Re: [nfsv4] WG adoption of draft-dnoveck-nfsv4-security
David Noveck <davenoveck@gmail.com> Tue, 23 January 2024 14:46 UTC
Return-Path: <davenoveck@gmail.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 93EAFC14F739; Tue, 23 Jan 2024 06:46:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QtW1Q_mymjb8; Tue, 23 Jan 2024 06:46:01 -0800 (PST)
Received: from mail-qv1-xf2b.google.com (mail-qv1-xf2b.google.com [IPv6:2607:f8b0:4864:20::f2b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E2258C14F73E; Tue, 23 Jan 2024 06:45:16 -0800 (PST)
Received: by mail-qv1-xf2b.google.com with SMTP id 6a1803df08f44-68195c0c8d1so17487956d6.3; Tue, 23 Jan 2024 06:45:16 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1706021116; x=1706625916; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=1KcKF4XNzWaMxxAwd3tvwqxlC5BjaThEEFEbZIsus7c=; b=gfXlZbr/DWCrej/rgvJH956wuK8NOquNHxMZ2qTjdtowQThw3Vlo5Bj57dHyzosbKq fkNOVE2cbEE++twNqKJE/I137ZMfV2uV1gkWlF7Cr4W9t+8oHrwosbZCsB+DcJV5vF/r 7lckjGXlynUkUlKUGaUxkD/DAXmTmt7VtVhuy5jCyY0LojVbcsDdfL3AXyNJosA/uFgc 6nR7im4KgpyMX+94zj1u9M7X5fc0KKXrPEVbBrYyVp6HLBy8ej1xdtdhe8M4MAKRx1L6 +bzFWEQqKfzwC/66kgAMQTkjTjHwmWIPzwdFWBuMn68CfvZu+M9TCaEFbAwG1NRoX19G wPdQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1706021116; x=1706625916; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=1KcKF4XNzWaMxxAwd3tvwqxlC5BjaThEEFEbZIsus7c=; b=eRT4DcqT4716ViAuj0z7zWjKWCwnjjNg9+MFQrlqg+C/iIWBmRugmDV3VTeGTVZaab Qr9pBXYvTnurQRuXQicJU50gDE/MfLm5Qo7xH9zGI3ZTe5wIckQV31/BytkP6e4hqHt+ Tn4SgoprFkCGBt2vY7j9zRN1K3igWvR5reVjTJ0Vcikv40hhw+AO4BcCLaFLMlV+L+zA PofpOzfXyZpz3ZeEd/Rx5AQDLteXx6hHERjAcjnmQgOLSDpIe0JtKUZok3SUBjuofhdz QICQ7C4j9EQSYGz7edB/RPPcJA//JVm7R7B2tT699heK72uS+QkiTuwJ7Lvb4kS4lYZm //9Q==
X-Gm-Message-State: AOJu0Yzn+U8IqGH2J2gRJDRG4Hmuymz9AIS3VExD63AeNYXDaiqyizqU o5b2cfzB+8qd5AXACIuSE42R2MjKMrFZx88e1Fk6hI6YLh++XGl4r6IgVgqpNowZfMw5CndUeJY hHo4ABBXtj21TPKFz1hFKiuiGAN8=
X-Google-Smtp-Source: AGHT+IFqzpXse1NA2Ijpq9oNhL7WcegPqO19PwhLSMLZf89R6D2lbDsUMwv5nLDhotTt3IiMdfR3+RsdaPv75cmfcrg=
X-Received: by 2002:a05:6214:d89:b0:681:2566:a90b with SMTP id e9-20020a0562140d8900b006812566a90bmr919989qve.47.1706021115713; Tue, 23 Jan 2024 06:45:15 -0800 (PST)
MIME-Version: 1.0
References: <CADaq8jeJR5+qgN+QkD3E8ZSryz0UypLB7uwCfFTR-b7gZjOcBA@mail.gmail.com> <CADaq8je0jGV=NQGxui6kSA9z4KUgLYb0MQWXP_ahL5Lw8=symA@mail.gmail.com> <CAEh=tcejswQzn4yp503OgDCsfXCgZMTqbDHjwzP_Lt_SoFfYnA@mail.gmail.com>
In-Reply-To: <CAEh=tcejswQzn4yp503OgDCsfXCgZMTqbDHjwzP_Lt_SoFfYnA@mail.gmail.com>
From: David Noveck <davenoveck@gmail.com>
Date: Tue, 23 Jan 2024 09:45:03 -0500
Message-ID: <CADaq8jcXR2-xZQ_uHPLBBa+4Q6RfvkfATzqbAzgwH1Kq1ZQZoA@mail.gmail.com>
To: Zaheduzzaman Sarker <zahed.sarker.ietf@gmail.com>
Cc: nfsv4-chairs <nfsv4-chairs@ietf.org>, NFSv4 <nfsv4@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000094dcc7060f9dfeb3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/9xcSt4sayANWzOfiFNgDqPWFSF0>
Subject: Re: [nfsv4] WG adoption of draft-dnoveck-nfsv4-security
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Jan 2024 14:46:02 -0000
As there was no response to this request from the chairs, let me provide an update. If the chairs have some relevant input, they can add it. Chris did not provide an update. and expressed no views about the situation. I drew the conclusion that he is not involved in this and is assuming Brian is taking care of it. Brian and I spoke during the official meeting time, but, since there were no other attendees, we had the opportunity to clarify some matters related to this issue. - Brian told me matters had been delayed by his illness (covid-19). - We discussed the pending documents and agreed to have a more detailed discussion later. At that later meeting, held on 1/19: - I reiterated the original request for an adoption call (originally made 12/20/2023) and Brian agreed to follow up. - We clarified the need for Bran to send the WG a proposed list of consensus items, taken from Appendix B of *draft-dnoveck-nfsv4-security-07. *There