IETF Logo Mail Archive

Re: [spring] draft-ginsberg-spring-conflict-resolution - WG adoption call

"Stefano Previdi (sprevidi)" <sprevidi@cisco.com> Wed, 11 May 2016 11:47 UTC

Return-Path: <sprevidi@cisco.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D411112DA56 for <spring@ietfa.amsl.com>; Wed, 11 May 2016 04:47:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.517
X-Spam-Level:
X-Spam-Status: No, score=-15.517 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.996, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BE6E1646QnXo for <spring@ietfa.amsl.com>; Wed, 11 May 2016 04:47:07 -0700 (PDT)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 377B812B065 for <spring@ietf.org>; Wed, 11 May 2016 04:46:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=20510; q=dns/txt; s=iport; t=1462967167; x=1464176767; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=Yr/OQzSXXXeP0Go7BaLSZaHa6qglfV9fWXB685USMl0=; b=hQ5Z0qTauKyWk13j+rju0X0KVGqtwH+VBrJTbsN7HYrEoEdeHeLSikJX UIwgqoXRzK0Nho0OC8o96/rKMrqYGPGMb5uFPjoAsMS9ZBZjYoagbIbB2 nBQ7yzQ/uAvL8hkG+yFcwVwWguMGVtiwU/Xxvv8BwkP6s6ct+8S2+psgS 4=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CBAwAaGjNX/4UNJK1dgzhVfQaEM7R2AQ2BdhcNhSJKAhyBHjgUAQEBAQEBAWUnhEIBAQEDAQEBASAROgsFBwQCAQgRAQMBAQECAiMDAgICJQsUAQIGCAIEDgUbiAwIDqdvkHoBAQEBAQEBAQEBAQEBAQEBAQEBAQERBHyFJIF2glaEEQoHAQYtgmkrgi4FmCcBhX2CeIUogWmET4hhj0ABHgEBQoIFG4FLbgGHSwkXH38BAQE
X-IronPort-AV: E=Sophos;i="5.24,608,1454976000"; d="scan'208";a="103116734"
Received: from alln-core-11.cisco.com ([173.36.13.133]) by rcdn-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 11 May 2016 11:46:05 +0000
Received: from XCH-RTP-005.cisco.com (xch-rtp-005.cisco.com [64.101.220.145]) by alln-core-11.cisco.com (8.14.5/8.14.5) with ESMTP id u4BBk55u022061 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 11 May 2016 11:46:05 GMT
Received: from xch-rtp-010.cisco.com (64.101.220.150) by XCH-RTP-005.cisco.com (64.101.220.145) with Microsoft SMTP Server (TLS) id 15.0.1104.5; Wed, 11 May 2016 07:46:04 -0400
Received: from xch-rtp-010.cisco.com ([64.101.220.150]) by XCH-RTP-010.cisco.com ([64.101.220.150]) with mapi id 15.00.1104.009; Wed, 11 May 2016 07:46:04 -0400
From: "Stefano Previdi (sprevidi)" <sprevidi@cisco.com>
To: Uma Chunduri <uma.chunduri@ericsson.com>
Thread-Topic: [spring] draft-ginsberg-spring-conflict-resolution - WG adoption call
Thread-Index: AQHRpiTU7mzHobbQgECZTb3vV/b9z5+snySAgAdNAAA=
Date: Wed, 11 May 2016 11:46:04 +0000
Message-ID: <FAC942B5-6B31-4A2D-A086-ABFBAF9B34C8@cisco.com>
References: <15416_1460620235_570F4BCB_15416_2090_1_53C29892C857584299CBF5D05346208A0F86E415@OPEXCLILM21.corporate.adroot.infra.ftgroup> <10411_1460620508_570F4CDC_10411_96_23_53C29892C857584299CBF5D05346208A0F86E45F@OPEXCLILM21.corporate.adroot.infra.ftgroup> <1B502206DFA0C544B7A6046915200863580C54E9@eusaamb105.ericsson.se> <0468fb2fe35841668bc35606e988074c@XCH-ALN-001.cisco.com> <1B502206DFA0C544B7A60469152008635BCD31AB@eusaamb106.ericsson.se> <445eeb6f8f12480f90e941a81eeaafc7@XCH-ALN-001.cisco.com> <1B502206DFA0C544B7A60469152008635BCDFEFB@eusaamb106.ericsson.se>
In-Reply-To: <1B502206DFA0C544B7A60469152008635BCDFEFB@eusaamb106.ericsson.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.228.89.71]
Content-Type: text/plain; charset="utf-8"
Content-ID: <363D547601B44C44A5EB754089E9F360@emea.cisco.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/spring/lQSubdgnVtzKFql7wBs73HfK6i4>
Cc: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>, "spring@ietf.org" <spring@ietf.org>, "bruno.decraene@orange.com" <bruno.decraene@orange.com>
Subject: Re: [spring] draft-ginsberg-spring-conflict-resolution - WG adoption call
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Stacked Tunnels for Source Routing \(STATUS\)." <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 May 2016 11:47:10 -0000

