IETF Logo Mail Archive

[OPSAWG] AD review of draft-ietf-opsawg-ipfix-tcpo-v6eh

Mahesh Jethanandani <mjethanandani@gmail.com> Sun, 14 April 2024 19:42 UTC

Return-Path: <mjethanandani@gmail.com>
X-Original-To: opsawg@ietfa.amsl.com
Delivered-To: opsawg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E74C9C14F5FC; Sun, 14 Apr 2024 12:42:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.097
X-Spam-Level:
X-Spam-Status: No, score=-7.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vUu0ojgh0tXy; Sun, 14 Apr 2024 12:42:18 -0700 (PDT)
Received: from mail-pf1-x434.google.com (mail-pf1-x434.google.com [IPv6:2607:f8b0:4864:20::434]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D5B8C14F61F; Sun, 14 Apr 2024 12:42:18 -0700 (PDT)
Received: by mail-pf1-x434.google.com with SMTP id d2e1a72fcca58-6ecf05fd12fso2438748b3a.2; Sun, 14 Apr 2024 12:42:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1713123736; x=1713728536; darn=ietf.org; h=to:cc:date:message-id:subject:mime-version:from:from:to:cc:subject :date:message-id:reply-to; bh=M0SVbpavQTV5pDkEt5N2zKnfRzCIKcalHZypadtA8EI=; b=OuY67PcHkLQJxHdBnhIjzH2uXnkKWfm9P59MCNRp4NYHyzAJWWuMUasdFP3Oqcgev1 b78PGIWX2Wut7TTcQRGRWTevbPotiNwEPKGM7y6Q/yJUZxuM2jAmhYygYH30ZNCzOKxt i0bxSNwG0IB1ttJbTK3A/o4KpKQRI+v5x4XAJn3P7o30tajAuCLraDjMPXE4DSUdxHG8 yonl6aVpexKEbZh7pxdECpLejGT+wUoNvm0KSQTtL7xdid8GCqtuDT1dRainSMvqqO+V ax8uA34Cn5LDORVdVLopXiKYWvSHqlVJoc6wBVHdV8fAvOZSMtlI2R2yJXmaoRgfTOd8 z7Yg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1713123736; x=1713728536; h=to:cc:date:message-id:subject:mime-version:from:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=M0SVbpavQTV5pDkEt5N2zKnfRzCIKcalHZypadtA8EI=; b=SqNlRlIINfk+RkaNjhYO22VCg4L04DGurBTaTDk4oOVf5J9k4o1ZyaVQV50cxRuUIU jU90j1utQ83jeeSVTT3bq7zzuLHYQignL+wTb1O4Wt0lp2Aa5yfgQ0RHYhjqAroQdKWk JATVz346dw8g8X4GFJx7l7SRBuNHhN8nAfwEUBKZOpG7BCbJjfkfLAC42ahBpl6DKozc AuEAnFJc6onnqwfRA3YPQpxhTGx7YO+LPEAiKHd9ntqRsVdCZ3GL/E2iDEVaJSvVVKFe 6Plt0VEU43Pcucb7aCPNZuX+zeE34/VnIYlDWjsW+HHQnO6ePiF/PVGwDCQUATRpdFOB wGVA==
X-Gm-Message-State: AOJu0Yyy9vjcGn3jLW9c6IWmmfcmFlo/2YijyrE0VaHK1E9mVXvXUm/d AnLBvfbO5q6zf66FlHW+0PXSVFgG4HJy/XexKGicp+CIDiB+5spXKal41atP
X-Google-Smtp-Source: AGHT+IHQL4FYPUhuJ4VLo+ULU5UwNPDCcKdl+orc0e0o1kBvbpFWJZHqvzZAh1C9PYS7b37iGyBtVA==
X-Received: by 2002:a05:6a00:1401:b0:6ea:c42a:d705 with SMTP id l1-20020a056a00140100b006eac42ad705mr12123006pfu.10.1713123736354; Sun, 14 Apr 2024 12:42:16 -0700 (PDT)
Received: from smtpclient.apple (c-69-181-169-15.hsd1.ca.comcast.net. [69.181.169.15]) by smtp.gmail.com with ESMTPSA id e24-20020a62aa18000000b006eadfbdcc13sm5893606pff.67.2024.04.14.12.42.15 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Sun, 14 Apr 2024 12:42:15 -0700 (PDT)
From: Mahesh Jethanandani <mjethanandani@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_FE4BBA6A-A6E5-450C-8DEC-986A3F7FD392"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.120.41.1.8\))
Message-Id: <446BBCFF-8469-4669-B43F-ECE2EBE59F15@gmail.com>
Date: Sun, 14 Apr 2024 12:42:14 -0700
Cc: opsawg@ietf.org, paitken@ciena.com
To: draft-ietf-opsawg-ipfix-tcpo-v6eh@ietf.org
X-Mailer: Apple Mail (2.3696.120.41.1.8)
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsawg/HU16Zp_yv2yoSq7Lvten8EQ65CY>
Subject: [OPSAWG] AD review of draft-ietf-opsawg-ipfix-tcpo-v6eh
X-BeenThere: opsawg@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OPSA Working Group Mail List <opsawg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsawg>, <mailto:opsawg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsawg/>
List-Post: <mailto:opsawg@ietf.org>
List-Help: <mailto:opsawg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsawg>, <mailto:opsawg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 14 Apr 2024 19:42:23 -0000

