Re: [Roll] Benjamin Kaduk's Discuss on draft-ietf-roll-turnon-rfc8138-14: (with DISCUSS and COMMENT)

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Thu, 10 September 2020 12:20 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 301C03A0967; Thu, 10 Sep 2020 05:20:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.598
X-Spam-Level:
X-Spam-Status: No, score=-9.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=HXoNb6ix; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=dUyKZJ4M
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dNeMKvqGkr_M; Thu, 10 Sep 2020 05:20:09 -0700 (PDT)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4DEBC3A0BF3; Thu, 10 Sep 2020 05:19:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=16036; q=dns/txt; s=iport; t=1599740385; x=1600949985; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=pYmyPb5k4fNkkkvnf5eD8UV5wkM18DD9YMec4hko6Ao=; b=HXoNb6ix0Khn/DyIE2lmXULBHSDczHnJt5YEKnjWLrtoig27QCH2yQL6 V/ROGkmKLfCK0RYnSnvQeiC7AOQLNI9dUcMfOj1KfSlSFptAv4C7Loh+v I/3pTFyI2qtiQHJIpX4MNE10tnSgGI0R8z9Y1BtBV2G+H0EaZTsseTHis Y=;
IronPort-PHdr: =?us-ascii?q?9a23=3AOsqgYxTi3CepragGHOyHptAKENpsv++ubAcI9p?= =?us-ascii?q?oqja5Pea2//pPkeVbS/uhpkESQBN2J7vNYzefarvOoVW8B5MOHt3YPONxJWg?= =?us-ascii?q?QegMob1wonHIaeCEL9IfKrCk5yHMlLWFJ/uX3uN09TFZX7ZkGUr3GvvnYeHx?= =?us-ascii?q?zlPl9zIeL4UofZk8Ww0bW0/JveKwVFjTawe/V8NhKz+A7QrcIRx4BlL/U8?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0DxEQCXGVpf/5ldJa1fDnuBT4FSUQd?= =?us-ascii?q?wUQgvLAqELoNGA41ymHGBQoERA1ULAQEBDQEBJQgCBAEBhEsCF4IFAiQ3Bg4?= =?us-ascii?q?CAwEBCwEBBQEBAQIBBgRthVwMhXIBAQEBAgESEREMAQEwBwEECwIBBgIaAhU?= =?us-ascii?q?BAQ8CAgIwFRACBAENDRqDBYJLAw4gAQMLl2GQaQKBOYhhdoEygwEBAQWBMwE?= =?us-ascii?q?DAoNYGIIQAwaBDiqCcYJcS0KCQYQRG4FBP4EQAUOBT34+glwBAQEBAYFCAQo?= =?us-ascii?q?RWQSCODOCLY9fIzEBgjIBPJJYkH4KgmWIa5FtgwmJcI4hhUGSVIFtiGGQYoQ?= =?us-ascii?q?pAgQCBAUCDgEBBYFqJIFXcBWDJFAXAg2OKxcUgzqBf4MVhQQ+dAIJLAIGAQk?= =?us-ascii?q?BAQMJfIwNAiYEgQkBgRABAQ?=
X-IronPort-AV: E=Sophos;i="5.76,413,1592870400"; d="scan'208";a="812231543"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 10 Sep 2020 12:19:21 +0000
Received: from XCH-RCD-001.cisco.com (xch-rcd-001.cisco.com [173.37.102.11]) by rcdn-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id 08ACJL6i022197 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 10 Sep 2020 12:19:21 GMT
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by XCH-RCD-001.cisco.com (173.37.102.11) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Thu, 10 Sep 2020 07:19:21 -0500
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Thu, 10 Sep 2020 08:19:20 -0400
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Thu, 10 Sep 2020 08:19:19 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=mU3mCkyjJy2awk/NjkMq18keWAbG/lvuMt8CHV+QG7cgHNN0B4UbB97NuTZYVZTe5J87jL4FJQbrRfRG8ytxSaahcnZhzuvd6fbrYZuVNdXUrDky0kBgZRSxwxL6KDs2vn8Rp5GNT897y4uvEDQQwZtq3YE/oVYAXbPcRHWwbPqR7akZgXJaJFpIfNyW/Z+IMTvz99IAW1GBYnenyHolY+4rXmDNrY7/bZSnCnBeJPVHiEEUVk2WwXNo4m752N2q22XW19DgFYU1kuj0B4adY+Y8bw5CY8iTJbOCPAVYKcqZ4s3ntKELu1BX3fV6tFM6UVAGHHbZCHSevU+Iq+A5gA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=pYmyPb5k4fNkkkvnf5eD8UV5wkM18DD9YMec4hko6Ao=; b=C7xh/prOUGjHp3AKr896JJtDAC8lTUoKeRIPz1CgM4xTAXkGk8fbO2DjROzJ8kNCTzOJq89aFoQi8OA3O4XZp+pGdE1+ktPb8nZakROpkDjNrinmyOdUpd1nvFwbrd/pjerOKky7vwSVT5gD9z8McaO+2o5ug1rGagDOr/yf8yRbwx4TYWplP/WRALYZPiq8eNMgdn7oStPkk9TDNgIPEfD8Yzz6Z2mKlQ8VreBu8vTFRRy2WpMO1iNcaA9JzF5vNl1LMQxMFJdvR/0/RwcRg/6Jb1Wfzwz31GhcG7g/PGofJGshT1hFwdxLbIKDD8pUEdjLVO3/U81CFlQ16IqXqw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=pYmyPb5k4fNkkkvnf5eD8UV5wkM18DD9YMec4hko6Ao=; b=dUyKZJ4MqXTUWslxJtAVTjWNA7h0zB3O+BPTpCVycqf+ttnFih1ZKQl05zG0IJWuo6a69YaZg4/TZXH3Hc4ZjIcf3rv/Xl9UPcMGdhHiW9ykGU+lSvSxB3zJckwfwfud+rJlpz/WIiGTgs1XWEmDQzXCgNYw94asm/2QZQCPuhI=
