Re: [manet] [RTG-DIR] RtgDir review: draft-ietf-manet-dlep-14

[Rick Taylor <rick@tropicalstormsoftware.com>]

Lou,

I agree with Stan.  If you want to check if your points have been 
addressed, and perhaps raise anything outstanding as a new thread that 
would be helpful.

Thanks,

Rick

On 07/07/15 13:48, Ratliff, Stanley wrote:
> Lou,
>
> I think that would be a good idea - your review was what prompted most (if not all) of the changes from -14 to -15.
>
> Regards,
> Stan
>
>
>> -----Original Message-----
>> From: Lou Berger [mailto:lberger@labn.net]
>> Sent: Tuesday, July 07, 2015 8:04 AM
>> To: draft-ietf-manet-dlep.all@ietf.org
>> Cc: manet@ietf.org
>> Subject: Re: [RTG-DIR] RtgDir review: draft-ietf-manet-dlep-14
>>
>> [Dropping  routing directorate as document is back with WG.]
>>
>> Authors,
>>      Now that -15 is out, what are your thoughts on continuing the discussion
>> on (and closing) the points raised in the review?
>>
>> Thanks,
>> Lou
>>
>>
>> On 6/8/2015 3:10 PM, Lou Berger wrote:
>>> [Note this is a WG LC related review, not IETF LC.]
>>>
>>> Hello,
>>>
>>> I have been selected as the Routing Directorate reviewer for this
>>> draft. The Routing Directorate seeks to review all routing or
>>> routing-related drafts as they pass through IETF last call and IESG
>>> review, and sometimes on special request -- or WG Last call as was the
>>> case here . The purpose of the review is to provide assistance to the
>>> Routing ADs. For more information about the Routing Directorate,
>>> please see ​http://trac.tools.ietf.org/area/rtg/trac/wiki/RtgDir
>>>
>>> Although these comments are primarily for the use of the (chairs and)
>>> Routing ADs, it would be helpful if you could consider them along with
>>> any other Last Call comments that you receive, and strive to resolve
>>> them through discussion or by updating the draft.
>>>
>>> Document: draft-ietf-manet-dlep-14
>>> Reviewer: Lou Berger
>>> Review Date: June 8 (later than requested due to scope of comments --
>>> sorry) WG LC End Date: unknown Intended Status: Standards track
>>>
>>> Summary:
>>>
>>>      While I think the document is pretty decent for the scope of the
>>>      work, I do have concerns about this document and recommend that the
>>>      WG Chairs/Routing ADs discuss these issues further with the authors.
>>>      I'm also available as/if needed to discuss.
>>>
>>> Comments:
>>>
>>>      I think the document shows significant good work and looks to be a
>>>      useful protocol, although I'm not overly familiar in this space.
>>>      That said, I have a number of serious concerns about the document,
>>>      and its contents from a few of perspectives.  These include basic
>>>      protocol issues, underspecified details  (which could lead to
>>>      interoperability issues), and specification/editorial issues. I
>>>      think the document / protocol can be modified to address the issues
>>>      I raise below.  Of course, it is up to the WG, chairs, and ADs to
>>>      decide which comments to address and which to  ignore.
>>>      I don't expect that all comments will result in changes.
>>>
>>> Major Issues:
>>>
>>>      - The length field of the generic data item (i.e., TLV) is only 8
>>>        bits.  While 255 bytes (assuming that this is the unit of measure,
>>>        which BTW isn't specified) is big enough today, allowing for
>>>        larger will greatly simplify things when 255 isn't enough. --
>>>        We've run into this in RSVP and it's a real pain.
>>>
>>>      - Version number is currently defined as a data item.  This means a
>>>        signal (i.e., message) needs to be potentially fully parsed to
>>>        discover what version is being used.  This precludes basic format
>>>        changes to the protocol.  Perhaps the Discovery and Init Signals
>>>        should be special cased to include version in their formats.  (And
>>>        shorten version to 8 bits from 32, as mentioned below).
>>>
>>>      - The document references, but does not define, 'in-session' and
>>>        'discovery' states.  These either need to be formally defined or
>>>        removed.  BTW we had exactly the same issue with LMP (RFC4204) and
>>>        ended up adding section 11 (FSMs) at a pretty late stage of the
>>>        process.
>>>
>>>      - TCP session management is not defined, nor is the relationship
>>>        with TCP and DLEP sessions fully defined.  For example:
>>>
>>>        o Closing the TCP session is only mentioned in one place and in a
>>>          way that is inconsistent with the expected protocol behavior
>>>          (close TCP before ACK is received).
>>>
