IETF Logo Mail Archive

[netconf] AUTH48 changes to RFC 8526 <draft-ietf-netconf-nmda-netconf-08>

Mahesh Jethanandani <mjethanandani@gmail.com> Tue, 29 January 2019 18:55 UTC

Return-Path: <mjethanandani@gmail.com>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 02866130FC5 for <netconf@ietfa.amsl.com>; Tue, 29 Jan 2019 10:55:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OHIsNnDpu250 for <netconf@ietfa.amsl.com>; Tue, 29 Jan 2019 10:54:57 -0800 (PST)
Received: from mail-pf1-x42c.google.com (mail-pf1-x42c.google.com [IPv6:2607:f8b0:4864:20::42c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0C4A4130FC7 for <netconf@ietf.org>; Tue, 29 Jan 2019 10:54:57 -0800 (PST)
Received: by mail-pf1-x42c.google.com with SMTP id i12so10081208pfo.7 for <netconf@ietf.org>; Tue, 29 Jan 2019 10:54:57 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:mime-version:subject:message-id:date:to; bh=6MTATbD6HkQy0GgTeRIU76fHH1ZUWF0kPvoInU5Xj6Y=; b=GgHVD2iR00sXrNEzSlbXWqlATMRDQgJ9rPpdTJOynIP/aHoQrrKNpsIBKmKOA3OgGz HUsHEph+1JF15RZQdbbFPSkGdpPVLAAkipQWRM6jO7lGVlpZxR8t6RZ9U1dYZT+actt/ B+BzJ6UrfGoqSKRbZVvlzwrX/aNSZRD3cWGp5fvKfSVuTdfL4ukRoM3MryUz3rOevjKN mB9QKsS1mIKof3DeoHJuOWHqSiliQJVn2ysIU2vGKdIAbOgYuCQTOwxVo5BenX+kkG05 BtdfaDett2TiQaYuPrQn2xke6DG1zICu7VC1K91uZMIj3XUVgLc0dgLfCc6RaTHBdIm7 1K0w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:mime-version:subject:message-id:date:to; bh=6MTATbD6HkQy0GgTeRIU76fHH1ZUWF0kPvoInU5Xj6Y=; b=jUl6li3o6QZRHzQ6ZdMFWgKHnmHEFVi07dj4KrsPRiLrYTeZrlKjBSpP3xzob72Byp QuhX07j4nDJjLskETYwsD82p8zmybnxa/RFqDNwcPgTFQ6sauJtk+cXdtAprj9/wOsv6 Z9aU4EGFXglzlFtrtn5N+kgUCmtFoaOv5RyyA90npnQlnemc6sv1cYB0zHfxnovonGRM MoCUASsK2N60qYQDS+uhWYRaC4GZxWFaXW4pQG5J01NnWHi/11VE8fOm7+yILlgjBkaA MCn6eLe3Vzb3zgaEqVNekFLeWwmPetAGIb22e4tbleiO9exDktAwBIG0XVqKTlHx0+Jx WlzQ==
X-Gm-Message-State: AJcUukclrYoTzypMA3zXY5fkDcJh0eHNFxdszhdDYHw0xWFiIGN4Nwdo RAEPOu4y6kr+mLCaYjmRpMRujXef
X-Google-Smtp-Source: ALg8bN7ybqxsNIfCBtaPq7p0PWjnKsufBSOD1w4mv6Fcgzl+2wVbCEhfHUNiNU1MXkt1817MDycP0w==
X-Received: by 2002:a62:f51a:: with SMTP id n26mr17272007pfh.245.1548788096078; Tue, 29 Jan 2019 10:54:56 -0800 (PST)
Received: from [10.33.123.214] ([66.170.99.1]) by smtp.gmail.com with ESMTPSA id w128sm49152232pfw.79.2019.01.29.10.54.54 for <netconf@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 29 Jan 2019 10:54:55 -0800 (PST)
From: Mahesh Jethanandani <mjethanandani@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_5BDAEAFA-6800-4709-94C2-D83D58EEA71E"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Message-Id: <E27BF6D6-8FC9-491A-A338-9830D750F3A7@gmail.com>
Date: Tue, 29 Jan 2019 10:54:54 -0800
To: Netconf <netconf@ietf.org>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/QnME3UYVyOYGLd7nTq2DQxyrpS4>
Subject: [netconf] AUTH48 changes to RFC 8526 <draft-ietf-netconf-nmda-netconf-08>
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Jan 2019 18:55:00 -0000