Hi Authors,

Thanks for working on this document.

Here is my AD review of draft-ietf-opsawg-ipfix-tcpo-v6eh-10 version of the draft. They are divided between COMMENT and NIT. I expect that the COMMENTs will be resolved before the document is sent to IETF Last Call.

-------------------------------------------------------------------------------
COMMENT
-------------------------------------------------------------------------------

Section 1, paragraph 1

Should the draft-ietf-opsawg-ipfix-fixes be referenced also? How about reference to RFC 7012 which is only mentioned in the Security Considerations section?

Section 1.1, paragraph 12
>    Section 3 addresses these issues.  Also, ipv6ExtensionHeaders IPFIX
>    IE is deprecated in favor of the new IEs defined in this document.

On the question of how a legacy client receiver receiving this new ipv6ExtensionHeader definition would react, I was wondering if a forward reference to the Operational Considerations be made. Otherwise, till one reads that section, it is not clear what a legacy client should do. 

Section 1.2, paragraph 3
>    *  Describe how any observed TCP option in a Flow can be exported
>       using IPFIX.  Only TCP options having a kind <= 63 can be exported
>       in a tcpOptions IE.


Is the problem that no TCP options can be exported using IPFIX, or is that TCP options having a Kind value >= 64 cannot be exported? Note, the first sentence starts by saying “how any observed TCP option in a Flow can(not) be exported”, the not added from the sentence above.

Section 1.2, paragraph 4
>    Section 4 addresses these issues.  Also, tcpOptions IE is deprecated
>    in favor of the new IEs defined in this document.

Same comment as above on providing a forward reference.

Section 3.3, paragraph 7
>    Abstract Data Type:  unsigned256

I wonder why the opinion of a Expert Reviewer was overridden on the choice of defining this as unsigned256 instead of a bitfield. I understand that there is precedence of using unsigned values for "flags", but as Paul noted, the value of a unsigned number is meaningless in the case where the individual bits hold values, not the whole unsigned number. Was it because of reduced-encoding? If so, that should be stated as the reason. BTW, can a bitfield not have similar semantics of reduced-encoding, if all the (MSB) bits are not being used?

Section 3.4, paragraph 7
>       The same extension header type may appear several times in an
>       ipv6ExtensionHeaderTypeCountList Information Element.  For
>       example, if an IPv6 packet of a Flow includes a Hop-by-Hop Options
>       header, a Destination Options header, a Fragment header, and
>       Destination Options header, the ipv6ExtensionHeaderTypeCountList
>       Information Element will report two counts of the Destination
>       Options header: the occurrences that are observed before the
>       Fragment header and the occurrences right after the Fragment
>       header.

Could this example be made complete by mentioning what the IE will report as count for Fragment header, and Hop-by-Hop Options header?

Section 3.5, paragraph 1
>    Name:  ipv6ExtensionHeadersLimit

How are these names decided? Is the use of Limit the right way to express this? Could the name be ipv6ExtensionHeadersComplete or something that indicates the complete set of headers has been accounted for? Something similar was reported in the Transport Area review.

Section 6.1, paragraph 1
>    Figure 1 provides an example of reported values in an
>    ipv6ExtensionHeadersFull IE for an IPv6 Flow in which only the IPv6
>    Destination Options header is observed.  One octet is sufficient to
>    report these observed options.  Concretely, the
>    ipv6ExtensionHeadersFull IE will be set to 0x01.

