[nfsv4] Documents, pre-drafts, and submission plans for documents related to the new security discussion to be part of the rfc5661bis effort.
David Noveck <davenoveck@gmail.com> Wed, 28 February 2024 17:29 UTC
Return-Path: <davenoveck@gmail.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 30DCEC14F60D for <nfsv4@ietfa.amsl.com>; Wed, 28 Feb 2024 09:29:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.094
X-Spam-Level:
X-Spam-Status: No, score=-7.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_FREEMAIL_DOC_PDF=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ueyXvKV0DyXv for <nfsv4@ietfa.amsl.com>; Wed, 28 Feb 2024 09:29:43 -0800 (PST)
Received: from mail-qv1-xf33.google.com (mail-qv1-xf33.google.com [IPv6:2607:f8b0:4864:20::f33]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D820EC14F604 for <nfsv4@ietf.org>; Wed, 28 Feb 2024 09:29:42 -0800 (PST)
Received: by mail-qv1-xf33.google.com with SMTP id 6a1803df08f44-68f4bad3cb3so18193656d6.1 for <nfsv4@ietf.org>; Wed, 28 Feb 2024 09:29:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1709141381; x=1709746181; darn=ietf.org; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=yvSEVW7B/xgZEJyaMedIptisHN/KsXuCqmB6YvysXSk=; b=UwLMtIKmeuy+eGW092OV8mM/TKJej4/UIAGZvzrVcflalKyfOra0WVgnzxNnizgs03 Y87tAh+RAgGzzOPOxyOt/zksfK6OPoYJ9nB3Dr/PpSEjnToAOEkaAGylBqOjDbygkvlI M8x/6OUi1OwzbnKn7KZ0xefcX0XAjWD82OYk4IDOgarwEHOYVNfI6FFiqIdR1UIo1h0/ O7WR1AQMfQRu5wHndsUSSWlOVI03kiA+h8xxIq+wr2qFuKi6flmL4dlMx/VKbN44Dj1S kNzcikR5qJXB3quCRlWEB+tbhJn8ThtuXHFap79UwDqOp8TO1XmjXun4c59FuXxusMKN cpyw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1709141381; x=1709746181; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=yvSEVW7B/xgZEJyaMedIptisHN/KsXuCqmB6YvysXSk=; b=AWbBunMaYzLZ8wGvf8Shxmz5UUYeBKMTeQo0EpcWoXeM5kUutzaL3xMCeNF5KuKDKf pXcGEZ9tLXsKeYYpvFBym2KukZHtbY33aVdVZeN84tL6w8l5f/3UlA38ls2M2xS6QER6 DcVilJA0gi+nYylJUJq+Hf57mV5ABrtFU19g2WPEpS8r5lL509Z+nWnU0faeSYYPB2Qq Tmfs3cFRWIYtvMxw5lYbgpTemWXemcA22d5/PfV47LMXoIDdc7i0RZgcbEHV6fbD9T6G Q/6+WP7EpEW4+wvKayNUgQYs6GYEFeJjvtxThnHSdIFbXLkZ2G9nWtUreo1TrXtoZvRM CmYw==
X-Gm-Message-State: AOJu0Yxsib/LO9kZYL2vJD9/iWuSN0SYtVqxeyTCnuZv1Sq45wrUziDA PRS4s3E1AxNpdre/oPWXww8lSH93FVzYs38z+5oXvhcdHThbuWjGRgu7l3iEtPEjFSoOQM+gOXj QwWwW9A9BheTFSHvwut0RDVjNjL60wsgX
X-Google-Smtp-Source: AGHT+IGhbRNnc+ohfRYAR8YAbR33UVbYeFerwUq8PWfMXPAjyHi8xfKZL/OHiYcw/eEuMtCbNsVC5zDdoptluF7Djlk=
X-Received: by 2002:a0c:f091:0:b0:68f:da2d:c1db with SMTP id g17-20020a0cf091000000b0068fda2dc1dbmr5171060qvk.34.1709141381091; Wed, 28 Feb 2024 09:29:41 -0800 (PST)
MIME-Version: 1.0
From: David Noveck <davenoveck@gmail.com>
Date: Wed, 28 Feb 2024 12:29:24 -0500
Message-ID: <CADaq8jf2zqq18qrNuLB-zMaps+UtZuBQ=iGZT5K1PNZntBbgVg@mail.gmail.com>
To: NFSv4 <nfsv4@ietf.org>
Content-Type: multipart/mixed; boundary="000000000000e462360612747ced"
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/_GjUe24C64D86qiGpchyVnayKTE>
X-Mailman-Approved-At: Mon, 04 Mar 2024 09:42:26 -0800
Subject: [nfsv4] Documents, pre-drafts, and submission plans for documents related to the new security discussion to be part of the rfc5661bis effort.
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Feb 2024 17:29:48 -0000
I have been working on next steps for the security document and have some documents for people to look at and will also discuss my plans for document submission in light of the 3/4 document submission deadline for IETF19. - The current version of the Ontap implementation report is attached. There are no plans to submit this as an IETF document. People might find it interesting in that it provides motivation for the changes made in the ACL document. Also, it gives an indication of the kind of information we will need about existing ACL implementations. If people have trouble with the .docx format, let me know and I can post other formats. - There is a pre-draft for the -08 of the security doc. It is close to complete and I will be able to submit the complete document by the deadline. There will probably not be time to incorporate changes/suggestions based on the pre-draft in time for the -08, but will probably have to defer responding to those until -09. Relative to -07, the main changes are to split the ACL stuff into a separate document, and to address the identity-related issues that Chris raised. The document split makes an iddifff with -07 pretty messy. The changes related to the identity issue are mostly in the sections 5.1 of the documents being compared. One noteworthy issue about the pre-draft is that since the ACL document has not been submitted yet, it cannot be referenced as it has to be in many places. For now, I am referencing rfc5662bis instead, but will have to fix this before actual submission. Also, some inter-document references are coded as ACLSPEC(target). This will also be addressed before submission of the -08. - There is also attached an early pre-draft for *draft-dnoveck-nfsv4-acls-00*. The work on this draft is not as far along as that for the security document proper and will not be complete in time for the 3/4 deadline. Nevertheless, I will submit something very close to the current pre-draft as the -00 with the understanding that there is still work to be done. The first complete draft of this document will be submitted as -01 before the next wg interim meeting in early April. One important issue to note about the -00 is that the numeric ID's associated with consensus items in that document are temporary and likely to change, unlike those in the security document draft. This will be relevant if some of the work discussed to transform these into github issues lists proceeds before acls-01 is out.
- [nfsv4] Documents, pre-drafts, and submission pla… David Noveck
- Re: [nfsv4] Documents, pre-drafts, and submission… Brian Pawlowski