Re: [Gen-art] Review of draft-ietf-6man-rfc1981bis-04

"C. M. Heard" <heard@pobox.com> Sat, 11 February 2017 18:05 UTC

Return-Path: <heard@pobox.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EE353129A34; Sat, 11 Feb 2017 10:05:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.2
X-Spam-Level:
X-Spam-Status: No, score=-2.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_SORBS_SPAM=0.5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=pobox.com; domainkeys=pass (1024-bit key) header.from=heard@pobox.com header.d=pobox.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XEuPaTY-epPa; Sat, 11 Feb 2017 10:05:37 -0800 (PST)
Received: from sasl.smtp.pobox.com (pb-smtp2.pobox.com [64.147.108.71]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 383B4129A33; Sat, 11 Feb 2017 10:05:37 -0800 (PST)
Received: from sasl.smtp.pobox.com (unknown [127.0.0.1]) by pb-smtp2.pobox.com (Postfix) with ESMTP id C40E4652D2; Sat, 11 Feb 2017 13:05:36 -0500 (EST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=pobox.com; h=mime-version :from:date:message-id:subject:to:cc:content-type; s=sasl; bh=rZC bRNP8cBp3UQQ+laGRw8A/XzE=; b=svUktSM/bJn9xAk+5ZSosysCHDFJYPwYJgg KTyObZD/ePdjZ+0PxZtJimIDoFSu7nEtHvC0WYnokROm/oMhNLFJhYCQ7+O0zgiC mQSzudNRLb2wFlYRImo8mDuj+b6imhIAea8Y7FOk7nM4b5RGdlIkj37GdTpQcDbp TLGPfuIA=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=pobox.com; h=mime-version :from:date:message-id:subject:to:cc:content-type; q=dns; s=sasl; b= SOt6WAPXlhqWXSrOBL6C2HoJdQvhStfHFDmZq+LedWVcpClXJpiK+3joIvL5a9wN Lqql7A7hhlU1BMm1kq4FQ03U5ppJhWJ1hALgigcwPvSk8a/Z0wccIJ62fL2nIMeu XZHs6boEPRiCgd0Lu4LDq6z/jsAWTHRhNbQqLrtiBn8=
Received: from pb-smtp2.nyi.icgroup.com (unknown [127.0.0.1]) by pb-smtp2.pobox.com (Postfix) with ESMTP id AE6A8652D1; Sat, 11 Feb 2017 13:05:36 -0500 (EST)
Received: from mail-qk0-f171.google.com (unknown [209.85.220.171]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pb-smtp2.pobox.com (Postfix) with ESMTPSA id 0E0E4652CC; Sat, 11 Feb 2017 13:05:36 -0500 (EST)
Received: by mail-qk0-f171.google.com with SMTP id s140so66616179qke.0; Sat, 11 Feb 2017 10:05:35 -0800 (PST)
X-Gm-Message-State: AMke39mvdb4S9RGGlNJ9NIW/yryN3p/e5YTatqfesPFjmSqVIvwu5/5MObTB7PrfeUSKVCAS1+l/sJnT8B9EWA==
X-Received: by 10.55.170.17 with SMTP id t17mr13933696qke.15.1486836334971; Sat, 11 Feb 2017 10:05:34 -0800 (PST)
MIME-Version: 1.0
Received: by 10.140.18.106 with HTTP; Sat, 11 Feb 2017 10:05:14 -0800 (PST)
From: "C. M. Heard" <heard@pobox.com>
Date: Sat, 11 Feb 2017 10:05:14 -0800
X-Gmail-Original-Message-ID: <CACL_3VEm=M9cYG1HEe7wu2RHo23P9hqH4e7qX-GGWds1CLSL=w@mail.gmail.com>
Message-ID: <CACL_3VEm=M9cYG1HEe7wu2RHo23P9hqH4e7qX-GGWds1CLSL=w@mail.gmail.com>
Subject: Re: [Gen-art] Review of draft-ietf-6man-rfc1981bis-04
To: Suresh Krishnan <suresh.krishnan@gmail.com>
Content-Type: multipart/alternative; boundary=001a114d519895d98b0548450f27
X-Pobox-Relay-ID: B00396D0-F084-11E6-A0BE-A7617B1B28F4-06080547!pb-smtp2.pobox.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/okBky2_8EjF3RyD6ldfXUSNpX0o>
Cc: 6man WG <ipv6@ietf.org>, IETF <ietf@ietf.org>, "C. M. Heard" <heard@pobox.com>, Gen-ART <gen-art@ietf.org>, Stewart Bryant <stewart@g3ysx.org.uk>, draft-ietf-6man-rfc1981bis.all@ietf.org
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 11 Feb 2017 18:05:39 -0000

On Fri, Feb 10, 2017 at 10:42 PM, Suresh Krishnan <suresh.krishnan@gmail.com
> wrote:

