]> git.proxmox.com Git - mirror_frr.git/blame - bgpd/bgp_packet.c
projects / mirror_frr.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
+ pidfiles are now always created with 0644 perms instead if LOGFILE_MASK (0600)
[mirror_frr.git] / bgpd / bgp_packet.c
CommitLineData
718e3744 1/* BGP packet management routine.
2 Copyright (C) 1999 Kunihiro Ishiguro
3
4This file is part of GNU Zebra.
5
6GNU Zebra is free software; you can redistribute it and/or modify it
7under the terms of the GNU General Public License as published by the
8Free Software Foundation; either version 2, or (at your option) any
9later version.
10
11GNU Zebra is distributed in the hope that it will be useful, but
12WITHOUT ANY WARRANTY; without even the implied warranty of
13MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14General Public License for more details.
15
16You should have received a copy of the GNU General Public License
17along with GNU Zebra; see the file COPYING. If not, write to the Free
18Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
1902111-1307, USA. */
20
21#include <zebra.h>
22
23#include "thread.h"
24#include "stream.h"
25#include "network.h"
26#include "prefix.h"
27#include "command.h"
28#include "log.h"
29#include "memory.h"
30#include "sockunion.h" /* for inet_ntop () */
31#include "linklist.h"
32#include "plist.h"
33
34#include "bgpd/bgpd.h"
35#include "bgpd/bgp_table.h"
36#include "bgpd/bgp_dump.h"
37#include "bgpd/bgp_attr.h"
38#include "bgpd/bgp_debug.h"
39#include "bgpd/bgp_fsm.h"
40#include "bgpd/bgp_route.h"
41#include "bgpd/bgp_packet.h"
42#include "bgpd/bgp_open.h"
43#include "bgpd/bgp_aspath.h"
44#include "bgpd/bgp_community.h"
45#include "bgpd/bgp_ecommunity.h"
46#include "bgpd/bgp_network.h"
47#include "bgpd/bgp_mplsvpn.h"
48#include "bgpd/bgp_advertise.h"
93406d87 49#include "bgpd/bgp_vty.h"
718e3744 50
51int stream_put_prefix (struct stream *, struct prefix *);
52\f
53/* Set up BGP packet marker and packet type. */
54static int
55bgp_packet_set_marker (struct stream *s, u_char type)
56{
57 int i;
58
59 /* Fill in marker. */
60 for (i = 0; i < BGP_MARKER_SIZE; i++)
61 stream_putc (s, 0xff);
62
63 /* Dummy total length. This field is should be filled in later on. */
64 stream_putw (s, 0);
65
66 /* BGP packet type. */
67 stream_putc (s, type);
68
69 /* Return current stream size. */
9985f83c 70 return stream_get_endp (s);
718e3744 71}
72
73/* Set BGP packet header size entry. If size is zero then use current
74 stream size. */
75static int
76bgp_packet_set_size (struct stream *s)
77{
78 int cp;
79
80 /* Preserve current pointer. */
9985f83c 81 cp = stream_get_endp (s);
82 stream_putw_at (s, BGP_MARKER_SIZE, cp);
718e3744 83
84 return cp;
85}
86
87/* Add new packet to the peer. */
94f2b392 88static void
718e3744 89bgp_packet_add (struct peer *peer, struct stream *s)
90{
91 /* Add packet to the end of list. */
92 stream_fifo_push (peer->obuf, s);
93}
94
95/* Free first packet. */
94f2b392 96static void
718e3744 97bgp_packet_delete (struct peer *peer)
98{
99 stream_free (stream_fifo_pop (peer->obuf));
100}
101
718e3744 102/* Check file descriptor whether connect is established. */
103static void
104bgp_connect_check (struct peer *peer)
105{
106 int status;
5228ad27 107 socklen_t slen;
718e3744 108 int ret;
109
110 /* Anyway I have to reset read and write thread. */
111 BGP_READ_OFF (peer->t_read);
112 BGP_WRITE_OFF (peer->t_write);
113
114 /* Check file descriptor. */
115 slen = sizeof (status);
eb821189 116 ret = getsockopt(peer->fd, SOL_SOCKET, SO_ERROR, (void *) &status, &slen);
718e3744 117
118 /* If getsockopt is fail, this is fatal error. */
119 if (ret < 0)
120 {
121 zlog (peer->log, LOG_INFO, "can't get sockopt for nonblocking connect");
122 BGP_EVENT_ADD (peer, TCP_fatal_error);
123 return;
124 }
125
126 /* When status is 0 then TCP connection is established. */
127 if (status == 0)
128 {
129 BGP_EVENT_ADD (peer, TCP_connection_open);
130 }
131 else
132 {
133 if (BGP_DEBUG (events, EVENTS))
6b51474d 134 plog_debug (peer->log, "%s [Event] Connect failed (%s)",
6099b3b5 135 peer->host, safe_strerror (errno));
718e3744 136 BGP_EVENT_ADD (peer, TCP_connection_open_failed);
137 }
138}
139
140/* Make BGP update packet. */
94f2b392 141static struct stream *
718e3744 142bgp_update_packet (struct peer *peer, afi_t afi, safi_t safi)
143{
144 struct stream *s;
145 struct bgp_adj_out *adj;
146 struct bgp_advertise *adv;
147 struct stream *packet;
148 struct bgp_node *rn = NULL;
149 struct bgp_info *binfo = NULL;
150 bgp_size_t total_attr_len = 0;
151 unsigned long pos;
152 char buf[BUFSIZ];
718e3744 153
154 s = peer->work;
155 stream_reset (s);
156
157 adv = FIFO_HEAD (&peer->sync[afi][safi]->update);
158
159 while (adv)
160 {
ed3ebfa3
PJ		 161 assert (adv->rn);
162 rn = adv->rn;
718e3744 163 adj = adv->adj;
164 if (adv->binfo)
165 binfo = adv->binfo;
718e3744 166
167 /* When remaining space can't include NLRI and it's length. */
ed3ebfa3 168 if (STREAM_REMAIN (s) <= BGP_NLRI_LENGTH + PSIZE (rn->p.prefixlen))
718e3744 169 break;
170
171 /* If packet is empty, set attribute. */
172 if (stream_empty (s))
173 {
a3b6ea56
PJ		 174 struct prefix_rd *prd = NULL;
175 u_char *tag = NULL;
ed3ebfa3 176 struct peer *from = NULL;
a3b6ea56
PJ		 177
178 if (rn->prn)
179 prd = (struct prefix_rd *) &rn->prn->p;
fb982c25 180 if (binfo && binfo->extra)
ed3ebfa3 181 {
fb982c25 182 tag = binfo->extra->tag;
ed3ebfa3
PJ		 183 from = binfo->peer;
184 }
a3b6ea56 185
718e3744 186 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
187 stream_putw (s, 0);
9985f83c 188 pos = stream_get_endp (s);
718e3744 189 stream_putw (s, 0);
5228ad27 190 total_attr_len = bgp_packet_attribute (NULL, peer, s,
191 adv->baa->attr,
192 &rn->p, afi, safi,
ed3ebfa3 193 from, prd, tag);
718e3744 194 stream_putw_at (s, pos, total_attr_len);
195 }
196
197 if (afi == AFI_IP && safi == SAFI_UNICAST)
198 stream_put_prefix (s, &rn->p);
199
200 if (BGP_DEBUG (update, UPDATE_OUT))
6b51474d 201 zlog (peer->log, LOG_DEBUG, "%s send UPDATE %s/%d",
718e3744 202 peer->host,
203 inet_ntop (rn->p.family, &(rn->p.u.prefix), buf, BUFSIZ),
204 rn->p.prefixlen);
205
206 /* Synchnorize attribute. */
207 if (adj->attr)
208 bgp_attr_unintern (adj->attr);
209 else
210 peer->scount[afi][safi]++;
211
212 adj->attr = bgp_attr_intern (adv->baa->attr);
213
214 adv = bgp_advertise_clean (peer, adj, afi, safi);
215
216 if (! (afi == AFI_IP && safi == SAFI_UNICAST))
217 break;
218 }
219
220 if (! stream_empty (s))
221 {
222 bgp_packet_set_size (s);
e83e2080 223 packet = stream_dup (s);
718e3744 224 bgp_packet_add (peer, packet);
eb821189 225 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
718e3744 226 stream_reset (s);
227 return packet;
228 }
229 return NULL;
93406d87 230}
231
94f2b392 232static struct stream *
93406d87 233bgp_update_packet_eor (struct peer *peer, afi_t afi, safi_t safi)
234{
235 struct stream *s;
236 struct stream *packet;
237
238#ifdef DISABLE_BGP_ANNOUNCE
239 return;
240#endif /* DISABLE_BGP_ANNOUNCE */
241
242 if (BGP_DEBUG (normal, NORMAL))
243 zlog_debug ("send End-of-RIB for %s to %s", afi_safi_print (afi, safi), peer->host);
244
245 s = stream_new (BGP_MAX_PACKET_SIZE);
246
247 /* Make BGP update packet. */
248 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
249
250 /* Unfeasible Routes Length */
251 stream_putw (s, 0);
718e3744 252
93406d87 253 if (afi == AFI_IP && safi == SAFI_UNICAST)
254 {
255 /* Total Path Attribute Length */
256 stream_putw (s, 0);
257 }
258 else
259 {
260 /* Total Path Attribute Length */
261 stream_putw (s, 6);
262 stream_putc (s, BGP_ATTR_FLAG_OPTIONAL);
263 stream_putc (s, BGP_ATTR_MP_UNREACH_NLRI);
264 stream_putc (s, 3);
265 stream_putw (s, afi);
266 stream_putc (s, safi);
267 }
268
269 bgp_packet_set_size (s);
e83e2080 270 packet = stream_dup (s);
93406d87 271 bgp_packet_add (peer, packet);
272 stream_free (s);
273 return packet;
718e3744 274}
275
276/* Make BGP withdraw packet. */
94f2b392 277static struct stream *
718e3744 278bgp_withdraw_packet (struct peer *peer, afi_t afi, safi_t safi)
279{
280 struct stream *s;
281 struct stream *packet;
282 struct bgp_adj_out *adj;
283 struct bgp_advertise *adv;
284 struct bgp_node *rn;
285 unsigned long pos;
286 bgp_size_t unfeasible_len;
287 bgp_size_t total_attr_len;
288 char buf[BUFSIZ];
718e3744 289
290 s = peer->work;
291 stream_reset (s);
292
293 while ((adv = FIFO_HEAD (&peer->sync[afi][safi]->withdraw)) != NULL)
294 {
ed3ebfa3 295 assert (adv->rn);
718e3744 296 adj = adv->adj;
297 rn = adv->rn;
718e3744 298
299 if (STREAM_REMAIN (s)
4372df71 300 < (BGP_NLRI_LENGTH + BGP_TOTAL_ATTR_LEN + PSIZE (rn->p.prefixlen)))
718e3744 301 break;
302
303 if (stream_empty (s))
304 {
305 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
306 stream_putw (s, 0);
307 }
308
309 if (afi == AFI_IP && safi == SAFI_UNICAST)
310 stream_put_prefix (s, &rn->p);
311 else
312 {
a3b6ea56
PJ		 313 struct prefix_rd *prd = NULL;
314
315 if (rn->prn)
316 prd = (struct prefix_rd *) &rn->prn->p;
9985f83c 317 pos = stream_get_endp (s);
718e3744 318 stream_putw (s, 0);
319 total_attr_len
320 = bgp_packet_withdraw (peer, s, &rn->p, afi, safi, prd, NULL);
321
322 /* Set total path attribute length. */
323 stream_putw_at (s, pos, total_attr_len);
324 }
325
326 if (BGP_DEBUG (update, UPDATE_OUT))
6b51474d 327 zlog (peer->log, LOG_DEBUG, "%s send UPDATE %s/%d -- unreachable",
718e3744 328 peer->host,
