IETF Logo Mail Archive

Re: [Last-Call] Tsvart last call review of draft-ietf-lisp-pubsub-10

Magnus Westerlund <magnus.westerlund@ericsson.com> Mon, 30 January 2023 08:46 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: last-call@ietfa.amsl.com
Delivered-To: last-call@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C7147C152567; Mon, 30 Jan 2023 00:46:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xR2aQ42lLwrC; Mon, 30 Jan 2023 00:46:39 -0800 (PST)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-db3eur04on062b.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe0c::62b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 95FEAC1524A3; Mon, 30 Jan 2023 00:46:38 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=YRu0mkm+qnRHtYm1aW8zPNFYk+RbcQAAp9QtvdUtaImNeuBkETl9Dj2pgVEEk13C7WXFWHiOh5nsJpccqjeB8Dm0iE8trDNfcm4Kh24ul/0QDYGtcOdGA6v977Jf3LuEVeshA/e2Ij4ec9tJjyDHLCA96bFje84ocEb0hl6Ou//Wot+Lhm0R4BXvWc2eGGMyafvW6Hwp3Hf5fLf0Y828AK99rmXKlFEq+D14zp01OxZ8ewHDr5tjanWtt7lObd6zMrUlXmz+31BDXV/8iek2w62ywgCKzKH1T1SWpFE8gnpmk6Vl2Q7URjB2r8OaOtaMVmR0/k7BRZEblMyX7hKQTA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=+IimKuQSQr7jx+RgkYlT5EhrDnvr+HveUwL9FAAjrok=; b=gEFPF55202ZGslO0U+bKN2Np+ZRmONPdafjEfzGdjd+nQjP36DvaJMaj5Cpz0dMJRwra3M5R1XYZH0Zrv11hFfV6Ik16DyhtgPaP8coYdg9Yt6UrPXrTx+v9psOOcD+QkTjpYvvVPAl767v8f/fc82mlh6cpUeCYHmw10gXBedY7OliFGwRhVfPBH8H5tSyubspMXcfPLQ1NltZAkvJr2Hb1T36fVkljewhYciwss63e0djRWL3pLJQyo/jkDUtK4OVBfaU8kddHl7fSwpnCe//omprJo+jXA7gkqnAaxkPZJMFKZxyK+nUWW8O+vPqEt/TWmGodEluYnRRkX8k5jQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+IimKuQSQr7jx+RgkYlT5EhrDnvr+HveUwL9FAAjrok=; b=od7h6/AWi8vbju+1CLHw87eK3AmPUrPpgvPIfJm1f7S5/yV87nyGG05FrgTjfcHITIMncrAOwHaeGi0jxarrATIXuIdh9dvUXYSgdpTIpsfeWAQ8nP0FvKoUuHz6Ku5e1sqCAvc1XtdEVGDAiiXG0GunMfpRg9iB1bKr8sthS7Y=
Received: from PA4PR07MB8414.eurprd07.prod.outlook.com (2603:10a6:102:2a2::6) by VI1PR0701MB6765.eurprd07.prod.outlook.com (2603:10a6:800:192::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6043.36; Mon, 30 Jan 2023 08:46:34 +0000
Received: from PA4PR07MB8414.eurprd07.prod.outlook.com ([fe80::2cfd:3a5f:2384:4fb8]) by PA4PR07MB8414.eurprd07.prod.outlook.com ([fe80::2cfd:3a5f:2384:4fb8%9]) with mapi id 15.20.6043.033; Mon, 30 Jan 2023 08:46:34 +0000
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
To: "Alberto Rodriguez-Natal (natal)" <natal@cisco.com>, "tsv-art@ietf.org" <tsv-art@ietf.org>
CC: "draft-ietf-lisp-pubsub.all@ietf.org" <draft-ietf-lisp-pubsub.all@ietf.org>, "last-call@ietf.org" <last-call@ietf.org>, "lisp@ietf.org" <lisp@ietf.org>
Thread-Topic: Tsvart last call review of draft-ietf-lisp-pubsub-10
Thread-Index: AQHZMkYxC7tnSkEQHkqRP3thDixUHa6yPOtjgACfp4CAA8v+cQ==
Date: Mon, 30 Jan 2023 08:46:33 +0000
Message-ID: <PA4PR07MB841490F87F0292E96607BB9395D39@PA4PR07MB8414.eurprd07.prod.outlook.com>
References: <167456640879.36895.3989101552718202380@ietfa.amsl.com> <BYAPR11MB359131C95C3B55FB19B0B575B6CC9@BYAPR11MB3591.namprd11.prod.outlook.com> <PA4PR07MB84143D406EC92346AC4E975695CC9@PA4PR07MB8414.eurprd07.prod.outlook.com> <BYAPR11MB35912510B6C6658609843A85B6CC9@BYAPR11MB3591.namprd11.prod.outlook.com>
In-Reply-To: <BYAPR11MB35912510B6C6658609843A85B6CC9@BYAPR11MB3591.namprd11.prod.outlook.com>
Accept-Language: en-US, sv-SE
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PA4PR07MB8414:EE_|VI1PR0701MB6765:EE_
x-ms-office365-filtering-correlation-id: fb3eccdc-7e85-47f9-29c5-08db029e7db0
