IETF Logo Mail Archive

Re: [spring] A permanent change to/violation of RFC8200 for a temporary situation. (Re: Is srv6 PSP a good idea)

Mark Smith <markzzzsmith@gmail.com> Thu, 27 February 2020 23:05 UTC

Return-Path: <markzzzsmith@gmail.com>
X-Original-To: spring@ietfa.amsl.com
Delivered-To: spring@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5466B3A0442 for <spring@ietfa.amsl.com>; Thu, 27 Feb 2020 15:05:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.598
X-Spam-Level:
X-Spam-Status: No, score=-0.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DqRE2UwLIsKr for <spring@ietfa.amsl.com>; Thu, 27 Feb 2020 15:05:48 -0800 (PST)
Received: from mail-oi1-x230.google.com (mail-oi1-x230.google.com [IPv6:2607:f8b0:4864:20::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4CC8A3A07F3 for <spring@ietf.org>; Thu, 27 Feb 2020 15:05:48 -0800 (PST)
Received: by mail-oi1-x230.google.com with SMTP id i1so987357oie.8 for <spring@ietf.org>; Thu, 27 Feb 2020 15:05:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=QsETZBBzxVC7Usq+SCOEpsnXH3hkrRtGt9OMAtRcv18=; b=vCdyWFNsympMqvoIlsxTU+Uh/KxRXCIhvro/G1yWCtAweVy+FcNuw5GS6F2qEcthPE KKSo6clxyYyUv8nrhuM+ZHD9pwcezZx2PrispHaOC4c2ePRAIPNqzqEawPQnVNB8TRgB y1Af3vH/QMpZWjaaKtLVYXg0evvjm1y8fxMPJd5sv/yn0Y10uSvXMrItHFrrmjHLO5Zo n4op/VcGaJpT7kacuFmnz4n3xIpON10NTrJpWiOIhjhJCTPvcgWwl4X7OyXLKDkS38mA Nq/+OaZEIiFxZB48KTWc12mGKP3WEKfmbvc4jj/Qjw56smJ9J8zwCHVkHkUmS4ZhONC+ WfGQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=QsETZBBzxVC7Usq+SCOEpsnXH3hkrRtGt9OMAtRcv18=; b=hKMNHJhE7sZ/zj8tM7ZSH6LPQh9VNt6EAN/eNy8ft/NkFz8j9Cloy33b0DSv7vtB23 f28V0Wc+w5LAKDXs62+7jFjm9V+zWqPuJK8kY1yzE5wXkbMxI33Q8ulgzUyTtGBsqXyB SrtHCIBg06bf/mSUdldH11drYS9SsOTUXiHfquJbDhL8C2ieRHPdPto6rvlI8g28awIw resvWSKRHQu20sPj+XhB/fuxdGe5sfkdOC+SZsrjHadj3Q2VAr/lPX0zip3lstukQVQK rS2803Pnp284lPD0AMrJbS622y8l87x0Y8g6CKSDjrT5e/x7aF3wE7db1xW5HS659du4 epTQ==
X-Gm-Message-State: APjAAAUYf7KByV+C6TawKuX+vmYEaf0U/EZNZGXaSQsu2V3Kc5Jf2oL4 Z5rfOeRmSukeNVSvqjYZeWzHPdnn1gImuiqMMp0=
X-Google-Smtp-Source: APXvYqyqewxs42XLpxo2alyZw+Pk4B9WGKXwEnur1DV5A6NOZ6vELyiCM+6a/qIvmxwB6qOiHoaSVmy2RKJG5yijU+g=
X-Received: by 2002:aca:4306:: with SMTP id q6mr1099880oia.54.1582844747635; Thu, 27 Feb 2020 15:05:47 -0800 (PST)
MIME-Version: 1.0
References: <EC02B3AB-9E11-4F85-B618-1092B1B8E085@bell.ca> <CAO42Z2xPR1N-7aeisyb=gT1hFQmi1KNTtbc7fHUA0YbfXu_o1Q@mail.gmail.com> <5C583745-894A-4B9C-83B0-9AF8F85D3A3A@cisco.com>
In-Reply-To: <5C583745-894A-4B9C-83B0-9AF8F85D3A3A@cisco.com>
From: Mark Smith <markzzzsmith@gmail.com>
Date: Fri, 28 Feb 2020 10:05:21 +1100
Message-ID: <CAO42Z2yRY3y4q8xd--khnnSNQjMz9+3YEU9xtgoC-0q9MteL=w@mail.gmail.com>
To: "Pablo Camarillo (pcamaril)" <pcamaril@cisco.com>
Cc: "spring@ietf.org" <spring@ietf.org>, "Voyer, Daniel" <daniel.voyer@bell.ca>, "Xiejingrong (Jingrong)" <xiejingrong@huawei.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/spring/tudnuQTi2cEfoMINteHHqQxn3Jg>
Subject: Re: [spring] A permanent change to/violation of RFC8200 for a temporary situation. (Re: Is srv6 PSP a good idea)
X-BeenThere: spring@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Source Packet Routing in NetworkinG \(SPRING\)" <spring.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spring>, <mailto:spring-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spring/>
List-Post: <mailto:spring@ietf.org>
List-Help: <mailto:spring-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spring>, <mailto:spring-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Feb 2020 23:05:57 -0000

