IETF Logo Mail Archive

Re: [Rift] AD Review of draft-ietf-rift-rift-12 (Part 2a)

Alvaro Retana <aretana.ietf@gmail.com> Fri, 02 April 2021 14:08 UTC

Return-Path: <aretana.ietf@gmail.com>
X-Original-To: rift@ietfa.amsl.com
Delivered-To: rift@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB54C3A1807; Fri, 2 Apr 2021 07:08:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hf2yXt4Yah0j; Fri, 2 Apr 2021 07:08:54 -0700 (PDT)
Received: from mail-ej1-x62f.google.com (mail-ej1-x62f.google.com [IPv6:2a00:1450:4864:20::62f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 62AC23A1804; Fri, 2 Apr 2021 07:08:53 -0700 (PDT)
Received: by mail-ej1-x62f.google.com with SMTP id n2so1342848ejy.7; Fri, 02 Apr 2021 07:08:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:in-reply-to:references:mime-version:date:message-id:subject:to :cc:content-transfer-encoding; bh=OI1jb7/UDosxXdrntfshjO1dLKTovHL5M+QPI4v846c=; b=jXvMqEB5VhWxP0XpmEmUUcGQrN7jYG80j2E00VW9KIlDgepJtuMq6OYfyLFELhcS/B rxCmoUhXJaSUZc+LG0wbgecHVUf7yoU1Umzqlxsg1MUwpx6I6hjioecXXBDatzHglkGJ 0edH5VaBULynyDMea0XqQ2+MVhlMNSjC14E9NiPCadHUbkPMvmZbUu69l0RnJE47RUuz XGFuRBne7AztLZegzCHCzXA4cMqO79i3ZWwdPoCJuiuw33T8+DtCP4TYr39Fm+UBlMsx qADCw9ScVO8q10K6xYYm2n8onAsqmqzBwI/ByHNawhPrKcJU+WqNXEyXqm3+u6HKENaF BLsA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:in-reply-to:references:mime-version:date :message-id:subject:to:cc:content-transfer-encoding; bh=OI1jb7/UDosxXdrntfshjO1dLKTovHL5M+QPI4v846c=; b=jrncCcfG2eIaot12vRp+9sCSAzMIDniMarkaBVsAj5yvhjosbBgCDpaU6bChkEtXIU cnb37PgDguQ9m1kNSJYz6etLNv3Ml5ot9IJm+WXm1ANbFZsXhmAINghuDmDgNHdSaamB jAprO5Ufj4n4bRag8jqDPFVh0p0d1nNwTS2KhhEHTAxWVgTsZ5vQNz25BS1A8pX4BFJf Q3hjW0AYsDdWzrBLLf7P55yjfN6A3WEI6UfLmuKw0WkxLktG3NuBjvYHa/F5pXS5Bxep VIlwqhkV70zEO4FUVngggyS3CLR+4lohx51wiViaLCyfv3uFx9eBWcoqx/lYo/MYiE41 2wFg==
X-Gm-Message-State: AOAM532w+CcRN+1wxx5yKRljWctSSLpy4IM86h4uyd3R0NwDktWejR60 Inr0MfbUJ5Gd8xZNHg+9evF9Zy3I+QLaHu2x+S8=
X-Google-Smtp-Source: ABdhPJwG2jiJMFsnKgFMU6FM2RkSvoob1+h6+1yq+NKquATxDeCusFH6BULJj8f55HwmSMrskEFLeFx/vf7uBTe3EMA=
X-Received: by 2002:a17:906:1c13:: with SMTP id k19mr14186799ejg.457.1617372529642; Fri, 02 Apr 2021 07:08:49 -0700 (PDT)
Received: from 1058052472880 named unknown by gmailapi.google.com with HTTPREST; Fri, 2 Apr 2021 07:08:48 -0700
From: Alvaro Retana <aretana.ietf@gmail.com>
In-Reply-To: <CA+wi2hMrreiiw9dEYAwFMnN_jD3FV5oF-ZpG-jtvfxtL2F83vg@mail.gmail.com>
References: <CAMMESsxBr0+UriSaTDVZMrFzU6DSiuC3-wO4+7HgX4nX7SLHmg@mail.gmail.com> <CA+wi2hNX2aFU2gYZp3JDGeSFdvWZSvJnJO2Gx3Ki-2ifOCvNeA@mail.gmail.com> <CAMMESswX=ENvZki2nuf6BF-2OxWS=NaoyAMrq5_jKSgS7cKuEw@mail.gmail.com> <CA+wi2hMrreiiw9dEYAwFMnN_jD3FV5oF-ZpG-jtvfxtL2F83vg@mail.gmail.com>
MIME-Version: 1.0
Date: Fri, 02 Apr 2021 07:08:48 -0700
Message-ID: <CAMMESsxBL6CNWKUT611C3xynoYhFSkWm+ZbUL9sWoh7+k1bE9g@mail.gmail.com>
To: Tony Przygienda <tonysietf@gmail.com>
Cc: "rift-chairs@ietf.org" <rift-chairs@ietf.org>, "rift@ietf.org" <rift@ietf.org>, "draft-ietf-rift-rift@ietf.org" <draft-ietf-rift-rift@ietf.org>, "Jeffrey (Zhaohui) Zhang" <zzhang@juniper.net>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/rift/KpZr7OnWwWY40OUDP7SFMPQNjkw>
Subject: Re: [Rift] AD Review of draft-ietf-rift-rift-12 (Part 2a)
X-BeenThere: rift@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of Routing in Fat Trees <rift.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rift>, <mailto:rift-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rift/>
List-Post: <mailto:rift@ietf.org>
List-Help: <mailto:rift-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rift>, <mailto:rift-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Apr 2021 14:08:57 -0000

