Best,
> > > > Tianran
> > > >
> > > > -----Original Message-----
> > > > From: spring [mailto:spring-bounces@ietf.org] On Behalf Of Joel M.
> > > > Halpern
> > > > Sent: Wednesday, November 10, 2021 10:38 AM
> > > > To: Tianran Zhou <zhoutianran@huawei.com>
> > > > Cc: draft-fz-spring-srv6-alt-mark@ietf.org; spring@ietf.org;
> > > > ipv6@ietf.org
> > > > Subject: Re: [spring] A question for draft-fz-spring-srv6-alt-mark
> > > >
> > > > (Again, speaking as  participant.) You seem to be assuming that
> > > > devices (hard or soft) that support SRH
> > will support this new TLV.  It is not obvious that they will support
> > any SRH TLVs.  And if they do, they clearly will not support a not yet
> > defined TLV.
> > > >
> > > > Yours,
> > > > Joel
> > > >
> > > > On 11/9/2021 9:04 PM, Tianran Zhou wrote:
> > > > > Hi Tom,
> > > > >
> > > > > All you arguments are correct.
> > > > > If a network is built all by supportive devices (support HbH,
> > > > > DoH),
> > there is no doubt that 6man-alt-mk is a sound solution.
> > > > >
> > > > > However, existing network may consist many non-supportive devices.
> > > > > These devices may 1. support SRH, but not HbH and DoH. This is
> > > > > the
> > current situation about most chip vendors.
> > > > > 2. some vendors may not want to support HbH and DoH in near future.
> > > > >
> > > > > Then, how to deploy alt-mk in these network?
> > > > > The way is to bypass those non-supportive nodes without packet drop

v2.23.0 | Report a Bug | By Email