>>>        o What happens when a DLEP session is terminated, can the TCP
>>>          session be reused or must it be closed too?
>>>
>>>      - There is no transaction model defined.  For example, it's
>>>        completely unclear if only one unacknowledged Signal allowed at a
>>>        time, or perhaps just one per signal type is allowed, or perhaps
>>>        there are no restrictions.  This needs to be explicit.
>>>
>>>      - What is the purpose of retries and timeouts over TCP?  Retries
>>>        aren't needed over TCPs and it's unclear whey they are being used.
>>>
>>>      - The higher level implications of ACKs, over TCP, isn't really
>>>        clear.  It seems ACKs are defined for multiple purposes: reliable
>>>        transport, transaction acknowledgment and transaction results. Of
>>>        course the first isn't needed, and implications of the others
>>>        should be clear.  For example, in section 7.10, why would there be
>>>        a retry when receiving a Destination Up ACK signal indicating an
>>>        error?
>>>
>>>      - There is no discussion on scaling considerations. Are there really
>>>        none?  For example, how often might be appropriate to issue/limit
>>>        Peer Updates based to changes in link quality, or how to handle
>>>        the case where a large number (all or most) of destinations go
>>>        down.
>>>
>>>      - There are 13 places where the protocol allows implementation to
>>>        define their own 'heuristics'.  Some of these seem unnecessary due
>>>        to the TCP point raised above, but any that remain in the protocol
>>>        should be fully specified to ensure predictable/consistent
>>>        behavior from implementations.
>>>
>>>      - Data Items are defined for "Extensions" and "Experimental
>>>        Definition" (Sections 8.7 and 8.8).  Both seem to support for
>>>        optional mechanisms, but the former uses assigned numeric values,
>>>        why the latter uses UTF-8 strings.
>>>        o What, if any, is the intended distinction/relationship between
>>>          these?
>>>        o How does an "Experimental Definition" become standardized?
>>>
>>>      - Sections 8.19 and 8.20 define "Resources" related Data Items.  The
>>>        definition related to these basically says a resources is "An
>>>        8-bit integer percentage, 0-100, representing the amount of
>>>        resources allocated to receiving|transmitting data.".  If I were
>>>        implementing this protocol, I'd have no idea how to produce,
>>>        update or use this information.  I think there is some missing
>>>        informative and normative (RFC 2119) text related to these
>>>        formats.
>>>
>>>      - Sections 8.21 and 8.22 (Relative Link Quality) have a similar
>>>        problem of being under described, in particular it's unclear if
>>>        there's a meaningful, non-proprietary definition for link quality
>>>        that an implementation is to act on or if the passed value is just
>>>        passed for as monitoring information.  Either way, this needs to
>>>        be clarified.
>>>
>>>      - Section 9 defines a "credit-windowing scheme analogous to the one
>>>        documented in [RFC5578]". It describes how credits are exchanged,
>>>        but it provides zero definition on the implications or use of
>>>        credits relative to the data plane.
>>>
>>>      - Multiple ways to implement the same function are allowed, e.g.,
>>>        optional presence of Status, Interval and TCP port.  Generally
>>>        allowing such complicates testing and leads to interoperability
>>>        issues.  The document should pick one way and require it.
>>>
>>>      - The document doesn't state if there are any ordering requirements
>>>        on data items. It should be explicit on this, e.g., there are no
>>>        ordering requirements on the placement of Data Items within
>>>        Signals.
>>>
>>>      - The required and optional data items that are permitted on a
>>>        signal isn't always clear.  For example are 0/1/N copies of a
>>>        particular Data Item required/allowed.  Using something like ABNF
>>>        would really help formalize and clarify this.
>>>
>>>      - The document doesn't clearly delineate from informative/narrative
>>>        text, normative / required processing procedures, and message
>>>        formats. This by itself is not necessarily a major issue, it just
>>>        makes it harder to (write,) review and implement the protocol.
>>>        What is a major issue is that this approach allows for duplicate
>>>        (and sometimes contradictory) normative procedures and for