Hi Pablo,

On Fri, 28 Feb 2020 at 07:51, Pablo Camarillo (pcamaril)
<pcamaril@cisco.com> wrote:
>
> Mark,
>
> Both the SRv6 control plane and dataplane operate between PEs. The legacy egress PE only executes End.DT/End.DX and is not capable of doing SRH processing at linerate in the use-case described by Dan.

I understand that.

It would never occur to me to extend a control plane domain past the
edge of the forwarding plane domain that it controls. That is
something I've never seen before in any control plane/forwarding plane
protocol pair scenario. So I'm wondering why do it when it is so
unconventional. What value does it add? What was the thinking behind
doing that?



>And as a reminder this is only one of the use-cases of PSP.
>

This is the only one that makes me slightly sympathetic to the idea of PSP.

Regards,
Mark.


> Cheers,
> Pablo.
>
> -----Original Message-----
> From: spring <spring-bounces@ietf.org> on behalf of Mark Smith <markzzzsmith@gmail.com>
> Date: Thursday, 27 February 2020 at 11:43
> To: "Voyer, Daniel" <daniel.voyer@bell.ca>
> Cc: "Xiejingrong (Jingrong)" <xiejingrong@huawei.com>, "spring@ietf.org" <spring@ietf.org>
> Subject: [spring] A permanent change to/violation of RFC8200 for a temporary situation. (Re: Is srv6 PSP a good idea)
>
>     On Sat, 14 Dec 2019 at 09:14, Voyer, Daniel <daniel.voyer@bell.ca> wrote:
>     >
>     > I agree 100% with Jingrong,
>     >
>     > PSP allows us to bring SRv6 to legacy PE devices that are not capable of processing the SRH in the dataplane, but are capable of supporting SRv6 in the control plane.
>     >
>     > See this example:
>     > I am streaming traffic from a server to a customer;
>     > The ingress PE (near the server) encapsulates the packet and adds an SRH with a low-latency list of segments;
>     > The penultimate node in the SRH executes PSP;
>     > The egress PE (near the customer) decapsulates the IPv6 header and forwards the inner packet to the customer.
>     >
>
>     I want to understand this example better, because it sounds very strange to me.
>
>     So the SRv6 control plane is extended past the edge of the SRv6
>     forwarding plane?
>
>     In all other protocols and networks I'm aware of, the control plane
>     domain and devices, and the forwarding plane domain and devices
>     it/they controls are either congruent, or the control plane is
>     "smaller" than the forwarding plane e.g. a couple of BGP Route
>     Reflectors controlling a cluster of many more routers.
>
>     What value is an SRv6 control plane on a router/PE that doesn't
>     implement the SRv6 forwarding plane?
>
>     This value would only exist during a temporary period until the router
>     forwarding plane could be upgraded to an SRv6 forwarding plane,
>     returning to the common convention of congruent control and forwarding
>     planes.
>
>     So it seems in this case that RFC 8200 is being violated with the PSP
>     proposal to accommodate extending an SRv6 control plane past a
>     network's SRv6 forwarding plane for a relatively short temporary
>     period, for any particular network, perhaps no more than 2 to 3 years
>     maximum.
>
>     Why not have the SRv6 control and forwarding domains always match, as
>     is usual and conventional for other matched pairs of control and
>     forwarding plane protocols and deployments, including new
>     protocol/forwarding plane deployments, and entirely avoid the issue of
>     fundamental violations of or making fundamental changes to a full
>     Internet standard protocol?
>
>     > We can include SLA unidirectionally from the server to the customer even though that the egress PE has a legacy ASIC. Legacy equipment are a reality and are not easy to replace, hence interoperability with brownfield is key for any innovative approach.
>     >
>
>     This is exactly the fundamental justification for not violating RFC
>     8200, and only minimally extending it where necessary and permitted,
>     fitting within the architecture rather than trying to change it. As
>     much SR magic as possible should be put into the much easier to
>     upgrade control plane, ideally avoiding or at least minimising
>     forwarding IPv6 plane changes.
>
>     Regards,
>     Mark.
>
>
>
>
>     > dan
>     >
>     > On 2019-12-10, 11:15 PM, "spring on behalf of Xiejingrong (Jingrong)" <spring-bounces@ietf.org on behalf of xiejingrong@huawei.com> wrote:
>     >
