Re: [netconf] Éric Vyncke's No Objection on draft-ietf-netconf-subscribed-notifications-24: (with COMMENT)

"Eric Voit (evoit)" <> Tue, 30 April 2019 23:29 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 7D52112012E; Tue, 30 Apr 2019 16:29:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -14.501
X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id xGLETlaoULp2; Tue, 30 Apr 2019 16:29:11 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 7B17A1200A3; Tue, 30 Apr 2019 16:29:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;;; l=7498; q=dns/txt; s=iport; t=1556666951; x=1557876551; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=dsrkGobkwnYY0tNrqN2l3xlrc+QEYlCvCmRqt2sONws=; b=LpiN3DG6V0c18c/2dG2spgIdnfnhgI2wk6jFehlFCGjIT+ohCMdHpjCf wisg4THgjn4Om1UE+EaV8rdCmUFuPRVjXcSSYWcAZ/gOLr+uV197ADfSk zVxcB+tPJelJsZK5bTXN5L8WZg4JUmRae7joEnZUOkRTIq6hNYx8tQC/f 4=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0APAAAp2chc/4ENJK1mGgEBAQEBAgE?= =?us-ascii?q?BAQEHAgEBAQGBUwMBAQEBCwGBZippgQQoCoQGlTCOMIogFIFnDgEBJYRIAhe?= =?us-ascii?q?GGyM2Bw4BAwEBBAEBAgECbRwMhUoBAQEDASMRQwIFCwIBCBIDBQIJHQICAjA?= =?us-ascii?q?VAgMLAgQBDQ2CT0yBew8PrxGBL4QyARNBhSwGgQsnAYtKF4FAP4ERgxI+gmE?= =?us-ascii?q?CAQIBgSoBAREBD4MaglgEinYOBII3jD6MImUJAoIJhhWELYdwI4INhjeMa4M?= =?us-ascii?q?JiQWFI4Egjg4CERWBMCYOI2VYEQhwFYJzATOBGIEDFxSITIU/QTEBkWcBDRc?= =?us-ascii?q?HgQSBIQEB?=
X-IronPort-AV: E=Sophos;i="5.60,415,1549929600"; d="scan'208";a="267161295"
Received: from ([]) by with ESMTP/TLS/DHE-RSA-SEED-SHA; 30 Apr 2019 23:29:10 +0000
Received: from ( []) by (8.15.2/8.15.2) with ESMTPS id x3UNTA0Z009685 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 30 Apr 2019 23:29:10 GMT
Received: from ( by ( with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 30 Apr 2019 19:29:09 -0400
Received: from ([]) by ([]) with mapi id 15.00.1473.003; Tue, 30 Apr 2019 19:29:09 -0400
From: "Eric Voit (evoit)" <>
To: "Eric Vyncke (evyncke)" <>, The IESG <>
CC: "" <>, Kent Watsen <>, "" <>, "" <>
Thread-Topic: =?utf-8?B?w4lyaWMgVnluY2tlJ3MgTm8gT2JqZWN0aW9uIG9uIGRyYWZ0LWlldGYtbmV0?= =?utf-8?B?Y29uZi1zdWJzY3JpYmVkLW5vdGlmaWNhdGlvbnMtMjQ6ICh3aXRoIENPTU1F?= =?utf-8?Q?NT)?=
Thread-Index: AQHU/4b2whg08n3Vakm6if6ntmzZoaZVT0zA
Date: Tue, 30 Apr 2019 23:29:09 +0000
Message-ID: <>
References: <>
In-Reply-To: <>
Accept-Language: en-US
Content-Language: en-US
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: []
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <>
Subject: Re: [netconf] =?utf-8?q?=C3=89ric_Vyncke=27s_No_Objection_on_draft-i?= =?utf-8?q?etf-netconf-subscribed-notifications-24=3A_=28with_COMMENT=29?=
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETCONF WG list <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 30 Apr 2019 23:29:15 -0000

Hi Éric, 

Thanks for the comments.  Thoughts in-line...

