IETF Logo Mail Archive

Re: [nfsv4] AD review of draft-ietf-nfsv4-rpcrdma-cm-pvt-data

Magnus Westerlund <magnus.westerlund@ericsson.com> Thu, 07 November 2019 16:22 UTC

Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B8D8A12082E; Thu, 7 Nov 2019 08:22:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jN0ZSZgeXeZE; Thu, 7 Nov 2019 08:22:19 -0800 (PST)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-eopbgr130049.outbound.protection.outlook.com [40.107.13.49]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79003120861; Thu, 7 Nov 2019 08:22:18 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=O9MBGifohZNm0C98BKn9+z5OZiYvOob3CkavpPcMHuFYm5CFelcsaz5Gjczp35mf913fpB7OHed1WuumjWNRLfZMFjx0EgI07h2pukMBwy0wTq+O4tw9Op37ENASN3J8t9XzyJddftmJlTVypDCykhxYwx+S9ksx5JyictTdJ7RRh8tWQuNMWjhslQagVwfX8vtDbQENHkxT/Zk2aIUCetSKjrbJVHyz74hXZBxEOwmtaRommabZT+JIdv6SCzcqk13QwEzwP6pcJOGt+NcY8n2SZUlOl2W5eXPmW7nue3RuIQK8sKspU1C0/dMpBiVxJuKgTG2tu9lrsVM1nfreaw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=q889uBCRDN9lbHBg0FtgaUayYeojwy9Orb1mszqLIu0=; b=Z7MggdQjDuLkHmvFH8Em5ncOU5TADLLQNIFQQhFtX0mVnbP5ivSyKuKBzFK2914ycjDfao5Dq38sMFDMCdTQu2iAb23F9EmQQW0oriyuxtmPgXzPMC5yH4PEWtPOIlJzwWp7fd3vD744Za378i8P3lg9JwX9UKDIzPJ5Mkmyw2aC9cFoKwvX6xIF5tqWyFgImreGH5LPAuKY3nY7JhCq43RjcnF4z2DmHa2TQStj+apsL0GkUszuiSss3vuUJmP+K0K49rB90F0scPK5xm9EyXJ0ZMcnEEVt39PrybjajCQEl6lV1GKG7F5rdJMVapOKY0WABbfM7kknB2PaOtx5Lw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=q889uBCRDN9lbHBg0FtgaUayYeojwy9Orb1mszqLIu0=; b=GELIxJQlpwzDxB+msI9LHx6816k1vtAZijhz6I5zyAHNsmfScShU9PFsgSA2tCxMogqPSM9AHjpqFMo5immHkyCnSvux02ZvpZxpLbgVuvphj2ssAslqPKS5X94uTYbRfjJUcqYQJ0MWQk0kfckl8bZe/8n2OoDubvW9e2/sH/k=
Received: from HE1PR0701MB2697.eurprd07.prod.outlook.com (10.168.188.16) by HE1PR0701MB2218.eurprd07.prod.outlook.com (10.168.30.154) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2430.16; Thu, 7 Nov 2019 16:22:15 +0000
Received: from HE1PR0701MB2697.eurprd07.prod.outlook.com ([fe80::1d5c:4814:3c1e:b769]) by HE1PR0701MB2697.eurprd07.prod.outlook.com ([fe80::1d5c:4814:3c1e:b769%10]) with mapi id 15.20.2430.023; Thu, 7 Nov 2019 16:22:15 +0000
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
To: "chuck.lever@oracle.com" <chuck.lever@oracle.com>
CC: "draft-ietf-nfsv4-rpcrdma-cm-pvt-data@ietf.org" <draft-ietf-nfsv4-rpcrdma-cm-pvt-data@ietf.org>, "nfsv4@ietf.org" <nfsv4@ietf.org>
Thread-Topic: [nfsv4] AD review of draft-ietf-nfsv4-rpcrdma-cm-pvt-data
Thread-Index: AdWTGpkUXgM5VTPaQUWbXWj4ckZKzAAE3riA///Ia4CAA7apAIABAboA
Date: Thu, 07 Nov 2019 16:22:15 +0000
Message-ID: <8388856224c5b33dd9f39321d32b91e210994fe5.camel@ericsson.com>
References: <HE1PR0701MB2697052833EB5B100338912F957F0@HE1PR0701MB2697.eurprd07.prod.outlook.com> <262BD619-26E1-4C09-BE0C-537D05109DD1@oracle.com> <5e2d5ca8986a23ed98543371ffca9462b064c892.camel@ericsson.com> <09BF5B7E-20E1-461C-9D18-5F45A37F25E4@oracle.com>
In-Reply-To: <09BF5B7E-20E1-461C-9D18-5F45A37F25E4@oracle.com>
Accept-Language: sv-SE, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=magnus.westerlund@ericsson.com;
x-originating-ip: [158.174.130.211]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 1a0d864a-6537-416c-265a-08d7639ea732
x-ms-traffictypediagnostic: HE1PR0701MB2218:
x-microsoft-antispam-prvs: <HE1PR0701MB22186C9A6F48438DAA3842C795780@HE1PR0701MB2218.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:2150;
x-forefront-prvs: 0214EB3F68
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(136003)(346002)(376002)(366004)(39860400002)(396003)(189003)(199004)(476003)(11346002)(6506007)(66556008)(3846002)(2351001)(4326008)(66066001)(53546011)(2616005)(81156014)(8676002)(102836004)(305945005)(81166006)(6512007)(7736002)(6306002)(6436002)(36756003)(5640700003)(6246003)(8936002)(2906002)(26005)(30864003)(118296001)(186003)(229853002)(446003)(44832011)(66476007)(66446008)(66616009)(66946007)(64756008)(71200400001)(966005)(6116002)(14454004)(99286004)(99936001)(76116006)(6916009)(76176011)(478600001)(316002)(54906003)(2501003)(14444005)(5660300002)(256004)(6486002)(86362001)(25786009)(486006)(71190400001); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0701MB2218; H:HE1PR0701MB2697.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: wlQNfBWrNvLkK1MtYm/KnCJA4lBOIUxFqSxJ81cycKpdV0hp67rAzIYBSgAMGGfN/TtPqDBdAnL56HAx64raZICvqnP3QZGl4DXFxuMKVx7mSThtNtCMjQfLu+2KLlJT+DhnoOPh87PlLMTCXZxdsA++rGguGYoeuImBhFQCWgfXZDfJj4qAmlMMOEHv++xqic41VQyoWqluH6epRYYUwG6UqrJ4WngsCh1wHCAddTIUdk7HSJXhKemU4oOVFuYw9kvealcUUIjuIlHmIh7BCZ1KUvUgRndmca9di/Mvq+zE87VZDR4cCU8orJYJNa1+tJhOc7fxmgelOCE14mmpKoQZ6HW3T9SiJyrtZ6r8ssaBO6p8Ry7nDPYbvLHwRLvg7B3W/1h2/2I/RDuJ5Ho13vnjh2bCc/c3UrfMm7cdyEvfidZ1MQcpTcNfrLNgumO9
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; micalg="sha-256"; protocol="application/x-pkcs7-signature"; boundary="=-4znpfjtkq+9DsqPBDoGr"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 1a0d864a-6537-416c-265a-08d7639ea732
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Nov 2019 16:22:15.5999 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 8rzWkCKyXSNN2iKnqgJHxM6prFMKPL2Gm3DhBVCUSViz5jES26kgKrXteXvPRP/nLJIq7sd0voKoxp/sullKEswtL05r9dFc5WYdjrawbC0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2218
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/hDAGmVIBRVabrIoaJK8F9Y6MCd0>
Subject: Re: [nfsv4] AD review of draft-ietf-nfsv4-rpcrdma-cm-pvt-data
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Nov 2019 16:22:22 -0000

