[netconf] Re: WGLC for udp-notif

Benoit Claise <benoit.claise@huawei.com> Fri, 21 February 2025 10:07 UTC

Return-Path: <benoit.claise@huawei.com>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0D6F3C15107A; Fri, 21 Feb 2025 02:07:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.904
X-Spam-Level:
X-Spam-Status: No, score=-1.904 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PtUBClc008iM; Fri, 21 Feb 2025 02:07:28 -0800 (PST)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5E1AEC14F617; Fri, 21 Feb 2025 02:07:28 -0800 (PST)
Received: from mail.maildlp.com (unknown [172.18.186.31]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4Yzm3Y5Qgtz6HJnm; Fri, 21 Feb 2025 18:05:45 +0800 (CST)
Received: from frapeml500001.china.huawei.com (unknown [7.182.85.94]) by mail.maildlp.com (Postfix) with ESMTPS id BBDF8140382; Fri, 21 Feb 2025 18:07:26 +0800 (CST)
Received: from [10.195.244.21] (10.195.244.21) by frapeml500001.china.huawei.com (7.182.85.94) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.39; Fri, 21 Feb 2025 11:07:23 +0100
Content-Type: multipart/alternative; boundary="------------Rch0bGAvGgd9BAcuSr4Z0DCG"
Message-ID: <a732c55a-c9a0-42dc-8527-423691e4d509@huawei.com>
Date: Fri, 21 Feb 2025 11:07:18 +0100
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
To: Alex Huang Feng <alex.huang-feng@insa-lyon.fr>, Mohamed Boucadair <mohamed.boucadair@orange.com>
References: <CACvbXWH3Ppufo55DP1-8wQX_qNbHFjwJ+vPJM2aj0cKBaEoQSw@mail.gmail.com> <MR1PPF6395AA9E6F4527060E8E0711ABBAB88E82@MR1PPF6395AA9E6.FRAP264.PROD.OUTLOOK.COM> <8D3FE20E-CC86-402B-98F2-992B6513AE8E@insa-lyon.fr> <MR1PPF6395AA9E696C508674C6E77DF48B688FE2@MR1PPF6395AA9E6.FRAP264.PROD.OUTLOOK.COM> <C8B5AAE2-4532-41DE-8A3B-91C386D78289@insa-lyon.fr> <441BE267-D043-4B44-BD84-D3A0C1B8D37A@insa-lyon.fr>
Content-Language: en-US
From: Benoit Claise <benoit.claise@huawei.com>
In-Reply-To: <441BE267-D043-4B44-BD84-D3A0C1B8D37A@insa-lyon.fr>
X-Originating-IP: [10.195.244.21]
X-ClientProxiedBy: dggems702-chm.china.huawei.com (10.3.19.179) To frapeml500001.china.huawei.com (7.182.85.94)
Message-ID-Hash: L3JSNIGHXZTOJXPPZAFR3ALWROLVSVM2
X-Message-ID-Hash: L3JSNIGHXZTOJXPPZAFR3ALWROLVSVM2
X-MailFrom: benoit.claise@huawei.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-netconf.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "draft-ietf-netconf-udp-notif@ietf.org" <draft-ietf-netconf-udp-notif@ietf.org>, "netconf@ietf.org" <netconf@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [netconf] Re: WGLC for udp-notif
List-Id: NETCONF WG list <netconf.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/4EdSrt2blcdbwkB1DNXZwqvNqdk>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Owner: <mailto:netconf-owner@ietf.org>
List-Post: <mailto:netconf@ietf.org>
List-Subscribe: <mailto:netconf-join@ietf.org>
List-Unsubscribe: <mailto:netconf-leave@ietf.org>

Thanks you Alex and the authors.

That makes sense.
Will draft-ietf-netconf-udp-notif-19.txt posted, I'll now review the 
UDP-distributed-notif (somewhere next week)
However, I am afraid I will be missing the WGLC deadline of today.

Regards, Benoit



On 2/21/2025 10:31 AM, Alex Huang Feng wrote:
> Dear Med and Benoit,
>
> After discussing the private encoding option issue offline with the 
> authors, we agreed to remove this option.
