Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)
"Les Ginsberg (ginsberg)" <ginsberg@cisco.com> Tue, 14 July 2020 03:43 UTC
Return-Path: <ginsberg@cisco.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 85F183A0938; Mon, 13 Jul 2020 20:43:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.619
X-Spam-Level:
X-Spam-Status: No, score=-9.619 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=PXpmCuo+; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=WA5GwiHZ
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZA1LSeuLKhyN; Mon, 13 Jul 2020 20:43:04 -0700 (PDT)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4D8D33A092E; Mon, 13 Jul 2020 20:43:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=8946; q=dns/txt; s=iport; t=1594698184; x=1595907784; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=IXUTvNlUDkMDWtaU/2EIF9OnVe0awu/+Mm082BRjwz4=; b=PXpmCuo+q34mJSGu5EuP3ALL/MzNCySaDJSLa77rpvv8cmUxp7x+jPqr DHcdQtgPSAj8tkPPhIo8hEnB22AEnoYr6smdJDSEFXy2JJfFSTiuHFubk zyBOvrMeSeif4LTsM0vYP8S5fSYlJRBF3dNvfdBhbOoIFlAQHFIx8T8mQ s=;
IronPort-PHdr: 9a23:ULm2IxJFKy1GqSO549mcpTVXNCE6p7X5OBIU4ZM7irVIN76u5InmIFeGvKk/h17SVoKd4PVB2KLasKHlDGoH55vJ8HUPa4dFWBJNj8IK1xchD8iIBQyeTrbqYiU2Ed4EWApj+He2YkNUA835IVbVpy764TsbAB6qMw1zK6z8EZLTiMLi0ee09tXTbgxEiSD7b6l1KUC9rB7asY8dho4xJw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AeAACpKA1f/4MNJK1gGQEBAQEBAQEBAQEBAQEBAQEBARIBAQEBAQEBAQEBAQFAgTkBAQEBAQELAYFRUQdvWC8shDODRgONUooCjlyBQoERA1ULAQEBDAEBGAsKAgQBAYRMAheCAwIkNwYNAQIDAQELAQEFAQEBAgEGBG2FWwyFbwEBAQECAQEBEBERDAEBLAsBBAcEAgEGAhEEAQEBAgIZDQICAh8GCxUICAIEAQ0FCBqDBYJLAw4gAQ6NH5BoAoE5iGF2gTKDAQEBBYFGQYMjDQuCDgMGgQ4qAYJpg1WCL4QEGoFBP4ERQ4JNPoIaQgEBAwGBJgESASODFDOCLY8xglcBPKIQTQqCXYhRjBeFEYJ0iTaFJI1ckWyKIoJbkXcCBAIEBQIOAQEFgWkkZ1gRB3AVO4JpUBcCDY4eDRYUgzqFFIVCdDcCBgEHAQEDCXyPPAEB
X-IronPort-AV: E=Sophos;i="5.75,349,1589241600"; d="scan'208";a="797068201"
Received: from alln-core-1.cisco.com ([173.36.13.131]) by rcdn-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 14 Jul 2020 03:43:02 +0000
Received: from XCH-RCD-002.cisco.com (xch-rcd-002.cisco.com [173.37.102.12]) by alln-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id 06E3h2HD021837 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 14 Jul 2020 03:43:02 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-RCD-002.cisco.com (173.37.102.12) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 13 Jul 2020 22:43:02 -0500
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 13 Jul 2020 22:43:01 -0500
Received: from NAM12-MW2-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Mon, 13 Jul 2020 22:43:01 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=E3qHb12nmCJ/QpsTqMl8MhNsijlY09q3XjathbRM7Pdyw9Kn1rOHMo83QLAzJab+fJxIhf+MIj/6R2GF1rSMckvf5KxwSFcUdsnyH5b11ka0+ayjW5JSOXe74sGZvGShuwfAcUlfrWyNDgnvcP8bGboVfYWp/bKqaVdMPz1VcTD3tvhfGWiDFWT1ccBh88y4ZyqDpQbIdgfPI6Gdx6daUNb8j4e38JUJ69/xugQ3L/ZSMcsSU32mYpzKI991PaM9uaVTqT3wVZ12NRipFVNYKjAcM6h3NVnFdsgxuMA0a4cj8MBIBuM23EZJn1XBRV/rDyv6pW+50HypokmvNB4jyA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IXUTvNlUDkMDWtaU/2EIF9OnVe0awu/+Mm082BRjwz4=; b=NusvKmNojgxk+k76t4zEUY0ZMy6PAEK1OYaucT1kHYIdXL2CzLYQl0Ggug35Hn88DYgE9x//r9sjvoow3YwsPwRKiI9W88WLM4B6VyBZE4JANFNK+OC7CV11TBUkyPx5sJ4tcS1B+6rF0jjZAesloaqRBJpZOGgRxJRpbB1i6Akhl5cE1i/ugyHSY01MkMVoWOhkPkgiXOyv/fL7ZnGIdtZKCp4J76wmO2X9HgfIOhShSpno63TEFS6VmLbtt9cwkZefnAA0vJLqEQoXEdmgZAj4zCbnFiV73yc51MZ5uD/5Qqd5YXcYoRnGJC8a8Uqahgpkiwa/JZQLxmlLJxfF8Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IXUTvNlUDkMDWtaU/2EIF9OnVe0awu/+Mm082BRjwz4=; b=WA5GwiHZA5QtLgEjXxhL5xN2pAAg1O+Eg+UkOu+S9StadxD55fZdSuQQjBB4tpP9POXp00jmRNJCCBKMnFps2MRnCrR/lTI8IMd53mwvotetGPrwVMTdocrRl9+i1NwpnstijUSGJA7REmcfY3rmBFCfARJWSZMoRwSMtMDpxJw=
