Re: Comments on draft-hinden-6man-hbh-processing-00
Tom Herbert <tom@herbertland.com> Mon, 15 March 2021 22:32 UTC
Return-Path: <tom@herbertland.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 80E513A1147 for <ipv6@ietfa.amsl.com>; Mon, 15 Mar 2021 15:32:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u2PFx2zqdb-G for <ipv6@ietfa.amsl.com>; Mon, 15 Mar 2021 15:32:37 -0700 (PDT)
Received: from mail-ej1-x62b.google.com (mail-ej1-x62b.google.com [IPv6:2a00:1450:4864:20::62b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 745953A1152 for <ipv6@ietf.org>; Mon, 15 Mar 2021 15:32:37 -0700 (PDT)
Received: by mail-ej1-x62b.google.com with SMTP id mm21so68897079ejb.12 for <ipv6@ietf.org>; Mon, 15 Mar 2021 15:32:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=b5aikOgQ/BMck5oyx47imPcmcnEKq5Lxp42SRipP4HE=; b=Zc0XycC0y/pJqkZjW/uTAYwyD2JNcV3uyi6LDMTUOusiB0pvItnpZ5yJFDJKeTPaor jFPmvRJrOSOfM/jQbCA4vtZEm6SSfW6RZ6yDzV2yTfJyBo0vGsnM1fenSG+dfHm+4RxP AkIv8gcHBwNXo58KsHeOuqX95KKtH3ket/F0y7MoFb9r7a/dMRauPpHW0n3XfZwx8XkX PvBIhdy5swItTVraU8SyOJqUIZFdeEQ2A/cHOlil7BtUzNg06zOAN7sxvIc+Tyxmrbcc 6FLe8+hu7N/X/kHFKv1M/p5bbfrSoAhEkD6G2VhVUGJa4sBEdxFzb9z5+ud7A88rRpx8 EH6Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=b5aikOgQ/BMck5oyx47imPcmcnEKq5Lxp42SRipP4HE=; b=P6/dHo4QAgBk88+oA9P1DxG9XVDTpv/yXbAPFDSQrmjQUctVJ4Ybf/efYCpWbKTb8m l/VCi23Jbg9WFJrJOggLGEyqA0ELN+Aa2byph1WhoV67WFd0PzFwbhZtbPH4mnV0PcSm m/Tq5vSqAMZ8XyXv1mLZNeHG8paRH9u9jdZefHAGUL1Oy9IDh3eH8p9QqMn+ebbC9v1K 9el26jejug3qLF9VHcmZe/x2RwyAvE/310d/o21TfObGvV3sZEga0Ae/0IoOQS7xQ5+K JFZkJKZqQeYoGRfddQ2DfvqCOgQwmZr1le3K4+dPgKoUWJLbRQg4ijg7CxbouTYuZFcd jthw==
X-Gm-Message-State: AOAM530SkQnJZ8kPsu59v892iXYLMv1P+nIRH/ERtiyPV4iuuQLxFQUM l2704mtXG3TQ4H9CzjD42RXdnfN8sPecsaRseYcBJg==
X-Google-Smtp-Source: ABdhPJwU960IvGLqS4WEKDPa4LY/ZKNRjAKbFR6FAHyeTIVGZs2bE/UtrKg3Jcf564EGZMlJXQKXPb6kTefyjncMvRc=
X-Received: by 2002:a17:906:4146:: with SMTP id l6mr26772664ejk.295.1615847555795; Mon, 15 Mar 2021 15:32:35 -0700 (PDT)
MIME-Version: 1.0
References: <CACL_3VEWhSyQt+uz5HyntJ_haYadNMHuCMQCiRY8FW-ntBoLAQ@mail.gmail.com>
In-Reply-To: <CACL_3VEWhSyQt+uz5HyntJ_haYadNMHuCMQCiRY8FW-ntBoLAQ@mail.gmail.com>
From: Tom Herbert <tom@herbertland.com>
Date: Mon, 15 Mar 2021 16:32:24 -0600
Message-ID: <CALx6S37Qj7gyuvKuGkgR5A_hycOo29JCBPAmucLPSqJFYX1jbA@mail.gmail.com>
Subject: Re: Comments on draft-hinden-6man-hbh-processing-00
To: "C. M. Heard" <heard@pobox.com>
Cc: Bob Hinden <bob.hinden@gmail.com>, Gorry Fairhurst <gorry@erg.abdn.ac.uk>, 6man <ipv6@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/xczAsDow45B0V7XX4MP35sM3Z0k>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Mar 2021 22:32:40 -0000
On Sat, Mar 13, 2021 at 5:37 PM C. M. Heard <heard@pobox.com> wrote: > > Greetings authors and 6man, > > Following IETF 110, I read the draft and reviewed both the slides and the mailing list traffic in the first half of December 2020, and I am afraid that I must echo the following comments made by Tom Herbert on Fri, 04 December 2020 01:43 UTC: > > I understand the motivation for this draft, but I don't believe that > forcibly and retroactively restricting a feature in a well deployed > protocol is the right approach to fix the problem. > > It seems to me that the draft has chosen the most disruptive possible way to restrict the number of options in the HbH header. It seems to me that the objective could be accomplished in a much less disruptive fashion in either of the following ways: > > (a) specify that nodes that process the HbH options header MAY ignore all options after the first; > (b) specify that nodes that process the HbH options header MAY ignore all options