IETF Logo Mail Archive

Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)

"Acee Lindem (acee)" <acee@cisco.com> Mon, 13 July 2020 16:04 UTC

Return-Path: <acee@cisco.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B7B7E3A13D6; Mon, 13 Jul 2020 09:04:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.62
X-Spam-Level:
X-Spam-Status: No, score=-9.62 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=WLoZMLOw; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=DLDgjAtg
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NG1EU8Ax7giT; Mon, 13 Jul 2020 09:04:00 -0700 (PDT)
Received: from alln-iport-6.cisco.com (alln-iport-6.cisco.com [173.37.142.93]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5A283A13D3; Mon, 13 Jul 2020 09:03:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=4796; q=dns/txt; s=iport; t=1594656239; x=1595865839; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=IucwxKtdSPANzx32r11x++czq592koCwQ92AgdQoz4I=; b=WLoZMLOwFLmDQN8wGPkd/6dELcRxMgBQQcdhdG6246ka/G9rKcYqg1Oa aRbeXVZJacttpkNSgl2z1UoFTkUp6tKm2xG8WmdZKM2Ivh5EQo95ToPfr aEuGfRYP/YaVGPrj27U+s06ARUSJwC0uXRmvlMoHdEhRtocsstZxVL6fM Y=;
IronPort-PHdr: 9a23:XsZuXhYH3DMbsGytEAUBYeH/LSx94ef9IxIV55w7irlHbqWk+dH4MVfC4el21QaVD47a8PlDzeHRtvOoVW8B5MOHt3YPONxJWgQegMob1wonHIaeCEL9IfKrCk5yHMlLWFJ/uX3uN09TFZX1ZkbZpTu56jtBUhn6PBB+c+LyHIOahs+r1ue0rpvUZQgAhDe0bb5oahusqgCEvcgNiowkIaE0mRY=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0ARAABNhQxf/5FdJa1gGQEBAQEBAQEBAQEBAQEBAQEBARIBAQEBAQEBAQEBAQFAgTgCAQEBAQELAYFRIy4Hb1gvLAqEKYNGA40tJYoCjlyBLhSBEQNVCwEBAQwBARgLCgIEAQGETAIXggMCJDYHDQECAwEBCwEBBQEBAQIBBgRthVsMhW8BAQEBAwEBEBERDAEBLAsBCwQCAQgRBAEBAwImAgICHwYLFQgIAgQBDQUigwQBgksDLgEOnhUCgTmIYXaBMoMBAQEFgUZBgyENC4IOAwaBDioBgmmDVYIvhAQaggCBEScMEIJNPoIaQgEBAQIBgSYBEgEhgxYzgi2PL4JXATyiEE0Kgl2IUYwXhHADHoJ0iTaFJI1ckWyKIoJbkXcCBAIEBQIOAQEFgVoJKmdYEQdwFTsqAYI+UBcCDY4eDRYUgzqFFIVCdAI1AgYBBwEBAwl8jToBgRABAQ
X-IronPort-AV: E=Sophos;i="5.75,348,1589241600"; d="scan'208";a="542614774"
Received: from rcdn-core-9.cisco.com ([173.37.93.145]) by alln-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 13 Jul 2020 16:03:58 +0000
Received: from XCH-ALN-005.cisco.com (xch-aln-005.cisco.com [173.36.7.15]) by rcdn-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id 06DG3wHQ004551 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 13 Jul 2020 16:03:58 GMT
Received: from xhs-aln-003.cisco.com (173.37.135.120) by XCH-ALN-005.cisco.com (173.36.7.15) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 13 Jul 2020 11:03:58 -0500
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by xhs-aln-003.cisco.com (173.37.135.120) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 13 Jul 2020 11:03:57 -0500
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Mon, 13 Jul 2020 12:03:57 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dfqWJAFL1OEBsgVjkL3watEsjNfSeeO4PyForBOX9NtGCq96H8qrl5CV9LSHQlIXeLuNYv9WeU97Oi0RJUtthVueJgNdMnoNv76ZO3HmFv24gLgViZLvvC2AZZRXQsA0AWPjJYzXD49drwUysTS2xNSEXa6GeukVjIDXG0DxXQrNk8EjcvCE9Eph2rTeYApkopXVL+X0sEbjfi9r38CPHjoEYQIdR8oj9+r30GEfbHWIXneSpdjuIrgZDIC5IcMVJsQQpp2ygcklRzl0DYU0ZtVWl4oJ3y2icMFLsHP1nXU9/6KqfJr1xZpgyUDKRNaY9GBCSnFHtLKFWKfswNEd9g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IucwxKtdSPANzx32r11x++czq592koCwQ92AgdQoz4I=; b=dBQe3+s8Jhgti1zF+bKnE9ddG7bDCaswtuZV21O+K4ELpqrg8mCT72ebO2w6USulfhaweJOQd6flJM/MJJJXIeVS0Jt5MeB+zLJXQqlH0798kiGyrvShQX1CUuTQ1ZgEurwx+SpjngK6Gg0JWwDYc9ocuVXA1RbMAK5nKm0ZzKihBArL3Or3i/E3IwzlPWd642z3TpT/qiNkxnXSXIGRoQcRiDoJRj/xWlxyjBGMAEZqCatqQc7HTSHgxDhUhbeoCXIoE68pKQgVNgsC9yXrtMDjsBqY1uPBSzZxUy1IWdHxb9XiNz12ZRxkElBzxIGqCnI9lTrtpCJ/BQ/BEOUORw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IucwxKtdSPANzx32r11x++czq592koCwQ92AgdQoz4I=; b=DLDgjAtgssmCTb/FC5eF1wN6EgF1XKQYKRc+AwpeJyVaqUnXMAc87MUUT5qWdJKLrbVy/aOXcBHtNMDw5OTRVU2Aun1isiP8Ktkw4/w/XoEtGL7rCwGORI3nmVPhdoH4HUrr8sN4iFdrtouhx/da9FZU4ziCzVgJMXZ/AwcgCHM=
