IETF Logo Mail Archive

Re: [irsg] An IETF repository for working code in our protocols?

Stephen Farrell <stephen.farrell@cs.tcd.ie> Wed, 19 August 2020 23:11 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: wgchairs@ietfa.amsl.com
Delivered-To: wgchairs@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 683A03A0EFC for <wgchairs@ietfa.amsl.com>; Wed, 19 Aug 2020 16:11:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.948
X-Spam-Level:
X-Spam-Status: No, score=-2.948 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, NICE_REPLY_A=-0.949, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id myWBfULnTQgl for <wgchairs@ietfa.amsl.com>; Wed, 19 Aug 2020 16:11:28 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4441F3A0EA7 for <wgchairs@ietf.org>; Wed, 19 Aug 2020 16:11:27 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id D784BBE4D; Thu, 20 Aug 2020 00:11:25 +0100 (IST)
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J-VCalxk-nxF; Thu, 20 Aug 2020 00:11:23 +0100 (IST)
Received: from [10.244.2.119] (95-45-153-252-dynamic.agg2.phb.bdt-fng.eircom.net [95.45.153.252]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 0021EBE51; Thu, 20 Aug 2020 00:09:44 +0100 (IST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1597878585; bh=U7vwO4lez9gM5yoLmgxfQ3wkAhGV0rCpqLEIQyTOKvY=; h=Subject:To:Cc:References:From:Date:In-Reply-To:From; b=myagQ8dxqIVHzatg5pkkEJfrLTXoekPHKHVkXcBEw6jsTPTF1pWo17dBNjSiI4FWN +y4XeFmctT/pUFO4CswdU80QKUL62T6JT8zaqcsVef7u4vYVCHd9R+N0DP8WwCYXwf PZSKKNBMyhobV3Hz7B7hewCRTWT4w4rBNNqaw0LY=
Subject: Re: [irsg] An IETF repository for working code in our protocols?
To: "Joel M. Halpern" <jmh@joelhalpern.com>, Vijay Gurbani <vijay.gurbani@gmail.com>
Cc: "wgchairs@ietf.org" <wgchairs@ietf.org>
References: <81300C20-AC38-465C-A17C-743F3D4CD947@nbcuni.com> <CAMMTW_+P60jB-MLsB6R_x7z3uk5xK56ZwkZnHOtzaxex3tDREA@mail.gmail.com> <90cb740e-8663-58df-5c99-cbc053142566@joelhalpern.com> <a484f593-d037-ca9e-c4e9-6e28731b3152@cs.tcd.ie> <e6ae9107-48a9-cf04-2772-90b4b357fe3b@joelhalpern.com>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Autocrypt: addr=stephen.farrell@cs.tcd.ie; prefer-encrypt=mutual; keydata= mQINBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nemCP5PMvmh 5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kTq0IqYzsEv5HI58S+ QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtEgvw4fVhVWJuyy3w//0F2tzKr EMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy+pAh4EKzS1FE7BOZp9daMu9MUQmDqtZU bUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqO Vz+7L+WiVfxLbeVqBwV+4uL9to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJg b097ZaNyuY1ETghVB5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k 4LyM2lp5FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9tlyWxn5Xi HzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQABtDJTdGVwaGVuIEZh cnJlbGwgKDIwMTcpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPokCQAQTAQgAKgIbAwUJ CZQmAAULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAUCWj6jdwIZAQAKCRBasvrxexcr6o7QD/9m x9DPJetmW794RXmNTrbTJ44zc/tJbcLdRBh0KBn9OW/EaAqjDmgNJeCMyJTKr1ywaps8HGUN