329 inet_ntop (rn->p.family, &(rn->p.u.prefix), buf, BUFSIZ),
330 rn->p.prefixlen);
331
332 peer->scount[afi][safi]--;
333
334 bgp_adj_out_remove (rn, adj, peer, afi, safi);
335 bgp_unlock_node (rn);
336
337 if (! (afi == AFI_IP && safi == SAFI_UNICAST))
338 break;
339 }
340
341 if (! stream_empty (s))
342 {
343 if (afi == AFI_IP && safi == SAFI_UNICAST)
344 {
345 unfeasible_len
9985f83c 346 = stream_get_endp (s) - BGP_HEADER_SIZE - BGP_UNFEASIBLE_LEN;
718e3744 347 stream_putw_at (s, BGP_HEADER_SIZE, unfeasible_len);
348 stream_putw (s, 0);
349 }
350 bgp_packet_set_size (s);
e83e2080 351 packet = stream_dup (s);
718e3744 352 bgp_packet_add (peer, packet);
353 stream_reset (s);
354 return packet;
355 }
356
357 return NULL;
358}
359
360void
361bgp_default_update_send (struct peer *peer, struct attr *attr,
362 afi_t afi, safi_t safi, struct peer *from)
363{
364 struct stream *s;
365 struct stream *packet;
366 struct prefix p;
367 unsigned long pos;
368 bgp_size_t total_attr_len;
369 char attrstr[BUFSIZ];
370 char buf[BUFSIZ];
371
372#ifdef DISABLE_BGP_ANNOUNCE
373 return;
374#endif /* DISABLE_BGP_ANNOUNCE */
375
376 if (afi == AFI_IP)
377 str2prefix ("0.0.0.0/0", &p);
378#ifdef HAVE_IPV6
379 else
380 str2prefix ("::/0", &p);
381#endif /* HAVE_IPV6 */
382
383 /* Logging the attribute. */
384 if (BGP_DEBUG (update, UPDATE_OUT))
385 {
386 bgp_dump_attr (peer, attr, attrstr, BUFSIZ);
6b51474d 387 zlog (peer->log, LOG_DEBUG, "%s send UPDATE %s/%d %s",
718e3744 388 peer->host, inet_ntop(p.family, &(p.u.prefix), buf, BUFSIZ),
389 p.prefixlen, attrstr);
390 }
391
392 s = stream_new (BGP_MAX_PACKET_SIZE);
393
394 /* Make BGP update packet. */
395 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
396
397 /* Unfeasible Routes Length. */
398 stream_putw (s, 0);
399
400 /* Make place for total attribute length. */
9985f83c 401 pos = stream_get_endp (s);
718e3744 402 stream_putw (s, 0);
403 total_attr_len = bgp_packet_attribute (NULL, peer, s, attr, &p, afi, safi, from, NULL, NULL);
404
405 /* Set Total Path Attribute Length. */
406 stream_putw_at (s, pos, total_attr_len);
407
408 /* NLRI set. */
409 if (p.family == AF_INET && safi == SAFI_UNICAST)
410 stream_put_prefix (s, &p);
411
412 /* Set size. */
413 bgp_packet_set_size (s);
414
e83e2080 415 packet = stream_dup (s);
718e3744 416 stream_free (s);
417
418 /* Dump packet if debug option is set. */
419#ifdef DEBUG
2d74db55 420 /* bgp_packet_dump (packet); */
718e3744 421#endif /* DEBUG */
422
423 /* Add packet to the peer. */
424 bgp_packet_add (peer, packet);
425
eb821189 426 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
718e3744 427}
428
429void
430bgp_default_withdraw_send (struct peer *peer, afi_t afi, safi_t safi)
431{
432 struct stream *s;
433 struct stream *packet;
434 struct prefix p;
435 unsigned long pos;
436 unsigned long cp;
437 bgp_size_t unfeasible_len;
438 bgp_size_t total_attr_len;
439 char buf[BUFSIZ];
440
441#ifdef DISABLE_BGP_ANNOUNCE
442 return;
443#endif /* DISABLE_BGP_ANNOUNCE */
444
445 if (afi == AFI_IP)
446 str2prefix ("0.0.0.0/0", &p);
447#ifdef HAVE_IPV6
448 else
449 str2prefix ("::/0", &p);
450#endif /* HAVE_IPV6 */
451
452 total_attr_len = 0;
453 pos = 0;
454
455 if (BGP_DEBUG (update, UPDATE_OUT))
6b51474d 456 zlog (peer->log, LOG_DEBUG, "%s send UPDATE %s/%d -- unreachable",
718e3744 457 peer->host, inet_ntop(p.family, &(p.u.prefix), buf, BUFSIZ),
458 p.prefixlen);
459
460 s = stream_new (BGP_MAX_PACKET_SIZE);
461
462 /* Make BGP update packet. */
463 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
464
465 /* Unfeasible Routes Length. */;
9985f83c 466 cp = stream_get_endp (s);
718e3744 467 stream_putw (s, 0);
468
469 /* Withdrawn Routes. */
470 if (p.family == AF_INET && safi == SAFI_UNICAST)
471 {
472 stream_put_prefix (s, &p);
473
9985f83c 474 unfeasible_len = stream_get_endp (s) - cp - 2;
718e3744 475
476 /* Set unfeasible len. */
477 stream_putw_at (s, cp, unfeasible_len);
478
479 /* Set total path attribute length. */
480 stream_putw (s, 0);
481 }
482 else
483 {
9985f83c 484 pos = stream_get_endp (s);
718e3744 485 stream_putw (s, 0);
486 total_attr_len = bgp_packet_withdraw (peer, s, &p, afi, safi, NULL, NULL);
487
488 /* Set total path attribute length. */
489 stream_putw_at (s, pos, total_attr_len);
490 }
491
492 bgp_packet_set_size (s);
493
e83e2080 494 packet = stream_dup (s);
718e3744 495 stream_free (s);
496
497 /* Add packet to the peer. */
498 bgp_packet_add (peer, packet);
499
eb821189 500 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
718e3744 501}
502
503/* Get next packet to be written. */
94f2b392 504static struct stream *
718e3744 505bgp_write_packet (struct peer *peer)
506{
507 afi_t afi;
508 safi_t safi;
509 struct stream *s = NULL;
510 struct bgp_advertise *adv;
511
512 s = stream_fifo_head (peer->obuf);
513 if (s)
514 return s;
515
516 for (afi = AFI_IP; afi < AFI_MAX; afi++)
517 for (safi = SAFI_UNICAST; safi < SAFI_MAX; safi++)
518 {
519 adv = FIFO_HEAD (&peer->sync[afi][safi]->withdraw);
520 if (adv)
521 {
522 s = bgp_withdraw_packet (peer, afi, safi);
523 if (s)
524 return s;
525 }
526 }
527
528 for (afi = AFI_IP; afi < AFI_MAX; afi++)
529 for (safi = SAFI_UNICAST; safi < SAFI_MAX; safi++)
530 {
531 adv = FIFO_HEAD (&peer->sync[afi][safi]->update);
532 if (adv)
533 {
534 if (adv->binfo && adv->binfo->uptime < peer->synctime)
93406d87 535 {
536 if (CHECK_FLAG (adv->binfo->peer->cap, PEER_CAP_RESTART_RCV)
537 && CHECK_FLAG (adv->binfo->peer->cap, PEER_CAP_RESTART_ADV)
538 && ! CHECK_FLAG (adv->binfo->flags, BGP_INFO_STALE)
539 && safi != SAFI_MPLS_VPN)
540 {
541 if (CHECK_FLAG (adv->binfo->peer->af_sflags[afi][safi],
542 PEER_STATUS_EOR_RECEIVED))
543 s = bgp_update_packet (peer, afi, safi);
544 }
545 else
546 s = bgp_update_packet (peer, afi, safi);
547 }
718e3744 548
549 if (s)
550 return s;
551 }
93406d87 552
553 if (CHECK_FLAG (peer->cap, PEER_CAP_RESTART_RCV))
554 {
555 if (peer->afc_nego[afi][safi] && peer->synctime
556 && ! CHECK_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_EOR_SEND)
557 && safi != SAFI_MPLS_VPN)
558 {
559 SET_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_EOR_SEND);
560 return bgp_update_packet_eor (peer, afi, safi);
561 }
562 }
718e3744 563 }
564
565 return NULL;
566}
567
568/* Is there partially written packet or updates we can send right
569 now. */
94f2b392 570static int
718e3744 571bgp_write_proceed (struct peer *peer)
572{
573 afi_t afi;
574 safi_t safi;
575 struct bgp_advertise *adv;
576
577 if (stream_fifo_head (peer->obuf))
578 return 1;
579
580 for (afi = AFI_IP; afi < AFI_MAX; afi++)
581 for (safi = SAFI_UNICAST; safi < SAFI_MAX; safi++)
582 if (FIFO_HEAD (&peer->sync[afi][safi]->withdraw))
583 return 1;
584
585 for (afi = AFI_IP; afi < AFI_MAX; afi++)
586 for (safi = SAFI_UNICAST; safi < SAFI_MAX; safi++)
587 if ((adv = FIFO_HEAD (&peer->sync[afi][safi]->update)) != NULL)
588 if (adv->binfo->uptime < peer->synctime)
589 return 1;
590
591 return 0;
592}
593
594/* Write packet to the peer. */
595int
596bgp_write (struct thread *thread)
597{
598 struct peer *peer;
599 u_char type;
600 struct stream *s;
601 int num;
fd79ac91 602 unsigned int count = 0;
718e3744 603 int write_errno;
604
605 /* Yes first of all get peer pointer. */
606 peer = THREAD_ARG (thread);
607 peer->t_write = NULL;
608
609 /* For non-blocking IO check. */
610 if (peer->status == Connect)
611 {
612 bgp_connect_check (peer);
613 return 0;
614 }
615
616 /* Nonblocking write until TCP output buffer is full. */
617 while (1)
618 {
619 int writenum;
a24a7e1b 620 int val;
718e3744 621
622 s = bgp_write_packet (peer);
623 if (! s)
624 return 0;
a24a7e1b 625
626 /* XXX: FIXME, the socket should be NONBLOCK from the start
627 * status shouldnt need to be toggled on each write
628 */
629 val = fcntl (peer->fd, F_GETFL, 0);
630 fcntl (peer->fd, F_SETFL, val|O_NONBLOCK);
718e3744 631
632 /* Number of bytes to be sent. */
633 writenum = stream_get_endp (s) - stream_get_getp (s);
634
635 /* Call write() system call. */
eb821189 636 num = write (peer->fd, STREAM_PNT (s), writenum);
718e3744 637 write_errno = errno;
a24a7e1b 638 fcntl (peer->fd, F_SETFL, val);
718e3744 639 if (num <= 0)
640 {
641 /* Partial write. */
642 if (write_errno == EWOULDBLOCK || write_errno == EAGAIN)
643 break;
644
dcdf399f 645 BGP_EVENT_ADD (peer, TCP_fatal_error);
718e3744 646 return 0;
647 }
648 if (num != writenum)
649 {
9985f83c 650 stream_forward_getp (s, num);
718e3744 651
652 if (write_errno == EAGAIN)
653 break;
654
655 continue;
656 }
657
658 /* Retrieve BGP packet type. */
659 stream_set_getp (s, BGP_MARKER_SIZE + 2);
660 type = stream_getc (s);
661
662 switch (type)
663 {
664 case BGP_MSG_OPEN:
665 peer->open_out++;
666 break;
667 case BGP_MSG_UPDATE:
668 peer->update_out++;
669 break;
670 case BGP_MSG_NOTIFY:
671 peer->notify_out++;
672 /* Double start timer. */
673 peer->v_start *= 2;
674
675 /* Overflow check. */
676 if (peer->v_start >= (60 * 2))
677 peer->v_start = (60 * 2);
678
ca058a30 679 /* Flush any existing events */
dcdf399f 680 BGP_EVENT_ADD (peer, BGP_Stop);
718e3744 681 return 0;
718e3744 682 case BGP_MSG_KEEPALIVE:
683 peer->keepalive_out++;
684 break;
685 case BGP_MSG_ROUTE_REFRESH_NEW:
686 case BGP_MSG_ROUTE_REFRESH_OLD:
687 peer->refresh_out++;
688 break;
689 case BGP_MSG_CAPABILITY:
690 peer->dynamic_cap_out++;
691 break;
692 }
693
694 /* OK we send packet so delete it. */
695 bgp_packet_delete (peer);
696
