[netconf] Fwd: [netconf-wg/trust-anchors] Missing prefixes in typedefs certificate-ref and public-key-ref (#1)
Kent Watsen <kent+ietf@watsen.net> Wed, 15 July 2020 18:23 UTC
Return-Path: <0100017353b7bf1e-ff6960e2-28be-4651-90a1-4c91fdfcd212-000000@amazonses.watsen.net>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 65A133A0AF7 for <netconf@ietfa.amsl.com>; Wed, 15 Jul 2020 11:23:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=amazonses.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PattjP8kDX62 for <netconf@ietfa.amsl.com>; Wed, 15 Jul 2020 11:23:39 -0700 (PDT)
Received: from a48-92.smtp-out.amazonses.com (a48-92.smtp-out.amazonses.com [54.240.48.92]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 49D383A0AD9 for <netconf@ietf.org>; Wed, 15 Jul 2020 11:23:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=224i4yxa5dv7c2xz3womw6peuasteono; d=amazonses.com; t=1594837417; h=From:Content-Type:Mime-Version:Subject:Message-Id:References:To:Date:Feedback-ID; bh=TTmC74HucVuMx2TCATq4tndauUBgzxftIJ13vQZLJpY=; b=MbS9U8NFY57hf8mSrlvRBQjMTU8ByfidhRqqmR9FL0riLqwhRPERfkfMlx44tO7j kWSvSSjd/9+ojVR6grDWfNG2VmBNxvCdICBUIyCCglANIk3jvfg7n6NVA+XCll4Lxos JagAUG0uWGko3l7d0mrL9aOB48GHMPmVV55auMMc=
From: Kent Watsen <kent+ietf@watsen.net>
Content-Type: multipart/alternative; boundary="Apple-Mail=_9582C3CA-F9AA-4143-8FBD-6FC6E6EF8C66"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.80.23.2.2\))
Message-ID: <0100017353b7bf1e-ff6960e2-28be-4651-90a1-4c91fdfcd212-000000@email.amazonses.com>
References: <netconf-wg/trust-anchors/issues/1@github.com>
To: "netconf@ietf.org" <netconf@ietf.org>
Date: Wed, 15 Jul 2020 18:23:37 +0000
X-Mailer: Apple Mail (2.3608.80.23.2.2)
X-SES-Outgoing: 2020.07.15-54.240.48.92
Feedback-ID: 1.us-east-1.DKmIRZFhhsBhtmFMNikgwZUWVrODEw9qVcPhqJEI2DA=:AmazonSES
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/KHaK5U1RAdESDphnoMdjFSprQ0g>
Subject: [netconf] Fwd: [netconf-wg/trust-anchors] Missing prefixes in typedefs certificate-ref and public-key-ref (#1)
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jul 2020 18:23:41 -0000
The following issue was submitted via GitHub issue tracker. I admit that I’ve been lax in prefixing nodes in paths, and it likely occurs in the entire collection of drafts that we’ve been working on. Honestly, when a prefix should NOT be used isn’t entirely clear. The grouping rules allow for local-scope resolution when a prefix is not specified, but when that might be needed or useful is unclear to me. Unless there is an objection, I plan to add prefixes to all paths in all the drafts. K. > Begin forwarded message: > > From: Nick Hancock <notifications@github.com> > Subject: [netconf-wg/trust-anchors] Missing prefixes in typedefs certificate-ref and public-key-ref (#1) > Date: July 15, 2020 at 4:59:05 AM EDT > To: netconf-wg/trust-anchors <trust-anchors@noreply.github.com> > Cc: Subscribed <subscribed@noreply.github.com> > Reply-To: netconf-wg/trust-anchors <reply+AARGT6XVUHSNEPJJX7YUVQV5DKTFTEVBNHHCOK6YC4@reply.github.com> > > > yanglint flags an issue when using the typedefs 'certificate-ref' and 'public-key-ref'. > > Since the typedef references nodes in ietf-truststore and the node, 'certficate-bag', defined in another module as a sibling node to the node where you reference a certificate, you need to use prefixes on all nodes within ietf-truststore. > > If you change the definition, for example, of certificate-ref as follows, yanglint, then returns no errors when the typedef is used: > > typedef certificate-ref { > type leafref { > path "/ts:truststore/ts:certificate-bags/ts:certificate-bag" + > "[ts:name = current()/../certificate-bag]" + > "/ts:certificate/ts:name"; > } > description > "This typedef define a reference to a specific certificate > in a certificate bag defined in the Truststore. This > typedef requires that there exist a sibling 'leaf' node > called 'certificate-bag' that SHOULD have the typedef > 'certificate-bag-ref'."; > } > > — > You are receiving this because you are subscribed to this thread. > Reply to this email directly, view it on GitHub <https://github.com/netconf-wg/trust-anchors/issues/1>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AARGT6UNK5HM2RXXW2MTHEDR3VVVTANCNFSM4O2KHCZA>. >