IETF Logo Mail Archive

Re: [netconf] WG LC for three drafts

"Eric Voit (evoit)" <evoit@cisco.com> Fri, 12 June 2020 20:03 UTC

Return-Path: <evoit@cisco.com>
X-Original-To: netconf@ietfa.amsl.com
Delivered-To: netconf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 316813A0DF6 for <netconf@ietfa.amsl.com>; Fri, 12 Jun 2020 13:03:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.598
X-Spam-Level:
X-Spam-Status: No, score=-14.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=by4/rIeR; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=cisco.onmicrosoft.com header.b=kF21/3v7
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ibcpoJaA5vLC for <netconf@ietfa.amsl.com>; Fri, 12 Jun 2020 13:03:53 -0700 (PDT)
Received: from alln-iport-2.cisco.com (alln-iport-2.cisco.com [173.37.142.89]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BF3063A0CCB for <netconf@ietf.org>; Fri, 12 Jun 2020 13:03:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=19756; q=dns/txt; s=iport; t=1591992197; x=1593201797; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=RMUldaKNcHzorQvV9sZaKxCLg7mLt+yiSZNnwu06Q5Q=; b=by4/rIeRHcyJmBv04hS86Mt7e18d+bvTSmZQGi6WRKVOf9zyzHKsQ5/Q GSjp3SFQesjVK32d6nC/yP1OeNiio7j2JCsGjSqVFgo2RNRT5b/M3h47i FjylxQ4omJqhp8cVD+FFmbW3AorvHTC5K1qWvkI0KkCzaQ+ixgZWuUDPa g=;
X-Files: smime.p7s : 3975
IronPort-PHdr: 9a23:8q2fUxbkuTxoo/IgCilAgjT/LSx94ef9IxIV55w7irlHbqWk+dH4MVfC4el21QaXD5rS9+lJjazQvryzEWAD4JPUtncEfdQMUhIekswZkkQmB9LNEkz0KvPmLklYVMRPXVNo5Te3ZE5SHsuteFTOuXC0qzgfBka3OQ98PO+gHInUgoy+3Pyz/JuGZQJOiXK9bLp+IQ/wox/Ws5wdgJBpLeA6zR6arw==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AAAQCU3uNe/4oNJK1dCRoBAQEBAQEBAQEBAwEBAQESAQEBAQICAQEBAUCBSoEjL1IHbystLywKh2ADjTyHVYIqiV0OggKCZoFCgRADVQQHAQEBCQMBARgBCgoCBAEBg39FAoIrAiQ4EwIDAQELAQEFAQEBAgEGBG2FWwyFcgEBAQECAQEBEBsTAQEsCwEEBwQCAQgRBAEBLwIfBgsdCAIEDgUIBhSDBTiBRk0DDhEPAQ6ofQKBOYhhdIE0gwEBAQWBM1EDgx4NC4IHBwMGgTiBU4ERhEuDWIFEGoFBP4FUgk0+gXklSQEBgTkSHINFgi2aEIk7kCpMCoJZhCaCU4QiiRmFB4JwiRqFGoJeiE6CF510kVACBAIEBQIOAQEFgWoigVZwFTuCaVAXAg2OHgsYg06FFIVCdAISIwIGCAEBAwl8ji8BgRABAQ
X-IronPort-AV: E=Sophos;i="5.73,504,1583193600"; d="p7s'?scan'208,217";a="512384115"
Received: from alln-core-5.cisco.com ([173.36.13.138]) by alln-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 12 Jun 2020 20:03:16 +0000
Received: from XCH-RCD-003.cisco.com (xch-rcd-003.cisco.com [173.37.102.13]) by alln-core-5.cisco.com (8.15.2/8.15.2) with ESMTPS id 05CK3FhE031006 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 12 Jun 2020 20:03:15 GMT
Received: from xhs-rcd-003.cisco.com (173.37.227.248) by XCH-RCD-003.cisco.com (173.37.102.13) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 12 Jun 2020 15:03:15 -0500
Received: from xhs-rcd-003.cisco.com (173.37.227.248) by xhs-rcd-003.cisco.com (173.37.227.248) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 12 Jun 2020 15:03:15 -0500
Received: from NAM04-CO1-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-003.cisco.com (173.37.227.248) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Fri, 12 Jun 2020 15:03:15 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=T/CQ9cHxFXN5V2IGDu5oeja0llVx4xgzMPKJ/dVuQ22g8wS+Q7V1U9fuY0j6/ofr+l87ZhKV5imnl+3wr7tJ5n7y0EuHYZP/F267iLeDmx5WMFXVKlTACB2MwdncXT0GKCl/4HKXPh4DDLMBBv1qDoW9Q6VD/HsrFIDP/urQNyTQmxMKTVmYsQAibfuzXDPvSSFy1v/W7iZcLyYR776aMyIgcxMC7W8nB8oBRhDRhmVMBHNJtqzC9aHHYaZpH1lplDTHJGdBZgUuKmDlZCq04wEC8CzjnLWCWRNee38sBfYvV99XTN4QCpcda+kocZJwHWOoHw+wE9SMtiAXdWYjJQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=WqHcO1npSzBjBt3HApnJD9U+rDHxFpbswtA2dZWqz8U=; b=R7ihA6pUPSkodr8MSzEOnzwGY+TNm6LkuTecGw7yyTdmvrw/i6W506/yIfdF9izipZLBfeM1925a6gITPELQmwOKbr9D04qMxtND4yKUQdmPbD0T8k7ibkgP1r0hDo3TYmZeE6vc23Ke7gBy8mb9tsHQvaMcD/ybuQMjuD120gt9W3NtLkNh4hUQH8JAWlnMPa9/NSCIsYrctcq1iZNeaB/6fmqZEBJXheS2LsUktz5cXl1MOP8oAl8fpAtf/kwSslRQn6bOO4MmTd0Sib6Z6GZsRFSx3pHFjpBKPdqKAJOnkqDbheYbK8sJU0iRLeft/0LKAyZWUWypWuT3o4kudA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=WqHcO1npSzBjBt3HApnJD9U+rDHxFpbswtA2dZWqz8U=; b=kF21/3v7lHG5l13DLOyuUHpiXNXYECBDdAecIW8esq2kbh0hYdyWe3IrAJ9joNvuc0yBvXQzFgL0xNoFv8tI5Qal4KiM+xSbShsFqgM+WuM/bC6tNslrAH9GtnryEzY/vouEz4/nAIwH7rcmAoXma0X6oXF6y/oFFdI7mRCYhys=
