1 /* BGP attributes management routines.
2 * Copyright (C) 1996, 97, 98, 1999 Kunihiro Ishiguro
4 * This file is part of GNU Zebra.
6 * GNU Zebra is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the
8 * Free Software Foundation; either version 2, or (at your option) any
11 * GNU Zebra is distributed in the hope that it will be useful, but
12 * WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * General Public License for more details.
16 * You should have received a copy of the GNU General Public License along
17 * with this program; see the file COPYING; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
36 #include "bgpd/bgpd.h"
37 #include "bgpd/bgp_attr.h"
38 #include "bgpd/bgp_route.h"
39 #include "bgpd/bgp_aspath.h"
40 #include "bgpd/bgp_community.h"
41 #include "bgpd/bgp_debug.h"
42 #include "bgpd/bgp_errors.h"
43 #include "bgpd/bgp_label.h"
44 #include "bgpd/bgp_packet.h"
45 #include "bgpd/bgp_ecommunity.h"
46 #include "bgpd/bgp_lcommunity.h"
47 #include "bgpd/bgp_updgrp.h"
48 #include "bgpd/bgp_encap_types.h"
50 #include "bgpd/rfapi/bgp_rfapi_cfg.h"
51 #include "bgp_encap_types.h"
52 #include "bgp_vnc_types.h"
54 #include "bgp_encap_types.h"
56 #include "bgp_flowspec_private.h"
58 /* Attribute strings for logging. */
59 static const struct message attr_str
[] = {
60 {BGP_ATTR_ORIGIN
, "ORIGIN"},
61 {BGP_ATTR_AS_PATH
, "AS_PATH"},
62 {BGP_ATTR_NEXT_HOP
, "NEXT_HOP"},
63 {BGP_ATTR_MULTI_EXIT_DISC
, "MULTI_EXIT_DISC"},
64 {BGP_ATTR_LOCAL_PREF
, "LOCAL_PREF"},
65 {BGP_ATTR_ATOMIC_AGGREGATE
, "ATOMIC_AGGREGATE"},
66 {BGP_ATTR_AGGREGATOR
, "AGGREGATOR"},
67 {BGP_ATTR_COMMUNITIES
, "COMMUNITY"},
68 {BGP_ATTR_ORIGINATOR_ID
, "ORIGINATOR_ID"},
69 {BGP_ATTR_CLUSTER_LIST
, "CLUSTER_LIST"},
70 {BGP_ATTR_DPA
, "DPA"},
71 {BGP_ATTR_ADVERTISER
, "ADVERTISER"},
72 {BGP_ATTR_RCID_PATH
, "RCID_PATH"},
73 {BGP_ATTR_MP_REACH_NLRI
, "MP_REACH_NLRI"},
74 {BGP_ATTR_MP_UNREACH_NLRI
, "MP_UNREACH_NLRI"},
75 {BGP_ATTR_EXT_COMMUNITIES
, "EXT_COMMUNITIES"},
76 {BGP_ATTR_AS4_PATH
, "AS4_PATH"},
77 {BGP_ATTR_AS4_AGGREGATOR
, "AS4_AGGREGATOR"},
78 {BGP_ATTR_AS_PATHLIMIT
, "AS_PATHLIMIT"},
79 {BGP_ATTR_PMSI_TUNNEL
, "PMSI_TUNNEL_ATTRIBUTE"},
80 {BGP_ATTR_ENCAP
, "ENCAP"},
82 {BGP_ATTR_VNC
, "VNC"},
84 {BGP_ATTR_LARGE_COMMUNITIES
, "LARGE_COMMUNITY"},
85 {BGP_ATTR_PREFIX_SID
, "PREFIX_SID"},
88 static const struct message attr_flag_str
[] = {
89 {BGP_ATTR_FLAG_OPTIONAL
, "Optional"},
90 {BGP_ATTR_FLAG_TRANS
, "Transitive"},
91 {BGP_ATTR_FLAG_PARTIAL
, "Partial"},
92 /* bgp_attr_flags_diagnose() relies on this bit being last in
94 {BGP_ATTR_FLAG_EXTLEN
, "Extended Length"},
97 static struct hash
*cluster_hash
;
99 static void *cluster_hash_alloc(void *p
)
101 const struct cluster_list
*val
= (const struct cluster_list
*)p
;
102 struct cluster_list
*cluster
;
104 cluster
= XMALLOC(MTYPE_CLUSTER
, sizeof(struct cluster_list
));
105 cluster
->length
= val
->length
;
107 if (cluster
->length
) {
108 cluster
->list
= XMALLOC(MTYPE_CLUSTER_VAL
, val
->length
);
109 memcpy(cluster
->list
, val
->list
, val
->length
);
111 cluster
->list
= NULL
;
118 /* Cluster list related functions. */
119 static struct cluster_list
*cluster_parse(struct in_addr
*pnt
, int length
)
121 struct cluster_list tmp
;
122 struct cluster_list
*cluster
;
127 cluster
= hash_get(cluster_hash
, &tmp
, cluster_hash_alloc
);
132 int cluster_loop_check(struct cluster_list
*cluster
, struct in_addr originator
)
136 for (i
= 0; i
< cluster
->length
/ 4; i
++)
137 if (cluster
->list
[i
].s_addr
== originator
.s_addr
)
142 static unsigned int cluster_hash_key_make(void *p
)
144 const struct cluster_list
*cluster
= p
;
146 return jhash(cluster
->list
, cluster
->length
, 0);
149 static int cluster_hash_cmp(const void *p1
, const void *p2
)
151 const struct cluster_list
*cluster1
= p1
;
152 const struct cluster_list
*cluster2
= p2
;
154 return (cluster1
->length
== cluster2
->length
155 && memcmp(cluster1
->list
, cluster2
->list
, cluster1
->length
)
159 static void cluster_free(struct cluster_list
*cluster
)
162 XFREE(MTYPE_CLUSTER_VAL
, cluster
->list
);
163 XFREE(MTYPE_CLUSTER
, cluster
);
166 static struct cluster_list
*cluster_intern(struct cluster_list
*cluster
)
168 struct cluster_list
*find
;
170 find
= hash_get(cluster_hash
, cluster
, cluster_hash_alloc
);
176 void cluster_unintern(struct cluster_list
*cluster
)
181 if (cluster
->refcnt
== 0) {
182 hash_release(cluster_hash
, cluster
);
183 cluster_free(cluster
);
187 static void cluster_init(void)
189 cluster_hash
= hash_create(cluster_hash_key_make
, cluster_hash_cmp
,
193 static void cluster_finish(void)
195 hash_clean(cluster_hash
, (void (*)(void *))cluster_free
);
196 hash_free(cluster_hash
);
200 static struct hash
*encap_hash
= NULL
;
202 static struct hash
*vnc_hash
= NULL
;
205 struct bgp_attr_encap_subtlv
*encap_tlv_dup(struct bgp_attr_encap_subtlv
*orig
)
207 struct bgp_attr_encap_subtlv
*new;
208 struct bgp_attr_encap_subtlv
*tail
;
209 struct bgp_attr_encap_subtlv
*p
;
211 for (p
= orig
, tail
= new = NULL
; p
; p
= p
->next
) {
212 int size
= sizeof(struct bgp_attr_encap_subtlv
) + p
->length
;
214 tail
->next
= XCALLOC(MTYPE_ENCAP_TLV
, size
);
217 tail
= new = XCALLOC(MTYPE_ENCAP_TLV
, size
);
220 memcpy(tail
, p
, size
);
227 static void encap_free(struct bgp_attr_encap_subtlv
*p
)
229 struct bgp_attr_encap_subtlv
*next
;
233 XFREE(MTYPE_ENCAP_TLV
, p
);
238 void bgp_attr_flush_encap(struct attr
*attr
)
243 if (attr
->encap_subtlvs
) {
244 encap_free(attr
->encap_subtlvs
);
245 attr
->encap_subtlvs
= NULL
;
248 if (attr
->vnc_subtlvs
) {
249 encap_free(attr
->vnc_subtlvs
);
250 attr
->vnc_subtlvs
= NULL
;
256 * Compare encap sub-tlv chains
261 * This algorithm could be made faster if needed
263 static int encap_same(struct bgp_attr_encap_subtlv
*h1
,
264 struct bgp_attr_encap_subtlv
*h2
)
266 struct bgp_attr_encap_subtlv
*p
;
267 struct bgp_attr_encap_subtlv
*q
;
271 if (h1
== NULL
|| h2
== NULL
)
274 for (p
= h1
; p
; p
= p
->next
) {
275 for (q
= h2
; q
; q
= q
->next
) {
276 if ((p
->type
== q
->type
) && (p
->length
== q
->length
)
277 && !memcmp(p
->value
, q
->value
, p
->length
)) {
286 for (p
= h2
; p
; p
= p
->next
) {
287 for (q
= h1
; q
; q
= q
->next
) {
288 if ((p
->type
== q
->type
) && (p
->length
== q
->length
)
289 && !memcmp(p
->value
, q
->value
, p
->length
)) {
301 static void *encap_hash_alloc(void *p
)
303 /* Encap structure is already allocated. */
314 static struct bgp_attr_encap_subtlv
*
315 encap_intern(struct bgp_attr_encap_subtlv
*encap
, encap_subtlv_type type
)
317 struct bgp_attr_encap_subtlv
*find
;
318 struct hash
*hash
= encap_hash
;
320 if (type
== VNC_SUBTLV_TYPE
)
324 find
= hash_get(hash
, encap
, encap_hash_alloc
);
332 static void encap_unintern(struct bgp_attr_encap_subtlv
**encapp
,
333 encap_subtlv_type type
)
335 struct bgp_attr_encap_subtlv
*encap
= *encapp
;
339 if (encap
->refcnt
== 0) {
340 struct hash
*hash
= encap_hash
;
342 if (type
== VNC_SUBTLV_TYPE
)
345 hash_release(hash
, encap
);
351 static unsigned int encap_hash_key_make(void *p
)
353 const struct bgp_attr_encap_subtlv
*encap
= p
;
355 return jhash(encap
->value
, encap
->length
, 0);
358 static int encap_hash_cmp(const void *p1
, const void *p2
)
360 return encap_same((struct bgp_attr_encap_subtlv
*)p1
,
361 (struct bgp_attr_encap_subtlv
*)p2
);
364 static void encap_init(void)
366 encap_hash
= hash_create(encap_hash_key_make
, encap_hash_cmp
,
369 vnc_hash
= hash_create(encap_hash_key_make
, encap_hash_cmp
,
374 static void encap_finish(void)
376 hash_clean(encap_hash
, (void (*)(void *))encap_free
);
377 hash_free(encap_hash
);
380 hash_clean(vnc_hash
, (void (*)(void *))encap_free
);
386 static bool overlay_index_same(const struct attr
*a1
, const struct attr
*a2
)
394 return !memcmp(&(a1
->evpn_overlay
), &(a2
->evpn_overlay
),
395 sizeof(struct overlay_index
));
398 /* Unknown transit attribute. */
399 static struct hash
*transit_hash
;
401 static void transit_free(struct transit
*transit
)
404 XFREE(MTYPE_TRANSIT_VAL
, transit
->val
);
405 XFREE(MTYPE_TRANSIT
, transit
);
408 static void *transit_hash_alloc(void *p
)
410 /* Transit structure is already allocated. */
414 static struct transit
*transit_intern(struct transit
*transit
)
416 struct transit
*find
;
418 find
= hash_get(transit_hash
, transit
, transit_hash_alloc
);
420 transit_free(transit
);
426 void transit_unintern(struct transit
*transit
)
431 if (transit
->refcnt
== 0) {
432 hash_release(transit_hash
, transit
);
433 transit_free(transit
);
437 static unsigned int transit_hash_key_make(void *p
)
439 const struct transit
*transit
= p
;
441 return jhash(transit
->val
, transit
->length
, 0);
444 static int transit_hash_cmp(const void *p1
, const void *p2
)
446 const struct transit
*transit1
= p1
;
447 const struct transit
*transit2
= p2
;
449 return (transit1
->length
== transit2
->length
450 && memcmp(transit1
->val
, transit2
->val
, transit1
->length
) == 0);
453 static void transit_init(void)
455 transit_hash
= hash_create(transit_hash_key_make
, transit_hash_cmp
,
459 static void transit_finish(void)
461 hash_clean(transit_hash
, (void (*)(void *))transit_free
);
462 hash_free(transit_hash
);
466 /* Attribute hash routines. */
467 static struct hash
*attrhash
;
469 /* Shallow copy of an attribute
470 * Though, not so shallow that it doesn't copy the contents
471 * of the attr_extra pointed to by 'extra'
473 void bgp_attr_dup(struct attr
*new, struct attr
*orig
)
478 unsigned long int attr_count(void)
480 return attrhash
->count
;
483 unsigned long int attr_unknown_count(void)
485 return transit_hash
->count
;
488 unsigned int attrhash_key_make(void *p
)
490 const struct attr
*attr
= (struct attr
*)p
;
492 #define MIX(val) key = jhash_1word(val, key)
493 #define MIX3(a, b, c) key = jhash_3words((a), (b), (c), key)
495 MIX3(attr
->origin
, attr
->nexthop
.s_addr
, attr
->med
);
496 MIX3(attr
->local_pref
, attr
->aggregator_as
,
497 attr
->aggregator_addr
.s_addr
);
498 MIX3(attr
->weight
, attr
->mp_nexthop_global_in
.s_addr
,
499 attr
->originator_id
.s_addr
);
500 MIX3(attr
->tag
, attr
->label
, attr
->label_index
);
503 MIX(aspath_key_make(attr
->aspath
));
505 MIX(community_hash_make(attr
->community
));
507 if (attr
->lcommunity
)
508 MIX(lcommunity_hash_make(attr
->lcommunity
));
509 if (attr
->ecommunity
)
510 MIX(ecommunity_hash_make(attr
->ecommunity
));
512 MIX(cluster_hash_key_make(attr
->cluster
));
514 MIX(transit_hash_key_make(attr
->transit
));
515 if (attr
->encap_subtlvs
)
516 MIX(encap_hash_key_make(attr
->encap_subtlvs
));
518 if (attr
->vnc_subtlvs
)
519 MIX(encap_hash_key_make(attr
->vnc_subtlvs
));
521 MIX(attr
->mp_nexthop_len
);
522 key
= jhash(attr
->mp_nexthop_global
.s6_addr
, IPV6_MAX_BYTELEN
, key
);
523 key
= jhash(attr
->mp_nexthop_local
.s6_addr
, IPV6_MAX_BYTELEN
, key
);
524 MIX(attr
->nh_ifindex
);
525 MIX(attr
->nh_lla_ifindex
);
530 int attrhash_cmp(const void *p1
, const void *p2
)
532 const struct attr
*attr1
= p1
;
533 const struct attr
*attr2
= p2
;
535 if (attr1
->flag
== attr2
->flag
&& attr1
->origin
== attr2
->origin
536 && attr1
->nexthop
.s_addr
== attr2
->nexthop
.s_addr
537 && attr1
->aspath
== attr2
->aspath
538 && attr1
->community
== attr2
->community
&& attr1
->med
== attr2
->med
539 && attr1
->local_pref
== attr2
->local_pref
540 && attr1
->rmap_change_flags
== attr2
->rmap_change_flags
) {
541 if (attr1
->aggregator_as
== attr2
->aggregator_as
542 && attr1
->aggregator_addr
.s_addr
543 == attr2
->aggregator_addr
.s_addr
544 && attr1
->weight
== attr2
->weight
545 && attr1
->tag
== attr2
->tag
546 && attr1
->label_index
== attr2
->label_index
547 && attr1
->mp_nexthop_len
== attr2
->mp_nexthop_len
