Re: [Gen-art] Gen-art telechat review of draft-ietf-nfsv4-minorversion2-40
"Adamson, Andy" <William.Adamson@netapp.com> Mon, 25 January 2016 14:36 UTC
Return-Path: <William.Adamson@netapp.com>
X-Original-To: gen-art@ietfa.amsl.com
Delivered-To: gen-art@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B35E1B2AC7; Mon, 25 Jan 2016 06:36:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.902
X-Spam-Level:
X-Spam-Status: No, score=-6.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CU0QHQSUHaRP; Mon, 25 Jan 2016 06:36:06 -0800 (PST)
Received: from mx144.netapp.com (mx144.netapp.com [216.240.21.25]) (using TLSv1.2 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 96DEA1B2A7A; Mon, 25 Jan 2016 06:36:06 -0800 (PST)
X-IronPort-AV: E=Sophos;i="5.22,344,1449561600"; d="scan'208";a="94227240"
Received: from hioexcmbx04-prd.hq.netapp.com ([10.122.105.37]) by mx144-out.netapp.com with ESMTP; 25 Jan 2016 06:35:50 -0800
Received: from HIOEXCMBX03-PRD.hq.netapp.com (10.122.105.36) by hioexcmbx04-prd.hq.netapp.com (10.122.105.37) with Microsoft SMTP Server (TLS) id 15.0.1130.7; Mon, 25 Jan 2016 06:35:50 -0800
Received: from HIOEXCMBX03-PRD.hq.netapp.com ([::1]) by hioexcmbx03-prd.hq.netapp.com ([fe80::644f:85d6:6e9c:9797%21]) with mapi id 15.00.1130.005; Mon, 25 Jan 2016 06:35:49 -0800
From: "Adamson, Andy" <William.Adamson@netapp.com>
To: Tom Haynes <thomas.haynes@primarydata.com>
Thread-Topic: Gen-art telechat review of draft-ietf-nfsv4-minorversion2-40
Thread-Index: AQHRVWpSJLY/FSKXMEm69CDCr6SkoJ8M1qQA
Date: Mon, 25 Jan 2016 14:35:48 +0000
Message-ID: <C4DB0D27-BDD6-412F-838F-4AEEFAC48CA7@netapp.com>
References: <569AA361.6010808@dial.pipex.com> <25C5A177-20F7-4571-BD13-A84E4D49BFEF@primarydata.com>
In-Reply-To: <25C5A177-20F7-4571-BD13-A84E4D49BFEF@primarydata.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.2098)
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.122.56.79]
Content-Type: text/plain; charset="utf-8"
Content-ID: <E952359853C6854389F0947C3F20894D@hq.netapp.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/gen-art/qaR4PcdRzFpJ2WCYTC0seOE_7i0>
Cc: "draft-ietf-nfsv4-minorversion2.all@ietf.org" <draft-ietf-nfsv4-minorversion2.all@ietf.org>, General area reviewing team <gen-art@ietf.org>, "Adamson, Andy" <William.Adamson@netapp.com>
Subject: Re: [Gen-art] Gen-art telechat review of draft-ietf-nfsv4-minorversion2-40
X-BeenThere: gen-art@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "GEN-ART: General Area Review Team" <gen-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/gen-art>, <mailto:gen-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/gen-art/>
List-Post: <mailto:gen-art@ietf.org>
List-Help: <mailto:gen-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/gen-art>, <mailto:gen-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Jan 2016 14:36:09 -0000
> On Jan 22, 2016, at 6:11 PM, Tom Haynes <thomas.haynes@primarydata.com> wrote: > > Hi Elwyn, > > Comments inline, > > Hi Andy, > > Look for [Andy] > >> On Jan 16, 2016, at 12:09 PM, Elwyn Davies <elwynd@dial.pipex.com> wrote: >> >> I am the assigned Gen-ART reviewer for this draft. The General Area >> Review Team (Gen-ART) reviews all IETF documents being processed >> by the IESG for the IETF Chair. Please wait for direction from your >> document shepherd or AD before posting a new version of the draft. >> >> For more information, please see the FAQ at >> >> <http://wiki.tools.ietf.org/area/gen/trac/wiki/GenArtfaq>. >> >> Document: draft-ietf-nfsv4-minorversion2-40.txt >> Reviewer: Elwyn Davies >> Review Date: 2016/01/16 >> IETF LC End Date: 2015/12/09 >> IESG Telechat date: 2016/01/21 >> >> Summary: Almost ready. Thank you for addressing almost all the issues that I raised in my last call review. A couple of additional points have arisen as documented below. Also I missed the usage 'we' phraseology on the first pass and there are a couple of typos that appeared in the modified text of -40. >> >> Major issues: >> >> Minor issues: >> s4.10.1.1.1, bullet #2: A late-breaking issue with RPCSEC_GSS v3 was raised just prior to the last IESG meeting (see email [1] quoted below). I think the requirement to use QoP rpc_gss_svc_privacy for at least the privileges copy_from_auth and copy_to_auth for other reasons (the shared secret being carried) effectively mitigates the problem identified which relates to multi-principal authorization. However I am not clear if the problem would apply to the third privilege defined in this document (copy_confirm_auth_priv). If it does then presumably extending the use of the privacy QoP to all the privileges would mitigate the problem. As I understand it there is ongoing discussion of the appropriate changes needed in the RPCSEC_GSS v3 draft and there is a possibility that fixes applied there might have a knock-on effect in this draft: Please liaise with the authors of draft-ietf-nfscv4-gssv3. > > ^^ I should have peeked ahead! > >> >> Nits/editorial comments: >> General: I also missed a number of instances (17, I think) of the "we <do something>" construction familiar from scientific papers. This is not appropriate phraseology for an RFC and needs to be changed to avoid the "we", e..g., >> s1.4.5: s/We introduce WRITE_SAME (see Section 15.12)/The WRITE_SAME operation (see Section 15.12) is introduced/ >> > > I’ve fixed all of the royal we’s I found! > >> Genera: I realized that there is no general terminology section in this document. Clearly most of it is taken over from either or both of RFC 7530 (s1.5) and RFC 5661 (s1.6). What triggered this was the point that stateid isn't actually defined in this doc. A reference to one or both of these and/or possibly some copies of definitions would be helpful. >> >> s2, last para: s/metadata sever/metadata server/ > > Done > >> >> s3.3: s/E.g., as per Section 16.2.3 of [RFC5661],/For example, as per Section 16.2.3 of [RFC5661],/ > > done > >> >> s4.1: Removing the s4.1 header would be in keeping with usual style as you have already done for other sections. > > done earlier > >> >> s4.2, para 2: s/intra-sever/intra-server/ > > done earlier >> >> s4.4.2, para 1: >> OLD: >> Other operations are OPTIONAL in the context of a particular feature Section 13, >> NEW: >> Other operations are OPTIONAL in the context of a particular feature (see Table 6 in Section 13), >> > > I think this is Table 5 > > > >> s4.9, last para: >> I was supposed to be letting you know if some extra explanation of why seqid being zero is ambiguous.... so, yes, I do think a bit extra is needed. Here goes: >> >>> s15.8.3 notes that there can be multiple file copies associated with a single file going on at the same time. This is only implicit up to that point I think. It would be helpful to add a note about this possibility and the availability of asynchronous copy in general to the intro of section 4. >>> >>> In the following I may not have exactly grokked what the copy offload stateid represents... if so please adjust the words >>> >>> Add to intro (was in s4.1, s/b in s4) as new last para: >>> ADD: >>> The copy feature allows the server to perform the copying either synchronously or asynchronously. The client can request synchronous copying but the server may not be able to honor this request. If the server intends to perform asynchronous copying, it supplies the client with a request identifier that the client can use to monitor the progress of the copying and, if appropriate, cancel a request in progress. The request identifier is a stateid representing the internal locks held by the server while the copying is performed. Multiple asynchronous copies of all or part of a file may be in progress in parallel on a server; the stateid request identifier allows monitoring and canceling to be applied to the correct request. >>> END >>> >>> Then modify the last para of s4.9: >>> OLD: >>> A copy offload stateid's seqid MUST NOT be zero. In the context of a >>> copy offload operation, it