IETF Logo Mail Archive

Re: [Netconf] We NEED RESPONSES: WG Last Call ended for:draft-ietf-netconf-4741bis-04.txt

"Ersue, Mehmet (NSN - DE/Munich)" <mehmet.ersue@nsn.com> Wed, 06 October 2010 11:03 UTC

Return-Path: <mehmet.ersue@nsn.com>
X-Original-To: netconf@core3.amsl.com
Delivered-To: netconf@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1C63D3A7115 for <netconf@core3.amsl.com>; Wed, 6 Oct 2010 04:03:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.382
X-Spam-Level:
X-Spam-Status: No, score=-102.382 tagged_above=-999 required=5 tests=[AWL=0.217, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uPReAmX2hXlv for <netconf@core3.amsl.com>; Wed, 6 Oct 2010 04:03:53 -0700 (PDT)
Received: from demumfd001.nsn-inter.net (demumfd001.nsn-inter.net [93.183.12.32]) by core3.amsl.com (Postfix) with ESMTP id D716C3A710C for <netconf@ietf.org>; Wed, 6 Oct 2010 04:03:52 -0700 (PDT)
Received: from demuprx016.emea.nsn-intra.net ([10.150.129.55]) by demumfd001.nsn-inter.net (8.12.11.20060308/8.12.11) with ESMTP id o96B4p84016009 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Wed, 6 Oct 2010 13:04:51 +0200
Received: from demuexc024.nsn-intra.net (demuexc024.nsn-intra.net [10.159.32.11]) by demuprx016.emea.nsn-intra.net (8.12.11.20060308/8.12.11) with ESMTP id o96B4oY4022170; Wed, 6 Oct 2010 13:04:51 +0200
Received: from DEMUEXC006.nsn-intra.net ([10.150.128.18]) by demuexc024.nsn-intra.net with Microsoft SMTPSVC(6.0.3790.4675); Wed, 6 Oct 2010 13:04:30 +0200
x-mimeole: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Date: Wed, 06 Oct 2010 13:04:29 +0200
Message-ID: <80A0822C5E9A4440A5117C2F4CD36A64010A8A1D@DEMUEXC006.nsn-intra.net>
In-Reply-To: <20101006103533.GB52604@elstar.local>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [Netconf] We NEED RESPONSES: WG Last Call ended for:draft-ietf-netconf-4741bis-04.txt
Thread-Index: ActlQkpbJMGUR/FETG2Vzqp3pDyHCgAAr2Kg
References: <CB69B162C87647AE97AB749466633F54@BertLaptop> <4C9B3E60.5030000@bwijnen.net> <80A0822C5E9A4440A5117C2F4CD36A640106532D@DEMUEXC006.nsn-intra.net> <20101003172455.GA16616@elstar.local> <80A0822C5E9A4440A5117C2F4CD36A640106533B@DEMUEXC006.nsn-intra.net> <20101003205540.GA16936@elstar.local> <87y6abodxw.fsf@cesnet.cz> <20101006103533.GB52604@elstar.local>
From: "Ersue, Mehmet (NSN - DE/Munich)" <mehmet.ersue@nsn.com>
To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>, Ladislav Lhotka <lhotka@cesnet.cz>
X-OriginalArrivalTime: 06 Oct 2010 11:04:30.0019 (UTC) FILETIME=[3FA69930:01CB6546]
Cc: Netconf <netconf@ietf.org>
Subject: Re: [Netconf] We NEED RESPONSES: WG Last Call ended for:draft-ietf-netconf-4741bis-04.txt
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Network Configuration WG mailing list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/netconf>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Oct 2010 11:03:54 -0000

> > Apart from Security Considerations, text in Sec. 3 should be changed
> as
> > follows:
> >
> > OLD
> >
> >   All NETCONF messages MUST be well-formed XML, encoded in UTF-8.
> >
> > NEW
> >
> >   All NETCONF messages MUST be well-formed XML, encoded in UTF-8,
and
> >   MUST NOT contain the character sequence ']]>]]>'.
> 
> Still I believe it is the transport that has to deal with this. If a
> message contains ']]>]]>', a transport that can not handle this should
> either not accept to transport that message or have a mechanism to
> deal with it by quoting it or whatever. Pushing this issue up to the
> content layer just on the ground that the mandatory SSH transport is
> not totally robust seems odd from an architectural point of view.

It is true that NETCONF does not have any awareness of EOM character
sequence. NETCONF is aware of "well-formed XML" messages. The proposed 
text by Martin defines what NETCONF should do (on its level) if the XML 
message is not well-formed.

: NEW:
:    All NETCONF messages MUST be well-formed XML, encoded in UTF-8.  
:    If a server receives a message that is not well-formed XML, it MUST
:    reply with an 'operation-failed' error.

However, although EOM handling is not an issue on NETCONF level NETCONF 
has a concrete security thread if XML messages are not well-formed 
frequently. I proposed to discuss the security thread in the security
considerations section.

Mehmet

v2.23.0 | Report a Bug | By Email