isisd: implement MD5 circuit authentication * Replace command "isis passwd" with "isis passwd {clear|md5}" * Verify HMAC MD5 on ISIS Hello PDUs * Add HMAC MD5 authentication to md5.h/md5.c from RFC2104

commit: e6b03b77766dce8009ad7b4a2392e14addf4ab0f [log] [tgz]
author: Fritz Reichmann <fritz@reichmann.nl> Sat Oct 01 17:49:48 2011 +0400
committer: Denis Ovsienko <infrastation@yandex.ru> Tue Feb 14 03:06:36 2012 +0400
tree: a47466541c8f85e70b228ae4ab3da31af3391507
parent: c25eaffdb2190149e768dc4ee4efc913c6d02992 [diff] [blame]
diff --git a/isisd/isis_lsp.c b/isisd/isis_lsp.c
index 9db0db9..fd40bb3 100644
--- a/isisd/isis_lsp.c
+++ b/isisd/isis_lsp.c

@@ -353,10 +353,25 @@
 		       ISIS_FIXED_HDR_LEN + ISIS_LSP_HDR_LEN,
 		       pdulen - ISIS_FIXED_HDR_LEN
 		       - ISIS_LSP_HDR_LEN, &expected, &found, &tlvs);
+
   if (retval || !(found & TLVFLAG_AUTH_INFO))
     return 1;			/* Auth fail (parsing failed or no auth-tlv) */
 
-  return authentication_check (passwd, &tlvs.auth_info);
+  switch (tlvs.auth_info.type)
+    {
+      case ISIS_PASSWD_TYPE_HMAC_MD5:
+	zlog_debug("Got LSP with ISIS_PASSWD_TYPE_HMAC_MD5");
+	break;
+      case ISIS_PASSWD_TYPE_CLEARTXT:
+	zlog_debug("Got LSP with ISIS_PASSWD_TYPE_CLEARTXT");
+	break;
+      default:
+	zlog_debug("Unknown authentication type in LSP");
+	break;
+    }
+
+  return 0;
+  /* return authentication_check (passwd, &tlvs.auth_info);*/
 }
 
 static void
commit	e6b03b77766dce8009ad7b4a2392e14addf4ab0f	[log] [tgz]
author	Fritz Reichmann <fritz@reichmann.nl>	Sat Oct 01 17:49:48 2011 +0400
committer	Denis Ovsienko <infrastation@yandex.ru>	Tue Feb 14 03:06:36 2012 +0400
tree	a47466541c8f85e70b228ae4ab3da31af3391507
parent	c25eaffdb2190149e768dc4ee4efc913c6d02992 [diff] [blame]