>     >     I think it's a good idea.
>     >     Nothing new, but benefits that people have already said seems notable to me.
>     >
>     >     (1) reduce the load of final destination. This benefit can be notable for the following sub reasons.
>     >     (1.1) final destination tends to have heavy load. It need to handle all the EHs and do the delivery/demultiplex the packet to the right overlay service.
>     >     (1.2) example 1, the final destination may need to handle the DOH after the RH.
>     >     (1.3) example 2, the final destination may need to do the assembly of fragmented packets.
>     >     (1.4) example 3, the final destination may need to do AH/ESP after the Fragmentation Header.
>     >     (1.5) example 4, the final destination may need to deliver the packet to the right overlay service.
>     >
>     >     (2) support the incremental deployment when final destination(s) do not process/recognize SRH. This benefit can be notable for the following sub reasons.
>     >     (2.1) A core router may (fan-out) connected with a big number of low-end routers that do not support SRH but support tunnel-end/service-demultiplex function of SRv6.
>     >
>     >     Thanks
>     >     Jingrong
>     >
>     >     -----Original Message-----
>     >     From: spring [mailto:spring-bounces@ietf.org] On Behalf Of Joel M. Halpern
>     >     Sent: Wednesday, December 11, 2019 10:55 AM
>     >     To: spring@ietf.org
>     >     Subject: [spring] Is srv6 PSP a good idea
>     >
>     >     For purposes of this thread, even if you think PSP violates RFC 8200, let us assume that it is legal.
>     >
>     >     As I understand it, the PSP situation is:
>     >     o the packet arrives at the place (let's not argue about whether SIDs are locators) identified by the SID in the destination address field o that SID is the next to last SID in the SID list o that sid is marked as / known to be PSP o at the intended place in the processing pseudocode, the last (first) entry in the SRH is copied into the destination IPv6 address field of the packet
>     >     -> The SRH being used is then removed from the packet.
>     >
>     >     In order to evaluate whether this is a good idea, we have to have some idea of the benefit.  It may be that I am missing some of the benefit, and I would appreciate clarification.
>     >     As far as I can tell, the benefit of this removal is that in exchange for this node doing the work of removing the SRH, the final node in the SRH does not have to process the SRH at all, as it has been removed.
>     >
>     >     I have trouble seeing how that work tradeoff can be beneficial.
>     >     Removing bytes from the middle of a packet is a complex operation.
>     >     Doing so in Silicon (we expect this to be done in the fast path of significant forwarders as I understand it) requires very special provision.  Even in software, removing bytes from the middle of a packet requires somewhere between some and a lot of extra work.  It is distinctly NOT free.
>     >
>     >     In contrast, we have assumed that the work of processing SRH itself is tractable, since otherwise all of SRv6 would be problematic.  So why is this necessary.
>     >
>     >     Yours,
>     >     Joel
>     >
>     >     PS: Note that both the MPLS case and the encapsulation case are very different in that the material being removed is at the front of the IP packet.  Pop or prepend are MUCH easier than middle-removal (or middle-insertion).
>     >
>     >     _______________________________________________
>     >     spring mailing list
>     >     spring@ietf.org
>     >     https://www.ietf.org/mailman/listinfo/spring
>     >
>     >     _______________________________________________
>     >     spring mailing list
>     >     spring@ietf.org
>     >     https://www.ietf.org/mailman/listinfo/spring
>     >     ------------------------------------------------------------------------------
>     >     External Email: Please use caution when opening links and attachments / Courriel externe: Soyez prudent avec les liens et documents joints
>     >
>     >
>     >
>     > _______________________________________________
>     > spring mailing list
>     > spring@ietf.org
>     > https://www.ietf.org/mailman/listinfo/spring
>
>     _______________________________________________
>     spring mailing list
>     spring@ietf.org
>     https://www.ietf.org/mailman/listinfo/spring
>
>

v2.23.0 | Report a Bug | By Email