1 /* BGP attributes management routines.
2 * Copyright (C) 1996, 97, 98, 1999 Kunihiro Ishiguro
4 * This file is part of GNU Zebra.
6 * GNU Zebra is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the
8 * Free Software Foundation; either version 2, or (at your option) any
11 * GNU Zebra is distributed in the hope that it will be useful, but
12 * WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * General Public License for more details.
16 * You should have received a copy of the GNU General Public License along
17 * with this program; see the file COPYING; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
36 #include "bgpd/bgpd.h"
37 #include "bgpd/bgp_attr.h"
38 #include "bgpd/bgp_route.h"
39 #include "bgpd/bgp_aspath.h"
40 #include "bgpd/bgp_community.h"
41 #include "bgpd/bgp_debug.h"
42 #include "bgpd/bgp_errors.h"
43 #include "bgpd/bgp_label.h"
44 #include "bgpd/bgp_packet.h"
45 #include "bgpd/bgp_ecommunity.h"
46 #include "bgpd/bgp_lcommunity.h"
47 #include "bgpd/bgp_updgrp.h"
48 #include "bgpd/bgp_encap_types.h"
50 #include "bgpd/rfapi/bgp_rfapi_cfg.h"
51 #include "bgp_encap_types.h"
52 #include "bgp_vnc_types.h"
54 #include "bgp_encap_types.h"
56 #include "bgp_flowspec_private.h"
58 /* Attribute strings for logging. */
59 static const struct message attr_str
[] = {
60 {BGP_ATTR_ORIGIN
, "ORIGIN"},
61 {BGP_ATTR_AS_PATH
, "AS_PATH"},
62 {BGP_ATTR_NEXT_HOP
, "NEXT_HOP"},
63 {BGP_ATTR_MULTI_EXIT_DISC
, "MULTI_EXIT_DISC"},
64 {BGP_ATTR_LOCAL_PREF
, "LOCAL_PREF"},
65 {BGP_ATTR_ATOMIC_AGGREGATE
, "ATOMIC_AGGREGATE"},
66 {BGP_ATTR_AGGREGATOR
, "AGGREGATOR"},
67 {BGP_ATTR_COMMUNITIES
, "COMMUNITY"},
68 {BGP_ATTR_ORIGINATOR_ID
, "ORIGINATOR_ID"},
69 {BGP_ATTR_CLUSTER_LIST
, "CLUSTER_LIST"},
70 {BGP_ATTR_DPA
, "DPA"},
71 {BGP_ATTR_ADVERTISER
, "ADVERTISER"},
72 {BGP_ATTR_RCID_PATH
, "RCID_PATH"},
73 {BGP_ATTR_MP_REACH_NLRI
, "MP_REACH_NLRI"},
74 {BGP_ATTR_MP_UNREACH_NLRI
, "MP_UNREACH_NLRI"},
75 {BGP_ATTR_EXT_COMMUNITIES
, "EXT_COMMUNITIES"},
76 {BGP_ATTR_AS4_PATH
, "AS4_PATH"},
77 {BGP_ATTR_AS4_AGGREGATOR
, "AS4_AGGREGATOR"},
78 {BGP_ATTR_AS_PATHLIMIT
, "AS_PATHLIMIT"},
79 {BGP_ATTR_PMSI_TUNNEL
, "PMSI_TUNNEL_ATTRIBUTE"},
80 {BGP_ATTR_ENCAP
, "ENCAP"},
82 {BGP_ATTR_VNC
, "VNC"},
84 {BGP_ATTR_LARGE_COMMUNITIES
, "LARGE_COMMUNITY"},
85 {BGP_ATTR_PREFIX_SID
, "PREFIX_SID"},
88 static const struct message attr_flag_str
[] = {
89 {BGP_ATTR_FLAG_OPTIONAL
, "Optional"},
90 {BGP_ATTR_FLAG_TRANS
, "Transitive"},
91 {BGP_ATTR_FLAG_PARTIAL
, "Partial"},
92 /* bgp_attr_flags_diagnose() relies on this bit being last in
94 {BGP_ATTR_FLAG_EXTLEN
, "Extended Length"},
97 static struct hash
*cluster_hash
;
99 static void *cluster_hash_alloc(void *p
)
101 const struct cluster_list
*val
= (const struct cluster_list
*)p
;
102 struct cluster_list
*cluster
;
104 cluster
= XMALLOC(MTYPE_CLUSTER
, sizeof(struct cluster_list
));
105 cluster
->length
= val
->length
;
107 if (cluster
->length
) {
108 cluster
->list
= XMALLOC(MTYPE_CLUSTER_VAL
, val
->length
);
109 memcpy(cluster
->list
, val
->list
, val
->length
);
111 cluster
->list
= NULL
;
118 /* Cluster list related functions. */
119 static struct cluster_list
*cluster_parse(struct in_addr
*pnt
, int length
)
121 struct cluster_list tmp
;
122 struct cluster_list
*cluster
;
127 cluster
= hash_get(cluster_hash
, &tmp
, cluster_hash_alloc
);
132 int cluster_loop_check(struct cluster_list
*cluster
, struct in_addr originator
)
136 for (i
= 0; i
< cluster
->length
/ 4; i
++)
137 if (cluster
->list
[i
].s_addr
== originator
.s_addr
)
142 static unsigned int cluster_hash_key_make(void *p
)
144 const struct cluster_list
*cluster
= p
;
146 return jhash(cluster
->list
, cluster
->length
, 0);
149 static int cluster_hash_cmp(const void *p1
, const void *p2
)
151 const struct cluster_list
*cluster1
= p1
;
152 const struct cluster_list
*cluster2
= p2
;
154 return (cluster1
->length
== cluster2
->length
155 && memcmp(cluster1
->list
, cluster2
->list
, cluster1
->length
)
159 static void cluster_free(struct cluster_list
*cluster
)
162 XFREE(MTYPE_CLUSTER_VAL
, cluster
->list
);
163 XFREE(MTYPE_CLUSTER
, cluster
);
166 static struct cluster_list
*cluster_intern(struct cluster_list
*cluster
)
168 struct cluster_list
*find
;
170 find
= hash_get(cluster_hash
, cluster
, cluster_hash_alloc
);
176 void cluster_unintern(struct cluster_list
*cluster
)
181 if (cluster
->refcnt
== 0) {
182 hash_release(cluster_hash
, cluster
);
183 cluster_free(cluster
);
187 static void cluster_init(void)
189 cluster_hash
= hash_create(cluster_hash_key_make
, cluster_hash_cmp
,
193 static void cluster_finish(void)
195 hash_clean(cluster_hash
, (void (*)(void *))cluster_free
);
196 hash_free(cluster_hash
);
200 static struct hash
*encap_hash
= NULL
;
202 static struct hash
*vnc_hash
= NULL
;
205 struct bgp_attr_encap_subtlv
*encap_tlv_dup(struct bgp_attr_encap_subtlv
*orig
)
207 struct bgp_attr_encap_subtlv
*new;
208 struct bgp_attr_encap_subtlv
*tail
;
209 struct bgp_attr_encap_subtlv
*p
;
211 for (p
= orig
, tail
= new = NULL
; p
; p
= p
->next
) {
212 int size
= sizeof(struct bgp_attr_encap_subtlv
) + p
->length
;
214 tail
->next
= XCALLOC(MTYPE_ENCAP_TLV
, size
);
217 tail
= new = XCALLOC(MTYPE_ENCAP_TLV
, size
);
220 memcpy(tail
, p
, size
);
227 static void encap_free(struct bgp_attr_encap_subtlv
*p
)
229 struct bgp_attr_encap_subtlv
*next
;
233 XFREE(MTYPE_ENCAP_TLV
, p
);
238 void bgp_attr_flush_encap(struct attr
*attr
)
243 if (attr
->encap_subtlvs
) {
244 encap_free(attr
->encap_subtlvs
);
245 attr
->encap_subtlvs
= NULL
;
248 if (attr
->vnc_subtlvs
) {
249 encap_free(attr
->vnc_subtlvs
);
250 attr
->vnc_subtlvs
= NULL
;
256 * Compare encap sub-tlv chains
261 * This algorithm could be made faster if needed
263 static int encap_same(struct bgp_attr_encap_subtlv
*h1
,
264 struct bgp_attr_encap_subtlv
*h2
)
266 struct bgp_attr_encap_subtlv
*p
;
267 struct bgp_attr_encap_subtlv
*q
;
271 if (h1
== NULL
|| h2
== NULL
)
274 for (p
= h1
; p
; p
= p
->next
) {
275 for (q
= h2
; q
; q
= q
->next
) {
276 if ((p
->type
== q
->type
) && (p
->length
== q
->length
)
277 && !memcmp(p
->value
, q
->value
, p
->length
)) {
286 for (p
= h2
; p
; p
= p
->next
) {
287 for (q
= h1
; q
; q
= q
->next
) {
288 if ((p
->type
== q
->type
) && (p
->length
== q
->length
)
289 && !memcmp(p
->value
, q
->value
, p
->length
)) {
301 static void *encap_hash_alloc(void *p
)
303 /* Encap structure is already allocated. */
314 static struct bgp_attr_encap_subtlv
*
315 encap_intern(struct bgp_attr_encap_subtlv
*encap
, encap_subtlv_type type
)
317 struct bgp_attr_encap_subtlv
*find
;
318 struct hash
*hash
= encap_hash
;
320 if (type
== VNC_SUBTLV_TYPE
)
324 find
= hash_get(hash
, encap
, encap_hash_alloc
);
332 static void encap_unintern(struct bgp_attr_encap_subtlv
**encapp
,
333 encap_subtlv_type type
)
335 struct bgp_attr_encap_subtlv
*encap
= *encapp
;
339 if (encap
->refcnt
== 0) {
340 struct hash
*hash
= encap_hash
;
342 if (type
== VNC_SUBTLV_TYPE
)
345 hash_release(hash
, encap
);
351 static unsigned int encap_hash_key_make(void *p
)
353 const struct bgp_attr_encap_subtlv
*encap
= p
;
355 return jhash(encap
->value
, encap
->length
, 0);
358 static int encap_hash_cmp(const void *p1
, const void *p2
)
360 return encap_same((struct bgp_attr_encap_subtlv
*)p1
,
361 (struct bgp_attr_encap_subtlv
*)p2
);
364 static void encap_init(void)
366 encap_hash
= hash_create(encap_hash_key_make
, encap_hash_cmp
,
369 vnc_hash
= hash_create(encap_hash_key_make
, encap_hash_cmp
,
374 static void encap_finish(void)
376 hash_clean(encap_hash
, (void (*)(void *))encap_free
);
377 hash_free(encap_hash
);
380 hash_clean(vnc_hash
, (void (*)(void *))encap_free
);
386 static bool overlay_index_same(const struct attr
*a1
, const struct attr
*a2
)
394 return !memcmp(&(a1
->evpn_overlay
), &(a2
->evpn_overlay
),
395 sizeof(struct overlay_index
));
398 /* Unknown transit attribute. */
399 static struct hash
*transit_hash
;
401 static void transit_free(struct transit
*transit
)
404 XFREE(MTYPE_TRANSIT_VAL
, transit
->val
);
405 XFREE(MTYPE_TRANSIT
, transit
);
408 static void *transit_hash_alloc(void *p
)
410 /* Transit structure is already allocated. */
414 static struct transit
*transit_intern(struct transit
*transit
)
416 struct transit
*find
;
418 find
= hash_get(transit_hash
, transit
, transit_hash_alloc
);
420 transit_free(transit
);
426 void transit_unintern(struct transit
*transit
)
431 if (transit
->refcnt
== 0) {
432 hash_release(transit_hash
, transit
);
433 transit_free(transit
);
437 static unsigned int transit_hash_key_make(void *p
)
439 const struct transit
*transit
= p
;
441 return jhash(transit
->val
, transit
->length
, 0);
444 static int transit_hash_cmp(const void *p1
, const void *p2
)
446 const struct transit
*transit1
= p1
;
447 const struct transit
*transit2
= p2
;
449 return (transit1
->length
== transit2
->length
450 && memcmp(transit1
->val
, transit2
->val
, transit1
->length
) == 0);
453 static void transit_init(void)
455 transit_hash
= hash_create(transit_hash_key_make
, transit_hash_cmp
,
459 static void transit_finish(void)
461 hash_clean(transit_hash
, (void (*)(void *))transit_free
);
462 hash_free(transit_hash
);
466 /* Attribute hash routines. */
467 static struct hash
*attrhash
;
469 /* Shallow copy of an attribute
470 * Though, not so shallow that it doesn't copy the contents
471 * of the attr_extra pointed to by 'extra'
473 void bgp_attr_dup(struct attr
*new, struct attr
*orig
)
478 unsigned long int attr_count(void)
480 return attrhash
->count
;
483 unsigned long int attr_unknown_count(void)
485 return transit_hash
->count
;
488 unsigned int attrhash_key_make(void *p
)
490 const struct attr
*attr
= (struct attr
*)p
;
492 #define MIX(val) key = jhash_1word(val, key)
493 #define MIX3(a, b, c) key = jhash_3words((a), (b), (c), key)
495 MIX3(attr
->origin
, attr
->nexthop
.s_addr
, attr
->med
);
496 MIX3(attr
->local_pref
, attr
->aggregator_as
,
497 attr
->aggregator_addr
.s_addr
);
498 MIX3(attr
->weight
, attr
->mp_nexthop_global_in
.s_addr
,
499 attr
->originator_id
.s_addr
);
500 MIX3(attr
->tag
, attr
->label
, attr
->label_index
);
503 MIX(aspath_key_make(attr
->aspath
));
505 MIX(community_hash_make(attr
->community
));
507 if (attr
->lcommunity
)
508 MIX(lcommunity_hash_make(attr
->lcommunity
));
509 if (attr
->ecommunity
)
510 MIX(ecommunity_hash_make(attr
->ecommunity
));
512 MIX(cluster_hash_key_make(attr
->cluster
));
514 MIX(transit_hash_key_make(attr
->transit
));
515 if (attr
->encap_subtlvs
)
516 MIX(encap_hash_key_make(attr
->encap_subtlvs
));
518 if (attr
->vnc_subtlvs
)
519 MIX(encap_hash_key_make(attr
->vnc_subtlvs
));
521 MIX(attr
->mp_nexthop_len
);
522 key
= jhash(attr
->mp_nexthop_global
.s6_addr
, IPV6_MAX_BYTELEN
, key
);
523 key
= jhash(attr
->mp_nexthop_local
.s6_addr
, IPV6_MAX_BYTELEN
, key
);
524 MIX(attr
->nh_ifindex
);
525 MIX(attr
->nh_lla_ifindex
);
530 int attrhash_cmp(const void *p1
, const void *p2
)
532 const struct attr
*attr1
= p1
;
533 const struct attr
*attr2
= p2
;
535 if (attr1
->flag
== attr2
->flag
&& attr1
->origin
== attr2
->origin
536 && attr1
->nexthop
.s_addr
== attr2
->nexthop
.s_addr
537 && attr1
->aspath
== attr2
->aspath
538 && attr1
->community
== attr2
->community
&& attr1
->med
== attr2
->med
539 && attr1
->local_pref
== attr2
->local_pref
540 && attr1
->rmap_change_flags
== attr2
->rmap_change_flags
) {
541 if (attr1
->aggregator_as
== attr2
->aggregator_as
542 && attr1
->aggregator_addr
.s_addr
543 == attr2
->aggregator_addr
.s_addr
544 && attr1
->weight
== attr2
->weight
545 && attr1
->tag
== attr2
->tag
546 && attr1
->label_index
== attr2
->label_index
547 && attr1
->mp_nexthop_len
== attr2
->mp_nexthop_len
548 && attr1
->ecommunity
== attr2
->ecommunity
549 && attr1
->lcommunity
== attr2
->lcommunity
550 && attr1
->cluster
== attr2
->cluster
551 && attr1
->transit
== attr2
->transit
552 && (attr1
