1 /* BGP attributes management routines.
2 * Copyright (C) 1996, 97, 98, 1999 Kunihiro Ishiguro
4 * This file is part of GNU Zebra.
6 * GNU Zebra is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the
8 * Free Software Foundation; either version 2, or (at your option) any
11 * GNU Zebra is distributed in the hope that it will be useful, but
12 * WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * General Public License for more details.
16 * You should have received a copy of the GNU General Public License along
17 * with this program; see the file COPYING; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
36 #include "bgpd/bgpd.h"
37 #include "bgpd/bgp_attr.h"
38 #include "bgpd/bgp_route.h"
39 #include "bgpd/bgp_aspath.h"
40 #include "bgpd/bgp_community.h"
41 #include "bgpd/bgp_debug.h"
42 #include "bgpd/bgp_errors.h"
43 #include "bgpd/bgp_label.h"
44 #include "bgpd/bgp_packet.h"
45 #include "bgpd/bgp_ecommunity.h"
46 #include "bgpd/bgp_lcommunity.h"
47 #include "bgpd/bgp_updgrp.h"
48 #include "bgpd/bgp_encap_types.h"
50 #include "bgpd/rfapi/bgp_rfapi_cfg.h"
51 #include "bgp_encap_types.h"
52 #include "bgp_vnc_types.h"
54 #include "bgp_encap_types.h"
56 #include "bgp_flowspec_private.h"
58 /* Attribute strings for logging. */
59 static const struct message attr_str
[] = {
60 {BGP_ATTR_ORIGIN
, "ORIGIN"},
61 {BGP_ATTR_AS_PATH
, "AS_PATH"},
62 {BGP_ATTR_NEXT_HOP
, "NEXT_HOP"},
63 {BGP_ATTR_MULTI_EXIT_DISC
, "MULTI_EXIT_DISC"},
64 {BGP_ATTR_LOCAL_PREF
, "LOCAL_PREF"},
65 {BGP_ATTR_ATOMIC_AGGREGATE
, "ATOMIC_AGGREGATE"},
66 {BGP_ATTR_AGGREGATOR
, "AGGREGATOR"},
67 {BGP_ATTR_COMMUNITIES
, "COMMUNITY"},
68 {BGP_ATTR_ORIGINATOR_ID
, "ORIGINATOR_ID"},
69 {BGP_ATTR_CLUSTER_LIST
, "CLUSTER_LIST"},
70 {BGP_ATTR_DPA
, "DPA"},
71 {BGP_ATTR_ADVERTISER
, "ADVERTISER"},
72 {BGP_ATTR_RCID_PATH
, "RCID_PATH"},
73 {BGP_ATTR_MP_REACH_NLRI
, "MP_REACH_NLRI"},
74 {BGP_ATTR_MP_UNREACH_NLRI
, "MP_UNREACH_NLRI"},
75 {BGP_ATTR_EXT_COMMUNITIES
, "EXT_COMMUNITIES"},
76 {BGP_ATTR_AS4_PATH
, "AS4_PATH"},
77 {BGP_ATTR_AS4_AGGREGATOR
, "AS4_AGGREGATOR"},
78 {BGP_ATTR_AS_PATHLIMIT
, "AS_PATHLIMIT"},
79 {BGP_ATTR_PMSI_TUNNEL
, "PMSI_TUNNEL_ATTRIBUTE"},
80 {BGP_ATTR_ENCAP
, "ENCAP"},
82 {BGP_ATTR_VNC
, "VNC"},
84 {BGP_ATTR_LARGE_COMMUNITIES
, "LARGE_COMMUNITY"},
85 {BGP_ATTR_PREFIX_SID
, "PREFIX_SID"},
88 static const struct message attr_flag_str
[] = {
89 {BGP_ATTR_FLAG_OPTIONAL
, "Optional"},
90 {BGP_ATTR_FLAG_TRANS
, "Transitive"},
91 {BGP_ATTR_FLAG_PARTIAL
, "Partial"},
92 /* bgp_attr_flags_diagnose() relies on this bit being last in
94 {BGP_ATTR_FLAG_EXTLEN
, "Extended Length"},
97 static struct hash
*cluster_hash
;
99 static void *cluster_hash_alloc(void *p
)
101 const struct cluster_list
*val
= (const struct cluster_list
*)p
;
102 struct cluster_list
*cluster
;
104 cluster
= XMALLOC(MTYPE_CLUSTER
, sizeof(struct cluster_list
));
105 cluster
->length
= val
->length
;
107 if (cluster
->length
) {
108 cluster
->list
= XMALLOC(MTYPE_CLUSTER_VAL
, val
->length
);
109 memcpy(cluster
->list
, val
->list
, val
->length
);
111 cluster
->list
= NULL
;
118 /* Cluster list related functions. */
119 static struct cluster_list
*cluster_parse(struct in_addr
*pnt
, int length
)
121 struct cluster_list tmp
;
122 struct cluster_list
*cluster
;
127 cluster
= hash_get(cluster_hash
, &tmp
, cluster_hash_alloc
);
132 int cluster_loop_check(struct cluster_list
*cluster
, struct in_addr originator
)
136 for (i
= 0; i
< cluster
->length
/ 4; i
++)
137 if (cluster
->list
[i
].s_addr
== originator
.s_addr
)
142 static unsigned int cluster_hash_key_make(void *p
)
144 const struct cluster_list
*cluster
= p
;
146 return jhash(cluster
->list
, cluster
->length
, 0);
149 static int cluster_hash_cmp(const void *p1
, const void *p2
)
151 const struct cluster_list
*cluster1
= p1
;
152 const struct cluster_list
*cluster2
= p2
;
154 return (cluster1
->length
== cluster2
->length
155 && memcmp(cluster1
->list
, cluster2
->list
, cluster1
->length
)
159 static void cluster_free(struct cluster_list
*cluster
)
162 XFREE(MTYPE_CLUSTER_VAL
, cluster
->list
);
163 XFREE(MTYPE_CLUSTER
, cluster
);
166 static struct cluster_list
*cluster_intern(struct cluster_list
*cluster
)
168 struct cluster_list
*find
;
170 find
= hash_get(cluster_hash
, cluster
, cluster_hash_alloc
);
176 void cluster_unintern(struct cluster_list
*cluster
)
181 if (cluster
->refcnt
== 0) {
182 hash_release(cluster_hash
, cluster
);
183 cluster_free(cluster
);
187 static void cluster_init(void)
189 cluster_hash
= hash_create(cluster_hash_key_make
, cluster_hash_cmp
,
193 static void cluster_finish(void)
195 hash_clean(cluster_hash
, (void (*)(void *))cluster_free
);
196 hash_free(cluster_hash
);
200 static struct hash
*encap_hash
= NULL
;
202 static struct hash
*vnc_hash
= NULL
;
205 struct bgp_attr_encap_subtlv
*encap_tlv_dup(struct bgp_attr_encap_subtlv
*orig
)
207 struct bgp_attr_encap_subtlv
*new;
208 struct bgp_attr_encap_subtlv
*tail
;
209 struct bgp_attr_encap_subtlv
*p
;
211 for (p
= orig
, tail
= new = NULL
; p
; p
= p
->next
) {
212 int size
= sizeof(struct bgp_attr_encap_subtlv
) + p
->length
;
214 tail
->next
= XCALLOC(MTYPE_ENCAP_TLV
, size
);
217 tail
= new = XCALLOC(MTYPE_ENCAP_TLV
, size
);
220 memcpy(tail
, p
, size
);
227 static void encap_free(struct bgp_attr_encap_subtlv
*p
)
229 struct bgp_attr_encap_subtlv
*next
;
233 XFREE(MTYPE_ENCAP_TLV
, p
);
238 void bgp_attr_flush_encap(struct attr
*attr
)
243 if (attr
->encap_subtlvs
) {
244 encap_free(attr
->encap_subtlvs
);
245 attr
->encap_subtlvs
= NULL
;
248 if (attr
->vnc_subtlvs
) {
249 encap_free(attr
->vnc_subtlvs
);
250 attr
->vnc_subtlvs
= NULL
;
256 * Compare encap sub-tlv chains
261 * This algorithm could be made faster if needed
263 static int encap_same(struct bgp_attr_encap_subtlv
*h1
,
264 struct bgp_attr_encap_subtlv
*h2
)
266 struct bgp_attr_encap_subtlv
*p
;
267 struct bgp_attr_encap_subtlv
*q
;
271 if (h1
== NULL
|| h2
== NULL
)
274 for (p
= h1
; p
; p
= p
->next
) {
275 for (q
= h2
; q
; q
= q
->next
) {
276 if ((p
->type
== q
->type
) && (p
->length
== q
->length
)
277 && !memcmp(p
->value
, q
->value
, p
->length
)) {
286 for (p
= h2
; p
; p
= p
->next
) {
287 for (q
= h1
; q
; q
= q
->next
) {
288 if ((p
->type
== q
->type
) && (p
->length
== q
->length
)
289 && !memcmp(p
->value
, q
->value
, p
->length
)) {
301 static void *encap_hash_alloc(void *p
)
303 /* Encap structure is already allocated. */
314 static struct bgp_attr_encap_subtlv
*
315 encap_intern(struct bgp_attr_encap_subtlv
*encap
, encap_subtlv_type type
)
317 struct bgp_attr_encap_subtlv
*find
;
318 struct hash
*hash
= encap_hash
;
320 if (type
== VNC_SUBTLV_TYPE
)
324 find
= hash_get(hash
, encap
, encap_hash_alloc
);
332 static void encap_unintern(struct bgp_attr_encap_subtlv
**encapp
,
333 encap_subtlv_type type
)
335 struct bgp_attr_encap_subtlv
*encap
= *encapp
;
339 if (encap
->refcnt
== 0) {
340 struct hash
*hash
= encap_hash
;
342 if (type
== VNC_SUBTLV_TYPE
)
345 hash_release(hash
, encap
);
351 static unsigned int encap_hash_key_make(void *p
)
353 const struct bgp_attr_encap_subtlv
*encap
= p
;
355 return jhash(encap
->value
, encap
->length
, 0);
358 static int encap_hash_cmp(const void *p1
, const void *p2
)
360 return encap_same((struct bgp_attr_encap_subtlv
*)p1
,
361 (struct bgp_attr_encap_subtlv
*)p2
);
364 static void encap_init(void)
366 encap_hash
= hash_create(encap_hash_key_make
, encap_hash_cmp
,
369 vnc_hash
= hash_create(encap_hash_key_make
, encap_hash_cmp
,
374 static void encap_finish(void)
376 hash_clean(encap_hash
, (void (*)(void *))encap_free
);
377 hash_free(encap_hash
);
380 hash_clean(vnc_hash
, (void (*)(void *))encap_free
);
386 static bool overlay_index_same(const struct attr
*a1
, const struct attr
*a2
)
394 return !memcmp(&(a1
->evpn_overlay
), &(a2
->evpn_overlay
),
395 sizeof(struct overlay_index
));
398 /* Unknown transit attribute. */
399 static struct hash
*transit_hash
;
401 static void transit_free(struct transit
*transit
)
404 XFREE(MTYPE_TRANSIT_VAL
, transit
->val
);
405 XFREE(MTYPE_TRANSIT
, transit
);
408 static void *transit_hash_alloc(void *p
)
410 /* Transit structure is already allocated. */
414 static struct transit
*transit_intern(struct transit
*transit
)
416 struct transit
*find
;
418 find
= hash_get(transit_hash
, transit
, transit_hash_alloc
);
420 transit_free(transit
);
426 void transit_unintern(struct transit
*transit
)
431 if (transit
->refcnt
== 0) {
432 hash_release(transit_hash
, transit
);
433 transit_free(transit
);
437 static unsigned int transit_hash_key_make(void *p
)
439 const struct transit
*transit
= p
;
441 return jhash(transit
->val
, transit
->length
, 0);
444 static int transit_hash_cmp(const void *p1
, const void *p2
)
446 const struct transit
*transit1
= p1
;
447 const struct transit
*transit2
= p2
;
449 return (transit1
->length
== transit2
->length
450 && memcmp(transit1
->val
, transit2
->val
, transit1
->length
) == 0);
453 static void transit_init(void)
455 transit_hash
= hash_create(transit_hash_key_make
, transit_hash_cmp
,
459 static void transit_finish(void)
461 hash_clean(transit_hash
, (void (*)(void *))transit_free
);
462 hash_free(transit_hash
);
466 /* Attribute hash routines. */
467 static struct hash
*attrhash
;
469 /* Shallow copy of an attribute
470 * Though, not so shallow that it doesn't copy the contents
471 * of the attr_extra pointed to by 'extra'
473 void bgp_attr_dup(struct attr
*new, struct attr
*orig
)
478 unsigned long int attr_count(void)
480 return attrhash
->count
;
483 unsigned long int attr_unknown_count(void)
485 return transit_hash
->count
;
488 unsigned int attrhash_key_make(void *p
)
490 const struct attr
*attr
= (struct attr
*)p
;
492 #define MIX(val) key = jhash_1word(val, key)
493 #define MIX3(a, b, c) key = jhash_3words((a), (b), (c), key)
495 MIX3(attr
->origin
, attr
->nexthop
.s_addr
, attr
->med
);
496 MIX3(attr
->local_pref
, attr
->aggregator_as
,
497 attr
->aggregator_addr
.s_addr
);
498 MIX3(attr
->weight
, attr
->mp_nexthop_global_in
.s_addr
,
499 attr
->originator_id
.s_addr
);
500 MIX3(attr
->tag
, attr
->label
, attr
->label_index
);
503 MIX(aspath_key_make(attr
->aspath
));
505 MIX(community_hash_make(attr
->community
));
507 if (attr
->lcommunity
)
508 MIX(lcommunity_hash_make(attr
->lcommunity
));
509 if (attr
->ecommunity
)
510 MIX(ecommunity_hash_make(attr
->ecommunity
));
512 MIX(cluster_hash_key_make(attr
->cluster
));
514 MIX(transit_hash_key_make(attr
->transit
));
515 if (attr
->encap_subtlvs
)
516 MIX(encap_hash_key_make(attr
->encap_subtlvs
));
518 if (attr
->vnc_subtlvs
)
519 MIX(encap_hash_key_make(attr
->vnc_subtlvs
));
521 MIX(attr
->mp_nexthop_len
);
522 key
= jhash(attr
->mp_nexthop_global
.s6_addr
, IPV6_MAX_BYTELEN
, key
);
523 key
= jhash(attr
->mp_nexthop_local
.s6_addr
, IPV6_MAX_BYTELEN
, key
);
524 MIX(attr
->nh_ifindex
);
525 MIX(attr
->nh_lla_ifindex
);
530 int attrhash_cmp(const void *p1
, const void *p2
)
532 const struct attr
*attr1
= p1
;
533 const struct attr
*attr2
= p2
;
535 if (attr1
->flag
== attr2
->flag
&& attr1
->origin
== attr2
->origin
536 && attr1
->nexthop
.s_addr
== attr2
->nexthop
.s_addr
537 && attr1
->aspath
== attr2
->aspath
538 && attr1
->community
== attr2
->community
&& attr1
->med
== attr2
->med
539 && attr1
->local_pref
== attr2
->local_pref
540 && attr1
->rmap_change_flags
== attr2
->rmap_change_flags
) {
541 if (attr1
->aggregator_as
== attr2
->aggregator_as
542 && attr1
->aggregator_addr
.s_addr
543 == attr2
->aggregator_addr
.s_addr
544 && attr1
->weight
== attr2
->weight
545 && attr1
->tag
== attr2
->tag
546 && attr1
->label_index
== attr2
->label_index
547 && attr1
->mp_nexthop_len
== attr2
->mp_nexthop_len
548 && attr1
->ecommunity
== attr2
->ecommunity
549 && attr1
->lcommunity
== attr2
->lcommunity
550 && attr1
->cluster
== attr2
->cluster
551 && attr1
->transit
== attr2
->transit
552 && (attr1
