[Xorp-cvs] XORP cvs commit: xorp/etc/templates xorp/ospf xorp/xrl/interfaces xorp/xrl/targets

Pavlin Radoslavov pavlin@icir.org
Wed, 15 Feb 2006 19:06:15 GMT 

CVSROOT:	/usr/local/share/doc/apache/cvs
Module name:	xorp
Changes by:	pavlin@xorpc.icir.org	2006-02-15 19:06:15 UTC

XORP CVS repository


Modified files:
	etc/templates ospfv2.tp 
	ospf          auth.cc auth.hh ospf.cc ospf.hh peer.cc peer.hh 
	              peer_manager.cc peer_manager.hh xrl_target.cc 
	              xrl_target.hh 
	xrl/interfaces ospfv2.xif ospfv2_xif.cc ospfv2_xif.hh 
	xrl/targets   ospfv2.xrls ospfv2_base.cc ospfv2_base.hh 

Log message:
	Refactor the authentication mechanism (both the front-end and the
	back-end) so now we support MD5 keys management and we are more
	consistent with the RIP implementation and the RIP front-end
	configuration.
	
	Now we can configure up to 256 MD5 keys with different password
	each, and start and end time:
	
	authentication {
	    md5 1 {             /* KeyID: [0, 255] */
	        password: "FOO"
	        start-time: "YYYY-MM-DD.HH:MM"
	        end-time: "YYYY-MM-DD.HH:MM"
	    }
	}
	
	Both start-time and end-time are optional. If start-time is empty,
	then the key is activated immediately.
	If the end time is empty or is same as the start time, then the
	key will never expire.
	
	In addition, the simple password configuration is:
	
	authentication {
	    simple-password: "FOO"
	}
	
	Note that the MD5 and simple password authentications are mutually
	exclusive so they shouldn't be mixed. Unfortunately, for the time
	being we don't have rtrmgr/xorpsh support that enforces the rule
	that the user doesn't configure both of them.
	
	Also, note that in the back-end implementation the textual name
	of the plain-text/simple-password authentication handler has
	been changed from "plaintext" to "simple" (for consistency with
	the RIP implementation and with other vendors' implementations).
	From user's perspective it doesn't matter (anymore), but the developers
	should be aware of the change.
	
	Just for the record, the old front-end for setting the authentication
	was:
	
	authentication {
	    type: "plaintext"
	    password: "FOO"
	}
	
	and
	
	authentication {
	    type: "md5"
	    password: "FOO"
	}
	
	The old front-end is %deprecated in the rtrmgr template file.

Revision  Changes                                 Path
1.36      +103 -27;  commitid: 6ef043f378a47ea6;  xorp/etc/templates/ospfv2.tp
1.7       +606 -75;  commitid: 6ef043f378a47ea6;  xorp/ospf/auth.cc
1.6       +520 -80;  commitid: 6ef043f378a47ea6;  xorp/ospf/auth.hh
1.65      +106 -9;  commitid: 6ef043f378a47ea6;   xorp/ospf/ospf.cc
1.85      +76 -6;  commitid: 6ef043f378a47ea6;    xorp/ospf/ospf.hh
1.221     +120 -49;  commitid: 6ef043f378a47ea6;  xorp/ospf/peer.cc
1.117     +121 -28;  commitid: 6ef043f378a47ea6;  xorp/ospf/peer.hh
1.108     +58 -5;  commitid: 6ef043f378a47ea6;    xorp/ospf/peer_manager.cc
1.65      +68 -4;  commitid: 6ef043f378a47ea6;    xorp/ospf/peer_manager.hh
1.27      +169 -15;  commitid: 6ef043f378a47ea6;  xorp/ospf/xrl_target.cc
1.19      +71 -4;  commitid: 6ef043f378a47ea6;    xorp/ospf/xrl_target.hh
1.15      +56 -8;  commitid: 6ef043f378a47ea6;    xorp/xrl/interfaces/ospfv2.xif
1.16      +126 -10;  commitid: 6ef043f378a47ea6;  xorp/xrl/interfaces/ospfv2_xif.cc
1.16      +114 -8;  commitid: 6ef043f378a47ea6;   xorp/xrl/interfaces/ospfv2_xif.hh
1.18      +54 -3;  commitid: 6ef043f378a47ea6;    xorp/xrl/targets/ospfv2.xrls
1.18      +111 -11;  commitid: 6ef043f378a47ea6;  xorp/xrl/targets/ospfv2_base.cc
1.18      +84 -5;  commitid: 6ef043f378a47ea6;    xorp/xrl/targets/ospfv2_base.hh