->encap_tunneltype
== attr2
->encap_tunneltype
)
553 && encap_same(attr1
->encap_subtlvs
, attr2
->encap_subtlvs
)
555 && encap_same(attr1
->vnc_subtlvs
, attr2
->vnc_subtlvs
)
557 && IPV6_ADDR_SAME(&attr1
->mp_nexthop_global
,
558 &attr2
->mp_nexthop_global
)
559 && IPV6_ADDR_SAME(&attr1
->mp_nexthop_local
,
560 &attr2
->mp_nexthop_local
)
561 && IPV4_ADDR_SAME(&attr1
->mp_nexthop_global_in
,
562 &attr2
->mp_nexthop_global_in
)
563 && IPV4_ADDR_SAME(&attr1
->originator_id
,
564 &attr2
->originator_id
)
565 && overlay_index_same(attr1
, attr2
)
566 && attr1
->nh_ifindex
== attr2
->nh_ifindex
567 && attr1
->nh_lla_ifindex
== attr2
->nh_lla_ifindex
)
574 static void attrhash_init(void)
577 hash_create(attrhash_key_make
, attrhash_cmp
, "BGP Attributes");
581 * special for hash_clean below
583 static void attr_vfree(void *attr
)
585 XFREE(MTYPE_ATTR
, attr
);
588 static void attrhash_finish(void)
590 hash_clean(attrhash
, attr_vfree
);
595 static void attr_show_all_iterator(struct hash_backet
*backet
, struct vty
*vty
)
597 struct attr
*attr
= backet
->data
;
599 vty_out(vty
, "attr[%ld] nexthop %s\n", attr
->refcnt
,
600 inet_ntoa(attr
->nexthop
));
601 vty_out(vty
, "\tflags: %" PRIu64
" med: %u local_pref: %u origin: %u weight: %u label: %u\n",
602 attr
->flag
, attr
->med
, attr
->local_pref
, attr
->origin
,
603 attr
->weight
, attr
->label
);
606 void attr_show_all(struct vty
*vty
)
608 hash_iterate(attrhash
, (void (*)(struct hash_backet
*,
609 void *))attr_show_all_iterator
,
613 static void *bgp_attr_hash_alloc(void *p
)
615 struct attr
*val
= (struct attr
*)p
;
618 attr
= XMALLOC(MTYPE_ATTR
, sizeof(struct attr
));
620 if (val
->encap_subtlvs
) {
621 val
->encap_subtlvs
= NULL
;
624 if (val
->vnc_subtlvs
) {
625 val
->vnc_subtlvs
= NULL
;
632 /* Internet argument attribute. */
633 struct attr
*bgp_attr_intern(struct attr
*attr
)
637 /* Intern referenced strucutre. */
639 if (!attr
->aspath
->refcnt
)
640 attr
->aspath
= aspath_intern(attr
->aspath
);
642 attr
->aspath
->refcnt
++;
644 if (attr
->community
) {
645 if (!attr
->community
->refcnt
)
646 attr
->community
= community_intern(attr
->community
);
648 attr
->community
->refcnt
++;
651 if (attr
->ecommunity
) {
652 if (!attr
->ecommunity
->refcnt
)
653 attr
->ecommunity
= ecommunity_intern(attr
->ecommunity
);
655 attr
->ecommunity
->refcnt
++;
657 if (attr
->lcommunity
) {
658 if (!attr
->lcommunity
->refcnt
)
659 attr
->lcommunity
= lcommunity_intern(attr
->lcommunity
);
661 attr
->lcommunity
->refcnt
++;
664 if (!attr
->cluster
->refcnt
)
665 attr
->cluster
= cluster_intern(attr
->cluster
);
667 attr
->cluster
->refcnt
++;
670 if (!attr
->transit
->refcnt
)
671 attr
->transit
= transit_intern(attr
->transit
);
673 attr
->transit
->refcnt
++;
675 if (attr
->encap_subtlvs
) {
676 if (!attr
->encap_subtlvs
->refcnt
)
677 attr
->encap_subtlvs
= encap_intern(attr
->encap_subtlvs
,
680 attr
->encap_subtlvs
->refcnt
++;
683 if (attr
->vnc_subtlvs
) {
684 if (!attr
->vnc_subtlvs
->refcnt
)
685 attr
->vnc_subtlvs
= encap_intern(attr
->vnc_subtlvs
,
688 attr
->vnc_subtlvs
->refcnt
++;
692 /* At this point, attr only contains intern'd pointers. that means
693 * if we find it in attrhash, it has all the same pointers and we
694 * correctly updated the refcounts on these.
695 * If we don't find it, we need to allocate a one because in all
696 * cases this returns a new reference to a hashed attr, but the input
698 find
= (struct attr
*)hash_get(attrhash
, attr
, bgp_attr_hash_alloc
);
704 /* Make network statement's attribute. */
705 struct attr
*bgp_attr_default_set(struct attr
*attr
, uint8_t origin
)
707 memset(attr
, 0, sizeof(struct attr
));
709 attr
->origin
= origin
;
710 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
711 attr
->aspath
= aspath_empty();
712 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
713 attr
->weight
= BGP_ATTR_DEFAULT_WEIGHT
;
715 attr
->label_index
= BGP_INVALID_LABEL_INDEX
;
716 attr
->label
= MPLS_INVALID_LABEL
;
717 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
718 attr
->mp_nexthop_len
= IPV6_MAX_BYTELEN
;
723 /* Create the attributes for an aggregate */
724 struct attr
*bgp_attr_aggregate_intern(struct bgp
*bgp
, uint8_t origin
,
725 struct aspath
*aspath
,
726 struct community
*community
, int as_set
,
727 uint8_t atomic_aggregate
)
732 memset(&attr
, 0, sizeof(struct attr
));
734 /* Origin attribute. */
735 attr
.origin
= origin
;
736 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
738 /* AS path attribute. */
740 attr
.aspath
= aspath_intern(aspath
);
742 attr
.aspath
= aspath_empty();
743 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
745 /* Next hop attribute. */
746 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
749 uint32_t gshut
= COMMUNITY_GSHUT
;
751 /* If we are not shutting down ourselves and we are
752 * aggregating a route that contains the GSHUT community we
753 * need to remove that community when creating the aggregate */
754 if (!bgp_flag_check(bgp
, BGP_FLAG_GRACEFUL_SHUTDOWN
)
755 && community_include(community
, gshut
)) {
756 community_del_val(community
, &gshut
);
759 attr
.community
= community
;
760 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
);
763 if (bgp_flag_check(bgp
, BGP_FLAG_GRACEFUL_SHUTDOWN
)) {
764 bgp_attr_add_gshut_community(&attr
);
767 attr
.label_index
= BGP_INVALID_LABEL_INDEX
;
768 attr
.label
= MPLS_INVALID_LABEL
;
769 attr
.weight
= BGP_ATTR_DEFAULT_WEIGHT
;
770 attr
.mp_nexthop_len
= IPV6_MAX_BYTELEN
;
771 if (!as_set
|| atomic_aggregate
)
772 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
);
773 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
);
774 if (CHECK_FLAG(bgp
->config
, BGP_CONFIG_CONFEDERATION
))
775 attr
.aggregator_as
= bgp
->confed_id
;
777 attr
.aggregator_as
= bgp
->as
;
778 attr
.aggregator_addr
= bgp
->router_id
;
779 attr
.label_index
= BGP_INVALID_LABEL_INDEX
;
780 attr
.label
= MPLS_INVALID_LABEL
;
782 new = bgp_attr_intern(&attr
);
784 aspath_unintern(&new->aspath
);
788 /* Unintern just the sub-components of the attr, but not the attr */
789 void bgp_attr_unintern_sub(struct attr
*attr
)
791 /* aspath refcount shoud be decrement. */
793 aspath_unintern(&attr
->aspath
);
794 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
));
797 community_unintern(&attr
->community
);
798 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
));
800 if (attr
->ecommunity
)
801 ecommunity_unintern(&attr
->ecommunity
);
802 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
));
804 if (attr
->lcommunity
)
805 lcommunity_unintern(&attr
->lcommunity
);
806 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
));
809 cluster_unintern(attr
->cluster
);
810 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST
));
813 transit_unintern(attr
->transit
);
815 if (attr
->encap_subtlvs
)
816 encap_unintern(&attr
->encap_subtlvs
, ENCAP_SUBTLV_TYPE
);
819 if (attr
->vnc_subtlvs
)
820 encap_unintern(&attr
->vnc_subtlvs
, VNC_SUBTLV_TYPE
);
825 * We have some show commands that let you experimentally
826 * apply a route-map. When we apply the route-map
827 * we are reseting values but not saving them for
828 * posterity via intern'ing( because route-maps don't
829 * do that) but at this point in time we need
830 * to compare the new attr to the old and if the
831 * routemap has changed it we need to, as Snoop Dog says,
832 * Drop it like it's hot
834 void bgp_attr_undup(struct attr
*new, struct attr
*old
)
836 if (new->aspath
!= old
->aspath
)
837 aspath_free(new->aspath
);
839 if (new->community
!= old
->community
)
840 community_free(new->community
);
842 if (new->ecommunity
!= old
->ecommunity
)
843 ecommunity_free(&new->ecommunity
);
845 if (new->lcommunity
!= old
->lcommunity
)
846 lcommunity_free(&new->lcommunity
);
849 /* Free bgp attribute and aspath. */
850 void bgp_attr_unintern(struct attr
**pattr
)
852 struct attr
*attr
= *pattr
;
856 /* Decrement attribute reference. */
861 /* If reference becomes zero then free attribute object. */
862 if (attr
->refcnt
== 0) {
863 ret
= hash_release(attrhash
, attr
);
865 XFREE(MTYPE_ATTR
, attr
);
869 bgp_attr_unintern_sub(&tmp
);
872 void bgp_attr_flush(struct attr
*attr
)
874 if (attr
->aspath
&& !attr
->aspath
->refcnt
) {
875 aspath_free(attr
->aspath
);
878 if (attr
->community
&& !attr
->community
->refcnt
) {
879 community_free(attr
->community
);
880 attr
->community
= NULL
;
883 if (attr
->ecommunity
&& !attr
->ecommunity
->refcnt
)
884 ecommunity_free(&attr
->ecommunity
);
885 if (attr
->lcommunity
&& !attr
->lcommunity
->refcnt
)
886 lcommunity_free(&attr
->lcommunity
);
887 if (attr
->cluster
&& !attr
->cluster
->refcnt
) {
888 cluster_free(attr
->cluster
);
889 attr
->cluster
= NULL
;
891 if (attr
->transit
&& !attr
->transit
->refcnt
) {
892 transit_free(attr
->transit
);
893 attr
->transit
= NULL
;
895 if (attr
->encap_subtlvs
&& !attr
->encap_subtlvs
->refcnt
) {
896 encap_free(attr
->encap_subtlvs
);
897 attr
->encap_subtlvs
= NULL
;
900 if (attr
->vnc_subtlvs
&& !attr
->vnc_subtlvs
->refcnt
) {
901 encap_free(attr
->vnc_subtlvs
);
902 attr
->vnc_subtlvs
= NULL
;
907 /* Implement draft-scudder-idr-optional-transitive behaviour and
908 * avoid resetting sessions for malformed attributes which are
909 * are partial/optional and hence where the error likely was not
910 * introduced by the sending neighbour.
912 static bgp_attr_parse_ret_t
913 bgp_attr_malformed(struct bgp_attr_parser_args
*args
, uint8_t subcode
,
916 struct peer
*const peer
= args
->peer
;
917 const uint8_t flags
= args
->flags
;
918 /* startp and length must be special-cased, as whether or not to
919 * send the attribute data with the NOTIFY depends on the error,
920 * the caller therefore signals this with the seperate length argument
922 uint8_t *notify_datap
= (length
> 0 ? args
->startp
: NULL
);
924 /* Only relax error handling for eBGP peers */
925 if (peer
->sort
!= BGP_PEER_EBGP
) {
926 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
, subcode
,
927 notify_datap
, length
);
928 return BGP_ATTR_PARSE_ERROR
;
931 /* Adjust the stream getp to the end of the attribute, in case we can
932 * still proceed but the caller hasn't read all the attribute.
934 stream_set_getp(BGP_INPUT(peer
),
935 (args
->startp
- STREAM_DATA(BGP_INPUT(peer
)))
938 switch (args
->type
) {
939 /* where an attribute is relatively inconsequential, e.g. it does not
940 * affect route selection, and can be safely ignored, then any such
941 * attributes which are malformed should just be ignored and the route
942 * processed as normal.
944 case BGP_ATTR_AS4_AGGREGATOR
:
945 case BGP_ATTR_AGGREGATOR
:
946 case BGP_ATTR_ATOMIC_AGGREGATE
:
947 return BGP_ATTR_PARSE_PROCEED
;
949 /* Core attributes, particularly ones which may influence route
950 * selection, should always cause session resets
952 case BGP_ATTR_ORIGIN
:
953 case BGP_ATTR_AS_PATH
:
954 case BGP_ATTR_NEXT_HOP
:
955 case BGP_ATTR_MULTI_EXIT_DISC
:
956 case BGP_ATTR_LOCAL_PREF
:
957 case BGP_ATTR_COMMUNITIES
:
958 case BGP_ATTR_ORIGINATOR_ID
:
959 case BGP_ATTR_CLUSTER_LIST
:
960 case BGP_ATTR_MP_REACH_NLRI
:
961 case BGP_ATTR_MP_UNREACH_NLRI
:
962 case BGP_ATTR_EXT_COMMUNITIES
:
963 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
, subcode
,
964 notify_datap
, length
);
965 return BGP_ATTR_PARSE_ERROR
;
968 /* Partial optional attributes that are malformed should not cause
969 * the whole session to be reset. Instead treat it as a withdrawal
970 * of the routes, if possible.
972 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
)
973 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
974 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_PARTIAL
))
975 return BGP_ATTR_PARSE_WITHDRAW
;
977 /* default to reset */
978 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
981 /* Find out what is wrong with the path attribute flag bits and log the error.
