IETF Logo Mail Archive

Re: [Lsr] bunch comments on https://datatracker.ietf.org/doc/draft-ietf-lsr-ospf-admin-tags

Acee Lindem <acee.ietf@gmail.com> Mon, 04 March 2024 20:56 UTC

Return-Path: <acee.ietf@gmail.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E345FC180B44 for <lsr@ietfa.amsl.com>; Mon, 4 Mar 2024 12:56:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id m6bDdnUy0cJD for <lsr@ietfa.amsl.com>; Mon, 4 Mar 2024 12:56:17 -0800 (PST)
Received: from mail-qk1-x731.google.com (mail-qk1-x731.google.com [IPv6:2607:f8b0:4864:20::731]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 29114C14F61E for <lsr@ietf.org>; Mon, 4 Mar 2024 12:55:48 -0800 (PST)
Received: by mail-qk1-x731.google.com with SMTP id af79cd13be357-787ac94bbabso240000885a.3 for <lsr@ietf.org>; Mon, 04 Mar 2024 12:55:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1709585747; x=1710190547; darn=ietf.org; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=Ae3NSrtgBr4SjSDYyAkQkuM8+ZUrV4XN5BXIClYuCY4=; b=G8BUxdVmfG0YSScQSAEBvn6cN7S8hQz8LN1veA4PqQgYA/1q+D/rM2gYNaCcBorCuT hGwB3zMFtIVqiHBw0oD5ITt4Cba+4oBxrLb7M9BiF4yBMWMudkwM/wkci2mD81tRWdOj z0DHRsO4532RWBonjwmjZdTAhP0WqJIJMBs4zPJwIjDdIhsV3OHgC0uDw/11gVDGBjFB sOaB5u9/7tTImDvNAlrsFmsRO/AjVBACJDli/ZZ0O1Wr2atxvzn5+vqP6HA1yGPJkQrj fUsJSvhEayFS5uSd6PXuPeZyPrhUL2VUC+AVQZGQ64rrxAt3XHoPAq4fdQ3Ecrk/pjPM y85Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1709585747; x=1710190547; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=Ae3NSrtgBr4SjSDYyAkQkuM8+ZUrV4XN5BXIClYuCY4=; b=i0KRA8ij8zQmLqU2WBTMN5X4TUsq0qkn+3k4tSMVRh8dWSfpp4RUWNcMiI88Q3BniW VVh7DgCTYA32AnHs2npcASAG4O4IhildHXLk06ziizbwpe6tPLXTTKPDXjRmaSaVa625 qRRvRjP+5ZPQ1kgkjGJwPKakC8P1iXFWoFMO8R4bu7v+ZndPdhhR9iITSCsiPKRpXfTI 25eT1umPq7CQUrl6MWI0a+i4B0eHv/hqX8nBDeG+cXXH669cwWLiOsc9V1iWzvd8rw/k fUwRxd3Zo/xJShPy3s6D/O724j4x5OgYE93TjGqrbaee7FXiirvX4SaSoAwfn4YyoYRS HpFw==
X-Forwarded-Encrypted: i=1; AJvYcCVLhQ10kk3uzb1G9CAd/ktvgZBe6ZldwN1w5cb2z4PvAO6vO5pJQMV7ABCeZEkp0H6LItrSx6AsJ79Kmkk=