>
> Diff of last commit: 
> https://author-tools.ietf.org/diff?url_1=https://raw.githubusercontent.com/netconf-wg/udp-notif/12f8e7085b7f54bc2ffd84c94274e52ec4b53b4f/draft-ietf-netconf-udp-notif-19.txt&url_2=https://raw.githubusercontent.com/netconf-wg/udp-notif/refs/heads/main/draft-ietf-netconf-udp-notif-19.txt 
> <https://author-tools.ietf.org/diff?url_1=https://raw.githubusercontent.com/netconf-wg/udp-notif/12f8e7085b7f54bc2ffd84c94274e52ec4b53b4f/draft-ietf-netconf-udp-notif-19.txt&url_2=https://raw.githubusercontent.com/netconf-wg/udp-notif/refs/heads/main/draft-ietf-netconf-udp-notif-19.txt>
>
> Cheers,
> Alex
>
>> On 17 Feb 2025, at 10:29, Alex Huang Feng 
>> <alex.huang-feng@insa-lyon.fr> wrote:
>>
>> Hi Med, and Benoit,
>>
>> @Benoit and @Med:
>> I have been discussing with the authors regarding the private 
>> encoding option.
>> The motivation of adding this option was to enable users to encode 
>> information in the UDP-Notif header for private use.
>> A use case is the encoding flavors as explained in -19 iteration, but 
>> an user may put internal references (URIs of a server, or any other 
>> info) that are needed for their collectors to correctly decode the 
>> message.
>> See this as simply "having an option for use by private 
>> encodings/uses of the protocol".
>> It's not more than that, an option that is reserved for private uses.
>>
>> @Med:
>> Thanks for the comments.
>> See inline for the rest of the points.
>>
>>> On 14 Feb 2025, at 14:17,mohamed.boucadair@orange.comwrote:
>>>
>>> Hi Alex,
>>> Thanks for the follow-up.
>>> Please see inline.
>>> Cheers,
>>> Med
>>> *De :*Alex Huang Feng <alex.huang-feng@insa-lyon.fr>
>>> *Envoyé :*mardi 11 février 2025 11:57
>>> *À :*BOUCADAIR Mohamed INNOV/NET <mohamed.boucadair@orange.com>
>>> *Cc :*Per Andersson 
>>> <per.ietf@ionio.se>;draft-ietf-netconf-udp-notif@ietf.org;netconf@ietf.org
>>> *Objet :*Re: [netconf] WGLC for udp-notif
>>> Dear Med, NETCONF WG,
>>> Thanks a lot for the (very) detailed review and proposals. They have 
>>> been very useful.
>>> I have been working on integrating these (and other suggestions from 
>>> the WGLC) into the -19 iteration: 
>>> https://github.com/netconf-wg/udp-notif/blob/main/draft-ietf-netconf-udp-notif-19.txt
>>> The rfcdiff: 
>>> https://author-tools.ietf.org/diff?doc_1=draft-ietf-netconf-udp-notif-18&url_2=https://raw.githubusercontent.com/netconf-wg/udp-notif/refs/heads/main/draft-ietf-netconf-udp-notif-19.txt 
>>> <https://author-tools.ietf.org/diff?doc_1=draft-ietf-netconf-udp-notif-18&url_2=https://raw.githubusercontent.com/netconf-wg/udp-notif/refs/heads/main/draft-ietf-netconf-udp-notif-19.txt>
>>> */[Med] The changes are in the good direction. I appreciate that you 
>>> added a new appendix to illustrate the use of the private encoding 
>>> option, but I’m still not comfortable with having this in a PS./*
>>> *//*
>>> Hoping this iteration addresses your concerns.
>>> See also inline.
>>>
>>>
>>>     On 31 Jan 2025, at 09:44,mohamed.boucadair@orange.comwrote:
>>>     Hi all,
>>>
>>>     I support this effort. Many thanks to the authors for taking
>>>     care of this.