548 && attr1
->ecommunity
== attr2
->ecommunity
549 && attr1
->lcommunity
== attr2
->lcommunity
550 && attr1
->cluster
== attr2
->cluster
551 && attr1
->transit
== attr2
->transit
552 && (attr1
->encap_tunneltype
== attr2
->encap_tunneltype
)
553 && encap_same(attr1
->encap_subtlvs
, attr2
->encap_subtlvs
)
555 && encap_same(attr1
->vnc_subtlvs
, attr2
->vnc_subtlvs
)
557 && IPV6_ADDR_SAME(&attr1
->mp_nexthop_global
,
558 &attr2
->mp_nexthop_global
)
559 && IPV6_ADDR_SAME(&attr1
->mp_nexthop_local
,
560 &attr2
->mp_nexthop_local
)
561 && IPV4_ADDR_SAME(&attr1
->mp_nexthop_global_in
,
562 &attr2
->mp_nexthop_global_in
)
563 && IPV4_ADDR_SAME(&attr1
->originator_id
,
564 &attr2
->originator_id
)
565 && overlay_index_same(attr1
, attr2
)
566 && attr1
->nh_ifindex
== attr2
->nh_ifindex
567 && attr1
->nh_lla_ifindex
== attr2
->nh_lla_ifindex
)
574 static void attrhash_init(void)
577 hash_create(attrhash_key_make
, attrhash_cmp
, "BGP Attributes");
581 * special for hash_clean below
583 static void attr_vfree(void *attr
)
585 XFREE(MTYPE_ATTR
, attr
);
588 static void attrhash_finish(void)
590 hash_clean(attrhash
, attr_vfree
);
595 static void attr_show_all_iterator(struct hash_backet
*backet
, struct vty
*vty
)
597 struct attr
*attr
= backet
->data
;
599 vty_out(vty
, "attr[%ld] nexthop %s\n", attr
->refcnt
,
600 inet_ntoa(attr
->nexthop
));
601 vty_out(vty
, "\tflags: %" PRIu64
" med: %u local_pref: %u origin: %u weight: %u label: %u\n",
602 attr
->flag
, attr
->med
, attr
->local_pref
, attr
->origin
,
603 attr
->weight
, attr
->label
);
606 void attr_show_all(struct vty
*vty
)
608 hash_iterate(attrhash
, (void (*)(struct hash_backet
*,
609 void *))attr_show_all_iterator
,
613 static void *bgp_attr_hash_alloc(void *p
)
615 struct attr
*val
= (struct attr
*)p
;
618 attr
= XMALLOC(MTYPE_ATTR
, sizeof(struct attr
));
620 if (val
->encap_subtlvs
) {
621 val
->encap_subtlvs
= NULL
;
624 if (val
->vnc_subtlvs
) {
625 val
->vnc_subtlvs
= NULL
;
632 /* Internet argument attribute. */
633 struct attr
*bgp_attr_intern(struct attr
*attr
)
637 /* Intern referenced strucutre. */
639 if (!attr
->aspath
->refcnt
)
640 attr
->aspath
= aspath_intern(attr
->aspath
);
642 attr
->aspath
->refcnt
++;
644 if (attr
->community
) {
645 if (!attr
->community
->refcnt
)
646 attr
->community
= community_intern(attr
->community
);
648 attr
->community
->refcnt
++;
651 if (attr
->ecommunity
) {
652 if (!attr
->ecommunity
->refcnt
)
653 attr
->ecommunity
= ecommunity_intern(attr
->ecommunity
);
655 attr
->ecommunity
->refcnt
++;
657 if (attr
->lcommunity
) {
658 if (!attr
->lcommunity
->refcnt
)
659 attr
->lcommunity
= lcommunity_intern(attr
->lcommunity
);
661 attr
->lcommunity
->refcnt
++;
664 if (!attr
->cluster
->refcnt
)
665 attr
->cluster
= cluster_intern(attr
->cluster
);
667 attr
->cluster
->refcnt
++;
670 if (!attr
->transit
->refcnt
)
671 attr
->transit
= transit_intern(attr
->transit
);
673 attr
->transit
->refcnt
++;
675 if (attr
->encap_subtlvs
) {
676 if (!attr
->encap_subtlvs
->refcnt
)
677 attr
->encap_subtlvs
= encap_intern(attr
->encap_subtlvs
,
680 attr
->encap_subtlvs
->refcnt
++;
683 if (attr
->vnc_subtlvs
) {
684 if (!attr
->vnc_subtlvs
->refcnt
)
685 attr
->vnc_subtlvs
= encap_intern(attr
->vnc_subtlvs
,
688 attr
->vnc_subtlvs
->refcnt
++;
692 /* At this point, attr only contains intern'd pointers. that means
693 * if we find it in attrhash, it has all the same pointers and we
694 * correctly updated the refcounts on these.
695 * If we don't find it, we need to allocate a one because in all
696 * cases this returns a new reference to a hashed attr, but the input
698 find
= (struct attr
*)hash_get(attrhash
, attr
, bgp_attr_hash_alloc
);
704 /* Make network statement's attribute. */
705 struct attr
*bgp_attr_default_set(struct attr
*attr
, uint8_t origin
)
707 memset(attr
, 0, sizeof(struct attr
));
709 attr
->origin
= origin
;
710 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
711 attr
->aspath
= aspath_empty();
712 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
713 attr
->weight
= BGP_ATTR_DEFAULT_WEIGHT
;
715 attr
->label_index
= BGP_INVALID_LABEL_INDEX
;
716 attr
->label
= MPLS_INVALID_LABEL
;
717 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
718 attr
->mp_nexthop_len
= IPV6_MAX_BYTELEN
;
723 /* Create the attributes for an aggregate */
724 struct attr
*bgp_attr_aggregate_intern(struct bgp
*bgp
, uint8_t origin
,
725 struct aspath
*aspath
,
726 struct community
*community
, int as_set
,
727 uint8_t atomic_aggregate
)
732 memset(&attr
, 0, sizeof(struct attr
));
734 /* Origin attribute. */
735 attr
.origin
= origin
;
736 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
738 /* AS path attribute. */
740 attr
.aspath
= aspath_intern(aspath
);
742 attr
.aspath
= aspath_empty();
743 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
745 /* Next hop attribute. */
746 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
749 uint32_t gshut
= COMMUNITY_GSHUT
;
751 /* If we are not shutting down ourselves and we are
752 * aggregating a route that contains the GSHUT community we
753 * need to remove that community when creating the aggregate */
754 if (!bgp_flag_check(bgp
, BGP_FLAG_GRACEFUL_SHUTDOWN
)
755 && community_include(community
, gshut
)) {
756 community_del_val(community
, &gshut
);
759 attr
.community
= community
;
760 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
);
763 if (bgp_flag_check(bgp
, BGP_FLAG_GRACEFUL_SHUTDOWN
)) {
764 bgp_attr_add_gshut_community(&attr
);
767 attr
.label_index
= BGP_INVALID_LABEL_INDEX
;
768 attr
.label
= MPLS_INVALID_LABEL
;
769 attr
.weight
= BGP_ATTR_DEFAULT_WEIGHT
;
770 attr
.mp_nexthop_len
= IPV6_MAX_BYTELEN
;
771 if (!as_set
|| atomic_aggregate
)
772 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
);
773 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
);
774 if (CHECK_FLAG(bgp
->config
, BGP_CONFIG_CONFEDERATION
))
775 attr
.aggregator_as
= bgp
->confed_id
;
777 attr
.aggregator_as
= bgp
->as
;
778 attr
.aggregator_addr
= bgp
->router_id
;
779 attr
.label_index
= BGP_INVALID_LABEL_INDEX
;
780 attr
.label
= MPLS_INVALID_LABEL
;
782 new = bgp_attr_intern(&attr
);
784 aspath_unintern(&new->aspath
);
788 /* Unintern just the sub-components of the attr, but not the attr */
789 void bgp_attr_unintern_sub(struct attr
*attr
)
791 /* aspath refcount shoud be decrement. */
793 aspath_unintern(&attr
->aspath
);
794 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
));
797 community_unintern(&attr
->community
);
798 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
));
800 if (attr
->ecommunity
)
801 ecommunity_unintern(&attr
->ecommunity
);
802 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
));
804 if (attr
->lcommunity
)
805 lcommunity_unintern(&attr
->lcommunity
);
806 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
));
809 cluster_unintern(attr
->cluster
);
810 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST
));
813 transit_unintern(attr
->transit
);
815 if (attr
->encap_subtlvs
)
816 encap_unintern(&attr
->encap_subtlvs
, ENCAP_SUBTLV_TYPE
);
819 if (attr
->vnc_subtlvs
)
820 encap_unintern(&attr
->vnc_subtlvs
, VNC_SUBTLV_TYPE
);
825 * We have some show commands that let you experimentally
826 * apply a route-map. When we apply the route-map
827 * we are reseting values but not saving them for
828 * posterity via intern'ing( because route-maps don't
829 * do that) but at this point in time we need
830 * to compare the new attr to the old and if the
831 * routemap has changed it we need to, as Snoop Dog says,
832 * Drop it like it's hot
834 void bgp_attr_undup(struct attr
*new, struct attr
*old
)
836 if (new->aspath
!= old
->aspath
)
837 aspath_free(new->aspath
);
839 if (new->community
!= old
->community
)
840 community_free(new->community
);
842 if (new->ecommunity
!= old
->ecommunity
)
843 ecommunity_free(&new->ecommunity
);
845 if (new->lcommunity
!= old
->lcommunity
)
846 lcommunity_free(&new->lcommunity
);
849 /* Free bgp attribute and aspath. */
850 void bgp_attr_unintern(struct attr
**pattr
)
852 struct attr
*attr
= *pattr
;
856 /* Decrement attribute reference. */
861 /* If reference becomes zero then free attribute object. */
862 if (attr
->refcnt
== 0) {
863 ret
= hash_release(attrhash
, attr
);
865 XFREE(MTYPE_ATTR
, attr
);
869 bgp_attr_unintern_sub(&tmp
);
872 void bgp_attr_flush(struct attr
*attr
)
874 if (attr
->aspath
&& !attr
->aspath
->refcnt
) {
875 aspath_free(attr
->aspath
);
878 if (attr
->community
&& !attr
->community
->refcnt
) {
879 community_free(attr
->community
);
880 attr
->community
= NULL
;
883 if (attr
->ecommunity
&& !attr
->ecommunity
->refcnt
)
884 ecommunity_free(&attr
->ecommunity
);
885 if (attr
->lcommunity
&& !attr
->lcommunity
->refcnt
)
886 lcommunity_free(&attr
->lcommunity
);
887 if (attr
->cluster
&& !attr
->cluster
->refcnt
) {
888 cluster_free(attr
->cluster
);
889 attr
->cluster
= NULL
;
891 if (attr
->transit
&& !attr
->transit
->refcnt
) {
892 transit_free(attr
->transit
);
893 attr
->transit
= NULL
;
895 if (attr
->encap_subtlvs
&& !attr
->encap_subtlvs
->refcnt
) {
896 encap_free(attr
->encap_subtlvs
);
897 attr
->encap_subtlvs
= NULL
;
900 if (attr
->vnc_subtlvs
&& !attr
->vnc_subtlvs
->refcnt
) {
901 encap_free(attr
->vnc_subtlvs
);
902 attr
->vnc_subtlvs
= NULL
;
907 /* Implement draft-scudder-idr-optional-transitive behaviour and
908 * avoid resetting sessions for malformed attributes which are
909 * are partial/optional and hence where the error likely was not
910 * introduced by the sending neighbour.
912 static bgp_attr_parse_ret_t
913 bgp_attr_malformed(struct bgp_attr_parser_args
*args
, uint8_t subcode
,
916 struct peer
*const peer
= args
->peer
;
917 const uint8_t flags
= args
->flags
;
918 /* startp and length must be special-cased, as whether or not to
919 * send the attribute data with the NOTIFY depends on the error,
920 * the caller therefore signals this with the seperate length argument
922 uint8_t *notify_datap
= (length
> 0 ? args
->startp
: NULL
);
924 /* Only relax error handling for eBGP peers */
925 if (peer
->sort
!= BGP_PEER_EBGP
) {
926 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
, subcode
,
927 notify_datap
, length
);
928 return BGP_ATTR_PARSE_ERROR
;
931 /* Adjust the stream getp to the end of the attribute, in case we can
932 * still proceed but the caller hasn't read all the attribute.
934 stream_set_getp(BGP_INPUT(peer
),
935 (args
->startp
- STREAM_DATA(BGP_INPUT(peer
)))
938 switch (args
->type
) {
939 /* where an attribute is relatively inconsequential, e.g. it does not
940 * affect route selection, and can be safely ignored, then any such
941 * attributes which are malformed should just be ignored and the route
942 * processed as normal.
944 case BGP_ATTR_AS4_AGGREGATOR
:
945 case BGP_ATTR_AGGREGATOR
:
946 case BGP_ATTR_ATOMIC_AGGREGATE
:
947 return BGP_ATTR_PARSE_PROCEED
;
949 /* Core attributes, particularly ones which may influence route
950 * selection, should always cause session resets
952 case BGP_ATTR_ORIGIN
:
953 case BGP_ATTR_AS_PATH
:
954 case BGP_ATTR_NEXT_HOP
:
955 case BGP_ATTR_MULTI_EXIT_DISC
:
956 case BGP_ATTR_LOCAL_PREF
:
957 case BGP_ATTR_COMMUNITIES
:
958 case BGP_ATTR_ORIGINATOR_ID
:
959 case BGP_ATTR_CLUSTER_LIST
:
960 case BGP_ATTR_MP_REACH_NLRI
:
961 case BGP_ATTR_MP_UNREACH_NLRI
:
962 case BGP_ATTR_EXT_COMMUNITIES
:
963 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
, subcode
,
964 notify_datap
, length
);
965 return BGP_ATTR_PARSE_ERROR
;
968 /* Partial optional attributes that are malformed should not cause
969 * the whole session to be reset. Instead treat it as a withdrawal
970 * of the routes, if possible.