X-Gm-Message-State: AOJu0YypOnbwXcq7+ArHM3pg+2TqgeSFEhFeWwhXwdPA6tB6Kn8N50kF S97HZOPuawvJDmVPto/cHH8+TZR4LCBRf78ntEk/ZTd8++/p8dYNVE8d4Tmz
X-Google-Smtp-Source: AGHT+IFyzxCaNg8Q5QfYqBS60kPmXKxDJNci651VBVDGTdhITeLaiSKoDdvbCtXR1QolcQJ2uet0lg==
X-Received: by 2002:a05:620a:a46:b0:788:28ef:88f with SMTP id j6-20020a05620a0a4600b0078828ef088fmr3744586qka.9.1709585746747; Mon, 04 Mar 2024 12:55:46 -0800 (PST)
Received: from smtpclient.apple ([2605:a601:9186:ba00:884c:a214:81bb:d4c3]) by smtp.gmail.com with ESMTPSA id o13-20020ae9f50d000000b00788269e5d5fsm1444167qkg.94.2024.03.04.12.55.42 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 04 Mar 2024 12:55:46 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\))
From: Acee Lindem <acee.ietf@gmail.com>
In-Reply-To: <BY5PR11MB43376565649C9E71FADC51CCC1232@BY5PR11MB4337.namprd11.prod.outlook.com>
Date: Mon, 04 Mar 2024 15:55:31 -0500
Cc: Tony Przygienda <tonysietf@gmail.com>, lsr <lsr@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <AB182B21-C95A-4F23-BC63-287CB6216E03@gmail.com>
References: <CA+wi2hMYEN9D3E-BjzX8E8FtEPjgkbN0Yc9F95h42CqLz=u2Rw@mail.gmail.com> <AF6DD69E-AAF2-4CF0-A3B4-774FE72AC58C@gmail.com> <CA+wi2hP6iFWJGvq28O+tKV1fBJuT73hxLA3B=E9B8cKiYYkWtg@mail.gmail.com> <44AD407F-2E1E-4289-8E2A-61AA55C7D8D4@gmail.com> <CA+wi2hM7rCczoBo=PoOYHKMY5REXTj+=KnXDwdYUmAE+j8DQbw@mail.gmail.com> <BY5PR11MB4337FB8169721C96686C7A1FC15F2@BY5PR11MB4337.namprd11.prod.outlook.com> <CA+wi2hMF+m6J0hCUOviPi0U_ivY4pYvrhJoJ3cdc3n5pMm2vQw@mail.gmail.com> <9F0711F1-5713-4C9E-813F-42EFC4962A8B@gmail.com> <BY5PR11MB43377040AF08FFFBD42D6A7DC1232@BY5PR11MB4337.namprd11.prod.outlook.com> <76B0E673-EC2B-4754-A609-0045B05C8749@gmail.com> <BY5PR11MB43376565649C9E71FADC51CCC1232@BY5PR11MB4337.namprd11.prod.outlook.com>
To: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>
X-Mailer: Apple Mail (2.3774.300.61.1.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/kLhVyZv4E21dFlsr6L4QzBY6RIU>
Subject: Re: [Lsr] bunch comments on https://datatracker.ietf.org/doc/draft-ietf-lsr-ospf-admin-tags
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Mar 2024 20:56:18 -0000

