openconfig · Shashank-arista · Jun 7, 2024 · Jun 13, 2024 · Jun 14, 2024 · earies
@@ -21,7 +21,13 @@ module openconfig-ospf-types {
   description
     "Type definitions for OSPF";
 
-  oc-ext:openconfig-version "0.1.3";
+  oc-ext:openconfig-version "0.2.0";
+
+  revision "2024-06-06" {
+    description
+      "Add OSPF authentication modes and encryption types.";
+    reference "0.2.0";
+  }
 
   revision "2018-11-21" {
     description
@@ -98,6 +104,72 @@ module openconfig-ospf-types {
   }
 
   // identities
+  identity MESSAGE_DIGEST_ENCRYPTION {
+    description
+      "Base identity to define Message Digest encryption type.";
+  }
+
+  identity ENCRYPTION_NONE {
+    base MESSAGE_DIGEST_ENCRYPTION;
+    description
+      "No encrytion type.";
+  }
+
+  identity ENCRYPTION_MD5 {
+    base MESSAGE_DIGEST_ENCRYPTION;
+    description
+      "MD5 message digest encryption type.";
+  }
+
+  identity ENCRYPTION_SHA1 {
+    base MESSAGE_DIGEST_ENCRYPTION;
+    description
+      "SHA1 message digest encryption type.";
+  }
+
+  identity ENCRYPTION_SHA256 {
+    base MESSAGE_DIGEST_ENCRYPTION;
+    description
+      "SHA256 message digest encryption type.";
+  }
+
+  identity ENCRYPTION_SHA384 {
+    base MESSAGE_DIGEST_ENCRYPTION;
+    description
+      "SHA384 message digest encryption type.";
+  }
+
+  identity ENCRYPTION_SHA512 {
+    base MESSAGE_DIGEST_ENCRYPTION;
+    description
+      "SHA512 message digest encryption type.";
+  }
+
+  identity AUTH_MODE {
+    description
+      "Base identity to define OSPF authentication";
+  }
+
+  identity AUTH_NONE {
+    base AUTH_MODE;
+    description
+      "Authentication mode none.";
+  }
+
+  identity AUTH_SIMPLE_PASSWORD {
+    base AUTH_MODE;
+    description
+      "Authentication mode simple password.";
+    reference "RFC2328";
+  }
+
+  identity AUTH_MESSAGE_DIGEST {
+    base AUTH_MODE;
+    description
+      "Authentication mode message digest.";
+    reference "RFC5709";
+  }
+
   identity OSPF_LSA_TYPE {
     description
       "Base identity for an OSPF LSA type. This identity is intended

@@ -25,7 +25,13 @@ submodule openconfig-ospfv2-area-interface {
     "This submodule provides OSPFv2 configuration and operational
     state parameters that are specific to the area context";
 
-  oc-ext:openconfig-version "0.5.1";
+  oc-ext:openconfig-version "0.6.0";
+
+  revision "2024-06-06" {
+    description
+      "Add support for ospfv2 authentication modes and encryption types";
+    reference "0.6.0";
+  }
 
   revision "2023-11-01" {
     description
@@ -227,6 +233,55 @@ submodule openconfig-ospfv2-area-interface {
     }
   }
 
+  grouping ospfv2-area-interface-authentication-config {
+    description
+      "Configuration parameters relating to OSPF interface
+      authentication";
+
+    leaf auth-mode {
+      type identityref {
+        base oc-ospf-types:AUTH_MODE;
+      }
+      description
+        "Authentication mode to be used for OSPF interface links.";
+    }
+
+    leaf simple-password {
+      type string;
+      description
+        "Password for simple authentication mode to be specified for OSPF.";
+    }
+  }
+
+  grouping ospfv2-area-interface-message-digest-config {
+    description
+      "Configuration parameters relating to OSPF message-digest
+      authentication";
+
+    leaf md-key-id {
+      type uint8 {
+        range "1..255";
+      }
+      description
+        "Message-digest keyid to be used for OSPF message digest auth.";
+    }
+
+    leaf md-encryption {
+      type identityref {
+        base oc-ospf-types:MESSAGE_DIGEST_ENCRYPTION;
+      }
+      description
+        "Encryption type to be used for OSPF message digest auth.";
+    }
+
+    leaf md-password {
+      type string;
+      description
+        "Password to be used for message digest authentication mode
+        for OSPF.";
+    }
+  }
+
   grouping ospfv2-area-interface-mpls-config {
     description
       "Configuration parameters relating to MPLS extensions for OSPF";
@@ -437,6 +492,64 @@ submodule openconfig-ospfv2-area-interface {
           }
         }
 
+        container authentication {
+          description
+            "Configuration and operational state parameters for
+            OSPFv2 authentication on the interface.";
+
+          container config {
+            description
+              "Configuration parameters for OSPFv2 authentication on
+              the interface";
+            uses ospfv2-area-interface-authentication-config;
+          }
+
+          container state {
+            config false;
+            description
+              "Operational state parameters for OSPFv2 authentication on
+              the interface";
+            uses ospfv2-area-interface-authentication-config;
+          }
+
+          container message-digests {
+            description
+              "Enclosing container for the list of message-digest keys that
+              can be configured on the interface";
+
+            list message-digest {
+              key "md-key-id";
+              max-elements 2;
+
+              description
+                "A message-digest key to be used for OSPFv2 authentication";
+
+              leaf md-key-id {
+                type leafref {
+                  path "../config/md-key-id";
+                }
+                description
+                  "Message-digest authentication key identifier";
+              }
+
+              container config {
+                description
+                  "Configuration parameters relating to the message-digest
+                  authentication";
+                uses ospfv2-area-interface-message-digest-config;
+              }
+
+              container state {
+                config false;
+                description
+                  "Operational state parameters relating to the message-digest
+                  authentication";
+                uses ospfv2-area-interface-message-digest-config;
+              }
+            }
+          }
+        }
+
         container mpls {
           description
             "Configuration and operational state parameters for

@@ -34,7 +34,13 @@ module openconfig-ospfv2 {
     "An OpenConfig model for Open Shortest Path First (OSPF)
     version 2";
 
-  oc-ext:openconfig-version "0.5.1";
+  oc-ext:openconfig-version "0.6.0";
+
+  revision "2024-06-06" {
+    description
+      "Add support for ospfv2 authentication modes and encryption types";
+    reference "0.6.0";
+  }
 
   revision "2023-11-01" {
     description