972 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
)
973 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
974 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_PARTIAL
))
975 return BGP_ATTR_PARSE_WITHDRAW
;
977 /* default to reset */
978 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
981 /* Find out what is wrong with the path attribute flag bits and log the error.
982 "Flag bits" here stand for Optional, Transitive and Partial, but not for
983 Extended Length. Checking O/T/P bits at once implies, that the attribute
984 being diagnosed is defined by RFC as either a "well-known" or an "optional,
985 non-transitive" attribute. */
987 bgp_attr_flags_diagnose(struct bgp_attr_parser_args
*args
,
988 uint8_t desired_flags
/* how RFC says it must be */
992 uint8_t real_flags
= args
->flags
;
993 const uint8_t attr_code
= args
->type
;
995 desired_flags
&= ~BGP_ATTR_FLAG_EXTLEN
;
996 real_flags
&= ~BGP_ATTR_FLAG_EXTLEN
;
997 for (i
= 0; i
<= 2; i
++) /* O,T,P, but not E */
998 if (CHECK_FLAG(desired_flags
, attr_flag_str
[i
].key
)
999 != CHECK_FLAG(real_flags
, attr_flag_str
[i
].key
)) {
1002 "%s attribute must%s be flagged as \"%s\"",
1003 lookup_msg(attr_str
, attr_code
, NULL
),
1004 CHECK_FLAG(desired_flags
, attr_flag_str
[i
].key
)
1007 attr_flag_str
[i
].str
);
1012 "Strange, %s called for attr %s, but no problem found with flags"
1013 " (real flags 0x%x, desired 0x%x)",
1014 __func__
, lookup_msg(attr_str
, attr_code
, NULL
),
1015 real_flags
, desired_flags
);
1019 /* Required flags for attributes. EXTLEN will be masked off when testing,
1020 * as will PARTIAL for optional+transitive attributes.
1022 const uint8_t attr_flags_values
[] = {
1023 [BGP_ATTR_ORIGIN
] = BGP_ATTR_FLAG_TRANS
,
1024 [BGP_ATTR_AS_PATH
] = BGP_ATTR_FLAG_TRANS
,
1025 [BGP_ATTR_NEXT_HOP
] = BGP_ATTR_FLAG_TRANS
,
1026 [BGP_ATTR_MULTI_EXIT_DISC
] = BGP_ATTR_FLAG_OPTIONAL
,
1027 [BGP_ATTR_LOCAL_PREF
] = BGP_ATTR_FLAG_TRANS
,
1028 [BGP_ATTR_ATOMIC_AGGREGATE
] = BGP_ATTR_FLAG_TRANS
,
1029 [BGP_ATTR_AGGREGATOR
] = BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
,
1030 [BGP_ATTR_COMMUNITIES
] = BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
,
1031 [BGP_ATTR_ORIGINATOR_ID
] = BGP_ATTR_FLAG_OPTIONAL
,
1032 [BGP_ATTR_CLUSTER_LIST
] = BGP_ATTR_FLAG_OPTIONAL
,
1033 [BGP_ATTR_MP_REACH_NLRI
] = BGP_ATTR_FLAG_OPTIONAL
,
1034 [BGP_ATTR_MP_UNREACH_NLRI
] = BGP_ATTR_FLAG_OPTIONAL
,
1035 [BGP_ATTR_EXT_COMMUNITIES
] =
1036 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1037 [BGP_ATTR_AS4_PATH
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1038 [BGP_ATTR_AS4_AGGREGATOR
] =
1039 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1040 [BGP_ATTR_PMSI_TUNNEL
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1041 [BGP_ATTR_LARGE_COMMUNITIES
] =
1042 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1043 [BGP_ATTR_PREFIX_SID
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1045 static const size_t attr_flags_values_max
= array_size(attr_flags_values
) - 1;
1047 static int bgp_attr_flag_invalid(struct bgp_attr_parser_args
*args
)
1049 uint8_t mask
= BGP_ATTR_FLAG_EXTLEN
;
1050 const uint8_t flags
= args
->flags
;
1051 const uint8_t attr_code
= args
->type
;
1053 /* there may be attributes we don't know about */
1054 if (attr_code
> attr_flags_values_max
)
1056 if (attr_flags_values
[attr_code
] == 0)
1059 /* RFC4271, "For well-known attributes, the Transitive bit MUST be set
1063 if (!CHECK_FLAG(BGP_ATTR_FLAG_OPTIONAL
, flags
)
1064 && !CHECK_FLAG(BGP_ATTR_FLAG_TRANS
, flags
)) {
1067 "%s well-known attributes must have transitive flag set (%x)",
1068 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1072 /* "For well-known attributes and for optional non-transitive
1074 * the Partial bit MUST be set to 0."
1076 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_PARTIAL
)) {
1077 if (!CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)) {
1078 flog_err(BGP_ERR_ATTR_FLAG
,
1079 "%s well-known attribute "
1080 "must NOT have the partial flag set (%x)",
1081 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1084 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
1085 && !CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
)) {
1086 flog_err(BGP_ERR_ATTR_FLAG
,
1087 "%s optional + transitive attribute "
1088 "must NOT have the partial flag set (%x)",
1089 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1094 /* Optional transitive attributes may go through speakers that don't
1095 * reocgnise them and set the Partial bit.
1097 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
1098 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
))
1099 SET_FLAG(mask
, BGP_ATTR_FLAG_PARTIAL
);
1101 if ((flags
& ~mask
) == attr_flags_values
[attr_code
])
1104 bgp_attr_flags_diagnose(args
, attr_flags_values
[attr_code
]);
1108 /* Get origin attribute of the update message. */
1109 static bgp_attr_parse_ret_t
bgp_attr_origin(struct bgp_attr_parser_args
*args
)
1111 struct peer
*const peer
= args
->peer
;
1112 struct attr
*const attr
= args
->attr
;
1113 const bgp_size_t length
= args
->length
;
1115 /* If any recognized attribute has Attribute Length that conflicts
1116 with the expected length (based on the attribute type code), then
1117 the Error Subcode is set to Attribute Length Error. The Data
1118 field contains the erroneous attribute (type, length and
1121 flog_err(BGP_ERR_ATTR_LEN
,
1122 "Origin attribute length is not one %d", length
);
1123 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1127 /* Fetch origin attribute. */
1128 attr
->origin
= stream_getc(BGP_INPUT(peer
));
1130 /* If the ORIGIN attribute has an undefined value, then the Error
1131 Subcode is set to Invalid Origin Attribute. The Data field
1132 contains the unrecognized attribute (type, length and value). */
1133 if ((attr
->origin
!= BGP_ORIGIN_IGP
) && (attr
->origin
!= BGP_ORIGIN_EGP
)
1134 && (attr
->origin
!= BGP_ORIGIN_INCOMPLETE
)) {
1135 flog_err(BGP_ERR_ATTR_ORIGIN
,
1136 "Origin attribute value is invalid %d", attr
->origin
);
1137 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_INVAL_ORIGIN
,
1141 /* Set oring attribute flag. */
1142 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
1147 /* Parse AS path information. This function is wrapper of
1149 static int bgp_attr_aspath(struct bgp_attr_parser_args
*args
)
1151 struct attr
*const attr
= args
->attr
;
1152 struct peer
*const peer
= args
->peer
;
1153 const bgp_size_t length
= args
->length
;
1156 * peer with AS4 => will get 4Byte ASnums
1157 * otherwise, will get 16 Bit
1159 attr
->aspath
= aspath_parse(peer
->curr
, length
,
1160 CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
));
1162 /* In case of IBGP, length will be zero. */
1163 if (!attr
->aspath
) {
1164 flog_err(BGP_ERR_ATTR_MAL_AS_PATH
,
1165 "Malformed AS path from %s, length is %d", peer
->host
,
1167 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_MAL_AS_PATH
,
1171 /* Set aspath attribute flag. */
1172 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
1174 return BGP_ATTR_PARSE_PROCEED
;
1177 static bgp_attr_parse_ret_t
bgp_attr_aspath_check(struct peer
*const peer
,
1178 struct attr
*const attr
)
1180 /* These checks were part of bgp_attr_aspath, but with
1181 * as4 we should to check aspath things when
1182 * aspath synthesizing with as4_path has already taken place.
1183 * Otherwise we check ASPATH and use the synthesized thing, and that is
1185 * So do the checks later, i.e. here
1187 struct aspath
*aspath
;
1189 /* Confederation sanity check. */
1190 if ((peer
->sort
== BGP_PEER_CONFED
1191 && !aspath_left_confed_check(attr
->aspath
))
1192 || (peer
->sort
== BGP_PEER_EBGP
1193 && aspath_confed_check(attr
->aspath
))) {
1194 flog_err(BGP_ERR_ATTR_MAL_AS_PATH
, "Malformed AS path from %s",
1196 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
1197 BGP_NOTIFY_UPDATE_MAL_AS_PATH
);
1198 return BGP_ATTR_PARSE_ERROR
;
1201 /* First AS check for EBGP. */
1202 if (CHECK_FLAG(peer
->flags
, PEER_FLAG_ENFORCE_FIRST_AS
)) {
1203 if (peer
->sort
== BGP_PEER_EBGP
1204 && !aspath_firstas_check(attr
->aspath
, peer
->as
)) {
1205 flog_err(BGP_ERR_ATTR_FIRST_AS
,
1206 "%s incorrect first AS (must be %u)",
1207 peer
->host
, peer
->as
);
1208 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
1209 BGP_NOTIFY_UPDATE_MAL_AS_PATH
);
1210 return BGP_ATTR_PARSE_ERROR
;
1214 /* local-as prepend */
1215 if (peer
->change_local_as
1216 && !CHECK_FLAG(peer
->flags
, PEER_FLAG_LOCAL_AS_NO_PREPEND
)) {
1217 aspath
= aspath_dup(attr
->aspath
);
1218 aspath
= aspath_add_seq(aspath
, peer
->change_local_as
);
1219 aspath_unintern(&attr
->aspath
);
1220 attr
->aspath
= aspath_intern(aspath
);
1223 return BGP_ATTR_PARSE_PROCEED
;
1226 /* Parse AS4 path information. This function is another wrapper of
1228 static int bgp_attr_as4_path(struct bgp_attr_parser_args
*args
,
1229 struct aspath
**as4_path
)
1231 struct peer
*const peer
= args
->peer
;
1232 struct attr
*const attr
= args
->attr
;
1233 const bgp_size_t length
= args
->length
;
1235 *as4_path
= aspath_parse(peer
->curr
, length
, 1);
1237 /* In case of IBGP, length will be zero. */
1239 flog_err(BGP_ERR_ATTR_MAL_AS_PATH
,
1240 "Malformed AS4 path from %s, length is %d",
1241 peer
->host
, length
);
1242 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_MAL_AS_PATH
,
1246 /* Set aspath attribute flag. */
1247 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
);
1249 return BGP_ATTR_PARSE_PROCEED
;
1252 /* Nexthop attribute. */
1253 static bgp_attr_parse_ret_t
bgp_attr_nexthop(struct bgp_attr_parser_args
*args
)
1255 struct peer
*const peer
= args
->peer
;
1256 struct attr
*const attr
= args
->attr
;
1257 const bgp_size_t length
= args
->length
;
1259 in_addr_t nexthop_h
, nexthop_n
;
1261 /* Check nexthop attribute length. */
1263 flog_err(BGP_ERR_ATTR_LEN
,
1264 "Nexthop attribute length isn't four [%d]", length
);
1266 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1270 /* According to section 6.3 of RFC4271, syntactically incorrect NEXT_HOP
1271 attribute must result in a NOTIFICATION message (this is implemented
1273 At the same time, semantically incorrect NEXT_HOP is more likely to
1275 logged locally (this is implemented somewhere else). The UPDATE
1277 gets ignored in any of these cases. */
1278 nexthop_n
= stream_get_ipv4(peer
->curr
);
1279 nexthop_h
= ntohl(nexthop_n
);
1280 if ((IPV4_NET0(nexthop_h
) || IPV4_NET127(nexthop_h
)
1281 || IPV4_CLASS_DE(nexthop_h
))
1284 ALLOW_MARTIANS
)) /* loopbacks may be used in testing */
1286 char buf
[INET_ADDRSTRLEN
];
1287 inet_ntop(AF_INET
, &nexthop_n
, buf
, INET_ADDRSTRLEN
);
1288 flog_err(BGP_ERR_ATTR_MARTIAN_NH
, "Martian nexthop %s", buf
);
1289 return bgp_attr_malformed(
1290 args
, BGP_NOTIFY_UPDATE_INVAL_NEXT_HOP
, args
->total
);
1293 attr
->nexthop
.s_addr
= nexthop_n
;
1294 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
1296 return BGP_ATTR_PARSE_PROCEED
;
1299 /* MED atrribute. */
1300 static bgp_attr_parse_ret_t
bgp_attr_med(struct bgp_attr_parser_args
*args
)
1302 struct peer
*const peer
= args
->peer
;
1303 struct attr
*const attr
= args
->attr
;
1304 const bgp_size_t length
= args
->length
;
1308 flog_err(BGP_ERR_ATTR_LEN
,
1309 "MED attribute length isn't four [%d]", length
);
1311 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1315 attr
->med
= stream_getl(peer
->curr
);
1317 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
);
1319 return BGP_ATTR_PARSE_PROCEED
;
1322 /* Local preference attribute. */
1323 static bgp_attr_parse_ret_t
1324 bgp_attr_local_pref(struct bgp_attr_parser_args
*args
)
1326 struct peer
*const peer
= args
->peer
;
1327 struct attr
*const attr
= args
->attr
;
1328 const bgp_size_t length
= args
->length
;
1332 flog_err(BGP_ERR_ATTR_LEN
,
1333 "LOCAL_PREF attribute length isn't 4 [%u]", length
);
1334 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1338 /* If it is contained in an UPDATE message that is received from an
1339 external peer, then this attribute MUST be ignored by the
1340 receiving speaker. */
1341 if (peer
->sort
== BGP_PEER_EBGP
) {
1342 stream_forward_getp(peer
->curr
, length
);
1343 return BGP_ATTR_PARSE_PROCEED
;
1346 attr
->local_pref
= stream_getl(peer
->curr
);
1348 /* Set the local-pref flag. */
1349 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
);
1351 return BGP_ATTR_PARSE_PROCEED
;
1354 /* Atomic aggregate. */
1355 static int bgp_attr_atomic(struct bgp_attr_parser_args
*args
)
1357 struct attr
*const attr
= args
->attr
;
1358 const bgp_size_t length
= args
->length
;
1362 flog_err(BGP_ERR_ATTR_LEN
,
1363 "ATOMIC_AGGREGATE attribute length isn't 0 [%u]",
1365 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1369 /* Set atomic aggregate flag. */
1370 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
);
1372 return BGP_ATTR_PARSE_PROCEED
;
1375 /* Aggregator attribute */
1376 static int bgp_attr_aggregator(struct bgp_attr_parser_args
*args
)
1378 struct peer
*const peer
= args
->peer
;
1379 struct attr
*const attr
= args
->attr
;
1380 const bgp_size_t length
= args
->length
;
1384 /* peer with AS4 will send 4 Byte AS, peer without will send 2 Byte */
1385 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
))
1388 if (length
!= wantedlen
) {
1389 flog_err(BGP_ERR_ATTR_LEN
,
1390 "AGGREGATOR attribute length isn't %u [%u]",
1392 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1396 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
))
1397 attr
->aggregator_as
= stream_getl(peer
->curr
);
1399 attr
->aggregator_as
= stream_getw(peer
->curr
);
1400 attr
->aggregator_addr
.s_addr
= stream_get_ipv4(peer
->curr
);
1402 /* Set atomic aggregate flag. */
1403 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
);
1405 return BGP_ATTR_PARSE_PROCEED
;
1408 /* New Aggregator attribute */
1409 static bgp_attr_parse_ret_t
1410 bgp_attr_as4_aggregator(struct bgp_attr_parser_args
*args
,
1411 as_t
*as4_aggregator_as
,
1412 struct in_addr
*as4_aggregator_addr
)
1414 struct peer
*const peer
= args
->peer
;
1415 struct attr
*const attr
= args
->attr
;
1416 const bgp_size_t length
= args
->length
;
1419 flog_err(BGP_ERR_ATTR_LEN
,
1420 "New Aggregator length is not 8 [%d]", length
);
1421 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1425 *as4_aggregator_as
= stream_getl(peer
->curr
);
1426 as4_aggregator_addr
->s_addr
= stream_get_ipv4(peer
->curr
);
1428 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
);
1430 return BGP_ATTR_PARSE_PROCEED
;
1433 /* Munge Aggregator and New-Aggregator, AS_PATH and NEW_AS_PATH.
