IETF Logo Mail Archive

Re: [netmod] Adding system configuration to running [was: Re: Comments on NMDA-04]

Kent Watsen <kwatsen@juniper.net> Thu, 14 September 2017 20:31 UTC

Return-Path: <kwatsen@juniper.net>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 148E813208E for <netmod@ietfa.amsl.com>; Thu, 14 Sep 2017 13:31:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.02
X-Spam-Level:
X-Spam-Status: No, score=-2.02 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=juniper.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7Gr5xDMzi--p for <netmod@ietfa.amsl.com>; Thu, 14 Sep 2017 13:30:57 -0700 (PDT)
Received: from NAM02-BL2-obe.outbound.protection.outlook.com (mail-bl2nam02on0114.outbound.protection.outlook.com [104.47.38.114]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 44A6313207A for <netmod@ietf.org>; Thu, 14 Sep 2017 13:30:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=6NDRP6H2g5BBdpChS3jTg0qf9iWDW/jk11qTsEWa2Pw=; b=YR7ZZuTFpZGT7ITklKwHbmmBgq8bZ19GOpr8jVj7Y7sZlcMMbdEeoCNshbcjwBnrYN9LiFR2i+CeEMhSdajdYyV6NvHzp6I4569Lq5YZL2vrfdlNaDQfMCxTYVGrC0lt6r6PAMU8z7f/LpWmU8HgATSoaNWCY30uy7n1vR0/f9w=
Received: from BLUPR05MB275.namprd05.prod.outlook.com (10.141.22.149) by BLUPR05MB1969.namprd05.prod.outlook.com (10.162.224.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.77.5; Thu, 14 Sep 2017 20:30:54 +0000
Received: from BLUPR05MB275.namprd05.prod.outlook.com ([10.141.22.149]) by BLUPR05MB275.namprd05.prod.outlook.com ([10.141.22.149]) with mapi id 15.20.0035.010; Thu, 14 Sep 2017 20:30:54 +0000
From: Kent Watsen <kwatsen@juniper.net>
To: Andy Bierman <andy@yumaworks.com>, Robert Wilton <rwilton@cisco.com>
CC: "netmod@ietf.org" <netmod@ietf.org>
Thread-Topic: [netmod] Adding system configuration to running [was: Re: Comments on NMDA-04]
Thread-Index: AQHTLW8wucbTAKlDCUqNcTBQjUSYW6K0nVUAgAAEBAD///F1gA==
Date: Thu, 14 Sep 2017 20:30:54 +0000
Message-ID: <DF1AFB0F-53CB-40D2-B46F-2E5166705573@juniper.net>
References: <9ec6b2e4-36a7-87e6-59fa-828855235835@ericsson.com> <20170914.163239.143365521945928900.mbj@tail-f.com> <4ce3efcd-6e88-9390-1241-21fb89985a9a@ericsson.com> <4dc2014b-0355-ac0b-f9a0-06a2d73033c4@cisco.com> <CABCOCHQ64DUwH=4FHSDoxbSbugoo-OyrXDwq5_Evcrk+CjA43g@mail.gmail.com>
In-Reply-To: <CABCOCHQ64DUwH=4FHSDoxbSbugoo-OyrXDwq5_Evcrk+CjA43g@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.20.0.170309
authentication-results: spf=none (sender IP is ) smtp.mailfrom=kwatsen@juniper.net;
x-originating-ip: [66.129.241.10]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BLUPR05MB1969; 6:52PAH/9g51iqznZUvSZQF4BfWRxt/PiJDa5D7Ahklmg+fLHxI3fP+q8s4nrKrJ5HnA2sRpeYKNv53wLF6eBgdyE6CWX2k1MxEW1/jpidHb+gy9zUct5csyNcasIAIMsR2xzey2oQoVPHaLkxQsZj+EQdIq/Sz9cRLhxb9MM2ZwgvL63uq5dILKoL7QpH14EGkTsENn/Y2UaS85GgH+Hidho1teqxczrFYlFFKJJXofguCj44R43WhQuiAjjQqAfv0zC5qKrBKOJXfiJSp8nBzmL/w/W+bLEMjUsPkPN3dONyiUTXLTSHGotAifbpMAjw7e7NB3SGss58xbfnZVolwQ==; 5:/n18LDSjCBQpBE9aqC7XLHkmQI5Jp7XtYB/J53SOdviET/uWqc+aYrqBy4335EDr3jWEY7vKsh17RZmJRpV3NCuGxPsW4H7dT4w3iiY2IUlr0vBSQvpW/qnyyJsyISTg5mgpoAh9lQ4STpMPAwYbyQ==; 24:5/SyzScG/Jqhz2h+5Q3tVeQ8w9dbyfommdBCLseGuaAjzIFNSYUp1OxUmerFDAvIBXUmhS+fT4/m5XaRX0MFkKvmTw7tzqiFVJ7R++ANBUc=; 7:cEFyZZzaJItwN7xgPoueKRTOUMP/LFGQs7YXQSF6a1P7b5CM1FqQ/ZrC+S3jj/V+XfoIXM4YD0+N1WXBiLqBODjJuwDK8YwQQmZuHxJG/lh3mPHaJpgS/oUKVBhE3p3kvqK4TouU1qzlrFSGb6qvZ0U+aK5+8kcYAg1/qoGAbGHQU9fIZwFql49aXtfBO6Dq8QfK4GEVFEEaxEXHzb0dwcXPRIfv3kjjiNzFLP+DpXw=
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 60a35cde-cf3a-4418-837f-08d4fbaf7fc8
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254152)(48565401081)(300000503095)(300135400095)(2017052603199)(201703131423075)(201703031133081)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:BLUPR05MB1969;
x-ms-traffictypediagnostic: BLUPR05MB1969:
x-exchange-antispam-report-test: UriScan:(158342451672863)(21748063052155);
x-microsoft-antispam-prvs: <BLUPR05MB1969494784FCE3A28DB22A4FA56F0@BLUPR05MB1969.namprd05.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(2401047)(8121501046)(5005006)(93006095)(93001095)(3002001)(10201501046)(100000703101)(100105400095)(6055026)(6041248)(20161123564025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123555025)(20161123558100)(20161123560025)(20161123562025)(6072148)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:BLUPR05MB1969; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:BLUPR05MB1969;
x-forefront-prvs: 0430FA5CB7
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(346002)(376002)(199003)(189002)(33656002)(3280700002)(14454004)(2900100001)(101416001)(50986999)(7736002)(54356999)(76176999)(54896002)(478600001)(99286003)(229853002)(77096006)(8936002)(58126008)(6512007)(53936002)(68736007)(6486002)(6506006)(3660700001)(36756003)(66066001)(6306002)(189998001)(82746002)(4326008)(25786009)(102836003)(2906002)(6116002)(3846002)(106356001)(81156014)(8676002)(6436002)(83716003)(81166006)(105586002)(6246003)(2950100002)(5660300001)(86362001)(83506001)(97736004)(93886005)(316002); DIR:OUT; SFP:1102; SCL:1; SRVR:BLUPR05MB1969; H:BLUPR05MB275.namprd05.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_DF1AFB0F53CB40D2B46F2E5166705573junipernet_"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Sep 2017 20:30:54.6528 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLUPR05MB1969
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/RcCENXp8zxKKpJUGk-TBXmuNdnM>
Subject: Re: [netmod] Adding system configuration to running [was: Re: Comments on NMDA-04]
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Sep 2017 20:31:00 -0000



