IETF Logo Mail Archive

Re: [nfsv4] Proposed updates to draft-ietf-nfsv4-rpcrdma-cm-pvt-data

David Noveck <davenoveck@gmail.com> Tue, 17 December 2019 04:37 UTC

Return-Path: <davenoveck@gmail.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0E5EB1200C7 for <nfsv4@ietfa.amsl.com>; Mon, 16 Dec 2019 20:37:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YZIZMd-GbWyH for <nfsv4@ietfa.amsl.com>; Mon, 16 Dec 2019 20:37:10 -0800 (PST)
Received: from mail-ot1-x332.google.com (mail-ot1-x332.google.com [IPv6:2607:f8b0:4864:20::332]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2B2571200B6 for <nfsv4@ietf.org>; Mon, 16 Dec 2019 20:37:10 -0800 (PST)
Received: by mail-ot1-x332.google.com with SMTP id x3so11985471oto.11 for <nfsv4@ietf.org>; Mon, 16 Dec 2019 20:37:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=KFHxgMunhQsYmdbrWtsIFnDfYoXzoPJJAT0ON9eDDYM=; b=FnHhTsqFcdhG7fXUHXEt6HVPKV+j+LPsBIfGnmcFFG4BUTlclZnMooU0wn6NUGQPZy CM746e3zW8fsk0pv6m3COiDkESNH8/7SsIFsWdYzz4LNao1HCZ6A1XzMh7MzHuwx+gns cbfRavH1oOaVOupdavlhqD0U57dFenbYd48GpJbb2uRsaGAlD4VNdWEHFL8pIj3dT4TN g9PN641CF9KzYkx7YmiffhEkkJGT5MPAmw3ZbyBNq9Ftw0IZk7EIuQGpXQMkV/qmfPfe f0w1xi91Jlc3SCqZSDqXqNhpvp+MjqXObvAkdAQO+gMlHaVGSqQnZsCyEm+GOL6VAulO DK0Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=KFHxgMunhQsYmdbrWtsIFnDfYoXzoPJJAT0ON9eDDYM=; b=OKSPkCSeTzy917E0gYzSLzVhm/FN0eROdaojMBiAl5NW6Krp/V+etzqabFdaFRwzZ9 NbScMFV1lcaDEulEL+yix61ZSf4oC+xI6r4fH3TeY1Wupz8u4kpzkr+UMURDFO2VlPCV Z2T6XYpb0NNTX2Yo5ZsMAOAJUw6S2tS68w8TY5yXk90fyfrHuyREEUZLHPRE+c0pbK85 S6zUOVhGdJPNjDg5H/fAZ+Dqbg6OH8JF/8cXdC3Otzett7aQvwbwFslohQOyUL/fJS2B yVkNbVywolChlRfw04C2SfI8O4apWitVkY6ryemqb4cJ44pkGe2/pHoUbm3LUUPqFZz9 lWZQ==
X-Gm-Message-State: APjAAAXx2eklSPk7A2YSf9lEGRTHe170Dt/MRQz3kJat5I81zEqVHw+i ytnHCsrsC/u9lYSYOlNldpyquhm2WWD9DdCUNis=
X-Google-Smtp-Source: APXvYqw4fknaHyPzvZJBPCYoVeydTWLZBZlwzEKke6/8HSrnsMONURrjM7PjRbhjO32RRU5Ol5s6dOxcT+GYbE6zQd8=
X-Received: by 2002:a9d:478:: with SMTP id 111mr3013670otc.359.1576557429275; Mon, 16 Dec 2019 20:37:09 -0800 (PST)
MIME-Version: 1.0
References: <863D1C52-3FCB-47EF-9DEA-4BE8CEF51D6C@oracle.com> <14e44b2a-f6ed-9b7b-2e28-fb4016be173b@talpey.com> <DB9F91F9-455C-4710-949F-01A9BEEE16CA@oracle.com> <c10f5885-d2cf-ad31-89bc-9a2c32fe9248@talpey.com>
In-Reply-To: <c10f5885-d2cf-ad31-89bc-9a2c32fe9248@talpey.com>
From: David Noveck <davenoveck@gmail.com>
Date: Mon, 16 Dec 2019 23:36:58 -0500
Message-ID: <CADaq8je8jkUb-CNXnpzjWE6CvdjycEx5q6VOhjtYcKHWx1rbkA@mail.gmail.com>
To: Tom Talpey <tom@talpey.com>
Cc: NFSv4 <nfsv4@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008a424e0599dee151"
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/wbT2Y655pDHfVZEh4wCSgJlYLv4>
Subject: Re: [nfsv4] Proposed updates to draft-ietf-nfsv4-rpcrdma-cm-pvt-data
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Dec 2019 04:37:13 -0000

On Mon, Dec 16, 2019, 3:39 PM Tom Talpey <tom@talpey.com> wrote:

