Re: [Isis-wg] Mirja Kühlewind's No Objection on draft-ietf-isis-rfc4971bis-03: (with COMMENT)
"Les Ginsberg (ginsberg)" <ginsberg@cisco.com> Wed, 17 August 2016 15:55 UTC
Return-Path: <ginsberg@cisco.com>
X-Original-To: isis-wg@ietfa.amsl.com
Delivered-To: isis-wg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 13DA512DD10; Wed, 17 Aug 2016 08:55:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.768
X-Spam-Level:
X-Spam-Status: No, score=-15.768 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-1.247, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hGYdN5e4ShoY; Wed, 17 Aug 2016 08:55:42 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D1D9C12D1D7; Wed, 17 Aug 2016 08:55:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=9274; q=dns/txt; s=iport; t=1471449341; x=1472658941; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=PcdWWXFE5/SjYrHVEfDUKtVSJfPMp2mjInDQS2w/nzw=; b=cci9XscaKeSwSM82dw47MHEdvn11042/pNczdsWeAxZB0FNQyFWHDFOw bTDQTuBJaY/q7IQFyycNYrtahk+NIwvnUlORyuTIakeeKVAI8XN66fJjd x4kL+IdhgkAbyc2rdOu3bFjLYnnH/vXTJLOIdmSd7Jb48wk3lOyb6JI9q M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CeAgDEh7RX/5pdJa1eg0RWfAe0cYQ/gX0khXkCHIFNOBQCAQEBAQEBAV4nhF4BAQQBAQEhEToLBQcEAgEIDgMEAQEDAiMDAgICJQsUAQUDCAIEAQ0FCIghCA6tPpAYAQEBAQEBAQEBAQEBAQEBAQEBAQEBFwWBAYUphE2EEhEBgx2CWgWIKpEaAYYfgn+FeIFyhFyHYYEhhmeFVIN3AR42ghIcF4E1bgGFPTd/AQEB
X-IronPort-AV: E=Sophos;i="5.28,529,1464652800"; d="scan'208";a="140877231"
Received: from rcdn-core-3.cisco.com ([173.37.93.154]) by rcdn-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 17 Aug 2016 15:55:38 +0000
Received: from XCH-RCD-005.cisco.com (xch-rcd-005.cisco.com [173.37.102.15]) by rcdn-core-3.cisco.com (8.14.5/8.14.5) with ESMTP id u7HFtckR015836 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 17 Aug 2016 15:55:38 GMT
Received: from xch-aln-001.cisco.com (173.36.7.11) by XCH-RCD-005.cisco.com (173.37.102.15) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Wed, 17 Aug 2016 10:55:37 -0500
Received: from xch-aln-001.cisco.com ([173.36.7.11]) by XCH-ALN-001.cisco.com ([173.36.7.11]) with mapi id 15.00.1210.000; Wed, 17 Aug 2016 10:55:37 -0500
From: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>
To: Mirja Kuehlewind <ietf@kuehlewind.net>, The IESG <iesg@ietf.org>
Thread-Topic: [Isis-wg] Mirja Kühlewind's No Objection on draft-ietf-isis-rfc4971bis-03: (with COMMENT)
Thread-Index: AQHR+JLvg44jT+MfX0yqx78O9EW9dqBNOciQ
Date: Wed, 17 Aug 2016 15:55:37 +0000
Message-ID: <01c5bf9429f04b1fb003fb6152e612e7@XCH-ALN-001.cisco.com>
References: <147144380526.12231.16184751507970029648.idtracker@ietfa.amsl.com>
In-Reply-To: <147144380526.12231.16184751507970029648.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.24.121.27]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/isis-wg/HaiVYsRQXhprd13IVCmtLFOZFMo>
Cc: "draft-ietf-isis-rfc4971bis@ietf.org" <draft-ietf-isis-rfc4971bis@ietf.org>, "chopps@chopps.org" <chopps@chopps.org>, "isis-wg@ietf.org" <isis-wg@ietf.org>, "isis-chairs@ietf.org" <isis-chairs@ietf.org>
Subject: Re: [Isis-wg] Mirja Kühlewind's No Objection on draft-ietf-isis-rfc4971bis-03: (with COMMENT)
X-BeenThere: isis-wg@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF IS-IS working group <isis-wg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/isis-wg>, <mailto:isis-wg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/isis-wg/>
List-Post: <mailto:isis-wg@ietf.org>
List-Help: <mailto:isis-wg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/isis-wg>, <mailto:isis-wg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Aug 2016 15:55:44 -0000
Mirja - > -----Original Message----- > From: Isis-wg [mailto:isis-wg-bounces@ietf.org] On Behalf Of Mirja > Kuehlewind > Sent: Wednesday, August 17, 2016 7:23 AM > To: The IESG > Cc: isis-wg@ietf.org; chopps@chopps.org; isis-chairs@ietf.org; draft-ietf-isis- > rfc4971bis@ietf.org > Subject: [Isis-wg] Mirja Kühlewind's No Objection on draft-ietf-isis- > rfc4971bis-03: (with COMMENT) > > Mirja Kühlewind has entered the following ballot position for > draft-ietf-isis-rfc4971bis-03: No Objection > > When responding, please keep the subject line intact and reply to all email > addresses included in the To and CC lines. (Feel free to cut this introductory > paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-isis-rfc4971bis/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > I know this is a bis doc that mainly clarifies one point. However, as there were > also other smaller updates, here are some additional comments that could > be considered: > > 1) To me the text in section 2 reads like: if S is not set D should be ignored. Is > this correct? If so, it could be spelled out like this. If not, what happens if S is > not set but D is? > [Les:] The text is very clear about what the S bit means and what the D bit means. It says: " S bit (0x01): If the S bit is set(1), the IS-IS Router CAPABILITY TLV MUST be flooded across the entire routing