1 /* BGP attributes management routines.
2 * Copyright (C) 1996, 97, 98, 1999 Kunihiro Ishiguro
4 * This file is part of GNU Zebra.
6 * GNU Zebra is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the
8 * Free Software Foundation; either version 2, or (at your option) any
11 * GNU Zebra is distributed in the hope that it will be useful, but
12 * WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * General Public License for more details.
16 * You should have received a copy of the GNU General Public License along
17 * with this program; see the file COPYING; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
36 #include "bgpd/bgpd.h"
37 #include "bgpd/bgp_attr.h"
38 #include "bgpd/bgp_route.h"
39 #include "bgpd/bgp_aspath.h"
40 #include "bgpd/bgp_community.h"
41 #include "bgpd/bgp_debug.h"
42 #include "bgpd/bgp_errors.h"
43 #include "bgpd/bgp_label.h"
44 #include "bgpd/bgp_packet.h"
45 #include "bgpd/bgp_ecommunity.h"
46 #include "bgpd/bgp_lcommunity.h"
47 #include "bgpd/bgp_updgrp.h"
48 #include "bgpd/bgp_encap_types.h"
50 #include "bgpd/rfapi/bgp_rfapi_cfg.h"
51 #include "bgp_encap_types.h"
52 #include "bgp_vnc_types.h"
54 #include "bgp_encap_types.h"
56 #include "bgp_flowspec_private.h"
58 /* Attribute strings for logging. */
59 static const struct message attr_str
[] = {
60 {BGP_ATTR_ORIGIN
, "ORIGIN"},
61 {BGP_ATTR_AS_PATH
, "AS_PATH"},
62 {BGP_ATTR_NEXT_HOP
, "NEXT_HOP"},
63 {BGP_ATTR_MULTI_EXIT_DISC
, "MULTI_EXIT_DISC"},
64 {BGP_ATTR_LOCAL_PREF
, "LOCAL_PREF"},
65 {BGP_ATTR_ATOMIC_AGGREGATE
, "ATOMIC_AGGREGATE"},
66 {BGP_ATTR_AGGREGATOR
, "AGGREGATOR"},
67 {BGP_ATTR_COMMUNITIES
, "COMMUNITY"},
68 {BGP_ATTR_ORIGINATOR_ID
, "ORIGINATOR_ID"},
69 {BGP_ATTR_CLUSTER_LIST
, "CLUSTER_LIST"},
70 {BGP_ATTR_DPA
, "DPA"},
71 {BGP_ATTR_ADVERTISER
, "ADVERTISER"},
72 {BGP_ATTR_RCID_PATH
, "RCID_PATH"},
73 {BGP_ATTR_MP_REACH_NLRI
, "MP_REACH_NLRI"},
74 {BGP_ATTR_MP_UNREACH_NLRI
, "MP_UNREACH_NLRI"},
75 {BGP_ATTR_EXT_COMMUNITIES
, "EXT_COMMUNITIES"},
76 {BGP_ATTR_AS4_PATH
, "AS4_PATH"},
77 {BGP_ATTR_AS4_AGGREGATOR
, "AS4_AGGREGATOR"},
78 {BGP_ATTR_AS_PATHLIMIT
, "AS_PATHLIMIT"},
79 {BGP_ATTR_PMSI_TUNNEL
, "PMSI_TUNNEL_ATTRIBUTE"},
80 {BGP_ATTR_ENCAP
, "ENCAP"},
82 {BGP_ATTR_VNC
, "VNC"},
84 {BGP_ATTR_LARGE_COMMUNITIES
, "LARGE_COMMUNITY"},
85 {BGP_ATTR_PREFIX_SID
, "PREFIX_SID"},
88 static const struct message attr_flag_str
[] = {
89 {BGP_ATTR_FLAG_OPTIONAL
, "Optional"},
90 {BGP_ATTR_FLAG_TRANS
, "Transitive"},
91 {BGP_ATTR_FLAG_PARTIAL
, "Partial"},
92 /* bgp_attr_flags_diagnose() relies on this bit being last in
94 {BGP_ATTR_FLAG_EXTLEN
, "Extended Length"},
97 static struct hash
*cluster_hash
;
99 static void *cluster_hash_alloc(void *p
)
101 const struct cluster_list
*val
= (const struct cluster_list
*)p
;
102 struct cluster_list
*cluster
;
104 cluster
= XMALLOC(MTYPE_CLUSTER
, sizeof(struct cluster_list
));
105 cluster
->length
= val
->length
;
107 if (cluster
->length
) {
108 cluster
->list
= XMALLOC(MTYPE_CLUSTER_VAL
, val
->length
);
109 memcpy(cluster
->list
, val
->list
, val
->length
);
111 cluster
->list
= NULL
;
118 /* Cluster list related functions. */
119 static struct cluster_list
*cluster_parse(struct in_addr
*pnt
, int length
)
121 struct cluster_list tmp
;
122 struct cluster_list
*cluster
;
127 cluster
= hash_get(cluster_hash
, &tmp
, cluster_hash_alloc
);
132 int cluster_loop_check(struct cluster_list
*cluster
, struct in_addr originator
)
136 for (i
= 0; i
< cluster
->length
/ 4; i
++)
137 if (cluster
->list
[i
].s_addr
== originator
.s_addr
)
142 static unsigned int cluster_hash_key_make(void *p
)
144 const struct cluster_list
*cluster
= p
;
146 return jhash(cluster
->list
, cluster
->length
, 0);
149 static bool cluster_hash_cmp(const void *p1
, const void *p2
)
151 const struct cluster_list
*cluster1
= p1
;
152 const struct cluster_list
*cluster2
= p2
;
154 return (cluster1
->length
== cluster2
->length
155 && memcmp(cluster1
->list
, cluster2
->list
, cluster1
->length
)
159 static void cluster_free(struct cluster_list
*cluster
)
162 XFREE(MTYPE_CLUSTER_VAL
, cluster
->list
);
163 XFREE(MTYPE_CLUSTER
, cluster
);
166 static struct cluster_list
*cluster_intern(struct cluster_list
*cluster
)
168 struct cluster_list
*find
;
170 find
= hash_get(cluster_hash
, cluster
, cluster_hash_alloc
);
176 void cluster_unintern(struct cluster_list
*cluster
)
181 if (cluster
->refcnt
== 0) {
182 hash_release(cluster_hash
, cluster
);
183 cluster_free(cluster
);
187 static void cluster_init(void)
189 cluster_hash
= hash_create(cluster_hash_key_make
, cluster_hash_cmp
,
193 static void cluster_finish(void)
195 hash_clean(cluster_hash
, (void (*)(void *))cluster_free
);
196 hash_free(cluster_hash
);
200 static struct hash
*encap_hash
= NULL
;
202 static struct hash
*vnc_hash
= NULL
;
205 struct bgp_attr_encap_subtlv
*encap_tlv_dup(struct bgp_attr_encap_subtlv
*orig
)
207 struct bgp_attr_encap_subtlv
*new;
208 struct bgp_attr_encap_subtlv
*tail
;
209 struct bgp_attr_encap_subtlv
*p
;
211 for (p
= orig
, tail
= new = NULL
; p
; p
= p
->next
) {
212 int size
= sizeof(struct bgp_attr_encap_subtlv
) + p
->length
;
214 tail
->next
= XCALLOC(MTYPE_ENCAP_TLV
, size
);
217 tail
= new = XCALLOC(MTYPE_ENCAP_TLV
, size
);
220 memcpy(tail
, p
, size
);
227 static void encap_free(struct bgp_attr_encap_subtlv
*p
)
229 struct bgp_attr_encap_subtlv
*next
;
233 XFREE(MTYPE_ENCAP_TLV
, p
);
238 void bgp_attr_flush_encap(struct attr
*attr
)
243 if (attr
->encap_subtlvs
) {
244 encap_free(attr
->encap_subtlvs
);
245 attr
->encap_subtlvs
= NULL
;
248 if (attr
->vnc_subtlvs
) {
249 encap_free(attr
->vnc_subtlvs
);
250 attr
->vnc_subtlvs
= NULL
;
256 * Compare encap sub-tlv chains
261 * This algorithm could be made faster if needed
263 static int encap_same(const struct bgp_attr_encap_subtlv
*h1
,
264 const struct bgp_attr_encap_subtlv
*h2
)
266 const struct bgp_attr_encap_subtlv
*p
;
267 const struct bgp_attr_encap_subtlv
*q
;
271 if (h1
== NULL
|| h2
== NULL
)
274 for (p
= h1
; p
; p
= p
->next
) {
275 for (q
= h2
; q
; q
= q
->next
) {
276 if ((p
->type
== q
->type
) && (p
->length
== q
->length
)
277 && !memcmp(p
->value
, q
->value
, p
->length
)) {
286 for (p
= h2
; p
; p
= p
->next
) {
287 for (q
= h1
; q
; q
= q
->next
) {
288 if ((p
->type
== q
->type
) && (p
->length
== q
->length
)
289 && !memcmp(p
->value
, q
->value
, p
->length
)) {
301 static void *encap_hash_alloc(void *p
)
303 /* Encap structure is already allocated. */
314 static struct bgp_attr_encap_subtlv
*
315 encap_intern(struct bgp_attr_encap_subtlv
*encap
, encap_subtlv_type type
)
317 struct bgp_attr_encap_subtlv
*find
;
318 struct hash
*hash
= encap_hash
;
320 if (type
== VNC_SUBTLV_TYPE
)
324 find
= hash_get(hash
, encap
, encap_hash_alloc
);
332 static void encap_unintern(struct bgp_attr_encap_subtlv
**encapp
,
333 encap_subtlv_type type
)
335 struct bgp_attr_encap_subtlv
*encap
= *encapp
;
339 if (encap
->refcnt
== 0) {
340 struct hash
*hash
= encap_hash
;
342 if (type
== VNC_SUBTLV_TYPE
)
345 hash_release(hash
, encap
);
351 static unsigned int encap_hash_key_make(void *p
)
353 const struct bgp_attr_encap_subtlv
*encap
= p
;
355 return jhash(encap
->value
, encap
->length
, 0);
358 static bool encap_hash_cmp(const void *p1
, const void *p2
)
360 return encap_same((const struct bgp_attr_encap_subtlv
*)p1
,
361 (const struct bgp_attr_encap_subtlv
*)p2
);
364 static void encap_init(void)
366 encap_hash
= hash_create(encap_hash_key_make
, encap_hash_cmp
,
369 vnc_hash
= hash_create(encap_hash_key_make
, encap_hash_cmp
,
374 static void encap_finish(void)
376 hash_clean(encap_hash
, (void (*)(void *))encap_free
);
377 hash_free(encap_hash
);
380 hash_clean(vnc_hash
, (void (*)(void *))encap_free
);
386 static bool overlay_index_same(const struct attr
*a1
, const struct attr
*a2
)
394 return !memcmp(&(a1
->evpn_overlay
), &(a2
->evpn_overlay
),
395 sizeof(struct overlay_index
));
398 /* Unknown transit attribute. */
399 static struct hash
*transit_hash
;
401 static void transit_free(struct transit
*transit
)
404 XFREE(MTYPE_TRANSIT_VAL
, transit
->val
);
405 XFREE(MTYPE_TRANSIT
, transit
);
408 static void *transit_hash_alloc(void *p
)
410 /* Transit structure is already allocated. */
414 static struct transit
*transit_intern(struct transit
*transit
)
416 struct transit
*find
;
418 find
= hash_get(transit_hash
, transit
, transit_hash_alloc
);
420 transit_free(transit
);
426 void transit_unintern(struct transit
*transit
)
431 if (transit
->refcnt
== 0) {
432 hash_release(transit_hash
, transit
);
433 transit_free(transit
);
437 static unsigned int transit_hash_key_make(void *p
)
439 const struct transit
*transit
= p
;
441 return jhash(transit
->val
, transit
->length
, 0);
444 static bool transit_hash_cmp(const void *p1
, const void *p2
)
446 const struct transit
*transit1
= p1
;
447 const struct transit
*transit2
= p2
;
449 return (transit1
->length
== transit2
->length
450 && memcmp(transit1
->val
, transit2
->val
, transit1
->length
) == 0);
453 static void transit_init(void)
455 transit_hash
= hash_create(transit_hash_key_make
, transit_hash_cmp
,
459 static void transit_finish(void)
461 hash_clean(transit_hash
, (void (*)(void *))transit_free
);
462 hash_free(transit_hash
);
466 /* Attribute hash routines. */
467 static struct hash
*attrhash
;
469 /* Shallow copy of an attribute
470 * Though, not so shallow that it doesn't copy the contents
471 * of the attr_extra pointed to by 'extra'
473 void bgp_attr_dup(struct attr
*new, struct attr
*orig
)
478 unsigned long int attr_count(void)
480 return attrhash
->count
;
483 unsigned long int attr_unknown_count(void)
485 return transit_hash
->count
;
488 unsigned int attrhash_key_make(void *p
)
490 const struct attr
*attr
= (struct attr
*)p
;
492 #define MIX(val) key = jhash_1word(val, key)
493 #define MIX3(a, b, c) key = jhash_3words((a), (b), (c), key)
495 MIX3(attr
->origin
, attr
->nexthop
.s_addr
, attr
->med
);
496 MIX3(attr
->local_pref
, attr
->aggregator_as
,
497 attr
->aggregator_addr
.s_addr
);
498 MIX3(attr
->weight
, attr
->mp_nexthop_global_in
.s_addr
,
499 attr
->originator_id
.s_addr
);
500 MIX3(attr
->tag
, attr
->label
, attr
->label_index
);
503 MIX(aspath_key_make(attr
->aspath
));
505 MIX(community_hash_make(attr
->community
));
507 if (attr
->lcommunity
)
508 MIX(lcommunity_hash_make(attr
->lcommunity
));
509 if (attr
->ecommunity
)
510 MIX(ecommunity_hash_make(attr
->ecommunity
));
512 MIX(cluster_hash_key_make(attr
->cluster
));
514 MIX(transit_hash_key_make(attr
->transit
));
515 if (attr
->encap_subtlvs
)
516 MIX(encap_hash_key_make(attr
->encap_subtlvs
));
518 if (attr
->vnc_subtlvs
)
519 MIX(encap_hash_key_make(attr
->vnc_subtlvs
));
521 MIX(attr
->mp_nexthop_len
);
522 key
= jhash(attr
->mp_nexthop_global
.s6_addr
, IPV6_MAX_BYTELEN
, key
);
523 key
= jhash(attr
->mp_nexthop_local
.s6_addr
, IPV6_MAX_BYTELEN
, key
);
524 MIX(attr
->nh_ifindex
);
525 MIX(attr
->nh_lla_ifindex
);
530 bool attrhash_cmp(const void *p1
, const void *p2
)
532 const struct attr
*attr1
= p1
;
533 const struct attr
*attr2
= p2
;
535 if (attr1
->flag
== attr2
->flag
&& attr1
->origin
== attr2
->origin
536 && attr1
->nexthop
.s_addr
== attr2
->nexthop
.s_addr
537 && attr1
->aspath
== attr2
->aspath
538 && attr1
->community
== attr2
->community
&& attr1
->med
== attr2
->med
539 && attr1
->local_pref
== attr2
->local_pref
540 && attr1
->rmap_change_flags
== attr2
->rmap_change_flags
) {
541 if (attr1
->aggregator_as
== attr2
->aggregator_as
542 && attr1
->aggregator_addr
.s_addr
543 == attr2
->aggregator_addr
.s_addr
544 && attr1
->weight
== attr2
->weight
545 && attr1
->tag
== attr2
->tag
546 && attr1
->label_index
== attr2
->label_index
547 && attr1
->mp_nexthop_len
== attr2
->mp_nexthop_len
548 && attr1
->ecommunity
== attr2
->ecommunity
549 && attr1
->lcommunity
== attr2
->lcommunity
