Re: [Netconf] Mirja Kühlewind's No Objection on draft-ietf-netconf-zerotouch-25: (with COMMENT)
Kent Watsen <kwatsen@juniper.net> Thu, 06 December 2018 16:40 UTC
Return-Path: <kwatsen@juniper.net>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4A9F8130E81; Thu, 6 Dec 2018 08:40:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.16
X-Spam-Level:
X-Spam-Status: No, score=-4.16 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.46, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QKrGtWRXqnuA; Thu, 6 Dec 2018 08:40:30 -0800 (PST)
Received: from mx0b-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ED964130E74; Thu, 6 Dec 2018 08:40:29 -0800 (PST)
Received: from pps.filterd (m0108157.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.27/8.16.0.27) with SMTP id wB6GdNTC002830; Thu, 6 Dec 2018 08:40:29 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=PPS1017; bh=FIglMgokA6kn85UncfQDkOLtPhKt85Ke6RCaLaW5caQ=; b=jpwmzKa0JfJ1YFXv6CYzneX7GLxMDKWvt9kBP6Vaii2FpBU4bNmtjZEwq/DsvFJIr7pM E2PDgvdsR+lapS3BG842e9ter/3+Gh2Ws5Cl4RA4NTHpY4V4r61e1BNGnq5Ch49g7VZN Wgrj4nQLr4zxZnf/aeDpuJWvXmCyhsfP5ztZpg67JDC9RoQCRGMLQUG5aItutWj3Itsh weV7OWkLXKsV8IGrG3Ep9/WUiPZBy6PZECVKjIL40A+vNcvrgSs/XguMH4yVgCVyAE0W 0ZK8S5MUYZsALerI3yfH3yruNpolQPi6XSfsO4k4ungD+yel0nJFQIJ97XlCXbbxk6Y5 VQ==
Received: from nam05-by2-obe.outbound.protection.outlook.com (mail-by2nam05lp2051.outbound.protection.outlook.com [104.47.50.51]) by mx0a-00273201.pphosted.com with ESMTP id 2p72fxgkr8-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Thu, 06 Dec 2018 08:40:29 -0800
Received: from DM6PR05MB4665.namprd05.prod.outlook.com (20.176.109.202) by DM6PR05MB4588.namprd05.prod.outlook.com (20.176.79.153) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1404.11; Thu, 6 Dec 2018 16:40:26 +0000
Received: from DM6PR05MB4665.namprd05.prod.outlook.com ([fe80::f0f3:20f0:2104:638c]) by DM6PR05MB4665.namprd05.prod.outlook.com ([fe80::f0f3:20f0:2104:638c%2]) with mapi id 15.20.1404.020; Thu, 6 Dec 2018 16:40:26 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: "Mirja Kuehlewind (IETF)" <ietf@kuehlewind.net>
CC: The IESG <iesg@ietf.org>, "draft-ietf-netconf-zerotouch@ietf.org" <draft-ietf-netconf-zerotouch@ietf.org>, "netconf-chairs@ietf.org" <netconf-chairs@ietf.org>, "netconf@ietf.org" <netconf@ietf.org>
Thread-Topic: Mirja Kühlewind's No Objection on draft-ietf-netconf-zerotouch-25: (with COMMENT)
Thread-Index: AQHUiN1CjGA1OI6J5Uy6mtg8q/bNCqVwo+uAgAFA+gD//7pVgA==
Date: Thu, 06 Dec 2018 16:40:25 +0000
Message-ID: <A2E1042D-7543-424A-8E4F-AC7AD6732A1F@juniper.net>
References: <154360369395.27402.18143504350346119719.idtracker@ietfa.amsl.com> <B0AF8548-5434-4A25-8D61-D80F6CB57FF6@juniper.net> <9964AC41-9B1E-4348-94C8-C9CED80D9147@kuehlewind.net>
In-Reply-To: <9964AC41-9B1E-4348-94C8-C9CED80D9147@kuehlewind.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.10.4.181110
x-originating-ip: [66.129.241.10]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM6PR05MB4588; 6:4ms+alUCQf6nYA1rWr9IX1TekVoS5Z2kEWeNI1Rbx+w/6a4gEGwYl7orsxUEvAsL5+brpEWLWrBOfQ0XXELANRsPoGxz6FmZEvDxdc8hbXnVTc8gTSS1yhIgrI3TleNkTa7BZY9ane9XUV3el7WAB0O0LzxA9U10mDsqckG4KufEnI24nAl7pTBMK7mFBetfWjjx/cZw+f5Unph/rtmYJu0qE5uxwM0noBD/qBN2hOHxk6BZlG+XkTnIYw8zFs0kimfKVozTWokUww4WPJEhO3eWqsFmaIlf7j/8hrOfCikGZXZXwz94Xc47x/6sfC/cQ6Sy6CaY5KYSUatKo4k7GPNu+PEC039/qiwNfA2r6gJrbRP/wbLZ4ZTwBIKZ/dMiZY6nTQ7k4w3XK0/kn2mxWhNxiftOFPjQnvTLW+Sb/B8//ZPoBoSGeBDtD308IOSIxUfebc/uX5mzuMKNnLb/ug==; 5:qKeRkEplQRg6vbB7EI+UmmFXaP4ZY/rgJZUu0mV4VGJ0THKXn6GnE2hjfcTvWF5tWi2nPgK1HXjlH8HLlq2YVJxLEJx0sxkunwUGKWdrNAdypXNVScAx0ZmwRZ9m0jNqd6CAvsYprUND8TjyMtEgCW08sDBVbnlhjRHRhScLEN4=; 7:75i2U+QqVbtdPl7T7do1COtnJ2zx6B/G0A56iIFINyHzy4ZnpBnI5TaCegpPEaqvw+1XR3ZQJ0GyPSxO5Sj2MWDvqIPJAMDanA5JGaXRMg/cYlVvc/+SDVGMSJbKPNCMbwLBr1Uh+lj1llunbe/B+Q==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: cd47cafd-c64d-445c-4bb1-08d65b99864c
