IETF Logo Mail Archive

Re: [spring] Typo correction Re: Question from SPRING regarding draft-filsfilscheng-spring-srv6-srh-compression

Tom Herbert <tom@herbertland.com> Fri, 15 October 2021 16:00 UTC

Return-Path: <tom@herbertland.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8D4E73A0A97 for <spring@ietfa.amsl.com>; Fri, 15 Oct 2021 09:00:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20210112.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kQGzsTJx-taP for <spring@ietfa.amsl.com>; Fri, 15 Oct 2021 09:00:51 -0700 (PDT)
Received: from mail-ed1-x531.google.com (mail-ed1-x531.google.com [IPv6:2a00:1450:4864:20::531]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0EF893A0A87 for <spring@ietf.org>; Fri, 15 Oct 2021 09:00:51 -0700 (PDT)
Received: by mail-ed1-x531.google.com with SMTP id t16so39933279eds.9 for <spring@ietf.org>; Fri, 15 Oct 2021 09:00:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20210112.gappssmtp.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=2EJnTdk1qMhMAY2154e9F9q3m+1kaipfORnOgzVzoS4=; b=HgHnLpj5FTBs+Nd6e1YL+0TKnhtTVgEDQCo1zshm1Xb4RV1JrtKxkyEoS/ZKqGryqC zzoQVUgdg9q4n0bWggZmMx2Ph7ZeLeQQrolN3SaYAEcu963denLWn5sSVStuI+At8Q8Z 6U0pFQ58jCtp9MrnJ/eFGcPQZayE+iA7I6vQTM+2ScdZAEvFWrxyvFKcZBmLYtTR9Bkh o//U/ZsW9Oo3JWOAkx/vEuYuFG/LqyztSOh0h8kty9LOH8cM8Qlt2eBuR6b4w1MuB3VP Xi3Azqb+rwcXONyNbwhUMKc0Q/cmuWY09ntKjxbKClvzX7Uf3Jrgytco5dwGeM95M87e MgWg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=2EJnTdk1qMhMAY2154e9F9q3m+1kaipfORnOgzVzoS4=; b=1ORw6Tg9oZD/xTTmptLkD8xTVf/8vdnGizx7l7xB5t+tUttD5cf02aPbb0/A4j+Jfm VDt6T5D5xNj7HJQIHIHNpDQL56af2/jce8HJAOSFBnt65uTDJqZf+NLY+z4YQWxxH4BW Qfb12D7MFSO3SR+U6JtodJRG1H+Sv3H9OXbAAic3gtEOvVzuL2oaAH5+c14sAUsomGST TqLOjUmP9898UbzTfVEi1+QSHTJEPmaEpNDoO4X+wjpmo/ApOuU/WL5gjtyoRIBx9S6O dIu+uxkK2wiSfnQGC1BD+SNriq6WEt+CBhN+sLnfufyFcu15S8hxJvaSwTKpaYq4w9aN bz2A==
X-Gm-Message-State: AOAM532bIMLpDbnKx+Lsmc5/+oApm85vzR4JzfzkBX35rV69+rO/Gpx7 1Qk0TRQ4uNbJ0vbY4HGVbhu2YWx0dOK9sfqAypv0ZQ==
X-Google-Smtp-Source: ABdhPJwQ1N2WpkT4k5nnG6yicI02Pwk7jEmrkbpL7qGOSWlznOFDGL3yqqb4U/G0D98qdzib19g7VxP9RQnRsbotHlg=
X-Received: by 2002:a17:906:48ce:: with SMTP id d14mr8099179ejt.336.1634313648841; Fri, 15 Oct 2021 09:00:48 -0700 (PDT)
MIME-Version: 1.0
References: <85fddbe9-4eb8-7d90-d246-a888fe8bdcd3@joelhalpern.com> <139d72fd-98de-f46a-767f-6a493c4facc9@joelhalpern.com> <1396_1634278622_61691CDE_1396_28_5_787AE7BB302AE849A7480A190F8B93303542C654@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <CAO42Z2wvKNyYeKAZdVOh2c8G95JZuhgxumNixMWWsK9u_QDRTQ@mail.gmail.com>
In-Reply-To: <CAO42Z2wvKNyYeKAZdVOh2c8G95JZuhgxumNixMWWsK9u_QDRTQ@mail.gmail.com>
From: Tom Herbert <tom@herbertland.com>
Date: Fri, 15 Oct 2021 09:00:37 -0700
Message-ID: <CALx6S35N+gUkjyHWLMoPCKzRqme0aX0cd=qCTFd7iV+31R65EA@mail.gmail.com>
To: Mark Smith <markzzzsmith@gmail.com>
Cc: mohamed.boucadair@orange.com, SPRING WG <spring@ietf.org>, 6man WG <ipv6@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/azSlHO-ieKfwAHY64Yi7tCD_Jgw>
Subject: Re: [spring] Typo correction Re: Question from SPRING regarding draft-filsfilscheng-spring-srv6-srh-compression
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Oct 2021 16:00:57 -0000

