IETF Logo Mail Archive

Re: [sfc] TTL field within the NSH base header

"Joel M. Halpern" <jmh@joelhalpern.com> Fri, 28 April 2017 08:31 UTC

Return-Path: <jmh@joelhalpern.com>
X-Original-To: sfc@ietfa.amsl.com
Delivered-To: sfc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A2F42129541 for <sfc@ietfa.amsl.com>; Fri, 28 Apr 2017 01:31:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.722
X-Spam-Level:
X-Spam-Status: No, score=-2.722 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=joelhalpern.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P8sH4708QXQE for <sfc@ietfa.amsl.com>; Fri, 28 Apr 2017 01:31:12 -0700 (PDT)
Received: from mailb2.tigertech.net (mailb2.tigertech.net [208.80.4.154]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B6F2B1292AE for <sfc@ietf.org>; Fri, 28 Apr 2017 01:28:23 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mailb2.tigertech.net (Postfix) with ESMTP id 992523A0C4B; Fri, 28 Apr 2017 01:28:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=joelhalpern.com; s=1.tigertech; t=1493368103; bh=5PRTCDh3ACjM4IuV+wTMOx6peKMEu8Av/Xj/KFgE1Gs=; h=Subject:To:References:From:Date:In-Reply-To:From; b=EnMYeFWH5uUfxMSBIdG+fWGS/YEjC5aa4xVIws/g4ChNUARntJnnVPQxKVr+So6cg TQRSsoU7+AHp2aLzAoXSfeD92YxE+GUiRjRKVIjPw7iyx5a9pQf5F9BcGsrrTgj+Ao FYQi5LscOdBnd0k66PsTV6MACsIkqcqrgyyNVEnY=
X-Virus-Scanned: Debian amavisd-new at b2.tigertech.net
Received: from Joels-MacBook-Pro.local (sessfw99-sesbfw99-93.ericsson.net [192.176.1.93]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mailb2.tigertech.net (Postfix) with ESMTPSA id A2C361C0367; Fri, 28 Apr 2017 01:28:21 -0700 (PDT)
To: Joe Clarke <jclarke@cisco.com>, Ron Parker <Ron_Parker@affirmednetworks.com>, Dave Dolson <ddolson@sandvine.com>, James N Guichard <james.n.guichard@huawei.com>, "sfc@ietf.org" <sfc@ietf.org>
References: <BF1BE6D99B52F84AB9B48B7CF6F17DA3DD5F8E@SJCEML701-CHM.china.huawei.com> <CDF2F015F4429F458815ED2A6C2B6B0B83991FDC@MBX021-W3-CA-2.exch021.domain.local> <E8355113905631478EFF04F5AA706E98705BB593@wtl-exchp-1.sandvine.com> <CDF2F015F4429F458815ED2A6C2B6B0B839920AD@MBX021-W3-CA-2.exch021.domain.local> <0e91eb10-2259-0056-98ee-2de3d2e25ddf@joelhalpern.com> <3e94276c-88ae-8a09-cf4b-7538748a3513@cisco.com>
From: "Joel M. Halpern" <jmh@joelhalpern.com>
Message-ID: <dbca6430-84e6-0a0c-7c41-1b64de62667e@joelhalpern.com>
Date: Fri, 28 Apr 2017 04:28:20 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <3e94276c-88ae-8a09-cf4b-7538748a3513@cisco.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/sfc/n_YUHQdhz0N-R77nCp_nXVzTN04>
Subject: Re: [sfc] TTL field within the NSH base header
X-BeenThere: sfc@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Network Service Chaining <sfc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sfc>, <mailto:sfc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sfc/>
List-Post: <mailto:sfc@ietf.org>
List-Help: <mailto:sfc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sfc>, <mailto:sfc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Apr 2017 08:31:16 -0000

There are really two separate issues.
First, and most important, what behavior does the working group want?
     The discussion started with a proposal along the lines Ron 
suggests, and moved to what is in the summary Jim provided.  We are 
trying as chairs to reflect the WG agreement, and to bring this to a 
close.  Yes, we are incurring technical debt (of different forms and 
degrees) in any solution that allows backwards compatibility.  So, yes, 
we can still change this if the WG wants, but this was the rough 
consensus Jim and I saw.

