[NSIS] FW: Chair write-up of: "GIST: General Internet Signaling Transport"

[<john.loughney at NOKIA.COM>]

Martin and I have sent this to our Ads, so that GIST can be resubmitted
to the IESG.

John 

>-----Original Message-----
>From: Loughney John (Nokia-NRC/PaloAlto) 
>Sent: 04 October, 2007 16:01
>To: 'Magnus Westerlund'; Eggert Lars (Nokia-NRC/Helsinki)
>Cc: 'Hannes.Tschofenig at gmx.net'; 'robert.hancock at roke.co.uk'; 
>Martin Stiemerling
>Subject: Chair write-up of: "GIST: General Internet Signaling 
>Transport"
>
>The "GIST:  General Internet Signaling Transport" has been 
>reviewed by the IESG, and there were several discusses issued 
>against the draft. We feel that all open issues from the IESG 
>have been resolved.
>
>There was a working group last call that ended on June 25th.  
>Additionally, there was a GIST Interop event, that raised a 
>few more issues, that have all been resolved in the Working 
>Group and were part of the WGLC.    Attached is the Interop 
>Summary report.
> 
>The I-D is now ready for AD and IESG review. Below are details 
>about the I-D:
>
>Title:  GIST:  General Internet Signaling Transport
>I-D: http://www.ietf.org/internet-drafts/draft-ietf-nsis-ntlp-14.txt
>
>Status: Proposed Standard
>
>Response to template:
>
>1) Have the chairs personally reviewed this version of the ID and do
>   they believe this ID is sufficiently baked to forward to the IESG
>   for publication? 
>
>Yes.
>
>2) Has the document had adequate review from both key WG members and
>   key non-WG members? Do you have any concerns about the depth or
>   breadth of the reviews that have been performed?
>
>Yes. The ID has passed working group last calls, has had good 
>reviews during the process, including an early reviews by Bob 
>Braden and Brian Carpenter prior to acceptance as a working 
>group document.  It has been reviewed by the IESG, and we feel 
>that all DISCUSSes from the IESG have been cleared.
>
>3) Do you have concerns that the document needs more review from a
>   particular (broader) perspective (e.g., security, operational
>   complexity, etc.)? 
>
>No concerns.  The document has undergone extensive Working 
>Group review, and has several (at least 6) interoperable 
>implementations.
>
>   
>4) Do you have any specific concerns/issues with this document that
>   you believe the ADs and/or IESG should be aware of? For example,
>   perhaps you are uncomfortable with certain parts of the document,
>   or whether there really is a need for it, etc., but at the same
>   time these issues have been discussed in the WG and the WG has
>   indicated it wishes to advance the document anyway.
>
>No
>   
>5) How solid is the WG consensus behind this document?  Does it
>   represent the strong concurrence of a few individuals, with others
>   being silent, or does the WG as a whole understand and agree with
>   it?
>
>There is a strong consensus in the WG supporting this work, at 
>this point there is no disenting voices about the protocol in the WG.
>
>6) Has anyone threatened an appeal or otherwise indicated extreme
>   discontent?  If so, please summarize what are they upset about.
>
>No. 
>   
>7) Have the chairs verified that the document adheres to _all_ of the
>   ID nits?  (see http://www.ietf.org/ID-nits.html).
>
>Yes.
>
>8) Does the document a) split references into normative/informative,
>   and b) are there normative references to IDs, where the IDs are not
>   also ready for advancement or are otherwise in an unclear state?
>   (Note: the RFC editor will not publish an RFC with normative
>   references to IDs, it will delay publication until all such IDs are
>   also ready for publication as RFCs.)
>
>The document does split references into normative and 
>informative ones. 
>
>9) For Standards Track and BCP documents, the IESG approval
>   announcement includes a writeup section with the following
>   sections:
>
>   - Technical Summary
>
>This draft proposes a general signaling transport protocol.  
>It is based on the use of existing transport and security 
>protocols under a common messaging layer. GIST does not handle 
>signaling application state itself; in that crucial respect, 
>it differs from application signaling protocols such as SIP, 
>RTSP, and the control component of FTP, but this follows the 
>basic NSIS 2-layer signaling model defined in RFC 4080.
>
>   - Working Group Summary
>
>There have been several WGLC on the document, plus several 
>pre-WGLCs on the document.
>The editors have gotten extensive feedback from implementors 
>and have clarified text based upon the feedback.  There are 6 
>or more independent implementations of GIST, and there was an 
>interop event prior to the Paris IETF meeting.
>
>   - Protocol Quality
>
>This document was reviewed by the working group chair as well 
>as the WG. We feel that this document is ready, and 
>implementors feel that the specification is implementatble.