Received: from BL0PR11MB3122.namprd11.prod.outlook.com (2603:10b6:208:75::32) by MN2PR11MB4319.namprd11.prod.outlook.com (2603:10b6:208:193::27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3088.21; Fri, 12 Jun 2020 20:03:13 +0000
Received: from BL0PR11MB3122.namprd11.prod.outlook.com ([fe80::20ac:d8b4:4a4f:4290]) by BL0PR11MB3122.namprd11.prod.outlook.com ([fe80::20ac:d8b4:4a4f:4290%7]) with mapi id 15.20.3088.025; Fri, 12 Jun 2020 20:03:13 +0000
From: "Eric Voit (evoit)" <evoit@cisco.com>
To: Kent Watsen <kent+ietf@watsen.net>
CC: Netconf <netconf@ietf.org>
Thread-Topic: [netconf] WG LC for three drafts
Thread-Index: AQHWOThTTo+30icCv0mQD3Parb0A+ajVR//QgAApLlA=
Date: Fri, 12 Jun 2020 20:03:13 +0000
Message-ID: <BL0PR11MB3122B9D49C37501D64E762C6A1810@BL0PR11MB3122.namprd11.prod.outlook.com>
References: <A1A5BD42-AB3F-477A-B291-81E213A2F0DB@gmail.com> <BL0PR11MB3122ABE4CF14BAF3805DFF2FA1810@BL0PR11MB3122.namprd11.prod.outlook.com>
In-Reply-To: <BL0PR11MB3122ABE4CF14BAF3805DFF2FA1810@BL0PR11MB3122.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: watsen.net; dkim=none (message not signed) header.d=none;watsen.net; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [173.38.117.76]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 3e37d452-bcc6-44d2-3200-08d80f0ba39d
x-ms-traffictypediagnostic: MN2PR11MB4319:
x-microsoft-antispam-prvs: <MN2PR11MB4319CA3F5B0DF77C990E8AB7A1810@MN2PR11MB4319.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0432A04947
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: g7eueksiydMoUtSFn8QLWDLQ2xO1czkoAi6fqqcyKluMIsxr2nGvX24csvDoBfzNUVh1vP/dIP1jWs72IyQ1E5WcCZmGLQsoNneaCP2vh0nYB00S3KxTVi9chxFz/RbePy5irNO+GWJJknuAHbE/B/knIYb6bM7kx87ntdWhDSu/9kVNZ21jWOp0vJWH/2aLL0E0d+nz7elUOQhJEqfFSYu7kskQY1J74gtArwIfpky7plAM1vl5HMsdF8oSW6xWjXrG5a9GbKmHmSoEUEqE9f1XgidtFhYm7aoq1quucXKgtCeZWadTNoRs/XxwSYWTzcrRNqvUfPHGFYB4/jDkeb3Zvai2OROwoS4SYrCw1u8uILQESnbvZA3YUTuMtHOYH+/ob3sUw4Hf5oVGapti44Vj/ocey3pH9/FNszwSPJXIMv2URm0xUIccq8Durz/WBulxTE1q2fR+A1yie0tzViOXKU9PhO2uV6rmDjLgJ6U=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL0PR11MB3122.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(376002)(346002)(366004)(136003)(396003)(39860400002)(186003)(9686003)(2906002)(86362001)(33656002)(99936003)(55016002)(966005)(4326008)(478600001)(8676002)(26005)(64756008)(5660300002)(8936002)(316002)(53546011)(66446008)(76116006)(6506007)(52536014)(2940100002)(7696005)(66616009)(66476007)(83380400001)(9326002)(66556008)(71200400001)(66946007)(43620500001)(15398625002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_073E_01D640D2.F54DE140"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 3e37d452-bcc6-44d2-3200-08d80f0ba39d
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Jun 2020 20:03:13.5253 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: wonG2kKox3bGFL0SMAeApPU2jWmYPwtcLwKYz8ET3S2qxZAnSlKnU7jmcHgtce7g
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4319
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.13, xch-rcd-003.cisco.com
X-Outbound-Node: alln-core-5.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/netconf/W8JbJj3Ef2DJerro_l-ZhgXSZXY>
Subject: Re: [netconf] WG LC for three drafts
X-BeenThere: netconf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NETCONF WG list <netconf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/netconf>, <mailto:netconf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/netconf/>
List-Post: <mailto:netconf@ietf.org>
List-Help: <mailto:netconf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/netconf>, <mailto:netconf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Jun 2020 20:03:56 -0000