hLEVkc14NUpgi4/Zkrbi3DmTp25OHj6wXBS5qVMyVynTMEIjOfeFFyxG+48od+Xn7qg6LT7G rHeNf+z/r0v9+8eZ1Ip63kshQDGhhpmRMKu4Ws9ZvTW2ACXkkTFaSGYJj3yIP4R6IgwBYGMz DXFX6nS4LA1s3pcPNxOgrvCyb60AiJZTLcOk/rRrpZtXB1XQc23ZZmrlTkl2HaThL6w3YKdi Ti1NbuMeOxZqtXcUshII45sANm4HuWNTiRh93Bn5bN6ddjgsaXEZBKUBuUaPBl7gQiQJcAlS 3MmGgVS4ZoX8+VaPGpXdQVFyBMRFlOKOC5XJESt7wY0RE2C8PFm+5eywSO/P1fkl9whkMgml 3OEuIQiP2ehRt/HVLMHkoM9CPQ7t6UwdrXrvX+vBZykav8x9U9M6KTgfsXytxUl6Vx5lPMLi 2/Jrsz6Mzh/IVZa3xjhq1OLFSI/tT2ji4FkJDQbO+yYUDhcuqfakDmtWLMxecZsY6O58A/95 8Qni6Xeq+Nh7zJ7wNcQOMoDGj+24di2TX1cKLzdDMWFaWzlNP5dB5VMwS9Wqj1Z6TzKjGjru q8soqohwb2CK9B3wzFg0Bs1iBI+2RuFnxLkCDQRaPVAyARAA+g3R0HzGr/Dl34Y07XqGqzq5 SU0nXIu9u8Ynsxj7gR5qb3HgUWYEWrHW2jHOByXnvkffucf5yzwrsvw8Q8iI8CFHiTYHPpey 4yPVn6R0w/FOMcY70eTIu/k6EEFDlDbs09DtKcrsT9bmN0XoRxITlXwWTufYqUnmS+YkAuk+ TLCtUin7OdaS2uU6Ata3PLQSeM2ZsUQMmYmHPwB9rmf+q2I005AJ9Q1SPQ2KNg/8xOGxo13S VuaSqYRQdpV93RuCOzg4vuXtR+gP0KQrus/P2ZCEPvU9cXF/2MIhXgOz207lv3iE2zGyNXld /n8spvWk+0bH5Zqd9Wcba/rGcBhmX9NKKDARZqjkv/zVEP1X97w1HsNYeUFNcg2lk9zQKb4v l1jx/Uz8ukzH2QNhU4R39dbF/4AwWuSVkGW6bTxHJqGs6YimbfdQqxTzmqFwz3JP0OtXX5q/ 6D4pHwcmJwEiDNzsBLl6skPSQ0Xyq3pua/qAP8MVm+YxCxJQITqZ8qjDLzoe7s9X6FLLC/DA L9kxl5saVSfDbuI3usH/emdtn0NA9/M7nfgih92zD92sl1yQXHT6BDa8xW1j+RU4P+E0wyd7 zgB2UeYgrp2IIcfG+xX2uFG5MJQ/nYfBoiALb0+dQHNHDtFnNGY3Oe8z1M9c5aDG3/s29QbJ +w7hEKKo9YMAEQEAAYkCJQQYAQgADwUCWj1QMgIbDAUJCZQmAAAKCRBasvrxexcr6qwvD/9b Rek3kfN8Q+jGrKl8qwY8HC5s4mhdDJZI/JP2FImf5J2+d5/e8UJ4fcsT79E0/FqX3Z9wZr6h sofPqLh1/YzDsYkZDHTYSGrlWGP/I5kXwUmFnBZHzM3WGrL3S7ZmCYMdudhykxXXjq7M6Do1 oxM8JofrXGtwBTLv5wfvvygJouVCVe87Ge7mCeY5vey1eUi4zSSF1zPpR6gg64w2g4TXM5qt SwkZVOv1g475LsGlYWRuJV8TA67yp1zJI7HkNqCo8KyHX0DPOh9c+Sd9ZX4aqKfqH9HIpnCL AYEgj7vofeix7gM3kQQmwynqq32bQGQBrKJEYp2vfeO30VsVx4dzuuiC5lyjUccVmw5D72J0 FlGrfEm0kw6D1qwyBg0SAMqamKN6XDdjhNAtXIaoA2UMZK/vZGGUKbqTgDdk0fnzOyb2zvXK CiPFKqIPAqKaDHg0JHdGI3KpQdRNLLzgx083EqEc6IAwWA6jSz+6lZDV6XDgF0lYqAYIkg3+ 6OUXUv6plMlwSHquiOc/MQXHfgUP5//Ra5JuiuyCj954FD+MBKIj8eWROfnzyEnBplVHGSDI ZLzL3pvV14dcsoajdeIH45i8DxnVm64BvEFHtLNlnliMrLOrk4shfmWyUqNlzilXN2BTFVFH 4MrnagFdcFnWYp1JPh96ZKjiqBwMv/H0kw==
Message-ID: <e99af73a-0ffa-f4e3-dcc8-6666066ceaa6@cs.tcd.ie>
Date: Thu, 20 Aug 2020 00:09:42 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.10.0
MIME-Version: 1.0
In-Reply-To: <e6ae9107-48a9-cf04-2772-90b4b357fe3b@joelhalpern.com>
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="BWZ3LBF8raqiqmfldyzV0L6jGhVLnO8L1"
Archived-At: <https://mailarchive.ietf.org/arch/msg/wgchairs/0HrROVewV9rc7QOQWj1_Svf4P1E>
X-BeenThere: wgchairs@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Working Group Chairs <wgchairs.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/wgchairs>, <mailto:wgchairs-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/wgchairs/>
List-Post: <mailto:wgchairs@ietf.org>
List-Help: <mailto:wgchairs-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/wgchairs>, <mailto:wgchairs-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Aug 2020 23:11:30 -0000

Hiya,

On 19/08/2020 23:51, Joel M. Halpern wrote:
> There is different value in open and closed source implementations.  But
> bother are valuable.

