kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
freebsd-ports/net/quagga/files/extra-tcpmd5-patch-bgpd::bgp_network.c
Bruce M Simpson 8ffa74d90d Add TCP-MD5 application level support to the FreeBSD quagga port. 
Note that this still requires the network administrator to set up TCP-MD5
SAs in the system SADB via setkey(8).
2004-05-20 11:51:44 +00:00

42 lines
1.1 KiB
C
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

--- bgpd/bgp_network.c.orig Wed Aug 27 05:09:14 2003
+++ bgpd/bgp_network.c Wed Jan 7 14:24:34 2004
@@ -35,6 +35,10 @@
#include "bgpd/bgp_debug.h"
#include "bgpd/bgp_network.h"
+#ifndef TCP_SIG_SPI_BASE
+#define TCP_SIG_SPI_BASE 1000 /* XXX this will go away */
+#endif
+
extern struct zebra_privs_t bgpd_privs;
@@ -141,6 +145,15 @@
return ret;
}
#endif /* SO_BINDTODEVICE */
+
+#ifdef TCP_MD5SIG
+ if (CHECK_FLAG (peer->flags, PEER_FLAG_TCP_SIGNATURE))
+ sockopt_tcp_signature (peer->su.sa.sa_family, peer->fd,
+ TCP_SIG_SPI_BASE + peer->port);
+ else
+ sockopt_tcp_signature (peer->su.sa.sa_family, peer->fd, 0);
+#endif /* TCP_MD5SIG */
+
return 0;
}
@@ -243,6 +256,12 @@
if (peer->ifname)
ifindex = if_nametoindex (peer->ifname);
#endif /* HAVE_IPV6 */
+
+#ifdef TCP_MD5SIG
+ if (CHECK_FLAG (peer->flags, PEER_FLAG_TCP_SIGNATURE))
+ sockopt_tcp_signature (peer->su.sa.sa_family, peer->fd,
+ TCP_SIG_SPI_BASE + peer->port);
+#endif /* TCP_MD5SIG */
if (BGP_DEBUG (events, EVENTS))
plog_info (peer->log, "%s [Event] Connect start to %s fd %d",
Reference in a new issue View git blame Copy permalink