Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)
"Acee Lindem (acee)" <acee@cisco.com> Mon, 13 July 2020 16:38 UTC
Return-Path: <acee@cisco.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EB9E23A157E; Mon, 13 Jul 2020 09:38:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.62
X-Spam-Level:
X-Spam-Status: No, score=-9.62 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=TcLZbQ1z; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=tn6Eo57w
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4vCnf-og31lb; Mon, 13 Jul 2020 09:38:08 -0700 (PDT)
Received: from alln-iport-6.cisco.com (alln-iport-6.cisco.com [173.37.142.93]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC9C83A157B; Mon, 13 Jul 2020 09:38:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=7264; q=dns/txt; s=iport; t=1594658288; x=1595867888; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=EB8DgJP4RDBg+jEvN6OWNm3TNIu+LH8qnjTntoyOiNk=; b=TcLZbQ1zembI9khwDXUSxfhiCjVNdGGPufvbJJfm5tBj9a9+J8sGgVKO p/InGUhWIQlXLiBr6A5nGzKWM4UVN35Dwu1WiNDB1iRPerfyrNotbLy3q K4Pf/3uynjWa4E629/S3NG3eUvcuRBfSjTneirlndXXCuUPCO4U5TKusB U=;
IronPort-PHdr: 9a23:KNVsKBZUl0Me6SCe/Eo3MUX/LSx94ef9IxIV55w7irlHbqWk+dH4MVfC4el21QaVD47a8PlDzeHRtvOoVW8B5MOHt3YPONxJWgQegMob1wonHIaeCEL9IfKrCk5yHMlLWFJ/uX3uN09TFZX1ZkbZpTu56jtBUhn6PBB+c+LyHIOahs+r1ue0rpvUZQgAhDe0bb5oahusqgCEvcgNiowkIaE0mRY=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CbAACJjQxf/5ldJa1gGQEBAQEBAQEBAQEBAQEBAQEBARIBAQEBAQEBAQEBAQFAgUqBUlEHb1gvLAqEKYNGA40sJYoCjlyBQoERA1ULAQEBDAEBGAsKAgQBAYRMAheCAwIkOBMCAwEBCwEBBQEBAQIBBgRthVsMhW8BAQEBAgEBARAREQwBASwLAQsEAgEGAhEEAQEBAgImAgICHwYLFQgIAgQBDQUigwQBgksDDiABDo1GkGgCgTmIYXaBMoMBAQEFgUZBgygNC4IOAwaBDioBgmmDVYIvhAQaggCBEScMEIJNPoIaQgEBAwGBJgESASGDFjOCLY8vglcBPJIEkAxNCoJdiFGMF4RwAxUJgnSJNoUkjVyRbIoigluRdwIEAgQFAg4BAQWBaiNnWBEHcBU7KgGCPlAXAg2OHg0WFIM6hRSFQnQ3AgYBBwEBAwl8jToBgRABAQ
X-IronPort-AV: E=Sophos;i="5.75,348,1589241600"; d="scan'208";a="542631517"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by alln-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 13 Jul 2020 16:38:07 +0000
Received: from XCH-RCD-001.cisco.com (xch-rcd-001.cisco.com [173.37.102.11]) by rcdn-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id 06DGc6Eo001356 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 13 Jul 2020 16:38:06 GMT
Received: from xhs-aln-002.cisco.com (173.37.135.119) by XCH-RCD-001.cisco.com (173.37.102.11) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 13 Jul 2020 11:38:06 -0500
Received: from xhs-aln-003.cisco.com (173.37.135.120) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 13 Jul 2020 11:38:06 -0500
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-003.cisco.com (173.37.135.120) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Mon, 13 Jul 2020 11:38:06 