1435 static bgp_attr_parse_ret_t
1436 bgp_attr_munge_as4_attrs(struct peer
*const peer
, struct attr
*const attr
,
1437 struct aspath
*as4_path
, as_t as4_aggregator
,
1438 struct in_addr
*as4_aggregator_addr
)
1440 int ignore_as4_path
= 0;
1441 struct aspath
*newpath
;
1443 if (!attr
->aspath
) {
1444 /* NULL aspath shouldn't be possible as bgp_attr_parse should
1446 * checked that all well-known, mandatory attributes were
1449 * Can only be a problem with peer itself - hard error
1451 return BGP_ATTR_PARSE_ERROR
;
1454 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
)) {
1455 /* peer can do AS4, so we ignore AS4_PATH and AS4_AGGREGATOR
1457 * It is worth a warning though, because the peer really
1458 * should not send them
1460 if (BGP_DEBUG(as4
, AS4
)) {
1461 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
)))
1462 zlog_debug("[AS4] %s %s AS4_PATH", peer
->host
,
1463 "AS4 capable peer, yet it sent");
1466 & (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
)))
1467 zlog_debug("[AS4] %s %s AS4_AGGREGATOR",
1469 "AS4 capable peer, yet it sent");
1472 return BGP_ATTR_PARSE_PROCEED
;
1475 /* We have a asn16 peer. First, look for AS4_AGGREGATOR
1476 * because that may override AS4_PATH
1478 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
))) {
1479 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
))) {
1481 * if the as_number in aggregator is not AS_TRANS,
1482 * then AS4_AGGREGATOR and AS4_PATH shall be ignored
1483 * and the Aggregator shall be taken as
1484 * info on the aggregating node, and the AS_PATH
1485 * shall be taken as the AS_PATH
1487 * the Aggregator shall be ignored and the
1488 * AS4_AGGREGATOR shall be taken as the
1489 * Aggregating node and the AS_PATH is to be
1490 * constructed "as in all other cases"
1492 if (attr
->aggregator_as
!= BGP_AS_TRANS
) {
1494 if (BGP_DEBUG(as4
, AS4
))
1496 "[AS4] %s BGP not AS4 capable peer"
1497 " send AGGREGATOR != AS_TRANS and"
1498 " AS4_AGGREGATOR, so ignore"
1499 " AS4_AGGREGATOR and AS4_PATH",
1501 ignore_as4_path
= 1;
1503 /* "New_aggregator shall be taken as aggregator"
1505 attr
->aggregator_as
= as4_aggregator
;
1506 attr
->aggregator_addr
.s_addr
=
1507 as4_aggregator_addr
->s_addr
;
1510 /* We received a AS4_AGGREGATOR but no AGGREGATOR.
1511 * That is bogus - but reading the conditions
1512 * we have to handle AS4_AGGREGATOR as if it were
1513 * AGGREGATOR in that case
1515 if (BGP_DEBUG(as4
, AS4
))
1517 "[AS4] %s BGP not AS4 capable peer send"
1518 " AS4_AGGREGATOR but no AGGREGATOR, will take"
1519 " it as if AGGREGATOR with AS_TRANS had been there",
1521 attr
->aggregator_as
= as4_aggregator
;
1522 /* sweep it under the carpet and simulate a "good"
1524 attr
->flag
|= (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
));
1528 /* need to reconcile NEW_AS_PATH and AS_PATH */
1529 if (!ignore_as4_path
1530 && (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
)))) {
1531 newpath
= aspath_reconcile_as4(attr
->aspath
, as4_path
);
1533 return BGP_ATTR_PARSE_ERROR
;
1535 aspath_unintern(&attr
->aspath
);
1536 attr
->aspath
= aspath_intern(newpath
);
1538 return BGP_ATTR_PARSE_PROCEED
;
1541 /* Community attribute. */
1542 static bgp_attr_parse_ret_t
1543 bgp_attr_community(struct bgp_attr_parser_args
*args
)
1545 struct peer
*const peer
= args
->peer
;
1546 struct attr
*const attr
= args
->attr
;
1547 const bgp_size_t length
= args
->length
;
1550 attr
->community
= NULL
;
1551 return BGP_ATTR_PARSE_PROCEED
;
1555 community_parse((uint32_t *)stream_pnt(peer
->curr
), length
);
1557 /* XXX: fix community_parse to use stream API and remove this */
1558 stream_forward_getp(peer
->curr
, length
);
1560 if (!attr
->community
)
1561 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1564 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
);
1566 return BGP_ATTR_PARSE_PROCEED
;
1569 /* Originator ID attribute. */
1570 static bgp_attr_parse_ret_t
1571 bgp_attr_originator_id(struct bgp_attr_parser_args
*args
)
1573 struct peer
*const peer
= args
->peer
;
1574 struct attr
*const attr
= args
->attr
;
1575 const bgp_size_t length
= args
->length
;
1579 flog_err(BGP_ERR_ATTR_LEN
, "Bad originator ID length %d",
1582 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1586 attr
->originator_id
.s_addr
= stream_get_ipv4(peer
->curr
);
1588 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID
);
1590 return BGP_ATTR_PARSE_PROCEED
;
1593 /* Cluster list attribute. */
1594 static bgp_attr_parse_ret_t
1595 bgp_attr_cluster_list(struct bgp_attr_parser_args
*args
)
1597 struct peer
*const peer
= args
->peer
;
1598 struct attr
*const attr
= args
->attr
;
1599 const bgp_size_t length
= args
->length
;
1603 flog_err(BGP_ERR_ATTR_LEN
, "Bad cluster list length %d",
1606 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1611 cluster_parse((struct in_addr
*)stream_pnt(peer
->curr
), length
);
1613 /* XXX: Fix cluster_parse to use stream API and then remove this */
1614 stream_forward_getp(peer
->curr
, length
);
1616 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST
);
1618 return BGP_ATTR_PARSE_PROCEED
;
1621 /* Multiprotocol reachability information parse. */
1622 int bgp_mp_reach_parse(struct bgp_attr_parser_args
*args
,
1623 struct bgp_nlri
*mp_update
)
1627 iana_safi_t pkt_safi
;
1629 bgp_size_t nlri_len
;
1632 struct peer
*const peer
= args
->peer
;
1633 struct attr
*const attr
= args
->attr
;
1634 const bgp_size_t length
= args
->length
;
1636 /* Set end of packet. */
1637 s
= BGP_INPUT(peer
);
1638 start
= stream_get_getp(s
);
1640 /* safe to read statically sized header? */
1641 #define BGP_MP_REACH_MIN_SIZE 5
1642 #define LEN_LEFT (length - (stream_get_getp(s) - start))
1643 if ((length
> STREAM_READABLE(s
)) || (length
< BGP_MP_REACH_MIN_SIZE
)) {
1644 zlog_info("%s: %s sent invalid length, %lu", __func__
,
1645 peer
->host
, (unsigned long)length
);
1646 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1649 /* Load AFI, SAFI. */
1650 pkt_afi
= stream_getw(s
);
1651 pkt_safi
= stream_getc(s
);
1653 /* Convert AFI, SAFI to internal values, check. */
1654 if (bgp_map_afi_safi_iana2int(pkt_afi
, pkt_safi
, &afi
, &safi
)) {
1655 /* Log if AFI or SAFI is unrecognized. This is not an error
1657 * the attribute is otherwise malformed.
1659 if (bgp_debug_update(peer
, NULL
, NULL
, 0))
1661 "%s: MP_REACH received AFI %u or SAFI %u is unrecognized",
1662 peer
->host
, pkt_afi
, pkt_safi
);
1663 return BGP_ATTR_PARSE_ERROR
;
1666 /* Get nexthop length. */
1667 attr
->mp_nexthop_len
= stream_getc(s
);
1669 if (LEN_LEFT
< attr
->mp_nexthop_len
) {
1671 "%s: %s, MP nexthop length, %u, goes past end of attribute",
1672 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1673 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1676 /* Nexthop length check. */
1677 switch (attr
->mp_nexthop_len
) {
1679 if (safi
!= SAFI_FLOWSPEC
) {
1680 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1681 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1682 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1685 case BGP_ATTR_NHLEN_VPNV4
:
1686 stream_getl(s
); /* RD high */
1687 stream_getl(s
); /* RD low */
1689 * NOTE: intentional fall through
1690 * - for consistency in rx processing
1692 * The following comment is to signal GCC this intention
1693 * and supress the warning
1696 case BGP_ATTR_NHLEN_IPV4
:
1697 stream_get(&attr
->mp_nexthop_global_in
, s
, IPV4_MAX_BYTELEN
);
1698 /* Probably needed for RFC 2283 */
1699 if (attr
->nexthop
.s_addr
== 0)
1700 memcpy(&attr
->nexthop
.s_addr
,
1701 &attr
->mp_nexthop_global_in
, IPV4_MAX_BYTELEN
);
1703 case BGP_ATTR_NHLEN_IPV6_GLOBAL
:
1704 case BGP_ATTR_NHLEN_VPNV6_GLOBAL
:
1705 if (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_VPNV6_GLOBAL
) {
1706 stream_getl(s
); /* RD high */
1707 stream_getl(s
); /* RD low */
1709 stream_get(&attr
->mp_nexthop_global
, s
, IPV6_MAX_BYTELEN
);
1710 if (IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_global
)) {
1711 if (!peer
->nexthop
.ifp
) {
1712 zlog_warn("%s: interface not set appropriately to handle some attributes",
1714 return BGP_ATTR_PARSE_WITHDRAW
;
1716 attr
->nh_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1719 case BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
:
1720 case BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
:
1721 if (attr
->mp_nexthop_len
1722 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
) {
1723 stream_getl(s
); /* RD high */
1724 stream_getl(s
); /* RD low */
1726 stream_get(&attr
->mp_nexthop_global
, s
, IPV6_MAX_BYTELEN
);
1727 if (IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_global
)) {
1728 if (!peer
->nexthop
.ifp
) {
1729 zlog_warn("%s: interface not set appropriately to handle some attributes",
1731 return BGP_ATTR_PARSE_WITHDRAW
;
1733 attr
->nh_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1735 if (attr
->mp_nexthop_len
1736 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
) {
1737 stream_getl(s
); /* RD high */
1738 stream_getl(s
); /* RD low */
1740 stream_get(&attr
->mp_nexthop_local
, s
, IPV6_MAX_BYTELEN
);
1741 if (!IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_local
)) {
1742 char buf1
[INET6_ADDRSTRLEN
];
1743 char buf2
[INET6_ADDRSTRLEN
];
1745 if (bgp_debug_update(peer
, NULL
, NULL
, 1))
1747 "%s rcvd nexthops %s, %s -- ignoring non-LL value",
1750 &attr
->mp_nexthop_global
,
1751 buf1
, INET6_ADDRSTRLEN
),
1753 &attr
->mp_nexthop_local
, buf2
,
1756 attr
->mp_nexthop_len
= IPV6_MAX_BYTELEN
;
1758 if (!peer
->nexthop
.ifp
) {
1759 zlog_warn("%s: Interface not set appropriately to handle this some attributes",
1761 return BGP_ATTR_PARSE_WITHDRAW
;
1763 attr
->nh_lla_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1766 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1767 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1768 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1772 zlog_info("%s: (%s) Failed to read SNPA and NLRI(s)", __func__
,
1774 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1779 if ((val
= stream_getc(s
)))
1781 "%s sent non-zero value, %u, for defunct SNPA-length field",
1785 /* must have nrli_len, what is left of the attribute */
1786 nlri_len
= LEN_LEFT
;
1787 if (nlri_len
> STREAM_READABLE(s
)) {
1788 zlog_info("%s: (%s) Failed to read NLRI", __func__
, peer
->host
);
1789 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1793 zlog_info("%s: (%s) No Reachability, Treating as a EOR marker",
1794 __func__
, peer
->host
);
1796 mp_update
->afi
= afi
;
1797 mp_update
->safi
= safi
;
1798 return BGP_ATTR_PARSE_EOR
;
1801 mp_update
->afi
= afi
;
1802 mp_update
->safi
= safi
;
1803 mp_update
->nlri
= stream_pnt(s
);
1804 mp_update
->length
= nlri_len
;
1806 stream_forward_getp(s
, nlri_len
);
1808 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
);
1810 return BGP_ATTR_PARSE_PROCEED
;
1814 /* Multiprotocol unreachable parse */
1815 int bgp_mp_unreach_parse(struct bgp_attr_parser_args
*args
,
1816 struct bgp_nlri
*mp_withdraw
)
1821 iana_safi_t pkt_safi
;
1823 uint16_t withdraw_len
;
1824 struct peer
*const peer
= args
->peer
;
1825 struct attr
*const attr
= args
->attr
;
1826 const bgp_size_t length
= args
->length
;
1830 #define BGP_MP_UNREACH_MIN_SIZE 3
1831 if ((length
> STREAM_READABLE(s
)) || (length
< BGP_MP_UNREACH_MIN_SIZE
))
1832 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1834 pkt_afi
= stream_getw(s
);
1835 pkt_safi
= stream_getc(s
);
1837 /* Convert AFI, SAFI to internal values, check. */
1838 if (bgp_map_afi_safi_iana2int(pkt_afi
, pkt_safi
, &afi
, &safi
)) {
1839 /* Log if AFI or SAFI is unrecognized. This is not an error
1841 * the attribute is otherwise malformed.