697 if (++count >= BGP_WRITE_PACKET_MAX)
698 break;
699 }
700
701 if (bgp_write_proceed (peer))
eb821189 702 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
718e3744 703
704 return 0;
705}
706
707/* This is only for sending NOTIFICATION message to neighbor. */
94f2b392 708static int
718e3744 709bgp_write_notify (struct peer *peer)
710{
711 int ret;
712 u_char type;
713 struct stream *s;
714
715 /* There should be at least one packet. */
716 s = stream_fifo_head (peer->obuf);
717 if (!s)
718 return 0;
719 assert (stream_get_endp (s) >= BGP_HEADER_SIZE);
720
721 /* I'm not sure fd is writable. */
eb821189 722 ret = writen (peer->fd, STREAM_DATA (s), stream_get_endp (s));
718e3744 723 if (ret <= 0)
724 {
dcdf399f 725 BGP_EVENT_ADD (peer, TCP_fatal_error);
718e3744 726 return 0;
727 }
728
729 /* Retrieve BGP packet type. */
730 stream_set_getp (s, BGP_MARKER_SIZE + 2);
731 type = stream_getc (s);
732
733 assert (type == BGP_MSG_NOTIFY);
734
735 /* Type should be notify. */
736 peer->notify_out++;
737
738 /* Double start timer. */
739 peer->v_start *= 2;
740
741 /* Overflow check. */
742 if (peer->v_start >= (60 * 2))
743 peer->v_start = (60 * 2);
744
dcdf399f 745 BGP_EVENT_ADD (peer, BGP_Stop);
718e3744 746
747 return 0;
748}
749
750/* Make keepalive packet and send it to the peer. */
751void
752bgp_keepalive_send (struct peer *peer)
753{
754 struct stream *s;
755 int length;
756
757 s = stream_new (BGP_MAX_PACKET_SIZE);
758
759 /* Make keepalive packet. */
760 bgp_packet_set_marker (s, BGP_MSG_KEEPALIVE);
761
762 /* Set packet size. */
763 length = bgp_packet_set_size (s);
764
765 /* Dump packet if debug option is set. */
766 /* bgp_packet_dump (s); */
767
768 if (BGP_DEBUG (keepalive, KEEPALIVE))
6b51474d 769 zlog_debug ("%s sending KEEPALIVE", peer->host);
718e3744 770 if (BGP_DEBUG (normal, NORMAL))
6b51474d 771 zlog_debug ("%s send message type %d, length (incl. header) %d",
718e3744 772 peer->host, BGP_MSG_KEEPALIVE, length);
773
774 /* Add packet to the peer. */
775 bgp_packet_add (peer, s);
776
eb821189 777 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
718e3744 778}
779
780/* Make open packet and send it to the peer. */
781void
782bgp_open_send (struct peer *peer)
783{
784 struct stream *s;
785 int length;
786 u_int16_t send_holdtime;
787 as_t local_as;
788
789 if (CHECK_FLAG (peer->config, PEER_CONFIG_TIMER))
790 send_holdtime = peer->holdtime;
791 else
792 send_holdtime = peer->bgp->default_holdtime;
793
794 /* local-as Change */
795 if (peer->change_local_as)
796 local_as = peer->change_local_as;
797 else
798 local_as = peer->local_as;
799
800 s = stream_new (BGP_MAX_PACKET_SIZE);
801
802 /* Make open packet. */
803 bgp_packet_set_marker (s, BGP_MSG_OPEN);
804
805 /* Set open packet values. */
806 stream_putc (s, BGP_VERSION_4); /* BGP version */
807 stream_putw (s, local_as); /* My Autonomous System*/
808 stream_putw (s, send_holdtime); /* Hold Time */
809 stream_put_in_addr (s, &peer->local_id); /* BGP Identifier */
810
811 /* Set capability code. */
812 bgp_open_capability (s, peer);
813
814 /* Set BGP packet length. */
815 length = bgp_packet_set_size (s);
816
817 if (BGP_DEBUG (normal, NORMAL))
6b51474d 818 zlog_debug ("%s sending OPEN, version %d, my as %d, holdtime %d, id %s",
718e3744 819 peer->host, BGP_VERSION_4, local_as,
820 send_holdtime, inet_ntoa (peer->local_id));
821
822 if (BGP_DEBUG (normal, NORMAL))
6b51474d 823 zlog_debug ("%s send message type %d, length (incl. header) %d",
718e3744 824 peer->host, BGP_MSG_OPEN, length);
825
826 /* Dump packet if debug option is set. */
827 /* bgp_packet_dump (s); */
828
829 /* Add packet to the peer. */
830 bgp_packet_add (peer, s);
831
eb821189 832 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
718e3744 833}
834
835/* Send BGP notify packet with data potion. */
836void
837bgp_notify_send_with_data (struct peer *peer, u_char code, u_char sub_code,
838 u_char *data, size_t datalen)
839{
840 struct stream *s;
841 int length;
842
843 /* Allocate new stream. */
844 s = stream_new (BGP_MAX_PACKET_SIZE);
845
846 /* Make nitify packet. */
847 bgp_packet_set_marker (s, BGP_MSG_NOTIFY);
848
849 /* Set notify packet values. */
850 stream_putc (s, code); /* BGP notify code */
851 stream_putc (s, sub_code); /* BGP notify sub_code */
852
853 /* If notify data is present. */
854 if (data)
855 stream_write (s, data, datalen);
856
857 /* Set BGP packet length. */
858 length = bgp_packet_set_size (s);
859
860 /* Add packet to the peer. */
861 stream_fifo_clean (peer->obuf);
862 bgp_packet_add (peer, s);
863
864 /* For debug */
865 {
866 struct bgp_notify bgp_notify;
867 int first = 0;
868 int i;
869 char c[4];
870
871 bgp_notify.code = code;
872 bgp_notify.subcode = sub_code;
873 bgp_notify.data = NULL;
874 bgp_notify.length = length - BGP_MSG_NOTIFY_MIN_SIZE;
875
876 if (bgp_notify.length)
877 {
878 bgp_notify.data = XMALLOC (MTYPE_TMP, bgp_notify.length * 3);
879 for (i = 0; i < bgp_notify.length; i++)
880 if (first)
881 {
882 sprintf (c, " %02x", data[i]);
883 strcat (bgp_notify.data, c);
884 }
885 else
886 {
887 first = 1;
888 sprintf (c, "%02x", data[i]);
889 strcpy (bgp_notify.data, c);
890 }
891 }
892 bgp_notify_print (peer, &bgp_notify, "sending");
893 if (bgp_notify.data)
894 XFREE (MTYPE_TMP, bgp_notify.data);
895 }
896
897 if (BGP_DEBUG (normal, NORMAL))
6b51474d 898 zlog_debug ("%s send message type %d, length (incl. header) %d",
718e3744 899 peer->host, BGP_MSG_NOTIFY, length);
900
e0701b79 901 /* peer reset cause */
902 if (sub_code != BGP_NOTIFY_CEASE_CONFIG_CHANGE)
903 {
904 if (sub_code == BGP_NOTIFY_CEASE_ADMIN_RESET)
905 peer->last_reset = PEER_DOWN_USER_RESET;
906 else if (sub_code == BGP_NOTIFY_CEASE_ADMIN_SHUTDOWN)
907 peer->last_reset = PEER_DOWN_USER_SHUTDOWN;
908 else
909 peer->last_reset = PEER_DOWN_NOTIFY_SEND;
910 }
911
718e3744 912 /* Call imidiately. */
913 BGP_WRITE_OFF (peer->t_write);
914
915 bgp_write_notify (peer);
916}
917
918/* Send BGP notify packet. */
919void
920bgp_notify_send (struct peer *peer, u_char code, u_char sub_code)
921{
922 bgp_notify_send_with_data (peer, code, sub_code, NULL, 0);
923}
924
94f2b392 925static const char *
718e3744 926afi2str (afi_t afi)
927{
928 if (afi == AFI_IP)
929 return "AFI_IP";
930 else if (afi == AFI_IP6)
931 return "AFI_IP6";
932 else
933 return "Unknown AFI";
934}
935
94f2b392 936static const char *
718e3744 937safi2str (safi_t safi)
938{
939 if (safi == SAFI_UNICAST)
940 return "SAFI_UNICAST";
941 else if (safi == SAFI_MULTICAST)
942 return "SAFI_MULTICAST";
943 else if (safi == SAFI_MPLS_VPN || safi == BGP_SAFI_VPNV4)
944 return "SAFI_MPLS_VPN";
945 else
946 return "Unknown SAFI";
947}
948
949/* Send route refresh message to the peer. */
950void
951bgp_route_refresh_send (struct peer *peer, afi_t afi, safi_t safi,
952 u_char orf_type, u_char when_to_refresh, int remove)
953{
954 struct stream *s;
955 struct stream *packet;
956 int length;
957 struct bgp_filter *filter;
958 int orf_refresh = 0;
959
960#ifdef DISABLE_BGP_ANNOUNCE
961 return;
962#endif /* DISABLE_BGP_ANNOUNCE */
963
964 filter = &peer->filter[afi][safi];
965
966 /* Adjust safi code. */
967 if (safi == SAFI_MPLS_VPN)
968 safi = BGP_SAFI_VPNV4;
969
970 s = stream_new (BGP_MAX_PACKET_SIZE);
971
972 /* Make BGP update packet. */
973 if (CHECK_FLAG (peer->cap, PEER_CAP_REFRESH_NEW_RCV))
974 bgp_packet_set_marker (s, BGP_MSG_ROUTE_REFRESH_NEW);
975 else
976 bgp_packet_set_marker (s, BGP_MSG_ROUTE_REFRESH_OLD);
977
978 /* Encode Route Refresh message. */
979 stream_putw (s, afi);
980 stream_putc (s, 0);
981 stream_putc (s, safi);
982
983 if (orf_type == ORF_TYPE_PREFIX
984 || orf_type == ORF_TYPE_PREFIX_OLD)
985 if (remove || filter->plist[FILTER_IN].plist)
986 {
987 u_int16_t orf_len;
988 unsigned long orfp;
989
990 orf_refresh = 1;
991 stream_putc (s, when_to_refresh);
992 stream_putc (s, orf_type);
9985f83c 993 orfp = stream_get_endp (s);
718e3744 994 stream_putw (s, 0);
995
996 if (remove)
997 {
998 UNSET_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_ORF_PREFIX_SEND);
999 stream_putc (s, ORF_COMMON_PART_REMOVE_ALL);
1000 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1001 zlog_debug ("%s sending REFRESH_REQ to remove ORF(%d) (%s) for afi/safi: %d/%d",
718e3744 1002 peer->host, orf_type,
1003 (when_to_refresh == REFRESH_DEFER ? "defer" : "immediate"),
1004 afi, safi);
1005 }
1006 else
1007 {
1008 SET_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_ORF_PREFIX_SEND);
1009 prefix_bgp_orf_entry (s, filter->plist[FILTER_IN].plist,
1010 ORF_COMMON_PART_ADD, ORF_COMMON_PART_PERMIT,
1011 ORF_COMMON_PART_DENY);
1012 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1013 zlog_debug ("%s sending REFRESH_REQ with pfxlist ORF(%d) (%s) for afi/safi: %d/%d",
718e3744 1014 peer->host, orf_type,
1015 (when_to_refresh == REFRESH_DEFER ? "defer" : "immediate"),
1016 afi, safi);
1017 }
1018
1019 /* Total ORF Entry Len. */
9985f83c 1020 orf_len = stream_get_endp (s) - orfp - 2;
718e3744 1021 stream_putw_at (s, orfp, orf_len);
1022 }
1023
1024 /* Set packet size. */
1025 length = bgp_packet_set_size (s);
1026
1027 if (BGP_DEBUG (normal, NORMAL))
1028 {
1029 if (! orf_refresh)
6b51474d 1030 zlog_debug ("%s sending REFRESH_REQ for afi/safi: %d/%d",
718e3744 1031 peer->host, afi, safi);
6b51474d 1032 zlog_debug ("%s send message type %d, length (incl. header) %d",
718e3744 1033 peer->host, CHECK_FLAG (peer->cap, PEER_CAP_REFRESH_NEW_RCV) ?
