RE: [Errata Held for Document Update] RFC8200 (5933)
Ron Bonica <rbonica@juniper.net> Wed, 04 March 2020 20:02 UTC
Return-Path: <rbonica@juniper.net>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 925B13A0437 for <ipv6@ietfa.amsl.com>; Wed, 4 Mar 2020 12:02:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=Z7JoLhZz; dkim=pass (1024-bit key) header.d=juniper.net header.b=VlmETAhA
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gA_WNZcc0bmM for <ipv6@ietfa.amsl.com>; Wed, 4 Mar 2020 12:02:03 -0800 (PST)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B74443A0788 for <ipv6@ietf.org>; Wed, 4 Mar 2020 12:02:03 -0800 (PST)
Received: from pps.filterd (m0108156.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 024JvQWr011525; Wed, 4 Mar 2020 12:02:01 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=OgLzpwOFrIBakcAZLQp+G20a9/J2ZunFnA/XYSkpXBI=; b=Z7JoLhZzgbk4lRI04vwPYz1eEydRv0TL3I3+iqhOLdbeG32y+kAcAv3a1IfVaj5FM9yN dab9i9whdxbfQ3aeGSzWVoUJxqRXPSdyvXQv4+vi1lWMqZ1TaW1Hrc+lW/ET7ZPkZfTt abqeBC5hQIxS/zy4KAN1pxHOcBY5NX+FbhzVCT2wmO8iFgkFMChUGFQbhPthUCJ9sRY3 RUxE4iROeSkNHU7oxY6JZbjcRaNGECEgIIxZssHWqzWMydOHnv1B5JBrObx4b8CKHcYz 42Z0TPTbZSHw77EAvie41NvL3PTVKX3XKOl74PP4K3zBOBPxiR7RNXxl5YRsjILxAJkD iA==
Received: from nam12-dm6-obe.outbound.protection.outlook.com (mail-dm6nam12lp2171.outbound.protection.outlook.com [104.47.59.171]) by mx0a-00273201.pphosted.com with ESMTP id 2yh5yen2fk-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 04 Mar 2020 12:02:01 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ZtvJpm9sBvbME9p9VYXTjOpCnfpQbiPidcmiTuQd71R228POHq8ekwsmXGmwLWGC4nL5V6p91pUIQyFzOFEOt6HtnfWzU6zgY0CibtXu/eWj99hM8umLAm69Is0CJiBtbqbFlf8j+Dp+/sIDqaahqpvdcWfZ9Ej6aeWIcOg3rhOPsSB9nqwcmsLkNVAwcUoBYVCFkh7TX21cgawN50f8UxMWja+QIu6EMP/TRPJ9g2Y2UlSIlcu5sL0+Nypkfxq0BRK+NFEwvcRd3qbBMeqCEgBQpUMOX8+LNPcm7zSHMARCqfE8wwkJEzE5stexdbO/KUxxsl5yokS1QQWO0Q9T9Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=OgLzpwOFrIBakcAZLQp+G20a9/J2ZunFnA/XYSkpXBI=; b=eOlJicUamwjHJDKdQjVxdKFdUz4IoTJweM1VUHWILS8n+Ke20o9wUCVVzZ1wAZKu2Y2Jux1eh+FH/txnwGQ5BiLkIc5vm2NFvIJ2swRbW6Rq8Nnkw/sXIYK+KmWbureHmFQepx69I/UTCRe1SZJc9oKgYTBq1geFFHDAMF63uQxgToSZOKDMTfj0iSQokMCgcLQ9ldjFd1JyWB3J9q6gztenDqiwd3VSAewHimwXbOi2sn2/KygwbnpjDfUipoPs2RBl4Br95MACLglz9u2imJfBMvrU1EoZ0xXwXi+SbcyAjSrmXQ49EK2Am8bHkwjvJ3ns8k/Ep5FEOZ2uYjkvBw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=OgLzpwOFrIBakcAZLQp+G20a9/J2ZunFnA/XYSkpXBI=; b=VlmETAhAcgiFLsaW6dvZmRTwhMZTk1TDYDOse90et1+9NHX/l7Wf0E+GR9R42j0PdmBudOltxHePGrNJZypbZ58iZ3w9bLoxWu80uhlZotOM2VfuCXsGGPaYHcc+HlWUjmJtXJn+xuXW3HKUf3st7yRCHNSUeqrKbZy6MESth4g=
Received: from DM6PR05MB6348.namprd05.prod.outlook.com (2603:10b6:5:122::15) by DM6PR05MB6508.namprd05.prod.outlook.com (2603:10b6:5:12e::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2793.9; Wed, 4 Mar 2020 20:01:59 +0000
Received: from DM6PR05MB6348.namprd05.prod.outlook.com ([fe80::cdd:ea54:f213:7e02]) by DM6PR05MB6348.namprd05.prod.outlook.com ([fe80::cdd:ea54:f213:7e02%5]) with mapi id 15.20.2793.013; Wed, 4 Mar 2020 20:01:59 +0000
From: Ron Bonica <rbonica@juniper.net>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, Philip Homburg <pch-ipv6-ietf-6@u-1.phicoh.com>, "ipv6@ietf.org" <ipv6@ietf.org>
Subject: RE: [Errata Held for Document Update] RFC8200 (5933)
Thread-Topic: [Errata Held for Document Update] RFC8200 (5933)
Thread-Index: AQHV8ELljXq6aNBbakeZNfCuT64n1ag0rYOAgADSV6CAATPbVIAAtUgAgAFXMnA=
Date: Wed, 04 Mar 2020 20:01:58 +0000
Message-ID: <DM6PR05MB63485B4BE35E2A5F0FDF149EAEE50@DM6PR05MB6348.namprd05.prod.outlook.com>
