IETF Logo Mail Archive

Re: [Netconf] issues with processing onboarding information (zerotouch)

Andy Bierman <andy@yumaworks.com> Tue, 14 August 2018 22:40 UTC

Return-Path: <andy@yumaworks.com>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CF5D130E10 for <netconf@ietfa.amsl.com>; Tue, 14 Aug 2018 15:40:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=yumaworks-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bePgKds9h1em for <netconf@ietfa.amsl.com>; Tue, 14 Aug 2018 15:40:19 -0700 (PDT)
Received: from mail-lf1-x136.google.com (mail-lf1-x136.google.com [IPv6:2a00:1450:4864:20::136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 662B4130DC1 for <netconf@ietf.org>; Tue, 14 Aug 2018 15:40:19 -0700 (PDT)
Received: by mail-lf1-x136.google.com with SMTP id u202-v6so14942031lff.9 for <netconf@ietf.org>; Tue, 14 Aug 2018 15:40:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yumaworks-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=BOQ/q2URug60BcD/4alxkesvxDyLjzh5BFRZUXZugKs=; b=QpzpyruX/LNLeu6lK+aQQ/kh+6gPGxRA63sPzrxPxwupizs8MZPXjo0GSybTUAdR5v eUfB1vqVESZFH5b9wNZg2nR4X7/YFPWMSXoHtESWiX25Y/EjuFiFUwdHQiI2B2gFho2A 28syK9eJkHkVqvNOvGgwaYNTOfiB4afMBQDQcrVffVMzuAvFjV75MYBOawVqu7EqySTw 4K96tWbVSNia+BXgRusUkUCm9UIBNCMI6SE88hWiU5hYOPkP1CXJV6QJVEvyus2HNDSk to/0JuncpGyC9GTEcVzzDw4ylEiihmT11MCvOSWwkuINsHVf6fDeMIUszhH0ZvPYz+t/ VfWQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=BOQ/q2URug60BcD/4alxkesvxDyLjzh5BFRZUXZugKs=; b=OAgPIykjEET3ij3upngt6vY7986mL/rOmJEtcg0XZPC06qj5I6zVmRTDdP1yeXX9a6 I4XFXO1lOcEj9G+EnTDIbyfgzqFg9KPAwuIyL+FUUSDzL9gjdHIF53Q430WkaFAD79dJ kFEEKtuPgMJjTzOSQ6x9NXI5O9iy3SjBHLNS5hdEGDgpVcUFXbhSVpXL861khBX4rPfU CG0YQkx6MPjG72XXOdzuFc0iMENyx/tHBtQ1yUitG7QyWLf20qsoW+s+07YbOEQxjHJk 2MmcZNpD43xgpbP7tGpPEpW7VFAMyHn80AHGmHtg9s5YpY7JCChhSiiZ3b+RlOB1wqjR /T1g==
X-Gm-Message-State: AOUpUlFWeQmkDmBaZuVUut7+1iYMxcCq5qQzRgiIeMY5XAua+1qbOjQh iaZFXMZAbHjbu7SsuwesReotWUM1mqyC+RFvGfagJQ==
X-Google-Smtp-Source: AA+uWPyR0IJcO0PltGXUoOSVXPGQsINegoi3MdWhnwPnU4a7hvpsZXpDKxwppTU2bkAHYjG0cwGDBVOaZy6yi/uDCOA=
X-Received: by 2002:a19:b24e:: with SMTP id b75-v6mr14378588lff.11.1534286417174; Tue, 14 Aug 2018 15:40:17 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a19:aa46:0:0:0:0:0 with HTTP; Tue, 14 Aug 2018 15:40:16 -0700 (PDT)
In-Reply-To: <20180814.231720.2109244537493128545.mbj@tail-f.com>
References: <F192C17C-E9EE-4C42-AA7E-3059ACCE9A61@juniper.net> <20180814.121024.510147117520021210.mbj@tail-f.com> <BB160F25-771C-429E-A046-8096F2ADEB44@juniper.net> <20180814.231720.2109244537493128545.mbj@tail-f.com>
From: Andy Bierman <andy@yumaworks.com>
Date: Tue, 14 Aug 2018 15:40:16 -0700
Message-ID: <CABCOCHTxmwF5aZWDNRoA+X2L4tHGzOWtZx8ZbQLYFjYZdgyygA@mail.gmail.com>
To: Martin Bjorklund <mbj@tail-f.com>
Cc: Kent Watsen <kwatsen@juniper.net>, Netconf <netconf@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000e135cc05736ce4a5"
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/ulLf6uORQVB6zl5uF_0ZXG2eEM0>
Subject: Re: [Netconf] issues with processing onboarding information (zerotouch)
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Network Configuration WG mailing list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Aug 2018 22:40:23 -0000

On Tue, Aug 14, 2018 at 2:17 PM, Martin Bjorklund <mbj@tail-f.com> wrote:

> Kent Watsen <kwatsen@juniper.net> wrote:
> >
> > >> Perhaps.  The text could just say "the device must, on error, exit the
> > >> bootstrapping sequence leaving behind no state".
> > >
> > > But even this might not be necessary in some environments.  I think
> > > this whole notion of dealing with state associated with script
> > > execution should be left to implementations to deal with.  It would be
> > > ok if this document had some kind of Implementation Notes where things
> > > like this could be discussed (w/o any 2119 language though).
> >
> > This particular point was raised both offline as well as from the SecDir.
> > From SecDir:
> >
> >   """
> >   I think it's already clear what an error in paragraph 6 is. What I
> >   found unclear was what to do with errors in paragraphs 6 or 7. Yes,
> >   don't go on to the next step, but what about: In paragraph 6, should
> >   the device rollback any partial config update if there's an error?
> >   In paragraph 7, should the device rollback all config from paragraph
> >   6 if there's an error?
> >   """
>
> But this is a bit different than having cleanup parameters to the
> scripts.  This seems to ask for a clarification that the config must
> be committed all-or-nothing.  I think that it would be good to make
> this clarification.
>
>

I would prefer to allow vendors some implementation flexibility.
The boot procedure can be complex and the "startup" config may
be partially derived from internal components.  The bootstrap config
may in fact be invalid until the system finishes its boot sequence.
(i.e., implementation-specific stuff happens to convert <running>
to <intended>)


Andy

Also, in your original email in this thread you had
>
>  c) change how script errors are handled from being "device
>     reset" to "the script MUST not leave behind any state".
>     This removes a potentially expensive reset, by shifting
>     the onus to the script writers to do the right error
>     handling logic.  Seems dangerous, but I think that it's
>     fair to assume that the script can be written this way.
>
> Ok.  OTOH I don't think that the text "the device MUST reset
> itself in such a way that wipes out any bad state the script may have
> left behind." implies that the reset is expensive.
>
>
> /martin
>
>
>
>
> > Thus, I think we need at least the high-level statement.
> >
> >
> > Kent // author
> >
>
> _______________________________________________
> Netconf mailing list
> Netconf@ietf.org
> https://www.ietf.org/mailman/listinfo/netconf
>

v2.23.0 | Report a Bug | By Email