On Fri, Oct 15, 2021 at 12:14 AM Mark Smith <markzzzsmith@gmail.com> wrote:
>
>
>
> On Fri, 15 Oct 2021, 17:18 , <mohamed.boucadair@orange.com> wrote:
>>
>> Hi Joel , all,
>>
>> C-SID is no more than another mechanism that relies on some algorithmic mapping embedded in the IPv6 address. We do have already many of such algorithmic approaches: RFC6052, RFC7597, etc.
>
>
>
> That's not correct.
>
> DAs aren't expected to change in fight, otherwise they will break all of the transport layer protocols for which packet addresses are included in the transport layer checksum.

Mark, they already do change courtesy of routing headers. Transport
layer checksums are end to end and there's no requirement that the
intermediate nodes can correctly compute transport layer checksums.
NAT translation maintains the correct checksum, but routing headers do
not, so unless an intermediate node is able to discern the final
destination of the packet it won't be able to compute the correct
checksum (this is a practical problem we are seeing with NICs that
still insist on doing protocol specific checksum offload, in the
presence of routing headers these devices can fail to offload RX
checksum).
>
> In fight changing DAs also will break AH protection of the IPv6 header.

SRH already breaks AH ;-) It's fixable and changing DAs in flight is
compatible if it's prescribed that both the source and destination see
the same destination address for AH processing.