1034 BGP_MSG_ROUTE_REFRESH_NEW : BGP_MSG_ROUTE_REFRESH_OLD, length);
1035 }
1036
1037 /* Make real packet. */
e83e2080 1038 packet = stream_dup (s);
718e3744 1039 stream_free (s);
1040
1041 /* Add packet to the peer. */
1042 bgp_packet_add (peer, packet);
1043
eb821189 1044 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
718e3744 1045}
1046
1047/* Send capability message to the peer. */
1048void
1049bgp_capability_send (struct peer *peer, afi_t afi, safi_t safi,
1050 int capability_code, int action)
1051{
1052 struct stream *s;
1053 struct stream *packet;
1054 int length;
1055
1056 /* Adjust safi code. */
1057 if (safi == SAFI_MPLS_VPN)
1058 safi = BGP_SAFI_VPNV4;
1059
1060 s = stream_new (BGP_MAX_PACKET_SIZE);
1061
1062 /* Make BGP update packet. */
1063 bgp_packet_set_marker (s, BGP_MSG_CAPABILITY);
1064
1065 /* Encode MP_EXT capability. */
1066 if (capability_code == CAPABILITY_CODE_MP)
1067 {
1068 stream_putc (s, action);
1069 stream_putc (s, CAPABILITY_CODE_MP);
1070 stream_putc (s, CAPABILITY_CODE_MP_LEN);
1071 stream_putw (s, afi);
1072 stream_putc (s, 0);
1073 stream_putc (s, safi);
1074
1075 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1076 zlog_debug ("%s sending CAPABILITY has %s MP_EXT CAP for afi/safi: %d/%d",
718e3744 1077 peer->host, action == CAPABILITY_ACTION_SET ?
1078 "Advertising" : "Removing", afi, safi);
1079 }
1080
718e3744 1081 /* Set packet size. */
1082 length = bgp_packet_set_size (s);
1083
1084 /* Make real packet. */
e83e2080 1085 packet = stream_dup (s);
718e3744 1086 stream_free (s);
1087
1088 /* Add packet to the peer. */
1089 bgp_packet_add (peer, packet);
1090
1091 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1092 zlog_debug ("%s send message type %d, length (incl. header) %d",
718e3744 1093 peer->host, BGP_MSG_CAPABILITY, length);
1094
eb821189 1095 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
718e3744 1096}
1097\f
1098/* RFC1771 6.8 Connection collision detection. */
94f2b392 1099static int
eb821189 1100bgp_collision_detect (struct peer *new, struct in_addr remote_id)
718e3744 1101{
eb821189 1102 struct peer *peer;
1eb8ef25 1103 struct listnode *node, *nnode;
718e3744 1104 struct bgp *bgp;
1105
1106 bgp = bgp_get_default ();
1107 if (! bgp)
1108 return 0;
1109
1110 /* Upon receipt of an OPEN message, the local system must examine
1111 all of its connections that are in the OpenConfirm state. A BGP
1112 speaker may also examine connections in an OpenSent state if it
1113 knows the BGP Identifier of the peer by means outside of the
1114 protocol. If among these connections there is a connection to a
1115 remote BGP speaker whose BGP Identifier equals the one in the
1116 OPEN message, then the local system performs the following
1117 collision resolution procedure: */
1118
1eb8ef25 1119 for (ALL_LIST_ELEMENTS (bgp->peer, node, nnode, peer))
718e3744 1120 {
1121 /* Under OpenConfirm status, local peer structure already hold
1122 remote router ID. */
eb821189 1123
1124 if (peer != new
1125 && (peer->status == OpenConfirm || peer->status == OpenSent)
1126 && sockunion_same (&peer->su, &new->su))
1127 {
718e3744 1128 /* 1. The BGP Identifier of the local system is compared to
1129 the BGP Identifier of the remote system (as specified in
1130 the OPEN message). */
1131
1132 if (ntohl (peer->local_id.s_addr) < ntohl (remote_id.s_addr))
1133 {
1134 /* 2. If the value of the local BGP Identifier is less
1135 than the remote one, the local system closes BGP
1136 connection that already exists (the one that is
1137 already in the OpenConfirm state), and accepts BGP
1138 connection initiated by the remote system. */
1139
eb821189 1140 if (peer->fd >= 0)
e0701b79 1141 bgp_notify_send (peer, BGP_NOTIFY_CEASE, BGP_NOTIFY_CEASE_COLLISION_RESOLUTION);
718e3744 1142 return 1;
1143 }
1144 else
1145 {
1146 /* 3. Otherwise, the local system closes newly created
1147 BGP connection (the one associated with the newly
1148 received OPEN message), and continues to use the
1149 existing one (the one that is already in the
1150 OpenConfirm state). */
1151
eb821189 1152 if (new->fd >= 0)
f5ba3874 1153 bgp_notify_send (new, BGP_NOTIFY_CEASE,
1154 BGP_NOTIFY_CEASE_COLLISION_RESOLUTION);
718e3744 1155 return -1;
1156 }
eb821189 1157 }
1158 }
718e3744 1159 return 0;
1160}
1161
94f2b392 1162static int
718e3744 1163bgp_open_receive (struct peer *peer, bgp_size_t size)
1164{
1165 int ret;
1166 u_char version;
1167 u_char optlen;
1168 u_int16_t holdtime;
1169 u_int16_t send_holdtime;
1170 as_t remote_as;
1171 struct peer *realpeer;
1172 struct in_addr remote_id;
1173 int capability;
5228ad27 1174 u_int8_t notify_data_remote_as[2];
1175 u_int8_t notify_data_remote_id[4];
718e3744 1176
1177 realpeer = NULL;
1178
1179 /* Parse open packet. */
1180 version = stream_getc (peer->ibuf);
1181 memcpy (notify_data_remote_as, stream_pnt (peer->ibuf), 2);
1182 remote_as = stream_getw (peer->ibuf);
1183 holdtime = stream_getw (peer->ibuf);
1184 memcpy (notify_data_remote_id, stream_pnt (peer->ibuf), 4);
1185 remote_id.s_addr = stream_get_ipv4 (peer->ibuf);
1186
1187 /* Receive OPEN message log */
1188 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1189 zlog_debug ("%s rcv OPEN, version %d, remote-as %d, holdtime %d, id %s",
718e3744 1190 peer->host, version, remote_as, holdtime,
1191 inet_ntoa (remote_id));
1192
1193 /* Lookup peer from Open packet. */
1194 if (CHECK_FLAG (peer->sflags, PEER_STATUS_ACCEPT_PEER))
1195 {
1196 int as = 0;
1197
1198 realpeer = peer_lookup_with_open (&peer->su, remote_as, &remote_id, &as);
1199
1200 if (! realpeer)
1201 {
1202 /* Peer's source IP address is check in bgp_accept(), so this
1203 must be AS number mismatch or remote-id configuration
1204 mismatch. */
1205 if (as)
1206 {
1207 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1208 zlog_debug ("%s bad OPEN, wrong router identifier %s",
1209 peer->host, inet_ntoa (remote_id));
1210 bgp_notify_send_with_data (peer, BGP_NOTIFY_OPEN_ERR,
1211 BGP_NOTIFY_OPEN_BAD_BGP_IDENT,
1212 notify_data_remote_id, 4);
718e3744 1213 }
1214 else
1215 {
1216 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1217 zlog_debug ("%s bad OPEN, remote AS is %d, expected %d",
1218 peer->host, remote_as, peer->as);
1219 bgp_notify_send_with_data (peer, BGP_NOTIFY_OPEN_ERR,
1220 BGP_NOTIFY_OPEN_BAD_PEER_AS,
1221 notify_data_remote_as, 2);
718e3744 1222 }
1223 return -1;
1224 }
1225 }
1226
1227 /* When collision is detected and this peer is closed. Retrun
1228 immidiately. */
1229 ret = bgp_collision_detect (peer, remote_id);
1230 if (ret < 0)
1231 return ret;
1232
eb821189 1233 /* Hack part. */
1234 if (CHECK_FLAG (peer->sflags, PEER_STATUS_ACCEPT_PEER))
1235 {
93406d87 1236 if (realpeer->status == Established
1237 && CHECK_FLAG (realpeer->sflags, PEER_STATUS_NSF_MODE))
1238 {
1239 realpeer->last_reset = PEER_DOWN_NSF_CLOSE_SESSION;
1240 SET_FLAG (realpeer->sflags, PEER_STATUS_NSF_WAIT);
1241 }
1242 else if (ret == 0 && realpeer->status != Active
1243 && realpeer->status != OpenSent
1244 && realpeer->status != OpenConfirm)
1245
eb821189 1246 {
1247 if (BGP_DEBUG (events, EVENTS))
93406d87 1248 zlog_debug ("%s peer status is %s close connection",
1249 realpeer->host, LOOKUP (bgp_status_msg,
1250 realpeer->status));
1251 bgp_notify_send (peer, BGP_NOTIFY_CEASE,
1252 BGP_NOTIFY_CEASE_CONNECT_REJECT);
1253
eb821189 1254 return -1;
1255 }
1256
1257 if (BGP_DEBUG (events, EVENTS))
6b51474d 1258 zlog_debug ("%s [Event] Transfer temporary BGP peer to existing one",
eb821189 1259 peer->host);
1260
1261 bgp_stop (realpeer);
1262
1263 /* Transfer file descriptor. */
1264 realpeer->fd = peer->fd;
1265 peer->fd = -1;
1266
1267 /* Transfer input buffer. */
1268 stream_free (realpeer->ibuf);
1269 realpeer->ibuf = peer->ibuf;
1270 realpeer->packet_size = peer->packet_size;
1271 peer->ibuf = NULL;
1272
1273 /* Transfer status. */
1274 realpeer->status = peer->status;
1275 bgp_stop (peer);
200df115 1276
eb821189 1277 /* peer pointer change. Open packet send to neighbor. */
1278 peer = realpeer;
1279 bgp_open_send (peer);
1280 if (peer->fd < 0)
1281 {
1282 zlog_err ("bgp_open_receive peer's fd is negative value %d",
1283 peer->fd);
1284 return -1;
1285 }
1286 BGP_READ_ON (peer->t_read, bgp_read, peer->fd);
1287 }
1288
718e3744 1289 /* remote router-id check. */
1290 if (remote_id.s_addr == 0
1291 || ntohl (remote_id.s_addr) >= 0xe0000000
1292 || ntohl (peer->local_id.s_addr) == ntohl (remote_id.s_addr))
1293 {
1294 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1295 zlog_debug ("%s bad OPEN, wrong router identifier %s",
718e3744 1296 peer->host, inet_ntoa (remote_id));
1297 bgp_notify_send_with_data (peer,
1298 BGP_NOTIFY_OPEN_ERR,
1299 BGP_NOTIFY_OPEN_BAD_BGP_IDENT,
1300 notify_data_remote_id, 4);
1301 return -1;
1302 }
1303
1304 /* Set remote router-id */
1305 peer->remote_id = remote_id;
1306
1307 /* Peer BGP version check. */
1308 if (version != BGP_VERSION_4)
1309 {
5228ad27 1310 u_int8_t maxver = BGP_VERSION_4;
718e3744 1311 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1312 zlog_debug ("%s bad protocol version, remote requested %d, local request %d",
718e3744 1313 peer->host, version, BGP_VERSION_4);
1314 bgp_notify_send_with_data (peer,
1315 BGP_NOTIFY_OPEN_ERR,
1316 BGP_NOTIFY_OPEN_UNSUP_VERSION,
5228ad27 1317 &maxver, 1);
718e3744 1318 return -1;
1319 }
1320
1321 /* Check neighbor as number. */
1322 if (remote_as != peer->as)
1323 {
1324 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1325 zlog_debug ("%s bad OPEN, remote AS is %d, expected %d",
718e3744 1326 peer->host, remote_as, peer->as);
1327 bgp_notify_send_with_data (peer,
1328 BGP_NOTIFY_OPEN_ERR,
1329 BGP_NOTIFY_OPEN_BAD_PEER_AS,
1330 notify_data_remote_as, 2);
1331 return -1;
1332 }
1333
1334 /* From the rfc: Upon receipt of an OPEN message, a BGP speaker MUST
1335 calculate the value of the Hold Timer by using the smaller of its
1336 configured Hold Time and the Hold Time received in the OPEN message.
