IETF Logo Mail Archive

Re: [netmod] WGLC on draft-ietf-netmod-node-tags-06

Jan Lindblad <janl@tail-f.com> Tue, 19 April 2022 08:26 UTC

Return-Path: <janl@tail-f.com>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6CDB53A0817 for <netmod@ietfa.amsl.com>; Tue, 19 Apr 2022 01:26:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RmtyqtO1poPD for <netmod@ietfa.amsl.com>; Tue, 19 Apr 2022 01:26:12 -0700 (PDT)
Received: from mail.tail-f.com (mail.tail-f.com [46.21.102.45]) by ietfa.amsl.com (Postfix) with ESMTP id A18B13A0806 for <netmod@ietf.org>; Tue, 19 Apr 2022 01:26:12 -0700 (PDT)
Received: from smtpclient.apple (213-67-237-150-no99.tbcn.telia.com [213.67.237.150]) by mail.tail-f.com (Postfix) with ESMTPSA id 094321AE018C; Tue, 19 Apr 2022 10:26:09 +0200 (CEST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3696.80.82.1.1\))
From: Jan Lindblad <janl@tail-f.com>
In-Reply-To: <VI1PR0701MB23519C369E1D4346F13FCD70F0F29@VI1PR0701MB2351.eurprd07.prod.outlook.com>
Date: Tue, 19 Apr 2022 10:26:08 +0200
Cc: Qin Wu <bill.wu=40huawei.com@dmarc.ietf.org>, Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de>, "netmod@ietf.org" <netmod@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <04EABC0C-09B5-4F5D-B63B-3D3FE5812C19@tail-f.com>
References: <7bacf3e79dce46579ab6318de8f1f502@huawei.com> <VI1PR0701MB23519C369E1D4346F13FCD70F0F29@VI1PR0701MB2351.eurprd07.prod.outlook.com>
To: Balázs Lengyel <balazs.lengyel=40ericsson.com@dmarc.ietf.org>
X-Mailer: Apple Mail (2.3696.80.82.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/YgHcc7wTCeGioY9o4SFxYUVEM4Q>
Subject: Re: [netmod] WGLC on draft-ietf-netmod-node-tags-06
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Apr 2022 08:26:16 -0000

Balázs, Qin, WG,

>> - for each extension statement the following should be described
>>  + Changing this extension statement is a backwards-compatible change 
>> yes/no/editorial-only
> [Qin Wu] Can you provide an example for this issue or reference document, I can not find any guideline in RFC7950.
> 
> BALAZS: It is the first question you get from a customer at any model update/upgrade: are the changes backwards compatible?
> The modeler and the customer needs to understand whether a change in the extension statements is backwards compatible or not. 
> The new YANG versioning drafts also require this knowledge.
> E.g. 
> Removing the nacm:default-deny-all extension from a leaf is backwards compatible as all earlier operations will still work
> Adding the nacm:default-deny-all extension to a leaf is not  backwards compatible as writing to the leaf might not work anymore.

This is a great example of why backwards compatibility is a really hard subject.

A manager relying on nacm:default-deny-all might not be injecting the right NACM rules to make the managed system secure after the version change. While all management operations will succeed, the change opens up a security hole for managers unaware of the change. I believe such a change should not be described as backwards compatible.

My point is that while in the YANG versioning design team are working to define hard and fast rules for what constitutes backwards compatibility, reality is a few magnitudes more complex than any viable rule set.

Best Regards,
/jan

v2.46.0 | Report a Bug | By Email | System Status