]> git.proxmox.com Git - mirror_frr.git/blob - bgpd/bgp_packet.c
projects / mirror_frr.git / blob
? search:


b4cd1301610e5a1d24668e44def70d410e1a74c0
[mirror_frr.git] / bgpd / bgp_packet.c
1 /* BGP packet management routine.
2 Copyright (C) 1999 Kunihiro Ishiguro
3
4 This file is part of GNU Zebra.
5
6 GNU Zebra is free software; you can redistribute it and/or modify it
7 under the terms of the GNU General Public License as published by the
8 Free Software Foundation; either version 2, or (at your option) any
9 later version.
10
11 GNU Zebra is distributed in the hope that it will be useful, but
12 WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 General Public License for more details.
15
16 You should have received a copy of the GNU General Public License
17 along with GNU Zebra; see the file COPYING. If not, write to the Free
18 Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
19 02111-1307, USA. */
20
21 #include <zebra.h>
22
23 #include "thread.h"
24 #include "stream.h"
25 #include "network.h"
26 #include "prefix.h"
27 #include "command.h"
28 #include "log.h"
29 #include "memory.h"
30 #include "sockunion.h" /* for inet_ntop () */
31 #include "linklist.h"
32 #include "plist.h"
33
34 #include "bgpd/bgpd.h"
35 #include "bgpd/bgp_table.h"
36 #include "bgpd/bgp_dump.h"
37 #include "bgpd/bgp_attr.h"
38 #include "bgpd/bgp_debug.h"
39 #include "bgpd/bgp_fsm.h"
40 #include "bgpd/bgp_route.h"
41 #include "bgpd/bgp_packet.h"
42 #include "bgpd/bgp_open.h"
43 #include "bgpd/bgp_aspath.h"
44 #include "bgpd/bgp_community.h"
45 #include "bgpd/bgp_ecommunity.h"
46 #include "bgpd/bgp_network.h"
47 #include "bgpd/bgp_mplsvpn.h"
48 #include "bgpd/bgp_advertise.h"
49
50 int stream_put_prefix (struct stream *, struct prefix *);
51 \f
52 /* Set up BGP packet marker and packet type. */
53 static int
54 bgp_packet_set_marker (struct stream *s, u_char type)
55 {
56 int i;
57
58 /* Fill in marker. */
59 for (i = 0; i < BGP_MARKER_SIZE; i++)
60 stream_putc (s, 0xff);
61
62 /* Dummy total length. This field is should be filled in later on. */
63 stream_putw (s, 0);
64
65 /* BGP packet type. */
66 stream_putc (s, type);
67
68 /* Return current stream size. */
69 return stream_get_putp (s);
70 }
71
72 /* Set BGP packet header size entry. If size is zero then use current
73 stream size. */
74 static int
75 bgp_packet_set_size (struct stream *s)
76 {
77 int cp;
78
79 /* Preserve current pointer. */
80 cp = stream_get_putp (s);
81 stream_set_putp (s, BGP_MARKER_SIZE);
82 stream_putw (s, cp);
83
84 /* Write back current pointer. */
85 stream_set_putp (s, cp);
86
87 return cp;
88 }
89
90 /* Add new packet to the peer. */
91 void
92 bgp_packet_add (struct peer *peer, struct stream *s)
93 {
94 /* Add packet to the end of list. */
95 stream_fifo_push (peer->obuf, s);
96 }
97
98 /* Free first packet. */
99 void
100 bgp_packet_delete (struct peer *peer)
101 {
102 stream_free (stream_fifo_pop (peer->obuf));
103 }
104
105 /* Duplicate packet. */
106 struct stream *
107 bgp_packet_dup (struct stream *s)
108 {
109 struct stream *new;
110
111 new = stream_new (stream_get_endp (s));
112
113 new->endp = s->endp;
114 new->putp = s->putp;
115 new->getp = s->getp;
116
117 memcpy (new->data, s->data, stream_get_endp (s));
118
119 return new;
120 }
121
122 /* Check file descriptor whether connect is established. */
123 static void
124 bgp_connect_check (struct peer *peer)
125 {
126 int status;
127 socklen_t slen;
128 int ret;
129
130 /* Anyway I have to reset read and write thread. */
131 BGP_READ_OFF (peer->t_read);
132 BGP_WRITE_OFF (peer->t_write);
133
134 /* Check file descriptor. */
135 slen = sizeof (status);
136 ret = getsockopt(peer->fd, SOL_SOCKET, SO_ERROR, (void *) &status, &slen);
137
138 /* If getsockopt is fail, this is fatal error. */
139 if (ret < 0)
140 {
141 zlog (peer->log, LOG_INFO, "can't get sockopt for nonblocking connect");
142 BGP_EVENT_ADD (peer, TCP_fatal_error);
143 return;
144 }
145
146 /* When status is 0 then TCP connection is established. */
147 if (status == 0)
148 {
149 BGP_EVENT_ADD (peer, TCP_connection_open);
150 }
151 else
152 {
153 if (BGP_DEBUG (events, EVENTS))
154 plog_info (peer->log, "%s [Event] Connect failed (%s)",
155 peer->host, strerror (errno));
156 BGP_EVENT_ADD (peer, TCP_connection_open_failed);
157 }
158 }
159
160 /* Make BGP update packet. */
161 struct stream *
162 bgp_update_packet (struct peer *peer, afi_t afi, safi_t safi)
163 {
164 struct stream *s;
165 struct bgp_adj_out *adj;
166 struct bgp_advertise *adv;
167 struct stream *packet;
168 struct bgp_node *rn = NULL;
169 struct bgp_info *binfo = NULL;
170 bgp_size_t total_attr_len = 0;
171 unsigned long pos;
172 char buf[BUFSIZ];
173 struct prefix_rd *prd = NULL;
174 char *tag = NULL;
175
176 s = peer->work;
177 stream_reset (s);
178
179 adv = FIFO_HEAD (&peer->sync[afi][safi]->update);
180
181 while (adv)
182 {
183 if (adv->rn)
184 rn = adv->rn;
185 adj = adv->adj;
186 if (adv->binfo)
187 binfo = adv->binfo;
188 #ifdef MPLS_VPN
189 if (rn)
190 prd = (struct prefix_rd *) &rn->prn->p;
191 if (binfo)
192 tag = binfo->tag;
193 #endif /* MPLS_VPN */
194
195 /* When remaining space can't include NLRI and it's length. */
196 if (rn && STREAM_REMAIN (s) <= BGP_NLRI_LENGTH + PSIZE (rn->p.prefixlen))
197 break;
198
199 /* If packet is empty, set attribute. */
200 if (stream_empty (s))
201 {
202 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
203 stream_putw (s, 0);
204 pos = stream_get_putp (s);
205 stream_putw (s, 0);
206 total_attr_len = bgp_packet_attribute (NULL, peer, s,
207 adv->baa->attr,
208 &rn->p, afi, safi,
209 binfo->peer, prd, tag);
210 stream_putw_at (s, pos, total_attr_len);
211 }
212
213 if (afi == AFI_IP && safi == SAFI_UNICAST)
214 stream_put_prefix (s, &rn->p);
215
216 if (BGP_DEBUG (update, UPDATE_OUT))
217 zlog (peer->log, LOG_INFO, "%s send UPDATE %s/%d",
218 peer->host,
219 inet_ntop (rn->p.family, &(rn->p.u.prefix), buf, BUFSIZ),
220 rn->p.prefixlen);
221
222 /* Synchnorize attribute. */
223 if (adj->attr)
224 bgp_attr_unintern (adj->attr);
225 else
226 peer->scount[afi][safi]++;
227
228 adj->attr = bgp_attr_intern (adv->baa->attr);
229
230 adv = bgp_advertise_clean (peer, adj, afi, safi);
231
232 if (! (afi == AFI_IP && safi == SAFI_UNICAST))
233 break;
234 }
235
236 if (! stream_empty (s))
237 {
238 bgp_packet_set_size (s);
239 packet = bgp_packet_dup (s);
240 bgp_packet_add (peer, packet);
241 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
242 stream_reset (s);
243 return packet;
244 }
245 return NULL;
246
247 }
248
249 /* Make BGP withdraw packet. */
250 struct stream *
251 bgp_withdraw_packet (struct peer *peer, afi_t afi, safi_t safi)
252 {
253 struct stream *s;
254 struct stream *packet;
255 struct bgp_adj_out *adj;
256 struct bgp_advertise *adv;
257 struct bgp_node *rn;
258 unsigned long pos;
259 bgp_size_t unfeasible_len;
260 bgp_size_t total_attr_len;
261 char buf[BUFSIZ];
262 struct prefix_rd *prd = NULL;
263
264 s = peer->work;
265 stream_reset (s);
266
267 while ((adv = FIFO_HEAD (&peer->sync[afi][safi]->withdraw)) != NULL)
268 {
269 adj = adv->adj;
270 rn = adv->rn;
271 #ifdef MPLS_VPN
272 prd = (struct prefix_rd *) &rn->prn->p;
273 #endif /* MPLS_VPN */
274
275 if (STREAM_REMAIN (s)
276 < (BGP_NLRI_LENGTH + BGP_TOTAL_ATTR_LEN + PSIZE (rn->p.prefixlen)))
277 break;
278
279 if (stream_empty (s))
280 {
281 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
282 stream_putw (s, 0);
283 }
284
285 if (afi == AFI_IP && safi == SAFI_UNICAST)
286 stream_put_prefix (s, &rn->p);
287 else
288 {
289 pos = stream_get_putp (s);
290 stream_putw (s, 0);
291 total_attr_len
292 = bgp_packet_withdraw (peer, s, &rn->p, afi, safi, prd, NULL);
293
294 /* Set total path attribute length. */
295 stream_putw_at (s, pos, total_attr_len);
296 }
297
298 if (BGP_DEBUG (update, UPDATE_OUT))
299 zlog (peer->log, LOG_INFO, "%s send UPDATE %s/%d -- unreachable",
300 peer->host,
301 inet_ntop (rn->p.family, &(rn->p.u.prefix), buf, BUFSIZ),
302 rn->p.prefixlen);
303
304 peer->scount[afi][safi]--;
305
306 bgp_adj_out_remove (rn, adj, peer, afi, safi);
307 bgp_unlock_node (rn);
308
309 if (! (afi == AFI_IP && safi == SAFI_UNICAST))
310 break;
311 }
312
313 if (! stream_empty (s))
314 {
315 if (afi == AFI_IP && safi == SAFI_UNICAST)
316 {
317 unfeasible_len
318 = stream_get_putp (s) - BGP_HEADER_SIZE - BGP_UNFEASIBLE_LEN;
