Re: [Sidrops] Requiring Two Implementations - before exit of WGLC
Ben Maddison <benm@workonline.africa> Tue, 25 July 2023 02:34 UTC
Return-Path: <benm@workonline.africa>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EAD03C15109B; Mon, 24 Jul 2023 19:34:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=workonline.africa
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6INEWvB6ZPUp; Mon, 24 Jul 2023 19:34:00 -0700 (PDT)
Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-he1eur04on2057.outbound.protection.outlook.com [40.107.7.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C977EC151539; Mon, 24 Jul 2023 19:33:54 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ocNI0KzQ0f7oRBljoYqtKDzeRiWPdCweq+560hGgHiEpEWPvopaEP5cifXG9TSPy4WzB2BX7w57phJkpZ3a7N7hYgNZI2uGCzZxvTrqYPAePIKIn7ztGdTF3sFuwZX68CPNZ6GhoCNC9rlLTGKwmHB9POOA5bqGH5pvrz6KawK07Ku8z4hWV8XPpSFaA4qLwCSMJTFBhJoPIPCFkHQFZVg3VMYW9gSvvLVlT0RlY0wIaT+yZS6lRXkGNrHc/Hxjn7J1Uvp7JeOydVXpQDaKHTktdYB5iL7E2/v+U6z/fuLE54ZMm6U1d13v+r2UsgjWGQsYwJkRfqhk2Iybk6IZ4UA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=mEtfQ5LdzH7pZJ4PV4riK+Yd6QMDxeu/m6x/IWaGr74=; b=OKeuT9M5cNK9PVPhqpFaPW+4Z9dKLPw2i5+20TA7EyDz0q69Bi+1kGPrSZRIyh+XY1pecGM/CvEl3fM3ZrAO2RQtLM9F34tzw/PwuNiNkQFPEpPrG1NHuAP0Z5tgUsoMEaI9h0kAKlasEi4WhsjPgHy6OiUx9ACn9fa3gixIYa/jhCRQggola+kNnm2YGdrEPLwHQK6DLLMQ7WUs+0ZEzClewd7TCb/ofq6l7THHsdxLpDldIB6koJBjMnOQ3e+MQ6tn4Dbj0zFXqKkrdO5DQsu/m+tCpIt8oV9yAfYqmvZE2jcCMZZPIgZeo4FVA+82P+LaMOHqmP0NbBqh78Yz0Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=workonline.africa; dmarc=pass action=none header.from=workonline.africa; dkim=pass header.d=workonline.africa; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=workonline.africa; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=mEtfQ5LdzH7pZJ4PV4riK+Yd6QMDxeu/m6x/IWaGr74=; b=OG7SONrHMEI9T3Fv7x819RHTps8S++lYuldxXX75J9CdDwhJ4nqeFAKrX/HfLmdJGU69KEO83qlt+qUcST9pZUcp7cl5vl86cTXwwCRHzCbYJ3yTuhnA9DW4uRgFRZPeRv5CpnBtJ7+JJy79s+XcwUGeEU0ECcb/gA2bDCcJMEg=
Received: from AS8P190MB1078.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:2e7::13) by GV1P190MB1971.EURP190.PROD.OUTLOOK.COM (2603:10a6:150:57::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6609.31; Tue, 25 Jul 2023 02:33:47 +0000
Received: from AS8P190MB1078.EURP190.PROD.OUTLOOK.COM ([fe80::e8ad:e122:37c7:f0ef]) by AS8P190MB1078.EURP190.PROD.OUTLOOK.COM ([fe80::e8ad:e122:37c7:f0ef%4]) with mapi id 15.20.6609.032; Tue, 25 Jul 2023 02:33:46 +0000
From: Ben Maddison <benm@workonline.africa>
To: Job Snijders <job=40fastly.com@dmarc.ietf.org>, Christopher Morrow <christopher.morrow@gmail.com>
CC: SIDR Operations WG <sidrops@ietf.org>, SIDROps Chairs <sidrops-chairs@ietf.org>, "sidrops-ads@ietf.org" <sidrops-ads@ietf.org>
Thread-Topic: [Sidrops] Requiring Two Implementations - before exit of WGLC
Thread-Index: AQHZvpJvLCJ2sJiClUm+EOWfUdKDAK/JwPeAgAAAT0E=
Date: Tue, 25 Jul 2023 02:33:46 +0000
Message-ID: <AS8P190MB1078F24000E8464E45B3B344C003A@AS8P190MB1078.EURP190.PROD.OUTLOOK.COM>
References: <CAL9jLabLfh3PnEtmRmXhsFXgTPHQdhOPr5bWWuSvKUsu-Zy=BQ@mail.gmail.com> <ZL8yOYPQL1z1HSPV@snel>
In-Reply-To: <ZL8yOYPQL1z1HSPV@snel>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=workonline.africa;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AS8P190MB1078:EE_|GV1P190MB1971:EE_
x-ms-office365-filtering-correlation-id: 1f2a95ce-5a70-44eb-b1ed-08db8cb79289