Received: from BY5PR11MB4337.namprd11.prod.outlook.com (2603:10b6:a03:1c1::14) by BYAPR11MB3158.namprd11.prod.outlook.com (2603:10b6:a03:1c::29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.23; Tue, 14 Jul 2020 03:43:00 +0000
Received: from BY5PR11MB4337.namprd11.prod.outlook.com ([fe80::744b:761f:b385:f1e2]) by BY5PR11MB4337.namprd11.prod.outlook.com ([fe80::744b:761f:b385:f1e2%7]) with mapi id 15.20.3174.026; Tue, 14 Jul 2020 03:43:00 +0000
From: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>
To: "Acee Lindem (acee)" <acee@cisco.com>, Roman Danyliw <rdd@cert.org>, The IESG <iesg@ietf.org>
CC: "lsr-chairs@ietf.org" <lsr-chairs@ietf.org>, "aretana.ietf@gmail.com" <aretana.ietf@gmail.com>, "chopps@chopps.org" <chopps@chopps.org>, "draft-ietf-lsr-isis-invalid-tlv@ietf.org" <draft-ietf-lsr-isis-invalid-tlv@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>
Thread-Topic: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)
Thread-Index: AQHWWSOj6v/Lge/VtkCoyCO61b+6fKkFpeswgAAGNQCAAAPYcIAABbYAgAC5HaA=
Date: Tue, 14 Jul 2020 03:43:00 +0000
Message-ID: <BY5PR11MB4337FF52D8A578868A6B5C83C1610@BY5PR11MB4337.namprd11.prod.outlook.com>
References: <159465119530.29756.2563469610228907669@ietfa.amsl.com> <BY5PR11MB4337951975F4ECA1D1E480BEC1600@BY5PR11MB4337.namprd11.prod.outlook.com> <A4EC8756-B832-4359-810A-6D2C3750A113@cisco.com> <BY5PR11MB4337D0A6642DF37FD4C05427C1600@BY5PR11MB4337.namprd11.prod.outlook.com> <E2F35F8F-168C-4936-84BC-47D52D265656@cisco.com>
In-Reply-To: <E2F35F8F-168C-4936-84BC-47D52D265656@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: cisco.com; dkim=none (message not signed) header.d=none;cisco.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2602:306:36ca:6640:7508:3e5d:6c1d:9aa3]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5c3b820d-f6ff-46b8-3b29-08d827a8017b
x-ms-traffictypediagnostic: BYAPR11MB3158:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <BYAPR11MB3158E1BED1E29FD211B752A2C1610@BYAPR11MB3158.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 2gGS22/O5IsPg8J6lZkrDsVfcyIohCSL1HmA9+uNqmbO4yE/tBM+dqvK2K4J1JOYfwvB32Yy1ukb33FzLthsf6GUqZgIS68k7mkW+UfQ606O5lQXLmBSruX6g38S1ibLipdulzgONQlulvoe17WCMSrjYurAycJrF5QjPWfrUrIjoPDnJPpGL7sGUt7UHYrSScPesAQ5elpKDjBz1ibInH7JXdk1Wj/TlXfCVlGgrKIWwlcNVlbduxDUfI7t+jKGeQ4Q4pS3zKajK3Gxkee3A+UWos1UeOg8LoRD8dC3rE5Ue1jVJdEA8PgyBs2E0qyTWfaj5EDL5AkSk/8DZmXUaRdFsBW/DWli/d9Wet3zDS82LKLtQN7ZywT2Mh87BvNLwR2dRUsuWMxA0MpYPChigA==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4337.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(376002)(396003)(346002)(366004)(39860400002)(136003)(33656002)(8936002)(66556008)(9686003)(66946007)(76116006)(64756008)(66476007)(186003)(66446008)(54906003)(52536014)(110136005)(4326008)(316002)(55016002)(5660300002)(71200400001)(6506007)(53546011)(966005)(7696005)(2906002)(8676002)(83380400001)(86362001)(478600001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4337.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5c3b820d-f6ff-46b8-3b29-08d827a8017b