->encap_tunneltype
== attr2
->encap_tunneltype
)
553 && encap_same(attr1
->encap_subtlvs
, attr2
->encap_subtlvs
)
555 && encap_same(attr1
->vnc_subtlvs
, attr2
->vnc_subtlvs
)
557 && IPV6_ADDR_SAME(&attr1
->mp_nexthop_global
,
558 &attr2
->mp_nexthop_global
)
559 && IPV6_ADDR_SAME(&attr1
->mp_nexthop_local
,
560 &attr2
->mp_nexthop_local
)
561 && IPV4_ADDR_SAME(&attr1
->mp_nexthop_global_in
,
562 &attr2
->mp_nexthop_global_in
)
563 && IPV4_ADDR_SAME(&attr1
->originator_id
,
564 &attr2
->originator_id
)
565 && overlay_index_same(attr1
, attr2
)
566 && attr1
->nh_ifindex
== attr2
->nh_ifindex
567 && attr1
->nh_lla_ifindex
== attr2
->nh_lla_ifindex
)
574 static void attrhash_init(void)
577 hash_create(attrhash_key_make
, attrhash_cmp
, "BGP Attributes");
581 * special for hash_clean below
583 static void attr_vfree(void *attr
)
585 XFREE(MTYPE_ATTR
, attr
);
588 static void attrhash_finish(void)
590 hash_clean(attrhash
, attr_vfree
);
595 static void attr_show_all_iterator(struct hash_backet
*backet
, struct vty
*vty
)
597 struct attr
*attr
= backet
->data
;
599 vty_out(vty
, "attr[%ld] nexthop %s\n", attr
->refcnt
,
600 inet_ntoa(attr
->nexthop
));
601 vty_out(vty
, "\tflags: %" PRIu64
" med: %u local_pref: %u origin: %u weight: %u label: %u\n",
602 attr
->flag
, attr
->med
, attr
->local_pref
, attr
->origin
,
603 attr
->weight
, attr
->label
);
606 void attr_show_all(struct vty
*vty
)
608 hash_iterate(attrhash
, (void (*)(struct hash_backet
*,
609 void *))attr_show_all_iterator
,
613 static void *bgp_attr_hash_alloc(void *p
)
615 struct attr
*val
= (struct attr
*)p
;
618 attr
= XMALLOC(MTYPE_ATTR
, sizeof(struct attr
));
620 if (val
->encap_subtlvs
) {
621 val
->encap_subtlvs
= NULL
;
624 if (val
->vnc_subtlvs
) {
625 val
->vnc_subtlvs
= NULL
;
632 /* Internet argument attribute. */
633 struct attr
*bgp_attr_intern(struct attr
*attr
)
637 /* Intern referenced strucutre. */
639 if (!attr
->aspath
->refcnt
)
640 attr
->aspath
= aspath_intern(attr
->aspath
);
642 attr
->aspath
->refcnt
++;
644 if (attr
->community
) {
645 if (!attr
->community
->refcnt
)
646 attr
->community
= community_intern(attr
->community
);
648 attr
->community
->refcnt
++;
651 if (attr
->ecommunity
) {
652 if (!attr
->ecommunity
->refcnt
)
653 attr
->ecommunity
= ecommunity_intern(attr
->ecommunity
);
655 attr
->ecommunity
->refcnt
++;
657 if (attr
->lcommunity
) {
658 if (!attr
->lcommunity
->refcnt
)
659 attr
->lcommunity
= lcommunity_intern(attr
->lcommunity
);
661 attr
->lcommunity
->refcnt
++;
664 if (!attr
->cluster
->refcnt
)
665 attr
->cluster
= cluster_intern(attr
->cluster
);
667 attr
->cluster
->refcnt
++;
670 if (!attr
->transit
->refcnt
)
671 attr
->transit
= transit_intern(attr
->transit
);
673 attr
->transit
->refcnt
++;
675 if (attr
->encap_subtlvs
) {
676 if (!attr
->encap_subtlvs
->refcnt
)
677 attr
->encap_subtlvs
= encap_intern(attr
->encap_subtlvs
,
680 attr
->encap_subtlvs
->refcnt
++;
683 if (attr
->vnc_subtlvs
) {
684 if (!attr
->vnc_subtlvs
->refcnt
)
685 attr
->vnc_subtlvs
= encap_intern(attr
->vnc_subtlvs
,
688 attr
->vnc_subtlvs
->refcnt
++;
692 /* At this point, attr only contains intern'd pointers. that means
693 * if we find it in attrhash, it has all the same pointers and we
694 * correctly updated the refcounts on these.
695 * If we don't find it, we need to allocate a one because in all
696 * cases this returns a new reference to a hashed attr, but the input
698 find
= (struct attr
*)hash_get(attrhash
, attr
, bgp_attr_hash_alloc
);
704 /* Make network statement's attribute. */
705 struct attr
*bgp_attr_default_set(struct attr
*attr
, uint8_t origin
)
707 memset(attr
, 0, sizeof(struct attr
));
709 attr
->origin
= origin
;
710 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
711 attr
->aspath
= aspath_empty();
712 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
713 attr
->weight
= BGP_ATTR_DEFAULT_WEIGHT
;
715 attr
->label_index
= BGP_INVALID_LABEL_INDEX
;
716 attr
->label
= MPLS_INVALID_LABEL
;
717 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
718 attr
->mp_nexthop_len
= IPV6_MAX_BYTELEN
;
723 /* Create the attributes for an aggregate */
724 struct attr
*bgp_attr_aggregate_intern(struct bgp
*bgp
, uint8_t origin
,
725 struct aspath
*aspath
,
726 struct community
*community
, int as_set
,
727 uint8_t atomic_aggregate
)
732 memset(&attr
, 0, sizeof(struct attr
));
734 /* Origin attribute. */
735 attr
.origin
= origin
;
736 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
738 /* AS path attribute. */
740 attr
.aspath
= aspath_intern(aspath
);
742 attr
.aspath
= aspath_empty();
743 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
745 /* Next hop attribute. */
746 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
749 uint32_t gshut
= COMMUNITY_GSHUT
;
751 /* If we are not shutting down ourselves and we are
752 * aggregating a route that contains the GSHUT community we
753 * need to remove that community when creating the aggregate */
754 if (!bgp_flag_check(bgp
, BGP_FLAG_GRACEFUL_SHUTDOWN
)
755 && community_include(community
, gshut
)) {
756 community_del_val(community
, &gshut
);
759 attr
.community
= community
;
760 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
);
763 if (bgp_flag_check(bgp
, BGP_FLAG_GRACEFUL_SHUTDOWN
)) {
764 bgp_attr_add_gshut_community(&attr
);
767 attr
.label_index
= BGP_INVALID_LABEL_INDEX
;
768 attr
.label
= MPLS_INVALID_LABEL
;
769 attr
.weight
= BGP_ATTR_DEFAULT_WEIGHT
;
770 attr
.mp_nexthop_len
= IPV6_MAX_BYTELEN
;
771 if (!as_set
|| atomic_aggregate
)
772 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
);
773 attr
.flag
|= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
);
774 if (CHECK_FLAG(bgp
->config
, BGP_CONFIG_CONFEDERATION
))
775 attr
.aggregator_as
= bgp
->confed_id
;
777 attr
.aggregator_as
= bgp
->as
;
778 attr
.aggregator_addr
= bgp
->router_id
;
779 attr
.label_index
= BGP_INVALID_LABEL_INDEX
;
780 attr
.label
= MPLS_INVALID_LABEL
;
782 new = bgp_attr_intern(&attr
);
784 aspath_unintern(&new->aspath
);
788 /* Unintern just the sub-components of the attr, but not the attr */
789 void bgp_attr_unintern_sub(struct attr
*attr
)
791 /* aspath refcount shoud be decrement. */
793 aspath_unintern(&attr
->aspath
);
794 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
));
797 community_unintern(&attr
->community
);
798 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
));
800 if (attr
->ecommunity
)
801 ecommunity_unintern(&attr
->ecommunity
);
802 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
));
804 if (attr
->lcommunity
)
805 lcommunity_unintern(&attr
->lcommunity
);
806 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
));
809 cluster_unintern(attr
->cluster
);
810 UNSET_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST
));
813 transit_unintern(attr
->transit
);
815 if (attr
->encap_subtlvs
)
816 encap_unintern(&attr
->encap_subtlvs
, ENCAP_SUBTLV_TYPE
);
819 if (attr
->vnc_subtlvs
)
820 encap_unintern(&attr
->vnc_subtlvs
, VNC_SUBTLV_TYPE
);
825 * We have some show commands that let you experimentally
826 * apply a route-map. When we apply the route-map
827 * we are reseting values but not saving them for
828 * posterity via intern'ing( because route-maps don't
829 * do that) but at this point in time we need
830 * to compare the new attr to the old and if the
831 * routemap has changed it we need to, as Snoop Dog says,
832 * Drop it like it's hot
834 void bgp_attr_undup(struct attr
*new, struct attr
*old
)
836 if (new->aspath
!= old
->aspath
)
837 aspath_free(new->aspath
);
839 if (new->community
!= old
->community
)
840 community_free(new->community
);
842 if (new->ecommunity
!= old
->ecommunity
)
843 ecommunity_free(&new->ecommunity
);
845 if (new->lcommunity
!= old
->lcommunity
)
846 lcommunity_free(&new->lcommunity
);
849 /* Free bgp attribute and aspath. */
850 void bgp_attr_unintern(struct attr
**pattr
)
852 struct attr
*attr
= *pattr
;
856 /* Decrement attribute reference. */
861 /* If reference becomes zero then free attribute object. */
862 if (attr
->refcnt
== 0) {
863 ret
= hash_release(attrhash
, attr
);
865 XFREE(MTYPE_ATTR
, attr
);
869 bgp_attr_unintern_sub(&tmp
);
872 void bgp_attr_flush(struct attr
*attr
)
874 if (attr
->aspath
&& !attr
->aspath
->refcnt
) {
875 aspath_free(attr
->aspath
);
878 if (attr
->community
&& !attr
->community
->refcnt
) {
879 community_free(attr
->community
);
880 attr
->community
= NULL
;
883 if (attr
->ecommunity
&& !attr
->ecommunity
->refcnt
)
884 ecommunity_free(&attr
->ecommunity
);
885 if (attr
->lcommunity
&& !attr
->lcommunity
->refcnt
)
886 lcommunity_free(&attr
->lcommunity
);
887 if (attr
->cluster
&& !attr
->cluster
->refcnt
) {
888 cluster_free(attr
->cluster
);
889 attr
->cluster
= NULL
;
891 if (attr
->transit
&& !attr
->transit
->refcnt
) {
892 transit_free(attr
->transit
);
893 attr
->transit
= NULL
;
895 if (attr
->encap_subtlvs
&& !attr
->encap_subtlvs
->refcnt
) {
896 encap_free(attr
->encap_subtlvs
);
897 attr
->encap_subtlvs
= NULL
;
900 if (attr
->vnc_subtlvs
&& !attr
->vnc_subtlvs
->refcnt
) {
901 encap_free(attr
->vnc_subtlvs
);
902 attr
->vnc_subtlvs
= NULL
;
907 /* Implement draft-scudder-idr-optional-transitive behaviour and
908 * avoid resetting sessions for malformed attributes which are
909 * are partial/optional and hence where the error likely was not
910 * introduced by the sending neighbour.
912 static bgp_attr_parse_ret_t
913 bgp_attr_malformed(struct bgp_attr_parser_args
*args
, uint8_t subcode
,
916 struct peer
*const peer
= args
->peer
;
917 const uint8_t flags
= args
->flags
;
918 /* startp and length must be special-cased, as whether or not to
919 * send the attribute data with the NOTIFY depends on the error,
920 * the caller therefore signals this with the seperate length argument
922 uint8_t *notify_datap
= (length
> 0 ? args
->startp
: NULL
);
924 /* Only relax error handling for eBGP peers */
925 if (peer
->sort
!= BGP_PEER_EBGP
) {
926 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
, subcode
,
927 notify_datap
, length
);
928 return BGP_ATTR_PARSE_ERROR
;
931 /* Adjust the stream getp to the end of the attribute, in case we can
932 * still proceed but the caller hasn't read all the attribute.
934 stream_set_getp(BGP_INPUT(peer
),
935 (args
->startp
- STREAM_DATA(BGP_INPUT(peer
)))
938 switch (args
->type
) {
939 /* where an attribute is relatively inconsequential, e.g. it does not
940 * affect route selection, and can be safely ignored, then any such
941 * attributes which are malformed should just be ignored and the route
942 * processed as normal.
944 case BGP_ATTR_AS4_AGGREGATOR
:
945 case BGP_ATTR_AGGREGATOR
:
946 case BGP_ATTR_ATOMIC_AGGREGATE
:
947 return BGP_ATTR_PARSE_PROCEED
;
949 /* Core attributes, particularly ones which may influence route
950 * selection, should always cause session resets
952 case BGP_ATTR_ORIGIN
:
953 case BGP_ATTR_AS_PATH
:
954 case BGP_ATTR_NEXT_HOP
:
955 case BGP_ATTR_MULTI_EXIT_DISC
:
956 case BGP_ATTR_LOCAL_PREF
:
957 case BGP_ATTR_COMMUNITIES
:
958 case BGP_ATTR_ORIGINATOR_ID
:
959 case BGP_ATTR_CLUSTER_LIST
:
960 case BGP_ATTR_MP_REACH_NLRI
:
961 case BGP_ATTR_MP_UNREACH_NLRI
:
962 case BGP_ATTR_EXT_COMMUNITIES
:
963 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
, subcode
,
964 notify_datap
, length
);
965 return BGP_ATTR_PARSE_ERROR
;
968 /* Partial optional attributes that are malformed should not cause
969 * the whole session to be reset. Instead treat it as a withdrawal
970 * of the routes, if possible.
972 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
)
973 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
974 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_PARTIAL
))
975 return BGP_ATTR_PARSE_WITHDRAW
;
977 /* default to reset */
978 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
981 /* Find out what is wrong with the path attribute flag bits and log the error.
