BGP MD5 support regression
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
quagga (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Hardy |
Fix Released
|
Undecided
|
Unassigned | ||
Intrepid |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: quagga
Gutsy's quagga pkg uses a rather dated version of the TCP-MD5 patch. It's not working (possibly due to ipv6 being enabled, that's a known issue on mailing list) symptoms are, the listen socket doesn't have the md5 option set, so 2 quaggas can't establish a session. They both have kernel messages "MD5 NOT expected, but received"
If quagga <--> Cisco, the quagga connects *to* the cisco with md5 ok.
An updated patch is http://
It needs HAVE_TCP_MD5SIG defined in config.h; A later patch makes autoconf do that:
http://
However that one is in an obscure format (CVS diff) and I didn't test it.
Changed in quagga: | |
status: | New → Confirmed |
Looks like this didn't quite work out; 0.99.9-2ubuntu1 won't build from source on Gutsy, using the CVS diff mis-patches bgpd.h struct bgp_master, giving build error:
gcc -DHAVE_CONFIG_H -DSYSCONFDIR= \"/etc/ quagga/ \" -I. -I.. -I.. -I.. -I../lib -Os -fno-omit- frame-pointer -g -std=gnu99 -Wall -Wsign-compare -Wpointer-arith - prototypes -Wmissing- declarations -Wchar-subscripts -Wcast-qual -MT bgpd.o -MD -MP -MF .deps/bgpd.Tpo -c -o bgpd.o bg
Wbad-function-cast -Wwrite-strings -Wmissing-
pd.c
bgpd.c: In function ‘peer_delete’:
bgpd.c:1216: error: ‘struct bgp_master’ has no member named ‘sock’
and many more simliar. Sargun from freenode#quagga informs me the latest patch here:
http:// www.wittsend. com/mhw/ md5sig/ quagga_ md5_bsd_ linux_v9. diff