[nfsv4] Fwd: New Version Notification for draft-dnoveck-nfsv4-acls-04.txt
David Noveck <davenoveck@gmail.com> Mon, 24 June 2024 15:19 UTC
Return-Path: <davenoveck@gmail.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5483BC14F681 for <nfsv4@ietfa.amsl.com>; Mon, 24 Jun 2024 08:19:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ckf57P11BY-p for <nfsv4@ietfa.amsl.com>; Mon, 24 Jun 2024 08:19:09 -0700 (PDT)
Received: from mail-qk1-x72c.google.com (mail-qk1-x72c.google.com [IPv6:2607:f8b0:4864:20::72c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A7AAAC14F5FF for <nfsv4@ietf.org>; Mon, 24 Jun 2024 08:19:09 -0700 (PDT)
Received: by mail-qk1-x72c.google.com with SMTP id af79cd13be357-795fb13b256so408355885a.0 for <nfsv4@ietf.org>; Mon, 24 Jun 2024 08:19:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1719242348; x=1719847148; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=lXVS1379Zj/4jbtSOzgLKcfkgpL6VzhMoSeZA+iKFOQ=; b=XbU1gZnhcvo82PSZQi6fSAIS8CY10x+/1QRbcmxr+Y8GbJFo3F3zrXH71KtemuSnNU E3Dx0BAbPP1sG2QMwc69hq6P3UWUnV8Wn28WxvmpKNRekFx+fjp9GjAdExJDg8sUVcqV zl9UTk+L+a7hX9WOlpQo+sGWzUlQRvYR8rm8/HxeuOotJcjE2TWL6H0odwjC46uWootu RLOdBr1mVoyFc63USGN7XNMMsyXJ0hejtpJ2wQu00tIhhYnEVbkyZgeY6FUrskKOhFsK XfTqm9BXs7jANJfWJQT9pZSzNjHfI/3QKLfehZrApLJhwJZdlozEUNYnhfTaoOHyt6Ch vCFQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1719242348; x=1719847148; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=lXVS1379Zj/4jbtSOzgLKcfkgpL6VzhMoSeZA+iKFOQ=; b=K0UF/jtF+4VJD9TAydxo9urWY61Cw5iYpZmXda+83GRe1lE5+nbTK4Pln2youpGWMW x8n3ZHUseYYYM8NPLi15PFJxoDVVflqpn2WQ7FrNGE0mNAP3NO9cE4KofKnSyh/Mh3BH xUMys8uWm2LSk9DNsbxmBtothqEbOhG1aVAL2EQolnQne1RxdE5XJzPL0idFl7dLzlTs VNDl2cHK+EBrOyqo6KyO9Sd+p2e66l1eoI7+eCE9ULs/EHIwXRGKz4+VObu/RPXP5LS3 z0oLyGwKpijMxlPbu1vHO67gF+mIEyq2hAKHpuwlNnHRbi7DwCkw08Qh4rRb1fODsa7g 75iQ==
X-Gm-Message-State: AOJu0YxWy4+a6OaTJp7+syTJYatUnC893xW/LCi9zOmEXXJ00wShaoNT A0zxoGlZrKhGDJ5KMt1O9yW+DoEWVIgMU7qhCG86G8j9Q5tjMDHw4yn5lgAcT4WEA1pVmilYg9r NHZzOqYbX45duFMmsUfRJ8TuQlCINTA==
X-Google-Smtp-Source: AGHT+IHf4BrIu/XNhFqA8VmzaYLBM6wzNTUNjG49VntraI0U7RqEQ1X/SjCXTzhkAy+BoU9/6nzdIcmA2NGQmvQFYTs=
X-Received: by 2002:a05:6214:301b:b0:6ad:84aa:2956 with SMTP id 6a1803df08f44-6b532038fc8mr76531786d6.13.1719242348449; Mon, 24 Jun 2024 08:19:08 -0700 (PDT)
MIME-Version: 1.0
References: <171923685699.301074.13624895604941863058@dt-datatracker-ff65ff8f7-whn7d>
In-Reply-To: <171923685699.301074.13624895604941863058@dt-datatracker-ff65ff8f7-whn7d>
From: David Noveck <davenoveck@gmail.com>
Date: Mon, 24 Jun 2024 11:18:57 -0400
Message-ID: <CADaq8jdO0av88w1gE_Wjiu+v0MKo51vmKP-_gbJiSTmHv+QVtg@mail.gmail.com>
To: NFSv4 <nfsv4@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000076566b061ba44d24"
Message-ID-Hash: CGS4VX7XH2OZUXLCIWGYZLWDGPKWTQUP
X-Message-ID-Hash: CGS4VX7XH2OZUXLCIWGYZLWDGPKWTQUP
X-MailFrom: davenoveck@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-nfsv4.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [nfsv4] Fwd: New Version Notification for draft-dnoveck-nfsv4-acls-04.txt
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/XTvIQA_SicIxOGYSnYPWSESwedk>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Owner: <mailto:nfsv4-owner@ietf.org>
List-Post: <mailto:nfsv4@ietf.org>
