Last Call: <draft-pechanec-pkcs11uri-16.txt> (The PKCS#11 URI Scheme) to Proposed Standard: "x-" attribute use

Jan Pechanec <jan.pechanec@oracle.com> Mon, 22 December 2014 05:44 UTC

Return-Path: <jan.pechanec@oracle.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D29C81A00D1; Sun, 21 Dec 2014 21:44:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.51
X-Spam-Level:
X-Spam-Status: No, score=-3.51 tagged_above=-999 required=5 tests=[BAYES_50=0.8, GB_I_LETTER=-2, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, UNPARSEABLE_RELAY=0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id epZRexpQCA81; Sun, 21 Dec 2014 21:44:16 -0800 (PST)
Received: from userp1040.oracle.com (userp1040.oracle.com [156.151.31.81]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 812621A00CF; Sun, 21 Dec 2014 21:44:16 -0800 (PST)
Received: from acsinet22.oracle.com (acsinet22.oracle.com [141.146.126.238]) by userp1040.oracle.com (Sentrion-MTA-4.3.2/Sentrion-MTA-4.3.2) with ESMTP id sBM5hvcV031985 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 22 Dec 2014 05:43:59 GMT
Received: from userz7021.oracle.com (userz7021.oracle.com [156.151.31.85]) by acsinet22.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id sBM5hrJH008973 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Mon, 22 Dec 2014 05:43:53 GMT
Received: from abhmp0007.oracle.com (abhmp0007.oracle.com [141.146.116.13]) by userz7021.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id sBM5hqcO007299; Mon, 22 Dec 2014 05:43:52 GMT
Received: from keflavik.us.oracle.com (/10.132.148.214) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Sun, 21 Dec 2014 21:43:51 -0800
Date: Sun, 21 Dec 2014 21:43:50 -0800 (PST)
From: Jan Pechanec <jan.pechanec@oracle.com>
X-X-Sender: jpechane@keflavik
To: Bjoern Hoehrmann <derhoermi@gmx.net>
Subject: Last Call: <draft-pechanec-pkcs11uri-16.txt> (The PKCS#11 URI Scheme) to Proposed Standard: "x-" attribute use
Message-ID: <alpine.GSO.2.00.1412212127530.24005@keflavik>
User-Agent: Alpine 2.00 (GSO 1167 2008-08-23)
MIME-Version: 1.0
Content-Type: MULTIPART/MIXED; BOUNDARY="-559023410-490998763-1419226216=:24005"
Content-ID: <alpine.GSO.2.00.1412212131280.24005@keflavik>
X-Source-IP: acsinet22.oracle.com [141.146.126.238]
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf/6tKErFprv_yoI9OzSlAvaow5f4c
X-Mailman-Approved-At: Mon, 22 Dec 2014 07:59:55 -0800
Cc: Stef Walter <stef@thewalter.net>, Jaroslav Imrich <jaroslav.imrich@gmail.com>, Nikos Mavrogiannopoulos <n.mavrogiannopoulos@gmail.com>, Shawn Emery <shawn.emery@oracle.com>, saag@ietf.org, ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Dec 2014 05:44:23 -0000

	hi Björn, thank you for your feedback on the PKCS#11 URI 
Scheme draft.  The upcoming draft 17, attached, addresses your 
comment:

>One thing I noticed is that it uses "x-" prefixed vendor extensions;
>given BCP 178 there should probably be a rationale included in the
>document (the first draft predates the BCP by some years, so perhaps
>this is just documenting existing usage).

	the relevant changes are (please note that diff covers other 
unrelated changes as well):

@@ -188,11 +193,12 @@
                          pk11-model / pk11-lib-manuf /
                          pk11-lib-ver / pk11-lib-desc /
                          pk11-object / pk11-type / pk11-id /
-                         pk11-x-pattr
+                         pk11-slot-desc / pk11-slot-manuf /
+                         pk11-slot-id / pk11-v-pattr
   ; Query component and its attributes.  Query may be empty.
   pk11-qattr           = pk11-pin-source / pk11-pin-value /
                          pk11-module-name / pk11-module-path /
-                         pk11-x-qattr
+                         pk11-v-qattr

@@ -216,34 +222,41 @@
<...>
-  pk11-x-pattr         = "x-" 1*pk11-x-attr-nm-char "=" *pk11-pchar
-  pk11-x-qattr         = "x-" 1*pk11-x-attr-nm-char "=" *pk11-qchar
+  pk11-v-pattr         = 1*pk11-v-attr-nm-char "=" *pk11-pchar
+  pk11-v-qattr         = 1*pk11-v-attr-nm-char "=" *pk11-qchar

    The URI path component contains attributes that identify a resource
    in a one level hierarchy provided by Cryptoki producers.  The query
    component can contain a few attributes that may be needed to retrieve
-   the resource identified by the URI path.  Both path and query
-   components may contain vendor specific attributes.  Such attribute
-   names must start with an "x-" prefix.  Attributes in the path
+   the resource identified by the URI path.  Attributes in the path
    component are delimited by ';' character, attributes in the query
    component use '&' as a delimiter.

+   Both path and query components may contain vendor specific
+   attributes.  Such attribute names MUST NOT clash with existing
+   attribute names.  Note that in accordance with [BCP178], previously
+   used convention of starting vendor attributes with an "x-" prefix is
+   now depricated.

	regards, Jan.

-- 
Jan Pechanec <jan.pechanec@oracle.com>