Toke Høiland-Jørgensen
35f88b305a
Nest: Allow specifying security keys as hex bytes as well as strings
...
Add support for specifying a password in hexadecimal format, The result
is the same whether a password is specified as a quoted string or a
hex-encoded byte string, this just makes it more convenient to input
high-entropy byte strings as MAC keys.
2021-06-06 16:28:18 +02:00
Ondrej Zajicek (work)
30b8468269
Minor cleanups with cfg_allocz()
...
Also fixes some more failed asserts due to add_tail().
2020-11-24 04:09:11 +01:00
Maria Matejka
0c3b8ffe25
Lexer: strtoul shall never set endptr to NULL; it should be an error
2020-05-01 15:19:12 +02:00
Maria Matejka
eac9250fd5
Merge branch 'master' into mq-filter-stack
2019-07-03 11:12:25 +02:00
Maria Matejka
b40c0f028f
Filter: Pre-evaluation of constant expressions
2019-07-02 10:45:53 +02:00
Maria Matejka
63e7620462
Conf/Filters: Moved argument count to conf scope
2019-06-25 16:18:06 +02:00
Maria Matejka
5c864e2cfa
String: bstrtoul macro expanded to bstrtoul10 and 16
2019-06-13 14:27:58 +02:00
Maria Matejka
9eef9c648c
Lexer now returns known sym / unknown sym / keyword
2019-05-17 22:26:21 +02:00
Ondrej Zajicek (work)
e0835db4f1
BGP: Dynamic BGP
...
Support for dynamically spawning BGP protocols for incoming connections.
Use 'neighbor range' to specify range of valid neighbor addresses, then
incoming connections from these addresses spawn new BGP instances.
2019-04-30 13:32:39 +02:00
Maria Matejka
f249d0b84c
Filters: comparison of functions and filters caching
2019-02-26 16:44:24 +01:00
Maria Matejka
2915e711f7
Custom number parser to speed up config parsing
...
The glibc's generic parser is slow due to its versatility. Specialized
parsers for base-10 and base-16 are much faster and we don't use other
bases.
2019-02-25 23:28:36 +01:00
Maria Matejka
99911873a1
Conf: Lexer parses quoted strings in a more descriptive way
2019-02-25 17:22:59 +01:00
Maria Matejka
0b39b1cbb7
Conf: Symbol implementation converted from void pointers to union
...
... and consted some declarations.
2019-02-20 22:30:55 +01:00
Maria Matejka
8bdb05edb2
Filters: split the large filter.h file to smaller files.
...
This should be revised, there are still ugly things in the filter API.
2019-02-20 22:30:54 +01:00
Maria Matejka
c0e958e022
Filter + Config: Fix bugs, tests and split symbols by type
2019-02-20 22:30:54 +01:00
Jan Maria Matejka
d50b0bc437
Conf: Show the line:char position where the syntax error happens
2018-09-11 17:35:13 +02:00
Ondrej Zajicek (work)
77810030d2
Merge branch 'master' into int-new
2017-05-30 14:44:37 +02:00
Ondrej Zajicek (work)
4fec43067e
Workaround for older bisons
2017-05-30 14:43:49 +02:00
Ondrej Zajicek (work)
a1dc526760
Merge branch 'master' into int-new
2017-05-25 23:37:50 +02:00
Ondrej Zajicek (work)
b7761af34d
Conf: Replace keyword and symbol hash table with generic hash table.
...
The old hash table had fixed size, which makes it slow for config files
with large number of symbols and symbol lookups. The new one is growing
according to needs.
2017-05-25 23:30:39 +02:00
Ondrej Zajicek (work)
e521150b8f
Fix VPN-RD parsing on 32-bit systems
...
When shift count >= width of type the behavior is undefined.
2017-05-18 14:51:36 +02:00
Ondrej Zajicek (work)
4278abfe27
Check validity of dest w.r.t. net_type
...
Allow to define static roa/flow routes without dest.
2017-04-18 13:56:40 +02:00
Jan Moskyto Matejka
2282030b2a
Simpler format of VPN RD
2017-03-28 17:35:32 +02:00
Ondrej Zajicek (work)
62e64905b7
Several minor fixes
2017-02-20 02:26:45 +01:00
Jan Moskyto Matejka
d311368bc5
VPN4 and VPN6 literals
...
From now on, protocol static accepts VPN4 and VPN6 addressess.
With some concerns about VPN6 Route Distinguishers, I finally chose
to have the same format as for VPN4 (where it is defined by RFC 4364).
2016-12-22 21:38:33 +01:00
Pavel Tvrdik
45ec4ce82a
Lexer: Add a quotation mark back while parsing quotes
...