Received: from BYAPR11MB2887.namprd11.prod.outlook.com (2603:10b6:a03:89::27) by BY5PR11MB4292.namprd11.prod.outlook.com (2603:10b6:a03:1cb::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.22; Mon, 13 Jul 2020 16:03:55 +0000
Received: from BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::70a6:bb5b:16b:4f9b]) by BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::70a6:bb5b:16b:4f9b%7]) with mapi id 15.20.3174.025; Mon, 13 Jul 2020 16:03:55 +0000
From: "Acee Lindem (acee)" <acee@cisco.com>
To: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>, Roman Danyliw <rdd@cert.org>, The IESG <iesg@ietf.org>
CC: "lsr-chairs@ietf.org" <lsr-chairs@ietf.org>, "aretana.ietf@gmail.com" <aretana.ietf@gmail.com>, "chopps@chopps.org" <chopps@chopps.org>, "draft-ietf-lsr-isis-invalid-tlv@ietf.org" <draft-ietf-lsr-isis-invalid-tlv@ietf.org>, "lsr@ietf.org" <lsr@ietf.org>
Thread-Topic: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)
Thread-Index: AQHWWSOgblWvvAOWak2Fzdn4RjAwkakFqPoA///AFoA=
Date: Mon, 13 Jul 2020 16:03:52 +0000
Message-ID: <A4EC8756-B832-4359-810A-6D2C3750A113@cisco.com>
References: <159465119530.29756.2563469610228907669@ietfa.amsl.com> <BY5PR11MB4337951975F4ECA1D1E480BEC1600@BY5PR11MB4337.namprd11.prod.outlook.com>
In-Reply-To: <BY5PR11MB4337951975F4ECA1D1E480BEC1600@BY5PR11MB4337.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.38.20061401
authentication-results: cisco.com; dkim=none (message not signed) header.d=none;cisco.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [136.56.133.70]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f801c692-38a9-4cd0-0bca-08d827465818
x-ms-traffictypediagnostic: BY5PR11MB4292:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <BY5PR11MB4292918E00BA3B86AD587167C2600@BY5PR11MB4292.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 8VNt9MZkFE8HiBa9ZW5kTy+Gw3wcAymwYx2SsqwjhqFrKZubt967NFtv8XUl5oBpZeCvKd3MkO9G5zPFviIczpaMC63PVAS0CC1hqWl7vwVigcxihiuHeWMWvGDKXeVP8ANHU5oxZZ7QWTVyE7nh15ahjfYMaFsp8Rv3/Fdmmv5aUwz2QyWmKajaEUsJ3m8ySsYpKdq+xRfdJ07cuQfQrRKGqXUkn/4vcxzygGQS6aqaGjpNMx5rOzFNlCnx48w5i7ed+llIw4+Tzvkj4rBCjJzwWH0oLm2r37AdxzyOShpn56R+9FOgJd3q8PC/IDH06gAhcx93LdlMsRzDcNw0FCQw2oQR96aJkwle6qePG0MXHg6bxPV2EvPNybCAVSoKCpihu8fYbdoMPRT16OlWAg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB2887.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(136003)(39860400002)(346002)(366004)(396003)(376002)(83380400001)(6512007)(53546011)(2906002)(966005)(8936002)(6506007)(6486002)(86362001)(110136005)(8676002)(6666004)(54906003)(5660300002)(33656002)(66446008)(478600001)(66476007)(2616005)(71200400001)(66946007)(316002)(26005)(91956017)(76116006)(4326008)(36756003)(64756008)(66556008)(186003); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: MVqOgQbjoc8OrKCFyIBGIXHVk/MTlrESoJLsC+nmQYcxruA6TGnRljFuWrVpsOfGFEmS1lc7fuXZzcUYMLf7RdEd5rkLwySJeOsqPWKICrDuRMtSIWdmzMEWmFF5Pbo+/LU8O27boLPXAtP9HkAlPH2OnNOjKYLJ4W3vHbV0gDYhw/D9BxjGBo4zOxWIk8FW32b2/2pIT+QOgSHACVqxkWXo/epqgM+xdc3xunww6pQ5bBQ1OCBTYkgqJAkKVKaEIQGDAVOg8mCiO+Ubr8cxqzx8LJ8B6xzENtzWqHWIALKH1CB1lYN9V+e0sy+r3qbKK2unMlPuX/l8FntjoPb4GBKgIDkaXOUJA5RsJw3XWGibdUTeEuWmkwaOUo9Wotw8IwCIR6KLlg6QcTGusknWHNeQ2QmdpXGW9XBlO0X1W8XRCr/pP5FMJQIbZqthDulo823U77emFfg+pWd1j6owIQRX4zriMNOOxjXrbAggVZA=
Content-Type: text/plain; charset="utf-8"
Content-ID: <4959EDFA5E396149B77F80DA7F8AE233@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB2887.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f801c692-38a9-4cd0-0bca-08d827465818
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Jul 2020 16:03:54.8362 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: i4o+XBEZG8HebZT2oAaCYj/FoJp96rlu4NDLmiEGBXVB1qPc0G8tqv1cVQduarYb
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR11MB4292
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.15, xch-aln-005.cisco.com
X-Outbound-Node: rcdn-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/qlfl_BU5A-lSXMU2bogdtRyIxeI>
Subject: Re: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-02: (with COMMENT)
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Jul 2020 16:04:02 -0000

