RE: RFC 8200: The Devil's Paragraph
Ron Bonica <rbonica@juniper.net> Fri, 28 February 2020 20:01 UTC
Return-Path: <rbonica@juniper.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A24103A1D41 for <ipv6@ietfa.amsl.com>; Fri, 28 Feb 2020 12:01:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=Xh4m3sp+; dkim=pass (1024-bit key) header.d=juniper.net header.b=ca+bv5RI
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xHBDBJbUyTcc for <ipv6@ietfa.amsl.com>; Fri, 28 Feb 2020 12:01:41 -0800 (PST)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 65A533A1D84 for <ipv6@ietf.org>; Fri, 28 Feb 2020 12:01:41 -0800 (PST)
Received: from pps.filterd (m0108158.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 01SJv2xc007284; Fri, 28 Feb 2020 12:01:40 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=ZEb9qfVbtuc9yanDnmja/h/Jk4rZIyq6EsnEgZZWjAg=; b=Xh4m3sp+hFusVuSx3LNxjobAFRK0MgdFYofONil3QkkSGFP6e6l1SUXFafNjoNklb2hF dgtuNyHNF9S4DL9sdj1X9VkhlMimHVgAvOh8H2F5aZSss+9Df384xhZuKFI0DTpVpN/Q ORso7rbGCxUGEL4cdxDQigA1R+69soF+SXtEFJr7lwFd311MOgGw/g0klAX2YDPdG4GO rTyrMk3sb43ADHWh2ucDrkkJPig1PpHiluuM0yp65mLztnbJOW2GJksQ/azbQGCIXGIP kd3w+neqze3GBs/RQYKx5LVjq9tz+FgoQ9slrft93t203IO5VoQDaeCmXJ/yKij0Pv5k nA==
Received: from nam10-mw2-obe.outbound.protection.outlook.com (mail-mw2nam10lp2107.outbound.protection.outlook.com [104.47.55.107]) by mx0a-00273201.pphosted.com with ESMTP id 2yepy5sv9x-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 28 Feb 2020 12:01:40 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=KMFkoFQhCybcDtiyXZdFepmjC31sxcTNfyZO6Q079m349O4LHNrDSnS7AYF8GfPLF51BjJ+mIhmMswVpcVoItQ9fwzDxWTSK2OuG0YcuYBQ0EDp/POfcY7kJFdWH80SH1H1RTvSL37oUcD8xWwU8TbC8hn/sYNhU4YW3PptIoCY7vqeX95MVYMw+F6gB12PHKwFfRNB5SeMEDW5rUopVyfnKG2vmTC+A3lJ9HfFsU0l6ork2BK4xEtEI6BrZfVCeEE1fSBU6XpR1ErhNkE9BpBF+VBI9/Yg2yjC0W9EAxgZynb5tsRMfMLvEqbrSqGap4Iv68UoyacncEqienycKXQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZEb9qfVbtuc9yanDnmja/h/Jk4rZIyq6EsnEgZZWjAg=; b=G/raYPzBHtu4+v4CQwQ++kAdCp+4+ylNyhHtDPt7sUnyTvywgqqhIq+dBkus2F4uuptOH8oFGR/14vX2d/j6PR2Mbx5SvdRw1xuFIKeuGtMy0mKRm/CFKsfjuppkNTHd1n8ym1Iz1ps3TOV9NeR0hODsDT6BxjRxX5UdOXSC9q/1aDeTgi2hAO9D4oV9223JBmGAcM5pbomo9c493LU1Ql66Tj0Ef3qRjGJzI7l1nWwdZH6wcMcM7N/w9DS+pGa5nIRlrFV8EAqhNiGH99fbUxIMHMwME/pYatI1zK3Q4Beq/LpJZRdsXoKkorA8Yh8oe8Mcrkcu92BbwMhc40sYKA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZEb9qfVbtuc9yanDnmja/h/Jk4rZIyq6EsnEgZZWjAg=; b=ca+bv5RIY/UEnslrb5dcEdGiKNsTTrvpYl+3xqY1l9fwYVQY6PiP8qYZLYCjIAeyh+7zurdvpIRDlzzskGSDy/YKrl2BYT6P8rpEQ8V8/zyGdo4E7HpcJkjqUglJdoRtGcjZI5xuJLqDtkq2z8L4kLYaCvqVqohons3o10e5p3U=
Received: from DM6PR05MB6348.namprd05.prod.outlook.com (2603:10b6:5:122::15) by DM6PR05MB4108.namprd05.prod.outlook.com (2603:10b6:5:90::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2772.9; Fri, 28 Feb 2020 20:01:38 +0000
Received: from DM6PR05MB6348.namprd05.prod.outlook.com ([fe80::cdd:ea54:f213:7e02]) by DM6PR05MB6348.namprd05.prod.outlook.com ([fe80::cdd:ea54:f213:7e02%5]) with mapi id 15.20.2772.012; Fri, 28 Feb 2020 20:01:38 +0000
From: Ron Bonica <rbonica@juniper.net>
To: 神明達哉 <jinmei@wide.ad.jp>
CC: 6man WG <ipv6@ietf.org>
Subject: RE: RFC 8200: The Devil's Paragraph
Thread-Topic: RFC 8200: The Devil's Paragraph
Thread-Index: AdXtumtaGL8ofvSqSLGz+XutPVT3kgAtoJqAAAAV5/A=
Date: Fri, 28 Feb 2020 20:01:38 +0000
