[Xorp-cvs] XORP cvs commit: xorp/etc/templates xorp/ospf xorp/xrl/interfaces
xorp/xrl/targets
Pavlin Radoslavov
pavlin@icir.org
Wed, 15 Feb 2006 19:06:15 GMT
CVSROOT: /usr/local/share/doc/apache/cvs
Module name: xorp
Changes by: pavlin@xorpc.icir.org 2006-02-15 19:06:15 UTC
XORP CVS repository
Modified files:
etc/templates ospfv2.tp
ospf auth.cc auth.hh ospf.cc ospf.hh peer.cc peer.hh
peer_manager.cc peer_manager.hh xrl_target.cc
xrl_target.hh
xrl/interfaces ospfv2.xif ospfv2_xif.cc ospfv2_xif.hh
xrl/targets ospfv2.xrls ospfv2_base.cc ospfv2_base.hh
Log message:
Refactor the authentication mechanism (both the front-end and the
back-end) so now we support MD5 keys management and we are more
consistent with the RIP implementation and the RIP front-end
configuration.
Now we can configure up to 256 MD5 keys with different password
each, and start and end time:
authentication {
md5 1 { /* KeyID: [0, 255] */
password: "FOO"
start-time: "YYYY-MM-DD.HH:MM"
end-time: "YYYY-MM-DD.HH:MM"
}
}
Both start-time and end-time are optional. If start-time is empty,
then the key is activated immediately.
If the end time is empty or is same as the start time, then the
key will never expire.
In addition, the simple password configuration is:
authentication {
simple-password: "FOO"
}
Note that the MD5 and simple password authentications are mutually
exclusive so they shouldn't be mixed. Unfortunately, for the time
being we don't have rtrmgr/xorpsh support that enforces the rule
that the user doesn't configure both of them.
Also, note that in the back-end implementation the textual name
of the plain-text/simple-password authentication handler has
been changed from "plaintext" to "simple" (for consistency with
the RIP implementation and with other vendors' implementations).
From user's perspective it doesn't matter (anymore), but the developers
should be aware of the change.
Just for the record, the old front-end for setting the authentication
was:
authentication {
type: "plaintext"
password: "FOO"
}
and
authentication {
type: "md5"
password: "FOO"
}
The old front-end is %deprecated in the rtrmgr template file.
Revision Changes Path
1.36 +103 -27; commitid: 6ef043f378a47ea6; xorp/etc/templates/ospfv2.tp
1.7 +606 -75; commitid: 6ef043f378a47ea6; xorp/ospf/auth.cc
1.6 +520 -80; commitid: 6ef043f378a47ea6; xorp/ospf/auth.hh
1.65 +106 -9; commitid: 6ef043f378a47ea6; xorp/ospf/ospf.cc
1.85 +76 -6; commitid: 6ef043f378a47ea6; xorp/ospf/ospf.hh
1.221 +120 -49; commitid: 6ef043f378a47ea6; xorp/ospf/peer.cc
1.117 +121 -28; commitid: 6ef043f378a47ea6; xorp/ospf/peer.hh
1.108 +58 -5; commitid: 6ef043f378a47ea6; xorp/ospf/peer_manager.cc
1.65 +68 -4; commitid: 6ef043f378a47ea6; xorp/ospf/peer_manager.hh
1.27 +169 -15; commitid: 6ef043f378a47ea6; xorp/ospf/xrl_target.cc
1.19 +71 -4; commitid: 6ef043f378a47ea6; xorp/ospf/xrl_target.hh
1.15 +56 -8; commitid: 6ef043f378a47ea6; xorp/xrl/interfaces/ospfv2.xif
1.16 +126 -10; commitid: 6ef043f378a47ea6; xorp/xrl/interfaces/ospfv2_xif.cc
1.16 +114 -8; commitid: 6ef043f378a47ea6; xorp/xrl/interfaces/ospfv2_xif.hh
1.18 +54 -3; commitid: 6ef043f378a47ea6; xorp/xrl/targets/ospfv2.xrls
1.18 +111 -11; commitid: 6ef043f378a47ea6; xorp/xrl/targets/ospfv2_base.cc
1.18 +84 -5; commitid: 6ef043f378a47ea6; xorp/xrl/targets/ospfv2_base.hh