550 && attr1
->cluster
== attr2
->cluster
551 && attr1
->transit
== attr2
->transit
552 && (attr1
->encap_tunneltype
== attr2
->encap_tunneltype
)
553 && encap_same(attr1
->encap_subtlvs
, attr2
->encap_subtlvs
)
555 && encap_same(attr1
->vnc_subtlvs
, attr2
->vnc_subtlvs
)
557 && IPV6_ADDR_SAME(&attr1
->mp_nexthop_global
,
558 &attr2
->mp_nexthop_global
)
559 && IPV6_ADDR_SAME(&attr1
->mp_nexthop_local
,
560 &attr2
->mp_nexthop_local
)
561 && IPV4_ADDR_SAME(&attr1
->mp_nexthop_global_in
,
562 &attr2
->mp_nexthop_global_in
)
563 && IPV4_ADDR_SAME(&attr1
->originator_id
,
564 &attr2
->originator_id
)
565 && overlay_index_same(attr1
, attr2
)
566 && attr1
->nh_ifindex
== attr2
->nh_ifindex
567 && attr1
->nh_lla_ifindex
== attr2
->nh_lla_ifindex
)
574 static void attrhash_init(void)
577 hash_create(attrhash_key_make
, attrhash_cmp
, "BGP Attributes");
581 * special for hash_clean below
583 static void attr_vfree(void *attr
)
585 XFREE(MTYPE_ATTR
, attr
);
588 static void attrhash_finish(void)
590 hash_clean(attrhash
, attr_vfree
);
595 static void attr_show_all_iterator(struct hash_backet
*backet
, struct vty
*vty
)
597 struct attr
*attr
= backet
->data
;
599 vty_out(vty
, "attr[%ld] nexthop %s\n", attr
->refcnt
,
600 inet_ntoa(attr
->nexthop
));
601 vty_out(vty
, "\tflags: %" PRIu64
" med: %u local_pref: %u origin: %u weight: %u label: %u\n",
602 attr
->flag
, attr
->med
, attr
->local_pref
, attr
->origin
,
603 attr
->weight
, attr
->label
);
606 void attr_show_all(struct vty
*vty
)
608 hash_iterate(attrhash
, (void (*)(struct hash_backet
*,
609 void *))attr_show_all_iterator
,
613 static void *bgp_attr_hash_alloc(void *p
)
615 struct attr
*val
= (struct attr
*)p
;
618 attr
= XMALLOC(MTYPE_ATTR
, sizeof(struct attr
));
620 if (val
->encap_subtlvs
) {
621 val
->encap_subtlvs
= NULL
;
624 if (val
->vnc_subtlvs
) {
625 val
->vnc_subtlvs
= NULL
;
632 /* Internet argument attribute. */
633 struct attr
*bgp_attr_intern(struct attr
*attr
)
637 /* Intern referenced strucutre. */
639 if (!attr
->aspath
->refcnt
)
640 attr
->aspath
= aspath_intern(attr
->aspath
);
642 attr
->aspath
->refcnt
++;
644 if (attr
->community
) {
645 if (!attr
->community
->refcnt
)
646 attr
->community
= community_intern(attr
->community
);
648 attr
->community
->refcnt
++;
651 if (attr
->ecommunity
) {
652 if (!attr
->ecommunity
->refcnt
)
653 attr
->ecommunity
= ecommunity_intern(attr
->ecommunity
);
655 attr
->ecommunity
->refcnt
++;
657 if (attr
->lcommunity
) {
658 if (!attr
->lcommunity
->refcnt
)
659 attr
->lcommunity
= lcommunity_intern(attr
->lcommunity
);
661 attr
->lcommunity
->refcnt
++;
664 if (!attr
->cluster
->refcnt
)
665 attr
->cluster
= cluster_intern(attr
->cluster
);
667 attr
->cluster
->refcnt
++;
670 if (!attr
->transit
->refcnt
)
671 attr
->transit
= transit_intern(attr
->transit
);
673 attr
->transit
->refcnt
++;
675 if (attr
->encap_subtlvs
) {
676 if (!attr
->encap_subtlvs
->refcnt
)
677 attr
->encap_subtlvs
= encap_intern(attr
->encap_subtlvs
,
680 attr
->encap_subtlvs
->refcnt
++;
683 if (attr
->vnc_subtlvs
) {
684 if (!attr
->vnc_subtlvs
->refcnt
)
685 attr
->vnc_subtlvs
= encap_intern(attr
->vnc_subtlvs
,
688 attr
->vnc_subtlvs
->refcnt
++;
692 /* At this point, attr only contains intern'd pointers. that means
693 * if we find it in attrhash, it has all the same pointers and we
694 * correctly updated the refcounts on these.
695 * If we don't find it, we need to allocate a one because in all
696 * cases this returns a new reference to a hashed attr, but the input
698 find
= (struct attr
*)hash_get(attrhash
, attr
, bgp_attr_hash_alloc
);
704 /* Make network statement's attribute. */
705 struct attr
*bgp_attr_default_set(struct attr
*attr
, uint8_t origin
)
707 memset(attr
, 0, sizeof(struct attr
));
709 attr
->origin
= origin
;
710 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
711 attr
->aspath
= aspath_empty();
712 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
713 attr
->weight
= BGP_ATTR_DEFAULT_WEIGHT
;
715 attr
->label_index
= BGP_INVALID_LABEL_INDEX
;
716 attr
->label
= MPLS_INVALID_LABEL
;
717 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
718 attr
->mp_nexthop_len
= IPV6_MAX_BYTELEN
;
723 /* Create the attributes for an aggregate */
724 struct attr
*bgp_attr_aggregate_intern(struct bgp
*bgp
, uint8_t origin
,
725 struct aspath
*aspath
,
726 struct community
*community
,
727 struct ecommunity
*ecommunity
,
728 struct lcommunity
*lcommunity
,
729 int as_set
, uint8_t atomic_aggregate
)
734 memset(&attr
, 0, sizeof(struct attr
));
736 /* Origin attribute. */
737 attr
.origin
= origin
;
738 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
740 /* AS path attribute. */
742 attr
.aspath
= aspath_intern(aspath
);
744 attr
.aspath
= aspath_empty();
745 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
747 /* Next hop attribute. */
748 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
751 uint32_t gshut
= COMMUNITY_GSHUT
;
753 /* If we are not shutting down ourselves and we are
754 * aggregating a route that contains the GSHUT community we
755 * need to remove that community when creating the aggregate */
756 if (!bgp_flag_check(bgp
, BGP_FLAG_GRACEFUL_SHUTDOWN
)
757 && community_include(community
, gshut
)) {
758 community_del_val(community
, &gshut
);
761 attr
.community
= community
;
762 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
);
766 attr
.ecommunity
= ecommunity
;
767 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
);
771 attr
.lcommunity
= lcommunity
;
772 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
);
775 if (bgp_flag_check(bgp
, BGP_FLAG_GRACEFUL_SHUTDOWN
)) {
776 bgp_attr_add_gshut_community(&attr
);
779 attr
.label_index
= BGP_INVALID_LABEL_INDEX
;
780 attr
.label
= MPLS_INVALID_LABEL
;
781 attr
.weight
= BGP_ATTR_DEFAULT_WEIGHT
;
782 attr
.mp_nexthop_len
= IPV6_MAX_BYTELEN
;
783 if (!as_set
|| atomic_aggregate
)
784 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
);
785 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
);
786 if (CHECK_FLAG(bgp
->config
, BGP_CONFIG_CONFEDERATION
))
787 attr
.aggregator_as
= bgp
->confed_id
;
789 attr
.aggregator_as
= bgp
->as
;
790 attr
.aggregator_addr
= bgp
->router_id
;
791 attr
.label_index
= BGP_INVALID_LABEL_INDEX
;
792 attr
.label
= MPLS_INVALID_LABEL
;
794 new = bgp_attr_intern(&attr
);
796 aspath_unintern(&new->aspath
);
800 /* Unintern just the sub-components of the attr, but not the attr */
801 void bgp_attr_unintern_sub(struct attr
*attr
)
803 /* aspath refcount shoud be decrement. */
805 aspath_unintern(&attr
->aspath
);
806 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
));
809 community_unintern(&attr
->community
);
810 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
));
812 if (attr
->ecommunity
)
813 ecommunity_unintern(&attr
->ecommunity
);
814 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
));
816 if (attr
->lcommunity
)
817 lcommunity_unintern(&attr
->lcommunity
);
818 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
));
821 cluster_unintern(attr
->cluster
);
822 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST
));
825 transit_unintern(attr
->transit
);
827 if (attr
->encap_subtlvs
)
828 encap_unintern(&attr
->encap_subtlvs
, ENCAP_SUBTLV_TYPE
);
831 if (attr
->vnc_subtlvs
)
832 encap_unintern(&attr
->vnc_subtlvs
, VNC_SUBTLV_TYPE
);
837 * We have some show commands that let you experimentally
838 * apply a route-map. When we apply the route-map
839 * we are reseting values but not saving them for
840 * posterity via intern'ing( because route-maps don't
841 * do that) but at this point in time we need
842 * to compare the new attr to the old and if the
843 * routemap has changed it we need to, as Snoop Dog says,
844 * Drop it like it's hot
846 void bgp_attr_undup(struct attr
*new, struct attr
*old
)
848 if (new->aspath
!= old
->aspath
)
849 aspath_free(new->aspath
);
851 if (new->community
!= old
->community
)
852 community_free(&new->community
);
854 if (new->ecommunity
!= old
->ecommunity
)
855 ecommunity_free(&new->ecommunity
);
857 if (new->lcommunity
!= old
->lcommunity
)
858 lcommunity_free(&new->lcommunity
);
861 /* Free bgp attribute and aspath. */
862 void bgp_attr_unintern(struct attr
**pattr
)
864 struct attr
*attr
= *pattr
;
868 /* Decrement attribute reference. */
873 /* If reference becomes zero then free attribute object. */
874 if (attr
->refcnt
== 0) {
875 ret
= hash_release(attrhash
, attr
);
877 XFREE(MTYPE_ATTR
, attr
);
881 bgp_attr_unintern_sub(&tmp
);
884 void bgp_attr_flush(struct attr
*attr
)
886 if (attr
->aspath
&& !attr
->aspath
->refcnt
) {
887 aspath_free(attr
->aspath
);
890 if (attr
->community
&& !attr
->community
->refcnt
)
891 community_free(&attr
->community
);
892 if (attr
->ecommunity
&& !attr
->ecommunity
->refcnt
)
893 ecommunity_free(&attr
->ecommunity
);
894 if (attr
->lcommunity
&& !attr
->lcommunity
->refcnt
)
895 lcommunity_free(&attr
->lcommunity
);
896 if (attr
->cluster
&& !attr
->cluster
->refcnt
) {
897 cluster_free(attr
->cluster
);
898 attr
->cluster
= NULL
;
900 if (attr
->transit
&& !attr
->transit
->refcnt
) {
901 transit_free(attr
->transit
);
902 attr
->transit
= NULL
;
904 if (attr
->encap_subtlvs
&& !attr
->encap_subtlvs
->refcnt
) {
905 encap_free(attr
->encap_subtlvs
);
906 attr
->encap_subtlvs
= NULL
;
909 if (attr
->vnc_subtlvs
&& !attr
->vnc_subtlvs
->refcnt
) {
910 encap_free(attr
->vnc_subtlvs
);
911 attr
->vnc_subtlvs
= NULL
;
916 /* Implement draft-scudder-idr-optional-transitive behaviour and
917 * avoid resetting sessions for malformed attributes which are
918 * are partial/optional and hence where the error likely was not
919 * introduced by the sending neighbour.
921 static bgp_attr_parse_ret_t
922 bgp_attr_malformed(struct bgp_attr_parser_args
*args
, uint8_t subcode
,
925 struct peer
*const peer
= args
->peer
;
926 const uint8_t flags
= args
->flags
;
927 /* startp and length must be special-cased, as whether or not to
928 * send the attribute data with the NOTIFY depends on the error,
929 * the caller therefore signals this with the seperate length argument
931 uint8_t *notify_datap
= (length
> 0 ? args
->startp
: NULL
);
933 /* Only relax error handling for eBGP peers */
934 if (peer
->sort
!= BGP_PEER_EBGP
) {
935 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
, subcode
,
936 notify_datap
, length
);
937 return BGP_ATTR_PARSE_ERROR
;
940 /* Adjust the stream getp to the end of the attribute, in case we can
941 * still proceed but the caller hasn't read all the attribute.
943 stream_set_getp(BGP_INPUT(peer
),
944 (args
->startp
- STREAM_DATA(BGP_INPUT(peer
)))
947 switch (args
->type
) {
948 /* where an attribute is relatively inconsequential, e.g. it does not
949 * affect route selection, and can be safely ignored, then any such
950 * attributes which are malformed should just be ignored and the route
951 * processed as normal.
953 case BGP_ATTR_AS4_AGGREGATOR
:
954 case BGP_ATTR_AGGREGATOR
:
955 case BGP_ATTR_ATOMIC_AGGREGATE
:
956 return BGP_ATTR_PARSE_PROCEED
;
958 /* Core attributes, particularly ones which may influence route
959 * selection, should always cause session resets
961 case BGP_ATTR_ORIGIN
:
962 case BGP_ATTR_AS_PATH
:
963 case BGP_ATTR_NEXT_HOP
:
964 case BGP_ATTR_MULTI_EXIT_DISC
:
965 case BGP_ATTR_LOCAL_PREF
:
966 case BGP_ATTR_COMMUNITIES
:
967 case BGP_ATTR_ORIGINATOR_ID
:
968 case BGP_ATTR_CLUSTER_LIST
:
969 case BGP_ATTR_MP_REACH_NLRI
:
970 case BGP_ATTR_MP_UNREACH_NLRI
:
971 case BGP_ATTR_EXT_COMMUNITIES
:
972 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
, subcode
,
973 notify_datap
, length
);
974 return BGP_ATTR_PARSE_ERROR
;
977 /* Partial optional attributes that are malformed should not cause
978 * the whole session to be reset. Instead treat it as a withdrawal
979 * of the routes, if possible.