Message-ID: <DM6PR05MB63482CD7896537124C5F2635AEE80@DM6PR05MB6348.namprd05.prod.outlook.com>
References: <DM6PR05MB63482DDA36EEA130FF988178AEEB0@DM6PR05MB6348.namprd05.prod.outlook.com> <CAJE_bqebweDDxmMt_C-y+5jdpGs9WpG+nOOvxfn0iQGw2gZq0g@mail.gmail.com>
In-Reply-To: <CAJE_bqebweDDxmMt_C-y+5jdpGs9WpG+nOOvxfn0iQGw2gZq0g@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=rbonica@juniper.net; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2020-02-28T20:01:36.6381380Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Business Use Only; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft Azure Information Protection; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=da50fa44-2826-4cc0-aed0-83bd726fc90a; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
dlp-product: dlpe-windows
dlp-version: 11.3.2.8
dlp-reaction: no-action
x-originating-ip: [108.28.233.91]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 9365e929-d828-46b4-9fa6-08d7bc8905a4
x-ms-traffictypediagnostic: DM6PR05MB4108:
x-microsoft-antispam-prvs: <DM6PR05MB4108116E9C2874B8BF163A3FAEE80@DM6PR05MB4108.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0327618309
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(346002)(136003)(396003)(376002)(39850400004)(366004)(199004)(189003)(71200400001)(316002)(66946007)(4326008)(6916009)(66446008)(55016002)(64756008)(66476007)(9686003)(5660300002)(6506007)(53546011)(7696005)(86362001)(33656002)(186003)(26005)(81166006)(8676002)(81156014)(478600001)(52536014)(66556008)(8936002)(76116006)(2906002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR05MB4108; H:DM6PR05MB6348.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 451JxmsDwEL2QtY+Ehj3MgB6EnHNA2xf1yjWNq5r5Uo4g5fqCWXLMyCDek79dViuigSp21mNnmChjP7p06Oa9KLs/gHcooRkZvLRci0hDzq36WlMwMbexETw33VJkFFDFHJeYNszXJe5aamWubilx3nTndLzrcze8Msj8uH9PYnpyaIm29Wd1zOjgrqfZu0+q65NjGHXq2reCRz9OLCjECwlBqMkMcXuzQfzOwFpwNXvgFcMHZF0drAkj1CGLn36beSLjZ6zjKnEISiZ6L9CbIbiqVCfgxTjxoBBcVLw6FtwMW+UmzmzudTprNoQutLrhqTcAEUbm3TUEhrvzsfC3PyytcnRRoD3jwCYmtfGhsvIsewZrjoUHy6XMpn1RLKEAs+Qo8OBu2f0zeC/3xFXF8nekRFWlXfLBcPFL81FmHh1s/K5VtIhMcq7Fxe9ZjgK
x-ms-exchange-antispam-messagedata: glBlFjfpcljL5oL1JvjjT+0GtHvV50jWpYBK8x0CKnw08rQpuSwwRkd3e+8AZ/B/aUpWVRUr8a7a4i8F/RGTg4uekqtEfxPWGRRMN3+hqWb0E81LnvcvzWqvNAs662ZnM4huOcBDqNba3sw51TkBNw==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 9365e929-d828-46b4-9fa6-08d7bc8905a4
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Feb 2020 20:01:38.6401 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Zbzms2sAuJHt0+Lm+3R7G+weODqObY79qKIhGINcyeTjthD0DvezRxbcLyWKiJjYqDmP7Ow0lvqYvS2y8haBMQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB4108
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.572 definitions=2020-02-28_07:2020-02-28, 2020-02-28 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 clxscore=1015 spamscore=0 mlxscore=0 phishscore=0 lowpriorityscore=0 suspectscore=0 priorityscore=1501 impostorscore=0 adultscore=0 mlxlogscore=999 malwarescore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2001150001 definitions=main-2002280140
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/NInYM2ezycFy0mkQrf3MO_WVWCg>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Feb 2020 20:01:48 -0000
Jinmei,
If you like, we can work together on a short draft that updates The Devil's Paragraph.