Hi Les,

> On Mar 4, 2024, at 15:48, Les Ginsberg (ginsberg) <ginsberg@cisco.com> wrote:
> 
> Acee -
> 
> Consider two ABRs propagating a prefix they received with three tags. One ABR supports only one tag and one ABR supports two tags.
> How do we insure that at least one tag is in common when the prefix is propagated?
> 
> Given that the only MUST here is that all implementations MUST support the first tag, it seems prudent to insure that the first tag is always propagated and it is always the first.
> Otherwise, routers will receive two advertisements for the same prefix and the first tag may differ.
> 
> I am not talking here about constraining local policies - it is already a given that if a customer wants to make use of multiple tags there is no assurance that all routers will support that.
> But we have specified that the first tag always remain the first. Mandating that on propagation insures that any policy associated with the first tag will work network-wide.
> 
> If you are not convinced, so be it - we have lived with the lax language in RFC 5130 for years. But some things may not be working because of that.

The draft already says this:

   When propagating
   multiple tags between areas as previously described, the order of the
   the tags SHOULD be preserved so that implementations supporting fewer
   tags will have a consistent view across areas.

Thanks,
Acee


> 
>   Les
> 
> 
>> -----Original Message-----
>> From: Acee Lindem <acee.ietf@gmail.com>
>> Sent: Monday, March 4, 2024 12:12 PM
>> To: Les Ginsberg (ginsberg) <ginsberg@cisco.com>
>> Cc: Tony Przygienda <tonysietf@gmail.com>; lsr <lsr@ietf.org>
>> Subject: Re: [Lsr] bunch comments on https://datatracker.ietf.org/doc/draft-
>> ietf-lsr-ospf-admin-tags
>> 
>> Hi Les,
>> 
>>> On Mar 3, 2024, at 11:41 PM, Les Ginsberg (ginsberg)
>> <ginsberg@cisco.com> wrote:
>>> 
>>> Not overly complicate things...
>>> 
>>> The requirement to ensure that the first tag remains the first tag when tags
>> are propagated suggests that the following language from RFC 5130 is a bit
>> lax:
>>> 
>>> "When propagating TLVs between levels, a compliant IS-IS
>>>  implementation MAY be able to rewrite or remove one or more tags
>>>  associated with a prefix..."
>>> 
>>> I think it is required that the first tag never be rewritten/removed when
>> propagating.
>>> 
>>> Acee - maybe you want to tighten up the language in the OSPF draft on this
>> point?
>> 
>> Why would we want to specify this constraint on local policy? Local IGP
>> filtering policies are not standardized today and, as you know, many non-
>> standard IGP policy implementations exist.
>> Thanks,
>> Acee
>> 
>> 
>> 
>>> 
>>>  Les
>>> 
>>> 
>>>> -----Original Message-----
>>>> From: Acee Lindem <acee.ietf@gmail.com>
>>>> Sent: Friday, March 1, 2024 10:27 AM
>>>> To: Tony Przygienda <tonysietf@gmail.com>
>>>> Cc: Les Ginsberg (ginsberg) <ginsberg@cisco.com>; lsr <lsr@ietf.org>
>>>> Subject: Re: [Lsr] bunch comments on
>> https://datatracker.ietf.org/doc/draft-
>>>> ietf-lsr-ospf-admin-tags
>>>> 
>>>> At the risk of complication, I've added text to clarify the ordering
>>>> independence (from RFC 5130) and the usage when multiple LSAs
>> contribute
>>>> to a path in -14.
>>>> 
>>>> I also specified the behavior for an invalid length - while I agree with Les this
>> is
>>>> a generic problem, it isn't necessary handled generically across IGPs, TLVs,
>> and
>>>> sub-TLVs. I'm used to addressing this class of comment,  Alvaroisms.😎
>>>> 
>>>> Thanks and have a Great Weekend,
>>>> Acee
>>>> 
>>>>> On Feb 29, 2024, at 2:05 PM, Tony Przygienda <tonysietf@gmail.com>
>>>> wrote:
>>>>> 
>>>>> sure, on the tags given how some people start to abuse4 those in
>> interesting
>>>> ways now ;-) I'm piping in here since I'm obviously talking through some
>> real