had previously been confusion about this with Brian looking at Appendix C of *draft-ietf-nfsv4-rvc5661bis *and not finding those item. I referred him to the correct appndix and stressed that the current focus needed to be on the security document, given that the original request for an adoptional call, made in 2022 jad been lost track of. I expect Brian to notify the WG about the adoption call in the next few days. Once that is done, I would be able to send out an almost complete draft of the ACL implementation report for ONTAP that I have been working on and possibly make it an agenda item, together with Brian's list of consensus items to discuss, for the next interim meeting on 1/30. On Mon, Jan 8, 2024 at 9:56 AM Zaheduzzaman Sarker < zahed.sarker.ietf@gmail.com> wrote: > Chairs, please response to David's request and share your views. > > //Zahed > > On Mon, Jan 8, 2024 at 3:53 PM David Noveck <davenoveck@gmail.com> wrote: > >> Although Gmail thinks that this a reply, it is actually a follow-up for >> my request sent on 12/20/2023. So there is no issue of me replying to >> myself and no issue of multiple personality syndrome to worry about :-) >> >> I had originally hoped that the three weeks to the next wg interim >> meeting would give us time to complete a two-week comment period and allow >> us to resolve this long-deferred matter at the 1/16 interim meeting. Given >> the time that has already elapsed, that no longer seems possible. Sigh! >> >> I have received no updates regarding this request. If there are >> impediments that would delay prompt work on this request, I need whoever is >> dealing with this request to let me know about the issue so that it can get >> addressed. >> >> If that is not possible, we will have to address the matter at the 1/16 >> interim meeting. Given what happened with the original request to adopt >> -06, I don't think that we can again simply wait passively and hope that >> one of the chairs is taking care of this matter. It makes more sense for >> me and whichever chair takes responsibility for this to discuss the next >> steps at this and subsequent interim meetings, allowing us to make sure we >> have process that leads to a prompt resolution of this matter. >> >> On Wed, Dec 20, 2023, 5:23 AM David Noveck <davenoveck@gmail.com> wrote: >> >>> I would like to formally request that the working group adopt this >>> document, currently at its -07 draft, as a working group document. >>> >>> I suggest that the working group be asked for its comments as soon as >>> possible. Given that the next interim meeting is scheduled for 1/16, this >>> should allow a two-week period for comments plus time to summarise the >>> results and present a decision at the interim meeting. This will give us >>> an opportunity to formulate a plan of action, whatever the decision is. I >>> don't think we can afford a repeat of the situation with the previous >>> adoption call in which there was uncertainty about the precise contours of >>> the working group's response and a consequent delay as the draft whose >>> adoption was request ceased to be relevant. >>> >>> One important point regarding the adoption call is that we need to >>> clearly distinguish issues with the precise contents of the draft, which >>> could be addressed after adoption from feelings, if they exist,, that the >>> current draft is not a suitable vehicle in its current form , for the >>> working group to address NFSv4 security issues. If the latter, we need to >>> understand what changes might be required, so those changes cab made, >>> allowing the working group to continue to make progress. >>> >>
- Re: [nfsv4] WG adoption of draft-dnoveck-nfsv4-se… David Noveck
- Re: [nfsv4] WG adoption of draft-dnoveck-nfsv4-se… Zaheduzzaman Sarker
- Re: [nfsv4] WG adoption of draft-dnoveck-nfsv4-se… David Noveck
- Re: [nfsv4] WG adoption of draft-dnoveck-nfsv4-se… Zaheduzzaman Sarker
- Re: [nfsv4] WG adoption of draft-dnoveck-nfsv4-se… Brian Pawlowski