Re: [v6ops] Call for adoption: draft-peng-v6ops-hbh
Gyan Mishra <hayabusagsm@gmail.com> Thu, 16 September 2021 00:10 UTC
Return-Path: <hayabusagsm@gmail.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87CF13A0A68 for <v6ops@ietfa.amsl.com>; Wed, 15 Sep 2021 17:10:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.087
X-Spam-Level:
X-Spam-Status: No, score=-2.087 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6Rs2JiBHprjN for <v6ops@ietfa.amsl.com>; Wed, 15 Sep 2021 17:09:55 -0700 (PDT)
Received: from mail-pg1-x52b.google.com (mail-pg1-x52b.google.com [IPv6:2607:f8b0:4864:20::52b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 87F323A0A62 for <v6ops@ietf.org>; Wed, 15 Sep 2021 17:09:55 -0700 (PDT)
Received: by mail-pg1-x52b.google.com with SMTP id r2so4419157pgl.10 for <v6ops@ietf.org>; Wed, 15 Sep 2021 17:09:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=oN23ott2VJwCXl2MsABF+DRUWxxnbsNDTIaJqKCBgLA=; b=eFUGMHd9dxGwD3g80CuvgIQgGn2Xv61nUVeFgGtE+MA8oKY4AiQVu0a5Vtts9o4UUY 7fpOyiCXo5Z6YeWjCjK1ta++0yCR6zQUJePfJ6/TkHpm61UjTAH+3pzZ5KfN8Xcfpg+M Q1mJy+PlOs1cjzufHkbP+eZy/s3turngYl3uAAC9pDH4ARLp+sz69xFD94j9XrEkSpRq 5bs1Cf2MOIr2T3h9M3jsEk9eKOH/TUPN6tPMRiG79au1XYAHTS8Oxm0BUsdFqckVsdJP N/NUQDdpF/Y2ThBuBM5A+F2V6L7dkOHEAeYJiPJ2vwjRuK+uFf6eMwDqKQZ10Y4dnv4O +Q/g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=oN23ott2VJwCXl2MsABF+DRUWxxnbsNDTIaJqKCBgLA=; b=bgls2AQjk03UGZTLTbU9QjjLLtjr/bkTHkEWGetJqaXGG/aFx9VxYJ1SG+teTQpukJ q798tspf0g37br5UfvmVv3POH2oS68qorQRIayypWarAcddFS5Nrf/ZQ09XWEkjky0Uy J6wAl39oVMsrwehewBwaVCtBkKYnfnJcTpl9IP5P9colbNruLPDEvQNbKYuRMUeTacJD k4pptdX4aO1eDgFfjJl911MFLONxZ+YdSyvp18gcoioBlXINZfYLR4gpSf/glxGpRxLj QttkkA36ZNyVRtND/Ec2abVIBe5UeEZsTRCBB9MbRhEMqF2GwKTj0XE6asjeFLVz9NjK 9+Iw==
X-Gm-Message-State: AOAM53102FGgCExqdusczoUcGVr90I/970kw76RTnhs8C1CAsJgAtJ7+ +qPeCqkBGoOiXpz7ISp3+vocW3my9TU5FpFhXK+J+7mA
X-Google-Smtp-Source: ABdhPJwnSD3gl2W5EB7ooqQSDVYi43Ozr6moC8bqtaDdCWdzwf4Fww6X2VlS1AnDSW+eIvFamf/kbl7ViQfRq2AeR4U=
X-Received: by 2002:aa7:8888:0:b0:3ff:1d90:1864 with SMTP id z8-20020aa78888000000b003ff1d901864mr2511824pfe.54.1631750993358; Wed, 15 Sep 2021 17:09:53 -0700 (PDT)
MIME-Version: 1.0
References: <BL0PR05MB5316375D7503A85477DF874AAED59@BL0PR05MB5316.namprd05.prod.outlook.com> <93CF6EB2-5AC0-4611-9A28-2D1AF50F2F64@gmail.com> <CABNhwV1Yw9N8OT40ZvzpWz7EG34OzG5vLQzZHqiccWkAdQdjSg@mail.gmail.com> <8A23C4EE-EE60-4745-829E-807569B5F023@gmail.com>
In-Reply-To: <8A23C4EE-EE60-4745-829E-807569B5F023@gmail.com>
From: Gyan Mishra <hayabusagsm@gmail.com>
Date: Wed, 15 Sep 2021 20:09:42 -0400
Message-ID: <CABNhwV11oRASUY8-SO3BCNnKqM7-kiAgQOBAb-Z3XuKgXOsRqQ@mail.gmail.com>
To: Bob Hinden <bob.hinden@gmail.com>
Cc: "v6ops@ietf.org" <v6ops@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000005233e405cc11a282"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/y-_Qk8MvmJdDHQpXerkb6EIhszA>
Subject: Re: [v6ops] Call for adoption: draft-peng-v6ops-hbh
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Sep 2021 00:10:01 -0000
Hi Bob Responses in-line Many Thanks Gyan On Sun, Sep 12, 2021 at 12:14 PM Bob Hinden <bob.hinden@gmail.com> wrote: > Gyan, > > Thanks, a few points below. > > Bob > > > > On Sep 10, 2021, at 7:30 PM, Gyan Mishra <hayabusagsm@gmail.com> wrote: > > > > > > Hi Bob > > > > Many thanks for your comments and feedback on this draft. > > > > Responses in-line > > > > …….. > > > > > 4) Section 7 Requirements > > > > This section needs a lot of work, or should be removed. For example, > looking at the the first requirement: > > > > * The HBH options header MUST NOT become a possible DDoS Vector. > > > > This has several serious issues. The first is that any protocol > mechanism can be used a a DDOS attack vector under the right > circumstances. With a MUST NOT this requirement is impossible to meet. > The use of upper case RFC8174 key words turns this into a protocol > specification, I don’t think that would be in scope for V6OPS. > > > > Gyan> Good point. We will reword and remove mention of DDOS vector. > > We clearly want to reduce the possibility of the HBH option header to be > used as a DDOS vector, but the way this was written it would be impossible > to meet. It’s still good to