]> git.proxmox.com Git - mirror_frr.git/blob - ospfd/ospf_packet.c
projects / mirror_frr.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Merge pull request #4749 from ton31337/fix/next-hop-self_force_alias_for_ipv6_7.1
[mirror_frr.git] / ospfd / ospf_packet.c
1 /*
2 * OSPF Sending and Receiving OSPF Packets.
3 * Copyright (C) 1999, 2000 Toshiaki Takada
4 *
5 * This file is part of GNU Zebra.
6 *
7 * GNU Zebra is free software; you can redistribute it and/or modify it
8 * under the terms of the GNU General Public License as published by the
9 * Free Software Foundation; either version 2, or (at your option) any
10 * later version.
11 *
12 * GNU Zebra is distributed in the hope that it will be useful, but
13 * WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 * General Public License for more details.
16 *
17 * You should have received a copy of the GNU General Public License along
18 * with this program; see the file COPYING; if not, write to the Free Software
19 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
20 */
21
22 #include <zebra.h>
23
24 #include "monotime.h"
25 #include "thread.h"
26 #include "memory.h"
27 #include "linklist.h"
28 #include "prefix.h"
29 #include "if.h"
30 #include "table.h"
31 #include "sockunion.h"
32 #include "stream.h"
33 #include "log.h"
34 #include "sockopt.h"
35 #include "checksum.h"
36 #include "md5.h"
37 #include "vrf.h"
38 #include "lib_errors.h"
39
40 #include "ospfd/ospfd.h"
41 #include "ospfd/ospf_network.h"
42 #include "ospfd/ospf_interface.h"
43 #include "ospfd/ospf_ism.h"
44 #include "ospfd/ospf_asbr.h"
45 #include "ospfd/ospf_lsa.h"
46 #include "ospfd/ospf_lsdb.h"
47 #include "ospfd/ospf_neighbor.h"
48 #include "ospfd/ospf_nsm.h"
49 #include "ospfd/ospf_packet.h"
50 #include "ospfd/ospf_spf.h"
51 #include "ospfd/ospf_flood.h"
52 #include "ospfd/ospf_dump.h"
53 #include "ospfd/ospf_errors.h"
54
55 /*
56 * OSPF Fragmentation / fragmented writes
57 *
58 * ospfd can support writing fragmented packets, for cases where
59 * kernel will not fragment IP_HDRINCL and/or multicast destined
60 * packets (ie TTBOMK all kernels, BSD, SunOS, Linux). However,
61 * SunOS, probably BSD too, clobber the user supplied IP ID and IP
62 * flags fields, hence user-space fragmentation will not work.
63 * Only Linux is known to leave IP header unmolested.
64 * Further, fragmentation really should be done the kernel, which already
65 * supports it, and which avoids nasty IP ID state problems.
66 *
67 * Fragmentation of OSPF packets can be required on networks with router
68 * with many many interfaces active in one area, or on networks with links
69 * with low MTUs.
70 */
71 #ifdef GNU_LINUX
72 #define WANT_OSPF_WRITE_FRAGMENT
73 #endif
74
75 /* Packet Type String. */
76 const struct message ospf_packet_type_str[] = {
77 {OSPF_MSG_HELLO, "Hello"},
78 {OSPF_MSG_DB_DESC, "Database Description"},
79 {OSPF_MSG_LS_REQ, "Link State Request"},
80 {OSPF_MSG_LS_UPD, "Link State Update"},
81 {OSPF_MSG_LS_ACK, "Link State Acknowledgment"},
82 {0}};
83
84 /* Minimum (besides OSPF_HEADER_SIZE) lengths for OSPF packets of
85 particular types, offset is the "type" field of a packet. */
86 static const uint16_t ospf_packet_minlen[] = {
87 0,
88 OSPF_HELLO_MIN_SIZE,
89 OSPF_DB_DESC_MIN_SIZE,
90 OSPF_LS_REQ_MIN_SIZE,
91 OSPF_LS_UPD_MIN_SIZE,
92 OSPF_LS_ACK_MIN_SIZE,
93 };
94
95 /* Minimum (besides OSPF_LSA_HEADER_SIZE) lengths for LSAs of particular
96 types, offset is the "LSA type" field. */
97 static const uint16_t ospf_lsa_minlen[] = {
98 0,
99 OSPF_ROUTER_LSA_MIN_SIZE,
100 OSPF_NETWORK_LSA_MIN_SIZE,
101 OSPF_SUMMARY_LSA_MIN_SIZE,
102 OSPF_SUMMARY_LSA_MIN_SIZE,
103 OSPF_AS_EXTERNAL_LSA_MIN_SIZE,
104 0,
105 OSPF_AS_EXTERNAL_LSA_MIN_SIZE,
106 0,
107 0,
108 0,
109 0,
110 };
111
112 /* for ospf_check_auth() */
113 static int ospf_check_sum(struct ospf_header *);
114
115 /* OSPF authentication checking function */
116 static int ospf_auth_type(struct ospf_interface *oi)
117 {
118 int auth_type;
119
120 if (OSPF_IF_PARAM(oi, auth_type) == OSPF_AUTH_NOTSET)
121 auth_type = oi->area->auth_type;
122 else
123 auth_type = OSPF_IF_PARAM(oi, auth_type);
124
125 /* Handle case where MD5 key list is not configured aka Cisco */
126 if (auth_type == OSPF_AUTH_CRYPTOGRAPHIC
127 && list_isempty(OSPF_IF_PARAM(oi, auth_crypt)))
128 return OSPF_AUTH_NULL;
129
130 return auth_type;
131 }
132
133 struct ospf_packet *ospf_packet_new(size_t size)
134 {
135 struct ospf_packet *new;
136
137 new = XCALLOC(MTYPE_OSPF_PACKET, sizeof(struct ospf_packet));
138 new->s = stream_new(size);
139
140 return new;
141 }
142
143 void ospf_packet_free(struct ospf_packet *op)
144 {
145 if (op->s)
146 stream_free(op->s);
147
148 XFREE(MTYPE_OSPF_PACKET, op);
149 }
150
151 struct ospf_fifo *ospf_fifo_new(void)
152 {
153 struct ospf_fifo *new;
154
155 new = XCALLOC(MTYPE_OSPF_FIFO, sizeof(struct ospf_fifo));
156 return new;
157 }
158
159 /* Add new packet to fifo. */
160 void ospf_fifo_push(struct ospf_fifo *fifo, struct ospf_packet *op)
161 {
162 if (fifo->tail)
163 fifo->tail->next = op;
164 else
165 fifo->head = op;
166
167 fifo->tail = op;
168
169 fifo->count++;
170 }
171
172 /* Add new packet to head of fifo. */
173 static void ospf_fifo_push_head(struct ospf_fifo *fifo, struct ospf_packet *op)
174 {
175 op->next = fifo->head;
176
177 if (fifo->tail == NULL)
178 fifo->tail = op;
179
180 fifo->head = op;
181
182 fifo->count++;
183 }
184
185 /* Delete first packet from fifo. */
186 struct ospf_packet *ospf_fifo_pop(struct ospf_fifo *fifo)
187 {
188 struct ospf_packet *op;
189
190 op = fifo->head;
191
192 if (op) {
193 fifo->head = op->next;
194
195 if (fifo->head == NULL)
196 fifo->tail = NULL;
197
198 fifo->count--;
199 }
200
201 return op;
202 }
203
204 /* Return first fifo entry. */
205 struct ospf_packet *ospf_fifo_head(struct ospf_fifo *fifo)
206 {
207 return fifo->head;
208 }
209
210 /* Flush ospf packet fifo. */
211 void ospf_fifo_flush(struct ospf_fifo *fifo)
212 {
213 struct ospf_packet *op;
214 struct ospf_packet *next;
215
216 for (op = fifo->head; op; op = next) {
217 next = op->next;
218 ospf_packet_free(op);
219 }
220 fifo->head = fifo->tail = NULL;
221 fifo->count = 0;
222 }
223
224 /* Free ospf packet fifo. */
225 void ospf_fifo_free(struct ospf_fifo *fifo)
226 {
227 ospf_fifo_flush(fifo);
228
229 XFREE(MTYPE_OSPF_FIFO, fifo);
230 }
231
232 void ospf_packet_add(struct ospf_interface *oi, struct ospf_packet *op)
233 {
234 if (!oi->obuf) {
235 flog_err(
236 EC_OSPF_PKT_PROCESS,
237 "ospf_packet_add(interface %s in state %d [%s], packet type %s, "
238 "destination %s) called with NULL obuf, ignoring "
239 "(please report this bug)!\n",
240 IF_NAME(oi), oi->state,
241 lookup_msg(ospf_ism_state_msg, oi->state, NULL),
242 lookup_msg(ospf_packet_type_str,
243 stream_getc_from(op->s, 1), NULL),
244 inet_ntoa(op->dst));
245 return;
246 }
247
248 /* Add packet to end of queue. */
249 ospf_fifo_push(oi->obuf, op);
250
251 /* Debug of packet fifo*/
252 /* ospf_fifo_debug (oi->obuf); */
253 }
254
255 static void ospf_packet_add_top(struct ospf_interface *oi,
256 struct ospf_packet *op)
257 {
258 if (!oi->obuf) {
259 flog_err(
260 EC_OSPF_PKT_PROCESS,
261 "ospf_packet_add(interface %s in state %d [%s], packet type %s, "
262 "destination %s) called with NULL obuf, ignoring "
263 "(please report this bug)!\n",
264 IF_NAME(oi), oi->state,
265 lookup_msg(ospf_ism_state_msg, oi->state, NULL),
266 lookup_msg(ospf_packet_type_str,
267 stream_getc_from(op->s, 1), NULL),
268 inet_ntoa(op->dst));
269 return;
270 }
271
272 /* Add packet to head of queue. */
273 ospf_fifo_push_head(oi->obuf, op);
274
275 /* Debug of packet fifo*/
276 /* ospf_fifo_debug (oi->obuf); */
277 }
278
279 void ospf_packet_delete(struct ospf_interface *oi)
280 {
281 struct ospf_packet *op;
282
283 op = ospf_fifo_pop(oi->obuf);
284
285 if (op)
286 ospf_packet_free(op);
287 }
288
289 struct ospf_packet *ospf_packet_dup(struct ospf_packet *op)
290 {
291 struct ospf_packet *new;
292
293 if (stream_get_endp(op->s) != op->length)
294 /* XXX size_t */
295 zlog_debug(
296 "ospf_packet_dup stream %lu ospf_packet %u size mismatch",
297 (unsigned long)STREAM_SIZE(op->s), op->length);
298
299 /* Reserve space for MD5 authentication that may be added later. */
300 new = ospf_packet_new(stream_get_endp(op->s) + OSPF_AUTH_MD5_SIZE);
301 stream_copy(new->s, op->s);
302
303 new->dst = op->dst;
304 new->length = op->length;
305
306 return new;
307 }
308
309 /* XXX inline */
310 static unsigned int ospf_packet_authspace(struct ospf_interface *oi)
311 {
312 int auth = 0;
313
314 if (ospf_auth_type(oi) == OSPF_AUTH_CRYPTOGRAPHIC)
315 auth = OSPF_AUTH_MD5_SIZE;
316
317 return auth;
318 }
319
320 static unsigned int ospf_packet_max(struct ospf_interface *oi)
321 {
322 int max;
323
324 max = oi->ifp->mtu - ospf_packet_authspace(oi);
325
326 max -= (OSPF_HEADER_SIZE + sizeof(struct ip));
327
328 return max;
329 }
330
331
332 static int ospf_check_md5_digest(struct ospf_interface *oi,
333 struct ospf_header *ospfh)
334 {
335 MD5_CTX ctx;
336 unsigned char digest[OSPF_AUTH_MD5_SIZE];
337 struct crypt_key *ck;
338 struct ospf_neighbor *nbr;
339 uint16_t length = ntohs(ospfh->length);
340
341 /* Get secret key. */
342 ck = ospf_crypt_key_lookup(OSPF_IF_PARAM(oi, auth_crypt),
343 ospfh->u.crypt.key_id);
344 if (ck == NULL) {
345 flog_warn(EC_OSPF_MD5, "interface %s: ospf_check_md5 no key %d",
346 IF_NAME(oi), ospfh->u.crypt.key_id);
347 return 0;
348 }
349
350 /* check crypto seqnum. */
351 nbr = ospf_nbr_lookup_by_routerid(oi->nbrs, &ospfh->router_id);
352
353 if (nbr
354 && ntohl(nbr->crypt_seqnum) > ntohl(ospfh->u.crypt.crypt_seqnum)) {
355 flog_warn(
356 EC_OSPF_MD5,
357 "interface %s: ospf_check_md5 bad sequence %d (expect %d)",
358 IF_NAME(oi), ntohl(ospfh->u.crypt.crypt_seqnum),
359 ntohl(nbr->crypt_seqnum));
360 return 0;
361 }
362
363 /* Generate a digest for the ospf packet - their digest + our digest. */
364 memset(&ctx, 0, sizeof(ctx));
365 MD5Init(&ctx);
366 MD5Update(&ctx, ospfh, length);
367 MD5Update(&ctx, ck->auth_key, OSPF_AUTH_MD5_SIZE);
368 MD5Final(digest, &ctx);
369
370 /* compare the two */
371 if (memcmp((caddr_t)ospfh + length, digest, OSPF_AUTH_MD5_SIZE)) {
372 flog_warn(EC_OSPF_MD5,
373 "interface %s: ospf_check_md5 checksum mismatch",
374 IF_NAME(oi));
375 return 0;
376 }
377
378 /* save neighbor's crypt_seqnum */
379 if (nbr)
380 nbr->crypt_seqnum = ospfh->u.crypt.crypt_seqnum;
381 return 1;
382 }
383
384 /* This function is called from ospf_write(), it will detect the
385 authentication scheme and if it is MD5, it will change the sequence
386 and update the MD5 digest. */
387 static int ospf_make_md5_digest(struct ospf_interface *oi,
388 struct ospf_packet *op)
389 {
390 struct ospf_header *ospfh;
391 unsigned char digest[OSPF_AUTH_MD5_SIZE] = {0};
392 MD5_CTX ctx;
393 void *ibuf;
394 uint32_t t;
395 struct crypt_key *ck;
396 const uint8_t *auth_key;
397
398 ibuf = STREAM_DATA(op->s);
399 ospfh = (struct ospf_header *)ibuf;
400
401 if (ntohs(ospfh->auth_type) != OSPF_AUTH_CRYPTOGRAPHIC)
402 return 0;
403
404 /* We do this here so when we dup a packet, we don't have to
405 waste CPU rewriting other headers.
406
407 Note that quagga_time /deliberately/ is not used here */
408 t = (time(NULL) & 0xFFFFFFFF);
409 if (t > oi->crypt_seqnum)
410 oi->crypt_seqnum = t;
411 else
412 oi->crypt_seqnum++;
413
414 ospfh->u.crypt.crypt_seqnum = htonl(oi->crypt_seqnum);
415
416 /* Get MD5 Authentication key from auth_key list. */
417 if (list_isempty(OSPF_IF_PARAM(oi, auth_crypt)))
418 auth_key = (const uint8_t *)digest;
419 else {
420 ck = listgetdata(listtail(OSPF_IF_PARAM(oi, auth_crypt)));
421 auth_key = ck->auth_key;
422 }
423
424 /* Generate a digest for the entire packet + our secret key. */
425 memset(&ctx, 0, sizeof(ctx));
426 MD5Init(&ctx);
427 MD5Update(&ctx, ibuf, ntohs(ospfh->length));
428 MD5Update(&ctx, auth_key, OSPF_AUTH_MD5_SIZE);
429 MD5Final(digest, &ctx);
430
431 /* Append md5 digest to the end of the stream. */
432 stream_put(op->s, digest, OSPF_AUTH_MD5_SIZE);
433
434 /* We do *NOT* increment the OSPF header length. */
435 op->length = ntohs(ospfh->length) + OSPF_AUTH_MD5_SIZE;
436
437 if (stream_get_endp(op->s) != op->length)
438 /* XXX size_t */
439 flog_warn(
440 EC_OSPF_MD5,
441 "ospf_make_md5_digest: length mismatch stream %lu ospf_packet %u",
442 (unsigned long)stream_get_endp(op->s), op->length);
443
444 return OSPF_AUTH_MD5_SIZE;
445 }
446
447
448 static int ospf_ls_req_timer(struct thread *thread)
449 {
450 struct ospf_neighbor *nbr;
451
452 nbr = THREAD_ARG(thread);
453 nbr->t_ls_req = NULL;
454
455 /* Send Link State Request. */
456 if (ospf_ls_request_count(nbr))
457 ospf_ls_req_send(nbr);
458
459 /* Set Link State Request retransmission timer. */
460 OSPF_NSM_TIMER_ON(nbr->t_ls_req, ospf_ls_req_timer, nbr->v_ls_req);
461
462 return 0;
463 }
464
465 void ospf_ls_req_event(struct ospf_neighbor *nbr)
466 {
467 if (nbr->t_ls_req) {
468 thread_cancel(nbr->t_ls_req);
469 nbr->t_ls_req = NULL;
470 }
471 nbr->t_ls_req = NULL;
472 thread_add_event(master, ospf_ls_req_timer, nbr, 0, &nbr->t_ls_req);
473 }
474
475 /* Cyclic timer function. Fist registered in ospf_nbr_new () in
476 ospf_neighbor.c */
477 int ospf_ls_upd_timer(struct thread *thread)
478 {
479 struct ospf_neighbor *nbr;
480
481 nbr = THREAD_ARG(thread);
482 nbr->t_ls_upd = NULL;
483
484 /* Send Link State Update. */
485 if (ospf_ls_retransmit_count(nbr) > 0) {
486 struct list *update;
487 struct ospf_lsdb *lsdb;
488 int i;
489 int retransmit_interval;
490
491 retransmit_interval =
492 OSPF_IF_PARAM(nbr->oi, retransmit_interval);
493
494 lsdb = &nbr->ls_rxmt;
495 update = list_new();
496
497 for (i = OSPF_MIN_LSA; i < OSPF_MAX_LSA; i++) {
498 struct route_table *table = lsdb->type[i].db;
499 struct route_node *rn;
500
501 for (rn = route_top(table); rn; rn = route_next(rn)) {
502 struct ospf_lsa *lsa;
503
504 if ((lsa = rn->info) != NULL) {
505 /* Don't retransmit an LSA if we
506 received it within
507 the last RxmtInterval seconds - this
508 is to allow the
509 neighbour a chance to acknowledge the
510 LSA as it may
511 have ben just received before the
512 retransmit timer
513 fired. This is a small tweak to what
514 is in the RFC,
515 but it will cut out out a lot of
516 retransmit traffic
517 - MAG */
518 if (monotime_since(&lsa->tv_recv, NULL)
519 >= retransmit_interval * 1000000LL)
520 listnode_add(update, rn->info);
521 }
522 }
523 }
524
525 if (listcount(update) > 0)
526 ospf_ls_upd_send(nbr, update, OSPF_SEND_PACKET_DIRECT,
527 0);
528 list_delete(&update);
529 }
530
531 /* Set LS Update retransmission timer. */
532 OSPF_NSM_TIMER_ON(nbr->t_ls_upd, ospf_ls_upd_timer, nbr->v_ls_upd);
533
534 return 0;
535 }
536
537 int ospf_ls_ack_timer(struct thread *thread)
538 {
539 struct ospf_interface *oi;
540
541 oi = THREAD_ARG(thread);
542 oi->t_ls_ack = NULL;
543
544 /* Send Link State Acknowledgment. */
545 if (listcount(oi->ls_ack) > 0)
546 ospf_ls_ack_send_delayed(oi);
547
548 /* Set LS Ack timer. */
549 OSPF_ISM_TIMER_ON(oi->t_ls_ack, ospf_ls_ack_timer, oi->v_ls_ack);
550
551 return 0;
552 }
553
554 #ifdef WANT_OSPF_WRITE_FRAGMENT
555 static void ospf_write_frags(int fd, struct ospf_packet *op, struct ip *iph,
556 struct msghdr *msg, unsigned int maxdatasize,
557 unsigned int mtu, int flags, uint8_t type)
558 {
559 #define OSPF_WRITE_FRAG_SHIFT 3
560 uint16_t offset;
561 struct iovec *iovp;
562 int ret;
563
564 assert(op->length == stream_get_endp(op->s));
565 assert(msg->msg_iovlen == 2);
566
567 /* we can but try.
