Re: [RTG-DIR] rtgdir Last Call Review requested: draft-ietf-netmod-factory-default
Antoni Przygienda <prz@juniper.net> Fri, 13 March 2020 22:30 UTC
Return-Path: <prz@juniper.net>
X-Original-To: rtg-dir@ietfa.amsl.com
Delivered-To: rtg-dir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 97D5B3A1157; Fri, 13 Mar 2020 15:30:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=bJBReuPf; dkim=pass (1024-bit key) header.d=juniper.net header.b=PJlPbMWV
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kPCDbhAEgvQO; Fri, 13 Mar 2020 15:30:07 -0700 (PDT)
Received: from mx0a-00273201.pphosted.com (mx0a-00273201.pphosted.com [208.84.65.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CC1163A112F; Fri, 13 Mar 2020 15:30:04 -0700 (PDT)
Received: from pps.filterd (m0108159.ppops.net [127.0.0.1]) by mx0a-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 02DMMM5X003525; Fri, 13 Mar 2020 15:30:03 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=PPS1017; bh=PQwqvYuSyvFtJpW6YpFZfT4VDrAiAv9T/rtT/VNqpPw=; b=bJBReuPfIMNiZY1LooA10BOcWgGqqxtFIIXZiTbgKM9ze13DmyUf1iruMRaUpfvcjiOV WOvFmWLibIJSpoT7bl7sZalf6v3SRdxPqS5Oh4kLX1rL7IWrSb5rT3H7t2CYd5CFm+e+ O8ZXB2iqE2+fcgZ3wmIs3yyCFuZl65uICg5w1qUgtxXyyYWwASFLcpuBdtqhOWsJZdU+ 4/JT/CfY7LnfehjP+DRlqEbVuIxrNXqf+0sA2mL/CFeX+EBC/jWSq89T3ZlVrOzF2Mob DWMGbL7oGtuH+0/eB4WCiRAkMaAnA6UOydvKQUhPOvtwb+PRmYTOBMQs4OrFOL4mmXXS qw==
Received: from nam11-co1-obe.outbound.protection.outlook.com (mail-co1nam11lp2169.outbound.protection.outlook.com [104.47.56.169]) by mx0a-00273201.pphosted.com with ESMTP id 2yqtaejsv7-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 13 Mar 2020 15:30:02 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=UNDU16hZ6aMh+Swc1ErUK/qcFBenIe5i0/4OrvAuWEJ16qYTMM5XJJyzGcaFFHJ+FJLD1nSuV8Yf0D72hBBBkUeELaLRqBnw1d1C9kQ55nT1TUDuizujV3JWGOtqO5efV6bFlVHmYlBOvo1qmFFl8KQT6C9Wh/QUn/9qOkhtrXU2lC16IE6tDKbco8faR97JWwveKuHDfGQOY20KD/MDe5e/kMGfXbwswnTuZ6hgJ9oXBtRk1ml1JR95IUluv05voqaOqul6Ll+VbwPwyBztdfaoaM7mQyKXn1Yv2hcjKL1HP3vKqnekNdvXsMsOVCH3bHMgfXyKoX3ya77EENZwww==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=PQwqvYuSyvFtJpW6YpFZfT4VDrAiAv9T/rtT/VNqpPw=; b=A+q/pdhBF8WJhDPry7c/s9Jwdt4si37WaFvxTtPm9kp5Ko53dSjwV1UcUiinqNybftcxmAy9qyJO0bG7WGfxo8Ut2/LSUHbDqnrIXeNfXuOA5LLWfAbYzO6KlAJnGHRTdPSiZTL7vN7Xh+BClkorc9SvYWVViXvvdcEaFcaL9fdRvBob2uUDlwSbBF1Y+JSh7wUur1tgczj+RbnCpreiTlnnO3ZKqmBxoD3kfs0GgGR9F0I7Q7FYfgzC+nb0Y9nPm1x8g1Cht5v9dPkblVCH9aFC0wzJ2XT67ChW447xU2Bt6QV55ApYcUs5I4uj1uW7SoTejTKJtQ/iOvpPrx9zrg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=PQwqvYuSyvFtJpW6YpFZfT4VDrAiAv9T/rtT/VNqpPw=; b=PJlPbMWVEWVvzZRUbMb8LT9rRr3MoG87Pomb8knE7Ggb5tsdQRqsk5XSGRMUx0N0f090MUT7dsHfGQDvZxJ0uPijgQCIn/P/fU4Sn5y7loS8aWlna6fRegNbXQOdSHP5ySwusmRArnz1eMYNhibZzb8N9pUwq7ERGF6exgoFNAQ=
Received: from BYAPR05MB4296.namprd05.prod.outlook.com (2603:10b6:a02:f4::20) by BYAPR05MB4533.namprd05.prod.outlook.com (2603:10b6:a02:f3::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2835.6; Fri, 13 Mar 2020 22:30:00 +0000
Received: from BYAPR05MB4296.namprd05.prod.outlook.com ([fe80::2927:c4e3:301b:2b31]) by BYAPR05MB4296.namprd05.prod.outlook.com ([fe80::2927:c4e3:301b:2b31%7]) with mapi id 15.20.2814.007; Fri, 13 Mar 2020 22:30:00 +0000
From: Antoni Przygienda <prz@juniper.net>
To: "rtg-dir@ietf.org" <rtg-dir@ietf.org>, "draft-ietf-netmod-factory-default.all@ietf.org" <draft-ietf-netmod-factory-default.all@ietf.org>, "netmod-wg@ietf.org" <netmod-wg@ietf.org>
Thread-Topic: rtgdir Last Call Review requested: draft-ietf-netmod-factory-default
Thread-Index: AQHV8L2XzyEd/qMv40OfDw2N8JHFYqg2GqMQgAUL1BD//3x2gIAKBdWA