1843 if (bgp_debug_update(peer
, NULL
, NULL
, 0))
1845 "%s: MP_UNREACH received AFI %u or SAFI %u is unrecognized",
1846 peer
->host
, pkt_afi
, pkt_safi
);
1847 return BGP_ATTR_PARSE_ERROR
;
1850 withdraw_len
= length
- BGP_MP_UNREACH_MIN_SIZE
;
1852 mp_withdraw
->afi
= afi
;
1853 mp_withdraw
->safi
= safi
;
1854 mp_withdraw
->nlri
= stream_pnt(s
);
1855 mp_withdraw
->length
= withdraw_len
;
1857 stream_forward_getp(s
, withdraw_len
);
1859 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI
);
1861 return BGP_ATTR_PARSE_PROCEED
;
1864 /* Large Community attribute. */
1865 static bgp_attr_parse_ret_t
1866 bgp_attr_large_community(struct bgp_attr_parser_args
*args
)
1868 struct peer
*const peer
= args
->peer
;
1869 struct attr
*const attr
= args
->attr
;
1870 const bgp_size_t length
= args
->length
;
1873 * Large community follows new attribute format.
1876 attr
->lcommunity
= NULL
;
1877 /* Empty extcomm doesn't seem to be invalid per se */
1878 return BGP_ATTR_PARSE_PROCEED
;
1882 lcommunity_parse((uint8_t *)stream_pnt(peer
->curr
), length
);
1883 /* XXX: fix ecommunity_parse to use stream API */
1884 stream_forward_getp(peer
->curr
, length
);
1886 if (!attr
->lcommunity
)
1887 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1890 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
);
1892 return BGP_ATTR_PARSE_PROCEED
;
1895 /* Extended Community attribute. */
1896 static bgp_attr_parse_ret_t
1897 bgp_attr_ext_communities(struct bgp_attr_parser_args
*args
)
1899 struct peer
*const peer
= args
->peer
;
1900 struct attr
*const attr
= args
->attr
;
1901 const bgp_size_t length
= args
->length
;
1905 attr
->ecommunity
= NULL
;
1906 /* Empty extcomm doesn't seem to be invalid per se */
1907 return BGP_ATTR_PARSE_PROCEED
;
1911 ecommunity_parse((uint8_t *)stream_pnt(peer
->curr
), length
);
1912 /* XXX: fix ecommunity_parse to use stream API */
1913 stream_forward_getp(peer
->curr
, length
);
1915 if (!attr
->ecommunity
)
1916 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1919 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
);
1921 /* Extract MAC mobility sequence number, if any. */
1922 attr
->mm_seqnum
= bgp_attr_mac_mobility_seqnum(attr
, &sticky
);
1923 attr
->sticky
= sticky
;
1925 /* Check if this is a Gateway MAC-IP advertisement */
1926 attr
->default_gw
= bgp_attr_default_gw(attr
);
1928 /* Handle scenario where router flag ecommunity is not
1929 * set but default gw ext community is present.
1930 * Use default gateway, set and propogate R-bit.
1932 if (attr
->default_gw
)
1933 attr
->router_flag
= 1;
1935 /* Check EVPN Neighbor advertisement flags, R-bit */
1936 bgp_attr_evpn_na_flag(attr
, &attr
->router_flag
);
1938 /* Extract the Rmac, if any */
1939 bgp_attr_rmac(attr
, &attr
->rmac
);
1941 return BGP_ATTR_PARSE_PROCEED
;
1944 /* Parse Tunnel Encap attribute in an UPDATE */
1945 static int bgp_attr_encap(uint8_t type
, struct peer
*peer
, /* IN */
1946 bgp_size_t length
, /* IN: attr's length field */
1947 struct attr
*attr
, /* IN: caller already allocated */
1948 uint8_t flag
, /* IN: attr's flags field */
1952 uint16_t tunneltype
= 0;
1954 total
= length
+ (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
) ? 4 : 3);
1956 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_TRANS
)
1957 || !CHECK_FLAG(flag
, BGP_ATTR_FLAG_OPTIONAL
)) {
1959 "Tunnel Encap attribute flag isn't optional and transitive %d",
1961 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
1962 BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR
,
1967 if (BGP_ATTR_ENCAP
== type
) {
1968 /* read outer TLV type and length */
1969 uint16_t tlv_length
;
1973 "Tunnel Encap attribute not long enough to contain outer T,L");
1974 bgp_notify_send_with_data(
1975 peer
, BGP_NOTIFY_UPDATE_ERR
,
1976 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
, startp
, total
);
1979 tunneltype
= stream_getw(BGP_INPUT(peer
));
1980 tlv_length
= stream_getw(BGP_INPUT(peer
));
1983 if (tlv_length
!= length
) {
1984 zlog_info("%s: tlv_length(%d) != length(%d)", __func__
,
1985 tlv_length
, length
);
1989 while (length
>= 4) {
1990 uint16_t subtype
= 0;
1991 uint16_t sublength
= 0;
1992 struct bgp_attr_encap_subtlv
*tlv
;
1994 if (BGP_ATTR_ENCAP
== type
) {
1995 subtype
= stream_getc(BGP_INPUT(peer
));
1996 sublength
= stream_getc(BGP_INPUT(peer
));
2000 subtype
= stream_getw(BGP_INPUT(peer
));
2001 sublength
= stream_getw(BGP_INPUT(peer
));
2006 if (sublength
> length
) {
2008 "Tunnel Encap attribute sub-tlv length %d exceeds remaining length %d",
2010 bgp_notify_send_with_data(
2011 peer
, BGP_NOTIFY_UPDATE_ERR
,
2012 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
, startp
, total
);
2016 /* alloc and copy sub-tlv */
2017 /* TBD make sure these are freed when attributes are released */
2018 tlv
= XCALLOC(MTYPE_ENCAP_TLV
,
2019 sizeof(struct bgp_attr_encap_subtlv
) + sublength
);
2020 tlv
->type
= subtype
;
2021 tlv
->length
= sublength
;
2022 stream_get(tlv
->value
, peer
->curr
, sublength
);
2023 length
-= sublength
;
2025 /* attach tlv to encap chain */
2026 if (BGP_ATTR_ENCAP
== type
) {
2027 struct bgp_attr_encap_subtlv
*stlv_last
;
2028 for (stlv_last
= attr
->encap_subtlvs
;
2029 stlv_last
&& stlv_last
->next
;
2030 stlv_last
= stlv_last
->next
)
2033 stlv_last
->next
= tlv
;
2035 attr
->encap_subtlvs
= tlv
;
2039 struct bgp_attr_encap_subtlv
*stlv_last
;
2040 for (stlv_last
= attr
->vnc_subtlvs
;
2041 stlv_last
&& stlv_last
->next
;
2042 stlv_last
= stlv_last
->next
)
2045 stlv_last
->next
= tlv
;
2047 attr
->vnc_subtlvs
= tlv
;
2053 if (BGP_ATTR_ENCAP
== type
) {
2054 attr
->encap_tunneltype
= tunneltype
;
2058 /* spurious leftover data */
2060 "Tunnel Encap attribute length is bad: %d leftover octets",
2062 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
2063 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2072 * Read an individual SID value returning how much data we have read
2073 * Returns 0 if there was an error that needs to be passed up the stack
2075 static bgp_attr_parse_ret_t
bgp_attr_psid_sub(int32_t type
,
2077 struct bgp_attr_parser_args
*args
,
2078 struct bgp_nlri
*mp_update
)
2080 struct peer
*const peer
= args
->peer
;
2081 struct attr
*const attr
= args
->attr
;
2082 uint32_t label_index
;
2083 struct in6_addr ipv6_sid
;
2085 uint32_t srgb_range
;
2088 if (type
== BGP_PREFIX_SID_LABEL_INDEX
) {
2089 if (length
!= BGP_PREFIX_SID_LABEL_INDEX_LENGTH
) {
2092 "Prefix SID label index length is %d instead of %d",
2093 length
, BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
2094 return bgp_attr_malformed(args
,
2095 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2099 /* Ignore flags and reserved */
2100 stream_getc(peer
->curr
);
2101 stream_getw(peer
->curr
);
2103 /* Fetch the label index and see if it is valid. */
2104 label_index
= stream_getl(peer
->curr
);
2105 if (label_index
== BGP_INVALID_LABEL_INDEX
)
2106 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2109 /* Store label index; subsequently, we'll check on
2111 attr
->label_index
= label_index
;
2114 * Ignore the Label index attribute unless received for
2118 if (!mp_update
->length
2119 || mp_update
->safi
!= SAFI_LABELED_UNICAST
)
2120 attr
->label_index
= BGP_INVALID_LABEL_INDEX
;
2123 /* Placeholder code for the IPv6 SID type */
2124 else if (type
== BGP_PREFIX_SID_IPV6
) {
2125 if (length
!= BGP_PREFIX_SID_IPV6_LENGTH
) {
2126 flog_err(BGP_ERR_ATTR_LEN
,
2127 "Prefix SID IPv6 length is %d instead of %d",
2128 length
, BGP_PREFIX_SID_IPV6_LENGTH
);
2129 return bgp_attr_malformed(args
,
2130 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2134 /* Ignore reserved */
2135 stream_getc(peer
->curr
);
2136 stream_getw(peer
->curr
);
2138 stream_get(&ipv6_sid
, peer
->curr
, 16);
2141 /* Placeholder code for the Originator SRGB type */
2142 else if (type
== BGP_PREFIX_SID_ORIGINATOR_SRGB
) {
2144 stream_getw(peer
->curr
);
2148 if (length
% BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
) {
2151 "Prefix SID Originator SRGB length is %d, it must be a multiple of %d ",
2152 length
, BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
);
2153 return bgp_attr_malformed(
2154 args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2158 srgb_count
= length
/ BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
;
2160 for (int i
= 0; i
< srgb_count
; i
++) {
2161 stream_get(&srgb_base
, peer
->curr
, 3);
2162 stream_get(&srgb_range
, peer
->curr
, 3);
2166 return BGP_ATTR_PARSE_PROCEED
;
2169 /* Prefix SID attribute
2170 * draft-ietf-idr-bgp-prefix-sid-05
2172 bgp_attr_parse_ret_t
2173 bgp_attr_prefix_sid(int32_t tlength
, struct bgp_attr_parser_args
*args
,
2174 struct bgp_nlri
*mp_update
)
2176 struct peer
*const peer
= args
->peer
;
2177 struct attr
*const attr
= args
->attr
;
2178 bgp_attr_parse_ret_t ret
;
2180 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
);
2183 int32_t type
, length
;
2185 type
= stream_getc(peer
->curr
);
2186 length
= stream_getw(peer
->curr
);
2188 ret
= bgp_attr_psid_sub(type
, length
, args
, mp_update
);
2190 if (ret
!= BGP_ATTR_PARSE_PROCEED
)
2193 * Subtract length + the T and the L
2194 * since length is the Vector portion
2196 tlength
-= length
+ 3;
2201 "Prefix SID internal length %d causes us to read beyond the total Prefix SID length",
2203 return bgp_attr_malformed(args
,
2204 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2209 return BGP_ATTR_PARSE_PROCEED
;
2212 /* PMSI tunnel attribute (RFC 6514)
2213 * Basic validation checks done here.
2215 static bgp_attr_parse_ret_t
2216 bgp_attr_pmsi_tunnel(struct bgp_attr_parser_args
*args
)
2218 struct peer
*const peer
= args
->peer
;
2219 struct attr
*const attr
= args
->attr
;
2220 const bgp_size_t length
= args
->length
;
2223 /* Verify that the receiver is expecting "ingress replication" as we
2224 * can only support that.
2227 flog_err(BGP_ERR_ATTR_LEN
,
2228 "Bad PMSI tunnel attribute length %d", length
);
2229 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2232 stream_getc(peer
->curr
); /* Flags */
2233 tnl_type
= stream_getc(peer
->curr
);
2234 if (tnl_type
> PMSI_TNLTYPE_MAX
) {
2235 flog_err(BGP_ERR_ATTR_PMSI_TYPE
,
2236 "Invalid PMSI tunnel attribute type %d", tnl_type
);
2237 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2240 if (tnl_type
== PMSI_TNLTYPE_INGR_REPL
) {
2242 flog_err(BGP_ERR_ATTR_PMSI_LEN
,
2243 "Bad PMSI tunnel attribute length %d for IR",
2245 return bgp_attr_malformed(
2246 args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2251 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL
);
2252 attr
->pmsi_tnl_type
= tnl_type
;
2254 /* Forward read pointer of input stream. */
2255 stream_forward_getp(peer
->curr
, length
- 2);
2257 return BGP_ATTR_PARSE_PROCEED
;
2260 /* BGP unknown attribute treatment. */
2261 static bgp_attr_parse_ret_t
bgp_attr_unknown(struct bgp_attr_parser_args
*args
)
2263 bgp_size_t total
= args
->total
;
2264 struct transit
*transit
;
2265 struct peer
*const peer
= args
->peer
;
2266 struct attr
*const attr
= args
->attr
;
2267 uint8_t *const startp
= args
->startp
;
2268 const uint8_t type
= args
->type
;
2269 const uint8_t flag
= args
->flags
;
2270 const bgp_size_t length
= args
->length
;
2272 if (bgp_debug_update(peer
, NULL
, NULL
, 1))
2274 "%s Unknown attribute is received (type %d, length %d)",
2275 peer
->host
, type
, length
);
2277 /* Forward read pointer of input stream. */
2278 stream_forward_getp(peer
->curr
, length
);
2280 /* If any of the mandatory well-known attributes are not recognized,
2281 then the Error Subcode is set to Unrecognized Well-known
2282 Attribute. The Data field contains the unrecognized attribute
2283 (type, length and value). */
2284 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_OPTIONAL
)) {
2285 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_UNREC_ATTR
,
2289 /* Unrecognized non-transitive optional attributes must be quietly
2290 ignored and not passed along to other BGP peers. */
2291 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_TRANS
))
2292 return BGP_ATTR_PARSE_PROCEED
;
2294 /* If a path with recognized transitive optional attribute is
2295 accepted and passed along to other BGP peers and the Partial bit
2296 in the Attribute Flags octet is set to 1 by some previous AS, it
2297 is not set back to 0 by the current AS. */
2298 SET_FLAG(*startp
, BGP_ATTR_FLAG_PARTIAL
);
2300 /* Store transitive attribute to the end of attr->transit. */
2302 attr
->transit
= XCALLOC(MTYPE_TRANSIT
, sizeof(struct transit
));
2304 transit
= attr
->transit
;
2307 transit
->val
= XREALLOC(MTYPE_TRANSIT_VAL
, transit
->val
,
2308 transit
->length
+ total
);
2310 transit
->val
= XMALLOC(MTYPE_TRANSIT_VAL
, total
);
2312 memcpy(transit
->val
+ transit
->length
, startp
, total
);
2313 transit
->length
+= total
;
2315 return BGP_ATTR_PARSE_PROCEED
;
2318 /* Well-known attribute check. */
2319 static int bgp_attr_check(struct peer
*peer
, struct attr
*attr
)
2323 /* BGP Graceful-Restart End-of-RIB for IPv4 unicast is signaled as an
2325 if (CHECK_FLAG(peer
->cap
, PEER_CAP_RESTART_RCV
) && !attr
->flag
)
2326 return BGP_ATTR_PARSE_PROCEED
;
2328 /* "An UPDATE message that contains the MP_UNREACH_NLRI is not required
2329 to carry any other path attributes.", though if MP_REACH_NLRI or NLRI
2330 are present, it should. Check for any other attribute being present
2333 if ((!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
)) &&
2334 CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI
))))
2335 return BGP_ATTR_PARSE_PROCEED
;
2337 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
)))
2338 type
= BGP_ATTR_ORIGIN
;
2340 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
)))
2341 type
= BGP_ATTR_AS_PATH
;
2343 /* RFC 2858 makes Next-Hop optional/ignored, if MP_REACH_NLRI is present
2345 * NLRI is empty. We can't easily check NLRI empty here though.