568 *
569 * SunOS, BSD and BSD derived kernels likely will clear ip_id, as
570 * well as the IP_MF flag, making this all quite pointless.
571 *
572 * However, for a system on which IP_MF is left alone, and ip_id left
573 * alone or else which sets same ip_id for each fragment this might
574 * work, eg linux.
575 *
576 * XXX-TODO: It would be much nicer to have the kernel's use their
577 * existing fragmentation support to do this for us. Bugs/RFEs need to
578 * be raised against the various kernels.
579 */
580
581 /* set More Frag */
582 iph->ip_off |= IP_MF;
583
584 /* ip frag offset is expressed in units of 8byte words */
585 offset = maxdatasize >> OSPF_WRITE_FRAG_SHIFT;
586
587 iovp = &msg->msg_iov[1];
588
589 while ((stream_get_endp(op->s) - stream_get_getp(op->s))
590 > maxdatasize) {
591 /* data length of this frag is to next offset value */
592 iovp->iov_len = offset << OSPF_WRITE_FRAG_SHIFT;
593 iph->ip_len = iovp->iov_len + sizeof(struct ip);
594 assert(iph->ip_len <= mtu);
595
596 sockopt_iphdrincl_swab_htosys(iph);
597
598 ret = sendmsg(fd, msg, flags);
599
600 sockopt_iphdrincl_swab_systoh(iph);
601
602 if (ret < 0)
603 flog_err(
604 EC_LIB_SOCKET,
605 "*** ospf_write_frags: sendmsg failed to %s,"
606 " id %d, off %d, len %d, mtu %u failed with %s",
607 inet_ntoa(iph->ip_dst), iph->ip_id, iph->ip_off,
608 iph->ip_len, mtu, safe_strerror(errno));
609
610 if (IS_DEBUG_OSPF_PACKET(type - 1, SEND)) {
611 zlog_debug(
612 "ospf_write_frags: sent id %d, off %d, len %d to %s\n",
613 iph->ip_id, iph->ip_off, iph->ip_len,
614 inet_ntoa(iph->ip_dst));
615 if (IS_DEBUG_OSPF_PACKET(type - 1, DETAIL)) {
616 zlog_debug(
617 "-----------------IP Header Dump----------------------");
618 ospf_ip_header_dump(iph);
619 zlog_debug(
620 "-----------------------------------------------------");
621 }
622 }
623
624 iph->ip_off += offset;
625 stream_forward_getp(op->s, iovp->iov_len);
626 iovp->iov_base = stream_pnt(op->s);
627 }
628
629 /* setup for final fragment */
630 iovp->iov_len = stream_get_endp(op->s) - stream_get_getp(op->s);
631 iph->ip_len = iovp->iov_len + sizeof(struct ip);
632 iph->ip_off &= (~IP_MF);
633 }
634 #endif /* WANT_OSPF_WRITE_FRAGMENT */
635
636 static int ospf_write(struct thread *thread)
637 {
638 struct ospf *ospf = THREAD_ARG(thread);
639 struct ospf_interface *oi;
640 struct ospf_interface *last_serviced_oi = NULL;
641 struct ospf_packet *op;
642 struct sockaddr_in sa_dst;
643 struct ip iph;
644 struct msghdr msg;
645 struct iovec iov[2];
646 uint8_t type;
647 int ret;
648 int flags = 0;
649 struct listnode *node;
650 #ifdef WANT_OSPF_WRITE_FRAGMENT
651 static uint16_t ipid = 0;
652 uint16_t maxdatasize;
653 #endif /* WANT_OSPF_WRITE_FRAGMENT */
654 #define OSPF_WRITE_IPHL_SHIFT 2
655 int pkt_count = 0;
656
657 #ifdef GNU_LINUX
658 unsigned char cmsgbuf[64] = {};
659 struct cmsghdr *cm = (struct cmsghdr *)cmsgbuf;
660 struct in_pktinfo *pi;
661 #endif
662
663 ospf->t_write = NULL;
664
665 node = listhead(ospf->oi_write_q);
666 assert(node);
667 oi = listgetdata(node);
668 assert(oi);
669
670 #ifdef WANT_OSPF_WRITE_FRAGMENT
671 /* seed ipid static with low order bits of time */
672 if (ipid == 0)
673 ipid = (time(NULL) & 0xffff);
674 #endif /* WANT_OSPF_WRITE_FRAGMENT */
675
676 while ((pkt_count < ospf->write_oi_count) && oi
677 && (last_serviced_oi != oi)) {
678 /* If there is only packet in the queue, the oi is removed from
679 write-q, so fix up the last interface that was serviced */
680 if (last_serviced_oi == NULL) {
681 last_serviced_oi = oi;
682 }
683 pkt_count++;
684 #ifdef WANT_OSPF_WRITE_FRAGMENT
685 /* convenience - max OSPF data per packet */
686 maxdatasize = oi->ifp->mtu - sizeof(struct ip);
687 #endif /* WANT_OSPF_WRITE_FRAGMENT */
688 /* Get one packet from queue. */
689 op = ospf_fifo_head(oi->obuf);
690 assert(op);
691 assert(op->length >= OSPF_HEADER_SIZE);
692
693 if (op->dst.s_addr == htonl(OSPF_ALLSPFROUTERS)
694 || op->dst.s_addr == htonl(OSPF_ALLDROUTERS))
695 ospf_if_ipmulticast(ospf, oi->address,
696 oi->ifp->ifindex);
697
698 /* Rewrite the md5 signature & update the seq */
699 ospf_make_md5_digest(oi, op);
700
701 /* Retrieve OSPF packet type. */
702 stream_set_getp(op->s, 1);
703 type = stream_getc(op->s);
704
705 /* reset get pointer */
706 stream_set_getp(op->s, 0);
707
708 memset(&iph, 0, sizeof(struct ip));
709 memset(&sa_dst, 0, sizeof(sa_dst));
710
711 sa_dst.sin_family = AF_INET;
712 #ifdef HAVE_STRUCT_SOCKADDR_IN_SIN_LEN
713 sa_dst.sin_len = sizeof(sa_dst);
714 #endif /* HAVE_STRUCT_SOCKADDR_IN_SIN_LEN */
715 sa_dst.sin_addr = op->dst;
716 sa_dst.sin_port = htons(0);
717
718 /* Set DONTROUTE flag if dst is unicast. */
719 if (oi->type != OSPF_IFTYPE_VIRTUALLINK)
720 if (!IN_MULTICAST(htonl(op->dst.s_addr)))
721 flags = MSG_DONTROUTE;
722
723 iph.ip_hl = sizeof(struct ip) >> OSPF_WRITE_IPHL_SHIFT;
724 /* it'd be very strange for header to not be 4byte-word aligned
725 * but.. */
726 if (sizeof(struct ip)
727 > (unsigned int)(iph.ip_hl << OSPF_WRITE_IPHL_SHIFT))
728 iph.ip_hl++; /* we presume sizeof struct ip cant
729 overflow ip_hl.. */
730
731 iph.ip_v = IPVERSION;
732 iph.ip_tos = IPTOS_PREC_INTERNETCONTROL;
733 iph.ip_len = (iph.ip_hl << OSPF_WRITE_IPHL_SHIFT) + op->length;
734
735 #if defined(__DragonFly__)
736 /*
737 * DragonFly's raw socket expects ip_len/ip_off in network byte
738 * order.
739 */
740 iph.ip_len = htons(iph.ip_len);
741 #endif
742
743 #ifdef WANT_OSPF_WRITE_FRAGMENT
744 /* XXX-MT: not thread-safe at all..
745 * XXX: this presumes this is only programme sending OSPF
746 * packets
747 * otherwise, no guarantee ipid will be unique
748 */
749 iph.ip_id = ++ipid;
750 #endif /* WANT_OSPF_WRITE_FRAGMENT */
751
752 iph.ip_off = 0;
753 if (oi->type == OSPF_IFTYPE_VIRTUALLINK)
754 iph.ip_ttl = OSPF_VL_IP_TTL;
755 else
756 iph.ip_ttl = OSPF_IP_TTL;
757 iph.ip_p = IPPROTO_OSPFIGP;
758 iph.ip_sum = 0;
759 iph.ip_src.s_addr = oi->address->u.prefix4.s_addr;
760 iph.ip_dst.s_addr = op->dst.s_addr;
761
762 memset(&msg, 0, sizeof(msg));
763 msg.msg_name = (caddr_t)&sa_dst;
764 msg.msg_namelen = sizeof(sa_dst);
765 msg.msg_iov = iov;
766 msg.msg_iovlen = 2;
767
768 iov[0].iov_base = (char *)&iph;
769 iov[0].iov_len = iph.ip_hl << OSPF_WRITE_IPHL_SHIFT;
770 iov[1].iov_base = stream_pnt(op->s);
771 iov[1].iov_len = op->length;
772
773 #ifdef GNU_LINUX
774 msg.msg_control = (caddr_t)cm;
775 cm->cmsg_level = SOL_IP;
776 cm->cmsg_type = IP_PKTINFO;
777 cm->cmsg_len = CMSG_LEN(sizeof(struct in_pktinfo));
778 pi = (struct in_pktinfo *)CMSG_DATA(cm);
779 pi->ipi_ifindex = oi->ifp->ifindex;
780
781 msg.msg_controllen = cm->cmsg_len;
782 #endif
783
784 /* Sadly we can not rely on kernels to fragment packets
785 * because of either IP_HDRINCL and/or multicast
786 * destination being set.
787 */
788
789 #ifdef WANT_OSPF_WRITE_FRAGMENT
790 if (op->length > maxdatasize)
791 ospf_write_frags(ospf->fd, op, &iph, &msg, maxdatasize,
792 oi->ifp->mtu, flags, type);
793 #endif /* WANT_OSPF_WRITE_FRAGMENT */
794
795 /* send final fragment (could be first) */
796 sockopt_iphdrincl_swab_htosys(&iph);
797 ret = sendmsg(ospf->fd, &msg, flags);
798 sockopt_iphdrincl_swab_systoh(&iph);
799 if (IS_DEBUG_OSPF_EVENT)
800 zlog_debug(
801 "ospf_write to %s, "
802 "id %d, off %d, len %d, interface %s, mtu %u:",
803 inet_ntoa(iph.ip_dst), iph.ip_id, iph.ip_off,
804 iph.ip_len, oi->ifp->name, oi->ifp->mtu);
805
806 if (ret < 0)
807 flog_err(
808 EC_LIB_SOCKET,
809 "*** sendmsg in ospf_write failed to %s, "
810 "id %d, off %d, len %d, interface %s, mtu %u: %s",
811 inet_ntoa(iph.ip_dst), iph.ip_id, iph.ip_off,
812 iph.ip_len, oi->ifp->name, oi->ifp->mtu,
813 safe_strerror(errno));
814
815 /* Show debug sending packet. */
816 if (IS_DEBUG_OSPF_PACKET(type - 1, SEND)) {
817 if (IS_DEBUG_OSPF_PACKET(type - 1, DETAIL)) {
818 zlog_debug(
819 "-----------------------------------------------------");
820 ospf_ip_header_dump(&iph);
821 stream_set_getp(op->s, 0);
822 ospf_packet_dump(op->s);
823 }
824
825 zlog_debug("%s sent to [%s] via [%s].",
826 lookup_msg(ospf_packet_type_str, type, NULL),
827 inet_ntoa(op->dst), IF_NAME(oi));
828
829 if (IS_DEBUG_OSPF_PACKET(type - 1, DETAIL))
830 zlog_debug(
831 "-----------------------------------------------------");
832 }
833
834 switch (type) {
835 case OSPF_MSG_HELLO:
836 oi->hello_out++;
837 break;
838 case OSPF_MSG_DB_DESC:
839 oi->db_desc_out++;
840 break;
841 case OSPF_MSG_LS_REQ:
842 oi->ls_req_out++;
843 break;
844 case OSPF_MSG_LS_UPD:
845 oi->ls_upd_out++;
846 break;
847 case OSPF_MSG_LS_ACK:
848 oi->ls_ack_out++;
849 break;
850 default:
851 break;
852 }
853
854 /* Now delete packet from queue. */
855 ospf_packet_delete(oi);
856
857 /* Move this interface to the tail of write_q to
858 serve everyone in a round robin fashion */
859 list_delete_node(ospf->oi_write_q, node);
860 if (ospf_fifo_head(oi->obuf) == NULL) {
861 oi->on_write_q = 0;
862 last_serviced_oi = NULL;
863 oi = NULL;
864 } else {
865 listnode_add(ospf->oi_write_q, oi);
866 }
867
868 /* Setup to service from the head of the queue again */
869 if (!list_isempty(ospf->oi_write_q)) {
870 node = listhead(ospf->oi_write_q);
871 assert(node);
872 oi = listgetdata(node);
873 assert(oi);
874 }
875 }
876
877 /* If packets still remain in queue, call write thread. */
878 if (!list_isempty(ospf->oi_write_q))
879 thread_add_write(master, ospf_write, ospf, ospf->fd,
880 &ospf->t_write);
881
882 return 0;
883 }
884
885 /* OSPF Hello message read -- RFC2328 Section 10.5. */
886 static void ospf_hello(struct ip *iph, struct ospf_header *ospfh,
887 struct stream *s, struct ospf_interface *oi, int size)
888 {
889 struct ospf_hello *hello;
890 struct ospf_neighbor *nbr;
891 int old_state;
892 struct prefix p;
893
894 /* increment statistics. */
895 oi->hello_in++;
896
897 hello = (struct ospf_hello *)stream_pnt(s);
898
899 /* If Hello is myself, silently discard. */
900 if (IPV4_ADDR_SAME(&ospfh->router_id, &oi->ospf->router_id)) {
901 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV)) {
902 zlog_debug(
903 "ospf_header[%s/%s]: selforiginated, "
904 "dropping.",
905 lookup_msg(ospf_packet_type_str, ospfh->type,
906 NULL),
907 inet_ntoa(iph->ip_src));
908 }
909 return;
910 }
911
912 /* get neighbor prefix. */
913 p.family = AF_INET;
914 p.prefixlen = ip_masklen(hello->network_mask);
915 p.u.prefix4 = iph->ip_src;
916
917 /* Compare network mask. */
918 /* Checking is ignored for Point-to-Point and Virtual link. */
919 if (oi->type != OSPF_IFTYPE_POINTOPOINT
920 && oi->type != OSPF_IFTYPE_VIRTUALLINK)
921 if (oi->address->prefixlen != p.prefixlen) {
922 flog_warn(
923 EC_OSPF_PACKET,
924 "Packet %s [Hello:RECV]: NetworkMask mismatch on %s (configured prefix length is %d, but hello packet indicates %d).",
925 inet_ntoa(ospfh->router_id), IF_NAME(oi),
926 (int)oi->address->prefixlen, (int)p.prefixlen);
927 return;
928 }
929
930 /* Compare Router Dead Interval. */
931 if (OSPF_IF_PARAM(oi, v_wait) != ntohl(hello->dead_interval)) {
932 flog_warn(EC_OSPF_PACKET,
933 "Packet %s [Hello:RECV]: RouterDeadInterval mismatch "
934 "(expected %u, but received %u).",
935 inet_ntoa(ospfh->router_id),
936 OSPF_IF_PARAM(oi, v_wait),
937 ntohl(hello->dead_interval));
938 return;
939 }
940
941 /* Compare Hello Interval - ignored if fast-hellos are set. */
942 if (OSPF_IF_PARAM(oi, fast_hello) == 0) {
943 if (OSPF_IF_PARAM(oi, v_hello)
944 != ntohs(hello->hello_interval)) {
945 flog_warn(
946 EC_OSPF_PACKET,
947 "Packet %s [Hello:RECV]: HelloInterval mismatch "
948 "(expected %u, but received %u).",
949 inet_ntoa(ospfh->router_id),
950 OSPF_IF_PARAM(oi, v_hello),
951 ntohs(hello->hello_interval));
952 return;
953 }
954 }
955
956 if (IS_DEBUG_OSPF_EVENT)
957 zlog_debug("Packet %s [Hello:RECV]: Options %s vrf %s",
958 inet_ntoa(ospfh->router_id),
959 ospf_options_dump(hello->options),
960 ospf_vrf_id_to_name(oi->ospf->vrf_id));
961
962 /* Compare options. */
963 #define REJECT_IF_TBIT_ON 1 /* XXX */
964 #ifdef REJECT_IF_TBIT_ON
965 if (CHECK_FLAG(hello->options, OSPF_OPTION_MT)) {
966 /*
967 * This router does not support non-zero TOS.
968 * Drop this Hello packet not to establish neighbor
969 * relationship.
970 */
971 flog_warn(EC_OSPF_PACKET,
972 "Packet %s [Hello:RECV]: T-bit on, drop it.",
973 inet_ntoa(ospfh->router_id));
974 return;
975 }
976 #endif /* REJECT_IF_TBIT_ON */
977
978 if (CHECK_FLAG(oi->ospf->config, OSPF_OPAQUE_CAPABLE)
979 && CHECK_FLAG(hello->options, OSPF_OPTION_O)) {
980 /*
981 * This router does know the correct usage of O-bit
982 * the bit should be set in DD packet only.
983 */
984 flog_warn(EC_OSPF_PACKET,
985 "Packet %s [Hello:RECV]: O-bit abuse?",
986 inet_ntoa(ospfh->router_id));
987 #ifdef STRICT_OBIT_USAGE_CHECK
988 return; /* Reject this packet. */
989 #else /* STRICT_OBIT_USAGE_CHECK */
990 UNSET_FLAG(hello->options, OSPF_OPTION_O); /* Ignore O-bit. */
991 #endif /* STRICT_OBIT_USAGE_CHECK */
992 }
993
994 /* new for NSSA is to ensure that NP is on and E is off */
995
996 if (oi->area->external_routing == OSPF_AREA_NSSA) {
997 if (!(CHECK_FLAG(OPTIONS(oi), OSPF_OPTION_NP)
998 && CHECK_FLAG(hello->options, OSPF_OPTION_NP)
999 && !CHECK_FLAG(OPTIONS(oi), OSPF_OPTION_E)
1000 && !CHECK_FLAG(hello->options, OSPF_OPTION_E))) {
1001 flog_warn(
1002 EC_OSPF_PACKET,
1003 "NSSA-Packet-%s[Hello:RECV]: my options: %x, his options %x",
1004 inet_ntoa(ospfh->router_id), OPTIONS(oi),
1005 hello->options);
1006 return;
1007 }
1008 if (IS_DEBUG_OSPF_NSSA)
1009 zlog_debug("NSSA-Hello:RECV:Packet from %s:",
1010 inet_ntoa(ospfh->router_id));
1011 } else
1012 /* The setting of the E-bit found in the Hello Packet's Options
1013 field must match this area's ExternalRoutingCapability A
1014 mismatch causes processing to stop and the packet to be
1015 dropped. The setting of the rest of the bits in the Hello
1016 Packet's Options field should be ignored. */
1017 if (CHECK_FLAG(OPTIONS(oi), OSPF_OPTION_E)
1018 != CHECK_FLAG(hello->options, OSPF_OPTION_E)) {
1019 flog_warn(
1020 EC_OSPF_PACKET,
1021 "Packet %s [Hello:RECV]: my options: %x, his options %x",
1022 inet_ntoa(ospfh->router_id), OPTIONS(oi),
1023 hello->options);
1024 return;
1025 }
1026
1027 /* get neighbour struct */
1028 nbr = ospf_nbr_get(oi, ospfh, iph, &p);
1029
1030 /* neighbour must be valid, ospf_nbr_get creates if none existed */
1031 assert(nbr);
1032
1033 old_state = nbr->state;
1034
1035 /* Add event to thread. */
1036 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_PacketReceived);
1037
1038 /* RFC2328 Section 9.5.1
1039 If the router is not eligible to become Designated Router,
1040 (snip) It must also send an Hello Packet in reply to an
1041 Hello Packet received from any eligible neighbor (other than
1042 the current Designated Router and Backup Designated Router). */
1043 if (oi->type == OSPF_IFTYPE_NBMA)
1044 if (PRIORITY(oi) == 0 && hello->priority > 0
1045 && IPV4_ADDR_CMP(&DR(oi), &iph->ip_src)
1046 && IPV4_ADDR_CMP(&BDR(oi), &iph->ip_src))
1047 OSPF_NSM_TIMER_ON(nbr->t_hello_reply,
1048 ospf_hello_reply_timer,
1049 OSPF_HELLO_REPLY_DELAY);
1050
1051 /* on NBMA network type, it happens to receive bidirectional Hello
1052 packet
1053 without advance 1-Way Received event.
