[core] Review of draft-ietf-core-echo-request-tag-07
Francesca Palombini <francesca.palombini@ericsson.com> Tue, 24 September 2019 15:00 UTC
Return-Path: <francesca.palombini@ericsson.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B596412080C; Tue, 24 Sep 2019 08:00:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8g85PFyzGs62; Tue, 24 Sep 2019 08:00:08 -0700 (PDT)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (mail-eopbgr40061.outbound.protection.outlook.com [40.107.4.61]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 673A012008D; Tue, 24 Sep 2019 08:00:08 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=TE2OcDKR0J9wWgxvmpAsT3Z97GdXTo3VhB1uRqCTfnGlV2ttJSfzk8DsKw45iEifRkW3O5inClNzBUzM1wfsxCj8f3AYTYNTj0LroGAlZDEqI0E14ePCxM+tjL8mhZPcuVZTdLTCdGWctoJKDSdLKN64SQbtYSgjUdV2OZnRObAdsqdR+sp0IbWFB/t53aLp1iykYQ5DJtfPDhvJz8Bgrmaur0s3F6TFgQepqewYk5jRTPspnmuVbhdNLA0Q2NsL1XVlXdYItKYznRUb4AxtpXO9I9NFaVswGyYAuLWV9AW5tLyt6V+b5oBvXKd0RUVrDAXhnBQuh7745CiBn7HNkA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=zthju21Kb0MoM8ei2WH0CeRuzeqEmpW6V0QpsseVKtM=; b=Z0/7skvmC0bl29L6V+esb00c6QcaXE1i4VW0FUwDROZqYCCxSPkOilhfdvSRtKWpE6ztNGBIgbAXw7XcxAIpFyuTa0RXlxbgNGkG6ww0jBabenVR7i+yjCO6XfkSkR0s5RmAjZd7FVRFqcQa1WtMo2dDr0exfydPsqfBDrZZIzVwTI4ioKQu5R1NlwK09wVpKTwOMS9tK1oC6DsxLR9srfMH1oo3Ol8Zj4SZlvcrl8rsH4eCEZ6b31FGDjJLYHdZygCqfIZlHd7F8pWAUPFsWBtjqgcrTLAtu4v65Xuzz44l/eyikrsGMKEasromUqOYlCNsYeJwgswEwFtznBEQ6Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=zthju21Kb0MoM8ei2WH0CeRuzeqEmpW6V0QpsseVKtM=; b=Uzvfp/ExMTB8HfKnaDmXkKXlL5OCR0YXTf04WPfjN6tYWfyQIVmhHaCXpJlHjg3ypVLW4dd1OS9TlvnkHWzJJCOvYjaNv+0Id8m2e+Ay7DXy0+KtAhUv82dtOCEtNMsSEsZ6HnRN8IlOr411NY1BceGKxMVvoHDYr7t4xtdxiT4=
Received: from HE1PR0701MB2746.eurprd07.prod.outlook.com (10.168.185.17) by HE1PR0701MB2250.eurprd07.prod.outlook.com (10.168.36.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2305.14; Tue, 24 Sep 2019 15:00:05 +0000
Received: from HE1PR0701MB2746.eurprd07.prod.outlook.com ([fe80::69ac:4f28:cd6a:6302]) by HE1PR0701MB2746.eurprd07.prod.outlook.com ([fe80::69ac:4f28:cd6a:6302%11]) with mapi id 15.20.2305.013; Tue, 24 Sep 2019 15:00:05 +0000
From: Francesca Palombini <francesca.palombini@ericsson.com>
To: "draft-ietf-core-echo-request-tag@ietf.org" <draft-ietf-core-echo-request-tag@ietf.org>, "core@ietf.org" <core@ietf.org>
Thread-Topic: Review of draft-ietf-core-echo-request-tag-07
Thread-Index: AQHVcui/aH+go2Py6U2ZAyzYnkkAbg==
Date: Tue, 24 Sep 2019 15:00:05 +0000
Message-ID: <A4E2062A-364C-448D-81EF-A96D5E29FCD9@ericsson.com>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=francesca.palombini@ericsson.com;
x-originating-ip: [192.176.1.84]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f0235cae-f3be-4a42-cea0-08d740ffe296
x-ms-traffictypediagnostic: HE1PR0701MB2250:
x-microsoft-antispam-prvs: <HE1PR0701MB22503913B2B09A19100F95CE98840@HE1PR0701MB2250.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0170DAF08C