981 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
)
982 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
983 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_PARTIAL
))
984 return BGP_ATTR_PARSE_WITHDRAW
;
986 /* default to reset */
987 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
990 /* Find out what is wrong with the path attribute flag bits and log the error.
991 "Flag bits" here stand for Optional, Transitive and Partial, but not for
992 Extended Length. Checking O/T/P bits at once implies, that the attribute
993 being diagnosed is defined by RFC as either a "well-known" or an "optional,
994 non-transitive" attribute. */
996 bgp_attr_flags_diagnose(struct bgp_attr_parser_args
*args
,
997 uint8_t desired_flags
/* how RFC says it must be */
1000 uint8_t seen
= 0, i
;
1001 uint8_t real_flags
= args
->flags
;
1002 const uint8_t attr_code
= args
->type
;
1004 desired_flags
&= ~BGP_ATTR_FLAG_EXTLEN
;
1005 real_flags
&= ~BGP_ATTR_FLAG_EXTLEN
;
1006 for (i
= 0; i
<= 2; i
++) /* O,T,P, but not E */
1007 if (CHECK_FLAG(desired_flags
, attr_flag_str
[i
].key
)
1008 != CHECK_FLAG(real_flags
, attr_flag_str
[i
].key
)) {
1009 flog_err(EC_BGP_ATTR_FLAG
,
1010 "%s attribute must%s be flagged as \"%s\"",
1011 lookup_msg(attr_str
, attr_code
, NULL
),
1012 CHECK_FLAG(desired_flags
, attr_flag_str
[i
].key
)
1015 attr_flag_str
[i
].str
);
1020 "Strange, %s called for attr %s, but no problem found with flags"
1021 " (real flags 0x%x, desired 0x%x)",
1022 __func__
, lookup_msg(attr_str
, attr_code
, NULL
),
1023 real_flags
, desired_flags
);
1027 /* Required flags for attributes. EXTLEN will be masked off when testing,
1028 * as will PARTIAL for optional+transitive attributes.
1030 const uint8_t attr_flags_values
[] = {
1031 [BGP_ATTR_ORIGIN
] = BGP_ATTR_FLAG_TRANS
,
1032 [BGP_ATTR_AS_PATH
] = BGP_ATTR_FLAG_TRANS
,
1033 [BGP_ATTR_NEXT_HOP
] = BGP_ATTR_FLAG_TRANS
,
1034 [BGP_ATTR_MULTI_EXIT_DISC
] = BGP_ATTR_FLAG_OPTIONAL
,
1035 [BGP_ATTR_LOCAL_PREF
] = BGP_ATTR_FLAG_TRANS
,
1036 [BGP_ATTR_ATOMIC_AGGREGATE
] = BGP_ATTR_FLAG_TRANS
,
1037 [BGP_ATTR_AGGREGATOR
] = BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
,
1038 [BGP_ATTR_COMMUNITIES
] = BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
,
1039 [BGP_ATTR_ORIGINATOR_ID
] = BGP_ATTR_FLAG_OPTIONAL
,
1040 [BGP_ATTR_CLUSTER_LIST
] = BGP_ATTR_FLAG_OPTIONAL
,
1041 [BGP_ATTR_MP_REACH_NLRI
] = BGP_ATTR_FLAG_OPTIONAL
,
1042 [BGP_ATTR_MP_UNREACH_NLRI
] = BGP_ATTR_FLAG_OPTIONAL
,
1043 [BGP_ATTR_EXT_COMMUNITIES
] =
1044 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1045 [BGP_ATTR_AS4_PATH
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1046 [BGP_ATTR_AS4_AGGREGATOR
] =
1047 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1048 [BGP_ATTR_PMSI_TUNNEL
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1049 [BGP_ATTR_LARGE_COMMUNITIES
] =
1050 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1051 [BGP_ATTR_PREFIX_SID
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1053 static const size_t attr_flags_values_max
= array_size(attr_flags_values
) - 1;
1055 static int bgp_attr_flag_invalid(struct bgp_attr_parser_args
*args
)
1057 uint8_t mask
= BGP_ATTR_FLAG_EXTLEN
;
1058 const uint8_t flags
= args
->flags
;
1059 const uint8_t attr_code
= args
->type
;
1061 /* there may be attributes we don't know about */
1062 if (attr_code
> attr_flags_values_max
)
1064 if (attr_flags_values
[attr_code
] == 0)
1067 /* RFC4271, "For well-known attributes, the Transitive bit MUST be set
1071 if (!CHECK_FLAG(BGP_ATTR_FLAG_OPTIONAL
, flags
)
1072 && !CHECK_FLAG(BGP_ATTR_FLAG_TRANS
, flags
)) {
1075 "%s well-known attributes must have transitive flag set (%x)",
1076 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1080 /* "For well-known attributes and for optional non-transitive
1082 * the Partial bit MUST be set to 0."
1084 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_PARTIAL
)) {
1085 if (!CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)) {
1086 flog_err(EC_BGP_ATTR_FLAG
,
1087 "%s well-known attribute "
1088 "must NOT have the partial flag set (%x)",
1089 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1092 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
1093 && !CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
)) {
1094 flog_err(EC_BGP_ATTR_FLAG
,
1095 "%s optional + transitive attribute "
1096 "must NOT have the partial flag set (%x)",
1097 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1102 /* Optional transitive attributes may go through speakers that don't
1103 * reocgnise them and set the Partial bit.
1105 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
1106 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
))
1107 SET_FLAG(mask
, BGP_ATTR_FLAG_PARTIAL
);
1109 if ((flags
& ~mask
) == attr_flags_values
[attr_code
])
1112 bgp_attr_flags_diagnose(args
, attr_flags_values
[attr_code
]);
1116 /* Get origin attribute of the update message. */
1117 static bgp_attr_parse_ret_t
bgp_attr_origin(struct bgp_attr_parser_args
*args
)
1119 struct peer
*const peer
= args
->peer
;
1120 struct attr
*const attr
= args
->attr
;
1121 const bgp_size_t length
= args
->length
;
1123 /* If any recognized attribute has Attribute Length that conflicts
1124 with the expected length (based on the attribute type code), then
1125 the Error Subcode is set to Attribute Length Error. The Data
1126 field contains the erroneous attribute (type, length and
1129 flog_err(EC_BGP_ATTR_LEN
,
1130 "Origin attribute length is not one %d", length
);
1131 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1135 /* Fetch origin attribute. */
1136 attr
->origin
= stream_getc(BGP_INPUT(peer
));
1138 /* If the ORIGIN attribute has an undefined value, then the Error
1139 Subcode is set to Invalid Origin Attribute. The Data field
1140 contains the unrecognized attribute (type, length and value). */
1141 if ((attr
->origin
!= BGP_ORIGIN_IGP
) && (attr
->origin
!= BGP_ORIGIN_EGP
)
1142 && (attr
->origin
!= BGP_ORIGIN_INCOMPLETE
)) {
1143 flog_err(EC_BGP_ATTR_ORIGIN
,
1144 "Origin attribute value is invalid %d", attr
->origin
);
1145 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_INVAL_ORIGIN
,
1149 /* Set oring attribute flag. */
1150 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
1155 /* Parse AS path information. This function is wrapper of
1157 static int bgp_attr_aspath(struct bgp_attr_parser_args
*args
)
1159 struct attr
*const attr
= args
->attr
;
1160 struct peer
*const peer
= args
->peer
;
1161 const bgp_size_t length
= args
->length
;
1164 * peer with AS4 => will get 4Byte ASnums
1165 * otherwise, will get 16 Bit
1167 attr
->aspath
= aspath_parse(peer
->curr
, length
,
1168 CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
));
1170 /* In case of IBGP, length will be zero. */
1171 if (!attr
->aspath
) {
1172 flog_err(EC_BGP_ATTR_MAL_AS_PATH
,
1173 "Malformed AS path from %s, length is %d", peer
->host
,
1175 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_MAL_AS_PATH
,
1179 /* Set aspath attribute flag. */
1180 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
1182 return BGP_ATTR_PARSE_PROCEED
;
1185 static bgp_attr_parse_ret_t
bgp_attr_aspath_check(struct peer
*const peer
,
1186 struct attr
*const attr
)
1188 /* These checks were part of bgp_attr_aspath, but with
1189 * as4 we should to check aspath things when
1190 * aspath synthesizing with as4_path has already taken place.
1191 * Otherwise we check ASPATH and use the synthesized thing, and that is
1193 * So do the checks later, i.e. here
1195 struct aspath
*aspath
;
1197 /* Confederation sanity check. */
1198 if ((peer
->sort
== BGP_PEER_CONFED
1199 && !aspath_left_confed_check(attr
->aspath
))
1200 || (peer
->sort
== BGP_PEER_EBGP
1201 && aspath_confed_check(attr
->aspath
))) {
1202 flog_err(EC_BGP_ATTR_MAL_AS_PATH
, "Malformed AS path from %s",
1204 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
1205 BGP_NOTIFY_UPDATE_MAL_AS_PATH
);
1206 return BGP_ATTR_PARSE_ERROR
;
1209 /* First AS check for EBGP. */
1210 if (CHECK_FLAG(peer
->flags
, PEER_FLAG_ENFORCE_FIRST_AS
)) {
1211 if (peer
->sort
== BGP_PEER_EBGP
1212 && !aspath_firstas_check(attr
->aspath
, peer
->as
)) {
1213 flog_err(EC_BGP_ATTR_FIRST_AS
,
1214 "%s incorrect first AS (must be %u)",
1215 peer
->host
, peer
->as
);
1216 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
1217 BGP_NOTIFY_UPDATE_MAL_AS_PATH
);
1218 return BGP_ATTR_PARSE_ERROR
;
1222 /* local-as prepend */
1223 if (peer
->change_local_as
1224 && !CHECK_FLAG(peer
->flags
, PEER_FLAG_LOCAL_AS_NO_PREPEND
)) {
1225 aspath
= aspath_dup(attr
->aspath
);
1226 aspath
= aspath_add_seq(aspath
, peer
->change_local_as
);
1227 aspath_unintern(&attr
->aspath
);
1228 attr
->aspath
= aspath_intern(aspath
);
1231 return BGP_ATTR_PARSE_PROCEED
;
1234 /* Parse AS4 path information. This function is another wrapper of
1236 static int bgp_attr_as4_path(struct bgp_attr_parser_args
*args
,
1237 struct aspath
**as4_path
)
1239 struct peer
*const peer
= args
->peer
;
1240 struct attr
*const attr
= args
->attr
;
1241 const bgp_size_t length
= args
->length
;
1243 *as4_path
= aspath_parse(peer
->curr
, length
, 1);
1245 /* In case of IBGP, length will be zero. */
1247 flog_err(EC_BGP_ATTR_MAL_AS_PATH
,
1248 "Malformed AS4 path from %s, length is %d", peer
->host
,
1250 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_MAL_AS_PATH
,
1254 /* Set aspath attribute flag. */
1255 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
);
1257 return BGP_ATTR_PARSE_PROCEED
;
1260 /* Nexthop attribute. */
1261 static bgp_attr_parse_ret_t
bgp_attr_nexthop(struct bgp_attr_parser_args
*args
)
1263 struct peer
*const peer
= args
->peer
;
1264 struct attr
*const attr
= args
->attr
;
1265 const bgp_size_t length
= args
->length
;
1267 in_addr_t nexthop_h
, nexthop_n
;
1269 /* Check nexthop attribute length. */
1271 flog_err(EC_BGP_ATTR_LEN
,
1272 "Nexthop attribute length isn't four [%d]", length
);
1274 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1278 /* According to section 6.3 of RFC4271, syntactically incorrect NEXT_HOP
1279 attribute must result in a NOTIFICATION message (this is implemented
1281 At the same time, semantically incorrect NEXT_HOP is more likely to
1283 logged locally (this is implemented somewhere else). The UPDATE
1285 gets ignored in any of these cases. */
1286 nexthop_n
= stream_get_ipv4(peer
->curr
);
1287 nexthop_h
= ntohl(nexthop_n
);
1288 if ((IPV4_NET0(nexthop_h
) || IPV4_NET127(nexthop_h
)
1289 || IPV4_CLASS_DE(nexthop_h
))
1292 ALLOW_MARTIANS
)) /* loopbacks may be used in testing */
1294 char buf
[INET_ADDRSTRLEN
];
1295 inet_ntop(AF_INET
, &nexthop_n
, buf
, INET_ADDRSTRLEN
);
1296 flog_err(EC_BGP_ATTR_MARTIAN_NH
, "Martian nexthop %s", buf
);
1297 return bgp_attr_malformed(
1298 args
, BGP_NOTIFY_UPDATE_INVAL_NEXT_HOP
, args
->total
);
1301 attr
->nexthop
.s_addr
= nexthop_n
;
1302 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
1304 return BGP_ATTR_PARSE_PROCEED
;
1307 /* MED atrribute. */
1308 static bgp_attr_parse_ret_t
bgp_attr_med(struct bgp_attr_parser_args
*args
)
1310 struct peer
*const peer
= args
->peer
;
1311 struct attr
*const attr
= args
->attr
;
1312 const bgp_size_t length
= args
->length
;
1316 flog_err(EC_BGP_ATTR_LEN
,
1317 "MED attribute length isn't four [%d]", length
);
1319 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1323 attr
->med
= stream_getl(peer
->curr
);
1325 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
);
1327 return BGP_ATTR_PARSE_PROCEED
;
1330 /* Local preference attribute. */
1331 static bgp_attr_parse_ret_t
1332 bgp_attr_local_pref(struct bgp_attr_parser_args
*args
)
1334 struct peer
*const peer
= args
->peer
;
1335 struct attr
*const attr
= args
->attr
;
1336 const bgp_size_t length
= args
->length
;
1340 flog_err(EC_BGP_ATTR_LEN
,
1341 "LOCAL_PREF attribute length isn't 4 [%u]", length
);
1342 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1346 /* If it is contained in an UPDATE message that is received from an
1347 external peer, then this attribute MUST be ignored by the
1348 receiving speaker. */
1349 if (peer
->sort
== BGP_PEER_EBGP
) {
1350 stream_forward_getp(peer
->curr
, length
);
1351 return BGP_ATTR_PARSE_PROCEED
;
1354 attr
->local_pref
= stream_getl(peer
->curr
);
1356 /* Set the local-pref flag. */
1357 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
);
1359 return BGP_ATTR_PARSE_PROCEED
;
1362 /* Atomic aggregate. */
1363 static int bgp_attr_atomic(struct bgp_attr_parser_args
*args
)
1365 struct attr
*const attr
= args
->attr
;
1366 const bgp_size_t length
= args
->length
;
1370 flog_err(EC_BGP_ATTR_LEN
,
1371 "ATOMIC_AGGREGATE attribute length isn't 0 [%u]",
1373 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1377 /* Set atomic aggregate flag. */
1378 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
);
1380 return BGP_ATTR_PARSE_PROCEED
;
1383 /* Aggregator attribute */
1384 static int bgp_attr_aggregator(struct bgp_attr_parser_args
*args
)
1386 struct peer
*const peer
= args
->peer
;
1387 struct attr
*const attr
= args
->attr
;
1388 const bgp_size_t length
= args
->length
;
1392 /* peer with AS4 will send 4 Byte AS, peer without will send 2 Byte */
1393 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
))
1396 if (length
!= wantedlen
) {
1397 flog_err(EC_BGP_ATTR_LEN
,
1398 "AGGREGATOR attribute length isn't %u [%u]", wantedlen
,
1400 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1404 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
))
1405 attr
->aggregator_as
= stream_getl(peer
->curr
);
1407 attr
->aggregator_as
= stream_getw(peer
->curr
);
1408 attr
->aggregator_addr
.s_addr
= stream_get_ipv4(peer
->curr
);
1410 /* Set atomic aggregate flag. */
1411 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
);
1413 return BGP_ATTR_PARSE_PROCEED
;
1416 /* New Aggregator attribute */
1417 static bgp_attr_parse_ret_t
1418 bgp_attr_as4_aggregator(struct bgp_attr_parser_args
*args
,
1419 as_t
*as4_aggregator_as
,
1420 struct in_addr
*as4_aggregator_addr
)
1422 struct peer
*const peer
= args
->peer
;
1423 struct attr
*const attr
= args
->attr
;
1424 const bgp_size_t length
= args
->length
;
1427 flog_err(EC_BGP_ATTR_LEN
, "New Aggregator length is not 8 [%d]",
1429 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1433 *as4_aggregator_as
= stream_getl(peer
->curr
);
1434 as4_aggregator_addr
->s_addr
= stream_get_ipv4(peer
->curr
);
1436 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
);
1438 return BGP_ATTR_PARSE_PROCEED
;
1441 /* Munge Aggregator and New-Aggregator, AS_PATH and NEW_AS_PATH.