Hi Chuck,

This updates contains quite a lot of improvmenets. Howver I do have some
feedback where I think it can be further improved.


Section 1: I am missing in the introduction of the assumption that to be able to
use this option one requires an ULP with a private data field. I think there
should be a paragraph here providing that context and include infromational
references to protocols that may use this extension. And I think including that
IETF defined ULP here as one option in addition to IBA would be good. 

Section 4 calls the 32-bit ID for format identifier, while the IANA Section
calls it protocol number. Please align the language here. Also the name of the
format is inconsistent after these latest changes. I think the more extensive
name of the format was clearer then what is propsoed now. Becasue it is really
this specific option that is identified, not RPC over RDMA protocol in general. 

Section 4: First paragraph. Depending on what is added to Section 1, this may or
may not need this first paragraph in the current form. But, I get the
impression, that this text either isn't needed here or needs to contain way more
details for the specific protocol. I think the later is hard to do, especially
for an protocol that we don't have change control over. 

Section 6.1: The appointment of the designated expert is done by the IESG and
not the Area Director themselves. See section 5.2.1 of RFC 8126. 

Section 6.1:
"The DE will post the request to the nfsv4 WG mailing list (or a successor to
that list) for comment and review.  The DE will approve	or deny the request and
publish notice of the decision within 30 days."

I would propose that this is reworded so that it will not be necessary for the
IETF to designate a successor list, even if there are no real community. I would
propose a simple addition like:

The DE will post the request to the nfsv4 WG mailing list (or a successor to
that list), if such a list exist, for comment and review.