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PA4PR07MB8414.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230025)(4636009)(136003)(396003)(346002)(366004)(376002)(39860400002)(451199018)(2906002)(52536014)(5660300002)(38070700005)(86362001)(44832011)(82960400001)(83380400001)(8936002)(41300700001)(71200400001)(478600001)(26005)(9686003)(7696005)(53546011)(186003)(6506007)(55016003)(33656002)(110136005)(38100700002)(66556008)(66476007)(66946007)(64756008)(91956017)(66446008)(4326008)(76116006)(8676002)(54906003)(122000001)(316002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: N4qsAstRXY2dQnETSfSgkDDA/9v4kJVkUZc27MGtRoSmmX69YiPwpznoA8zVDPk4P6fEDgCZGquwVbNFAJdxUP7CABLDyaRwr4baXVkG7iTqSXbqH/2y2BAI3f6GmDvvxm/g0HbZNLNvV2UGpiFMSCRRaKC/qVBGxQxtDbksYOzfjEfaHAcobu7Wcnlq7InPLZ/Xss2a3ZWXm+T98kokJp6cnVED32tadvzuAwgqTNqsfvpu5NfG6Eln8s0jzW7/wuTmOdG24XATZ2vELXeP3Yltn7qfAzVlaNYxTVVIgwaYmVK06nbN6vOjju2Ym9M6YvlI9Fg+CideLqUMJhl1yq51lcYlP7NzCqmF2jXdJXdn9TetjzWIV8skfHNEFmXrw3uf6qc/6yVuE6sjZxnhRqr/xlw1Gj/pN2CF/f+2X+yWfoRqc8g2hgpuBO3mfkwRQVD7TbR/G5JAwpahtLS2Tkecgs++Jb5GCK89Yk1z2Wlkrjh9Un3JmC1EVECkixCbz2+NzH7aM9KI8q3WM9ecqne6m5TmA40m3sPtqx9DhCZL22JgyPtIlSSxT+vzn5I4CLGnbHNfyOwCwnMOKwqvQk5S2EQowevlUeqcMDWMSWhnfcqLaZ8c2sVbXEOkJmafwBrNdzrMNXl9XzYWk1XEvDjS1ZZa7wwQ269ohZfWAB3BNjPvd/Xz8xbmP3mQIMPCzv21ss4I9bVq4U6Vyc+FN6Nq6L1cqTkD9cQCHgsHI1kGlno7Mxbpdl3Mtu+z43lM7YoeeDurmJqnVDEYcIYwfrdyFqmtFshjAbCBn+xW3MCj0xDlD2zxtpe2DFSQofWzFrrsfXL3UUuKSzoaq8Hm2bqcRqwMb3r40rGGoUhIOE2LudrYZmNkvudZUBEVXtfnENAkiX+JxQDDtpKplkbspI1rh3gHHUTMuL8hUQU6J/N53UMyIY6q3a6EGzN0wCSulSAIUlXcj32forPQE/G9iWLjeiQK7ZKRuNg7ijdx/EbxQftA5pfbC3Ajed6UD1oDZASk66bhr1K399UHILx4l8EF+LefrrWVfzCkkKPSvQuYH6r0fuiUey74Y5/opUAUqz9AOU7eJ8rCAIlZ0Wg34JQTaLuIs0pi5JynnynjdSRs8Q5qpBlXTN2gqLWQUyhzJCwrytuZwdOkIjx9iN3NIweMxPo4lZIozHuiJ7Disdi3IaV837lfCZ9HToQnGQ1zI557YrJ0cnqjFPJHEg+XBEKppilBd4fBvlb4SZn6csSnoUY+J/Q9TMBA63SVVJrbKhmDsy4shVsq7xDPmNT1Xo46ooyhldDPPPw2e9hexP38EaYQIdOeocODP+XfvthlfcSyZ3+R7q0YsuxNV3AS2YnUxbiMaquKKV5hcEuYcldvhmgwnSWLmH8jvYVeE6bDiSCZ86pAsChvVr9sNZaib/p4jwkmOLZDluxIzWw0InMQLPlvPc1dlVI1gomASpKXoIXjkL8hPDBIEOzXyYoO2jtpbWAq4qXu6j7jpRfW0nEbBk5LN8rz6xE9s/7b8D6Nqjf5U/zAqBGSZWBGqDoxhOxhCSSelwYjNuXjqKX9GcSewZKNTTpDH040keQM6gE0dEBvXAYcZ7QI4gjV1Y4c4TzfHontt7akebyALp0fUKU=
Content-Type: multipart/alternative; boundary="_000_PA4PR07MB841490F87F0292E96607BB9395D39PA4PR07MB8414eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PA4PR07MB8414.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: fb3eccdc-7e85-47f9-29c5-08db029e7db0
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Jan 2023 08:46:33.9530 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: PVx4MBKnS2xlX6OQP/MKxD6iLRboUoK+FVShXLo0wARm/3Xh9RBL+6U1ezVFJ5GziNy5HXP34QnQdip4J0BbtotqjMkDOHBVJk+vPnT2mwQ=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0701MB6765
Archived-At: <https://mailarchive.ietf.org/arch/msg/last-call/6dVrculrdNjzS3-_oAT0v1N-8gY>
Subject: Re: [Last-Call] Tsvart last call review of draft-ietf-lisp-pubsub-10
X-BeenThere: last-call@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IETF Last Calls <last-call.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/last-call>, <mailto:last-call-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/last-call/>
List-Post: <mailto:last-call@ietf.org>
List-Help: <mailto:last-call-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/last-call>, <mailto:last-call-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 30 Jan 2023 08:46:43 -0000