1443 static bgp_attr_parse_ret_t
1444 bgp_attr_munge_as4_attrs(struct peer
*const peer
, struct attr
*const attr
,
1445 struct aspath
*as4_path
, as_t as4_aggregator
,
1446 struct in_addr
*as4_aggregator_addr
)
1448 int ignore_as4_path
= 0;
1449 struct aspath
*newpath
;
1451 if (!attr
->aspath
) {
1452 /* NULL aspath shouldn't be possible as bgp_attr_parse should
1454 * checked that all well-known, mandatory attributes were
1457 * Can only be a problem with peer itself - hard error
1459 return BGP_ATTR_PARSE_ERROR
;
1462 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
)) {
1463 /* peer can do AS4, so we ignore AS4_PATH and AS4_AGGREGATOR
1465 * It is worth a warning though, because the peer really
1466 * should not send them
1468 if (BGP_DEBUG(as4
, AS4
)) {
1469 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
)))
1470 zlog_debug("[AS4] %s %s AS4_PATH", peer
->host
,
1471 "AS4 capable peer, yet it sent");
1474 & (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
)))
1475 zlog_debug("[AS4] %s %s AS4_AGGREGATOR",
1477 "AS4 capable peer, yet it sent");
1480 return BGP_ATTR_PARSE_PROCEED
;
1483 /* We have a asn16 peer. First, look for AS4_AGGREGATOR
1484 * because that may override AS4_PATH
1486 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
))) {
1487 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
))) {
1489 * if the as_number in aggregator is not AS_TRANS,
1490 * then AS4_AGGREGATOR and AS4_PATH shall be ignored
1491 * and the Aggregator shall be taken as
1492 * info on the aggregating node, and the AS_PATH
1493 * shall be taken as the AS_PATH
1495 * the Aggregator shall be ignored and the
1496 * AS4_AGGREGATOR shall be taken as the
1497 * Aggregating node and the AS_PATH is to be
1498 * constructed "as in all other cases"
1500 if (attr
->aggregator_as
!= BGP_AS_TRANS
) {
1502 if (BGP_DEBUG(as4
, AS4
))
1504 "[AS4] %s BGP not AS4 capable peer"
1505 " send AGGREGATOR != AS_TRANS and"
1506 " AS4_AGGREGATOR, so ignore"
1507 " AS4_AGGREGATOR and AS4_PATH",
1509 ignore_as4_path
= 1;
1511 /* "New_aggregator shall be taken as aggregator"
1513 attr
->aggregator_as
= as4_aggregator
;
1514 attr
->aggregator_addr
.s_addr
=
1515 as4_aggregator_addr
->s_addr
;
1518 /* We received a AS4_AGGREGATOR but no AGGREGATOR.
1519 * That is bogus - but reading the conditions
1520 * we have to handle AS4_AGGREGATOR as if it were
1521 * AGGREGATOR in that case
1523 if (BGP_DEBUG(as4
, AS4
))
1525 "[AS4] %s BGP not AS4 capable peer send"
1526 " AS4_AGGREGATOR but no AGGREGATOR, will take"
1527 " it as if AGGREGATOR with AS_TRANS had been there",
1529 attr
->aggregator_as
= as4_aggregator
;
1530 /* sweep it under the carpet and simulate a "good"
1532 attr
->flag
|= (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
));
1536 /* need to reconcile NEW_AS_PATH and AS_PATH */
1537 if (!ignore_as4_path
1538 && (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
)))) {
1539 newpath
= aspath_reconcile_as4(attr
->aspath
, as4_path
);
1541 return BGP_ATTR_PARSE_ERROR
;
1543 aspath_unintern(&attr
->aspath
);
1544 attr
->aspath
= aspath_intern(newpath
);
1546 return BGP_ATTR_PARSE_PROCEED
;
1549 /* Community attribute. */
1550 static bgp_attr_parse_ret_t
1551 bgp_attr_community(struct bgp_attr_parser_args
*args
)
1553 struct peer
*const peer
= args
->peer
;
1554 struct attr
*const attr
= args
->attr
;
1555 const bgp_size_t length
= args
->length
;
1558 attr
->community
= NULL
;
1559 return BGP_ATTR_PARSE_PROCEED
;
1563 community_parse((uint32_t *)stream_pnt(peer
->curr
), length
);
1565 /* XXX: fix community_parse to use stream API and remove this */
1566 stream_forward_getp(peer
->curr
, length
);
1568 if (!attr
->community
)
1569 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1572 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
);
1574 return BGP_ATTR_PARSE_PROCEED
;
1577 /* Originator ID attribute. */
1578 static bgp_attr_parse_ret_t
1579 bgp_attr_originator_id(struct bgp_attr_parser_args
*args
)
1581 struct peer
*const peer
= args
->peer
;
1582 struct attr
*const attr
= args
->attr
;
1583 const bgp_size_t length
= args
->length
;
1587 flog_err(EC_BGP_ATTR_LEN
, "Bad originator ID length %d",
1590 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1594 attr
->originator_id
.s_addr
= stream_get_ipv4(peer
->curr
);
1596 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID
);
1598 return BGP_ATTR_PARSE_PROCEED
;
1601 /* Cluster list attribute. */
1602 static bgp_attr_parse_ret_t
1603 bgp_attr_cluster_list(struct bgp_attr_parser_args
*args
)
1605 struct peer
*const peer
= args
->peer
;
1606 struct attr
*const attr
= args
->attr
;
1607 const bgp_size_t length
= args
->length
;
1611 flog_err(EC_BGP_ATTR_LEN
, "Bad cluster list length %d", length
);
1613 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1618 cluster_parse((struct in_addr
*)stream_pnt(peer
->curr
), length
);
1620 /* XXX: Fix cluster_parse to use stream API and then remove this */
1621 stream_forward_getp(peer
->curr
, length
);
1623 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST
);
1625 return BGP_ATTR_PARSE_PROCEED
;
1628 /* Multiprotocol reachability information parse. */
1629 int bgp_mp_reach_parse(struct bgp_attr_parser_args
*args
,
1630 struct bgp_nlri
*mp_update
)
1634 iana_safi_t pkt_safi
;
1636 bgp_size_t nlri_len
;
1639 struct peer
*const peer
= args
->peer
;
1640 struct attr
*const attr
= args
->attr
;
1641 const bgp_size_t length
= args
->length
;
1643 /* Set end of packet. */
1644 s
= BGP_INPUT(peer
);
1645 start
= stream_get_getp(s
);
1647 /* safe to read statically sized header? */
1648 #define BGP_MP_REACH_MIN_SIZE 5
1649 #define LEN_LEFT (length - (stream_get_getp(s) - start))
1650 if ((length
> STREAM_READABLE(s
)) || (length
< BGP_MP_REACH_MIN_SIZE
)) {
1651 zlog_info("%s: %s sent invalid length, %lu", __func__
,
1652 peer
->host
, (unsigned long)length
);
1653 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1656 /* Load AFI, SAFI. */
1657 pkt_afi
= stream_getw(s
);
1658 pkt_safi
= stream_getc(s
);
1660 /* Convert AFI, SAFI to internal values, check. */
1661 if (bgp_map_afi_safi_iana2int(pkt_afi
, pkt_safi
, &afi
, &safi
)) {
1662 /* Log if AFI or SAFI is unrecognized. This is not an error
1664 * the attribute is otherwise malformed.
1666 if (bgp_debug_update(peer
, NULL
, NULL
, 0))
1668 "%s: MP_REACH received AFI %u or SAFI %u is unrecognized",
1669 peer
->host
, pkt_afi
, pkt_safi
);
1670 return BGP_ATTR_PARSE_ERROR
;
1673 /* Get nexthop length. */
1674 attr
->mp_nexthop_len
= stream_getc(s
);
1676 if (LEN_LEFT
< attr
->mp_nexthop_len
) {
1678 "%s: %s, MP nexthop length, %u, goes past end of attribute",
1679 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1680 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1683 /* Nexthop length check. */
1684 switch (attr
->mp_nexthop_len
) {
1686 if (safi
!= SAFI_FLOWSPEC
) {
1687 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1688 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1689 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1692 case BGP_ATTR_NHLEN_VPNV4
:
1693 stream_getl(s
); /* RD high */
1694 stream_getl(s
); /* RD low */
1696 * NOTE: intentional fall through
1697 * - for consistency in rx processing
1699 * The following comment is to signal GCC this intention
1700 * and suppress the warning
1703 case BGP_ATTR_NHLEN_IPV4
:
1704 stream_get(&attr
->mp_nexthop_global_in
, s
, IPV4_MAX_BYTELEN
);
1705 /* Probably needed for RFC 2283 */
1706 if (attr
->nexthop
.s_addr
== 0)
1707 memcpy(&attr
->nexthop
.s_addr
,
1708 &attr
->mp_nexthop_global_in
, IPV4_MAX_BYTELEN
);
1710 case BGP_ATTR_NHLEN_IPV6_GLOBAL
:
1711 case BGP_ATTR_NHLEN_VPNV6_GLOBAL
:
1712 if (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_VPNV6_GLOBAL
) {
1713 stream_getl(s
); /* RD high */
1714 stream_getl(s
); /* RD low */
1716 stream_get(&attr
->mp_nexthop_global
, s
, IPV6_MAX_BYTELEN
);
1717 if (IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_global
)) {
1718 if (!peer
->nexthop
.ifp
) {
1719 zlog_warn("%s: interface not set appropriately to handle some attributes",
1721 return BGP_ATTR_PARSE_WITHDRAW
;
1723 attr
->nh_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1726 case BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
:
1727 case BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
:
1728 if (attr
->mp_nexthop_len
1729 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
) {
1730 stream_getl(s
); /* RD high */
1731 stream_getl(s
); /* RD low */
1733 stream_get(&attr
->mp_nexthop_global
, s
, IPV6_MAX_BYTELEN
);
1734 if (IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_global
)) {
1735 if (!peer
->nexthop
.ifp
) {
1736 zlog_warn("%s: interface not set appropriately to handle some attributes",
1738 return BGP_ATTR_PARSE_WITHDRAW
;
1740 attr
->nh_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1742 if (attr
->mp_nexthop_len
1743 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
) {
1744 stream_getl(s
); /* RD high */
1745 stream_getl(s
); /* RD low */
1747 stream_get(&attr
->mp_nexthop_local
, s
, IPV6_MAX_BYTELEN
);
1748 if (!IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_local
)) {
1749 char buf1
[INET6_ADDRSTRLEN
];
1750 char buf2
[INET6_ADDRSTRLEN
];
1752 if (bgp_debug_update(peer
, NULL
, NULL
, 1))
1754 "%s rcvd nexthops %s, %s -- ignoring non-LL value",
1757 &attr
->mp_nexthop_global
,
1758 buf1
, INET6_ADDRSTRLEN
),
1760 &attr
->mp_nexthop_local
, buf2
,
1763 attr
->mp_nexthop_len
= IPV6_MAX_BYTELEN
;
1765 if (!peer
->nexthop
.ifp
) {
1766 zlog_warn("%s: Interface not set appropriately to handle this some attributes",
1768 return BGP_ATTR_PARSE_WITHDRAW
;
1770 attr
->nh_lla_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1773 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1774 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1775 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1779 zlog_info("%s: (%s) Failed to read SNPA and NLRI(s)", __func__
,
1781 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1786 if ((val
= stream_getc(s
)))
1788 EC_BGP_DEFUNCT_SNPA_LEN
,
1789 "%s sent non-zero value, %u, for defunct SNPA-length field",
1793 /* must have nrli_len, what is left of the attribute */
1794 nlri_len
= LEN_LEFT
;
1795 if (nlri_len
> STREAM_READABLE(s
)) {
1796 zlog_info("%s: (%s) Failed to read NLRI", __func__
, peer
->host
);
1797 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1801 zlog_info("%s: (%s) No Reachability, Treating as a EOR marker",
1802 __func__
, peer
->host
);
1804 mp_update
->afi
= afi
;
1805 mp_update
->safi
= safi
;
1806 return BGP_ATTR_PARSE_EOR
;
1809 mp_update
->afi
= afi
;
1810 mp_update
->safi
= safi
;
1811 mp_update
->nlri
= stream_pnt(s
);
1812 mp_update
->length
= nlri_len
;
1814 stream_forward_getp(s
, nlri_len
);
1816 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
);
1818 return BGP_ATTR_PARSE_PROCEED
;
1822 /* Multiprotocol unreachable parse */
1823 int bgp_mp_unreach_parse(struct bgp_attr_parser_args
*args
,
1824 struct bgp_nlri
*mp_withdraw
)
1829 iana_safi_t pkt_safi
;
1831 uint16_t withdraw_len
;
1832 struct peer
*const peer
= args
->peer
;
1833 struct attr
*const attr
= args
->attr
;
1834 const bgp_size_t length
= args
->length
;
1838 #define BGP_MP_UNREACH_MIN_SIZE 3
1839 if ((length
> STREAM_READABLE(s
)) || (length
< BGP_MP_UNREACH_MIN_SIZE
))
1840 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1842 pkt_afi
= stream_getw(s
);
1843 pkt_safi
= stream_getc(s
);
1845 /* Convert AFI, SAFI to internal values, check. */
1846 if (bgp_map_afi_safi_iana2int(pkt_afi
, pkt_safi
, &afi
, &safi
)) {
1847 /* Log if AFI or SAFI is unrecognized. This is not an error
1849 * the attribute is otherwise malformed.