1337 The Hold Time MUST be either zero or at least three seconds. An
1338 implementation may reject connections on the basis of the Hold Time. */
1339
1340 if (holdtime < 3 && holdtime != 0)
1341 {
1342 bgp_notify_send (peer,
1343 BGP_NOTIFY_OPEN_ERR,
1344 BGP_NOTIFY_OPEN_UNACEP_HOLDTIME);
1345 return -1;
1346 }
1347
1348 /* From the rfc: A reasonable maximum time between KEEPALIVE messages
1349 would be one third of the Hold Time interval. KEEPALIVE messages
1350 MUST NOT be sent more frequently than one per second. An
1351 implementation MAY adjust the rate at which it sends KEEPALIVE
1352 messages as a function of the Hold Time interval. */
1353
1354 if (CHECK_FLAG (peer->config, PEER_CONFIG_TIMER))
1355 send_holdtime = peer->holdtime;
1356 else
1357 send_holdtime = peer->bgp->default_holdtime;
1358
1359 if (holdtime < send_holdtime)
1360 peer->v_holdtime = holdtime;
1361 else
1362 peer->v_holdtime = send_holdtime;
1363
1364 peer->v_keepalive = peer->v_holdtime / 3;
1365
1366 /* Open option part parse. */
1367 capability = 0;
1368 optlen = stream_getc (peer->ibuf);
1369 if (optlen != 0)
1370 {
1371 ret = bgp_open_option_parse (peer, optlen, &capability);
1372 if (ret < 0)
1373 return ret;
718e3744 1374 }
1375 else
1376 {
1377 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1378 zlog_debug ("%s rcvd OPEN w/ OPTION parameter len: 0",
718e3744 1379 peer->host);
1380 }
1381
1382 /* Override capability. */
1383 if (! capability || CHECK_FLAG (peer->flags, PEER_FLAG_OVERRIDE_CAPABILITY))
1384 {
1385 peer->afc_nego[AFI_IP][SAFI_UNICAST] = peer->afc[AFI_IP][SAFI_UNICAST];
1386 peer->afc_nego[AFI_IP][SAFI_MULTICAST] = peer->afc[AFI_IP][SAFI_MULTICAST];
1387 peer->afc_nego[AFI_IP6][SAFI_UNICAST] = peer->afc[AFI_IP6][SAFI_UNICAST];
1388 peer->afc_nego[AFI_IP6][SAFI_MULTICAST] = peer->afc[AFI_IP6][SAFI_MULTICAST];
1389 }
1390
1391 /* Get sockname. */
1392 bgp_getsockname (peer);
1393
1394 BGP_EVENT_ADD (peer, Receive_OPEN_message);
1395
1396 peer->packet_size = 0;
1397 if (peer->ibuf)
1398 stream_reset (peer->ibuf);
1399
1400 return 0;
1401}
1402
1403/* Parse BGP Update packet and make attribute object. */
94f2b392 1404static int
718e3744 1405bgp_update_receive (struct peer *peer, bgp_size_t size)
1406{
1407 int ret;
1408 u_char *end;
1409 struct stream *s;
1410 struct attr attr;
1411 bgp_size_t attribute_len;
1412 bgp_size_t update_len;
1413 bgp_size_t withdraw_len;
1414 struct bgp_nlri update;
1415 struct bgp_nlri withdraw;
1416 struct bgp_nlri mp_update;
1417 struct bgp_nlri mp_withdraw;
e01f9cbb 1418 char attrstr[BUFSIZ] = "";
718e3744 1419
1420 /* Status must be Established. */
1421 if (peer->status != Established)
1422 {
1423 zlog_err ("%s [FSM] Update packet received under status %s",
1424 peer->host, LOOKUP (bgp_status_msg, peer->status));
1425 bgp_notify_send (peer, BGP_NOTIFY_FSM_ERR, 0);
1426 return -1;
1427 }
1428
1429 /* Set initial values. */
1430 memset (&attr, 0, sizeof (struct attr));
1431 memset (&update, 0, sizeof (struct bgp_nlri));
1432 memset (&withdraw, 0, sizeof (struct bgp_nlri));
1433 memset (&mp_update, 0, sizeof (struct bgp_nlri));
1434 memset (&mp_withdraw, 0, sizeof (struct bgp_nlri));
1435
1436 s = peer->ibuf;
1437 end = stream_pnt (s) + size;
1438
1439 /* RFC1771 6.3 If the Unfeasible Routes Length or Total Attribute
1440 Length is too large (i.e., if Unfeasible Routes Length + Total
1441 Attribute Length + 23 exceeds the message Length), then the Error
1442 Subcode is set to Malformed Attribute List. */
1443 if (stream_pnt (s) + 2 > end)
1444 {
1445 zlog_err ("%s [Error] Update packet error"
1446 " (packet length is short for unfeasible length)",
1447 peer->host);
1448 bgp_notify_send (peer, BGP_NOTIFY_UPDATE_ERR,
1449 BGP_NOTIFY_UPDATE_MAL_ATTR);
1450 return -1;
1451 }
1452
1453 /* Unfeasible Route Length. */
1454 withdraw_len = stream_getw (s);
1455
1456 /* Unfeasible Route Length check. */
1457 if (stream_pnt (s) + withdraw_len > end)
1458 {
1459 zlog_err ("%s [Error] Update packet error"
1460 " (packet unfeasible length overflow %d)",
1461 peer->host, withdraw_len);
1462 bgp_notify_send (peer, BGP_NOTIFY_UPDATE_ERR,
1463 BGP_NOTIFY_UPDATE_MAL_ATTR);
1464 return -1;
1465 }
1466
1467 /* Unfeasible Route packet format check. */
1468 if (withdraw_len > 0)
1469 {
1470 ret = bgp_nlri_sanity_check (peer, AFI_IP, stream_pnt (s), withdraw_len);
1471 if (ret < 0)
1472 return -1;
1473
1474 if (BGP_DEBUG (packet, PACKET_RECV))
6b51474d 1475 zlog_debug ("%s [Update:RECV] Unfeasible NLRI received", peer->host);
718e3744 1476
1477 withdraw.afi = AFI_IP;
1478 withdraw.safi = SAFI_UNICAST;
1479 withdraw.nlri = stream_pnt (s);
1480 withdraw.length = withdraw_len;
9985f83c 1481 stream_forward_getp (s, withdraw_len);
718e3744 1482 }
1483
1484 /* Attribute total length check. */
1485 if (stream_pnt (s) + 2 > end)
1486 {
1487 zlog_warn ("%s [Error] Packet Error"
1488 " (update packet is short for attribute length)",
1489 peer->host);
1490 bgp_notify_send (peer, BGP_NOTIFY_UPDATE_ERR,
1491 BGP_NOTIFY_UPDATE_MAL_ATTR);
1492 return -1;
1493 }
1494
1495 /* Fetch attribute total length. */
1496 attribute_len = stream_getw (s);
1497
1498 /* Attribute length check. */
1499 if (stream_pnt (s) + attribute_len > end)
1500 {
1501 zlog_warn ("%s [Error] Packet Error"
1502 " (update packet attribute length overflow %d)",
1503 peer->host, attribute_len);
1504 bgp_notify_send (peer, BGP_NOTIFY_UPDATE_ERR,
1505 BGP_NOTIFY_UPDATE_MAL_ATTR);
1506 return -1;
1507 }
1508
1509 /* Parse attribute when it exists. */
1510 if (attribute_len)
1511 {
1512 ret = bgp_attr_parse (peer, &attr, attribute_len,
1513 &mp_update, &mp_withdraw);
1514 if (ret < 0)
1515 return -1;
1516 }
1517
1518 /* Logging the attribute. */
1519 if (BGP_DEBUG (update, UPDATE_IN))
1520 {
e01f9cbb 1521 ret= bgp_dump_attr (peer, &attr, attrstr, BUFSIZ);
1522
1523 if (ret)
6b51474d 1524 zlog (peer->log, LOG_DEBUG, "%s rcvd UPDATE w/ attr: %s",
e01f9cbb 1525 peer->host, attrstr);
718e3744 1526 }
1527
1528 /* Network Layer Reachability Information. */
1529 update_len = end - stream_pnt (s);
1530
1531 if (update_len)
1532 {
1533 /* Check NLRI packet format and prefix length. */
1534 ret = bgp_nlri_sanity_check (peer, AFI_IP, stream_pnt (s), update_len);
1535 if (ret < 0)
1536 return -1;
1537
1538 /* Set NLRI portion to structure. */
1539 update.afi = AFI_IP;
1540 update.safi = SAFI_UNICAST;
1541 update.nlri = stream_pnt (s);
1542 update.length = update_len;
9985f83c 1543 stream_forward_getp (s, update_len);
718e3744 1544 }
1545
1546 /* NLRI is processed only when the peer is configured specific
1547 Address Family and Subsequent Address Family. */
1548 if (peer->afc[AFI_IP][SAFI_UNICAST])
1549 {
1550 if (withdraw.length)
1551 bgp_nlri_parse (peer, NULL, &withdraw);
1552
1553 if (update.length)
1554 {
1555 /* We check well-known attribute only for IPv4 unicast
1556 update. */
1557 ret = bgp_attr_check (peer, &attr);
1558 if (ret < 0)
1559 return -1;
1560
1561 bgp_nlri_parse (peer, &attr, &update);
1562 }
e01f9cbb 1563
f418446b 1564 if (mp_update.length
1565 && mp_update.afi == AFI_IP
1566 && mp_update.safi == SAFI_UNICAST)
1567 bgp_nlri_parse (peer, &attr, &mp_update);
