Re: [Roll] Roman Danyliw's No Objection on draft-ietf-roll-unaware-leaves-25: (with COMMENT)

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Wed, 16 December 2020 08:50 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: roll@ietfa.amsl.com
Delivered-To: roll@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB30F3A03C9; Wed, 16 Dec 2020 00:50:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.598
X-Spam-Level:
X-Spam-Status: No, score=-9.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=kQeCgjZg; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=bViZqAVj
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1mcUgmiqqNrH; Wed, 16 Dec 2020 00:50:37 -0800 (PST)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DFE8E3A0365; Wed, 16 Dec 2020 00:50:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3494; q=dns/txt; s=iport; t=1608108636; x=1609318236; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=/74Z3wBmRAk5EtrEjfTav7C0DwkSNNOCkzFZjy9XknM=; b=kQeCgjZgY/r9VxguLQxqepEecE4tUvkrHxpMHiVRC3FpA5GoMyP0NjPw UawVhAieQfjanfNx2LxtV9nbGURoULzTYE9r+0a39PawFtmyrfDGzIw8+ yS219+W/w3CXvZTcY03v4hXfECME0zQ0cYlajq5yAdv41z8eUvRUcRIKv k=;
IronPort-PHdr: 9a23:s7a9zhLUZpkyq8eGa9mcpTVXNCE6p7X5OBIU4ZM7irVIN76u5InmIFeGvK8/h1LTQcPc8f0Xw+bVsqW1X2sG7N7BtX0Za5VDWlcDjtlehA0vBsOJSCiZZP7nZiA3BoJOAVli+XzoOkVPBID5fVKB6nG35CQZTxP4Mwc9L+/pG4nU2sKw0e36+5DabwhSwjSnZrYnJxStpgKXvc4T0oY=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0ABCABQydlf/5FdJa1YCh0BAQEBCQESAQUFAUCBT4FSUQd1Wy8uhD+DSAONW4EImAWCUwNUCwEBAQ0BASUIAgQBAYRKAheBWQIlOBMCAwEBCwEBBQEBAQIBBgRxhWEMhXMCAQMSEREMAQE3AQ8CAQgODAImAgICMBUQAgQBDQ0agwWCVQMuAQ6hKAKBPIhpdoEygwQBAQWBMwGDdhiCEAMGgQ4qgnWCaU5CgkSDciYbgUE/gRFDgiE1PoJdAoEyL4MVM4IsgkhjDQsrEIEYaA9gjzGCawE+pAeBBgqCdIkjkkqcVoVnlAWLDZFICIE4gxMCBAIEBQIOAQEFgW0jgVdwFYMkUBcCDY4hCxgUgzqFFIVEdAssAgYBCQEBAwl8hyctghcBAQ
X-IronPort-AV: E=Sophos;i="5.78,424,1599523200"; d="scan'208";a="827356876"
Received: from rcdn-core-9.cisco.com ([173.37.93.145]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 16 Dec 2020 08:50:35 +0000
Received: from XCH-ALN-002.cisco.com (xch-aln-002.cisco.com [173.36.7.12]) by rcdn-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id 0BG8oZ96004918 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 16 Dec 2020 08:50:35 GMT
Received: from xhs-aln-003.cisco.com (173.37.135.120) by XCH-ALN-002.cisco.com (173.36.7.12) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 16 Dec 2020 02:50:35 -0600
Received: from xhs-aln-002.cisco.com (173.37.135.119) by xhs-aln-003.cisco.com (173.37.135.120) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 16 Dec 2020 02:50:34 -0600
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Wed, 16 Dec 2020 02:50:35 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BN7HdliH5SZy1ihmzqVRtPIT38mhFE8Ng3x81GlsU4097EecIWy3gAVTIeoUTp1kHGdHYweU3iXjJcWEegLP6MYW0fDzFfSDLhLEBOthsgG/QcTZHZnvrbuMJi+gG2V4hjgUxXg+jztbOaw/4F3IAZrKiA4YMR6AKkt+lI++5oAy+VCyX53Nkzs37HQ8IUel8nwBpFLAfQtJL9P4+s+UtcJ7g1Ir2z1T4fX9DWjW8r7U9vOFHEJ2ckM1+GVmDTeYcLUp64pOtkvBXSlsHIYjddpOpc8PADCA+pP01o9D4H6Sbqj9rUdqpxVsPJHwQgAB6SC3t9w+SZuxsxeVDXEhLg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/74Z3wBmRAk5EtrEjfTav7C0DwkSNNOCkzFZjy9XknM=; b=gHPnmSvy9VuhjTPCgbNE363Wd0pwK/DpX5CtoSpyF3xqExhTGawoopU5QJF+uZzrxdDwwbmhe5dEmLBpsUv0mD/06l3kxLPM9kbN1XG0byb8JUNNqh44Kw6+w0lo7WJ0EahLzpEkFH1gLKMBIbqLG6+den04mi0dPrvVi3tjWqcnztreUC2GPqYMxnm0J24epT/5Pp2hEp7jyczrmqcoFuEJ7nBJE2fmizZq/trYD6m8CkFW9JGCzmfXDE2JP84ynMzBE+8K/Vo04Olif+cB8rUkxPxnDy7Fp9zSCR9QbRytgJ946+3Gu11O3ZkrGobjVwjGicgZwwd8M+xfwe8MUw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/74Z3wBmRAk5EtrEjfTav7C0DwkSNNOCkzFZjy9XknM=; b=bViZqAVjqJUTVkBlhhZYhnH1/L/3NoEwwhBjxNUa5ZQGj7t2d4VOs9qKjOvQR4AS2seoCIpS4731Lq1oB/orMZkHiCjl9g/QZwQqWKqijOOEz55lm/GRuUrP0vPCtKyP7lcTI17VagCAcZa/dfnDi+khHREEuI7c04sJn7glzuk=
