IETF Logo Mail Archive

Re: [sfc] WGLC for https://datatracker.ietf.org/doc/draft-ietf-sfc-ioam-nsh/

Greg Mirsky <gregimirsky@gmail.com> Tue, 01 February 2022 21:57 UTC

Return-Path: <gregimirsky@gmail.com>
X-Original-To: sfc@ietfa.amsl.com
Delivered-To: sfc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0FB6D3A1192; Tue, 1 Feb 2022 13:57:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ou2t9lbQ427e; Tue, 1 Feb 2022 13:57:13 -0800 (PST)
Received: from mail-ej1-x62d.google.com (mail-ej1-x62d.google.com [IPv6:2a00:1450:4864:20::62d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 93C3C3A11A7; Tue, 1 Feb 2022 13:57:12 -0800 (PST)
Received: by mail-ej1-x62d.google.com with SMTP id h7so58613704ejf.1; Tue, 01 Feb 2022 13:57:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=eG7pB7F0CViYelJajSMkUrW/UHHpG6jID+w4o4ACcHA=; b=B3+O1iUK5baBLcixqJvEhLjVEuyzVRdZYURF4KJRX21youUHcjze133by5LQInnZwY urETOT5JDi1OYK+kMUNJtuddE5zt1tLvLYQPwrwSHfvb/NAfwS1OQQ6qDh8w2IQUbF06 UMNH/tY87xtYJAxU1lUr3uMpSTKEBDcOKI3ui6ekqcn5vbkfZ6pGrax1Gi16GKYFrOyC ByC2YEfrEfo7nJy+LVOLUVAyFKlHgNAbtc8Cxfw+1lHG6QBEssNC28usB+ek5XWao2hn A0JcP/c3iFI0/fkbrUTSU/lCi/FYJRwog3pyvmrJJPhaex/Lqoo5zBK3p+w96BSzrB+z pNYw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=eG7pB7F0CViYelJajSMkUrW/UHHpG6jID+w4o4ACcHA=; b=kRMexMOFOaaz1Bx0NArmc3aANbB6vh5QLqW4/NjwMIbp3a0ohNWJ1CA2GwYWRB9sZl YTSJfDwTLNhKAqwHiFSu9IM7uvqDMf70CWdMbCnscyTgZtS9aEol2fg09EEWmrTGpX4A xRfWi/Y6tR6NR04ljAo45MsgKXv3tFTcocWDJO/hL2LR368pyZsQcx4eV0a6WK3xK/W4 I87y5Q/6CYASxImyqaWNviRs5PMTnrzjsRxciM5bJSO7p4r2wvjp1K/4LZDV3wp6SHyb dEjMEu7Xc8748Q6+YPlsfZo1bnNSn9bstOTsyALFKtXvNSdT00bboWZj6QNU+NL/tP3N YuaA==
X-Gm-Message-State: AOAM5319Qw55wLQlmELYCAdJEXhPpZSGiQuiY//DcLXbcr+z4ijrOvTv ZQK+S/x5n8DCrC79m67ftd//SnKyNphNdKIbtda57DNo0XE=
X-Google-Smtp-Source: ABdhPJy+VLXM67CsYaIWq1jRO9CSa6ywxu8wbPp00FPCKNub8Lp7Om4LKp/vg8wy+mPPNYXJQxTuU6SKabOjmK+CsEA=
X-Received: by 2002:a17:907:234f:: with SMTP id we15mr17701631ejb.235.1643752629704; Tue, 01 Feb 2022 13:57:09 -0800 (PST)
MIME-Version: 1.0
References: <MN2PR13MB4206C91446BA5FBBDA69E233D2FF9@MN2PR13MB4206.namprd13.prod.outlook.com> <CA+RyBmVSrdCaO77P4=1vZ2LmxtR65OmspN_wozyGPNwtM5Uv3A@mail.gmail.com> <CAMFZu3PaLQrHcBULzsxbdnTJyr-bVDVs1WpnFwLuSkR7DbntuQ@mail.gmail.com> <CA+RyBmWeUiTsA7-CvpXSBViB00Y-tmAuSr-P=Vf3vB61zfn6bg@mail.gmail.com> <CAMFZu3P45x9Mt5-MUpGO1Puqz57DPcGE4aBsPNxczW-pw9n=AA@mail.gmail.com>
In-Reply-To: <CAMFZu3P45x9Mt5-MUpGO1Puqz57DPcGE4aBsPNxczW-pw9n=AA@mail.gmail.com>
From: Greg Mirsky <gregimirsky@gmail.com>
Date: Tue, 01 Feb 2022 13:56:58 -0800
Message-ID: <CA+RyBmUAZa23zn7H5aMMmnwHqFnmwvGoRuYjQxhTzwqi3OP3pw@mail.gmail.com>
To: Shwetha Bhandari <shwetha.bhandari@thoughtspot.com>
Cc: James Guichard <james.n.guichard@futurewei.com>, draft-ietf-sfc-ioam-nsh@ietf.org, "sfc@ietf.org" <sfc@ietf.org>, "sfc-chairs@ietf.org" <sfc-chairs@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000979b7405d6fbfbdf"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sfc/HLi2xTUPVUHJunZhfxCrGVRrVv4>
Subject: Re: [sfc] WGLC for https://datatracker.ietf.org/doc/draft-ietf-sfc-ioam-nsh/
X-BeenThere: sfc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Network Service Chaining <sfc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sfc>, <mailto:sfc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sfc/>
List-Post: <mailto:sfc@ietf.org>
List-Help: <mailto:sfc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sfc>, <mailto:sfc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Feb 2022 21:57:18 -0000