982 "Flag bits" here stand for Optional, Transitive and Partial, but not for
983 Extended Length. Checking O/T/P bits at once implies, that the attribute
984 being diagnosed is defined by RFC as either a "well-known" or an "optional,
985 non-transitive" attribute. */
987 bgp_attr_flags_diagnose(struct bgp_attr_parser_args
*args
,
988 uint8_t desired_flags
/* how RFC says it must be */
992 uint8_t real_flags
= args
->flags
;
993 const uint8_t attr_code
= args
->type
;
995 desired_flags
&= ~BGP_ATTR_FLAG_EXTLEN
;
996 real_flags
&= ~BGP_ATTR_FLAG_EXTLEN
;
997 for (i
= 0; i
<= 2; i
++) /* O,T,P, but not E */
998 if (CHECK_FLAG(desired_flags
, attr_flag_str
[i
].key
)
999 != CHECK_FLAG(real_flags
, attr_flag_str
[i
].key
)) {
1002 "%s attribute must%s be flagged as \"%s\"",
1003 lookup_msg(attr_str
, attr_code
, NULL
),
1004 CHECK_FLAG(desired_flags
, attr_flag_str
[i
].key
)
1007 attr_flag_str
[i
].str
);
1012 "Strange, %s called for attr %s, but no problem found with flags"
1013 " (real flags 0x%x, desired 0x%x)",
1014 __func__
, lookup_msg(attr_str
, attr_code
, NULL
),
1015 real_flags
, desired_flags
);
1019 /* Required flags for attributes. EXTLEN will be masked off when testing,
1020 * as will PARTIAL for optional+transitive attributes.
1022 const uint8_t attr_flags_values
[] = {
1023 [BGP_ATTR_ORIGIN
] = BGP_ATTR_FLAG_TRANS
,
1024 [BGP_ATTR_AS_PATH
] = BGP_ATTR_FLAG_TRANS
,
1025 [BGP_ATTR_NEXT_HOP
] = BGP_ATTR_FLAG_TRANS
,
1026 [BGP_ATTR_MULTI_EXIT_DISC
] = BGP_ATTR_FLAG_OPTIONAL
,
1027 [BGP_ATTR_LOCAL_PREF
] = BGP_ATTR_FLAG_TRANS
,
1028 [BGP_ATTR_ATOMIC_AGGREGATE
] = BGP_ATTR_FLAG_TRANS
,
1029 [BGP_ATTR_AGGREGATOR
] = BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
,
1030 [BGP_ATTR_COMMUNITIES
] = BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
,
1031 [BGP_ATTR_ORIGINATOR_ID
] = BGP_ATTR_FLAG_OPTIONAL
,
1032 [BGP_ATTR_CLUSTER_LIST
] = BGP_ATTR_FLAG_OPTIONAL
,
1033 [BGP_ATTR_MP_REACH_NLRI
] = BGP_ATTR_FLAG_OPTIONAL
,
1034 [BGP_ATTR_MP_UNREACH_NLRI
] = BGP_ATTR_FLAG_OPTIONAL
,
1035 [BGP_ATTR_EXT_COMMUNITIES
] =
1036 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1037 [BGP_ATTR_AS4_PATH
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1038 [BGP_ATTR_AS4_AGGREGATOR
] =
1039 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1040 [BGP_ATTR_PMSI_TUNNEL
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1041 [BGP_ATTR_LARGE_COMMUNITIES
] =
1042 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1043 [BGP_ATTR_PREFIX_SID
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1045 static const size_t attr_flags_values_max
= array_size(attr_flags_values
) - 1;
1047 static int bgp_attr_flag_invalid(struct bgp_attr_parser_args
*args
)
1049 uint8_t mask
= BGP_ATTR_FLAG_EXTLEN
;
1050 const uint8_t flags
= args
->flags
;
1051 const uint8_t attr_code
= args
->type
;
1053 /* there may be attributes we don't know about */
1054 if (attr_code
> attr_flags_values_max
)
1056 if (attr_flags_values
[attr_code
] == 0)
1059 /* RFC4271, "For well-known attributes, the Transitive bit MUST be set
1063 if (!CHECK_FLAG(BGP_ATTR_FLAG_OPTIONAL
, flags
)
1064 && !CHECK_FLAG(BGP_ATTR_FLAG_TRANS
, flags
)) {
1067 "%s well-known attributes must have transitive flag set (%x)",
1068 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1072 /* "For well-known attributes and for optional non-transitive
1074 * the Partial bit MUST be set to 0."
1076 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_PARTIAL
)) {
1077 if (!CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)) {
1078 flog_err(BGP_ERR_ATTR_FLAG
,
1079 "%s well-known attribute "
1080 "must NOT have the partial flag set (%x)",
1081 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1084 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
1085 && !CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
)) {
1086 flog_err(BGP_ERR_ATTR_FLAG
,
1087 "%s optional + transitive attribute "
1088 "must NOT have the partial flag set (%x)",
1089 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1094 /* Optional transitive attributes may go through speakers that don't
1095 * reocgnise them and set the Partial bit.
1097 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
1098 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
))
1099 SET_FLAG(mask
, BGP_ATTR_FLAG_PARTIAL
);
1101 if ((flags
& ~mask
) == attr_flags_values
[attr_code
])
1104 bgp_attr_flags_diagnose(args
, attr_flags_values
[attr_code
]);
1108 /* Get origin attribute of the update message. */
1109 static bgp_attr_parse_ret_t
bgp_attr_origin(struct bgp_attr_parser_args
*args
)
1111 struct peer
*const peer
= args
->peer
;
1112 struct attr
*const attr
= args
->attr
;
1113 const bgp_size_t length
= args
->length
;
1115 /* If any recognized attribute has Attribute Length that conflicts
1116 with the expected length (based on the attribute type code), then
1117 the Error Subcode is set to Attribute Length Error. The Data
1118 field contains the erroneous attribute (type, length and
1121 flog_err(BGP_ERR_ATTR_LEN
,
1122 "Origin attribute length is not one %d", length
);
1123 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1127 /* Fetch origin attribute. */
1128 attr
->origin
= stream_getc(BGP_INPUT(peer
));
1130 /* If the ORIGIN attribute has an undefined value, then the Error
1131 Subcode is set to Invalid Origin Attribute. The Data field
1132 contains the unrecognized attribute (type, length and value). */
1133 if ((attr
->origin
!= BGP_ORIGIN_IGP
) && (attr
->origin
!= BGP_ORIGIN_EGP
)
1134 && (attr
->origin
!= BGP_ORIGIN_INCOMPLETE
)) {
1135 flog_err(BGP_ERR_ATTR_ORIGIN
,
1136 "Origin attribute value is invalid %d", attr
->origin
);
1137 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_INVAL_ORIGIN
,
1141 /* Set oring attribute flag. */
1142 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
1147 /* Parse AS path information. This function is wrapper of
1149 static int bgp_attr_aspath(struct bgp_attr_parser_args
*args
)
1151 struct attr
*const attr
= args
->attr
;
1152 struct peer
*const peer
= args
->peer
;
1153 const bgp_size_t length
= args
->length
;
1156 * peer with AS4 => will get 4Byte ASnums
1157 * otherwise, will get 16 Bit
1159 attr
->aspath
= aspath_parse(peer
->curr
, length
,
1160 CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
));
1162 /* In case of IBGP, length will be zero. */
1163 if (!attr
->aspath
) {
1164 flog_err(BGP_ERR_ATTR_MAL_AS_PATH
,
1165 "Malformed AS path from %s, length is %d", peer
->host
,
1167 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_MAL_AS_PATH
,
1171 /* Set aspath attribute flag. */
1172 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
1174 return BGP_ATTR_PARSE_PROCEED
;
1177 static bgp_attr_parse_ret_t
bgp_attr_aspath_check(struct peer
*const peer
,
1178 struct attr
*const attr
)
1180 /* These checks were part of bgp_attr_aspath, but with
1181 * as4 we should to check aspath things when
1182 * aspath synthesizing with as4_path has already taken place.
1183 * Otherwise we check ASPATH and use the synthesized thing, and that is
1185 * So do the checks later, i.e. here
1187 struct aspath
*aspath
;
1189 /* Confederation sanity check. */
1190 if ((peer
->sort
== BGP_PEER_CONFED
1191 && !aspath_left_confed_check(attr
->aspath
))
1192 || (peer
->sort
== BGP_PEER_EBGP
1193 && aspath_confed_check(attr
->aspath
))) {
1194 flog_err(BGP_ERR_ATTR_MAL_AS_PATH
, "Malformed AS path from %s",
1196 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
1197 BGP_NOTIFY_UPDATE_MAL_AS_PATH
);
1198 return BGP_ATTR_PARSE_ERROR
;
1201 /* First AS check for EBGP. */
1202 if (CHECK_FLAG(peer
->flags
, PEER_FLAG_ENFORCE_FIRST_AS
)) {
1203 if (peer
->sort
== BGP_PEER_EBGP
1204 && !aspath_firstas_check(attr
->aspath
, peer
->as
)) {
1205 flog_err(BGP_ERR_ATTR_FIRST_AS
,
1206 "%s incorrect first AS (must be %u)",
1207 peer
->host
, peer
->as
);
1208 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
1209 BGP_NOTIFY_UPDATE_MAL_AS_PATH
);
1210 return BGP_ATTR_PARSE_ERROR
;
1214 /* local-as prepend */
1215 if (peer
->change_local_as
1216 && !CHECK_FLAG(peer
->flags
, PEER_FLAG_LOCAL_AS_NO_PREPEND
)) {
1217 aspath
= aspath_dup(attr
->aspath
);
1218 aspath
= aspath_add_seq(aspath
, peer
->change_local_as
);
1219 aspath_unintern(&attr
->aspath
);
1220 attr
->aspath
= aspath_intern(aspath
);
1223 return BGP_ATTR_PARSE_PROCEED
;
1226 /* Parse AS4 path information. This function is another wrapper of
1228 static int bgp_attr_as4_path(struct bgp_attr_parser_args
*args
,
1229 struct aspath
**as4_path
)
1231 struct peer
*const peer
= args
->peer
;
1232 struct attr
*const attr
= args
->attr
;
1233 const bgp_size_t length
= args
->length
;
1235 *as4_path
= aspath_parse(peer
->curr
, length
, 1);
1237 /* In case of IBGP, length will be zero. */
1239 flog_err(BGP_ERR_ATTR_MAL_AS_PATH
,
1240 "Malformed AS4 path from %s, length is %d",
1241 peer
->host
, length
);
1242 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_MAL_AS_PATH
,
1246 /* Set aspath attribute flag. */
1247 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
);
1249 return BGP_ATTR_PARSE_PROCEED
;
1252 /* Nexthop attribute. */
1253 static bgp_attr_parse_ret_t
bgp_attr_nexthop(struct bgp_attr_parser_args
*args
)
1255 struct peer
*const peer
= args
->peer
;
1256 struct attr
*const attr
= args
->attr
;
1257 const bgp_size_t length
= args
->length
;
1259 in_addr_t nexthop_h
, nexthop_n
;
1261 /* Check nexthop attribute length. */
1263 flog_err(BGP_ERR_ATTR_LEN
,
1264 "Nexthop attribute length isn't four [%d]", length
);
1266 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1270 /* According to section 6.3 of RFC4271, syntactically incorrect NEXT_HOP
1271 attribute must result in a NOTIFICATION message (this is implemented
1273 At the same time, semantically incorrect NEXT_HOP is more likely to
1275 logged locally (this is implemented somewhere else). The UPDATE
1277 gets ignored in any of these cases. */
1278 nexthop_n
= stream_get_ipv4(peer
->curr
);
1279 nexthop_h
= ntohl(nexthop_n
);
1280 if ((IPV4_NET0(nexthop_h
) || IPV4_NET127(nexthop_h
)
1281 || IPV4_CLASS_DE(nexthop_h
))
1284 ALLOW_MARTIANS
)) /* loopbacks may be used in testing */
1286 char buf
[INET_ADDRSTRLEN
];
1287 inet_ntop(AF_INET
, &nexthop_n
, buf
, INET_ADDRSTRLEN
);
1288 flog_err(BGP_ERR_ATTR_MARTIAN_NH
, "Martian nexthop %s", buf
);
1289 return bgp_attr_malformed(
1290 args
, BGP_NOTIFY_UPDATE_INVAL_NEXT_HOP
, args
->total
);
1293 attr
->nexthop
.s_addr
= nexthop_n
;
1294 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
1296 return BGP_ATTR_PARSE_PROCEED
;
1299 /* MED atrribute. */
1300 static bgp_attr_parse_ret_t
bgp_attr_med(struct bgp_attr_parser_args
*args
)
1302 struct peer
*const peer
= args
->peer
;
1303 struct attr
*const attr
= args
->attr
;
1304 const bgp_size_t length
= args
->length
;
1308 flog_err(BGP_ERR_ATTR_LEN
,
1309 "MED attribute length isn't four [%d]", length
);
1311 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1315 attr
->med
= stream_getl(peer
->curr
);
1317 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
);
1319 return BGP_ATTR_PARSE_PROCEED
;
1322 /* Local preference attribute. */
1323 static bgp_attr_parse_ret_t
1324 bgp_attr_local_pref(struct bgp_attr_parser_args
*args
)
1326 struct peer
*const peer
= args
->peer
;
1327 struct attr
*const attr
= args
->attr
;
1328 const bgp_size_t length
= args
->length
;
1332 flog_err(BGP_ERR_ATTR_LEN
,
1333 "LOCAL_PREF attribute length isn't 4 [%u]", length
);
1334 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1338 /* If it is contained in an UPDATE message that is received from an
1339 external peer, then this attribute MUST be ignored by the
1340 receiving speaker. */
1341 if (peer
->sort
== BGP_PEER_EBGP
) {
1342 stream_forward_getp(peer
->curr
, length
);
1343 return BGP_ATTR_PARSE_PROCEED
;
1346 attr
->local_pref
= stream_getl(peer
->curr
);
1348 /* Set the local-pref flag. */
1349 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
);
1351 return BGP_ATTR_PARSE_PROCEED
;
1354 /* Atomic aggregate. */
1355 static int bgp_attr_atomic(struct bgp_attr_parser_args
*args
)
1357 struct attr
*const attr
= args
->attr
;
1358 const bgp_size_t length
= args
->length
;
1362 flog_err(BGP_ERR_ATTR_LEN
,
1363 "ATOMIC_AGGREGATE attribute length isn't 0 [%u]",
1365 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1369 /* Set atomic aggregate flag. */
1370 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
);
1372 return BGP_ATTR_PARSE_PROCEED
;
1375 /* Aggregator attribute */
1376 static int bgp_attr_aggregator(struct bgp_attr_parser_args
*args
)
1378 struct peer
*const peer
= args
->peer
;
1379 struct attr
*const attr
= args
->attr
;
1380 const bgp_size_t length
= args
->length
;
1384 /* peer with AS4 will send 4 Byte AS, peer without will send 2 Byte */
1385 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
))
1388 if (length
!= wantedlen
) {
1389 flog_err(BGP_ERR_ATTR_LEN
,
1390 "AGGREGATOR attribute length isn't %u [%u]",
1392 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1396 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
))
1397 attr
->aggregator_as
= stream_getl(peer
->curr
);
1399 attr
->aggregator_as
= stream_getw(peer
->curr
);
1400 attr
->aggregator_addr
.s_addr
= stream_get_ipv4(peer
->curr
);
1402 /* Set atomic aggregate flag. */
1403 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
);
1405 return BGP_ATTR_PARSE_PROCEED
;
1408 /* New Aggregator attribute */
1409 static bgp_attr_parse_ret_t
1410 bgp_attr_as4_aggregator(struct bgp_attr_parser_args
*args
,
1411 as_t
*as4_aggregator_as
,
1412 struct in_addr
*as4_aggregator_addr
)
1414 struct peer
*const peer
= args
->peer
;
1415 struct attr
*const attr
= args
->attr
;
1416 const bgp_size_t length
= args
->length
;
1419 flog_err(BGP_ERR_ATTR_LEN
,
1420 "New Aggregator length is not 8 [%d]", length
);
1421 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1425 *as4_aggregator_as
= stream_getl(peer
->curr
);
1426 as4_aggregator_addr
->s_addr
= stream_get_ipv4(peer
->curr
);
1428 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
);
1430 return BGP_ATTR_PARSE_PROCEED
;
1433 /* Munge Aggregator and New-Aggregator, AS_PATH and NEW_AS_PATH.