Tom

>
> DA changing in flight is NAT. I'd have thought the IETF had learnt that lesson by now.
>
> Perhaps people need to read RFC2993 again.
>
>>
>>
>> The internal structure would be problematic if it requires that every intermediate node on the path has to parse it, but this is not the case. The packet is forwarded based on the DA following conventional procedures. The procedure to determine the next SR hop is internal to an SR-capable node.
>>
>> Having examples of such SIDs in the draft would help to better understand the compression procedure, but no more than that as these will be displayed as IPv6 addresses!
>>
>> Cheers,
>> Med
>>
>> > -----Message d'origine-----
>> > De : ipv6 <ipv6-bounces@ietf.org> De la part de Joel M. Halpern
>> > Envoyé : mercredi 13 octobre 2021 09:37
>> > À : ipv6@ietf.org
>> > Cc : spring@ietf.org
>> > Objet : Typo correction Re: Question from SPRING regarding draft-
>> > filsfilscheng-spring-srv6-srh-compression
>> >
>> > There is a typo in the below which if not understood as a typo would be
>> > quite confusing.   I wrote that I raised the issue with
>> > "with the Internet ADs and SPRING chairs".
>> > That should have read "with the Internet ADs and 6man chairs".
>> > The SPRING co-chairs are recused, and the charter requirement leads to the
>> > 6man chairs.  Which is who I talked to.
>> >
>> > Also, I am sending a courtesy copy to the routing ADs, which I should have
>> > done originally.
>> >
>> > Thank you and enjoy.
>> > Yours,
>> > Joel
>> >
>> > On 10/12/2021 11:52 PM, Joel M. Halpern wrote:
>> > > The SPRING working group is in the midst of an adoption call on
>> > > https://datatracker.ietf.org/doc/draft-filsfilscheng-spring-srv6-srh-
>> > compression/.
>> > >
>> > >
>> > > The SPRING charter has text that is explicit that modifications to
>> > > data planes and architectures standardized by other working groups may
>> > > not be modified in SPRING unless the chairs and ADs responsible for
>> > > that data plane and / or architecture agree.
>> > >
>> > > To complete the context, as my SPRING co-chairs are co-authors on the
>> > > document in question, they have recused themselves from decisional
>> > > activities regarding the document.  Therefore, this message is coming
>> > > just from my as the responsible SPRING co-chair managing this adoption
>> > > call.
>> > >
>> > > As you have seen, multiple questions have been raised about the
>> > > relationship of the document to the IPv6 defined data plane and
>> > > architecture (particularly RFC 4291 and 8200). In particular the
>> > > questions seem to revolve around what the document describes as the
>> > > NEXT-C-SID flavor of compressed SID, and its relationship to the IPv6
>> > > standards.  (For those seeking more context without reading the full
>> > > document, a paraphrase and simplification of the NEXT-C_SID flavor is
>> > > provided as a postscript.)
>> > >
>> > > I raised the question of concurrence as required by the SPRING charter
>> > > with the Internet ADs and SPRING chairs.  They quite reasonably asked
>> > > me to write a note to 6man explaining the concerns as clearly as a
>> > > can, so that they can then determine how to proceed.
>> > >
>> > > The questions that prompted my inquiry are:
>> > >
>> > > 1) Does the placement of a list of sids in the IPv6 DA field change
>> > > the
>> > > IPv6 architectural description of that field.
>> > > 2) Does the operation of shifting information around in the IPv6
>> > > destination address field represent a modification or extension of the
>> > > IPv6 data plane.
>> > >
>> > > On a related note, the document in question also defines two other
>> > > flavors, REPLACE-C-SID, and NEXT-and-REPLACE-C-SID.  The
>> > > NEXT-and-REPLACE-C_SID flavor is defined to include the NEXT-C_SID
>> > > flavor operation, so seems to be affected by the same question.
>> > >
>> > >  From my own reading, it appears that the REPLACE-C-SID flavor does
>> > > not raise issues requiring 6man leadership concurrence.
>> > >
>> > > Yours,
>> > > Joel M. Halpern for the SPRING working group
>> > >
>> > >
>> > > PS:
>> > > Clearly, understanding the question requires some understanding of
>> > > what the NEXT-C_SID flavor does.   This explanation is a
>> > > simplification for length and context.  Really, the best place to
>> > > understand it is the draft.  However, to give you enough information
>> > > to let you decide whether you care, I will try to provide a fair
>> > > summary.  My apologies in advance to the authors for necessary
>> > > liberties for length.  Also, discussion of the draft contents (as
>> > > distinct from the interaction with the IPv6 data plane and
>> > > architecture) belongs on the SPRING list, and should not clutter up
>> > 6man.
>> > >
>> > > SIDs are the identifiers used in segment routing.
>> > > In SRv6, as document in the current RFCs, these are 128 bits.   As
>> > > defined in the relevant RFCs, SIDs which identify endpoints to which
>> > > packets are directed are identified by endpoint SIDs.  These can have
>> > > behaviors (decapsulate and forward is one example).  They can have
>> > > flavors such as where the SRH is removed.
>> > >
>> > > The topic under discussion is means to compress these SIDs in the
>> > > packets on the wire.  The document under discussion provides three
>> > > flavors of compression.
>> > >
>> > > The fundamental mechanism of the draft is to use a single SRH entry as
>> > > a container for multiple SIDs.  In the NEXT-C_SID mechanism, when it
>> > > is first encountered the entire container is copied into the
>> > > desination address of the IPv6 packet.  The container has a common
>> > > routing prefix used for all the NEXT-C-SID SIDs.  It is followed by a
>> > > sequence of compressed SIDs of a configured length.  One could
>> > > configure 16, 24, or
>> > > 32 bits.  Or whatever length.  The routing advertisements are arranged
>> > > so that the IPv6 packet is directed to the node represented by the
>> > > first compressed SID on the basis of longest prefix match matching the
>> > > combination of the common routing prefix and that compressed SID.
>> > >
>> > > When the packet arrives at that node, it looks up the configured
>> > > portion, the compressed SID, and determines the behavior and flavor.
>> > > In the case of the NEXT-C-SID flavor, the resulting operation is to
>> > > shift the entire remaining contents of the IPv6 address (the bits past
>> > > the first compressed sid) so as to over-write the first compressed
>> > > SID.  0 bits are shifted into the low order positions.  If the result
>> > > is a non-zero new first compressed SID, then the packets is forwarded
>> > > and the process repeats.  When all that is left are 0s, if there is an
>> > > SRH, it is consulted to find the next SRH entry, which is, per normal
>> > > SRv6 processing, put into the IPv6 DA.
>> > > Note that in the common case where the SIDS needed all fit in to a
>> > > single container, the analysis also assumes the use of the reduced
>> > > encapsulation options which omits the SRH that is not needed as it
>> > > would have no entries.  This the packet contains a normal IPv6 header,
>> > > with a sequence of compressed SIDs (what one might or might not call a
>> > > source
>> > > route) in the IPv6 destination address field.
>> > >
>> > > PPS: If the authors of the NEXT-C-SID flavor feel I have
>> > > mis-represented the work, please, send clarifications or corrections.
>> > > Again, the best source of information is the draft itself.  I was
>> > > asked to provide extra context in this email.
>> >
>> > --------------------------------------------------------------------
>> > IETF IPv6 working group mailing list
>> > ipv6@ietf.org
>> > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> > --------------------------------------------------------------------
>>
>> _________________________________________________________________________________________________________________________
>>
>> Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
>> pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
>> a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
>> Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.
>>
>> This message and its attachments may contain confidential or privileged information that may be protected by law;
>> they should not be distributed, used or copied without authorisation.
>> If you have received this email in error, please notify the sender and delete this message and its attachments.
>> As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
>> Thank you.
>>
>> --------------------------------------------------------------------
>> IETF IPv6 working group mailing list
>> ipv6@ietf.org
>> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
>> --------------------------------------------------------------------
>
> --------------------------------------------------------------------
> IETF IPv6 working group mailing list
> ipv6@ietf.org
> Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
> --------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email