319 stream_putw_at (s, BGP_HEADER_SIZE, unfeasible_len);
320 stream_putw (s, 0);
321 }
322 bgp_packet_set_size (s);
323 packet = bgp_packet_dup (s);
324 bgp_packet_add (peer, packet);
325 stream_reset (s);
326 return packet;
327 }
328
329 return NULL;
330 }
331
332 void
333 bgp_default_update_send (struct peer *peer, struct attr *attr,
334 afi_t afi, safi_t safi, struct peer *from)
335 {
336 struct stream *s;
337 struct stream *packet;
338 struct prefix p;
339 unsigned long pos;
340 bgp_size_t total_attr_len;
341 char attrstr[BUFSIZ];
342 char buf[BUFSIZ];
343
344 #ifdef DISABLE_BGP_ANNOUNCE
345 return;
346 #endif /* DISABLE_BGP_ANNOUNCE */
347
348 if (afi == AFI_IP)
349 str2prefix ("0.0.0.0/0", &p);
350 #ifdef HAVE_IPV6
351 else
352 str2prefix ("::/0", &p);
353 #endif /* HAVE_IPV6 */
354
355 /* Logging the attribute. */
356 if (BGP_DEBUG (update, UPDATE_OUT))
357 {
358 bgp_dump_attr (peer, attr, attrstr, BUFSIZ);
359 zlog (peer->log, LOG_INFO, "%s send UPDATE %s/%d %s",
360 peer->host, inet_ntop(p.family, &(p.u.prefix), buf, BUFSIZ),
361 p.prefixlen, attrstr);
362 }
363
364 s = stream_new (BGP_MAX_PACKET_SIZE);
365
366 /* Make BGP update packet. */
367 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
368
369 /* Unfeasible Routes Length. */
370 stream_putw (s, 0);
371
372 /* Make place for total attribute length. */
373 pos = stream_get_putp (s);
374 stream_putw (s, 0);
375 total_attr_len = bgp_packet_attribute (NULL, peer, s, attr, &p, afi, safi, from, NULL, NULL);
376
377 /* Set Total Path Attribute Length. */
378 stream_putw_at (s, pos, total_attr_len);
379
380 /* NLRI set. */
381 if (p.family == AF_INET && safi == SAFI_UNICAST)
382 stream_put_prefix (s, &p);
383
384 /* Set size. */
385 bgp_packet_set_size (s);
386
387 packet = bgp_packet_dup (s);
388 stream_free (s);
389
390 /* Dump packet if debug option is set. */
391 #ifdef DEBUG
392 bgp_packet_dump (packet);
393 #endif /* DEBUG */
394
395 /* Add packet to the peer. */
396 bgp_packet_add (peer, packet);
397
398 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
399 }
400
401 void
402 bgp_default_withdraw_send (struct peer *peer, afi_t afi, safi_t safi)
403 {
404 struct stream *s;
405 struct stream *packet;
406 struct prefix p;
407 unsigned long pos;
408 unsigned long cp;
409 bgp_size_t unfeasible_len;
410 bgp_size_t total_attr_len;
411 char buf[BUFSIZ];
412
413 #ifdef DISABLE_BGP_ANNOUNCE
414 return;
415 #endif /* DISABLE_BGP_ANNOUNCE */
416
417 if (afi == AFI_IP)
418 str2prefix ("0.0.0.0/0", &p);
419 #ifdef HAVE_IPV6
420 else
421 str2prefix ("::/0", &p);
422 #endif /* HAVE_IPV6 */
423
424 total_attr_len = 0;
425 pos = 0;
426
427 if (BGP_DEBUG (update, UPDATE_OUT))
428 zlog (peer->log, LOG_INFO, "%s send UPDATE %s/%d -- unreachable",
429 peer->host, inet_ntop(p.family, &(p.u.prefix), buf, BUFSIZ),
430 p.prefixlen);
431
432 s = stream_new (BGP_MAX_PACKET_SIZE);
433
434 /* Make BGP update packet. */
435 bgp_packet_set_marker (s, BGP_MSG_UPDATE);
436
437 /* Unfeasible Routes Length. */;
438 cp = stream_get_putp (s);
439 stream_putw (s, 0);
440
441 /* Withdrawn Routes. */
442 if (p.family == AF_INET && safi == SAFI_UNICAST)
443 {
444 stream_put_prefix (s, &p);
445
446 unfeasible_len = stream_get_putp (s) - cp - 2;
447
448 /* Set unfeasible len. */
449 stream_putw_at (s, cp, unfeasible_len);
450
451 /* Set total path attribute length. */
452 stream_putw (s, 0);
453 }
454 else
455 {
456 pos = stream_get_putp (s);
457 stream_putw (s, 0);
458 total_attr_len = bgp_packet_withdraw (peer, s, &p, afi, safi, NULL, NULL);
459
460 /* Set total path attribute length. */
461 stream_putw_at (s, pos, total_attr_len);
462 }
463
464 bgp_packet_set_size (s);
465
466 packet = bgp_packet_dup (s);
467 stream_free (s);
468
469 /* Add packet to the peer. */
470 bgp_packet_add (peer, packet);
471
472 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
473 }
474
475 /* Get next packet to be written. */
476 struct stream *
477 bgp_write_packet (struct peer *peer)
478 {
479 afi_t afi;
480 safi_t safi;
481 struct stream *s = NULL;
482 struct bgp_advertise *adv;
483
484 s = stream_fifo_head (peer->obuf);
485 if (s)
486 return s;
487
488 for (afi = AFI_IP; afi < AFI_MAX; afi++)
489 for (safi = SAFI_UNICAST; safi < SAFI_MAX; safi++)
490 {
491 adv = FIFO_HEAD (&peer->sync[afi][safi]->withdraw);
492 if (adv)
493 {
494 s = bgp_withdraw_packet (peer, afi, safi);
495 if (s)
496 return s;
497 }
498 }
499
500 for (afi = AFI_IP; afi < AFI_MAX; afi++)
501 for (safi = SAFI_UNICAST; safi < SAFI_MAX; safi++)
502 {
503 adv = FIFO_HEAD (&peer->sync[afi][safi]->update);
504 if (adv)
505 {
506 if (adv->binfo && adv->binfo->uptime < peer->synctime)
507 s = bgp_update_packet (peer, afi, safi);
508
509 if (s)
510 return s;
511 }
512 }
513
514 return NULL;
515 }
516
517 /* Is there partially written packet or updates we can send right
518 now. */
519 int
520 bgp_write_proceed (struct peer *peer)
521 {
522 afi_t afi;
523 safi_t safi;
524 struct bgp_advertise *adv;
525
526 if (stream_fifo_head (peer->obuf))
527 return 1;
528
529 for (afi = AFI_IP; afi < AFI_MAX; afi++)
530 for (safi = SAFI_UNICAST; safi < SAFI_MAX; safi++)
531 if (FIFO_HEAD (&peer->sync[afi][safi]->withdraw))
532 return 1;
533
534 for (afi = AFI_IP; afi < AFI_MAX; afi++)
535 for (safi = SAFI_UNICAST; safi < SAFI_MAX; safi++)
536 if ((adv = FIFO_HEAD (&peer->sync[afi][safi]->update)) != NULL)
537 if (adv->binfo->uptime < peer->synctime)
538 return 1;
539
540 return 0;
541 }
542
543 /* Write packet to the peer. */
544 int
545 bgp_write (struct thread *thread)
546 {
547 struct peer *peer;
548 u_char type;
549 struct stream *s;
550 int num;
551 int count = 0;
552 int write_errno;
553
554 /* Yes first of all get peer pointer. */
555 peer = THREAD_ARG (thread);
556 peer->t_write = NULL;
557
558 /* For non-blocking IO check. */
559 if (peer->status == Connect)
560 {
561 bgp_connect_check (peer);
562 return 0;
563 }
564
565 /* Nonblocking write until TCP output buffer is full. */
566 while (1)
567 {
568 int writenum;
569
570 s = bgp_write_packet (peer);
571 if (! s)
572 return 0;
573
574 /* Number of bytes to be sent. */
575 writenum = stream_get_endp (s) - stream_get_getp (s);
576
577 /* Call write() system call. */
578 num = write (peer->fd, STREAM_PNT (s), writenum);
579 write_errno = errno;
580 if (num <= 0)
581 {
582 /* Partial write. */
583 if (write_errno == EWOULDBLOCK || write_errno == EAGAIN)
584 break;
585
586 bgp_stop (peer);
587 peer->status = Idle;
588 bgp_timer_set (peer);
589 return 0;
590 }
591 if (num != writenum)
592 {
593 stream_forward (s, num);
594
595 if (write_errno == EAGAIN)
596 break;
597
598 continue;
599 }
600
601 /* Retrieve BGP packet type. */
602 stream_set_getp (s, BGP_MARKER_SIZE + 2);
603 type = stream_getc (s);
604
605 switch (type)
606 {
607 case BGP_MSG_OPEN:
608 peer->open_out++;
609 break;
610 case BGP_MSG_UPDATE:
611 peer->update_out++;
612 break;
613 case BGP_MSG_NOTIFY:
614 peer->notify_out++;
615 /* Double start timer. */
616 peer->v_start *= 2;
617
618 /* Overflow check. */
619 if (peer->v_start >= (60 * 2))
620 peer->v_start = (60 * 2);
621
622 /* BGP_EVENT_ADD (peer, BGP_Stop); */
623 bgp_stop (peer);
624 peer->status = Idle;
625 bgp_timer_set (peer);
626 return 0;
627 break;
628 case BGP_MSG_KEEPALIVE:
629 peer->keepalive_out++;
630 break;
631 case BGP_MSG_ROUTE_REFRESH_NEW:
632 case BGP_MSG_ROUTE_REFRESH_OLD:
633 peer->refresh_out++;
634 break;
635 case BGP_MSG_CAPABILITY:
636 peer->dynamic_cap_out++;
637 break;
638 }
639
640 /* OK we send packet so delete it. */
641 bgp_packet_delete (peer);
642
643 if (++count >= BGP_WRITE_PACKET_MAX)
644 break;
645 }
646
647 if (bgp_write_proceed (peer))
648 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
649
650 return 0;
651 }
652
653 /* This is only for sending NOTIFICATION message to neighbor. */
654 int
655 bgp_write_notify (struct peer *peer)
656 {
657 int ret;
658 u_char type;
659 struct stream *s;
660
661 /* There should be at least one packet. */
662 s = stream_fifo_head (peer->obuf);
663 if (!s)
664 return 0;
665 assert (stream_get_endp (s) >= BGP_HEADER_SIZE);
666
667 /* I'm not sure fd is writable. */
668 ret = writen (peer->fd, STREAM_DATA (s), stream_get_endp (s));
669 if (ret <= 0)
670 {
671 bgp_stop (peer);
672 peer->status = Idle;
673 bgp_timer_set (peer);
674 return 0;
675 }
676
677 /* Retrieve BGP packet type. */