>>>> OSPF designs where the issue of which ones will make it may matter given
>> for
>>>> practical reasons we have to limit how many we carry ... ;-)
>>>>> 
>>>>> on the second point, don't write "this sub-TLV should carry at least one
>> tag"
>>>> if you don't specify what it means it doesn't carry one. No biggie, I just
>> edged
>>>> onto this when reading it ...
>>>>> 
>>>>> if authors are not interested in making the spec tighter, closing possible
>> holes
>>>> then I just pipe out of course ...
>>>>> 
>>>>> -- tony
>>>>> 
>>>>> On Thu, Feb 29, 2024 at 8:01 PM Les Ginsberg (ginsberg)
>>>> <ginsberg@cisco.com> wrote:
>>>>> Tony –
>>>>> In the spirit of a friendly discussion…
>>>>> From: Lsr <lsr-bounces@ietf.org> On Behalf Of Tony Przygienda
>>>>> Sent: Thursday, February 29, 2024 10:33 AM
>>>>> To: Acee Lindem <acee.ietf@gmail.com>
>>>>> Cc: lsr <lsr@ietf.org>
>>>>> Subject: Re: [Lsr] bunch comments on
>>>> https://datatracker.ietf.org/doc/draft-ietf-lsr-ospf-admin-tags
>>>>> 1. you can easily rectify by saying, if you have  tags for same prefix from
>>>> multiple nodes you prefere lowest router ID or maybe "sort on router id
>> and
>>>> then interleave" or something. depending how much of fully fledged
>>>> specification you want here
>>>>> [LES:] As Acee has pointed out, the IS-IS RFC (written many years ago)
>>>> explicitly stayed away from this sort of thing.
>>>>> Are you saying that your experience with IS-IS has been unsatisfactory? If
>> so,
>>>> why aren’t you lobbying for changes to IS-IS? (Not that I am encouraging
>> you
>>>> to do so… 😊 )
>>>>> 2. we miss each other. I just say this sub-TLV being empty is NOT specified
>>>> (i.e. behavior is undefined) if anyone sends such a thing
>>>>> [LES:] From the POV of parsing, if you send a TLV with 0 length, it does no
>>>> harm. Your parsing logic will just move on to the next TLV. I don’t see the
>> need
>>>> to specify any behavior.
>>>>> Of course, it is useless to send this TLV with no content – so if your
>>>> implementation wants to report that as an encoding error that seems
>>>> reasonable to me.
>>>>> If you send a length of 0 but actually have content, that is a serious
>> encoding
>>>> error – but that is a generic issue that seems outside the scope of this draft.
>>>>>   Les
>>>>>   -- tony
>>>>> On Wed, Feb 28, 2024 at 7:13 PM Acee Lindem <acee.ietf@gmail.com>
>>>> wrote:
>>>>> Hi Tony,
>>>>> 
>>>>>> On Feb 28, 2024, at 2:01 AM, Tony Przygienda <tonysietf@gmail.com>
>>>> wrote:
>>>>>> 
>>>>>> hey Acee, inline
>>>>>> 
>>>>>> 
>>>>>> On Wed, Feb 28, 2024 at 3:30 AM Acee Lindem <acee.ietf@gmail.com>
>>>> wrote:
>>>>>> Hi Tony,
>>>>>> 
>>>>>> Thanks for the review.
>>>>>> 
>>>>>>> On Feb 27, 2024, at 04:51, Tony Przygienda <tonysietf@gmail.com>
>>>> wrote:
>>>>>>> 
>>>>>>> Reading the draft quickly, here's bunch of observations
>>>>>>> 
>>>>>>> "
>>>>>>> 
>>>>>>> An OSPF router supporting this specification MUST be able to
>>>>>>> advertise and interpret at least one 32-bit tag for all type of
>>>>>>> prefixes. An OSPF router supporting this specification MAY be able
>>>>>>> to advertise and propagate multiple 32-bit tags. The maximum tags
>>>>>>> that an implementation supports is a local matter depending upon
>>>>>>> supported applications using prefix tags.
>>>>>>> "
>>>>>>> 
>>>>>>> 
>>>>>>> Since different implementations may support different amount of tags I
>>>> see that the draft says
>>>>>>> 
>>>>>>> "
>>>>>>> When propagating multiple tags, the order
>>>>>>> of the the tags SHOULD be preserved.
>>>>>>> 
>>>>>>> "
>>>>>>> 
>>>>>>> 
>>>>>>> this is IMO not good enough in case where two nodes advertise same
>>>> prefix with multiple tags, possibly differing or in different order. Some kind
>> of
>>>> ordering is necessary then as well AFAIS.
>>>>>>> 
>>>>>> 
>>>>>> I guess I don’t see the problem. A policy would look for a specific tag and
