IETF Logo Mail Archive

Re: [netmod] New Version Notification for draft-ma-netmod-immutable-flag-07.txt

Kent Watsen <kent+ietf@watsen.net> Mon, 03 July 2023 15:12 UTC

Return-Path: <010001891c4f75ef-2a386ed9-a4b7-4f2d-aa0d-a498df88efb2-000000@amazonses.watsen.net>
X-Original-To: netmod@ietfa.amsl.com
Delivered-To: netmod@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D029C151535 for <netmod@ietfa.amsl.com>; Mon, 3 Jul 2023 08:12:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=amazonses.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ux0GAmrTRAnY for <netmod@ietfa.amsl.com>; Mon, 3 Jul 2023 08:11:58 -0700 (PDT)
Received: from a48-95.smtp-out.amazonses.com (a48-95.smtp-out.amazonses.com [54.240.48.95]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40AC3C151532 for <netmod@ietf.org>; Mon, 3 Jul 2023 08:11:57 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=224i4yxa5dv7c2xz3womw6peuasteono; d=amazonses.com; t=1688397117; h=From:Message-Id:Content-Type:Mime-Version:Subject:Date:In-Reply-To:Cc:To:References:Feedback-ID; bh=gOf4OgMLmiyc1mnunblASSKv6OqG+gYqis53smVupeE=; b=MLfhqfDyzTINJ8XMvksSVGSxdPxrKPoGZYdTwXdoZ917yoGVgGUkE+MqErtN9XSc ms2WQCyiHz2HWiYdEgCzEbQCZRloLGT83UOLJDhEwXWOJcxQUfsyf5XfmOcFB+tUzQA tI6GH8VQqeJP8N6fbmHKM7DTuheS++gWwXZELLx4=
From: Kent Watsen <kent+ietf@watsen.net>
Message-ID: <010001891c4f75ef-2a386ed9-a4b7-4f2d-aa0d-a498df88efb2-000000@email.amazonses.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_1B65390E-DC69-44A2-BBC8-AC8ED7A16EE0"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.600.7\))
Date: Mon, 03 Jul 2023 15:11:56 +0000
In-Reply-To: <5d3d8aa7b2f6496dbcf129cc7ce31a3a@huawei.com>
Cc: "Rob Wilton (rwilton)" <rwilton@cisco.com>, "netmod@ietf.org" <netmod@ietf.org>
To: "maqiufang (A)" <maqiufang1=40huawei.com@dmarc.ietf.org>
References: <9a7d1b8bc5a84ed086816c0e64a6b869@huawei.com> <0100018878be1759-3cc2ba8d-7a67-4c6e-88c6-abfd98441495-000000@email.amazonses.com> <BY5PR11MB41969B4B6E51E261F0404077B54EA@BY5PR11MB4196.namprd11.prod.outlook.com> <fd193929826847af8d2eadf56c8333c5@huawei.com> <BY5PR11MB4196386EEC680EC0D3F2E844B52AA@BY5PR11MB4196.namprd11.prod.outlook.com> <5d3d8aa7b2f6496dbcf129cc7ce31a3a@huawei.com>
X-Mailer: Apple Mail (2.3731.600.7)
Feedback-ID: 1.us-east-1.DKmIRZFhhsBhtmFMNikgwZUWVrODEw9qVcPhqJEI2DA=:AmazonSES
X-SES-Outgoing: 2023.07.03-54.240.48.95
Archived-At: <https://mailarchive.ietf.org/arch/msg/netmod/zN0YIsLFmZvT94QZ7dothibZrWA>
Subject: Re: [netmod] New Version Notification for draft-ma-netmod-immutable-flag-07.txt
X-BeenThere: netmod@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NETMOD WG list <netmod.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netmod>, <mailto:netmod-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netmod/>
List-Post: <mailto:netmod@ietf.org>
List-Help: <mailto:netmod-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netmod>, <mailto:netmod-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Jul 2023 15:12:02 -0000

Cherry picking a few items below.


> [Rob Wilton (rwilton)]
> I think that the document is unclear about how it interplays with the system datastore, e.g., I find very few references to the system datastore, so I think that it would be helpful for that to be clarified.
> [Qiufang] Sure. That’s true, most of the references to system datastore document only appear in the use case appendix, I agree that this should be more explicit, to point out that only the server can create immutable configuration, and thus immutable data appears in <system>(if exists). A client may create a same value of immutable node as in <system> (e.g., to fulfil leafref constraints), but is not allowed to modify or override (https://www.ietf.org/archive/id/draft-ietf-netmod-system-config-01.html#section-5.4) immutable node with different values. Will clarify in the next version.
> But I think we don’t necessarily want immutable flag to be coupled with system datastore, that is to say, even a server doesn’t implement a <system> datastore, it could still be possible to have non-modifiable system configuration somewhere (e.g., in <operational>), and thus an immutable flag could be helpful in this case. Make sense?

The WG extracted the immutable-flag idea out of, at that time, the “with-system” draft, for this reason.

However, I only recall one case used for justification (see below).  It would be good to identify others cases.

The one case I recall, is when a device implements the concept of sub-devices, whereby NETCONF-clients connect to the sub-device, and have the illusion of being connected to a real device, using the same YANG and everything, just with lesser access.  For instance, the parent/host device may be able to set, e.g., the MTU on an interface shared with a sub-device, but the MTU value is immutable to sub-device NC-clients.

This validity of this case is questionable.  Specifically, that it is a case independent of system configuration at all.  It seems reasonable to opine that the MTU is, in fact, system configuration from the POV of the NC-client.  



>> If this is the case, then I’m not sure that I understand the value of the “extension immutable”, can you give examples of where this would be useful please?
> 
> [Qiufang] The “extension immutable” is considered to be used if a particular data node is always considered to be immutable independent of any its instance(s).
> A YANG extension makes immutability even visible for the client at implementation time (not just runtime), Therefore, the client has the opportunity to avoid error response in its NMS design/development time due to attempts to override immutable configuration.
> We do have an open issue regarding should the "immutable" metadata annotation also be returned for nodes described as “extension immutable” so that there is a single source of truth.

Regarding the open-issue.  Food for thought.

Assuming a client supports servers implementing this YANG module, how often do we expect the client to request configuration (get-config) with the immutable annotation included?  Would it be all the time, or only when a server returns a write-access error?  

What’s the overhead and does it matter?  Recall, the flag is hierarchal, so if returned for immutable nodes also set in the YANG module, via the extension statement, there’s a compression that occurs that may result in the overhead not being so bad.



> Possibly, if the WG decides to adopt this work, it might be worth considering whether this would be better documented as part of the system datastore draft?
> [Qiufang] Since we have decided to limit the scope of immutable flag to system configuration and not support non-transactional APIs, it makes sense to me for it to be documented in the system datastore draft.
> But as I mentioned above, we would like the immutable flag to work even when the system datastore is not implemented.
> Even that said, I'm open to this, and okay to document it as part of system datastore draft if the WG thinks it's a good idea.

Currently the “system-config” draft has an Informative reference to this draft.  Should it be a Normative reference, and the “system-config” draft state definitively that system data is marked as such per the “immutable-flag” draft?

Or do you mean to fold the “immutable-flag” draft back into the “system-config” draft (merge two drafts into one).  I personally do not wish for this.  Even if another immutable-flag use is never found.


> Regards,
> Rob
>  
> Best Regards,
> Qiufang

Kent

v2.23.0 | Report a Bug | By Email