Received: from CO1PR11MB4881.namprd11.prod.outlook.com (2603:10b6:303:91::20) by MW3PR11MB4635.namprd11.prod.outlook.com (2603:10b6:303:2c::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3654.14; Wed, 16 Dec 2020 08:50:34 +0000
Received: from CO1PR11MB4881.namprd11.prod.outlook.com ([fe80::499:4510:59d6:8f61]) by CO1PR11MB4881.namprd11.prod.outlook.com ([fe80::499:4510:59d6:8f61%4]) with mapi id 15.20.3654.020; Wed, 16 Dec 2020 08:50:34 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Roman Danyliw <rdd@cert.org>, The IESG <iesg@ietf.org>
CC: "draft-ietf-roll-unaware-leaves@ietf.org" <draft-ietf-roll-unaware-leaves@ietf.org>, "roll-chairs@ietf.org" <roll-chairs@ietf.org>, "roll@ietf.org" <roll@ietf.org>, JADHAV Rahul <rahul.ietf@gmail.com>, "aretana.ietf@gmail.com" <aretana.ietf@gmail.com>
Thread-Topic: Roman Danyliw's No Objection on draft-ietf-roll-unaware-leaves-25: (with COMMENT)
Thread-Index: AQHW0xvCdS2PvjL+B0+gbd0gQq9j+qn5YStg
Date: Wed, 16 Dec 2020 08:50:08 +0000
Deferred-Delivery: Wed, 16 Dec 2020 08:49:28 +0000
Message-ID: <CO1PR11MB488115DD69F0A8A3ACE88F3DD8C50@CO1PR11MB4881.namprd11.prod.outlook.com>
References: <160806191542.14056.12076928149451139392@ietfa.amsl.com>
In-Reply-To: <160806191542.14056.12076928149451139392@ietfa.amsl.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: cert.org; dkim=none (message not signed) header.d=none;cert.org; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [2a01:cb1d:4ec:2200:80f0:4acd:dde0:b36f]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f12ff28d-e608-4e8f-5482-08d8a19fa6ce
x-ms-traffictypediagnostic: MW3PR11MB4635:
x-microsoft-antispam-prvs: <MW3PR11MB463510247A762618F91A731ED8C50@MW3PR11MB4635.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 5Jgrn85WJCtPt7WNY/ewp92KmddELJHrPkMJE1dMXvk+QlWBJM/dmABNsOQffCjHF1LHbDnKHhQNBAE9vzUDtnseLlaxo6ik1WGDRz/VD0WpPP8E6eaEB//oZOEbzYGVtymFH/NxwiGzpt2dbR2VdvuWMW7qRZ5+KAQbJEmcVXh3manAa6wF39l4vJeQmsDGn04B2Wz8uvNw5fvYovhtccoVovWsIUeea3nd8oJTHXio60haTG51JWtX01Q99PEyBbddKCau0lF64d8f1Xyl4+e3fkjny3wvgyzzfpSFABcuKo7hNcrI6Uk0ddo+1BryrqQ9fYyFlr/FDkm6lHWMkkt9aJpl9kY15YOo9TMVXpRhYtnt+vg4xGdO81KxfkK60Ujy4ryw+jCGpqU77njKwQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB4881.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(376002)(396003)(136003)(366004)(346002)(39860400002)(52536014)(55016002)(5660300002)(110136005)(2906002)(54906003)(33656002)(76116006)(316002)(8936002)(9686003)(83380400001)(186003)(64756008)(6666004)(66476007)(66946007)(86362001)(7696005)(966005)(478600001)(8676002)(71200400001)(6506007)(66556008)(66446008)(4326008); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB4881.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f12ff28d-e608-4e8f-5482-08d8a19fa6ce
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Dec 2020 08:50:34.3018 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: axvffBt0l/C2BCHXx9P2fKGOUJGdiVGtJS4puDC8MPon61+tljDaXmIXymIsUVoeqs/P5cup01vQtnZrvx6x3A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW3PR11MB4635
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.12, xch-aln-002.cisco.com
X-Outbound-Node: rcdn-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/roll/SBHyW5tQct7pfG43arju2Fq4_Lc>
Subject: Re: [Roll] Roman Danyliw's No Objection on draft-ietf-roll-unaware-leaves-25: (with COMMENT)
X-BeenThere: roll@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Over Low power and Lossy networks <roll.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/roll>, <mailto:roll-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/roll/>
List-Post: <mailto:roll@ietf.org>
List-Help: <mailto:roll-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/roll>, <mailto:roll-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Dec 2020 08:50:39 -0000