Date: Fri, 13 Mar 2020 22:30:00 +0000
Message-ID: <EF5C9010-51BC-4AAA-999A-7EE311588637@juniper.net>
References: <158317249928.27390.8071084597438752466@ietfa.amsl.com> <9C5FD3EFA72E1740A3D41BADDE0B461FDF107D04@DGGEMM528-MBX.china.huawei.com> <833716DA-C4E0-4BF1-AE98-F8A7B1A01755@juniper.net>
In-Reply-To: <833716DA-C4E0-4BF1-AE98-F8A7B1A01755@juniper.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_Enabled=true; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_Name=Juniper Business Use Only; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_Enabled=true; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_ContentBits=0; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_Method=Standard; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_ActionId=072ea583-0db3-478d-ac17-000039f516bf; MSIP_Label_9784d817-3396-4a4f-b60c-3ef6b345fe55_SetDate=2020-03-06T07:02:37Z;
user-agent: Microsoft-MacOutlook/16.35.20030802
x-originating-ip: [66.129.239.14]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 8b9eb6aa-a109-4824-9cc0-08d7c79e1142
x-ms-traffictypediagnostic: BYAPR05MB4533:
x-microsoft-antispam-prvs: <BYAPR05MB4533E53DDBB43836C133C9AEACFA0@BYAPR05MB4533.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 034119E4F6
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(376002)(396003)(366004)(346002)(136003)(39860400002)(199004)(33656002)(450100002)(316002)(66476007)(186003)(6486002)(5660300002)(71200400001)(6512007)(110136005)(8936002)(76116006)(2906002)(81166006)(86362001)(66446008)(36756003)(8676002)(81156014)(26005)(64756008)(66556008)(66946007)(2616005)(478600001)(6506007); DIR:OUT; SFP:1102; SCL:1; SRVR:BYAPR05MB4533; H:BYAPR05MB4296.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1;
received-spf: None (protection.outlook.com: juniper.net does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: zr9tNMNCoB1paYQk/lGk30xykMTkVe0Vo/oVdEtx7Wc5dunohVrc5fm/mTVemKuu3iDU2kTYO+PIo9Hxx1vxhOlkH3WhzbPeSCExQgSkKKgQefIDHZTlJjsHPcHEUZyFQ6Sz3rCCYfjLvsMtGbzJnQ==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <2C6BF0A61BB2534E88270FF78CD006BA@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-Network-Message-Id: 8b9eb6aa-a109-4824-9cc0-08d7c79e1142
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Mar 2020 22:30:00.3243 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Vkp2+MQlGfClzHdp7LPg4WBKDAtSInXLeaP/sYvYoawmCH13U0ZFUClw/RV3X90N
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR05MB4533
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.138, 18.0.572 definitions=2020-03-13_10:2020-03-12, 2020-03-13 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 malwarescore=0 suspectscore=0 mlxlogscore=999 lowpriorityscore=0 phishscore=0 clxscore=1011 adultscore=0 spamscore=0 impostorscore=0 mlxscore=0 priorityscore=1501 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2003020000 definitions=main-2003130099
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-dir/df67jU61WAR7cqv3Iqr4mAFAIH4>
Subject: Re: [RTG-DIR] rtgdir Last Call Review requested: draft-ietf-netmod-factory-default
X-BeenThere: rtg-dir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Routing Area Directorate <rtg-dir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-dir>, <mailto:rtg-dir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-dir/>
List-Post: <mailto:rtg-dir@ietf.org>
List-Help: <mailto:rtg-dir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-dir>, <mailto:rtg-dir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Mar 2020 22:30:10 -0000
I have been selected to do a routing directorate “early” review of this draft.