982 "Flag bits" here stand for Optional, Transitive and Partial, but not for
983 Extended Length. Checking O/T/P bits at once implies, that the attribute
984 being diagnosed is defined by RFC as either a "well-known" or an "optional,
985 non-transitive" attribute. */
987 bgp_attr_flags_diagnose(struct bgp_attr_parser_args
*args
,
988 uint8_t desired_flags
/* how RFC says it must be */
992 uint8_t real_flags
= args
->flags
;
993 const uint8_t attr_code
= args
->type
;
995 desired_flags
&= ~BGP_ATTR_FLAG_EXTLEN
;
996 real_flags
&= ~BGP_ATTR_FLAG_EXTLEN
;
997 for (i
= 0; i
<= 2; i
++) /* O,T,P, but not E */
998 if (CHECK_FLAG(desired_flags
, attr_flag_str
[i
].key
)
999 != CHECK_FLAG(real_flags
, attr_flag_str
[i
].key
)) {
1000 flog_err(EC_BGP_ATTR_FLAG
,
1001 "%s attribute must%s be flagged as \"%s\"",
1002 lookup_msg(attr_str
, attr_code
, NULL
),
1003 CHECK_FLAG(desired_flags
, attr_flag_str
[i
].key
)
1006 attr_flag_str
[i
].str
);
1011 "Strange, %s called for attr %s, but no problem found with flags"
1012 " (real flags 0x%x, desired 0x%x)",
1013 __func__
, lookup_msg(attr_str
, attr_code
, NULL
),
1014 real_flags
, desired_flags
);
1018 /* Required flags for attributes. EXTLEN will be masked off when testing,
1019 * as will PARTIAL for optional+transitive attributes.
1021 const uint8_t attr_flags_values
[] = {
1022 [BGP_ATTR_ORIGIN
] = BGP_ATTR_FLAG_TRANS
,
1023 [BGP_ATTR_AS_PATH
] = BGP_ATTR_FLAG_TRANS
,
1024 [BGP_ATTR_NEXT_HOP
] = BGP_ATTR_FLAG_TRANS
,
1025 [BGP_ATTR_MULTI_EXIT_DISC
] = BGP_ATTR_FLAG_OPTIONAL
,
1026 [BGP_ATTR_LOCAL_PREF
] = BGP_ATTR_FLAG_TRANS
,
1027 [BGP_ATTR_ATOMIC_AGGREGATE
] = BGP_ATTR_FLAG_TRANS
,
1028 [BGP_ATTR_AGGREGATOR
] = BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
,
1029 [BGP_ATTR_COMMUNITIES
] = BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
,
1030 [BGP_ATTR_ORIGINATOR_ID
] = BGP_ATTR_FLAG_OPTIONAL
,
1031 [BGP_ATTR_CLUSTER_LIST
] = BGP_ATTR_FLAG_OPTIONAL
,
1032 [BGP_ATTR_MP_REACH_NLRI
] = BGP_ATTR_FLAG_OPTIONAL
,
1033 [BGP_ATTR_MP_UNREACH_NLRI
] = BGP_ATTR_FLAG_OPTIONAL
,
1034 [BGP_ATTR_EXT_COMMUNITIES
] =
1035 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1036 [BGP_ATTR_AS4_PATH
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1037 [BGP_ATTR_AS4_AGGREGATOR
] =
1038 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1039 [BGP_ATTR_PMSI_TUNNEL
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1040 [BGP_ATTR_LARGE_COMMUNITIES
] =
1041 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1042 [BGP_ATTR_PREFIX_SID
] = BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
,
1044 static const size_t attr_flags_values_max
= array_size(attr_flags_values
) - 1;
1046 static int bgp_attr_flag_invalid(struct bgp_attr_parser_args
*args
)
1048 uint8_t mask
= BGP_ATTR_FLAG_EXTLEN
;
1049 const uint8_t flags
= args
->flags
;
1050 const uint8_t attr_code
= args
->type
;
1052 /* there may be attributes we don't know about */
1053 if (attr_code
> attr_flags_values_max
)
1055 if (attr_flags_values
[attr_code
] == 0)
1058 /* RFC4271, "For well-known attributes, the Transitive bit MUST be set
1062 if (!CHECK_FLAG(BGP_ATTR_FLAG_OPTIONAL
, flags
)
1063 && !CHECK_FLAG(BGP_ATTR_FLAG_TRANS
, flags
)) {
1066 "%s well-known attributes must have transitive flag set (%x)",
1067 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1071 /* "For well-known attributes and for optional non-transitive
1073 * the Partial bit MUST be set to 0."
1075 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_PARTIAL
)) {
1076 if (!CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)) {
1077 flog_err(EC_BGP_ATTR_FLAG
,
1078 "%s well-known attribute "
1079 "must NOT have the partial flag set (%x)",
1080 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1083 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
1084 && !CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
)) {
1085 flog_err(EC_BGP_ATTR_FLAG
,
1086 "%s optional + transitive attribute "
1087 "must NOT have the partial flag set (%x)",
1088 lookup_msg(attr_str
, attr_code
, NULL
), flags
);
1093 /* Optional transitive attributes may go through speakers that don't
1094 * reocgnise them and set the Partial bit.
1096 if (CHECK_FLAG(flags
, BGP_ATTR_FLAG_OPTIONAL
)
1097 && CHECK_FLAG(flags
, BGP_ATTR_FLAG_TRANS
))
1098 SET_FLAG(mask
, BGP_ATTR_FLAG_PARTIAL
);
1100 if ((flags
& ~mask
) == attr_flags_values
[attr_code
])
1103 bgp_attr_flags_diagnose(args
, attr_flags_values
[attr_code
]);
1107 /* Get origin attribute of the update message. */
1108 static bgp_attr_parse_ret_t
bgp_attr_origin(struct bgp_attr_parser_args
*args
)
1110 struct peer
*const peer
= args
->peer
;
1111 struct attr
*const attr
= args
->attr
;
1112 const bgp_size_t length
= args
->length
;
1114 /* If any recognized attribute has Attribute Length that conflicts
1115 with the expected length (based on the attribute type code), then
1116 the Error Subcode is set to Attribute Length Error. The Data
1117 field contains the erroneous attribute (type, length and
1120 flog_err(EC_BGP_ATTR_LEN
,
1121 "Origin attribute length is not one %d", length
);
1122 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1126 /* Fetch origin attribute. */
1127 attr
->origin
= stream_getc(BGP_INPUT(peer
));
1129 /* If the ORIGIN attribute has an undefined value, then the Error
1130 Subcode is set to Invalid Origin Attribute. The Data field
1131 contains the unrecognized attribute (type, length and value). */
1132 if ((attr
->origin
!= BGP_ORIGIN_IGP
) && (attr
->origin
!= BGP_ORIGIN_EGP
)
1133 && (attr
->origin
!= BGP_ORIGIN_INCOMPLETE
)) {
1134 flog_err(EC_BGP_ATTR_ORIGIN
,
1135 "Origin attribute value is invalid %d", attr
->origin
);
1136 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_INVAL_ORIGIN
,
1140 /* Set oring attribute flag. */
1141 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
);
1146 /* Parse AS path information. This function is wrapper of
1148 static int bgp_attr_aspath(struct bgp_attr_parser_args
*args
)
1150 struct attr
*const attr
= args
->attr
;
1151 struct peer
*const peer
= args
->peer
;
1152 const bgp_size_t length
= args
->length
;
1155 * peer with AS4 => will get 4Byte ASnums
1156 * otherwise, will get 16 Bit
1158 attr
->aspath
= aspath_parse(peer
->curr
, length
,
1159 CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
));
1161 /* In case of IBGP, length will be zero. */
1162 if (!attr
->aspath
) {
1163 flog_err(EC_BGP_ATTR_MAL_AS_PATH
,
1164 "Malformed AS path from %s, length is %d", peer
->host
,
1166 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_MAL_AS_PATH
,
1170 /* Set aspath attribute flag. */
1171 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
);
1173 return BGP_ATTR_PARSE_PROCEED
;
1176 static bgp_attr_parse_ret_t
bgp_attr_aspath_check(struct peer
*const peer
,
1177 struct attr
*const attr
)
1179 /* These checks were part of bgp_attr_aspath, but with
1180 * as4 we should to check aspath things when
1181 * aspath synthesizing with as4_path has already taken place.
1182 * Otherwise we check ASPATH and use the synthesized thing, and that is
1184 * So do the checks later, i.e. here
1186 struct aspath
*aspath
;
1188 /* Confederation sanity check. */
1189 if ((peer
->sort
== BGP_PEER_CONFED
1190 && !aspath_left_confed_check(attr
->aspath
))
1191 || (peer
->sort
== BGP_PEER_EBGP
1192 && aspath_confed_check(attr
->aspath
))) {
1193 flog_err(EC_BGP_ATTR_MAL_AS_PATH
, "Malformed AS path from %s",
1195 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
1196 BGP_NOTIFY_UPDATE_MAL_AS_PATH
);
1197 return BGP_ATTR_PARSE_ERROR
;
1200 /* First AS check for EBGP. */
1201 if (CHECK_FLAG(peer
->flags
, PEER_FLAG_ENFORCE_FIRST_AS
)) {
1202 if (peer
->sort
== BGP_PEER_EBGP
1203 && !aspath_firstas_check(attr
->aspath
, peer
->as
)) {
1204 flog_err(EC_BGP_ATTR_FIRST_AS
,
1205 "%s incorrect first AS (must be %u)",
1206 peer
->host
, peer
->as
);
1207 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
1208 BGP_NOTIFY_UPDATE_MAL_AS_PATH
);
1209 return BGP_ATTR_PARSE_ERROR
;
1213 /* local-as prepend */
1214 if (peer
->change_local_as
1215 && !CHECK_FLAG(peer
->flags
, PEER_FLAG_LOCAL_AS_NO_PREPEND
)) {
1216 aspath
= aspath_dup(attr
->aspath
);
1217 aspath
= aspath_add_seq(aspath
, peer
->change_local_as
);
1218 aspath_unintern(&attr
->aspath
);
1219 attr
->aspath
= aspath_intern(aspath
);
1222 return BGP_ATTR_PARSE_PROCEED
;
1225 /* Parse AS4 path information. This function is another wrapper of
1227 static int bgp_attr_as4_path(struct bgp_attr_parser_args
*args
,
1228 struct aspath
**as4_path
)
1230 struct peer
*const peer
= args
->peer
;
1231 struct attr
*const attr
= args
->attr
;
1232 const bgp_size_t length
= args
->length
;
1234 *as4_path
= aspath_parse(peer
->curr
, length
, 1);
1236 /* In case of IBGP, length will be zero. */
1238 flog_err(EC_BGP_ATTR_MAL_AS_PATH
,
1239 "Malformed AS4 path from %s, length is %d", peer
->host
,
1241 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_MAL_AS_PATH
,
1245 /* Set aspath attribute flag. */
1246 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
);
1248 return BGP_ATTR_PARSE_PROCEED
;
1251 /* Nexthop attribute. */
1252 static bgp_attr_parse_ret_t
bgp_attr_nexthop(struct bgp_attr_parser_args
*args
)
1254 struct peer
*const peer
= args
->peer
;
1255 struct attr
*const attr
= args
->attr
;
1256 const bgp_size_t length
= args
->length
;
1258 in_addr_t nexthop_h
, nexthop_n
;
1260 /* Check nexthop attribute length. */
1262 flog_err(EC_BGP_ATTR_LEN
,
1263 "Nexthop attribute length isn't four [%d]", length
);
1265 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1269 /* According to section 6.3 of RFC4271, syntactically incorrect NEXT_HOP
1270 attribute must result in a NOTIFICATION message (this is implemented
1272 At the same time, semantically incorrect NEXT_HOP is more likely to
1274 logged locally (this is implemented somewhere else). The UPDATE
1276 gets ignored in any of these cases. */
1277 nexthop_n
= stream_get_ipv4(peer
->curr
);
1278 nexthop_h
= ntohl(nexthop_n
);
1279 if ((IPV4_NET0(nexthop_h
) || IPV4_NET127(nexthop_h
)
1280 || IPV4_CLASS_DE(nexthop_h
))
1283 ALLOW_MARTIANS
)) /* loopbacks may be used in testing */
1285 char buf
[INET_ADDRSTRLEN
];
1286 inet_ntop(AF_INET
, &nexthop_n
, buf
, INET_ADDRSTRLEN
);
1287 flog_err(EC_BGP_ATTR_MARTIAN_NH
, "Martian nexthop %s", buf
);
1288 return bgp_attr_malformed(
1289 args
, BGP_NOTIFY_UPDATE_INVAL_NEXT_HOP
, args
->total
);
1292 attr
->nexthop
.s_addr
= nexthop_n
;
1293 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
);
1295 return BGP_ATTR_PARSE_PROCEED
;
1298 /* MED atrribute. */
1299 static bgp_attr_parse_ret_t
bgp_attr_med(struct bgp_attr_parser_args
*args
)
1301 struct peer
*const peer
= args
->peer
;
1302 struct attr
*const attr
= args
->attr
;
1303 const bgp_size_t length
= args
->length
;
1307 flog_err(EC_BGP_ATTR_LEN
,
1308 "MED attribute length isn't four [%d]", length
);
1310 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1314 attr
->med
= stream_getl(peer
->curr
);
1316 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
);
1318 return BGP_ATTR_PARSE_PROCEED
;
1321 /* Local preference attribute. */
1322 static bgp_attr_parse_ret_t
1323 bgp_attr_local_pref(struct bgp_attr_parser_args
*args
)
1325 struct peer
*const peer
= args
->peer
;
1326 struct attr
*const attr
= args
->attr
;
1327 const bgp_size_t length
= args
->length
;
1331 flog_err(EC_BGP_ATTR_LEN
,
1332 "LOCAL_PREF attribute length isn't 4 [%u]", length
);
1333 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1337 /* If it is contained in an UPDATE message that is received from an
1338 external peer, then this attribute MUST be ignored by the
1339 receiving speaker. */
1340 if (peer
->sort
== BGP_PEER_EBGP
) {
1341 stream_forward_getp(peer
->curr
, length
);
1342 return BGP_ATTR_PARSE_PROCEED
;
1345 attr
->local_pref
= stream_getl(peer
->curr
);
1347 /* Set the local-pref flag. */
1348 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
);
1350 return BGP_ATTR_PARSE_PROCEED
;
1353 /* Atomic aggregate. */
1354 static int bgp_attr_atomic(struct bgp_attr_parser_args
*args
)
1356 struct attr
*const attr
= args
->attr
;
1357 const bgp_size_t length
= args
->length
;
1361 flog_err(EC_BGP_ATTR_LEN
,
1362 "ATOMIC_AGGREGATE attribute length isn't 0 [%u]",
1364 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1368 /* Set atomic aggregate flag. */
1369 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
);
1371 return BGP_ATTR_PARSE_PROCEED
;
1374 /* Aggregator attribute */
1375 static int bgp_attr_aggregator(struct bgp_attr_parser_args
*args
)
1377 struct peer
*const peer
= args
->peer
;
1378 struct attr
*const attr
= args
->attr
;
1379 const bgp_size_t length
= args
->length
;
1383 /* peer with AS4 will send 4 Byte AS, peer without will send 2 Byte */
1384 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
))
1387 if (length
!= wantedlen
) {
1388 flog_err(EC_BGP_ATTR_LEN
,
1389 "AGGREGATOR attribute length isn't %u [%u]", wantedlen
,
1391 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1395 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
))
1396 attr
->aggregator_as
= stream_getl(peer
->curr
);
1398 attr
->aggregator_as
= stream_getw(peer
->curr
);
1399 attr
->aggregator_addr
.s_addr
= stream_get_ipv4(peer
->curr
);
1401 /* Set atomic aggregate flag. */
1402 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
);
1404 return BGP_ATTR_PARSE_PROCEED
;
1407 /* New Aggregator attribute */
1408 static bgp_attr_parse_ret_t
1409 bgp_attr_as4_aggregator(struct bgp_attr_parser_args
*args
,
1410 as_t
*as4_aggregator_as
,
1411 struct in_addr
*as4_aggregator_addr
)
1413 struct peer
*const peer
= args
->peer
;
1414 struct attr
*const attr
= args
->attr
;
1415 const bgp_size_t length
= args
->length
;
1418 flog_err(EC_BGP_ATTR_LEN
, "New Aggregator length is not 8 [%d]",
1420 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1424 *as4_aggregator_as
= stream_getl(peer
->curr
);
1425 as4_aggregator_addr
->s_addr
= stream_get_ipv4(peer
->curr
);
1427 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
);
1429 return BGP_ATTR_PARSE_PROCEED
;
1432 /* Munge Aggregator and New-Aggregator, AS_PATH and NEW_AS_PATH.