Received: from MN2PR11MB3565.namprd11.prod.outlook.com (2603:10b6:208:ea::31) by MN2PR11MB3902.namprd11.prod.outlook.com (2603:10b6:208:150::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3348.15; Thu, 10 Sep 2020 12:19:18 +0000
Received: from MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::119:f851:5860:da95]) by MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::119:f851:5860:da95%4]) with mapi id 15.20.3348.019; Thu, 10 Sep 2020 12:19:18 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Benjamin Kaduk <kaduk@mit.edu>, Alvaro Retana <aretana.ietf@yahoo.com>
CC: "draft-ietf-roll-turnon-rfc8138@ietf.org" <draft-ietf-roll-turnon-rfc8138@ietf.org>, "roll-chairs@ietf.org" <roll-chairs@ietf.org>, "roll@ietf.org" <roll@ietf.org>, Ines Robles <mariainesrobles@googlemail.com>, "aretana.ietf@gmail.com" <aretana.ietf@gmail.com>, The IESG <iesg@ietf.org>
Thread-Topic: Benjamin Kaduk's Discuss on draft-ietf-roll-turnon-rfc8138-14: (with DISCUSS and COMMENT)
Thread-Index: AQHWhvbDFnz+ZxCN2kqfSLm4/QQEM6lhafFg
Date: Thu, 10 Sep 2020 12:18:48 +0000
Deferred-Delivery: Thu, 10 Sep 2020 12:18:29 +0000
Message-ID: <MN2PR11MB35659A0710E687A7C9995E6ED8270@MN2PR11MB3565.namprd11.prod.outlook.com>
References: <159968972884.1065.3876077471852624744@ietfa.amsl.com>
In-Reply-To: <159968972884.1065.3876077471852624744@ietfa.amsl.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: mit.edu; dkim=none (message not signed) header.d=none;mit.edu; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [90.118.154.54]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: c37c5410-866a-491f-1619-08d85583bdb3
x-ms-traffictypediagnostic: MN2PR11MB3902:
x-microsoft-antispam-prvs: <MN2PR11MB3902B37C1AAC2CC5752D876FD8270@MN2PR11MB3902.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: JQY80GhH4I867ixaHHE0a0P/lamEWl+ZffAELMYGbe0+nyAoUOz6A95C7IJPUR6ieNsO76oMbnpiZJda5R2AmLhG/av27rI4EaglTggdAbT+WHsQOnL88FigFBBUzUk6zTw/Fn/CdJIU3XvCeiMPZz3O3kdsC1XrApyxaP9aPFw19mYN0TMQXEtr5ZhFVtpDq3HNqOjLb1khUsSfvCEb6UETvLWxuOk0EYs0Kq20RbsDf8hwayEt7NsS9jmT0faSDKWlN8rrYR/TUSPrzqExPGj5crJIOCHr+Gf6y7CUwoFNtD22a27/WpSs2babx7w4YY5stolE7udwyD/oALI+WnbFRoZkQxN5brQrxNgphiZdqn/HkxejOYMPrxXUZyyx6nVZZCqRA4/l67o8XXpB0Q==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB3565.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(136003)(376002)(396003)(39860400002)(346002)(366004)(71200400001)(316002)(66946007)(2906002)(8936002)(478600001)(4326008)(110136005)(9686003)(7696005)(6506007)(5660300002)(33656002)(54906003)(66574015)(86362001)(64756008)(30864003)(66556008)(966005)(186003)(8676002)(66446008)(76116006)(66476007)(55016002)(6666004)(52536014)(26005)(83380400001)(83080400001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR11MB3565.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: c37c5410-866a-491f-1619-08d85583bdb3
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Sep 2020 12:19:18.3463 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: jFGmPJ4ThDElF3shULguoSmd4yVqfAx2ef+ib1yp0ia/99TiQuJNsczugpZj4uZhl+Ztef/PsJniytohCOGSVQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB3902
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.11, xch-rcd-001.cisco.com
X-Outbound-Node: rcdn-core-2.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/roll/LOVmyrg9mNZSEoftGtXasH2xyoI>
Subject: Re: [Roll] Benjamin Kaduk's Discuss on draft-ietf-roll-turnon-rfc8138-14: (with DISCUSS and COMMENT)
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/roll/>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Sep 2020 12:20:11 -0000