> On Feb 10, 2017 11:30 PM, "C. M. Heard" <heard@pobox.com> wrote:
>
> On Fri, 10 Feb 2017 11:45 -0800 , Brian E Carpenter wrote:
> > On 10/02/2017 23:20, Stewart Bryant wrote:
> > > On 10/02/2017 03:25, Brian E Carpenter wrote:
> > > > On 10/02/2017 04:19, Stewart Bryant wrote:
> > > > > I wonder if we would best serve both our future and our heritage
> > > > > if we declared RFC1981 as historic, and either left the idea there,
> > > > > or declared it as historic and wrote a new text from a clean start?
> > > >
> > > > I don't see that. It's a stable, widely deployed, interoperable
> > > > mechanism. That is rather orthogonal to the issue that has been
> raised,
> > > > which is that faulty ICMPv6 filtering blocks it on many, many paths
> > > > across the Internet.
> > >
> > > I will not debate whether it is faulty or not,
> >
> > It's faulty by the standard of RFC4890 (which is Informational).
> >
> > > but it seems that in practice the Internet breaks the mechanism.
> > > However it breaks it is a way that seems disruptive to some user
> > > traffic. The document is really guidance one how hosts might use
> > > ICMP for optimization, and arguabl[y] need not be a standard at all.
> >
> > I think that's a mischaracterisation of the mechanism (and the draft).
> > PMTUD is not an optimisation. Without it, you get black holes.
>
> Actually, no. You do not have to use PMTUD to avoid black holes.
> Other options include:
>
> - Send packets no larger than 1280 bytes (this is always an option)
> - Use PLPMTUD (for transports that do their own packetization and
>   that can detect packet loss)
>
>
> How does this work for UDP?
>

Sending packets no larger than 1280 bytes is always an option, and in
the case of UDP-based request-response protocols such as DNS that do
not have connection state, it may be the only feasible option.

Anyway, the point I was trying to make was not to argue about better
or worse methods but rather to dispute the statement that PMTUD is
essential for avoiding black holes. I don't believe that it is. The
draft itself explicitly says that "IPv6 nodes are not required to
implement Path MTU Discovery."

> > My remark about heritage is that this vintage draft is very much a
> > > product of its time, and really needs modernizing, and after
> > > modernizing ought to look quite different, and thus maybe we
> > > should employ a procedure other than a simple replacement.
>
> I am afraid that I have to agree with this. Classic PMTUD by itself
> is today not enough, but it can be a very useful optimization to
> augment other techniques.
>
>
> OK.
>
>
> > It's proposed for Internet Standard. That means it must replace the
> > PS document and must specify the same thing, plus corrections,
> > minus unused features.
>
> All true, and my conclusion is that is it should not be promoted to IS.
>
>
> What criteria for advancement to IS do you think are not met by this
> document?
>

I do not dispute that the document has met the formal criteria for IS in
Section
2.2 of RFC 6410. I would argue, however, that its failure to provide a
complete
solution for environments where delivery of ICMP messages is not assured
constitutes a significant technical omission for today's Internet, and I
note
that per RFC 2026 Section 4.1.1, even a PS "should have no known technical
omissions." What I am asking the community, and the IESG, is whether it is
wise to advance a document with known technical omissions; it seems to me
that the Gen-ART reviewer has raised much the same question.

I would have no problem with republishing at PS to correct the errata
> and aid the eventual advance of RFC 4821 (PLPMTUD).
>
> If this document does go forward, the words in Appendix B (Changes
> Since RFC 1981) relating to RFC 4821 should be removed, since
> there was no mention of RFC 4821 in RFC 1981.
>
>
> Not sure I understand your concern. This is a change log since RFC1981.
>
And it is a fact that the reference to RFC4821 was added into this draft.
>
Can you clarify?
>

My apologies, I wrote that too hastily, before reading the complete change
log, which contains a description of what changed in each draft as the
document proceeded through the WG process. The comment that I should
have made is that many of those details are not useful to readers of an
archival document. Looking at a diff between RFC 1981 and this draft,
the substantive changes pretty much boil down to these:

      - In Section 1, added a reference to RFC4821 along with a short
        summary of what it does.

      - In Section 4, added text to discard an ICMP Packet Too Big message
        containing an MTU less than the IPv6 minimum link MTU and removed
        the corresponding note specifying actions that were removed from
        [I-D.ietf-6man-rfc2460bis].

      - In Section 5.2, removed text regarding RH0 (since it was deprecated
        by RFC5095) and removed text about obsolete security
classifications.

      - In Section 5.2, clarified that the tentative PMTU must not be made
        smaller that the IPv6 minimum link MTU.

Regarding that last change, I got confused when I was reading the current
text
in the draft:

   The node then uses the value in the MTU field in the Packet Too Big
   message as a tentative PMTU value or the minimum IPv6 next hope MTU
   if that is larger, and compares the tentative PMTU to the existing
   PMTU.  If the tentative PMTU is less than the existing PMTU estimate,
   the tentative PMTU replaces the existing PMTU as the PMTU value for
   the path.

I initially took the words "minimum IPv6 next hope [sic] MTU" to mean the
next
hop MTU of any link on the node, which of course is not what it meant. Maybe
I'm being dense, but it wasn't until I looked at Donald Eastlake's INT-DIR
review (https://www.ietf.org/mail-archive/web/int-dir/current/msg00339.html)
that the correct meaning finally dawned on me. May I suggest saying
 instead:

   The node then uses the value in the MTU field in the Packet Too Big
   message as a tentative PMTU value or the IPv6 minimum link MTU if
   that is larger, and compares the tentative PMTU to the existing
   PMTU.  If the tentative PMTU is less than the existing PMTU estimate,
   the tentative PMTU replaces the existing PMTU as the PMTU value for
   the path.

In other words, s/minimum IPv6 next hope MTU/IPv6 minimum link MTU/.
That makes the terminology consistent with the rest of the document.

Thanks and regards,

Mike Heard