[spring] Re: [Re]Some comments on draft-ietf-spring-srv6-path-segment

Cheng Li <c.l@huawei.com> Mon, 02 September 2024 20:07 UTC

Return-Path: <c.l@huawei.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD5BDC14F698; Mon, 2 Sep 2024 13:07:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.897
X-Spam-Level:
X-Spam-Status: No, score=-6.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_HTML_ATTACH=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SRCIFqncydj5; Mon, 2 Sep 2024 13:07:40 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 57894C14F694; Mon, 2 Sep 2024 13:07:39 -0700 (PDT)
Received: from mail.maildlp.com (unknown [172.18.186.31]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4WyKSD5kNvz6K6j4; Tue, 3 Sep 2024 04:03:08 +0800 (CST)
Received: from lhrpeml100004.china.huawei.com (unknown [7.191.162.219]) by mail.maildlp.com (Postfix) with ESMTPS id AD49F140123; Tue, 3 Sep 2024 04:07:27 +0800 (CST)
Received: from sinpeml100005.china.huawei.com (7.188.195.10) by lhrpeml100004.china.huawei.com (7.191.162.219) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.39; Mon, 2 Sep 2024 21:07:26 +0100
Received: from frapeml500003.china.huawei.com (7.182.85.28) by sinpeml100005.china.huawei.com (7.188.195.10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.39; Tue, 3 Sep 2024 04:07:24 +0800
Received: from frapeml500003.china.huawei.com ([7.182.85.28]) by frapeml500003.china.huawei.com ([7.182.85.28]) with mapi id 15.01.2507.039; Mon, 2 Sep 2024 22:07:22 +0200
From: Cheng Li <c.l@huawei.com>
To: "spring@ietf.org" <spring@ietf.org>, "adrian@olddog.co.uk" <adrian@olddog.co.uk>
Thread-Topic: [Re][spring] Some comments on draft-ietf-spring-srv6-path-segment
Thread-Index: Adr9bGWszZBftL6kQHyTiiv9lgr+HAABtQng
Date: Mon, 02 Sep 2024 20:07:22 +0000
Message-ID: <a25dd4965cc84fbb8eb437c835c7c369@huawei.com>
References: <88a84837ed414c4d8040efd077b98bc4@huawei.com>
In-Reply-To: <88a84837ed414c4d8040efd077b98bc4@huawei.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [10.81.217.61]
Content-Type: multipart/mixed; boundary="_004_a25dd4965cc84fbb8eb437c835c7c369huaweicom_"
MIME-Version: 1.0
Message-ID-Hash: SURJYRS2VDY3T22MVYXHPBNVTHDU4GYM
X-Message-ID-Hash: SURJYRS2VDY3T22MVYXHPBNVTHDU4GYM
X-MailFrom: c.l@huawei.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-spring.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "draft-ietf-spring-srv6-path-segment@ietf.org" <draft-ietf-spring-srv6-path-segment@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [spring] Re: [Re]Some comments on draft-ietf-spring-srv6-path-segment
List-Id: "Source Packet Routing in NetworkinG (SPRING)" <spring.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/camZv4rlw-dYIxl0b_xzY4hABg0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Owner: <mailto:spring-owner@ietf.org>
List-Post: <mailto:spring@ietf.org>
List-Subscribe: <mailto:spring-join@ietf.org>
List-Unsubscribe: <mailto:spring-leave@ietf.org>

It seems that the attachment were blocked(1 XML file and 1 Diff html file).
The diff html file seems ok in the email to Bruno, so I added it once more here.

I may try to use Github link to share the diff next time to avoid sending attachments to the list.

Thanks,
Cheng


From: Cheng Li
Sent: Monday, September 2, 2024 9:56 PM
To: spring@ietf.org; 'adrian@olddog.co.uk' <adrian@olddog.co.uk>
Cc: draft-ietf-spring-srv6-path-segment@ietf.org
Subject: [Re][spring] Some comments on draft-ietf-spring-srv6-path-segment

This is a thread to discuss the comments from Adrian. Thanks to Adrian!

I made a mistake that only discuss with co-authors and Adrian( who kindly reviewed the draft and provided his valuable comments), and then submitted the draft revision 04 directly.
I copied the content of Adrian's original email below, since the email was too long ago and cannot be found locally.

Hi Adrian, please review the revision 04 or the latest revision to see if your comments are addressed. If you have further comments(since this is a fly-by review), you are welcome to share for sure!
I also attach the latest revision(10, to be uploaded), please review.

