Re: [netconf] Create IANA-defined modules?

[tom petch <ietfc@btconnect.com>]

Mmmm this is getting ever more tangled but let me see if I can get my comments through the Internet police:-)
 
Qin Wu <bill.wu@huawei.com>| Wed, 09 June 2021 13:07 UTC
发件人: netconf [mailto:netconf-bounces@ietf.org] 代表 Kent Watsen
发送时间: 2021年5月27日 3:06
收件人: netconf@ietf.org

[CC-ing Gary, who contributed the “ietf-[tls/ssh]-common" modules originally]


NETCONF WG,

The “tls-client-server” draft just received the following GitHub “issue”:

=====start=====
This is rather a question than an issue, maybe.

Given that IANA maintains the TLS parameters at   https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml, would it not be better for that content to come from something like iana-tls[-parameters].yang rather than an IETF maintained YANG module?
=====stop=====

This is a good point.  Perhaps we should move all the identities for the algorithms defined in the “ietf-tls-common” module to an IANA-maintained “iana-tls-parameters” module.  Thoughts?

[Qin]: I agree this seems straightforward to me. The module name could be "iana-tls-types" like.

<tp> except that that name makes it look like the work of the TLS WG which it should be but it not.

By extension, the same statement applies to the “ssh-client-server” draft and the IANA maintained SSH parameters page: https://www.iana.org/assignments/ssh-parameters/ssh-parameters.xhtml.

One potential issue with doing this is that the existing identities have “if-feature” statements that constrain them to specific TLS-versions and algorithm-families, and are sometimes marked as “deprecated".  By example:

    identity ecdhe-ecdsa-with-aes-128-cbc-sha256 {
       if-feature "tls-1_2";
       if-feature "tls-ecc and tls-sha2";
       base cipher-suite-base;
       status "deprecated";
       description
           "Cipher suite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256.";
       reference
          "RFC 5289: TLS Elliptic Curve Cipher Suites with
                             SHA-256/384 and AES Galois Counter Mode (GCM)";
    }

But that information is NOT captured in the IANA-maintained page.   What to do?

[Qin]: Why not bind tls version with cipher-suite in the ecdhe-ecdsa-with-aes-128-cbc-sha256 identity definition. Also I feel identity name is too long.

<tp>  The TLS WG defined and named the cipher suite and that is the name they gave it.  Use something else and no one familiar with TLS will know what it is.



One option would be to drop all the feature statements.  All they do is limit the totality of algorithms presented to an administrator, when configuring which algorithms the client/server should support.  Worst case, all algorithms (of a given type) are presented, regardless if supported by the, e.g., TLS protocol version.  When configuring clients/servers using, e.g., text-based configuration files, such filters are never available.  Does anyone know what Cisco/Juniper/etc. devices do in their command-line and/or web interfaces?

[Qin]: See above, do we need to introduce if-feature "tls-1_2" and why not tie the tls version in the cipher-suite name such as "tls12-ecdhe-ecdsa-with-aes-128-cbc-sha256". 

<tp> Again, the TLS WG designed and named the cipher suites and they are intended to be version neutral.  Look at the IANA registry, dozens of them, all TLS_  call them something different and no one familiar with TLS will know what you are talking about.  The choice of the name was made by the TLS WG and it would be wrong of the Netconf WG to seek to improve it after all these decades.  You might argue that encoding all the semantics in the name was a poor choice but if so, adding more semantics is not an improvement

Tom Petch

Another option, which I like because it’s less work for me (unless someone can volunteer a GitHub pull request), is to remove the ietf-[tls/ssh]-common modules altogether.  They’re currently optional-to-configure and, when not configured, it’s an implementation-specific decision what, e.g., algorithms to list as being supported during the protocol handshake.  Personally, I’ve never used them (or implemented support for them), happily deferring to internal code and underlying libraries.  In lieu of us not defining these modules now, applications could augment-in their own configuration nodes and, of course, a future WG effort could add them.  Thoughts on this approach?

K.



________________________________________
From: netconf <netconf-bounces@ietf.org> on behalf of Kent Watsen <kent+ietf@watsen.net>
Sent: 03 June 2021 03:25
To: netconf@ietf.org
Subject: Re: [netconf] Create IANA-defined modules?

I’ve been looking at this change (since no one volunteered to help :sigh:) and noticed that Gary had feature statements for optional-to-implement algorithms.

When we were doing the now-abandoned “algorithms” work in crypto-types, we defined a top-level “config false” tree for a list of supported algorithms.  For instance, see "supported-symmetric-algorithms” here:  https://datatracker.ietf.org/doc/html/draft-ietf-netconf-crypto-types-14#appendix-A.1.  This seems better to me, agreed?  Would an RPC be better than a "config false" tree?

Does it matter if the algorithms are defined using an enumeration or as an identity?

Gary defined them as identities, but the abandoned crypto-types work had them as enumerations.  In either case, the IANA-maintained module needs to be *implemented* - thoughts?

Note: if “identity” statements are used, and the module is *implemented* (for the top-level “supported algorithms” data tree) does NOT mean the server supports all the algorithms, which is true only if the algorithm appears in the “supported algorithms” list - still makes sense, or is this a compelling reason to NOT use identities?

PS: putting each algorithm into its own module that can be distinctly “implemented* is a non-starter.

K.