summaryrefslogtreecommitdiff
path: root/usr.sbin/bgpd/parse.y
AgeCommit message (Collapse)Author
2004-06-06rework bgpd's handling of listening sockets. instead of one for eachHenning Brauer
supported address familiy, keep a tailq of an arbitary number of them. the new struct listen_addr contains the sockaddr and the fd. this fixes quite some nasty behaviour which was a consequence of the previous model. looks right deraadt@, and discussed with claudio
2004-05-21RFC 2796 bgp route reflector support. This is very useful in conjunctionClaudio Jeker
with templates. looks good, go for it henning@
2004-05-17extend filter language to allow basic setting of COMMUNITIES attribute.Damien Miller
ok claudio@
2004-05-08off by one in key too long detectionHenning Brauer
2004-05-08fix redefinition detection with manual keyes ipsecHenning Brauer
2004-05-08with manual keyed ipsec, we need keys and spis for both directions -Henning Brauer
enforce that
2004-05-08KNFHenning Brauer
2004-05-08break out the consistency checking for neighbors in its own function,Henning Brauer
and verify that peers with ipsec have local-address specified (needed to set up the flows...)
2004-05-08allow for neighbor statements without { parameters } block; everythingHenning Brauer
can be inherited from the group
2004-05-08add support for ipsec ah with manual keys, pfkey part already does so, andHenning Brauer
flesh parser out a bit. also add support for printing ipsec ah with manual keys in printconf
2004-05-08factor out the string -> key conversion code used for md5sig and twice for ipsecHenning Brauer
2004-05-07add a filter option to dump prefixes learned in UPDATEs into a PF table,Damien Miller
intended for building realtime BGP blacklists (e.g. with spamd); ok claudio & henning
2004-05-06we need a seperate field for the md5 key len, can't use strlen, noticedHenning Brauer
by markus some time ago
2004-05-04Correctly plug the memory leak and fix a error message.Claudio Jeker
2004-04-30plug memory leaks; henning okTheo de Raadt
2004-04-30spellingTheo de Raadt
2004-04-29sock -> fd; ok henningTheo de Raadt
2004-04-28FILE * leak; henning ja ja ja jaTheo de Raadt
2004-04-28allow ah/esp spec with IKE, markus okHenning Brauer
2004-04-28prevent multiple auth methods to be specifiedHenning Brauer
2004-04-28prefix the auth related defines by AUTH_, we had a name clash, markus okHenning Brauer
2004-04-27set conf.auth.methodod for md5, tooMarkus Friedl
2004-04-27ike before inHenning Brauer
2004-04-27rename the ipsec struct to auth, move all tcpmd5 related fields in there, andHenning Brauer
add a generic "method" field that expresses what method (none/md5sig/ipsec manual/ipsec ike) is in use markus ok
2004-04-27parser parts for ipsec ike, markus okHenning Brauer
2004-04-27crud stripping; henning okTheo de Raadt
2004-04-27curpeer must be set back to curgroup, not NULLHenning Brauer
2004-04-26need more checks on the keysHenning Brauer
2004-04-26unbreakHenning Brauer
2004-04-26don't forget to set keylen, markusHenning Brauer
2004-04-26parser support for setting ipsec keys and such, markus okHenning Brauer
2004-04-25reserve upper half of the (internal) ID space for cloned neighbors, claudio okHenning Brauer
2004-04-25fix check wether local-address and neighbor are of same address family -Henning Brauer
we have to delay this because the current context might be a group nd not a single neighbor, claudio ok
2004-04-25add "neighbor cloning", allowing you to specify a prefix and prefixlengthHenning Brauer
instead of the neighbor's IP address. WHen a connection comes in matching that mask we clone the neighbor spec. IPv6 match code by itojun, rde feeding by claudio, ok claudio
2004-04-24some rather boring windows talk at cansecwest made me hack initial supportHenning Brauer
for IPv6 transport parts based on a diff from Brent Graveland ok itojun@ claudio@
2004-03-11There is no cnumber token in the parser so don't define a type for it.Claudio Jeker
2004-03-11yes, the keyword table has to be sorted ;-)Henning Brauer
2004-03-11Add basic support for communities. Currently it is only possible to filterClaudio Jeker
on communities, e.g match from any community 24640:* set localpref 666 OK henning@
2004-03-10oupsHenning Brauer
2004-03-10implement framework to announce capabilities in the open messages we send.Henning Brauer
this includes handling "unsupported optional parameter" notifications from the peer and retrying without capability announcement. claudio ok
2004-03-08mem leaks in error pathes, mostly from Patrick LatifiHenning Brauer
2004-03-08typo in format strin (ugh!) and few missing free()s, partitially fromHenning Brauer
Patrick Latifi
2004-03-06plug a memory leak in the lexer.Henning Brauer
the issue is this code fragement from yylex(): . token = lookup(buf); . yylval.v.string = strdup(buf); . if (yylval.v.string == NULL) . fatal("yylex: strdup"); . return (token); lookup() tries to match buf against a list of keywords, and returns the associated token if it has a match, or the token STRING otherwise. STRING is the only token that needs (and free()s) yylval.v.string. however, we assigned memory for it with the strdup in yylex for each and every token. the fix is obviously only setting yylval.v.string when lookup() returns STRING. Patrick Latifi noticed that something was leaking with token handling, analysis and fix by me. ok deraadt@
2004-03-05plug a couple of memory leaks, Patrick LatifiHenning Brauer
2004-03-02KNFHenning Brauer
2004-03-02flesh out the address and prefix parsing, include v6 code, but reject v6Henning Brauer
upwards, claudio ok
2004-03-01make sure AS doesn't exceed upper bound, issue pointed out byHenning Brauer
Brent Graveland <brent@graveland.net>
2004-03-01KNFHenning Brauer
2004-03-01Sync printconfig.c with parse.y. OK henning@Claudio Jeker
2004-03-01Make it possible to diable the decision process. This is a feature only usefulClaudio Jeker
for route-collectors. OK henning@
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-20 14:39:14 +0000