*: remove --enable-tcp-zebra, rework ZAPI path

This adds "@tcp" as new choice on the -z option present in zebra and the protocol daemons. The --enable-tcp-zebra option on configure is no longer needed, both UNIX and TCP socket support is always available. Note that @tcp should not be used by default (e.g. in an init script), and --enable-tcp-zebra should never have been in any distro package builds, because **** TCP-ZEBRA IS A SECURITY PROBLEM **** It allows arbitrary local users to mess with the routing table and inject bogus data -- and also ZAPI is not designed to be robust against attacks. Signed-off-by: David Lamparter <equinox@opensourcerouting.org>
author: David Lamparter <equinox@opensourcerouting.org> 2017-08-06 07:35:50 +0200
committer: David Lamparter <equinox@opensourcerouting.org> 2017-08-08 11:14:05 +0200
commit: 689f5a8c84b95dbd31ecab481f8f2977965fe741 (patch)
tree: 7c2a2b69908b3c3ac60e0de41b5a3f85caec2ef5 /lib/libfrr.h
parent: 00857b241e6c27efad54a19b4226c37f04d80bf5 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/lib/libfrr.h b/lib/libfrr.h
index 0f6ed0cb00..23516150ee 100644
--- a/lib/libfrr.h
+++ b/lib/libfrr.h
@@ -100,7 +100,11 @@ extern void frr_vty_serv(void);
 /* note: contains call to frr_vty_serv() */
 extern void frr_run(struct thread_master *master);
 
+extern bool frr_zclient_addr(struct sockaddr_storage *sa, socklen_t *sa_len,
+			     const char *path);
+
 extern char config_default[256];
+extern char frr_zclientpath[256];
 extern const char frr_sysconfdir[];
 extern const char frr_vtydir[];
 extern const char frr_moduledir[];
author	David Lamparter <equinox@opensourcerouting.org>	2017-08-06 07:35:50 +0200
committer	David Lamparter <equinox@opensourcerouting.org>	2017-08-08 11:14:05 +0200
commit	689f5a8c84b95dbd31ecab481f8f2977965fe741 (patch)
tree	7c2a2b69908b3c3ac60e0de41b5a3f85caec2ef5 /lib/libfrr.h
parent	00857b241e6c27efad54a19b4226c37f04d80bf5 (diff)