Hello Benjamin

Many thanks for the depth of your review and the considerable amount of time you must have spent on it!

 
> ----------------------------------------------------------------------
> DISCUSS:
> ----------------------------------------------------------------------
> 
> The situation w.r.t. MOP values 5, 6, and 7 seems inconsistent to me.
> We are not allocating them, but we are changing the RFC 6550 behavior in the
> presence of at least one of them (but are not currently claiming to Update
> 6550).  I have some further thoughts in the COMMENT section, but I don't
> think the current state is consistent enough to be approved as-is.

As Michael said on this thread. 

You'll find that we had a mention that we update RFC 6550 till -07, e.g., https://tools.ietf.org/html/draft-ietf-roll-turnon-rfc8138-05

This changed with "AD Review of draft-ietf-roll-turnon-rfc8138-07"

"

155	3.  Updating RFC 6550

[major] I don't think that a formal Update to rfc6550 is necessary.
In general, a formal Update indicates (at least to me) that an rfc6550 implementation has to also support this specification.  IOW, all RPL routers will have to support the new flag to be compliant with rfc6550.  Also, rfc8138 did not formally Update rfc6550.
"

So on that one, I will ask you to talk to Alvaro (cc). I am still looking for the final words on what "updates" means!

I'm holding the publication till you and Alvaro agree on this item. For the rest, let's see below:

> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> The description of the RFC 8138 as a "packet compression technique"
> throughout the document (e.g., "with the [RFC8138] compression turned
> on") has been fairly confusing to me, since as I understand it, RFC 8138 defines
> a new routing header that just happens to have, as a primary design
> consideration, a compression technique included. 

Well, I see it differently. RFC 8138 does not define new IPv6 headers. You can always transform an IPv6 packet to the RFC 8138 encoding and back with the IPv6 headers that already exist. It is an extension of the 6LoWPAN Header Compression.
The reason for so many words in the RFC is that we define how to perform the forwarding operations without the need to uncompress.
Making the forwarding a lot simpler for the constrained code than it is with normal IPv6 (think of the swapping with the RH etc...) was another goal of that spec.