1054 To avoid incorrect DR-seletion, raise 1-Way Received event.*/
1055 if (oi->type == OSPF_IFTYPE_NBMA
1056 && (old_state == NSM_Down || old_state == NSM_Attempt)) {
1057 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_OneWayReceived);
1058 nbr->priority = hello->priority;
1059 nbr->d_router = hello->d_router;
1060 nbr->bd_router = hello->bd_router;
1061 return;
1062 }
1063
1064 if (ospf_nbr_bidirectional(&oi->ospf->router_id, hello->neighbors,
1065 size - OSPF_HELLO_MIN_SIZE)) {
1066 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_TwoWayReceived);
1067 nbr->options |= hello->options;
1068 } else {
1069 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_OneWayReceived);
1070 /* Set neighbor information. */
1071 nbr->priority = hello->priority;
1072 nbr->d_router = hello->d_router;
1073 nbr->bd_router = hello->bd_router;
1074 return;
1075 }
1076
1077 /* If neighbor itself declares DR and no BDR exists,
1078 cause event BackupSeen */
1079 if (IPV4_ADDR_SAME(&nbr->address.u.prefix4, &hello->d_router))
1080 if (hello->bd_router.s_addr == 0 && oi->state == ISM_Waiting)
1081 OSPF_ISM_EVENT_SCHEDULE(oi, ISM_BackupSeen);
1082
1083 /* neighbor itself declares BDR. */
1084 if (oi->state == ISM_Waiting
1085 && IPV4_ADDR_SAME(&nbr->address.u.prefix4, &hello->bd_router))
1086 OSPF_ISM_EVENT_SCHEDULE(oi, ISM_BackupSeen);
1087
1088 /* had not previously. */
1089 if ((IPV4_ADDR_SAME(&nbr->address.u.prefix4, &hello->d_router)
1090 && IPV4_ADDR_CMP(&nbr->address.u.prefix4, &nbr->d_router))
1091 || (IPV4_ADDR_CMP(&nbr->address.u.prefix4, &hello->d_router)
1092 && IPV4_ADDR_SAME(&nbr->address.u.prefix4, &nbr->d_router)))
1093 OSPF_ISM_EVENT_SCHEDULE(oi, ISM_NeighborChange);
1094
1095 /* had not previously. */
1096 if ((IPV4_ADDR_SAME(&nbr->address.u.prefix4, &hello->bd_router)
1097 && IPV4_ADDR_CMP(&nbr->address.u.prefix4, &nbr->bd_router))
1098 || (IPV4_ADDR_CMP(&nbr->address.u.prefix4, &hello->bd_router)
1099 && IPV4_ADDR_SAME(&nbr->address.u.prefix4, &nbr->bd_router)))
1100 OSPF_ISM_EVENT_SCHEDULE(oi, ISM_NeighborChange);
1101
1102 /* Neighbor priority check. */
1103 if (nbr->priority >= 0 && nbr->priority != hello->priority)
1104 OSPF_ISM_EVENT_SCHEDULE(oi, ISM_NeighborChange);
1105
1106 /* Set neighbor information. */
1107 nbr->priority = hello->priority;
1108 nbr->d_router = hello->d_router;
1109 nbr->bd_router = hello->bd_router;
1110 }
1111
1112 /* Save DD flags/options/Seqnum received. */
1113 static void ospf_db_desc_save_current(struct ospf_neighbor *nbr,
1114 struct ospf_db_desc *dd)
1115 {
1116 nbr->last_recv.flags = dd->flags;
1117 nbr->last_recv.options = dd->options;
1118 nbr->last_recv.dd_seqnum = ntohl(dd->dd_seqnum);
1119 }
1120
1121 /* Process rest of DD packet. */
1122 static void ospf_db_desc_proc(struct stream *s, struct ospf_interface *oi,
1123 struct ospf_neighbor *nbr,
1124 struct ospf_db_desc *dd, uint16_t size)
1125 {
1126 struct ospf_lsa *new, *find;
1127 struct lsa_header *lsah;
1128
1129 stream_forward_getp(s, OSPF_DB_DESC_MIN_SIZE);
1130 for (size -= OSPF_DB_DESC_MIN_SIZE; size >= OSPF_LSA_HEADER_SIZE;
1131 size -= OSPF_LSA_HEADER_SIZE) {
1132 lsah = (struct lsa_header *)stream_pnt(s);
1133 stream_forward_getp(s, OSPF_LSA_HEADER_SIZE);
1134
1135 /* Unknown LS type. */
1136 if (lsah->type < OSPF_MIN_LSA || lsah->type >= OSPF_MAX_LSA) {
1137 flog_warn(EC_OSPF_PACKET,
1138 "Packet [DD:RECV]: Unknown LS type %d.",
1139 lsah->type);
1140 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_SeqNumberMismatch);
1141 return;
1142 }
1143
1144 if (IS_OPAQUE_LSA(lsah->type)
1145 && !CHECK_FLAG(nbr->options, OSPF_OPTION_O)) {
1146 flog_warn(EC_OSPF_PACKET,
1147 "LSA[Type%d:%s]: Opaque capability mismatch?",
1148 lsah->type, inet_ntoa(lsah->id));
1149 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_SeqNumberMismatch);
1150 return;
1151 }
1152
1153 switch (lsah->type) {
1154 case OSPF_AS_EXTERNAL_LSA:
1155 case OSPF_OPAQUE_AS_LSA:
1156 /* Check for stub area. Reject if AS-External from stub
1157 but
1158 allow if from NSSA. */
1159 if (oi->area->external_routing == OSPF_AREA_STUB) {
1160 flog_warn(
1161 EC_OSPF_PACKET,
1162 "Packet [DD:RECV]: LSA[Type%d:%s] from %s area.",
1163 lsah->type, inet_ntoa(lsah->id),
1164 (oi->area->external_routing
1165 == OSPF_AREA_STUB)
1166 ? "STUB"
1167 : "NSSA");
1168 OSPF_NSM_EVENT_SCHEDULE(nbr,
1169 NSM_SeqNumberMismatch);
1170 return;
1171 }
1172 break;
1173 default:
1174 break;
1175 }
1176
1177 /* Create LS-request object. */
1178 new = ospf_ls_request_new(lsah);
1179
1180 /* Lookup received LSA, then add LS request list. */
1181 find = ospf_lsa_lookup_by_header(oi->area, lsah);
1182
1183 /* ospf_lsa_more_recent is fine with NULL pointers */
1184 switch (ospf_lsa_more_recent(find, new)) {
1185 case -1:
1186 /* Neighbour has a more recent LSA, we must request it
1187 */
1188 ospf_ls_request_add(nbr, new);
1189 /* fallthru */
1190 case 0:
1191 /* If we have a copy of this LSA, it's either less
1192 * recent
1193 * and we're requesting it from neighbour (the case
1194 * above), or
1195 * it's as recent and we both have same copy (this
1196 * case).
1197 *
1198 * In neither of these two cases is there any point in
1199 * describing our copy of the LSA to the neighbour in a
1200 * DB-Summary packet, if we're still intending to do so.
1201 *
1202 * See: draft-ogier-ospf-dbex-opt-00.txt, describing the
1203 * backward compatible optimisation to OSPF DB Exchange
1204 * /
1205 * DB Description process implemented here.
1206 */
1207 if (find)
1208 ospf_lsdb_delete(&nbr->db_sum, find);
1209 ospf_lsa_discard(new);
1210 break;
1211 default:
1212 /* We have the more recent copy, nothing specific to do:
1213 * - no need to request neighbours stale copy
1214 * - must leave DB summary list copy alone
1215 */
1216 if (IS_DEBUG_OSPF_EVENT)
1217 zlog_debug(
1218 "Packet [DD:RECV]: LSA received Type %d, "
1219 "ID %s is not recent.",
1220 lsah->type, inet_ntoa(lsah->id));
1221 ospf_lsa_discard(new);
1222 }
1223 }
1224
1225 /* Master */
1226 if (IS_SET_DD_MS(nbr->dd_flags)) {
1227 nbr->dd_seqnum++;
1228
1229 /* Both sides have no More, then we're done with Exchange */
1230 if (!IS_SET_DD_M(dd->flags) && !IS_SET_DD_M(nbr->dd_flags))
1231 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_ExchangeDone);
1232 else
1233 ospf_db_desc_send(nbr);
1234 }
1235 /* Slave */
1236 else {
1237 nbr->dd_seqnum = ntohl(dd->dd_seqnum);
1238
1239 /* Send DD packet in reply.
1240 *
1241 * Must be done to acknowledge the Master's DD, regardless of
1242 * whether we have more LSAs ourselves to describe.
1243 *
1244 * This function will clear the 'More' bit, if after this DD
1245 * we have no more LSAs to describe to the master..
1246 */
1247 ospf_db_desc_send(nbr);
1248
1249 /* Slave can raise ExchangeDone now, if master is also done */
1250 if (!IS_SET_DD_M(dd->flags) && !IS_SET_DD_M(nbr->dd_flags))
1251 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_ExchangeDone);
1252 }
1253
1254 /* Save received neighbor values from DD. */
1255 ospf_db_desc_save_current(nbr, dd);
1256
1257 if (!nbr->t_ls_req)
1258 ospf_ls_req_send(nbr);
1259 }
1260
1261 static int ospf_db_desc_is_dup(struct ospf_db_desc *dd,
1262 struct ospf_neighbor *nbr)
1263 {
1264 /* Is DD duplicated? */
1265 if (dd->options == nbr->last_recv.options
1266 && dd->flags == nbr->last_recv.flags
1267 && dd->dd_seqnum == htonl(nbr->last_recv.dd_seqnum))
1268 return 1;
1269
1270 return 0;
1271 }
1272
1273 /* OSPF Database Description message read -- RFC2328 Section 10.6. */
1274 static void ospf_db_desc(struct ip *iph, struct ospf_header *ospfh,
1275 struct stream *s, struct ospf_interface *oi,
1276 uint16_t size)
1277 {
1278 struct ospf_db_desc *dd;
1279 struct ospf_neighbor *nbr;
1280
1281 /* Increment statistics. */
1282 oi->db_desc_in++;
1283
1284 dd = (struct ospf_db_desc *)stream_pnt(s);
1285
1286 nbr = ospf_nbr_lookup(oi, iph, ospfh);
1287 if (nbr == NULL) {
1288 flog_warn(EC_OSPF_PACKET, "Packet[DD]: Unknown Neighbor %s",
1289 inet_ntoa(ospfh->router_id));
1290 return;
1291 }
1292
1293 /* Check MTU. */
1294 if ((OSPF_IF_PARAM(oi, mtu_ignore) == 0)
1295 && (ntohs(dd->mtu) > oi->ifp->mtu)) {
1296 flog_warn(
1297 EC_OSPF_PACKET,
1298 "Packet[DD]: Neighbor %s MTU %u is larger than [%s]'s MTU %u",
1299 inet_ntoa(nbr->router_id), ntohs(dd->mtu), IF_NAME(oi),
1300 oi->ifp->mtu);
1301 return;
1302 }
1303
1304 /*
1305 * XXX HACK by Hasso Tepper. Setting N/P bit in NSSA area DD packets is
1306 * not
1307 * required. In fact at least JunOS sends DD packets with P bit clear.
1308 * Until proper solution is developped, this hack should help.
1309 *
1310 * Update: According to the RFCs, N bit is specified /only/ for Hello
1311 * options, unfortunately its use in DD options is not specified. Hence
1312 * some
1313 * implementations follow E-bit semantics and set it in DD options, and
1314 * some
1315 * treat it as unspecified and hence follow the directive "default for
1316 * options is clear", ie unset.
1317 *
1318 * Reset the flag, as ospfd follows E-bit semantics.
1319 */
1320 if ((oi->area->external_routing == OSPF_AREA_NSSA)
1321 && (CHECK_FLAG(nbr->options, OSPF_OPTION_NP))
1322 && (!CHECK_FLAG(dd->options, OSPF_OPTION_NP))) {
1323 if (IS_DEBUG_OSPF_EVENT)
1324 zlog_debug(
1325 "Packet[DD]: Neighbour %s: Has NSSA capability, sends with N bit clear in DD options",
1326 inet_ntoa(nbr->router_id));
1327 SET_FLAG(dd->options, OSPF_OPTION_NP);
1328 }
1329
1330 #ifdef REJECT_IF_TBIT_ON
1331 if (CHECK_FLAG(dd->options, OSPF_OPTION_MT)) {
1332 /*
1333 * In Hello protocol, optional capability must have checked
1334 * to prevent this T-bit enabled router be my neighbor.
1335 */
1336 flog_warn(EC_OSPF_PACKET, "Packet[DD]: Neighbor %s: T-bit on?",
1337 inet_ntoa(nbr->router_id));
1338 return;
1339 }
1340 #endif /* REJECT_IF_TBIT_ON */
1341
1342 if (CHECK_FLAG(dd->options, OSPF_OPTION_O)
1343 && !CHECK_FLAG(oi->ospf->config, OSPF_OPAQUE_CAPABLE)) {
1344 /*
1345 * This node is not configured to handle O-bit, for now.
1346 * Clear it to ignore unsupported capability proposed by
1347 * neighbor.
1348 */
1349 UNSET_FLAG(dd->options, OSPF_OPTION_O);
1350 }
1351
1352 /* Add event to thread. */
1353 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_PacketReceived);
1354
1355 /* Process DD packet by neighbor status. */
1356 switch (nbr->state) {
1357 case NSM_Down:
1358 case NSM_Attempt:
1359 case NSM_TwoWay:
1360 flog_warn(
1361 EC_OSPF_PACKET,
1362 "Packet[DD]: Neighbor %s state is %s, packet discarded.",
1363 inet_ntoa(nbr->router_id),
1364 lookup_msg(ospf_nsm_state_msg, nbr->state, NULL));
1365 break;
1366 case NSM_Init:
1367 OSPF_NSM_EVENT_EXECUTE(nbr, NSM_TwoWayReceived);
1368 /* If the new state is ExStart, the processing of the current
1369 packet should then continue in this new state by falling
1370 through to case ExStart below. */
1371 if (nbr->state != NSM_ExStart)
1372 break;
1373 /* fallthru */
1374 case NSM_ExStart:
1375 /* Initial DBD */
1376 if ((IS_SET_DD_ALL(dd->flags) == OSPF_DD_FLAG_ALL)
1377 && (size == OSPF_DB_DESC_MIN_SIZE)) {
1378 if (IPV4_ADDR_CMP(&nbr->router_id, &oi->ospf->router_id)
1379 > 0) {
1380 /* We're Slave---obey */
1381 if (CHECK_FLAG(oi->ospf->config,
1382 OSPF_LOG_ADJACENCY_DETAIL))
1383 zlog_info(
1384 "Packet[DD]: Neighbor %s Negotiation done (Slave).",
1385 inet_ntoa(nbr->router_id));
1386
1387 nbr->dd_seqnum = ntohl(dd->dd_seqnum);
1388
1389 /* Reset I/MS */
1390 UNSET_FLAG(nbr->dd_flags,
1391 (OSPF_DD_FLAG_MS | OSPF_DD_FLAG_I));
1392 } else {
1393 /* We're Master, ignore the initial DBD from
1394 * Slave */
1395 if (CHECK_FLAG(oi->ospf->config,
1396 OSPF_LOG_ADJACENCY_DETAIL))
1397 zlog_info(
1398 "Packet[DD]: Neighbor %s: Initial DBD from Slave, "
1399 "ignoring.",
1400 inet_ntoa(nbr->router_id));
1401 break;
1402 }
1403 }
1404 /* Ack from the Slave */
1405 else if (!IS_SET_DD_MS(dd->flags) && !IS_SET_DD_I(dd->flags)
1406 && ntohl(dd->dd_seqnum) == nbr->dd_seqnum
1407 && IPV4_ADDR_CMP(&nbr->router_id, &oi->ospf->router_id)
1408 < 0) {
1409 zlog_info(
1410 "Packet[DD]: Neighbor %s Negotiation done (Master).",
1411 inet_ntoa(nbr->router_id));
1412 /* Reset I, leaving MS */
1413 UNSET_FLAG(nbr->dd_flags, OSPF_DD_FLAG_I);
1414 } else {
1415 flog_warn(EC_OSPF_PACKET,
1416 "Packet[DD]: Neighbor %s Negotiation fails.",
1417 inet_ntoa(nbr->router_id));
1418 break;
1419 }
1420
1421 /* This is where the real Options are saved */
1422 nbr->options = dd->options;
1423
1424 if (CHECK_FLAG(oi->ospf->config, OSPF_OPAQUE_CAPABLE)) {
1425 if (IS_DEBUG_OSPF_EVENT)
1426 zlog_debug(
1427 "Neighbor[%s] is %sOpaque-capable.",
1428 inet_ntoa(nbr->router_id),
1429 CHECK_FLAG(nbr->options, OSPF_OPTION_O)
1430 ? ""
1431 : "NOT ");
1432
1433 if (!CHECK_FLAG(nbr->options, OSPF_OPTION_O)
1434 && IPV4_ADDR_SAME(&DR(oi),
1435 &nbr->address.u.prefix4)) {
1436 flog_warn(
1437 EC_OSPF_PACKET,
1438 "DR-neighbor[%s] is NOT opaque-capable; Opaque-LSAs cannot be reliably advertised in this network.",
1439 inet_ntoa(nbr->router_id));
1440 /* This situation is undesirable, but not a real
1441 * error. */
1442 }
1443 }
1444
1445 OSPF_NSM_EVENT_EXECUTE(nbr, NSM_NegotiationDone);
1446
1447 /* continue processing rest of packet. */
1448 ospf_db_desc_proc(s, oi, nbr, dd, size);
1449 break;
1450 case NSM_Exchange:
1451 if (ospf_db_desc_is_dup(dd, nbr)) {
1452 if (IS_SET_DD_MS(nbr->dd_flags))
1453 /* Master: discard duplicated DD packet. */
1454 zlog_info(
1455 "Packet[DD] (Master): Neighbor %s packet duplicated.",
1456 inet_ntoa(nbr->router_id));
1457 else
1458 /* Slave: cause to retransmit the last Database
1459 Description. */
1460 {
1461 zlog_info(
1462 "Packet[DD] [Slave]: Neighbor %s packet duplicated.",
1463 inet_ntoa(nbr->router_id));
1464 ospf_db_desc_resend(nbr);
1465 }
1466 break;
1467 }
1468
1469 /* Otherwise DD packet should be checked. */
1470 /* Check Master/Slave bit mismatch */
1471 if (IS_SET_DD_MS(dd->flags)
1472 != IS_SET_DD_MS(nbr->last_recv.flags)) {
1473 flog_warn(EC_OSPF_PACKET,
1474 "Packet[DD]: Neighbor %s MS-bit mismatch.",
1475 inet_ntoa(nbr->router_id));
1476 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_SeqNumberMismatch);
1477 if (IS_DEBUG_OSPF_EVENT)
1478 zlog_debug(
1479 "Packet[DD]: dd->flags=%d, nbr->dd_flags=%d",
1480 dd->flags, nbr->dd_flags);
1481 break;
1482 }
1483
1484 /* Check initialize bit is set. */
1485 if (IS_SET_DD_I(dd->flags)) {
1486 zlog_info("Packet[DD]: Neighbor %s I-bit set.",
1487 inet_ntoa(nbr->router_id));
1488 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_SeqNumberMismatch);
1489 break;
1490 }
1491
1492 /* Check DD Options. */
1493 if (dd->options != nbr->options) {
1494 #ifdef ORIGINAL_CODING
1495 /* Save the new options for debugging */
1496 nbr->options = dd->options;
1497 #endif /* ORIGINAL_CODING */
1498 flog_warn(EC_OSPF_PACKET,
1499 "Packet[DD]: Neighbor %s options mismatch.",
1500 inet_ntoa(nbr->router_id));
1501 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_SeqNumberMismatch);
1502 break;
1503 }
1504
1505 /* Check DD sequence number. */
1506 if ((IS_SET_DD_MS(nbr->dd_flags)
1507 && ntohl(dd->dd_seqnum) != nbr->dd_seqnum)
1508 || (!IS_SET_DD_MS(nbr->dd_flags)
1509 && ntohl(dd->dd_seqnum) != nbr->dd_seqnum + 1)) {
1510 flog_warn(
1511 EC_OSPF_PACKET,
1512 "Packet[DD]: Neighbor %s sequence number mismatch.",
1513 inet_ntoa(nbr->router_id));
1514 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_SeqNumberMismatch);
1515 break;
1516 }
1517
1518 /* Continue processing rest of packet. */
1519 ospf_db_desc_proc(s, oi, nbr, dd, size);
1520 break;
1521 case NSM_Loading:
1522 case NSM_Full:
1523 if (ospf_db_desc_is_dup(dd, nbr)) {
1524 if (IS_SET_DD_MS(nbr->dd_flags)) {
1525 /* Master should discard duplicate DD packet. */
1526 zlog_info(
1527 "Packet[DD]: Neighbor %s duplicated, "
1528 "packet discarded.",
1529 inet_ntoa(nbr->router_id));
1530 break;
1531 } else {
1532 if (monotime_since(&nbr->last_send_ts, NULL)
1533 < nbr->v_inactivity * 1000000LL) {
1534 /* In states Loading and Full the slave
1535 must resend
1536 its last Database Description packet
1537 in response to
1538 duplicate Database Description
1539 packets received
1540 from the master. For this reason the
1541 slave must
1542 wait RouterDeadInterval seconds
1543 before freeing the
1544 last Database Description packet.