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=UwLznzd0hbpddgPcx7GBRVatNLPizUhLiXKF4mrFffLQdTiBJmPnhJA1ypyTiv80FiaH/VNPUkJ6q1GmNlBfu5DVwc2tIUBQiQkOn2BM7AfB7dg0rj0T7tKBNTQgi0IBsGb+c/GDuCCbS7ZS2oxgYAjitIPaVsh3jsgkZ/X4YnSukTsixa9vR7h/pQ2LVINhtu6oTLixUGnrA/9hF8gtAtbjD/TP99ux+EbX0uV5WigNmOREubQUy6pKfhNW4rxdJpnU2zoZiUWXNSkLea7LOB29NUV1VO50lktrt29LbfYZtxy/av0QgZY7kHk7k5oOb2mZoJHogqpWuLV5QvrnBQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=EB8DgJP4RDBg+jEvN6OWNm3TNIu+LH8qnjTntoyOiNk=; b=SHVfVfr4OHzvnqsgA7YUEStyyhKFIaQ9WPvlGA8mFUYtOirGiungaxF7dwa7Nkf4mDk8HEeroP5HwXpcXQtL1KPffoPdZq8j0CnJQjIB9MorUphzPqzLhUmD85PkISLomGHXd8n9ZeucH7IDu6tSB9t4zn+x0veTTQuWMmhnDvKoGnx2TPlBRuqY6qwy0p2gsp5RJClikWknULz9/FzniDTwKPz/ZzOfY8MMU8eTMRB3M/QmbVJM9GGX0g0XP3NfrBcxgZL6jNsOsH9FL6SMs4Y+4LTxAj7lfX4kimoV79Fg+3izMFymh1ylOPnKpPa0VMMCzT3wxzyW9O8SdgEOGw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=EB8DgJP4RDBg+jEvN6OWNm3TNIu+LH8qnjTntoyOiNk=; b=tn6Eo57w+j4oRwVQQRHeFajg/SfCDyZYfW2aQ/Ztd30YbyVBKiL0EMgVFeuWTqyhcsMIGOu1h7TiQfl3YnReE7P0gAGOpxS9mp/pmj6tY4ye7QNsIzmCxo+JzItpD4cr/IPG80ZllxbEgtvyrwn9BcS/Yb0zUtEi/wJA6BOf2DY=
Received: from BYAPR11MB2887.namprd11.prod.outlook.com (2603:10b6:a03:89::27) by BYAPR11MB3798.namprd11.prod.outlook.com (2603:10b6:a03:b3::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.20; Mon, 13 Jul 2020 16:38:05 +0000
Received: from BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::70a6:bb5b:16b:4f9b]) by BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::70a6:bb5b:16b:4f9b%7]) with mapi id 15.20.3174.025; Mon, 13 Jul 2020 16:38:05 +0000
From: "Acee Lindem (acee)" <acee@cisco.com>
To: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>, Roman Danyliw <rdd@cert.org>, The IESG <iesg@ietf.org>
CC: "lsr-chairs@ietf.org" <lsr-chairs@ietf.org>, "aretana.ietf@gmail.com" <aretana.ietf@gmail.com>, "chopps@chopps.org" <chopps@chopps.org>, "draft-ietf-lsr-isis-invalid-tlv@ietf.org" <draft-ietf-lsr-isis-invalid-tlv@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>
Thread-Topic: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)
Thread-Index: AQHWWSOgblWvvAOWak2Fzdn4RjAwkakFqPoA///AFoCAAEiOAP//wQGA
Date: Mon, 13 Jul 2020 16:38:04 +0000
Message-ID: <E2F35F8F-168C-4936-84BC-47D52D265656@cisco.com>
References: <159465119530.29756.2563469610228907669@ietfa.amsl.com> <BY5PR11MB4337951975F4ECA1D1E480BEC1600@BY5PR11MB4337.namprd11.prod.outlook.com> <A4EC8756-B832-4359-810A-6D2C3750A113@cisco.com> <BY5PR11MB4337D0A6642DF37FD4C05427C1600@BY5PR11MB4337.namprd11.prod.outlook.com>
In-Reply-To: <BY5PR11MB4337D0A6642DF37FD4C05427C1600@BY5PR11MB4337.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.38.20061401
authentication-results: cisco.com; dkim=none (message not signed) header.d=none;cisco.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [136.56.133.70]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0a8b09f4-d7bc-4a95-0561-08d8274b1df4
x-ms-traffictypediagnostic: BYAPR11MB3798:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <BYAPR11MB37986E6FFE5E3A1028F9790CC2600@BYAPR11MB3798.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: KoL9ckdexvnAp76O3OzmVOeDBeiJTWN7qRmYdgYGS+puo0hbem6SHwYzWGKxieFTE/YFN/kK9k2F0JPc8iydDXSjtgueYAHMMAroRtchqKQL+h4OSaSCEBtNFfm12E6D2QC2es6rcyhzhlgjmfC7qHb/GHWFxTpUU5cPMlevZWsZe3EOTUE10Doxe7GlcVmwEoymwbdTR0IPLnjj6uxK1KQQ7laIaR+K0ab8uy2z4Slh/WMgpJlTwXFT0lbb0amgpfEsUhhqpQe9cBPcXNHgQWgumCkOqUfEQaRUG/I4+elSGEd2eJg/bvb8lapfUbqjbfhWxN4wvh4OqpYPjftDPXWU3M0Vgrde3Hg9dTSIzFd0zvmzUuL02Q/+9K3NCdzznqQDikSocycUCMRFCmeVQg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB2887.