IETF Logo Mail Archive

Re: [nfsv4] Fwd: I-D Action: draft-ietf-nfsv4-integrity-measurement-03.txt

"Everhart, Craig" <Craig.Everhart@netapp.com> Wed, 07 November 2018 17:18 UTC

Return-Path: <Craig.Everhart@netapp.com>
X-Original-To: nfsv4@ietfa.amsl.com
Delivered-To: nfsv4@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 34D9912D4EF for <nfsv4@ietfa.amsl.com>; Wed, 7 Nov 2018 09:18:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=netapp.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Cy0Ii_3PIMXx for <nfsv4@ietfa.amsl.com>; Wed, 7 Nov 2018 09:18:52 -0800 (PST)
Received: from NAM05-DM3-obe.outbound.protection.outlook.com (mail-eopbgr730063.outbound.protection.outlook.com [40.107.73.63]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CE382129C6A for <nfsv4@ietf.org>; Wed, 7 Nov 2018 09:18:51 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=netapp.onmicrosoft.com; s=selector1-netapp-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=w/1a3CEEU1EghoqMQFTKTRbI9CnerK3OZzrE8KLdt+c=; b=Ye3JLxKNGlLvEupFgw+S6xpPrRlVtUW0OI7T7R+2VT8G2ZCVVOuDn7OofHSnxiPqo89Tk/36jd5hqK/US+7ILwvzm7R03jaRrLpNbTMXnX+W/MTDgXm71Brove9fPPXhJPNw3HAZzQuXL4B3s/YvvR4GGcsg1UGykLHrT9cyi9o=
Received: from BN6PR06MB3089.namprd06.prod.outlook.com (10.174.95.163) by BN6PR06MB3156.namprd06.prod.outlook.com (10.174.232.142) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1294.21; Wed, 7 Nov 2018 17:18:50 +0000
Received: from BN6PR06MB3089.namprd06.prod.outlook.com ([fe80::c0b4:c45:1e23:713f]) by BN6PR06MB3089.namprd06.prod.outlook.com ([fe80::c0b4:c45:1e23:713f%3]) with mapi id 15.20.1294.034; Wed, 7 Nov 2018 17:18:50 +0000
From: "Everhart, Craig" <Craig.Everhart@netapp.com>
To: Chuck Lever <chuck.lever@oracle.com>, NFSv4 <nfsv4@ietf.org>
Thread-Topic: [nfsv4] Fwd: I-D Action: draft-ietf-nfsv4-integrity-measurement-03.txt
Thread-Index: AQHUdq4vLsLdr/162UyNzLvaAaph+6VEOraA
Date: Wed, 07 Nov 2018 17:18:50 +0000
Message-ID: <BBC9F2E1-4E81-4FE4-99D0-A0B23F33AAD4@netapp.com>
References: <154160412218.26446.11676556173331817093@ietfa.amsl.com> <74E10D08-6181-49C8-B994-6554C72C4B7D@oracle.com>
In-Reply-To: <74E10D08-6181-49C8-B994-6554C72C4B7D@oracle.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.12.0.181014
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Craig.Everhart@netapp.com;
x-originating-ip: [216.240.30.4]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BN6PR06MB3156; 6:mJCJDbt9BNv6BQwm3vj4oqCN1vI+BwbqRkHcGFF2ZXwLoWfHSwem4pEN08kdUXZz0UQLF1ydVdnGa/mAf7lyk+kA8TDXPVvowzje5wHQSqiyjpZN5LZYEPFv2cd0+ATogHiY0sxc7ibSwWgR+c9GrgCtIMcZFJNtrlJ3jTq3sA5Si7bUMHptGKjL6TWYA8AVDYdrXX7mgPYvbmSig3BGzIY6LzcvS+eZf0A/mX+6w7OJMxPqMaxYx5Y+9Nvdi7/O/ECn+kk9AI2v4yG1OZ9y0KRJLV1H3nK8/RUNdlly+HVElDuviG2vUzGstPNTmrkfTUbLWmS7p09mUoXGx0wS+QY8HykR7pDzIZpQhiZ8q+N8BHzQcOQ4L1Sq8X+L6SCwTTm+Cm/Eu3hKe/e3mkmX1w7khEy08JuNGdLmjNeZN6T3WxHaT5r9UIxsNFidl+xCtaYgL+Pgq0wOxHvhF4Qp7g==; 5:bJ7auvNdSVUjVjCvEnOxaCfW9jWeH1DCRlytBa4cKJn3XYO3d6xsziifaphym0NJgz5dvEU/0jZGJExl8yYRmAcb2fI6WYZoaVFMzsh8zUGbQSdez1QemxyuhLiO2tUM0fuhyoqOO+61K6joYlxIl+QhkkwV6WUUhFPe0lTcT+Q=; 7:okk8/g3bmrlkmZ8bamCCR+UXk2okndorgFxnJ56gppuH14utKgVwuBtXTdtMgLmlF+a+f+DVepoJ4nkSF/PIpD8e8a6r52lRnrbGGiCf6UDBoLep+trNVavhb3S5wQWVM67kvbM+pctJM9li844X5Q==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: ae831633-646c-4c8a-b694-08d644d515d4