Cheers

Magnus


On Wed, 2019-11-06 at 17:00 -0500, Chuck Lever wrote:
> Hi Magnus-
> 
> > On Nov 5, 2019, at 4:46 AM, Magnus Westerlund <
> > magnus.westerlund@ericsson.com> wrote:
> > 
> > On Mon, 2019-11-04 at 11:36 -0500, Chuck Lever wrote:
> > > Hi Magnus, thanks for your review and moving forward with the AD write-up.
> > > 
> > > > On Nov 4, 2019, at 9:56 AM, Magnus Westerlund <
> > > > magnus.westerlund=40ericsson.com@dmarc.ietf.org> wrote:
> > > > 
> > > > Hi,
> > > > 
> > > > I have started my AD review. It was such a short document that I thought
> > > > I
> > > > read through it to figure out what more I need to read. So I have not
> > > > yet
> > > > read like RFC 8166. So from a context of having little context
> > > > understanding
> > > > the below are my comments and questions. I think it may be faster if you
> > > > help answering them then I read a lot of documents and still have
> > > > question
> > > > marks. 
> > > > 
> > > > 
> > > > 	1. So this private data field is only existing in Infinite Band
> > > > Connection manger? So what this document is defining a structure to a
> > > > field
> > > > which currently don’t have any structure but are part of a protocol
> > > > defined
> > > > by another body? 
> > > > 		a. Have this work been formally agreed with IBTA? 
> > > > 		b. Or is the relationship to the connection manager used
> > > > to
> > > > establish the RPC over RDMA different, if that is the case it needs to
> > > > be
> > > > better explained. 
> > > 
> > > The private data field is for use by Upper Layer Protocols. It's existence
> > > is defined by the IBTA, but not its content. It's opaque to the CM, hence
> > > the name "private".
> > > 
> > > Both iSER and iWARP itself (both IETF-defined) can place data in this
> > > field.
> > > That's why there
> > > is a 32-bit format ID field: if that doesn't match the constant defined in
> > > this document, that means some other ULP is using the private data field,
> > > and its contents are then ignored by RPC-over-RDMA.
> > 
> > So with new text as proposed in other email to clarify that this extensions
> > apply to several different protocols will help making it clear that this is
> > useful for IETF to define and not stepping on anyone's particular toes. 
> > 
> > > 
> > > 
> > > > 	3. Section 5: Is there only going to be one object of private
> > > > data
> > > > forever in the relevant communication? If not, why isn’t this a well-
> > > > specified TLV so that unknow type entries can be skipped to the nest
> > > > object?
> > > 
> > > As I understand it, the private data field is used by one ULP at a time.
> > > I'm not aware of a TLV. There are already existing ULP implementations
> > > that do not assume a TLV, so that might be a tough sell.
> > > 
> > 
> > That helps a bit, but basically what we end up with is that the ULP need to
> > cordinate between the end-point about which private data format(s) it will
> > use.
> > And if is to include multiple formats it need to know that the peer can
> > delimit
> > all of them. That is what I see as the issue. Maybe this assumption and
> > responsibility of the ULP can be made clearer in the document. 
> > 
> > > 
> > > > 	4. Even if there ever is going to be one entry, can you be more
> > > > formal
> > > > in description of what is a valid message using another format
> > > > identifier,
> > > > is that only the 32-bit field of the format Identifier, or also the
> > > > version.
> > > 
> > > I can cite the use of this field by other protocols, if that would help.
> > 
> > As I said yes. 
> > > 
> > > 
> > > > 	5. Isn’t the version field just unnecessary? If one needs
> > > > version using
> > > > another format identifier is more easy than the identifier + version
> > > > construct.
> > > 
> > > It's possibly superfluous. But:
> > > 
> > > - the two fields serve different purposes, even though they could be
> > > combined.
> > > - there's already an implementation that uses both fields.
> > 
> > So, I understand that your down the road on this one and you don't need to
> > implement any change. But, it was a reflection I had after commenting on
> > issue
> > 4). 
> > 
> > > 
> > > 
> > > > 	6. Section 6: The IANA consideration is confusing. If the
> > > > specification
> > > > for a CM private data format requires IESG approval, then why have the