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390098)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(4618075)(2017052603328)(7153060)(7193020); SRVR:DM6PR05MB4588;
x-ms-traffictypediagnostic: DM6PR05MB4588:
x-microsoft-antispam-prvs: <DM6PR05MB458821889ABEE7C32C19DCEAA5A90@DM6PR05MB4588.namprd05.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(10201501046)(3231455)(999002)(944501520)(52105112)(93006095)(93001095)(3002001)(6055026)(148016)(149066)(150057)(6041310)(20161123558120)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(20161123564045)(201708071742011)(7699051)(76991095); SRVR:DM6PR05MB4588; BCL:0; PCL:0; RULEID:; SRVR:DM6PR05MB4588;
x-forefront-prvs: 087894CD3C
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(136003)(346002)(366004)(39860400002)(396003)(376002)(13464003)(199004)(189003)(256004)(36756003)(14444005)(66066001)(5660300001)(6246003)(6306002)(58126008)(966005)(4326008)(99286004)(54906003)(486006)(186003)(6116002)(25786009)(102836004)(316002)(6436002)(26005)(3846002)(6512007)(53936002)(2906002)(106356001)(105586002)(8936002)(6916009)(575784001)(76176011)(83716004)(82746002)(11346002)(86362001)(6506007)(81156014)(33656002)(478600001)(71200400001)(561944003)(81166006)(53546011)(2616005)(446003)(224313004)(71190400001)(97736004)(224303003)(476003)(229853002)(68736007)(66574009)(7736002)(6486002)(14454004)(305945005); DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR05MB4588; H:DM6PR05MB4665.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-microsoft-antispam-message-info: b1T1R+cudXA1hZgZ3NtJlAV2+aIZ2vkhJxAeoFeVFWta3yHxRR8X0lbFzWIxZwoX/KlS9NRRhZehdl3uru6zRY1AQaqDA/oDM6/TR8x9///k0PmozN+9m0TLChzLi3j2S3th6hWUJIYQprxgi7f5puv/IWGtSlhH4SDDYi5KYWsyarF6C4ujjc+/VxvaTzfM07dp6tuFKOuAwnRUKK2mA4EySupcpfBScz03R2U4q0Y20anqyCvTdP6CndEyncSN07qVEdbcdE8e6QG3ct6+DGVF+40O7qQa7LoBuvjIxjNSfACpRmsywZLZgjqtbaL55qQWKeTr3B/mVWwROVsBj5qqb/h5O9ItuSBl38Anof0=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <6F700B5A7DBC23479AB134F9A926DFBE@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: cd47cafd-c64d-445c-4bb1-08d65b99864c
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Dec 2018 16:40:26.0149 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR05MB4588
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2018-12-06_05:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1812060142
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/sHrxU_KwF8FT7Nyc2M-_M1GywdM>
Subject: Re: [Netconf] Mirja Kühlewind's No Objection on draft-ietf-netconf-zerotouch-25: (with COMMENT)
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Network Configuration WG mailing list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Dec 2018 16:40:34 -0000