List-Subscribe: <mailto:nfsv4-join@ietf.org>
List-Unsubscribe: <mailto:nfsv4-leave@ietf.org>
Will be discussed at the next interim together with 62bis-03 and 61bis-07, to be submitted soon. ---------- Forwarded message --------- From: <internet-drafts@ietf.org> Date: Mon, Jun 24, 2024 at 9:47 AM Subject: New Version Notification for draft-dnoveck-nfsv4-acls-04.txt To: David Noveck <davenoveck@gmail.com> A new version of Internet-Draft draft-dnoveck-nfsv4-acls-04.txt has been successfully submitted by David Noveck and posted to the IETF repository. Name: draft-dnoveck-nfsv4-acls Revision: 04 Title: ACLs within the NFSv4 Protocols Date: 2024-06-24 Group: Individual Submission Pages: 165 URL: https://www.ietf.org/archive/id/draft-dnoveck-nfsv4-acls-04.txt Status: https://datatracker.ietf.org/doc/draft-dnoveck-nfsv4-acls/ HTML: https://www.ietf.org/archive/id/draft-dnoveck-nfsv4-acls-04.html HTMLized: https://datatracker.ietf.org/doc/html/draft-dnoveck-nfsv4-acls Diff: https://author-tools.ietf.org/iddiff?url2=draft-dnoveck-nfsv4-acls-04 Abstract: This document is part of the set of documents intended to update the description of NFSv4 Minor Version One as part of the rfc5661bis effort. It describes the structure and function of Access Control Lists within all minor versions of NFSv4. It describes the structure of NFSv4 ACLs and their role in the NFSv4 security architecture. While the focus of this document is on the role of ACLs in providing a more flexible approach to file access authorization than is made available by the POSIX-derived authorization-related attributes, the potential provision of other security-related functionality is covered as well. Because of the failure of previous specifications to provide a satisfactory approach to either of the two ACL models for which support was intended, this document will include some small protocol extensions to correct protocol defects, as provided for in RFC8178. In this document, the relationship among the multiple ACL models supported has changed. A core set of functionality, derived from a subset of that provided by the now-withdrawn draft POSIX ACLs is presented as the conceptual base of the feature set. Two additional sets of features used to provide the functionality within the NFSv4 ACL model and the full draft POSIX ACL model are presented as OPTIONAL extensions to that core. The current version of the document is intended, in large part, to result in working group discussion regarding repairing problems with previous specifications of ACL-related features and to enable work to provide a greater degree of interoperability than has been available heretofore. The drafts provide a framework for addressing these issues and obtaining working group consensus regarding necessary changes. When the resulting document is eventually published as an RFC, it will supersede the descriptions of ACL structure and semantics appearing in existing minor version specification documents for NFSv4.0 and NFSv4.1, thereby updating RFC7530 and RFC8881. The IETF Secretariat
- [nfsv4] Fwd: New Version Notification for draft-d… David Noveck
- [nfsv4] Re: Fwd: New Version Notification for dra… Rick Macklem
- [nfsv4] Re: Fwd: New Version Notification for dra… Pali Rohár