I maintain that, for implementers of RFCs, the existence of
open-source code is valuable in a way that closed-source
can never match. ISTM, that means OSS is inherently better
for the purpose we're discussing here.

> There is as far as I can tell no benefit in the IETF actually storing
> the source for these projects.

I disagree. Finding the commit that matches the time at
which the RFC was written can be non-trivial and will
sometimes be useful/needed.

>  Either they are being maintained or they
> aren't.  If they aren't, the source has much less value. 

I disagree. For an implementer of an RFC, there is still a
lot of value in looking at someone else's code that matches
the RFC (or nearly does).

>  If they are,
> the maintained one is what people should look at.

Not necessarily. The not-very-good but easy to read code
that existed at the time the RFC was written might well be
the most useful thing for an implementer.

> 
> So again, having an easily findable and easily maintained set of
> pointers to any implementations that folks want to list, with whatever
> terms those folks like (whether that be creative commons open source,
> GPL, or descriptions of proprietary implementations) seems very useful.
> The problem of findability is real, but is not different for an archive
> compared with a set of pointers.

Given the above, I fail to see how you can think closed-
source can be as useful there, regardless of the mechanism
for de-referencing a pointer.

Cheers,
S.


> 
> A set of input / output vectors along the lines Erik suggested also
> sounds useful.  For some protocols.  (I don't quite know how one would
> do that for something like OSPF.)
> 
> Yours,
> Joel
> 
> On 8/19/2020 6:33 PM, Stephen Farrell wrote:
>>
>> Hiya,
>>
>> On 19/08/2020 23:22, Joel M. Halpern wrote:
>>> One of the advantages of pointers to implementations is that it can
>>> include equally pointers to open source and pointers to closed source of
>>> various forms.  The IETF doesn't take a stance among implementations.
>>
>> Entirely surmountable problem IMO. Add caveats to avoid
>> misperceptions wrt stance.
>>
>> That said, open source implementations are plainly more
>> useful for people who want to implement RFCs, compared to
>> equivalent closed-source implementations. It'd be folly
>> to ignore that reality.
>>
>> I just now discovered that what I thought ought be a
>> compressed-point representation of a DH shared secret is
>> supposed to use the uncompressed format thanks to being
>> able to add more trace lines to someone else's code. That's
>> the kind of thing could suck up many more hours of effort,
>> or that might lead to non-interop, (as it only affects some
>> groups), if no open-source code were available.
>>
>> S.
>>
>>>
>>> Yours,
>>> Joel
>>>
>>> On 8/19/2020 2:46 PM, Vijay Gurbani wrote:
>>>> Dear Glenn: Thank you very much for your note.  More inline.
>>>>
>>>> On Wed, Aug 19, 2020 at 1:19 PM Deen, Glenn (NBCUniversal)
>>>> <Glenn.Deen@nbcuni.com <mailto:Glenn.Deen@nbcuni.com>> wrote:
>>>>
>>>>      Hi Vijay,
>>>>
>>>>        In additional to the points others have made, I’ll add that an
>>>>      IETF code repository would need to carefully work out license
>>>> issues
>>>>      and also how it fits into the IETF’s Intellectual Property set up
>>>>      that is managed by the IETF  Trust.
>>>>
>>>>      [...]
>>>>
>>>>      There may be more that pop up once the topic was looked at deeper.
>>>>
>>>>      I’m not saying that any of these are show stoppers, but there’s a
>>>>      lot of legal elements that would be need to worked out before any
>>>>      bits got checked into a repository.
>>>>
>>>>
>>>> Yes, absolutely.  All of what you listed are important and weighty
>>>> concerns.  But none of them appear to be insurmountable if we decided
>>>> to do this.  Clearly, the precedent set by IEEE and ACM in similar
>>>> areas seems to point to the possible existence of a happy medium,
>>>> should we go this route.
>>>>
>>>> Cheers,
>>>>
>>>> - vijay
>>>>
>>>
>

v2.23.0 | Report a Bug | By Email