Second, there is the question of whether the text is clear.  It is 
always a balancing act between explaining the motivation for everything 
at great length 9and losing the reader), vs just giving the behavior 
with no explanation (and tending to get incorrect implementations.)  We 
need to be somewhere in between.  We may not be in the right place.

Yours,
Joel

On 4/27/17 5:55 PM, Joe Clarke wrote:
> On 4/27/17 16:37, Joel M. Halpern wrote:
>> That alternative was discussed.  It also works.
>> However, with that alternative, if the Initial classifier is an old
>> system (not RFC compliant), we will not get any protection from the TTL.
>> If we take this (admittedly slightly odd) approach to decrementing the
>> TTL, then even though we do not recommend it, things still work with an
>> initial classifier that generates a TTL of 0.
>>
>> It is thus more robust, so the WG selected it in discussion atht
>> einterim adn on the list.
>
> Thanks, Joel.  I know it was discussed, but reading the final text, I
> wonder if this is just building technical debt into the protocol from
> the beginning.
>
> While this makes sense today, will it be as obvious (or as needed) in a
> year?  In two?
>
> Ron's text does seem clearer at the expense of the backward compat
> explicitness.
>
> Joe
>
>>
>> Yours,
>> Joel
>>
>> On 4/27/17 4:05 PM, Ron Parker wrote:
>>> Thanks, Dave.    Do you think it is possible to combine that backward
>>> compatibility with the simpler (to me) concept of testing for a packet
>>> that arrives with TTL=1 and conditioning behavior on whether the SFF is
>>> the terminating SFF of the path?
>>>
>>>
>>>
>>>    Ron
>>>
>>>
>>>
>>>
>>>
>>> *From:* Dave Dolson [mailto:ddolson@sandvine.com]
>>> *Sent:* Thursday, April 27, 2017 4:03 PM
>>> *To:* Ron Parker <Ron_Parker@affirmednetworks.com>; James N Guichard
>>> <james.n.guichard@huawei.com>; sfc@ietf.org
>>> *Subject:* RE: TTL field within the NSH base header
>>>
>>>
>>>
>>> Ron,
>>>
>>> Decrementing from zero to reach 63, and checking for zero after
>>> decrementing provides a degree of backwards compatibility with the prior
>>> header format.
>>>
>>> This permits packets on the wire to have 0 in the bits that were
>>> previously “reserved”.
>>>
>>>
>>>
>>> -Dave
>>>
>>>
>>>
>>>
>>>
>>> *From:*sfc [mailto:sfc-bounces@ietf.org] *On Behalf Of *Ron Parker
>>> *Sent:* Thursday, April 27, 2017 3:21 PM
>>> *To:* James N Guichard; sfc@ietf.org <mailto:sfc@ietf.org>
>>> *Subject:* Re: [sfc] TTL field within the NSH base header
>>>
>>>
>>>
>>> I had to really think about the language around decrementing by 1 from 0
>>> and reaching 63.   This would only occur in an error scenario where a
>>> preceding SFF misbehaved, wouldn’t it?   Why are we insistent that the
>>> test for 0 happen after decrement, thereby creating this problem.     I
>>> suspect that this has been already discussed and I apologize if I missed
>>> it, but if the language were simplified to say an SFF that receives an
>>> NSH with TTL=1 shall not forward it to another SFF (e.g., allowing it to
>>> engage its local SF instances, still).   Otherwise, it must decrement by
>>> 1 before forwarding to another SFF.
>>>
>>>
>>>
>>> An exact wording along these lines might be something like:
>>>
>>>
>>>
>>> TTL: Service plane time-to-live. An SFF MUST test the TTL before
>>> forwarding to another SFF for a given Service Function Chain.  If the
