IETF Logo Mail Archive

Re: [Sidrops] Requiring Two Implementations - before exit of WGLC

Andrew Newton <andy@hxr.us> Thu, 09 November 2023 08:32 UTC

Return-Path: <andy@hxr.us>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 81E19C14CE5D for <sidrops@ietfa.amsl.com>; Thu, 9 Nov 2023 00:32:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.905
X-Spam-Level:
X-Spam-Status: No, score=-6.905 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hxr-us.20230601.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7YUWskNlWBJH for <sidrops@ietfa.amsl.com>; Thu, 9 Nov 2023 00:31:56 -0800 (PST)
Received: from mail-lf1-x12e.google.com (mail-lf1-x12e.google.com [IPv6:2a00:1450:4864:20::12e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F33BDC151707 for <sidrops@ietf.org>; Thu, 9 Nov 2023 00:31:55 -0800 (PST)
Received: by mail-lf1-x12e.google.com with SMTP id 2adb3069b0e04-50949b7d7ffso808681e87.0 for <sidrops@ietf.org>; Thu, 09 Nov 2023 00:31:55 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hxr-us.20230601.gappssmtp.com; s=20230601; t=1699518714; x=1700123514; darn=ietf.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=HsUClKShECTsuRFq+Qbm27L434bgrPu+JBFlSyIuWws=; b=qHUD8bVw+v2qepNcTDFHyYBNfVEXI8WCA8xnQRsDTCX/PvXSu4CkThwYTFa3sHX1Mw oTS0Hvqyi2KDwX27mE3Q6i7chouAAhhnfXvPsUpP/s7QAksaEDntHZvzPyESbCj5okcY bnQGMbzTV4OKmH4QPQHFJkVvuOO/ToN3KStbpo7RVsWpKLnFubP8+YpLnaJkASPJwlwk GT6Lnz5pqpXQorg17aztYigWzz5rbCNhOIYJDFgAxEwfCylrXXvtxQpA+Nitgtfagwqi 2af+oqQvmrF2a0z737pX6MhzlTZKZ7kB3KTwfU5oZ2ZJo/II/RCshdDw5dEXJ/tFI+DL 6oag==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699518714; x=1700123514; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=HsUClKShECTsuRFq+Qbm27L434bgrPu+JBFlSyIuWws=; b=JwUH5vYFAJjexLbCIpcCUcOb+RWNGV2d87MsVHRpiEn8a1yVGd4bis6vsgxhvexpQE rh17HRatWf2+Y1q810yace37I0yJTQuZBYe7Q0ezV5j+STpgbnJWzV7SbyGCKK1EXxyp UGDPlsGoQIgnXb7sxX5BVp4SeLKLAf/rg/8rqC4JvGIV4jr4rIFCxa7eVo6VgokzPuFZ iDLelhwRVLe8hSwIb4z4LwO3+5e48W3IoDokr33IQi+CSbxy9rDH0P+xsBON1nmPbHI1 2DldXPkXT3xKSLdlueCAsrcOrdPTLjLHo2Kx8onB1bWmuNQnCoaUvshhJhTs/dR+JCHg WYug==
X-Gm-Message-State: AOJu0YwI5m6WeIDRZA9g7lkODZtlcZSDBHqCIZC/uKZugTA1TnfcVH3h 7ICHh/M490uFJgLbXQrE1MO8qJraQTBDPrW5ZggPJpkUq6/LpCBGsmlo6uqM
X-Google-Smtp-Source: AGHT+IGKw16yMPveXIVyDcg2sHYk1Ig21C9KT0HE+KmF0xn8/Jka8Yv+aT08jQUHJVGWNcgt/ev76rC7NpOqXXkwCkA=
X-Received: by 2002:a05:6512:3a82:b0:509:5d4b:44c4 with SMTP id q2-20020a0565123a8200b005095d4b44c4mr890847lfu.1.1699518713686; Thu, 09 Nov 2023 00:31:53 -0800 (PST)
MIME-Version: 1.0
References: <CAL9jLabLfh3PnEtmRmXhsFXgTPHQdhOPr5bWWuSvKUsu-Zy=BQ@mail.gmail.com> <ZL8yOYPQL1z1HSPV@snel> <ZL95cRkffm65WL0c@dhcp-8bfa.meeting.ietf.org> <87pm1tvn2n.wl-morrowc@ops-netman.net> <CAAQiQRfLiRtL81beSVPxtm=5Wo4OhdS-J_1nVsqPc66GYB2baw@mail.gmail.com> <ZSALGNekRUzh9PaM@snel> <2F74A667-57B7-45BD-AB2F-0DAF877E54DC@amazon.com> <817DBADA-42AF-4CAC-B8FB-DDBDA564722D@nlnetlabs.nl> <21DDC19E-900E-4991-A484-9405C4FC014F@ripe.net>
In-Reply-To: <21DDC19E-900E-4991-A484-9405C4FC014F@ripe.net>
From: Andrew Newton <andy@hxr.us>
Date: Thu, 09 Nov 2023 03:31:42 -0500
Message-ID: <CAAQiQRf6saTVLYOZLSz2V_ukYcHOm0rseqwJeZjuz5nRPaxS3g@mail.gmail.com>
To: Ties de Kock <tdekock@ripe.net>
Cc: Tim Bruijnzeels <tim@nlnetlabs.nl>, SIDR Operations WG <sidrops@ietf.org>, "sidrops-ads@ietf.org" <sidrops-ads@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/wBiS5qclAqhxWAGC9pgchagcqAE>
Subject: Re: [Sidrops] Requiring Two Implementations - before exit of WGLC
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Nov 2023 08:32:00 -0000