1434 static bgp_attr_parse_ret_t
1435 bgp_attr_munge_as4_attrs(struct peer
*const peer
, struct attr
*const attr
,
1436 struct aspath
*as4_path
, as_t as4_aggregator
,
1437 struct in_addr
*as4_aggregator_addr
)
1439 int ignore_as4_path
= 0;
1440 struct aspath
*newpath
;
1442 if (!attr
->aspath
) {
1443 /* NULL aspath shouldn't be possible as bgp_attr_parse should
1445 * checked that all well-known, mandatory attributes were
1448 * Can only be a problem with peer itself - hard error
1450 return BGP_ATTR_PARSE_ERROR
;
1453 if (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
)) {
1454 /* peer can do AS4, so we ignore AS4_PATH and AS4_AGGREGATOR
1456 * It is worth a warning though, because the peer really
1457 * should not send them
1459 if (BGP_DEBUG(as4
, AS4
)) {
1460 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
)))
1461 zlog_debug("[AS4] %s %s AS4_PATH", peer
->host
,
1462 "AS4 capable peer, yet it sent");
1465 & (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
)))
1466 zlog_debug("[AS4] %s %s AS4_AGGREGATOR",
1468 "AS4 capable peer, yet it sent");
1471 return BGP_ATTR_PARSE_PROCEED
;
1474 /* We have a asn16 peer. First, look for AS4_AGGREGATOR
1475 * because that may override AS4_PATH
1477 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR
))) {
1478 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
))) {
1480 * if the as_number in aggregator is not AS_TRANS,
1481 * then AS4_AGGREGATOR and AS4_PATH shall be ignored
1482 * and the Aggregator shall be taken as
1483 * info on the aggregating node, and the AS_PATH
1484 * shall be taken as the AS_PATH
1486 * the Aggregator shall be ignored and the
1487 * AS4_AGGREGATOR shall be taken as the
1488 * Aggregating node and the AS_PATH is to be
1489 * constructed "as in all other cases"
1491 if (attr
->aggregator_as
!= BGP_AS_TRANS
) {
1493 if (BGP_DEBUG(as4
, AS4
))
1495 "[AS4] %s BGP not AS4 capable peer"
1496 " send AGGREGATOR != AS_TRANS and"
1497 " AS4_AGGREGATOR, so ignore"
1498 " AS4_AGGREGATOR and AS4_PATH",
1500 ignore_as4_path
= 1;
1502 /* "New_aggregator shall be taken as aggregator"
1504 attr
->aggregator_as
= as4_aggregator
;
1505 attr
->aggregator_addr
.s_addr
=
1506 as4_aggregator_addr
->s_addr
;
1509 /* We received a AS4_AGGREGATOR but no AGGREGATOR.
1510 * That is bogus - but reading the conditions
1511 * we have to handle AS4_AGGREGATOR as if it were
1512 * AGGREGATOR in that case
1514 if (BGP_DEBUG(as4
, AS4
))
1516 "[AS4] %s BGP not AS4 capable peer send"
1517 " AS4_AGGREGATOR but no AGGREGATOR, will take"
1518 " it as if AGGREGATOR with AS_TRANS had been there",
1520 attr
->aggregator_as
= as4_aggregator
;
1521 /* sweep it under the carpet and simulate a "good"
1523 attr
->flag
|= (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
));
1527 /* need to reconcile NEW_AS_PATH and AS_PATH */
1528 if (!ignore_as4_path
1529 && (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH
)))) {
1530 newpath
= aspath_reconcile_as4(attr
->aspath
, as4_path
);
1532 return BGP_ATTR_PARSE_ERROR
;
1534 aspath_unintern(&attr
->aspath
);
1535 attr
->aspath
= aspath_intern(newpath
);
1537 return BGP_ATTR_PARSE_PROCEED
;
1540 /* Community attribute. */
1541 static bgp_attr_parse_ret_t
1542 bgp_attr_community(struct bgp_attr_parser_args
*args
)
1544 struct peer
*const peer
= args
->peer
;
1545 struct attr
*const attr
= args
->attr
;
1546 const bgp_size_t length
= args
->length
;
1549 attr
->community
= NULL
;
1550 return BGP_ATTR_PARSE_PROCEED
;
1554 community_parse((uint32_t *)stream_pnt(peer
->curr
), length
);
1556 /* XXX: fix community_parse to use stream API and remove this */
1557 stream_forward_getp(peer
->curr
, length
);
1559 if (!attr
->community
)
1560 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1563 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
);
1565 return BGP_ATTR_PARSE_PROCEED
;
1568 /* Originator ID attribute. */
1569 static bgp_attr_parse_ret_t
1570 bgp_attr_originator_id(struct bgp_attr_parser_args
*args
)
1572 struct peer
*const peer
= args
->peer
;
1573 struct attr
*const attr
= args
->attr
;
1574 const bgp_size_t length
= args
->length
;
1578 flog_err(EC_BGP_ATTR_LEN
, "Bad originator ID length %d",
1581 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1585 attr
->originator_id
.s_addr
= stream_get_ipv4(peer
->curr
);
1587 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID
);
1589 return BGP_ATTR_PARSE_PROCEED
;
1592 /* Cluster list attribute. */
1593 static bgp_attr_parse_ret_t
1594 bgp_attr_cluster_list(struct bgp_attr_parser_args
*args
)
1596 struct peer
*const peer
= args
->peer
;
1597 struct attr
*const attr
= args
->attr
;
1598 const bgp_size_t length
= args
->length
;
1602 flog_err(EC_BGP_ATTR_LEN
, "Bad cluster list length %d", length
);
1604 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
1609 cluster_parse((struct in_addr
*)stream_pnt(peer
->curr
), length
);
1611 /* XXX: Fix cluster_parse to use stream API and then remove this */
1612 stream_forward_getp(peer
->curr
, length
);
1614 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST
);
1616 return BGP_ATTR_PARSE_PROCEED
;
1619 /* Multiprotocol reachability information parse. */
1620 int bgp_mp_reach_parse(struct bgp_attr_parser_args
*args
,
1621 struct bgp_nlri
*mp_update
)
1625 iana_safi_t pkt_safi
;
1627 bgp_size_t nlri_len
;
1630 struct peer
*const peer
= args
->peer
;
1631 struct attr
*const attr
= args
->attr
;
1632 const bgp_size_t length
= args
->length
;
1634 /* Set end of packet. */
1635 s
= BGP_INPUT(peer
);
1636 start
= stream_get_getp(s
);
1638 /* safe to read statically sized header? */
1639 #define BGP_MP_REACH_MIN_SIZE 5
1640 #define LEN_LEFT (length - (stream_get_getp(s) - start))
1641 if ((length
> STREAM_READABLE(s
)) || (length
< BGP_MP_REACH_MIN_SIZE
)) {
1642 zlog_info("%s: %s sent invalid length, %lu", __func__
,
1643 peer
->host
, (unsigned long)length
);
1644 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1647 /* Load AFI, SAFI. */
1648 pkt_afi
= stream_getw(s
);
1649 pkt_safi
= stream_getc(s
);
1651 /* Convert AFI, SAFI to internal values, check. */
1652 if (bgp_map_afi_safi_iana2int(pkt_afi
, pkt_safi
, &afi
, &safi
)) {
1653 /* Log if AFI or SAFI is unrecognized. This is not an error
1655 * the attribute is otherwise malformed.
1657 if (bgp_debug_update(peer
, NULL
, NULL
, 0))
1659 "%s: MP_REACH received AFI %u or SAFI %u is unrecognized",
1660 peer
->host
, pkt_afi
, pkt_safi
);
1661 return BGP_ATTR_PARSE_ERROR
;
1664 /* Get nexthop length. */
1665 attr
->mp_nexthop_len
= stream_getc(s
);
1667 if (LEN_LEFT
< attr
->mp_nexthop_len
) {
1669 "%s: %s, MP nexthop length, %u, goes past end of attribute",
1670 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1671 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1674 /* Nexthop length check. */
1675 switch (attr
->mp_nexthop_len
) {
1677 if (safi
!= SAFI_FLOWSPEC
) {
1678 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1679 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1680 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1683 case BGP_ATTR_NHLEN_VPNV4
:
1684 stream_getl(s
); /* RD high */
1685 stream_getl(s
); /* RD low */
1687 * NOTE: intentional fall through
1688 * - for consistency in rx processing
1690 * The following comment is to signal GCC this intention
1691 * and supress the warning
1694 case BGP_ATTR_NHLEN_IPV4
:
1695 stream_get(&attr
->mp_nexthop_global_in
, s
, IPV4_MAX_BYTELEN
);
1696 /* Probably needed for RFC 2283 */
1697 if (attr
->nexthop
.s_addr
== 0)
1698 memcpy(&attr
->nexthop
.s_addr
,
1699 &attr
->mp_nexthop_global_in
, IPV4_MAX_BYTELEN
);
1701 case BGP_ATTR_NHLEN_IPV6_GLOBAL
:
1702 case BGP_ATTR_NHLEN_VPNV6_GLOBAL
:
1703 if (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_VPNV6_GLOBAL
) {
1704 stream_getl(s
); /* RD high */
1705 stream_getl(s
); /* RD low */
1707 stream_get(&attr
->mp_nexthop_global
, s
, IPV6_MAX_BYTELEN
);
1708 if (IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_global
))
1709 attr
->nh_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1711 case BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
:
1712 case BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
:
1713 if (attr
->mp_nexthop_len
1714 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
) {
1715 stream_getl(s
); /* RD high */
1716 stream_getl(s
); /* RD low */
1718 stream_get(&attr
->mp_nexthop_global
, s
, IPV6_MAX_BYTELEN
);
1719 if (IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_global
))
1720 attr
->nh_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1721 if (attr
->mp_nexthop_len
1722 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL
) {
1723 stream_getl(s
); /* RD high */
1724 stream_getl(s
); /* RD low */
1726 stream_get(&attr
->mp_nexthop_local
, s
, IPV6_MAX_BYTELEN
);
1727 if (!IN6_IS_ADDR_LINKLOCAL(&attr
->mp_nexthop_local
)) {
1728 char buf1
[INET6_ADDRSTRLEN
];
1729 char buf2
[INET6_ADDRSTRLEN
];
1731 if (bgp_debug_update(peer
, NULL
, NULL
, 1))
1733 "%s rcvd nexthops %s, %s -- ignoring non-LL value",
1736 &attr
->mp_nexthop_global
,
1737 buf1
, INET6_ADDRSTRLEN
),
1739 &attr
->mp_nexthop_local
, buf2
,
1742 attr
->mp_nexthop_len
= IPV6_MAX_BYTELEN
;
1744 attr
->nh_lla_ifindex
= peer
->nexthop
.ifp
->ifindex
;
1747 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1748 __func__
, peer
->host
, attr
->mp_nexthop_len
);
1749 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1753 zlog_info("%s: (%s) Failed to read SNPA and NLRI(s)", __func__
,
1755 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1760 if ((val
= stream_getc(s
)))
1762 EC_BGP_DEFUNCT_SNPA_LEN
,
1763 "%s sent non-zero value, %u, for defunct SNPA-length field",
1767 /* must have nrli_len, what is left of the attribute */
1768 nlri_len
= LEN_LEFT
;
1769 if (nlri_len
> STREAM_READABLE(s
)) {
1770 zlog_info("%s: (%s) Failed to read NLRI", __func__
, peer
->host
);
1771 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1775 zlog_info("%s: (%s) No Reachability, Treating as a EOR marker",
1776 __func__
, peer
->host
);
1778 mp_update
->afi
= afi
;
1779 mp_update
->safi
= safi
;
1780 return BGP_ATTR_PARSE_EOR
;
1783 mp_update
->afi
= afi
;
1784 mp_update
->safi
= safi
;
1785 mp_update
->nlri
= stream_pnt(s
);
1786 mp_update
->length
= nlri_len
;
1788 stream_forward_getp(s
, nlri_len
);
1790 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
);
1792 return BGP_ATTR_PARSE_PROCEED
;
1796 /* Multiprotocol unreachable parse */
1797 int bgp_mp_unreach_parse(struct bgp_attr_parser_args
*args
,
1798 struct bgp_nlri
*mp_withdraw
)
1803 iana_safi_t pkt_safi
;
1805 uint16_t withdraw_len
;
1806 struct peer
*const peer
= args
->peer
;
1807 struct attr
*const attr
= args
->attr
;
1808 const bgp_size_t length
= args
->length
;
1812 #define BGP_MP_UNREACH_MIN_SIZE 3
1813 if ((length
> STREAM_READABLE(s
)) || (length
< BGP_MP_UNREACH_MIN_SIZE
))
1814 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS
;
1816 pkt_afi
= stream_getw(s
);
1817 pkt_safi
= stream_getc(s
);
1819 /* Convert AFI, SAFI to internal values, check. */
1820 if (bgp_map_afi_safi_iana2int(pkt_afi
, pkt_safi
, &afi
, &safi
)) {
1821 /* Log if AFI or SAFI is unrecognized. This is not an error
1823 * the attribute is otherwise malformed.
1825 if (bgp_debug_update(peer
, NULL
, NULL
, 0))
1827 "%s: MP_UNREACH received AFI %u or SAFI %u is unrecognized",
1828 peer
->host
, pkt_afi
, pkt_safi
);
1829 return BGP_ATTR_PARSE_ERROR
;
1832 withdraw_len
= length
- BGP_MP_UNREACH_MIN_SIZE
;
1834 mp_withdraw
->afi
= afi
;
1835 mp_withdraw
->safi
= safi
;
1836 mp_withdraw
->nlri
= stream_pnt(s
);
1837 mp_withdraw
->length
= withdraw_len
;
1839 stream_forward_getp(s
, withdraw_len
);
1841 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI
);
1843 return BGP_ATTR_PARSE_PROCEED
;
1846 /* Large Community attribute. */
1847 static bgp_attr_parse_ret_t
1848 bgp_attr_large_community(struct bgp_attr_parser_args
*args
)
1850 struct peer
*const peer
= args
->peer
;
1851 struct attr
*const attr
= args
->attr
;
1852 const bgp_size_t length
= args
->length
;
1855 * Large community follows new attribute format.