On April 2, 2021 at 8:29:21 AM, Tony Przygienda wrote:


Tony:

> Alvaro, thanks for detailed input. it will be a good topic for today's weekly
> rift review hour. inline.

Please keep in mind that most of my comments are made thinking about
option (b) [*] -- but, so far, yours and Bruno's expectations are
different.  IOW, if I need to get in an (a) mindset then the comments
may be different.  I would really like to hear from others in the WG.

See a couple of things inline.

Thanks!

Alvaro.

[*] From the "What is being standardized in the base spec?" thread.



...
> > MD5 won't pass the Security scrutiny. I just did a quick scan and
> > found the Security Envelope, but no details on what is MTI in terms of
> > algorithms, etc.
>
> OK, I will cut out any reference to any specific algorithm. I just mention
> that the key id is basically also indicating the authentication schema used.

I actually meant it the other way around: there should be
mandatory-to-implement security.  The "limited domain" arguments don't
always work.  We can of course try...




...
> Is there some kind of precedence case where a base protocol spec
> has been held by its applicability draft? Sounds extremely new to me.

All kinds!  If it is not clear what the tradeoffs of the options are
-- that is the reason I keep pointing at rfc5706.

Again, let's settle the "What is being standardized in the base spec?"
discussion first.  I want to make sure that we're all on the same page
and that we agree on exactly what is needed.   This includes making
sure the rest of the IESG are in the loop and don't ask for things
later.

As I said at the top, my comments are made with one set of
expectations -- you're answering with a different set.  I know we had
talked (including the Chairs): we all heard the same words, but we
interpreted them differently.



...
> > > > 1454 2. the neighboring node is running the same MAJOR schema version
> > > > AND
> > ...
> > > > [minor] Are there any requirements related to the minor version?
> > >
> > > the schema versioning does describe that in excruciating details @
> > > beginning of appendix B. I'll fwd reference
> >
> > Sorry, I meant: for this step, does the minor version matter? Or is
> > it ok if just the major version is the same?
>
> I quote the spec:
>
> "
> 2. the neighboring node is running the same MAJOR schema version AND
>
> "
> The spec does explicitly NOT say anything about minor and this is intended
> exactly like this.

Great!  I wouldn't be doing my job if I didn't ask. ;-)

v2.23.0 | Report a Bug | By Email