Thanks,
Cheng



====================================================

Hi,



This is a bit of a "fly-by" review. I happened to need to read the draft

to check on the use of SRH flags, so here are a few quick comments.

I hope they are useful.



Best,

Adrian



==Medium==



General



Some of my points below are cleared up when I finally got to Section 7

and discovered that you are asking for a new Endpoint Behavior to be

assigned. I think that means it *is* possible to detect that a PSID is

present at the wrong place in the stack *if* the processing node knows

enough to look at the endpoint behaviour and understand it. However, the

only (clear) mention of the new endpoint behaviour is in Section 7: TBA1

should be mentioned in the text somewhere!

[Cheng]You are correct. I added a simple sentence in section 3.1.1 as below.



__OLD__

SRv6 Path Segment can follow the format, where the LOC part identifies the egress node that allocates the Path Segment, and the FUNCT part is a unique local ID to identify an SRv6 Path and its endpoint behavior, which is END.PSID (End Function with Path Segment Identifier).



__NEW__

SRv6 Path Segment can follow the format, where the LOC part identifies the egress node that allocates the Path Segment, and the FUNCT part is a unique local ID to identify an SRv6 Path and its endpoint behavior, which is END.PSID (End Function with Path Segment Identifier). The code point of END.PSID is 100.



The code point has been registered cause the value is FCFS,  please see https://www.iana.org/assignments/segment-routing/segment-routing.xhtml





4.1



Here you are attempting to state which bit is used as the P-flag.

But there is a registry for the SRH Header flags (at

https://www.iana.org/assignments/ipv6-parameters/ipv6-parameters.xhtml#segme

nt-routing-header-flags)

so you should leave this as bit number TBD, and specifically ask IANA

to assign *a* bit.



You do actually do this in Section 7 but it is in conflict with 4.1.



Note that the registry is IETF review which does allow early assignment

if you want to get the flag agreed for early implementation and interop

etc.



[Cheng]Ok, Bruno also suggested to remove the bit from the figure, so I will do it in the next revision. Please see the diff.



My another mistake is that I mistakenly deleted one more paragraph in IANA in revision 05, which is about the P-flag, oh my god, how it could happen...

https://author-tools.ietf.org/iddiff?url1=draft-ietf-spring-srv6-path-segment-04&url2=draft-ietf-spring-srv6-path-segment-05&difftype=--html



I have added back the text.







==Minor==



Section 1



   In an SR-MPLS network, when a packet is transmitted along an SR path,

   the labels in the MPLS label stack will be swapped or popped, so no

   label or only the last label may be left in the MPLS label stack when

   the packet reaches the egress node.  Thus, the egress node can not

   determine from which ingress node or SR path the packet came from.

   Therefore, to identify an SR-MPLS path, a Path Segment is defined in

   [I-D.ietf-spring-mpls-path-segment].



   Likewise, a path needs to be identified in an SRv6 network for

   several use cases such as binding bidirectional paths

   [I-D.ietf-pce-sr-bidir-path] and end-to-end performance measurement

   [I-D.gandhi-spring-udp-pm].



This all reads like the main use case in SR-MPLS is source

identification, and that bidirectional path binding and PM are special

for SRv6. I suggest reversing the order of the paragraphs so...



   In SR, a path needs to be identified for several use cases such as

   binding bidirectional paths [I-D.ietf-pce-sr-bidir-path] and end-to-

   end performance measurement [I-D.gandhi-spring-udp-pm].



   Additionally, in an SR-MPLS network, when a packet is transmitted

   along an SR path, the labels in the MPLS label stack will be swapped

   or popped, so no label or only the last label may be left in the MPLS

   label stack when the packet reaches the egress node.  Thus, the

   egress node can not determine from which ingress node or SR path the

   packet came from.  To identify an SR-MPLS path, a Path Segment is

   defined in [I-D.ietf-spring-mpls-path-segment].



[Cheng]updated accordingly.



---

[]

1.



   An SRv6 Path Segment MUST NOT be copied to the IPv6 destination

   address, so it is not routable.



I think this is back-to-front...



   An SRv6 Path Segment is not routable (it is just an abstract 128 bit

   identifier) so it MUST NOT be copied to the IPv6 destination address.



---



Usually, we don't use BCP 14 language (you have MAY and MUST NOT) in the

Introduction. It is supposed to be introducing the concepts not

defining behaviour.



