summaryrefslogtreecommitdiffstats
path: root/nest
AgeCommit message (Collapse)Author
2009-06-01Escaped debbuging message removed.Ondrej Zajicek
2009-06-01Adds support for dynamic pair and bgp mask expressions.Ondrej Zajicek
2009-06-01The pipe cleanup.Ondrej Zajicek
2009-05-31Changes pipes to transfer all routes between routing table, not just optimal ↵Ondrej Zajicek
routes.
2009-05-29Implements primary address selection base on 'primary' option.Ondrej Zajicek
2009-05-22Change import/preimport to export/preexport to be consistent with filters.Ondrej Zajicek
2009-05-22Fixes serious bug in route attribute handing.Ondrej Zajicek
ea_same() sometimes returns true for different route attributes, which caused that hash table in BGP does not work correctly and some routes were sent with different attributes.
2009-05-21Merge branch 'master' into devOndrej Zajicek
2009-05-11'show route protocol <p>' added to CLI.Ondrej Filip
2009-05-10Fixed bug in cli help.Ondrej Filip
2009-05-06A change in OSPF and RIP interface patterns.Ondrej Zajicek
Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-04-17Rewrite of buggy AS path matching.Ondrej Zajicek
Old AS path maching supposes thath AS number appears only once in AS path, but that is not true. It also contains some bugs related to AS path sets. New code does not use any assumptions about semantic structure of AS path. It is asymptotically slower than the old code, but on real paths it is not significant. It also allows '?' for matching one arbitrary AS number.
2009-04-08Fixes broken cryptographic authentication in OSPFOndrej Zajicek
Cryptographic authentication in OSPF is defective by design - there might be several packets independently sent to the network (for example HELLO, LSUPD and LSACK) where they might be reordered and that causes crypt. sequence number error. That can be workarounded by not incresing sequence number too often. Now we update it only when last packet was sent before at least one second. This can constitute a risk of replay attacks, but RFC supposes something similar (like time in seconds used as CSN).
2009-03-25Fixes bug in pipe route filtering.Ondrej Zajicek
Routes comming through pipe from primary to secondary table were filtered by both EXPORT and IMPORT filters, but they should be only filtered by EXPORT filters.
2009-03-18Better handling of AS4 optional attribute errorsOndrej Zajicek
AS4 optional attribute errors were handled by session drop (according to BGP RFC). This patch implements error handling according to new BGP AS4 draft (*) - ignoring invalid AS4 optional attributes. (*) http://www.ietf.org/internet-drafts/draft-chen-rfc4893bis-02.txt
2009-02-21Fix bug in empty bgp mask handlingOndrej Zajicek
2009-02-12Fixes bug in protocol state machineOndrej Zajicek
Scheduling flush must be done before resource pool freeing as it frees some allocated list nodes from a global list.
2008-12-08Fixes core state machine.Ondrej Zajicek
The core state machine was broken - it didn't free resources in START -> DOWN transition and might freed resources after UP -> STOP transition before protocol turned down. It leads to deadlock on olock acquisition when lock was not freed during previous stop. The current behavior is that resources, allocated during DOWN -> * transition, are freed in * -> DOWN transition, and flushing (scheduled in UP -> *) just counteract feeding (scheduled in * -> UP). Protocol fell down when both flushing is done (if needed) and protocol reports DOWN. BTW, is thera a reason why neighbour cache item acquired by protocol is not tracked by resource mechanism?
2008-11-22Fixes race condition leading to memory corruption and crash.Ondrej Zajicek
When protocol started, feeding was scheduled. If protocol got down before feeding was executed, then function responsible for connecting protocol to kernel routing tables was called after the function responsible for disconnecting, then resource pool of protocol was freed, but freed linked list structures remains in the list.
2008-11-16Fix bug in AS path matchingOndrej Zajicek
2008-11-14Fixes feeding of new protocol, only preferred routes are announced.Ondrej Zajicek
2008-11-08Proper format functions for ORIGINATOR_ID, CLUSTER_LISTOndrej Zajicek
2008-11-08Fix bugs in OSPF MD5 authentication. First bug is that defaultOndrej Zajicek
values for MD5 password ID changed during reconfigure, Second bug is that BIRD chooses password in first-fit manner, but RFC says that it should use the one with the latest generate-from. It also modifies the syntax for multiple passwords. Now it is possible to just add more 'password' statements to the interface section and it is not needed to use 'passwords' section. Old syntax can be used too.
2008-11-05Fix problem with local time changes.Ondrej Zajicek
2008-10-26Bugfixes in MULIT_EXIT_DISC attribute handling.Ondrej Zajicek
- Old MED handling was completely different from behavior specified in RFCs - for example they havn't been propagated to neighboring areas. - Update tie-breaking according to RFC 4271. - Change default value for 'default bgp_med' configuration option according to RFC 4271.
2008-10-26Implementation of route reflection for BGPOndrej Zajicek
2008-10-26Implementation of 4B ASN support for BGPOndrej Zajicek
2005-02-14Small changed to reduce the number of warnings.Ondrej Filip
2004-07-13MD5 authentication in OSPF works. :-)Ondrej Filip
2004-07-13Bugfix in simple authentification.Ondrej Filip
2004-07-01Password WALK_LIST bugfix.Ondrej Filip
2004-06-26Password management redesigned (untested).Ondrej Filip
2004-06-25A lot of changes:Ondrej Filip
- metric is 3 byte long now - summary lsa originating - more OSPF areas possible - virtual links - better E1/E2 routes handling - some bug fixes.. I have to do: - md5 auth (last mandatory item from rfc2328) - !!!!DEBUG!!!!! (mainly virtual link system has probably a lot of bugs) - 2328 appendig E
2004-06-11RTS_OSPF_BONDARY is nonsense, RTS_OSPF_IA must have smaller id than RTS_OSPF_EXTOndrej Filip
2004-06-07Cleanup in show route import <p>.Ondrej Filip
2004-06-05Marked unused parameters in core code as such.Martin Mares
2004-05-31Small correction to va_start/va_end in cli_printf (va_end was missing).Martin Mares
(Andreas)
2004-05-31Grrr, committing too fast.Ondrej Filip
#include "alloca.h" -> #include "lib/alloca.h"
2004-05-31Use #include "alloca.h"Ondrej Filip
2004-05-31Added RTD_NONE /* Just for internal use */Ondrej Filip
2004-05-31#ifdef ALLOCA_HOndrej Filip
2003-08-13protocol->import_control() could potentially call rte_cow() as well.Martin Mares
AFAIK it doesn't happen in any of our protocol, but better be sure.
2003-08-13This was a potential memory leak, but not the one Feela observed.Martin Mares
This one could happen when an import filter of some protocol modified the rte (so that it would be rte_cow()ed) and later rejected it.
2003-02-22There can be multiple primary addresses with different scopesMartin Mares
and only the highest scope one has IA_PRIMARY set, so report the remaining ones as "Unselected".
2002-11-13Added missing includes.Martin Mares
2002-11-13Added missing semicolons.Martin Mares
2001-08-19Fix %<something>I format strings.Martin Mares
2001-01-08Fixed infinite recursion in password_same.Martin Mares
Pavel, please check.
2000-11-08Yet another nasty bugfix of iface_patts_equal().Ondrej Filip
2000-11-08Bugfix in iface_patts_equal.Ondrej Filip
When both patterns were NULL strcmp it sigfaulted.