>>>        omissions in procedures (particularly related to exception/error
>>>        processing).  Specific examples are included above and below.  It
>>>        would be best to ensure that each required processing behavior is
>>>        defined just once and in a consistent way.
>>>
>>>      - The security consideration section is inadequate.  This section
>>>        should address the security of the DLEP protocol, not user
>>>        traffic.  It should include an analysis of risks/threats/possible
>>>        exploits and how these are mitigated by the protocol.  rfc6952,
>>>        and the protocols it references can serve as examples.
>>>
>>> Minor Issues:
>>>
>>>      - The data and signal type fields are both 8 bits.  This seems
>>>        pretty small, particularly the data type field.  Given this is a
>>>        control protocol, I think a larger (at least data type) field
>>>        would provide better "future proofing".
>>>
>>>      - 2^32 versions are currently allowed (section 8.1).  This seems a
>>>        bit excessive.  I'd opt for max of 8 bits here myself.
>>>
>>>      - It's probably too late, but it probably would be cleaner to have a
>>>        generic ack signal rather than a per signal type ack. I mention
>>>        this here as this may come up again when clarifying the
>>>        transaction model (as mentioned above.)
>>>
>>>      - Section 2: Assumptions
>>>        This section includes informative and normative text so is more
>>>        than just Assumptions.  Personally, I'd remove all normative text
>>>        from the section.
>>>
>>>      - There are no specific rules related to UDP header formation.
>>>
>>>      - Sections 8.10->8.17.  Isn't add/drop indicator needed for subnets
>>>        in destination update signals?
>>>
>>>      - The IANA Considerations sections must follow​ RFC2360.
>>>
>>>      - New registries must include initial values, which are defined in
>>>        the document.  (The document currently has many TBDs that should
>>>        be replaced.)
>>>
>>>      - New registries need an allocation policy, e.g.:
>>>      The registry should be established with registration policies of
>>>      "Standards Action" (for Standards Track documents) and
>>>      “Specification Required" (for other documents). The designated
>>>      expert is any current <fill-in> WG chair.
>>>
>>> Nits:
>>>
>>>      - The document introduces the terms "signals" and "data items" for
>>>        what is commonly called "messages" and "TLVs" (or objects) in
>>>        other protocols.  It's probably too late to change this, but I
>>>        think the introduction of unique terminology is counter
>>>        productive.
>>>
>>>      - Use of RFC 2119 conformance language is a bit rough, and there are
>>>        words in all caps that are not defined in RFC2119. Take a look at
>>>        http://trac.tools.ietf.org/wg/teas/trac/wiki/PSGuideline for some
>>>        suggestions.
>>>
>>>      - Internal socket operation is mentioned a couple of times.  It
>>>        really shouldn't be, the spec should define behavior on the wire.
>>>
>>>      - The Length fields are missing unit of measure (presumably
>>> octets)
>>>
>>>      - The Mnemonics are used basically once and don't really add value,
>>>        suggest dropping them.
>>>
>>>      - How/when is the "Unknown Signal" Status Code sent?
>>>
>>>      - Section 8.7: Extension List should be shown as a variable length
>>>        field.
>>>
>>>      - Section 8.8: Experiment List should be shown as a variable length
>>>        field.
>>>
>>> That's it -- for now -- hopefully I didn't miss anything.  Look
>>> forward to hearing response to the above (and how I got things
>>> hopelessly wrong ;-)
>>>
>>> Lou
>>>
>>>
>>>
>>>
>>
>>
>
>
> _____________________________________________________
> This electronic message and any files transmitted with it contains
> information from iDirect, which may be privileged, proprietary
> and/or confidential. It is intended solely for the use of the individual
> or entity to whom they are addressed. If you are not the original
> recipient or the person responsible for delivering the email to the
> intended recipient, be advised that you have received this email
> in error, and that any use, dissemination, forwarding, printing, or
> copying of this email is strictly prohibited. If you received this email
> in error, please delete it and immediately notify the sender.
> _____________________________________________________
> _______________________________________________
> manet mailing list
> manet@ietf.org
> https://www.ietf.org/mailman/listinfo/manet
>