Hi Alberto,

I think the below maybe works, but I like to point out that the Map-Server per the below is likely a larger DDoS traffic reflector than if you require a one-to-one exchange where each subscription request only results in a single response message. Using Map-Notify and requiring Ack will result in that at least 3 Map-Notifies are being sent.

I am also worried about the state uncertainty here. Because if the client sends Map-Notify-Ack on a Map-Notify it will think the subscription has succeeded, but if that ACK is lost and the MapServer has used up all retransmission it will silently remove the requested subscription. Is that not an issue?

Cheers

Magnus


From: Alberto Rodriguez-Natal (natal) <natal@cisco.com>
Date: Friday, 27 January 2023 at 23:42
To: Magnus Westerlund <magnus.westerlund@ericsson.com>, tsv-art@ietf.org <tsv-art@ietf.org>
Cc: draft-ietf-lisp-pubsub.all@ietf.org <draft-ietf-lisp-pubsub.all@ietf.org>, last-call@ietf.org <last-call@ietf.org>, lisp@ietf.org <lisp@ietf.org>
Subject: Re: Tsvart last call review of draft-ietf-lisp-pubsub-10
Thanks Magnus, please see inline.

From: Magnus Westerlund <magnus.westerlund@ericsson.com>
Date: Friday, January 27, 2023 at 2:26 PM
To: Alberto Rodriguez-Natal (natal) <natal@cisco.com>, tsv-art@ietf.org <tsv-art@ietf.org>
Cc: draft-ietf-lisp-pubsub.all@ietf.org <draft-ietf-lisp-pubsub.all@ietf.org>, last-call@ietf.org <last-call@ietf.org>, lisp@ietf.org <lisp@ietf.org>
Subject: Re: Tsvart last call review of draft-ietf-lisp-pubsub-10
Hi Alberto,

See below.

The complete exchange for a subscription operation would be:

1) xTR->MS (Map-Request)
2) MS->xTR (Map-Notify)
3) xTR->MS (Map-Notify-Ack)

It is true that 3) is not explicitly stated on the PubSub document today, but it is required to align with RFC9301. We should update the PubSub doc to explicitly mention 3). I believe that having 1)+2)+3) explicitly stated should address your concerns regarding return routability check, what do you think?

MW: So if the Map-Notify-Ack would be part of the subscription process, such that 3) has to happen successfully for the Map-server to actually install the subscription in its state then it would work. But, I get the impression that the map-server will install the subscription already as 1) has been completely processed.

[AR] I believe we could do the following. We can update the text to specify that (1) the xTR must send this Map-Notify-Ack as part of the subscription procedure, and that (2) the MapServer should treat the subscription as incomplete until the Map-Notify-Ack is received (and therefore no publication will be sent to the xTR on the meantime).

I base that on that there are no process or error notification that would tell the xTR that its subscription request has failed as the MAP-Notify-Ack never reach it.

[AR] Note that if the MapServer does not receive the Map-Notify-Ack it will retransmit the Map-Notify (following the guidance being discussed in the parallel thread). Also note that section 5 of PubSub already specifies that:

If the subscription request fails, the Map-Server MUST send a Map-Reply to the originator of the Map-Request

What I think should happen here is. If the xTR never talked to this MS. Then the signalling looks like this.

1) xTR->MS (Map-Request)
1.1 MS->xTR (Return routability challenge with token)
1.2 xTR (Return routability ACK (with token))
2) MS->xTR (Map-Notify)
3) xTR->MS (Map-Notify-Ack)

Then the MS can install the subscription when it sends 2), and 3) is only a transport level ack, that is really not needed, as the xTR I would expect to retransmit 1) after a timeout not getting the answer.

Note 1.1 and 1.2 only happens occasionally if it hasn’t been run for the given xTR ID + RLOC the last 15 min or so.
So if one does multiple Map-Requests with subscription it only happens once.

[AR] I think this is a solid suggestion. But I would love to first explore if we could achieve the same thing using current machinery. Kindly let me know what you think of my suggestions above and if you think we could converge following that path.

Cheers

Magnus

v2.23.0 | Report a Bug | By Email