[IPv6]Fw: RE: [External] Re: I-D Action: draft-ietf-6man-icmpv6-ioam-conf-state-03.txt

xiao.min2@zte.com.cn Wed, 12 June 2024 06:57 UTC

Return-Path: <xiao.min2@zte.com.cn>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D8E38C180B67; Tue, 11 Jun 2024 23:57:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.903
X-Spam-Level:
X-Spam-Status: No, score=-6.903 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, UNPARSEABLE_RELAY=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FKkY1gsxRG4G; Tue, 11 Jun 2024 23:57:53 -0700 (PDT)
Received: from mxhk.zte.com.cn (mxhk.zte.com.cn [63.216.63.40]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8DEFDC180B5A; Tue, 11 Jun 2024 23:57:43 -0700 (PDT)
Received: from mse-fl1.zte.com.cn (unknown [10.5.228.132]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mxhk.zte.com.cn (FangMail) with ESMTPS id 4Vzbvk6sD2z8XrXC; Wed, 12 Jun 2024 14:57:38 +0800 (CST)
Received: from njb2app05.zte.com.cn ([10.55.22.121]) by mse-fl1.zte.com.cn with SMTP id 45C6vQMd044842; Wed, 12 Jun 2024 14:57:27 +0800 (+08) (envelope-from xiao.min2@zte.com.cn)
Received: from mapi (njb2app07[null]) by mapi (Zmail) with MAPI id mid201; Wed, 12 Jun 2024 14:57:29 +0800 (CST)
Date: Wed, 12 Jun 2024 14:57:29 +0800
X-Zmail-TransId: 2aff666946d9ffffffffad2-2f878
X-Mailer: Zmail v1.0
Message-ID: <20240612145729321Js-Ufw-qRWDt6L23KNXn4@zte.com.cn>
References: 171374936009.57848.2470533561475667186@ietfa.amsl.com,20240611164215516Tbyu4g2FhZTAcVp59wpwb@zte.com.cn,LO0P265MB5168D5D86B588F3352770946D6C72@LO0P265MB5168.GBRP265.PROD.OUTLOOK.COM
Mime-Version: 1.0
From: xiao.min2@zte.com.cn
To: 6man-chairs@ietf.org
Content-Type: multipart/mixed; boundary="=====_001_next====="
X-MAIL: mse-fl1.zte.com.cn 45C6vQMd044842
X-Fangmail-Anti-Spam-Filtered: true
X-Fangmail-MID-QID: 666946E2.000/4Vzbvk6sD2z8XrXC
Message-ID-Hash: TDXKKYEZUMRQY7S5CTOKMYX6NU6YFA5A
X-Message-ID-Hash: TDXKKYEZUMRQY7S5CTOKMYX6NU6YFA5A
X-MailFrom: xiao.min2@zte.com.cn
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ipv6.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: ipv6@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [IPv6]Fw: RE: [External] Re: I-D Action: draft-ietf-6man-icmpv6-ioam-conf-state-03.txt
List-Id: "IPv6 Maintenance Working Group (6man)" <ipv6.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/kpYVpUIjnyOPh4zYg4eUjbF0qpI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Owner: <mailto:ipv6-owner@ietf.org>
List-Post: <mailto:ipv6@ietf.org>
List-Subscribe: <mailto:ipv6-join@ietf.org>
List-Unsubscribe: <mailto:ipv6-leave@ietf.org>

Dear 6man chairs,

The authors believe draft-ietf-6man-icmpv6-ioam-conf-state is ready for WGLC.
Appreciate your consideration of our request.

Best Regards,
Xiao Min

Original


From: King,Daniel <d.king@lancaster.ac.uk>
To: 肖敏10093570;
Cc: draft-ietf-ippm-ioam-conf-state@ietf.org <draft-ietf-ippm-ioam-conf-state@ietf.org>;ipv6@ietf.org <ipv6@ietf.org>;
Date: 2024年06月11日 16:50
Subject: RE: [External] Re: [IPv6] I-D Action: draft-ietf-6man-icmpv6-ioam-conf-state-03.txt



The updates look good, and thanks for the Ack! 
 