after the first non-PAD option > Hi Mike, I might suggest that this could be generalized as: 1. An intermediate node may process all HBH options (per RFC8200) 2. An intermediate node may ignore all HBH options (the relaxed requirement in RFC8200) 3. An intermediate may process a subset of the HBH options. The subset of options processed for some packet would be precisely the first N consecutive non-padding options. The remaining options, those after the first N options would be ignored. N could be determined per device subject to limits such as the number of HBH options a node is willing to process, or the byte length of the EH or IP header chain. Coincident with these requirements should be some SHOULDs to give guidance to the host creating HBH options: like an intermediate device that processes HBH options SHOULD process at least the first 8 non-padding options, and SHOULD process HBH options that fit within the first 148 bytes of the packet (the value of 8 is derived from the suggested limit in RFC8504, and the 148 bytes is based on the assumption that parsing buffers in modern routers are typically at least 256 bytes, so IPv6 header and 128 bytes of options is 148 bytes and leaves 106 bytes following HBH EH for router to parse. If a device fixes N to be one this degenerates to your proposal. If N=0 that degenerates to #1, if N=inifinity that degenerates to #2. This model does imply that hosts should not create option lists that creates a processing dependency from one option on a later option. The sending host would need to assume that any number of consecutive options might be processed, and trailing options ignored. I haven't looked closely, but I don't think offhand there are any defined options that would break things if this subset processing happened. The host would also be motivated to order the options by the importance that they are processed. Tom > Alternative (a) is somewhat simpler, but would require re-specifying any option that requires padding in front if it stands alone inside the HbH header, As best I am able to determine from a review of the existing HbH option specifications, IOAM is the only one that is so affected. Alternative (b) would avoid even that, but it would also require a bit more work from a compliant node. > > Either one of these alternatives keeps the specification the same EXCEPT for relaxing the minimum a node is required to meet. Nodes that can process more options would be allowed to to do. That avoids disruption of systems that are already deployed and could be useful in limited domains. I do not see what is gained by requiring nodes to enforce a one-option limit. > > I note in passing that the proposal to extend RFC 8504 (IPv6 Node Requirements) to apply to intermediate systems would have the same general effect, but would put the simplicity vs capability tradeoff at a different point. > > Mike Heard > -------------------------------------------------------------------- > IETF IPv6 working group mailing list > ipv6@ietf.org > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > --------------------------------------------------------------------
- Comments on draft-hinden-6man-hbh-processing-00 C. M. Heard
- Re: Comments on draft-hinden-6man-hbh-processing-… Tom Herbert
- Re: Comments on draft-hinden-6man-hbh-processing-… Bob Hinden
- Re: Comments on draft-hinden-6man-hbh-processing-… C. M. Heard
- Re: Comments on draft-hinden-6man-hbh-processing-… Tom Herbert
- Re: Comments on draft-hinden-6man-hbh-processing-… Bob Hinden
- Re: Comments on draft-hinden-6man-hbh-processing-… Greg Mirsky
- Re: Comments on draft-hinden-6man-hbh-processing-… otroan