678 stream_set_getp (s, BGP_MARKER_SIZE + 2);
679 type = stream_getc (s);
680
681 assert (type == BGP_MSG_NOTIFY);
682
683 /* Type should be notify. */
684 peer->notify_out++;
685
686 /* Double start timer. */
687 peer->v_start *= 2;
688
689 /* Overflow check. */
690 if (peer->v_start >= (60 * 2))
691 peer->v_start = (60 * 2);
692
693 /* We don't call event manager at here for avoiding other events. */
694 bgp_stop (peer);
695 peer->status = Idle;
696 bgp_timer_set (peer);
697
698 return 0;
699 }
700
701 /* Make keepalive packet and send it to the peer. */
702 void
703 bgp_keepalive_send (struct peer *peer)
704 {
705 struct stream *s;
706 int length;
707
708 s = stream_new (BGP_MAX_PACKET_SIZE);
709
710 /* Make keepalive packet. */
711 bgp_packet_set_marker (s, BGP_MSG_KEEPALIVE);
712
713 /* Set packet size. */
714 length = bgp_packet_set_size (s);
715
716 /* Dump packet if debug option is set. */
717 /* bgp_packet_dump (s); */
718
719 if (BGP_DEBUG (keepalive, KEEPALIVE))
720 zlog_info ("%s sending KEEPALIVE", peer->host);
721 if (BGP_DEBUG (normal, NORMAL))
722 zlog_info ("%s send message type %d, length (incl. header) %d",
723 peer->host, BGP_MSG_KEEPALIVE, length);
724
725 /* Add packet to the peer. */
726 bgp_packet_add (peer, s);
727
728 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
729 }
730
731 /* Make open packet and send it to the peer. */
732 void
733 bgp_open_send (struct peer *peer)
734 {
735 struct stream *s;
736 int length;
737 u_int16_t send_holdtime;
738 as_t local_as;
739
740 if (CHECK_FLAG (peer->config, PEER_CONFIG_TIMER))
741 send_holdtime = peer->holdtime;
742 else
743 send_holdtime = peer->bgp->default_holdtime;
744
745 /* local-as Change */
746 if (peer->change_local_as)
747 local_as = peer->change_local_as;
748 else
749 local_as = peer->local_as;
750
751 s = stream_new (BGP_MAX_PACKET_SIZE);
752
753 /* Make open packet. */
754 bgp_packet_set_marker (s, BGP_MSG_OPEN);
755
756 /* Set open packet values. */
757 stream_putc (s, BGP_VERSION_4); /* BGP version */
758 stream_putw (s, local_as); /* My Autonomous System*/
759 stream_putw (s, send_holdtime); /* Hold Time */
760 stream_put_in_addr (s, &peer->local_id); /* BGP Identifier */
761
762 /* Set capability code. */
763 bgp_open_capability (s, peer);
764
765 /* Set BGP packet length. */
766 length = bgp_packet_set_size (s);
767
768 if (BGP_DEBUG (normal, NORMAL))
769 zlog_info ("%s sending OPEN, version %d, my as %d, holdtime %d, id %s",
770 peer->host, BGP_VERSION_4, local_as,
771 send_holdtime, inet_ntoa (peer->local_id));
772
773 if (BGP_DEBUG (normal, NORMAL))
774 zlog_info ("%s send message type %d, length (incl. header) %d",
775 peer->host, BGP_MSG_OPEN, length);
776
777 /* Dump packet if debug option is set. */
778 /* bgp_packet_dump (s); */
779
780 /* Add packet to the peer. */
781 bgp_packet_add (peer, s);
782
783 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
784 }
785
786 /* Send BGP notify packet with data potion. */
787 void
788 bgp_notify_send_with_data (struct peer *peer, u_char code, u_char sub_code,
789 u_char *data, size_t datalen)
790 {
791 struct stream *s;
792 int length;
793
794 /* Allocate new stream. */
795 s = stream_new (BGP_MAX_PACKET_SIZE);
796
797 /* Make nitify packet. */
798 bgp_packet_set_marker (s, BGP_MSG_NOTIFY);
799
800 /* Set notify packet values. */
801 stream_putc (s, code); /* BGP notify code */
802 stream_putc (s, sub_code); /* BGP notify sub_code */
803
804 /* If notify data is present. */
805 if (data)
806 stream_write (s, data, datalen);
807
808 /* Set BGP packet length. */
809 length = bgp_packet_set_size (s);
810
811 /* Add packet to the peer. */
812 stream_fifo_clean (peer->obuf);
813 bgp_packet_add (peer, s);
814
815 /* For debug */
816 {
817 struct bgp_notify bgp_notify;
818 int first = 0;
819 int i;
820 char c[4];
821
822 bgp_notify.code = code;
823 bgp_notify.subcode = sub_code;
824 bgp_notify.data = NULL;
825 bgp_notify.length = length - BGP_MSG_NOTIFY_MIN_SIZE;
826
827 if (bgp_notify.length)
828 {
829 bgp_notify.data = XMALLOC (MTYPE_TMP, bgp_notify.length * 3);
830 for (i = 0; i < bgp_notify.length; i++)
831 if (first)
832 {
833 sprintf (c, " %02x", data[i]);
834 strcat (bgp_notify.data, c);
835 }
836 else
837 {
838 first = 1;
839 sprintf (c, "%02x", data[i]);
840 strcpy (bgp_notify.data, c);
841 }
842 }
843 bgp_notify_print (peer, &bgp_notify, "sending");
844 if (bgp_notify.data)
845 XFREE (MTYPE_TMP, bgp_notify.data);
846 }
847
848 if (BGP_DEBUG (normal, NORMAL))
849 zlog_info ("%s send message type %d, length (incl. header) %d",
850 peer->host, BGP_MSG_NOTIFY, length);
851
852 /* peer reset cause */
853 if (sub_code != BGP_NOTIFY_CEASE_CONFIG_CHANGE)
854 {
855 if (sub_code == BGP_NOTIFY_CEASE_ADMIN_RESET)
856 peer->last_reset = PEER_DOWN_USER_RESET;
857 else if (sub_code == BGP_NOTIFY_CEASE_ADMIN_SHUTDOWN)
858 peer->last_reset = PEER_DOWN_USER_SHUTDOWN;
859 else
860 peer->last_reset = PEER_DOWN_NOTIFY_SEND;
861 }
862
863 /* Call imidiately. */
864 BGP_WRITE_OFF (peer->t_write);
865
866 bgp_write_notify (peer);
867 }
868
869 /* Send BGP notify packet. */
870 void
871 bgp_notify_send (struct peer *peer, u_char code, u_char sub_code)
872 {
873 bgp_notify_send_with_data (peer, code, sub_code, NULL, 0);
874 }
875
876 char *
877 afi2str (afi_t afi)
878 {
879 if (afi == AFI_IP)
880 return "AFI_IP";
881 else if (afi == AFI_IP6)
882 return "AFI_IP6";
883 else
884 return "Unknown AFI";
885 }
886
887 char *
888 safi2str (safi_t safi)
889 {
890 if (safi == SAFI_UNICAST)
891 return "SAFI_UNICAST";
892 else if (safi == SAFI_MULTICAST)
893 return "SAFI_MULTICAST";
894 else if (safi == SAFI_MPLS_VPN || safi == BGP_SAFI_VPNV4)
895 return "SAFI_MPLS_VPN";
896 else
897 return "Unknown SAFI";
898 }
899
900 /* Send route refresh message to the peer. */
901 void
902 bgp_route_refresh_send (struct peer *peer, afi_t afi, safi_t safi,
903 u_char orf_type, u_char when_to_refresh, int remove)
904 {
905 struct stream *s;
906 struct stream *packet;
907 int length;
908 struct bgp_filter *filter;
909 int orf_refresh = 0;
910
911 #ifdef DISABLE_BGP_ANNOUNCE
912 return;
913 #endif /* DISABLE_BGP_ANNOUNCE */
914
915 filter = &peer->filter[afi][safi];
916
917 /* Adjust safi code. */
918 if (safi == SAFI_MPLS_VPN)
919 safi = BGP_SAFI_VPNV4;
920
921 s = stream_new (BGP_MAX_PACKET_SIZE);
922
923 /* Make BGP update packet. */
924 if (CHECK_FLAG (peer->cap, PEER_CAP_REFRESH_NEW_RCV))
925 bgp_packet_set_marker (s, BGP_MSG_ROUTE_REFRESH_NEW);
926 else
927 bgp_packet_set_marker (s, BGP_MSG_ROUTE_REFRESH_OLD);
928
929 /* Encode Route Refresh message. */
930 stream_putw (s, afi);
931 stream_putc (s, 0);
932 stream_putc (s, safi);
933
934 if (orf_type == ORF_TYPE_PREFIX
935 || orf_type == ORF_TYPE_PREFIX_OLD)
936 if (remove || filter->plist[FILTER_IN].plist)
937 {
938 u_int16_t orf_len;
939 unsigned long orfp;
940
941 orf_refresh = 1;
942 stream_putc (s, when_to_refresh);
943 stream_putc (s, orf_type);
944 orfp = stream_get_putp (s);
945 stream_putw (s, 0);
946
947 if (remove)
948 {
949 UNSET_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_ORF_PREFIX_SEND);
950 stream_putc (s, ORF_COMMON_PART_REMOVE_ALL);
951 if (BGP_DEBUG (normal, NORMAL))
952 zlog_info ("%s sending REFRESH_REQ to remove ORF(%d) (%s) for afi/safi: %d/%d",
953 peer->host, orf_type,
954 (when_to_refresh == REFRESH_DEFER ? "defer" : "immediate"),
955 afi, safi);
956 }
957 else
958 {
959 SET_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_ORF_PREFIX_SEND);
960 prefix_bgp_orf_entry (s, filter->plist[FILTER_IN].plist,
961 ORF_COMMON_PART_ADD, ORF_COMMON_PART_PERMIT,
962 ORF_COMMON_PART_DENY);
963 if (BGP_DEBUG (normal, NORMAL))
964 zlog_info ("%s sending REFRESH_REQ with pfxlist ORF(%d) (%s) for afi/safi: %d/%d",
965 peer->host, orf_type,
966 (when_to_refresh == REFRESH_DEFER ? "defer" : "immediate"),
967 afi, safi);
968 }
969
970 /* Total ORF Entry Len. */
971 orf_len = stream_get_putp (s) - orfp - 2;
972 stream_putw_at (s, orfp, orf_len);
973 }
974
975 /* Set packet size. */
976 length = bgp_packet_set_size (s);
977
978 if (BGP_DEBUG (normal, NORMAL))
979 {
980 if (! orf_refresh)
981 zlog_info ("%s sending REFRESH_REQ for afi/safi: %d/%d",
982 peer->host, afi, safi);
983 zlog_info ("%s send message type %d, length (incl. header) %d",
984 peer->host, CHECK_FLAG (peer->cap, PEER_CAP_REFRESH_NEW_RCV) ?