1435 static bgp_attr_parse_ret_t
1436 bgp_attr_munge_as4_attrs(struct peer
*const peer
, struct attr
*const attr
,
1437 struct aspath
*as4_path
, as_t as4_aggregator
,
1438 struct in_addr
*as4_aggregator_addr
)
1440 int ignore_as4_path
= 0;
1441 struct aspath
*newpath
;
1443 if (!attr
->aspath
) {
1444 /* NULL aspath shouldn't be possible as bgp_attr_parse should
1446 * checked that all well-known, mandatory attributes were
1449 * Can only be a problem with peer itself - hard error
1451 return BGP_ATTR_PARSE_ERROR
;
1454 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
)) {
1455 /* peer can do AS4, so we ignore AS4_PATH and AS4_AGGREGATOR
1457 * It is worth a warning though, because the peer really
1458 * should not send them
1460 if (BGP_DEBUG(as4
, AS4
)) {
1461 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
)))
1462 zlog_debug("[AS4] %s %s AS4_PATH", peer
->host
,
1463 "AS4 capable peer, yet it sent");
1466 & (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
)))
1467 zlog_debug("[AS4] %s %s AS4_AGGREGATOR",
1469 "AS4 capable peer, yet it sent");
1472 return BGP_ATTR_PARSE_PROCEED
;
1475 /* We have a asn16 peer. First, look for AS4_AGGREGATOR
1476 * because that may override AS4_PATH
1478 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
))) {
1479 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
))) {
1481 * if the as_number in aggregator is not AS_TRANS,
1482 * then AS4_AGGREGATOR and AS4_PATH shall be ignored
1483 * and the Aggregator shall be taken as
1484 * info on the aggregating node, and the AS_PATH
1485 * shall be taken as the AS_PATH
1487 * the Aggregator shall be ignored and the
1488 * AS4_AGGREGATOR shall be taken as the
1489 * Aggregating node and the AS_PATH is to be
1490 * constructed "as in all other cases"
1492 if (attr
->aggregator_as
!= BGP_AS_TRANS
) {
1494 if (BGP_DEBUG(as4
, AS4
))
1496 "[AS4] %s BGP not AS4 capable peer"
1497 " send AGGREGATOR != AS_TRANS and"
1498 " AS4_AGGREGATOR, so ignore"
1499 " AS4_AGGREGATOR and AS4_PATH",
1501 ignore_as4_path
= 1;
1503 /* "New_aggregator shall be taken as aggregator"
1505 attr
->aggregator_as
= as4_aggregator
;
1506 attr
->aggregator_addr
.s_addr
=
1507 as4_aggregator_addr
->s_addr
;
1510 /* We received a AS4_AGGREGATOR but no AGGREGATOR.
1511 * That is bogus - but reading the conditions
1512 * we have to handle AS4_AGGREGATOR as if it were
1513 * AGGREGATOR in that case
1515 if (BGP_DEBUG(as4
, AS4
))
1517 "[AS4] %s BGP not AS4 capable peer send"
1518 " AS4_AGGREGATOR but no AGGREGATOR, will take"
1519 " it as if AGGREGATOR with AS_TRANS had been there",
1521 attr
->aggregator_as
= as4_aggregator
;
1522 /* sweep it under the carpet and simulate a "good"
1524 attr
->flag
|= (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
));
1528 /* need to reconcile NEW_AS_PATH and AS_PATH */
1529 if (!ignore_as4_path
1530 && (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
)))) {
1531 newpath
= aspath_reconcile_as4(attr
->aspath
, as4_path
);
1533 return BGP_ATTR_PARSE_ERROR
;
1535 aspath_unintern(&attr
->aspath
);
1536 attr
->aspath
= aspath_intern(newpath
);
1538 return BGP_ATTR_PARSE_PROCEED
;
1541 /* Community attribute. */
1542 static bgp_attr_parse_ret_t
1543 bgp_attr_community(struct bgp_attr_parser_args
*args
)
1545 struct peer
*const peer
= args
->peer
;
1546 struct attr
*const attr
= args
->attr
;
1547 const bgp_size_t length
= args
->length
;
1550 attr
->community
= NULL
;
1551 return BGP_ATTR_PARSE_PROCEED
;
1555 community_parse((uint32_t *)stream_pnt(peer
->curr
), length
);
1557 /* XXX: fix community_parse to use stream API and remove this */
1558 stream_forward_getp(peer
->curr
, length
);
1560 if (!attr
->community
)
1561 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1564 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
);
1566 return BGP_ATTR_PARSE_PROCEED
;
1569 /* Originator ID attribute. */
1570 static bgp_attr_parse_ret_t
1571 bgp_attr_originator_id(struct bgp_attr_parser_args
*args
)
1573 struct peer
*const peer
= args
->peer
;
1574 struct attr
*const attr
= args
->attr
;
1575 const bgp_size_t length
= args
->length
;
1579 flog_err(BGP_ERR_ATTR_LEN
, "Bad originator ID length %d",
1582 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1586 attr
->originator_id
.s_addr
= stream_get_ipv4(peer
->curr
);
1588 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID
);
1590 return BGP_ATTR_PARSE_PROCEED
;
1593 /* Cluster list attribute. */
1594 static bgp_attr_parse_ret_t
1595 bgp_attr_cluster_list(struct bgp_attr_parser_args
*args
)
1597 struct peer
*const peer
= args
->peer
;
1598 struct attr
*const attr
= args
->attr
;
1599 const bgp_size_t length
= args
->length
;
1603 flog_err(BGP_ERR_ATTR_LEN
, "Bad cluster list length %d",
1606 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1611 cluster_parse((struct in_addr
*)stream_pnt(peer
->curr
), length
);
1613 /* XXX: Fix cluster_parse to use stream API and then remove this */
1614 stream_forward_getp(peer
->curr
, length
);
1616 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST
);
1618 return BGP_ATTR_PARSE_PROCEED
;
1621 /* Multiprotocol reachability information parse. */
1622 int bgp_mp_reach_parse(struct bgp_attr_parser_args
*args
,
1623 struct bgp_nlri
*mp_update
)
1627 iana_safi_t pkt_safi
;
1629 bgp_size_t nlri_len
;
1632 struct peer
*const peer
= args
->peer
;
1633 struct attr
*const attr
= args
->attr
;
1634 const bgp_size_t length
= args
->length
;
1636 /* Set end of packet. */
1637 s
= BGP_INPUT(peer
);
1638 start
= stream_get_getp(s
);
1640 /* safe to read statically sized header? */
1641 #define BGP_MP_REACH_MIN_SIZE 5
1642 #define LEN_LEFT (length - (stream_get_getp(s) - start))
1643 if ((length
> STREAM_READABLE(s
)) || (length
< BGP_MP_REACH_MIN_SIZE
)) {
1644 zlog_info("%s: %s sent invalid length, %lu", __func__
,
1645 peer
->host
, (unsigned long)length
);
1646 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1649 /* Load AFI, SAFI. */
1650 pkt_afi
= stream_getw(s
);
1651 pkt_safi
= stream_getc(s
);
1653 /* Convert AFI, SAFI to internal values, check. */
1654 if (bgp_map_afi_safi_iana2int(pkt_afi
, pkt_safi
, &afi
, &safi
)) {
1655 /* Log if AFI or SAFI is unrecognized. This is not an error
1657 * the attribute is otherwise malformed.
1659 if (bgp_debug_update(peer
, NULL
, NULL
, 0))
1661 "%s: MP_REACH received AFI %u or SAFI %u is unrecognized",
1662 peer
->host
, pkt_afi
, pkt_safi
);
1663 return BGP_ATTR_PARSE_ERROR
;
1666 /* Get nexthop length. */
1667 attr
->mp_nexthop_len
= stream_getc(s
);
1669 if (LEN_LEFT
< attr
->mp_nexthop_len
) {
1671 "%s: %s, MP nexthop length, %u, goes past end of attribute",
1672 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1673 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1676 /* Nexthop length check. */
1677 switch (attr
->mp_nexthop_len
) {
1679 if (safi
!= SAFI_FLOWSPEC
) {
1680 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1681 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1682 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1685 case BGP_ATTR_NHLEN_VPNV4
:
1686 stream_getl(s
); /* RD high */
1687 stream_getl(s
); /* RD low */
1689 * NOTE: intentional fall through
1690 * - for consistency in rx processing
1692 * The following comment is to signal GCC this intention
1693 * and supress the warning
1696 case BGP_ATTR_NHLEN_IPV4
:
1697 stream_get(&attr
->mp_nexthop_global_in
, s
, IPV4_MAX_BYTELEN
);
1698 /* Probably needed for RFC 2283 */
1699 if (attr
->nexthop
.s_addr
== 0)
1700 memcpy(&attr
->nexthop
.s_addr
,
1701 &attr
->mp_nexthop_global_in
, IPV4_MAX_BYTELEN
);
1703 case BGP_ATTR_NHLEN_IPV6_GLOBAL
:
1704 case BGP_ATTR_NHLEN_VPNV6_GLOBAL
:
1705 if (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_VPNV6_GLOBAL
) {
1706 stream_getl(s
); /* RD high */
1707 stream_getl(s
); /* RD low */
1709 stream_get(&attr
->mp_nexthop_global
, s
, IPV6_MAX_BYTELEN
);
1710 if (IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_global
))
1711 attr
->nh_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1713 case BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
:
1714 case BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
:
1715 if (attr
->mp_nexthop_len
1716 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
) {
1717 stream_getl(s
); /* RD high */
1718 stream_getl(s
); /* RD low */
1720 stream_get(&attr
->mp_nexthop_global
, s
, IPV6_MAX_BYTELEN
);
1721 if (IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_global
))
1722 attr
->nh_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1723 if (attr
->mp_nexthop_len
1724 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
) {
1725 stream_getl(s
); /* RD high */
1726 stream_getl(s
); /* RD low */
1728 stream_get(&attr
->mp_nexthop_local
, s
, IPV6_MAX_BYTELEN
);
1729 if (!IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_local
)) {
1730 char buf1
[INET6_ADDRSTRLEN
];
1731 char buf2
[INET6_ADDRSTRLEN
];
1733 if (bgp_debug_update(peer
, NULL
, NULL
, 1))
1735 "%s rcvd nexthops %s, %s -- ignoring non-LL value",
1738 &attr
->mp_nexthop_global
,
1739 buf1
, INET6_ADDRSTRLEN
),
1741 &attr
->mp_nexthop_local
, buf2
,
1744 attr
->mp_nexthop_len
= IPV6_MAX_BYTELEN
;
1746 attr
->nh_lla_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1749 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1750 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1751 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1755 zlog_info("%s: (%s) Failed to read SNPA and NLRI(s)", __func__
,
1757 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1762 if ((val
= stream_getc(s
)))
1764 BGP_WARN_DEFUNCT_SNPA_LEN
,
1765 "%s sent non-zero value, %u, for defunct SNPA-length field",
1769 /* must have nrli_len, what is left of the attribute */
1770 nlri_len
= LEN_LEFT
;
1771 if (nlri_len
> STREAM_READABLE(s
)) {
1772 zlog_info("%s: (%s) Failed to read NLRI", __func__
, peer
->host
);
1773 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1777 zlog_info("%s: (%s) No Reachability, Treating as a EOR marker",
1778 __func__
, peer
->host
);
1780 mp_update
->afi
= afi
;
1781 mp_update
->safi
= safi
;
1782 return BGP_ATTR_PARSE_EOR
;
1785 mp_update
->afi
= afi
;
1786 mp_update
->safi
= safi
;
1787 mp_update
->nlri
= stream_pnt(s
);
1788 mp_update
->length
= nlri_len
;
1790 stream_forward_getp(s
, nlri_len
);
1792 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
);
1794 return BGP_ATTR_PARSE_PROCEED
;
1798 /* Multiprotocol unreachable parse */
1799 int bgp_mp_unreach_parse(struct bgp_attr_parser_args
*args
,
1800 struct bgp_nlri
*mp_withdraw
)
1805 iana_safi_t pkt_safi
;
1807 uint16_t withdraw_len
;
1808 struct peer
*const peer
= args
->peer
;
1809 struct attr
*const attr
= args
->attr
;
1810 const bgp_size_t length
= args
->length
;
1814 #define BGP_MP_UNREACH_MIN_SIZE 3
1815 if ((length
> STREAM_READABLE(s
)) || (length
< BGP_MP_UNREACH_MIN_SIZE
))
1816 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1818 pkt_afi
= stream_getw(s
);
1819 pkt_safi
= stream_getc(s
);
1821 /* Convert AFI, SAFI to internal values, check. */
1822 if (bgp_map_afi_safi_iana2int(pkt_afi
, pkt_safi
, &afi
, &safi
)) {
1823 /* Log if AFI or SAFI is unrecognized. This is not an error
1825 * the attribute is otherwise malformed.