>>>> take a specific action.
>>>>>> 
>>>>>> Note that for IS-IS tags so require ordering, see section 4 of
>>>> https://datatracker.ietf.org/doc/rfc5130/.
>>>>>> I could possibly appropriate some of this text as it applies to OSPF.
>>>>>> 
>>>>>> 
>>>>>> my point is that if you have multiple nodes advertising some prefix with
>>>> different 3 tag combinations and you choose to only support 3 tags the
>> result
>>>> is undefined by this draft as to which tags propagate at the end, so the
>> "order
>>>> should be preserved" doesn't help
>>>>> 
>>>>> I agree this could be a problem if you have this situation but I don’t see
>> how
>>>> advertising the tags in any particular order rectifies it. Also, since an OSPF
>>>> domain is under a single administrative domain, I also don’t understand
>> why
>>>> anyone would configure such a situation. You could also have a problem if
>> you
>>>> have different nodes supporting different policies for the same prefix.
>> Unless
>>>> you can convince me, I’m going to stick with the IS-IS semantics for multiple
>>>> tags. From RFC  5130.
>>>>> 
>>>>> 
>>>>>     The semantics of the tag order are implementation-dependent. That
>>>>>      is, there is no implied meaning to the ordering of the tags that
>>>>>      indicates a certain operation or set of operations need be performed
>>>>>      based on the order of the tags. Each tag SHOULD be treated as an
>>>>>      autonomous identifier that MAY be used in policy to perform a policy
>>>>>      action. Whether or not tag A precedes or succeeds tag B SHOULD not
>>>>>      change the meaning of the tag set. However, when propagating TLVs
>>>>>      that contain multiple tags between levels, an implementation SHOULD
>>>>>      preserve the ordering such that the first tag remains the first tag,
>>>>>      so that implementations that only recognize a single tag will have a
>>>>>      consistent view across levels.
>>>>> 
>>>>> 
>>>>> 
>>>>>> 
>>>>>> 
>>>>>> 
>>>>>> 
>>>>>>> 
>>>>>>> 
>>>>>>> "
>>>>>>> This sub-TLV will carry one or more 32-bit unsigned integer values
>>>>>>> that will be used as administrative tags.
>>>>>>> "
>>>>>>> 
>>>>>>> 
>>>>>>> IMO behavior when none are carried nees to be specified if this is
>>>> mandated. is that a MUST in fact?
>>>>>>> 
>>>>>> 
>>>>>> The sub-TLV is optional so if it isn’t specified than there are no tags to
>>>> match. What am I missing here?
>>>>>> 
>>>>>> it says "one or more" so the sub=-tlv without anything has no semantics.
>> is
>>>> that an operational error, is that normal (then why does the draft say one
>> or
>>>> more). it's a nit but those nits can be ugly in interops
>>>>> 
>>>>> I clearly state that the sub-TLV is optional.
>>>>> 
>>>>> Thanks,
>>>>> Acee
>>>>> 
>>>>> 
>>>>>> 
>>>>>> 
>>>>>>> 
>>>>>>> 
>>>>>>> 
>>>>>>> Moreover we already have a tag in OSPFv2 on type-5 and type-7 and
>>>> opaque can advertise more tags. How do those interact ?
>>>>>>> 
>>>>>> 
>>>>>> 
>>>>>> I have this text in section 4 to provide backward compatibility:
>>>>>> 
>>>>>>  When tags are advertised for AS External or NSSA LSA prefixes, the
>>>>>> existing tag in the OSPFv2 and OSPFv3 AS-External-LSA and NSSA-LSA
>>>>>> encodings SHOULD be utilized for the first tag. This will facilitate
>>>>>> backward compatibility with implementations that do not support this
>>>>>> specification.
>>>>>> 
>>>>>> oh, I missed that. sorry.
>>>>>> 
>>>>>> 
>>>>>> Thanks,
>>>>>> Acee
>>>>>> 
>>>>>> 
>>>>>> 
>>>>>>> 
>>>>>>> 
>>>>>>> that's it for the first
>>>>>>> 
>>>>>>> 
>>>>>>> thanks
>>>>>>> 
>>>>>>> 
>>>>>>> -- tony
>>>>>>> 
>>>>>>> 
>>>>>>> 
>>>>>>> _______________________________________________
>>>>>>> Lsr mailing list
>>>>>>> Lsr@ietf.org
>>>>>>> https://www.ietf.org/mailman/listinfo/lsr
>>>>>> 
>>> 
>

v2.23.0 | Report a Bug | By Email