BR, Dan. 
 

From: xiao.min2@zte.com.cn <xiao.min2@zte.com.cn> 
 Sent: Tuesday, June 11, 2024 9:42 AM
 To: King, Daniel <d.king@lancaster.ac.uk>
 Cc: draft-ietf-ippm-ioam-conf-state@ietf.org; ipv6@ietf.org
 Subject: Re: [External] Re: [IPv6] I-D Action: draft-ietf-6man-icmpv6-ioam-conf-state-03.txt


 
Hi Dan,
 
I've posted a new -04 revision attempting to address your comments. Link as below.
https://datatracker.ietf.org/doc/html/draft-ietf-6man-icmpv6-ioam-conf-state-04 
In -05 revision I just added your name to the Acknowledgements. :-)
 
Cheers,
Xiao Min

Original

From: King,Daniel <d.king@lancaster.ac.uk>



To: 肖敏10093570;



Cc: draft-ietf-ippm-ioam-conf-state@ietf.org <draft-ietf-ippm-ioam-conf-state@ietf.org>;ipv6@ietf.org <ipv6@ietf.org>;



Date: 2024年06月10日 16:04



Subject: RE: [External] Re: [IPv6] I-D Action: draft-ietf-6man-icmpv6-ioam-conf-state-03.txt




Hi Xiao, 
 
Great, I'm glad the contributions are helping. 
 
>Examples of the Node IOAM Request
 
9. The sentence felt incomplete and could have been more concise.  
 
Original:
 
"Note that when a Node IOAM Request message is received, the message length is indicated by the Payload Length field of IPv6 Header [RFC8200]."
 
Maybe this would read better as:
 
"When a Node IOAM Request message is received, the length of the message is determined by the Payload Length field in the IPv6 Header, as specified in [RFC8200].
 
This was just a minor comment. 
 
BR, Dan. 
 


From: xiao.min2@zte.com.cn <xiao.min2@zte.com.cn> 
 Sent: Friday, June 7, 2024 11:05 AM
 To: King, Daniel <d.king@lancaster.ac.uk>
 Cc: draft-ietf-ippm-ioam-conf-state@ietf.org; ipv6@ietf.org
 Subject: [External] Re: [IPv6] I-D Action: draft-ietf-6man-icmpv6-ioam-conf-state-03.txt



 
This email originated outside the University. Check before clicking links or attachments.
Dear Dan,

 Many thanks for your thorough review and comments, very helpful.
Please see inline for detailed responses.

Original

From: King,Daniel <d.king@lancaster.ac.uk>



To: draft-ietf-ippm-ioam-conf-state@ietf.org <draft-ietf-ippm-ioam-conf-state@ietf.org>;



Cc: ipv6@ietf.org <ipv6@ietf.org>;



Date: 2024年06月06日 06:01



Subject: RE: [IPv6] I-D Action: draft-ietf-6man-icmpv6-ioam-conf-state-03.txt




Hi Authors,
 
 I was reading RFC 9359  (Echo Request/Reply Enabled In Situ OAM). I’m interested in the applicability of IPv6 data plane monitoring, and I noticed your companion document - draft-ietf-6man-icmpv6-ioam-conf-state. Seeing as the document is still being discussed in the 6man WG, I thought I’d drop a review and give you some thoughts.  
 
 Firstly, I did not remember seeing the document being presented at IETF 119 and found no slides in the 6man materials – obviously, because it was not presented. 😊 Never mind, the document was straightforward to read without the slides. Great job!
[XM]>>> Yes, this document was presented at IETF 118 but not IETF 119, because the authors made few changes between the two IETF meetings. Fortunately you found it easy to read. :-)
 
A few thoughts:
 
 >Abstract  
 
 1. Being pedantic, the abstract mentions “described in RFC 9359 "Ping Enabled IOAM Capabilities"”, but actually, the specific name of the document (you also co-authored) is “Echo Request/Reply for Enabled In Situ OAM (IOAM) Capabilities”.
[XM]>>> Accepted. I thought the *title abbrev* populated in XML file can be displayed in the RFC text, obviously I was wrong.
 