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(39860400002)(136003)(376002)(366004)(346002)(396003)(2616005)(2906002)(966005)(186003)(36756003)(4326008)(71200400001)(5660300002)(8676002)(83380400001)(478600001)(26005)(8936002)(86362001)(6506007)(66556008)(316002)(91956017)(64756008)(66476007)(66446008)(53546011)(6512007)(6486002)(33656002)(54906003)(76116006)(66946007)(110136005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 571MEiIBBVTTWJkgzr0KRakY123PBzcoGWuNCBQtwZ01u6dN1nXX4TXeMSuqKKaeOSyTPlPare1c8aKHaC4WKqt86zpXBm+CcgCWDK9ouBr5O2EYQwQ6t6NUHw5IZWSSBLnmrqDVWc5gQ+bKkxSED+1ojbPC8dxZeCplVtW06Ola/cYQWW1tntHiXdNlMTuWXf7twSjfSohe1GLsLIV7hDjL4VfDT/r2QWIASoRA2/uq4269zXj2mj1U3yG/Z40EYZgtj6S1Qcl1SB9swinE0n2zJQ0Qs8kX+wiOlYDgZbjSpxeacy8qxYUjkebrEAjrlJnxtPAxh4bv+lNCWWx9HqgHTaCvQV++JNop30aINVNoGTcZhEoV2DERF0iHccw+IbzmWmsqoFgEigYS3rX81gJfiMu9WpDB5y0gznwcuMlVGnNT5h3e1A/MJauQIIT6QHz2oQJliFt+J+72R0GbNruD0pJlPvCh64qk/+XkdLI=
Content-Type: text/plain; charset="utf-8"
Content-ID: <1751C20FDD9EB944B87DA8A349ECF5EA@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB2887.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0a8b09f4-d7bc-4a95-0561-08d8274b1df4
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jul 2020 16:38:05.0257 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: wysruiSJqtzXdWRqN1GrxGRS7M9rI4Zp2EJBb5iiOple0a15/DBKYNFGTvtMeLy6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3798
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.11, xch-rcd-001.cisco.com
X-Outbound-Node: rcdn-core-2.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/S49wkMkXmzbA7PsCfal36uc9EY8>
Subject: Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Jul 2020 16:38:10 -0000
On 7/13/20, 12:23 PM, "Les Ginsberg (ginsberg)" <ginsberg@cisco.com> wrote: Acee - Inline. > -----Original Message----- > From: Acee Lindem (acee) <acee@cisco.com> > Sent: Monday, July 13, 2020 9:04 AM > To: Les Ginsberg (ginsberg) <ginsberg@cisco.com>; Roman Danyliw > <rdd@cert.org>; The IESG <iesg@ietf.org> > Cc: lsr-chairs@ietf.org; aretana.ietf@gmail.com; chopps@chopps.org; draft- > ietf-lsr-isis-invalid-tlv@ietf.org; lsr@ietf.org > Subject: Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid- > tlv-02: (with COMMENT) > > Hi Les, > > On 7/13/20, 11:53 AM, "Les Ginsberg (ginsberg)" <ginsberg@cisco.com> > wrote: > > Roman - > > Thanx for the review. > Inline. > > > -----Original Message----- > > From: Lsr <lsr-bounces@ietf.org> On Behalf Of Roman Danyliw via > > Datatracker > > Sent: Monday, July 13, 2020 7:40 AM > > To: The IESG <iesg@ietf.org> > > Cc: lsr-chairs@ietf.org; aretana.ietf@gmail.com; chopps@chopps.org; > draft- > > ietf-lsr-isis-invalid-tlv@ietf.org; lsr@ietf.org > > Subject: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid- > tlv- > > 02: (with COMMENT) > > > > Roman Danyliw has entered the following ballot position for > > draft-ietf-lsr-isis-invalid-tlv-02: No Objection > > > > When responding, please keep the subject line intact and reply to all > > email addresses included in the To and CC lines. (Feel free to cut this > > introductory paragraph, however.) > > > > > > Please refer to https://www.ietf.org/iesg/statement/discuss- > criteria.html > > for more information about IESG DISCUSS and COMMENT positions. > > > > > > The document, along with other ballot positions, can be found here: > > https://datatracker.ietf.org/doc/draft-ietf-lsr-isis-invalid-tlv/ > > > > > > > > ---------------------------------------------------------------------- > > COMMENT: > > ---------------------------------------------------------------------- > > > > I'm glad to see language clarifying error handling. Thanks for the work on > it. > > > > Section 3.2. Per “It is RECOMMENDED that implementations provide > controls > > for > > the enablement of behaviors that are not backward compatible”, I want > to > > double > > check that I’m understanding this sentence correctly. RFC5304 provides > > normative guidance that isn’t backward compatible with ISO10589. > RFC6233 > > provide guidance that isn’t backward compatible with either RFC5304 or > > ISO10589. Is the initial sentence effectively saying that implementations > > should support deployments in configurations that are not backward > > compatible > > (i.e., those using the newer TLVs)? As these changes are covering > security > > matters, I read “controls” in the cyber mitigation sense -- they prevent an > > action, not enable one. > > [Les:] The recommendation is for implementations to provide control as to > when the new (non-backwards compatible) behavior is used. > Without that, an implementation which adds support for (to use one > example) sending the Purge Originator TLV in the presence of MD5 > authentication would simply start sending it and risk the PDU not being > accepted by implementations which had not yet added the support. > > One way of reading this is that "including the POI TLV in purges w MD5 > authentication" is "enablement" of a new feature. Another way of reading it > might be "disablement" of the use of a new feature. > This seems to me to be a semantical distinction. > > The recommendation to use "controls" also does not specify what the > default behavior should be - that is up to the implementation. > > Since there was some confusion, maybe "configurable specification" would > be clearer than "controls". > [Les:] I will certainly wait for Roman's input, but to me the term "controls" means there is a way to control whether a particular behavior is used/not used. (An "on/off" switch comes to mind.) Frankly, I don’t know what the term "configuration specification" means. Maybe if I worked with YANG more I would know. 😊 But I suggested "configurable specification"... I think this is clear and more formal than "configuration knob". Thanks, Acee I am open to an alternate term if there really is confusion - but for me you haven't added clarity with your suggestion. Les > Thanks, > Acee > > Les > > > > > > > > > _______________________________________________ > > Lsr mailing list > > Lsr@ietf.org > > https://www.ietf.org/mailman/listinfo/lsr
- [Lsr] Roman Danyliw's No Objection on draft-ietf-… Roman Danyliw via Datatracker
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Les Ginsberg (ginsberg)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Acee Lindem (acee)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Les Ginsberg (ginsberg)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Acee Lindem (acee)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Les Ginsberg (ginsberg)
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Roman Danyliw
- Re: [Lsr] Roman Danyliw's No Objection on draft-i… Acee Lindem (acee)