1851 if (bgp_debug_update(peer
, NULL
, NULL
, 0))
1853 "%s: MP_UNREACH received AFI %u or SAFI %u is unrecognized",
1854 peer
->host
, pkt_afi
, pkt_safi
);
1855 return BGP_ATTR_PARSE_ERROR
;
1858 withdraw_len
= length
- BGP_MP_UNREACH_MIN_SIZE
;
1860 mp_withdraw
->afi
= afi
;
1861 mp_withdraw
->safi
= safi
;
1862 mp_withdraw
->nlri
= stream_pnt(s
);
1863 mp_withdraw
->length
= withdraw_len
;
1865 stream_forward_getp(s
, withdraw_len
);
1867 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI
);
1869 return BGP_ATTR_PARSE_PROCEED
;
1872 /* Large Community attribute. */
1873 static bgp_attr_parse_ret_t
1874 bgp_attr_large_community(struct bgp_attr_parser_args
*args
)
1876 struct peer
*const peer
= args
->peer
;
1877 struct attr
*const attr
= args
->attr
;
1878 const bgp_size_t length
= args
->length
;
1881 * Large community follows new attribute format.
1884 attr
->lcommunity
= NULL
;
1885 /* Empty extcomm doesn't seem to be invalid per se */
1886 return BGP_ATTR_PARSE_PROCEED
;
1890 lcommunity_parse((uint8_t *)stream_pnt(peer
->curr
), length
);
1891 /* XXX: fix ecommunity_parse to use stream API */
1892 stream_forward_getp(peer
->curr
, length
);
1894 if (!attr
->lcommunity
)
1895 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1898 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
);
1900 return BGP_ATTR_PARSE_PROCEED
;
1903 /* Extended Community attribute. */
1904 static bgp_attr_parse_ret_t
1905 bgp_attr_ext_communities(struct bgp_attr_parser_args
*args
)
1907 struct peer
*const peer
= args
->peer
;
1908 struct attr
*const attr
= args
->attr
;
1909 const bgp_size_t length
= args
->length
;
1913 attr
->ecommunity
= NULL
;
1914 /* Empty extcomm doesn't seem to be invalid per se */
1915 return BGP_ATTR_PARSE_PROCEED
;
1919 ecommunity_parse((uint8_t *)stream_pnt(peer
->curr
), length
);
1920 /* XXX: fix ecommunity_parse to use stream API */
1921 stream_forward_getp(peer
->curr
, length
);
1923 if (!attr
->ecommunity
)
1924 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1927 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
);
1929 /* Extract MAC mobility sequence number, if any. */
1930 attr
->mm_seqnum
= bgp_attr_mac_mobility_seqnum(attr
, &sticky
);
1931 attr
->sticky
= sticky
;
1933 /* Check if this is a Gateway MAC-IP advertisement */
1934 attr
->default_gw
= bgp_attr_default_gw(attr
);
1936 /* Handle scenario where router flag ecommunity is not
1937 * set but default gw ext community is present.
1938 * Use default gateway, set and propogate R-bit.
1940 if (attr
->default_gw
)
1941 attr
->router_flag
= 1;
1943 /* Check EVPN Neighbor advertisement flags, R-bit */
1944 bgp_attr_evpn_na_flag(attr
, &attr
->router_flag
);
1946 /* Extract the Rmac, if any */
1947 bgp_attr_rmac(attr
, &attr
->rmac
);
1949 return BGP_ATTR_PARSE_PROCEED
;
1952 /* Parse Tunnel Encap attribute in an UPDATE */
1953 static int bgp_attr_encap(uint8_t type
, struct peer
*peer
, /* IN */
1954 bgp_size_t length
, /* IN: attr's length field */
1955 struct attr
*attr
, /* IN: caller already allocated */
1956 uint8_t flag
, /* IN: attr's flags field */
1960 uint16_t tunneltype
= 0;
1962 total
= length
+ (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
) ? 4 : 3);
1964 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_TRANS
)
1965 || !CHECK_FLAG(flag
, BGP_ATTR_FLAG_OPTIONAL
)) {
1967 "Tunnel Encap attribute flag isn't optional and transitive %d",
1969 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
1970 BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR
,
1975 if (BGP_ATTR_ENCAP
== type
) {
1976 /* read outer TLV type and length */
1977 uint16_t tlv_length
;
1981 "Tunnel Encap attribute not long enough to contain outer T,L");
1982 bgp_notify_send_with_data(
1983 peer
, BGP_NOTIFY_UPDATE_ERR
,
1984 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
, startp
, total
);
1987 tunneltype
= stream_getw(BGP_INPUT(peer
));
1988 tlv_length
= stream_getw(BGP_INPUT(peer
));
1991 if (tlv_length
!= length
) {
1992 zlog_info("%s: tlv_length(%d) != length(%d)", __func__
,
1993 tlv_length
, length
);
1997 while (length
>= 4) {
1998 uint16_t subtype
= 0;
1999 uint16_t sublength
= 0;
2000 struct bgp_attr_encap_subtlv
*tlv
;
2002 if (BGP_ATTR_ENCAP
== type
) {
2003 subtype
= stream_getc(BGP_INPUT(peer
));
2004 sublength
= stream_getc(BGP_INPUT(peer
));
2008 subtype
= stream_getw(BGP_INPUT(peer
));
2009 sublength
= stream_getw(BGP_INPUT(peer
));
2014 if (sublength
> length
) {
2016 "Tunnel Encap attribute sub-tlv length %d exceeds remaining length %d",
2018 bgp_notify_send_with_data(
2019 peer
, BGP_NOTIFY_UPDATE_ERR
,
2020 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
, startp
, total
);
2024 /* alloc and copy sub-tlv */
2025 /* TBD make sure these are freed when attributes are released */
2026 tlv
= XCALLOC(MTYPE_ENCAP_TLV
,
2027 sizeof(struct bgp_attr_encap_subtlv
) + sublength
);
2028 tlv
->type
= subtype
;
2029 tlv
->length
= sublength
;
2030 stream_get(tlv
->value
, peer
->curr
, sublength
);
2031 length
-= sublength
;
2033 /* attach tlv to encap chain */
2034 if (BGP_ATTR_ENCAP
== type
) {
2035 struct bgp_attr_encap_subtlv
*stlv_last
;
2036 for (stlv_last
= attr
->encap_subtlvs
;
2037 stlv_last
&& stlv_last
->next
;
2038 stlv_last
= stlv_last
->next
)
2041 stlv_last
->next
= tlv
;
2043 attr
->encap_subtlvs
= tlv
;
2047 struct bgp_attr_encap_subtlv
*stlv_last
;
2048 for (stlv_last
= attr
->vnc_subtlvs
;
2049 stlv_last
&& stlv_last
->next
;
2050 stlv_last
= stlv_last
->next
)
2053 stlv_last
->next
= tlv
;
2055 attr
->vnc_subtlvs
= tlv
;
2061 if (BGP_ATTR_ENCAP
== type
) {
2062 attr
->encap_tunneltype
= tunneltype
;
2066 /* spurious leftover data */
2068 "Tunnel Encap attribute length is bad: %d leftover octets",
2070 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
2071 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2080 * Read an individual SID value returning how much data we have read
2081 * Returns 0 if there was an error that needs to be passed up the stack
2083 static bgp_attr_parse_ret_t
bgp_attr_psid_sub(int32_t type
,
2085 struct bgp_attr_parser_args
*args
,
2086 struct bgp_nlri
*mp_update
)
2088 struct peer
*const peer
= args
->peer
;
2089 struct attr
*const attr
= args
->attr
;
2090 uint32_t label_index
;
2091 struct in6_addr ipv6_sid
;
2093 uint32_t srgb_range
;
2096 if (type
== BGP_PREFIX_SID_LABEL_INDEX
) {
2097 if (length
!= BGP_PREFIX_SID_LABEL_INDEX_LENGTH
) {
2100 "Prefix SID label index length is %d instead of %d",
2101 length
, BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
2102 return bgp_attr_malformed(args
,
2103 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2107 /* Ignore flags and reserved */
2108 stream_getc(peer
->curr
);
2109 stream_getw(peer
->curr
);
2111 /* Fetch the label index and see if it is valid. */
2112 label_index
= stream_getl(peer
->curr
);
2113 if (label_index
== BGP_INVALID_LABEL_INDEX
)
2114 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2117 /* Store label index; subsequently, we'll check on
2119 attr
->label_index
= label_index
;
2122 * Ignore the Label index attribute unless received for
2126 if (!mp_update
->length
2127 || mp_update
->safi
!= SAFI_LABELED_UNICAST
)
2128 attr
->label_index
= BGP_INVALID_LABEL_INDEX
;
2131 /* Placeholder code for the IPv6 SID type */
2132 else if (type
== BGP_PREFIX_SID_IPV6
) {
2133 if (length
!= BGP_PREFIX_SID_IPV6_LENGTH
) {
2134 flog_err(EC_BGP_ATTR_LEN
,
2135 "Prefix SID IPv6 length is %d instead of %d",
2136 length
, BGP_PREFIX_SID_IPV6_LENGTH
);
2137 return bgp_attr_malformed(args
,
2138 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2142 /* Ignore reserved */
2143 stream_getc(peer
->curr
);
2144 stream_getw(peer
->curr
);
2146 stream_get(&ipv6_sid
, peer
->curr
, 16);
2149 /* Placeholder code for the Originator SRGB type */
2150 else if (type
== BGP_PREFIX_SID_ORIGINATOR_SRGB
) {
2152 stream_getw(peer
->curr
);
2156 if (length
% BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
) {
2159 "Prefix SID Originator SRGB length is %d, it must be a multiple of %d ",
2160 length
, BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
);
2161 return bgp_attr_malformed(
2162 args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2166 srgb_count
= length
/ BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
;
2168 for (int i
= 0; i
< srgb_count
; i
++) {
2169 stream_get(&srgb_base
, peer
->curr
, 3);
2170 stream_get(&srgb_range
, peer
->curr
, 3);
2174 return BGP_ATTR_PARSE_PROCEED
;
2177 /* Prefix SID attribute
2178 * draft-ietf-idr-bgp-prefix-sid-05
2180 bgp_attr_parse_ret_t
2181 bgp_attr_prefix_sid(int32_t tlength
, struct bgp_attr_parser_args
*args
,
2182 struct bgp_nlri
*mp_update
)
2184 struct peer
*const peer
= args
->peer
;
2185 struct attr
*const attr
= args
->attr
;
2186 bgp_attr_parse_ret_t ret
;
2188 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
);
2191 int32_t type
, length
;
2193 type
= stream_getc(peer
->curr
);
2194 length
= stream_getw(peer
->curr
);
2196 ret
= bgp_attr_psid_sub(type
, length
, args
, mp_update
);
2198 if (ret
!= BGP_ATTR_PARSE_PROCEED
)
2201 * Subtract length + the T and the L
2202 * since length is the Vector portion
2204 tlength
-= length
+ 3;
2209 "Prefix SID internal length %d causes us to read beyond the total Prefix SID length",
2211 return bgp_attr_malformed(args
,
2212 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2217 return BGP_ATTR_PARSE_PROCEED
;
2220 /* PMSI tunnel attribute (RFC 6514)
2221 * Basic validation checks done here.
2223 static bgp_attr_parse_ret_t
2224 bgp_attr_pmsi_tunnel(struct bgp_attr_parser_args
*args
)
2226 struct peer
*const peer
= args
->peer
;
2227 struct attr
*const attr
= args
->attr
;
2228 const bgp_size_t length
= args
->length
;
2231 /* Verify that the receiver is expecting "ingress replication" as we
2232 * can only support that.
2235 flog_err(EC_BGP_ATTR_LEN
, "Bad PMSI tunnel attribute length %d",
2237 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2240 stream_getc(peer
->curr
); /* Flags */
2241 tnl_type
= stream_getc(peer
->curr
);
2242 if (tnl_type
> PMSI_TNLTYPE_MAX
) {
2243 flog_err(EC_BGP_ATTR_PMSI_TYPE
,
2244 "Invalid PMSI tunnel attribute type %d", tnl_type
);
2245 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2248 if (tnl_type
== PMSI_TNLTYPE_INGR_REPL
) {
2250 flog_err(EC_BGP_ATTR_PMSI_LEN
,
2251 "Bad PMSI tunnel attribute length %d for IR",
2253 return bgp_attr_malformed(
2254 args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2259 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL
);
2260 attr
->pmsi_tnl_type
= tnl_type
;
2262 /* Forward read pointer of input stream. */
2263 stream_forward_getp(peer
->curr
, length
- 2);
2265 return BGP_ATTR_PARSE_PROCEED
;
2268 /* BGP unknown attribute treatment. */
2269 static bgp_attr_parse_ret_t
bgp_attr_unknown(struct bgp_attr_parser_args
*args
)
2271 bgp_size_t total
= args
->total
;
2272 struct transit
*transit
;
2273 struct peer
*const peer
= args
->peer
;
2274 struct attr
*const attr
= args
->attr
;
2275 uint8_t *const startp
= args
->startp
;
2276 const uint8_t type
= args
->type
;
2277 const uint8_t flag
= args
->flags
;
2278 const bgp_size_t length
= args
->length
;
2280 if (bgp_debug_update(peer
, NULL
, NULL
, 1))
2282 "%s Unknown attribute is received (type %d, length %d)",
2283 peer
->host
, type
, length
);
2285 /* Forward read pointer of input stream. */
2286 stream_forward_getp(peer
->curr
, length
);
2288 /* If any of the mandatory well-known attributes are not recognized,
2289 then the Error Subcode is set to Unrecognized Well-known
2290 Attribute. The Data field contains the unrecognized attribute
2291 (type, length and value). */
2292 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_OPTIONAL
)) {
2293 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_UNREC_ATTR
,
2297 /* Unrecognized non-transitive optional attributes must be quietly
2298 ignored and not passed along to other BGP peers. */
2299 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_TRANS
))
2300 return BGP_ATTR_PARSE_PROCEED
;
2302 /* If a path with recognized transitive optional attribute is
2303 accepted and passed along to other BGP peers and the Partial bit
2304 in the Attribute Flags octet is set to 1 by some previous AS, it
2305 is not set back to 0 by the current AS. */
2306 SET_FLAG(*startp
, BGP_ATTR_FLAG_PARTIAL
);
2308 /* Store transitive attribute to the end of attr->transit. */
2310 attr
->transit
= XCALLOC(MTYPE_TRANSIT
, sizeof(struct transit
));
2312 transit
= attr
->transit
;
2315 transit
->val
= XREALLOC(MTYPE_TRANSIT_VAL
, transit
->val
,
2316 transit
->length
+ total
);
2318 transit
->val
= XMALLOC(MTYPE_TRANSIT_VAL
, total
);
2320 memcpy(transit
->val
+ transit
->length
, startp
, total
);
2321 transit
->length
+= total
;
2323 return BGP_ATTR_PARSE_PROCEED
;
2326 /* Well-known attribute check. */
2327 static int bgp_attr_check(struct peer
*peer
, struct attr
*attr
)
2331 /* BGP Graceful-Restart End-of-RIB for IPv4 unicast is signaled as an
2333 if (CHECK_FLAG(peer
->cap
, PEER_CAP_RESTART_RCV
) && !attr
->flag
)
2334 return BGP_ATTR_PARSE_PROCEED
;
2336 /* "An UPDATE message that contains the MP_UNREACH_NLRI is not required
2337 to carry any other path attributes.", though if MP_REACH_NLRI or NLRI
2338 are present, it should. Check for any other attribute being present
2341 if ((!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
)) &&
2342 CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI
))))
2343 return BGP_ATTR_PARSE_PROCEED
;
2345 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
)))
2346 type
= BGP_ATTR_ORIGIN
;
2348 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
)))
2349 type
= BGP_ATTR_AS_PATH
;
2351 /* RFC 2858 makes Next-Hop optional/ignored, if MP_REACH_NLRI is present
2353 * NLRI is empty. We can't easily check NLRI empty here though.