2347 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
))
2348 && !CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
)))
2349 type
= BGP_ATTR_NEXT_HOP
;
2351 if (peer
->sort
== BGP_PEER_IBGP
2352 && !CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
)))
2353 type
= BGP_ATTR_LOCAL_PREF
;
2356 zlog_warn("%s Missing well-known attribute %s.", peer
->host
,
2357 lookup_msg(attr_str
, type
, NULL
));
2358 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
2359 BGP_NOTIFY_UPDATE_MISS_ATTR
, &type
,
2361 return BGP_ATTR_PARSE_ERROR
;
2363 return BGP_ATTR_PARSE_PROCEED
;
2366 /* Read attribute of update packet. This function is called from
2367 bgp_update_receive() in bgp_packet.c. */
2368 bgp_attr_parse_ret_t
bgp_attr_parse(struct peer
*peer
, struct attr
*attr
,
2369 bgp_size_t size
, struct bgp_nlri
*mp_update
,
2370 struct bgp_nlri
*mp_withdraw
)
2376 uint8_t *startp
, *endp
;
2378 uint8_t seen
[BGP_ATTR_BITMAP_SIZE
];
2379 /* we need the as4_path only until we have synthesized the as_path with
2381 /* same goes for as4_aggregator */
2382 struct aspath
*as4_path
= NULL
;
2383 as_t as4_aggregator
= 0;
2384 struct in_addr as4_aggregator_addr
= {.s_addr
= 0};
2386 /* Initialize bitmap. */
2387 memset(seen
, 0, BGP_ATTR_BITMAP_SIZE
);
2389 /* End pointer of BGP attribute. */
2390 endp
= BGP_INPUT_PNT(peer
) + size
;
2392 /* Get attributes to the end of attribute length. */
2393 while (BGP_INPUT_PNT(peer
) < endp
) {
2394 /* Check remaining length check.*/
2395 if (endp
- BGP_INPUT_PNT(peer
) < BGP_ATTR_MIN_LEN
) {
2396 /* XXX warning: long int format, int arg (arg 5) */
2398 "%s: error BGP attribute length %lu is smaller than min len",
2400 (unsigned long)(endp
2401 - stream_pnt(BGP_INPUT(peer
))));
2403 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2404 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2405 return BGP_ATTR_PARSE_ERROR
;
2408 /* Fetch attribute flag and type. */
2409 startp
= BGP_INPUT_PNT(peer
);
2410 /* "The lower-order four bits of the Attribute Flags octet are
2411 unused. They MUST be zero when sent and MUST be ignored when
2413 flag
= 0xF0 & stream_getc(BGP_INPUT(peer
));
2414 type
= stream_getc(BGP_INPUT(peer
));
2416 /* Check whether Extended-Length applies and is in bounds */
2417 if (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
)
2418 && ((endp
- startp
) < (BGP_ATTR_MIN_LEN
+ 1))) {
2420 "%s: Extended length set, but just %lu bytes of attr header",
2422 (unsigned long)(endp
2423 - stream_pnt(BGP_INPUT(peer
))));
2425 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2426 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2427 return BGP_ATTR_PARSE_ERROR
;
2430 /* Check extended attribue length bit. */
2431 if (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
))
2432 length
= stream_getw(BGP_INPUT(peer
));
2434 length
= stream_getc(BGP_INPUT(peer
));
2436 /* If any attribute appears more than once in the UPDATE
2437 message, then the Error Subcode is set to Malformed Attribute
2440 if (CHECK_BITMAP(seen
, type
)) {
2442 "%s: error BGP attribute type %d appears twice in a message",
2445 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2446 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2447 return BGP_ATTR_PARSE_ERROR
;
2450 /* Set type to bitmap to check duplicate attribute. `type' is
2451 unsigned char so it never overflow bitmap range. */
2453 SET_BITMAP(seen
, type
);
2455 /* Overflow check. */
2456 attr_endp
= BGP_INPUT_PNT(peer
) + length
;
2458 if (attr_endp
> endp
) {
2460 "%s: BGP type %d length %d is too large, attribute total length is %d. attr_endp is %p. endp is %p",
2461 peer
->host
, type
, length
, size
, attr_endp
,
2465 * If any recognized attribute has an Attribute
2466 * Length that conflicts with the expected length
2467 * (based on the attribute type code), then the
2468 * Error Subcode MUST be set to Attribute Length
2469 * Error. The Data field MUST contain the erroneous
2470 * attribute (type, length, and value).
2472 * We do not currently have a good way to determine the
2473 * length of the attribute independent of the length
2474 * received in the message. Instead we send the
2475 * minimum between the amount of data we have and the
2476 * amount specified by the attribute length field.
2478 * Instead of directly passing in the packet buffer and
2479 * offset we use the stream_get* functions to read into
2480 * a stack buffer, since they perform bounds checking
2481 * and we are working with untrusted data.
2483 unsigned char ndata
[BGP_MAX_PACKET_SIZE
];
2484 memset(ndata
, 0x00, sizeof(ndata
));
2486 CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
) ? 2 : 1;
2487 /* Rewind to end of flag field */
2488 stream_forward_getp(BGP_INPUT(peer
), -(1 + lfl
));
2490 stream_get(&ndata
[0], BGP_INPUT(peer
), 1);
2492 stream_get(&ndata
[1], BGP_INPUT(peer
), lfl
);
2494 size_t atl
= attr_endp
- startp
;
2495 size_t ndl
= MIN(atl
, STREAM_READABLE(BGP_INPUT(peer
)));
2496 stream_get(&ndata
[lfl
+ 1], BGP_INPUT(peer
), ndl
);
2498 bgp_notify_send_with_data(
2499 peer
, BGP_NOTIFY_UPDATE_ERR
,
2500 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
, ndata
,
2503 return BGP_ATTR_PARSE_ERROR
;
2506 struct bgp_attr_parser_args attr_args
= {
2513 .total
= attr_endp
- startp
,
2517 /* If any recognized attribute has Attribute Flags that conflict
2518 with the Attribute Type Code, then the Error Subcode is set
2520 Attribute Flags Error. The Data field contains the erroneous
2521 attribute (type, length and value). */
2522 if (bgp_attr_flag_invalid(&attr_args
)) {
2523 bgp_attr_parse_ret_t ret
;
2524 ret
= bgp_attr_malformed(
2525 &attr_args
, BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR
,
2527 if (ret
== BGP_ATTR_PARSE_PROCEED
)
2532 /* OK check attribute and store it's value. */
2534 case BGP_ATTR_ORIGIN
:
2535 ret
= bgp_attr_origin(&attr_args
);
2537 case BGP_ATTR_AS_PATH
:
2538 ret
= bgp_attr_aspath(&attr_args
);
2540 case BGP_ATTR_AS4_PATH
:
2541 ret
= bgp_attr_as4_path(&attr_args
, &as4_path
);
2543 case BGP_ATTR_NEXT_HOP
:
2544 ret
= bgp_attr_nexthop(&attr_args
);
2546 case BGP_ATTR_MULTI_EXIT_DISC
:
2547 ret
= bgp_attr_med(&attr_args
);
2549 case BGP_ATTR_LOCAL_PREF
:
2550 ret
= bgp_attr_local_pref(&attr_args
);
2552 case BGP_ATTR_ATOMIC_AGGREGATE
:
2553 ret
= bgp_attr_atomic(&attr_args
);
2555 case BGP_ATTR_AGGREGATOR
:
2556 ret
= bgp_attr_aggregator(&attr_args
);
2558 case BGP_ATTR_AS4_AGGREGATOR
:
2559 ret
= bgp_attr_as4_aggregator(&attr_args
,
2561 &as4_aggregator_addr
);
2563 case BGP_ATTR_COMMUNITIES
:
2564 ret
= bgp_attr_community(&attr_args
);
2566 case BGP_ATTR_LARGE_COMMUNITIES
:
2567 ret
= bgp_attr_large_community(&attr_args
);
2569 case BGP_ATTR_ORIGINATOR_ID
:
2570 ret
= bgp_attr_originator_id(&attr_args
);
2572 case BGP_ATTR_CLUSTER_LIST
:
2573 ret
= bgp_attr_cluster_list(&attr_args
);
2575 case BGP_ATTR_MP_REACH_NLRI
:
2576 ret
= bgp_mp_reach_parse(&attr_args
, mp_update
);
2578 case BGP_ATTR_MP_UNREACH_NLRI
:
2579 ret
= bgp_mp_unreach_parse(&attr_args
, mp_withdraw
);
2581 case BGP_ATTR_EXT_COMMUNITIES
:
2582 ret
= bgp_attr_ext_communities(&attr_args
);
2587 case BGP_ATTR_ENCAP
:
2588 ret
= bgp_attr_encap(type
, peer
, length
, attr
, flag
,
2591 case BGP_ATTR_PREFIX_SID
:
2592 ret
= bgp_attr_prefix_sid(length
,
2593 &attr_args
, mp_update
);
2595 case BGP_ATTR_PMSI_TUNNEL
:
2596 ret
= bgp_attr_pmsi_tunnel(&attr_args
);
2599 ret
= bgp_attr_unknown(&attr_args
);
2603 if (ret
== BGP_ATTR_PARSE_ERROR_NOTIFYPLS
) {
2604 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2605 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2606 ret
= BGP_ATTR_PARSE_ERROR
;
2609 if (ret
== BGP_ATTR_PARSE_EOR
) {
2611 aspath_unintern(&as4_path
);
2615 /* If hard error occured immediately return to the caller. */
2616 if (ret
== BGP_ATTR_PARSE_ERROR
) {
2617 zlog_warn("%s: Attribute %s, parse error", peer
->host
,
2618 lookup_msg(attr_str
, type
, NULL
));
2620 aspath_unintern(&as4_path
);
2623 if (ret
== BGP_ATTR_PARSE_WITHDRAW
) {
2626 "%s: Attribute %s, parse error - treating as withdrawal",
2627 peer
->host
, lookup_msg(attr_str
, type
, NULL
));
2629 aspath_unintern(&as4_path
);
2633 /* Check the fetched length. */
2634 if (BGP_INPUT_PNT(peer
) != attr_endp
) {
2635 zlog_warn("%s: BGP attribute %s, fetch error",
2636 peer
->host
, lookup_msg(attr_str
, type
, NULL
));
2637 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2638 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2640 aspath_unintern(&as4_path
);
2641 return BGP_ATTR_PARSE_ERROR
;
2645 /* Check final read pointer is same as end pointer. */
2646 if (BGP_INPUT_PNT(peer
) != endp
) {
2647 zlog_warn("%s: BGP attribute %s, length mismatch", peer
->host
,
2648 lookup_msg(attr_str
, type
, NULL
));
2649 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2650 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2652 aspath_unintern(&as4_path
);
2653 return BGP_ATTR_PARSE_ERROR
;
2656 /* Check all mandatory well-known attributes are present */
2658 bgp_attr_parse_ret_t ret
;
2659 if ((ret
= bgp_attr_check(peer
, attr
)) < 0) {
2661 aspath_unintern(&as4_path
);
2667 * At this place we can see whether we got AS4_PATH and/or
2668 * AS4_AGGREGATOR from a 16Bit peer and act accordingly.
2669 * We can not do this before we've read all attributes because
2670 * the as4 handling does not say whether AS4_PATH has to be sent
2671 * after AS_PATH or not - and when AS4_AGGREGATOR will be send
2672 * in relationship to AGGREGATOR.
2673 * So, to be defensive, we are not relying on any order and read
2674 * all attributes first, including these 32bit ones, and now,
2675 * afterwards, we look what and if something is to be done for as4.
2677 * It is possible to not have AS_PATH, e.g. GR EoR and sole
2680 /* actually... this doesn't ever return failure currently, but
2681 * better safe than sorry */
2682 if (CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
))
2683 && bgp_attr_munge_as4_attrs(peer
, attr
, as4_path
, as4_aggregator
,
2684 &as4_aggregator_addr
)) {
2685 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2686 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2688 aspath_unintern(&as4_path
);
2689 return BGP_ATTR_PARSE_ERROR
;
2692 /* At this stage, we have done all fiddling with as4, and the
2693 * resulting info is in attr->aggregator resp. attr->aspath
2694 * so we can chuck as4_aggregator and as4_path alltogether in
2695 * order to save memory
2698 aspath_unintern(&as4_path
); /* unintern - it is in the hash */
2699 /* The flag that we got this is still there, but that does not
2704 * The "rest" of the code does nothing with as4_aggregator.
2705 * there is no memory attached specifically which is not part
2707 * so ignoring just means do nothing.
2710 * Finally do the checks on the aspath we did not do yet
2711 * because we waited for a potentially synthesized aspath.