1827 if (bgp_debug_update(peer
, NULL
, NULL
, 0))
1829 "%s: MP_UNREACH received AFI %u or SAFI %u is unrecognized",
1830 peer
->host
, pkt_afi
, pkt_safi
);
1831 return BGP_ATTR_PARSE_ERROR
;
1834 withdraw_len
= length
- BGP_MP_UNREACH_MIN_SIZE
;
1836 mp_withdraw
->afi
= afi
;
1837 mp_withdraw
->safi
= safi
;
1838 mp_withdraw
->nlri
= stream_pnt(s
);
1839 mp_withdraw
->length
= withdraw_len
;
1841 stream_forward_getp(s
, withdraw_len
);
1843 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI
);
1845 return BGP_ATTR_PARSE_PROCEED
;
1848 /* Large Community attribute. */
1849 static bgp_attr_parse_ret_t
1850 bgp_attr_large_community(struct bgp_attr_parser_args
*args
)
1852 struct peer
*const peer
= args
->peer
;
1853 struct attr
*const attr
= args
->attr
;
1854 const bgp_size_t length
= args
->length
;
1857 * Large community follows new attribute format.
1860 attr
->lcommunity
= NULL
;
1861 /* Empty extcomm doesn't seem to be invalid per se */
1862 return BGP_ATTR_PARSE_PROCEED
;
1866 lcommunity_parse((uint8_t *)stream_pnt(peer
->curr
), length
);
1867 /* XXX: fix ecommunity_parse to use stream API */
1868 stream_forward_getp(peer
->curr
, length
);
1870 if (!attr
->lcommunity
)
1871 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1874 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
);
1876 return BGP_ATTR_PARSE_PROCEED
;
1879 /* Extended Community attribute. */
1880 static bgp_attr_parse_ret_t
1881 bgp_attr_ext_communities(struct bgp_attr_parser_args
*args
)
1883 struct peer
*const peer
= args
->peer
;
1884 struct attr
*const attr
= args
->attr
;
1885 const bgp_size_t length
= args
->length
;
1889 attr
->ecommunity
= NULL
;
1890 /* Empty extcomm doesn't seem to be invalid per se */
1891 return BGP_ATTR_PARSE_PROCEED
;
1895 ecommunity_parse((uint8_t *)stream_pnt(peer
->curr
), length
);
1896 /* XXX: fix ecommunity_parse to use stream API */
1897 stream_forward_getp(peer
->curr
, length
);
1899 if (!attr
->ecommunity
)
1900 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1903 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
);
1905 /* Extract MAC mobility sequence number, if any. */
1906 attr
->mm_seqnum
= bgp_attr_mac_mobility_seqnum(attr
, &sticky
);
1907 attr
->sticky
= sticky
;
1909 /* Check if this is a Gateway MAC-IP advertisement */
1910 attr
->default_gw
= bgp_attr_default_gw(attr
);
1912 /* Handle scenario where router flag ecommunity is not
1913 * set but default gw ext community is present.
1914 * Use default gateway, set and propogate R-bit.
1916 if (attr
->default_gw
)
1917 attr
->router_flag
= 1;
1919 /* Check EVPN Neighbor advertisement flags, R-bit */
1920 bgp_attr_evpn_na_flag(attr
, &attr
->router_flag
);
1922 /* Extract the Rmac, if any */
1923 bgp_attr_rmac(attr
, &attr
->rmac
);
1925 return BGP_ATTR_PARSE_PROCEED
;
1928 /* Parse Tunnel Encap attribute in an UPDATE */
1929 static int bgp_attr_encap(uint8_t type
, struct peer
*peer
, /* IN */
1930 bgp_size_t length
, /* IN: attr's length field */
1931 struct attr
*attr
, /* IN: caller already allocated */
1932 uint8_t flag
, /* IN: attr's flags field */
1936 uint16_t tunneltype
= 0;
1938 total
= length
+ (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
) ? 4 : 3);
1940 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_TRANS
)
1941 || !CHECK_FLAG(flag
, BGP_ATTR_FLAG_OPTIONAL
)) {
1943 "Tunnel Encap attribute flag isn't optional and transitive %d",
1945 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
1946 BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR
,
1951 if (BGP_ATTR_ENCAP
== type
) {
1952 /* read outer TLV type and length */
1953 uint16_t tlv_length
;
1957 "Tunnel Encap attribute not long enough to contain outer T,L");
1958 bgp_notify_send_with_data(
1959 peer
, BGP_NOTIFY_UPDATE_ERR
,
1960 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
, startp
, total
);
1963 tunneltype
= stream_getw(BGP_INPUT(peer
));
1964 tlv_length
= stream_getw(BGP_INPUT(peer
));
1967 if (tlv_length
!= length
) {
1968 zlog_info("%s: tlv_length(%d) != length(%d)", __func__
,
1969 tlv_length
, length
);
1973 while (length
>= 4) {
1974 uint16_t subtype
= 0;
1975 uint16_t sublength
= 0;
1976 struct bgp_attr_encap_subtlv
*tlv
;
1978 if (BGP_ATTR_ENCAP
== type
) {
1979 subtype
= stream_getc(BGP_INPUT(peer
));
1980 sublength
= stream_getc(BGP_INPUT(peer
));
1984 subtype
= stream_getw(BGP_INPUT(peer
));
1985 sublength
= stream_getw(BGP_INPUT(peer
));
1990 if (sublength
> length
) {
1992 "Tunnel Encap attribute sub-tlv length %d exceeds remaining length %d",
1994 bgp_notify_send_with_data(
1995 peer
, BGP_NOTIFY_UPDATE_ERR
,
1996 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
, startp
, total
);
2000 /* alloc and copy sub-tlv */
2001 /* TBD make sure these are freed when attributes are released */
2002 tlv
= XCALLOC(MTYPE_ENCAP_TLV
,
2003 sizeof(struct bgp_attr_encap_subtlv
) + sublength
);
2004 tlv
->type
= subtype
;
2005 tlv
->length
= sublength
;
2006 stream_get(tlv
->value
, peer
->curr
, sublength
);
2007 length
-= sublength
;
2009 /* attach tlv to encap chain */
2010 if (BGP_ATTR_ENCAP
== type
) {
2011 struct bgp_attr_encap_subtlv
*stlv_last
;
2012 for (stlv_last
= attr
->encap_subtlvs
;
2013 stlv_last
&& stlv_last
->next
;
2014 stlv_last
= stlv_last
->next
)
2017 stlv_last
->next
= tlv
;
2019 attr
->encap_subtlvs
= tlv
;
2023 struct bgp_attr_encap_subtlv
*stlv_last
;
2024 for (stlv_last
= attr
->vnc_subtlvs
;
2025 stlv_last
&& stlv_last
->next
;
2026 stlv_last
= stlv_last
->next
)
2029 stlv_last
->next
= tlv
;
2031 attr
->vnc_subtlvs
= tlv
;
2037 if (BGP_ATTR_ENCAP
== type
) {
2038 attr
->encap_tunneltype
= tunneltype
;
2042 /* spurious leftover data */
2044 "Tunnel Encap attribute length is bad: %d leftover octets",
2046 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
2047 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2056 * Read an individual SID value returning how much data we have read
2057 * Returns 0 if there was an error that needs to be passed up the stack
2059 static bgp_attr_parse_ret_t
bgp_attr_psid_sub(int32_t type
,
2061 struct bgp_attr_parser_args
*args
,
2062 struct bgp_nlri
*mp_update
)
2064 struct peer
*const peer
= args
->peer
;
2065 struct attr
*const attr
= args
->attr
;
2066 uint32_t label_index
;
2067 struct in6_addr ipv6_sid
;
2069 uint32_t srgb_range
;
2072 if (type
== BGP_PREFIX_SID_LABEL_INDEX
) {
2073 if (length
!= BGP_PREFIX_SID_LABEL_INDEX_LENGTH
) {
2076 "Prefix SID label index length is %d instead of %d",
2077 length
, BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
2078 return bgp_attr_malformed(args
,
2079 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2083 /* Ignore flags and reserved */
2084 stream_getc(peer
->curr
);
2085 stream_getw(peer
->curr
);
2087 /* Fetch the label index and see if it is valid. */
2088 label_index
= stream_getl(peer
->curr
);
2089 if (label_index
== BGP_INVALID_LABEL_INDEX
)
2090 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2093 /* Store label index; subsequently, we'll check on
2095 attr
->label_index
= label_index
;
2098 * Ignore the Label index attribute unless received for
2102 if (!mp_update
->length
2103 || mp_update
->safi
!= SAFI_LABELED_UNICAST
)
2104 attr
->label_index
= BGP_INVALID_LABEL_INDEX
;
2107 /* Placeholder code for the IPv6 SID type */
2108 else if (type
== BGP_PREFIX_SID_IPV6
) {
2109 if (length
!= BGP_PREFIX_SID_IPV6_LENGTH
) {
2110 flog_err(BGP_ERR_ATTR_LEN
,
2111 "Prefix SID IPv6 length is %d instead of %d",
2112 length
, BGP_PREFIX_SID_IPV6_LENGTH
);
2113 return bgp_attr_malformed(args
,
2114 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2118 /* Ignore reserved */
2119 stream_getc(peer
->curr
);
2120 stream_getw(peer
->curr
);
2122 stream_get(&ipv6_sid
, peer
->curr
, 16);
2125 /* Placeholder code for the Originator SRGB type */
2126 else if (type
== BGP_PREFIX_SID_ORIGINATOR_SRGB
) {
2128 stream_getw(peer
->curr
);
2132 if (length
% BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
) {
2135 "Prefix SID Originator SRGB length is %d, it must be a multiple of %d ",
2136 length
, BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
);
2137 return bgp_attr_malformed(
2138 args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2142 srgb_count
= length
/ BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
;
2144 for (int i
= 0; i
< srgb_count
; i
++) {
2145 stream_get(&srgb_base
, peer
->curr
, 3);
2146 stream_get(&srgb_range
, peer
->curr
, 3);
2150 return BGP_ATTR_PARSE_PROCEED
;
2153 /* Prefix SID attribute
2154 * draft-ietf-idr-bgp-prefix-sid-05
2156 bgp_attr_parse_ret_t
2157 bgp_attr_prefix_sid(int32_t tlength
, struct bgp_attr_parser_args
*args
,
2158 struct bgp_nlri
*mp_update
)
2160 struct peer
*const peer
= args
->peer
;
2161 struct attr
*const attr
= args
->attr
;
2162 bgp_attr_parse_ret_t ret
;
2164 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
);
2167 int32_t type
, length
;
2169 type
= stream_getc(peer
->curr
);
2170 length
= stream_getw(peer
->curr
);
2172 ret
= bgp_attr_psid_sub(type
, length
, args
, mp_update
);
2174 if (ret
!= BGP_ATTR_PARSE_PROCEED
)
2177 * Subtract length + the T and the L
2178 * since length is the Vector portion
2180 tlength
-= length
+ 3;
2185 "Prefix SID internal length %d causes us to read beyond the total Prefix SID length",
2187 return bgp_attr_malformed(args
,
2188 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2193 return BGP_ATTR_PARSE_PROCEED
;
2196 /* PMSI tunnel attribute (RFC 6514)
2197 * Basic validation checks done here.
2199 static bgp_attr_parse_ret_t
2200 bgp_attr_pmsi_tunnel(struct bgp_attr_parser_args
*args
)
2202 struct peer
*const peer
= args
->peer
;
2203 struct attr
*const attr
= args
->attr
;
2204 const bgp_size_t length
= args
->length
;
2207 /* Verify that the receiver is expecting "ingress replication" as we
2208 * can only support that.
2211 flog_err(BGP_ERR_ATTR_LEN
,
2212 "Bad PMSI tunnel attribute length %d", length
);
2213 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2216 stream_getc(peer
->curr
); /* Flags */
2217 tnl_type
= stream_getc(peer
->curr
);
2218 if (tnl_type
> PMSI_TNLTYPE_MAX
) {
2219 flog_err(BGP_ERR_ATTR_PMSI_TYPE
,
2220 "Invalid PMSI tunnel attribute type %d", tnl_type
);
2221 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2224 if (tnl_type
== PMSI_TNLTYPE_INGR_REPL
) {
2226 flog_err(BGP_ERR_ATTR_PMSI_LEN
,
2227 "Bad PMSI tunnel attribute length %d for IR",
2229 return bgp_attr_malformed(
2230 args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2235 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL
);
2236 attr
->pmsi_tnl_type
= tnl_type
;
2238 /* Forward read pointer of input stream. */
2239 stream_forward_getp(peer
->curr
, length
- 2);
2241 return BGP_ATTR_PARSE_PROCEED
;
2244 /* BGP unknown attribute treatment. */
2245 static bgp_attr_parse_ret_t
bgp_attr_unknown(struct bgp_attr_parser_args
*args
)
2247 bgp_size_t total
= args
->total
;
2248 struct transit
*transit
;
2249 struct peer
*const peer
= args
->peer
;
2250 struct attr
*const attr
= args
->attr
;
2251 uint8_t *const startp
= args
->startp
;
2252 const uint8_t type
= args
->type
;
2253 const uint8_t flag
= args
->flags
;
2254 const bgp_size_t length
= args
->length
;
2256 if (bgp_debug_update(peer
, NULL
, NULL
, 1))
2258 "%s Unknown attribute is received (type %d, length %d)",
2259 peer
->host
, type
, length
);
2261 /* Forward read pointer of input stream. */
2262 stream_forward_getp(peer
->curr
, length
);
2264 /* If any of the mandatory well-known attributes are not recognized,
2265 then the Error Subcode is set to Unrecognized Well-known
2266 Attribute. The Data field contains the unrecognized attribute
2267 (type, length and value). */
2268 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_OPTIONAL
)) {
2269 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_UNREC_ATTR
,
2273 /* Unrecognized non-transitive optional attributes must be quietly
2274 ignored and not passed along to other BGP peers. */
2275 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_TRANS
))
2276 return BGP_ATTR_PARSE_PROCEED
;
2278 /* If a path with recognized transitive optional attribute is
2279 accepted and passed along to other BGP peers and the Partial bit
2280 in the Attribute Flags octet is set to 1 by some previous AS, it
2281 is not set back to 0 by the current AS. */
2282 SET_FLAG(*startp
, BGP_ATTR_FLAG_PARTIAL
);
2284 /* Store transitive attribute to the end of attr->transit. */
2286 attr
->transit
= XCALLOC(MTYPE_TRANSIT
, sizeof(struct transit
));
2288 transit
= attr
->transit
;
2291 transit
->val
= XREALLOC(MTYPE_TRANSIT_VAL
, transit
->val
,
2292 transit
->length
+ total
);
2294 transit
->val
= XMALLOC(MTYPE_TRANSIT_VAL
, total
);
2296 memcpy(transit
->val
+ transit
->length
, startp
, total
);
2297 transit
->length
+= total
;
2299 return BGP_ATTR_PARSE_PROCEED
;
2302 /* Well-known attribute check. */
2303 static int bgp_attr_check(struct peer
*peer
, struct attr
*attr
)
2307 /* BGP Graceful-Restart End-of-RIB for IPv4 unicast is signaled as an
2309 if (CHECK_FLAG(peer
->cap
, PEER_CAP_RESTART_RCV
) && !attr
->flag
)
2310 return BGP_ATTR_PARSE_PROCEED
;
2312 /* "An UPDATE message that contains the MP_UNREACH_NLRI is not required
2313 to carry any other path attributes.", though if MP_REACH_NLRI or NLRI
2314 are present, it should. Check for any other attribute being present
2317 if ((!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
)) &&
2318 CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI
))))
2319 return BGP_ATTR_PARSE_PROCEED
;
2321 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
)))
2322 type
= BGP_ATTR_ORIGIN
;
2324 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
)))
2325 type
= BGP_ATTR_AS_PATH
;
2327 /* RFC 2858 makes Next-Hop optional/ignored, if MP_REACH_NLRI is present
2329 * NLRI is empty. We can't easily check NLRI empty here though.