985 BGP_MSG_ROUTE_REFRESH_NEW : BGP_MSG_ROUTE_REFRESH_OLD, length);
986 }
987
988 /* Make real packet. */
989 packet = bgp_packet_dup (s);
990 stream_free (s);
991
992 /* Add packet to the peer. */
993 bgp_packet_add (peer, packet);
994
995 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
996 }
997
998 /* Send capability message to the peer. */
999 void
1000 bgp_capability_send (struct peer *peer, afi_t afi, safi_t safi,
1001 int capability_code, int action)
1002 {
1003 struct stream *s;
1004 struct stream *packet;
1005 int length;
1006
1007 /* Adjust safi code. */
1008 if (safi == SAFI_MPLS_VPN)
1009 safi = BGP_SAFI_VPNV4;
1010
1011 s = stream_new (BGP_MAX_PACKET_SIZE);
1012
1013 /* Make BGP update packet. */
1014 bgp_packet_set_marker (s, BGP_MSG_CAPABILITY);
1015
1016 /* Encode MP_EXT capability. */
1017 if (capability_code == CAPABILITY_CODE_MP)
1018 {
1019 stream_putc (s, action);
1020 stream_putc (s, CAPABILITY_CODE_MP);
1021 stream_putc (s, CAPABILITY_CODE_MP_LEN);
1022 stream_putw (s, afi);
1023 stream_putc (s, 0);
1024 stream_putc (s, safi);
1025
1026 if (BGP_DEBUG (normal, NORMAL))
1027 zlog_info ("%s sending CAPABILITY has %s MP_EXT CAP for afi/safi: %d/%d",
1028 peer->host, action == CAPABILITY_ACTION_SET ?
1029 "Advertising" : "Removing", afi, safi);
1030 }
1031
1032 /* Encode Route Refresh capability. */
1033 if (capability_code == CAPABILITY_CODE_REFRESH)
1034 {
1035 stream_putc (s, action);
1036 stream_putc (s, CAPABILITY_CODE_REFRESH);
1037 stream_putc (s, CAPABILITY_CODE_REFRESH_LEN);
1038 stream_putc (s, action);
1039 stream_putc (s, CAPABILITY_CODE_REFRESH_OLD);
1040 stream_putc (s, CAPABILITY_CODE_REFRESH_LEN);
1041
1042 if (BGP_DEBUG (normal, NORMAL))
1043 zlog_info ("%s sending CAPABILITY has %s ROUTE-REFRESH capability",
1044 peer->host, action == CAPABILITY_ACTION_SET ?
1045 "Advertising" : "Removing");
1046 }
1047
1048 /* Set packet size. */
1049 length = bgp_packet_set_size (s);
1050
1051 /* Make real packet. */
1052 packet = bgp_packet_dup (s);
1053 stream_free (s);
1054
1055 /* Add packet to the peer. */
1056 bgp_packet_add (peer, packet);
1057
1058 if (BGP_DEBUG (normal, NORMAL))
1059 zlog_info ("%s send message type %d, length (incl. header) %d",
1060 peer->host, BGP_MSG_CAPABILITY, length);
1061
1062 BGP_WRITE_ON (peer->t_write, bgp_write, peer->fd);
1063 }
1064 \f
1065 /* RFC1771 6.8 Connection collision detection. */
1066 int
1067 bgp_collision_detect (struct peer *new, struct in_addr remote_id)
1068 {
1069 struct peer *peer;
1070 struct listnode *nn;
1071 struct bgp *bgp;
1072
1073 bgp = bgp_get_default ();
1074 if (! bgp)
1075 return 0;
1076
1077 /* Upon receipt of an OPEN message, the local system must examine
1078 all of its connections that are in the OpenConfirm state. A BGP
1079 speaker may also examine connections in an OpenSent state if it
1080 knows the BGP Identifier of the peer by means outside of the
1081 protocol. If among these connections there is a connection to a
1082 remote BGP speaker whose BGP Identifier equals the one in the
1083 OPEN message, then the local system performs the following
1084 collision resolution procedure: */
1085
1086 LIST_LOOP (bgp->peer, peer, nn)
1087 {
1088 /* Under OpenConfirm status, local peer structure already hold
1089 remote router ID. */
1090
1091 if (peer != new
1092 && (peer->status == OpenConfirm || peer->status == OpenSent)
1093 && sockunion_same (&peer->su, &new->su))
1094 {
1095 /* 1. The BGP Identifier of the local system is compared to
1096 the BGP Identifier of the remote system (as specified in
1097 the OPEN message). */
1098
1099 if (ntohl (peer->local_id.s_addr) < ntohl (remote_id.s_addr))
1100 {
1101 /* 2. If the value of the local BGP Identifier is less
1102 than the remote one, the local system closes BGP
1103 connection that already exists (the one that is
1104 already in the OpenConfirm state), and accepts BGP
1105 connection initiated by the remote system. */
1106
1107 if (peer->fd >= 0)
1108 bgp_notify_send (peer, BGP_NOTIFY_CEASE, BGP_NOTIFY_CEASE_COLLISION_RESOLUTION);
1109 return 1;
1110 }
1111 else
1112 {
1113 /* 3. Otherwise, the local system closes newly created
1114 BGP connection (the one associated with the newly
1115 received OPEN message), and continues to use the
1116 existing one (the one that is already in the
1117 OpenConfirm state). */
1118
1119 if (new->fd >= 0)
1120 bgp_notify_send (new, BGP_NOTIFY_CEASE,
1121 BGP_NOTIFY_CEASE_COLLISION_RESOLUTION);
1122 return -1;
1123 }
1124 }
1125 }
1126 return 0;
1127 }
1128
1129 int
1130 bgp_open_receive (struct peer *peer, bgp_size_t size)
1131 {
1132 int ret;
1133 u_char version;
1134 u_char optlen;
1135 u_int16_t holdtime;
1136 u_int16_t send_holdtime;
1137 as_t remote_as;
1138 struct peer *realpeer;
1139 struct in_addr remote_id;
1140 int capability;
1141 u_int8_t notify_data_remote_as[2];
1142 u_int8_t notify_data_remote_id[4];
1143
1144 realpeer = NULL;
1145
1146 /* Parse open packet. */
1147 version = stream_getc (peer->ibuf);
1148 memcpy (notify_data_remote_as, stream_pnt (peer->ibuf), 2);
1149 remote_as = stream_getw (peer->ibuf);
1150 holdtime = stream_getw (peer->ibuf);
1151 memcpy (notify_data_remote_id, stream_pnt (peer->ibuf), 4);
1152 remote_id.s_addr = stream_get_ipv4 (peer->ibuf);
1153
1154 /* Receive OPEN message log */
1155 if (BGP_DEBUG (normal, NORMAL))
1156 zlog_info ("%s rcv OPEN, version %d, remote-as %d, holdtime %d, id %s",
1157 peer->host, version, remote_as, holdtime,
1158 inet_ntoa (remote_id));
1159
1160 /* Lookup peer from Open packet. */
1161 if (CHECK_FLAG (peer->sflags, PEER_STATUS_ACCEPT_PEER))
1162 {
1163 int as = 0;
1164
1165 realpeer = peer_lookup_with_open (&peer->su, remote_as, &remote_id, &as);
1166
1167 if (! realpeer)
1168 {
1169 /* Peer's source IP address is check in bgp_accept(), so this
1170 must be AS number mismatch or remote-id configuration
1171 mismatch. */
1172 if (as)
1173 {
1174 if (BGP_DEBUG (normal, NORMAL))
1175 zlog_info ("%s bad OPEN, wrong router identifier %s",
1176 peer->host, inet_ntoa (remote_id));
1177 bgp_notify_send_with_data (peer,
1178 BGP_NOTIFY_OPEN_ERR,
1179 BGP_NOTIFY_OPEN_BAD_BGP_IDENT,
1180 notify_data_remote_id, 4);
1181 }
1182 else
1183 {
1184 if (BGP_DEBUG (normal, NORMAL))
1185 zlog_info ("%s bad OPEN, remote AS is %d, expected %d",
1186 peer->host, remote_as, peer->as);
1187 bgp_notify_send_with_data (peer,
1188 BGP_NOTIFY_OPEN_ERR,
1189 BGP_NOTIFY_OPEN_BAD_PEER_AS,
1190 notify_data_remote_as, 2);
1191 }
1192 return -1;
1193 }
1194 }
1195
1196 /* When collision is detected and this peer is closed. Retrun
1197 immidiately. */
1198 ret = bgp_collision_detect (peer, remote_id);
1199 if (ret < 0)
1200 return ret;
1201
1202 /* Hack part. */
1203 if (CHECK_FLAG (peer->sflags, PEER_STATUS_ACCEPT_PEER))
1204 {
1205 if (ret == 0 && realpeer->status != Active
1206 && realpeer->status != OpenSent
1207 && realpeer->status != OpenConfirm)
1208 {
1209 if (BGP_DEBUG (events, EVENTS))
1210 zlog_info ("%s [Event] peer's status is %s close connection",
1211 realpeer->host, LOOKUP (bgp_status_msg, peer->status));
1212 return -1;
1213 }
1214
1215 if (BGP_DEBUG (events, EVENTS))
1216 zlog_info ("%s [Event] Transfer temporary BGP peer to existing one",
1217 peer->host);
1218
1219 bgp_stop (realpeer);
1220
1221 /* Transfer file descriptor. */
1222 realpeer->fd = peer->fd;
1223 peer->fd = -1;
1224
1225 /* Transfer input buffer. */
1226 stream_free (realpeer->ibuf);
1227 realpeer->ibuf = peer->ibuf;
1228 realpeer->packet_size = peer->packet_size;
1229 peer->ibuf = NULL;
1230
1231 /* Transfer status. */
1232 realpeer->status = peer->status;
1233 bgp_stop (peer);
1234
1235 /* peer pointer change. Open packet send to neighbor. */
1236 peer = realpeer;
1237 bgp_open_send (peer);
1238 if (peer->fd < 0)
1239 {
1240 zlog_err ("bgp_open_receive peer's fd is negative value %d",
1241 peer->fd);
1242 return -1;
1243 }
1244 BGP_READ_ON (peer->t_read, bgp_read, peer->fd);
1245 }
1246
1247 /* remote router-id check. */
1248 if (remote_id.s_addr == 0
1249 || ntohl (remote_id.s_addr) >= 0xe0000000
1250 || ntohl (peer->local_id.s_addr) == ntohl (remote_id.s_addr))
1251 {
1252 if (BGP_DEBUG (normal, NORMAL))
1253 zlog_info ("%s bad OPEN, wrong router identifier %s",
1254 peer->host, inet_ntoa (remote_id));
1255 bgp_notify_send_with_data (peer,
1256 BGP_NOTIFY_OPEN_ERR,
1257 BGP_NOTIFY_OPEN_BAD_BGP_IDENT,
1258 notify_data_remote_id, 4);
1259 return -1;
1260 }
1261
1262 /* Set remote router-id */
1263 peer->remote_id = remote_id;
1264
1265 /* Peer BGP version check. */
1266 if (version != BGP_VERSION_4)
1267 {
1268 u_int8_t maxver = BGP_VERSION_4;
1269 if (BGP_DEBUG (normal, NORMAL))
1270 zlog_info ("%s bad protocol version, remote requested %d, local request %d",
1271 peer->host, version, BGP_VERSION_4);
1272 bgp_notify_send_with_data (peer,
1273 BGP_NOTIFY_OPEN_ERR,
1274 BGP_NOTIFY_OPEN_UNSUP_VERSION,
1275 &maxver, 1);
1276 return -1;
1277 }
1278
1279 /* Check neighbor as number. */
1280 if (remote_as != peer->as)
1281 {
1282 if (BGP_DEBUG (normal, NORMAL))
1283 zlog_info ("%s bad OPEN, remote AS is %d, expected %d",
1284 peer->host, remote_as, peer->as);
1285 bgp_notify_send_with_data (peer,
1286 BGP_NOTIFY_OPEN_ERR,
1287 BGP_NOTIFY_OPEN_BAD_PEER_AS,
1288 notify_data_remote_as, 2);
1289 return -1;
1290 }
1291
1292 /* From the rfc: Upon receipt of an OPEN message, a BGP speaker MUST
1293 calculate the value of the Hold Timer by using the smaller of its
1294 configured Hold Time and the Hold Time received in the OPEN message.