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7193020); SRVR:BN6PR06MB3156;
x-ms-traffictypediagnostic: BN6PR06MB3156:
x-microsoft-antispam-prvs: <BN6PR06MB3156A23AF11EEDBFCE236575F0C40@BN6PR06MB3156.namprd06.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(788757137089)(192374486261705)(120809045254105)(146099531331640);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(3231382)(944501410)(52105095)(3002001)(10201501046)(93006095)(93001095)(6055026)(148016)(149066)(150057)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123560045)(20161123562045)(20161123564045)(201708071742011)(7699051)(76991095); SRVR:BN6PR06MB3156; BCL:0; PCL:0; RULEID:; SRVR:BN6PR06MB3156;
x-forefront-prvs: 08497C3D99
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(396003)(39860400002)(346002)(136003)(376002)(366004)(189003)(199004)(51914003)(5024004)(6246003)(76176011)(446003)(256004)(14444005)(81166006)(6486002)(106356001)(2906002)(26005)(186003)(6306002)(2616005)(476003)(53546011)(2900100001)(102836004)(229853002)(6506007)(53936002)(14454004)(6512007)(11346002)(66066001)(86362001)(6116002)(110136005)(58126008)(99286004)(486006)(36756003)(478600001)(3846002)(316002)(305945005)(82746002)(97736004)(33656002)(5660300001)(8936002)(83716004)(72206003)(71190400001)(966005)(68736007)(105586002)(6436002)(8676002)(81156014)(71200400001)(25786009)(7736002)(24704002)(21314003); DIR:OUT; SFP:1101; SCL:1; SRVR:BN6PR06MB3156; H:BN6PR06MB3089.namprd06.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: netapp.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: /LgJwPxRGpixIvV7BntVSOsP2x6JXrPoxJzllm3va17KMPM3sSVwplclrJu+Wese7MkSBwgF+O+kGqpk02HnlT6lq2ZVtTIgcs58xBQncZqX3Q65S9cRkO/bR/StESrfoxE6bjaH9gw6re5zHtFFDmyU9oCmud/jfgqIgL2D/gLagPmGGoemJPw8oXA4LvZHyHqyknZrwStzmHXuRGJ3qNnJk3Pwqlvjb4rdvZ+n63jv6criMYId7KeOjtOyl8n2PiTmIkikhbJ/nk1IMxyA812gdB1nmbqKVZQSHqZG1O+5iIAv7B+Y6Hc/UMXVlLkDLOE2aW0AWKvJzbNpjf9mdrpNzUl/srwk1sby9gnt+WM=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <5A597EDF4C838542A93458A59DFAC47A@namprd06.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: netapp.com
X-MS-Exchange-CrossTenant-Network-Message-Id: ae831633-646c-4c8a-b694-08d644d515d4
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Nov 2018 17:18:50.3237 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4b0911a0-929b-4715-944b-c03745165b3a
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR06MB3156
Archived-At: <https://mailarchive.ietf.org/arch/msg/nfsv4/xInXe7vW_TQfp5T6ajGdk7QKews>
Subject: Re: [nfsv4] Fwd: I-D Action: draft-ietf-nfsv4-integrity-measurement-03.txt
X-BeenThere: nfsv4@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: NFSv4 Working Group <nfsv4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/nfsv4/>
List-Post: <mailto:nfsv4@ietf.org>
List-Help: <mailto:nfsv4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nfsv4>, <mailto:nfsv4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Nov 2018 17:18:54 -0000

Hi Chuck,

Thanks for the update.

