diff options
| author | Rob Austein <sra@hactrn.net> | 2010-08-31 00:31:55 +0000 |
|---|---|---|
| committer | Rob Austein <sra@hactrn.net> | 2010-08-31 00:31:55 +0000 |
| commit | 413c76f6ff05b011f05d4f2046d348689804d737 (patch) | |
| tree | 0239c77d32ed9dd3a21767e7a9041fe39042597c | |
| parent | 51926d3d7bc098e49ce3e1412b98ab792e30db8a (diff) | |
Sadly, it turns out that CRLs really can grow large enough to hit the
length limits previously set in this schema as a precaution. Remove
length limit and cross fingers, at least for now.
svn path=/rpkid/publication-schema.rnc; revision=3434
| -rw-r--r-- | rpkid/publication-schema.rnc | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/rpkid/publication-schema.rnc b/rpkid/publication-schema.rnc index d6344765..5df646d1 100644 --- a/rpkid/publication-schema.rnc +++ b/rpkid/publication-schema.rnc @@ -53,7 +53,11 @@ reply_elt = ( config_reply | client_reply | certificate_reply | crl_reply | mani tag = attribute tag { xsd:token {maxLength="1024" } } # Base64 encoded DER stuff -base64 = xsd:base64Binary { maxLength="512000" } +#base64 = xsd:base64Binary { maxLength="512000" } +# +# Sadly, it turns out that CRLs can in fact get longer than this for an active CA. +# Remove length limit for now, think about whether to put it back later. +base64 = xsd:base64Binary # Publication URLs uri_t = xsd:anyURI { maxLength="4096" } |