1. 02 Jun, 2016 3 commits
  2. 26 May, 2016 4 commits
    • Pavel Tvrdik's avatar
      e0dc3daa
    • Michael Baer's avatar
    • Pavel Tvrdik's avatar
      RPKI: Accept and save BGPsec Router Keys from RPKI · cb064f84
      Pavel Tvrdik authored
      Adds support for receiving Router Key PDUs, saving it to disk. The path
      save repository is configurable by ./configure or BIRD's configuration file.
      cb064f84
    • Pavel Tvrdík's avatar
      RPKI protocol with one cache server per protocol · 46610354
      Pavel Tvrdík authored
      The RPKI protocol (RFC 6810) using the RTRLib
      (http://rpki.realmv6.org/) that is integrated inside
      the BIRD's code.
      
      Implemeted transports are:
       - unprotected transport over TCP
       - secure transport over SSHv2
      
      Example configuration of bird.conf:
        ...
        roa4 table r4;
        roa6 table r6;
      
        protocol rpki {
          debug all;
      
          # Import both IPv4 and IPv6 ROAs
          roa4 { table r4; };
          roa6 { table r6; };
      
          # Set cache server (validator) address,
          # overwrite default port 323
          remote "rpki-validator.realmv6.org" port 8282;
      
          # Overwrite default time intervals
          retry   10;         # Default 600 seconds
          refresh 60;         # Default 3600 seconds
          expire 600;         # Default 7200 seconds
        }
      
        protocol rpki {
          debug all;
      
          # Import only IPv4 routes
          roa4 { table r4; };
      
          # Set cache server address to localhost,
          # use default ports tcp => 323 or ssh => 22
          remote 127.0.0.1;
      
          # Use SSH transport instead of unprotected transport over TCP
          ssh encryption {
            bird private key "/home/birdgeek/.ssh/id_rsa";
            remote public key "/home/birdgeek/.ssh/known_hosts";
            user "birdgeek";
          };
        }
        ...
      46610354
  3. 12 May, 2016 1 commit
  4. 10 May, 2016 4 commits
  5. 08 Apr, 2016 2 commits
  6. 07 Apr, 2016 3 commits
  7. 06 Apr, 2016 3 commits
    • Ondřej Zajíček's avatar
      IO: Avoid multiple event cycles in one loop cycle. · bd22d7f4
      Ondřej Zajíček authored
      Event cycle may took too much time and trigger next timer events, so
      avoid cycling between timer and event cycles inside the loop cycle.
      bd22d7f4
    • Ondřej Zajíček's avatar
      IO: Replace RX priority heuristic with explicit mark · 9e7b3ebd
      Ondřej Zajíček authored
      In BIRD, RX has lower priority than TX with the exception of RX from
      control socket. The patch replaces heuristic based on socket type with
      explicit mark and uses it for both control socket and BGP session waiting
      to be established.
      
      This should avoid an issue when during heavy load, outgoing connection
      could connect (TX event), send open, but then failed to receive OPEN /
      establish in time, not sending notifications between and therefore
      got hold timer expired error from the neighbor immediately after it
      finally established the connection.
      9e7b3ebd
    • Ondřej Zajíček's avatar
      KRT: Fix route learn scan when route changed · e86cfd41
      Ondřej Zajíček authored
      When a kernel route changed, function krt_learn_scan() noticed that and
      replaced the route in internal kernel FIB, but after that, function
      krt_learn_prune() failed to propagate the new route to the nest, because
      it confused the new route with the (removed) old best route and decided
      that the best route did not changed.
      
      Wow, the original code (and the bug) is almost 17 years old.
      e86cfd41
  8. 30 Mar, 2016 1 commit
  9. 23 Mar, 2016 5 commits
  10. 22 Mar, 2016 1 commit
  11. 18 Mar, 2016 1 commit
  12. 17 Mar, 2016 2 commits
  13. 15 Mar, 2016 1 commit
  14. 11 Mar, 2016 1 commit
  15. 10 Mar, 2016 3 commits
  16. 25 Feb, 2016 3 commits
  17. 19 Feb, 2016 1 commit
  18. 16 Feb, 2016 1 commit