--- Begin Message ---

• To: <nsis at ietf.org>, <nsis-chairs at tools.ietf.org>
• Subject: NSIS Interop Summary Report from Karlsruhe
• From: <bless at tm.uka.de>
• Date: Mon, 18 Jun 2007 18:47:13 -0500
• Thread-index: AceyAwUWtHHANiYvRR2wxMqmVoL3Fg==
• Thread-topic: NSIS Interop Summary Report from Karlsruhe

Hi all,

the WG chairs solicited feedback about the latest NSIS interop in
Karlsruhe. So here it is (sorry for the long delay):

Overview:
=========
* Implementation teams:
  - University of Coimbra (GIST, QoS NSLP, NAT/FW) each Draft -13
  - Uni Goettingen (GIST, QoS NSLP, NAT/FW) each Draft-13
  - Uni Karlsruhe (GIST, QoS NSLP, NAT/FW) each Draft-13
  - Siemens Roke Manor Research was planned to participate but
    could not make it.
* We mainly concentrated on GIST tests, because
  this spec has to be off the table first.
* We used test cases that were defined by Christian Dickmann
  (and discussed at last IETF among Christian, Alan Ford, Andrew
  McDonald and partially me). You can find the document here
  (though in a format of an internet-draft, it is not published as such
  yet)
http://user.informatik.uni-goettingen.de/~cdickman/draft-dickmann-nsis-ntlp-interop-00.txt

* Christian did a great job in setting up tools for performing
  automated tests. This sped up testing a lot.
* GIST  was quite thoroughly tested with Goettingen vs. Karlsruhe
  (in both directions, see below).
  We tested all the main protocol features like D-Mode, C-Mode,
  TLS+TCP, v4,v6, late state installation, etc.
* The GIST Spec is implementable; we found no major issues
  with the GIST spec, only the need for
  some clarifications that can be found here in our tracker:
  https://projekte.tm.uka.de/trac/NSIS/report/10
  (I entered some additional tickets after the interop event).
* A major open issue is, however, NAT traversal functionality
  that could not be tested yet.
* Interop URL: https://projekte.tm.uka.de/trac/NSIS/wiki/Interop-20070509

Details (as written in a mail from Christian)
=================================================
Christian created a report based on the data collected by the
Interop Tools. Take a look at:
http://dickmann.homeunix.org/nsis/displayReportList.php
---------------------------------------------------------------------
Christian's mail:
Of course, this is only a subset of all tests that were made (and only
the last run of each test case), but I guess we are close to 90 or 95%
coverage. A lot of test cases come with captures so that you can look up
the message exchange for successful or failed tests. I set the
success-flag for most tests directly during the interop event once the
test was completed. However, for some test cases I set the flag today
based on my notes (and my memory).

As you know the test cases were based on [1].
Each test case belongs into one of these categories: "normal operation",
"recoverable problems", "unrecoverable problems".

I analyzed the report based on these categories (notation "X vs. Y"
means X is Initiator and Y is Responder):
Normal operation:
  Goettingen vs. Karlsruhe:
    3-Way Handshake: 7 PASSED, 10 run of 11 test cases
    Refresh of soft state: 2 PASSED, 2 run of 5 test cases
    Setup of multiple sessions: 3 PASSED, 3 run of 4 test cases
    Interception on NSIS forwarders: 3 PASSED, 4 run of 4 test cases
    GIST Stateless operation: 0 PASSED, 1 run of 2 test cases
  Karlsruhe vs. Goettingen:
    3-Way Handshake: 8 PASSED, 9 run of 11 test cases
    Refresh of soft state: 0 PASSED, 1 run of 5 test cases
  Goettingen vs. Coimbra:
    3-Way Handshake: 8 PASSED, 9 run of 11 test cases
    Refresh of soft state: 2 PASSED, 2 run of 5 test cases
  Coimbra vs. Goettingen:
    3-Way Handshake: 2 PASSED, 3 run of 11 test cases
  Karlsruhe vs. Coimbra:
    3-Way Handshake: 5 PASSED, 5 run of 11 test cases

Recoverable problems:
  Goettingen vs. Karlsruhe:
    3-Way Handshake: 2 PASSED, 3 run of 3 test cases
    Refresh of soft state: 4 PASSED, 4 run of 5 test cases
  Karlsruhe vs. Goettingen:
    3-Way Handshake: 1 PASSED, 1 run of 3 test cases
  Goettingen vs. Coimbra:
    3-Way Handshake: 2 PASSED, 2 run of 3 test cases
    Refresh of soft state: 4 PASSED, 4 run of 5 test cases