1568
1569 if (mp_withdraw.length
1570 && mp_withdraw.afi == AFI_IP
1571 && mp_withdraw.safi == SAFI_UNICAST)
1572 bgp_nlri_parse (peer, NULL, &mp_withdraw);
1573
e01f9cbb 1574 if (! attribute_len && ! withdraw_len)
1575 {
1576 /* End-of-RIB received */
93406d87 1577 SET_FLAG (peer->af_sflags[AFI_IP][SAFI_UNICAST],
1578 PEER_STATUS_EOR_RECEIVED);
e01f9cbb 1579
93406d87 1580 /* NSF delete stale route */
1581 if (peer->nsf[AFI_IP][SAFI_UNICAST])
1582 bgp_clear_stale_route (peer, AFI_IP, SAFI_UNICAST);
1583
1584 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1585 zlog (peer->log, LOG_DEBUG, "rcvd End-of-RIB for IPv4 Unicast from %s",
e01f9cbb 1586 peer->host);
1587 }
718e3744 1588 }
1589 if (peer->afc[AFI_IP][SAFI_MULTICAST])
1590 {
1591 if (mp_update.length
1592 && mp_update.afi == AFI_IP
1593 && mp_update.safi == SAFI_MULTICAST)
1594 bgp_nlri_parse (peer, &attr, &mp_update);
1595
1596 if (mp_withdraw.length
1597 && mp_withdraw.afi == AFI_IP
1598 && mp_withdraw.safi == SAFI_MULTICAST)
1599 bgp_nlri_parse (peer, NULL, &mp_withdraw);
e01f9cbb 1600
93406d87 1601 if (! withdraw_len
e01f9cbb 1602 && mp_withdraw.afi == AFI_IP
1603 && mp_withdraw.safi == SAFI_MULTICAST
1604 && mp_withdraw.length == 0)
1605 {
1606 /* End-of-RIB received */
93406d87 1607 SET_FLAG (peer->af_sflags[AFI_IP][SAFI_MULTICAST],
1608 PEER_STATUS_EOR_RECEIVED);
e01f9cbb 1609
93406d87 1610 /* NSF delete stale route */
1611 if (peer->nsf[AFI_IP][SAFI_MULTICAST])
1612 bgp_clear_stale_route (peer, AFI_IP, SAFI_MULTICAST);
1613
1614 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1615 zlog (peer->log, LOG_DEBUG, "rcvd End-of-RIB for IPv4 Multicast from %s",
e01f9cbb 1616 peer->host);
1617 }
718e3744 1618 }
1619 if (peer->afc[AFI_IP6][SAFI_UNICAST])
1620 {
1621 if (mp_update.length
1622 && mp_update.afi == AFI_IP6
1623 && mp_update.safi == SAFI_UNICAST)
1624 bgp_nlri_parse (peer, &attr, &mp_update);
1625
1626 if (mp_withdraw.length
1627 && mp_withdraw.afi == AFI_IP6
1628 && mp_withdraw.safi == SAFI_UNICAST)
1629 bgp_nlri_parse (peer, NULL, &mp_withdraw);
e01f9cbb 1630
93406d87 1631 if (! withdraw_len
e01f9cbb 1632 && mp_withdraw.afi == AFI_IP6
1633 && mp_withdraw.safi == SAFI_UNICAST
1634 && mp_withdraw.length == 0)
1635 {
1636 /* End-of-RIB received */
93406d87 1637 SET_FLAG (peer->af_sflags[AFI_IP6][SAFI_UNICAST], PEER_STATUS_EOR_RECEIVED);
e01f9cbb 1638
93406d87 1639 /* NSF delete stale route */
1640 if (peer->nsf[AFI_IP6][SAFI_UNICAST])
1641 bgp_clear_stale_route (peer, AFI_IP6, SAFI_UNICAST);
1642
1643 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1644 zlog (peer->log, LOG_DEBUG, "rcvd End-of-RIB for IPv6 Unicast from %s",
e01f9cbb 1645 peer->host);
1646 }
718e3744 1647 }
1648 if (peer->afc[AFI_IP6][SAFI_MULTICAST])
1649 {
1650 if (mp_update.length
1651 && mp_update.afi == AFI_IP6
1652 && mp_update.safi == SAFI_MULTICAST)
1653 bgp_nlri_parse (peer, &attr, &mp_update);
1654
1655 if (mp_withdraw.length
1656 && mp_withdraw.afi == AFI_IP6
1657 && mp_withdraw.safi == SAFI_MULTICAST)
1658 bgp_nlri_parse (peer, NULL, &mp_withdraw);
e01f9cbb 1659
93406d87 1660 if (! withdraw_len
e01f9cbb 1661 && mp_withdraw.afi == AFI_IP6
1662 && mp_withdraw.safi == SAFI_MULTICAST
1663 && mp_withdraw.length == 0)
1664 {
1665 /* End-of-RIB received */
1666
93406d87 1667 /* NSF delete stale route */
1668 if (peer->nsf[AFI_IP6][SAFI_MULTICAST])
1669 bgp_clear_stale_route (peer, AFI_IP6, SAFI_MULTICAST);
1670
e01f9cbb 1671 if (BGP_DEBUG (update, UPDATE_IN))
6b51474d 1672 zlog (peer->log, LOG_DEBUG, "rcvd End-of-RIB for IPv6 Multicast from %s",
e01f9cbb 1673 peer->host);
1674 }
718e3744 1675 }
1676 if (peer->afc[AFI_IP][SAFI_MPLS_VPN])
1677 {
1678 if (mp_update.length
1679 && mp_update.afi == AFI_IP
1680 && mp_update.safi == BGP_SAFI_VPNV4)
1681 bgp_nlri_parse_vpnv4 (peer, &attr, &mp_update);
1682
1683 if (mp_withdraw.length
1684 && mp_withdraw.afi == AFI_IP
1685 && mp_withdraw.safi == BGP_SAFI_VPNV4)
1686 bgp_nlri_parse_vpnv4 (peer, NULL, &mp_withdraw);
e01f9cbb 1687
93406d87 1688 if (! withdraw_len
e01f9cbb 1689 && mp_withdraw.afi == AFI_IP
1690 && mp_withdraw.safi == BGP_SAFI_VPNV4
1691 && mp_withdraw.length == 0)
1692 {
1693 /* End-of-RIB received */
1694
1695 if (BGP_DEBUG (update, UPDATE_IN))
6b51474d 1696 zlog (peer->log, LOG_DEBUG, "rcvd End-of-RIB for VPNv4 Unicast from %s",
e01f9cbb 1697 peer->host);
1698 }
718e3744 1699 }
1700
1701 /* Everything is done. We unintern temporary structures which
1702 interned in bgp_attr_parse(). */
1703 if (attr.aspath)
1704 aspath_unintern (attr.aspath);
1705 if (attr.community)
1706 community_unintern (attr.community);
fb982c25
PJ		 1707 if (attr.extra)
1708 {
1709 if (attr.extra->ecommunity)
1710 ecommunity_unintern (attr.extra->ecommunity);
1711 if (attr.extra->cluster)
1712 cluster_unintern (attr.extra->cluster);
1713 if (attr.extra->transit)
1714 transit_unintern (attr.extra->transit);
1715 bgp_attr_extra_free (&attr);
1716 }
718e3744 1717
1718 /* If peering is stopped due to some reason, do not generate BGP
1719 event. */
1720 if (peer->status != Established)
1721 return 0;
1722
1723 /* Increment packet counter. */
1724 peer->update_in++;
1725 peer->update_time = time (NULL);
1726
1727 /* Generate BGP event. */
1728 BGP_EVENT_ADD (peer, Receive_UPDATE_message);
1729
1730 return 0;
1731}
1732
1733/* Notify message treatment function. */
94f2b392 1734static void
718e3744 1735bgp_notify_receive (struct peer *peer, bgp_size_t size)
1736{
1737 struct bgp_notify bgp_notify;
1738
1739 if (peer->notify.data)
1740 {
1741 XFREE (MTYPE_TMP, peer->notify.data);
1742 peer->notify.data = NULL;
1743 peer->notify.length = 0;
1744 }
1745
1746 bgp_notify.code = stream_getc (peer->ibuf);
1747 bgp_notify.subcode = stream_getc (peer->ibuf);
1748 bgp_notify.length = size - 2;
1749 bgp_notify.data = NULL;
1750
1751 /* Preserv notify code and sub code. */
1752 peer->notify.code = bgp_notify.code;
1753 peer->notify.subcode = bgp_notify.subcode;
1754 /* For further diagnostic record returned Data. */
1755 if (bgp_notify.length)
1756 {
1757 peer->notify.length = size - 2;
1758 peer->notify.data = XMALLOC (MTYPE_TMP, size - 2);
1759 memcpy (peer->notify.data, stream_pnt (peer->ibuf), size - 2);
1760 }
1761
1762 /* For debug */
1763 {
1764 int i;
1765 int first = 0;
1766 char c[4];
1767
1768 if (bgp_notify.length)
1769 {
1770 bgp_notify.data = XMALLOC (MTYPE_TMP, bgp_notify.length * 3);
1771 for (i = 0; i < bgp_notify.length; i++)
1772 if (first)
1773 {
1774 sprintf (c, " %02x", stream_getc (peer->ibuf));
1775 strcat (bgp_notify.data, c);
1776 }
1777 else
1778 {
1779 first = 1;
1780 sprintf (c, "%02x", stream_getc (peer->ibuf));
1781 strcpy (bgp_notify.data, c);
1782 }
1783 }
1784
1785 bgp_notify_print(peer, &bgp_notify, "received");
1786 if (bgp_notify.data)
1787 XFREE (MTYPE_TMP, bgp_notify.data);
1788 }
1789
1790 /* peer count update */
1791 peer->notify_in++;
1792
e0701b79 1793 if (peer->status == Established)
1794 peer->last_reset = PEER_DOWN_NOTIFY_RECEIVED;
1795
718e3744 1796 /* We have to check for Notify with Unsupported Optional Parameter.
1797 in that case we fallback to open without the capability option.