2355 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
))
2356 && !CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
)))
2357 type
= BGP_ATTR_NEXT_HOP
;
2359 if (peer
->sort
== BGP_PEER_IBGP
2360 && !CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
)))
2361 type
= BGP_ATTR_LOCAL_PREF
;
2364 flog_warn(EC_BGP_MISSING_ATTRIBUTE
,
2365 "%s Missing well-known attribute %s.", peer
->host
,
2366 lookup_msg(attr_str
, type
, NULL
));
2367 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
2368 BGP_NOTIFY_UPDATE_MISS_ATTR
, &type
,
2370 return BGP_ATTR_PARSE_ERROR
;
2372 return BGP_ATTR_PARSE_PROCEED
;
2375 /* Read attribute of update packet. This function is called from
2376 bgp_update_receive() in bgp_packet.c. */
2377 bgp_attr_parse_ret_t
bgp_attr_parse(struct peer
*peer
, struct attr
*attr
,
2378 bgp_size_t size
, struct bgp_nlri
*mp_update
,
2379 struct bgp_nlri
*mp_withdraw
)
2381 bgp_attr_parse_ret_t ret
;
2385 uint8_t *startp
, *endp
;
2387 uint8_t seen
[BGP_ATTR_BITMAP_SIZE
];
2388 /* we need the as4_path only until we have synthesized the as_path with
2390 /* same goes for as4_aggregator */
2391 struct aspath
*as4_path
= NULL
;
2392 as_t as4_aggregator
= 0;
2393 struct in_addr as4_aggregator_addr
= {.s_addr
= 0};
2395 /* Initialize bitmap. */
2396 memset(seen
, 0, BGP_ATTR_BITMAP_SIZE
);
2398 /* End pointer of BGP attribute. */
2399 endp
= BGP_INPUT_PNT(peer
) + size
;
2401 /* Get attributes to the end of attribute length. */
2402 while (BGP_INPUT_PNT(peer
) < endp
) {
2403 /* Check remaining length check.*/
2404 if (endp
- BGP_INPUT_PNT(peer
) < BGP_ATTR_MIN_LEN
) {
2405 /* XXX warning: long int format, int arg (arg 5) */
2407 EC_BGP_ATTRIBUTE_TOO_SMALL
,
2408 "%s: error BGP attribute length %lu is smaller than min len",
2410 (unsigned long)(endp
2411 - stream_pnt(BGP_INPUT(peer
))));
2413 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2414 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2415 return BGP_ATTR_PARSE_ERROR
;
2418 /* Fetch attribute flag and type. */
2419 startp
= BGP_INPUT_PNT(peer
);
2420 /* "The lower-order four bits of the Attribute Flags octet are
2421 unused. They MUST be zero when sent and MUST be ignored when
2423 flag
= 0xF0 & stream_getc(BGP_INPUT(peer
));
2424 type
= stream_getc(BGP_INPUT(peer
));
2426 /* Check whether Extended-Length applies and is in bounds */
2427 if (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
)
2428 && ((endp
- startp
) < (BGP_ATTR_MIN_LEN
+ 1))) {
2430 EC_BGP_EXT_ATTRIBUTE_TOO_SMALL
,
2431 "%s: Extended length set, but just %lu bytes of attr header",
2433 (unsigned long)(endp
2434 - stream_pnt(BGP_INPUT(peer
))));
2436 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2437 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2438 return BGP_ATTR_PARSE_ERROR
;
2441 /* Check extended attribue length bit. */
2442 if (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
))
2443 length
= stream_getw(BGP_INPUT(peer
));
2445 length
= stream_getc(BGP_INPUT(peer
));
2447 /* If any attribute appears more than once in the UPDATE
2448 message, then the Error Subcode is set to Malformed Attribute
2451 if (CHECK_BITMAP(seen
, type
)) {
2453 EC_BGP_ATTRIBUTE_REPEATED
,
2454 "%s: error BGP attribute type %d appears twice in a message",
2457 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2458 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2459 return BGP_ATTR_PARSE_ERROR
;
2462 /* Set type to bitmap to check duplicate attribute. `type' is
2463 unsigned char so it never overflow bitmap range. */
2465 SET_BITMAP(seen
, type
);
2467 /* Overflow check. */
2468 attr_endp
= BGP_INPUT_PNT(peer
) + length
;
2470 if (attr_endp
> endp
) {
2472 EC_BGP_ATTRIBUTE_TOO_LARGE
,
2473 "%s: BGP type %d length %d is too large, attribute total length is %d. attr_endp is %p. endp is %p",
2474 peer
->host
, type
, length
, size
, attr_endp
,
2478 * If any recognized attribute has an Attribute
2479 * Length that conflicts with the expected length
2480 * (based on the attribute type code), then the
2481 * Error Subcode MUST be set to Attribute Length
2482 * Error. The Data field MUST contain the erroneous
2483 * attribute (type, length, and value).
2485 * We do not currently have a good way to determine the
2486 * length of the attribute independent of the length
2487 * received in the message. Instead we send the
2488 * minimum between the amount of data we have and the
2489 * amount specified by the attribute length field.
2491 * Instead of directly passing in the packet buffer and
2492 * offset we use the stream_get* functions to read into
2493 * a stack buffer, since they perform bounds checking
2494 * and we are working with untrusted data.
2496 unsigned char ndata
[BGP_MAX_PACKET_SIZE
];
2497 memset(ndata
, 0x00, sizeof(ndata
));
2499 CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
) ? 2 : 1;
2500 /* Rewind to end of flag field */
2501 stream_forward_getp(BGP_INPUT(peer
), -(1 + lfl
));
2503 stream_get(&ndata
[0], BGP_INPUT(peer
), 1);
2505 stream_get(&ndata
[1], BGP_INPUT(peer
), lfl
);
2507 size_t atl
= attr_endp
- startp
;
2508 size_t ndl
= MIN(atl
, STREAM_READABLE(BGP_INPUT(peer
)));
2509 stream_get(&ndata
[lfl
+ 1], BGP_INPUT(peer
), ndl
);
2511 bgp_notify_send_with_data(
2512 peer
, BGP_NOTIFY_UPDATE_ERR
,
2513 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
, ndata
,
2516 return BGP_ATTR_PARSE_ERROR
;
2519 struct bgp_attr_parser_args attr_args
= {
2526 .total
= attr_endp
- startp
,
2530 /* If any recognized attribute has Attribute Flags that conflict
2531 with the Attribute Type Code, then the Error Subcode is set
2533 Attribute Flags Error. The Data field contains the erroneous
2534 attribute (type, length and value). */
2535 if (bgp_attr_flag_invalid(&attr_args
)) {
2536 ret
= bgp_attr_malformed(
2537 &attr_args
, BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR
,
2539 if (ret
== BGP_ATTR_PARSE_PROCEED
)
2544 /* OK check attribute and store it's value. */
2546 case BGP_ATTR_ORIGIN
:
2547 ret
= bgp_attr_origin(&attr_args
);
2549 case BGP_ATTR_AS_PATH
:
2550 ret
= bgp_attr_aspath(&attr_args
);
2552 case BGP_ATTR_AS4_PATH
:
2553 ret
= bgp_attr_as4_path(&attr_args
, &as4_path
);
2555 case BGP_ATTR_NEXT_HOP
:
2556 ret
= bgp_attr_nexthop(&attr_args
);
2558 case BGP_ATTR_MULTI_EXIT_DISC
:
2559 ret
= bgp_attr_med(&attr_args
);
2561 case BGP_ATTR_LOCAL_PREF
:
2562 ret
= bgp_attr_local_pref(&attr_args
);
2564 case BGP_ATTR_ATOMIC_AGGREGATE
:
2565 ret
= bgp_attr_atomic(&attr_args
);
2567 case BGP_ATTR_AGGREGATOR
:
2568 ret
= bgp_attr_aggregator(&attr_args
);
2570 case BGP_ATTR_AS4_AGGREGATOR
:
2571 ret
= bgp_attr_as4_aggregator(&attr_args
,
2573 &as4_aggregator_addr
);
2575 case BGP_ATTR_COMMUNITIES
:
2576 ret
= bgp_attr_community(&attr_args
);
2578 case BGP_ATTR_LARGE_COMMUNITIES
:
2579 ret
= bgp_attr_large_community(&attr_args
);
2581 case BGP_ATTR_ORIGINATOR_ID
:
2582 ret
= bgp_attr_originator_id(&attr_args
);
2584 case BGP_ATTR_CLUSTER_LIST
:
2585 ret
= bgp_attr_cluster_list(&attr_args
);
2587 case BGP_ATTR_MP_REACH_NLRI
:
2588 ret
= bgp_mp_reach_parse(&attr_args
, mp_update
);
2590 case BGP_ATTR_MP_UNREACH_NLRI
:
2591 ret
= bgp_mp_unreach_parse(&attr_args
, mp_withdraw
);
2593 case BGP_ATTR_EXT_COMMUNITIES
:
2594 ret
= bgp_attr_ext_communities(&attr_args
);
2599 case BGP_ATTR_ENCAP
:
2600 ret
= bgp_attr_encap(type
, peer
, length
, attr
, flag
,
2603 case BGP_ATTR_PREFIX_SID
:
2604 ret
= bgp_attr_prefix_sid(length
,
2605 &attr_args
, mp_update
);
2607 case BGP_ATTR_PMSI_TUNNEL
:
2608 ret
= bgp_attr_pmsi_tunnel(&attr_args
);
2611 ret
= bgp_attr_unknown(&attr_args
);
2615 if (ret
== BGP_ATTR_PARSE_ERROR_NOTIFYPLS
) {
2616 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2617 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2618 ret
= BGP_ATTR_PARSE_ERROR
;
2621 if (ret
== BGP_ATTR_PARSE_EOR
) {
2623 aspath_unintern(&as4_path
);
2627 /* If hard error occurred immediately return to the caller. */
2628 if (ret
== BGP_ATTR_PARSE_ERROR
) {
2629 flog_warn(EC_BGP_ATTRIBUTE_PARSE_ERROR
,
2630 "%s: Attribute %s, parse error", peer
->host
,
2631 lookup_msg(attr_str
, type
, NULL
));
2633 aspath_unintern(&as4_path
);
2636 if (ret
== BGP_ATTR_PARSE_WITHDRAW
) {
2639 EC_BGP_ATTRIBUTE_PARSE_WITHDRAW
,
2640 "%s: Attribute %s, parse error - treating as withdrawal",
2641 peer
->host
, lookup_msg(attr_str
, type
, NULL
));
2643 aspath_unintern(&as4_path
);
2647 /* Check the fetched length. */
2648 if (BGP_INPUT_PNT(peer
) != attr_endp
) {
2649 flog_warn(EC_BGP_ATTRIBUTE_FETCH_ERROR
,
2650 "%s: BGP attribute %s, fetch error",
2651 peer
->host
, lookup_msg(attr_str
, type
, NULL
));
2652 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2653 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2655 aspath_unintern(&as4_path
);
2656 return BGP_ATTR_PARSE_ERROR
;
2660 /* Check final read pointer is same as end pointer. */
2661 if (BGP_INPUT_PNT(peer
) != endp
) {
2662 flog_warn(EC_BGP_ATTRIBUTES_MISMATCH
,
2663 "%s: BGP attribute %s, length mismatch", peer
->host
,
2664 lookup_msg(attr_str
, type
, NULL
));
2665 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2666 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2668 aspath_unintern(&as4_path
);
2669 return BGP_ATTR_PARSE_ERROR
;
2672 /* Check all mandatory well-known attributes are present */
2673 if ((ret
= bgp_attr_check(peer
, attr
)) < 0) {
2675 aspath_unintern(&as4_path
);
2680 * At this place we can see whether we got AS4_PATH and/or
2681 * AS4_AGGREGATOR from a 16Bit peer and act accordingly.
2682 * We can not do this before we've read all attributes because
2683 * the as4 handling does not say whether AS4_PATH has to be sent
2684 * after AS_PATH or not - and when AS4_AGGREGATOR will be send
2685 * in relationship to AGGREGATOR.
2686 * So, to be defensive, we are not relying on any order and read
2687 * all attributes first, including these 32bit ones, and now,
2688 * afterwards, we look what and if something is to be done for as4.
2690 * It is possible to not have AS_PATH, e.g. GR EoR and sole
2693 /* actually... this doesn't ever return failure currently, but
2694 * better safe than sorry */
2695 if (CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
))
2696 && bgp_attr_munge_as4_attrs(peer
, attr
, as4_path
, as4_aggregator
,
2697 &as4_aggregator_addr
)) {
2698 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2699 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2701 aspath_unintern(&as4_path
);
2702 return BGP_ATTR_PARSE_ERROR
;
2705 /* At this stage, we have done all fiddling with as4, and the
2706 * resulting info is in attr->aggregator resp. attr->aspath
2707 * so we can chuck as4_aggregator and as4_path alltogether in
2708 * order to save memory
2711 aspath_unintern(&as4_path
); /* unintern - it is in the hash */
2712 /* The flag that we got this is still there, but that does not
2717 * The "rest" of the code does nothing with as4_aggregator.
2718 * there is no memory attached specifically which is not part
2720 * so ignoring just means do nothing.
2723 * Finally do the checks on the aspath we did not do yet
2724 * because we waited for a potentially synthesized aspath.