Hello Roman:

Many thanks for your review! 

I placed the proposed diffs here:

https://github.com/roll-wg/roll-unaware-leaves/commit/6695ef9f0c8596507f69fd09dc0c8b205e9e9115

And will publish -26 soon.

Let's see below:

> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> Thank you for responding to the SECDIR review and thank you to Carl Wallace
> for performing it
> 
> ** Section 6.1.  ROVRsz value.
> 
> Indicates the Size of the ROVR.  It SHOULD be 1,
>       2, 3, or 4, indicating a ROVR size of 64, 128, 192, or 256 bits,
>       respectively.  If a legacy Target Option is used, then the value
>       must remain 0, as specified in [RFC6550].
> 
> -- Why are the values of ROVRsz not constrained with a MUST to 0 – 4?  What’s
> the thinking on allowing undefined ROVR size values?  Or not specifying that
> these values comes from:
> https://www.iana.org/assignments/icmpv6-parameters/icmpv6-
> parameters.xhtml#icmpv6-parameters-codes-type-157-code-suffix
> https://www.iana.org/assignments/icmpv6-parameters/icmpv6-
> parameters.xhtml#icmpv6-parameters-codes-type-158-code-suffix

The SHOULD was to allow a value of 0. But thinking twice, it's good to force it to non-zero so we can identify the support of this spec.

I changed to: 
"
                        It MUST be set to 1, 2, 3, or 4, indicating a ROVR size
                        of 64, 128, 192, or 256 bits, respectively.
"


> -- If the values of ROVR are 1 – 4 why are 4 bits required, not 3 (i.e., 100 = 4)?

This denotes the size of a hash (see RFC 8928). We left a chance to expand to much larger hashes. I thought you'd appreciate.
The future role of the ROVR in RPL is along the lines of Route Ownership Validation (big surprise), to be designed though.

> 
> ** Section 11.
> Additionally, the trust model could include a role validation to
>    ensure that the node that claims to be a 6LBR or a RPL Root is
>    entitled to do so.
> 
> How does this role validation (verification of entitlement) work?
> 
Hum, how can I answer this one without a WG designing it? I added 
" e.g., using a role-based authorization) 
"
But there should be more interesting / scalable / zero-confable methods. 
I do not want this spec to look like it recommends a method when that really belongs to another Area.

I'm happy to add more text but I'd need your help crafting it.

Keep safe;

Pascal