1798 But this done in bgp_stop. We just mark it here to avoid changing
1799 the fsm tables. */
1800 if (bgp_notify.code == BGP_NOTIFY_OPEN_ERR &&
1801 bgp_notify.subcode == BGP_NOTIFY_OPEN_UNSUP_PARAM )
1802 UNSET_FLAG (peer->sflags, PEER_STATUS_CAPABILITY_OPEN);
1803
1804 /* Also apply to Unsupported Capability until remote router support
1805 capability. */
1806 if (bgp_notify.code == BGP_NOTIFY_OPEN_ERR &&
1807 bgp_notify.subcode == BGP_NOTIFY_OPEN_UNSUP_CAPBL)
1808 UNSET_FLAG (peer->sflags, PEER_STATUS_CAPABILITY_OPEN);
1809
1810 BGP_EVENT_ADD (peer, Receive_NOTIFICATION_message);
1811}
1812
1813/* Keepalive treatment function -- get keepalive send keepalive */
94f2b392 1814static void
718e3744 1815bgp_keepalive_receive (struct peer *peer, bgp_size_t size)
1816{
1817 if (BGP_DEBUG (keepalive, KEEPALIVE))
6b51474d 1818 zlog_debug ("%s KEEPALIVE rcvd", peer->host);
718e3744 1819
1820 BGP_EVENT_ADD (peer, Receive_KEEPALIVE_message);
1821}
1822
1823/* Route refresh message is received. */
94f2b392 1824static void
718e3744 1825bgp_route_refresh_receive (struct peer *peer, bgp_size_t size)
1826{
1827 afi_t afi;
1828 safi_t safi;
1829 u_char reserved;
1830 struct stream *s;
1831
1832 /* If peer does not have the capability, send notification. */
1833 if (! CHECK_FLAG (peer->cap, PEER_CAP_REFRESH_ADV))
1834 {
1835 plog_err (peer->log, "%s [Error] BGP route refresh is not enabled",
1836 peer->host);
1837 bgp_notify_send (peer,
1838 BGP_NOTIFY_HEADER_ERR,
1839 BGP_NOTIFY_HEADER_BAD_MESTYPE);
1840 return;
1841 }
1842
1843 /* Status must be Established. */
1844 if (peer->status != Established)
1845 {
1846 plog_err (peer->log,
1847 "%s [Error] Route refresh packet received under status %s",
1848 peer->host, LOOKUP (bgp_status_msg, peer->status));
1849 bgp_notify_send (peer, BGP_NOTIFY_FSM_ERR, 0);
1850 return;
1851 }
1852
1853 s = peer->ibuf;
1854
1855 /* Parse packet. */
1856 afi = stream_getw (s);
1857 reserved = stream_getc (s);
1858 safi = stream_getc (s);
1859
1860 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1861 zlog_debug ("%s rcvd REFRESH_REQ for afi/safi: %d/%d",
718e3744 1862 peer->host, afi, safi);
1863
1864 /* Check AFI and SAFI. */
1865 if ((afi != AFI_IP && afi != AFI_IP6)
1866 || (safi != SAFI_UNICAST && safi != SAFI_MULTICAST
1867 && safi != BGP_SAFI_VPNV4))
1868 {
1869 if (BGP_DEBUG (normal, NORMAL))
1870 {
6b51474d 1871 zlog_debug ("%s REFRESH_REQ for unrecognized afi/safi: %d/%d - ignored",
718e3744 1872 peer->host, afi, safi);
1873 }
1874 return;
1875 }
1876
1877 /* Adjust safi code. */
1878 if (safi == BGP_SAFI_VPNV4)
1879 safi = SAFI_MPLS_VPN;
1880
1881 if (size != BGP_MSG_ROUTE_REFRESH_MIN_SIZE - BGP_HEADER_SIZE)
1882 {
1883 u_char *end;
1884 u_char when_to_refresh;
1885 u_char orf_type;
1886 u_int16_t orf_len;
1887
1888 if (size - (BGP_MSG_ROUTE_REFRESH_MIN_SIZE - BGP_HEADER_SIZE) < 5)
1889 {
1890 zlog_info ("%s ORF route refresh length error", peer->host);
1891 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
1892 return;
1893 }
1894
1895 when_to_refresh = stream_getc (s);
1896 end = stream_pnt (s) + (size - 5);
1897
1898 while (stream_pnt (s) < end)
1899 {
1900 orf_type = stream_getc (s);
1901 orf_len = stream_getw (s);
1902
1903 if (orf_type == ORF_TYPE_PREFIX
1904 || orf_type == ORF_TYPE_PREFIX_OLD)
1905 {
1906 u_char *p_pnt = stream_pnt (s);
1907 u_char *p_end = stream_pnt (s) + orf_len;
1908 struct orf_prefix orfp;
1909 u_char common = 0;
1910 u_int32_t seq;
1911 int psize;
1912 char name[BUFSIZ];
1913 char buf[BUFSIZ];
1914 int ret;
1915
1916 if (BGP_DEBUG (normal, NORMAL))
1917 {
6b51474d 1918 zlog_debug ("%s rcvd Prefixlist ORF(%d) length %d",
718e3744 1919 peer->host, orf_type, orf_len);
1920 }
1921
1922 /* ORF prefix-list name */
1923 sprintf (name, "%s.%d.%d", peer->host, afi, safi);
1924
1925 while (p_pnt < p_end)
1926 {
1927 memset (&orfp, 0, sizeof (struct orf_prefix));
1928 common = *p_pnt++;
1929 if (common & ORF_COMMON_PART_REMOVE_ALL)
1930 {
1931 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1932 zlog_debug ("%s rcvd Remove-All pfxlist ORF request", peer->host);
718e3744 1933 prefix_bgp_orf_remove_all (name);
1934 break;
1935 }
1936 memcpy (&seq, p_pnt, sizeof (u_int32_t));
1937 p_pnt += sizeof (u_int32_t);
1938 orfp.seq = ntohl (seq);
1939 orfp.ge = *p_pnt++;
1940 orfp.le = *p_pnt++;
1941 orfp.p.prefixlen = *p_pnt++;
1942 orfp.p.family = afi2family (afi);
1943 psize = PSIZE (orfp.p.prefixlen);
1944 memcpy (&orfp.p.u.prefix, p_pnt, psize);
1945 p_pnt += psize;
1946
1947 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1948 zlog_debug ("%s rcvd %s %s seq %u %s/%d ge %d le %d",
718e3744 1949 peer->host,
1950 (common & ORF_COMMON_PART_REMOVE ? "Remove" : "Add"),
1951 (common & ORF_COMMON_PART_DENY ? "deny" : "permit"),
1952 orfp.seq,
1953 inet_ntop (orfp.p.family, &orfp.p.u.prefix, buf, BUFSIZ),
1954 orfp.p.prefixlen, orfp.ge, orfp.le);
1955
1956 ret = prefix_bgp_orf_set (name, afi, &orfp,
1957 (common & ORF_COMMON_PART_DENY ? 0 : 1 ),
1958 (common & ORF_COMMON_PART_REMOVE ? 0 : 1));
1959
1960 if (ret != CMD_SUCCESS)
1961 {
1962 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1963 zlog_debug ("%s Received misformatted prefixlist ORF. Remove All pfxlist", peer->host);
718e3744 1964 prefix_bgp_orf_remove_all (name);
1965 break;
1966 }
1967 }
1968 peer->orf_plist[afi][safi] =
1969 prefix_list_lookup (AFI_ORF_PREFIX, name);
1970 }
9985f83c 1971 stream_forward_getp (s, orf_len);
718e3744 1972 }
1973 if (BGP_DEBUG (normal, NORMAL))
6b51474d 1974 zlog_debug ("%s rcvd Refresh %s ORF request", peer->host,
718e3744 1975 when_to_refresh == REFRESH_DEFER ? "Defer" : "Immediate");
1976 if (when_to_refresh == REFRESH_DEFER)
1977 return;
1978 }
1979
1980 /* First update is deferred until ORF or ROUTE-REFRESH is received */
1981 if (CHECK_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_ORF_WAIT_REFRESH))
1982 UNSET_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_ORF_WAIT_REFRESH);
1983
1984 /* Perform route refreshment to the peer */
1985 bgp_announce_route (peer, afi, safi);
1986}
1987
94f2b392 1988static int
718e3744 1989bgp_capability_msg_parse (struct peer *peer, u_char *pnt, bgp_size_t length)
1990{
1991 u_char *end;
6d58272b
PJ		 1992 struct capability_mp_data mpc;
1993 struct capability_header *hdr;
718e3744 1994 u_char action;
1995 struct bgp *bgp;
1996 afi_t afi;
1997 safi_t safi;
1998
1999 bgp = peer->bgp;
2000 end = pnt + length;
2001
2002 while (pnt < end)
6d58272b 2003 {
718e3744 2004 /* We need at least action, capability code and capability length. */
2005 if (pnt + 3 > end)
2006 {
2007 zlog_info ("%s Capability length error", peer->host);
2008 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
2009 return -1;
2010 }
718e3744 2011 action = *pnt;
6d58272b
PJ		 2012 hdr = (struct capability_header *)(pnt + 1);
2013
718e3744 2014 /* Action value check. */
2015 if (action != CAPABILITY_ACTION_SET
2016 && action != CAPABILITY_ACTION_UNSET)
2017 {
2018 zlog_info ("%s Capability Action Value error %d",
2019 peer->host, action);
2020 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
2021 return -1;
2022 }
2023
2024 if (BGP_DEBUG (normal, NORMAL))
6b51474d 2025 zlog_debug ("%s CAPABILITY has action: %d, code: %u, length %u",
6d58272b 2026 peer->host, action, hdr->code, hdr->length);
718e3744 2027
2028 /* Capability length check. */
6d58272b 2029 if ((pnt + hdr->length + 3) > end)
718e3744 2030 {
2031 zlog_info ("%s Capability length error", peer->host);
2032 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
2033 return -1;
2034 }
2035
6d58272b
PJ		 2036 /* Fetch structure to the byte stream. */
2037 memcpy (&mpc, pnt + 3, sizeof (struct capability_mp_data));
2038
718e3744 2039 /* We know MP Capability Code. */
6d58272b 2040 if (hdr->code == CAPABILITY_CODE_MP)
718e3744 2041 {
6d58272b
PJ		 2042 afi = ntohs (mpc.afi);
2043 safi = mpc.safi;
718e3744 2044
2045 /* Ignore capability when override-capability is set. */
2046 if (CHECK_FLAG (peer->flags, PEER_FLAG_OVERRIDE_CAPABILITY))
2047 continue;
6d58272b
PJ		 2048
2049 if (!bgp_afi_safi_valid_indices (afi, &safi))
2050 {
2051 if (BGP_DEBUG (normal, NORMAL))
2052 zlog_debug ("%s Dynamic Capability MP_EXT afi/safi invalid",
2053 peer->host, afi, safi);
2054 continue;
2055 }
2056
718e3744 2057 /* Address family check. */
6d58272b
PJ		 2058 if (BGP_DEBUG (normal, NORMAL))
2059 zlog_debug ("%s CAPABILITY has %s MP_EXT CAP for afi/safi: %u/%u",
2060 peer->host,
2061 action == CAPABILITY_ACTION_SET
2062 ? "Advertising" : "Removing",
2063 ntohs(mpc.afi) , mpc.safi);
2064
2065 if (action == CAPABILITY_ACTION_SET)
2066 {
2067 peer->afc_recv[afi][safi] = 1;
2068 if (peer->afc[afi][safi])
2069 {
2070 peer->afc_nego[afi][safi] = 1;
2071 bgp_announce_route (peer, afi, safi);
2072 }
2073 }
2074 else
2075 {
2076 peer->afc_recv[afi][safi] = 0;