1858 attr
->lcommunity
= NULL
;
1859 /* Empty extcomm doesn't seem to be invalid per se */
1860 return BGP_ATTR_PARSE_PROCEED
;
1864 lcommunity_parse((uint8_t *)stream_pnt(peer
->curr
), length
);
1865 /* XXX: fix ecommunity_parse to use stream API */
1866 stream_forward_getp(peer
->curr
, length
);
1868 if (!attr
->lcommunity
)
1869 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1872 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
);
1874 return BGP_ATTR_PARSE_PROCEED
;
1877 /* Extended Community attribute. */
1878 static bgp_attr_parse_ret_t
1879 bgp_attr_ext_communities(struct bgp_attr_parser_args
*args
)
1881 struct peer
*const peer
= args
->peer
;
1882 struct attr
*const attr
= args
->attr
;
1883 const bgp_size_t length
= args
->length
;
1887 attr
->ecommunity
= NULL
;
1888 /* Empty extcomm doesn't seem to be invalid per se */
1889 return BGP_ATTR_PARSE_PROCEED
;
1893 ecommunity_parse((uint8_t *)stream_pnt(peer
->curr
), length
);
1894 /* XXX: fix ecommunity_parse to use stream API */
1895 stream_forward_getp(peer
->curr
, length
);
1897 if (!attr
->ecommunity
)
1898 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
1901 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
);
1903 /* Extract MAC mobility sequence number, if any. */
1904 attr
->mm_seqnum
= bgp_attr_mac_mobility_seqnum(attr
, &sticky
);
1905 attr
->sticky
= sticky
;
1907 /* Check if this is a Gateway MAC-IP advertisement */
1908 attr
->default_gw
= bgp_attr_default_gw(attr
);
1910 /* Handle scenario where router flag ecommunity is not
1911 * set but default gw ext community is present.
1912 * Use default gateway, set and propogate R-bit.
1914 if (attr
->default_gw
)
1915 attr
->router_flag
= 1;
1917 /* Check EVPN Neighbor advertisement flags, R-bit */
1918 bgp_attr_evpn_na_flag(attr
, &attr
->router_flag
);
1920 /* Extract the Rmac, if any */
1921 bgp_attr_rmac(attr
, &attr
->rmac
);
1923 return BGP_ATTR_PARSE_PROCEED
;
1926 /* Parse Tunnel Encap attribute in an UPDATE */
1927 static int bgp_attr_encap(uint8_t type
, struct peer
*peer
, /* IN */
1928 bgp_size_t length
, /* IN: attr's length field */
1929 struct attr
*attr
, /* IN: caller already allocated */
1930 uint8_t flag
, /* IN: attr's flags field */
1934 uint16_t tunneltype
= 0;
1936 total
= length
+ (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
) ? 4 : 3);
1938 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_TRANS
)
1939 || !CHECK_FLAG(flag
, BGP_ATTR_FLAG_OPTIONAL
)) {
1941 "Tunnel Encap attribute flag isn't optional and transitive %d",
1943 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
1944 BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR
,
1949 if (BGP_ATTR_ENCAP
== type
) {
1950 /* read outer TLV type and length */
1951 uint16_t tlv_length
;
1955 "Tunnel Encap attribute not long enough to contain outer T,L");
1956 bgp_notify_send_with_data(
1957 peer
, BGP_NOTIFY_UPDATE_ERR
,
1958 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
, startp
, total
);
1961 tunneltype
= stream_getw(BGP_INPUT(peer
));
1962 tlv_length
= stream_getw(BGP_INPUT(peer
));
1965 if (tlv_length
!= length
) {
1966 zlog_info("%s: tlv_length(%d) != length(%d)", __func__
,
1967 tlv_length
, length
);
1971 while (length
>= 4) {
1972 uint16_t subtype
= 0;
1973 uint16_t sublength
= 0;
1974 struct bgp_attr_encap_subtlv
*tlv
;
1976 if (BGP_ATTR_ENCAP
== type
) {
1977 subtype
= stream_getc(BGP_INPUT(peer
));
1978 sublength
= stream_getc(BGP_INPUT(peer
));
1982 subtype
= stream_getw(BGP_INPUT(peer
));
1983 sublength
= stream_getw(BGP_INPUT(peer
));
1988 if (sublength
> length
) {
1990 "Tunnel Encap attribute sub-tlv length %d exceeds remaining length %d",
1992 bgp_notify_send_with_data(
1993 peer
, BGP_NOTIFY_UPDATE_ERR
,
1994 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
, startp
, total
);
1998 /* alloc and copy sub-tlv */
1999 /* TBD make sure these are freed when attributes are released */
2000 tlv
= XCALLOC(MTYPE_ENCAP_TLV
,
2001 sizeof(struct bgp_attr_encap_subtlv
) + sublength
);
2002 tlv
->type
= subtype
;
2003 tlv
->length
= sublength
;
2004 stream_get(tlv
->value
, peer
->curr
, sublength
);
2005 length
-= sublength
;
2007 /* attach tlv to encap chain */
2008 if (BGP_ATTR_ENCAP
== type
) {
2009 struct bgp_attr_encap_subtlv
*stlv_last
;
2010 for (stlv_last
= attr
->encap_subtlvs
;
2011 stlv_last
&& stlv_last
->next
;
2012 stlv_last
= stlv_last
->next
)
2015 stlv_last
->next
= tlv
;
2017 attr
->encap_subtlvs
= tlv
;
2021 struct bgp_attr_encap_subtlv
*stlv_last
;
2022 for (stlv_last
= attr
->vnc_subtlvs
;
2023 stlv_last
&& stlv_last
->next
;
2024 stlv_last
= stlv_last
->next
)
2027 stlv_last
->next
= tlv
;
2029 attr
->vnc_subtlvs
= tlv
;
2035 if (BGP_ATTR_ENCAP
== type
) {
2036 attr
->encap_tunneltype
= tunneltype
;
2040 /* spurious leftover data */
2042 "Tunnel Encap attribute length is bad: %d leftover octets",
2044 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
2045 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2054 * Read an individual SID value returning how much data we have read
2055 * Returns 0 if there was an error that needs to be passed up the stack
2057 static bgp_attr_parse_ret_t
bgp_attr_psid_sub(int32_t type
,
2059 struct bgp_attr_parser_args
*args
,
2060 struct bgp_nlri
*mp_update
)
2062 struct peer
*const peer
= args
->peer
;
2063 struct attr
*const attr
= args
->attr
;
2064 uint32_t label_index
;
2065 struct in6_addr ipv6_sid
;
2067 uint32_t srgb_range
;
2070 if (type
== BGP_PREFIX_SID_LABEL_INDEX
) {
2071 if (length
!= BGP_PREFIX_SID_LABEL_INDEX_LENGTH
) {
2074 "Prefix SID label index length is %d instead of %d",
2075 length
, BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
2076 return bgp_attr_malformed(args
,
2077 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2081 /* Ignore flags and reserved */
2082 stream_getc(peer
->curr
);
2083 stream_getw(peer
->curr
);
2085 /* Fetch the label index and see if it is valid. */
2086 label_index
= stream_getl(peer
->curr
);
2087 if (label_index
== BGP_INVALID_LABEL_INDEX
)
2088 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2091 /* Store label index; subsequently, we'll check on
2093 attr
->label_index
= label_index
;
2096 * Ignore the Label index attribute unless received for
2100 if (!mp_update
->length
2101 || mp_update
->safi
!= SAFI_LABELED_UNICAST
)
2102 attr
->label_index
= BGP_INVALID_LABEL_INDEX
;
2105 /* Placeholder code for the IPv6 SID type */
2106 else if (type
== BGP_PREFIX_SID_IPV6
) {
2107 if (length
!= BGP_PREFIX_SID_IPV6_LENGTH
) {
2108 flog_err(EC_BGP_ATTR_LEN
,
2109 "Prefix SID IPv6 length is %d instead of %d",
2110 length
, BGP_PREFIX_SID_IPV6_LENGTH
);
2111 return bgp_attr_malformed(args
,
2112 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2116 /* Ignore reserved */
2117 stream_getc(peer
->curr
);
2118 stream_getw(peer
->curr
);
2120 stream_get(&ipv6_sid
, peer
->curr
, 16);
2123 /* Placeholder code for the Originator SRGB type */
2124 else if (type
== BGP_PREFIX_SID_ORIGINATOR_SRGB
) {
2126 stream_getw(peer
->curr
);
2130 if (length
% BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
) {
2133 "Prefix SID Originator SRGB length is %d, it must be a multiple of %d ",
2134 length
, BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
);
2135 return bgp_attr_malformed(
2136 args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2140 srgb_count
= length
/ BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH
;
2142 for (int i
= 0; i
< srgb_count
; i
++) {
2143 stream_get(&srgb_base
, peer
->curr
, 3);
2144 stream_get(&srgb_range
, peer
->curr
, 3);
2148 return BGP_ATTR_PARSE_PROCEED
;
2151 /* Prefix SID attribute
2152 * draft-ietf-idr-bgp-prefix-sid-05
2154 bgp_attr_parse_ret_t
2155 bgp_attr_prefix_sid(int32_t tlength
, struct bgp_attr_parser_args
*args
,
2156 struct bgp_nlri
*mp_update
)
2158 struct peer
*const peer
= args
->peer
;
2159 struct attr
*const attr
= args
->attr
;
2160 bgp_attr_parse_ret_t ret
;
2162 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
);
2165 int32_t type
, length
;
2167 type
= stream_getc(peer
->curr
);
2168 length
= stream_getw(peer
->curr
);
2170 ret
= bgp_attr_psid_sub(type
, length
, args
, mp_update
);
2172 if (ret
!= BGP_ATTR_PARSE_PROCEED
)
2175 * Subtract length + the T and the L
2176 * since length is the Vector portion
2178 tlength
-= length
+ 3;
2183 "Prefix SID internal length %d causes us to read beyond the total Prefix SID length",
2185 return bgp_attr_malformed(args
,
2186 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2191 return BGP_ATTR_PARSE_PROCEED
;
2194 /* PMSI tunnel attribute (RFC 6514)
2195 * Basic validation checks done here.
2197 static bgp_attr_parse_ret_t
2198 bgp_attr_pmsi_tunnel(struct bgp_attr_parser_args
*args
)
2200 struct peer
*const peer
= args
->peer
;
2201 struct attr
*const attr
= args
->attr
;
2202 const bgp_size_t length
= args
->length
;
2205 /* Verify that the receiver is expecting "ingress replication" as we
2206 * can only support that.
2209 flog_err(EC_BGP_ATTR_LEN
, "Bad PMSI tunnel attribute length %d",
2211 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2214 stream_getc(peer
->curr
); /* Flags */
2215 tnl_type
= stream_getc(peer
->curr
);
2216 if (tnl_type
> PMSI_TNLTYPE_MAX
) {
2217 flog_err(EC_BGP_ATTR_PMSI_TYPE
,
2218 "Invalid PMSI tunnel attribute type %d", tnl_type
);
2219 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR
,
2222 if (tnl_type
== PMSI_TNLTYPE_INGR_REPL
) {
2224 flog_err(EC_BGP_ATTR_PMSI_LEN
,
2225 "Bad PMSI tunnel attribute length %d for IR",
2227 return bgp_attr_malformed(
2228 args
, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
,
2233 attr
->flag
|= ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL
);
2234 attr
->pmsi_tnl_type
= tnl_type
;
2236 /* Forward read pointer of input stream. */
2237 stream_forward_getp(peer
->curr
, length
- 2);
2239 return BGP_ATTR_PARSE_PROCEED
;
2242 /* BGP unknown attribute treatment. */
2243 static bgp_attr_parse_ret_t
bgp_attr_unknown(struct bgp_attr_parser_args
*args
)
2245 bgp_size_t total
= args
->total
;
2246 struct transit
*transit
;
2247 struct peer
*const peer
= args
->peer
;
2248 struct attr
*const attr
= args
->attr
;
2249 uint8_t *const startp
= args
->startp
;
2250 const uint8_t type
= args
->type
;
2251 const uint8_t flag
= args
->flags
;
2252 const bgp_size_t length
= args
->length
;
2254 if (bgp_debug_update(peer
, NULL
, NULL
, 1))
2256 "%s Unknown attribute is received (type %d, length %d)",
2257 peer
->host
, type
, length
);
2259 /* Forward read pointer of input stream. */
2260 stream_forward_getp(peer
->curr
, length
);
2262 /* If any of the mandatory well-known attributes are not recognized,
2263 then the Error Subcode is set to Unrecognized Well-known
2264 Attribute. The Data field contains the unrecognized attribute
2265 (type, length and value). */
2266 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_OPTIONAL
)) {
2267 return bgp_attr_malformed(args
, BGP_NOTIFY_UPDATE_UNREC_ATTR
,
2271 /* Unrecognized non-transitive optional attributes must be quietly
2272 ignored and not passed along to other BGP peers. */
2273 if (!CHECK_FLAG(flag
, BGP_ATTR_FLAG_TRANS
))
2274 return BGP_ATTR_PARSE_PROCEED
;
2276 /* If a path with recognized transitive optional attribute is
2277 accepted and passed along to other BGP peers and the Partial bit
2278 in the Attribute Flags octet is set to 1 by some previous AS, it
2279 is not set back to 0 by the current AS. */
2280 SET_FLAG(*startp
, BGP_ATTR_FLAG_PARTIAL
);
2282 /* Store transitive attribute to the end of attr->transit. */
2284 attr
->transit
= XCALLOC(MTYPE_TRANSIT
, sizeof(struct transit
));
2286 transit
= attr
->transit
;
2289 transit
->val
= XREALLOC(MTYPE_TRANSIT_VAL
, transit
->val
,
2290 transit
->length
+ total
);
2292 transit
->val
= XMALLOC(MTYPE_TRANSIT_VAL
, total
);
2294 memcpy(transit
->val
+ transit
->length
, startp
, total
);
2295 transit
->length
+= total
;
2297 return BGP_ATTR_PARSE_PROCEED
;
2300 /* Well-known attribute check. */
2301 static int bgp_attr_check(struct peer
*peer
, struct attr
*attr
)
2305 /* BGP Graceful-Restart End-of-RIB for IPv4 unicast is signaled as an
2307 if (CHECK_FLAG(peer
->cap
, PEER_CAP_RESTART_RCV
) && !attr
->flag
)
2308 return BGP_ATTR_PARSE_PROCEED
;
2310 /* "An UPDATE message that contains the MP_UNREACH_NLRI is not required
2311 to carry any other path attributes.", though if MP_REACH_NLRI or NLRI
2312 are present, it should. Check for any other attribute being present
2315 if ((!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
)) &&
2316 CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI
))))
2317 return BGP_ATTR_PARSE_PROCEED
;
2319 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_ORIGIN
)))
2320 type
= BGP_ATTR_ORIGIN
;
2322 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
)))
2323 type
= BGP_ATTR_AS_PATH
;
2325 /* RFC 2858 makes Next-Hop optional/ignored, if MP_REACH_NLRI is present
2327 * NLRI is empty. We can't easily check NLRI empty here though.