> I agree with Balazs that system-created nodes in running are quite common and
> the vendors doing it have no intention of changing it.

Of course, what else were they going to do pre-NMDA…and also before require-instance
false?  Green-field deployments wouldn't be encumbered with backwards-compatibility.
Existing implementations are in a bind, but I'd recommend following nmda-guidelines.

For UC1: the loopback would only show in <operational> (as an applied instance of a
config true leaf), and the leafref would be require-instance false.  When committing
configuration that referenced loopback, the server sees that the referenced leaf is not in
<running>/<intended>, but it could see that it is or is-not in <operational>.  And, if it
is not in <operational>, the server might return a warning to the client, or not, assuming
the  client will use other mechanisms to discover what configuration was not applied.

For UC2: similar response.  The server could return a warning (e.g., a synchronous
update) or the client can discover the unapplied config afterwards using other
mechanisms.


> If the added nodes need to be saved in non-volatile storage then then definitely
> belong in <running>.

Neither of Balazs's use-cases regard persisted data, at least I didn't read it that way.


> IMO the architecture is rather opaque wrt/ the interactions between datastores,
> especially the interactions between <running> and <intended>. Now it not only
> prunes inactive nodes, it adds system nodes?

A template in <running> could be flattened, which has the apparent side-effect
of creating nodes, but not any nodes, just those per the input from <running>.
As the draft says: <intended> does not persist across reboots; its relationship
with <running> makes that unnecessary.   Generically speaking, <running>
can contain processing instructions that are consumed at commit time to
simultaneously create the <intended> view, and these PIs are the only thing
that can cause a deviation between the two datastores.


> Maybe it is too early for NMDA to be making lots of rules about how
> YANG works with new (and unimplemented) datastores.

Juniper has the equivalent of <intended> already.  I think others said they had
something like it as well.


Kent // contributor

v2.23.0 | Report a Bug | By Email