Re: [netmod] 答复: system configuration sync mechanism
Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de> Tue, 03 August 2021 04:15 UTC
Return-Path: <J.Schoenwaelder@jacobs-university.de>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 286063A1032 for <netmod@ietfa.amsl.com>; Mon, 2 Aug 2021 21:15:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=jacobsuniversity.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k8atgnV_gRpe for <netmod@ietfa.amsl.com>; Mon, 2 Aug 2021 21:15:29 -0700 (PDT)
Received: from EUR02-HE1-obe.outbound.protection.outlook.com (mail-eopbgr10073.outbound.protection.outlook.com [40.107.1.73]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C7853A1030 for <netmod@ietf.org>; Mon, 2 Aug 2021 21:15:28 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WwQWsLusYvPT/o+jJy2Rlyj8ekFYrzxoQA2rxtmymaYUn5S0UUCAG1SfCgLEkdXo1tsRLtGjEHXRzVyzciEj/pCpA6TA80DF1yOFPrpBJzMldkiBsRFO+2eIMrI9Kbjt7nv77T2oYhFO8pWb/BYv85FYKaT8i3iSUXRnr4A/SUvu+HfgQ+sni4/0Xfvkz7EvIbtigfFROiKXizIHV7D1jhMpQ5WRl57Qbto9aIBRikCMKNcX9jy8C/G7LRT9nbnTNK/17BPiOWIld6sFpiOYxTETSmKyxZfULO2PLLEMBCfTAtzIaj05mgNq6fgGWdEY9jwGf8uaBJIA4qrHUOpAbw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=42wCG6rxOUvvE1U1HplNlbkrQ1eTsLIYeY97+bILzsI=; b=cOyTQ/eu8eomZokBrnnk6v9EpSzczk1hV0K4ZofuCyAmBfvAis1HnaGTt5/5GVP8/WEJoUcgZi9dtQB32zqdfF7klmKmSHGGmVEE4KoidpjJK2nE7FoF7P3r/wr5PjBIfWRXbfFGwqn9YeMmbpn/BndzXxHIZUv6VtTY0KRSLLP/fI+j3uM3xhbMjY/qEuNMLq38Ha41mTKSLIXkqrGQ5bvrExbcVqsRnQQgssd2SAOJEzE1yqLH9HecRcjcSUaBvo1BkLxEGyC72zfE3qjxuZW4WlV4xhG9CtrXMmhHYQsKZ3rM1HBHhrCKDR5fxKZbHnriVyKpUOR773R59TUmNA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=jacobs-university.de; dmarc=pass action=none header.from=jacobs-university.de; dkim=pass header.d=jacobs-university.de; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jacobsuniversity.onmicrosoft.com; s=selector2-jacobsuniversity-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=42wCG6rxOUvvE1U1HplNlbkrQ1eTsLIYeY97+bILzsI=; b=CDDSju9OL5uKbncOGF2+G8ng8GPxBW188uMdJ4eGeNFW4C4qElqG8Eanwi2bus5D6cdVmI7PsDjEGEkwW2x2CWeQJLTP4kK9tuV18oZWnM3qOIC/g/8sBjQBWdEDHVQqpddQIFDoNR0jbQhDi8IpPYHRsneJIhyP78C13OcfbfU=
Authentication-Results: huawei.com; dkim=none (message not signed) header.d=none;huawei.com; dmarc=none action=none header.from=jacobs-university.de;
Received: from AM0P190MB0641.EURP190.PROD.OUTLOOK.COM (2603:10a6:208:194::23) by AM9P190MB1249.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:266::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4373.21; Tue, 3 Aug 2021 04:15:25 +0000
Received: from AM0P190MB0641.EURP190.PROD.OUTLOOK.COM ([fe80::58c1:599a:1d3d:cdeb]) by AM0P190MB0641.EURP190.PROD.OUTLOOK.COM ([fe80::58c1:599a:1d3d:cdeb%9]) with mapi id 15.20.4373.026; Tue, 3 Aug 2021 04:15:25 +0000
Date: Tue, 03 Aug 2021 06:15:23 +0200
From: Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de>
To: "Fengchong (frank)" <frank.fengchong@huawei.com>
Cc: Andy Bierman <andy@yumaworks.com>, Kent Watsen <kent+ietf@watsen.net>, Balázs Lengyel <balazs.lengyel=40ericsson.com@dmarc.ietf.org>, "netmod@ietf.org" <netmod@ietf.org>
Message-ID: <20210803041523.vpq2ltompplxn53p@anna.jacobs.jacobs-university.de>
Reply-To: Juergen Schoenwaelder <j.schoenwaelder@jacobs-university.de>
Mail-Followup-To: "Fengchong (frank)" <frank.fengchong@huawei.com>, Andy Bierman <andy@yumaworks.com>, Kent Watsen <kent+ietf@watsen.net>, Balázs Lengyel <balazs.lengyel=40ericsson.com@dmarc.ietf.org>, "netmod@ietf.org" <netmod@ietf.org>
References: <2d1262bc90fc49d08eb641365b959ea4@huawei.com> <0100017aab854793-eb989e55-8496-451b-84de-7f17cb0720d5-000000@email.amazonses.com> <add2ee3bb9094e1da6a3160824d5fdff@huawei.com> <0100017aee17493f-6b9b747c-f0f1-4a70-b929-aaa0350a555f-000000@email.amazonses.com> <aa3dfdb471f0430aa50c4e35b9672fb1@huawei.com> <AM8PR07MB823008D0A83507EFCBD2DDA3F0ED9@AM8PR07MB8230.eurprd07.prod.outlook.com> <CABCOCHT6yGFj84ryK9wghFnO52uQoLydKm-OU9M5+gqqs4jAzA@mail.gmail.com> <0100017b08feb7ef-71cbbcaa-256f-4947-ab27-9fdd40f2993a-000000@email.amazonses.com> <CABCOCHT59+sf92vzj=qE0KPxic-h6Nix2+Mp5veforS02Xchgg@mail.gmail.com> <b4ead22f31c44b5296e51138befd6816@huawei.com>