2713 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
))) {
2714 ret
= bgp_attr_aspath_check(peer
, attr
);
2715 if (ret
!= BGP_ATTR_PARSE_PROCEED
)
2718 /* Finally intern unknown attribute. */
2720 attr
->transit
= transit_intern(attr
->transit
);
2721 if (attr
->encap_subtlvs
)
2722 attr
->encap_subtlvs
=
2723 encap_intern(attr
->encap_subtlvs
, ENCAP_SUBTLV_TYPE
);
2725 if (attr
->vnc_subtlvs
)
2727 encap_intern(attr
->vnc_subtlvs
, VNC_SUBTLV_TYPE
);
2730 return BGP_ATTR_PARSE_PROCEED
;
2733 size_t bgp_packet_mpattr_start(struct stream
*s
, struct peer
*peer
, afi_t afi
,
2734 safi_t safi
, struct bpacket_attr_vec_arr
*vecarr
,
2739 iana_safi_t pkt_safi
;
2742 /* Set extended bit always to encode the attribute length as 2 bytes */
2743 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_EXTLEN
);
2744 stream_putc(s
, BGP_ATTR_MP_REACH_NLRI
);
2745 sizep
= stream_get_endp(s
);
2746 stream_putw(s
, 0); /* Marker: Attribute length. */
2749 /* Convert AFI, SAFI to values for packet. */
2750 bgp_map_afi_safi_int2iana(afi
, safi
, &pkt_afi
, &pkt_safi
);
2752 stream_putw(s
, pkt_afi
); /* AFI */
2753 stream_putc(s
, pkt_safi
); /* SAFI */
2757 && (safi
== SAFI_UNICAST
|| safi
== SAFI_LABELED_UNICAST
))
2758 nh_afi
= peer_cap_enhe(peer
, afi
, safi
) ? AFI_IP6
: AFI_IP
;
2760 nh_afi
= BGP_NEXTHOP_AFI_FROM_NHLEN(attr
->mp_nexthop_len
);
2763 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
, attr
);
2768 case SAFI_MULTICAST
:
2769 case SAFI_LABELED_UNICAST
:
2771 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
2775 stream_putl(s
, 0); /* RD = 0, per RFC */
2777 stream_put(s
, &attr
->mp_nexthop_global_in
, 4);
2782 stream_put(s
, &attr
->mp_nexthop_global_in
, 4);
2785 stream_putc(s
, 0); /* no nexthop for flowspec */
2793 case SAFI_MULTICAST
:
2794 case SAFI_LABELED_UNICAST
:
2796 if (attr
->mp_nexthop_len
2797 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
) {
2799 BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
);
2800 stream_put(s
, &attr
->mp_nexthop_global
,
2802 stream_put(s
, &attr
->mp_nexthop_local
,
2805 stream_putc(s
, IPV6_MAX_BYTELEN
);
2806 stream_put(s
, &attr
->mp_nexthop_global
,
2810 case SAFI_MPLS_VPN
: {
2811 if (attr
->mp_nexthop_len
2812 == BGP_ATTR_NHLEN_IPV6_GLOBAL
) {
2814 stream_putl(s
, 0); /* RD = 0, per RFC */
2816 stream_put(s
, &attr
->mp_nexthop_global
,
2818 } else if (attr
->mp_nexthop_len
2819 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
) {
2821 stream_putl(s
, 0); /* RD = 0, per RFC */
2823 stream_put(s
, &attr
->mp_nexthop_global
,
2825 stream_putl(s
, 0); /* RD = 0, per RFC */
2827 stream_put(s
, &attr
->mp_nexthop_local
,
2832 stream_putc(s
, IPV6_MAX_BYTELEN
);
2833 stream_put(s
, &attr
->mp_nexthop_global
,
2837 stream_putc(s
, 0); /* no nexthop for flowspec */
2843 if (safi
!= SAFI_FLOWSPEC
)
2845 BGP_ERR_ATTR_NH_SEND_LEN
,
2846 "Bad nexthop when sending to %s, AFI %u SAFI %u nhlen %d",
2847 peer
->host
, afi
, safi
, attr
->mp_nexthop_len
);
2856 void bgp_packet_mpattr_prefix(struct stream
*s
, afi_t afi
, safi_t safi
,
2857 struct prefix
*p
, struct prefix_rd
*prd
,
2858 mpls_label_t
*label
, uint32_t num_labels
,
2859 int addpath_encode
, uint32_t addpath_tx_id
,
2862 if (safi
== SAFI_MPLS_VPN
) {
2864 stream_putl(s
, addpath_tx_id
);
2865 /* Label, RD, Prefix write. */
2866 stream_putc(s
, p
->prefixlen
+ 88);
2867 stream_put(s
, label
, BGP_LABEL_BYTES
);
2868 stream_put(s
, prd
->val
, 8);
2869 stream_put(s
, &p
->u
.prefix
, PSIZE(p
->prefixlen
));
2870 } else if (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
) {
2871 /* EVPN prefix - contents depend on type */
2872 bgp_evpn_encode_prefix(s
, p
, prd
, label
, num_labels
, attr
,
2873 addpath_encode
, addpath_tx_id
);
2874 } else if (safi
== SAFI_LABELED_UNICAST
) {
2875 /* Prefix write with label. */
2876 stream_put_labeled_prefix(s
, p
, label
);
2877 } else if (safi
== SAFI_FLOWSPEC
) {
2878 if (PSIZE (p
->prefixlen
)+2 < FLOWSPEC_NLRI_SIZELIMIT
)
2879 stream_putc(s
, PSIZE (p
->prefixlen
)+2);
2881 stream_putw(s
, (PSIZE (p
->prefixlen
)+2)|(0xf<<12));
2882 stream_putc(s
, 2);/* Filter type */
2883 stream_putc(s
, p
->prefixlen
);/* Prefix length */
2884 stream_put(s
, &p
->u
.prefix
, PSIZE (p
->prefixlen
));
2886 stream_put_prefix_addpath(s
, p
, addpath_encode
, addpath_tx_id
);
2889 size_t bgp_packet_mpattr_prefix_size(afi_t afi
, safi_t safi
, struct prefix
*p
)
2891 int size
= PSIZE(p
->prefixlen
);
2892 if (safi
== SAFI_MPLS_VPN
)
2894 else if (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
)
2895 size
+= 232; // TODO: Maximum possible for type-2, type-3 and
2901 * Encodes the tunnel encapsulation attribute,
2902 * and with ENABLE_BGP_VNC the VNC attribute which uses
2903 * almost the same TLV format
2905 static void bgp_packet_mpattr_tea(struct bgp
*bgp
, struct peer
*peer
,
2906 struct stream
*s
, struct attr
*attr
,
2909 unsigned int attrlenfield
= 0;
2910 unsigned int attrhdrlen
= 0;
2911 struct bgp_attr_encap_subtlv
*subtlvs
;
2912 struct bgp_attr_encap_subtlv
*st
;
2913 const char *attrname
;
2915 if (!attr
|| (attrtype
== BGP_ATTR_ENCAP
2916 && (!attr
->encap_tunneltype
2917 || attr
->encap_tunneltype
== BGP_ENCAP_TYPE_MPLS
)))
2921 case BGP_ATTR_ENCAP
:
2922 attrname
= "Tunnel Encap";
2923 subtlvs
= attr
->encap_subtlvs
;
2924 if (subtlvs
== NULL
) /* nothing to do */
2927 * The tunnel encap attr has an "outer" tlv.
2929 * L = total length of subtlvs,
2930 * V = concatenated subtlvs.
2932 attrlenfield
= 2 + 2; /* T + L */
2933 attrhdrlen
= 1 + 1; /* subTLV T + L */
2939 subtlvs
= attr
->vnc_subtlvs
;
2940 if (subtlvs
== NULL
) /* nothing to do */
2942 attrlenfield
= 0; /* no outer T + L */
2943 attrhdrlen
= 2 + 2; /* subTLV T + L */
2951 /* compute attr length */
2952 for (st
= subtlvs
; st
; st
= st
->next
) {
2953 attrlenfield
+= (attrhdrlen
+ st
->length
);
2956 if (attrlenfield
> 0xffff) {
2957 zlog_info("%s attribute is too long (length=%d), can't send it",
2958 attrname
, attrlenfield
);
2962 if (attrlenfield
> 0xff) {
2963 /* 2-octet length field */
2965 BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
2966 | BGP_ATTR_FLAG_EXTLEN
);
2967 stream_putc(s
, attrtype
);
2968 stream_putw(s
, attrlenfield
& 0xffff);
2970 /* 1-octet length field */
2971 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
);
2972 stream_putc(s
, attrtype
);
2973 stream_putc(s
, attrlenfield
& 0xff);
2976 if (attrtype
== BGP_ATTR_ENCAP
) {
2977 /* write outer T+L */
2978 stream_putw(s
, attr
->encap_tunneltype
);
2979 stream_putw(s
, attrlenfield
- 4);
2982 /* write each sub-tlv */
2983 for (st
= subtlvs
; st
; st
= st
->next
) {
2984 if (attrtype
== BGP_ATTR_ENCAP
) {
2985 stream_putc(s
, st
->type
);
2986 stream_putc(s
, st
->length
);
2989 stream_putw(s
, st
->type
);
2990 stream_putw(s
, st
->length
);
2993 stream_put(s
, st
->value
, st
->length
);
2997 void bgp_packet_mpattr_end(struct stream
*s
, size_t sizep
)
2999 /* Set MP attribute length. Don't count the (2) bytes used to encode
3001 stream_putw_at(s
, sizep
, (stream_get_endp(s
) - sizep
) - 2);
3004 /* Make attribute packet. */
3005 bgp_size_t
bgp_packet_attribute(struct bgp
*bgp
, struct peer
*peer
,
3006 struct stream
*s
, struct attr
*attr
,
3007 struct bpacket_attr_vec_arr
*vecarr
,
3008 struct prefix
*p
, afi_t afi
, safi_t safi
,
3009 struct peer
*from
, struct prefix_rd
*prd
,
3010 mpls_label_t
*label
, uint32_t num_labels
,
3011 int addpath_encode
, uint32_t addpath_tx_id
)
3014 size_t aspath_sizep
;
3015 struct aspath
*aspath
;
3016 int send_as4_path
= 0;
3017 int send_as4_aggregator
= 0;
3018 int use32bit
= (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
)) ? 1 : 0;
3023 /* Remember current pointer. */
3024 cp
= stream_get_endp(s
);
3027 && !((afi
== AFI_IP
&& safi
== SAFI_UNICAST
)
3028 && !peer_cap_enhe(peer
, afi
, safi
))) {
3029 size_t mpattrlen_pos
= 0;
3031 mpattrlen_pos
= bgp_packet_mpattr_start(s
, peer
, afi
, safi
,
3033 bgp_packet_mpattr_prefix(s
, afi
, safi
, p
, prd
, label
,
3034 num_labels
, addpath_encode
,
3035 addpath_tx_id
, attr
);
3036 bgp_packet_mpattr_end(s
, mpattrlen_pos
);
3039 /* Origin attribute. */
3040 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3041 stream_putc(s
, BGP_ATTR_ORIGIN
);
3043 stream_putc(s
, attr
->origin
);
3045 /* AS path attribute. */
3047 /* If remote-peer is EBGP */
3048 if (peer
->sort
== BGP_PEER_EBGP
3049 && (!CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3050 PEER_FLAG_AS_PATH_UNCHANGED
)
3051 || attr
->aspath
->segments
== NULL
)
3052 && (!CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3053 PEER_FLAG_RSERVER_CLIENT
))) {
3054 aspath
= aspath_dup(attr
->aspath
);
3056 /* Even though we may not be configured for confederations we
3058 * RXed an AS_PATH with AS_CONFED_SEQUENCE or AS_CONFED_SET */
3059 aspath
= aspath_delete_confed_seq(aspath
);
3061 if (CHECK_FLAG(bgp
->config
, BGP_CONFIG_CONFEDERATION
)) {
3062 /* Stuff our path CONFED_ID on the front */
3063 aspath
= aspath_add_seq(aspath
, bgp
->confed_id
);
3065 if (peer
->change_local_as
) {
3066 /* If replace-as is specified, we only use the
3067 change_local_as when
3068 advertising routes. */
3071 PEER_FLAG_LOCAL_AS_REPLACE_AS
)) {
3072 aspath
= aspath_add_seq(aspath
,
3075 aspath
= aspath_add_seq(aspath
,
3076 peer
->change_local_as
);
3078 aspath
= aspath_add_seq(aspath
, peer
->local_as
);
3081 } else if (peer
->sort
== BGP_PEER_CONFED
) {
3082 /* A confed member, so we need to do the AS_CONFED_SEQUENCE
3084 aspath
= aspath_dup(attr
->aspath
);
3085 aspath
= aspath_add_confed_seq(aspath
, peer
->local_as
);
3087 aspath
= attr
->aspath
;
3089 /* If peer is not AS4 capable, then:
3090 * - send the created AS_PATH out as AS4_PATH (optional, transitive),
3091 * but ensure that no AS_CONFED_SEQUENCE and AS_CONFED_SET path
3093 * types are in it (i.e. exclude them if they are there)
3094 * AND do this only if there is at least one asnum > 65535 in the
3096 * - send an AS_PATH out, but put 16Bit ASnums in it, not 32bit, and
3098 * all ASnums > 65535 to BGP_AS_TRANS
3101 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_EXTLEN
);
3102 stream_putc(s
, BGP_ATTR_AS_PATH
);
3103 aspath_sizep
= stream_get_endp(s
);
3105 stream_putw_at(s
, aspath_sizep
, aspath_put(s
, aspath
, use32bit
));
3107 /* OLD session may need NEW_AS_PATH sent, if there are 4-byte ASNs
3110 if (!use32bit
&& aspath_has_as4(aspath
))
3112 1; /* we'll do this later, at the correct place */
3114 /* Nexthop attribute. */
3115 if (afi
== AFI_IP
&& safi
== SAFI_UNICAST
3116 && !peer_cap_enhe(peer
, afi
, safi
)) {
3117 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
)) {
3118 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3119 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3120 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
,
3123 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3124 } else if (peer_cap_enhe(from
, afi
, safi
)) {
3126 * Likely this is the case when an IPv4 prefix was
3128 * Extended Next-hop capability and now being advertised
3131 * Setting the mandatory (ipv4) next-hop attribute here
3133 * implicit next-hop self with correct (ipv4 address
3136 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3137 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3138 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
,
3141 stream_put_ipv4(s
, 0);
3145 /* MED attribute. */
3146 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
)
3147 || bgp
->maxmed_active
) {
3148 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3149 stream_putc(s
, BGP_ATTR_MULTI_EXIT_DISC
);
3151 stream_putl(s
, (bgp
->maxmed_active
? bgp
->maxmed_value
3155 /* Local preference. */
3156 if (peer
->sort
== BGP_PEER_IBGP
|| peer
->sort
== BGP_PEER_CONFED
) {
3157 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3158 stream_putc(s
, BGP_ATTR_LOCAL_PREF
);
3160 stream_putl(s
, attr
->local_pref
);
3163 /* Atomic aggregate. */
3164 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
)) {
3165 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3166 stream_putc(s
, BGP_ATTR_ATOMIC_AGGREGATE
);
3171 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
)) {
3172 /* Common to BGP_ATTR_AGGREGATOR, regardless of ASN size */
3173 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3174 stream_putc(s
, BGP_ATTR_AGGREGATOR
);
3177 /* AS4 capable peer */
3179 stream_putl(s
, attr
->aggregator_as
);
3181 /* 2-byte AS peer */
3184 /* Is ASN representable in 2-bytes? Or must AS_TRANS be
3186 if (attr
->aggregator_as
> 65535) {
3187 stream_putw(s
, BGP_AS_TRANS
);
3189 /* we have to send AS4_AGGREGATOR, too.