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AS8P190MB1078.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230028)(346002)(136003)(39840400004)(366004)(396003)(376002)(451199021)(38100700002)(122000001)(166002)(4326008)(55016003)(53546011)(66574015)(83380400001)(5660300002)(8676002)(52536014)(8936002)(54906003)(66446008)(110136005)(64756008)(41300700001)(66556008)(66946007)(316002)(478600001)(76116006)(26005)(186003)(6506007)(71200400001)(9686003)(966005)(7696005)(66476007)(2906002)(33656002)(86362001)(38070700005)(46492021); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 9R8iPZZhxR6fuYi4P62mV6kzD90wQ3YIOe6C9DgQJq7KMw3DJZ9BfGkYxA1Ae9Yj37t9aYXL9VKbZ7Lc0QeMpdK5831N89LCpRPZhfINXsKRTjBm5tHBTh+Uwge8gLXIftoUiZknEA5PyvlgXhv6KaiqwKk2CrR3KcX6PEwhJFAJRCJA9A6eKsTVN+8MSUeNfjWz1zr0UY10Ie3i+JwnZwCxC99ShkAhtJJMwXj3lFDSS/sT2L84MnsZm9/cK7RJk53HUpW+4LkmrmY/Z51YnPdYSirB8ofFcobFwFFJdULt5/yGlpPDdRuzdyOcQG14MoxxmS/Kbff+TlToNLcXlROtUh07bjHF4w4aa2ubQsSW32Ch6pLohXd6WhNUiczP6oCr/n00E186XUSG94JPyOswhnK8g762RbMDlWYP6lAhVF3Pm6hPg8wDJTXussO9sQEHr5PMo7nE3EuIJC4d1PdDNp7Meex7gWHDp+4skldP0kHFcILl66Aux6niVZn19/z+33WzSpkVVhAIWAmpCg5x9j0de5F+VzAJNtbA7RjV/rRTavBXOItplBmipemcpRIm/vbtkla/9sEcejWO2PUBgbMdEUDNNg2WGfMFrTcL23xNUWc04PKVkIFGtCDmGjZOfALZti7Y9MrWvAVV3bYLt+YSAHn2F4QACE3CIgNmCIWM/dYqv7r7TILGa0oiFdKG5A/hxh0wPCTKLnETZyy42qzCJqO6HBctjZbgkp/Uke7+K4xTbEs+V4YEUc9x4J0z8xn1dUjctY2p/O1plboNJDG7VVekhvEOih7GzjQMMJcUdqI1B11ZzY18L+bacniPfFKiRWrRGyTW49iXQZMqfifPW6BpaZ4HKWT8EapSP4D8MZbpa7HPiokrvPBdjtd3TB2hncxepfygOnAt0+5oGw12oCGLYsWMYJKV0XSdvi4OpescOe5UqzCBLaP/fy1bfsbwdw3QJoAjBFE+/uKiJ/yMMATN/9KmUP1KRC3vYJ1Davc8zTU1XIDWWC//IVcUgqooW6DaloxXjje8ADZzOJKjoo/tDBpvMeD9aapGFOi1czOkaPi9lDj0JK9Rlwj9z+0sJ4HT37BZlwJx8l/WShX/DbsLTBHrGfcG+7lM0pxqs245l7p2xln4X+Ob2RV1LaXFZFe50OQv//sq7qVzYi2yilwExulsP689gY4wpaWL47IcFxGBjB0CGQIfwoW5aqUNzg/aR+SPij4LpYtTyn9Y5UKWvAqQ06WiGY0OzJNVeJxnmad8xMF8ZZoeA8kTwMeaJZWV3BlWY+YcHShqkOeBaLYp6agaqUXCPa84kTrrU1ZmjD5x+8Gz8FBCZ/7RujTZI1BUHqpZhrn6vN3C+U1W1h71e9xoWW8p0sVisz7lxp41o6bLgWh/iJy2bTRfL9rEqHOpM0ZU9uhHFmycp52DjVKrN/6BKXGi2PK5pqPSqhvOx0KQwKyQRVjcDeQk+0ACUwoWCka/pGtJSCkO5WYzVsWswMJacTsoe6TmDWLVr61FIX+AVljfLuR5iIeTv9D+or4Ys+ogjge5bRqwLHkhkQAB29PiAlSgLT8pHUkBc+4fbSdM5sDuZ9vIWthBhy1xWnj69PFuZTm/vw==
Content-Type: multipart/alternative; boundary="_000_AS8P190MB1078F24000E8464E45B3B344C003AAS8P190MB1078EURP_"
MIME-Version: 1.0
X-OriginatorOrg: workonline.africa
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AS8P190MB1078.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 1f2a95ce-5a70-44eb-b1ed-08db8cb79289
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jul 2023 02:33:46.7920 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: b4e811d5-95e8-453a-b640-0fba8d3b9ef7
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: qHXNeY6D1Xlz0xeGYo6mWYwT7ZuunV7o0cd/XkWyxaNLcPe+EJB3sy0DNXYI+rBQ44YhNxr6U1qL3NmpKs7k2Q==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GV1P190MB1971
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/Nqn2lWKT5YIEbs98hIA5CL-n9Qs>
Subject: Re: [Sidrops] Requiring Two Implementations - before exit of WGLC
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Jul 2023 02:34:08 -0000
Hi all, Apologies for the top-post: my non-terrible mail client is in hospital :) I agree, on a balance, that running code should be a pre-requisite for standards track documents. Implementors should be making a conscious choice whether to implement early or await a stable specification, and to accept that this may require more iterations than if they wait for a spec to stabilize. As long as we are robust as a group in insisting that pleas of "oh, but this will break my early implementation" not de-rail improvements to the spec, I think we can avoid the negative side effects that Geoff warns of. Cheers, Ben ________________________________ From: Sidrops <sidrops-bounces@ietf.org> on behalf of Job Snijders <job=40fastly.com@dmarc.ietf.org> Sent: Monday, July 24, 2023 7:24:16 pm To: Christopher Morrow <christopher.morrow@gmail.com> Cc: SIDR Operations WG <sidrops@ietf.org>; SIDROps Chairs <sidrops-chairs@ietf.org>; sidrops-ads@ietf.org <sidrops-ads@ietf.org> Subject: Re: [Sidrops] Requiring Two Implementations - before exit of WGLC Dear Working Group, On Mon, Jul 24, 2023 at 05:53:04PM -0700, Christopher Morrow