Thanks to Ondrej Zajicek for code.
2016-11-16 12:21:19 +01:00
Ondrej Zajicek (work)
8860e991f6
Merge branch 'master' into int-new
2016-11-08 19:27:58 +01:00
Ondrej Zajicek (work)
c8cafc8ebb
Minor code cleanups
2016-11-08 17:46:29 +01:00
Ondrej Zajicek (work)
cc5b93f72d
Merge tag 'v1.6.2' into int-new
2016-11-08 17:04:29 +01:00
Pavel Tvrdik
768d5e1058
Add !~ operator to filter grammar
2016-09-21 13:35:52 +02:00
Ondřej Surý
61e6725335
Include <stdint.h> in cf-lex.l to avoid UINTx_MAX redefinition
2016-08-16 09:23:55 +02:00
Ondrej Zajicek (work)
af678af0d5
Merge remote-tracking branch 'origin/master' into int-new
2016-05-12 18:03:23 +02:00
Pavel Tvrdik
8e433d6a52
Prog Doc: Complete several missing parameters
2016-05-12 15:49:44 +02:00
Jan Moskyto Matejka
9656dce72e
ROA code switchoff
2015-12-20 13:04:07 +01:00
Ondrej Zajicek (work)
04ae8ddaa1
Merge branch 'master' into int-new
2015-11-25 14:24:35 +01:00
Ondrej Zajicek (work)
9b9a7143c4
Conf: Fixes bug in symbol lookup during reconfiguration
...
Symbol lookup by cf_find_symbol() not only did the lookup but also added
new void symbols allocated from cfg_mem linpool, which gets broken when
lookups are done outside of config parsing, which may lead to crashes
during reconfiguration.
The patch separates lookup-only cf_find_symbol() and config-modifying
cf_get_symbol(), while the later is called only during parsing. Also
new_config and cfg_mem global variables are NULLed outside of parsing.
2015-11-09 00:42:02 +01:00
Ondrej Zajicek (work)
fe9f1a6ded
Initial commit on integrated BIRD
...
New data types net_addr and variants (in lib/net.h) describing
network addresses (prefix/pxlen). Modifications of FIB structures
to handle these data types and changing everything to use these
data types instead of prefix/pxlen pairs where possible.
The commit is WiP, some protocols are not yet updated (BGP, Kernel),
and the code contains some temporary scaffolding.
Comments are welcome.
2015-11-05 12:48:52 +01:00
Ondrej Zajicek
bc7f4e0e34
Bump max symbol length to 64.
...
And move the constant to conf.h header.
Thanks to Alexander Chernikov for the patch.
2015-02-21 12:42:31 +01:00
Ondrej Zajicek
88a183c6c9
Integrated IP functions.
2014-10-24 11:11:43 +02:00
Ondrej Zajicek
b2f008378a
Allows more constants in set literals.
...
Thanks to Michael Fincham for the bugreport.
2014-10-02 12:52:50 +02:00
Ondrej Zajicek
0c3d9dacaf
Fixes file descriptor leak when parser ends with error.
...
Thanks to MrBr for the bugreport.
2014-03-25 14:58:00 +01:00
Ondrej Filip
1f64a487a0
Symbol names enclosed by apostrophes can contain colons.
2013-08-15 13:29:33 +02:00
Ondrej Zajicek
1103b32e83
Allows to define constants of all filter types.
2013-07-25 22:33:57 +02:00
Ondrej Filip
8c4da7e01d
Symbol names enclosed by apostrophes can contain DOTs.
2013-02-10 19:17:38 +01:00
Ondrej Zajicek
4be266a983
Implements wildcard matching in config file include.
...
Also fixes some minor bugs in include.
Thanks Kelly Cochran for suggestion and draft patch.
2012-07-18 19:29:33 +02:00
Ondrej Zajicek
af582c4811
Route Origin Authorization basics.
...
- ROA tables, which are used as a basic part for RPKI.
- Commands for examining and modifying ROA tables.
- Filter operators based on ROA tables consistent with RFC 6483.
2012-03-18 17:32:30 +01:00
Ondrej Zajicek
c32c3f88f0
Fixes parsing larger numbers on 64bit platforms.
2011-12-22 13:44:43 +01:00
Ondrej Zajicek
60fd666b79
Fixes missing header.
2011-11-10 09:22:38 +01:00
Ondrej Zajicek
a7f23f581f
Implements protocol templates.
...
Based on the patch from Alexander V. Chernikov.
Extended to support almost all protocols.
Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 00:31:23 +01:00
Ondrej Zajicek
9b7fdfc84a
Fixes for include.
2011-10-10 01:41:08 +02:00