3190 * we'll do that later in order to send
3191 * attributes in ascending
3194 send_as4_aggregator
= 1;
3196 stream_putw(s
, (uint16_t)attr
->aggregator_as
);
3198 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3201 /* Community attribute. */
3202 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
], PEER_FLAG_SEND_COMMUNITY
)
3203 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
))) {
3204 if (attr
->community
->size
* 4 > 255) {
3206 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3207 | BGP_ATTR_FLAG_EXTLEN
);
3208 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3209 stream_putw(s
, attr
->community
->size
* 4);
3212 BGP_ATTR_FLAG_OPTIONAL
3213 | BGP_ATTR_FLAG_TRANS
);
3214 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3215 stream_putc(s
, attr
->community
->size
* 4);
3217 stream_put(s
, attr
->community
->val
, attr
->community
->size
* 4);
3221 * Large Community attribute.
3223 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3224 PEER_FLAG_SEND_LARGE_COMMUNITY
)
3225 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
))) {
3226 if (lcom_length(attr
->lcommunity
) > 255) {
3228 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3229 | BGP_ATTR_FLAG_EXTLEN
);
3230 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3231 stream_putw(s
, lcom_length(attr
->lcommunity
));
3234 BGP_ATTR_FLAG_OPTIONAL
3235 | BGP_ATTR_FLAG_TRANS
);
3236 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3237 stream_putc(s
, lcom_length(attr
->lcommunity
));
3239 stream_put(s
, attr
->lcommunity
->val
,
3240 lcom_length(attr
->lcommunity
));
3243 /* Route Reflector. */
3244 if (peer
->sort
== BGP_PEER_IBGP
&& from
3245 && from
->sort
== BGP_PEER_IBGP
) {
3246 /* Originator ID. */
3247 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3248 stream_putc(s
, BGP_ATTR_ORIGINATOR_ID
);
3251 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID
))
3252 stream_put_in_addr(s
, &attr
->originator_id
);
3254 stream_put_in_addr(s
, &from
->remote_id
);
3257 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3258 stream_putc(s
, BGP_ATTR_CLUSTER_LIST
);
3260 if (attr
->cluster
) {
3261 stream_putc(s
, attr
->cluster
->length
+ 4);
3262 /* If this peer configuration's parent BGP has
3264 if (bgp
->config
& BGP_CONFIG_CLUSTER_ID
)
3265 stream_put_in_addr(s
, &bgp
->cluster_id
);
3267 stream_put_in_addr(s
, &bgp
->router_id
);
3268 stream_put(s
, attr
->cluster
->list
,
3269 attr
->cluster
->length
);
3272 /* If this peer configuration's parent BGP has
3274 if (bgp
->config
& BGP_CONFIG_CLUSTER_ID
)
3275 stream_put_in_addr(s
, &bgp
->cluster_id
);
3277 stream_put_in_addr(s
, &bgp
->router_id
);
3281 /* Extended Communities attribute. */
3282 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
], PEER_FLAG_SEND_EXT_COMMUNITY
)
3283 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
))) {
3284 if (peer
->sort
== BGP_PEER_IBGP
3285 || peer
->sort
== BGP_PEER_CONFED
) {
3286 if (attr
->ecommunity
->size
* 8 > 255) {
3288 BGP_ATTR_FLAG_OPTIONAL
3289 | BGP_ATTR_FLAG_TRANS
3290 | BGP_ATTR_FLAG_EXTLEN
);
3291 stream_putc(s
, BGP_ATTR_EXT_COMMUNITIES
);
3292 stream_putw(s
, attr
->ecommunity
->size
* 8);
3295 BGP_ATTR_FLAG_OPTIONAL
3296 | BGP_ATTR_FLAG_TRANS
);
3297 stream_putc(s
, BGP_ATTR_EXT_COMMUNITIES
);
3298 stream_putc(s
, attr
->ecommunity
->size
* 8);
3300 stream_put(s
, attr
->ecommunity
->val
,
3301 attr
->ecommunity
->size
* 8);
3305 int ecom_tr_size
= 0;
3308 for (i
= 0; i
< attr
->ecommunity
->size
; i
++) {
3309 pnt
= attr
->ecommunity
->val
+ (i
* 8);
3312 if (CHECK_FLAG(tbit
,
3313 ECOMMUNITY_FLAG_NON_TRANSITIVE
))
3320 if (ecom_tr_size
* 8 > 255) {
3323 BGP_ATTR_FLAG_OPTIONAL
3324 | BGP_ATTR_FLAG_TRANS
3325 | BGP_ATTR_FLAG_EXTLEN
);
3327 BGP_ATTR_EXT_COMMUNITIES
);
3328 stream_putw(s
, ecom_tr_size
* 8);
3332 BGP_ATTR_FLAG_OPTIONAL
3333 | BGP_ATTR_FLAG_TRANS
);
3335 BGP_ATTR_EXT_COMMUNITIES
);
3336 stream_putc(s
, ecom_tr_size
* 8);
3339 for (i
= 0; i
< attr
->ecommunity
->size
; i
++) {
3340 pnt
= attr
->ecommunity
->val
+ (i
* 8);
3345 ECOMMUNITY_FLAG_NON_TRANSITIVE
))
3348 stream_put(s
, pnt
, 8);
3354 /* Label index attribute. */
3355 if (safi
== SAFI_LABELED_UNICAST
) {
3356 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
)) {
3357 uint32_t label_index
;
3359 label_index
= attr
->label_index
;
3361 if (label_index
!= BGP_INVALID_LABEL_INDEX
) {
3363 BGP_ATTR_FLAG_OPTIONAL
3364 | BGP_ATTR_FLAG_TRANS
);
3365 stream_putc(s
, BGP_ATTR_PREFIX_SID
);
3367 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX
);
3369 BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
3370 stream_putc(s
, 0); // reserved
3371 stream_putw(s
, 0); // flags
3372 stream_putl(s
, label_index
);
3377 if (send_as4_path
) {
3378 /* If the peer is NOT As4 capable, AND */
3379 /* there are ASnums > 65535 in path THEN
3380 * give out AS4_PATH */
3382 /* Get rid of all AS_CONFED_SEQUENCE and AS_CONFED_SET
3384 * Hm, I wonder... confederation things *should* only be at
3385 * the beginning of an aspath, right? Then we should use
3386 * aspath_delete_confed_seq for this, because it is already
3388 * Folks, talk to me: what is reasonable here!?
3390 aspath
= aspath_delete_confed_seq(aspath
);
3393 BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
3394 | BGP_ATTR_FLAG_EXTLEN
);
3395 stream_putc(s
, BGP_ATTR_AS4_PATH
);
3396 aspath_sizep
= stream_get_endp(s
);
3398 stream_putw_at(s
, aspath_sizep
, aspath_put(s
, aspath
, 1));
3401 if (aspath
!= attr
->aspath
)
3402 aspath_free(aspath
);
3404 if (send_as4_aggregator
) {
3405 /* send AS4_AGGREGATOR, at this place */
3406 /* this section of code moved here in order to ensure the
3408 * *ascending* order of attributes
3410 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3411 stream_putc(s
, BGP_ATTR_AS4_AGGREGATOR
);
3413 stream_putl(s
, attr
->aggregator_as
);
3414 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3417 if (((afi
== AFI_IP
|| afi
== AFI_IP6
)
3418 && (safi
== SAFI_ENCAP
|| safi
== SAFI_MPLS_VPN
))
3419 || (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
)) {
3420 /* Tunnel Encap attribute */
3421 bgp_packet_mpattr_tea(bgp
, peer
, s
, attr
, BGP_ATTR_ENCAP
);
3425 bgp_packet_mpattr_tea(bgp
, peer
, s
, attr
, BGP_ATTR_VNC
);
3430 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL
)) {
3431 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3432 stream_putc(s
, BGP_ATTR_PMSI_TUNNEL
);
3433 stream_putc(s
, 9); // Length
3434 stream_putc(s
, 0); // Flags
3435 stream_putc(s
, PMSI_TNLTYPE_INGR_REPL
); // IR (6)
3436 stream_put(s
, &(attr
->label
),
3437 BGP_LABEL_BYTES
); // MPLS Label / VXLAN VNI
3438 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3439 // Unicast tunnel endpoint IP address
3442 /* Unknown transit attribute. */
3444 stream_put(s
, attr
->transit
->val
, attr
->transit
->length
);
3446 /* Return total size of attribute. */
3447 return stream_get_endp(s
) - cp
;
3450 size_t bgp_packet_mpunreach_start(struct stream
*s
, afi_t afi
, safi_t safi
)
3452 unsigned long attrlen_pnt
;
3454 iana_safi_t pkt_safi
;
3456 /* Set extended bit always to encode the attribute length as 2 bytes */
3457 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_EXTLEN
);
3458 stream_putc(s
, BGP_ATTR_MP_UNREACH_NLRI
);
3460 attrlen_pnt
= stream_get_endp(s
);
3461 stream_putw(s
, 0); /* Length of this attribute. */
3463 /* Convert AFI, SAFI to values for packet. */
3464 bgp_map_afi_safi_int2iana(afi
, safi
, &pkt_afi
, &pkt_safi
);
3466 stream_putw(s
, pkt_afi
);
3467 stream_putc(s
, pkt_safi
);
3472 void bgp_packet_mpunreach_prefix(struct stream
*s
, struct prefix
*p
, afi_t afi
,
3473 safi_t safi
, struct prefix_rd
*prd
,
3474 mpls_label_t
*label
, uint32_t num_labels
,
3475 int addpath_encode
, uint32_t addpath_tx_id
,
3478 uint8_t wlabel
[3] = {0x80, 0x00, 0x00};
3480 if (safi
== SAFI_LABELED_UNICAST
) {
3481 label
= (mpls_label_t
*)wlabel
;
3485 return bgp_packet_mpattr_prefix(s
, afi
, safi
, p
, prd
, label
, num_labels
,
3486 addpath_encode
, addpath_tx_id
, attr
);
3489 void bgp_packet_mpunreach_end(struct stream
*s
, size_t attrlen_pnt
)
3491 bgp_packet_mpattr_end(s
, attrlen_pnt
);
3494 /* Initialization of attribute. */
3495 void bgp_attr_init(void)
3507 void bgp_attr_finish(void)
3512 ecommunity_finish();
3513 lcommunity_finish();
3519 /* Make attribute packet. */
3520 void bgp_dump_routes_attr(struct stream
*s
, struct attr
*attr
,
3521 struct prefix
*prefix
)
3526 struct aspath
*aspath
;
3527 int addpath_encode
= 0;
3528 uint32_t addpath_tx_id
= 0;
3530 /* Remember current pointer. */
3531 cp
= stream_get_endp(s
);
3533 /* Place holder of length. */
3536 /* Origin attribute. */
3537 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3538 stream_putc(s
, BGP_ATTR_ORIGIN
);
3540 stream_putc(s
, attr
->origin
);
3542 aspath
= attr
->aspath
;
3544 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_EXTLEN
);
3545 stream_putc(s
, BGP_ATTR_AS_PATH
);
3546 aspath_lenp
= stream_get_endp(s
);
3549 stream_putw_at(s
, aspath_lenp
, aspath_put(s
, aspath
, 1));
3551 /* Nexthop attribute. */
3552 /* If it's an IPv6 prefix, don't dump the IPv4 nexthop to save space */
3553 if (prefix
!= NULL
&& prefix
->family
!= AF_INET6
) {
3554 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3555 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3557 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3560 /* MED attribute. */
3561 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
)) {
3562 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3563 stream_putc(s
, BGP_ATTR_MULTI_EXIT_DISC
);
3565 stream_putl(s
, attr
->med
);
3568 /* Local preference. */
3569 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
)) {
3570 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3571 stream_putc(s
, BGP_ATTR_LOCAL_PREF
);
3573 stream_putl(s
, attr
->local_pref
);
3576 /* Atomic aggregate. */
3577 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
)) {
3578 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3579 stream_putc(s
, BGP_ATTR_ATOMIC_AGGREGATE
);
3584 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
)) {
3585 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3586 stream_putc(s
, BGP_ATTR_AGGREGATOR
);
3588 stream_putl(s
, attr
->aggregator_as
);
3589 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3592 /* Community attribute. */
3593 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
)) {
3594 if (attr
->community
->size
* 4 > 255) {
3596 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3597 | BGP_ATTR_FLAG_EXTLEN
);
3598 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3599 stream_putw(s
, attr
->community
->size
* 4);
3602 BGP_ATTR_FLAG_OPTIONAL
3603 | BGP_ATTR_FLAG_TRANS
);
3604 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3605 stream_putc(s
, attr
->community
->size
* 4);
3607 stream_put(s
, attr
->community
->val
, attr
->community
->size
* 4);
3610 /* Large Community attribute. */
3611 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
)) {
3612 if (lcom_length(attr
->lcommunity
) > 255) {
3614 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3615 | BGP_ATTR_FLAG_EXTLEN
);
3616 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3617 stream_putw(s
, lcom_length(attr
->lcommunity
));
3620 BGP_ATTR_FLAG_OPTIONAL
3621 | BGP_ATTR_FLAG_TRANS
);
3622 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3623 stream_putc(s
, lcom_length(attr
->lcommunity
));
3626 stream_put(s
, attr
->lcommunity
->val
,
3627 lcom_length(attr
->lcommunity
));
3630 /* Add a MP_NLRI attribute to dump the IPv6 next hop */
3631 if (prefix
!= NULL
&& prefix
->family
== AF_INET6
3632 && (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL
3633 || attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
)) {
3636 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3637 stream_putc(s
, BGP_ATTR_MP_REACH_NLRI
);
3638 sizep
= stream_get_endp(s
);
3641 stream_putc(s
, 0); /* Marker: Attribute length. */
3642 stream_putw(s
, AFI_IP6
); /* AFI */
3643 stream_putc(s
, SAFI_UNICAST
); /* SAFI */
3646 stream_putc(s
, attr
->mp_nexthop_len
);
3647 stream_put(s
, &attr
->mp_nexthop_global
, IPV6_MAX_BYTELEN
);
3648 if (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
)
3649 stream_put(s
, &attr
->mp_nexthop_local
,
3656 stream_put_prefix_addpath(s
, prefix
, addpath_encode
,
3659 /* Set MP attribute length. */
3660 stream_putc_at(s
, sizep
, (stream_get_endp(s
) - sizep
) - 1);
3664 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
)) {
3665 if (attr
->label_index
!= BGP_INVALID_LABEL_INDEX
) {
3667 BGP_ATTR_FLAG_OPTIONAL
3668 | BGP_ATTR_FLAG_TRANS
);
3669 stream_putc(s
, BGP_ATTR_PREFIX_SID
);
3671 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX
);
3672 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
3673 stream_putc(s
, 0); // reserved
3674 stream_putw(s
, 0); // flags
3675 stream_putl(s
, attr
->label_index
);
3679 /* Return total size of attribute. */
3680 len
= stream_get_endp(s
) - cp
- 2;
3681 stream_putw_at(s
, cp
, len
);