Re: [Anima] Tsvart last call review of draft-ietf-anima-constrained-join-proxy-10
Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com> Tue, 17 May 2022 15:37 UTC
Return-Path: <spencerdawkins.ietf@gmail.com>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D0638C159823 for <anima@ietfa.amsl.com>; Tue, 17 May 2022 08:37:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.097
X-Spam-Level:
X-Spam-Status: No, score=-7.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kf94JVPfpYZI for <anima@ietfa.amsl.com>; Tue, 17 May 2022 08:37:19 -0700 (PDT)
Received: from mail-vs1-xe2f.google.com (mail-vs1-xe2f.google.com [IPv6:2607:f8b0:4864:20::e2f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 371DCC1594B4 for <anima@ietf.org>; Tue, 17 May 2022 08:37:19 -0700 (PDT)
Received: by mail-vs1-xe2f.google.com with SMTP id e19so19044724vsu.12 for <anima@ietf.org>; Tue, 17 May 2022 08:37:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=DJWirTjGOJJSdxmVBUQk/rnVz5+RCMPWiN8qHc1Pdcs=; b=Ya6qpS+k9G5quXrG+LnGJ8wgzcdFTuYxVl5jibRkIYE3GjTIh1bu1IyUhkqCZQtVHa tUZpjqw3wLLszQyu7Udq7EA06rAf1XRd6ysYvo0GTrUhTqirJKr9xymI64qmqAzBKr1P MYw9bidVJiUB/uz7Cp2odfexF41+VcwHamBeExyobFShNTrNPYQxRYcEerkdbycBxZQU jeu3S+3X6THuYenXOgJKivCXVJi/vsq+UbgMsbhNSPB6JeMAuq8Geh0+FGGgXsGl3OrT 6l0zp6apVDyfPktSUjwNXSXsTsitSuvva/kElUFIzBN3HWtxdJpknw4Xa6fRYjWHd/vu zaBw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=DJWirTjGOJJSdxmVBUQk/rnVz5+RCMPWiN8qHc1Pdcs=; b=y0n07aZcAd62cZYQC6KKeglvBDUYgZ/yURxZyB5krCHGsHzlIpu8epach78mUALVaY lSBDJHXwzrzTollu2cwbKuK/ghlGV/kkzwi+zq9cDpYQMddObVD6N9kl3DchtHfjzPJD +sGlyCPrfbMHU1Ajp98EYc41lPafEimv9SEqzkhRmA3Az3UvlzZvobzIAcsRFX6OsYNh E/fMUtgD22OqmtHxwTprN7sXc3nuGF0oli5CzTu/6yVSPFYjF6vNOOaLOK2hea4kGkzG dQtxddn/wagzbBBmNfvSXfaBntoSdGnjodcakqeUMoXHPzwla31GafKXagzYRp9Ic4/Z EG5g==
X-Gm-Message-State: AOAM5334CzztqohtfCfxd5wrJGqotYCIkPw6csEeNsMxVJ2+nYY4LqfU SusrDlLPnnFmx8FNEGEJEuZFxaILCqL0xoN28ic=
X-Google-Smtp-Source: ABdhPJw3amJsx6NQanTDfu31quF/AYOW3cpSavrHEGkaEd58hDC35IhHUbHdIKtvdgYopOzjM5E8Pdho4tAGj3KhHwc=
X-Received: by 2002:a05:6102:3018:b0:32d:696:2a9e with SMTP id s24-20020a056102301800b0032d06962a9emr9129581vsa.68.1652801837733; Tue, 17 May 2022 08:37:17 -0700 (PDT)
MIME-Version: 1.0
References: <165274254631.62630.11102982778020349578@ietfa.amsl.com> <61693ee0f53d9398b55d000231b06325@bbhmail.nl> <DU0P190MB197859A7987DFFDF4041A165FDCE9@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM> <CAKKJt-eJva8imG3VXiONp3r88gNqDYfWx_U01RdeW38cLwh4QA@mail.gmail.com>
In-Reply-To: <CAKKJt-eJva8imG3VXiONp3r88gNqDYfWx_U01RdeW38cLwh4QA@mail.gmail.com>
From: Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>
Date: Tue, 17 May 2022 10:36:52 -0500
Message-ID: <CAKKJt-eEzJ_qx0Th=h4PSjdQzXXKdEq01q=b-Ew897a+VC2Peg@mail.gmail.com>
To: Esko Dijk <esko.dijk@iotconsultancy.nl>
Cc: "stokcons@bbhmail.nl" <stokcons@bbhmail.nl>, "anima@ietf.org" <anima@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000006c1c2605df36ea13"
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/TuH4gBMbEbidO6JNv4JZQEouQWk>
Subject: Re: [Anima] Tsvart last call review of draft-ietf-anima-constrained-join-proxy-10
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 May 2022 15:37:22 -0000
To a smaller audience, I got this bounce message from AMS - perhaps Jiang's email address should be updated? <jiangsheng@huawei.com> (expanded from <expand-draft-ietf-anima-constrained-join-proxy.all@virtual.ietf.org>): host mx5.huawei.com[124.71.93.234] said: 551 5.1.1 < jiangsheng@huawei.com>: Recipient address rejected: Failed recipient validation check.: host 127.0.0.1[127.0.0.1] said: 554 5.7.1 recipient verify from ldap failed (in reply to RCPT TO command) (in reply to RCPT TO command) Best, Spencer On Tue, May 17, 2022 at 10:31 AM Spencer Dawkins at IETF < spencerdawkins.ietf@gmail.com> wrote: > Hi, Esko, > > On Tue, May 17, 2022 at 4:37 AM Esko Dijk <esko.dijk@iotconsultancy.nl> > wrote: > >> Hi Peter, Spencer, >> >> >> >> For some more detail on Peter’s ‘No’ answer: >> > > I was expecting that answer. 