>Introduction  
 
 2. Suggest reducing text.
 
 s/ Both [RFC4884] and [RFC8335] provide sound principles and examples on how to extend ICMPv6 messages / Both [RFC4884] and [RFC8335] provide sound principles and examples on extending ICMPv6 messages.
[XM]>>> Accepted.
 
3. I found the sentence a little wordy, it might be improved.  
 
 s/ The IOAM encapsulating node sends a NI Query to each IOAM transit and decapsulating node, then each receiving node executes access control procedures, and if access is granted, each receiving node returns a NI Reply which indicates the enabled IOAM capabilities of the receiving node. / The IOAM encapsulating node sends an NI Query to each IOAM transit and decapsulating node. Upon receiving the query, each node executes access control procedures. If access is granted, the node returns an NI Reply indicating its enabled IOAM capabilities.
[XM]>>> Accepted.
 
4. “exactly” seems redundant.
 
 s/ The NI Reply contains an ICMPv6 Extension Structure exactly customized to this message, and the ICMPv6 Extension Structure contains one or more IOAM Capabilities Objects / The NI Reply contains an ICMPv6 Extension Structure customized to this message, and the ICMPv6 Extension Structure contains one or more IOAM Capabilities Objects.
[XM]>>> Accepted. I can't recall why "exactly" is there, and I agree with you it seems redundant.
 
5. Again, some rewording and brevity might improve the text and reduce the number of words needed.    
 
 s/ Note that before the IOAM encapsulating node sends the NI Query, it needs to know the IPv6 address of each node along the transport path of a data packet to which IOAM data would be added. / Before the IOAM encapsulating node sends the NI Query, it must know the IPv6 address of each node along the transport path of the data packet to which IOAM data will be added.
[XM]>>> Accepted.
 
6. The follow-on sentence might be improved.  
 
 s/ That can be achieved by executing ICMPv6/UDP traceroute or provisioning explicit path at the IOAM encapsulating node. In an Equal-Cost Multipath (ECMP) scenario, the same value or values in any ECMP affecting fields (e.g., the 3-tuple of the Flow Label, Source Address, and Destination Address fields [RFC6437]) of IOAM data packets MUST be populated in the NI Query, ensuring the fate sharing between the NI Query and IOAM data packets. / This can be achieved by executing an ICMPv6/UDP traceroute or by provisioning an explicit path at the IOAM encapsulating node. In an Equal-Cost Multipath (ECMP) scenario, the same values in any ECMP-affecting fields (e.g., the 3-tuple of the Flow Label, Source Address, and Destination Address fields as per [RFC6437]) of the IOAM data packets MUST be populated in the NI Query, ensuring fate sharing between the NI Query and the IOAM data packets.
[XM]>>> Accepted.
 
>Node IOAM Request
 
 7. Punctuation would help.  
 
 s/ *Code: The value is (TBD1) the Data field contains a List of IOAM Namespace-IDs which is the Subject of this Query. / *Code: The value is (TBD1). The Data field contains a list of IOAM Namespace-IDs, which are the subject of this query.
[XM]>>> Accepted.
 
8. Punctuation and brackets for consistency with (TBD1).
 
 s/ *Qtype: The value is TBD2, which indicates the NI Query is a node IOAM capabilities query. / *Qtype: The value (TBD2). Which indicates the NI Query is a node IOAM capabilities query.
[XM]>>> Accepted. s/The value (TBD2)/The value is (TBD2).
 
>Examples of the Node IOAM Request
 
 9. The sentence felt incomplete and could have been more concise.  
 
 s/ Note that when a Node IOAM Request message is received, the message length is indicated by the Payload Length field of IPv6 Header [RFC8200]. / Note that when a Node IOAM Request message is received, the message length is indicated by the Payload Length field of the IPv6 Header [RFC8200].
[XM]>>> You said "the sentence felt incomplete", could you please elaborate it a little more?
 
