IETF Logo Mail Archive

Re: [Anima] Benjamin Kaduk's Discuss on draft-ietf-anima-autonomic-control-plane-16: (with DISCUSS and COMMENT)

Toerless Eckert <tte@cs.fau.de> Fri, 03 August 2018 22:55 UTC

Return-Path: <eckert@i4.informatik.uni-erlangen.de>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F02C130DD3; Fri, 3 Aug 2018 15:55:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.198
X-Spam-Level:
X-Spam-Status: No, score=-4.198 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_MED=-2.3, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XQghziRz9r1F; Fri, 3 Aug 2018 15:55:37 -0700 (PDT)
Received: from faui40.informatik.uni-erlangen.de (faui40.informatik.uni-erlangen.de [IPv6:2001:638:a000:4134::ffff:40]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DDE381271FF; Fri, 3 Aug 2018 15:55:36 -0700 (PDT)
Received: from faui48e.informatik.uni-erlangen.de (faui48e.informatik.uni-erlangen.de [131.188.34.51]) by faui40.informatik.uni-erlangen.de (Postfix) with ESMTP id 8A97F58C4C4; Sat, 4 Aug 2018 00:55:32 +0200 (CEST)
Received: by faui48e.informatik.uni-erlangen.de (Postfix, from userid 10463) id 7CF444E0721; Sat, 4 Aug 2018 00:55:32 +0200 (CEST)
Date: Sat, 04 Aug 2018 00:55:32 +0200
From: Toerless Eckert <tte@cs.fau.de>
To: Eliot Lear <lear=40cisco.com@dmarc.ietf.org>
Cc: Benjamin Kaduk <kaduk@mit.edu>, The IESG <iesg@ietf.org>, anima-chairs@ietf.org, draft-ietf-anima-autonomic-control-plane@ietf.org, anima@ietf.org, jiangsheng@huawei.com
Message-ID: <20180803225532.r6d4oiwyio6zdzll@faui48e.informatik.uni-erlangen.de>
References: <153316981032.22048.6996271018423269893.idtracker@ietfa.amsl.com> <a7e182b1-abe4-6ab9-b994-5d0eefefd142@cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <a7e182b1-abe4-6ab9-b994-5d0eefefd142@cisco.com>
User-Agent: NeoMutt/20170113 (1.7.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/9OzIIVY45KZY9woEHnvc2JR7RjE>
Subject: Re: [Anima] Benjamin Kaduk's Discuss on draft-ietf-anima-autonomic-control-plane-16: (with DISCUSS and COMMENT)
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Aug 2018 22:55:40 -0000

On Fri, Aug 03, 2018 at 11:26:08AM +0200, Eliot Lear wrote:
> On the other hand, there are no fewer than *44* uses of the word
> "future" prior to the appendices.

Yepp. But you're too late, Alissa was already complaining about it,
so i am just trying to improve the situation for -17. Just
taking a break to answer to your email...

Actually, the consistent use of the word "future" is the most
helpful part of this problem, because it allows me to find all those
places easily. ;-)

> Some of this is a certain writing style for a general architecture,

Nah, don't say this, our charter explicitly disallows archtiecture
work, we pulled the permission to do the reference-model draft against
a lot of resistance.

All the "future" mentions where really derived from cutting ambitions
2? years ago to not try to boil the ocean but stick the normative part to
what we where able to work out from practical experience with implementation
or suficient confidence of experience, and highlight the rest as
futures.

I'll probably want to create a summary of "futures" at the end of the
doc, so we do not forget the bits we want to do, but didn't get around

But yets, will definitely want to clean up primarily the normative part
of the doc, not the informative parts so much.

> but at the end of the day
> I was left wondering whether
> https://tools.ietf.org/html/draft-thomson-use-it-or-lose-it-01 should be
> taken to heart in this instance.

Definitely. I think ACP does actually do that.
Which WG is this proposed to be adopted by (or IAB ?).

>   In particular, the following stands out to me:
> 
> >   "rsub" is optional; its syntax is defined in this document,
> >    but its semantics are for further study.  Understanding the benefits
> >    of using rsub may depend on the results of future work on enhancing
> >    routing for the ACP.
> 
> Why define rsub now if it has no semantic value?  Is that the garnish
> that nobody eats?

In japanese cuisine, all garnish is edible and delicious.

Yes, that text was the worst example offender in -16. There actually
is a great current use-case for rsub today that can be solved by
the ACP normative functions and existing router configuration,
which is what will be used as justification in -17:

  Using different rsub for separated ACP areas connected via non-ACP
  capable "core", because .e.gg: core routers don't support ACP (yet) - and
  when later on core nodes do support ACP, no change is necessary, just
  removal of the manual configs to interconnect those areas. 

> I see three different things going on in this document:
> 
>   * Some real future proofing with extension mechanisms.

Right. The example of that is the ability to not include an ACP
address in the certificate because ACP peers might have a different
way to derive their ACP address (which is a future as we have
not defined such a mechanism). For a node compliant with this ACP
doc, the acp-address MUST be present in the cert, but it must
also recognize a peer (during IKE/TLS authentication) as a valid
peer that does NOT have an acp-address in the certificate.

This was the second big issue not well described that i had to
figured out in the text from Alissas review.

>   * Some implicit and explicit forward references to work that is a bit
>     behind this work.  I think the purpose of this text is to justify
>     particular functionality as fulfilling some envisioned dependency.

Yeah, how do we call this class better: "Stuff that contributors to
the WG wanted to have ACP do, but that didn't make the cut to
be defined in this spec - for various reasons.

So i think i'll move breadcrumps for those points out of the normative part,
but i do not want to loose them.

>   * Stuff like the above that doesn't seem well justified.

    I hope the doc has none of that but only (as above example)

    * Useful intentions with bad writing.

> The big concern with all of this is when an extension is used on one
> system and no by another, will there be interoperability problems? 
> Especially as relates to ACP domain membership.  I don't have a good
> feel for that in a few of these cases.

Right now i feel quite confident that this is all ok, but i think
i will learn the real solution once i am through with Ekrs review.

Right now, domain membership is really meant to be just normal Internet PKI
certificte validation plus use of the same trust anchors plus
the check that the local acp-domain-name is the same as that of the peer.

But i think Eric has a bunch of issues with the way we wrote that.



> Eliot
> 
> 




> _______________________________________________
> Anima mailing list
> Anima@ietf.org
> https://www.ietf.org/mailman/listinfo/anima


-- 
---
tte@cs.fau.de

v2.23.0 | Report a Bug | By Email