Re: [Gen-art] Gen-ART Last Call Review of draft-ietf-sieve-include-13
Ben Campbell <ben@nostrum.com> Mon, 19 December 2011 20:46 UTC
Return-Path: <ben@nostrum.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19D9021F853E; Mon, 19 Dec 2011 12:46:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.135
X-Spam-Level:
X-Spam-Status: No, score=-102.135 tagged_above=-999 required=5 tests=[AWL=0.464, BAYES_00=-2.599, HTML_MESSAGE=0.001, SPF_PASS=-0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZITQ2S1hgHOO; Mon, 19 Dec 2011 12:46:21 -0800 (PST)
Received: from nostrum.com (nostrum-pt.tunnel.tserv2.fmt.ipv6.he.net [IPv6:2001:470:1f03:267::2]) by ietfa.amsl.com (Postfix) with ESMTP id E430421F853B; Mon, 19 Dec 2011 12:46:20 -0800 (PST)
Received: from dn3-53.estacado.net (vicuna-alt.estacado.net [75.53.54.121]) (authenticated bits=0) by nostrum.com (8.14.3/8.14.3) with ESMTP id pBJKkJZp048026 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Mon, 19 Dec 2011 14:46:20 -0600 (CST) (envelope-from ben@nostrum.com)
Mime-Version: 1.0 (Apple Message framework v1251.1)
Content-Type: multipart/alternative; boundary="Apple-Mail=_CCBFDAA7-CCD1-420E-8F76-84B958A5C856"
From: Ben Campbell <ben@nostrum.com>
In-Reply-To: <CAEdAYKU7FrmRA0agwW0ux60VVhHGE9Dc_0hdj+TRPLW9DxFRLg@mail.gmail.com>
Date: Mon, 19 Dec 2011 14:46:24 -0600
Message-Id: <2FF53820-1728-4FDE-843A-19E61CBB795D@nostrum.com>
References: <E02C28C0-E664-4197-9594-FB12EDA53F1E@nostrum.com> <CAEdAYKU7FrmRA0agwW0ux60VVhHGE9Dc_0hdj+TRPLW9DxFRLg@mail.gmail.com>
To: Aaron Stone <aaron@serendipity.cx>
X-Mailer: Apple Mail (2.1251.1)
Received-SPF: pass (nostrum.com: 75.53.54.121 is authenticated by a trusted mechanism)
Cc: "gen-art@ietf.org Review Team" <gen-art@ietf.org>, Sieve mailing list <sieve@ietf.org>
Subject: Re: [Gen-art] Gen-ART Last Call Review of draft-ietf-sieve-include-13
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/gen-art>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Dec 2011 20:46:22 -0000
Thanks for the response! Further comments inline, with sections that appear to need no further comment removed: On Dec 19, 2011, at 1:13 PM, Aaron Stone wrote: > > > On Tue, Dec 13, 2011 at 2:13 PM, Ben Campbell <ben@nostrum.com> wrote: > […] > Minor issues: > > -- section 3.1, paragraph 4: "Implementations MUST NOT generate errors for recursive inclusions at upload time, as this would force an upload ordering requirement upon script authors / generators. However, if an active script is replaced with a faulty script and would remain the active script, an error MUST be generated and the upload MUST fail." > > These two statements seem contradictory on a quick reading. In particular, how can the latter assertion avoid an upload ordering requirement? Or do you mean faulty in some way other than being recursive? > > If you're replacing an active script, it has to be correct all the time, and uploads are atomic only on a per-script basis. There's a risk that if you're uploading a set of scripts that include one another, at some intermediate stage while some scripts are uploaded but not others, they are in an invalid state. The managesieve spec says that scripts must be validated at upload time. The language above is trying to say that you can upload all of the scripts that may include one another in any order without generating errors immediately, however, if you're replacing an active script or a script included by the active script, then you DO have to upload a correct script right from the get-go. Is this just a question of whether the script(s) are replacing active scripts? That is, the license to create a transient invalid state is suspended if if you are replacing an active script? If so, how would one go about updating a set of linked scripts when one or more of them replace active scripts? Should one somehow deactivate the old ones, load all the scripts, then activate them? > > -- section 3.4.1, paragraph 5: "If a "global" command is given the name of a variable that has previously been defined in the immediate script with "set", an error MUST be generated either when the script is uploaded or at execution time." > > Does this conflict with the previous statement that it is okay for a global and a private variable to have the same name? > > It doesn't conflict, because those variables live in separate namespaces. The effect of the global command is to bind the two names. An error is generated rather than specifying if the local overwrites the global value, or the global overwrites the local value. I take this to mean you can have a global and a local variable with the same name, but not if they are in the same script, right? If so, then it would help to add that qualification to the 2nd paragraph in 3.4. As it is, it says implementation MUST allow a global and non-global variable to have the same name with no interaction, and doesn't exclude it from happening in the same script. > > > -- section 3.4.2: > > Why do you need two ways to accomplish the same thing? > > I might be making this up, but I think the original question was whether the variables spec would have namespaces. I think I need more context to understand that response--but _my_ original question was more along the lines of "if we have the global name space, why do we need the command, and vice-versa?" It seems like either one accomplishes the goal (I actually like the NS as it seems like it would obviate the previous question about globals and locals with the same name) But more practically, why make an implementation implement them both? It seems like twice as much work, and twice as much opportunity to introduce bugs. > > Does the global namespace have the same "requires" requirement as the global command? > > Yes, but this isn't explicitly stated. Thanks--I think it would help to state it explicitly. > > -- section 4.2, paragraph 2: > > Can you elaborate on what permissions are proper? Is it different for an included script than for any other script? > > -- section 4.2, paragraph 3: > > Can you elaborate on what you mean by "safe for a storage system"? > > > There are both somewhat vague warnings, basically, "Don't allow 'include "./../..//etc/passwd"' and don't allow 'include "foo$(`rm star`)"'. Including those (or some other) examples would help. […] > > -- section 3.4.2, paragraph 3: "Variables declared global and variables accessed via the global namespace MUST be one and the same." > > Plurality mismatch. I suggest something like "a variable declared as global and a variable accesses with the global namespace, otherwise having the same name…" > > I might insert the word "each" after MUST to account for the plurality without rewriting the sentence. > That works, too. […]
- [Gen-art] Gen-ART Last Call Review of draft-ietf-… Ben Campbell
- Re: [Gen-art] Gen-ART Last Call Review of draft-i… Aaron Stone
- Re: [Gen-art] Gen-ART Last Call Review of draft-i… Aaron Stone
- Re: [Gen-art] [sieve] Gen-ART Last Call Review of… Alexey Melnikov
- Re: [Gen-art] Gen-ART Last Call Review of draft-i… Ben Campbell
- Re: [Gen-art] Gen-ART Last Call Review of draft-i… Aaron Stone
- Re: [Gen-art] [sieve] Gen-ART Last Call Review of… Barry Leiba
- Re: [Gen-art] [sieve] Gen-ART Last Call Review of… Ben Campbell
- Re: [Gen-art] Gen-ART Last Call Review of draft-i… Ben Campbell