1545 Reception of a
1546 Database Description packet from the
1547 master after
1548 this interval will generate a
1549 SeqNumberMismatch
1550 neighbor event. RFC2328 Section 10.8
1551 */
1552 ospf_db_desc_resend(nbr);
1553 break;
1554 }
1555 }
1556 }
1557
1558 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_SeqNumberMismatch);
1559 break;
1560 default:
1561 flog_warn(EC_OSPF_PACKET,
1562 "Packet[DD]: Neighbor %s NSM illegal status %u.",
1563 inet_ntoa(nbr->router_id), nbr->state);
1564 break;
1565 }
1566 }
1567
1568 #define OSPF_LSA_KEY_SIZE 12 /* type(4) + id(4) + ar(4) */
1569
1570 /* OSPF Link State Request Read -- RFC2328 Section 10.7. */
1571 static void ospf_ls_req(struct ip *iph, struct ospf_header *ospfh,
1572 struct stream *s, struct ospf_interface *oi,
1573 uint16_t size)
1574 {
1575 struct ospf_neighbor *nbr;
1576 uint32_t ls_type;
1577 struct in_addr ls_id;
1578 struct in_addr adv_router;
1579 struct ospf_lsa *find;
1580 struct list *ls_upd;
1581 unsigned int length;
1582
1583 /* Increment statistics. */
1584 oi->ls_req_in++;
1585
1586 nbr = ospf_nbr_lookup(oi, iph, ospfh);
1587 if (nbr == NULL) {
1588 flog_warn(EC_OSPF_PACKET,
1589 "Link State Request: Unknown Neighbor %s.",
1590 inet_ntoa(ospfh->router_id));
1591 return;
1592 }
1593
1594 /* Add event to thread. */
1595 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_PacketReceived);
1596
1597 /* Neighbor State should be Exchange or later. */
1598 if (nbr->state != NSM_Exchange && nbr->state != NSM_Loading
1599 && nbr->state != NSM_Full) {
1600 flog_warn(
1601 EC_OSPF_PACKET,
1602 "Link State Request received from %s: Neighbor state is %s, packet discarded.",
1603 inet_ntoa(ospfh->router_id),
1604 lookup_msg(ospf_nsm_state_msg, nbr->state, NULL));
1605 return;
1606 }
1607
1608 /* Send Link State Update for ALL requested LSAs. */
1609 ls_upd = list_new();
1610 length = OSPF_HEADER_SIZE + OSPF_LS_UPD_MIN_SIZE;
1611
1612 while (size >= OSPF_LSA_KEY_SIZE) {
1613 /* Get one slice of Link State Request. */
1614 ls_type = stream_getl(s);
1615 ls_id.s_addr = stream_get_ipv4(s);
1616 adv_router.s_addr = stream_get_ipv4(s);
1617
1618 /* Verify LSA type. */
1619 if (ls_type < OSPF_MIN_LSA || ls_type >= OSPF_MAX_LSA) {
1620 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_BadLSReq);
1621 list_delete(&ls_upd);
1622 return;
1623 }
1624
1625 /* Search proper LSA in LSDB. */
1626 find = ospf_lsa_lookup(oi->ospf, oi->area, ls_type, ls_id,
1627 adv_router);
1628 if (find == NULL) {
1629 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_BadLSReq);
1630 list_delete(&ls_upd);
1631 return;
1632 }
1633
1634 /* Packet overflows MTU size, send immediately. */
1635 if (length + ntohs(find->data->length) > ospf_packet_max(oi)) {
1636 if (oi->type == OSPF_IFTYPE_NBMA)
1637 ospf_ls_upd_send(nbr, ls_upd,
1638 OSPF_SEND_PACKET_DIRECT, 0);
1639 else
1640 ospf_ls_upd_send(nbr, ls_upd,
1641 OSPF_SEND_PACKET_INDIRECT, 0);
1642
1643 /* Only remove list contents. Keep ls_upd. */
1644 list_delete_all_node(ls_upd);
1645
1646 length = OSPF_HEADER_SIZE + OSPF_LS_UPD_MIN_SIZE;
1647 }
1648
1649 /* Append LSA to update list. */
1650 listnode_add(ls_upd, find);
1651 length += ntohs(find->data->length);
1652
1653 size -= OSPF_LSA_KEY_SIZE;
1654 }
1655
1656 /* Send rest of Link State Update. */
1657 if (listcount(ls_upd) > 0) {
1658 if (oi->type == OSPF_IFTYPE_NBMA)
1659 ospf_ls_upd_send(nbr, ls_upd, OSPF_SEND_PACKET_DIRECT,
1660 0);
1661 else
1662 ospf_ls_upd_send(nbr, ls_upd, OSPF_SEND_PACKET_INDIRECT,
1663 0);
1664
1665 list_delete(&ls_upd);
1666 } else
1667 list_delete(&ls_upd);
1668 }
1669
1670 /* Get the list of LSAs from Link State Update packet.
1671 And process some validation -- RFC2328 Section 13. (1)-(2). */
1672 static struct list *ospf_ls_upd_list_lsa(struct ospf_neighbor *nbr,
1673 struct stream *s,
1674 struct ospf_interface *oi, size_t size)
1675 {
1676 uint16_t count, sum;
1677 uint32_t length;
1678 struct lsa_header *lsah;
1679 struct ospf_lsa *lsa;
1680 struct list *lsas;
1681
1682 lsas = list_new();
1683
1684 count = stream_getl(s);
1685 size -= OSPF_LS_UPD_MIN_SIZE; /* # LSAs */
1686
1687 for (; size >= OSPF_LSA_HEADER_SIZE && count > 0;
1688 size -= length, stream_forward_getp(s, length), count--) {
1689 lsah = (struct lsa_header *)stream_pnt(s);
1690 length = ntohs(lsah->length);
1691
1692 if (length > size) {
1693 flog_warn(
1694 EC_OSPF_PACKET,
1695 "Link State Update: LSA length exceeds packet size.");
1696 break;
1697 }
1698
1699 /* Validate the LSA's LS checksum. */
1700 sum = lsah->checksum;
1701 if (!ospf_lsa_checksum_valid(lsah)) {
1702 /* (bug #685) more details in a one-line message make it
1703 * possible
1704 * to identify problem source on the one hand and to
1705 * have a better
1706 * chance to compress repeated messages in syslog on the
1707 * other */
1708 flog_warn(
1709 EC_OSPF_PACKET,
1710 "Link State Update: LSA checksum error %x/%x, ID=%s from: nbr %s, router ID %s, adv router %s",
1711 sum, lsah->checksum, inet_ntoa(lsah->id),
1712 inet_ntoa(nbr->src), inet_ntoa(nbr->router_id),
1713 inet_ntoa(lsah->adv_router));
1714 continue;
1715 }
1716
1717 /* Examine the LSA's LS type. */
1718 if (lsah->type < OSPF_MIN_LSA || lsah->type >= OSPF_MAX_LSA) {
1719 flog_warn(EC_OSPF_PACKET,
1720 "Link State Update: Unknown LS type %d",
1721 lsah->type);
1722 continue;
1723 }
1724
1725 /*
1726 * What if the received LSA's age is greater than MaxAge?
1727 * Treat it as a MaxAge case -- endo.
1728 */
1729 if (ntohs(lsah->ls_age) > OSPF_LSA_MAXAGE)
1730 lsah->ls_age = htons(OSPF_LSA_MAXAGE);
1731
1732 if (CHECK_FLAG(nbr->options, OSPF_OPTION_O)) {
1733 #ifdef STRICT_OBIT_USAGE_CHECK
1734 if ((IS_OPAQUE_LSA(lsah->type)
1735 && !CHECK_FLAG(lsah->options, OSPF_OPTION_O))
1736 || (!IS_OPAQUE_LSA(lsah->type)
1737 && CHECK_FLAG(lsah->options, OSPF_OPTION_O))) {
1738 /*
1739 * This neighbor must know the exact usage of
1740 * O-bit;
1741 * the bit will be set in Type-9,10,11 LSAs
1742 * only.
1743 */
1744 flog_warn(EC_OSPF_PACKET,
1745 "LSA[Type%d:%s]: O-bit abuse?",
1746 lsah->type, inet_ntoa(lsah->id));
1747 continue;
1748 }
1749 #endif /* STRICT_OBIT_USAGE_CHECK */
1750
1751 /* Do not take in AS External Opaque-LSAs if we are a
1752 * stub. */
1753 if (lsah->type == OSPF_OPAQUE_AS_LSA
1754 && nbr->oi->area->external_routing
1755 != OSPF_AREA_DEFAULT) {
1756 if (IS_DEBUG_OSPF_EVENT)
1757 zlog_debug(
1758 "LSA[Type%d:%s]: We are a stub, don't take this LSA.",
1759 lsah->type,
1760 inet_ntoa(lsah->id));
1761 continue;
1762 }
1763 } else if (IS_OPAQUE_LSA(lsah->type)) {
1764 flog_warn(EC_OSPF_PACKET,
1765 "LSA[Type%d:%s]: Opaque capability mismatch?",
1766 lsah->type, inet_ntoa(lsah->id));
1767 continue;
1768 }
1769
1770 /* Create OSPF LSA instance. */
1771 lsa = ospf_lsa_new_and_data(length);
1772
1773 lsa->vrf_id = oi->ospf->vrf_id;
1774 /* We may wish to put some error checking if type NSSA comes in
1775 and area not in NSSA mode */
1776 switch (lsah->type) {
1777 case OSPF_AS_EXTERNAL_LSA:
1778 case OSPF_OPAQUE_AS_LSA:
1779 lsa->area = NULL;
1780 break;
1781 case OSPF_OPAQUE_LINK_LSA:
1782 lsa->oi = oi; /* Remember incoming interface for
1783 flooding control. */
1784 /* Fallthrough */
1785 default:
1786 lsa->area = oi->area;
1787 break;
1788 }
1789
1790 memcpy(lsa->data, lsah, length);
1791
1792 if (IS_DEBUG_OSPF_EVENT)
1793 zlog_debug(
1794 "LSA[Type%d:%s]: %p new LSA created with Link State Update",
1795 lsa->data->type, inet_ntoa(lsa->data->id),
1796 (void *)lsa);
1797 listnode_add(lsas, lsa);
1798 }
1799
1800 return lsas;
1801 }
1802
1803 /* Cleanup Update list. */
1804 static void ospf_upd_list_clean(struct list *lsas)
1805 {
1806 struct listnode *node, *nnode;
1807 struct ospf_lsa *lsa;
1808
1809 for (ALL_LIST_ELEMENTS(lsas, node, nnode, lsa))
1810 ospf_lsa_discard(lsa);
1811
1812 list_delete(&lsas);
1813 }
1814
1815 /* OSPF Link State Update message read -- RFC2328 Section 13. */
1816 static void ospf_ls_upd(struct ospf *ospf, struct ip *iph,
1817 struct ospf_header *ospfh, struct stream *s,
1818 struct ospf_interface *oi, uint16_t size)
1819 {
1820 struct ospf_neighbor *nbr;
1821 struct list *lsas;
1822 struct listnode *node, *nnode;
1823 struct ospf_lsa *lsa = NULL;
1824 /* unsigned long ls_req_found = 0; */
1825
1826 /* Dis-assemble the stream, update each entry, re-encapsulate for
1827 * flooding */
1828
1829 /* Increment statistics. */
1830 oi->ls_upd_in++;
1831
1832 /* Check neighbor. */
1833 nbr = ospf_nbr_lookup(oi, iph, ospfh);
1834 if (nbr == NULL) {
1835 flog_warn(EC_OSPF_PACKET,
1836 "Link State Update: Unknown Neighbor %s on int: %s",
1837 inet_ntoa(ospfh->router_id), IF_NAME(oi));
1838 return;
1839 }
1840
1841 /* Add event to thread. */
1842 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_PacketReceived);
1843
1844 /* Check neighbor state. */
1845 if (nbr->state < NSM_Exchange) {
1846 if (IS_DEBUG_OSPF(nsm, NSM_EVENTS))
1847 zlog_debug(
1848 "Link State Update: "
1849 "Neighbor[%s] state %s is less than Exchange",
1850 inet_ntoa(ospfh->router_id),
1851 lookup_msg(ospf_nsm_state_msg, nbr->state,
1852 NULL));
1853 return;
1854 }
1855
1856 /* Get list of LSAs from Link State Update packet. - Also perorms Stages
1857 * 1 (validate LSA checksum) and 2 (check for LSA consistent type)
1858 * of section 13.
1859 */
1860 lsas = ospf_ls_upd_list_lsa(nbr, s, oi, size);
1861
1862 if (lsas == NULL)
1863 return;
1864 #define DISCARD_LSA(L, N) \
1865 { \
1866 if (IS_DEBUG_OSPF_EVENT) \
1867 zlog_debug( \
1868 "ospf_lsa_discard() in ospf_ls_upd() point %d: lsa %p" \
1869 " Type-%d", \
1870 N, (void *)lsa, (int)lsa->data->type); \
1871 ospf_lsa_discard(L); \
1872 continue; \
1873 }
1874
1875 /* Process each LSA received in the one packet.
1876 *
1877 * Numbers in parentheses, e.g. (1), (2), etc., and the corresponding
1878 * text below are from the steps in RFC 2328, Section 13.
1879 */
1880 for (ALL_LIST_ELEMENTS(lsas, node, nnode, lsa)) {
1881 struct ospf_lsa *ls_ret, *current;
1882 int ret = 1;
1883
1884 if (IS_DEBUG_OSPF_NSSA) {
1885 char buf1[INET_ADDRSTRLEN];
1886 char buf2[INET_ADDRSTRLEN];
1887 char buf3[INET_ADDRSTRLEN];
1888
1889 zlog_debug("LSA Type-%d from %s, ID: %s, ADV: %s",
1890 lsa->data->type,
1891 inet_ntop(AF_INET, &ospfh->router_id, buf1,
1892 INET_ADDRSTRLEN),
1893 inet_ntop(AF_INET, &lsa->data->id, buf2,
1894 INET_ADDRSTRLEN),
1895 inet_ntop(AF_INET, &lsa->data->adv_router,
1896 buf3, INET_ADDRSTRLEN));
1897 }
1898
1899 listnode_delete(lsas,
1900 lsa); /* We don't need it in list anymore */
1901
1902 /* (1) Validate Checksum - Done above by ospf_ls_upd_list_lsa()
1903 */
1904
1905 /* (2) LSA Type - Done above by ospf_ls_upd_list_lsa() */
1906
1907 /* (3) Do not take in AS External LSAs if we are a stub or NSSA.
1908 */
1909
1910 /* Do not take in AS NSSA if this neighbor and we are not NSSA
1911 */
1912
1913 /* Do take in Type-7's if we are an NSSA */
1914
1915 /* If we are also an ABR, later translate them to a Type-5
1916 * packet */
1917
1918 /* Later, an NSSA Re-fresh can Re-fresh Type-7's and an ABR will
1919 translate them to a separate Type-5 packet. */
1920
1921 if (lsa->data->type == OSPF_AS_EXTERNAL_LSA)
1922 /* Reject from STUB or NSSA */
1923 if (nbr->oi->area->external_routing
1924 != OSPF_AREA_DEFAULT) {
1925 if (IS_DEBUG_OSPF_NSSA)
1926 zlog_debug(
1927 "Incoming External LSA Discarded: We are NSSA/STUB Area");
1928 DISCARD_LSA(lsa, 1);
1929 }
1930
1931 if (lsa->data->type == OSPF_AS_NSSA_LSA)
1932 if (nbr->oi->area->external_routing != OSPF_AREA_NSSA) {
1933 if (IS_DEBUG_OSPF_NSSA)
1934 zlog_debug(
1935 "Incoming NSSA LSA Discarded: Not NSSA Area");
1936 DISCARD_LSA(lsa, 2);
1937 }
1938
1939 /* VU229804: Router-LSA Adv-ID must be equal to LS-ID */
1940 if (lsa->data->type == OSPF_ROUTER_LSA)
1941 if (!IPV4_ADDR_SAME(&lsa->data->id,
1942 &lsa->data->adv_router)) {
1943 char buf1[INET_ADDRSTRLEN];
1944 char buf2[INET_ADDRSTRLEN];
1945 char buf3[INET_ADDRSTRLEN];
1946
1947 flog_err(EC_OSPF_ROUTER_LSA_MISMATCH,
1948 "Incoming Router-LSA from %s with "
1949 "Adv-ID[%s] != LS-ID[%s]",
1950 inet_ntop(AF_INET, &ospfh->router_id,
1951 buf1, INET_ADDRSTRLEN),
1952 inet_ntop(AF_INET, &lsa->data->id,
1953 buf2, INET_ADDRSTRLEN),
1954 inet_ntop(AF_INET,
1955 &lsa->data->adv_router, buf3,
1956 INET_ADDRSTRLEN));
1957 flog_err(
1958 EC_OSPF_DOMAIN_CORRUPT,
1959 "OSPF domain compromised by attack or corruption. "
1960 "Verify correct operation of -ALL- OSPF routers.");
1961 DISCARD_LSA(lsa, 0);
1962 }
1963
1964 /* Find the LSA in the current database. */
1965
1966 current = ospf_lsa_lookup_by_header(oi->area, lsa->data);
1967
1968 /* (4) If the LSA's LS age is equal to MaxAge, and there is
1969 currently
1970 no instance of the LSA in the router's link state database,
1971 and none of router's neighbors are in states Exchange or
1972 Loading,
1973 then take the following actions: */
1974
1975 if (IS_LSA_MAXAGE(lsa) && !current
1976 && ospf_check_nbr_status(oi->ospf)) {
1977 /* (4a) Response Link State Acknowledgment. */
1978 ospf_ls_ack_send(nbr, lsa);
1979
1980 /* (4b) Discard LSA. */
1981 if (IS_DEBUG_OSPF(lsa, LSA)) {
1982 zlog_debug(
1983 "Link State Update[%s]: LS age is equal to MaxAge.",
1984 dump_lsa_key(lsa));
1985 }
1986 DISCARD_LSA(lsa, 3);
1987 }
1988
1989 if (IS_OPAQUE_LSA(lsa->data->type)
1990 && IPV4_ADDR_SAME(&lsa->data->adv_router,
1991 &oi->ospf->router_id)) {
1992 /*
1993 * Even if initial flushing seems to be completed, there
1994 * might
1995 * be a case that self-originated LSA with MaxAge still
1996 * remain
1997 * in the routing domain.