The SPRING chairs have just announced that they will progress the Network Programming draft, regardless of objections. Our draft won't influence that decision, but it may avoid similar problems in the future.
Ron
Juniper Business Use Only
-----Original Message-----
From: 神明達哉 <jinmei@wide.ad.jp>
Sent: Friday, February 28, 2020 2:55 PM
To: Ron Bonica <rbonica@juniper.net>
Cc: 6man WG <ipv6@ietf.org>
Subject: Re: RFC 8200: The Devil's Paragraph
At Thu, 27 Feb 2020 22:52:20 +0000,
Ron Bonica <rbonica=40juniper.net@dmarc.ietf.org> wrote:
> Looking more closely at "The Devil's Paragraph", it may have a few problems.. Currently, it says:
>
> "Extension headers (except for the Hop-by-Hop Options header) are not
> processed, inserted, or deleted by any node along a packet's delivery
> path, until the packet reaches the node (or each of the set of nodes,
> in the case of multicast) identified in the Destination Address field
> of the IPv6 header."
>
> The problem is that the rules for processing, insertion and deletion are different. It should say the following about extension header processing:
>
> "The Hop-by-Hop Options header can be processed by any node in packet's delivery path. The Destination Options header and Routing header can be processed by any node in a packets delivery path, so long as one of that node's addresses appears in the Destination Address field of the packet's IPv6 header. The Fragment Header, Authentication Header, and Encapsulating Security Payload header can only be processed by packet's ultimate destination."
>
> Regarding insertion and deletion, we should say one of the following:
>
> "Extension headers cannot be added to a packet after it has left the its source node and extension headers cannot be removed from a packet until it has arrived at its ultimate destination".
Yeah, we should have said something like this in RFC8200. It's regrettable that I couldn't catch it at that time, but on a nearly fresh read of the text I now see the issue clearly. The very original
RFC2460 text said "Destination Address field of the IPv6 header"
presumably intending to cover the case of "processing" a destination options header or a routing header (like address swapping or decrementing segments left) at an intermediate destination specified in a routing header. But, in the discussion that led to the new "inserted, or deleted" text in RFC8200, we were probably too focused on clarifying the meaning of "processed" and didn't pay enough attention to the end effect of the resulting sentence with "Destination Address...".
But our intent at that time was obviously "after its source node...and until it has arrived at its ultimate destination" (otherwise the debate shouldn't have been that hot).
I have no comment about where this clarification should be made. An erratum may be enough in that it should simply clarify the actual intent, but if it triggers another heated discussion on the process itself, it's probably not an efficient way of using our time. But I agree this should be clarified somewhere.
> We can debate whether we want to make a special exception for Routing
> headers where Segment Left is equal to 0.
In terms of clarifying the original intent, I'd say it's out of scope since it opens up corner cases like having another routing header with segment left > 0 follows this routing header. Just saying "ultimate destination" seems to be enough.
--
JINMEI, Tatuya
- RFC 8200: The Devil's Paragraph Ron Bonica
- Re: RFC 8200: The Devil's Paragraph Brian E Carpenter
- Re: RFC 8200: The Devil's Paragraph Fernando Gont
- Re: RFC 8200: The Devil's Paragraph 神明達哉
- RE: RFC 8200: The Devil's Paragraph Ron Bonica
- RE: RFC 8200: The Devil's Paragraph Manfredi (US), Albert E
- Re: RFC 8200: The Devil's Paragraph 神明達哉
- Re: RFC 8200: The Devil's Paragraph Mark Smith
- RE: RFC 8200: The Devil's Paragraph Ron Bonica