* NACM extension (RFC8341)

* NACM module support (RFC8341 A1+A2) * Recovery user "_nacm_recovery" added. * Example use is restconf PUT when NACM edit-config is permitted, then automatic commit and discard are permitted using recovery user. * Example user changed adm1 to andy to comply with RFC8341 example * Yang code upgrade (RFC7950) * RPC method input parameters validated * see https://github.com/clicon/clixon/issues/4 * Correct XML namespace handling * XML multiple modules was based on "loose" semantics so that yang modules were found by iterating thorugh namespaces until a match was made. This did not adhere to proper [XML namespace handling](https://www.w3.org/TR/2009/REC-xml-names-20091208), and causes problems with overlapping names and false positives. Below see XML accepted (but wrong), and correct namespace declaration: ``` <rpc><my-own-method></rpc> # Wrong but accepted <rpc xmlns="urn:ietf:params:xml:ns:netconf:base:1.0"> # Correct <my-own-method xmlns="http://example.net/me/my-own/1.0"> </rpc> ``` * To keep old loose semantics set config option CLICON_XML_NS_ITERATE (true by default) * XML to JSON translator support for mapping xmlns attribute to module name prefix. * Default namespace is still "urn:ietf:params:xml:ns:netconf:base:1.0" * See https://github.com/clicon/clixon/issues/49 * Changed all make tags --> make TAGS * Keyvalue datastore removed (it has been disabled since 3.3.3) * debug rpc added in example application (should be in clixon-config).
2018-12-16 19:46:26 +01:00 · 2018-12-16 19:46:26 +01:00 · ae1af8da9e
commit ae1af8da9e
parent e5c0b06cf9
63 changed files with 1852 additions and 3492 deletions
--- a/yang/clixon-config@2018-10-21.yang
+++ b/yang/clixon-config@2018-10-21.yang
@ -123,7 +123,7 @@ module clixon-config {
               "Supported features as used by YANG feature/if-feature
 	        value is: <module>:<feature>, where <module> and <feature>
                are either names, or the special character '*'.
-                *:an* means enable all features
+                *:* means enable all features
                <module>:* means enable all features in the specified module
                *:<feature> means enable the specific feature in all modules";
 	   type string;
@ -150,7 +150,7 @@ module clixon-config {
 	leaf CLICON_YANG_MAIN_DIR {
 	    type string;
 	    description
-		"If given, load all modules in this directory.
+		"If given, load all modules in this directory (all .yang files)
                 See also CLICON_YANG_DIR which specifies a path of dirs";
 	}
 	leaf CLICON_YANG_MODULE_MAIN {
@ -353,6 +353,15 @@ module clixon-config {
                 Only works for Yang specified XML.
                 If not set, all lists accessed via linear search.";
 	}
+	leaf CLICON_XML_NS_ITERATE {
+	    type boolean;
+	    default true;
+	    description
+		"If set, iterate through modules to find the matching datanode
+                 or rpc if no xmlns attribute specifies namespace.
+                 This is loose semantics of finding namespaces.
+                 And it is wrong, but is the way Clixon originally was written.";
+	}
 	leaf CLICON_USE_STARTUP_CONFIG {
 	    type int32;
 	    default 0;
@ -450,4 +459,12 @@ module clixon-config {

 	}
    }
+    rpc debug {
+	description "Set debug level of backend.";
+	input {
+	    leaf level {
+		type uint32;
+	    }
+	}
+    }
 }