BSD: Add the IPsec SA/SP database entries control

Add code for manipulation with TCP-MD5 keys in the IPsec SA/SP database at FreeBSD systems. Now, BGP MD5 authentication (RFC 2385) keys are handled automatically on both Linux and FreeBSD. Based on patches from Pavel Tvrdik.
author: Ondrej Zajicek (work) <santiago@crfreenet.org> 2016-04-13 14:30:28 +0200
committer: Ondrej Zajicek (work) <santiago@crfreenet.org> 2016-04-13 14:37:09 +0200
commit: a7baa09862e6b4856cd66197c6bd74c7df336b8f (patch)
tree: 323e453c150273bb6d15bb19881affc8b43b6edf /sysdep/linux
parent: 43fc6bb0fb720762f12124076e2241855741ceb5 (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/sysdep/linux/sysio.h b/sysdep/linux/sysio.h
index c1561cbf..58644417 100644
--- a/sysdep/linux/sysio.h
+++ b/sysdep/linux/sysio.h
@@ -179,19 +179,19 @@ sk_prepare_cmsgs4(sock *s, struct msghdr *msg, void *cbuf, size_t cbuflen)
  */
 
 int
-sk_set_md5_auth(sock *s, ip_addr a, struct iface *ifa, char *passwd)
+sk_set_md5_auth(sock *s, ip_addr local UNUSED, ip_addr remote, struct iface *ifa, char *passwd, int setkey UNUSED)
 {
   struct tcp_md5sig md5;
 
   memset(&md5, 0, sizeof(md5));
-  sockaddr_fill((sockaddr *) &md5.tcpm_addr, s->af, a, ifa, 0);
+  sockaddr_fill((sockaddr *) &md5.tcpm_addr, s->af, remote, ifa, 0);
 
   if (passwd)
   {
     int len = strlen(passwd);
 
     if (len > TCP_MD5SIG_MAXKEYLEN)
-      ERR_MSG("MD5 password too long");
+      ERR_MSG("The password for TCP MD5 Signature is too long");
 
     md5.tcpm_keylen = len;
     memcpy(&md5.tcpm_key, passwd, len);
author	Ondrej Zajicek (work) <santiago@crfreenet.org>	2016-04-13 14:30:28 +0200
committer	Ondrej Zajicek (work) <santiago@crfreenet.org>	2016-04-13 14:37:09 +0200
commit	a7baa09862e6b4856cd66197c6bd74c7df336b8f (patch)
tree	323e453c150273bb6d15bb19881affc8b43b6edf /sysdep/linux
parent	43fc6bb0fb720762f12124076e2241855741ceb5 (diff)