2329 if (!CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
))
2330 && !CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI
)))
2331 type
= BGP_ATTR_NEXT_HOP
;
2333 if (peer
->sort
== BGP_PEER_IBGP
2334 && !CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
)))
2335 type
= BGP_ATTR_LOCAL_PREF
;
2338 flog_warn(EC_BGP_MISSING_ATTRIBUTE
,
2339 "%s Missing well-known attribute %s.", peer
->host
,
2340 lookup_msg(attr_str
, type
, NULL
));
2341 bgp_notify_send_with_data(peer
, BGP_NOTIFY_UPDATE_ERR
,
2342 BGP_NOTIFY_UPDATE_MISS_ATTR
, &type
,
2344 return BGP_ATTR_PARSE_ERROR
;
2346 return BGP_ATTR_PARSE_PROCEED
;
2349 /* Read attribute of update packet. This function is called from
2350 bgp_update_receive() in bgp_packet.c. */
2351 bgp_attr_parse_ret_t
bgp_attr_parse(struct peer
*peer
, struct attr
*attr
,
2352 bgp_size_t size
, struct bgp_nlri
*mp_update
,
2353 struct bgp_nlri
*mp_withdraw
)
2355 bgp_attr_parse_ret_t ret
;
2359 uint8_t *startp
, *endp
;
2361 uint8_t seen
[BGP_ATTR_BITMAP_SIZE
];
2362 /* we need the as4_path only until we have synthesized the as_path with
2364 /* same goes for as4_aggregator */
2365 struct aspath
*as4_path
= NULL
;
2366 as_t as4_aggregator
= 0;
2367 struct in_addr as4_aggregator_addr
= {.s_addr
= 0};
2369 /* Initialize bitmap. */
2370 memset(seen
, 0, BGP_ATTR_BITMAP_SIZE
);
2372 /* End pointer of BGP attribute. */
2373 endp
= BGP_INPUT_PNT(peer
) + size
;
2375 /* Get attributes to the end of attribute length. */
2376 while (BGP_INPUT_PNT(peer
) < endp
) {
2377 /* Check remaining length check.*/
2378 if (endp
- BGP_INPUT_PNT(peer
) < BGP_ATTR_MIN_LEN
) {
2379 /* XXX warning: long int format, int arg (arg 5) */
2381 EC_BGP_ATTRIBUTE_TOO_SMALL
,
2382 "%s: error BGP attribute length %lu is smaller than min len",
2384 (unsigned long)(endp
2385 - stream_pnt(BGP_INPUT(peer
))));
2387 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2388 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2389 return BGP_ATTR_PARSE_ERROR
;
2392 /* Fetch attribute flag and type. */
2393 startp
= BGP_INPUT_PNT(peer
);
2394 /* "The lower-order four bits of the Attribute Flags octet are
2395 unused. They MUST be zero when sent and MUST be ignored when
2397 flag
= 0xF0 & stream_getc(BGP_INPUT(peer
));
2398 type
= stream_getc(BGP_INPUT(peer
));
2400 /* Check whether Extended-Length applies and is in bounds */
2401 if (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
)
2402 && ((endp
- startp
) < (BGP_ATTR_MIN_LEN
+ 1))) {
2404 EC_BGP_EXT_ATTRIBUTE_TOO_SMALL
,
2405 "%s: Extended length set, but just %lu bytes of attr header",
2407 (unsigned long)(endp
2408 - stream_pnt(BGP_INPUT(peer
))));
2410 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2411 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2412 return BGP_ATTR_PARSE_ERROR
;
2415 /* Check extended attribue length bit. */
2416 if (CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
))
2417 length
= stream_getw(BGP_INPUT(peer
));
2419 length
= stream_getc(BGP_INPUT(peer
));
2421 /* If any attribute appears more than once in the UPDATE
2422 message, then the Error Subcode is set to Malformed Attribute
2425 if (CHECK_BITMAP(seen
, type
)) {
2427 EC_BGP_ATTRIBUTE_REPEATED
,
2428 "%s: error BGP attribute type %d appears twice in a message",
2431 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2432 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2433 return BGP_ATTR_PARSE_ERROR
;
2436 /* Set type to bitmap to check duplicate attribute. `type' is
2437 unsigned char so it never overflow bitmap range. */
2439 SET_BITMAP(seen
, type
);
2441 /* Overflow check. */
2442 attr_endp
= BGP_INPUT_PNT(peer
) + length
;
2444 if (attr_endp
> endp
) {
2446 EC_BGP_ATTRIBUTE_TOO_LARGE
,
2447 "%s: BGP type %d length %d is too large, attribute total length is %d. attr_endp is %p. endp is %p",
2448 peer
->host
, type
, length
, size
, attr_endp
,
2452 * If any recognized attribute has an Attribute
2453 * Length that conflicts with the expected length
2454 * (based on the attribute type code), then the
2455 * Error Subcode MUST be set to Attribute Length
2456 * Error. The Data field MUST contain the erroneous
2457 * attribute (type, length, and value).
2459 * We do not currently have a good way to determine the
2460 * length of the attribute independent of the length
2461 * received in the message. Instead we send the
2462 * minimum between the amount of data we have and the
2463 * amount specified by the attribute length field.
2465 * Instead of directly passing in the packet buffer and
2466 * offset we use the stream_get* functions to read into
2467 * a stack buffer, since they perform bounds checking
2468 * and we are working with untrusted data.
2470 unsigned char ndata
[BGP_MAX_PACKET_SIZE
];
2471 memset(ndata
, 0x00, sizeof(ndata
));
2473 CHECK_FLAG(flag
, BGP_ATTR_FLAG_EXTLEN
) ? 2 : 1;
2474 /* Rewind to end of flag field */
2475 stream_forward_getp(BGP_INPUT(peer
), -(1 + lfl
));
2477 stream_get(&ndata
[0], BGP_INPUT(peer
), 1);
2479 stream_get(&ndata
[1], BGP_INPUT(peer
), lfl
);
2481 size_t atl
= attr_endp
- startp
;
2482 size_t ndl
= MIN(atl
, STREAM_READABLE(BGP_INPUT(peer
)));
2483 stream_get(&ndata
[lfl
+ 1], BGP_INPUT(peer
), ndl
);
2485 bgp_notify_send_with_data(
2486 peer
, BGP_NOTIFY_UPDATE_ERR
,
2487 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
, ndata
,
2490 return BGP_ATTR_PARSE_ERROR
;
2493 struct bgp_attr_parser_args attr_args
= {
2500 .total
= attr_endp
- startp
,
2504 /* If any recognized attribute has Attribute Flags that conflict
2505 with the Attribute Type Code, then the Error Subcode is set
2507 Attribute Flags Error. The Data field contains the erroneous
2508 attribute (type, length and value). */
2509 if (bgp_attr_flag_invalid(&attr_args
)) {
2510 ret
= bgp_attr_malformed(
2511 &attr_args
, BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR
,
2513 if (ret
== BGP_ATTR_PARSE_PROCEED
)
2518 /* OK check attribute and store it's value. */
2520 case BGP_ATTR_ORIGIN
:
2521 ret
= bgp_attr_origin(&attr_args
);
2523 case BGP_ATTR_AS_PATH
:
2524 ret
= bgp_attr_aspath(&attr_args
);
2526 case BGP_ATTR_AS4_PATH
:
2527 ret
= bgp_attr_as4_path(&attr_args
, &as4_path
);
2529 case BGP_ATTR_NEXT_HOP
:
2530 ret
= bgp_attr_nexthop(&attr_args
);
2532 case BGP_ATTR_MULTI_EXIT_DISC
:
2533 ret
= bgp_attr_med(&attr_args
);
2535 case BGP_ATTR_LOCAL_PREF
:
2536 ret
= bgp_attr_local_pref(&attr_args
);
2538 case BGP_ATTR_ATOMIC_AGGREGATE
:
2539 ret
= bgp_attr_atomic(&attr_args
);
2541 case BGP_ATTR_AGGREGATOR
:
2542 ret
= bgp_attr_aggregator(&attr_args
);
2544 case BGP_ATTR_AS4_AGGREGATOR
:
2545 ret
= bgp_attr_as4_aggregator(&attr_args
,
2547 &as4_aggregator_addr
);
2549 case BGP_ATTR_COMMUNITIES
:
2550 ret
= bgp_attr_community(&attr_args
);
2552 case BGP_ATTR_LARGE_COMMUNITIES
:
2553 ret
= bgp_attr_large_community(&attr_args
);
2555 case BGP_ATTR_ORIGINATOR_ID
:
2556 ret
= bgp_attr_originator_id(&attr_args
);
2558 case BGP_ATTR_CLUSTER_LIST
:
2559 ret
= bgp_attr_cluster_list(&attr_args
);
2561 case BGP_ATTR_MP_REACH_NLRI
:
2562 ret
= bgp_mp_reach_parse(&attr_args
, mp_update
);
2564 case BGP_ATTR_MP_UNREACH_NLRI
:
2565 ret
= bgp_mp_unreach_parse(&attr_args
, mp_withdraw
);
2567 case BGP_ATTR_EXT_COMMUNITIES
:
2568 ret
= bgp_attr_ext_communities(&attr_args
);
2573 case BGP_ATTR_ENCAP
:
2574 ret
= bgp_attr_encap(type
, peer
, length
, attr
, flag
,
2577 case BGP_ATTR_PREFIX_SID
:
2578 ret
= bgp_attr_prefix_sid(length
,
2579 &attr_args
, mp_update
);
2581 case BGP_ATTR_PMSI_TUNNEL
:
2582 ret
= bgp_attr_pmsi_tunnel(&attr_args
);
2585 ret
= bgp_attr_unknown(&attr_args
);
2589 if (ret
== BGP_ATTR_PARSE_ERROR_NOTIFYPLS
) {
2590 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2591 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2592 ret
= BGP_ATTR_PARSE_ERROR
;
2595 if (ret
== BGP_ATTR_PARSE_EOR
) {
2597 aspath_unintern(&as4_path
);
2601 /* If hard error occured immediately return to the caller. */
2602 if (ret
== BGP_ATTR_PARSE_ERROR
) {
2603 flog_warn(EC_BGP_ATTRIBUTE_PARSE_ERROR
,
2604 "%s: Attribute %s, parse error", peer
->host
,
2605 lookup_msg(attr_str
, type
, NULL
));
2607 aspath_unintern(&as4_path
);
2610 if (ret
== BGP_ATTR_PARSE_WITHDRAW
) {
2613 EC_BGP_ATTRIBUTE_PARSE_WITHDRAW
,
2614 "%s: Attribute %s, parse error - treating as withdrawal",
2615 peer
->host
, lookup_msg(attr_str
, type
, NULL
));
2617 aspath_unintern(&as4_path
);
2621 /* Check the fetched length. */
2622 if (BGP_INPUT_PNT(peer
) != attr_endp
) {
2623 flog_warn(EC_BGP_ATTRIBUTE_FETCH_ERROR
,
2624 "%s: BGP attribute %s, fetch error",
2625 peer
->host
, lookup_msg(attr_str
, type
, NULL
));
2626 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2627 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2629 aspath_unintern(&as4_path
);
2630 return BGP_ATTR_PARSE_ERROR
;
2634 /* Check final read pointer is same as end pointer. */
2635 if (BGP_INPUT_PNT(peer
) != endp
) {
2636 flog_warn(EC_BGP_ATTRIBUTES_MISMATCH
,
2637 "%s: BGP attribute %s, length mismatch", peer
->host
,
2638 lookup_msg(attr_str
, type
, NULL
));
2639 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2640 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR
);
2642 aspath_unintern(&as4_path
);
2643 return BGP_ATTR_PARSE_ERROR
;
2646 /* Check all mandatory well-known attributes are present */
2647 if ((ret
= bgp_attr_check(peer
, attr
)) < 0) {
2649 aspath_unintern(&as4_path
);
2654 * At this place we can see whether we got AS4_PATH and/or
2655 * AS4_AGGREGATOR from a 16Bit peer and act accordingly.
2656 * We can not do this before we've read all attributes because
2657 * the as4 handling does not say whether AS4_PATH has to be sent
2658 * after AS_PATH or not - and when AS4_AGGREGATOR will be send
2659 * in relationship to AGGREGATOR.
2660 * So, to be defensive, we are not relying on any order and read
2661 * all attributes first, including these 32bit ones, and now,
2662 * afterwards, we look what and if something is to be done for as4.
2664 * It is possible to not have AS_PATH, e.g. GR EoR and sole
2667 /* actually... this doesn't ever return failure currently, but
2668 * better safe than sorry */
2669 if (CHECK_FLAG(attr
->flag
, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
))
2670 && bgp_attr_munge_as4_attrs(peer
, attr
, as4_path
, as4_aggregator
,
2671 &as4_aggregator_addr
)) {
2672 bgp_notify_send(peer
, BGP_NOTIFY_UPDATE_ERR
,
2673 BGP_NOTIFY_UPDATE_MAL_ATTR
);
2675 aspath_unintern(&as4_path
);
2676 return BGP_ATTR_PARSE_ERROR
;
2679 /* At this stage, we have done all fiddling with as4, and the
2680 * resulting info is in attr->aggregator resp. attr->aspath
2681 * so we can chuck as4_aggregator and as4_path alltogether in
2682 * order to save memory
2685 aspath_unintern(&as4_path
); /* unintern - it is in the hash */
2686 /* The flag that we got this is still there, but that does not
2691 * The "rest" of the code does nothing with as4_aggregator.
2692 * there is no memory attached specifically which is not part
2694 * so ignoring just means do nothing.
2697 * Finally do the checks on the aspath we did not do yet
2698 * because we waited for a potentially synthesized aspath.
