[Dots] Yangdoctors last call review of draft-ietf-dots-signal-call-home-11

Ebben Aries via Datatracker <noreply@ietf.org> Wed, 02 December 2020 02:15 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: dots@ietf.org
Delivered-To: dots@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id D3E3C3A0EA8; Tue, 1 Dec 2020 18:15:00 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Ebben Aries via Datatracker <noreply@ietf.org>
To: <yang-doctors@ietf.org>
Cc: last-call@ietf.org, dots@ietf.org, draft-ietf-dots-signal-call-home.all@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.23.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <160687530080.19371.6938919650571126245@ietfa.amsl.com>
Reply-To: Ebben Aries <ebben.aries@nokia.com>
Date: Tue, 01 Dec 2020 18:15:00 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/fOncVqmbe-07hOjFIVJYioXovcw>
Subject: [Dots] Yangdoctors last call review of draft-ietf-dots-signal-call-home-11
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Dec 2020 02:15:01 -0000

Reviewer: Ebben Aries
Review result: Almost Ready

1 module in this draft:
- ietf-dots-call-home@2020-10-15.yang

YANG compiler errors or warnings (pyang 2.4.0, yanglint 1.9.2)
- No compiler errors or warnings however pyang 2.4.0 is currently the only
  compiler verified to emit YANG sx:structure data in tree format.  Instance
  data could not yet easily be validated given the current linters/compilers.

General comments/clarifications on the draft/modules:
- My first thoughts after reading through the draft is some use of terminology
  that I find confusing or rather need some clarification.  This draft
  reverses the TCP/TLS or DTLS connection initiation but the DOTS roles of
  client/server remain the same.  If that is the case, then I ask why does the
  terminology need to deviate that of the DOTS signal channel terminology to
  make use of 'Call Home DOTS client' and 'Call Home DOTS server' (Starting in
  Section 1.2)?

- Regarding 'redirected-signal' for alternate call home clients.

  What occurs if 'alt-ch-client-record' is populated with a list of IP
  addresses in addition to the mandatory 'alt-ch-client' FQDN?  If DTLS or TLS
  connections are unable to be satisfied to the client after the PUT request,
  is there any sort of fallback when the TTL cache expires?  From what I
  gather, the 'alt-ch-client-record' takes precedence over resolving the
  mandatory FQDN attribute and/or acts like a static host record should both
  be encapsulated in the PUT request.

- Regarding the structure augment of 'source' nodes.  It seems to me (and this
  may be a misinterpretation) that this is not entirely specific to 'call
  home'.  Is there any reason why these nodes do not exist directly in
  rfc8782-bis or can you help clarify why this is specific to this scenario

Module ietf-dots-call-home:
- Node 'alt-ch-client' is targeted to represent a FQDN with a loose string
  type.  Should this rather be of type 'inet:domain-name'?  Looking at other
  usage among dots related modeling is mixed between the 2 types for
  representing a FQDN so this comment can also apply to my alternate dots YD

Overall, from a YANG module/structure standpoint it appears on the right track
for complementing the 'ietf-dots-signal-channel' module and see no major