1295 The Hold Time MUST be either zero or at least three seconds. An
1296 implementation may reject connections on the basis of the Hold Time. */
1297
1298 if (holdtime < 3 && holdtime != 0)
1299 {
1300 bgp_notify_send (peer,
1301 BGP_NOTIFY_OPEN_ERR,
1302 BGP_NOTIFY_OPEN_UNACEP_HOLDTIME);
1303 return -1;
1304 }
1305
1306 /* From the rfc: A reasonable maximum time between KEEPALIVE messages
1307 would be one third of the Hold Time interval. KEEPALIVE messages
1308 MUST NOT be sent more frequently than one per second. An
1309 implementation MAY adjust the rate at which it sends KEEPALIVE
1310 messages as a function of the Hold Time interval. */
1311
1312 if (CHECK_FLAG (peer->config, PEER_CONFIG_TIMER))
1313 send_holdtime = peer->holdtime;
1314 else
1315 send_holdtime = peer->bgp->default_holdtime;
1316
1317 if (holdtime < send_holdtime)
1318 peer->v_holdtime = holdtime;
1319 else
1320 peer->v_holdtime = send_holdtime;
1321
1322 peer->v_keepalive = peer->v_holdtime / 3;
1323
1324 /* Open option part parse. */
1325 capability = 0;
1326 optlen = stream_getc (peer->ibuf);
1327 if (optlen != 0)
1328 {
1329 ret = bgp_open_option_parse (peer, optlen, &capability);
1330 if (ret < 0)
1331 return ret;
1332
1333 stream_forward (peer->ibuf, optlen);
1334 }
1335 else
1336 {
1337 if (BGP_DEBUG (normal, NORMAL))
1338 zlog_info ("%s rcvd OPEN w/ OPTION parameter len: 0",
1339 peer->host);
1340 }
1341
1342 /* Override capability. */
1343 if (! capability || CHECK_FLAG (peer->flags, PEER_FLAG_OVERRIDE_CAPABILITY))
1344 {
1345 peer->afc_nego[AFI_IP][SAFI_UNICAST] = peer->afc[AFI_IP][SAFI_UNICAST];
1346 peer->afc_nego[AFI_IP][SAFI_MULTICAST] = peer->afc[AFI_IP][SAFI_MULTICAST];
1347 peer->afc_nego[AFI_IP6][SAFI_UNICAST] = peer->afc[AFI_IP6][SAFI_UNICAST];
1348 peer->afc_nego[AFI_IP6][SAFI_MULTICAST] = peer->afc[AFI_IP6][SAFI_MULTICAST];
1349 }
1350
1351 /* Get sockname. */
1352 bgp_getsockname (peer);
1353
1354 BGP_EVENT_ADD (peer, Receive_OPEN_message);
1355
1356 peer->packet_size = 0;
1357 if (peer->ibuf)
1358 stream_reset (peer->ibuf);
1359
1360 return 0;
1361 }
1362
1363 /* Parse BGP Update packet and make attribute object. */
1364 int
1365 bgp_update_receive (struct peer *peer, bgp_size_t size)
1366 {
1367 int ret;
1368 u_char *end;
1369 struct stream *s;
1370 struct attr attr;
1371 bgp_size_t attribute_len;
1372 bgp_size_t update_len;
1373 bgp_size_t withdraw_len;
1374 struct bgp_nlri update;
1375 struct bgp_nlri withdraw;
1376 struct bgp_nlri mp_update;
1377 struct bgp_nlri mp_withdraw;
1378 char attrstr[BUFSIZ] = "";
1379
1380 /* Status must be Established. */
1381 if (peer->status != Established)
1382 {
1383 zlog_err ("%s [FSM] Update packet received under status %s",
1384 peer->host, LOOKUP (bgp_status_msg, peer->status));
1385 bgp_notify_send (peer, BGP_NOTIFY_FSM_ERR, 0);
1386 return -1;
1387 }
1388
1389 /* Set initial values. */
1390 memset (&attr, 0, sizeof (struct attr));
1391 memset (&update, 0, sizeof (struct bgp_nlri));
1392 memset (&withdraw, 0, sizeof (struct bgp_nlri));
1393 memset (&mp_update, 0, sizeof (struct bgp_nlri));
1394 memset (&mp_withdraw, 0, sizeof (struct bgp_nlri));
1395
1396 s = peer->ibuf;
1397 end = stream_pnt (s) + size;
1398
1399 /* RFC1771 6.3 If the Unfeasible Routes Length or Total Attribute
1400 Length is too large (i.e., if Unfeasible Routes Length + Total
1401 Attribute Length + 23 exceeds the message Length), then the Error
1402 Subcode is set to Malformed Attribute List. */
1403 if (stream_pnt (s) + 2 > end)
1404 {
1405 zlog_err ("%s [Error] Update packet error"
1406 " (packet length is short for unfeasible length)",
1407 peer->host);
1408 bgp_notify_send (peer, BGP_NOTIFY_UPDATE_ERR,
1409 BGP_NOTIFY_UPDATE_MAL_ATTR);
1410 return -1;
1411 }
1412
1413 /* Unfeasible Route Length. */
1414 withdraw_len = stream_getw (s);
1415
1416 /* Unfeasible Route Length check. */
1417 if (stream_pnt (s) + withdraw_len > end)
1418 {
1419 zlog_err ("%s [Error] Update packet error"
1420 " (packet unfeasible length overflow %d)",
1421 peer->host, withdraw_len);
1422 bgp_notify_send (peer, BGP_NOTIFY_UPDATE_ERR,
1423 BGP_NOTIFY_UPDATE_MAL_ATTR);
1424 return -1;
1425 }
1426
1427 /* Unfeasible Route packet format check. */
1428 if (withdraw_len > 0)
1429 {
1430 ret = bgp_nlri_sanity_check (peer, AFI_IP, stream_pnt (s), withdraw_len);
1431 if (ret < 0)
1432 return -1;
1433
1434 if (BGP_DEBUG (packet, PACKET_RECV))
1435 zlog_info ("%s [Update:RECV] Unfeasible NLRI received", peer->host);
1436
1437 withdraw.afi = AFI_IP;
1438 withdraw.safi = SAFI_UNICAST;
1439 withdraw.nlri = stream_pnt (s);
1440 withdraw.length = withdraw_len;
1441 stream_forward (s, withdraw_len);
1442 }
1443
1444 /* Attribute total length check. */
1445 if (stream_pnt (s) + 2 > end)
1446 {
1447 zlog_warn ("%s [Error] Packet Error"
1448 " (update packet is short for attribute length)",
1449 peer->host);
1450 bgp_notify_send (peer, BGP_NOTIFY_UPDATE_ERR,
1451 BGP_NOTIFY_UPDATE_MAL_ATTR);
1452 return -1;
1453 }
1454
1455 /* Fetch attribute total length. */
1456 attribute_len = stream_getw (s);
1457
1458 /* Attribute length check. */
1459 if (stream_pnt (s) + attribute_len > end)
1460 {
1461 zlog_warn ("%s [Error] Packet Error"
1462 " (update packet attribute length overflow %d)",
1463 peer->host, attribute_len);
1464 bgp_notify_send (peer, BGP_NOTIFY_UPDATE_ERR,
1465 BGP_NOTIFY_UPDATE_MAL_ATTR);
1466 return -1;
1467 }
1468
1469 /* Parse attribute when it exists. */
1470 if (attribute_len)
1471 {
1472 ret = bgp_attr_parse (peer, &attr, attribute_len,
1473 &mp_update, &mp_withdraw);
1474 if (ret < 0)
1475 return -1;
1476 }
1477
1478 /* Logging the attribute. */
1479 if (BGP_DEBUG (update, UPDATE_IN))
1480 {
1481 ret= bgp_dump_attr (peer, &attr, attrstr, BUFSIZ);
1482
1483 if (ret)
1484 zlog (peer->log, LOG_INFO, "%s rcvd UPDATE w/ attr: %s",
1485 peer->host, attrstr);
1486 }
1487
1488 /* Network Layer Reachability Information. */
1489 update_len = end - stream_pnt (s);
1490
1491 if (update_len)
1492 {
1493 /* Check NLRI packet format and prefix length. */
1494 ret = bgp_nlri_sanity_check (peer, AFI_IP, stream_pnt (s), update_len);
1495 if (ret < 0)
1496 return -1;
1497
1498 /* Set NLRI portion to structure. */
1499 update.afi = AFI_IP;
1500 update.safi = SAFI_UNICAST;