https://datatracker.ietf.org/doc/draft-ietf-netmod-factory-default/
Document: draft-ietf-netmod-factory-default
Reviewer: Tony Przygienda
Review Date: 03/15/20
Intended Status: Standards Track
Summary:
I have some minor concerns about this document that I think should be resolved before it is submitted to the IESG.
Comments:
Good, clear, concise draft. Clear references, easy read.
Following items need to be explained, treated IMO:
* it is not clear how "default configuration" defined in [RFC8342] interacts/is correlated with the "factory-default" store. Can "factory-default" overwrite the default configuration? Probably not since "it's in the data model" (RFC8342 is quite sparse on the subject). Generally I think it would be helpful to the reader to point out in a sentence that "default store" and "factory-default store" are utterly un-correlated since the language is suggesting they are closely related which in fact they are not.
There is a subtle but big danger here with making it "read-only" and people misunderstanding this. If the device has been shipped with image X containing the store and then upgraded to image Y the factory-default-store for X may brick the device. It would be possibly a good thing to add somehow to the draft this consideration as in "when upgrading software version or Yang model of the server/device/node factory-default store in normally upgraded with it".
* the draft says
o Origin: This document does not define a new origin identity as it
does not interact with the <operational> datastore.
This seems somewhat doubtful to me. Even if no new origin is defined here (maybe it should be) the draft should define what origins needs to be set or whether old origin should be preserved (I doubt that since .e.g. factory reset can overwrite default origin on current indented/operational)
* is the device clock reset/pertained or is the operation undefined as to what it does to internal device clock. This is often a very important operational consideration.
* what happens to hardware installed keys on e.g. MACSEC? Are they reset/pertain/expected to be on factory-default and installed (vendors do different things here AFAIK), is that outside scope of this draft?
* serialization, can other operations be performed @ the same time as factory reset? If so, which values do persist and when can the reset be executed? Will existing sessions be shut-down/warned/time-out'ed? If I missed the implications due to previous RFCs, which RFC governs the behavior here?
* Can the factory-default RPC lead to device reboot? Is that undefined/undesired (I think either is fine for the draft to say)? This is often an important operational consideration. The model says " after
being reset, the device may become unreachable on the
network". Does that pertain to this "reset" operation here or a reboot? IMO following terms should be added & defined/distinguished in the glossary "reset" and "reboot". What is "on the network"? management interfaces/uplinks/inband ports. Either treat that more explicitly as in "after factory-default the device SHOULD be reachable via management ports and may not be reachable via uplinks/inband ports" or drop the "network". There is a big difference between "bricking it", "needs physical removal or hook up to short-range e.g. USB/WLAN" and "can only be reached out-of-band" ... Using vague descriptions like "on the network" is probably worse than not saying anything at all.
- Re: [RTG-DIR] rtgdir Last Call Review requested: … Antoni Przygienda
- Re: [RTG-DIR] rtgdir Last Call Review requested: … Qin Wu