Way of displaying group items under another container

Neeta · February 9, 2020, 5:07pm

I have my grouping as below:

grouping config-tls-sni-grouping {
container cipher {
choice cipher-choice {
container ecdsa-cipher {
leaf curve-size {
type uint16;
}
}

    leaf strict-cipher {
      type empty;
	}
  }
}

}

container default {
container trustpoint {
leaf trust {
tailf:cli-drop-node-name;
type string;
}
}
}

My question is : I want "container ecdsa-cipher " and “leaf strict-cipher” to be displayed under
“leaf trust” for “default container”.

Can somebody please help me with this.
I hope refine will workout here but i dont have any idea on using refine.

cohult · February 9, 2020, 5:58pm

It’s a bit unclear, but perhaps you are looking for something like this:

  grouping ecdsa-cipher-grouping {
    container ecdsa-cipher {
      leaf curve-size {
        type uint16;
      }
    }
  }

  grouping config-tls-sni-grouping {
    container cipher {
      choice cipher-choice {
        case ecdsa-cipher {
          uses ecdsa-cipher-grouping;
          leaf strict-cipher {
            type empty;
          }
        }
      }
    }
  }

  container default {
    container trustpoint {
      tailf:cli-sequence-commands;
      tailf:cli-compact-syntax;
      leaf trust {
        tailf:cli-drop-node-name;
        type string;
      }
      uses ecdsa-cipher-grouping;
    }
  }

Neeta · February 9, 2020, 6:47pm

Hi Cohult,
Thanks for your reply.
Here you have created 2 groups but as per my requirement I will be having only 1 group containing both ecdsa-cipher and strict-cipher under choice statement. And I need to access both of these ciphers from another leaf called trust which is present under trustpoint container of default container.

cohult · February 10, 2020, 5:55am

You may want to align with this IETF RFC draft https://tools.ietf.org/html/draft-ietf-netconf-ssh-client-server-17
Use the IETF YANG 1.1 RFC as a reference guide: https://tools.ietf.org/html/rfc7950#section-9.10
A summary:

 identity public-key-alg-base {
    description
      "Base identity used to identify public key algorithms.";
  }

  identity ecdsa-sha2-nistp256 {
    base public-key-alg-base;
  }

  identity ecdsa-sha2-nistp384 {
    base public-key-alg-base;
  }

  identity ecdsa-sha2-nistp521 {
    base public-key-alg-base;
  }

  identity x509v3-ecdsa-sha2-nistp256 {
    base public-key-alg-base;
  }

  identity x509v3-ecdsa-sha2-nistp384 {
    base public-key-alg-base;
  }

  identity x509v3-ecdsa-sha2-nistp521 {
    base public-key-alg-base;
  }

  container default {
    container trustpoint {
      leaf-list trust {
        tailf:cli-drop-node-name;
        type identityref {
          base public-key-alg-base;
        }
        ordered-by user;
      }
    }
  }