1501 update.nlri = stream_pnt (s);
1502 update.length = update_len;
1503 stream_forward (s, update_len);
1504 }
1505
1506 /* NLRI is processed only when the peer is configured specific
1507 Address Family and Subsequent Address Family. */
1508 if (peer->afc[AFI_IP][SAFI_UNICAST])
1509 {
1510 if (withdraw.length)
1511 bgp_nlri_parse (peer, NULL, &withdraw);
1512
1513 if (update.length)
1514 {
1515 /* We check well-known attribute only for IPv4 unicast
1516 update. */
1517 ret = bgp_attr_check (peer, &attr);
1518 if (ret < 0)
1519 return -1;
1520
1521 bgp_nlri_parse (peer, &attr, &update);
1522 }
1523
1524 if (! attribute_len && ! withdraw_len)
1525 {
1526 /* End-of-RIB received */
1527
1528 if (BGP_DEBUG (update, UPDATE_IN))
1529 zlog (peer->log, LOG_INFO, "rcvd End-of-RIB for IPv4 Unicast from %s",
1530 peer->host);
1531 }
1532 }
1533 if (peer->afc[AFI_IP][SAFI_MULTICAST])
1534 {
1535 if (mp_update.length
1536 && mp_update.afi == AFI_IP
1537 && mp_update.safi == SAFI_MULTICAST)
1538 bgp_nlri_parse (peer, &attr, &mp_update);
1539
1540 if (mp_withdraw.length
1541 && mp_withdraw.afi == AFI_IP
1542 && mp_withdraw.safi == SAFI_MULTICAST)
1543 bgp_nlri_parse (peer, NULL, &mp_withdraw);
1544
1545 if (attribute_len == 6 && ! withdraw_len
1546 && mp_withdraw.afi == AFI_IP
1547 && mp_withdraw.safi == SAFI_MULTICAST
1548 && mp_withdraw.length == 0)
1549 {
1550 /* End-of-RIB received */
1551
1552 if (BGP_DEBUG (update, UPDATE_IN))
1553 zlog (peer->log, LOG_INFO, "rcvd End-of-RIB for IPv4 Multicast from %s",
1554 peer->host);
1555 }
1556 }
1557 if (peer->afc[AFI_IP6][SAFI_UNICAST])
1558 {
1559 if (mp_update.length
1560 && mp_update.afi == AFI_IP6
1561 && mp_update.safi == SAFI_UNICAST)
1562 bgp_nlri_parse (peer, &attr, &mp_update);
1563
1564 if (mp_withdraw.length
1565 && mp_withdraw.afi == AFI_IP6
1566 && mp_withdraw.safi == SAFI_UNICAST)
1567 bgp_nlri_parse (peer, NULL, &mp_withdraw);
1568
1569 if (attribute_len == 6 && ! withdraw_len
1570 && mp_withdraw.afi == AFI_IP6
1571 && mp_withdraw.safi == SAFI_UNICAST
1572 && mp_withdraw.length == 0)
1573 {
1574 /* End-of-RIB received */
1575
1576 if (BGP_DEBUG (update, UPDATE_IN))
1577 zlog (peer->log, LOG_INFO, "rcvd End-of-RIB for IPv6 Unicast from %s",
1578 peer->host);
1579 }
1580 }
1581 if (peer->afc[AFI_IP6][SAFI_MULTICAST])
1582 {
1583 if (mp_update.length
1584 && mp_update.afi == AFI_IP6
1585 && mp_update.safi == SAFI_MULTICAST)
1586 bgp_nlri_parse (peer, &attr, &mp_update);
1587
1588 if (mp_withdraw.length
1589 && mp_withdraw.afi == AFI_IP6
1590 && mp_withdraw.safi == SAFI_MULTICAST)
1591 bgp_nlri_parse (peer, NULL, &mp_withdraw);
1592
1593 if (attribute_len == 6 && ! withdraw_len
1594 && mp_withdraw.afi == AFI_IP6
1595 && mp_withdraw.safi == SAFI_MULTICAST
1596 && mp_withdraw.length == 0)
1597 {
1598 /* End-of-RIB received */
1599
1600 if (BGP_DEBUG (update, UPDATE_IN))
1601 zlog (peer->log, LOG_INFO, "rcvd End-of-RIB for IPv6 Multicast from %s",
1602 peer->host);
1603 }
1604 }
1605 if (peer->afc[AFI_IP][SAFI_MPLS_VPN])
1606 {
1607 if (mp_update.length
1608 && mp_update.afi == AFI_IP
1609 && mp_update.safi == BGP_SAFI_VPNV4)
1610 bgp_nlri_parse_vpnv4 (peer, &attr, &mp_update);
1611
1612 if (mp_withdraw.length
1613 && mp_withdraw.afi == AFI_IP
1614 && mp_withdraw.safi == BGP_SAFI_VPNV4)
1615 bgp_nlri_parse_vpnv4 (peer, NULL, &mp_withdraw);
1616
1617 if (attribute_len == 6 && ! withdraw_len
1618 && mp_withdraw.afi == AFI_IP
1619 && mp_withdraw.safi == BGP_SAFI_VPNV4
1620 && mp_withdraw.length == 0)
1621 {
1622 /* End-of-RIB received */
1623
1624 if (BGP_DEBUG (update, UPDATE_IN))
1625 zlog (peer->log, LOG_INFO, "rcvd End-of-RIB for VPNv4 Unicast from %s",
1626 peer->host);
1627 }
1628 }
1629
1630 /* Everything is done. We unintern temporary structures which
1631 interned in bgp_attr_parse(). */
1632 if (attr.aspath)
1633 aspath_unintern (attr.aspath);
1634 if (attr.community)
1635 community_unintern (attr.community);
1636 if (attr.ecommunity)
1637 ecommunity_unintern (attr.ecommunity);
1638 if (attr.cluster)
1639 cluster_unintern (attr.cluster);
1640 if (attr.transit)
1641 transit_unintern (attr.transit);
1642
1643 /* If peering is stopped due to some reason, do not generate BGP
1644 event. */
1645 if (peer->status != Established)
1646 return 0;
1647
1648 /* Increment packet counter. */
1649 peer->update_in++;
1650 peer->update_time = time (NULL);
1651
1652 /* Generate BGP event. */
1653 BGP_EVENT_ADD (peer, Receive_UPDATE_message);
1654
1655 return 0;
1656 }
1657
1658 /* Notify message treatment function. */
1659 void
1660 bgp_notify_receive (struct peer *peer, bgp_size_t size)
1661 {
1662 struct bgp_notify bgp_notify;
1663
1664 if (peer->notify.data)
1665 {
1666 XFREE (MTYPE_TMP, peer->notify.data);
1667 peer->notify.data = NULL;
1668 peer->notify.length = 0;
1669 }
1670
1671 bgp_notify.code = stream_getc (peer->ibuf);
1672 bgp_notify.subcode = stream_getc (peer->ibuf);
1673 bgp_notify.length = size - 2;
1674 bgp_notify.data = NULL;
1675
1676 /* Preserv notify code and sub code. */
1677 peer->notify.code = bgp_notify.code;
1678 peer->notify.subcode = bgp_notify.subcode;
1679 /* For further diagnostic record returned Data. */
1680 if (bgp_notify.length)
1681 {
1682 peer->notify.length = size - 2;
1683 peer->notify.data = XMALLOC (MTYPE_TMP, size - 2);
1684 memcpy (peer->notify.data, stream_pnt (peer->ibuf), size - 2);
1685 }
1686
1687 /* For debug */
1688 {
1689 int i;
1690 int first = 0;
1691 char c[4];
1692
1693 if (bgp_notify.length)
1694 {
1695 bgp_notify.data = XMALLOC (MTYPE_TMP, bgp_notify.length * 3);
1696 for (i = 0; i < bgp_notify.length; i++)
1697 if (first)
1698 {
1699 sprintf (c, " %02x", stream_getc (peer->ibuf));
1700 strcat (bgp_notify.data, c);
1701 }
1702 else
1703 {
1704 first = 1;
1705 sprintf (c, "%02x", stream_getc (peer->ibuf));
1706 strcpy (bgp_notify.data, c);
1707 }
1708 }
1709
1710 bgp_notify_print(peer, &bgp_notify, "received");
1711 if (bgp_notify.data)
1712 XFREE (MTYPE_TMP, bgp_notify.data);
1713 }
1714
1715 /* peer count update */
1716 peer->notify_in++;
1717
1718 if (peer->status == Established)
1719 peer->last_reset = PEER_DOWN_NOTIFY_RECEIVED;
1720
1721 /* We have to check for Notify with Unsupported Optional Parameter.
1722 in that case we fallback to open without the capability option.