NETCONF WG,

During the AUTH48 review of draft-ietf-netconf-nmda-netconf-08, the authors found a couple of things that needed further clarification. The edits are reflected in this e-mail using OLD: and NEW:. Since the changes are technical changes, we needed to make sure that the WG was ok with the changes. This starts a one week review period terminating next Tuesday, February 5 to provide any comments you might have. If providing comments, please be specific in the changes you would like to see, preferably using your own OLD: and NEW:. If no comments are received, it will be deemed that the changes are fine with the WG. The two set of changes are in the YANG model itself, and in Section 3.1.1.4.

In the YANG model:

OLD:

        choice origin-filters {
          when 'derived-from-or-self(datastore, "ds:operational")';
          if-feature "origin";
          description
            "Filters based on the 'origin' annotation.";
          leaf-list origin-filter {
            type or:origin-ref;
            description
              "Filter based on the 'origin' annotation.  A node matches
               the filter if its 'origin' annotation is derived from or
               equal to any of the given filter values.";
          }
          leaf-list negated-origin-filter {
            type or:origin-ref;
            description
              "Filter based on the 'origin' annotation.  A node matches
               the filter if its 'origin' annotation is not derived
               from and not equal to any of the given filter values.";
          }
        }

NEW:

        choice origin-filters {
          when 'derived-from-or-self(datastore, "ds:operational")';
          if-feature origin;
          description
            "Filters configuration nodes based on the 'origin'
             annotation.  Configuration nodes that do not have an
             'origin' annotation are treated as if they have the
             'origin' annotation 'or:unknown'.

             System state nodes are not affected by origin-filters and
             thus not filtered.  Note that system state nodes can be
             filtered with the 'config-filter' leaf.";

          leaf-list origin-filter {
            type or:origin-ref;
            description
              "Filter based on the 'origin' annotation.  A
               configuration node matches the filter if its 'origin'
               annotation is derived from or equal to any of the given
               filter values.";
          }
          leaf-list negated-origin-filter {
            type or:origin-ref;
            description
              "Filter based on the 'origin' annotation.  A
               configuration node matches the filter if its 'origin'
               annotation is not derived from and not equal to any of
               the given filter values.";
          }
        }

OLD:

        leaf config-filter {
          type boolean;
          description
            "Filter for nodes with the given value for their
             'config' property.  If this leaf is not present, all
             nodes are selected.

             For example, when this leaf is set to 'true', only 'config
             true' nodes are selected.";
        }

NEW:

        leaf config-filter {
          type boolean;
          description
            "Filter for nodes with the given value for their 'config'
             property.  When this leaf is set to 'true', only 'config
             true' nodes are selected and, when set to ‘false’, only
             ‘config false’ nodes are selected.  If this leaf is not
             present, no nodes are filtered.";
        }

Add the following example to 3.1.1.4:

    In order to not retrieve any system state nodes, the
    "config-filter" can be used:

    <rpc message-id="103"
         xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
      <get-data xmlns="urn:ietf:params:xml:ns:yang:ietf-netconf-nmda"
                xmlns:ds="urn:ietf:params:xml:ns:yang:ietf-datastores"
                xmlns:or="urn:ietf:params:xml:ns:yang:ietf-origin">
        <datastore>ds:operational</datastore>
        <subtree-filter>
          <bgp xmlns="http://example.com/ns/bgp <http://example.com/ns/bgp>"/>
        </subtree-filter>
        <config-filter>true</config-filter>
        <origin-filter>or:intended</origin-filter>
        <origin-filter>or:system</origin-filter>
        <with-origin/>
      </get-data>
    </rpc>

    <rpc-reply message-id="103"
               xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
      <data xmlns="urn:ietf:params:xml:ns:yang:ietf-netconf-nmda">
        <bgp xmlns="http://example.com/ns/bgp <http://example.com/ns/bgp>"
             xmlns:or="urn:ietf:params:xml:ns:yang:ietf-origin"
             or:origin="or:intended">
          <peer>
            <name>2001:db8::2:3</name>
            <local-port or:origin="or:system">60794</local-port>
          </peer>
        </bgp>
      </data>
    </rpc-reply>

Thanks.

Mahesh Jethanandani // as shepherd
mjethanandani@gmail.com

v2.23.0 | Report a Bug | By Email