Hi Les, 

On 7/13/20, 11:53 AM, "Les Ginsberg (ginsberg)" <ginsberg@cisco.com> wrote:

    Roman -

    Thanx for the review.
    Inline.

    > -----Original Message-----
    > From: Lsr <lsr-bounces@ietf.org> On Behalf Of Roman Danyliw via
    > Datatracker
    > Sent: Monday, July 13, 2020 7:40 AM
    > To: The IESG <iesg@ietf.org>
    > Cc: lsr-chairs@ietf.org; aretana.ietf@gmail.com; chopps@chopps.org; draft-
    > ietf-lsr-isis-invalid-tlv@ietf.org; lsr@ietf.org
    > Subject: [Lsr] Roman Danyliw's No Objection on draft-ietf-lsr-isis-invalid-tlv-
    > 02: (with COMMENT)
    > 
    > Roman Danyliw has entered the following ballot position for
    > draft-ietf-lsr-isis-invalid-tlv-02: No Objection
    > 
    > When responding, please keep the subject line intact and reply to all
    > email addresses included in the To and CC lines. (Feel free to cut this
    > introductory paragraph, however.)
    > 
    > 
    > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
    > for more information about IESG DISCUSS and COMMENT positions.
    > 
    > 
    > The document, along with other ballot positions, can be found here:
    > https://datatracker.ietf.org/doc/draft-ietf-lsr-isis-invalid-tlv/
    > 
    > 
    > 
    > ----------------------------------------------------------------------
    > COMMENT:
    > ----------------------------------------------------------------------
    > 
    > I'm glad to see language clarifying error handling.  Thanks for the work on it.
    > 
    > Section 3.2.  Per “It is RECOMMENDED that implementations provide controls
    > for
    > the enablement of behaviors that are not backward compatible”, I want to
    > double
    > check that I’m understanding this  sentence correctly. RFC5304 provides
    > normative guidance that isn’t backward compatible with ISO10589. RFC6233
    > provide guidance that isn’t backward compatible with either RFC5304 or
    > ISO10589.  Is the initial sentence effectively saying that implementations
    > should support deployments in configurations that are not backward
    > compatible
    > (i.e., those using the newer TLVs)?  As these changes are covering security
    > matters, I read “controls” in the cyber mitigation sense -- they prevent an
    > action, not enable one.

    [Les:] The recommendation is for implementations to provide control as to when the new (non-backwards compatible) behavior is used.
    Without that, an implementation which adds support for (to use one example) sending the Purge Originator TLV in the presence of MD5 authentication would simply start sending it and risk the PDU not being accepted by implementations which had not yet added the support.

    One way of reading this is that "including the POI TLV in purges w MD5 authentication" is "enablement" of a new feature. Another way of reading it might be "disablement" of the use of a new feature.
    This seems to me to be a semantical distinction.

    The recommendation to use "controls" also does not specify what the default behavior should be - that is up to the implementation.

Since there was some confusion, maybe "configurable specification" would be clearer than "controls".

Thanks,
Acee

       Les

    > 
    > 
    > 
    > _______________________________________________
    > Lsr mailing list
    > Lsr@ietf.org
    > https://www.ietf.org/mailman/listinfo/lsr

v2.23.0 | Report a Bug | By Email