>>>
>>>     # Detailed Review
>>>
>>>     I think that there are still some places where the spec needs to
>>>     be updated. There is also room to simplify a bit and focus on
>>>     the core functions (e.g., remove the private encoding; that part
>>>     is underspecified anyway and don't see how this can be included
>>>     in a standard).
>>>
>>>     My detailed review, comments, and suggestions can be found at:
>>>     *
>>>     pdf:https://github.com/boucadair/IETF-Drafts-Reviews/blob/master/2025/draft-ietf-netconf-udp-notif-18-rev%20Med.pdf
>>>     *
>>>     doc:https://github.com/boucadair/IETF-Drafts-Reviews/raw/refs/heads/master/2025/draft-ietf-netconf-udp-notif-18-rev%20Med.doc
>>>
>>>     # Options, Segmentation, and CC
>>>
>>>     The segmentation and congestion control are key features that
>>>     need some more work, IMO. The authors may look into the similar
>>>     work in that area (e.g., RFC9177 for both segments/CC, and the
>>>     FRAG option in the UDP option spec
>>>     (draft-ietf-tsvwg-udp-options-38#11.4)). I'm not saying that
>>>     those can be reused as such, but simply suggesting that you look
>>>     into those and grab whatever useful here. For example,
>>>      * 9177 has guards to protect the network form overloads due to
>>>     flying a large number of blocks/segments.
>>>      * UDP-option require the FRAG to be the first option (to
>>>     accommodate hw acceleration, etc.), while udp-notif requires the
>>>     options to be ordered (without any rationale/apparent benefit)
>>>
>>> This has been changed to only requiring the segmentation placed in 
>>> the first position.
>>> */[Med] This looks better. Thanks./*
>>> I have been discussing with the authors about the ordered options. 
>>> The main reason behind this was to prepare future allocations of 
>>> UDP-Notif options, so that implementations could already expect the 
>>> positioning of these options.
>>>
>>>
>>>     Also, the segmentation is discussed independent of the DTLS,
>>>     which I think requires some checks from the authors, especially
>>>     that DTLS requires records to fit within a single datagram (that
>>>     is, it does not handle fragmentation for application data).
>>>
>>> I added a sub-section in DTLS section:
>>> [RFC9147] states that DTLS message may be fragmented into multiple
>>> DTLS records.  A DTLS message carrying a UDP-Notif message SHOULD fit
>>> within a single datagram to avoid DTLS fragmentation.
>>> Implementations SHOULD account for DTLS overhead when determining the
>>> maximum UDP-Notif notification message size.
>>> */[Med] ACK/*
>>>
>>>
>>>
>>>     The document says that the seg num does not wrap around (while
>>>     mandating the initial value to be 0). It is unlikely to exceed
>>>     32 765 segments. Rather, I suggest to add a guard in the
>>>     security section to discard segments when they exceed a certain
>>>     number because this can be used as an abuse to require
>>>     computation resources to reassemble a large number of segments.
>>>     Knobs to control those should be supported.
>>>
>>> We added:
>>> A receiver collecting segmented UDP-Notif messages SHOULD have a
>>>  configurable parameter to discard segments when they exceed a certain
>>>  amount of segments.  The generation of too many segments by a
>>>  publisher can be used as an abuse to require computation resources
>>>  for reassembling large messages at the receiver.
>>> *//*
>>> */[Med] Thanks. I guess a parameter is missing to control that in 
>>> the YANG module./*
>> The YANG module is for configuring the publisher, not the receiver.
>>>
>>>
>>>     # Consistency with 8639
>>>
>>>     There is a need to be consistent with the transport reco in
>>>     RFC8639.For example, this part is not followed:
>>>
>>>     "A specification for a transport MUST identify any encodings
>>>     that are supported. If a configured subscription's transport
>>>     allows different encodings, the specification MUST identify the
>>>     default encoding."
>>>
>>>     I trust you will check that section again.