2331 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
))
2332 && !CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
)))
2333 type
= BGP_ATTR_NEXT_HOP
;
2335 if (peer
->sort
== BGP_PEER_IBGP
2336 && !CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
)))
2337 type
= BGP_ATTR_LOCAL_PREF
;
2340 flog_warn(BGP_WARN_MISSING_ATTRIBUTE
,
2341 "%s Missing well-known attribute %s.", peer
->host
,
2342 lookup_msg(attr_str
, type
, NULL
));
2343 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
2344 BGP_NOTIFY_UPDATE_MISS_ATTR
, &type
,
2346 return BGP_ATTR_PARSE_ERROR
;
2348 return BGP_ATTR_PARSE_PROCEED
;
2351 /* Read attribute of update packet. This function is called from
2352 bgp_update_receive() in bgp_packet.c. */
2353 bgp_attr_parse_ret_t
bgp_attr_parse(struct peer
*peer
, struct attr
*attr
,
2354 bgp_size_t size
, struct bgp_nlri
*mp_update
,
2355 struct bgp_nlri
*mp_withdraw
)
2361 uint8_t *startp
, *endp
;
2363 uint8_t seen
[BGP_ATTR_BITMAP_SIZE
];
2364 /* we need the as4_path only until we have synthesized the as_path with
2366 /* same goes for as4_aggregator */
2367 struct aspath
*as4_path
= NULL
;
2368 as_t as4_aggregator
= 0;
2369 struct in_addr as4_aggregator_addr
= {.s_addr
= 0};
2371 /* Initialize bitmap. */
2372 memset(seen
, 0, BGP_ATTR_BITMAP_SIZE
);
2374 /* End pointer of BGP attribute. */
2375 endp
= BGP_INPUT_PNT(peer
) + size
;
2377 /* Get attributes to the end of attribute length. */
2378 while (BGP_INPUT_PNT(peer
) < endp
) {
2379 /* Check remaining length check.*/
2380 if (endp
- BGP_INPUT_PNT(peer
) < BGP_ATTR_MIN_LEN
) {
2381 /* XXX warning: long int format, int arg (arg 5) */
2383 BGP_WARN_ATTRIBUTE_TOO_SMALL
,
2384 "%s: error BGP attribute length %lu is smaller than min len",
2386 (unsigned long)(endp
2387 - stream_pnt(BGP_INPUT(peer
))));
2389 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2390 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2391 return BGP_ATTR_PARSE_ERROR
;
2394 /* Fetch attribute flag and type. */
2395 startp
= BGP_INPUT_PNT(peer
);
2396 /* "The lower-order four bits of the Attribute Flags octet are
2397 unused. They MUST be zero when sent and MUST be ignored when
2399 flag
= 0xF0 & stream_getc(BGP_INPUT(peer
));
2400 type
= stream_getc(BGP_INPUT(peer
));
2402 /* Check whether Extended-Length applies and is in bounds */
2403 if (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
)
2404 && ((endp
- startp
) < (BGP_ATTR_MIN_LEN
+ 1))) {
2406 BGP_WARN_EXT_ATTRIBUTE_TOO_SMALL
,
2407 "%s: Extended length set, but just %lu bytes of attr header",
2409 (unsigned long)(endp
2410 - stream_pnt(BGP_INPUT(peer
))));
2412 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2413 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2414 return BGP_ATTR_PARSE_ERROR
;
2417 /* Check extended attribue length bit. */
2418 if (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
))
2419 length
= stream_getw(BGP_INPUT(peer
));
2421 length
= stream_getc(BGP_INPUT(peer
));
2423 /* If any attribute appears more than once in the UPDATE
2424 message, then the Error Subcode is set to Malformed Attribute
2427 if (CHECK_BITMAP(seen
, type
)) {
2429 BGP_WARN_ATTRIBUTE_REPEATED
,
2430 "%s: error BGP attribute type %d appears twice in a message",
2433 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2434 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2435 return BGP_ATTR_PARSE_ERROR
;
2438 /* Set type to bitmap to check duplicate attribute. `type' is
2439 unsigned char so it never overflow bitmap range. */
2441 SET_BITMAP(seen
, type
);
2443 /* Overflow check. */
2444 attr_endp
= BGP_INPUT_PNT(peer
) + length
;
2446 if (attr_endp
> endp
) {
2448 BGP_WARN_ATTRIBUTE_TOO_LARGE
,
2449 "%s: BGP type %d length %d is too large, attribute total length is %d. attr_endp is %p. endp is %p",
2450 peer
->host
, type
, length
, size
, attr_endp
,
2454 * If any recognized attribute has an Attribute
2455 * Length that conflicts with the expected length
2456 * (based on the attribute type code), then the
2457 * Error Subcode MUST be set to Attribute Length
2458 * Error. The Data field MUST contain the erroneous
2459 * attribute (type, length, and value).
2461 * We do not currently have a good way to determine the
2462 * length of the attribute independent of the length
2463 * received in the message. Instead we send the
2464 * minimum between the amount of data we have and the
2465 * amount specified by the attribute length field.
2467 * Instead of directly passing in the packet buffer and
2468 * offset we use the stream_get* functions to read into
2469 * a stack buffer, since they perform bounds checking
2470 * and we are working with untrusted data.
2472 unsigned char ndata
[BGP_MAX_PACKET_SIZE
];
2473 memset(ndata
, 0x00, sizeof(ndata
));
2475 CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
) ? 2 : 1;
2476 /* Rewind to end of flag field */
2477 stream_forward_getp(BGP_INPUT(peer
), -(1 + lfl
));
2479 stream_get(&ndata
[0], BGP_INPUT(peer
), 1);
2481 stream_get(&ndata
[1], BGP_INPUT(peer
), lfl
);
2483 size_t atl
= attr_endp
- startp
;
2484 size_t ndl
= MIN(atl
, STREAM_READABLE(BGP_INPUT(peer
)));
2485 stream_get(&ndata
[lfl
+ 1], BGP_INPUT(peer
), ndl
);
2487 bgp_notify_send_with_data(
2488 peer
, BGP_NOTIFY_UPDATE_ERR
,
2489 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
, ndata
,
2492 return BGP_ATTR_PARSE_ERROR
;
2495 struct bgp_attr_parser_args attr_args
= {
2502 .total
= attr_endp
- startp
,
2506 /* If any recognized attribute has Attribute Flags that conflict
2507 with the Attribute Type Code, then the Error Subcode is set
2509 Attribute Flags Error. The Data field contains the erroneous
2510 attribute (type, length and value). */
2511 if (bgp_attr_flag_invalid(&attr_args
)) {
2512 bgp_attr_parse_ret_t ret
;
2513 ret
= bgp_attr_malformed(
2514 &attr_args
, BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR
,
2516 if (ret
== BGP_ATTR_PARSE_PROCEED
)
2521 /* OK check attribute and store it's value. */
2523 case BGP_ATTR_ORIGIN
:
2524 ret
= bgp_attr_origin(&attr_args
);
2526 case BGP_ATTR_AS_PATH
:
2527 ret
= bgp_attr_aspath(&attr_args
);
2529 case BGP_ATTR_AS4_PATH
:
2530 ret
= bgp_attr_as4_path(&attr_args
, &as4_path
);
2532 case BGP_ATTR_NEXT_HOP
:
2533 ret
= bgp_attr_nexthop(&attr_args
);
2535 case BGP_ATTR_MULTI_EXIT_DISC
:
2536 ret
= bgp_attr_med(&attr_args
);
2538 case BGP_ATTR_LOCAL_PREF
:
2539 ret
= bgp_attr_local_pref(&attr_args
);
2541 case BGP_ATTR_ATOMIC_AGGREGATE
:
2542 ret
= bgp_attr_atomic(&attr_args
);
2544 case BGP_ATTR_AGGREGATOR
:
2545 ret
= bgp_attr_aggregator(&attr_args
);
2547 case BGP_ATTR_AS4_AGGREGATOR
:
2548 ret
= bgp_attr_as4_aggregator(&attr_args
,
2550 &as4_aggregator_addr
);
2552 case BGP_ATTR_COMMUNITIES
:
2553 ret
= bgp_attr_community(&attr_args
);
2555 case BGP_ATTR_LARGE_COMMUNITIES
:
2556 ret
= bgp_attr_large_community(&attr_args
);
2558 case BGP_ATTR_ORIGINATOR_ID
:
2559 ret
= bgp_attr_originator_id(&attr_args
);
2561 case BGP_ATTR_CLUSTER_LIST
:
2562 ret
= bgp_attr_cluster_list(&attr_args
);
2564 case BGP_ATTR_MP_REACH_NLRI
:
2565 ret
= bgp_mp_reach_parse(&attr_args
, mp_update
);
2567 case BGP_ATTR_MP_UNREACH_NLRI
:
2568 ret
= bgp_mp_unreach_parse(&attr_args
, mp_withdraw
);
2570 case BGP_ATTR_EXT_COMMUNITIES
:
2571 ret
= bgp_attr_ext_communities(&attr_args
);
2576 case BGP_ATTR_ENCAP
:
2577 ret
= bgp_attr_encap(type
, peer
, length
, attr
, flag
,
2580 case BGP_ATTR_PREFIX_SID
:
2581 ret
= bgp_attr_prefix_sid(length
,
2582 &attr_args
, mp_update
);
2584 case BGP_ATTR_PMSI_TUNNEL
:
2585 ret
= bgp_attr_pmsi_tunnel(&attr_args
);
2588 ret
= bgp_attr_unknown(&attr_args
);
2592 if (ret
== BGP_ATTR_PARSE_ERROR_NOTIFYPLS
) {
2593 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2594 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2595 ret
= BGP_ATTR_PARSE_ERROR
;
2598 if (ret
== BGP_ATTR_PARSE_EOR
) {
2600 aspath_unintern(&as4_path
);
2604 /* If hard error occured immediately return to the caller. */
2605 if (ret
== BGP_ATTR_PARSE_ERROR
) {
2606 flog_warn(BGP_WARN_ATTRIBUTE_PARSE_ERROR
,
2607 "%s: Attribute %s, parse error", peer
->host
,
2608 lookup_msg(attr_str
, type
, NULL
));
2610 aspath_unintern(&as4_path
);
2613 if (ret
== BGP_ATTR_PARSE_WITHDRAW
) {
2616 BGP_WARN_ATTRIBUTE_PARSE_WITHDRAW
,
2617 "%s: Attribute %s, parse error - treating as withdrawal",
2618 peer
->host
, lookup_msg(attr_str
, type
, NULL
));
2620 aspath_unintern(&as4_path
);
2624 /* Check the fetched length. */
2625 if (BGP_INPUT_PNT(peer
) != attr_endp
) {
2626 flog_warn(BGP_WARN_ATTRIBUTE_FETCH_ERROR
,
2627 "%s: BGP attribute %s, fetch error",
2628 peer
->host
, lookup_msg(attr_str
, type
, NULL
));
2629 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2630 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2632 aspath_unintern(&as4_path
);
2633 return BGP_ATTR_PARSE_ERROR
;
2637 /* Check final read pointer is same as end pointer. */
2638 if (BGP_INPUT_PNT(peer
) != endp
) {
2639 flog_warn(BGP_WARN_ATTRIBUTES_MISMATCH
,
2640 "%s: BGP attribute %s, length mismatch", peer
->host
,
2641 lookup_msg(attr_str
, type
, NULL
));
2642 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2643 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2645 aspath_unintern(&as4_path
);
2646 return BGP_ATTR_PARSE_ERROR
;
2649 /* Check all mandatory well-known attributes are present */
2651 bgp_attr_parse_ret_t ret
;
2652 if ((ret
= bgp_attr_check(peer
, attr
)) < 0) {
2654 aspath_unintern(&as4_path
);
2660 * At this place we can see whether we got AS4_PATH and/or
2661 * AS4_AGGREGATOR from a 16Bit peer and act accordingly.
2662 * We can not do this before we've read all attributes because
2663 * the as4 handling does not say whether AS4_PATH has to be sent
2664 * after AS_PATH or not - and when AS4_AGGREGATOR will be send
2665 * in relationship to AGGREGATOR.
2666 * So, to be defensive, we are not relying on any order and read
2667 * all attributes first, including these 32bit ones, and now,
2668 * afterwards, we look what and if something is to be done for as4.
2670 * It is possible to not have AS_PATH, e.g. GR EoR and sole
2673 /* actually... this doesn't ever return failure currently, but
2674 * better safe than sorry */
2675 if (CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
))
2676 && bgp_attr_munge_as4_attrs(peer
, attr
, as4_path
, as4_aggregator
,
2677 &as4_aggregator_addr
)) {
2678 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2679 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2681 aspath_unintern(&as4_path
);
2682 return BGP_ATTR_PARSE_ERROR
;
2685 /* At this stage, we have done all fiddling with as4, and the
2686 * resulting info is in attr->aggregator resp. attr->aspath
2687 * so we can chuck as4_aggregator and as4_path alltogether in
2688 * order to save memory
2691 aspath_unintern(&as4_path
); /* unintern - it is in the hash */
2692 /* The flag that we got this is still there, but that does not
2697 * The "rest" of the code does nothing with as4_aggregator.
2698 * there is no memory attached specifically which is not part
2700 * so ignoring just means do nothing.
2703 * Finally do the checks on the aspath we did not do yet
2704 * because we waited for a potentially synthesized aspath.