References: <20200302032940.9DE2EF406F3@rfc-editor.org> <3e4b460e-b77a-e04b-d7fc-d4cb889c284d@gmail.com> <DM6PR05MB6348A46BE210A777CDE302C6AEE70@DM6PR05MB6348.namprd05.prod.outlook.com> <m1j95Bl-0000JPC@stereo.hq.phicoh.net> <253810a2-bc07-5673-fb22-92d0f435888c@gmail.com>
In-Reply-To: <253810a2-bc07-5673-fb22-92d0f435888c@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=True; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4;MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Owner=rbonica@juniper.net; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2020-03-04T18:27:31.0307838Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Business Use Only; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Application=Microsoft Azure Information Protection; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=d08887cf-6976-4860-8bd7-af56f391495c; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Extended_MSFT_Method=Automatic
dlp-product: dlpe-windows
dlp-version: 11.4.0.45
dlp-reaction: no-action
x-originating-ip: [108.28.233.91]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: a1da9221-425b-4caa-3f1c-08d7c076e5ca
x-ms-traffictypediagnostic: DM6PR05MB6508:
x-microsoft-antispam-prvs: <DM6PR05MB6508C066A3ABF762C4DA2612AEE50@DM6PR05MB6508.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 0332AACBC3
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(396003)(376002)(136003)(346002)(366004)(39860400002)(189003)(199004)(15650500001)(52536014)(316002)(5660300002)(66574012)(6506007)(53546011)(110136005)(71200400001)(26005)(33656002)(478600001)(76116006)(7696005)(66556008)(66446008)(64756008)(186003)(66946007)(66476007)(2906002)(9686003)(86362001)(8936002)(55016002)(81166006)(81156014)(8676002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR05MB6508; H:DM6PR05MB6348.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: bthaoJJcf5q0RZsZkpVHLC5LD7fCa+O7GjbngPp+QlJJDy5qpkNeeRcMtzQfI/k0sJ9+2f6SIPhnjsBX1qAo1k2PXlqjWpao0+Et817J/VUOKGD37HRA8J6hNqStPF9CSM/QFz2Byn1BZKhJ46jfZMhmNK6NgBgmLp2K81JGZvc6XHRktdFSD256gtgKxnGCCwzykA+EqBC8PcpWusu7ywU81k5QLsJam7DFPo38LOR3qGvf2JY/LdZWkUF9r4GWMC0jvFhGMjIWmwVhH+M1pTsFTOdX4rV0eDajbKQaQutg9QSmcoPx9U8EAqT7kv2jBeqp3Ohxrvcm+WxrprSlvzPWpB77+U75YMwame+WEtOFz7bT6fWxO8oLbo2NjQePBF6cgk00l7FGKg50Yl2422n456Jdi4ghfBGw6EzZ4btZqpGwIEcDyVEJ3iwfcPRH
x-ms-exchange-antispam-messagedata: cAqNn0yTn4WI+oyWzFdEEzegemPGiCfe0m/M2EK6Y2waUDHkPLthF0saceYSPd2q/ZS7pwdbLqigOPsJpn6Yse7PMvHthzlmgQ3W7cIa9V6JEM1GbgeQKw2O6qVfs332yoFGDoieuyjhmT77GQUUPg==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: a1da9221-425b-4caa-3f1c-08d7c076e5ca
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Mar 2020 20:01:58.8576 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: UqIyJFqs3yGsrg1REnGUjgDavsMHoSnncd3I/fwijPizr3iqlgasYIqRxkpzQ5raYfTUeltQDpGkOnMf9MMLrg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB6508
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.572 definitions=2020-03-04_08:2020-03-04, 2020-03-04 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 phishscore=0 priorityscore=1501 malwarescore=0 mlxlogscore=999 mlxscore=0 bulkscore=0 impostorscore=0 lowpriorityscore=0 suspectscore=0 spamscore=0 adultscore=0 clxscore=1015 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2001150001 definitions=main-2003040130
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/ZNPV18DsZdynjb-Xl8u6rmLvmVg>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Mar 2020 20:02:14 -0000
Brian,
I think a better formulation might be:
- PSP breaks anything that relies on the immutability of the Payload Length and Next Header fields
- AH relies on the immutability of the Payload Length and Next Header fields, but AH and SRH are incompatible anyway
- We don't know what else relies on the immutability of the Payload Length and Next Header fields.