> On 12/16/2019 9:52 AM, Chuck Lever wrote:
> >
> >
> >> On Dec 16, 2019, at 9:36 AM, Tom Talpey <tom@talpey.com> wrote:
> >>
> >> On 12/15/2019 3:48 PM, Chuck Lever wrote:
> >>> As a result of expert review, changes are needed to Section 4.1.2
> >>> to clarify the purpose and implementation guidance of the Format
> >>> Identifier field.
> >>> I propose that the new Section read (in its entirety):
> >>> 4.1.2.  Amongst Implementations of Other Upper-Layer Protocols
> >>
> >> That first word is a very odd one in a section title. Would
> >> "Interoperability With" be more meaningful?
> >
> > I will review the titles of the sub-sections here.
> >
> >
> >>>     The Format Identifier field in the message format defined in this
> >>>     document is provided to enable implementations to distinguish RPC-
> >>>     over-RDMA version 1 Private Data from private data inserted at
> layers
> >>>     below RPC-over-RDMA version 1.  An example of a layer below
> RPC-over-
> >>
> >> "Below" is problematic here. The RFC6581 MPA enhanced connection
> >> processing can insert private data at the start of the field, and
> >> it is "below" RPC in the stack, but the peer's RFC6581 processing
> >> strips it off. Therefore, of RPC is the "lowest upper layer" in
> >> such a stack, there is no issue.
> >>
> >> However, there might well be other lower layers, with different
> >> behaviors, injecting their own private data payloads. Or indeed,
> >> upper layers. And these payloads may choose to append, or prepend
> >> to the buffer.
> >
> > OK. Are you requesting a change to this paragraph?
>
> I think it would be better to avoid introducing a formal layering, so
> yes. Instead of "layers below", it may be best simply say "other layers".
>
> The next issue makes this clearer:
>
> >>>     RDMA version 1 that makes use of CM Private Data is iWARP, via the
> >>>     MPA enhancement described in [RFC6581].
> >>>     During connection establishment, an implementation of the extension
> >>>     described in this document checks the Format Identifier field
> before
> >>>     decoding subsequent fields.  If the RPC-over-RDMA version 1 CM
> >>>     Private Data Format Identifier is not present as the first 4
> octets,
> >>
> >> So, just to be clear - this introduces a new requirement on other
> >> layers over the same connection. They MUST NOT inject private data
> >> at the beginning of the buffer, or if they do, they MUST strip it
> >> off.
> >>
> >>>     an RPC-over-RDMA version 1 receiver MUST ignore the CM Private
> Data,
> >>>     behaving as if no RPC-over-RDMA version 1 Private Data has been
> >>>     provided (see above).
> >>
> >> And, if the prior requirement is not made, then the RPC layer needs
> >> to scan the prvate data rather carefully to see if the identifier,
> >> and the payload associated with it, is present somewhere in the
> >> private data.
> >
> > You might have misread this paragraph. I don't think there's a need
> > for any new requirements: the paragraph states if the first word in
> > the buffer is not the RPC-over-RDMA Format Identifier, then the
> > receiver ignores the CM private data.
>
> Ok, I didn't misread the paragraph, but I drew a different conclusion.
> If the protocol requires the RPC sender to place its private data
> payload "first", then it is logical to require the receiver to look
> at it only there. Lower layers may do the same (e.g. the MPAv2 ird/ord
> exchange), but of course those layers must strip it off before passing
> the remainder. So at the RPC layer, it is no longer present.
>
> The draft currently doesn't discuss this type of sharing,


For it to do so is complicated and unnecessary.  The point is that it is
job of the transport protocol to pass along the cm data without modifying
it.

however, it
> merely states:
>
>     The first 8 octets of the CM Private Data field is to be formatted as
>     follows:
>
> In reality, the private data field is a property of the underlying
> transport,


The private data field on the wire is but rpc-over-rdma never sees that.
It does see what it received from the transport implementation via, for
example, the ofed interface. For that data the transport is the custodian
rather than the owner.

and in the case of iWARP/MPAv2 the first bytes are already
> "taken". So, my concern was that the text was somehow stating that
> the entire private data paylod was to be inspected, when in reality
> it's just the part which was *not* otherwise taken by other layers.
>

If it states that it should be changed, but I read it as describing what
the rpc-over-rdma protocol would see.

>
> > No other scanning is necessary, it's a fail-safe design since the
> > CM private data contains only hints.
>
> Yes, that's understood. Again, it's just a matter of describing how
> the field is to be found. The CM API may strip off other non-shared
> private data chunks,


If it doesn't, it is seriously broken.

but what's on the wire will look quite different.
>

What's on the wire might be encrypted and look* really* different. However,
we don't and shouldn't see any of that.

So the word "first" is, I find, problematic.
>
> I'm short on time right now to craft suggested text for this, but I'll
> take a shot at it hopefully tomorrow.
>
> >>>     Because the Format Identifier field is newer than some other
> >>>     potential users of private data (such as iWARP), there is a risk
> that
> >>>     a lower layer might inject its own private data with a payload
> >>>     somehow containing the identifier of RPC-over-RDMA version 1.  It
> is
> >>
> >> Well, *and* not strip it off. This could happen if the peer implemented
> >> a lower layer that wasn't recognized by the receiver, and the data
> >> simply passed up. See previous paragraph.
> >>
> >>>     recommended that RPC-over-RDMA version 1 implementations perform
> >>>     additional checks on the content of received CM private data before
> >>>     making use of it.
> >>
> >> "Additional checks" is pretty vague. Are there any specific
> requirements?
> >
> > Would "perform sanity checks on the content" be preferable?
>
> I was asking what the sanity checks might actually be. Is there a specific
> requirement? If not, I don't think the sentence really says anything,
> and should be dropped.
>
> What I think is being implied is that after matching the identifier,
> somehow the range of values in the following structure needs to be
> checked, and if any of the values fall outside, that the entire payload
> be ignored. Leaving me to ask, what are these limits?
>
> Tom.
>
> Tom.
>
> _______________________________________________
> nfsv4 mailing list
> nfsv4@ietf.org
> https://www.ietf.org/mailman/listinfo/nfsv4
>

v2.23.0 | Report a Bug | By Email