Hi Kent,

 

I have been reading farther, and I see that the full
iana-hash-algs@2020-03-08.yang has been removed from -v15.  That is where
the TCG identity algorithms might have been merged in my thread below.

 

A few thought based on that:

 

(1) In the draft-ietf-netconf-crypto-types, in the YANG model you should
likely remove the description text which claims support for "algorithm" in
three of the grouping statements.

 

(2) Are there plans to evolve iana-hash-algo.yang anywhere?  In your May
14th message, you  say :  "Assuming a future effort mimicked Option #2, then
"yes", as I'd expect an "ietf-ssh-common:generate-asymmetric-key" RPC to
contain an "input" node that is an identityref to the
"ssh-asymmetric-algorithm" identity.".   I would be willing to help on that
work.

 

 

Thanks,

Eric

 

 

 

> -----Original Message-----

> From: netconf <netconf-bounces@ietf.org> On Behalf Of Eric Voit (evoit)

> Sent: Friday, June 12, 2020 1:42 PM

> To: Kent Watsen <kent+ietf@watsen.net>

> Cc: Netconf <netconf@ietf.org>

> Subject: Re: [netconf] WG LC for three drafts

> 

> Hi Kent,

> 

> I have been reading draft-ietf-netconf-crypto-types, and the thread:

Virtual

> "hum" for the "key generation" issue discussed at virtual meeting.

> 

> I have a couple questions on the previous "asymmetric-algorithm-type"  and

> what is now in "asymmetric-key-pair-grouping".  My reading is that instead

> of the previous ENUMs of -v14, other applications/WGs will now need to

> create identities for the various algorithm types.  And this is fine.

> 

> If I have this correct, then each of the TCG Algorithm Registry ID values

of

> TPM2 specifications in Table 9

> https://www.trustedcomputinggroup.org/wp-content/uploads/TPM-Rev-2.0-

> Part-2-

> Structures-01.38.pdf

> could have its own identity.   And there would be no barrier to each of

> these identities also having another base identity that might be "tpm2-

> algorithm".  In this correct?

> 

> If this is correct, my second question is whether there will be an attempt

to

> ask other YANG models to import these application identities elsewhere?

> As you and Rob note in the thread, trying to predict the desired identity

> inheritance hierarchy is non-trivial.

> 

> Thanks,

> Eric

> 

> > -----Original Message-----

> > From: netconf <netconf-bounces@ietf.org> On Behalf Of Mahesh

> > Jethanandani

> > Sent: Tuesday, June 2, 2020 7:48 PM

> > To: Netconf <netconf@ietf.org>

> > Subject: [netconf] WG LC for three drafts

> >

> > NETCONF WG,

> >

> > The authors of

> >

> > - draft-ietf-netconf-crypto-types

> > - draft-ietf-netconf-keystore

> > - draft-ietf-netconf-trust-anchors

> >

> > have indicated that these drafts are ready for Last Call (LC).

> >

> > This kicks of a 2 week WG LC for the three drafts. Please review and

> > send

> any

> > comments to the WG mailing list or by responding to this e-mail.

> > Comments can be statements such as, I read/reviewed the document and

> > believe it is ready for publication, or I have concerns about the

> > document. For the

> latter,

> > please indicate what your concerns are.

> >

> > Any reports on implementation status or plans to implement are also

> > very useful.

> >

> > Thanks.

> >

> > Mahesh Jethanandani (as co-chair)

> > mjethanandani@gmail.com

> >

> >

> >

> > _______________________________________________

> > netconf mailing list

> > netconf@ietf.org

> > https://www.ietf.org/mailman/listinfo/netconf

v2.23.0 | Report a Bug | By Email