There are ways around this:

- use lower case (and sometimes reword)

- reduce the Introduction and move the normative language to later

[Cheng]Thank you, updated already, please check

---



4.1



   o  P-bit: set when SRv6 Path Segment is inserted.  It MUST be ignored

      when a node does not support SRv6 Path Segment processing.



Well, some nodes not supporting SRv6 Path Segment processing don't

understand the P flag and have never read this document. So you can't

tell them in this document what to do!



You have to refer them back to 8754 with something like



   o  P-bit: set when SRv6 Path Segment is inserted.  A node that does

      not understand the P-bit will ignore it as described in [RFC8754].

      A node that understands the P-flag but does not support SRv6 Path

      Segment processing MUST ignore the P-bit.



However, what is missing, I think is what happens at an egress node

when the P-flag is set and the egress either doesn't understand or

doesn't support SRv6 Path Segments. In this case, the P-flag will be

ignored, but what will happen to the PSID? Will processing be attempted?

You might argue that "A Path Segment is a local segment allocated by an

egress node, so this situation cannot happen." But I would say that is

"should not happen" because there are ingress errors, and there are

timing windows. So you need to describe this edge case.

[Cheng]Ack, please see the update

---



5.



   When a Path Segment is allocated by the egress, it MUST be

   distributed to the ingress node of the path that identified by the

   path segment.  In this case, only the egress will process the Path

   Segment, and other nodes specified by SIDs in the segment list do not

   know how to process the Path Segment.



   Depending on the use case, a Path Segment may be distributed to the

   SRv6 nodes along the SRv6 path.  In this case, the SRv6 nodes that

   learned the Path Segment may process the Path Segment depending on

   the use case.



This is pretty unclear about how the distribution happens. I think you

either need to describe or reference the mechanisms, or you have to be

clear that the distribution mechanisms are for future study (although,

in that case, it is debatable whether there is any value to this

document!)

[Cheng]Please see the update, we leave this to other drafts.



---



6.



      An SRv6 Path

      Segment that appears at any other location in the SID list will be

      treated as an error.



Will it, though? Or will an attempt be made to treat it as some other

form of SID causing unpredictable behaviour? That is, regardless of the

P-flag, if a PSID is inserted into the middle of a SID stack, an

attempt will be made to process it (possibly resulting in an error, or

possibly resulting in the packet being forwarded on an address that

should not be treated as routable). But is there any way to know that

the PSID is at the wrong location (or present multiple times)?



So, I think you are fine to say "MUST be bottom of stack" and "MUST NOT

appear at other locations." But all that you can say beyond that is

that "placing a PSID at any location in the SID list will result in

unpredictable forwarding behavior."

[Cheng]Ack please see the update

---





==Nits==



Section 1



OLD

from which ingress node or SR path the packet came from.

NEW

from which ingress node or SR path the packet came.

END

[Cheng]OK

---



1.



s/called "SRv6 Path Segment"/called the "SRv6 Path Segment"/



---

[Cheng]OK

1.2



You don't need to include terms that appear at in the RFC Editor's list

at https://www.rfc-editor.org/materials/abbrev.expansion.txt marked with

an asterisk (*).



In this case, that's "MPLS"

[Cheng]Deleted

---



3.1



   This document proposes two types of SRv6 Path Segment format.



Be future-proof! "This document defines..."

[Cheng]OK

---



3.1.1



Here you appear to say that the SRv6 Path Identifier can be routable

(i.e., is built with as LOC:FUNCT), but in the Introduction you are

adamant that it is not routable.

[Cheng]We do not prevent the operator to allocate a routable value to it, but we do not use it in routing.

---



4.1



Nothing wrong with Figure 1 (except the alignment of the bit counters)

but it seems overkill to draw what the text says.

[Cheng]Already updated. Please see the latest revison. https://datatracker.ietf.org/doc/html/draft-ietf-spring-srv6-path-segment-09



---



Please decide "P-flag" or "P-bit". Probably flag.

[Cheng]OK, P-flag

---



  *   [spring] Some comments on draft-ietf-spring-srv6-...<https://mailarchive.ietf.org/arch/msg/spring/AsRF1-XMAbT3yu3GUbvnnU2dyBk/>  Adrian Farrel





https://mailarchive.ietf.org/arch/msg/spring/AsRF1-XMAbT3yu3GUbvnnU2dyBk/