Re: [ldapext] Re: Gen-Art Review: <draft-zeilenga-ldap-incr-01.txt>
"Kurt D. Zeilenga" <Kurt@OpenLDAP.org> Thu, 07 July 2005 08:27 UTC
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA11690 for <ldapext-archive@ietf.org>; Thu, 7 Jul 2005 04:27:05 -0400 (EDT)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1DqSA3-00015Z-Ek for ldapext-archive@ietf.org; Thu, 07 Jul 2005 04:55:11 -0400
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1DqRhv-0007nu-0n; Thu, 07 Jul 2005 04:26:07 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1DqRht-0007mj-Jo for ldapext@megatron.ietf.org; Thu, 07 Jul 2005 04:26:05 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA11628 for <ldapext@ietf.org>; Thu, 7 Jul 2005 04:26:03 -0400 (EDT)
Received: from boole.openldap.org ([204.152.186.50] ident=root) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1DqS91-00012D-Tg for ldapext@ietf.org; Thu, 07 Jul 2005 04:54:09 -0400
Received: from gyspy.OpenLDAP.org (24-205-218-53.cs-cres.charterpipeline.net [24.205.218.53]) (authenticated bits=0) by boole.openldap.org (8.13.3/8.13.3) with ESMTP id j678PxDD016962 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 7 Jul 2005 08:26:00 GMT (envelope-from Kurt@OpenLDAP.org)
Message-Id: <6.2.1.2.0.20050707012320.06cd4f48@mail.openldap.org>
X-Mailer: QUALCOMM Windows Eudora Version 6.2.1.2
Date: Thu, 07 Jul 2005 01:25:37 -0700
To: john.loughney@nokia.com
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: [ldapext] Re: Gen-Art Review: <draft-zeilenga-ldap-incr-01.txt>
In-Reply-To: <6.2.1.2.0.20050707004753.027b35e8@mail.openldap.org>
References: <1AA39B75171A7144A73216AED1D7478D6CE872@esebe100.NOE.Nokia.com> <6.2.1.2.0.20050707004753.027b35e8@mail.openldap.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 34d35111647d654d033d58d318c0d21a
Cc: gen-art@alvestrand.no, ldapext@ietf.org
X-BeenThere: ldapext@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: LDAP Extension Working Group <ldapext.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ldapext>, <mailto:ldapext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/ldapext>
List-Post: <mailto:ldapext@ietf.org>
List-Help: <mailto:ldapext-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ldapext>, <mailto:ldapext-request@ietf.org?subject=subscribe>
Sender: ldapext-bounces@ietf.org
Errors-To: ldapext-bounces@ietf.org
X-Spam-Score: 0.1 (/)
X-Scan-Signature: e1b0e72ff1bbd457ceef31828f216a86
Adding to following sentence to the end of the first paragraph would clarify that the first paragraph is merely providing background information as to why this extension was developed. To avoid the problems of this approach, an extension is needed that allows a client to increment attribute values without any requirement for that client to have prior knowledge of the attribute values. comments? Kurt At 01:19 AM 7/7/2005, Kurt D. Zeilenga wrote: >John, thanks for your review. Comments below. -- Kurt > >At 12:39 AM 7/7/2005, john.loughney@nokia.com wrote: >>Background for those on the CC list, who may be unaware of GenART: >>GenART is the Area Review Team for the General Area of the IETF. We >>advise the General Area Director (i.e. the IETF/IESG chair) by >>providing more in depth reviews than he could do himself of documents >>that come up for final decision in IESG telechat. I was selected >>as the GenART member to review this document. Below is my review, >>which was written specifically with an eye to the GenART process, but >>since I believe that it will be useful to have these comments more >>widely distributed, others outside the GenART group are being copied. >> >>Document: <draft-zeilenga-ldap-incr-01.txt> >>Intended Status: Informational >>Review Trigger: IETF Telechat, 7/7/2005 >> >>One line summary: This document is not ready for publication as a Informational >>publication. More text on how to deal with race conditions need to be added. > > > >>General comments: >> >>1) Abstact is a little week, after several reads of the abstract, I couldn't >> make heads or tails what the purpose of the extension is. > >I think s/increment capability/increment attribute value capability/ >would make it more clear as to what function this extension provides. > >>Could you add >> an example or purpose, for example: >> >> This document describes an extension to the Lightweight Directory >> Access Protocol (LDAP) Modify operation to support an increment >> capability, for the purpose of .... >> ^^^^^^^^^^^^^^^^^^ > >for the purpose of incrementing attribute values. > >I could provide instead an example. > >> Some some text to put the extension in some perspective would be helpful. >> >>2) Security considerations: "aide" should be "aid" >> >>Major comment: >> >>1) I find the text in the first paragraph to be insufficient: >> >> ... As the values may be updated by >> other clients between this add and modify, the client must be careful >> to construct the modify request so that it fails in this case, and >> upon failure, re-read the values and construct a new modify request. > >As indicated by the first sentence of the paragraph that >contains this text, this text is providing background information >regarding what client **not** using this extension must do. > >> From my reading, I think what you are saying that clients have to be >> careful that other clients haven't incremented the values between >> the reading of the values and the increment request, but you don't provide >> any guidence on how this can be done. My guess is that there could be >> a number of race situations here. I am not an LDAP expert so I'm not sure >> how critical this is. If it is not a serious issue, then that should be >> pointed out. I expect relatively little text is needed to fix this. > >The goal of this extension is to avoid the problems due to >having to issue two (or more) operations where one should do. >With this extension, a client doesn't not need prior knowledge of >the attribute value. (The client can request the value before >and/or after the increment using pre/post read controls. These >controls operate atomically.) > > > >_______________________________________________ >Ldapext mailing list >Ldapext@ietf.org >https://www1.ietf.org/mailman/listinfo/ldapext _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www1.ietf.org/mailman/listinfo/ldapext
- [ldapext] Re: Gen-Art Review: <draft-zeilenga-lda… Kurt D. Zeilenga
- Re: [ldapext] Re: Gen-Art Review: <draft-zeilenga… Kurt D. Zeilenga
- [ldapext] Gen-Art Review: <draft-zeilenga-ldap-in… john.loughney
- RE: [ldapext] Re: Gen-Art Review: <draft-zeilenga… Paul Leach
- [ldapext] RE: Gen-Art Review: <draft-zeilenga-lda… john.loughney
- [ldapext] Re: Gen-Art Review: <draft-zeilenga-lda… Brian E Carpenter
- [ldapext] Re: Gen-Art Review: <draft-zeilenga-lda… Brian E Carpenter