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <b4ead22f31c44b5296e51138befd6816@huawei.com>
X-ClientProxiedBy: PR1P264CA0016.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:19e::21) To AM0P190MB0641.EURP190.PROD.OUTLOOK.COM (2603:10a6:208:194::23)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from localhost (212.201.44.244) by PR1P264CA0016.FRAP264.PROD.OUTLOOK.COM (2603:10a6:102:19e::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4394.15 via Frontend Transport; Tue, 3 Aug 2021 04:15:24 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: a9e68b99-e0cf-4226-57be-08d956355170
X-MS-TrafficTypeDiagnostic: AM9P190MB1249:
X-MS-Exchange-Transport-Forked: True
X-Microsoft-Antispam-PRVS: <AM9P190MB12492E2CF9B89C9AC9F7122ADEF09@AM9P190MB1249.EURP190.PROD.OUTLOOK.COM>
X-MS-Oob-TLC-OOBClassifiers: OLM:8882;
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0P190MB0641.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(396003)(39830400003)(346002)(376002)(366004)(136003)(186003)(2906002)(26005)(52116002)(6496006)(1076003)(956004)(54906003)(316002)(786003)(8936002)(38350700002)(3450700001)(83380400001)(38100700002)(224303003)(85202003)(478600001)(66946007)(6486002)(86362001)(66556008)(66476007)(4326008)(5660300002)(85182001)(6916009); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: jacobs-university.de
X-MS-Exchange-CrossTenant-Network-Message-Id: a9e68b99-e0cf-4226-57be-08d956355170
X-MS-Exchange-CrossTenant-AuthSource: AM0P190MB0641.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 03 Aug 2021 04:15:25.0910 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: f78e973e-5c0b-4ab8-bbd7-9887c95a8ebd
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 42uF1gkwJuJPgSAnpumDDbDyqEofH6u6lARiS5Badm2/m5KjFekC9POYgw+hHsN2CiH4dFhGEKYvw9y4EY45PVe3piJfEkGYyk3BmnAqRoc=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM9P190MB1249
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/pH5XYP2a6rA9wHCNfAJLsdadx5s>
Subject: Re: [netmod] 答复: system configuration sync mechanism
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Aug 2021 04:15:34 -0000
On Tue, Aug 03, 2021 at 01:45:40AM +0000, Fengchong (frank) wrote: > Hi andy and all. > > I don’t think get-data with origin can solve the issues below: > > > 1. Some leafs like interface type CAN NOT be modified by user, but can be referenced by other config nodes(e.g. using leafref or occur in when/must). The validation will be fail if these leafs are not be configured by user now explicitly (we assume these leafs are optional and no default value). The interface type in the RFC 8343 module is config true. YANG does not allow you to refer to config false nodes in constraints that apply to config true nodes. A core principle is that the content of a configuration datastore can be validated without knowing the actual state of the system. > 2. Some instances are generated by system, but these instances can be referenced by other config nodes. The validation must be fail if these instances are not be recreated by user explicitly now. Yes, a configuration datastore is self-contained. If a client wants to configure the interface x, it has to define the interface x in the configuration. Note that this should not be confused with a system generating an interface x after probing the hardware. Note the difference between operational state, applied config, and running config. Let me add that the underlying model is that the client(s) have control over the configuration. A system making ad-hoc changes to the config (even with the best intentions) will be surprising. In this model, the only way to inject config into running on system boot is to have a client making changes to running following the normal procedures - at least conceptually. This means that conceptually the other clients need to be aware that there is a system client injecting configuration. If you follow this logic, it seems wrong to define a system datastore that is somehow magically merged into running - and it is not needed. > 3. User may need know what the original system configuration is, if we get data from <operational>, you may get the modified system configuration.