diff options
Diffstat (limited to 'scripts/up-down-medium-schema.rnc')
| -rw-r--r-- | scripts/up-down-medium-schema.rnc | 91 |
1 files changed, 91 insertions, 0 deletions
diff --git a/scripts/up-down-medium-schema.rnc b/scripts/up-down-medium-schema.rnc new file mode 100644 index 00000000..e74bc489 --- /dev/null +++ b/scripts/up-down-medium-schema.rnc @@ -0,0 +1,91 @@ +# $Id$ +# +# RelaxNG (Compact Syntax) Schema +# for RPKI up-down protocol. This is based on the schema in the APNIC +# Wiki, but has tighter constraints on some fields. +# +# libxml2 (including xmllint) only groks the XML syntax of RelaxNG, so +# run the output of this script through a converter like trang to get +# XML syntax. + + default namespace = "http://www.apnic.net/specs/rescerts/up-down/" + + grammar { + start = element message { + attribute version { xsd:positiveInteger { maxInclusive="1" } }, + attribute sender { xsd:token { maxLength="1024" } }, + attribute recipient { xsd:token { maxLength="1024" } }, + attribute msg_ref { xsd:positiveInteger { maxInclusive="999999999999999" } }, + payload + } + + payload |= attribute type { "list" }, list_request + payload |= attribute type { "list_response"}, list_response + payload |= attribute type { "issue" }, issue_request + payload |= attribute type { "issue_response"}, issue_response + payload |= attribute type { "revoke" }, revoke_request + payload |= attribute type { "revoke_response"}, revoke_response + payload |= attribute type { "error_response"}, error_response + + list_request = empty + list_response = class* + + class = element class { + attribute class_name { xsd:token { maxLength="1024" } }, + attribute cert_url { xsd:anyURI { maxLength="1024" } }, + attribute cert_ski { xsd:token { maxLength="1024" } }, + attribute resource_set_as { xsd:string { maxLength="512000" pattern="[\-,0-9]*" } }, + attribute resource_set_ipv4 { xsd:string { maxLength="512000" pattern="[\-,/.0-9]*" } }, + attribute resource_set_ipv6 { xsd:string { maxLength="512000" pattern="[\-,/:0-9a-fA-F]*" } }, + attribute suggested_sia_head { xsd:anyURI { maxLength="1024" } }?, + element certificate { + attribute cert_url { xsd:anyURI { maxLength="1024" } }, + attribute cert_ski { xsd:token { maxLength="1024" } }, + attribute cert_aki { xsd:token { maxLength="1024" } }, + attribute cert_serial { xsd:positiveInteger }, + attribute resource_set_as { xsd:string { maxLength="512000" pattern="[\-,0-9]*" } }, + attribute resource_set_ipv4 { xsd:string { maxLength="512000" pattern="[\-,/.0-9]*" } }, + attribute resource_set_ipv6 { xsd:string { maxLength="512000" pattern="[\-,/:0-9a-fA-F]*" } }, + attribute req_resource_set_as { xsd:string { maxLength="512000" pattern="[\-,0-9]*" } }?, + attribute req_resource_set_ipv4 { xsd:string { maxLength="512000" pattern="[\-,/.0-9]*" } }?, + attribute req_resource_set_ipv6 { xsd:string { maxLength="512000" pattern="[\-,/:0-9a-fA-F]*" } }?, + attribute status { "undersize" | "match" | "oversize" }, + xsd:base64Binary { maxLength="512000" } + }*, + element issuer { xsd:base64Binary { maxLength="512000" } } + } + + issue_request = element request { + attribute class_name { xsd:token { maxLength="1024" } }, + attribute req_resource_set_as { xsd:string { maxLength="512000" pattern="[\-,0-9]*" } }?, + attribute req_resource_set_ipv4 { xsd:string { maxLength="512000" pattern="[\-,/.0-9]*" } }?, + attribute req_resource_set_ipv6 { xsd:string { maxLength="512000" pattern="[\-,/:0-9a-fA-F]*" } }?, + xsd:base64Binary { maxLength="512000" } + } + issue_response = class + + revoke_request = revocation + revoke_response = revocation + + revocation = element key { + attribute class_name { xsd:token { maxLength="1024" } }, + attribute ski { xsd:token { maxLength="1024" } } + } + + error_response = + element status { + "1101" | # Message too old + "1102" | # msg_ref value is invalid + "1103" | # out of order msg_ref value + "1104" | # version number error + "1105" | # unrecognised request type + "1201" | # request - no such resource class + "1202" | # request - no resources allocated in resource class + "1203" | # request - badly formed certificate request + "1301" | # revoke - no such resource class + "1302" | # revoke - no such key + "2001" # Internal Server Error - Request not performed + }, + element last_msg_processed { xsd:positiveInteger { maxInclusive="999999999999999" } }?, + element description { attribute xml:lang { xsd:language }, xsd:string { maxLength="1024" } }? + } |