wrote: > Today SIDROPS has no requirement, except tacitly, to to have working > and interoperable implementations of the proposed changes. > > Two (or more) times now we've had a request and discussion about > requiring formally that there be interoperable implementations of the > protocols/software being standardized. There have been more than one > instance where our software/protocols are put into use and we found > some bad interactions :( > > There was some chat at the meeting about this, but I think re-having > that here is in order. > Please take some time to consider whether or not this is a healthy > requirement AND how we may implement it, for instance: > > "Discussion and finalization of the draft happens, before exit of > WGLC 2 implementations must be prepared and show interoperability > (document this on sidrops-wiki with an implementation report) before > exit of WGLC and being sent for publication." TL;DR - YES, REQUIRE RUNNING CODE :-) I fully support the working group requiring multiple implementations and reports on interoperability before sending documents to the wider IETF and IESG. I think Geoff rightfully pointed out there is a bit of nuance, but I think the chairs can navigate that and apply sound judgement. This requirement should apply to adopted SIDROPS internet-drafts which specify concepts which are to be implemented in software. So, for example RFC 9319 didn't describe anything to implement in software, and thus should be excempt from the requirement. I trust the chairs and working group participants to be able to discern between such cases. Another consideration is that for many proposed concepts there are two sides of the coin: the certificate authorities (signers) and the relying parties. This to me means that most specifications should strive to producing at least two signers and two relying parties to demonstrate a full interoperability matrix. Proposed text: "Before SIDROPS Standards Track internet-drafts can progress to IESG review, interoperability must be demonstrated between at least two independent implementations for every aspect of the concepts in the specification. The chairs may waive this requirement when interoperability is of no concern (for example if the document is a BCP, problem statement, or requirements document). Requiring running code has done miracles for the IDR working group, I'm confident the quality of SIDROPS documents will improve because of this requirement. Thanks! Kind regards, Job _______________________________________________ Sidrops mailing list Sidrops@ietf.org https://www.ietf.org/mailman/listinfo/sidrops
- [Sidrops] Requiring Two Implementations - before … Christopher Morrow
- Re: [Sidrops] Requiring Two Implementations - bef… Geoff Huston
- Re: [Sidrops] Requiring Two Implementations - bef… Job Snijders
- Re: [Sidrops] Requiring Two Implementations - bef… Ben Maddison
- Re: [Sidrops] Requiring Two Implementations - bef… Dale W. Carder
- Re: [Sidrops] Requiring Two Implementations - bef… Chris Morrow
- Re: [Sidrops] Requiring Two Implementations - bef… Job Snijders
- Re: [Sidrops] Requiring Two Implementations - bef… Andrew Newton
- Re: [Sidrops] Requiring Two Implementations - bef… Job Snijders
- Re: [Sidrops] Requiring Two Implementations - bef… Andrew Newton
- Re: [Sidrops] Requiring Two Implementations - bef… Korsbaeck, Fredrik
- Re: [Sidrops] Requiring Two Implementations - bef… Tim Bruijnzeels
- Re: [Sidrops] Requiring Two Implementations - bef… Ties de Kock
- Re: [Sidrops] Requiring Two Implementations - bef… Andrew Newton
- Re: [Sidrops] Requiring Two Implementations - bef… Warren Kumari
- Re: [Sidrops] Requiring Two Implementations - bef… Job Snijders
- Re: [Sidrops] Requiring Two Implementations - bef… Russ Housley
- Re: [Sidrops] Requiring Two Implementations - bef… Job Snijders