IETF Logo Mail Archive

Re: Next Steps Errata 5170, 5171, 5172, 5173 on RFC8200

Fernando Gont <fgont@si6networks.com> Thu, 05 December 2019 02:47 UTC

Return-Path: <fgont@si6networks.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2457D12022D for <ipv6@ietfa.amsl.com>; Wed, 4 Dec 2019 18:47:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AycteiqTE10m for <ipv6@ietfa.amsl.com>; Wed, 4 Dec 2019 18:47:43 -0800 (PST)
Received: from fgont.go6lab.si (fgont.go6lab.si [91.239.96.14]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 213C412018B for <ipv6@ietf.org>; Wed, 4 Dec 2019 18:47:43 -0800 (PST)
Received: from [192.168.4.77] (unknown [190.179.35.56]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id C1A12852E5; Thu, 5 Dec 2019 03:47:39 +0100 (CET)
Subject: Re: Next Steps Errata 5170, 5171, 5172, 5173 on RFC8200
To: Bob Hinden <bob.hinden@gmail.com>
Cc: IPv6 List <ipv6@ietf.org>, Suresh Krishnan <suresh.krishnan@gmail.com>
References: <C079EDCA-C69B-4D01-A96A-4741B6D96369@gmail.com> <ae5660bb-5676-b19b-dbc4-8d6b983bd2d0@si6networks.com> <3640DDA6-95F0-4C64-AE23-5EB85C082B48@employees.org> <1a3e080d-df02-4589-0124-0708483eecb3@si6networks.com> <F8E2767C-19BA-470E-992C-BD314B00E60F@gmail.com>
From: Fernando Gont <fgont@si6networks.com>
Autocrypt: addr=fgont@si6networks.com; prefer-encrypt=mutual; keydata= mQINBE5so2gBEACzBQBLUy8nzgAzSZn6ViXT6TmZBFNYNqTpPRvTVtUqF6+tkI+IEd9N2E8p pXUXCd0W4dkxz6o7pagnK63m4QSueggvp881RVVHOF8oTSHOdnGxLfLeLNJFKE1FOutU3vod GK/wG/Fwzkv9MebdXpMlLV8nnJuAt66XGl/lU1JrNfrKO4SoYQi4TsB/waUQcygh7OR/PEO0 EttiU8kZUbZNv58WH+PAj/rdZCrgUSiGXiWUQQKShqKnJxLuAcTcg5YRwL8se/V6ciW0QR9i /sr52gSmLLbW5N3hAoO+nv1V/9SjJAUvzXu43k8sua/XlCXkqU7uLj41CRR72JeUZ4DQsYfP LfNPC98ZGTVxbWbFtLXxpzzDDT8i3uo7w1LJ2Ij/d5ezcARqw01HGljWWxnidUrjbTpxkJ9X EllcsH94mer728j/HKzC9OcTuz6WUBP3Crgl6Q47gY5ZIiF0lsmd9/wxbaq5NiJ+lGuBRZrD v0dQx9KmyI0/pH2AF8cW897/6ypvcyD/1/11CJcN+uAGIrklwJlVpRSbKbFtGC6In592lhu7 wnK8cgyP5cTU+vva9+g6P1wehi4bylXdlKc6mMphbtSA+T3WBNP557+mh3L62l4pGaEGidcZ DLYT2Ud18eAJmxU3HnM8P3iZZgeoK7oqgb53/eg96vkONXNIOwARAQABtCVGZXJuYW5kbyBH b250IDxmZ29udEBzaTZuZXR3b3Jrcy5jb20+iQJBBBMBAgArAhsjBQkSzAMABgsJCAcDAgYV CAIJCgsEFgIDAQIeAQIXgAUCTmylpQIZAQAKCRCuJQ1VHU50kv7wD/9fuNtTfxSLk3B3Hs3p ixTy8YXVjdkVwWlnJjFd7BOWmg7sI+LDhpjGfT6+ddOiwkumnvUZpObodj4ysH0i8c7P4C5t F9yu7WjklSlrB5Rth2CGChg5bKt541z2WHkFFxys9qBLmCSYDeKQkzLqhCjIUJizY2kOJ2GI