Re: [sidr] AD Review of draft-ietf-sidr-rpki-oob-setup-04

"Alvaro Retana (aretana)" <aretana@cisco.com> Wed, 21 December 2016 12:20 UTC

Return-Path: <aretana@cisco.com>
X-Original-To: sidr@ietfa.amsl.com
Delivered-To: sidr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D2F0E129D70; Wed, 21 Dec 2016 04:20:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.621
X-Spam-Level:
X-Spam-Status: No, score=-17.621 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-3.1, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mBEG-jzKQtio; Wed, 21 Dec 2016 04:20:56 -0800 (PST)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 280EA1293E1; Wed, 21 Dec 2016 04:20:56 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=12040; q=dns/txt; s=iport; t=1482322856; x=1483532456; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=9ijr0PcYcs5CvGNfmVhl75IQBJn6fsdNro2WF2mDpxs=; b=XConKo53H3tf2yQ7FN0U+lIIrM2gWxoGJutGYJQy3NG5+NaR9xb6dUNG ybO9XAqsK/1vO7PwJazZuh9Yu1FuwE2+ptMmfJPBK/p8OezqmXVGImEtm xXkSx8bkAxK1XgEs4QEOpNPtji/IRSMwSc/DyxujD8CpPJ+LFi5dYeBj5 Y=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AZAQBwclpY/5BdJa1dGQEBAQEBAQEBA?= =?us-ascii?q?QEBBwEBAQEBgnE5CwEBAQEBH1qBBweNSaZAhSaCCiyFdgIagVY/FAECAQEBAQE?= =?us-ascii?q?BAWIohGkGI1YQAgEIDh8SAwICAjAUEQIEDgWIaw6oMIIoL4plAQEBAQEBAQEBA?= =?us-ascii?q?QEBAQEBAQEBAQEBGAWGNoF9glyEf4JFLYIwBZUHhXABhlGKZ5BRkjIBHzeBKjw?= =?us-ascii?q?BhU9yAQGHSYENAQEB?=
X-IronPort-AV: E=Sophos;i="5.33,383,1477958400"; d="scan'208,217";a="184030849"
Received: from rcdn-core-8.cisco.com ([173.37.93.144]) by rcdn-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 21 Dec 2016 12:20:55 +0000
Received: from XCH-ALN-005.cisco.com (xch-aln-005.cisco.com [173.36.7.15]) by rcdn-core-8.cisco.com (8.14.5/8.14.5) with ESMTP id uBLCKtb0021804 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 21 Dec 2016 12:20:55 GMT
Received: from xch-aln-002.cisco.com (173.36.7.12) by XCH-ALN-005.cisco.com (173.36.7.15) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Wed, 21 Dec 2016 06:20:54 -0600
Received: from xch-aln-002.cisco.com ([173.36.7.12]) by XCH-ALN-002.cisco.com ([173.36.7.12]) with mapi id 15.00.1210.000; Wed, 21 Dec 2016 06:20:54 -0600
From: "Alvaro Retana (aretana)" <aretana@cisco.com>
To: Rob Austein <sra@hactrn.net>
Thread-Topic: AD Review of draft-ietf-sidr-rpki-oob-setup-04
Thread-Index: AQHSWszFsmJTivNev0GoI5fThLpGTA==
Date: Wed, 21 Dec 2016 12:20:54 +0000
Message-ID: <CAA3F956-9CA9-4A3B-9AFF-C5D4D87A815D@cisco.com>
References: <C219759D-6DE4-4B23-95C3-E39156FEAFC2@cisco.com> <20161220173336.DD3B64469FFE@minas-ithil.hactrn.net> <51D959C0-064D-451F-8224-737613A60F86@cisco.com> <20161221011442.D34DF446EADB@minas-ithil.hactrn.net>
In-Reply-To: <20161221011442.D34DF446EADB@minas-ithil.hactrn.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/f.1d.0.161209
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.117.15.4]
Content-Type: multipart/alternative; boundary="_000_CAA3F9569CA94A3B9AFFC5D4D87A815Dciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidr/1GrTo68O5_UvdkY6f3wQH5R5JRg>
Cc: Chris Morrow <morrowc@ops-netman.net>, "sidr-chairs@ietf.org" <sidr-chairs@ietf.org>, "draft-ietf-sidr-rpki-oob-setup@ietf.org" <draft-ietf-sidr-rpki-oob-setup@ietf.org>, "sidr@ietf.org" <sidr@ietf.org>
Subject: Re: [sidr] AD Review of draft-ietf-sidr-rpki-oob-setup-04
X-BeenThere: sidr@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Secure Interdomain Routing <sidr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidr/>
List-Post: <mailto:sidr@ietf.org>
List-Help: <mailto:sidr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Dec 2016 12:20:58 -0000

Rob:

Hi!

You added some text about offer and referral:

  A parent is unlikely to need to send both <offer> and <referral>
  elements, but strictly speaking they are not mutually exclusive, so a
  parent which really needs to express that it both offers repository
  service to its child and is also willing to refer its child to one or
  more other repository servers can do so.

That’s fine, but it still doesn’t tell me what the child should do.  I don’t think you want to specify taking up one or the other, but at least include some text that says that the child can choose.

In thinking about this I came up with another question.  A repository doesn’t have to honor every publisher_request it receives, right?   Specially ones that are the result of a referral…  There is a “refused” error reason defined, so that takes care of that…but I’m thinking that as a client I might want to take an <offer> instead of playing around with a <referral> because I know for sure my parent can do the job.  I’m sure there are other considerations that the child should take into account.  I’m ok if you just write that the selection criteria is out of scope.

Thanks!

Alvaro.


On 12/20/16, 8:14 PM, "Rob Austein" <sra@hactrn.net<mailto:sra@hactrn.net>> wrote:

Proposed -05, reflecting comments from AD review:

  https://subvert-ietf.hactrn.net/rpki-oob-setup/draft-ietf-sidr-rpki-oob-setup-05.txt
  https://subvert-ietf.hactrn.net/rpki-oob-setup/draft-ietf-sidr-rpki-oob-setup-05-from-04.diff.html

Absent objections, I will post to I-D repository, probably tomorrow.