IETF Logo Mail Archive

Re: [Sidrops] Requiring Two Implementations - before exit of WGLC

Warren Kumari <warren@kumari.net> Thu, 09 November 2023 13:33 UTC

Return-Path: <warren@kumari.net>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 59C85C187705 for <sidrops@ietfa.amsl.com>; Thu, 9 Nov 2023 05:33:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oIvwLs_Ifn99 for <sidrops@ietfa.amsl.com>; Thu, 9 Nov 2023 05:32:58 -0800 (PST)
Received: from mail-qt1-x829.google.com (mail-qt1-x829.google.com [IPv6:2607:f8b0:4864:20::829]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3DFBAC17DBEC for <sidrops@ietf.org>; Thu, 9 Nov 2023 05:31:32 -0800 (PST)
Received: by mail-qt1-x829.google.com with SMTP id d75a77b69052e-41cd1fe4645so5085901cf.0 for <sidrops@ietf.org>; Thu, 09 Nov 2023 05:31:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari.net; s=google; t=1699536691; x=1700141491; darn=ietf.org; h=cc:to:subject:message-id:date:from:references:in-reply-to :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=IyzfN/0LjLWStXFkfYwXTVxCbwPpake59HlHDt294BQ=; b=ZMaV8AxQlHLfRvnfasfXs2HFPcwnRN2pFwm4c2nxXVNgYQE5YpBaLhJrCHJvwuEsg+ zI/zF46AxbZKSFdiGX2ZXtQSHD9CxetZP+s4xzg20QIar+X9V9trDjGKE96rYnuKxjbd h/7TnUsWiZDWvPv+DKYtDqwxZw/epfYJKyhSTSFj6a0u3OmbafPh2mVA8U3/XkyA6Pjm c7DHkKQOK7oGR8Jg0qvfmiUDEVHCP8iGCaWxsH4zI40moZtvPe6vRzQY3mPr3zh4t2I2 ljhIq4h4zI5d7cjMuAHWVMypMQt0ZRrlpmNMuYX+oTwDFLIsnMPG9NPDC1JguYdVWWfB pl7Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699536691; x=1700141491; h=cc:to:subject:message-id:date:from:references:in-reply-to :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=IyzfN/0LjLWStXFkfYwXTVxCbwPpake59HlHDt294BQ=; b=EVyMj9Ru4JcHMdAo0XKSP4bZk4jNldTUL1UY/tQ3Bx/axLAhA1n6Wj46ktpDNEhZRi 7ENvJy5fF97GftX/CJdnipFZDHv07bjTfQtUAF5Ifxl72F7DOK/PzAgUAW8rtHpv+aOa af8plUg9oPoi2Pi4U4qIRTveJkSbJhXzYEgTNVhNzotavBLJjNSB73xxlkzaDcBFshl+ IheGJi5y9UgZq6tdHpnAAv+MyMJ6m2OUYRi1ZvLEWhfLpM9jkvsRG9b6v8YrrfSMg7Hq 2vp/Se2DTRNZy9b3kAUmaCmlnziDaeyijImoQXOYqFBmZyCsN6BMirMQH/5NZS4CIN5Q Vp+Q==
X-Gm-Message-State: AOJu0Ywd091vvwd0VyA/AhvHFGJlsIwIjhE8tVuJR+ADdheqRwRuxDh7 E4rlIgoBdSmYIWuLJMZ7NvMG4RaG8JiKSrrL4+uxzQ==
X-Google-Smtp-Source: AGHT+IGuBuyed/4I/MilfNLBNqpqPZFQqUdEcy+E18xST1U0VkWoxpFXR5RZjPa0wz4SBE/QYZb8oD7L+4JlCrsg6iM=
X-Received: by 2002:ac8:7f43:0:b0:403:788f:5d0d with SMTP id g3-20020ac87f43000000b00403788f5d0dmr4918511qtk.0.1699536690900; Thu, 09 Nov 2023 05:31:30 -0800 (PST)
Received: from 649336022844 named unknown by gmailapi.google.com with HTTPREST; Thu, 9 Nov 2023 05:31:30 -0800
Mime-Version: 1.0
X-Superhuman-ID: lor8932l.00dcae9a-64d3-4aad-bdec-a77b1430bbeb
In-Reply-To: <CAAQiQRf6saTVLYOZLSz2V_ukYcHOm0rseqwJeZjuz5nRPaxS3g@mail.gmail.com>
References: <CAL9jLabLfh3PnEtmRmXhsFXgTPHQdhOPr5bWWuSvKUsu-Zy=BQ@mail.gmail.com> <ZL8yOYPQL1z1HSPV@snel> <ZL95cRkffm65WL0c@dhcp-8bfa.meeting.ietf.org> <87pm1tvn2n.wl-morrowc@ops-netman.net> <CAAQiQRfLiRtL81beSVPxtm=5Wo4OhdS-J_1nVsqPc66GYB2baw@mail.gmail.com> <ZSALGNekRUzh9PaM@snel> <2F74A667-57B7-45BD-AB2F-0DAF877E54DC@amazon.com> <817DBADA-42AF-4CAC-B8FB-DDBDA564722D@nlnetlabs.nl> <21DDC19E-900E-4991-A484-9405C4FC014F@ripe.net> <CAAQiQRf6saTVLYOZLSz2V_ukYcHOm0rseqwJeZjuz5nRPaxS3g@mail.gmail.com>
X-Mailer: Superhuman Desktop (2023-11-09T01:22:22Z)
X-Superhuman-Draft-ID: draft007d4b79a5a017de
From: Warren Kumari <warren@kumari.net>
Date: Thu, 09 Nov 2023 05:31:30 -0800
Message-ID: <CAHw9_iL6jr3kXFBKNWRjqAeUoF2ZZPb+_fUAMET5Q--reMmHjg@mail.gmail.com>
To: Andrew Newton <andy@hxr.us>
Cc: Ties de Kock <tdekock@ripe.net>, Tim Bruijnzeels <tim@nlnetlabs.nl>, SIDR Operations WG <sidrops@ietf.org>, sidrops-ads@ietf.org
Content-Type: multipart/alternative; boundary="000000000000be86200609b838b7"
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/LsY8UMTskPRWdb8PYNe3UwjdiCc>
Subject: Re: [Sidrops] Requiring Two Implementations - before exit of WGLC
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Nov 2023 13:33:03 -0000