> From: Éric Vyncke, April 30, 2019 3:00 PM
> Éric Vyncke has entered the following ballot position for
> draft-ietf-netconf-subscribed-notifications-24: No Objection
> When responding, please keep the subject line intact and reply to all email
> addresses included in the To and CC lines. (Feel free to cut this introductory
> paragraph, however.)
> Please refer to
> for more information about IESG DISCUSS and COMMENT positions.
> The document, along with other ballot positions, can be found here:
> ----------------------------------------------------------------------
> ----------------------------------------------------------------------
> I appreciate the goal of this document to specify another telemetry streaming
> than gRPC.

Actually this work pre-dates gRPC based Telemetry.  But it took the documents time to get to the IESG. :-)

> As the I-D has been reviewed by YANG-doctors, I did not look in the
> YANG module.
> Comments
> --------
> C1) section 1.3, should the published check authorization before accepting an
> subscription? There is some text in section 3.1 is about authorization but I would
> prefer to have this authorization stated as early as possible

As you found later in the document, the publisher does authorization.  In older versions of this document we did have some of the authorization items up front in the intro.  But found it slowed down the intro of what was already a long document.  So we kept the intro as shorter by pushing that later in the doc.
> C2) end of section 1.3, "transport drafts" shouldn't rather be "transport
> specifications" ?

Works for me.  Change made.
> C3) end of section 1.3, upon termination decided by the publisher, is there a
> need for any explanation message sent to the subscriber?

Yes, the details on this are laid out as part of the state machines in Section 2.4.1 and 2.5.1.

> C4) is there any reason why the YANG module validation but the datatracker
> fails? Outdated/invalid PYANG ?

Exactly, the YANG validator errors are due to a solved bug in yanglint.    As Kent discusses in his shepherd writeup, the errors clear with new versions of yanglint. 
       [SHEPHERD] `pyang` and `yanglint` were used to validate the YANG module 
       defined in this document.  Note that Datatracker shows YANG validation 
       errors, but the module validates fine on my machine (I'm using yanglint
       0.16.110, whereas DataTracker is using yanglint 0.14.80).
FYI the bug was fixed in yanglint 0.16.59

> C5) section 2.2 "all event records on an event stream are to be sent", should
> there be a mention of publisher being out of ressource ?

Yes, there are several "out of resource" errors discussed across Section 2.4, 2.5, and in the YANG model.  You do note some of those below.  Again by delaying some of the discussions to later in the document the discussions are less fragmented in places.

> C6) section 2.4.1 "insufficient CPU or bandwidth available" but there may be
> other reasons (e.g. memory), what about using "insufficient CPU, bandwidth
> unavailable or other lack of ressource"

We have been assuming that to little memory is a function of stream's event buffers being exceeded, and that is a function of CPU being insufficient to handle the load from the stream.  So one error seems to cover the case without publisher developers having to make a judgement call on which of these was responsible for the lack of resources.  
> C7) for my curiosity, in section, how deep could realistically be a replay
> buffer? Minutes?

It could be hours and days for low volume events.   For example, for security cases such as the Integrity Management Architecture (IMA), you might need  to know every IMA related event since boot.
> C8) the term 'transport' is used quite often in the document but it seems to refer
> to NETCONF and not so much to my understanding of 'transport' in an IETF
> document (which is TCP, UDP, SCTP, ...). Is it obvious to the readers? If so, then I
> do not mind. Else, it may be useful to clarify in section 1.2

Hopefully it is obvious to the readers.   We went back-and-forth a few years ago on the proper terminology here.   I fear touching the word as touching terminology might induce unforeseeable side-effects.

> Nits
> ----
> N1) is there any reason why not all Cisco authors are not grouped together?
> (even if another one has changed affiliation)

No real reason.  Basically we had an initial order.  And then some authors moved companies, but we kept the order.  If this is an issue for the IESG, we can resequence.

> N2) abstract s/information/data/ also applicable in other sections IMHO

Either works for me honestly.   But so many people had an opinion over the years on this, and we have tweaked this so many times, that I am afraid of making a change here.
> N3) section 1.3, expand RPC even if obvious


> N4) section 2.3, expand QoS even if obvious


Thanks again for the review!