At the end of the introduction (1), you add "Unlike traditional integrity management schemes, the hash is not replaced every time a file is copied.  Instead, the signed checksum is copied along with file content and presented whenever the content is about to be used."  You're alluding to a practice with which I'm not familiar, even when you're describing traditional schemes.  Copied for reading or for writing?  What would have replaced the hash every time the file is copied--a storage system?  (I want to understand this so that I can understand how the mechanism that you're proposing will replace and modify the existing mechanism.)  It sounds like a hash would have been replaced whenever a file was written, but this replacement copies the hash along with file content--presumably by some client-side tool?

Down in 1.1, you likely want to add "only" immediately before the function that it most closely modifies; "NFS acts as only a conduit ..."  rather than "NFS acts only as a conduit...".  (e.g.: I'd hope that NFS acts as more than a conduit!)

In 4.2, can there be multiple FATTR4_FILE_PROVENANCE objects with different fpv_type values?
How do I enumerate them?  
Clearly your description of the treatment of distinct fpv_type values would suggest that there would be multiple instances.  Are there other FATTR4_xxx attributes with multiple values?
It's a little odd that fpv_type is not in the fattr4 namespace, but that it represents a sub-type.  How do I specify a fpv_type to GETATTR?
Again, how do I enumerate all the stored fpv_type values?
(It might be easier if there were only one possible FATTR4_FILE_PROVENANCE attribute, so that storing any fpv_type value would replace any other FATTR4_FILE_PROVENANCE attribute.  Alternatively, you could allow for FATTR4_FILE_PROVENANCE_xxx values, in which the "xxx" extension semantically replaces your suggested fpv_type value.)

		Best,
		Craig


On 11/7/18, 10:25 AM, "nfsv4 on behalf of Chuck Lever" <nfsv4-bounces@ietf.org on behalf of chuck.lever@oracle.com> wrote:

    NetApp Security WARNING: This is an external email. Do not click links or open attachments unless you recognize the sender and know the content is safe.
    
    
    
    
    > Begin forwarded message:
    >
    > From: internet-drafts@ietf.org
    > Subject: [nfsv4] I-D Action: draft-ietf-nfsv4-integrity-measurement-03.txt
    > Date: November 7, 2018 at 10:22:02 AM EST
    > To: <i-d-announce@ietf.org>
    > Cc: nfsv4@ietf.org
    > Reply-To: nfsv4@ietf.org
    >
    >
    > A New Internet-Draft is available from the on-line Internet-Drafts directories.
    > This draft is a work item of the Network File System Version 4 WG of the IETF.
    >
    >        Title           : File Content Provenance for Network File System version 4
    >        Author          : Charles Lever
    >       Filename        : draft-ietf-nfsv4-integrity-measurement-03.txt
    >       Pages           : 15
    >       Date            : 2018-11-07
    >
    > Abstract:
    >   This document specifies an OPTIONAL extension to NFS version 4 minor
    >   version 2 that enables file provenance information to be conveyed
    >   between NFS version 4.2 servers and clients.  File provenance
    >   information authenticates the creator of a file's content and helps
    >   guarantee the content's integrity from creation to use.
    >
    >
    > The IETF datatracker status page for this draft is:
    > https://datatracker.ietf.org/doc/draft-ietf-nfsv4-integrity-measurement/
    >
    > There are also htmlized versions available at:
    > https://tools.ietf.org/html/draft-ietf-nfsv4-integrity-measurement-03
    > https://datatracker.ietf.org/doc/html/draft-ietf-nfsv4-integrity-measurement-03
    >
    > A diff from the previous version is available at:
    > https://www.ietf.org/rfcdiff?url2=draft-ietf-nfsv4-integrity-measurement-03
    >
    >
    > Please note that it may take a couple of minutes from the time of submission
    > until the htmlized version and diff are available at tools.ietf.org.
    >
    > Internet-Drafts are also available by anonymous FTP at:
    > ftp://ftp.ietf.org/internet-drafts/
    >
    > _______________________________________________
    > nfsv4 mailing list
    > nfsv4@ietf.org
    > https://www.ietf.org/mailman/listinfo/nfsv4
    
    Revision -03 is an attempt to address Craig Everhart's concerns about the
    interoperability of the proposed mechanism. I've introduced an IANA registry
    for File Provenance Information types, as suggested by Benjamin Kaduk.
    
    Thanks for everyone's time on this project.
    
    
    --
    Chuck Lever
    
    
    
    _______________________________________________
    nfsv4 mailing list
    nfsv4@ietf.org
    https://www.ietf.org/mailman/listinfo/nfsv4

v2.23.0 | Report a Bug | By Email