MnSFDzJjhSFEh//oW830Y8fel1xnf/NVF+lBVtRMtMOfoWUqDjvP3sJ1G4zgkDCnF0CfncLx +hq2Mv26Uq9OTzvLH9aSQQ/f067BOkKAJKsfHdborX4E96ISTz57/4xECRSMr5dVsKVm4Y// uVIsb+L5z+a32FaiBZIAKDgnJO7Z8j6CV5e5yfuBTtX52Yi9HjYYqnYJGSDxYd6igD4bWu+7 xmJPHjkdqZgGV6dQIgiUfqkU+s5Cv350vK48CMaT/ZLo2BdsMhWsmaHmb+waePUMyq6E4E9x 9Js+EJb9ZiCfxS9exgieZQpet1L36IvhiwByvkQM009ywfa30JeMOltUtfLi5V06WQWsTzPL 5C+4cpkguSuAJVDTctjCA0moIeVDOpJ8WH9voQ4IeWapQnX35OIoj1jGJqqYdx65gc1ygbyx b8vw+pJ9E5GLse5TQnYifOWpXzX9053dtbwp/2OVhU4KLlzfCPCEsoTyfu9nIZxdI2PMwiL5 M85BfjX4NmwBLmPGoLkCDQRObKNoARAAqqXCkr250BchRDmi+05F5UQFgylUh10XTAJxBeaQ UNtdxZiZRm6jgomSrqeYtricM9t9K0qb4X2ZXmAMW8o8AYW3RrQHTjcBwMnAKzUIEXXWaLfG cid/ygmvWzIHgMDQKP+MUq1AGQrnvt/MRLvZLyczAV1RTXS58qNaxtaSpc3K/yrDozh/a4pu WcUsVvIkzyx43sqcwamDSBb6U8JFoZizuLXiARLLASgyHrrCedNIZdWSx0z0iHEpZIelA2ih AGLiSMtmtikVEyrJICgO81DkKNCbBbPg+7fi23V6M24+3syHk3IdQibTtBMxinIPyLFF0byJ aGm0fmjefhnmVJyCIl/FDkCHprVhTme57G2/WdoGnUvnT7mcwDRb8XY5nNRkOJsqqLPemKjz kx8mXdQbunXtX9bKyVgd1gIl+LLsxbdzRCch773UBVoortPdK3kMyLtZ4uMeDX3comjx+6VL bztUdJ1Zc9/njwVG8fgmQ+0Kj5+bzQfUY+MmX0HTXIx3B4R1I1a8QoOwi1N+iZNdewV5Zfq+ 29NlQLnVPjCRCKbaz9k6RJ2oIti55YUI6zSsL3lmlOXsRbXN5bRswFczkNSCJxJMlDiyAUIC WOay7ymzvgzPa+BY/mYn94vRaurDQ4/ljOfj6oqgfjts+dJev4Jj89vp8MQI3KJpZPEAEQEA AYkCJQQYAQIADwUCTmyjaAIbDAUJEswDAAAKCRCuJQ1VHU50km4xEACho45PZrUjY4Zl2opR DFNo5a6roTOPpgwO9PcBb3I5F8yX2Dnew+9OhgWXbBhAFq4DCx+9Gjs43Bn60qbZTDbLGJ/m 8N4PwEiq0e5MKceYcbetEdEUWhm5L6psU9ZZ82GR3UGxPXYe+oifEoJjOXQ39avf9S8p3yKP Diil0E79rn7LbJjMcgMLyjFg9SDoJ6pHLtniJoDhEAaSSgeV7Y745+gyMIdtQmrFHfqrFdjq D6G0HE+Z68ywc5KN67YxhvhBmSycs1ZSKAXv1zLDlXdmjHDHkU3xMcB+RkuiTba8yRFYwb/n j62CC4NhFTuIKOc4ta3dJsyXTGh/hO9UjWUnmAGfd0fnzTBZF8Qlnw/8ftx5lt4/O+eqY1EN RITScnPzXE/wMOlTtdkddQ+QN6xt6jyR2XtAIi7aAFHypIqA3lLI9hF9x+lj4UQ2yA9LqpoX 6URpPOd13JhAyDe47cwsP1u9Y+OBvQTVLSvw7Liu2b4KjqL4lx++VdBi7dXsjJ6kjIRjI6Lb WVpxe8LumMCuVDepTafBZ49gr7Fgc4F9ZSCo6ChgQNLn6WDzIkqFX+42KuHz90AHWhuW+KZR 1aJylERWeTcMCGUSBptd48KniWmD6kPKpzwoMkJtEXTuO2lVuborxzwuqOTNuYg9lWDl7zKt wPI9brGzquUHy4qRrA==
Message-ID: <1da708dc-8805-01d6-9c11-d39dc9e674b0@si6networks.com>
Date: Wed, 04 Dec 2019 23:47:26 -0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.2.1
MIME-Version: 1.0
In-Reply-To: <F8E2767C-19BA-470E-992C-BD314B00E60F@gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/m1baZjW2SVl3EIKYeaMF-jIp3K0>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Dec 2019 02:47:46 -0000