On Thu, Nov 09, 2023 at 9:31 AM, Andrew Newton <andy@hxr.us> wrote:

> "Production-ready" can be subjective, and it is not even the standard used
> to progress from Proposed Standard to Draft Standard. RFC 7127 instead uses
> "operational experience" which I believe is a better metric.
>
> Given that a proof-of-concept implementation is better than no
> implementation, that may be good enough to improve the confidence in the
> specifications. All that said, something does need to be done to address
> Tim's concern.
>
> Also, might all this be the purview of the IESG? Here is RFC 7127 on this
> matter:
>
> The IESG may require implementation and/or operational experience prior to
> granting Proposed Standard status to a specification that materially
> affects the core Internet protocols or that specifies behavior that may
> have significant operational impact on the Internet.
>


So, I had understood that all this was being modeled on IDR, so I want to
go see if we could just seal text from their charter / figure out how they
had navigated this… only to discover that it isn't actually *in* their
charter…

So, I asked the IESG, and John says that this is actually tradition, not
charter… seeing as everyone understands it in IDR (and I think that many of
us assumed that it was in the charter), perhaps that's good enough?  Write
it up and put it in the wiki?

This allows us to follow "Do the right thing" and not get wrapped around
the axle on process/charter language — can someone convince my why I'm
wrong here?

