RPKI: Add 'ignore max length' option

Add 'ignore max length' option to RPKI protocol, which ignores received max length in ROA records and instead uses max value (32 or 128). This may be useful for implementing loose RPKI check for blackholes.
author: Ondrej Zajicek (work) <santiago@crfreenet.org> 2020-10-11 00:53:19 +0200
committer: Ondrej Zajicek (work) <santiago@crfreenet.org> 2020-10-11 01:00:54 +0200
commit: fc1e3211b109400c0e96f889829c9f5145ac7226 (patch)
tree: 3419096c119b0f8146f165e91d4b399eb854b920 /proto/rpki/config.Y
parent: 6c11dbcf28faa145cfb7310310a2a261fd4dd1f2 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/proto/rpki/config.Y b/proto/rpki/config.Y
index 924066f8..d6d326b8 100644
--- a/proto/rpki/config.Y
+++ b/proto/rpki/config.Y
@@ -32,7 +32,7 @@ rpki_check_unused_transport(void)
 CF_DECLS
 
 CF_KEYWORDS(RPKI, REMOTE, BIRD, PRIVATE, PUBLIC, KEY, TCP, SSH, TRANSPORT, USER,
-	    RETRY, REFRESH, EXPIRE, KEEP)
+	    RETRY, REFRESH, EXPIRE, KEEP, IGNORE, MAX, LENGTH)
 
 %type <i> rpki_keep_interval
 
@@ -79,6 +79,7 @@ rpki_proto_item:
      RPKI_CFG->expire_interval = $3;
      RPKI_CFG->keep_expire_interval = $2;
    }
+ | IGNORE MAX LENGTH bool { RPKI_CFG->ignore_max_length = $4; }
  ;
 
 rpki_keep_interval:
author	Ondrej Zajicek (work) <santiago@crfreenet.org>	2020-10-11 00:53:19 +0200
committer	Ondrej Zajicek (work) <santiago@crfreenet.org>	2020-10-11 01:00:54 +0200
commit	fc1e3211b109400c0e96f889829c9f5145ac7226 (patch)
tree	3419096c119b0f8146f165e91d4b399eb854b920 /proto/rpki/config.Y
parent	6c11dbcf28faa145cfb7310310a2a261fd4dd1f2 (diff)