1723 But this done in bgp_stop. We just mark it here to avoid changing
1724 the fsm tables. */
1725 if (bgp_notify.code == BGP_NOTIFY_OPEN_ERR &&
1726 bgp_notify.subcode == BGP_NOTIFY_OPEN_UNSUP_PARAM )
1727 UNSET_FLAG (peer->sflags, PEER_STATUS_CAPABILITY_OPEN);
1728
1729 /* Also apply to Unsupported Capability until remote router support
1730 capability. */
1731 if (bgp_notify.code == BGP_NOTIFY_OPEN_ERR &&
1732 bgp_notify.subcode == BGP_NOTIFY_OPEN_UNSUP_CAPBL)
1733 UNSET_FLAG (peer->sflags, PEER_STATUS_CAPABILITY_OPEN);
1734
1735 BGP_EVENT_ADD (peer, Receive_NOTIFICATION_message);
1736 }
1737
1738 /* Keepalive treatment function -- get keepalive send keepalive */
1739 void
1740 bgp_keepalive_receive (struct peer *peer, bgp_size_t size)
1741 {
1742 if (BGP_DEBUG (keepalive, KEEPALIVE))
1743 zlog_info ("%s KEEPALIVE rcvd", peer->host);
1744
1745 BGP_EVENT_ADD (peer, Receive_KEEPALIVE_message);
1746 }
1747
1748 /* Route refresh message is received. */
1749 void
1750 bgp_route_refresh_receive (struct peer *peer, bgp_size_t size)
1751 {
1752 afi_t afi;
1753 safi_t safi;
1754 u_char reserved;
1755 struct stream *s;
1756
1757 /* If peer does not have the capability, send notification. */
1758 if (! CHECK_FLAG (peer->cap, PEER_CAP_REFRESH_ADV))
1759 {
1760 plog_err (peer->log, "%s [Error] BGP route refresh is not enabled",
1761 peer->host);
1762 bgp_notify_send (peer,
1763 BGP_NOTIFY_HEADER_ERR,
1764 BGP_NOTIFY_HEADER_BAD_MESTYPE);
1765 return;
1766 }
1767
1768 /* Status must be Established. */
1769 if (peer->status != Established)
1770 {
1771 plog_err (peer->log,
1772 "%s [Error] Route refresh packet received under status %s",
1773 peer->host, LOOKUP (bgp_status_msg, peer->status));
1774 bgp_notify_send (peer, BGP_NOTIFY_FSM_ERR, 0);
1775 return;
1776 }
1777
1778 s = peer->ibuf;
1779
1780 /* Parse packet. */
1781 afi = stream_getw (s);
1782 reserved = stream_getc (s);
1783 safi = stream_getc (s);
1784
1785 if (BGP_DEBUG (normal, NORMAL))
1786 zlog_info ("%s rcvd REFRESH_REQ for afi/safi: %d/%d",
1787 peer->host, afi, safi);
1788
1789 /* Check AFI and SAFI. */
1790 if ((afi != AFI_IP && afi != AFI_IP6)
1791 || (safi != SAFI_UNICAST && safi != SAFI_MULTICAST
1792 && safi != BGP_SAFI_VPNV4))
1793 {
1794 if (BGP_DEBUG (normal, NORMAL))
1795 {
1796 zlog_info ("%s REFRESH_REQ for unrecognized afi/safi: %d/%d - ignored",
1797 peer->host, afi, safi);
1798 }
1799 return;
1800 }
1801
1802 /* Adjust safi code. */
1803 if (safi == BGP_SAFI_VPNV4)
1804 safi = SAFI_MPLS_VPN;
1805
1806 if (size != BGP_MSG_ROUTE_REFRESH_MIN_SIZE - BGP_HEADER_SIZE)
1807 {
1808 u_char *end;
1809 u_char when_to_refresh;
1810 u_char orf_type;
1811 u_int16_t orf_len;
1812
1813 if (size - (BGP_MSG_ROUTE_REFRESH_MIN_SIZE - BGP_HEADER_SIZE) < 5)
1814 {
1815 zlog_info ("%s ORF route refresh length error", peer->host);
1816 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
1817 return;
1818 }
1819
1820 when_to_refresh = stream_getc (s);
1821 end = stream_pnt (s) + (size - 5);
1822
1823 while (stream_pnt (s) < end)
1824 {
1825 orf_type = stream_getc (s);
1826 orf_len = stream_getw (s);
1827
1828 if (orf_type == ORF_TYPE_PREFIX
1829 || orf_type == ORF_TYPE_PREFIX_OLD)
1830 {
1831 u_char *p_pnt = stream_pnt (s);
1832 u_char *p_end = stream_pnt (s) + orf_len;
1833 struct orf_prefix orfp;
1834 u_char common = 0;
1835 u_int32_t seq;
1836 int psize;
1837 char name[BUFSIZ];
1838 char buf[BUFSIZ];
1839 int ret;
1840
1841 if (BGP_DEBUG (normal, NORMAL))
1842 {
1843 zlog_info ("%s rcvd Prefixlist ORF(%d) length %d",
1844 peer->host, orf_type, orf_len);
1845 }
1846
1847 /* ORF prefix-list name */
1848 sprintf (name, "%s.%d.%d", peer->host, afi, safi);
1849
1850 while (p_pnt < p_end)
1851 {
1852 memset (&orfp, 0, sizeof (struct orf_prefix));
1853 common = *p_pnt++;
1854 if (common & ORF_COMMON_PART_REMOVE_ALL)
1855 {
1856 if (BGP_DEBUG (normal, NORMAL))
1857 zlog_info ("%s rcvd Remove-All pfxlist ORF request", peer->host);
1858 prefix_bgp_orf_remove_all (name);
1859 break;
1860 }
1861 memcpy (&seq, p_pnt, sizeof (u_int32_t));
1862 p_pnt += sizeof (u_int32_t);
1863 orfp.seq = ntohl (seq);
1864 orfp.ge = *p_pnt++;
1865 orfp.le = *p_pnt++;
1866 orfp.p.prefixlen = *p_pnt++;
1867 orfp.p.family = afi2family (afi);
1868 psize = PSIZE (orfp.p.prefixlen);
1869 memcpy (&orfp.p.u.prefix, p_pnt, psize);
1870 p_pnt += psize;
1871
1872 if (BGP_DEBUG (normal, NORMAL))
1873 zlog_info ("%s rcvd %s %s seq %u %s/%d ge %d le %d",
1874 peer->host,
1875 (common & ORF_COMMON_PART_REMOVE ? "Remove" : "Add"),
1876 (common & ORF_COMMON_PART_DENY ? "deny" : "permit"),
1877 orfp.seq,
1878 inet_ntop (orfp.p.family, &orfp.p.u.prefix, buf, BUFSIZ),
1879 orfp.p.prefixlen, orfp.ge, orfp.le);
1880
1881 ret = prefix_bgp_orf_set (name, afi, &orfp,
1882 (common & ORF_COMMON_PART_DENY ? 0 : 1 ),
1883 (common & ORF_COMMON_PART_REMOVE ? 0 : 1));
1884
1885 if (ret != CMD_SUCCESS)
1886 {
1887 if (BGP_DEBUG (normal, NORMAL))
1888 zlog_info ("%s Received misformatted prefixlist ORF. Remove All pfxlist", peer->host);
1889 prefix_bgp_orf_remove_all (name);
1890 break;
1891 }
1892 }
1893 peer->orf_plist[afi][safi] =
1894 prefix_list_lookup (AFI_ORF_PREFIX, name);
1895 }
1896 stream_forward (s, orf_len);
1897 }
1898 if (BGP_DEBUG (normal, NORMAL))
1899 zlog_info ("%s rcvd Refresh %s ORF request", peer->host,
1900 when_to_refresh == REFRESH_DEFER ? "Defer" : "Immediate");
1901 if (when_to_refresh == REFRESH_DEFER)
1902 return;
1903 }
1904
1905 /* First update is deferred until ORF or ROUTE-REFRESH is received */
1906 if (CHECK_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_ORF_WAIT_REFRESH))
1907 UNSET_FLAG (peer->af_sflags[afi][safi], PEER_STATUS_ORF_WAIT_REFRESH);
1908
1909 /* Perform route refreshment to the peer */
1910 bgp_announce_route (peer, afi, safi);
1911 }
1912
1913 int
1914 bgp_capability_msg_parse (struct peer *peer, u_char *pnt, bgp_size_t length)
1915 {
1916 u_char *end;
1917 struct capability cap;
1918 u_char action;
1919 struct bgp *bgp;
1920 afi_t afi;
1921 safi_t safi;
1922
1923 bgp = peer->bgp;
1924 end = pnt + length;
1925
1926 while (pnt < end)
1927 {
1928 /* We need at least action, capability code and capability length. */
1929 if (pnt + 3 > end)
1930 {
1931 zlog_info ("%s Capability length error", peer->host);
1932 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
1933 return -1;
1934 }
1935
1936 action = *pnt;
1937
1938 /* Fetch structure to the byte stream. */
1939 memcpy (&cap, pnt + 1, sizeof (struct capability));
1940
1941 /* Action value check. */
1942 if (action != CAPABILITY_ACTION_SET
1943 && action != CAPABILITY_ACTION_UNSET)
1944 {
1945 zlog_info ("%s Capability Action Value error %d",
1946 peer->host, action);
1947 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
1948 return -1;
1949 }
1950
1951 if (BGP_DEBUG (normal, NORMAL))
1952 zlog_info ("%s CAPABILITY has action: %d, code: %u, length %u",
1953 peer->host, action, cap.code, cap.length);
1954
1955 /* Capability length check. */
1956 if (pnt + (cap.length + 3) > end)
1957 {
1958 zlog_info ("%s Capability length error", peer->host);
1959 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
1960 return -1;
1961 }
1962
1963 /* We know MP Capability Code. */
1964 if (cap.code == CAPABILITY_CODE_MP)
1965 {
1966 afi = ntohs (cap.mpc.afi);
1967 safi = cap.mpc.safi;
1968
1969 /* Ignore capability when override-capability is set. */
1970 if (CHECK_FLAG (peer->flags, PEER_FLAG_OVERRIDE_CAPABILITY))
1971 continue;
1972
1973 /* Address family check. */
1974 if ((afi == AFI_IP
1975 || afi == AFI_IP6)
1976 && (safi == SAFI_UNICAST
1977 || safi == SAFI_MULTICAST
1978 || safi == BGP_SAFI_VPNV4))
1979 {
1980 if (BGP_DEBUG (normal, NORMAL))
1981 zlog_info ("%s CAPABILITY has %s MP_EXT CAP for afi/safi: %u/%u",
1982 peer->host,
1983 action == CAPABILITY_ACTION_SET
1984 ? "Advertising" : "Removing",
1985 ntohs(cap.mpc.afi) , cap.mpc.safi);
1986
1987 /* Adjust safi code. */
1988 if (safi == BGP_SAFI_VPNV4)
1989 safi = SAFI_MPLS_VPN;
1990
1991 if (action == CAPABILITY_ACTION_SET)
1992 {
1993 peer->afc_recv[afi][safi] = 1;
1994 if (peer->afc[afi][safi])
1995 {
1996 peer->afc_nego[afi][safi] = 1;
1997 bgp_announce_route (peer, afi, safi);
1998 }
1999 }
2000 else
2001 {
2002 peer->afc_recv[afi][safi] = 0;
2003 peer->afc_nego[afi][safi] = 0;
2004
2005 if (peer_active_nego (peer))
2006 bgp_clear_route (peer, afi, safi);
2007 else
2008 BGP_EVENT_ADD (peer, BGP_Stop);
2009 }
2010 }
2011 }
2012 else if (cap.code == CAPABILITY_CODE_REFRESH
2013 || cap.code == CAPABILITY_CODE_REFRESH_OLD)
2014 {
2015 /* Check length. */