(for example, user modify or template is expanded, or only active instances) If you have multiple clients managing shared configuration, then yes it is good if they are aware of what is going on. I am not sure yet that exposing other clients intentions via additional datastores and defining merge mechanisms and semantics is the way to go. > I don’t care about whether system datastore is imported to running or intended datastores. But I think if a config node reference a system node, the validation (running or intended datastores) will be successful even if the system node is not configured by user explicitly. I am concerned about having to define what "is imported" means precisely and whether moving to a model multiple datastores have to be merged before validation is the way to go. We already acknowledged that there are template expansions in some implementations without working out how they work. > Especially on the client side, if a client need validate all data retrieved from server, the validation SHOULD be successful. If system configuration are not imported to running, at a minimum, the client needs to know what the original system configuration is. Another way is adding with-system-used parameter to get-config operation to retrieved all user configuration and system configuration referenced by user configuration. Let me repeat, in the original model, the running configuration datastore is self-contained and can be validated without knowing additional datastores. /js -- Juergen Schoenwaelder Jacobs University Bremen gGmbH Phone: +49 421 200 3587 Campus Ring 1 | 28759 Bremen | Germany Fax: +49 421 200 3103 <https://www.jacobs-university.de/>
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism maqiufang (A)
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism maqiufang (A)
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism maqiufang (A)
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism maqiufang (A)
- Re: [netmod] system configuration sync mechanism Balázs Lengyel
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Kent Watsen
- [netmod] 答复: system configuration sync mechanism Fengchong (frank)
- Re: [netmod] 答复: system configuration sync mechan… Jürgen Schönwälder
- [netmod] 答复: 答复: system configuration sync mechan… Fengchong (frank)
- Re: [netmod] 答复: 答复: system configuration sync me… Jürgen Schönwälder
- Re: [netmod] 答复: system configuration sync mechan… Andy Bierman
- [netmod] 答复: 答复: system configuration sync mechan… Fengchong (frank)
- Re: [netmod] system configuration sync mechanism maqiufang (A)
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Jürgen Schönwälder
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Sterne, Jason (Nokia - CA/Ottawa)
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism Sterne, Jason (Nokia - CA/Ottawa)
- Re: [netmod] system configuration sync mechanism Sterne, Jason (Nokia - CA/Ottawa)
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Qin Wu
- Re: [netmod] system configuration sync mechanism Kent Watsen
- Re: [netmod] system configuration sync mechanism Andy Bierman
- Re: [netmod] system configuration sync mechanism Jan Lindblad (jlindbla)
- Re: [netmod] system configuration sync mechanism Sterne, Jason (Nokia - CA/Ottawa)
- Re: [netmod] system configuration sync mechanism Sterne, Jason (Nokia - CA/Ottawa)
- Re: [netmod] system configuration sync mechanism Sterne, Jason (Nokia - CA/Ottawa)