1998 * Just send an LSAck message to cease retransmission.
1999 */
2000 if (IS_LSA_MAXAGE(lsa)) {
2001 zlog_info("LSA[%s]: Boomerang effect?",
2002 dump_lsa_key(lsa));
2003 ospf_ls_ack_send(nbr, lsa);
2004 ospf_lsa_discard(lsa);
2005
2006 if (current != NULL && !IS_LSA_MAXAGE(current))
2007 ospf_opaque_lsa_refresh_schedule(
2008 current);
2009 continue;
2010 }
2011
2012 /*
2013 * If an instance of self-originated Opaque-LSA is not
2014 * found
2015 * in the LSDB, there are some possible cases here.
2016 *
2017 * 1) This node lost opaque-capability after restart.
2018 * 2) Else, a part of opaque-type is no more supported.
2019 * 3) Else, a part of opaque-id is no more supported.
2020 *
2021 * Anyway, it is still this node's responsibility to
2022 * flush it.
2023 * Otherwise, the LSA instance remains in the routing
2024 * domain
2025 * until its age reaches to MaxAge.
2026 */
2027 /* XXX: We should deal with this for *ALL* LSAs, not
2028 * just opaque */
2029 if (current == NULL) {
2030 if (IS_DEBUG_OSPF_EVENT)
2031 zlog_debug(
2032 "LSA[%s]: Previously originated Opaque-LSA,"
2033 "not found in the LSDB.",
2034 dump_lsa_key(lsa));
2035
2036 SET_FLAG(lsa->flags, OSPF_LSA_SELF);
2037
2038 ospf_opaque_self_originated_lsa_received(nbr,
2039 lsa);
2040 ospf_ls_ack_send(nbr, lsa);
2041
2042 continue;
2043 }
2044 }
2045
2046 /* It might be happen that received LSA is self-originated
2047 * network LSA, but
2048 * router ID is changed. So, we should check if LSA is a
2049 * network-LSA whose
2050 * Link State ID is one of the router's own IP interface
2051 * addresses but whose
2052 * Advertising Router is not equal to the router's own Router ID
2053 * According to RFC 2328 12.4.2 and 13.4 this LSA should be
2054 * flushed.
2055 */
2056
2057 if (lsa->data->type == OSPF_NETWORK_LSA) {
2058 struct listnode *oinode, *oinnode;
2059 struct ospf_interface *out_if;
2060 int Flag = 0;
2061
2062 for (ALL_LIST_ELEMENTS(oi->ospf->oiflist, oinode,
2063 oinnode, out_if)) {
2064 if (out_if == NULL)
2065 break;
2066
2067 if ((IPV4_ADDR_SAME(&out_if->address->u.prefix4,
2068 &lsa->data->id))
2069 && (!(IPV4_ADDR_SAME(
2070 &oi->ospf->router_id,
2071 &lsa->data->adv_router)))) {
2072 if (out_if->network_lsa_self) {
2073 ospf_lsa_flush_area(
2074 lsa, out_if->area);
2075 if (IS_DEBUG_OSPF_EVENT)
2076 zlog_debug(
2077 "ospf_lsa_discard() in ospf_ls_upd() point 9: lsa %p Type-%d",
2078 (void *)lsa,
2079 (int)lsa->data
2080 ->type);
2081 ospf_lsa_discard(lsa);
2082 Flag = 1;
2083 }
2084 break;
2085 }
2086 }
2087 if (Flag)
2088 continue;
2089 }
2090
2091 /* (5) Find the instance of this LSA that is currently contained
2092 in the router's link state database. If there is no
2093 database copy, or the received LSA is more recent than
2094 the database copy the following steps must be performed.
2095 (The sub steps from RFC 2328 section 13 step (5) will be
2096 performed in
2097 ospf_flood() ) */
2098
2099 if (current == NULL
2100 || (ret = ospf_lsa_more_recent(current, lsa)) < 0) {
2101 /* CVE-2017-3224 */
2102 if (current && (lsa->data->ls_seqnum ==
2103 htonl(OSPF_MAX_SEQUENCE_NUMBER)
2104 && !IS_LSA_MAXAGE(lsa))) {
2105 zlog_debug(
2106 "Link State Update[%s]: has Max Seq but not MaxAge. Dropping it",
2107 dump_lsa_key(lsa));
2108
2109 DISCARD_LSA(lsa, 4);
2110 }
2111
2112 /* Actual flooding procedure. */
2113 if (ospf_flood(oi->ospf, nbr, current, lsa)
2114 < 0) /* Trap NSSA later. */
2115 DISCARD_LSA(lsa, 5);
2116 continue;
2117 }
2118
2119 /* (6) Else, If there is an instance of the LSA on the sending
2120 neighbor's Link state request list, an error has occurred in
2121 the Database Exchange process. In this case, restart the
2122 Database Exchange process by generating the neighbor event
2123 BadLSReq for the sending neighbor and stop processing the
2124 Link State Update packet. */
2125
2126 if (ospf_ls_request_lookup(nbr, lsa)) {
2127 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_BadLSReq);
2128 flog_warn(
2129 EC_OSPF_PACKET,
2130 "LSA[%s] instance exists on Link state request list",
2131 dump_lsa_key(lsa));
2132
2133 /* Clean list of LSAs. */
2134 ospf_upd_list_clean(lsas);
2135 /* this lsa is not on lsas list already. */
2136 ospf_lsa_discard(lsa);
2137 return;
2138 }
2139
2140 /* If the received LSA is the same instance as the database copy
2141 (i.e., neither one is more recent) the following two steps
2142 should be performed: */
2143
2144 if (ret == 0) {
2145 /* If the LSA is listed in the Link state retransmission
2146 list
2147 for the receiving adjacency, the router itself is
2148 expecting
2149 an acknowledgment for this LSA. The router should
2150 treat the
2151 received LSA as an acknowledgment by removing the LSA
2152 from
2153 the Link state retransmission list. This is termed
2154 an
2155 "implied acknowledgment". */
2156
2157 ls_ret = ospf_ls_retransmit_lookup(nbr, lsa);
2158
2159 if (ls_ret != NULL) {
2160 ospf_ls_retransmit_delete(nbr, ls_ret);
2161
2162 /* Delayed acknowledgment sent if advertisement
2163 received
2164 from Designated Router, otherwise do nothing.
2165 */
2166 if (oi->state == ISM_Backup)
2167 if (NBR_IS_DR(nbr))
2168 listnode_add(
2169 oi->ls_ack,
2170 ospf_lsa_lock(lsa));
2171
2172 DISCARD_LSA(lsa, 6);
2173 } else
2174 /* Acknowledge the receipt of the LSA by sending a
2175 Link State Acknowledgment packet back out the
2176 receiving
2177 interface. */
2178 {
2179 ospf_ls_ack_send(nbr, lsa);
2180 DISCARD_LSA(lsa, 7);
2181 }
2182 }
2183
2184 /* The database copy is more recent. If the database copy
2185 has LS age equal to MaxAge and LS sequence number equal to
2186 MaxSequenceNumber, simply discard the received LSA without
2187 acknowledging it. (In this case, the LSA's LS sequence number
2188 is
2189 wrapping, and the MaxSequenceNumber LSA must be completely
2190 flushed before any new LSA instance can be introduced). */
2191
2192 else if (ret > 0) /* Database copy is more recent */
2193 {
2194 if (IS_LSA_MAXAGE(current)
2195 && current->data->ls_seqnum
2196 == htonl(OSPF_MAX_SEQUENCE_NUMBER)) {
2197 DISCARD_LSA(lsa, 8);
2198 }
2199 /* Otherwise, as long as the database copy has not been
2200 sent in a
2201 Link State Update within the last MinLSArrival
2202 seconds, send the
2203 database copy back to the sending neighbor,
2204 encapsulated within
2205 a Link State Update Packet. The Link State Update
2206 Packet should
2207 be sent directly to the neighbor. In so doing, do not
2208 put the
2209 database copy of the LSA on the neighbor's link state
2210 retransmission list, and do not acknowledge the
2211 received (less
2212 recent) LSA instance. */
2213 else {
2214 if (monotime_since(&current->tv_orig, NULL)
2215 >= ospf->min_ls_arrival * 1000LL)
2216 /* Trap NSSA type later.*/
2217 ospf_ls_upd_send_lsa(
2218 nbr, current,
2219 OSPF_SEND_PACKET_DIRECT);
2220 DISCARD_LSA(lsa, 9);
2221 }
2222 }
2223 }
2224 #undef DISCARD_LSA
2225
2226 assert(listcount(lsas) == 0);
2227 list_delete(&lsas);
2228 }
2229
2230 /* OSPF Link State Acknowledgment message read -- RFC2328 Section 13.7. */
2231 static void ospf_ls_ack(struct ip *iph, struct ospf_header *ospfh,
2232 struct stream *s, struct ospf_interface *oi,
2233 uint16_t size)
2234 {
2235 struct ospf_neighbor *nbr;
2236
2237 /* increment statistics. */
2238 oi->ls_ack_in++;
2239
2240 nbr = ospf_nbr_lookup(oi, iph, ospfh);
2241 if (nbr == NULL) {
2242 flog_warn(EC_OSPF_PACKET,
2243 "Link State Acknowledgment: Unknown Neighbor %s.",
2244 inet_ntoa(ospfh->router_id));
2245 return;
2246 }
2247
2248 /* Add event to thread. */
2249 OSPF_NSM_EVENT_SCHEDULE(nbr, NSM_PacketReceived);
2250
2251 if (nbr->state < NSM_Exchange) {
2252 if (IS_DEBUG_OSPF(nsm, NSM_EVENTS))
2253 zlog_debug(
2254 "Link State Acknowledgment: "
2255 "Neighbor[%s] state %s is less than Exchange",
2256 inet_ntoa(ospfh->router_id),
2257 lookup_msg(ospf_nsm_state_msg, nbr->state,
2258 NULL));
2259 return;
2260 }
2261
2262 while (size >= OSPF_LSA_HEADER_SIZE) {
2263 struct ospf_lsa *lsa, *lsr;
2264
2265 lsa = ospf_lsa_new();
2266 lsa->data = (struct lsa_header *)stream_pnt(s);
2267 lsa->vrf_id = oi->ospf->vrf_id;
2268
2269 /* lsah = (struct lsa_header *) stream_pnt (s); */
2270 size -= OSPF_LSA_HEADER_SIZE;
2271 stream_forward_getp(s, OSPF_LSA_HEADER_SIZE);
2272
2273 if (lsa->data->type < OSPF_MIN_LSA
2274 || lsa->data->type >= OSPF_MAX_LSA) {
2275 lsa->data = NULL;
2276 ospf_lsa_discard(lsa);
2277 continue;
2278 }
2279
2280 lsr = ospf_ls_retransmit_lookup(nbr, lsa);
2281
2282 if (lsr != NULL && ospf_lsa_more_recent(lsr, lsa) == 0)
2283 ospf_ls_retransmit_delete(nbr, lsr);
2284
2285 lsa->data = NULL;
2286 ospf_lsa_discard(lsa);
2287 }
2288
2289 return;
2290 }
2291
2292 static struct stream *ospf_recv_packet(struct ospf *ospf, int fd,
2293 struct interface **ifp,
2294 struct stream *ibuf)
2295 {
2296 int ret;
2297 struct ip *iph;
2298 uint16_t ip_len;
2299 ifindex_t ifindex = 0;
2300 struct iovec iov;
2301 /* Header and data both require alignment. */
2302 char buff[CMSG_SPACE(SOPT_SIZE_CMSG_IFINDEX_IPV4())];
2303 struct msghdr msgh;
2304
2305 memset(&msgh, 0, sizeof(struct msghdr));
2306 msgh.msg_iov = &iov;
2307 msgh.msg_iovlen = 1;
2308 msgh.msg_control = (caddr_t)buff;
2309 msgh.msg_controllen = sizeof(buff);
2310
2311 ret = stream_recvmsg(ibuf, fd, &msgh, 0, OSPF_MAX_PACKET_SIZE + 1);
2312 if (ret < 0) {
2313 flog_warn(EC_OSPF_PACKET, "stream_recvmsg failed: %s",
2314 safe_strerror(errno));
2315 return NULL;
2316 }
2317 if ((unsigned int)ret < sizeof(iph)) /* ret must be > 0 now */
2318 {
2319 flog_warn(
2320 EC_OSPF_PACKET,
2321 "ospf_recv_packet: discarding runt packet of length %d "
2322 "(ip header size is %u)",
2323 ret, (unsigned int)sizeof(iph));
2324 return NULL;
2325 }
2326
2327 /* Note that there should not be alignment problems with this assignment
2328 because this is at the beginning of the stream data buffer. */
2329 iph = (struct ip *)STREAM_DATA(ibuf);
2330 sockopt_iphdrincl_swab_systoh(iph);
2331
2332 ip_len = iph->ip_len;
2333
2334 #if !defined(GNU_LINUX) && (OpenBSD < 200311) && (__FreeBSD_version < 1000000)
2335 /*
2336 * Kernel network code touches incoming IP header parameters,
2337 * before protocol specific processing.
2338 *
2339 * 1) Convert byteorder to host representation.
2340 * --> ip_len, ip_id, ip_off
2341 *
2342 * 2) Adjust ip_len to strip IP header size!
2343 * --> If user process receives entire IP packet via RAW
2344 * socket, it must consider adding IP header size to
2345 * the "ip_len" field of "ip" structure.
2346 *
2347 * For more details, see <netinet/ip_input.c>.
2348 */
2349 ip_len = ip_len + (iph->ip_hl << 2);
2350 #endif
2351
2352 #if defined(__DragonFly__)
2353 /*
2354 * in DragonFly's raw socket, ip_len/ip_off are read
2355 * in network byte order.
2356 * As OpenBSD < 200311 adjust ip_len to strip IP header size!
2357 */
2358 ip_len = ntohs(iph->ip_len) + (iph->ip_hl << 2);
2359 #endif
2360
2361 ifindex = getsockopt_ifindex(AF_INET, &msgh);
2362
2363 *ifp = if_lookup_by_index(ifindex, ospf->vrf_id);
2364
2365 if (ret != ip_len) {
2366 flog_warn(
2367 EC_OSPF_PACKET,
2368 "ospf_recv_packet read length mismatch: ip_len is %d, "
2369 "but recvmsg returned %d",
2370 ip_len, ret);
2371 return NULL;
2372 }
2373
2374 return ibuf;
2375 }
2376
2377 static struct ospf_interface *
2378 ospf_associate_packet_vl(struct ospf *ospf, struct interface *ifp,
2379 struct ip *iph, struct ospf_header *ospfh)
2380 {
2381 struct ospf_interface *rcv_oi;
2382 struct ospf_vl_data *vl_data;
2383 struct ospf_area *vl_area;
2384 struct listnode *node;
2385
2386 if (IN_MULTICAST(ntohl(iph->ip_dst.s_addr))
2387 || !OSPF_IS_AREA_BACKBONE(ospfh))
2388 return NULL;
2389
2390 /* look for local OSPF interface matching the destination
2391 * to determine Area ID. We presume therefore the destination address
2392 * is unique, or at least (for "unnumbered" links), not used in other
2393 * areas
2394 */
2395 if ((rcv_oi = ospf_if_lookup_by_local_addr(ospf, NULL, iph->ip_dst))
2396 == NULL)
2397 return NULL;
2398
2399 for (ALL_LIST_ELEMENTS_RO(ospf->vlinks, node, vl_data)) {
2400 vl_area =
2401 ospf_area_lookup_by_area_id(ospf, vl_data->vl_area_id);
2402 if (!vl_area)
2403 continue;
2404
2405 if (OSPF_AREA_SAME(&vl_area, &rcv_oi->area)
2406 && IPV4_ADDR_SAME(&vl_data->vl_peer, &ospfh->router_id)) {
2407 if (IS_DEBUG_OSPF_EVENT)
2408 zlog_debug("associating packet with %s",
2409 IF_NAME(vl_data->vl_oi));
2410 if (!CHECK_FLAG(vl_data->vl_oi->ifp->flags, IFF_UP)) {
2411 if (IS_DEBUG_OSPF_EVENT)
2412 zlog_debug(
2413 "This VL is not up yet, sorry");
2414 return NULL;
2415 }
2416
2417 return vl_data->vl_oi;
2418 }
2419 }
2420
2421 if (IS_DEBUG_OSPF_EVENT)
2422 zlog_debug("couldn't find any VL to associate the packet with");
2423
2424 return NULL;
2425 }
2426
2427 static int ospf_check_area_id(struct ospf_interface *oi,
2428 struct ospf_header *ospfh)
2429 {
2430 /* Check match the Area ID of the receiving interface. */
2431 if (OSPF_AREA_SAME(&oi->area, &ospfh))
2432 return 1;
2433
2434 return 0;
2435 }
2436
2437 /* Unbound socket will accept any Raw IP packets if proto is matched.