Hello, Bob,

On 4/12/19 19:45, Bob Hinden wrote:
[....]
>>> Comments below.
>>>
>>>>> This incorporates one change agreed to on the list to change the text
>>>>> describing the first fragment packet from:
>>>>>
>>>>> (4)  The first fragment.
>>>>>
>>>>> to:
>>>>>
>>>>> (4)  The remainder of the first fragment.
>>>>
>>>> I did a fresh review of the text. Comments:
>>>>
>>>>     The Per-Fragment headers must consist of the IPv6 header plus any
>>>>     extension headers that must be processed by nodes en route to the
>>>>     destination, that is, all headers up to and including the Routing
>>>>     header if present, else the Hop-by-Hop Options header if present,
>>>>     else no extension headers.
>>>>
>>>> Based on the updated processing of HbH OPtions EH, this should probably
>>>> say something like "that may need to be processed" (as opposed to "must").
>>>
>>> Current wording as from 2460 is fine.
>>
>> That's the point: RFC8200 changed in this respect (IIRC) -- there's no
>> EHs that "must" be processed en route.

?



>>>>     (3)  Extension headers, if any, and the Upper-Layer header.  These
>>>>
>>>> I'd use a qualifier for these EHs, such as "per-datagram extension
>>>> headers", if you wish. Otherwise there's a double and conflicting
>>>> definition of "EH".
>>>
>>> Let's not introduce new terminology.
>>
>> The text *is* introducing new terminology, anyway -- e.g. "per fragment
>> headers". Definitions like "extension headers are all the extension
>> headers that were not included..." (or the like) seem very confusing to me.
>>
>>
> 
> "Per-Fragment headers" is not a change from RFC8200.

Exactly. But the new text has a new definition wrt what is considered
"extension headers".

Namely, this is new:
"           Extension headers are all other extension headers that are
           not included in the Per-Fragment headers part of the packet."


I personally believe that this is a circular definition, and thus is
incorrect. Besides, given how "creative" folks have been to circumvent
RFC8200, I don't even want to analyze the possibilities regarding how
this new definition, which essentially states that extension headers are
a subset of what extension headers really are, could be leveraged by
folks trying to find imaginary loopholes in the spec.




>>>>> The plan agreed to with Suresh, our Internet AD, is to open a new
>>>>> Errata that describes the errors in the Fragmentation text in Section
>>>>> 4.5 of RFC8200 and include the revised text in sec4-5-new.txt in the
>>>>> errata, and then close Errata 5170, 5171, 5172, and 5173 as
>>>>> “Rejected" with a pointer to the new Errata.  The new Errata would
>>>>> then be marked as “Held for Document Update”.
>>>>
>>>> Two questions regarding this:
>>>>
>>>> * At the previous IETF, the plan was for the errata to be accepted and
>>>> for the alternative text to be conveyed in the verifier notes. Is there
>>>> any rationale for this procedural change?
>>>
>>> Reconciling the 4 existing errata would not give a consistent and consumable view of the change.
>>
>> Why not? Just verify them, and include the text in the "verifier notes"
>> of one of them -- or even in all of them, if you which.
>>
>> That's what Suresh suggested in March, IIRC.
> 
> This was one of the approaches discussed at the pervious 6man session at the Montreal IETF.
> 
> We discussed the current approach with Suresh, this was sent to the list, and was discussed in Singapore 6man session, and it seems to be a reasonable approach to me and Ole.  

My recollection from the pre-Singapore meeting was that Suresh
recommendation (at Montreal) had been to verify the errata and include
any alternative text in the verifier's notes. THere wasn't much on the
topic since then (pre-Singapore), but the proposal in Singapore was
different. Hence my question.



> No one in the w.g. session objected to this approach.

Why would the errata be rejected?  It would seem to me that the errata
can be rejected if it0s incorrect, when in this case it clearly isn't
(ref:
<https://www.ietf.org/about/groups/iesg/statements/processing-rfc-errata/>)

And I don't see why the alternative text couldn't ve conveyed in the
"verifier's notes", which seems to be what SUresh had suggested at the time.



>> [...]
>>>> 2) If there's no concrete plan to do rfc8200bis, shouldn't this be
>>>> hanlded in e.g., an updating RFC?
>>>
>>> No, why?
>>> See also inline-errata. Example https://www.rfc-editor.org/rfc/inline-errata/rfc4960.html
>>
>> I guess this part says it all: "This is a purely informative rendering
>> of an RFC that includes verified errata. This rendering may not be used
>> as a reference." -- It doesn't seems sensible to have a core and
>> substantial part of the spec in an errata.
>>
>> That aside, I consider myself a person that reads RFCs, and wasn't even
>> aware that this tool/feature existed... and have no reason to believe
>> that folks that occasionally read RFCs will know better.
>>
>> Reality is that folks look at (and print) RFCs. Given that the portion
>> of text that is affected is rather significant, and that I'd expect that
>> we use IPv6 for quite some time, I think this deserves to be addressed
>> in a more clear and explicit way.
>>
>> If you ask me, I'd probably do rfc8200bis **if** it can be done on the
>> condition that the bis effort is meant to **only** address the pending
>> errata (there's another technical bit, yet unverified, submitted by
>> somebody else). Not that I like it, but that would give us a clean,
>> stand-alone document that we can use and reference.
> 
> I do not think is possible to do an RFC8200bis and limit the changes to just this.

I recall reading about this. But, in any case, I guess we can test the
feasibility before discarding it.

As noted, if you do this in an errata, essentially you cannot reference
the fragmentation part of the specification anymore.



>> As a second option, I'd have an updating RFC. At least the "Updates:
>> RFC8200" metadata will more clearly note that there's another doc to be
>> read.
> 
> We can discuss this after the current errata are processed.

It would seem to me that the reason fow which the verification of this
errata is taking so long is that we're trying to cast into stone text
that should be in a Std. Track document...

Thanks,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492

v2.23.0 | Report a Bug | By Email