IETF Logo Mail Archive

[Gen-art] Gen-ART Last Call review of draft-baeuerle-netnews-cancel-lock-06

Paul Kyzivat <pkyzivat@alum.mit.edu> Thu, 21 September 2017 17:04 UTC

Return-Path: <pkyzivat@alum.mit.edu>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ED1261286C7; Thu, 21 Sep 2017 10:04:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fSvtyf9zem0c; Thu, 21 Sep 2017 10:04:16 -0700 (PDT)
Received: from alum-mailsec-scanner-5.mit.edu (alum-mailsec-scanner-5.mit.edu [18.7.68.17]) by ietfa.amsl.com (Postfix) with ESMTP id 0D23912008A; Thu, 21 Sep 2017 10:04:15 -0700 (PDT)
X-AuditID: 12074411-f7dff70000007f0a-90-59c3f10e4520
Received: from outgoing-alum.mit.edu (OUTGOING-ALUM.MIT.EDU [18.7.68.33]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by alum-mailsec-scanner-5.mit.edu (Symantec Messaging Gateway) with SMTP id B6.DA.32522.E01F3C95; Thu, 21 Sep 2017 13:04:14 -0400 (EDT)
Received: from PaulKyzivatsMBP.localdomain (c-24-62-227-142.hsd1.ma.comcast.net [24.62.227.142]) (authenticated bits=0) (User authenticated as pkyzivat@ALUM.MIT.EDU) by outgoing-alum.mit.edu (8.13.8/8.12.4) with ESMTP id v8LH4De8015847 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT); Thu, 21 Sep 2017 13:04:13 -0400
From: Paul Kyzivat <pkyzivat@alum.mit.edu>
To: draft-baeuerle-netnews-cancel-lock.all@ietf.org
Cc: General Area Review Team <gen-art@ietf.org>
Message-ID: <e350cd4f-126d-c4f9-b817-d941c15c21f9@alum.mit.edu>
Date: Thu, 21 Sep 2017 13:04:13 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:52.0) Gecko/20100101 Thunderbird/52.3.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrLIsWRmVeSWpSXmKPExsUixO6iqMv38XCkwcc1UhbtK74wWVx99ZnF gcljyZKfTAGMUVw2Kak5mWWpRfp2CVwZ7248Zin4KFex8Mcj1gbGa4JdjBwcEgImEt2LJLsY uTiEBHYwSXzqeckK4Txkknh09Q97FyMnB5uAlsScQ/9ZQGxhAS+Jp5MXMoLYIgLGEpOObgWL MwvoS/x9spgJxOYVsJdYsGcSmM0ioCpx/nMXWI2oQJrEv91nGSFqBCVOznwC1WsmMW/zQ2YI W1zi1pP5TBC2vETz1tnMExj5ZiFpmYWkZRaSlllIWhYwsqxilEvMKc3VzU3MzClOTdYtTk7M y0st0jXVy80s0UtNKd3ECAlDwR2MM07KHWIU4GBU4uE1OHg4Uog1say4MvcQoyQHk5Io74Gn QCG+pPyUyozE4oz4otKc1OJDjBIczEoivMfeAuV4UxIrq1KL8mFS0hwsSuK8fEvU/YQE0hNL UrNTUwtSi2CyMhwcShK8K98DNQoWpaanVqRl5pQgpJk4OEGG8wANZ/sAMry4IDG3ODMdIn+K 0Zijp+fGHyaOHTfv/mESYsnLz0uVEuf1BSkVACnNKM2DmwZLJa8YxYGeE+b9ALKUB5iG4Oa9 AlrFBLQqe8MBkFUliQgpqQZG7jPz4mI8puj2HDIMD4uzmDwpT6rz9dLb7Id9ckzmzcgTbzro foZ9y8L0Jk/j6ZuP/sjbtT+wUv/2mc4F8Ro7lux6yf/H/74kW+HPImmnNVnOB5brP24/wHLo M5P5I5+/DQmFjxXP9PuvVF4kK7miV3a74nRNd7EFHdtd1x89NueJ19S+IpdsJZbijERDLeai 4kQAAhW74gADAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/gen-art/OQC5Oscvpwo331cobORN6QLzM5g>
Subject: [Gen-art] Gen-ART Last Call review of draft-baeuerle-netnews-cancel-lock-06
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Sep 2017 17:04:18 -0000

I am the assigned Gen-ART reviewer for this draft. The General Area 
Review Team (Gen-ART) reviews all IETF documents being processed by the 
IESG for the IETF Chair. Please wait for direction from your document 
shepherd or AD before posting a new version of the draft. For more 
information, please see the FAQ at 
<​http://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>.

Document: draft-baeuerle-netnews-cancel-lock-06
Reviewer: Paul Kyzivat
Review Date: 2017-09-21
IETF LC End Date: 2017-06-28
IESG Telechat date: 2017-09-26

Summary:

This draft is on the right track but has open issues, described in the 
review.

General Comments:

I have not attempted to validate the security properties of this 
document - leaving that to a security review.

I have also not attempted to verify the operational suitability of this 
mechanism because I don't have the experience needed to do so.

Issues:

Major: 1
Minor: 0
Nits:  0

(1) MAJOR:

In Section 2, the ABNF syntax provided does not do what you want it to. 
You supply:

        fields =/ *( cancel-lock / cancel-key )

as an extension to the definition in RFC5536:

     fields          =/ *( approved /
                           archive /
                           control /
                           distribution /
                           expires /
                           followup-to /
                           injection-date /
                           injection-info /
                           lines /
                           newsgroups /
                           organization /
                           path /
                           summary /
                           supersedes /
                           user-agent /
                           xref )

and that in turn extends RFC5322:

     fields          =   *(trace
                           *optional-field /
                           *(resent-date /
                            resent-from /
                            resent-sender /
                            resent-to /
                            resent-cc /
                            resent-bcc /
                            resent-msg-id))
                         *(orig-date /
                         from /
                         sender /
                         reply-to /
                         to /
                         cc /
                         bcc /
                         message-id /
                         in-reply-to /
                         references /
                         subject /
                         comments /
                         keywords /
                         optional-field)

     message         =   (fields / obs-fields)
                         [CRLF body]

RFC5536 got this wrong, and the new draft continues the mistake. The 
problem is with the way things are grouped. Let me give a simpler example:

     foo = *("a" / "b") / *("c" / "d")

This means the following are valid: ab aabb bab cd ccdd dcd
But the following are not: abcd ac

The latter is what you want, for which the syntax would be:

     foo = *("a" / "b" / "c" / "d")

It isn't easy to do a valid syntax extension like this because of way 
the ABNF of RFC5322 is structured. However, after offline discussion, we 
realized that RFC5322 already has an extension point for new headers via 
the <optional-field> rule. Along with that, RFC3864 established a 
process for registering header fields with IANA.

So, my recommendation is that to fix this, remove from section 2 the 
extension of the <fields> rule:

       fields =/ *( cancel-lock / cancel-key )

Instead, simply rely on the text to specify the newly defined header 
fields, and the IANA registration to link them to RFC5322. This will 
probably require some minor tweaking of the text. I won't try to do the 
wordsmithing here.

v2.23.0 | Report a Bug | By Email