domain. If the S bit is not set(0), the TLV MUST NOT be leaked between levels. This bit MUST NOT be altered during the TLV leaking." Since leaking is forbidden unless S bit is set, there is never a reason to set the D bit if S bit is clear. An implementation which did this would be in violation of the specification. However, if such a violation did occur, ignoring the D bit would only have the potential to make things worse as it would mean an implementation might choose to leak the content back into Level 2 (even though it MUST NOT do that). So your suggestion to change the text isn’t helpful. > 2) The text says: „Where a receiving system has two copies of a CAPABILITY > TLV from the > same system that have different settings for a given attribute, the > procedure used to choose which copy shall be used is undefined.“ > Why is there no default given here? Not defining something like this can > lead to problems. I would strongly recommend to define a default behavior. > [Les:] There is no way to define a meaningful behavior. The semantics of each sub-TLV are different - and outside the scope of this specification. So saying "take the higher value" (for example) isn’t meaningful. It is also not possible to know which value was the first to be advertised as the order in which LSP updates are received is not guaranteed by the protocol. > 3) Further it says: „How partial support may impact the operation of the > capabilities advertised within the Router CAPABILITY TLV is outside > the scope of this document.“ > While it might be true that this is specific to the capability, I would put a > MUST requirement in here for future specifiactions: Partial suport MUST be > defined in the document that describes the subTLV. > [Les:] The statement which is made (which the BIS version does not alter) is appropriate given that this document does not define any of the sub-TLVs. Further, as multiple sub-TLVs have been defined by other documents in the years since RFC 4971 was published, introducing a change here which REQUIRES these documents to make statements about partial support runs the risk of making existing RFCs non-compliant. This isn't something we should do here. While your concern has merit, the way to address this - if it is to be addressed at all - would be to review the documents which define sub-TLVs and file errata against them if you feel it is warranted. All of this is out of scope for this document however. > 4) On this sentence: „Routers that do not support the Router CAPABILITY TLV > MUST silently > ignore the TLV(s) and continue processing other TLVs in the same LSP.“ > What does "silently" mean here? Is it not allowed to log such an event? I > would recommend to either clarify that "silently" means here or remove that > word. > [Les:] "Silently" refers to the base protocol behavior [ISO 10589] of ignoring TLVs which are not understood but flooding them unaltered. Systems could log occurrences of TLVs they don’t understand, but doing so IMO would simply clutter system logs with useless information. The fact that the protocol can be extended w/o requiring a forklift upgrade is a strength and has served us well. > 5) In this sentence: "If leaking of the CAPABILITY TLV is required, the entire > CAPABILITY > TLV MUST be leaked into another level without change even though it > may contain some sub-TLVs which are unsupported by the Router doing > the leaking.“ > I would recomend to use the normative language differently to be clear > about what it applies to: > "If leaking of the CAPABILITY TLV is required, the entire CAPABILITY > TLV MUST NOT change sub-TLVs which are unsupported by the Router > doing > the leaking.“ > [Les:] Please review the latest update to the draft. This text was rewritten based on comments during GenART review. https://www.ietf.org/id/draft-ietf-isis-rfc4971bis-03.txt > 6) In section 5: „Note that an integrity mechanism, such as the one > defined in [RFC5304] or [RFC5310], should be applied if there is high > risk resulting from modification of capability information.“ > Why is that a SHOULD and what's a „high risk“? It should me either "MUST > be applied at high risk" and defining what a high risk is, or it should be > "SHOULD be applied at (any) risk". > [Les:] The risks associated with Capability advertisements depend upon the nature of the information in the sub-TLVs - so the document quite correctly defers this to the specifications that define the sub-TLVs: " Specifications based on this mechanism need to describe the security considerations around the disclosure and modification of their information." I think this is both sufficient and appropriate. Les > > _______________________________________________ > Isis-wg mailing list > Isis-wg@ietf.org > https://www.ietf.org/mailman/listinfo/isis-wg
- Re: [Isis-wg] Mirja Kühlewind's No Objection on d… Les Ginsberg (ginsberg)
- [Isis-wg] Mirja Kühlewind's No Objection on draft… Mirja Kuehlewind