If operators are lucky, nothing will break. If they aren't lucky, they will be unlucky.
Ron
Juniper Business Use Only
-----Original Message-----
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Sent: Tuesday, March 3, 2020 4:43 PM
To: Philip Homburg <pch-ipv6-ietf-6@u-1.phicoh.com>; ipv6@ietf.org
Cc: Ron Bonica <rbonica@juniper.net>
Subject: Re: [Errata Held for Document Update] RFC8200 (5933)
On 03-Mar-20 23:54, Philip Homburg wrote:
>> RFC 8200 has some fleas on it. When we reviewed the 8200-bis draft,
>> we couldn't see those fleas because we all knew what we meant to say.
I didn't know what we meant to say, because I never thought for one moment how the text applied to routing headers, where the destination address essentially becomes a variable instead of a constant, and where the Segments Left field is mutable by construction. So it isn't a "flea"; IMHO it's a major omission. (I feel a bit guilty, because we first missed it in RFC7045.)
> It seems to me that the bigger question is whether there would be
> consensus to update RFC8200 to allow whatever SPRING wants to do.
SPRING is not asking for an update to 8200; their claim is that it already allows the PSP action. You might disagree, of course.
> To some extent I'm surprised by this discussion. We allow NAT64 which
> violates core IPv6 specifications in serious ways. We happily write
> specifications for NAT64 without granting an explicit exception.
As a matter of fact, many of us are extremely unhappy about NAT64, but it's forced on us by operational requirements.
> And then for a relatively besign operation such as removing a routing
> header, we have to be as strict as possible.
>
> Ultimately, the important part is not what is written in RFC-8200.
> The important part is whether there is consensus that whatever SPRING
> tries to do a good thing or that it is damaging the internet.
IMHO the questions of principle (does it violate the words in RFC8200, and are those words correct?) are much less important than Robert Raszuk's
question: what harm does this do? And we have the answers to that, I think:
- doesn't harm PMTUD, because making a packet shorter on the last hop can't possibly harm PMTUD.
- doesn't describe AH rules (which fields are mutable), but AH is not used in SRH domains.
- may affect OAM mechanisms.
Brian
- [Errata Held for Document Update] RFC8200 (5933) RFC Errata System
- Re: [Errata Held for Document Update] RFC8200 (59… Brian E Carpenter
- Re: [Errata Held for Document Update] RFC8200 (59… Fernando Gont
- RE: [Errata Held for Document Update] RFC8200 (59… Ron Bonica
- Re: [Errata Held for Document Update] RFC8200 (59… Mark Smith
- Re: [Errata Held for Document Update] RFC8200 (59… Brian E Carpenter
- Re: [Errata Held for Document Update] RFC8200 (59… Mark Smith
- Re: [Errata Held for Document Update] RFC8200 (59… Tom Herbert
- Re: [Errata Held for Document Update] RFC8200 (59… Brian E Carpenter
- Re: [Errata Held for Document Update] RFC8200 (59… Fernando Gont
- Re: [Errata Held for Document Update] RFC8200 (59… Tom Herbert
- Re: [Errata Held for Document Update] RFC8200 (59… Philip Homburg
- RE: [Errata Held for Document Update] RFC8200 (59… Andrew Alston
- Re: [Errata Held for Document Update] RFC8200 (59… Philip Homburg
- RE: [Errata Held for Document Update] RFC8200 (59… Ron Bonica
- Re: [Errata Held for Document Update] RFC8200 (59… otroan
- Re: [Errata Held for Document Update] RFC8200 (59… Brian E Carpenter
- Re: [Errata Held for Document Update] RFC8200 (59… Fernando Gont
- Re: [Errata Held for Document Update] RFC8200 (59… Fernando Gont
- Re: [Errata Held for Document Update] RFC8200 (59… Zafar Ali (zali)
- Re: [Errata Held for Document Update] RFC8200 (59… Ole Troan
- Re: [Errata Held for Document Update] RFC8200 (59… Fernando Gont
- Re: [Errata Held for Document Update] RFC8200 (59… otroan
- RE: [Errata Held for Document Update] RFC8200 (59… Ron Bonica