Hi Mirja, I assume you're happy with the Github commit, but what about the [uncommitted] proposal to add something like ", thus ensuring all possible bootstrapping options are attempted before starting over." to the end of the text in Section 5.6 discussed below? Kent -----Original Message----- From: "Mirja Kuehlewind (IETF)" <ietf@kuehlewind.net> Date: Thursday, December 6, 2018 at 10:49 AM To: Kent Watsen <kwatsen@juniper.net> Cc: The IESG <iesg@ietf.org>, "draft-ietf-netconf-zerotouch@ietf.org" <draft-ietf-netconf-zerotouch@ietf.org>, "netconf-chairs@ietf.org" <netconf-chairs@ietf.org>, NETCONF Working Group <netconf@ietf.org> Subject: Re: Mirja Kühlewind's No Objection on draft-ietf-netconf-zerotouch-25: (with COMMENT) Thanks! That helps! > Am 06.12.2018 um 02:40 schrieb Kent Watsen <kwatsen@juniper.net>: > > Hi Mirja, > > Thanks for your review! > Please see below for responses. > > Kent // principle author > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > >> Thanks for this well-written doc. >> >> One quick question which wasn't fully clear to me from the text >> in the doc: If onboarding fails at some point, is the device >> supposed to iterate over another bootstrapping source or stop >> completely? > > The device is to never stop trying to bootstrap, even in case of > a failed attempt. The hope is that that the device's failed > attempts will be noticed and rectified by an administrator of > the operator's orchestrator/NMS system. > > Checking the text to ensure this intent is conveyed, we find in > Section 5.3: > > Otherwise, the device MUST attempt to process the onboarding > information as described in Section 5.6. In either case, success or > failure, the device MUST exit the recursive algorithm, returning to > the bootstrapping sequence described in Section 5.2, the only > difference being in how it responds to the "Able to bootstrap from > any source?" conditional described in the figure in the section. > > So, in your case, it is a "failure" and thus the answer to the > conditional is "No". However, to your point, the current s5.2 > text says "Loop and/or wait for manual provisioning", which > isn't quite right. I have fixed this in the Github commit > link provided below. > > Continuing checking the text, we also find in Section 5.6: > > If the device encounters an error at any step, it MUST stop > processing the onboarding information and return to the bootstrapping > sequence described in Section 5.2. In the context of a recursive > algorithm, the device MUST return to the enclosing loop, not back to > the very beginning. > > Which I think is pretty good as is, though it might help to tack > onto the end of the last sentence ", thus allowing the logic to > attempt all possible bootstrapping options before starting over." > Thoughts? > > > >> One minor comment: >> Maybe spell out TPM and provide a reference. > > Fixed all three instances of "TPM". > > > > Here is the Github commit for the above changes, as well as a > minor/unrelated RFC4408-reference issue reported by Adam: > > https://urldefense.proofpoint.com/v2/url?u=https-3A__github.com_netconf-2Dwg_zero-2Dtouch_commit_0e86ec25f0f83c49dc1ec37e2b9f20bdec874a6f&d=DwIFAg&c=HAkYuh63rsuhr6Scbfh0UjBXeMK-ndb3voDTXcWzoCI&r=9zkP0xnJUvZGJ9EPoOH7Yhqn2gsBYaGTvjISlaJdcZo&m=tdPa_tMXTHo9_nEeMuGHsRyflARVGiqV5uz_oxwxZcg&s=IUawZTPKc9rN7G2W3eQO0S-BxaBUz8M1jWwj1GaprCI&e= > > Thoughts? > > Kent > > > >
- [Netconf] Mirja Kühlewind's No Objection on draft… Mirja Kühlewind
- Re: [Netconf] Mirja Kühlewind's No Objection on d… Kent Watsen
- Re: [Netconf] Mirja Kühlewind's No Objection on d… Mirja Kuehlewind (IETF)
- Re: [Netconf] Mirja Kühlewind's No Objection on d… Kent Watsen
- Re: [Netconf] Mirja Kühlewind's No Objection on d… Mirja Kuehlewind (IETF)