Unrecoverable problems:
  Goettingen vs. Karlsruhe:
    3-Way Handshake: 5 PASSED, 5 run of 5 test cases
  Karlsruhe vs. Goettingen:
    3-Way Handshake: 3 PASSED, 4 run of 5 test cases
  Goettingen vs. Coimbra:
    3-Way Handshake: 4 PASSED, 5 run of 5 test cases



As we can see, we did not test all test cases, even for Goettingen vs.
Karlsruhe.
However, for Goe vs. Ka we can say that we covered a really good part of
the GIST specification. In particular we tested all important features
(except for NAT traversal and Stateless mode). This makes me very
confident that the spec is implementable (except for NAT traversal, see
NSIS mailing list).
I think we tested Goettingen against Karlsruhe quite thoroughly (in both
directions). We ran 47 test cases (IPv4 only) and passed 38 of these.
That's a success rate of 80%. The tests against Coimbra were not as
complete. We ran 25 test cases (IPv4 only) between Göttingen and Coimbra
and passed 22 of them (= 88%). Thus, the test cases we tested were quite
successful, but we ran only half of the test cases compared to Goe/Ka.

Also note that we did only very few test cases with IPv6 and only with
Göttingen vs. Karlsruhe. However, those were all successful.

My personal lessons learned from this interop:
- Even 3 days were not enough. Considering that we only had 3 GIST
implementations to test, this sounds like we wasted too much time. I try
to find reasons below.
- I guess 70% of the problems we found between Göttingen and Karlsruhe
were NOT related to interop problems. On the other hand, all bugs found
in our (Göttingen) implementation (very few overall) were related to
real interop issues. I guess the reason is quite simple: I ran ALL test
cases defined in [1] with Göttingen vs. Göttingen and so found and fixed
a lot of bugs before arriving in Karlsruhe. I suppose the other
participants did not do internal tests as thorough as ours, which
resulted in this rate of non-interop issues.
- More internal tests (see above) but also remote tests before the
actual interop event can save a lot of time. I did some remote tests
with Karlsruhe and we were able to detect and fix some problems before
meeting in person. With Coimbra I also performed some remote tests (just
basic D-Mode and C-Mode, both failed), but not as thorough as with
Karlsruhe. We ended up having problems with TLS for many hours during
the interop event. We should do much more remote testing to avoid these
lengthy debugging phases!
- The interop draft [1] helped a lot. First, it has so many test cases
that you would not think of during an interop event. Second, for complex
tests the expected behavior and useful triggers are not always obvious.
Having them written down with one or two rounds of review saves time and
avoids mistakes during the interop event. Third, the interop draft now
helps to write this report, as we can "measure" the success.
- The interop tools helped a lot and saved a lot of time. I guess the
tools saved roughly 50% of my time. Maybe even more. Considering that we
are very short on time, this is a huge improvement. Besides that, many
test cases are simply not feasible without tools (for example attack
scenarios, corrupted objects, etc.). We should continue to use the tools
and extend them so that they can become the default tool to do the
interop. That would also help in remote testing.
- The organization by Roland was very good. We had enough switches,
cables, spare machines, space, etc. The network setup we discussed on
this mailing list a week before the interop was well set up and avoided
long setup and re-plugging phases. You can see that this is important
when you look at Luis and Vitor who tried to configure their network on
site to correspond to the network layout. It took them quite a while of
debugging to configure their machines correctly. More preparation from
all sides and an agreed-upon network setup help to avoid these kinds of
delay.
- Taking all these issues into account, I think that 3 days CAN be
enough time, if and only if enough preparation is done in form of
defining test cases, writing tools to help with testing, testing
internally against the test cases, doing remote tests and organizing and
preparing for the event itself.

Overall I am quite satisfied with the interop. I think we made a big
step ahead towards mature and interoperable implementations. We tested
and discussed a good portion of the spec and found no (or very few and
minor) real problems. And we tested quite a lot of test cases and had a
reasonable success rate that is even going to improve with remote tests
taking place in the next few weeks.

Thank you all. I had a great time at the interop and special thanks go
to Roland and the University of Karlsruhe for doing a very good job of
hosting this interop event.

Regards,
Christian Dickmann

[1]
http://user.informatik.uni-goettingen.de/~cdickman/draft-dickmann-nsis-ntlp-interop-00.txt
--------------------------------------------------------------------

--- End Message ---

_______________________________________________
nsis mailing list
nsis at ietf.org
https://www1.ietf.org/mailman/listinfo/nsis