This module defines a common features and groupings for Transport Layer Security (TLS). Copyright (c) 2021 IETF Trust and the p...
Version: 2022-03-07
module ietf-tls-common { yang-version 1.1; namespace "urn:ietf:params:xml:ns:yang:ietf-tls-common"; prefix tlscmn; import iana-tls-cipher-suite-algs { prefix tlscsa; reference "RFC FFFF: YANG Groupings for TLS Clients and SSH Servers"; } organization "IETF NETCONF (Network Configuration) Working Group"; contact "WG List: NETCONF WG list <mailto:netconf@ietf.org> WG Web: https://datatracker.ietf.org/wg/netconf Author: Kent Watsen <mailto:kent+ietf@watsen.net> Author: Gary Wu <mailto:garywu@cisco.com> Author: Jeff Hartley <mailto:jeff.hartley@commscope.com>"; description "This module defines a common features and groupings for Transport Layer Security (TLS). Copyright (c) 2021 IETF Trust and the persons identified as authors of the code. All rights reserved. Redistribution and use in source and binary forms, with or without modification, is permitted pursuant to, and subject to the license terms contained in, the Revised BSD License set forth in Section 4.c of the IETF Trust's Legal Provisions Relating to IETF Documents (https://trustee.ietf.org/license-info). This version of this YANG module is part of RFC FFFF (https://www.rfc-editor.org/info/rfcFFFF); see the RFC itself for full legal notices. The key words 'MUST', 'MUST NOT', 'REQUIRED', 'SHALL', 'SHALL NOT', 'SHOULD', 'SHOULD NOT', 'RECOMMENDED', 'NOT RECOMMENDED', 'MAY', and 'OPTIONAL' in this document are to be interpreted as described in BCP 14 (RFC 2119) (RFC 8174) when, and only when, they appear in all capitals, as shown here."; revision "2022-03-07" { description "Initial version"; reference "RFC FFFF: YANG Groupings for TLS Clients and TLS Servers"; } feature tls10 { status obsolete; description "TLS Protocol Version 1.0 is supported. TLS 1.0 is obsolete and thus it is NOT RECOMMENDED to enable this feature."; reference "RFC 2246: The TLS Protocol Version 1.0"; } feature tls11 { status obsolete; description "TLS Protocol Version 1.1 is supported. TLS 1.1 is obsolete and thus it is NOT RECOMMENDED to enable this feature."; reference "RFC 4346: The Transport Layer Security (TLS) Protocol Version 1.1"; } feature tls12 { status deprecated; description "TLS Protocol Version 1.2 is supported TLS 1.2 is obsolete and thus it is NOT RECOMMENDED to enable this feature."; reference "RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2"; } feature tls13 { description "TLS Protocol Version 1.3 is supported."; reference "RFC 8446: The Transport Layer Security (TLS) Protocol Version 1.3"; } feature hello-params { description "TLS hello message parameters are configurable."; } identity tls-version-base { description "Base identity used to identify TLS protocol versions."; } identity tls10 { base tls-version-base; status obsolete; description "TLS Protocol Version 1.0."; reference "RFC 2246: The TLS Protocol Version 1.0"; } identity tls11 { base tls-version-base; status obsolete; description "TLS Protocol Version 1.1."; reference "RFC 4346: The Transport Layer Security (TLS) Protocol Version 1.1"; } identity tls12 { base tls-version-base; status deprecated; description "TLS Protocol Version 1.2."; reference "RFC 5246: The Transport Layer Security (TLS) Protocol Version 1.2"; } identity tls13 { base tls-version-base; description "TLS Protocol Version 1.3."; reference "RFC 8446: The Transport Layer Security (TLS) Protocol Version 1.3"; } typedef epsk-supported-hash { type enumeration { enum "sha-256" { value 0; description "The SHA-256 Hash."; } enum "sha-384" { value 1; description "The SHA-384 Hash."; } } description "As per Section 4.2.11 of RFC 8446, the hash algorithm supported by an instance of an External Pre-Shared Key (EPSK)."; reference "RFC 8446: The Transport Layer Security (TLS) Protocol Version 1.3 I-D.ietf-tls-external-psk-importer: Importing External PSKs for TLS I-D.ietf-tls-external-psk-guidance: Guidance for External PSK Usage in TLS"; } } // module ietf-tls-common
© 2023 YumaWorks, Inc. All rights reserved.