>>> received TTL value is 1, the SFF MUST drop packets that would otherwise
>>> have been forwarded to another SFF, but SHALL send such packets to
>>> attached service functions if the SFF terminates the Service Function
>>> Chain.   If the TTL value is greater than 1, the SFF must decrement the
>>> TTL by 1 before forwarding to another SFF.   The default for originating
>>> an NSH packet is a TTL value of 63.
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> *From:* sfc [mailto:sfc-bounces@ietf.org] *On Behalf Of *James N Guichard
>>> *Sent:* Thursday, April 27, 2017 2:54 PM
>>> *To:* sfc@ietf.org <mailto:sfc@ietf.org>
>>> *Subject:* [sfc] TTL field within the NSH base header
>>>
>>>
>>>
>>> Dear WG:
>>>
>>>
>>>
>>> Having reviewed all of the email discussion on the mailing list it
>>> appears to the chairs that we have consensus to add a TTL field to the
>>> NSH base header. We would like to propose the following changes:
>>>
>>>
>>>
>>> Section 3.2:
>>>
>>> Update figure 2 as follows:
>>>
>>>
>>>
>>>      0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
>>>
>>>     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
>>>
>>>     |Ver|O|R|    TTL    |   Length  |R|R|R|R|MD Type| Next Protocol |
>>>
>>>     +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
>>>
>>>
>>>
>>> Add the following text after figure 2:
>>>
>>>
>>>
>>> TTL: Service plane time-to-live. An SFF MUST decrement the TTL by a
>>> value of 1 for all NSH packets it receives. Decrementing by a value of 1
>>> from 0 shall result in a TTL value of 63. The default for originating an
>>> NSH packet is a TTL value of 63. The decrement SHALL occur before
>>> testing for 0. After decrement, if the TTL is 0, the NSH packet MUST NOT
>>> be forwarded.
>>>
>>>
>>>
>>> Section 3.4:
>>>
>>> Update figure 4 to reflect the new base header format as per section 3.2
>>> base header.
>>>
>>>
>>>
>>> Section 3.5:
>>>
>>> Update figure 5 to reflect the new base header format as per section 3.2
>>> base header.
>>>
>>>
>>>
>>> Section 12.2.1:
>>>
>>> Current text is as follows:
>>>
>>>
>>>
>>>    There are ten bits at the beginning of the NSH Base Header.  New bits
>>>
>>>    are assigned via Standards Action [RFC5226].
>>>
>>>
>>>
>>>    Bits 0-1 - Version
>>>
>>>    Bit 2 - OAM (O bit)
>>>
>>>    Bit 3 - Critical TLV (C bit)
>>>
>>>    Bits 4-9 - Reserved
>>>
>>>
>>>
>>> Replace entire text as follows:
>>>
>>>
>>>
>>>    There are eight reserved bits in the NSH Base Header. New bits
>>>
>>>    are assigned via Standards Action [RFC5226].
>>>
>>>
>>>
>>>    Bits 0-1 - Version
>>>
>>>    Bit 2 - OAM (O bit)
>>>
>>>    Bit 3 - Reserved
>>>
>>>    Bits 16-19 - Reserved
>>>
>>>
>>>
>>> Section 12.2.3:
>>>
>>> Current text has the MD-type as 8-bit values.
>>>
>>>
>>>
>>> Update text for this section and table 1 to reflect 4-bit values *not*
>>> 8-bit values.
>>>
>>>
>>>
>>> *Please review carefully and indicate support for these changes (or any
>>> changes to the suggested text).*
>>>
>>> * *
>>>
>>> Thanks,
>>>
>>>
>>>
>>> Jim & Joel
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> _______________________________________________
>>> sfc mailing list
>>> sfc@ietf.org
>>> https://www.ietf.org/mailman/listinfo/sfc
>>>
>>
>> _______________________________________________
>> sfc mailing list
>> sfc@ietf.org
>> https://www.ietf.org/mailman/listinfo/sfc
>

v2.23.0 | Report a Bug | By Email