2438 To prevent it, compare src IP address and i/f address with masking
2439 i/f network mask. */
2440 static int ospf_check_network_mask(struct ospf_interface *oi,
2441 struct in_addr ip_src)
2442 {
2443 struct in_addr mask, me, him;
2444
2445 if (oi->type == OSPF_IFTYPE_POINTOPOINT
2446 || oi->type == OSPF_IFTYPE_VIRTUALLINK)
2447 return 1;
2448
2449 masklen2ip(oi->address->prefixlen, &mask);
2450
2451 me.s_addr = oi->address->u.prefix4.s_addr & mask.s_addr;
2452 him.s_addr = ip_src.s_addr & mask.s_addr;
2453
2454 if (IPV4_ADDR_SAME(&me, &him))
2455 return 1;
2456
2457 return 0;
2458 }
2459
2460 /* Return 1, if the packet is properly authenticated and checksummed,
2461 0 otherwise. In particular, check that AuType header field is valid and
2462 matches the locally configured AuType, and that D.5 requirements are met. */
2463 static int ospf_check_auth(struct ospf_interface *oi, struct ospf_header *ospfh)
2464 {
2465 struct crypt_key *ck;
2466 uint16_t iface_auth_type;
2467 uint16_t pkt_auth_type = ntohs(ospfh->auth_type);
2468
2469 switch (pkt_auth_type) {
2470 case OSPF_AUTH_NULL: /* RFC2328 D.5.1 */
2471 if (OSPF_AUTH_NULL != (iface_auth_type = ospf_auth_type(oi))) {
2472 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2473 flog_warn(
2474 EC_OSPF_PACKET,
2475 "interface %s: auth-type mismatch, local %s, rcvd Null",
2476 IF_NAME(oi),
2477 lookup_msg(ospf_auth_type_str,
2478 iface_auth_type, NULL));
2479 return 0;
2480 }
2481 if (!ospf_check_sum(ospfh)) {
2482 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2483 flog_warn(
2484 EC_OSPF_PACKET,
2485 "interface %s: Null auth OK, but checksum error, Router-ID %s",
2486 IF_NAME(oi),
2487 inet_ntoa(ospfh->router_id));
2488 return 0;
2489 }
2490 return 1;
2491 case OSPF_AUTH_SIMPLE: /* RFC2328 D.5.2 */
2492 if (OSPF_AUTH_SIMPLE
2493 != (iface_auth_type = ospf_auth_type(oi))) {
2494 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2495 flog_warn(
2496 EC_OSPF_PACKET,
2497 "interface %s: auth-type mismatch, local %s, rcvd Simple",
2498 IF_NAME(oi),
2499 lookup_msg(ospf_auth_type_str,
2500 iface_auth_type, NULL));
2501 return 0;
2502 }
2503 if (memcmp(OSPF_IF_PARAM(oi, auth_simple), ospfh->u.auth_data,
2504 OSPF_AUTH_SIMPLE_SIZE)) {
2505 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2506 flog_warn(EC_OSPF_PACKET,
2507 "interface %s: Simple auth failed",
2508 IF_NAME(oi));
2509 return 0;
2510 }
2511 if (!ospf_check_sum(ospfh)) {
2512 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2513 flog_warn(
2514 EC_OSPF_PACKET,
2515 "interface %s: Simple auth OK, checksum error, Router-ID %s",
2516 IF_NAME(oi),
2517 inet_ntoa(ospfh->router_id));
2518 return 0;
2519 }
2520 return 1;
2521 case OSPF_AUTH_CRYPTOGRAPHIC: /* RFC2328 D.5.3 */
2522 if (OSPF_AUTH_CRYPTOGRAPHIC
2523 != (iface_auth_type = ospf_auth_type(oi))) {
2524 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2525 flog_warn(
2526 EC_OSPF_PACKET,
2527 "interface %s: auth-type mismatch, local %s, rcvd Cryptographic",
2528 IF_NAME(oi),
2529 lookup_msg(ospf_auth_type_str,
2530 iface_auth_type, NULL));
2531 return 0;
2532 }
2533 if (ospfh->checksum) {
2534 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2535 flog_warn(
2536 EC_OSPF_PACKET,
2537 "interface %s: OSPF header checksum is not 0",
2538 IF_NAME(oi));
2539 return 0;
2540 }
2541 /* only MD5 crypto method can pass ospf_packet_examin() */
2542 if (NULL == (ck = listgetdata(
2543 listtail(OSPF_IF_PARAM(oi, auth_crypt))))
2544 || ospfh->u.crypt.key_id != ck->key_id ||
2545 /* Condition above uses the last key ID on the list,
2546 which is
2547 different from what ospf_crypt_key_lookup() does. A
2548 bug? */
2549 !ospf_check_md5_digest(oi, ospfh)) {
2550 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2551 flog_warn(EC_OSPF_MD5,
2552 "interface %s: MD5 auth failed",
2553 IF_NAME(oi));
2554 return 0;
2555 }
2556 return 1;
2557 default:
2558 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV))
2559 flog_warn(
2560 EC_OSPF_PACKET,
2561 "interface %s: invalid packet auth-type (%02x)",
2562 IF_NAME(oi), pkt_auth_type);
2563 return 0;
2564 }
2565 }
2566
2567 static int ospf_check_sum(struct ospf_header *ospfh)
2568 {
2569 uint32_t ret;
2570 uint16_t sum;
2571
2572 /* clear auth_data for checksum. */
2573 memset(ospfh->u.auth_data, 0, OSPF_AUTH_SIMPLE_SIZE);
2574
2575 /* keep checksum and clear. */
2576 sum = ospfh->checksum;
2577 memset(&ospfh->checksum, 0, sizeof(uint16_t));
2578
2579 /* calculate checksum. */
2580 ret = in_cksum(ospfh, ntohs(ospfh->length));
2581
2582 if (ret != sum) {
2583 zlog_info("ospf_check_sum(): checksum mismatch, my %X, his %X",
2584 ret, sum);
2585 return 0;
2586 }
2587
2588 return 1;
2589 }
2590
2591 /* Verify, that given link/TOS records are properly sized/aligned and match
2592 Router-LSA "# links" and "# TOS" fields as specified in RFC2328 A.4.2. */
2593 static unsigned ospf_router_lsa_links_examin(struct router_lsa_link *link,
2594 uint16_t linkbytes,
2595 const uint16_t num_links)
2596 {
2597 unsigned counted_links = 0, thislinklen;
2598
2599 while (linkbytes) {
2600 thislinklen =
2601 OSPF_ROUTER_LSA_LINK_SIZE + 4 * link->m[0].tos_count;
2602 if (thislinklen > linkbytes) {
2603 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2604 zlog_debug("%s: length error in link block #%u",
2605 __func__, counted_links);
2606 return MSG_NG;
2607 }
2608 link = (struct router_lsa_link *)((caddr_t)link + thislinklen);
2609 linkbytes -= thislinklen;
2610 counted_links++;
2611 }
2612 if (counted_links != num_links) {
2613 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2614 zlog_debug("%s: %u link blocks declared, %u present",
2615 __func__, num_links, counted_links);
2616 return MSG_NG;
2617 }
2618 return MSG_OK;
2619 }
2620
2621 /* Verify, that the given LSA is properly sized/aligned (including type-specific
2622 minimum length constraint). */
2623 static unsigned ospf_lsa_examin(struct lsa_header *lsah, const uint16_t lsalen,
2624 const uint8_t headeronly)
2625 {
2626 unsigned ret;
2627 struct router_lsa *rlsa;
2628 if (lsah->type < OSPF_MAX_LSA && ospf_lsa_minlen[lsah->type]
2629 && lsalen < OSPF_LSA_HEADER_SIZE + ospf_lsa_minlen[lsah->type]) {
2630 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2631 zlog_debug("%s: undersized (%u B) %s", __func__, lsalen,
2632 lookup_msg(ospf_lsa_type_msg, lsah->type,
2633 NULL));
2634 return MSG_NG;
2635 }
2636 switch (lsah->type) {
2637 case OSPF_ROUTER_LSA:
2638 /* RFC2328 A.4.2, LSA header + 4 bytes followed by N>=1
2639 * (12+)-byte link blocks */
2640 if (headeronly) {
2641 ret = (lsalen - OSPF_LSA_HEADER_SIZE
2642 - OSPF_ROUTER_LSA_MIN_SIZE)
2643 % 4
2644 ? MSG_NG
2645 : MSG_OK;
2646 break;
2647 }
2648 rlsa = (struct router_lsa *)lsah;
2649 ret = ospf_router_lsa_links_examin(
2650 (struct router_lsa_link *)rlsa->link,
2651 lsalen - OSPF_LSA_HEADER_SIZE - 4, /* skip: basic
2652 header, "flags",
2653 0, "# links" */
2654 ntohs(rlsa->links) /* 16 bits */
2655 );
2656 break;
2657 case OSPF_AS_EXTERNAL_LSA:
2658 /* RFC2328 A.4.5, LSA header + 4 bytes followed by N>=1 12-bytes long
2659 * blocks */
2660 case OSPF_AS_NSSA_LSA:
2661 /* RFC3101 C, idem */
2662 ret = (lsalen - OSPF_LSA_HEADER_SIZE
2663 - OSPF_AS_EXTERNAL_LSA_MIN_SIZE)
2664 % 12
2665 ? MSG_NG
2666 : MSG_OK;
2667 break;
2668 /* Following LSA types are considered OK length-wise as soon as their
2669 * minimum
2670 * length constraint is met and length of the whole LSA is a multiple of
2671 * 4
2672 * (basic LSA header size is already a multiple of 4). */
2673 case OSPF_NETWORK_LSA:
2674 /* RFC2328 A.4.3, LSA header + 4 bytes followed by N>=1 router-IDs */
2675 case OSPF_SUMMARY_LSA:
2676 case OSPF_ASBR_SUMMARY_LSA:
2677 /* RFC2328 A.4.4, LSA header + 4 bytes followed by N>=1 4-bytes TOS
2678 * blocks */
2679 case OSPF_OPAQUE_LINK_LSA:
2680 case OSPF_OPAQUE_AREA_LSA:
2681 case OSPF_OPAQUE_AS_LSA:
2682 /* RFC5250 A.2, "some number of octets (of application-specific
2683 * data) padded to 32-bit alignment." This is considered
2684 * equivalent
2685 * to 4-byte alignment of all other LSA types, see
2686 * OSPF-ALIGNMENT.txt
2687 * file for the detailed analysis of this passage. */
2688 ret = lsalen % 4 ? MSG_NG : MSG_OK;
2689 break;
2690 default:
2691 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2692 zlog_debug("%s: unsupported LSA type 0x%02x", __func__,
2693 lsah->type);
2694 return MSG_NG;
2695 }
2696 if (ret != MSG_OK && IS_DEBUG_OSPF_PACKET(0, RECV))
2697 zlog_debug("%s: alignment error in %s", __func__,
2698 lookup_msg(ospf_lsa_type_msg, lsah->type, NULL));
2699 return ret;
2700 }
2701
2702 /* Verify if the provided input buffer is a valid sequence of LSAs. This
2703 includes verification of LSA blocks length/alignment and dispatching
2704 of deeper-level checks. */
2705 static unsigned
2706 ospf_lsaseq_examin(struct lsa_header *lsah, /* start of buffered data */
2707 size_t length, const uint8_t headeronly,
2708 /* When declared_num_lsas is not 0, compare it to the real
2709 number of LSAs
2710 and treat the difference as an error. */
2711 const uint32_t declared_num_lsas)
2712 {
2713 uint32_t counted_lsas = 0;
2714
2715 while (length) {
2716 uint16_t lsalen;
2717 if (length < OSPF_LSA_HEADER_SIZE) {
2718 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2719 zlog_debug(
2720 "%s: undersized (%zu B) trailing (#%u) LSA header",
2721 __func__, length, counted_lsas);
2722 return MSG_NG;
2723 }
2724 /* save on ntohs() calls here and in the LSA validator */
2725 lsalen = ntohs(lsah->length);
2726 if (lsalen < OSPF_LSA_HEADER_SIZE) {
2727 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2728 zlog_debug(
2729 "%s: malformed LSA header #%u, declared length is %u B",
2730 __func__, counted_lsas, lsalen);
2731 return MSG_NG;
2732 }
2733 if (headeronly) {
2734 /* less checks here and in ospf_lsa_examin() */
2735 if (MSG_OK != ospf_lsa_examin(lsah, lsalen, 1)) {
2736 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2737 zlog_debug(
2738 "%s: malformed header-only LSA #%u",
2739 __func__, counted_lsas);
2740 return MSG_NG;
2741 }
2742 lsah = (struct lsa_header *)((caddr_t)lsah
2743 + OSPF_LSA_HEADER_SIZE);
2744 length -= OSPF_LSA_HEADER_SIZE;
2745 } else {
2746 /* make sure the input buffer is deep enough before
2747 * further checks */
2748 if (lsalen > length) {
2749 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2750 zlog_debug(
2751 "%s: anomaly in LSA #%u: declared length is %u B, buffered length is %zu B",
2752 __func__, counted_lsas, lsalen,
2753 length);
2754 return MSG_NG;
2755 }
2756 if (MSG_OK != ospf_lsa_examin(lsah, lsalen, 0)) {
2757 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2758 zlog_debug("%s: malformed LSA #%u",
2759 __func__, counted_lsas);
2760 return MSG_NG;
2761 }
2762 lsah = (struct lsa_header *)((caddr_t)lsah + lsalen);
2763 length -= lsalen;
2764 }
2765 counted_lsas++;
2766 }
2767
2768 if (declared_num_lsas && counted_lsas != declared_num_lsas) {
2769 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2770 zlog_debug(
2771 "%s: #LSAs declared (%u) does not match actual (%u)",
2772 __func__, declared_num_lsas, counted_lsas);
2773 return MSG_NG;
2774 }
2775 return MSG_OK;
2776 }
2777
2778 /* Verify a complete OSPF packet for proper sizing/alignment. */
2779 static unsigned ospf_packet_examin(struct ospf_header *oh,
2780 const unsigned bytesonwire)
2781 {
2782 uint16_t bytesdeclared, bytesauth;
2783 unsigned ret;
2784 struct ospf_ls_update *lsupd;
2785
2786 /* Length, 1st approximation. */
2787 if (bytesonwire < OSPF_HEADER_SIZE) {
2788 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2789 zlog_debug("%s: undersized (%u B) packet", __func__,
2790 bytesonwire);
2791 return MSG_NG;
2792 }
2793 /* Now it is safe to access header fields. Performing length check,
2794 * allow
2795 * for possible extra bytes of crypto auth/padding, which are not
2796 * counted
2797 * in the OSPF header "length" field. */
2798 if (oh->version != OSPF_VERSION) {
2799 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2800 zlog_debug("%s: invalid (%u) protocol version",
2801 __func__, oh->version);
2802 return MSG_NG;
2803 }
2804 bytesdeclared = ntohs(oh->length);
2805 if (ntohs(oh->auth_type) != OSPF_AUTH_CRYPTOGRAPHIC)
2806 bytesauth = 0;
2807 else {
2808 if (oh->u.crypt.auth_data_len != OSPF_AUTH_MD5_SIZE) {
2809 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2810 zlog_debug(
2811 "%s: unsupported crypto auth length (%u B)",
2812 __func__, oh->u.crypt.auth_data_len);
2813 return MSG_NG;
2814 }
2815 bytesauth = OSPF_AUTH_MD5_SIZE;
2816 }
2817 if (bytesdeclared + bytesauth > bytesonwire) {
2818 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2819 zlog_debug(
2820 "%s: packet length error (%u real, %u+%u declared)",
2821 __func__, bytesonwire, bytesdeclared,
2822 bytesauth);
2823 return MSG_NG;
2824 }
2825 /* Length, 2nd approximation. The type-specific constraint is checked
2826 against declared length, not amount of bytes on wire. */
2827 if (oh->type >= OSPF_MSG_HELLO && oh->type <= OSPF_MSG_LS_ACK
2828 && bytesdeclared
2829 < OSPF_HEADER_SIZE + ospf_packet_minlen[oh->type]) {
2830 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2831 zlog_debug("%s: undersized (%u B) %s packet", __func__,
2832 bytesdeclared,
2833 lookup_msg(ospf_packet_type_str, oh->type,
2834 NULL));
2835 return MSG_NG;
2836 }
2837 switch (oh->type) {
2838 case OSPF_MSG_HELLO:
2839 /* RFC2328 A.3.2, packet header + OSPF_HELLO_MIN_SIZE bytes
2840 followed
2841 by N>=0 router-IDs. */
2842 ret = (bytesdeclared - OSPF_HEADER_SIZE - OSPF_HELLO_MIN_SIZE)
2843 % 4
2844 ? MSG_NG
2845 : MSG_OK;
2846 break;
2847 case OSPF_MSG_DB_DESC:
2848 /* RFC2328 A.3.3, packet header + OSPF_DB_DESC_MIN_SIZE bytes
2849 followed
2850 by N>=0 header-only LSAs. */
2851 ret = ospf_lsaseq_examin(
2852 (struct lsa_header *)((caddr_t)oh + OSPF_HEADER_SIZE
2853 + OSPF_DB_DESC_MIN_SIZE),
2854 bytesdeclared - OSPF_HEADER_SIZE
2855 - OSPF_DB_DESC_MIN_SIZE,
2856 1, /* header-only LSAs */
2857 0);
2858 break;
2859 case OSPF_MSG_LS_REQ:
2860 /* RFC2328 A.3.4, packet header followed by N>=0 12-bytes
2861 * request blocks. */
2862 ret = (bytesdeclared - OSPF_HEADER_SIZE - OSPF_LS_REQ_MIN_SIZE)
2863 % OSPF_LSA_KEY_SIZE
2864 ? MSG_NG
2865 : MSG_OK;
2866 break;
2867 case OSPF_MSG_LS_UPD:
2868 /* RFC2328 A.3.5, packet header + OSPF_LS_UPD_MIN_SIZE bytes
2869 followed
2870 by N>=0 full LSAs (with N declared beforehand). */
2871 lsupd = (struct ospf_ls_update *)((caddr_t)oh
2872 + OSPF_HEADER_SIZE);
2873 ret = ospf_lsaseq_examin(
2874 (struct lsa_header *)((caddr_t)lsupd
2875 + OSPF_LS_UPD_MIN_SIZE),
2876 bytesdeclared - OSPF_HEADER_SIZE - OSPF_LS_UPD_MIN_SIZE,
2877 0, /* full LSAs */
2878 ntohl(lsupd->num_lsas) /* 32 bits */
2879 );
2880 break;
2881 case OSPF_MSG_LS_ACK:
2882 /* RFC2328 A.3.6, packet header followed by N>=0 header-only
2883 * LSAs. */
2884 ret = ospf_lsaseq_examin(
2885 (struct lsa_header *)((caddr_t)oh + OSPF_HEADER_SIZE
2886 + OSPF_LS_ACK_MIN_SIZE),
2887 bytesdeclared - OSPF_HEADER_SIZE - OSPF_LS_ACK_MIN_SIZE,
2888 1, /* header-only LSAs */
2889 0);
2890 break;
2891 default:
2892 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2893 zlog_debug("%s: invalid packet type 0x%02x", __func__,
2894 oh->type);
2895 return MSG_NG;
2896 }
2897 if (ret != MSG_OK && IS_DEBUG_OSPF_PACKET(0, RECV))
2898 zlog_debug("%s: malformed %s packet", __func__,
2899 lookup_msg(ospf_packet_type_str, oh->type, NULL));
2900 return ret;
2901 }
2902
2903 /* OSPF Header verification. */
2904 static int ospf_verify_header(struct stream *ibuf, struct ospf_interface *oi,
2905 struct ip *iph, struct ospf_header *ospfh)
2906 {
2907 /* Check Area ID. */
2908 if (!ospf_check_area_id(oi, ospfh)) {
2909 flog_warn(EC_OSPF_PACKET,
2910 "interface %s: ospf_read invalid Area ID %s.",
2911 IF_NAME(oi), inet_ntoa(ospfh->area_id));
2912 return -1;
2913 }
2914
2915 /* Check network mask, Silently discarded. */
2916 if (!ospf_check_network_mask(oi, iph->ip_src)) {
2917 flog_warn(
2918 EC_OSPF_PACKET,
2919 "interface %s: ospf_read network address is not same [%s]",
2920 IF_NAME(oi), inet_ntoa(iph->ip_src));
2921 return -1;
2922 }
2923
2924 /* Check authentication. The function handles logging actions, where
2925 * required. */
2926 if (!ospf_check_auth(oi, ospfh))
2927 return -1;
2928
2929 return 0;
2930 }
2931
2932 /* Starting point of packet process function. */
2933 int ospf_read(struct thread *thread)
2934 {
2935 int ret;
2936 struct stream *ibuf;
2937 struct ospf *ospf;
2938 struct ospf_interface *oi;
2939 struct ip *iph;
2940 struct ospf_header *ospfh;
2941 uint16_t length;
2942 struct interface *ifp = NULL;
2943 struct connected *c;
2944
2945 /* first of all get interface pointer. */
2946 ospf = THREAD_ARG(thread);
2947
2948 /* prepare for next packet. */
2949 ospf->t_read = NULL;
2950 thread_add_read(master, ospf_read, ospf, ospf->fd, &ospf->t_read);
2951
2952 stream_reset(ospf->ibuf);
2953 ibuf = ospf_recv_packet(ospf, ospf->fd, &ifp, ospf->ibuf);
2954 if (ibuf == NULL)
2955 return -1;
2956 /* This raw packet is known to be at least as big as its IP header. */
2957
2958 /* Note that there should not be alignment problems with this assignment
2959 because this is at the beginning of the stream data buffer. */
2960 iph = (struct ip *)STREAM_DATA(ibuf);
2961 /* Note that sockopt_iphdrincl_swab_systoh was called in
2962 * ospf_recv_packet. */
2963
2964 if (ifp == NULL) {
2965 /* Handle cases where the platform does not support retrieving
2966 the ifindex,
2967 and also platforms (such as Solaris 8) that claim to support
2968 ifindex
2969 retrieval but do not. */
2970 c = if_lookup_address((void *)&iph->ip_src, AF_INET,
2971 ospf->vrf_id);
2972 if (c)
2973 ifp = c->ifp;
2974 if (ifp == NULL)
2975 return 0;
2976 }
2977
2978 /* IP Header dump. */
2979 if (IS_DEBUG_OSPF_PACKET(0, RECV))
2980 ospf_ip_header_dump(iph);
2981
2982 /* Self-originated packet should be discarded silently. */
2983 if (ospf_if_lookup_by_local_addr(ospf, NULL, iph->ip_src)) {
2984 if (IS_DEBUG_OSPF_PACKET(0, RECV)) {
2985 zlog_debug(
2986 "ospf_read[%s]: Dropping self-originated packet",
2987 inet_ntoa(iph->ip_src));
2988 }
2989 return 0;
2990 }
2991
2992 /* Advance from IP header to OSPF header (iph->ip_hl has been verified
2993 by ospf_recv_packet() to be correct). */
2994 stream_forward_getp(ibuf, iph->ip_hl * 4);
2995
2996 ospfh = (struct ospf_header *)stream_pnt(ibuf);
2997 if (MSG_OK
2998 != ospf_packet_examin(
2999 ospfh, stream_get_endp(ibuf) - stream_get_getp(ibuf)))
3000 return -1;
3001 /* Now it is safe to access all fields of OSPF packet header. */
3002
3003 /* associate packet with ospf interface */
3004 oi = ospf_if_lookup_recv_if(ospf, iph->ip_src, ifp);
3005
3006 /* ospf_verify_header() relies on a valid "oi" and thus can be called
3007 only
3008 after the passive/backbone/other checks below are passed. These
3009 checks
3010 in turn access the fields of unverified "ospfh" structure for their
3011 own
3012 purposes and must remain very accurate in doing this. */
3013
3014 /* If incoming interface is passive one, ignore it. */
3015 if (oi && OSPF_IF_PASSIVE_STATUS(oi) == OSPF_IF_PASSIVE) {
3016 char buf[3][INET_ADDRSTRLEN];
3017
3018 if (IS_DEBUG_OSPF_EVENT)
3019 zlog_debug(
3020 "ignoring packet from router %s sent to %s, "
3021 "received on a passive interface, %s",
3022 inet_ntop(AF_INET, &ospfh->router_id, buf[0],
3023 sizeof(buf[0])),
3024 inet_ntop(AF_INET, &iph->ip_dst, buf[1],
3025 sizeof(buf[1])),
3026 inet_ntop(AF_INET, &oi->address->u.prefix4,
3027 buf[2], sizeof(buf[2])));
3028
3029 if (iph->ip_dst.s_addr == htonl(OSPF_ALLSPFROUTERS)) {
3030 /* Try to fix multicast membership.