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Jul 2020 03:43:00.4398 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: l0mZc/ReN5HTc9qtdkymvxnpdsbCLHQ6Hww9AICizEXTrv0qmUMBV7TdcmijhMXlrrgkYal+VRg2ZgoqyV35Qw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3158
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.12, xch-rcd-002.cisco.com
X-Outbound-Node: alln-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/P6Wjz86J7OyqR225B5LzSPOLS7g>
Subject: Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Jul 2020 03:43:07 -0000
Roman (and Acee) - After a suggestion from Ben, I have reworded the sentence to read: " When new protocol behaviors are specified that are not backwards compatible, it is RECOMMENDED that implementations provide controls for their enablement. This serves to prevent interoperability issues and allow for non-disruptive introduction of the new functionality into an existing network." Let me know if this resolves the concerns. Les > -----Original Message----- > From: Acee Lindem (acee) <acee@cisco.com> > Sent: Monday, July 13, 2020 9:38 AM > To: Les Ginsberg (ginsberg) <ginsberg@cisco.com>; Roman Danyliw > <rdd@cert.org>; The IESG <iesg@ietf.org> > Cc: lsr-chairs@ietf.org; aretana.ietf@gmail.com; chopps@chopps.org; draft- > ietf-lsr-isis-invalid-tlv@ietf.org; lsr@ietf.org > Subject: Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid- > tlv-02: (with COMMENT) > > > > On 7/13/20, 12:23 PM, "Les Ginsberg (ginsberg)" <ginsberg@cisco.com> > wrote: > > Acee - > > Inline. > > > -----Original Message----- > > From: Acee Lindem (acee) <acee@cisco.com> > > Sent: Monday, July 13, 2020 9:04 AM > > To: Les Ginsberg (ginsberg) <ginsberg@cisco.com>; Roman Danyliw > > <rdd@cert.org>; The IESG <iesg@ietf.org> > > Cc: lsr-chairs@ietf.org; aretana.ietf@gmail.com; chopps@chopps.org; > draft- > > ietf-lsr-isis-invalid-tlv@ietf.org; lsr@ietf.org > > Subject: Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis- > invalid- > > tlv-02: (with COMMENT) > > > > Hi Les, > > > > On 7/13/20, 11:53 AM, "Les Ginsberg (ginsberg)" <ginsberg@cisco.com> > > wrote: > > > > Roman - > > > > Thanx for the review. > > Inline. > > > > > -----Original Message----- > > > From: Lsr <lsr-bounces@ietf.org> On Behalf Of Roman Danyliw via > > > Datatracker > > > Sent: Monday, July 13, 2020 7:40 AM > > > To: The IESG <iesg@ietf.org> > > > Cc: lsr-chairs@ietf.org; aretana.ietf@gmail.com; chopps@chopps.org; > > draft- > > > ietf-lsr-isis-invalid-tlv@ietf.org; lsr@ietf.org > > > Subject: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis- > invalid- > > tlv- > > > 02: (with COMMENT) > > > > > > Roman Danyliw has entered the following ballot position for > > > draft-ietf-lsr-isis-invalid-tlv-02: No Objection > > > > > > When responding, please keep the subject line intact and reply to all > > > email addresses included in the To and CC lines. (Feel free to cut this > > > introductory paragraph, however.) > > > > > > > > > Please refer to https://www.ietf.org/iesg/statement/discuss- > > criteria.html > > > for more information about IESG DISCUSS and COMMENT positions. > > > > > > > > > The document, along with other ballot positions, can be found here: > > > https://datatracker.ietf.org/doc/draft-ietf-lsr-isis-invalid-tlv/ > > > > > > > > > > > > ---------------------------------------------------------------------- > > > COMMENT: > > > ---------------------------------------------------------------------- > > > > > > I'm glad to see language clarifying error handling. Thanks for the work > on > > it. > > > > > > Section 3.2. Per “It is RECOMMENDED that implementations provide > > controls > > > for > > > the enablement of behaviors that are not backward compatible”, I > want > > to > > > double > > > check that I’m understanding this sentence correctly. RFC5304 > provides > > > normative guidance that isn’t backward compatible with ISO10589. > > RFC6233 > > > provide guidance that isn’t backward compatible with either RFC5304 > or > > > ISO10589. Is the initial sentence effectively saying that > implementations > > > should support deployments in configurations that are not backward > > > compatible > > > (i.e., those using the newer TLVs)? As these changes are covering > > security > > > matters, I read “controls” in the cyber mitigation sense -- they > prevent an > > > action, not enable one. > > > > [Les:] The recommendation is for implementations to provide control > as to > > when the new (non-backwards compatible) behavior is used. > > Without that, an implementation which adds support for (to use one > > example) sending the Purge Originator TLV in the presence of MD5 > > authentication would simply start sending it and risk the PDU not being > > accepted by implementations which had not yet added the support. > > > > One way of reading this is that "including the POI TLV in purges w MD5 > > authentication" is "enablement" of a new feature. Another way of > reading it > > might be "disablement" of the use of a new feature. > > This seems to me to be a semantical distinction. > > > > The recommendation to use "controls" also does not specify what the > > default behavior should be - that is up to the implementation. > > > > Since there was some confusion, maybe "configurable specification" > would > > be clearer than "controls". > > > [Les:] I will certainly wait for Roman's input, but to me the term "controls" > means there is a way to control whether a particular behavior is used/not > used. (An "on/off" switch comes to mind.) > Frankly, I don’t know what the term "configuration specification" means. > Maybe if I worked with YANG more I would know. 😊 > > But I suggested "configurable specification"... I think this is clear and more > formal than "configuration knob". > > Thanks, > Acee > > I am open to an alternate term if there really is confusion - but for me you > haven't added clarity with your suggestion. > > Les > > > Thanks, > > Acee > > > > Les > > > > > > > > > > > > > > _______________________________________________ > > > Lsr mailing list > > > Lsr@ietf.org > > > https://www.ietf.org/mailman/listinfo/lsr >
- [Lsr] Roman Danyliw's No Objection on draft-ietf-… Roman Danyliw via Datatracker
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Les Ginsberg (ginsberg)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Acee Lindem (acee)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Les Ginsberg (ginsberg)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Acee Lindem (acee)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Les Ginsberg (ginsberg)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Roman Danyliw
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Acee Lindem (acee)