"Production-ready" can be subjective, and it is not even the standard
used to progress from Proposed Standard to Draft Standard. RFC 7127
instead uses "operational experience" which I believe is a better
metric.

Given that a proof-of-concept implementation is better than no
implementation, that may be good enough to improve the confidence in
the specifications. All that said, something does need to be done to
address Tim's concern.

Also, might all this be the purview of the IESG? Here is RFC 7127 on
this matter:

   The IESG may require implementation and/or operational experience
   prior to granting Proposed Standard status to a specification that
   materially affects the core Internet protocols or that specifies
   behavior that may have significant operational impact on the
   Internet.

-andy

On Fri, Oct 13, 2023 at 3:18 AM Ties de Kock <tdekock@ripe.net> wrote:
>
> Hi Tim,
>
> > On 13 Oct 2023, at 09:06, Tim Bruijnzeels <tim@nlnetlabs.nl> wrote:
> >
> > Hi all,
> >
> > In principle, I agree with the proposal.
> >
> > However, I see potential issues that affect my own work on a delegated CA implementation. There are currently two open-source RPKI CA solutions that can act as a "child" CA: Krill and rpkid (by Dragon Research Labs) - there is nothing wrong with the latter, but it's not actively maintained (and yes, I wish it were - the ecosystem needs choice).
> >
> > Getting multiple implementations of the child side of possible new standard developments may be hard. Would one child implementation interoperating with another implementation acting as the parent be good enough in this context?
>
> You imply a very robust standard of interoperability here:
>
>   * Two full "production-ready” implementations
>   * Implemented by distinct teams
>
> I think requiring implementations beyond single-shot/proof of concept
> implementation of objects adds value. The single-shot/proof-of-concept
> implementations do not allow others to validate a concept because you can not
> integrate it into other systems (e.g. CA output -> continuously fed to a
> validator, including various objects).
>
> One example of an issue this chain would have caught before it hit production
> would be a recent issue of a RP implementation(s?) generating broken JSON for
> specific ASPA objects.
>
> Kind regards,
> Ties
>
> >
> > Tim
> >
> >> On 13 Oct 2023, at 00:08, Korsbaeck, Fredrik <fkback=40amazon.com@dmarc.ietf.org> wrote:
> >>
> >> Hi,
> >>
> >> I think these implementation reports is extremely helpful fwiw, I use them in my day-to-day very often.
> >>
> >> To me, it seems like a sensible development to require running code, so +1 with Job and Ben here.
> >>
> >> /FK
> >>
> >> On 2023-10-06, 15:27, "Sidrops on behalf of Job Snijders" <sidrops-bounces@ietf.org <mailto:sidrops-bounces@ietf.org> on behalf of job=40fastly.com@dmarc.ietf.org <mailto:40fastly.com@dmarc.ietf.org>> wrote:
> >>
> >> Dear Andrew,
> >>
> >>
> >> On Fri, Oct 06, 2023 at 09:18:50AM -0400, Andrew Newton wrote:
> >>> On Wed, Oct 4, 2023 at 10:07 PM Chris Morrow <morrowc@ops-netman.net <mailto:morrowc@ops-netman.net>> wrote:
> >>>>
> >>>> This conversation sort of fizzled out...
> >>>>
> >>>> On Tue, 25 Jul 2023 07:27:45 +0000,
> >>>> "Dale W. Carder" <dwcarder@es.net <mailto:dwcarder@es.net>> wrote:
> >>>>>
> >>>>> Thus spake Job Snijders (job=40fastly.com@dmarc.ietf.org <mailto:40fastly.com@dmarc.ietf.org>) on Tue, Jul 25, 2023 at 04:23:53AM +0200:
> >>>>>> Proposed text:
> >>>>>>
> >>>>>> "Before SIDROPS Standards Track internet-drafts can progress to IESG
> >>>>>> review, interoperability must be demonstrated between at least two
> >>>>>> independent implementations for every aspect of the concepts in the
> >>>>>> specification. The chairs may waive this requirement when
> >>>>>> interoperability is of no concern (for example if the document is a
> >>>>>> BCP, problem statement, or requirements document).
> >>>
> >>> This is an interesting proposal, but it seems to conflate bcp,
> >>> information, and experimental with standards track. Why are chairs
> >>> waiving a requirement for documents that are not subject to the rule?
> >>
> >>
> >> Are you suggesting to remove the "(for example .. requirements document)"
> >> sentence?
> >>
> >>
> >>> It also seems to me that what is being asked for is an
> >>> interoperability report, not just implementation status. If so, "every
> >>> aspect" should be an enumerated list otherwise judging it is
> >>> guesswork. And it might be wise to consider an escape hatch for things
> >>> that might be more urgent but would otherwise get hung up on a formal
> >>> interoperability report.
> >>
> >>
> >> The phrase 'implementation report' is a reference to how the requirement
> >> for running code is handled in the IDR working group. A good example of
> >> how implementation & interopability are tracked is for example this wiki
> >> page: https://wiki.ietf.org/group/idr/implementations/draft-ietf-idr-large-community <https://wiki.ietf.org/group/idr/implementations/draft-ietf-idr-large-community>
> >> As part of the implementation report, often a (simple) interopability
> >> matrix is produced.
> >>
> >>
> >> I'd like the SIDROPS working group to take a similar approach as done
> >> here: https://wiki.ietf.org/group/idr/implementations <https://wiki.ietf.org/group/idr/implementations>
> >>
> >>
> >> Kind regards,
> >>
> >>
> >> Job
> >>
> >>
> >> _______________________________________________
> >> Sidrops mailing list
> >> Sidrops@ietf.org <mailto:Sidrops@ietf.org>
> >> https://www.ietf.org/mailman/listinfo/sidrops <https://www.ietf.org/mailman/listinfo/sidrops>
> >>
> >>
> >>
> >> _______________________________________________
> >> Sidrops mailing list
> >> Sidrops@ietf.org
> >> https://www.ietf.org/mailman/listinfo/sidrops
> >
> > _______________________________________________
> > Sidrops mailing list
> > Sidrops@ietf.org
> > https://www.ietf.org/mailman/listinfo/sidrops
>
> _______________________________________________
> Sidrops mailing list
> Sidrops@ietf.org
> https://www.ietf.org/mailman/listinfo/sidrops

v2.23.0 | Report a Bug | By Email