3031 * Some OS:es may have problems in this area,
3032 * make sure it is removed.
3033 */
3034 OI_MEMBER_JOINED(oi, MEMBER_ALLROUTERS);
3035 ospf_if_set_multicast(oi);
3036 }
3037 return 0;
3038 }
3039
3040
3041 /* if no local ospf_interface,
3042 * or header area is backbone but ospf_interface is not
3043 * check for VLINK interface
3044 */
3045 if ((oi == NULL) || (OSPF_IS_AREA_ID_BACKBONE(ospfh->area_id)
3046 && !OSPF_IS_AREA_ID_BACKBONE(oi->area->area_id))) {
3047 if ((oi = ospf_associate_packet_vl(ospf, ifp, iph, ospfh))
3048 == NULL) {
3049 if (!ospf->instance && IS_DEBUG_OSPF_EVENT)
3050 zlog_debug(
3051 "Packet from [%s] received on link %s"
3052 " but no ospf_interface",
3053 inet_ntoa(iph->ip_src), ifp->name);
3054 return 0;
3055 }
3056 }
3057
3058 /* else it must be a local ospf interface, check it was received on
3059 * correct link
3060 */
3061 else if (oi->ifp != ifp) {
3062 if (IS_DEBUG_OSPF_EVENT)
3063 flog_warn(EC_OSPF_PACKET,
3064 "Packet from [%s] received on wrong link %s",
3065 inet_ntoa(iph->ip_src), ifp->name);
3066 return 0;
3067 } else if (oi->state == ISM_Down) {
3068 char buf[2][INET_ADDRSTRLEN];
3069 flog_warn(
3070 EC_OSPF_PACKET,
3071 "Ignoring packet from %s to %s received on interface that is "
3072 "down [%s]; interface flags are %s",
3073 inet_ntop(AF_INET, &iph->ip_src, buf[0],
3074 sizeof(buf[0])),
3075 inet_ntop(AF_INET, &iph->ip_dst, buf[1],
3076 sizeof(buf[1])),
3077 ifp->name, if_flag_dump(ifp->flags));
3078 /* Fix multicast memberships? */
3079 if (iph->ip_dst.s_addr == htonl(OSPF_ALLSPFROUTERS))
3080 OI_MEMBER_JOINED(oi, MEMBER_ALLROUTERS);
3081 else if (iph->ip_dst.s_addr == htonl(OSPF_ALLDROUTERS))
3082 OI_MEMBER_JOINED(oi, MEMBER_DROUTERS);
3083 if (oi->multicast_memberships)
3084 ospf_if_set_multicast(oi);
3085 return 0;
3086 }
3087
3088 /*
3089 * If the received packet is destined for AllDRouters, the packet
3090 * should be accepted only if the received ospf interface state is
3091 * either DR or Backup -- endo.
3092 */
3093 if (iph->ip_dst.s_addr == htonl(OSPF_ALLDROUTERS)
3094 && (oi->state != ISM_DR && oi->state != ISM_Backup)) {
3095 flog_warn(
3096 EC_OSPF_PACKET,
3097 "Dropping packet for AllDRouters from [%s] via [%s] (ISM: %s)",
3098 inet_ntoa(iph->ip_src), IF_NAME(oi),
3099 lookup_msg(ospf_ism_state_msg, oi->state, NULL));
3100 /* Try to fix multicast membership. */
3101 SET_FLAG(oi->multicast_memberships, MEMBER_DROUTERS);
3102 ospf_if_set_multicast(oi);
3103 return 0;
3104 }
3105
3106 /* Verify more OSPF header fields. */
3107 ret = ospf_verify_header(ibuf, oi, iph, ospfh);
3108 if (ret < 0) {
3109 if (IS_DEBUG_OSPF_PACKET(0, RECV))
3110 zlog_debug(
3111 "ospf_read[%s]: Header check failed, "
3112 "dropping.",
3113 inet_ntoa(iph->ip_src));
3114 return ret;
3115 }
3116
3117 /* Show debug receiving packet. */
3118 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, RECV)) {
3119 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, DETAIL)) {
3120 zlog_debug(
3121 "-----------------------------------------------------");
3122 ospf_packet_dump(ibuf);
3123 }
3124
3125 zlog_debug("%s received from [%s] via [%s]",
3126 lookup_msg(ospf_packet_type_str, ospfh->type, NULL),
3127 inet_ntoa(ospfh->router_id), IF_NAME(oi));
3128 zlog_debug(" src [%s],", inet_ntoa(iph->ip_src));
3129 zlog_debug(" dst [%s]", inet_ntoa(iph->ip_dst));
3130
3131 if (IS_DEBUG_OSPF_PACKET(ospfh->type - 1, DETAIL))
3132 zlog_debug(
3133 "-----------------------------------------------------");
3134 }
3135
3136 stream_forward_getp(ibuf, OSPF_HEADER_SIZE);
3137
3138 /* Adjust size to message length. */
3139 length = ntohs(ospfh->length) - OSPF_HEADER_SIZE;
3140
3141 /* Read rest of the packet and call each sort of packet routine. */
3142 switch (ospfh->type) {
3143 case OSPF_MSG_HELLO:
3144 ospf_hello(iph, ospfh, ibuf, oi, length);
3145 break;
3146 case OSPF_MSG_DB_DESC:
3147 ospf_db_desc(iph, ospfh, ibuf, oi, length);
3148 break;
3149 case OSPF_MSG_LS_REQ:
3150 ospf_ls_req(iph, ospfh, ibuf, oi, length);
3151 break;
3152 case OSPF_MSG_LS_UPD:
3153 ospf_ls_upd(ospf, iph, ospfh, ibuf, oi, length);
3154 break;
3155 case OSPF_MSG_LS_ACK:
3156 ospf_ls_ack(iph, ospfh, ibuf, oi, length);
3157 break;
3158 default:
3159 flog_warn(EC_OSPF_PACKET,
3160 "interface %s: OSPF packet header type %d is illegal",
3161 IF_NAME(oi), ospfh->type);
3162 break;
3163 }
3164
3165 return 0;
3166 }
3167
3168 /* Make OSPF header. */
3169 static void ospf_make_header(int type, struct ospf_interface *oi,
3170 struct stream *s)
3171 {
3172 struct ospf_header *ospfh;
3173
3174 ospfh = (struct ospf_header *)STREAM_DATA(s);
3175
3176 ospfh->version = (uint8_t)OSPF_VERSION;
3177 ospfh->type = (uint8_t)type;
3178
3179 ospfh->router_id = oi->ospf->router_id;
3180
3181 ospfh->checksum = 0;
3182 ospfh->area_id = oi->area->area_id;
3183 ospfh->auth_type = htons(ospf_auth_type(oi));
3184
3185 memset(ospfh->u.auth_data, 0, OSPF_AUTH_SIMPLE_SIZE);
3186
3187 stream_forward_endp(s, OSPF_HEADER_SIZE);
3188 }
3189
3190 /* Make Authentication Data. */
3191 static int ospf_make_auth(struct ospf_interface *oi, struct ospf_header *ospfh)
3192 {
3193 struct crypt_key *ck;
3194
3195 switch (ospf_auth_type(oi)) {
3196 case OSPF_AUTH_NULL:
3197 /* memset (ospfh->u.auth_data, 0, sizeof (ospfh->u.auth_data));
3198 */
3199 break;
3200 case OSPF_AUTH_SIMPLE:
3201 memcpy(ospfh->u.auth_data, OSPF_IF_PARAM(oi, auth_simple),
3202 OSPF_AUTH_SIMPLE_SIZE);
3203 break;
3204 case OSPF_AUTH_CRYPTOGRAPHIC:
3205 /* If key is not set, then set 0. */
3206 if (list_isempty(OSPF_IF_PARAM(oi, auth_crypt))) {
3207 ospfh->u.crypt.zero = 0;
3208 ospfh->u.crypt.key_id = 0;
3209 ospfh->u.crypt.auth_data_len = OSPF_AUTH_MD5_SIZE;
3210 } else {
3211 ck = listgetdata(
3212 listtail(OSPF_IF_PARAM(oi, auth_crypt)));
3213 ospfh->u.crypt.zero = 0;
3214 ospfh->u.crypt.key_id = ck->key_id;
3215 ospfh->u.crypt.auth_data_len = OSPF_AUTH_MD5_SIZE;
3216 }
3217 /* note: the seq is done in ospf_make_md5_digest() */
3218 break;
3219 default:
3220 /* memset (ospfh->u.auth_data, 0, sizeof (ospfh->u.auth_data));
3221 */
3222 break;
3223 }
3224
3225 return 0;
3226 }
3227
3228 /* Fill rest of OSPF header. */
3229 static void ospf_fill_header(struct ospf_interface *oi, struct stream *s,
3230 uint16_t length)
3231 {
3232 struct ospf_header *ospfh;
3233
3234 ospfh = (struct ospf_header *)STREAM_DATA(s);
3235
3236 /* Fill length. */
3237 ospfh->length = htons(length);
3238
3239 /* Calculate checksum. */
3240 if (ntohs(ospfh->auth_type) != OSPF_AUTH_CRYPTOGRAPHIC)
3241 ospfh->checksum = in_cksum(ospfh, length);
3242 else
3243 ospfh->checksum = 0;
3244
3245 /* Add Authentication Data. */
3246 ospf_make_auth(oi, ospfh);
3247 }
3248
3249 static int ospf_make_hello(struct ospf_interface *oi, struct stream *s)
3250 {
3251 struct ospf_neighbor *nbr;
3252 struct route_node *rn;
3253 uint16_t length = OSPF_HELLO_MIN_SIZE;
3254 struct in_addr mask;
3255 unsigned long p;
3256 int flag = 0;
3257
3258 /* Set netmask of interface. */
3259 if (!(CHECK_FLAG(oi->connected->flags, ZEBRA_IFA_UNNUMBERED)
3260 && oi->type == OSPF_IFTYPE_POINTOPOINT)
3261 && oi->type != OSPF_IFTYPE_VIRTUALLINK)
3262 masklen2ip(oi->address->prefixlen, &mask);
3263 else
3264 memset((char *)&mask, 0, sizeof(struct in_addr));
3265 stream_put_ipv4(s, mask.s_addr);
3266
3267 /* Set Hello Interval. */
3268 if (OSPF_IF_PARAM(oi, fast_hello) == 0)
3269 stream_putw(s, OSPF_IF_PARAM(oi, v_hello));
3270 else
3271 stream_putw(s, 0); /* hello-interval of 0 for fast-hellos */
3272
3273 if (IS_DEBUG_OSPF_EVENT)
3274 zlog_debug("make_hello: options: %x, int: %s", OPTIONS(oi),
3275 IF_NAME(oi));
3276
3277 /* Set Options. */
3278 stream_putc(s, OPTIONS(oi));
3279
3280 /* Set Router Priority. */
3281 stream_putc(s, PRIORITY(oi));
3282
3283 /* Set Router Dead Interval. */
3284 stream_putl(s, OSPF_IF_PARAM(oi, v_wait));
3285
3286 /* Set Designated Router. */
3287 stream_put_ipv4(s, DR(oi).s_addr);
3288
3289 p = stream_get_endp(s);
3290
3291 /* Set Backup Designated Router. */
3292 stream_put_ipv4(s, BDR(oi).s_addr);
3293
3294 /* Add neighbor seen. */
3295 for (rn = route_top(oi->nbrs); rn; rn = route_next(rn))
3296 if ((nbr = rn->info))
3297 if (nbr->router_id.s_addr
3298 != 0) /* Ignore 0.0.0.0 node. */
3299 if (nbr->state
3300 != NSM_Attempt) /* Ignore Down neighbor. */
3301 if (nbr->state
3302 != NSM_Down) /* This is myself for
3303 DR election. */
3304 if (!IPV4_ADDR_SAME(
3305 &nbr->router_id,
3306 &oi->ospf->router_id)) {
3307 /* Check neighbor is
3308 * sane? */
3309 if (nbr->d_router.s_addr
3310 != 0
3311 && IPV4_ADDR_SAME(
3312 &nbr->d_router,
3313 &oi->address
3314 ->u
3315 .prefix4)
3316 && IPV4_ADDR_SAME(
3317 &nbr->bd_router,
3318 &oi->address
3319 ->u
3320 .prefix4))
3321 flag = 1;
3322
3323 /* Hello packet overflows interface MTU. */
3324 if (length + sizeof(uint32_t)
3325 > ospf_packet_max(oi)) {
3326 flog_err(
3327 EC_OSPF_LARGE_HELLO,
3328 "Oversized Hello packet! Larger than MTU. Not sending it out");
3329 return 0;
3330 }
3331
3332 stream_put_ipv4(
3333 s,
3334 nbr->router_id
3335 .s_addr);
3336 length += 4;
3337 }
3338
3339 /* Let neighbor generate BackupSeen. */
3340 if (flag == 1)
3341 stream_putl_at(s, p, 0); /* ipv4 address, normally */
3342
3343 return length;
3344 }
3345
3346 static int ospf_make_db_desc(struct ospf_interface *oi,
3347 struct ospf_neighbor *nbr, struct stream *s)
3348 {
3349 struct ospf_lsa *lsa;
3350 uint16_t length = OSPF_DB_DESC_MIN_SIZE;
3351 uint8_t options;
3352 unsigned long pp;
3353 int i;
3354 struct ospf_lsdb *lsdb;
3355
3356 /* Set Interface MTU. */
3357 if (oi->type == OSPF_IFTYPE_VIRTUALLINK)
3358 stream_putw(s, 0);
3359 else
3360 stream_putw(s, oi->ifp->mtu);
3361
3362 /* Set Options. */
3363 options = OPTIONS(oi);
3364 if (CHECK_FLAG(oi->ospf->config, OSPF_OPAQUE_CAPABLE))
3365 SET_FLAG(options, OSPF_OPTION_O);
3366 stream_putc(s, options);
3367
3368 /* DD flags */
3369 pp = stream_get_endp(s);
3370 stream_putc(s, nbr->dd_flags);
3371
3372 /* Set DD Sequence Number. */
3373 stream_putl(s, nbr->dd_seqnum);
3374
3375 /* shortcut unneeded walk of (empty) summary LSDBs */
3376 if (ospf_db_summary_isempty(nbr))
3377 goto empty;
3378
3379 /* Describe LSA Header from Database Summary List. */
3380 lsdb = &nbr->db_sum;
3381
3382 for (i = OSPF_MIN_LSA; i < OSPF_MAX_LSA; i++) {
3383 struct route_table *table = lsdb->type[i].db;
3384 struct route_node *rn;
3385
3386 for (rn = route_top(table); rn; rn = route_next(rn))
3387 if ((lsa = rn->info) != NULL) {
3388 if (IS_OPAQUE_LSA(lsa->data->type)
3389 && (!CHECK_FLAG(options, OSPF_OPTION_O))) {
3390 /* Suppress advertising
3391 * opaque-information. */
3392 /* Remove LSA from DB summary list. */
3393 ospf_lsdb_delete(lsdb, lsa);
3394 continue;
3395 }
3396
3397 if (!CHECK_FLAG(lsa->flags, OSPF_LSA_DISCARD)) {
3398 struct lsa_header *lsah;
3399 uint16_t ls_age;
3400
3401 /* DD packet overflows interface MTU. */
3402 if (length + OSPF_LSA_HEADER_SIZE
3403 > ospf_packet_max(oi))
3404 break;
3405
3406 /* Keep pointer to LS age. */
3407 lsah = (struct lsa_header
3408 *)(STREAM_DATA(s)
3409 + stream_get_endp(
3410 s));
3411
3412 /* Proceed stream pointer. */
3413 stream_put(s, lsa->data,
3414 OSPF_LSA_HEADER_SIZE);
3415 length += OSPF_LSA_HEADER_SIZE;
3416
3417 /* Set LS age. */
3418 ls_age = LS_AGE(lsa);
3419 lsah->ls_age = htons(ls_age);
3420 }
3421
3422 /* Remove LSA from DB summary list. */
3423 ospf_lsdb_delete(lsdb, lsa);
3424 }
3425 }
3426
3427 /* Update 'More' bit */
3428 if (ospf_db_summary_isempty(nbr)) {
3429 empty:
3430 if (nbr->state >= NSM_Exchange) {
3431 UNSET_FLAG(nbr->dd_flags, OSPF_DD_FLAG_M);
3432 /* Rewrite DD flags */
3433 stream_putc_at(s, pp, nbr->dd_flags);
3434 } else {
3435 assert(IS_SET_DD_M(nbr->dd_flags));
3436 }
3437 }
3438 return length;
3439 }
3440
3441 static int ospf_make_ls_req_func(struct stream *s, uint16_t *length,
3442 unsigned long delta, struct ospf_neighbor *nbr,
3443 struct ospf_lsa *lsa)
3444 {
3445 struct ospf_interface *oi;
3446
3447 oi = nbr->oi;
3448
3449 /* LS Request packet overflows interface MTU
3450 * delta is just number of bytes required for 1 LS Req
3451 * ospf_packet_max will return the number of bytes can
3452 * be accomodated without ospf header. So length+delta
3453 * can be compared to ospf_packet_max
3454 * to check if it can fit another lsreq in the same packet.