😉 > > Thanks for the additional details! > > >> Since the Pledge communicates (link-local) with the Join Proxy using >> DTLS-over-UDP on a network that is likely 6LoWPAN (1280 byte MTU limit) >> mesh, it could happen in theory that the Pledge sends out a DTLS handshake >> UDP packet with a length that brings the carrying IPv6 packet length at >> 1280. >> >> In this case the DTLS record size is also something close to 1280. (We >> never did the exact calculations.) >> >> >> >> This may pose a problem for the stateless Join Proxy that appends a few >> bytes to the DTLS record (to relay it further to the Registrar) so the >> total length of the IPv6 packet sent to Registrar could exceed 1280. (And >> the Join Proxy is still on the mesh network with 1280 byte MTU). >> >> But in any case in the constrained-voucher draft we have written about >> this: >> >> >> https://datatracker.ietf.org/doc/html/draft-ietf-anima-constrained-voucher#section-6.7 >> >> >> >> So even though we don’t know for sure it is a problem, as we haven’t done >> the calculations in detail, it’s preemptively solved by recommending the >> Pledge to break up the handshake into smaller parts. Then, the Join Proxy >> doesn’t need to do anything special anymore and it always works. >> >> That also helps with performance on the mesh network due to reduction of >> 6LoWPAN fragmentation. >> >> >> @Spencer do you think the Constrained Join Proxy draft should mention the >> potential issue also? E.g. a reference to above section 6.7 is easy to >> make. >> > > The reference you described is exactly what I was thinking of (I was more > familiar with COAP before blockwise transfer was specified in > https://datatracker.ietf.org/doc/rfc7959/, but I knew it had been > standardized). > > If you can preemptively avoid a potential problem by adding a reference to > the document and section you provided, without slowing this document down, > that would be great. > > And thanks again for a quick response to a really late directorate review. > > (I know we're not talking about > https://datatracker.ietf.org/doc/html/draft-ietf-anima-constrained-voucher, > but I didn't see RFC 7959 listed as a reference there, and it seems like > that should be normative. But do the right thing, of course! > > Best, > > Spencer > > >> Regards >> >> Esko >> >> >> >> *From:* Anima <anima-bounces@ietf.org> *On Behalf Of * Peter van der Stok >> *Sent:* Tuesday, May 17, 2022 10:22 >> *To:* Spencer Dawkins <spencerdawkins.ietf@gmail.com> >> *Cc:* tsv-art@ietf.org; anima@ietf.org; >> draft-ietf-anima-constrained-join-proxy.all@ietf.org; last-call@ietf.org >> *Subject:* Re: [Anima] Tsvart last call review of >> draft-ietf-anima-constrained-join-proxy-10 >> >> >> >> Hi Spencer, >> >> thanks for your kind words. >> >> Indeed the answer is no. (at least for the coming 20 years). >> >> Greetings and thanks, >> >> Peter >> >> Spencer Dawkins via Datatracker schreef op 2022-05-17 01:09: >> >> Reviewer: Spencer Dawkins >> Review result: Ready >> >> This document has been reviewed as part of the transport area review >> team's >> ongoing effort to review key IETF documents. These comments were written >> primarily for the transport area directors, but are copied to the >> document's >> authors and WG to allow them to address any issues raised and also to the >> IETF >> discussion list for information. >> >> When done at the time of IETF Last Call, the authors should consider this >> review as part of the last-call comments they receive. Please always CC >> tsv-art@ietf.org if you reply to or forward this review. >> >> This is a well-written specification. My only question - and I expect the >> answer will be “no” - is whether there is any concern that sizes of the >> resources that are being passed around might exceed the MTU between the >> pledge >> and the registrar, and whether there should be a mention of this >> possibility in >> the specification. >> >> Best, >> >> Spencer >> >>
- [Anima] Tsvart last call review of draft-ietf-ani… Spencer Dawkins via Datatracker
- Re: [Anima] Tsvart last call review of draft-ietf… Peter van der Stok
- Re: [Anima] Tsvart last call review of draft-ietf… Esko Dijk
- Re: [Anima] Tsvart last call review of draft-ietf… Spencer Dawkins at IETF
- Re: [Anima] Tsvart last call review of draft-ietf… Spencer Dawkins at IETF
- Re: [Anima] Tsvart last call review of draft-ietf… Peter van der Stok
- Re: [Anima] Tsvart last call review of draft-ietf… Spencer Dawkins at IETF
- Re: [Anima] Tsvart last call review of draft-ietf… Michael Richardson