> > > > expert review policy. In that case one can simply use the IESG approval
> > > > policy instead. However, requiring any type of IESG approval here appear
> > > > to
> > > > be a way to high bar. I think expert review is likely appropriate, but
> > > > the
> > > > guidance to the Experts needs to be clearer. For example what happens if
> > > > IBTA want to use this to add some format?
> > > 
> > > I would be OK with Expert Review only, but:
> > > 
> > > 1. I will need suggestions about expert guidance. Will look at other RFCs.
> > 
> > Basically the WG can specify what requirements you consider needed for a
> > registration request. Publicly availble specification, contact information,
> > what
> > criterias the expert should make judgment on. Like if there are sensitive
> > information or not. Etc. 
> > 
> > > 2. IMO WG consensus is needed on the replacement text of this section.
> > 
> > Sure, and if the WG want to choice IESG approval or Specification Required
> > as
> > policy for the registry that is also fine with me. However, I am currently
> > not
> > fine with the strange mix that is currently documented. 
> > 
> > > 
> > > 
> > > > 	7. Section 7: The security consideration. I am missing any
> > > > discussion
> > > > about the security requirements that the actual extension. It appears
> > > > that
> > > > integrity and source authenticity are required for safe operation of
> > > > these
> > > > two extensions.
> > > 
> > > Integrity is a property of RDMA Reliable Connection transports.
> > > 
> > > Not clear about the source authenticity requirement. Can you elaborate?
> > 
> > What I am trying to say, is that security consideration sections should make
> > a
> > security requirement analysis. And what I can see this private data when
> > delivered to receiver, the receiver need to know that the data was not
> > modified
> > and it needs to know from whom it came. Thus integrity and source
> > authentication. Then you can simply add a statement that the protocol you
> > know
> > to carry this field will provide that security service. 
> > 
> > The other aspect to consider is really if one can get any impact on the peer
> > by
> > being malicous in setting these fields. For example can I get the peer
> > entity to
> > consume more resources? To my understanding the answer is partially yes, but
> > not
> > without having to similarily promise to allocate resources. And if I don't
> > do
> > things will fail. And the point is that there is other methods that will be
> > more
> > efficient to do Denile of Service attacks on the peer in the protocol. 
> > 
> > It is usually good to document what aspects of attacks that has been
> > considered
> > and what level of an issue they are on.
> 
> The latest:
> 
> 
https://protect2.fireeye.com/v1/url?k=86105e9f-da9a7c49-86101e04-0cc47ad93dcc-4cde713b365d5029&q=1&e=1de128de-db49-4c9d-8b49-89fbe4823d29&u=https%3A%2F%2Fchucklever.github.io%2Fi-d-rpcrdma-cm-pvt-data%2Fdraft-ietf-nfsv4-rpcrdma-cm-pvt-data.html
> 
> And a convenience URL for diffing with -04:
> 
> 
https://tools.ietf.org/rfcdiff?url1=https://tools.ietf.org/id/draft-ietf-nfsv4-rpcrdma-cm-pvt-data.txt&url2=https://chucklever.github.io/i-d-rpcrdma-cm-pvt-data/draft-ietf-nfsv4-rpcrdma-cm-pvt-data.txt
> 
> 
> I've tried to address the following issues that you called out after your
> attempt at an AD write-up of -04:
> 
> - Now a Proposed Standard updating RFC 8166
> - Replaced the stale link to the IB specification
> - Additional text explaining precedents and the purpose of the Format
> Identifier
> - Revised the IANA Considerations section to remove "specification required"
> language
> - Revised the Security Considerations section
> 
> I can take this further if you would like more changes before the next steps.
> Otherwise I can provide a draft-ietf-nfsv4-rpcrdma-cm-pvt-data-05.xml for you
> to submit manually.
> 
> 
> --
> Chuck Lever
> 
> 
> 
-- 
Cheers

Magnus Westerlund 


----------------------------------------------------------------------
Networks, Ericsson Research
----------------------------------------------------------------------
Ericsson AB                 | Phone  +46 10 7148287
Torshamnsgatan 23           | Mobile +46 73 0949079
SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
----------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email