is ambiguous to indicate the most recent >>> copy offload operation using a stateid with seqid of zero. Therefore >>> a copy offload stateid with seqid of zero MUST be considered invalid. >>> NEW: >>> A copy offload stateid's seqid MUST NOT be zero. In the context of a >>> copy offload operation, it is inappropriate to indicate "the most recent >>> copy offload operation" using a stateid with seqid of zero (see Section 8.2.2 >>> of [RFC5661] for the meaning of a seqid of zero). It is inappropriate >>> because the stateid refers to internal state in the server and there may >>> be several asynchronous copy operations being performed in parallel >>> on the same file by the server. Therefore >>> a copy offload stateid with seqid of zero MUST be considered invalid. >>> END >> > > > Done earlier > >> s4.10, para 2: Is it essential that every server implements all three structured privileges? As I understand the specification, a server that only acted as a source would only need copy_from_auth whereas a server that only acted as a destination would only need copy_to_auth and copy_confirm_auth privileges. Presumably this could alternatively be covered by appropriate policies in a server that implemented all three.. I am not sure whether the error responses would be clearer if the implementation was missing or the policy was used. Is this worthy of a comment? >> > > [Andy]??? Here is my answer from Jan 5th mail: > Well, I think it wiser to have it all or none - e.g. to always implement, and let the policy define privileges appropriate to the role of the server. Furthermore, once one structured privilege is coded, the others are not that big a deal. So I think the existing text is good. Looking at this again, I still think there is no need for any more text on the subject - all three structured privileges are required. As far the error responses, I don’t think it matters if the implementation was missing or a policy was used as the caller will react in the same way (e.g. fail due to the error) for both cases. —>Andy > > >> s4.10.1.1, para 3: s/This features allow/This feature allows/ > > Done > >> >> s4.10.1.1: Some explanatory text has been added to the specification of structured privileges in draft-ietf-nfsv4-rpcsec-gssv3-15. I suggest that some minor updates to s4.10.1.1 should be made to tie in with this specification. In particular minorversion2 needs to specify how the data structure is encoded as specified in the GSS draft - RPCSEC_GSSv3 doesn't know or care since it is treated as opaque data at the GSS level. Clearly, for NFSv4.2, it is intended that XDR encoding is used but this should be stated explicitly. I suggest adding a new para after the existing para 3 and making it clear that the string at the beginning of each section is passed in the rp_name field (also alter the "We define" which is not the correct style) : >> OLD (para 4): >> >> We define three RPCSEC_GSSv3 structured privilege assertions that >> work in tandem to authorize the copy: >> >> NEW: >> For each structured privilege assertion defined by a RPC application >> RPCSEC_GSSv3 requires the application to define a name string and a >> data structure that will be encoded and passed between client and server >> as opaque data. For NFSv4 the data structures specified below MUST >> be serialized using XDR. >> >> Three RPCSEC_GSSv3 structured privilege assertions that >> work together to authorize the copy are defined here. For each of >> the assertions the description starts with the name string passed in >> the rp_name field of the rgss3_privs structure defined in >> Section 2.7.1.4 of [rpcsec_gssv3] and specifies the XDR encoding of >> the associated structured data passed via the rp_privilege field of >> the structure. >> END >> >> > > Taken >
- [Gen-art] Gen-art telechat review of draft-ietf-n… Elwyn Davies
- Re: [Gen-art] Gen-art telechat review of draft-ie… Tom Haynes
- Re: [Gen-art] Gen-art telechat review of draft-ie… Adamson, Andy