2706 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
))) {
2707 ret
= bgp_attr_aspath_check(peer
, attr
);
2708 if (ret
!= BGP_ATTR_PARSE_PROCEED
)
2711 /* Finally intern unknown attribute. */
2713 attr
->transit
= transit_intern(attr
->transit
);
2714 if (attr
->encap_subtlvs
)
2715 attr
->encap_subtlvs
=
2716 encap_intern(attr
->encap_subtlvs
, ENCAP_SUBTLV_TYPE
);
2718 if (attr
->vnc_subtlvs
)
2720 encap_intern(attr
->vnc_subtlvs
, VNC_SUBTLV_TYPE
);
2723 return BGP_ATTR_PARSE_PROCEED
;
2726 size_t bgp_packet_mpattr_start(struct stream
*s
, struct peer
*peer
, afi_t afi
,
2727 safi_t safi
, struct bpacket_attr_vec_arr
*vecarr
,
2732 iana_safi_t pkt_safi
;
2735 /* Set extended bit always to encode the attribute length as 2 bytes */
2736 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_EXTLEN
);
2737 stream_putc(s
, BGP_ATTR_MP_REACH_NLRI
);
2738 sizep
= stream_get_endp(s
);
2739 stream_putw(s
, 0); /* Marker: Attribute length. */
2742 /* Convert AFI, SAFI to values for packet. */
2743 bgp_map_afi_safi_int2iana(afi
, safi
, &pkt_afi
, &pkt_safi
);
2745 stream_putw(s
, pkt_afi
); /* AFI */
2746 stream_putc(s
, pkt_safi
); /* SAFI */
2750 && (safi
== SAFI_UNICAST
|| safi
== SAFI_LABELED_UNICAST
))
2751 nh_afi
= peer_cap_enhe(peer
, afi
, safi
) ? AFI_IP6
: AFI_IP
;
2753 nh_afi
= BGP_NEXTHOP_AFI_FROM_NHLEN(attr
->mp_nexthop_len
);
2756 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
, attr
);
2761 case SAFI_MULTICAST
:
2762 case SAFI_LABELED_UNICAST
:
2764 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
2768 stream_putl(s
, 0); /* RD = 0, per RFC */
2770 stream_put(s
, &attr
->mp_nexthop_global_in
, 4);
2775 stream_put(s
, &attr
->mp_nexthop_global_in
, 4);
2778 stream_putc(s
, 0); /* no nexthop for flowspec */
2786 case SAFI_MULTICAST
:
2787 case SAFI_LABELED_UNICAST
:
2789 if (attr
->mp_nexthop_len
2790 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
) {
2792 BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
);
2793 stream_put(s
, &attr
->mp_nexthop_global
,
2795 stream_put(s
, &attr
->mp_nexthop_local
,
2798 stream_putc(s
, IPV6_MAX_BYTELEN
);
2799 stream_put(s
, &attr
->mp_nexthop_global
,
2803 case SAFI_MPLS_VPN
: {
2804 if (attr
->mp_nexthop_len
2805 == BGP_ATTR_NHLEN_IPV6_GLOBAL
) {
2807 stream_putl(s
, 0); /* RD = 0, per RFC */
2809 stream_put(s
, &attr
->mp_nexthop_global
,
2811 } else if (attr
->mp_nexthop_len
2812 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
) {
2814 stream_putl(s
, 0); /* RD = 0, per RFC */
2816 stream_put(s
, &attr
->mp_nexthop_global
,
2818 stream_putl(s
, 0); /* RD = 0, per RFC */
2820 stream_put(s
, &attr
->mp_nexthop_local
,
2825 stream_putc(s
, IPV6_MAX_BYTELEN
);
2826 stream_put(s
, &attr
->mp_nexthop_global
,
2830 stream_putc(s
, 0); /* no nexthop for flowspec */
2836 if (safi
!= SAFI_FLOWSPEC
)
2838 BGP_ERR_ATTR_NH_SEND_LEN
,
2839 "Bad nexthop when sending to %s, AFI %u SAFI %u nhlen %d",
2840 peer
->host
, afi
, safi
, attr
->mp_nexthop_len
);
2849 void bgp_packet_mpattr_prefix(struct stream
*s
, afi_t afi
, safi_t safi
,
2850 struct prefix
*p
, struct prefix_rd
*prd
,
2851 mpls_label_t
*label
, uint32_t num_labels
,
2852 int addpath_encode
, uint32_t addpath_tx_id
,
2855 if (safi
== SAFI_MPLS_VPN
) {
2857 stream_putl(s
, addpath_tx_id
);
2858 /* Label, RD, Prefix write. */
2859 stream_putc(s
, p
->prefixlen
+ 88);
2860 stream_put(s
, label
, BGP_LABEL_BYTES
);
2861 stream_put(s
, prd
->val
, 8);
2862 stream_put(s
, &p
->u
.prefix
, PSIZE(p
->prefixlen
));
2863 } else if (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
) {
2864 /* EVPN prefix - contents depend on type */
2865 bgp_evpn_encode_prefix(s
, p
, prd
, label
, num_labels
, attr
,
2866 addpath_encode
, addpath_tx_id
);
2867 } else if (safi
== SAFI_LABELED_UNICAST
) {
2868 /* Prefix write with label. */
2869 stream_put_labeled_prefix(s
, p
, label
);
2870 } else if (safi
== SAFI_FLOWSPEC
) {
2871 if (PSIZE (p
->prefixlen
)+2 < FLOWSPEC_NLRI_SIZELIMIT
)
2872 stream_putc(s
, PSIZE (p
->prefixlen
)+2);
2874 stream_putw(s
, (PSIZE (p
->prefixlen
)+2)|(0xf<<12));
2875 stream_putc(s
, 2);/* Filter type */
2876 stream_putc(s
, p
->prefixlen
);/* Prefix length */
2877 stream_put(s
, &p
->u
.prefix
, PSIZE (p
->prefixlen
));
2879 stream_put_prefix_addpath(s
, p
, addpath_encode
, addpath_tx_id
);
2882 size_t bgp_packet_mpattr_prefix_size(afi_t afi
, safi_t safi
, struct prefix
*p
)
2884 int size
= PSIZE(p
->prefixlen
);
2885 if (safi
== SAFI_MPLS_VPN
)
2887 else if (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
)
2888 size
+= 232; // TODO: Maximum possible for type-2, type-3 and
2894 * Encodes the tunnel encapsulation attribute,
2895 * and with ENABLE_BGP_VNC the VNC attribute which uses
2896 * almost the same TLV format
2898 static void bgp_packet_mpattr_tea(struct bgp
*bgp
, struct peer
*peer
,
2899 struct stream
*s
, struct attr
*attr
,
2902 unsigned int attrlenfield
= 0;
2903 unsigned int attrhdrlen
= 0;
2904 struct bgp_attr_encap_subtlv
*subtlvs
;
2905 struct bgp_attr_encap_subtlv
*st
;
2906 const char *attrname
;
2908 if (!attr
|| (attrtype
== BGP_ATTR_ENCAP
2909 && (!attr
->encap_tunneltype
2910 || attr
->encap_tunneltype
== BGP_ENCAP_TYPE_MPLS
)))
2914 case BGP_ATTR_ENCAP
:
2915 attrname
= "Tunnel Encap";
2916 subtlvs
= attr
->encap_subtlvs
;
2917 if (subtlvs
== NULL
) /* nothing to do */
2920 * The tunnel encap attr has an "outer" tlv.
2922 * L = total length of subtlvs,
2923 * V = concatenated subtlvs.
2925 attrlenfield
= 2 + 2; /* T + L */
2926 attrhdrlen
= 1 + 1; /* subTLV T + L */
2932 subtlvs
= attr
->vnc_subtlvs
;
2933 if (subtlvs
== NULL
) /* nothing to do */
2935 attrlenfield
= 0; /* no outer T + L */
2936 attrhdrlen
= 2 + 2; /* subTLV T + L */
2944 /* compute attr length */
2945 for (st
= subtlvs
; st
; st
= st
->next
) {
2946 attrlenfield
+= (attrhdrlen
+ st
->length
);
2949 if (attrlenfield
> 0xffff) {
2950 zlog_info("%s attribute is too long (length=%d), can't send it",
2951 attrname
, attrlenfield
);
2955 if (attrlenfield
> 0xff) {
2956 /* 2-octet length field */
2958 BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
2959 | BGP_ATTR_FLAG_EXTLEN
);
2960 stream_putc(s
, attrtype
);
2961 stream_putw(s
, attrlenfield
& 0xffff);
2963 /* 1-octet length field */
2964 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
);
2965 stream_putc(s
, attrtype
);
2966 stream_putc(s
, attrlenfield
& 0xff);
2969 if (attrtype
== BGP_ATTR_ENCAP
) {
2970 /* write outer T+L */
2971 stream_putw(s
, attr
->encap_tunneltype
);
2972 stream_putw(s
, attrlenfield
- 4);
2975 /* write each sub-tlv */
2976 for (st
= subtlvs
; st
; st
= st
->next
) {
2977 if (attrtype
== BGP_ATTR_ENCAP
) {
2978 stream_putc(s
, st
->type
);
2979 stream_putc(s
, st
->length
);
2982 stream_putw(s
, st
->type
);
2983 stream_putw(s
, st
->length
);
2986 stream_put(s
, st
->value
, st
->length
);
2990 void bgp_packet_mpattr_end(struct stream
*s
, size_t sizep
)
2992 /* Set MP attribute length. Don't count the (2) bytes used to encode
2994 stream_putw_at(s
, sizep
, (stream_get_endp(s
) - sizep
) - 2);
2997 /* Make attribute packet. */
2998 bgp_size_t
bgp_packet_attribute(struct bgp
*bgp
, struct peer
*peer
,
2999 struct stream
*s
, struct attr
*attr
,
3000 struct bpacket_attr_vec_arr
*vecarr
,
3001 struct prefix
*p
, afi_t afi
, safi_t safi
,
3002 struct peer
*from
, struct prefix_rd
*prd
,
3003 mpls_label_t
*label
, uint32_t num_labels
,
3004 int addpath_encode
, uint32_t addpath_tx_id
)
3007 size_t aspath_sizep
;
3008 struct aspath
*aspath
;
3009 int send_as4_path
= 0;
3010 int send_as4_aggregator
= 0;
3011 int use32bit
= (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
)) ? 1 : 0;
3016 /* Remember current pointer. */
3017 cp
= stream_get_endp(s
);
3020 && !((afi
== AFI_IP
&& safi
== SAFI_UNICAST
)
3021 && !peer_cap_enhe(peer
, afi
, safi
))) {
3022 size_t mpattrlen_pos
= 0;
3024 mpattrlen_pos
= bgp_packet_mpattr_start(s
, peer
, afi
, safi
,
3026 bgp_packet_mpattr_prefix(s
, afi
, safi
, p
, prd
, label
,
3027 num_labels
, addpath_encode
,
3028 addpath_tx_id
, attr
);
3029 bgp_packet_mpattr_end(s
, mpattrlen_pos
);
3032 /* Origin attribute. */
3033 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3034 stream_putc(s
, BGP_ATTR_ORIGIN
);
3036 stream_putc(s
, attr
->origin
);
3038 /* AS path attribute. */
3040 /* If remote-peer is EBGP */
3041 if (peer
->sort
== BGP_PEER_EBGP
3042 && (!CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3043 PEER_FLAG_AS_PATH_UNCHANGED
)
3044 || attr
->aspath
->segments
== NULL
)
3045 && (!CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3046 PEER_FLAG_RSERVER_CLIENT
))) {
3047 aspath
= aspath_dup(attr
->aspath
);
3049 /* Even though we may not be configured for confederations we
3051 * RXed an AS_PATH with AS_CONFED_SEQUENCE or AS_CONFED_SET */
3052 aspath
= aspath_delete_confed_seq(aspath
);
3054 if (CHECK_FLAG(bgp
->config
, BGP_CONFIG_CONFEDERATION
)) {
3055 /* Stuff our path CONFED_ID on the front */
3056 aspath
= aspath_add_seq(aspath
, bgp
->confed_id
);
3058 if (peer
->change_local_as
) {
3059 /* If replace-as is specified, we only use the
3060 change_local_as when
3061 advertising routes. */
3064 PEER_FLAG_LOCAL_AS_REPLACE_AS
)) {
3065 aspath
= aspath_add_seq(aspath
,
3068 aspath
= aspath_add_seq(aspath
,
3069 peer
->change_local_as
);
3071 aspath
= aspath_add_seq(aspath
, peer
->local_as
);
3074 } else if (peer
->sort
== BGP_PEER_CONFED
) {
3075 /* A confed member, so we need to do the AS_CONFED_SEQUENCE
3077 aspath
= aspath_dup(attr
->aspath
);
3078 aspath
= aspath_add_confed_seq(aspath
, peer
->local_as
);
3080 aspath
= attr
->aspath
;
3082 /* If peer is not AS4 capable, then:
3083 * - send the created AS_PATH out as AS4_PATH (optional, transitive),
3084 * but ensure that no AS_CONFED_SEQUENCE and AS_CONFED_SET path
3086 * types are in it (i.e. exclude them if they are there)
3087 * AND do this only if there is at least one asnum > 65535 in the
3089 * - send an AS_PATH out, but put 16Bit ASnums in it, not 32bit, and
3091 * all ASnums > 65535 to BGP_AS_TRANS
3094 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_EXTLEN
);
3095 stream_putc(s
, BGP_ATTR_AS_PATH
);
3096 aspath_sizep
= stream_get_endp(s
);
3098 stream_putw_at(s
, aspath_sizep
, aspath_put(s
, aspath
, use32bit
));
3100 /* OLD session may need NEW_AS_PATH sent, if there are 4-byte ASNs
3103 if (!use32bit
&& aspath_has_as4(aspath
))
3105 1; /* we'll do this later, at the correct place */
3107 /* Nexthop attribute. */
3108 if (afi
== AFI_IP
&& safi
== SAFI_UNICAST
3109 && !peer_cap_enhe(peer
, afi
, safi
)) {
3110 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
)) {
3111 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3112 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3113 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
,
3116 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3117 } else if (peer_cap_enhe(from
, afi
, safi
)) {
3119 * Likely this is the case when an IPv4 prefix was
3121 * Extended Next-hop capability and now being advertised
3124 * Setting the mandatory (ipv4) next-hop attribute here
3126 * implicit next-hop self with correct (ipv4 address
3129 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3130 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3131 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
,
3134 stream_put_ipv4(s
, 0);
3138 /* MED attribute. */
3139 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
)
3140 || bgp
->maxmed_active
) {
3141 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3142 stream_putc(s
, BGP_ATTR_MULTI_EXIT_DISC
);
3144 stream_putl(s
, (bgp
->maxmed_active
? bgp
->maxmed_value
3148 /* Local preference. */
3149 if (peer
->sort
== BGP_PEER_IBGP
|| peer
->sort
== BGP_PEER_CONFED
) {
3150 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3151 stream_putc(s
, BGP_ATTR_LOCAL_PREF
);
3153 stream_putl(s
, attr
->local_pref
);
3156 /* Atomic aggregate. */
3157 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
)) {
3158 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3159 stream_putc(s
, BGP_ATTR_ATOMIC_AGGREGATE
);
3164 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
)) {
3165 /* Common to BGP_ATTR_AGGREGATOR, regardless of ASN size */
3166 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3167 stream_putc(s
, BGP_ATTR_AGGREGATOR
);
3170 /* AS4 capable peer */
3172 stream_putl(s
, attr
->aggregator_as
);
3174 /* 2-byte AS peer */
3177 /* Is ASN representable in 2-bytes? Or must AS_TRANS be
3179 if (attr
->aggregator_as
> 65535) {
3180 stream_putw(s
, BGP_AS_TRANS
);
3182 /* we have to send AS4_AGGREGATOR, too.