2016 if (cap.length != 0)
2017 {
2018 zlog_info ("%s Route Refresh Capability length error %d",
2019 peer->host, cap.length);
2020 bgp_notify_send (peer, BGP_NOTIFY_CEASE, 0);
2021 return -1;
2022 }
2023
2024 if (BGP_DEBUG (normal, NORMAL))
2025 zlog_info ("%s CAPABILITY has %s ROUTE-REFRESH capability(%s) for all address-families",
2026 peer->host,
2027 action == CAPABILITY_ACTION_SET
2028 ? "Advertising" : "Removing",
2029 cap.code == CAPABILITY_CODE_REFRESH_OLD
2030 ? "old" : "new");
2031
2032 /* BGP refresh capability */
2033 if (action == CAPABILITY_ACTION_SET)
2034 {
2035 if (cap.code == CAPABILITY_CODE_REFRESH_OLD)
2036 SET_FLAG (peer->cap, PEER_CAP_REFRESH_OLD_RCV);
2037 else
2038 SET_FLAG (peer->cap, PEER_CAP_REFRESH_NEW_RCV);
2039 }
2040 else
2041 {
2042 if (cap.code == CAPABILITY_CODE_REFRESH_OLD)
2043 UNSET_FLAG (peer->cap, PEER_CAP_REFRESH_OLD_RCV);
2044 else
2045 UNSET_FLAG (peer->cap, PEER_CAP_REFRESH_NEW_RCV);
2046 }
2047 }
2048 else
2049 {
2050 zlog_warn ("%s unrecognized capability code: %d - ignored",
2051 peer->host, cap.code);
2052 }
2053 pnt += cap.length + 3;
2054 }
2055 return 0;
2056 }
2057
2058 /* Dynamic Capability is received. */
2059 void
2060 bgp_capability_receive (struct peer *peer, bgp_size_t size)
2061 {
2062 u_char *pnt;
2063 int ret;
2064
2065 /* Fetch pointer. */
2066 pnt = stream_pnt (peer->ibuf);
2067
2068 if (BGP_DEBUG (normal, NORMAL))
2069 zlog_info ("%s rcv CAPABILITY", peer->host);
2070
2071 /* If peer does not have the capability, send notification. */
2072 if (! CHECK_FLAG (peer->cap, PEER_CAP_DYNAMIC_ADV))
2073 {
2074 plog_err (peer->log, "%s [Error] BGP dynamic capability is not enabled",
2075 peer->host);
2076 bgp_notify_send (peer,
2077 BGP_NOTIFY_HEADER_ERR,
2078 BGP_NOTIFY_HEADER_BAD_MESTYPE);
2079 return;
2080 }
2081
2082 /* Status must be Established. */
2083 if (peer->status != Established)
2084 {
2085 plog_err (peer->log,
2086 "%s [Error] Dynamic capability packet received under status %s", peer->host, LOOKUP (bgp_status_msg, peer->status));
2087 bgp_notify_send (peer, BGP_NOTIFY_FSM_ERR, 0);
2088 return;
2089 }
2090
2091 /* Parse packet. */
2092 ret = bgp_capability_msg_parse (peer, pnt, size);
2093 }
2094 \f
2095 /* BGP read utility function. */
2096 int
2097 bgp_read_packet (struct peer *peer)
2098 {
2099 int nbytes;
2100 int readsize;
2101
2102 readsize = peer->packet_size - peer->ibuf->putp;
2103
2104 /* If size is zero then return. */
2105 if (! readsize)
2106 return 0;
2107
2108 /* Read packet from fd. */
2109 nbytes = stream_read_unblock (peer->ibuf, peer->fd, readsize);
2110
2111 /* If read byte is smaller than zero then error occured. */
2112 if (nbytes < 0)
2113 {
2114 if (errno == EAGAIN)
2115 return -1;
2116
2117 plog_err (peer->log, "%s [Error] bgp_read_packet error: %s",
2118 peer->host, strerror (errno));
2119 BGP_EVENT_ADD (peer, TCP_fatal_error);
2120 return -1;
2121 }
2122
2123 /* When read byte is zero : clear bgp peer and return */
2124 if (nbytes == 0)
2125 {
2126 if (BGP_DEBUG (events, EVENTS))
2127 plog_info (peer->log, "%s [Event] BGP connection closed fd %d",
2128 peer->host, peer->fd);
2129
2130 if (peer->status == Established)
2131 peer->last_reset = PEER_DOWN_CLOSE_SESSION;
2132
2133 BGP_EVENT_ADD (peer, TCP_connection_closed);
2134 return -1;
2135 }
2136
2137 /* We read partial packet. */
2138 if (peer->ibuf->putp != peer->packet_size)
2139 return -1;
2140
2141 return 0;
2142 }
2143
2144 /* Marker check. */
2145 int
2146 bgp_marker_all_one (struct stream *s, int length)
2147 {
2148 int i;
2149
2150 for (i = 0; i < length; i++)
2151 if (s->data[i] != 0xff)
2152 return 0;
2153
2154 return 1;
2155 }
2156
2157 /* Starting point of packet process function. */
2158 int
2159 bgp_read (struct thread *thread)
2160 {
2161 int ret;
2162 u_char type = 0;
2163 struct peer *peer;
2164 bgp_size_t size;
2165 char notify_data_length[2];
2166
2167 /* Yes first of all get peer pointer. */
2168 peer = THREAD_ARG (thread);
2169 peer->t_read = NULL;
2170
2171 /* For non-blocking IO check. */
2172 if (peer->status == Connect)
2173 {
2174 bgp_connect_check (peer);
2175 goto done;
2176 }
2177 else
2178 {
2179 if (peer->fd < 0)
2180 {
2181 zlog_err ("bgp_read peer's fd is negative value %d", peer->fd);
2182 return -1;
2183 }
2184 BGP_READ_ON (peer->t_read, bgp_read, peer->fd);
2185 }
2186
2187 /* Read packet header to determine type of the packet */
2188 if (peer->packet_size == 0)
2189 peer->packet_size = BGP_HEADER_SIZE;
2190
2191 if (peer->ibuf->putp < BGP_HEADER_SIZE)
2192 {
2193 ret = bgp_read_packet (peer);
2194
2195 /* Header read error or partial read packet. */
2196 if (ret < 0)
2197 goto done;
2198
2199 /* Get size and type. */
2200 stream_forward (peer->ibuf, BGP_MARKER_SIZE);
2201 memcpy (notify_data_length, stream_pnt (peer->ibuf), 2);
2202 size = stream_getw (peer->ibuf);
2203 type = stream_getc (peer->ibuf);
2204
2205 if (BGP_DEBUG (normal, NORMAL) && type != 2 && type != 0)
2206 zlog_info ("%s rcv message type %d, length (excl. header) %d",
2207 peer->host, type, size - BGP_HEADER_SIZE);
2208
2209 /* Marker check */
2210 if (((type == BGP_MSG_OPEN) || (type == BGP_MSG_KEEPALIVE))
2211 && ! bgp_marker_all_one (peer->ibuf, BGP_MARKER_SIZE))
2212 {
2213 bgp_notify_send (peer,
2214 BGP_NOTIFY_HEADER_ERR,
2215 BGP_NOTIFY_HEADER_NOT_SYNC);
2216 goto done;
2217 }
2218
2219 /* BGP type check. */
2220 if (type != BGP_MSG_OPEN && type != BGP_MSG_UPDATE
2221 && type != BGP_MSG_NOTIFY && type != BGP_MSG_KEEPALIVE
2222 && type != BGP_MSG_ROUTE_REFRESH_NEW
2223 && type != BGP_MSG_ROUTE_REFRESH_OLD
2224 && type != BGP_MSG_CAPABILITY)
2225 {
2226 if (BGP_DEBUG (normal, NORMAL))
2227 plog_err (peer->log,
2228 "%s unknown message type 0x%02x",
2229 peer->host, type);
2230 bgp_notify_send_with_data (peer,
2231 BGP_NOTIFY_HEADER_ERR,
2232 BGP_NOTIFY_HEADER_BAD_MESTYPE,
2233 &type, 1);
2234 goto done;
2235 }
2236 /* Mimimum packet length check. */
2237 if ((size < BGP_HEADER_SIZE)
2238 || (size > BGP_MAX_PACKET_SIZE)
2239 || (type == BGP_MSG_OPEN && size < BGP_MSG_OPEN_MIN_SIZE)
2240 || (type == BGP_MSG_UPDATE && size < BGP_MSG_UPDATE_MIN_SIZE)
2241 || (type == BGP_MSG_NOTIFY && size < BGP_MSG_NOTIFY_MIN_SIZE)
2242 || (type == BGP_MSG_KEEPALIVE && size != BGP_MSG_KEEPALIVE_MIN_SIZE)
2243 || (type == BGP_MSG_ROUTE_REFRESH_NEW && size < BGP_MSG_ROUTE_REFRESH_MIN_SIZE)
2244 || (type == BGP_MSG_ROUTE_REFRESH_OLD && size < BGP_MSG_ROUTE_REFRESH_MIN_SIZE)
2245 || (type == BGP_MSG_CAPABILITY && size < BGP_MSG_CAPABILITY_MIN_SIZE))
2246 {
2247 if (BGP_DEBUG (normal, NORMAL))
2248 plog_err (peer->log,
2249 "%s bad message length - %d for %s",
2250 peer->host, size,
2251 type == 128 ? "ROUTE-REFRESH" :
2252 bgp_type_str[(int) type]);
2253 bgp_notify_send_with_data (peer,
2254 BGP_NOTIFY_HEADER_ERR,
2255 BGP_NOTIFY_HEADER_BAD_MESLEN,
2256 (u_char *) notify_data_length, 2);
2257 goto done;
2258 }
2259
2260 /* Adjust size to message length. */
2261 peer->packet_size = size;
2262 }
2263
2264 ret = bgp_read_packet (peer);
2265 if (ret < 0)
2266 goto done;
2267
2268 /* Get size and type again. */
2269 size = stream_getw_from (peer->ibuf, BGP_MARKER_SIZE);
2270 type = stream_getc_from (peer->ibuf, BGP_MARKER_SIZE + 2);
2271
2272 /* BGP packet dump function. */
2273 bgp_dump_packet (peer, type, peer->ibuf);
2274
2275 size = (peer->packet_size - BGP_HEADER_SIZE);
2276
2277 /* Read rest of the packet and call each sort of packet routine */
2278 switch (type)
2279 {
2280 case BGP_MSG_OPEN:
2281 peer->open_in++;
2282 bgp_open_receive (peer, size); /* XXX return value ignored! */
2283 break;
2284 case BGP_MSG_UPDATE:
2285 peer->readtime = time(NULL); /* Last read timer reset */
2286 bgp_update_receive (peer, size);
2287 break;
2288 case BGP_MSG_NOTIFY:
2289 bgp_notify_receive (peer, size);
2290 break;
2291 case BGP_MSG_KEEPALIVE:
2292 peer->readtime = time(NULL); /* Last read timer reset */
2293 bgp_keepalive_receive (peer, size);
2294 break;
2295 case BGP_MSG_ROUTE_REFRESH_NEW:
2296 case BGP_MSG_ROUTE_REFRESH_OLD:
2297 peer->refresh_in++;
2298 bgp_route_refresh_receive (peer, size);
2299 break;
2300 case BGP_MSG_CAPABILITY:
2301 peer->dynamic_cap_in++;
2302 bgp_capability_receive (peer, size);
2303 break;
2304 }
2305
2306 /* Clear input buffer. */
2307 peer->packet_size = 0;
2308 if (peer->ibuf)
2309 stream_reset (peer->ibuf);
2310
2311 done:
2312 if (CHECK_FLAG (peer->sflags, PEER_STATUS_ACCEPT_PEER))
2313 {
2314 if (BGP_DEBUG (events, EVENTS))
2315 zlog_info ("%s [Event] Accepting BGP peer delete", peer->host);
2316 peer_delete (peer);
2317 }
2318 return 0;
2319 }
FRRouting mirror