2726 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
))) {
2727 ret
= bgp_attr_aspath_check(peer
, attr
);
2728 if (ret
!= BGP_ATTR_PARSE_PROCEED
)
2731 /* Finally intern unknown attribute. */
2733 attr
->transit
= transit_intern(attr
->transit
);
2734 if (attr
->encap_subtlvs
)
2735 attr
->encap_subtlvs
=
2736 encap_intern(attr
->encap_subtlvs
, ENCAP_SUBTLV_TYPE
);
2738 if (attr
->vnc_subtlvs
)
2740 encap_intern(attr
->vnc_subtlvs
, VNC_SUBTLV_TYPE
);
2743 return BGP_ATTR_PARSE_PROCEED
;
2746 size_t bgp_packet_mpattr_start(struct stream
*s
, struct peer
*peer
, afi_t afi
,
2747 safi_t safi
, struct bpacket_attr_vec_arr
*vecarr
,
2752 iana_safi_t pkt_safi
;
2755 /* Set extended bit always to encode the attribute length as 2 bytes */
2756 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_EXTLEN
);
2757 stream_putc(s
, BGP_ATTR_MP_REACH_NLRI
);
2758 sizep
= stream_get_endp(s
);
2759 stream_putw(s
, 0); /* Marker: Attribute length. */
2762 /* Convert AFI, SAFI to values for packet. */
2763 bgp_map_afi_safi_int2iana(afi
, safi
, &pkt_afi
, &pkt_safi
);
2765 stream_putw(s
, pkt_afi
); /* AFI */
2766 stream_putc(s
, pkt_safi
); /* SAFI */
2770 && (safi
== SAFI_UNICAST
|| safi
== SAFI_LABELED_UNICAST
))
2771 nh_afi
= peer_cap_enhe(peer
, afi
, safi
) ? AFI_IP6
: AFI_IP
;
2773 nh_afi
= BGP_NEXTHOP_AFI_FROM_NHLEN(attr
->mp_nexthop_len
);
2776 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
, attr
);
2781 case SAFI_MULTICAST
:
2782 case SAFI_LABELED_UNICAST
:
2784 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
2788 stream_putl(s
, 0); /* RD = 0, per RFC */
2790 stream_put(s
, &attr
->mp_nexthop_global_in
, 4);
2795 stream_put(s
, &attr
->mp_nexthop_global_in
, 4);
2798 stream_putc(s
, 0); /* no nexthop for flowspec */
2806 case SAFI_MULTICAST
:
2807 case SAFI_LABELED_UNICAST
:
2809 if (attr
->mp_nexthop_len
2810 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
) {
2812 BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
);
2813 stream_put(s
, &attr
->mp_nexthop_global
,
2815 stream_put(s
, &attr
->mp_nexthop_local
,
2818 stream_putc(s
, IPV6_MAX_BYTELEN
);
2819 stream_put(s
, &attr
->mp_nexthop_global
,
2823 case SAFI_MPLS_VPN
: {
2824 if (attr
->mp_nexthop_len
2825 == BGP_ATTR_NHLEN_IPV6_GLOBAL
) {
2827 stream_putl(s
, 0); /* RD = 0, per RFC */
2829 stream_put(s
, &attr
->mp_nexthop_global
,
2831 } else if (attr
->mp_nexthop_len
2832 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
) {
2834 stream_putl(s
, 0); /* RD = 0, per RFC */
2836 stream_put(s
, &attr
->mp_nexthop_global
,
2838 stream_putl(s
, 0); /* RD = 0, per RFC */
2840 stream_put(s
, &attr
->mp_nexthop_local
,
2845 stream_putc(s
, IPV6_MAX_BYTELEN
);
2846 stream_put(s
, &attr
->mp_nexthop_global
,
2850 stream_putc(s
, 0); /* no nexthop for flowspec */
2856 if (safi
!= SAFI_FLOWSPEC
)
2858 EC_BGP_ATTR_NH_SEND_LEN
,
2859 "Bad nexthop when sending to %s, AFI %u SAFI %u nhlen %d",
2860 peer
->host
, afi
, safi
, attr
->mp_nexthop_len
);
2869 void bgp_packet_mpattr_prefix(struct stream
*s
, afi_t afi
, safi_t safi
,
2870 struct prefix
*p
, struct prefix_rd
*prd
,
2871 mpls_label_t
*label
, uint32_t num_labels
,
2872 int addpath_encode
, uint32_t addpath_tx_id
,
2875 if (safi
== SAFI_MPLS_VPN
) {
2877 stream_putl(s
, addpath_tx_id
);
2878 /* Label, RD, Prefix write. */
2879 stream_putc(s
, p
->prefixlen
+ 88);
2880 stream_put(s
, label
, BGP_LABEL_BYTES
);
2881 stream_put(s
, prd
->val
, 8);
2882 stream_put(s
, &p
->u
.prefix
, PSIZE(p
->prefixlen
));
2883 } else if (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
) {
2884 /* EVPN prefix - contents depend on type */
2885 bgp_evpn_encode_prefix(s
, p
, prd
, label
, num_labels
, attr
,
2886 addpath_encode
, addpath_tx_id
);
2887 } else if (safi
== SAFI_LABELED_UNICAST
) {
2888 /* Prefix write with label. */
2889 stream_put_labeled_prefix(s
, p
, label
);
2890 } else if (safi
== SAFI_FLOWSPEC
) {
2891 if (PSIZE (p
->prefixlen
)+2 < FLOWSPEC_NLRI_SIZELIMIT
)
2892 stream_putc(s
, PSIZE (p
->prefixlen
)+2);
2894 stream_putw(s
, (PSIZE (p
->prefixlen
)+2)|(0xf<<12));
2895 stream_putc(s
, 2);/* Filter type */
2896 stream_putc(s
, p
->prefixlen
);/* Prefix length */
2897 stream_put(s
, &p
->u
.prefix
, PSIZE (p
->prefixlen
));
2899 stream_put_prefix_addpath(s
, p
, addpath_encode
, addpath_tx_id
);
2902 size_t bgp_packet_mpattr_prefix_size(afi_t afi
, safi_t safi
, struct prefix
*p
)
2904 int size
= PSIZE(p
->prefixlen
);
2905 if (safi
== SAFI_MPLS_VPN
)
2907 else if (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
)
2908 size
+= 232; // TODO: Maximum possible for type-2, type-3 and
2914 * Encodes the tunnel encapsulation attribute,
2915 * and with ENABLE_BGP_VNC the VNC attribute which uses
2916 * almost the same TLV format
2918 static void bgp_packet_mpattr_tea(struct bgp
*bgp
, struct peer
*peer
,
2919 struct stream
*s
, struct attr
*attr
,
2922 unsigned int attrlenfield
= 0;
2923 unsigned int attrhdrlen
= 0;
2924 struct bgp_attr_encap_subtlv
*subtlvs
;
2925 struct bgp_attr_encap_subtlv
*st
;
2926 const char *attrname
;
2928 if (!attr
|| (attrtype
== BGP_ATTR_ENCAP
2929 && (!attr
->encap_tunneltype
2930 || attr
->encap_tunneltype
== BGP_ENCAP_TYPE_MPLS
)))
2934 case BGP_ATTR_ENCAP
:
2935 attrname
= "Tunnel Encap";
2936 subtlvs
= attr
->encap_subtlvs
;
2937 if (subtlvs
== NULL
) /* nothing to do */
2940 * The tunnel encap attr has an "outer" tlv.
2942 * L = total length of subtlvs,
2943 * V = concatenated subtlvs.
2945 attrlenfield
= 2 + 2; /* T + L */
2946 attrhdrlen
= 1 + 1; /* subTLV T + L */
2952 subtlvs
= attr
->vnc_subtlvs
;
2953 if (subtlvs
== NULL
) /* nothing to do */
2955 attrlenfield
= 0; /* no outer T + L */
2956 attrhdrlen
= 2 + 2; /* subTLV T + L */
2964 /* compute attr length */
2965 for (st
= subtlvs
; st
; st
= st
->next
) {
2966 attrlenfield
+= (attrhdrlen
+ st
->length
);
2969 if (attrlenfield
> 0xffff) {
2970 zlog_info("%s attribute is too long (length=%d), can't send it",
2971 attrname
, attrlenfield
);
2975 if (attrlenfield
> 0xff) {
2976 /* 2-octet length field */
2978 BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
2979 | BGP_ATTR_FLAG_EXTLEN
);
2980 stream_putc(s
, attrtype
);
2981 stream_putw(s
, attrlenfield
& 0xffff);
2983 /* 1-octet length field */
2984 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
);
2985 stream_putc(s
, attrtype
);
2986 stream_putc(s
, attrlenfield
& 0xff);
2989 if (attrtype
== BGP_ATTR_ENCAP
) {
2990 /* write outer T+L */
2991 stream_putw(s
, attr
->encap_tunneltype
);
2992 stream_putw(s
, attrlenfield
- 4);
2995 /* write each sub-tlv */
2996 for (st
= subtlvs
; st
; st
= st
->next
) {
2997 if (attrtype
== BGP_ATTR_ENCAP
) {
2998 stream_putc(s
, st
->type
);
2999 stream_putc(s
, st
->length
);
3002 stream_putw(s
, st
->type
);
3003 stream_putw(s
, st
->length
);
3006 stream_put(s
, st
->value
, st
->length
);
3010 void bgp_packet_mpattr_end(struct stream
*s
, size_t sizep
)
3012 /* Set MP attribute length. Don't count the (2) bytes used to encode
3014 stream_putw_at(s
, sizep
, (stream_get_endp(s
) - sizep
) - 2);
3017 /* Make attribute packet. */
3018 bgp_size_t
bgp_packet_attribute(struct bgp
*bgp
, struct peer
*peer
,
3019 struct stream
*s
, struct attr
*attr
,
3020 struct bpacket_attr_vec_arr
*vecarr
,
3021 struct prefix
*p
, afi_t afi
, safi_t safi
,
3022 struct peer
*from
, struct prefix_rd
*prd
,
3023 mpls_label_t
*label
, uint32_t num_labels
,
3024 int addpath_encode
, uint32_t addpath_tx_id
)
3027 size_t aspath_sizep
;
3028 struct aspath
*aspath
;
3029 int send_as4_path
= 0;
3030 int send_as4_aggregator
= 0;
3031 int use32bit
= (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
)) ? 1 : 0;
3036 /* Remember current pointer. */
3037 cp
= stream_get_endp(s
);
3040 && !((afi
== AFI_IP
&& safi
== SAFI_UNICAST
)
3041 && !peer_cap_enhe(peer
, afi
, safi
))) {
3042 size_t mpattrlen_pos
= 0;
3044 mpattrlen_pos
= bgp_packet_mpattr_start(s
, peer
, afi
, safi
,
3046 bgp_packet_mpattr_prefix(s
, afi
, safi
, p
, prd
, label
,
3047 num_labels
, addpath_encode
,
3048 addpath_tx_id
, attr
);
3049 bgp_packet_mpattr_end(s
, mpattrlen_pos
);
3052 /* Origin attribute. */
3053 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3054 stream_putc(s
, BGP_ATTR_ORIGIN
);
3056 stream_putc(s
, attr
->origin
);
3058 /* AS path attribute. */
3060 /* If remote-peer is EBGP */
3061 if (peer
->sort
== BGP_PEER_EBGP
3062 && (!CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3063 PEER_FLAG_AS_PATH_UNCHANGED
)
3064 || attr
->aspath
->segments
== NULL
)
3065 && (!CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3066 PEER_FLAG_RSERVER_CLIENT
))) {
3067 aspath
= aspath_dup(attr
->aspath
);
3069 /* Even though we may not be configured for confederations we
3071 * RXed an AS_PATH with AS_CONFED_SEQUENCE or AS_CONFED_SET */
3072 aspath
= aspath_delete_confed_seq(aspath
);
3074 if (CHECK_FLAG(bgp
->config
, BGP_CONFIG_CONFEDERATION
)) {
3075 /* Stuff our path CONFED_ID on the front */
3076 aspath
= aspath_add_seq(aspath
, bgp
->confed_id
);
3078 if (peer
->change_local_as
) {
3079 /* If replace-as is specified, we only use the
3080 change_local_as when
3081 advertising routes. */
3084 PEER_FLAG_LOCAL_AS_REPLACE_AS
)) {
3085 aspath
= aspath_add_seq(aspath
,
3088 aspath
= aspath_add_seq(aspath
,
3089 peer
->change_local_as
);
3091 aspath
= aspath_add_seq(aspath
, peer
->local_as
);
3094 } else if (peer
->sort
== BGP_PEER_CONFED
) {
3095 /* A confed member, so we need to do the AS_CONFED_SEQUENCE
3097 aspath
= aspath_dup(attr
->aspath
);
3098 aspath
= aspath_add_confed_seq(aspath
, peer
->local_as
);
3100 aspath
= attr
->aspath
;
3102 /* If peer is not AS4 capable, then:
3103 * - send the created AS_PATH out as AS4_PATH (optional, transitive),
3104 * but ensure that no AS_CONFED_SEQUENCE and AS_CONFED_SET path
3106 * types are in it (i.e. exclude them if they are there)
3107 * AND do this only if there is at least one asnum > 65535 in the
3109 * - send an AS_PATH out, but put 16Bit ASnums in it, not 32bit, and
3111 * all ASnums > 65535 to BGP_AS_TRANS
3114 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_EXTLEN
);
3115 stream_putc(s
, BGP_ATTR_AS_PATH
);
3116 aspath_sizep
= stream_get_endp(s
);
3118 stream_putw_at(s
, aspath_sizep
, aspath_put(s
, aspath
, use32bit
));
3120 /* OLD session may need NEW_AS_PATH sent, if there are 4-byte ASNs
3123 if (!use32bit
&& aspath_has_as4(aspath
))
3125 1; /* we'll do this later, at the correct place */
3127 /* Nexthop attribute. */
3128 if (afi
== AFI_IP
&& safi
== SAFI_UNICAST
3129 && !peer_cap_enhe(peer
, afi
, safi
)) {
3130 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
)) {
3131 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3132 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3133 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
,
3136 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3137 } else if (peer_cap_enhe(from
, afi
, safi
)) {
3139 * Likely this is the case when an IPv4 prefix was
3141 * Extended Next-hop capability and now being advertised
3144 * Setting the mandatory (ipv4) next-hop attribute here
3146 * implicit next-hop self with correct (ipv4 address
3149 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3150 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3151 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
,
3154 stream_put_ipv4(s
, 0);
3158 /* MED attribute. */
3159 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
)
3160 || bgp
->maxmed_active
) {
3161 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3162 stream_putc(s
, BGP_ATTR_MULTI_EXIT_DISC
);
3164 stream_putl(s
, (bgp
->maxmed_active
? bgp
->maxmed_value
3168 /* Local preference. */
3169 if (peer
->sort
== BGP_PEER_IBGP
|| peer
->sort
== BGP_PEER_CONFED
) {
3170 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3171 stream_putc(s
, BGP_ATTR_LOCAL_PREF
);
3173 stream_putl(s
, attr
->local_pref
);
3176 /* Atomic aggregate. */
3177 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
)) {
3178 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3179 stream_putc(s
, BGP_ATTR_ATOMIC_AGGREGATE
);
3184 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
)) {
3185 /* Common to BGP_ATTR_AGGREGATOR, regardless of ASN size */
3186 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3187 stream_putc(s
, BGP_ATTR_AGGREGATOR
);
3190 /* AS4 capable peer */
3192 stream_putl(s
, attr
->aggregator_as
);
3194 /* 2-byte AS peer */
3197 /* Is ASN representable in 2-bytes? Or must AS_TRANS be
3199 if (attr
->aggregator_as
> 65535) {
3200 stream_putw(s
, BGP_AS_TRANS
);
3202 /* we have to send AS4_AGGREGATOR, too.
