IETF Logo Mail Archive

Re: [spring] 6MAN WGLC: draft-ietf-6man-sids

Suresh Krishnan <suresh.krishnan@gmail.com> Thu, 29 September 2022 20:04 UTC

Return-Path: <suresh.krishnan@gmail.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6BEB6C14F749; Thu, 29 Sep 2022 13:04:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ipkwcz-6tWH8; Thu, 29 Sep 2022 13:04:15 -0700 (PDT)
Received: from mail-qk1-x733.google.com (mail-qk1-x733.google.com [IPv6:2607:f8b0:4864:20::733]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 92204C14F743; Thu, 29 Sep 2022 13:04:15 -0700 (PDT)
Received: by mail-qk1-x733.google.com with SMTP id d17so1555455qko.13; Thu, 29 Sep 2022 13:04:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:from:to:cc:subject:date; bh=A8lsSiqffrU/QyscHSDlQNAVylrrEn/0422uwV4ewDw=; b=gs1vChzLtdp5kRERihQa4Lt9I/n3fb0VecJRbrAIhLm6vKOUtcNTEfZ5r/OYnEHcBo eFn5TqDniZdMpVN89FMxLR1cPDKlrPzf2zHTxaZu7eK4GI9EVWjfiGKJGysVcswz69Th 74zfr8pwnG3AdgxBKpG2z0oONWf+C9SDoddn052M9puK0lAbvWf+8nXvqy+zl9waENvv Vtj5/8OobHVW0WQheHZiBcnwKZBwMI5EVyv6iU5hyX5LH50yz+XLjIydgbuOH3jVrlsE owBcDpaLA7DoV0H3vtXSnZ0p8eJyljELOBgSjU1//m5GNcqglg+cJViZkwFv+s1y8YD2 GPiQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:x-gm-message-state:from:to:cc:subject:date; bh=A8lsSiqffrU/QyscHSDlQNAVylrrEn/0422uwV4ewDw=; b=yCloKVOk1EAfQKNmfSh8bquFb4/4cv7pkRMaH6jQanerrGs4l10VRQbBbgYvm0uchc YPAPLgqio2dWtjbdqsfczYQlWljWVqbDACuP1JlAIjlbdg7o3Vadib0A4WjnJusu6Vn6 owqshgdUxmWsL0rZQj2GVsMtudRIy9vx8OkW/RcaoKn6KcMHyOBlLzSbEcFlmV1Slbpx RtzHKTh6p49y4pBlWASIEgS9i1iU8oJuA+pW8sR3XE9T5Xz09k+VqEhnE4m7iqtPYOgS WBAYTpUKsLy2qViVpbjosmUGCsbBL/CoX3O+6BviVX5oRFSWKgV7Eso9DfZY073c+JlI uOxw==
X-Gm-Message-State: ACrzQf2Y/Bb5uc8cnldvnx5Qg5fBu6hKck69ADy2vMZNv1C1jw3WVG6I q1JuVwFd/cFVJo3sqqIy4kA=
X-Google-Smtp-Source: AMsMyM4iY7N0sW0ru0bTnnAvkYUwD5w2HZqd2uf8d4FFBv66+2069gqh9vEd18OyCGNmVuD3zcuJog==
X-Received: by 2002:a05:620a:2214:b0:6ce:3426:1363 with SMTP id m20-20020a05620a221400b006ce34261363mr3533768qkh.662.1664481854286; Thu, 29 Sep 2022 13:04:14 -0700 (PDT)
Received: from smtpclient.apple (45-19-110-76.lightspeed.tukrga.sbcglobal.net. [45.19.110.76]) by smtp.gmail.com with ESMTPSA id y4-20020a37f604000000b006bbc09af9f5sm262064qkj.101.2022.09.29.13.04.12 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 29 Sep 2022 13:04:13 -0700 (PDT)
From: Suresh Krishnan <suresh.krishnan@gmail.com>
Message-Id: <0B08BE8D-B3C8-4B23-987E-9F0635832410@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_7DDF98FB-DE0A-48C2-B4E5-11291CB1A86E"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.80.0.2.43\))
Date: Thu, 29 Sep 2022 16:04:09 -0400
In-Reply-To: <07e501d8d19b$0cb9aa20$262cfe60$@olddog.co.uk>
Cc: Jen Linkova <furry13@gmail.com>, 6man <ipv6@ietf.org>, SPRING WG List <spring@ietf.org>, 6man Chairs <6man-chairs@ietf.org>, draft-ietf-6man-sids.authors@ietf.org, spring-chairs@ietf.org
To: Adrian Farrel <adrian@olddog.co.uk>
References: <CAFU7BARixwPZTrNQOuEw3WP-FqUsVwTj7btMTahcMbXm_NqWGw@mail.gmail.com> <129a313a-d625-dae7-36f6-8541a8aea862@gmail.com> <06eb01d8d038$f0ee3a80$d2caaf80$@olddog.co.uk> <0CF331CA-B40D-49D5-BD01-5CE7C0D42040@gmail.com> <07e501d8d19b$0cb9aa20$262cfe60$@olddog.co.uk>
X-Mailer: Apple Mail (2.3654.80.0.2.43)
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/k1Ff96Wrnvq7vgj_92Vfo3c18J8>
Subject: Re: [spring] 6MAN WGLC: draft-ietf-6man-sids
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 29 Sep 2022 20:04:19 -0000

Hi Adrian,
  Thanks again for the text suggestions. I think we are mostly in agreement regarding the changes. I have snipped out the points where we agree on the text below and brought forward the points that need further discussion

>> 
>> 3.
>> 
>>   When an SRv6 SID occurs in the IPv6 destination address field of an
>>   IPv6 header, only the longest match prefix corresponding to the
>>   locator is used to forward the packet to the node identified by the
>>   Locator.
>> 
>> Possibly you mean s/is used/should be used/
>> Or maybe s/used/used by an SRv6-capable node/
>  
> This is written as a statement about what happens today rather than specifying behavior for the node to follow.
>  
> [AF] Well, I like your confidence about all the implementations that are out there šŸ˜Š

This text applies to the transit nodes (and those are not required to be capable of processing a segment or an SRH) and I am confident they exist :-)

> I think there are two points:
> You are describing SRv6-capable nodes, I think.