Hi Shwetha,
thank you for your kind consideration of my comments and questions, and the
work you put into addressing them; much appreciated.
I find many of my comments and questions resolved. There are a few
remaining and I hope you will clarify them to me. Please find my follow-up
notes below:

   - I couldn't find how an IOAM header with Active or Loopback flags
   <https://datatracker.ietf.org/doc/draft-ietf-ippm-ioam-flags/> set must
   be handled by an SFF.
   - The closing of Section 4.1 can be interpreted as IOAM can be the only
   payload immediately following the NSH:

... the O bit MUST be set for

   OAM packets which carry only IOAM data without any regular data

   payload

Would in this situation the Active flag must be set in the IOAM header? And
if no "regular data payload" is present, wouldn't IOAM become not a hybrid
measurement method, as it is characterized in draft-ietf-ippm-ioam-data,
but, according to RFC 7799, an active OAM?

Kind regards,
Greg

On Mon, Jan 31, 2022 at 8:24 PM Shwetha Bhandari <
shwetha.bhandari@thoughtspot.com> wrote:

> Hi Greg,
>
> Sorry for the late action on this.
> https://datatracker.ietf.org/doc/html/draft-ietf-sfc-ioam-nsh-07 has been
> now posted with the edits per this discussion.
>
> Hi Jim,
>
> After Greg's review please let us know if the changes are good to progress
> the draft to the next step.
>
> Thanks,
> Shwetha
>
> On Wed, Oct 27, 2021 at 7:31 PM Greg Mirsky <gregimirsky@gmail.com> wrote:
>
>> Hi Shwetha,
>> thank you for the detailed response to my comments. Please feel free to
>> share any updates you're considering for the next version. I'll be glad to
>> work together on these.
>> I have several follow-up notes in-lined below under the GIM>> tag.
>>
>> Regards,
>> Greg
>>
>> On Tue, Oct 26, 2021 at 6:51 PM Shwetha Bhandari <
>> shwetha.bhandari@thoughtspot.com> wrote:
>>
>>> Hi Greg,
>>>
>>> Sorry for the very late reply. Please find responses to your comments
>>> inline @Shwetha:
>>>
>>>
>>>
>>> On Wed, Sep 8, 2021 at 3:30 AM Greg Mirsky <gregimirsky@gmail.com>
>>> wrote:
>>>
>>>> Dear Authors and All,
>>>> I've read the current version of the draft and have some comments I'd
>>>> like to share with you. I much appreciate your thoughts on where this work
>>>> should go considering developments in other IETF WGs. Please find my notes
>>>> and questions below:
>>>>
>>>>    - It is stated in the Abstract that:
>>>>
>>>>    In-situ Operations, Administration, and Maintenance (IOAM) records
>>>>    operational and telemetry information in the packet while the packet
>>>>    traverses a path between two points in the network.
>>>>
>>>> But that is the case only for the pre-allocated and incremental trace
>>>> option types. The Direct Export option
>>>> <https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-ippm-ioam-direct-export/__;!!MZ3Fw45to5uY!db6q3n8-5YqHkLtf3wyeBoUpO72v7UzeDtfPNhyePahNAYMo9eFdQxxBWM4C7Z0OJKE0jphubQ$>
>>>> does not write telemetry data into the data packet itself but export
>>>> telemetry information in a specially constructed packet.
>>>> And as we are talking about different IOAM trace options, the
>>>> question of the scope of this document seems appropriate. There is a
>>>> WGLC on two IOAM documents
>>>> <https://urldefense.com/v3/__https://mailarchive.ietf.org/arch/msg/ippm/A0OcGQ5LlNjnjfRVp_iUTMYMrcs/__;!!MZ3Fw45to5uY!db6q3n8-5YqHkLtf3wyeBoUpO72v7UzeDtfPNhyePahNAYMo9eFdQxxBWM4C7Z0OJKHOndSFRg$>
>>>> active through September 15th at the IPPM WG. I believe that it would be
>>>> beneficial if we had a single document that describes the applicability of
>>>> IOAM in all its functionality defined by documents in IPPM WG. Of course,