> So, the incompatibility
> between non-8138 and 8138 nodes relates to the understanding of the header,
> not the compression within the header.  

True, regardless on whether we agree on the sentence above.

> As
> 8138 itself puts it: "It is expected that a router that does not recognize the
> 6LoRH general format detailed in Section 4 will drop the packet when a 6LoRH
> is present."  The discussion in (e.g.) section 5.2 then makes more sense when
> we have a mix of different header formats in the same network, etc.  In my
> mind, the "T" flag is controlling "do we use RFC 8138" and not "do we use RFC
> 8138 compression" (but perhaps I'm just confused!).

I can live with that. We never went into that discussion doing, say https://tools.ietf.org/html/rfc6282. 
We just call that compression but the same concern applies.


> This also (perhaps tangentially) relates to the concern brought up at WG-
> adoption time relating to whether this is an appropriate mechanism for
> conveying this kind of configuration.  If the intent is to say "this DODAG uses
> RPL with a given routing header format", that seems a fairly reasonable match
> for DODAG configuration information (though not perfect), whereas "use this
> compression format for your RPI" seems somewhat farther removed.

OK


>  I say it's not a perfect fit for two reasons:
> (1) as I understand it, the routing header behavior applies to the whole RPL
> instance, not just the specific DODAG, so if there was an "RPL Instance
> Configuration Option" that would be better; 

We went through that, and initially I wanted per-instance operation too. But this would have required a synchronization between multiple roots in a large instance and RPL has nothing to ensure at that. So we went for a per DODAG operation. Note that packets in a DODAG stay in that DODAG.


> and (2) the description in RFC
> 6550 of the Option is "used to distribute configuration information for DODAG
> Operation", but "DODAG Operation" is not defined.  If it was defined to be
> affecting the global configuration for RPL operation within the DODAG that
> seems a better match for my understanding of what it's intended to do.  (To be
> fair, my understanding is shaped largely by looking at the existing 'A' flag and
> pondering that it's not really related to DODAG formation/modification, and
> extrapolating from a single data point is risky.) 

Maybe you and Alvaro could also consider https://tools.ietf.org/html/draft-ietf-roll-useofrplinfo-40#section-4. In this draft, which is rather simple, we went through a sequence of do / undo's in the review handling of IETF last call and beyond. Those opposite pieces of advice came from very seasoned reviewers, Stewart, Alvaro, Eric V. and yourself. 

This is not an easy experience for the authors. I guess I can live with it, having gone through IETF last calls before. But maybe there's something to look at a bit more.

To your point, the intent of the option is to carry the parameters that dictate how RPL operates in the DODAG, in lieu of the traditional way of using CLI on each node, which arguably is not an easy thing in a large network of constrained nodes. We wanted RPL to be self-descriptive, more autonomic if you like, and that made it attractive to ANIMA. Sadly we missed homenet.

> An Update to RFC 6550 to
> clarify this aspect of the DODAG Configuration Option would make me more
> comfortable with using this mechanism to affect what routing header is used
> on the network.

That was my intention. I'll trust you guys on that once you reach an agreement.



> Section 1
> 
>    Enabling [RFC8138] requires a Flag Day where the network is upgraded
>    and rebooted.  Otherwise, if acting as a Leaf, a node that does not
> 
> [My inner pedant notes that this is not true for greenfield deployments, where
> the "upgrade" is in place on first boot.]
> 

True; Isn't that the flaggest days of all ; ) ?

What about 
"
    Enabling [RFC8138] on a running network requires a Flag Day where the
   network is upgraded and rebooted.
"

> Section 2.2
> 
>    SubDAG:  Subset of a DAG that is a child of a node
> 
> (nit) This seems a little ambiguous as to whether the node in question is
> included (and also whether inclusion is based on transitive child relationship vs.
> direct, though that interpretation doesn't acutally make sense); perhaps
> "subset of a DAG that is itself a DAG, rooted at a given node"?

My reading, and the intention, is that the node is excluded. One is not one's child.