> On May 6, 2016, at 10:16 PM, Uma Chunduri <uma.chunduri@ericsson.com> wrote:
> 
> Les,
>  
> 2 quick things.
>  
> 1.        
>             >[Les:] There are two legitimate use cases for SRMS:
>                                            >1)To advertise SIDs for non-SR capable nodes
>                                            >2)As a global provisioning tool
>                          I am hearing #2 for the first time. I don’t see this either  discussed earlier in the WG list  or captured in architecture document 
>                          https://tools.ietf.org/html/draft-ietf-spring-segment-routing-07. Even in the protocol extensions document for example 
>                          https://tools.ietf.org/html/draft-ietf-isis-segment-routing-extensions-06#section-2.4 we always discussed this from non-SR 
>                          capable nodes PoV. So I request to add this in architecture document before factoring this for solution in conflict resolution. 


using a SRMS for advertising SID on behalf of SR capable nodes does not introduce any change in the SR architecture so not sure what we need to document here.


                       
> 
> 2.       Also this is the first time ever we have a requirement for cross protocols verification we ought to discuss the implications of this  
> and protocols involved (with in AS or otherwise) in the architecture document (at least briefly).


the architecture draft is data-pane agnostic so I presume you refer to draft-ietf-spring-segment-routing-mpls.

with the ipv6 data-plane SR conflicts are in fact solved by ipv6 addressing techniques ;-)

s.