Per Section 8.4.1, Initial Values for the [NEW_IPFIX_IPV6EH_SUBREGISTRY], the bit value for the Destination Options is bit 0. However, in the diagram bit 255 is shown set to 1. That can be confusing. Would it help to reverse the bit numbering keeping everything else the same?

Section 6.1, paragraph 3
>    Figure 2 provides another example of reported values in an
>    ipv6ExtensionHeadersFull IE for an IPv6 Flow in which the IPv6 Hop-
>    by-Hop Options, Routing, and Destination Options headers are
>    observed.  One octet is sufficient to report these observed options.
>    Concretely, the ipv6ExtensionHeadersFull IE will be set to 0x23.

Please refer to Section 8.4.1, Initial Values of the [NEW_IPFIX_IPV6EH_SUBREGISTRY] for folks to understand the bit assignments in this example.

Section 6.2, paragraph 4
>                    Figure 3: First Example of TCP Options

Rather than calling it First, could this be "Example of tcpOptionsFull"?

Section 8.4.2, Guidelines for Designated Experts

Want to make sure that Expert Review is an appropriate registration policy here. Or would Specification Required [RFC8126] be more appropriate? This policy is the same as Expert Review, with the additional requirement of a formal public specification.


The next few lines are flagged because the tool is unable to determine the nature of the reference. You can ignore them.

No reference entries found for these items, which were mentioned in the text:
[NEW_IPFIX_IPv6EH_SUBREGISTRY].

Possible DOWNREF from this Standards Track doc to [IANA-IPFIX]. If so, the IESG
needs to approve it.

Possible DOWNREF from this Standards Track doc to [IANA-TCP]. If so, the IESG
needs to approve it.

Possible DOWNREF from this Standards Track doc to [IANA-EH]. If so, the IESG
needs to approve it.

Possible DOWNREF from this Standards Track doc to [IANA-Protocols]. If so, the
IESG needs to approve it.

Possible DOWNREF from this Standards Track doc to [IANA-TCP-EXIDs]. If so, the
IESG needs to approve it.

-------------------------------------------------------------------------------
NIT
-------------------------------------------------------------------------------

All comments below are about very minor potential issues that you may choose to
address in some way - or ignore - as you see fit. Some were flagged by
automated tools (via https://github.com/larseggert/ietf-reviewtool), so there
will likely be some false positives. There is no need to let me know what you
did with these suggestions.

Section 1.2, paragraph 2

Inconsistent use of Kind. Sometimes it is with a capital K, but other times it is with a small k.

Section 7, paragraph 3
>    This document does not add new security considerations for exporting
>    other IEs other than those already discussed in Section 8 of
>    [RFC7012].


s/exporting other IEs other/exporting IEs other/

"Abstract", paragraph 3
> ions and Management Area Working Group Working Group mailing list (opsawg@iet
>                          ^^^^^^^^^^^^^^^^^^^^^^^^^^^
This phrase is duplicated. You should probably use "Working Group" only once.

Section 2, paragraph 2
> ementID: TBD1 Description: The type of an IPv6 extension header observed in
>                                ^^^^^^^^^^
If "type" is a classification term, "an" is not necessary. Use "type of". (The
phrases "kind of" and "sort of" are informal if they mean "to some extent".).

Section 3.3, paragraph 4
> igned256 I wonder why the opinion of a Expert Reviewer was overridden on the
>                                      ^
Use "an" instead of "a" if the following word starts with a vowel sound, e.g.
"an article", "an hour".

Section 3.3, paragraph 5
> ags", but as Paul noted, the value of a unsigned number is meaningless in the
>                                       ^
Use "an" instead of "a" if the following word starts with a vowel sound, e.g.
"an article", "an hour".

Section 3.5, paragraph 8
> rting such information may help identifying root causes of performance degra
>                                 ^^^^^^^^^^^
The verb "help" is used with an infinitive.

Section 4.2, paragraph 6
> [RFC8883] for a behavior of an intermediate nodes that encounters an unknown
>                             ^^^^^^^^^^^^^^^^^^^^^
The plural noun "nodes" cannot be used with the article "an". Did you mean "an
intermediate node" or "intermediate nodes"?

Mahesh Jethanandani
mjethanandani@gmail.com

v2.23.0 | Report a Bug | By Email