What I like in your proposal is that it indicates that the subDAG is a DAG, which is a property of the subDAG.
Another property is that it is a DODAG even if the outer DAG itself is not.
Please look at https://www.nist.gov/dads/HTML/subtree.html; I do not feel like debating with Paul Black myself 😉
What about (placing redundant dots on i's which Paul's definition does not)
"
A DODAG rooted at a node which is a child of that node and a subset of a larger DAG
"

> Section 3
> 
>    This specification defines a new flag "Enable RFC8138 Compression"
>    (T).  The "T" flag is set to turn-on the use of the compression of
>    RPL artifacts with [RFC8138] within the DODAG.  The new "T" flag is
>    encoded in position 2 of the reserved Flags field in the RPL DODAG
>    Configuration Option, and set to 0 in legacy implementations as
>    specified in Section 6.7.6 of [RFC6550].
> 
> (I agree with the other comments about "position 2" needing further
> explanation, even if that's just a more prominent pointer to the relevant IANA
> registry.)

OK then. What about:

"
                                                                                  The new "T" flag is
   encoded in position 2 of the reserved Flags field in the RPL DODAG
   Configuration Option (counting from bit 0 as the most significant
   bit) and set to 0 in legacy implementations as specified respectively
   in Sections 20.14 and 6.7.6 of [RFC6550]"


>    Section 6.3.1 of [RFC6550] defines a 3-bit Mode of Operation (MOP) in
>    the DIO Base Object.  This specification applies to MOP values 0 to
>    6.  For a MOP value of 7, the compression MUST be used by default
>    regardless of the setting of the "T" flag.
> 
> I see that this is getting discussed elsewhere already, but it's not entirely clear
> to me why we need to be so precise about the future behavior.  Won't it be
> fine if whatever document allocates MOP value 7 also says whether or not to
> use compression^Wthe 8138 header format?
> We could say something about "unless otherwise specified by the document
> allocating the MOP value, this specification applies", even.

What we aim to do is provide a well-defined behavior for RPL V1 (MOP<7) and for RPL V2 (MOP==7)  in the code that is written today.

Say that the MOP 6 spec redefines the "T" flag. A legacy node written today will misunderstand it and misbehave. We want to avoid that and ensure backwards compatibility so we lock the flag, make it MOP independent for RPL V1. But then, the flags will be obsolete in a future world where all nodes support RFC 8138 and encode the RPI as 0x23. So we decided for this spec as well as for https://tools.ietf.org/html/draft-ietf-roll-useofrplinfo to lock the flags we define for all MOPs in RPL V1 and reopen their definition in RPL V2 (where MOP is 7) and above.

This way a spec that define MOP 6  will know that the "T" flag is understood in a certain fashion by the nodes even if they do not know what to do with the MOP. The conjunction of this and RFC 6550 will for a node running code written today to operate as a leaf in a MOP 6 DODAG - because it does not understand MOP 6 - yet have the default behavior of complying with the "T" flag as defined here, so it can be a well-behaved leaf.

For MOP 7 all bets are off. The expectation is that the "T" flag will not be needed because RFC 8138 will be part of the base mandate. If it Is not, will people can still define the "T" flag again, but that will be part of the new spec. The trouble is that an implementation of today will not use the redefined flag but take compression for granted. If the MOP 7 redefines the flag, an implementation of today will not operate properly. So we accept for MOP 7 what we refuse for MOP < 7.

As it goes, I do not expect people will keep legacy nodes in a RPL V2 network. Too many things change. We add capability negotiation, we add SDN (P-DAO), the MOP is in a MOP-EXT option, ... a RPL V1 will be a second class citizen.



> 
> Section 5.2
> 
>    the RPL Instance may potentially join any DODAG.  The network MUST be
>    operated with the "T" flag reset until all nodes in the RPL Instance
>    are upgraded to support this specification.
> 
> nit: maybe s/reset/unset/?
> 

Done.

The temporary diff is stored in https://github.com/roll-wg/roll-turnon-rfc8138/commit/c581c66eed7efbaf4476c0a6cd8bb70714aa56ae
Please let me know if I need to do more for the COMMENT piece

Many thanks again!

Pascal