>  
> --
> Uma C.
>  
> From: spring [mailto:spring-bounces@ietf.org] On Behalf Of Les Ginsberg (ginsberg)
> Sent: Wednesday, May 04, 2016 9:38 AM
> To: Uma Chunduri; bruno.decraene@orange.com; spring@ietf.org
> Subject: Re: [spring] draft-ginsberg-spring-conflict-resolution - WG adoption call
>  
> Uma –
>  
> To restate, the problem being addressed here is to guarantee consistent use of SIDs in the forwarding plane network-wide in the presence of conflicting advertisements. The set of advertisements includes both SIDs advertised in protocol prefix reachability advertisements and SRMS advertisements because problems occur based upon inconsistencies in what is installed in the forwarding plane of different routers. It matters not whether Router A used a SID advertised by a protocol prefix reachability advertisement or by an SRMS advertisement – what matter is whether the SID used is consistent with what the neighbors of Router A use. So simply ensuring that OSPF (for example) resolves SIDs in a consistent way does not fully address the problem space.
>  
> More inline.
>  
> From: Uma Chunduri [mailto:uma.chunduri@ericsson.com] 
> Sent: Tuesday, May 03, 2016 3:59 PM
> To: Les Ginsberg (ginsberg); bruno.decraene@orange.com; spring@ietf.org
> Subject: RE: [spring] draft-ginsberg-spring-conflict-resolution - WG adoption call
>  
> Les,
>  
> With all due respects, cross protocol verification  of prefix and SID conflicts as an “architectural change”  and it can severely impact the existing implementations (at least the one I work on). 
>  
> [Les:] It is quite correct – and I can confirm based on personal experience – that support for conflict resolution is a significant effort.
>  
> Also I have couple of cases where current version of the draft is not clear about resolution.
>  
> IMO, first we need clarity with in a protocol instance resolution rules before going to resolve the same across protocols (I mentioned few cases below) .
> Separation of reachability advertisements and SRMS would help “cross protocol” verification of the ranges and SRMS is not applicable to all protocols.
>  
>  
> In-line [Uma]:
>  
> --
> Uma C.
>  
> From: Les Ginsberg (ginsberg) [mailto:ginsberg@cisco.com] 
> Sent: Saturday, April 30, 2016 10:11 PM
> To: Uma Chunduri; bruno.decraene@orange.com; spring@ietf.org
> Subject: RE: [spring] draft-ginsberg-spring-conflict-resolution - WG adoption call
>  
> Uma –
>  
> We are indeed defining conflict resolution across all the SID advertisements regardless of source (protocol or SRMS) –
>  
> [Uma]: While you can theoretically do anything for current implementation this kind of cross protocol verification is a new architectural requirement.  
>                Because it seems “a central entity” need to gather all different protocol instances SRMS advertisements and should settle with resolution. 
>  
> -          Also note SRMS is not applicable for BGP but it seems all prefix SIDs need to be verified  with IGP instances SRMS advertisements. Is this true? While the document mostly talks about these and compares with prefix advertisement.
> [Les:] The issue is protocol agnostic.
>  
> -          Algorithm proposed needs more clarity: Take Section 3.2.4
>  
> o    
>                       “   1.  Smaller range wins
>  
>              2.  IPv6 entry wins over IPv4 entry
>              …
>         “
>                  What happens in case of prefix conflict or SID conflict with only prefix advertisements (range 1).  Say multiple prefixes have same SID in one protocol instance and in different protocols.
>                  I see 2 levels of resolution required viz., one at within the protocol and one among the protocols.  No discussion on this.
>  
> [Les:] The full set of rules specified in the draft provide deterministic resolution in all cases. You have snipped only the first two rules. If a preference is not obtained based on the first two rules you continue on to rule #3, then rule #4, etc.
>  
>                  Similarly in case of SID conflict  (range 1), it’s not specified which protocol’s SID need to be considered.  Are you assuming some sort of Admin distance play a role in resolution? 
> [Les:] No – admin distance plays no role here.
>  
>  I don’t see any discussion in the document  and needs more clarity there too.
> o   Also what happens if a prefix or SID conflict happens with SRMS range 1 and a prefix  advertisement (2 cases)
> a.       of one protocol and
> b.      multiple protocols?
>  
> [Les:] The source of the SID advertisement (what protocol/protocol instance or whether it is SRMS based) plays no role. The tie breaker rules as defined are complete and provide a deterministic answer in all cases.
> If you believe that is not true please provide a specific example where you apply all the rules in the order specified and still do not determine the preferred entry.
>  
>  
> -          On the below assumption: (Section 3.2.4)
>                                          “This has the nice property that a single misconfiguratoion of an SRMS
>                  entry with a large range will not be preferred over a large number of
>                  SIDs advertised in prefix reachability advertisements.”
> While anything can happen in theory, I found it bit odd to see why SRMS entry is being advertised and for the same prefix, SID is also advertised through reachability advertisements? 
> This is against the spirit of SRMS advertisement, isn’t it? While this can happen, it seems we are claiming resolution solution by focusing more on  this case in the current version of the document.
>  
> [Les:] There are two legitimate use cases for SRMS:
>  
> 1)To advertise SIDs for non-SR capable nodes
> 2)As a global provisioning tool
>  
> Let’s examine the first case. I have an LDP enabled network and I begin introducing SR capable nodes. At a given moment in time Router A is NOT SR capable and SRMS advertisements cover prefix SIDs for the addresses associated with Router A.