W


> -andy
>
> On Fri, Oct 13, 2023 at 3:18 AM Ties de Kock <tdekock@ripe.net> wrote:
>
> Hi Tim,
>
> On 13 Oct 2023, at 09:06, Tim Bruijnzeels <tim@nlnetlabs.nl> wrote:
>
> Hi all,
>
> In principle, I agree with the proposal.
>
> However, I see potential issues that affect my own work on a delegated CA
> implementation. There are currently two open-source RPKI CA solutions that
> can act as a "child" CA: Krill and rpkid (by Dragon Research Labs) - there
> is nothing wrong with the latter, but it's not actively maintained (and
> yes, I wish it were - the ecosystem needs choice).
>
> Getting multiple implementations of the child side of possible new
> standard developments may be hard. Would one child implementation
> interoperating with another implementation acting as the parent be good
> enough in this context?
>
> You imply a very robust standard of interoperability here:
>
> * Two full "production-ready” implementations
> * Implemented by distinct teams
>
> I think requiring implementations beyond single-shot/proof of concept
> implementation of objects adds value. The single-shot/proof-of-concept
> implementations do not allow others to validate a concept because you can
> not integrate it into other systems (e.g. CA output -> continuously fed to
> a validator, including various objects).
>
> One example of an issue this chain would have caught before it hit
> production would be a recent issue of a RP implementation(s?) generating
> broken JSON for specific ASPA objects.
>
> Kind regards,
> Ties
>
> Tim
>
> On 13 Oct 2023, at 00:08, Korsbaeck, Fredrik <fkback=40amazon.com@dmarc.
> ietf.org> wrote:
>
> Hi,
>
> I think these implementation reports is extremely helpful fwiw, I use them
> in my day-to-day very often.
>
> To me, it seems like a sensible development to require running code, so +1
> with Job and Ben here.
>
> /FK
>
> On 2023-10-06, 15:27, "Sidrops on behalf of Job Snijders" <
> sidrops-bounces@ietf.org <mailto:sidrops-bounces@ietf.org> on behalf of
> job=40fastly.com@dmarc.ietf.org <mailto:40fastly.com@dmarc.ietf.org>>
> wrote:
>
> Dear Andrew,
>
> On Fri, Oct 06, 2023 at 09:18:50AM -0400, Andrew Newton wrote:
>
> On Wed, Oct 4, 2023 at 10:07 PM Chris Morrow <morrowc@ops-netman.net
> <mailto:morrowc@ops-netman.net>> wrote:
>
> This conversation sort of fizzled out...
>
> On Tue, 25 Jul 2023 07:27:45 +0000,
> "Dale W. Carder" <dwcarder@es.net <mailto:dwcarder@es.net>> wrote:
>
> Thus spake Job Snijders (job=40fastly.com@dmarc.ietf.org <mailto:40fastly.
> com@dmarc.ietf.org>) on Tue, Jul 25, 2023 at 04:23:53AM +0200:
>
> Proposed text:
>
> "Before SIDROPS Standards Track internet-drafts can progress to IESG
> review, interoperability must be demonstrated between at least two
> independent implementations for every aspect of the concepts in the
> specification. The chairs may waive this requirement when interoperability
> is of no concern (for example if the document is a BCP, problem statement,
> or requirements document).
>
> This is an interesting proposal, but it seems to conflate bcp,
> information, and experimental with standards track. Why are chairs waiving
> a requirement for documents that are not subject to the rule?
>
> Are you suggesting to remove the "(for example .. requirements document)"
> sentence?
>
> It also seems to me that what is being asked for is an interoperability
> report, not just implementation status. If so, "every aspect" should be an
> enumerated list otherwise judging it is guesswork. And it might be wise to
> consider an escape hatch for things that might be more urgent but would
> otherwise get hung up on a formal interoperability report.
>
> The phrase 'implementation report' is a reference to how the requirement
> for running code is handled in the IDR working group. A good example of how
> implementation & interopability are tracked is for example this wiki page:
> https://wiki.ietf.org/group/idr/implementations/
> draft-ietf-idr-large-community <https://wiki.ietf.org/group/idr/
> implementations/draft-ietf-idr-large-community> As part of the
> implementation report, often a (simple) interopability matrix is produced.
>
> I'd like the SIDROPS working group to take a similar approach as done
> here: https://wiki.ietf.org/group/idr/implementations <https://wiki.ietf.
> org/group/idr/implementations>
>
> Kind regards,
>
> Job
>
> _______________________________________________
> Sidrops mailing list
> Sidrops@ietf.org <mailto:Sidrops@ietf.org>
> https://www.ietf.org/mailman/listinfo/sidrops <https://www.ietf.org/
> mailman/listinfo/sidrops>
>
> _______________________________________________
> Sidrops mailing list
> Sidrops@ietf.org
> https://www.ietf.org/mailman/listinfo/sidrops
>
> _______________________________________________
> Sidrops mailing list
> Sidrops@ietf.org
> https://www.ietf.org/mailman/listinfo/sidrops
>
> _______________________________________________
> Sidrops mailing list
> Sidrops@ietf.org
> https://www.ietf.org/mailman/listinfo/sidrops
>
>

v2.23.0 | Report a Bug | By Email