>>>
>>> This statement has been raised multiple times on the ML: 
>>> https://mailarchive.ietf.org/arch/msg/netconf/7tqFOjLnaKNKT2BHwFHco2gwbCY/
>>> So far, the consensus from the WG is to ignore this statement and 
>>> enable the discovery through other mechanisms: 
>>> https://www.rfc-editor.org/errata/eid6211
>>> *//*
>>> */[Med] We need to explicitly mention that we deviate from that MUST 
>>> and explain the rationale./*
>> How about the following? (added in Sec 3.3):
>>    Subscribed Notifications [RFC8639] states that a transport MUST
>>    identify a default encoding.  However, as per [Errata-6211],
>>    Subscribed Notifications does not require to define a default
>>    encoding.
>>>
>>>
>>>     # YANG
>>>
>>>     It is unfortunate that the version that is being last called
>>>     wasn't checked to be clean vs. yang validation.It not late to
>>>     fix those, though :-)
>>>
>>> Fixed :)
>>>
>>>
>>>     The YANG module includes a provision for managing keepalives,
>>>     but the use of these is not covered in the main spec.
>>>
>>> Keepalives are part of the tlsc:tls-client-grouping.
>>> *//*
>>> */[Med] That’s not a reason to import it here! You can disable that 
>>> part if there is no actual use in this context./*
>> Good point. We have removed the keep-alives-related leaves.
>>> *//*
>>>
>>>
>>>     Suggest to add parameter to control the timer/resources to store
>>>     fragments, rate-limit sending of segments, etc.
>>>
>>>
>>>     Aaah, please update the security section to cover YANG cons (see
>>>     the template
>>>     inhttps://datatracker.ietf.org/doc/html/draft-ietf-netmod-rfc8407bis-22#name-security-considerations-sect)
>>>
>>> Added.
>>> */[Med] Thanks. 8407bis does not need to be listed as normative. The 
>>> same applies for/*RFC6242, RFC8446. Please double check.
>> Thanks for the pointers !
>> Fixed.
>>
>> Cheers,
>> Alex
>>
>>> Cheers,
>>> Alex
>>>
>>>
>>>
>>>     Also, included some proposals to better structure the various
>>>     registries.
>>>
>>>     Hope this is useful.
>>>
>>>     Cheers,
>>>     Med
>>>
>>>
>>>         -----Message d'origine-----
>>>         De : Per Andersson <per.ietf@ionio.se>
>>>         Envoyé : jeudi 30 janvier 2025 16:07
>>>         À :netconf@ietf.org
>>>         Objet : [netconf] WGLC for udp-notif
>>>
>>>
>>>         Hi!
>>>
>>>         This email begins a two-week WGLC on:
>>>
>>>         UDP-based Transport for Configured Subscriptions
>>>
>>>         Please take time to review this draft and post comments by
>>>         February 13.  Favorable comments are especially welcomed.
>>>
>>>     ____________________________________________________________________________________________________________
>>>     Ce message et ses pieces jointes peuvent contenir des
>>>     informations confidentielles ou privilegiees et ne doivent donc
>>>     pas etre diffuses, exploites ou copies sans autorisation. Si
>>>     vous avez recu ce message par erreur, veuillez le signaler
>>>     a l'expediteur et le detruire ainsi que les pieces jointes. Les
>>>     messages electroniques etant susceptibles d'alteration,
>>>     Orange decline toute responsabilite si ce message a ete altere,
>>>     deforme ou falsifie. Merci.
>>>
>>>     This message and its attachments may contain confidential or
>>>     privileged information that may be protected by law;
>>>     they should not be distributed, used or copied without
>>>     authorisation.
>>>     If you have received this email in error, please notify the
>>>     sender and delete this message and its attachments.
>>>     As emails may be altered, Orange is not liable for messages that
>>>     have been modified, changed or falsified.
>>>     Thank you.
>>>
>>>     _______________________________________________
>>>     netconf mailing list --netconf@ietf.org
>>>     To unsubscribe send an email tonetconf-leave@ietf.org
>>>
>>> ____________________________________________________________________________________________________________
>>> Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
>>> pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
>>> a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
>>> Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.
>>>
>>> This message and its attachments may contain confidential or privileged information that may be protected by law;
>>> they should not be distributed, used or copied without authorisation.
>>> If you have received this email in error, please notify the sender and delete this message and its attachments.
>>> As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
>>> Thank you.
>