>IOAM Capabilities Objects
 
 10. Suggest a modification for a smoother read and reduction in text.
 
 s/ *Object payload: Following the IOAM Capabilities Object Header, it's the IOAM Capabilities Object payload, which is defined respectively in Section 3.2.1, Section 3.2.3, Section 3.2.4, Section 3.2.5 and Section 3.2.6 of [RFC9359]. / *Object payload: Following the IOAM Capabilities Object Header is the IOAM Capabilities Object payload, which is defined in Sections 3.2.1, 3.2.3, 3.2.4, 3.2.5, and 3.2.6 of [RFC9359].
[XM]>>> Accepted.
 
>Examples of the Node IOAM Reply
 
 11. Grammar nit.
 
 s/ Note that when a Node IOAM Reply message is received, the message length is indicated by the Payload Length field of IPv6 Header [RFC8200]. / Note that when a Node IOAM Reply message is received, the message length is indicated by the Payload Length field of the IPv6 Header [RFC8200].
[XM]>>> Accepted.
 
>Code Field Processing
 
 12. Grammar nit.
 
 s/ The Code field in the Node IOAM Reply MUST be set to (TBD3) No Matched Namespace-ID if any of the following conditions applies: / The Code field in the Node IOAM Reply MUST be set to (TBD3) No Matched Namespace-ID if any of the following conditions apply:
[XM]>>> Accepted.
 
>Security Considerations
 
 13. Spelling nit.  
 
 s/ Securiy issues discussed in [RFC4620] and [RFC9359] apply to this document. / Security issues discussed in [RFC4620] and [RFC9359] apply to this document.
[XM]>>> Accepted.
 
I was impressed with the Security Considerations; the authors highlighted negation and mitigation strategies for OAM attack vectors, such as spoofed addresses and amplification. 
[XM]>>> Thank you.
 
Overall, I support the document. None of the issues highlighted above are particularly onerous, but at least some may improve the document's quality. I hope this review helps. 
[XM]>>> Thanks again! Your review helps much. :-)
 
Cheers,
Xiao Min
 
BR, Dan.
 
 -----Original Message-----
 From: internet-drafts@ietf.org <internet-drafts@ietf.org>  
 Sent: Monday, April 22, 2024 2:29 AM
 To: i-d-announce@ietf.org
 Cc: ipv6@ietf.org
 Subject: [IPv6] I-D Action: draft-ietf-6man-icmpv6-ioam-conf-state-03.txt
 
 Internet-Draft draft-ietf-6man-icmpv6-ioam-conf-state-03.txt is now available.
 It is a work item of the IPv6 Maintenance (6MAN) WG of the IETF.
 
    Title:   IPv6 Query for Enabled In-situ OAM Capabilities
    Authors: Xiao Min
             Greg Mirsky
    Name:    draft-ietf-6man-icmpv6-ioam-conf-state-03.txt
    Pages:   16
    Dates:   2024-04-21
 
 Abstract:
 
    This document describes the application of the mechanism of
    discovering In-situ OAM (IOAM) capabilities, described in RFC 9359
    "Ping Enabled IOAM Capabilities", in IPv6 networks.  IPv6 Node IOAM
    Request uses the IPv6 Node Information messages, allowing the IOAM
    encapsulating node to discover the enabled IOAM capabilities of each
    IOAM transit and IOAM decapsulating node.
 
    This document updates RFCs 4620 and 4884.
 
 The IETF datatracker status page for this Internet-Draft is:
 https://datatracker.ietf.org/doc/draft-ietf-6man-icmpv6-ioam-conf-state/
 
 There is also an HTMLized version available at:
 https://datatracker.ietf.org/doc/html/draft-ietf-6man-icmpv6-ioam-conf-state-03
 
 A diff from the previous version is available at:
 https://author-tools.ietf.org/iddiff?url2=draft-ietf-6man-icmpv6-ioam-conf-state-03
 
 Internet-Drafts are also available by rsync at:
 rsync.ietf.org::internet-drafts