3203 * we'll do that later in order to send
3204 * attributes in ascending
3207 send_as4_aggregator
= 1;
3209 stream_putw(s
, (uint16_t)attr
->aggregator_as
);
3211 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3214 /* Community attribute. */
3215 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
], PEER_FLAG_SEND_COMMUNITY
)
3216 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
))) {
3217 if (attr
->community
->size
* 4 > 255) {
3219 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3220 | BGP_ATTR_FLAG_EXTLEN
);
3221 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3222 stream_putw(s
, attr
->community
->size
* 4);
3225 BGP_ATTR_FLAG_OPTIONAL
3226 | BGP_ATTR_FLAG_TRANS
);
3227 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3228 stream_putc(s
, attr
->community
->size
* 4);
3230 stream_put(s
, attr
->community
->val
, attr
->community
->size
* 4);
3234 * Large Community attribute.
3236 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3237 PEER_FLAG_SEND_LARGE_COMMUNITY
)
3238 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
))) {
3239 if (lcom_length(attr
->lcommunity
) > 255) {
3241 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3242 | BGP_ATTR_FLAG_EXTLEN
);
3243 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3244 stream_putw(s
, lcom_length(attr
->lcommunity
));
3247 BGP_ATTR_FLAG_OPTIONAL
3248 | BGP_ATTR_FLAG_TRANS
);
3249 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3250 stream_putc(s
, lcom_length(attr
->lcommunity
));
3252 stream_put(s
, attr
->lcommunity
->val
,
3253 lcom_length(attr
->lcommunity
));
3256 /* Route Reflector. */
3257 if (peer
->sort
== BGP_PEER_IBGP
&& from
3258 && from
->sort
== BGP_PEER_IBGP
) {
3259 /* Originator ID. */
3260 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3261 stream_putc(s
, BGP_ATTR_ORIGINATOR_ID
);
3264 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID
))
3265 stream_put_in_addr(s
, &attr
->originator_id
);
3267 stream_put_in_addr(s
, &from
->remote_id
);
3270 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3271 stream_putc(s
, BGP_ATTR_CLUSTER_LIST
);
3273 if (attr
->cluster
) {
3274 stream_putc(s
, attr
->cluster
->length
+ 4);
3275 /* If this peer configuration's parent BGP has
3277 if (bgp
->config
& BGP_CONFIG_CLUSTER_ID
)
3278 stream_put_in_addr(s
, &bgp
->cluster_id
);
3280 stream_put_in_addr(s
, &bgp
->router_id
);
3281 stream_put(s
, attr
->cluster
->list
,
3282 attr
->cluster
->length
);
3285 /* If this peer configuration's parent BGP has
3287 if (bgp
->config
& BGP_CONFIG_CLUSTER_ID
)
3288 stream_put_in_addr(s
, &bgp
->cluster_id
);
3290 stream_put_in_addr(s
, &bgp
->router_id
);
3294 /* Extended Communities attribute. */
3295 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
], PEER_FLAG_SEND_EXT_COMMUNITY
)
3296 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
))) {
3297 if (peer
->sort
== BGP_PEER_IBGP
3298 || peer
->sort
== BGP_PEER_CONFED
) {
3299 if (attr
->ecommunity
->size
* 8 > 255) {
3301 BGP_ATTR_FLAG_OPTIONAL
3302 | BGP_ATTR_FLAG_TRANS
3303 | BGP_ATTR_FLAG_EXTLEN
);
3304 stream_putc(s
, BGP_ATTR_EXT_COMMUNITIES
);
3305 stream_putw(s
, attr
->ecommunity
->size
* 8);
3308 BGP_ATTR_FLAG_OPTIONAL
3309 | BGP_ATTR_FLAG_TRANS
);
3310 stream_putc(s
, BGP_ATTR_EXT_COMMUNITIES
);
3311 stream_putc(s
, attr
->ecommunity
->size
* 8);
3313 stream_put(s
, attr
->ecommunity
->val
,
3314 attr
->ecommunity
->size
* 8);
3318 int ecom_tr_size
= 0;
3321 for (i
= 0; i
< attr
->ecommunity
->size
; i
++) {
3322 pnt
= attr
->ecommunity
->val
+ (i
* 8);
3325 if (CHECK_FLAG(tbit
,
3326 ECOMMUNITY_FLAG_NON_TRANSITIVE
))
3333 if (ecom_tr_size
* 8 > 255) {
3336 BGP_ATTR_FLAG_OPTIONAL
3337 | BGP_ATTR_FLAG_TRANS
3338 | BGP_ATTR_FLAG_EXTLEN
);
3340 BGP_ATTR_EXT_COMMUNITIES
);
3341 stream_putw(s
, ecom_tr_size
* 8);
3345 BGP_ATTR_FLAG_OPTIONAL
3346 | BGP_ATTR_FLAG_TRANS
);
3348 BGP_ATTR_EXT_COMMUNITIES
);
3349 stream_putc(s
, ecom_tr_size
* 8);
3352 for (i
= 0; i
< attr
->ecommunity
->size
; i
++) {
3353 pnt
= attr
->ecommunity
->val
+ (i
* 8);
3358 ECOMMUNITY_FLAG_NON_TRANSITIVE
))
3361 stream_put(s
, pnt
, 8);
3367 /* Label index attribute. */
3368 if (safi
== SAFI_LABELED_UNICAST
) {
3369 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
)) {
3370 uint32_t label_index
;
3372 label_index
= attr
->label_index
;
3374 if (label_index
!= BGP_INVALID_LABEL_INDEX
) {
3376 BGP_ATTR_FLAG_OPTIONAL
3377 | BGP_ATTR_FLAG_TRANS
);
3378 stream_putc(s
, BGP_ATTR_PREFIX_SID
);
3380 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX
);
3382 BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
3383 stream_putc(s
, 0); // reserved
3384 stream_putw(s
, 0); // flags
3385 stream_putl(s
, label_index
);
3390 if (send_as4_path
) {
3391 /* If the peer is NOT As4 capable, AND */
3392 /* there are ASnums > 65535 in path THEN
3393 * give out AS4_PATH */
3395 /* Get rid of all AS_CONFED_SEQUENCE and AS_CONFED_SET
3397 * Hm, I wonder... confederation things *should* only be at
3398 * the beginning of an aspath, right? Then we should use
3399 * aspath_delete_confed_seq for this, because it is already
3401 * Folks, talk to me: what is reasonable here!?
3403 aspath
= aspath_delete_confed_seq(aspath
);
3406 BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
3407 | BGP_ATTR_FLAG_EXTLEN
);
3408 stream_putc(s
, BGP_ATTR_AS4_PATH
);
3409 aspath_sizep
= stream_get_endp(s
);
3411 stream_putw_at(s
, aspath_sizep
, aspath_put(s
, aspath
, 1));
3414 if (aspath
!= attr
->aspath
)
3415 aspath_free(aspath
);
3417 if (send_as4_aggregator
) {
3418 /* send AS4_AGGREGATOR, at this place */
3419 /* this section of code moved here in order to ensure the
3421 * *ascending* order of attributes
3423 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3424 stream_putc(s
, BGP_ATTR_AS4_AGGREGATOR
);
3426 stream_putl(s
, attr
->aggregator_as
);
3427 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3430 if (((afi
== AFI_IP
|| afi
== AFI_IP6
)
3431 && (safi
== SAFI_ENCAP
|| safi
== SAFI_MPLS_VPN
))
3432 || (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
)) {
3433 /* Tunnel Encap attribute */
3434 bgp_packet_mpattr_tea(bgp
, peer
, s
, attr
, BGP_ATTR_ENCAP
);
3438 bgp_packet_mpattr_tea(bgp
, peer
, s
, attr
, BGP_ATTR_VNC
);
3443 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL
)) {
3444 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3445 stream_putc(s
, BGP_ATTR_PMSI_TUNNEL
);
3446 stream_putc(s
, 9); // Length
3447 stream_putc(s
, 0); // Flags
3448 stream_putc(s
, PMSI_TNLTYPE_INGR_REPL
); // IR (6)
3449 stream_put(s
, &(attr
->label
),
3450 BGP_LABEL_BYTES
); // MPLS Label / VXLAN VNI
3451 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3452 // Unicast tunnel endpoint IP address
3455 /* Unknown transit attribute. */
3457 stream_put(s
, attr
->transit
->val
, attr
->transit
->length
);
3459 /* Return total size of attribute. */
3460 return stream_get_endp(s
) - cp
;
3463 size_t bgp_packet_mpunreach_start(struct stream
*s
, afi_t afi
, safi_t safi
)
3465 unsigned long attrlen_pnt
;
3467 iana_safi_t pkt_safi
;
3469 /* Set extended bit always to encode the attribute length as 2 bytes */
3470 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_EXTLEN
);
3471 stream_putc(s
, BGP_ATTR_MP_UNREACH_NLRI
);
3473 attrlen_pnt
= stream_get_endp(s
);
3474 stream_putw(s
, 0); /* Length of this attribute. */
3476 /* Convert AFI, SAFI to values for packet. */
3477 bgp_map_afi_safi_int2iana(afi
, safi
, &pkt_afi
, &pkt_safi
);
3479 stream_putw(s
, pkt_afi
);
3480 stream_putc(s
, pkt_safi
);
3485 void bgp_packet_mpunreach_prefix(struct stream
*s
, struct prefix
*p
, afi_t afi
,
3486 safi_t safi
, struct prefix_rd
*prd
,
3487 mpls_label_t
*label
, uint32_t num_labels
,
3488 int addpath_encode
, uint32_t addpath_tx_id
,
3491 uint8_t wlabel
[3] = {0x80, 0x00, 0x00};
3493 if (safi
== SAFI_LABELED_UNICAST
) {
3494 label
= (mpls_label_t
*)wlabel
;
3498 bgp_packet_mpattr_prefix(s
, afi
, safi
, p
, prd
, label
, num_labels
,
3499 addpath_encode
, addpath_tx_id
, attr
);
3502 void bgp_packet_mpunreach_end(struct stream
*s
, size_t attrlen_pnt
)
3504 bgp_packet_mpattr_end(s
, attrlen_pnt
);
3507 /* Initialization of attribute. */
3508 void bgp_attr_init(void)
3520 void bgp_attr_finish(void)
3525 ecommunity_finish();
3526 lcommunity_finish();
3532 /* Make attribute packet. */
3533 void bgp_dump_routes_attr(struct stream
*s
, struct attr
*attr
,
3534 struct prefix
*prefix
)
3539 struct aspath
*aspath
;
3540 int addpath_encode
= 0;
3541 uint32_t addpath_tx_id
= 0;
3543 /* Remember current pointer. */
3544 cp
= stream_get_endp(s
);
3546 /* Place holder of length. */
3549 /* Origin attribute. */
3550 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3551 stream_putc(s
, BGP_ATTR_ORIGIN
);
3553 stream_putc(s
, attr
->origin
);
3555 aspath
= attr
->aspath
;
3557 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_EXTLEN
);
3558 stream_putc(s
, BGP_ATTR_AS_PATH
);
3559 aspath_lenp
= stream_get_endp(s
);
3562 stream_putw_at(s
, aspath_lenp
, aspath_put(s
, aspath
, 1));
3564 /* Nexthop attribute. */
3565 /* If it's an IPv6 prefix, don't dump the IPv4 nexthop to save space */
3566 if (prefix
!= NULL
&& prefix
->family
!= AF_INET6
) {
3567 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3568 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3570 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3573 /* MED attribute. */
3574 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
)) {
3575 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3576 stream_putc(s
, BGP_ATTR_MULTI_EXIT_DISC
);
3578 stream_putl(s
, attr
->med
);
3581 /* Local preference. */
3582 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
)) {
3583 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3584 stream_putc(s
, BGP_ATTR_LOCAL_PREF
);
3586 stream_putl(s
, attr
->local_pref
);
3589 /* Atomic aggregate. */
3590 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
)) {
3591 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3592 stream_putc(s
, BGP_ATTR_ATOMIC_AGGREGATE
);
3597 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
)) {
3598 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3599 stream_putc(s
, BGP_ATTR_AGGREGATOR
);
3601 stream_putl(s
, attr
->aggregator_as
);
3602 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3605 /* Community attribute. */
3606 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
)) {
3607 if (attr
->community
->size
* 4 > 255) {
3609 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3610 | BGP_ATTR_FLAG_EXTLEN
);
3611 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3612 stream_putw(s
, attr
->community
->size
* 4);
3615 BGP_ATTR_FLAG_OPTIONAL
3616 | BGP_ATTR_FLAG_TRANS
);
3617 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3618 stream_putc(s
, attr
->community
->size
* 4);
3620 stream_put(s
, attr
->community
->val
, attr
->community
->size
* 4);
3623 /* Large Community attribute. */
3624 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
)) {
3625 if (lcom_length(attr
->lcommunity
) > 255) {
3627 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3628 | BGP_ATTR_FLAG_EXTLEN
);
3629 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3630 stream_putw(s
, lcom_length(attr
->lcommunity
));
3633 BGP_ATTR_FLAG_OPTIONAL
3634 | BGP_ATTR_FLAG_TRANS
);
3635 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3636 stream_putc(s
, lcom_length(attr
->lcommunity
));
3639 stream_put(s
, attr
->lcommunity
->val
,
3640 lcom_length(attr
->lcommunity
));
3643 /* Add a MP_NLRI attribute to dump the IPv6 next hop */
3644 if (prefix
!= NULL
&& prefix
->family
== AF_INET6
3645 && (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL
3646 || attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
)) {
3649 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3650 stream_putc(s
, BGP_ATTR_MP_REACH_NLRI
);
3651 sizep
= stream_get_endp(s
);
3654 stream_putc(s
, 0); /* Marker: Attribute length. */
3655 stream_putw(s
, AFI_IP6
); /* AFI */
3656 stream_putc(s
, SAFI_UNICAST
); /* SAFI */
3659 stream_putc(s
, attr
->mp_nexthop_len
);
3660 stream_put(s
, &attr
->mp_nexthop_global
, IPV6_MAX_BYTELEN
);
3661 if (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
)
3662 stream_put(s
, &attr
->mp_nexthop_local
,
3669 stream_put_prefix_addpath(s
, prefix
, addpath_encode
,
3672 /* Set MP attribute length. */
3673 stream_putc_at(s
, sizep
, (stream_get_endp(s
) - sizep
) - 1);
3677 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
)) {
3678 if (attr
->label_index
!= BGP_INVALID_LABEL_INDEX
) {
3680 BGP_ATTR_FLAG_OPTIONAL
3681 | BGP_ATTR_FLAG_TRANS
);
3682 stream_putc(s
, BGP_ATTR_PREFIX_SID
);
3684 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX
);
3685 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
3686 stream_putc(s
, 0); // reserved
3687 stream_putw(s
, 0); // flags
3688 stream_putl(s
, attr
->label_index
);
3692 /* Return total size of attribute. */
3693 len
= stream_get_endp(s
) - cp
- 2;
3694 stream_putw_at(s
, cp
, len
);