RFC Errata
RFC 9249, "A YANG Data Model for NTP", July 2022
Source of RFC: ntp (int)
Errata ID: 7401
Status: Held for Document Update
Type: Technical
Publication Format(s) : TEXT, PDF, HTML
Reported By: Maurice Angermann
Date Reported: 2023-03-21
Held for Document Update by: Erik Kline
Date Held: 2023-03-21
Section 8 says:
identity hmac-sha-256 { description "HMAC-SHA-256 authentication algorithm"; reference "SHS: Secure Hash Standard (SHS) (FIPS PUB 180-4)"; } identity hmac-sha-384 { description "HMAC-SHA-384 authentication algorithm"; reference "SHS: Secure Hash Standard (SHS) (FIPS PUB 180-4)"; } identity hmac-sha-512 { description "HMAC-SHA-512 authentication algorithm"; reference "SHS: Secure Hash Standard (SHS) (FIPS PUB 180-4)"; }
It should say:
identity hmac-sha-256 { base crypto-algorithm; description "HMAC-SHA-256 authentication algorithm"; reference "SHS: Secure Hash Standard (SHS) (FIPS PUB 180-4)"; } identity hmac-sha-384 { base crypto-algorithm; description "HMAC-SHA-384 authentication algorithm"; reference "SHS: Secure Hash Standard (SHS) (FIPS PUB 180-4)"; } identity hmac-sha-512 { base crypto-algorithm; description "HMAC-SHA-512 authentication algorithm"; reference "SHS: Secure Hash Standard (SHS) (FIPS PUB 180-4)"; }
Notes:
The identity definitions of "hmac-sha-256", "hmac-sha-384" and "hmac-sha-512" lack the "base crypto-algorithm;" statement and therefore basically cannot be used in the scope of ietf-ntp@2022-07-05.yang.