3183 * we'll do that later in order to send
3184 * attributes in ascending
3187 send_as4_aggregator
= 1;
3189 stream_putw(s
, (uint16_t)attr
->aggregator_as
);
3191 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3194 /* Community attribute. */
3195 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
], PEER_FLAG_SEND_COMMUNITY
)
3196 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
))) {
3197 if (attr
->community
->size
* 4 > 255) {
3199 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3200 | BGP_ATTR_FLAG_EXTLEN
);
3201 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3202 stream_putw(s
, attr
->community
->size
* 4);
3205 BGP_ATTR_FLAG_OPTIONAL
3206 | BGP_ATTR_FLAG_TRANS
);
3207 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3208 stream_putc(s
, attr
->community
->size
* 4);
3210 stream_put(s
, attr
->community
->val
, attr
->community
->size
* 4);
3214 * Large Community attribute.
3216 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3217 PEER_FLAG_SEND_LARGE_COMMUNITY
)
3218 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
))) {
3219 if (lcom_length(attr
->lcommunity
) > 255) {
3221 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3222 | BGP_ATTR_FLAG_EXTLEN
);
3223 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3224 stream_putw(s
, lcom_length(attr
->lcommunity
));
3227 BGP_ATTR_FLAG_OPTIONAL
3228 | BGP_ATTR_FLAG_TRANS
);
3229 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3230 stream_putc(s
, lcom_length(attr
->lcommunity
));
3232 stream_put(s
, attr
->lcommunity
->val
,
3233 lcom_length(attr
->lcommunity
));
3236 /* Route Reflector. */
3237 if (peer
->sort
== BGP_PEER_IBGP
&& from
3238 && from
->sort
== BGP_PEER_IBGP
) {
3239 /* Originator ID. */
3240 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3241 stream_putc(s
, BGP_ATTR_ORIGINATOR_ID
);
3244 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID
))
3245 stream_put_in_addr(s
, &attr
->originator_id
);
3247 stream_put_in_addr(s
, &from
->remote_id
);
3250 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3251 stream_putc(s
, BGP_ATTR_CLUSTER_LIST
);
3253 if (attr
->cluster
) {
3254 stream_putc(s
, attr
->cluster
->length
+ 4);
3255 /* If this peer configuration's parent BGP has
3257 if (bgp
->config
& BGP_CONFIG_CLUSTER_ID
)
3258 stream_put_in_addr(s
, &bgp
->cluster_id
);
3260 stream_put_in_addr(s
, &bgp
->router_id
);
3261 stream_put(s
, attr
->cluster
->list
,
3262 attr
->cluster
->length
);
3265 /* If this peer configuration's parent BGP has
3267 if (bgp
->config
& BGP_CONFIG_CLUSTER_ID
)
3268 stream_put_in_addr(s
, &bgp
->cluster_id
);
3270 stream_put_in_addr(s
, &bgp
->router_id
);
3274 /* Extended Communities attribute. */
3275 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
], PEER_FLAG_SEND_EXT_COMMUNITY
)
3276 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
))) {
3277 if (peer
->sort
== BGP_PEER_IBGP
3278 || peer
->sort
== BGP_PEER_CONFED
) {
3279 if (attr
->ecommunity
->size
* 8 > 255) {
3281 BGP_ATTR_FLAG_OPTIONAL
3282 | BGP_ATTR_FLAG_TRANS
3283 | BGP_ATTR_FLAG_EXTLEN
);
3284 stream_putc(s
, BGP_ATTR_EXT_COMMUNITIES
);
3285 stream_putw(s
, attr
->ecommunity
->size
* 8);
3288 BGP_ATTR_FLAG_OPTIONAL
3289 | BGP_ATTR_FLAG_TRANS
);
3290 stream_putc(s
, BGP_ATTR_EXT_COMMUNITIES
);
3291 stream_putc(s
, attr
->ecommunity
->size
* 8);
3293 stream_put(s
, attr
->ecommunity
->val
,
3294 attr
->ecommunity
->size
* 8);
3298 int ecom_tr_size
= 0;
3301 for (i
= 0; i
< attr
->ecommunity
->size
; i
++) {
3302 pnt
= attr
->ecommunity
->val
+ (i
* 8);
3305 if (CHECK_FLAG(tbit
,
3306 ECOMMUNITY_FLAG_NON_TRANSITIVE
))
3313 if (ecom_tr_size
* 8 > 255) {
3316 BGP_ATTR_FLAG_OPTIONAL
3317 | BGP_ATTR_FLAG_TRANS
3318 | BGP_ATTR_FLAG_EXTLEN
);
3320 BGP_ATTR_EXT_COMMUNITIES
);
3321 stream_putw(s
, ecom_tr_size
* 8);
3325 BGP_ATTR_FLAG_OPTIONAL
3326 | BGP_ATTR_FLAG_TRANS
);
3328 BGP_ATTR_EXT_COMMUNITIES
);
3329 stream_putc(s
, ecom_tr_size
* 8);
3332 for (i
= 0; i
< attr
->ecommunity
->size
; i
++) {
3333 pnt
= attr
->ecommunity
->val
+ (i
* 8);
3338 ECOMMUNITY_FLAG_NON_TRANSITIVE
))
3341 stream_put(s
, pnt
, 8);
3347 /* Label index attribute. */
3348 if (safi
== SAFI_LABELED_UNICAST
) {
3349 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
)) {
3350 uint32_t label_index
;
3352 label_index
= attr
->label_index
;
3354 if (label_index
!= BGP_INVALID_LABEL_INDEX
) {
3356 BGP_ATTR_FLAG_OPTIONAL
3357 | BGP_ATTR_FLAG_TRANS
);
3358 stream_putc(s
, BGP_ATTR_PREFIX_SID
);
3360 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX
);
3362 BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
3363 stream_putc(s
, 0); // reserved
3364 stream_putw(s
, 0); // flags
3365 stream_putl(s
, label_index
);
3370 if (send_as4_path
) {
3371 /* If the peer is NOT As4 capable, AND */
3372 /* there are ASnums > 65535 in path THEN
3373 * give out AS4_PATH */
3375 /* Get rid of all AS_CONFED_SEQUENCE and AS_CONFED_SET
3377 * Hm, I wonder... confederation things *should* only be at
3378 * the beginning of an aspath, right? Then we should use
3379 * aspath_delete_confed_seq for this, because it is already
3381 * Folks, talk to me: what is reasonable here!?
3383 aspath
= aspath_delete_confed_seq(aspath
);
3386 BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
3387 | BGP_ATTR_FLAG_EXTLEN
);
3388 stream_putc(s
, BGP_ATTR_AS4_PATH
);
3389 aspath_sizep
= stream_get_endp(s
);
3391 stream_putw_at(s
, aspath_sizep
, aspath_put(s
, aspath
, 1));
3394 if (aspath
!= attr
->aspath
)
3395 aspath_free(aspath
);
3397 if (send_as4_aggregator
) {
3398 /* send AS4_AGGREGATOR, at this place */
3399 /* this section of code moved here in order to ensure the
3401 * *ascending* order of attributes
3403 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3404 stream_putc(s
, BGP_ATTR_AS4_AGGREGATOR
);
3406 stream_putl(s
, attr
->aggregator_as
);
3407 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3410 if (((afi
== AFI_IP
|| afi
== AFI_IP6
)
3411 && (safi
== SAFI_ENCAP
|| safi
== SAFI_MPLS_VPN
))
3412 || (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
)) {
3413 /* Tunnel Encap attribute */
3414 bgp_packet_mpattr_tea(bgp
, peer
, s
, attr
, BGP_ATTR_ENCAP
);
3418 bgp_packet_mpattr_tea(bgp
, peer
, s
, attr
, BGP_ATTR_VNC
);
3423 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL
)) {
3424 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3425 stream_putc(s
, BGP_ATTR_PMSI_TUNNEL
);
3426 stream_putc(s
, 9); // Length
3427 stream_putc(s
, 0); // Flags
3428 stream_putc(s
, PMSI_TNLTYPE_INGR_REPL
); // IR (6)
3429 stream_put(s
, &(attr
->label
),
3430 BGP_LABEL_BYTES
); // MPLS Label / VXLAN VNI
3431 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3432 // Unicast tunnel endpoint IP address
3435 /* Unknown transit attribute. */
3437 stream_put(s
, attr
->transit
->val
, attr
->transit
->length
);
3439 /* Return total size of attribute. */
3440 return stream_get_endp(s
) - cp
;
3443 size_t bgp_packet_mpunreach_start(struct stream
*s
, afi_t afi
, safi_t safi
)
3445 unsigned long attrlen_pnt
;
3447 iana_safi_t pkt_safi
;
3449 /* Set extended bit always to encode the attribute length as 2 bytes */
3450 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_EXTLEN
);
3451 stream_putc(s
, BGP_ATTR_MP_UNREACH_NLRI
);
3453 attrlen_pnt
= stream_get_endp(s
);
3454 stream_putw(s
, 0); /* Length of this attribute. */
3456 /* Convert AFI, SAFI to values for packet. */
3457 bgp_map_afi_safi_int2iana(afi
, safi
, &pkt_afi
, &pkt_safi
);
3459 stream_putw(s
, pkt_afi
);
3460 stream_putc(s
, pkt_safi
);
3465 void bgp_packet_mpunreach_prefix(struct stream
*s
, struct prefix
*p
, afi_t afi
,
3466 safi_t safi
, struct prefix_rd
*prd
,
3467 mpls_label_t
*label
, uint32_t num_labels
,
3468 int addpath_encode
, uint32_t addpath_tx_id
,
3471 uint8_t wlabel
[3] = {0x80, 0x00, 0x00};
3473 if (safi
== SAFI_LABELED_UNICAST
) {
3474 label
= (mpls_label_t
*)wlabel
;
3478 return bgp_packet_mpattr_prefix(s
, afi
, safi
, p
, prd
, label
, num_labels
,
3479 addpath_encode
, addpath_tx_id
, attr
);
3482 void bgp_packet_mpunreach_end(struct stream
*s
, size_t attrlen_pnt
)
3484 bgp_packet_mpattr_end(s
, attrlen_pnt
);
3487 /* Initialization of attribute. */
3488 void bgp_attr_init(void)
3500 void bgp_attr_finish(void)
3505 ecommunity_finish();
3506 lcommunity_finish();
3512 /* Make attribute packet. */
3513 void bgp_dump_routes_attr(struct stream
*s
, struct attr
*attr
,
3514 struct prefix
*prefix
)
3519 struct aspath
*aspath
;
3520 int addpath_encode
= 0;
3521 uint32_t addpath_tx_id
= 0;
3523 /* Remember current pointer. */
3524 cp
= stream_get_endp(s
);
3526 /* Place holder of length. */
3529 /* Origin attribute. */
3530 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3531 stream_putc(s
, BGP_ATTR_ORIGIN
);
3533 stream_putc(s
, attr
->origin
);
3535 aspath
= attr
->aspath
;
3537 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_EXTLEN
);
3538 stream_putc(s
, BGP_ATTR_AS_PATH
);
3539 aspath_lenp
= stream_get_endp(s
);
3542 stream_putw_at(s
, aspath_lenp
, aspath_put(s
, aspath
, 1));
3544 /* Nexthop attribute. */
3545 /* If it's an IPv6 prefix, don't dump the IPv4 nexthop to save space */
3546 if (prefix
!= NULL
&& prefix
->family
!= AF_INET6
) {
3547 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3548 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3550 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3553 /* MED attribute. */
3554 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
)) {
3555 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3556 stream_putc(s
, BGP_ATTR_MULTI_EXIT_DISC
);
3558 stream_putl(s
, attr
->med
);
3561 /* Local preference. */
3562 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
)) {
3563 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3564 stream_putc(s
, BGP_ATTR_LOCAL_PREF
);
3566 stream_putl(s
, attr
->local_pref
);
3569 /* Atomic aggregate. */
3570 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
)) {
3571 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3572 stream_putc(s
, BGP_ATTR_ATOMIC_AGGREGATE
);
3577 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
)) {
3578 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3579 stream_putc(s
, BGP_ATTR_AGGREGATOR
);
3581 stream_putl(s
, attr
->aggregator_as
);
3582 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3585 /* Community attribute. */
3586 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
)) {
3587 if (attr
->community
->size
* 4 > 255) {
3589 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3590 | BGP_ATTR_FLAG_EXTLEN
);
3591 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3592 stream_putw(s
, attr
->community
->size
* 4);
3595 BGP_ATTR_FLAG_OPTIONAL
3596 | BGP_ATTR_FLAG_TRANS
);
3597 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3598 stream_putc(s
, attr
->community
->size
* 4);
3600 stream_put(s
, attr
->community
->val
, attr
->community
->size
* 4);
3603 /* Large Community attribute. */
3604 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
)) {
3605 if (lcom_length(attr
->lcommunity
) > 255) {
3607 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3608 | BGP_ATTR_FLAG_EXTLEN
);
3609 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3610 stream_putw(s
, lcom_length(attr
->lcommunity
));
3613 BGP_ATTR_FLAG_OPTIONAL
3614 | BGP_ATTR_FLAG_TRANS
);
3615 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3616 stream_putc(s
, lcom_length(attr
->lcommunity
));
3619 stream_put(s
, attr
->lcommunity
->val
,
3620 lcom_length(attr
->lcommunity
));
3623 /* Add a MP_NLRI attribute to dump the IPv6 next hop */
3624 if (prefix
!= NULL
&& prefix
->family
== AF_INET6
3625 && (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL
3626 || attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
)) {
3629 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3630 stream_putc(s
, BGP_ATTR_MP_REACH_NLRI
);
3631 sizep
= stream_get_endp(s
);
3634 stream_putc(s
, 0); /* Marker: Attribute length. */
3635 stream_putw(s
, AFI_IP6
); /* AFI */
3636 stream_putc(s
, SAFI_UNICAST
); /* SAFI */
3639 stream_putc(s
, attr
->mp_nexthop_len
);
3640 stream_put(s
, &attr
->mp_nexthop_global
, IPV6_MAX_BYTELEN
);
3641 if (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
)
3642 stream_put(s
, &attr
->mp_nexthop_local
,
3649 stream_put_prefix_addpath(s
, prefix
, addpath_encode
,
3652 /* Set MP attribute length. */
3653 stream_putc_at(s
, sizep
, (stream_get_endp(s
) - sizep
) - 1);
3657 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
)) {
3658 if (attr
->label_index
!= BGP_INVALID_LABEL_INDEX
) {
3660 BGP_ATTR_FLAG_OPTIONAL
3661 | BGP_ATTR_FLAG_TRANS
);
3662 stream_putc(s
, BGP_ATTR_PREFIX_SID
);
3664 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX
);
3665 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
3666 stream_putc(s
, 0); // reserved
3667 stream_putw(s
, 0); // flags
3668 stream_putl(s
, attr
->label_index
);
3672 /* Return total size of attribute. */
3673 len
= stream_get_endp(s
) - cp
- 2;
3674 stream_putw_at(s
, cp
, len
);