> I then upgrade Router A to become SR capable. Because I want to do “make-before-break” I do not immediately remove the SRMS advertisements covering the addresses associated with Router A. I upgrade A, add configuration of SIDs locally on Router A, and verify that the advertisements originating from protocols on Router A are correct. If an inconsistency is introduced when configuring the SIDs on Router A then I will have an SRMS advertisement and a prefix-reachability advertisement that conflict. Until the conflict is corrected we use the conflict resolution rules to provide deterministic forwarding behavior.
>  
> This to me is a normal and expected upgrade scenario.
>  
>  
> This is one of the reasons of my first comment below. You got to separate the reachability advertisements and SRMS advertisements; as in principle these are defined for different purposes. I don’t see we  need algorithm to prefer reachability advertisement over SRMS advertisement (if we don’t compare these 2 categories).
>  
>  
>  
> [Les:] I disagree – hopefully my comments have helped you to understand why.
>  
>    Les
>  
>  
> as the sections you have quoted clearly state.
>  
> Why? Because we need consistent use of SIDs in the forwarding plane. From forwarding perspective it matters not whether the SID was advertised by protocol instance #1 or #2 or by an SRMS. 
>  
> What matters is that the SID I use to determine what label I install in my forwarding plane is the same SID that my neighbors will use. Otherwise forwarding will be broken.
>  
>    Les
>  
>  
> From: spring [mailto:spring-bounces@ietf.org] On Behalf Of Uma Chunduri
> Sent: Wednesday, April 27, 2016 4:31 PM
> To: bruno.decraene@orange.com; spring@ietf.org
> Subject: Re: [spring] draft-ginsberg-spring-conflict-resolution - WG adoption call
>  
> Dear Authors,
>  
> Have few comments on the draft:
>  
> 1. 
>         As I indicated during meeting - I am not sure why we have to club  verification of SIDs advertised through regular protocol reachability
>                 prefixes and the ranges advertised through 'Mapping Server'  (SRMS). I didn't see any compelling reason to do this.
>                  SIDs advertised through reachability prefixes doesn't have ranges unlike SRMS advertisements. 
>                  As SRMS advertisements are primarily for nodes which are not SR capable and  I feel we should not mix this with nodes which are SR capable.
>  
>         This isolation helps restricting the resolution work primarily for multiple SRMS entries advertised through one node or multiple nodes.
>                 SRMS advertisements are indeed little bit unique in that you are advertising "configuration" on behalf of node X from node Y
>                 with ranges (both prefix ranges and SID ranges).
>  
>  
> 2. 
>                 Regarding  the scope of conflict resolution:
>  
>  
>        Section 1
>  
>            "   The problem to be addressed is protocol independent i.e., segment
>          related advertisements may be originated by multiple nodes using
>          different protocols and yet the conflict resolution MUST be the same
>          on all nodes regardless of the protocol used to transport the
>          advertisements."
>  
>         Section 3.2.8
>           "   o  In cases where multiple routing protocols are in use mapping
>       entries advertised by all routing protocols MUST be included."
>  
>       This sounds like we are seeking to resolve conflicting entries outside and across the protocols?
>       Each IGP has separate mechanism for advertising mapping entry and I this is not clear with the current version of the draft how we can cross verify SID/Prefix conflict across  the protocol.
>      Can you clarify this?
>  
>  
> --
> Uma C.
>  
>  
> -----Original Message-----
> From: spring [mailto:spring-bounces@ietf.org] On Behalf Of bruno.decraene@orange.com
> Sent: Thursday, April 14, 2016 12:55 AM
> To: spring@ietf.org
> Subject: Re: [spring] draft-ginsberg-spring-conflict-resolution - WG adoption call
>  
> > From:  bruno.decraene@orange.com > Sent: Thursday, April 14, 2016 9:51
> > AM
> >
> > Dear WG,
> >
> > As we discussed at our meeting last week, working group adoption has
> > been requested for draft-ginsberg-spring-conflict-resolution.
> > Please reply to the list with your comments, including although not
> > limited to whether or not you support adoption.
>  
> We will end the call on April 29, 2016.
>  
>  
> > Thanks,
> >
> > --John and Bruno
> >
> >
> >
> > __________________________________________________________
> > __________________________________________________________
> > _____
> >
> > Ce message et ses pieces jointes peuvent contenir des informations
> > confidentielles ou privilegiees et ne doivent donc pas etre diffuses,
> > exploites ou copies sans autorisation. Si vous avez recu ce message
> > par erreur, veuillez le signaler a l'expediteur et le detruire ainsi
> > que les pieces jointes. Les messages electroniques etant susceptibles
> > d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.
> >
> > This message and its attachments may contain confidential or
> > privileged information that may be protected by law; they should not
> > be distributed, used or copied without authorisation.
> > If you have received this email in error, please notify the sender and
> > delete this message and its attachments.
> > As emails may be altered, Orange is not liable for messages that have
> > been modified, changed or falsified.
> > Thank you.
> >
> > _______________________________________________
> > spring mailing list
> > spring@ietf.org
> > https://www.ietf.org/mailman/listinfo/spring
>  
> _________________________________________________________________________________________________________________________
>  
> Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.
>  
> This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation.
> If you have received this email in error, please notify the sender and delete this message and its attachments.
> As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
> Thank you.
>  
> _______________________________________________
> spring mailing list
> spring@ietf.org
> https://www.ietf.org/mailman/listinfo/spring
>  
> _______________________________________________
> spring mailing list
> spring@ietf.org
> https://www.ietf.org/mailman/listinfo/spring

v2.23.0 | Report a Bug | By Email