rpki: T3256: Add XML for protocol rpki conf-mode

2 files changed, 124 insertions, 0 deletions

diff --git a/Makefile b/Makefile
index 66b1e8bb7..2ff72cb21 100644
--- a/Makefile
+++ b/Makefile
@@ -47,6 +47,7 @@ interface_definitions: $(config_xml_obj)
 	rm -f $(TMPL_DIR)/vpn/node.def
 	rm -f $(TMPL_DIR)/vpn/ipsec/node.def
 	rm -rf $(TMPL_DIR)/vpn/nipsec
+	rm -rf $(TMPL_DIR)/protocols/nrpki
 
 	# XXX: required until OSPF and RIP is migrated from vyatta-cfg-quagga to vyos-1x
 	mkdir $(TMPL_DIR)/interfaces/loopback/node.tag/ipv6
diff --git a/interface-definitions/protocols-rpki.xml.in b/interface-definitions/protocols-rpki.xml.in
new file mode 100644
index 000000000..b8db49e36
--- /dev/null
+++ b/interface-definitions/protocols-rpki.xml.in
@@ -0,0 +1,123 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- Protocol RPKI configuration -->
+<interfaceDefinition>
+  <node name="protocols">
+    <children>
+      <node name="nrpki" owner="${vyos_conf_scripts_dir}/protocols_rpki.py">
+        <properties>
+          <help>BGP prefix origin validation</help>
+        </properties>
+        <children>
+          <tagNode name="cache">
+            <properties>
+              <help>RPKI cache server instance</help>
+            </properties>
+            <children>
+              <leafNode name="address">
+                <properties>
+                  <help>RPKI cache server address</help>
+                </properties>
+              </leafNode>
+              <leafNode name="port">
+                <properties>
+                  <help>TCP port number</help>
+                  <valueHelp>
+                    <format>u32:1-65535</format>
+                    <description>TCP port number</description>
+                  </valueHelp>
+                  <constraint>
+                    <validator name="numeric" argument="--range 1-65535"/>
+                  </constraint>
+                </properties>
+              </leafNode>
+              <node name="ssh">
+                <properties>
+                  <help>RPKI SSH connection settings</help>
+                </properties>
+                <children>
+                  <leafNode name="known-hosts-file">
+                    <properties>
+                      <help>RPKI SSH known hosts file</help>
+                      <constraint>
+                        <validator name="file-exists"/>
+                      </constraint>
+                    </properties>
+                  </leafNode>
+                  <leafNode name="private-key-file">
+                    <properties>
+                      <help>RPKI SSH private key file</help>
+                      <constraint>
+                        <validator name="file-exists"/>
+                      </constraint>
+                    </properties>
+                  </leafNode>
+                  <leafNode name="public-key-file">
+                    <properties>
+                      <help>RPKI SSH public key file path</help>
+                      <constraint>
+                        <validator name="file-exists"/>
+                      </constraint>
+                    </properties>
+                  </leafNode>
+                  <leafNode name="username">
+                    <properties>
+                      <help>RPKI SSH username</help>
+                    </properties>
+                  </leafNode>
+                </children>
+              </node>
+            </children>
+          </tagNode>
+          <leafNode name="initial-synchronization-timeout">
+            <properties>
+              <help>Initial RPKI cache synchronization timeout</help>
+              <valueHelp>
+                <format>u32:0-4294967295</format>
+                <description>Initial RPKI cache synchronization timeout</description>
+              </valueHelp>
+              <constraint>
+                <validator name="numeric" argument="--range 0-4294967295"/>
+              </constraint>
+            </properties>
+          </leafNode>
+          <leafNode name="polling-period">
+            <properties>
+              <help>RPKI cache polling period</help>
+              <valueHelp>
+                <format>u32:1-1300</format>
+                <description>Polling period</description>
+              </valueHelp>
+              <constraint>
+                <validator name="numeric" argument="--range 1-1300"/>
+              </constraint>
+            </properties>
+          </leafNode>
+          <leafNode name="preference">
+            <properties>
+              <help>RPKI cache preference</help>
+              <valueHelp>
+                <format>u32:0-4294967295</format>
+                <description>RPKI cache preference</description>
+              </valueHelp>
+              <constraint>
+                <validator name="numeric" argument="--range 0-4294967295"/>
+              </constraint>
+            </properties>
+          </leafNode>
+          <leafNode name="timeout">
+            <properties>
+              <help>RPKI cache reply timeout</help>
+              <valueHelp>
+                <format>u32:0-4294967295</format>
+                <description>RPKI cache reply timeout</description>
+              </valueHelp>
+              <constraint>
+                <validator name="numeric" argument="--range 0-4294967295"/>
+              </constraint>
+            </properties>
+          </leafNode>
+        </children> 
+      </node>
+    </children>
+  </node>
+</interfaceDefinition>