>>>> that cannot be a moving target as that would not be helpful. But since the
>>>> IPPM WG discusses the progress of two IOAM documents, it could be a great
>>>> time to address the applicability of the Direct Export trace type
>>>> <https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-ippm-ioam-direct-export/__;!!MZ3Fw45to5uY!db6q3n8-5YqHkLtf3wyeBoUpO72v7UzeDtfPNhyePahNAYMo9eFdQxxBWM4C7Z0OJKE0jphubQ$>
>>>> and Loopback and Active flags defined in draft-ietf-ippm-ioam-flags
>>>> <https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-ippm-ioam-flags/__;!!MZ3Fw45to5uY!db6q3n8-5YqHkLtf3wyeBoUpO72v7UzeDtfPNhyePahNAYMo9eFdQxxBWM4C7Z0OJKHO7lReVw$>.
>>>> It would be concerning to have more than one SFC document describing the
>>>> applicability of the generic IOAM mechanisms
>>>>
>>>>
>>> Shwetha> This is a fair point. We will revise the  draft with text in
>>> the abstract and Section 3 IOAM-Type to be updated to include the usage
>>> of trace and DEX options.  The encapsulation of IOAM options within NSH
>>> itself in its current form already supports all the IOAM Option Type
>>> defined both from draft-ietf-ippm-ioam-data and
>>> draft-ietf-ippm-ioam-direct-export along with the flags supported
>>> within the options. Hence the IOAM-data-field definitions in the draft will
>>> remain unchanged.
>>>
>> GIM>> I agree that the definitions of the IOAM data-fields are invariant
>> in various data plane encapsulations. You likely follow the discussion of
>> the IAOM Direct Export and IOAM flags on the IPPM WG list. I think that for
>> SFC NSH, IOAM Direct Export could be as simple as "use the local policy".
>> The applicability of the Loopback and Active flags seems to require
>> detailed explanation by SFP actors.
>>
>>>
>>>
>>>>
>>>>
>>>>    - The location of the IOAM header in the SFC
>>>>    NSH-encapsulated packet is defined in Section 3:
>>>>
>>>>    IOAM-Data-Fields are carried in NSH
>>>>    using a next protocol header which follows the NSH MD context
>>>>    headers.
>>>>
>>>> I've checked RFC 8300 but couldn't find it defines the Next Protocol
>>>> header. Also, it appears that NSH Context headers are optional. Hence my
>>>> question. Is the presence of an NSH Context header required when using
>>>> IOAM? Could you clarify which mechanism is used to identify the payload of
>>>> an SFC NSH-encapsulated packet as IOAM?
>>>>
>>>> Shwetha> We will reword it, it is not Next Protocol header but using
>>> IOAM as a Next Protocol as described in Section 4.1 and requested in IANA
>>> section. Following is the proposed text to align with the RFC 8300
>>> reference to context headers following base header and service path header:
>>> "The NSH is defined in [RFC8300].  IOAM-Data-Fields are carried in
>>> NSH using a next protocol to identify IOAM data fields that follows NSH
>>> context headers."
>>>
>> GIM>> I think that RFC 8300 views data following Context Headers as NSH
>> payload, not being "in NSH".
>>
>>>
>>>>    - If I understand the format of the IOAM header defined in Section
>>>>    3 correctly, the header's length is limited by 1020 octets, while the
>>>>    effective length containing IOAM options and data - 1016 octets. Is that
>>>>    correct? What is the recommended technique of collecting IOAM data that
>>>>    exceeds that limit?
>>>>
>>>> Shwetha > IOAM options inherently support specifying the size limits at
>>> the node that added the IOAM options. While operationalizing the solution
>>> the data types included and number of nodes expected to be adding the data
>>> should be selected. This is covered in deployment
>>> considerations draft-brockners-opsawg-ioam-deployment.
>>>
>>>>