This text applies to transit nodes and these are not assumed to be SR-capable. The preceding paragraph sets the context for this but it might be worth restating that in this sentence. Combined text suggestion to address both point 1. and point 2. below

> You might more accurately provide the normative reference to where this behavior is defined, and then say ā€œAs defined in [ref], when an SRv6 SIDā€¦ā€ 
>  

Suggest

OLD:
When an SRv6 SID occurs in the IPv6 destination address field of an IPv6 header, only the longest match prefix corresponding to the locator is used to forward the packet to the node identified by the Locator.

NEW:
When an SRv6 SID occurs in the IPv6 destination address field of an IPv6 header, only the longest match prefix corresponding to the Locator [RFC7608] is used by the transit node to forward the packet to the node identified by the Locator.


> 
>> 4.
>> 
>>   A node
>>   taking part in this mechanism accomplishes this by using the ARG part
>>   [RFC8986] of the Destination address field of the IPv6 header to come
>>   up with a new Destination address in some of these flavors.
>> 
>> "to come up with" and "flavors" are a bit colloquial. Maybe say 
>> "derive" and "mechanisms".
>  
> Ack on the ā€œderiveā€ part, but ā€œflavorā€ is a specific term used in [I-D.ietf-spring-srv6-srh-compression]
>  
> [AF] Hrmph! draft-ietf-spring-srv6-srh-compression is a work in progress, is not a normative reference here, and is not part of this last call. I see it uses ā€œflavorā€ extensively, but it is a poor choice of word.
>  
> I tell you what: if the meaning of the word is clear, you can tell me what it means in this context. And if you can tell me what it means, you can use that description in your draft.


As Acee pointed out upthread this term predates [I-D.ietf-spring-srv6-srh-compression] and actually comes from [RFC8986] Section 4.16. We can either put in a reference to that or I can simply write it out with a reference to behavior. Suggestion below:

OLD:
   describes how to use a single entry in the SRH list as a container
   for multiple SIDs and defines a few flavors of how to do so.  A node
   taking part in this mechanism accomplishes this by using the ARG part
   [RFC8986] of the Destination address field of the IPv6 header to come
   up with a new Destination address in some of these flavors.

NEW:
   describes how to use a single entry in the SRH list as a container
   for multiple SIDs and defines a few behaviors of how to do so.  A node
   taking part in this mechanism accomplishes this by using the ARG part
   [RFC8986] of the Destination address field of the IPv6 header to come
   up with a new Destination address.


>> 
>> 4.1.
>> 
>>   There are a few issues that need to be addressed in the C-SID draft
>>   prior to its publication as RFC:
>> 
>> Erm, no! You can't have an RFC that chats about the current state of
>> another draft, or that claims it is going to be published as an RFC.
>> 
>> Perhaps the best solution is to compress sections 4, 4.1, and 4.2 into
>> a very short note that "Many approaches to SID list compression have
>> been proposed. It is important that any solution preserves the
>> properties of the LOC as described in Section 3."
>  
> This text was added as requested by one of the spring chairs to specify that the spring document needs to address these issues. It would be great if the 6man/spring chairs and ADs can chime in on this topic.
>  
> [AF] While we wait for them to speak up, letā€™s just note that if the intention of this text is to set requirements, you should that in terms of ā€œany specification addressing this problem space needs to provide answers to the following questions.ā€

It is certainly the intention and I fully agree with you that this draft cannot impose this on the spring draft. Joel has asked the spring WG this morning to weigh in on this question asked by Jen as 6man chair

https://mailarchive.ietf.org/arch/msg/spring/ydGtikGr2NvUQGtw26Ye3YnQ1jI/ <https://mailarchive.ietf.org/arch/msg/spring/ydGtikGr2NvUQGtw26Ye3YnQ1jI/>

Depending on the result of that poll I see one of these two things happening

a) the spring WG agrees to move this into the CSID draft as open issues to be tracked and we can delete this from the 6man draft
b) the spring WG does not, and I will rewrite this text exactly like you suggested as a generic set of questions to be answered.

Does that work or do you prefer to make this generic and retain in this draft in either case?

> 
>> I know that the permeability of SR domain boundaries is something that
>> really worries at least one of the current ADs, and it might be good to
>> spend some time discussing what happens when things go wrong and a 
>> packet with a SID in the DA field escapes from the domain (this is
>> distinct from the behavior of a non-SR node within the domain).
> Yes. I certainly do understand that concern and one of the tools in reducing the permeability is moving this traffic to a well known filterable prefix at the borders of the domains depending on the stance of the domain. 
>  
> [AF] This helps so long as we include a remark on what will happen when a packet carrying a DA that uses one of these special prefixes is encountered by a node outside the domain. You possibly need to explain how a non-SR node inside the domain differs from a non-SR node outside the domain.

That is a good point. It really boils down to the administrative stance of the domain. My working assumption (based on what I have been told by operators of non-SR-aware domains) is that a domain that is not interested in SR traffic would filter these prefixes at the border. I personally donā€™t think this draft should make that recommendation since it is of an operational nature but I donā€™t have very strong feelings about this.

Regards
Suresh

v2.23.0 | Report a Bug | By Email