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(39860400002)(346002)(366004)(396003)(136003)(376002)(199004)(189003)(44832011)(110136005)(66556008)(102836004)(316002)(86362001)(26005)(186003)(6506007)(561944003)(8676002)(305945005)(99286004)(486006)(33656002)(6486002)(476003)(478600001)(14454004)(71190400001)(256004)(36756003)(7736002)(3846002)(5660300002)(8936002)(76116006)(2501003)(14444005)(71200400001)(66066001)(25786009)(2906002)(2616005)(66476007)(81166006)(81156014)(450100002)(6116002)(66946007)(64756008)(6512007)(66446008)(6436002); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0701MB2250; H:HE1PR0701MB2746.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: eUJlSKBEgs5bZD8T1b639NuH+oVuVThzNV0BURUtMSfh26kt7B8tRuackBr558NoUReNXezPU6Aq9/O/4VTwmNaw85gGhoNF7iumr6bJPcBCgriDaQt8hHhG9azVHQAQBatT8jnmHVv2JJP6ZYnLbQ5omuvxgTSSBwU80QQMEKBsx+i+i8LEm0pRiW/gMGxu5w6xr4riOhy4jEX/d+va20xcMXF49gUthO6pN6NBWKuIbRWtHY6Pots/Mi/5FCmPDpCgwtzI+R/ibvBJ35vKFYG7tX0zDeZD9TQiRFrbDWmNMyVNGAiJcNxBuZpWokmn8QiQBUlGkfpoJI9p2YFUuMTCbK5FGQyCHC/D7XcPIfRj+jqKBs+DkvN2tTaF7CjdHEkpCGnTBfMfyBGCEyJCrnYlZXj1TZW9dhxIOsS9ekc=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <42FFE06DAA3FF544BA7AA951DE65B540@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f0235cae-f3be-4a42-cea0-08d740ffe296
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Sep 2019 15:00:05.6017 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ArXB8Z+swn2Lu7PF+mDp7qGHU/+RJN+vJ8KMrVI+XDP1EiZzjDfqmO16KXQzhLQ+6uP/eQGe2illFxuDd83UONP5Nhrde4QCTzZdwHRuBKjNjVX1m7qmHoavCK0YbIrY
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2250
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/nh_yDZwDU8LeDa8WxqbSMJkeG9Q>
Subject: [core] Review of draft-ietf-core-echo-request-tag-07
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Sep 2019 15:00:13 -0000
Hi,
I have taken some time to review draft-ietf-core-echo-request-tag-07. Thank you for this document. As a summary, I think the draft is needed, well written, and on the right track.
I have a couple of suggestions about structure of the document, up to the authors to take them or leave them.
I also have additional questions/open points, which instead need answering and might need clarification text in the document. For some points in the document I have some proposal text to improve readability, based on my understanding.
Finally, I have compiled a list of nits and will soon make a PR for it.
# High level suggestions #
* Move the Terminology section (current section 1.4) as section 1.1 (under Introduction).
* Current sections 1.1, 1.2, 1.3 are very useful background sections about the problem this document sets out to solve. I do not see why they need to be in this order, for readability I would have: 1.1 as new section 2.1, moving the text in 2. to the current 2.1 (that would become 2.2); 1.2 as new section 3.1, moving the text in 3. to current 3.1 (new 3.2); 1.3 as new section 5.1, old 5. text becoming 5.2. This will require mainly copy-paste and minor introductory text in sections 2, 3, and 5.
The goal with this restructuring would be to help keep the 3 parallel topics in focus (Echo options, Request Tag option, Token update), without having to switch from one to the other.
* Move appendix A to the main body: there is already RECOMMENDED text, it would fit to have that as the last subsection of the Echo section.
# Questions, Open points #
* Section 1.4
" (Concurrent block-wise request operations are impossible with the
options of [RFC7959] because the second operation's block overwrites
any state of the first exchange.).
"
I believe this is true, but could you point to the section that states that? I didn't manage to find it while checking.
