[IPsec] Comments on draft-pwouters-ipsecme-delete-info

Tero Kivinen <kivinen@iki.fi> Sun, 11 August 2024 00:14 UTC

Return-Path: <kivinen@iki.fi>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A81FFC14CE29 for <ipsec@ietfa.amsl.com>; Sat, 10 Aug 2024 17:14:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.109
X-Spam-Level:
X-Spam-Status: No, score=-2.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iki.fi
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hv37omaTvK3h for <ipsec@ietfa.amsl.com>; Sat, 10 Aug 2024 17:14:54 -0700 (PDT)
Received: from lahtoruutu.iki.fi (lahtoruutu.iki.fi [IPv6:2a0b:5c81:1c1::37]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6732BC14F71F for <ipsec@ietf.org>; Sat, 10 Aug 2024 17:14:54 -0700 (PDT)
Received: from fireball.acr.fi (fireball.kivinen.iki.fi [IPv6:2001:1bc8:100d::2]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) (Authenticated sender: kivinen@iki.fi) by lahtoruutu.iki.fi (Postfix) with ESMTPSA id 4WhJ7G3YNqz49PyC; Sun, 11 Aug 2024 03:14:50 +0300 (EEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iki.fi; s=lahtoruutu; t=1723335290; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=WF3j5/JAd5IYX3FzIOP2KEa+rNvbsBUPBYl9PQOy2+0=; b=KD4S1EilHo1N+UIX+sd+lt8xq0weTMgCSuYPuNlYTAvgwpH7Bc+x+WIwJsZpBW1jgLAwwC B/KAuoy5ro7vr56sXz6xT8SPhxH0qJaaXbiUBRtLw0RYbtOSyqnzphaF7defWMcFBjGES3 DbH1q7P3q342SnLnnJmQJpZolAPcC1VB4kMSUaLMkaAyOA1bSvf67PnU2E8maB02kUIL4X Cah6YnUtwv0slAUkLhya8xw2tEuFb+0uQzj1LnpTm+Q1hO9j5OH+zYfEfq3fV9GcIwQ6as +DoMfrTqGY2F0LQ4ndTgR9S2uP4QPZeSx1IW7spCQiBr8MNb+vx2e0jLHSHZwQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=iki.fi; s=lahtoruutu; t=1723335290; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=WF3j5/JAd5IYX3FzIOP2KEa+rNvbsBUPBYl9PQOy2+0=; b=mVsU3Qp3tdLkGwVn87vCgffJhW/zqCNujP9gxUA7uZf9oijjfrsx06E+Qw6LH3z+TLLKgm aquwlNQHbinBTbNoHK1eHLbTpbzHvRYtETf/O6Y8CnQlbDxhOVax/CMc547Xm+c+NUPZRy QJUS4DRk1EhUKvE6LEGXLLRedoIrB8Rxx8CGc7BT87Dx/K89vj0zPOx1thtmykJDlp70j3 ahMiqVZIAvxmbbvbe50NCxDi4oQz1vFDVC1bsTnDAQdux0l1K4RYjPxz0Tld2ZP2DIZMdq DG8IVwPPeQiPekQGCObtULqHfV6xJx9CzbOnODtIP+X6CVGzOTlh2JFVeAtTjQ==
ARC-Authentication-Results: i=1; ORIGINATING; auth=pass smtp.auth=kivinen@iki.fi smtp.mailfrom=kivinen@iki.fi
ARC-Seal: i=1; s=lahtoruutu; d=iki.fi; t=1723335290; a=rsa-sha256; cv=none; b=XxFK45nxYv0UGBEzBObpOE7IdDPalhXoxqAxShSzJR233hc9zZzY3LSWpKPi4C/+YGg3pg 7SbYzYraB6jBQQqc+fgtKnWIUKp6u0Utm2GXc9j+EF//Nxmv/TLnirJV49QQNBpGjPBoW3 FIWdfdy//hU+PtVci/oMToZrq0Ri8mkx/upQsAWBc4l4J7VSja9Lkc17WA9VZMYScJNRjh XMMeDp6dc3e9sN1oC/6B7KHUndhfygur2S2m6R/KwN7AVq0Hn5iv7oIUhreyKlRUDvFRH6 tnlLDcbbm9feXZPf9FVasfmT9yFMR1fewRBK+XchQlk/WkAUTUJuKExo/aCK5Q==
Received: by fireball.acr.fi (Postfix, from userid 15204) id 0708325C1320; Sun, 11 Aug 2024 03:14:50 +0300 (EEST)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Message-ID: <26296.633.624016.830749@fireball.acr.fi>
Date: Sun, 11 Aug 2024 03:14:49 +0300
From: Tero Kivinen <kivinen@iki.fi>
To: Valery Smyslov <smyslov.ietf@gmail.com>
In-Reply-To: <020701dae1b9$b6741070$235c3150$@gmail.com>
References: <020701dae1b9$b6741070$235c3150$@gmail.com>
X-Mailer: VM 8.2.0b under 26.3 (x86_64--netbsd)
X-Edit-Time: 5 min
X-Total-Time: 4 min
Message-ID-Hash: MWLRLVID3ZNBDCR4VACNNPKTYZUP773K
X-Message-ID-Hash: MWLRLVID3ZNBDCR4VACNNPKTYZUP773K
X-MailFrom: kivinen@iki.fi
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ipsec.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: ipsec@ietf.org
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [IPsec] Comments on draft-pwouters-ipsecme-delete-info
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/EVm0v-6AyAI12YBZAOJiucjUtSI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Owner: <mailto:ipsec-owner@ietf.org>
List-Post: <mailto:ipsec@ietf.org>
List-Subscribe: <mailto:ipsec-join@ietf.org>
List-Unsubscribe: <mailto:ipsec-leave@ietf.org>

Valery Smyslov writes:
> I have some comments on draft-pwouters-ipsecme-delete-info that I
> tried to express at IETF120, but due to lack of time they were not
> responded to.
> 
> 1. I'm very much concerned with the "Delete Reason Text" field. My
> primary question - in what language this free text explanation is
> supposed to be? I suppose
> 
>     it is assumed to be English, but why do you think all customers
> in the world understand English well enough for this field to be
> really useful? If arbitrary language is allowed, then we need to add
> a language tag, otherwise it is generally impossible to even
> recognize what language the text is in. And allowing arbitrary
> language makes this field even less useful.
> 
>     In general, I think it is a bad idea to transmit text strings to
> be read by users in a low level protocol which IKEv2 is. This is an
> UI issue, and it is the UI that should properly display to the user
> in a user chosen language what is happening.

I agree compeltely. I think having text is bad idea, and if you have
text you can't really specify it to be "UTF-8 or ASCII" text...

If the text is there, you do need it to be UTF-8, and you do need
language tag.

I would simply remove it. If it is only stored in the log, then it it
is better to store that log entry in the local log file of the entity
sending this notify and when you need to know what that text was, you
can call the other end and ask what does your logs say when they
disconnected me at this time using UNSPECIFIED reason code...
-- 
kivinen@iki.fi