2077 peer->afc_nego[afi][safi] = 0;
2078
2079 if (peer_active_nego (peer))
2080 bgp_clear_route (peer, afi, safi);
2081 else
2082 BGP_EVENT_ADD (peer, BGP_Stop);
2083 }
718e3744 2084 }
718e3744 2085 else
2086 {
2087 zlog_warn ("%s unrecognized capability code: %d - ignored",
6d58272b 2088 peer->host, hdr->code);
718e3744 2089 }
6d58272b 2090 pnt += hdr->length + 3;
718e3744 2091 }
2092 return 0;
2093}
2094
2095/* Dynamic Capability is received. */
6d58272b 2096int
718e3744 2097bgp_capability_receive (struct peer *peer, bgp_size_t size)
2098{
2099 u_char *pnt;
2100 int ret;
2101
2102 /* Fetch pointer. */
2103 pnt = stream_pnt (peer->ibuf);
2104
2105 if (BGP_DEBUG (normal, NORMAL))
6b51474d 2106 zlog_debug ("%s rcv CAPABILITY", peer->host);
718e3744 2107
2108 /* If peer does not have the capability, send notification. */
2109 if (! CHECK_FLAG (peer->cap, PEER_CAP_DYNAMIC_ADV))
2110 {
2111 plog_err (peer->log, "%s [Error] BGP dynamic capability is not enabled",
2112 peer->host);
2113 bgp_notify_send (peer,
2114 BGP_NOTIFY_HEADER_ERR,
2115 BGP_NOTIFY_HEADER_BAD_MESTYPE);
2116 return;
2117 }
2118
2119 /* Status must be Established. */
2120 if (peer->status != Established)
2121 {
2122 plog_err (peer->log,
2123 "%s [Error] Dynamic capability packet received under status %s", peer->host, LOOKUP (bgp_status_msg, peer->status));
2124 bgp_notify_send (peer, BGP_NOTIFY_FSM_ERR, 0);
2125 return;
2126 }
2127
2128 /* Parse packet. */
6d58272b 2129 return bgp_capability_msg_parse (peer, pnt, size);
718e3744 2130}
2131\f
2132/* BGP read utility function. */
94f2b392 2133static int
718e3744 2134bgp_read_packet (struct peer *peer)
2135{
2136 int nbytes;
2137 int readsize;
2138
9985f83c 2139 readsize = peer->packet_size - stream_get_endp (peer->ibuf);
718e3744 2140
2141 /* If size is zero then return. */
2142 if (! readsize)
2143 return 0;
2144
2145 /* Read packet from fd. */
eb821189 2146 nbytes = stream_read_unblock (peer->ibuf, peer->fd, readsize);
718e3744 2147
2148 /* If read byte is smaller than zero then error occured. */
2149 if (nbytes < 0)
2150 {
2151 if (errno == EAGAIN)
2152 return -1;
2153
2154 plog_err (peer->log, "%s [Error] bgp_read_packet error: %s",
6099b3b5 2155 peer->host, safe_strerror (errno));
93406d87 2156
2157 if (peer->status == Established)
2158 {
2159 if (CHECK_FLAG (peer->sflags, PEER_STATUS_NSF_MODE))
2160 {
2161 peer->last_reset = PEER_DOWN_NSF_CLOSE_SESSION;
2162 SET_FLAG (peer->sflags, PEER_STATUS_NSF_WAIT);
2163 }
2164 else
2165 peer->last_reset = PEER_DOWN_CLOSE_SESSION;
2166 }
2167
718e3744 2168 BGP_EVENT_ADD (peer, TCP_fatal_error);
2169 return -1;
2170 }
2171
2172 /* When read byte is zero : clear bgp peer and return */
2173 if (nbytes == 0)
2174 {
2175 if (BGP_DEBUG (events, EVENTS))
6b51474d 2176 plog_debug (peer->log, "%s [Event] BGP connection closed fd %d",
eb821189 2177 peer->host, peer->fd);
e0701b79 2178
2179 if (peer->status == Established)
93406d87 2180 {
2181 if (CHECK_FLAG (peer->sflags, PEER_STATUS_NSF_MODE))
2182 {
2183 peer->last_reset = PEER_DOWN_NSF_CLOSE_SESSION;
2184 SET_FLAG (peer->sflags, PEER_STATUS_NSF_WAIT);
2185 }
2186 else
2187 peer->last_reset = PEER_DOWN_CLOSE_SESSION;
2188 }
e0701b79 2189
718e3744 2190 BGP_EVENT_ADD (peer, TCP_connection_closed);
2191 return -1;
2192 }
2193
2194 /* We read partial packet. */
9985f83c 2195 if (stream_get_endp (peer->ibuf) != peer->packet_size)
718e3744 2196 return -1;
2197
2198 return 0;
2199}
2200
2201/* Marker check. */
94f2b392 2202static int
718e3744 2203bgp_marker_all_one (struct stream *s, int length)
2204{
2205 int i;
2206
2207 for (i = 0; i < length; i++)
2208 if (s->data[i] != 0xff)
2209 return 0;
2210
2211 return 1;
2212}
2213
2214/* Starting point of packet process function. */
2215int
2216bgp_read (struct thread *thread)
2217{
2218 int ret;
2219 u_char type = 0;
2220 struct peer *peer;
2221 bgp_size_t size;
2222 char notify_data_length[2];
2223
2224 /* Yes first of all get peer pointer. */
2225 peer = THREAD_ARG (thread);
2226 peer->t_read = NULL;
2227
2228 /* For non-blocking IO check. */
2229 if (peer->status == Connect)
2230 {
2231 bgp_connect_check (peer);
2232 goto done;
2233 }
2234 else
2235 {
eb821189 2236 if (peer->fd < 0)
718e3744 2237 {
eb821189 2238 zlog_err ("bgp_read peer's fd is negative value %d", peer->fd);
718e3744 2239 return -1;
2240 }
eb821189 2241 BGP_READ_ON (peer->t_read, bgp_read, peer->fd);
718e3744 2242 }
2243
2244 /* Read packet header to determine type of the packet */
2245 if (peer->packet_size == 0)
2246 peer->packet_size = BGP_HEADER_SIZE;
2247
9985f83c 2248 if (stream_get_endp (peer->ibuf) < BGP_HEADER_SIZE)
718e3744 2249 {
2250 ret = bgp_read_packet (peer);
2251
2252 /* Header read error or partial read packet. */
2253 if (ret < 0)
2254 goto done;
2255
2256 /* Get size and type. */
9985f83c 2257 stream_forward_getp (peer->ibuf, BGP_MARKER_SIZE);
718e3744 2258 memcpy (notify_data_length, stream_pnt (peer->ibuf), 2);
2259 size = stream_getw (peer->ibuf);
2260 type = stream_getc (peer->ibuf);
2261
2262 if (BGP_DEBUG (normal, NORMAL) && type != 2 && type != 0)
6b51474d 2263 zlog_debug ("%s rcv message type %d, length (excl. header) %d",
718e3744 2264 peer->host, type, size - BGP_HEADER_SIZE);
2265
2266 /* Marker check */
f5ba3874 2267 if (((type == BGP_MSG_OPEN) || (type == BGP_MSG_KEEPALIVE))
718e3744 2268 && ! bgp_marker_all_one (peer->ibuf, BGP_MARKER_SIZE))
2269 {
2270 bgp_notify_send (peer,
2271 BGP_NOTIFY_HEADER_ERR,
2272 BGP_NOTIFY_HEADER_NOT_SYNC);
2273 goto done;
2274 }
2275
2276 /* BGP type check. */
2277 if (type != BGP_MSG_OPEN && type != BGP_MSG_UPDATE
2278 && type != BGP_MSG_NOTIFY && type != BGP_MSG_KEEPALIVE
2279 && type != BGP_MSG_ROUTE_REFRESH_NEW
2280 && type != BGP_MSG_ROUTE_REFRESH_OLD
2281 && type != BGP_MSG_CAPABILITY)
2282 {
2283 if (BGP_DEBUG (normal, NORMAL))
6b51474d 2284 plog_debug (peer->log,
718e3744 2285 "%s unknown message type 0x%02x",
2286 peer->host, type);
2287 bgp_notify_send_with_data (peer,
2288 BGP_NOTIFY_HEADER_ERR,
2289 BGP_NOTIFY_HEADER_BAD_MESTYPE,
2290 &type, 1);
2291 goto done;
2292 }
2293 /* Mimimum packet length check. */
2294 if ((size < BGP_HEADER_SIZE)
2295 || (size > BGP_MAX_PACKET_SIZE)
2296 || (type == BGP_MSG_OPEN && size < BGP_MSG_OPEN_MIN_SIZE)
2297 || (type == BGP_MSG_UPDATE && size < BGP_MSG_UPDATE_MIN_SIZE)
2298 || (type == BGP_MSG_NOTIFY && size < BGP_MSG_NOTIFY_MIN_SIZE)
2299 || (type == BGP_MSG_KEEPALIVE && size != BGP_MSG_KEEPALIVE_MIN_SIZE)
2300 || (type == BGP_MSG_ROUTE_REFRESH_NEW && size < BGP_MSG_ROUTE_REFRESH_MIN_SIZE)
2301 || (type == BGP_MSG_ROUTE_REFRESH_OLD && size < BGP_MSG_ROUTE_REFRESH_MIN_SIZE)
2302 || (type == BGP_MSG_CAPABILITY && size < BGP_MSG_CAPABILITY_MIN_SIZE))
2303 {
2304 if (BGP_DEBUG (normal, NORMAL))
6b51474d 2305 plog_debug (peer->log,
718e3744 2306 "%s bad message length - %d for %s",
2307 peer->host, size,
2308 type == 128 ? "ROUTE-REFRESH" :
2309 bgp_type_str[(int) type]);
2310 bgp_notify_send_with_data (peer,
2311 BGP_NOTIFY_HEADER_ERR,
2312 BGP_NOTIFY_HEADER_BAD_MESLEN,
c9e52be3 2313 (u_char *) notify_data_length, 2);
718e3744 2314 goto done;
2315 }
2316
2317 /* Adjust size to message length. */
2318 peer->packet_size = size;
2319 }
2320
2321 ret = bgp_read_packet (peer);
2322 if (ret < 0)
2323 goto done;
2324
2325 /* Get size and type again. */
2326 size = stream_getw_from (peer->ibuf, BGP_MARKER_SIZE);
2327 type = stream_getc_from (peer->ibuf, BGP_MARKER_SIZE + 2);
2328
2329 /* BGP packet dump function. */
2330 bgp_dump_packet (peer, type, peer->ibuf);
2331
2332 size = (peer->packet_size - BGP_HEADER_SIZE);
2333
2334 /* Read rest of the packet and call each sort of packet routine */
2335 switch (type)
2336 {
2337 case BGP_MSG_OPEN:
2338 peer->open_in++;
f5ba3874 2339 bgp_open_receive (peer, size); /* XXX return value ignored! */
718e3744 2340 break;
2341 case BGP_MSG_UPDATE:
2342 peer->readtime = time(NULL); /* Last read timer reset */
2343 bgp_update_receive (peer, size);
2344 break;
2345 case BGP_MSG_NOTIFY:
2346 bgp_notify_receive (peer, size);
2347 break;
2348 case BGP_MSG_KEEPALIVE:
2349 peer->readtime = time(NULL); /* Last read timer reset */
2350 bgp_keepalive_receive (peer, size);
2351 break;
2352 case BGP_MSG_ROUTE_REFRESH_NEW:
2353 case BGP_MSG_ROUTE_REFRESH_OLD:
2354 peer->refresh_in++;
2355 bgp_route_refresh_receive (peer, size);
2356 break;
2357 case BGP_MSG_CAPABILITY:
2358 peer->dynamic_cap_in++;
2359 bgp_capability_receive (peer, size);
2360 break;
2361 }
2362
2363 /* Clear input buffer. */
2364 peer->packet_size = 0;
2365 if (peer->ibuf)
2366 stream_reset (peer->ibuf);
2367
2368 done:
2369 if (CHECK_FLAG (peer->sflags, PEER_STATUS_ACCEPT_PEER))
2370 {
2371 if (BGP_DEBUG (events, EVENTS))
6b51474d 2372 zlog_debug ("%s [Event] Accepting BGP peer delete", peer->host);
718e3744 2373 peer_delete (peer);
2374 }
2375 return 0;
2376}
FRRouting mirror