2700 if (attr
->flag
& (ATTR_FLAG_BIT(BGP_ATTR_AS_PATH
))) {
2701 ret
= bgp_attr_aspath_check(peer
, attr
);
2702 if (ret
!= BGP_ATTR_PARSE_PROCEED
)
2705 /* Finally intern unknown attribute. */
2707 attr
->transit
= transit_intern(attr
->transit
);
2708 if (attr
->encap_subtlvs
)
2709 attr
->encap_subtlvs
=
2710 encap_intern(attr
->encap_subtlvs
, ENCAP_SUBTLV_TYPE
);
2712 if (attr
->vnc_subtlvs
)
2714 encap_intern(attr
->vnc_subtlvs
, VNC_SUBTLV_TYPE
);
2717 return BGP_ATTR_PARSE_PROCEED
;
2720 size_t bgp_packet_mpattr_start(struct stream
*s
, struct peer
*peer
, afi_t afi
,
2721 safi_t safi
, struct bpacket_attr_vec_arr
*vecarr
,
2726 iana_safi_t pkt_safi
;
2729 /* Set extended bit always to encode the attribute length as 2 bytes */
2730 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_EXTLEN
);
2731 stream_putc(s
, BGP_ATTR_MP_REACH_NLRI
);
2732 sizep
= stream_get_endp(s
);
2733 stream_putw(s
, 0); /* Marker: Attribute length. */
2736 /* Convert AFI, SAFI to values for packet. */
2737 bgp_map_afi_safi_int2iana(afi
, safi
, &pkt_afi
, &pkt_safi
);
2739 stream_putw(s
, pkt_afi
); /* AFI */
2740 stream_putc(s
, pkt_safi
); /* SAFI */
2744 && (safi
== SAFI_UNICAST
|| safi
== SAFI_LABELED_UNICAST
))
2745 nh_afi
= peer_cap_enhe(peer
, afi
, safi
) ? AFI_IP6
: AFI_IP
;
2747 nh_afi
= BGP_NEXTHOP_AFI_FROM_NHLEN(attr
->mp_nexthop_len
);
2750 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
, attr
);
2755 case SAFI_MULTICAST
:
2756 case SAFI_LABELED_UNICAST
:
2758 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
2762 stream_putl(s
, 0); /* RD = 0, per RFC */
2764 stream_put(s
, &attr
->mp_nexthop_global_in
, 4);
2769 stream_put(s
, &attr
->mp_nexthop_global_in
, 4);
2772 stream_putc(s
, 0); /* no nexthop for flowspec */
2780 case SAFI_MULTICAST
:
2781 case SAFI_LABELED_UNICAST
:
2783 if (attr
->mp_nexthop_len
2784 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
) {
2786 BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
);
2787 stream_put(s
, &attr
->mp_nexthop_global
,
2789 stream_put(s
, &attr
->mp_nexthop_local
,
2792 stream_putc(s
, IPV6_MAX_BYTELEN
);
2793 stream_put(s
, &attr
->mp_nexthop_global
,
2797 case SAFI_MPLS_VPN
: {
2798 if (attr
->mp_nexthop_len
2799 == BGP_ATTR_NHLEN_IPV6_GLOBAL
) {
2801 stream_putl(s
, 0); /* RD = 0, per RFC */
2803 stream_put(s
, &attr
->mp_nexthop_global
,
2805 } else if (attr
->mp_nexthop_len
2806 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
) {
2808 stream_putl(s
, 0); /* RD = 0, per RFC */
2810 stream_put(s
, &attr
->mp_nexthop_global
,
2812 stream_putl(s
, 0); /* RD = 0, per RFC */
2814 stream_put(s
, &attr
->mp_nexthop_local
,
2819 stream_putc(s
, IPV6_MAX_BYTELEN
);
2820 stream_put(s
, &attr
->mp_nexthop_global
,
2824 stream_putc(s
, 0); /* no nexthop for flowspec */
2830 if (safi
!= SAFI_FLOWSPEC
)
2832 EC_BGP_ATTR_NH_SEND_LEN
,
2833 "Bad nexthop when sending to %s, AFI %u SAFI %u nhlen %d",
2834 peer
->host
, afi
, safi
, attr
->mp_nexthop_len
);
2843 void bgp_packet_mpattr_prefix(struct stream
*s
, afi_t afi
, safi_t safi
,
2844 struct prefix
*p
, struct prefix_rd
*prd
,
2845 mpls_label_t
*label
, uint32_t num_labels
,
2846 int addpath_encode
, uint32_t addpath_tx_id
,
2849 if (safi
== SAFI_MPLS_VPN
) {
2851 stream_putl(s
, addpath_tx_id
);
2852 /* Label, RD, Prefix write. */
2853 stream_putc(s
, p
->prefixlen
+ 88);
2854 stream_put(s
, label
, BGP_LABEL_BYTES
);
2855 stream_put(s
, prd
->val
, 8);
2856 stream_put(s
, &p
->u
.prefix
, PSIZE(p
->prefixlen
));
2857 } else if (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
) {
2858 /* EVPN prefix - contents depend on type */
2859 bgp_evpn_encode_prefix(s
, p
, prd
, label
, num_labels
, attr
,
2860 addpath_encode
, addpath_tx_id
);
2861 } else if (safi
== SAFI_LABELED_UNICAST
) {
2862 /* Prefix write with label. */
2863 stream_put_labeled_prefix(s
, p
, label
);
2864 } else if (safi
== SAFI_FLOWSPEC
) {
2865 if (PSIZE (p
->prefixlen
)+2 < FLOWSPEC_NLRI_SIZELIMIT
)
2866 stream_putc(s
, PSIZE (p
->prefixlen
)+2);
2868 stream_putw(s
, (PSIZE (p
->prefixlen
)+2)|(0xf<<12));
2869 stream_putc(s
, 2);/* Filter type */
2870 stream_putc(s
, p
->prefixlen
);/* Prefix length */
2871 stream_put(s
, &p
->u
.prefix
, PSIZE (p
->prefixlen
));
2873 stream_put_prefix_addpath(s
, p
, addpath_encode
, addpath_tx_id
);
2876 size_t bgp_packet_mpattr_prefix_size(afi_t afi
, safi_t safi
, struct prefix
*p
)
2878 int size
= PSIZE(p
->prefixlen
);
2879 if (safi
== SAFI_MPLS_VPN
)
2881 else if (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
)
2882 size
+= 232; // TODO: Maximum possible for type-2, type-3 and
2888 * Encodes the tunnel encapsulation attribute,
2889 * and with ENABLE_BGP_VNC the VNC attribute which uses
2890 * almost the same TLV format
2892 static void bgp_packet_mpattr_tea(struct bgp
*bgp
, struct peer
*peer
,
2893 struct stream
*s
, struct attr
*attr
,
2896 unsigned int attrlenfield
= 0;
2897 unsigned int attrhdrlen
= 0;
2898 struct bgp_attr_encap_subtlv
*subtlvs
;
2899 struct bgp_attr_encap_subtlv
*st
;
2900 const char *attrname
;
2902 if (!attr
|| (attrtype
== BGP_ATTR_ENCAP
2903 && (!attr
->encap_tunneltype
2904 || attr
->encap_tunneltype
== BGP_ENCAP_TYPE_MPLS
)))
2908 case BGP_ATTR_ENCAP
:
2909 attrname
= "Tunnel Encap";
2910 subtlvs
= attr
->encap_subtlvs
;
2911 if (subtlvs
== NULL
) /* nothing to do */
2914 * The tunnel encap attr has an "outer" tlv.
2916 * L = total length of subtlvs,
2917 * V = concatenated subtlvs.
2919 attrlenfield
= 2 + 2; /* T + L */
2920 attrhdrlen
= 1 + 1; /* subTLV T + L */
2926 subtlvs
= attr
->vnc_subtlvs
;
2927 if (subtlvs
== NULL
) /* nothing to do */
2929 attrlenfield
= 0; /* no outer T + L */
2930 attrhdrlen
= 2 + 2; /* subTLV T + L */
2938 /* compute attr length */
2939 for (st
= subtlvs
; st
; st
= st
->next
) {
2940 attrlenfield
+= (attrhdrlen
+ st
->length
);
2943 if (attrlenfield
> 0xffff) {
2944 zlog_info("%s attribute is too long (length=%d), can't send it",
2945 attrname
, attrlenfield
);
2949 if (attrlenfield
> 0xff) {
2950 /* 2-octet length field */
2952 BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
2953 | BGP_ATTR_FLAG_EXTLEN
);
2954 stream_putc(s
, attrtype
);
2955 stream_putw(s
, attrlenfield
& 0xffff);
2957 /* 1-octet length field */
2958 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
);
2959 stream_putc(s
, attrtype
);
2960 stream_putc(s
, attrlenfield
& 0xff);
2963 if (attrtype
== BGP_ATTR_ENCAP
) {
2964 /* write outer T+L */
2965 stream_putw(s
, attr
->encap_tunneltype
);
2966 stream_putw(s
, attrlenfield
- 4);
2969 /* write each sub-tlv */
2970 for (st
= subtlvs
; st
; st
= st
->next
) {
2971 if (attrtype
== BGP_ATTR_ENCAP
) {
2972 stream_putc(s
, st
->type
);
2973 stream_putc(s
, st
->length
);
2976 stream_putw(s
, st
->type
);
2977 stream_putw(s
, st
->length
);
2980 stream_put(s
, st
->value
, st
->length
);
2984 void bgp_packet_mpattr_end(struct stream
*s
, size_t sizep
)
2986 /* Set MP attribute length. Don't count the (2) bytes used to encode
2988 stream_putw_at(s
, sizep
, (stream_get_endp(s
) - sizep
) - 2);
2991 /* Make attribute packet. */
2992 bgp_size_t
bgp_packet_attribute(struct bgp
*bgp
, struct peer
*peer
,
2993 struct stream
*s
, struct attr
*attr
,
2994 struct bpacket_attr_vec_arr
*vecarr
,
2995 struct prefix
*p
, afi_t afi
, safi_t safi
,
2996 struct peer
*from
, struct prefix_rd
*prd
,
2997 mpls_label_t
*label
, uint32_t num_labels
,
2998 int addpath_encode
, uint32_t addpath_tx_id
)
3001 size_t aspath_sizep
;
3002 struct aspath
*aspath
;
3003 int send_as4_path
= 0;
3004 int send_as4_aggregator
= 0;
3005 int use32bit
= (CHECK_FLAG(peer
->cap
, PEER_CAP_AS4_RCV
)) ? 1 : 0;
3010 /* Remember current pointer. */
3011 cp
= stream_get_endp(s
);
3014 && !((afi
== AFI_IP
&& safi
== SAFI_UNICAST
)
3015 && !peer_cap_enhe(peer
, afi
, safi
))) {
3016 size_t mpattrlen_pos
= 0;
3018 mpattrlen_pos
= bgp_packet_mpattr_start(s
, peer
, afi
, safi
,
3020 bgp_packet_mpattr_prefix(s
, afi
, safi
, p
, prd
, label
,
3021 num_labels
, addpath_encode
,
3022 addpath_tx_id
, attr
);
3023 bgp_packet_mpattr_end(s
, mpattrlen_pos
);
3026 /* Origin attribute. */
3027 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3028 stream_putc(s
, BGP_ATTR_ORIGIN
);
3030 stream_putc(s
, attr
->origin
);
3032 /* AS path attribute. */
3034 /* If remote-peer is EBGP */
3035 if (peer
->sort
== BGP_PEER_EBGP
3036 && (!CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3037 PEER_FLAG_AS_PATH_UNCHANGED
)
3038 || attr
->aspath
->segments
== NULL
)
3039 && (!CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3040 PEER_FLAG_RSERVER_CLIENT
))) {
3041 aspath
= aspath_dup(attr
->aspath
);
3043 /* Even though we may not be configured for confederations we
3045 * RXed an AS_PATH with AS_CONFED_SEQUENCE or AS_CONFED_SET */
3046 aspath
= aspath_delete_confed_seq(aspath
);
3048 if (CHECK_FLAG(bgp
->config
, BGP_CONFIG_CONFEDERATION
)) {
3049 /* Stuff our path CONFED_ID on the front */
3050 aspath
= aspath_add_seq(aspath
, bgp
->confed_id
);
3052 if (peer
->change_local_as
) {
3053 /* If replace-as is specified, we only use the
3054 change_local_as when
3055 advertising routes. */
3058 PEER_FLAG_LOCAL_AS_REPLACE_AS
)) {
3059 aspath
= aspath_add_seq(aspath
,
3062 aspath
= aspath_add_seq(aspath
,
3063 peer
->change_local_as
);
3065 aspath
= aspath_add_seq(aspath
, peer
->local_as
);
3068 } else if (peer
->sort
== BGP_PEER_CONFED
) {
3069 /* A confed member, so we need to do the AS_CONFED_SEQUENCE
3071 aspath
= aspath_dup(attr
->aspath
);
3072 aspath
= aspath_add_confed_seq(aspath
, peer
->local_as
);
3074 aspath
= attr
->aspath
;
3076 /* If peer is not AS4 capable, then:
3077 * - send the created AS_PATH out as AS4_PATH (optional, transitive),
3078 * but ensure that no AS_CONFED_SEQUENCE and AS_CONFED_SET path
3080 * types are in it (i.e. exclude them if they are there)
3081 * AND do this only if there is at least one asnum > 65535 in the
3083 * - send an AS_PATH out, but put 16Bit ASnums in it, not 32bit, and
3085 * all ASnums > 65535 to BGP_AS_TRANS
3088 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_EXTLEN
);
3089 stream_putc(s
, BGP_ATTR_AS_PATH
);
3090 aspath_sizep
= stream_get_endp(s
);
3092 stream_putw_at(s
, aspath_sizep
, aspath_put(s
, aspath
, use32bit
));
3094 /* OLD session may need NEW_AS_PATH sent, if there are 4-byte ASNs
3097 if (!use32bit
&& aspath_has_as4(aspath
))
3099 1; /* we'll do this later, at the correct place */
3101 /* Nexthop attribute. */
3102 if (afi
== AFI_IP
&& safi
== SAFI_UNICAST
3103 && !peer_cap_enhe(peer
, afi
, safi
)) {
3104 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP
)) {
3105 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3106 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3107 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
,
3110 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3111 } else if (peer_cap_enhe(from
, afi
, safi
)) {
3113 * Likely this is the case when an IPv4 prefix was
3115 * Extended Next-hop capability and now being advertised
3118 * Setting the mandatory (ipv4) next-hop attribute here
3120 * implicit next-hop self with correct (ipv4 address
3123 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3124 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3125 bpacket_attr_vec_arr_set_vec(vecarr
, BGP_ATTR_VEC_NH
, s
,
3128 stream_put_ipv4(s
, 0);
3132 /* MED attribute. */
3133 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
)
3134 || bgp
->maxmed_active
) {
3135 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3136 stream_putc(s
, BGP_ATTR_MULTI_EXIT_DISC
);
3138 stream_putl(s
, (bgp
->maxmed_active
? bgp
->maxmed_value
3142 /* Local preference. */
3143 if (peer
->sort
== BGP_PEER_IBGP
|| peer
->sort
== BGP_PEER_CONFED
) {
3144 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3145 stream_putc(s
, BGP_ATTR_LOCAL_PREF
);
3147 stream_putl(s
, attr
->local_pref
);
3150 /* Atomic aggregate. */
3151 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
)) {
3152 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3153 stream_putc(s
, BGP_ATTR_ATOMIC_AGGREGATE
);
3158 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
)) {
3159 /* Common to BGP_ATTR_AGGREGATOR, regardless of ASN size */
3160 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3161 stream_putc(s
, BGP_ATTR_AGGREGATOR
);
3164 /* AS4 capable peer */
3166 stream_putl(s
, attr
->aggregator_as
);
3168 /* 2-byte AS peer */
3171 /* Is ASN representable in 2-bytes? Or must AS_TRANS be
3173 if (attr
->aggregator_as
> 65535) {
3174 stream_putw(s
, BGP_AS_TRANS
);
3176 /* we have to send AS4_AGGREGATOR, too.
3177 * we'll do that later in order to send
3178 * attributes in ascending
3181 send_as4_aggregator
= 1;
3183 stream_putw(s
, (uint16_t)attr
->aggregator_as
);
3185 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3188 /* Community attribute. */
3189 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
], PEER_FLAG_SEND_COMMUNITY
)
3190 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
))) {
3191 if (attr
->community
->size
* 4 > 255) {
3193 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3194 | BGP_ATTR_FLAG_EXTLEN
);
3195 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3196 stream_putw(s
, attr
->community
->size
* 4);
3199 BGP_ATTR_FLAG_OPTIONAL
3200 | BGP_ATTR_FLAG_TRANS
);
3201 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3202 stream_putc(s
, attr
->community
->size
* 4);
3204 stream_put(s
, attr
->community
->val
, attr
->community
->size
* 4);
3208 * Large Community attribute.