* Section 2.1
" When receiving an Echo option in a request, the server MUST be able
to verify when the Echo option value was generated. This implies
that the server MUST be able to verify that the Echo option value was
generated by the server or some other party that the server trusts.
"
I don't necessarily agree with the "This implies", would just replace with "and". These are two parallel requirements.
* Section 2.1 : event-based freshness is mentioned, but no example of it is given of how that would work with the echo option, while the time based one is quite clear thanks to the example in Figure 2. Would it be possible to add one for an event based as well?
* Section 2.2
" The server MAY include the same Echo
option value in several different responses and to different clients.
"
First, I was confused about this: I wondered if "different responses" referred to different response codes or actual responses. I think the answer is both is correct, but here you meant actual responses; this would need more discussion on why re-using the same option value is OK (i.e. highlight this is not a binding of response to next request, it just provides freshness). If that is already done elsewhere, I missed it.
* Section 2.2
"... the
server MUST use the Echo option to verify that the request is fresh
enough.
"
A RECOMMENDED way of specifying "fresh enough" would be good, to help implementers. For time based, it would be enough to point to Figure 2. For event based, I don't know.
* Section 2.2
"
When used to serve freshness requirements (including client aliveness
and state synchronizing), CoAP messages containing the Echo option
MUST be integrity protected between the intended endpoints, e.g.
using DTLS, TLS, or an OSCORE Inner option ([RFC8613]).
"
Why do the both messages (request and response) need to be integrity protected? Also Inner option is not used for protecting CoAP messages, but options. So I am a bit confused if here you meant option (which is a different discussion) or message. Also the following sentence ("when used to demonstrate...") belongs with the discussion about the option being Inner or Outer (Section 2.1 4th par), rather than here where we are talking about the message.
* Section 2.3
"
the authority of the property
"
can you explain this terminology?
* Section 3.2
"
They can
still be treated as independent messages by the server (e.g. when it
sends 2.01/2.04 responses for every block), or initiate a new
operation (overwriting kept context) when the later message carries
Block1 number 0.
"
I have a hard time parsing/understanding this paragraph, particularly from "or initiate..."
* Section 3.2
I am not sure it is said anywhere what the server should do if it supports the Request-Tag option and it receives it in a non-blockwise message... I guess just discard, but it would be good to explicitely state.
Also, could this option be used for something else? For example, I am thinking of Observe operations, re-registration... Does not need to be defined here, but if we MANDATE that it can only be used with blockwise, we are practically stopping any other use that might come up...
* Section 3.3
"
Clients MUST NOT recycle a request tag unless the first operation has
concluded.
"
in the case where a client supports but does not use Request-Tag, this implies "concurrent block operations without Request-Tag are not allowed". If that is the case, I would like that to be stated explicitely.
(also minor, I'd like to add "that support Request-Tag" after "Clients")
* Section 3.3
The last sentence gives some requirements about where the Request-Tag option can/musty be used per message. I felt the document was missing on usage requirements (e.g. if it is set, it MUST be set for all requests for a specific operation)
* Section 3.4.2
"
When initializing a new block-wise operation, a client has to look at
other active operations:
o If any of them is matchable to the new one, and the client neither
wants to cancel the old one nor postpone the new one, it can pick
a Request-Tag value that is not in use by the other matchable
operations for the new operation.
o Otherwise, it can start the new operation without setting the
Request-Tag option on it.
"
Does not cover the fact that Request-Tag can be omitted if that is a different from the other matchable operations. ("pick a new value" excludes it)
* Section 3.4.3
I believe this section is missing something on the lines of:
"Proxies that are aware of this specification can modify their implementation to simply forward block operations."
Would you agree?
* Section 6
Missing references/terminology for monotonic and wall clock.
* Section 6.1
cought a couple of normative text not being normative:
"message must be discarded"
"approach is recommended"
"need to be blacklisted"
Any particular reason why?
Thanks,
Francesca
- [core] Review of draft-ietf-core-echo-request-tag… Francesca Palombini
- Re: [core] Review of draft-ietf-core-echo-request… Christian M. Amsüss
- Re: [core] Review of draft-ietf-core-echo-request… Göran Selander
- Re: [core] Review of draft-ietf-core-echo-request… Christian Amsüss
- Re: [core] Review of draft-ietf-core-echo-request… Francesca Palombini