>>>>    - In Section 4.1, I've found the text reflecting the history of the
>>>>    discussion about how to carry the IOAM header using NSH encapsulation. As
>>>>    the text has no normative value, I suggest moving it into an Appendix.
>>>>
>>>> Shwetha > Agreed, revised draft will have this section moved to
>>> Appendix.
>>>
>> GIM>> Thank you.
>>
>>>
>>>>    - I find the rules of handling the O-bit in NSH listed in Section
>>>>    4.2 inconsistent and confusing. The IOAM header is not part of NSH
>>>>    encapsulation but is a part of the payload. But in one case, when user data
>>>>    follows it, the O-bit must not be set as. If there's no user data after the
>>>>    IOAM header, then the O-bit must be set. But from the perspective of NSH
>>>>    encapsulation, it includes specially constructed data added for the sole
>>>>    purpose of collecting OAM/telemetry information. Then, why, in one case,
>>>>    the O-bit is cleared and in the other set if, in both cases, the
>>>>    NSH-encapsulated packet is used to perform the OAM function?
>>>>
>>>> Shwetha > The reason for not setting the O-bit for packets that
>>> contains actual user data is because RFC 8300 has " SF/SFF/SFC
>>> Proxy/Classifier implementations that do not support
>>>
>>>       SFC OAM procedures SHOULD discard packets with O bit set". It will be undesirable to discard packets with O-bit set that carry user data as IOAM can be inserted insitu.
>>>
>>> For synthetic traffic created for OAM along with IOAM-data-fields in NSH following the NSH OAM function with 0-bit set is desirable.
>>>
>>>  GIM>> This is an interesting situation. I agree that there could be an
>> SFC element not supporting "SFC OAM procedures" (not clear what these are).
>> By the same token, would such SFC element support IOAM, be capable of
>> processing IOAM without adverse impact to user data? I am not certain and
>> it seems that it might be better to recommend that NSH packets with IOAM be
>> dropped by an SFP element if it does not support "SFC OAM". What are your
>> thoughts?
>>
>>
>>>
>>> Thanks,
>>> Shwetha
>>>
>>>> I much appreciate your consideration of my comments and questions and
>>>> looking forward to your feedback.
>>>>
>>>> Regards,
>>>> Greg
>>>>
>>>> On Wed, Aug 18, 2021 at 5:32 AM James Guichard <
>>>> james.n.guichard@futurewei.com> wrote:
>>>>
>>>>> Dear WG:
>>>>>
>>>>>
>>>>>
>>>>> This email starts a 2 week Working Group Last Call for
>>>>> draft-ietf-sfc-ioam-nsh [1].
>>>>>
>>>>>
>>>>>
>>>>> Please read this document if you haven’t read the most recent version
>>>>> and send your comments to the SFC WG list no later than September 1st
>>>>> 2021.
>>>>>
>>>>>
>>>>>
>>>>> If you are raising a point which you expect will be specifically
>>>>> debated on the mailing list, consider using a specific email/thread for
>>>>> this point.
>>>>>
>>>>>
>>>>>
>>>>> Lastly, if you are an author or contributor please response to
>>>>> indicate whether you know of any undisclosed IPR related to this document.
>>>>>
>>>>>
>>>>>
>>>>> Thanks!
>>>>>
>>>>>
>>>>>
>>>>> Jim & Joel
>>>>>
>>>>>
>>>>>
>>>>> [1] https://datatracker.ietf.org/doc/draft-ietf-sfc-ioam-nsh/
>>>>> <https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-sfc-ioam-nsh/__;!!MZ3Fw45to5uY!db6q3n8-5YqHkLtf3wyeBoUpO72v7UzeDtfPNhyePahNAYMo9eFdQxxBWM4C7Z0OJKHdTiRE6A$>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> sfc mailing list
>>>>> sfc@ietf.org
>>>>> https://www.ietf.org/mailman/listinfo/sfc
>>>>> <https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/sfc__;!!MZ3Fw45to5uY!db6q3n8-5YqHkLtf3wyeBoUpO72v7UzeDtfPNhyePahNAYMo9eFdQxxBWM4C7Z0OJKEKMsIVaA$>
>>>>>
>>>>

v2.23.0 | Report a Bug | By Email