mention DDOS, but it needs better scoping. > Gyan> Thanks for the clarification. Rewrite - HBH options usage should not result in an DDOS attack vector as a result of control plane processing of packets that should be processed in the forwarding plane. > > > > The next requirement: > > > > * HBH options SHOULD be designed so that they don't reduce the > > probability of packet delivery. For example, an intermediate node > > may discard a packet because it contains more HBH options than the > > node can process. > > > > How can you design an HBH option that knows how many options an > intermediate node (we usually call these routers) can process? Again, > it’s a requirement that can’t be met. > > > > Gyan> Good point as well. > > > > > > I have similar comments on the other requirements, but won’t list them > here. As I said, this section either needs a lot of work, or should be > removed. > > > > Gyan> We will work on revamping this section. Do you have any > requirements that you would like to add to an HBH solution? > > Perhaps take a look at draft-hinden-6man-hbh-processing-01 and > draft-herbert-6man-eh-limits. These are written with solutions in mind, > but they do infer requirements. Gyan> Will do. Thank you > > > > 5) Section 8. Migration Strategies > > > > This section also has serious issues. These include: > > > > It talks about characterizing options into either control options or > forward options. We only have HBH Options, not two types. > > > > It says nodes are updated to the proposed behavior introduced in the > pervious section, but the previous section says requirements. > > > > It says edge nodes (we usually call these hosts in IPv6) should check > whether the packet contains an HBH header with control or forwarding > options. This isn’t a good description of how hosts actually work, nor > are there control or forward options. > > > > This section may be a remanent of an earlier version of this draft that > was proposing different types of HBH options, but can’t really tell. > Might be best to remove this section. > > > > Gyan> We have discussed cleaning up this section or removing and now > based on feedback we are leaning towards removing. > > I would support that. Gyan> Thank you > > > -- <http://www.verizon.com/> *Gyan Mishra* *Network Solutions A**rchitect * *Email gyan.s.mishra@verizon.com <gyan.s.mishra@verizon.com>* *M 301 502-1347*
- [v6ops] Call for adoption: draft-peng-v6ops-hbh Ron Bonica
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Brian E Carpenter
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Warren Kumari
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Huzhibo
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… 秦壮壮(联通北京市北京市分公司)
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Xiejingrong (Jingrong)
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Pascal Thubert (pthubert)
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Stefano Previdi
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… otroan
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Pengshuping (Peng Shuping)
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Pengshuping (Peng Shuping)
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Chengli (Cheng Li)
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Warren Kumari
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Gyan Mishra
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Vasilenko Eduard
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Bob Hinden
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Tom Herbert
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Gyan Mishra
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Pengshuping (Peng Shuping)
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Chongfeng Xie
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Brian E Carpenter
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Bob Hinden
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Lizhenbin
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Pengshuping (Peng Shuping)
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Gyan Mishra
- Re: [v6ops] Call for adoption: draft-peng-v6ops-h… Ron Bonica