3210 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
],
3211 PEER_FLAG_SEND_LARGE_COMMUNITY
)
3212 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
))) {
3213 if (lcom_length(attr
->lcommunity
) > 255) {
3215 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3216 | BGP_ATTR_FLAG_EXTLEN
);
3217 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3218 stream_putw(s
, lcom_length(attr
->lcommunity
));
3221 BGP_ATTR_FLAG_OPTIONAL
3222 | BGP_ATTR_FLAG_TRANS
);
3223 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3224 stream_putc(s
, lcom_length(attr
->lcommunity
));
3226 stream_put(s
, attr
->lcommunity
->val
,
3227 lcom_length(attr
->lcommunity
));
3230 /* Route Reflector. */
3231 if (peer
->sort
== BGP_PEER_IBGP
&& from
3232 && from
->sort
== BGP_PEER_IBGP
) {
3233 /* Originator ID. */
3234 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3235 stream_putc(s
, BGP_ATTR_ORIGINATOR_ID
);
3238 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID
))
3239 stream_put_in_addr(s
, &attr
->originator_id
);
3241 stream_put_in_addr(s
, &from
->remote_id
);
3244 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3245 stream_putc(s
, BGP_ATTR_CLUSTER_LIST
);
3247 if (attr
->cluster
) {
3248 stream_putc(s
, attr
->cluster
->length
+ 4);
3249 /* If this peer configuration's parent BGP has
3251 if (bgp
->config
& BGP_CONFIG_CLUSTER_ID
)
3252 stream_put_in_addr(s
, &bgp
->cluster_id
);
3254 stream_put_in_addr(s
, &bgp
->router_id
);
3255 stream_put(s
, attr
->cluster
->list
,
3256 attr
->cluster
->length
);
3259 /* If this peer configuration's parent BGP has
3261 if (bgp
->config
& BGP_CONFIG_CLUSTER_ID
)
3262 stream_put_in_addr(s
, &bgp
->cluster_id
);
3264 stream_put_in_addr(s
, &bgp
->router_id
);
3268 /* Extended Communities attribute. */
3269 if (CHECK_FLAG(peer
->af_flags
[afi
][safi
], PEER_FLAG_SEND_EXT_COMMUNITY
)
3270 && (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES
))) {
3271 if (peer
->sort
== BGP_PEER_IBGP
3272 || peer
->sort
== BGP_PEER_CONFED
) {
3273 if (attr
->ecommunity
->size
* 8 > 255) {
3275 BGP_ATTR_FLAG_OPTIONAL
3276 | BGP_ATTR_FLAG_TRANS
3277 | BGP_ATTR_FLAG_EXTLEN
);
3278 stream_putc(s
, BGP_ATTR_EXT_COMMUNITIES
);
3279 stream_putw(s
, attr
->ecommunity
->size
* 8);
3282 BGP_ATTR_FLAG_OPTIONAL
3283 | BGP_ATTR_FLAG_TRANS
);
3284 stream_putc(s
, BGP_ATTR_EXT_COMMUNITIES
);
3285 stream_putc(s
, attr
->ecommunity
->size
* 8);
3287 stream_put(s
, attr
->ecommunity
->val
,
3288 attr
->ecommunity
->size
* 8);
3292 int ecom_tr_size
= 0;
3295 for (i
= 0; i
< attr
->ecommunity
->size
; i
++) {
3296 pnt
= attr
->ecommunity
->val
+ (i
* 8);
3299 if (CHECK_FLAG(tbit
,
3300 ECOMMUNITY_FLAG_NON_TRANSITIVE
))
3307 if (ecom_tr_size
* 8 > 255) {
3310 BGP_ATTR_FLAG_OPTIONAL
3311 | BGP_ATTR_FLAG_TRANS
3312 | BGP_ATTR_FLAG_EXTLEN
);
3314 BGP_ATTR_EXT_COMMUNITIES
);
3315 stream_putw(s
, ecom_tr_size
* 8);
3319 BGP_ATTR_FLAG_OPTIONAL
3320 | BGP_ATTR_FLAG_TRANS
);
3322 BGP_ATTR_EXT_COMMUNITIES
);
3323 stream_putc(s
, ecom_tr_size
* 8);
3326 for (i
= 0; i
< attr
->ecommunity
->size
; i
++) {
3327 pnt
= attr
->ecommunity
->val
+ (i
* 8);
3332 ECOMMUNITY_FLAG_NON_TRANSITIVE
))
3335 stream_put(s
, pnt
, 8);
3341 /* Label index attribute. */
3342 if (safi
== SAFI_LABELED_UNICAST
) {
3343 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
)) {
3344 uint32_t label_index
;
3346 label_index
= attr
->label_index
;
3348 if (label_index
!= BGP_INVALID_LABEL_INDEX
) {
3350 BGP_ATTR_FLAG_OPTIONAL
3351 | BGP_ATTR_FLAG_TRANS
);
3352 stream_putc(s
, BGP_ATTR_PREFIX_SID
);
3354 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX
);
3356 BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
3357 stream_putc(s
, 0); // reserved
3358 stream_putw(s
, 0); // flags
3359 stream_putl(s
, label_index
);
3364 if (send_as4_path
) {
3365 /* If the peer is NOT As4 capable, AND */
3366 /* there are ASnums > 65535 in path THEN
3367 * give out AS4_PATH */
3369 /* Get rid of all AS_CONFED_SEQUENCE and AS_CONFED_SET
3371 * Hm, I wonder... confederation things *should* only be at
3372 * the beginning of an aspath, right? Then we should use
3373 * aspath_delete_confed_seq for this, because it is already
3375 * Folks, talk to me: what is reasonable here!?
3377 aspath
= aspath_delete_confed_seq(aspath
);
3380 BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_OPTIONAL
3381 | BGP_ATTR_FLAG_EXTLEN
);
3382 stream_putc(s
, BGP_ATTR_AS4_PATH
);
3383 aspath_sizep
= stream_get_endp(s
);
3385 stream_putw_at(s
, aspath_sizep
, aspath_put(s
, aspath
, 1));
3388 if (aspath
!= attr
->aspath
)
3389 aspath_free(aspath
);
3391 if (send_as4_aggregator
) {
3392 /* send AS4_AGGREGATOR, at this place */
3393 /* this section of code moved here in order to ensure the
3395 * *ascending* order of attributes
3397 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3398 stream_putc(s
, BGP_ATTR_AS4_AGGREGATOR
);
3400 stream_putl(s
, attr
->aggregator_as
);
3401 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3404 if (((afi
== AFI_IP
|| afi
== AFI_IP6
)
3405 && (safi
== SAFI_ENCAP
|| safi
== SAFI_MPLS_VPN
))
3406 || (afi
== AFI_L2VPN
&& safi
== SAFI_EVPN
)) {
3407 /* Tunnel Encap attribute */
3408 bgp_packet_mpattr_tea(bgp
, peer
, s
, attr
, BGP_ATTR_ENCAP
);
3412 bgp_packet_mpattr_tea(bgp
, peer
, s
, attr
, BGP_ATTR_VNC
);
3417 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL
)) {
3418 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3419 stream_putc(s
, BGP_ATTR_PMSI_TUNNEL
);
3420 stream_putc(s
, 9); // Length
3421 stream_putc(s
, 0); // Flags
3422 stream_putc(s
, PMSI_TNLTYPE_INGR_REPL
); // IR (6)
3423 stream_put(s
, &(attr
->label
),
3424 BGP_LABEL_BYTES
); // MPLS Label / VXLAN VNI
3425 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3426 // Unicast tunnel endpoint IP address
3429 /* Unknown transit attribute. */
3431 stream_put(s
, attr
->transit
->val
, attr
->transit
->length
);
3433 /* Return total size of attribute. */
3434 return stream_get_endp(s
) - cp
;
3437 size_t bgp_packet_mpunreach_start(struct stream
*s
, afi_t afi
, safi_t safi
)
3439 unsigned long attrlen_pnt
;
3441 iana_safi_t pkt_safi
;
3443 /* Set extended bit always to encode the attribute length as 2 bytes */
3444 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_EXTLEN
);
3445 stream_putc(s
, BGP_ATTR_MP_UNREACH_NLRI
);
3447 attrlen_pnt
= stream_get_endp(s
);
3448 stream_putw(s
, 0); /* Length of this attribute. */
3450 /* Convert AFI, SAFI to values for packet. */
3451 bgp_map_afi_safi_int2iana(afi
, safi
, &pkt_afi
, &pkt_safi
);
3453 stream_putw(s
, pkt_afi
);
3454 stream_putc(s
, pkt_safi
);
3459 void bgp_packet_mpunreach_prefix(struct stream
*s
, struct prefix
*p
, afi_t afi
,
3460 safi_t safi
, struct prefix_rd
*prd
,
3461 mpls_label_t
*label
, uint32_t num_labels
,
3462 int addpath_encode
, uint32_t addpath_tx_id
,
3465 uint8_t wlabel
[3] = {0x80, 0x00, 0x00};
3467 if (safi
== SAFI_LABELED_UNICAST
) {
3468 label
= (mpls_label_t
*)wlabel
;
3472 return bgp_packet_mpattr_prefix(s
, afi
, safi
, p
, prd
, label
, num_labels
,
3473 addpath_encode
, addpath_tx_id
, attr
);
3476 void bgp_packet_mpunreach_end(struct stream
*s
, size_t attrlen_pnt
)
3478 bgp_packet_mpattr_end(s
, attrlen_pnt
);
3481 /* Initialization of attribute. */
3482 void bgp_attr_init(void)
3494 void bgp_attr_finish(void)
3499 ecommunity_finish();
3500 lcommunity_finish();
3506 /* Make attribute packet. */
3507 void bgp_dump_routes_attr(struct stream
*s
, struct attr
*attr
,
3508 struct prefix
*prefix
)
3513 struct aspath
*aspath
;
3514 int addpath_encode
= 0;
3515 uint32_t addpath_tx_id
= 0;
3517 /* Remember current pointer. */
3518 cp
= stream_get_endp(s
);
3520 /* Place holder of length. */
3523 /* Origin attribute. */
3524 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3525 stream_putc(s
, BGP_ATTR_ORIGIN
);
3527 stream_putc(s
, attr
->origin
);
3529 aspath
= attr
->aspath
;
3531 stream_putc(s
, BGP_ATTR_FLAG_TRANS
| BGP_ATTR_FLAG_EXTLEN
);
3532 stream_putc(s
, BGP_ATTR_AS_PATH
);
3533 aspath_lenp
= stream_get_endp(s
);
3536 stream_putw_at(s
, aspath_lenp
, aspath_put(s
, aspath
, 1));
3538 /* Nexthop attribute. */
3539 /* If it's an IPv6 prefix, don't dump the IPv4 nexthop to save space */
3540 if (prefix
!= NULL
&& prefix
->family
!= AF_INET6
) {
3541 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3542 stream_putc(s
, BGP_ATTR_NEXT_HOP
);
3544 stream_put_ipv4(s
, attr
->nexthop
.s_addr
);
3547 /* MED attribute. */
3548 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC
)) {
3549 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3550 stream_putc(s
, BGP_ATTR_MULTI_EXIT_DISC
);
3552 stream_putl(s
, attr
->med
);
3555 /* Local preference. */
3556 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF
)) {
3557 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3558 stream_putc(s
, BGP_ATTR_LOCAL_PREF
);
3560 stream_putl(s
, attr
->local_pref
);
3563 /* Atomic aggregate. */
3564 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE
)) {
3565 stream_putc(s
, BGP_ATTR_FLAG_TRANS
);
3566 stream_putc(s
, BGP_ATTR_ATOMIC_AGGREGATE
);
3571 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR
)) {
3572 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
);
3573 stream_putc(s
, BGP_ATTR_AGGREGATOR
);
3575 stream_putl(s
, attr
->aggregator_as
);
3576 stream_put_ipv4(s
, attr
->aggregator_addr
.s_addr
);
3579 /* Community attribute. */
3580 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES
)) {
3581 if (attr
->community
->size
* 4 > 255) {
3583 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3584 | BGP_ATTR_FLAG_EXTLEN
);
3585 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3586 stream_putw(s
, attr
->community
->size
* 4);
3589 BGP_ATTR_FLAG_OPTIONAL
3590 | BGP_ATTR_FLAG_TRANS
);
3591 stream_putc(s
, BGP_ATTR_COMMUNITIES
);
3592 stream_putc(s
, attr
->community
->size
* 4);
3594 stream_put(s
, attr
->community
->val
, attr
->community
->size
* 4);
3597 /* Large Community attribute. */
3598 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES
)) {
3599 if (lcom_length(attr
->lcommunity
) > 255) {
3601 BGP_ATTR_FLAG_OPTIONAL
| BGP_ATTR_FLAG_TRANS
3602 | BGP_ATTR_FLAG_EXTLEN
);
3603 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3604 stream_putw(s
, lcom_length(attr
->lcommunity
));
3607 BGP_ATTR_FLAG_OPTIONAL
3608 | BGP_ATTR_FLAG_TRANS
);
3609 stream_putc(s
, BGP_ATTR_LARGE_COMMUNITIES
);
3610 stream_putc(s
, lcom_length(attr
->lcommunity
));
3613 stream_put(s
, attr
->lcommunity
->val
,
3614 lcom_length(attr
->lcommunity
));
3617 /* Add a MP_NLRI attribute to dump the IPv6 next hop */
3618 if (prefix
!= NULL
&& prefix
->family
== AF_INET6
3619 && (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL
3620 || attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
)) {
3623 stream_putc(s
, BGP_ATTR_FLAG_OPTIONAL
);
3624 stream_putc(s
, BGP_ATTR_MP_REACH_NLRI
);
3625 sizep
= stream_get_endp(s
);
3628 stream_putc(s
, 0); /* Marker: Attribute length. */
3629 stream_putw(s
, AFI_IP6
); /* AFI */
3630 stream_putc(s
, SAFI_UNICAST
); /* SAFI */
3633 stream_putc(s
, attr
->mp_nexthop_len
);
3634 stream_put(s
, &attr
->mp_nexthop_global
, IPV6_MAX_BYTELEN
);
3635 if (attr
->mp_nexthop_len
== BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL
)
3636 stream_put(s
, &attr
->mp_nexthop_local
,
3643 stream_put_prefix_addpath(s
, prefix
, addpath_encode
,
3646 /* Set MP attribute length. */
3647 stream_putc_at(s
, sizep
, (stream_get_endp(s
) - sizep
) - 1);
3651 if (attr
->flag
& ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID
)) {
3652 if (attr
->label_index
!= BGP_INVALID_LABEL_INDEX
) {
3654 BGP_ATTR_FLAG_OPTIONAL
3655 | BGP_ATTR_FLAG_TRANS
);
3656 stream_putc(s
, BGP_ATTR_PREFIX_SID
);
3658 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX
);
3659 stream_putc(s
, BGP_PREFIX_SID_LABEL_INDEX_LENGTH
);
3660 stream_putc(s
, 0); // reserved
3661 stream_putw(s
, 0); // flags
3662 stream_putl(s
, attr
->label_index
);
3666 /* Return total size of attribute. */
3667 len
= stream_get_endp(s
) - cp
- 2;
3668 stream_putw_at(s
, cp
, len
);