3455 */
3456
3457 if (*length + delta > ospf_packet_max(oi))
3458 return 0;
3459
3460 stream_putl(s, lsa->data->type);
3461 stream_put_ipv4(s, lsa->data->id.s_addr);
3462 stream_put_ipv4(s, lsa->data->adv_router.s_addr);
3463
3464 ospf_lsa_unlock(&nbr->ls_req_last);
3465 nbr->ls_req_last = ospf_lsa_lock(lsa);
3466
3467 *length += 12;
3468 return 1;
3469 }
3470
3471 static int ospf_make_ls_req(struct ospf_neighbor *nbr, struct stream *s)
3472 {
3473 struct ospf_lsa *lsa;
3474 uint16_t length = OSPF_LS_REQ_MIN_SIZE;
3475 unsigned long delta = 12;
3476 struct route_table *table;
3477 struct route_node *rn;
3478 int i;
3479 struct ospf_lsdb *lsdb;
3480
3481 lsdb = &nbr->ls_req;
3482
3483 for (i = OSPF_MIN_LSA; i < OSPF_MAX_LSA; i++) {
3484 table = lsdb->type[i].db;
3485 for (rn = route_top(table); rn; rn = route_next(rn))
3486 if ((lsa = (rn->info)) != NULL)
3487 if (ospf_make_ls_req_func(s, &length, delta,
3488 nbr, lsa)
3489 == 0) {
3490 route_unlock_node(rn);
3491 break;
3492 }
3493 }
3494 return length;
3495 }
3496
3497 static int ls_age_increment(struct ospf_lsa *lsa, int delay)
3498 {
3499 int age;
3500
3501 age = IS_LSA_MAXAGE(lsa) ? OSPF_LSA_MAXAGE : LS_AGE(lsa) + delay;
3502
3503 return (age > OSPF_LSA_MAXAGE ? OSPF_LSA_MAXAGE : age);
3504 }
3505
3506 static int ospf_make_ls_upd(struct ospf_interface *oi, struct list *update,
3507 struct stream *s)
3508 {
3509 struct ospf_lsa *lsa;
3510 struct listnode *node;
3511 uint16_t length = 0;
3512 unsigned int size_noauth;
3513 unsigned long delta = stream_get_endp(s);
3514 unsigned long pp;
3515 int count = 0;
3516
3517 if (IS_DEBUG_OSPF_EVENT)
3518 zlog_debug("ospf_make_ls_upd: Start");
3519
3520 pp = stream_get_endp(s);
3521 stream_forward_endp(s, OSPF_LS_UPD_MIN_SIZE);
3522 length += OSPF_LS_UPD_MIN_SIZE;
3523
3524 /* Calculate amount of packet usable for data. */
3525 size_noauth = stream_get_size(s) - ospf_packet_authspace(oi);
3526
3527 while ((node = listhead(update)) != NULL) {
3528 struct lsa_header *lsah;
3529 uint16_t ls_age;
3530
3531 if (IS_DEBUG_OSPF_EVENT)
3532 zlog_debug("ospf_make_ls_upd: List Iteration %d",
3533 count);
3534
3535 lsa = listgetdata(node);
3536
3537 assert(lsa->data);
3538
3539 /* Will it fit? Minimum it has to fit atleast one */
3540 if ((length + delta + ntohs(lsa->data->length) > size_noauth) &&
3541 (count > 0))
3542 break;
3543
3544 /* Keep pointer to LS age. */
3545 lsah = (struct lsa_header *)(STREAM_DATA(s)
3546 + stream_get_endp(s));
3547
3548 /* Put LSA to Link State Request. */
3549 stream_put(s, lsa->data, ntohs(lsa->data->length));
3550
3551 /* Set LS age. */
3552 /* each hop must increment an lsa_age by transmit_delay
3553 of OSPF interface */
3554 ls_age = ls_age_increment(lsa,
3555 OSPF_IF_PARAM(oi, transmit_delay));
3556 lsah->ls_age = htons(ls_age);
3557
3558 length += ntohs(lsa->data->length);
3559 count++;
3560
3561 list_delete_node(update, node);
3562 ospf_lsa_unlock(&lsa); /* oi->ls_upd_queue */
3563 }
3564
3565 /* Now set #LSAs. */
3566 stream_putl_at(s, pp, count);
3567
3568 if (IS_DEBUG_OSPF_EVENT)
3569 zlog_debug("ospf_make_ls_upd: Stop");
3570 return length;
3571 }
3572
3573 static int ospf_make_ls_ack(struct ospf_interface *oi, struct list *ack,
3574 struct stream *s)
3575 {
3576 struct listnode *node, *nnode;
3577 uint16_t length = OSPF_LS_ACK_MIN_SIZE;
3578 unsigned long delta = OSPF_LSA_HEADER_SIZE;
3579 struct ospf_lsa *lsa;
3580
3581 for (ALL_LIST_ELEMENTS(ack, node, nnode, lsa)) {
3582 assert(lsa);
3583
3584 /* LS Ack packet overflows interface MTU
3585 * delta is just number of bytes required for
3586 * 1 LS Ack(1 LS Hdr) ospf_packet_max will return
3587 * the number of bytes can be accomodated without
3588 * ospf header. So length+delta can be compared
3589 * against ospf_packet_max to check if it can fit
3590 * another ls header in the same packet.
3591 */
3592 if ((length + delta) > ospf_packet_max(oi))
3593 break;
3594
3595 stream_put(s, lsa->data, OSPF_LSA_HEADER_SIZE);
3596 length += OSPF_LSA_HEADER_SIZE;
3597
3598 listnode_delete(ack, lsa);
3599 ospf_lsa_unlock(&lsa); /* oi->ls_ack_direct.ls_ack */
3600 }
3601
3602 return length;
3603 }
3604
3605 static void ospf_hello_send_sub(struct ospf_interface *oi, in_addr_t addr)
3606 {
3607 struct ospf_packet *op;
3608 uint16_t length = OSPF_HEADER_SIZE;
3609
3610 op = ospf_packet_new(oi->ifp->mtu);
3611
3612 /* Prepare OSPF common header. */
3613 ospf_make_header(OSPF_MSG_HELLO, oi, op->s);
3614
3615 /* Prepare OSPF Hello body. */
3616 length += ospf_make_hello(oi, op->s);
3617 if (length == OSPF_HEADER_SIZE) {
3618 /* Hello overshooting MTU */
3619 ospf_packet_free(op);
3620 return;
3621 }
3622
3623 /* Fill OSPF header. */
3624 ospf_fill_header(oi, op->s, length);
3625
3626 /* Set packet length. */
3627 op->length = length;
3628
3629 op->dst.s_addr = addr;
3630
3631 if (IS_DEBUG_OSPF_EVENT) {
3632 if (oi->ospf->vrf_id)
3633 zlog_debug(
3634 "%s: Hello Tx interface %s ospf vrf %s id %u",
3635 __PRETTY_FUNCTION__, oi->ifp->name,
3636 ospf_vrf_id_to_name(oi->ospf->vrf_id),
3637 oi->ospf->vrf_id);
3638 }
3639 /* Add packet to the top of the interface output queue, so that they
3640 * can't get delayed by things like long queues of LS Update packets
3641 */
3642 ospf_packet_add_top(oi, op);
3643
3644 /* Hook thread to write packet. */
3645 OSPF_ISM_WRITE_ON(oi->ospf);
3646 }
3647
3648 static void ospf_poll_send(struct ospf_nbr_nbma *nbr_nbma)
3649 {
3650 struct ospf_interface *oi;
3651
3652 oi = nbr_nbma->oi;
3653 assert(oi);
3654
3655 /* If this is passive interface, do not send OSPF Hello. */
3656 if (OSPF_IF_PASSIVE_STATUS(oi) == OSPF_IF_PASSIVE)
3657 return;
3658
3659 if (oi->type != OSPF_IFTYPE_NBMA)
3660 return;
3661
3662 if (nbr_nbma->nbr != NULL && nbr_nbma->nbr->state != NSM_Down)
3663 return;
3664
3665 if (PRIORITY(oi) == 0)
3666 return;
3667
3668 if (nbr_nbma->priority == 0 && oi->state != ISM_DR
3669 && oi->state != ISM_Backup)
3670 return;
3671
3672 ospf_hello_send_sub(oi, nbr_nbma->addr.s_addr);
3673 }
3674
3675 int ospf_poll_timer(struct thread *thread)
3676 {
3677 struct ospf_nbr_nbma *nbr_nbma;
3678
3679 nbr_nbma = THREAD_ARG(thread);
3680 nbr_nbma->t_poll = NULL;
3681
3682 if (IS_DEBUG_OSPF(nsm, NSM_TIMERS))
3683 zlog_debug("NSM[%s:%s]: Timer (Poll timer expire)",
3684 IF_NAME(nbr_nbma->oi), inet_ntoa(nbr_nbma->addr));
3685
3686 ospf_poll_send(nbr_nbma);
3687
3688 if (nbr_nbma->v_poll > 0)
3689 OSPF_POLL_TIMER_ON(nbr_nbma->t_poll, ospf_poll_timer,
3690 nbr_nbma->v_poll);
3691
3692 return 0;
3693 }
3694
3695
3696 int ospf_hello_reply_timer(struct thread *thread)
3697 {
3698 struct ospf_neighbor *nbr;
3699
3700 nbr = THREAD_ARG(thread);
3701 nbr->t_hello_reply = NULL;
3702
3703 assert(nbr->oi);
3704
3705 if (IS_DEBUG_OSPF(nsm, NSM_TIMERS))
3706 zlog_debug("NSM[%s:%s]: Timer (hello-reply timer expire)",
3707 IF_NAME(nbr->oi), inet_ntoa(nbr->router_id));
3708
3709 ospf_hello_send_sub(nbr->oi, nbr->address.u.prefix4.s_addr);
3710
3711 return 0;
3712 }
3713
3714 /* Send OSPF Hello. */
3715 void ospf_hello_send(struct ospf_interface *oi)
3716 {
3717 /* If this is passive interface, do not send OSPF Hello. */
3718 if (OSPF_IF_PASSIVE_STATUS(oi) == OSPF_IF_PASSIVE)
3719 return;
3720
3721 if (oi->type == OSPF_IFTYPE_NBMA) {
3722 struct ospf_neighbor *nbr;
3723 struct route_node *rn;
3724
3725 for (rn = route_top(oi->nbrs); rn; rn = route_next(rn))
3726 if ((nbr = rn->info))
3727 if (nbr != oi->nbr_self)
3728 if (nbr->state != NSM_Down) {
3729 /* RFC 2328 Section 9.5.1
3730 If the router is not
3731 eligible to become Designated
3732 Router,
3733 it must periodically send
3734 Hello Packets to both the
3735 Designated Router and the
3736 Backup Designated Router (if
3737 they
3738 exist). */
3739 if (PRIORITY(oi) == 0
3740 && IPV4_ADDR_CMP(
3741 &DR(oi),
3742 &nbr->address.u
3743 .prefix4)
3744 && IPV4_ADDR_CMP(
3745 &BDR(oi),
3746 &nbr->address.u
3747 .prefix4))
3748 continue;
3749
3750 /* If the router is eligible to
3751 become Designated Router, it
3752 must periodically send Hello
3753 Packets to all neighbors that
3754 are also eligible. In
3755 addition, if the router is
3756 itself the
3757 Designated Router or Backup
3758 Designated Router, it must
3759 also
3760 send periodic Hello Packets
3761 to all other neighbors. */
3762
3763 if (nbr->priority == 0
3764 && oi->state == ISM_DROther)
3765 continue;
3766 /* if oi->state == Waiting, send
3767 * hello to all neighbors */
3768 ospf_hello_send_sub(
3769 oi,
3770 nbr->address.u.prefix4
3771 .s_addr);
3772 }
3773 } else {
3774 /* Decide destination address. */
3775 if (oi->type == OSPF_IFTYPE_VIRTUALLINK)
3776 ospf_hello_send_sub(oi, oi->vl_data->peer_addr.s_addr);
3777 else
3778 ospf_hello_send_sub(oi, htonl(OSPF_ALLSPFROUTERS));
3779 }
3780 }
3781
3782 /* Send OSPF Database Description. */
3783 void ospf_db_desc_send(struct ospf_neighbor *nbr)
3784 {
3785 struct ospf_interface *oi;
3786 struct ospf_packet *op;
3787 uint16_t length = OSPF_HEADER_SIZE;
3788
3789 oi = nbr->oi;
3790 op = ospf_packet_new(oi->ifp->mtu);
3791
3792 /* Prepare OSPF common header. */
3793 ospf_make_header(OSPF_MSG_DB_DESC, oi, op->s);
3794
3795 /* Prepare OSPF Database Description body. */
3796 length += ospf_make_db_desc(oi, nbr, op->s);
3797
3798 /* Fill OSPF header. */
3799 ospf_fill_header(oi, op->s, length);
3800
3801 /* Set packet length. */
3802 op->length = length;
3803
3804 /* Decide destination address. */
3805 if (oi->type == OSPF_IFTYPE_POINTOPOINT)
3806 op->dst.s_addr = htonl(OSPF_ALLSPFROUTERS);
3807 else
3808 op->dst = nbr->address.u.prefix4;
3809
3810 /* Add packet to the interface output queue. */
3811 ospf_packet_add(oi, op);
3812
3813 /* Hook thread to write packet. */
3814 OSPF_ISM_WRITE_ON(oi->ospf);
3815
3816 /* Remove old DD packet, then copy new one and keep in neighbor
3817 * structure. */
3818 if (nbr->last_send)
3819 ospf_packet_free(nbr->last_send);
3820 nbr->last_send = ospf_packet_dup(op);
3821 monotime(&nbr->last_send_ts);
3822 }
3823
3824 /* Re-send Database Description. */
3825 void ospf_db_desc_resend(struct ospf_neighbor *nbr)
3826 {
3827 struct ospf_interface *oi;
3828
3829 oi = nbr->oi;
3830
3831 /* Add packet to the interface output queue. */
3832 ospf_packet_add(oi, ospf_packet_dup(nbr->last_send));
3833
3834 /* Hook thread to write packet. */
3835 OSPF_ISM_WRITE_ON(oi->ospf);
3836 }
3837
3838 /* Send Link State Request. */
3839 void ospf_ls_req_send(struct ospf_neighbor *nbr)
3840 {
3841 struct ospf_interface *oi;
3842 struct ospf_packet *op;
3843 uint16_t length = OSPF_HEADER_SIZE;
3844
3845 oi = nbr->oi;
3846 op = ospf_packet_new(oi->ifp->mtu);
3847
3848 /* Prepare OSPF common header. */
3849 ospf_make_header(OSPF_MSG_LS_REQ, oi, op->s);
3850
3851 /* Prepare OSPF Link State Request body. */
3852 length += ospf_make_ls_req(nbr, op->s);
3853 if (length == OSPF_HEADER_SIZE) {
3854 ospf_packet_free(op);
3855 return;
3856 }
3857
3858 /* Fill OSPF header. */
3859 ospf_fill_header(oi, op->s, length);
3860
3861 /* Set packet length. */
3862 op->length = length;
3863
3864 /* Decide destination address. */
3865 if (oi->type == OSPF_IFTYPE_POINTOPOINT)
3866 op->dst.s_addr = htonl(OSPF_ALLSPFROUTERS);
3867 else
3868 op->dst = nbr->address.u.prefix4;
3869
3870 /* Add packet to the interface output queue. */
3871 ospf_packet_add(oi, op);
3872
3873 /* Hook thread to write packet. */
3874 OSPF_ISM_WRITE_ON(oi->ospf);
3875
3876 /* Add Link State Request Retransmission Timer. */
3877 OSPF_NSM_TIMER_ON(nbr->t_ls_req, ospf_ls_req_timer, nbr->v_ls_req);
3878 }
3879
3880 /* Send Link State Update with an LSA. */
3881 void ospf_ls_upd_send_lsa(struct ospf_neighbor *nbr, struct ospf_lsa *lsa,
3882 int flag)
3883 {
3884 struct list *update;
3885
3886 update = list_new();
3887
3888 listnode_add(update, lsa);
3889
3890 /*ospf instance is going down, send self originated
3891 * MAXAGE LSA update to neighbors to remove from LSDB */
3892 if (nbr->oi->ospf->inst_shutdown && IS_LSA_MAXAGE(lsa))
3893 ospf_ls_upd_send(nbr, update, flag, 1);
3894 else
3895 ospf_ls_upd_send(nbr, update, flag, 0);
3896
3897 list_delete(&update);
3898 }
3899
3900 /* Determine size for packet. Must be at least big enough to accomodate next
3901 * LSA on list, which may be bigger than MTU size.
3902 *
3903 * Return pointer to new ospf_packet
3904 * NULL if we can not allocate, eg because LSA is bigger than imposed limit
3905 * on packet sizes (in which case offending LSA is deleted from update list)
3906 */
3907 static struct ospf_packet *ospf_ls_upd_packet_new(struct list *update,
3908 struct ospf_interface *oi)
3909 {
3910 struct ospf_lsa *lsa;
3911 struct listnode *ln;
3912 size_t size;
3913 static char warned = 0;
3914
3915 lsa = listgetdata((ln = listhead(update)));
3916 assert(lsa->data);
3917
3918 if ((OSPF_LS_UPD_MIN_SIZE + ntohs(lsa->data->length))
3919 > ospf_packet_max(oi)) {
3920 if (!warned) {
3921 flog_warn(
3922 EC_OSPF_LARGE_LSA,
3923 "ospf_ls_upd_packet_new: oversized LSA encountered!"
3924 "will need to fragment. Not optimal. Try divide up"
3925 " your network with areas. Use 'debug ospf packet send'"
3926 " to see details, or look at 'show ip ospf database ..'");
3927 warned = 1;
3928 }
3929
3930 if (IS_DEBUG_OSPF_PACKET(0, SEND))
3931 zlog_debug(
3932 "ospf_ls_upd_packet_new: oversized LSA id:%s,"
3933 " %d bytes originated by %s, will be fragmented!",
3934 inet_ntoa(lsa->data->id),
3935 ntohs(lsa->data->length),
3936 inet_ntoa(lsa->data->adv_router));
3937
3938 /*
3939 * Allocate just enough to fit this LSA only, to avoid including
3940 * other
3941 * LSAs in fragmented LSA Updates.
3942 */
3943 size = ntohs(lsa->data->length)
3944 + (oi->ifp->mtu - ospf_packet_max(oi))
3945 + OSPF_LS_UPD_MIN_SIZE;
3946 } else
3947 size = oi->ifp->mtu;
3948
3949 if (size > OSPF_MAX_PACKET_SIZE) {
3950 flog_warn(EC_OSPF_LARGE_LSA,
3951 "ospf_ls_upd_packet_new: oversized LSA id:%s too big,"
3952 " %d bytes, packet size %ld, dropping it completely."
3953 " OSPF routing is broken!",
3954 inet_ntoa(lsa->data->id), ntohs(lsa->data->length),
3955 (long int)size);
3956 list_delete_node(update, ln);
3957 return NULL;
3958 }
3959
3960 /* IP header is built up separately by ospf_write(). This means, that we
3961 * must
3962 * reduce the "affordable" size just calculated by length of an IP
3963 * header.
3964 * This makes sure, that even if we manage to fill the payload with LSA
3965 * data
3966 * completely, the final packet (our data plus IP header) still fits
3967 * into
3968 * outgoing interface MTU. This correction isn't really meaningful for
3969 * an
3970 * oversized LSA, but for consistency the correction is done for both
3971 * cases.
3972 *
3973 * P.S. OSPF_MAX_PACKET_SIZE above already includes IP header size
3974 */
3975 return ospf_packet_new(size - sizeof(struct ip));
3976 }
3977
3978 static void ospf_ls_upd_queue_send(struct ospf_interface *oi,
3979 struct list *update, struct in_addr addr,
3980 int send_lsupd_now)
3981 {
3982 struct ospf_packet *op;
3983 uint16_t length = OSPF_HEADER_SIZE;
3984
3985 if (IS_DEBUG_OSPF_EVENT)
3986 zlog_debug("listcount = %d, [%s]dst %s", listcount(update),
3987 IF_NAME(oi), inet_ntoa(addr));
3988
3989 /* Check that we have really something to process */
3990 if (listcount(update) == 0)
3991 return;
3992
3993 op = ospf_ls_upd_packet_new(update, oi);
3994
3995 /* Prepare OSPF common header. */
3996 ospf_make_header(OSPF_MSG_LS_UPD, oi, op->s);
3997
3998 /* Prepare OSPF Link State Update body.
3999 * Includes Type-7 translation.
4000 */
4001 length += ospf_make_ls_upd(oi, update, op->s);
4002
4003 /* Fill OSPF header. */
4004 ospf_fill_header(oi, op->s, length);
4005
4006 /* Set packet length. */
4007 op->length = length;
4008
4009 /* Decide destination address. */
4010 if (oi->type == OSPF_IFTYPE_POINTOPOINT)
4011 op->dst.s_addr = htonl(OSPF_ALLSPFROUTERS);
4012 else
4013 op->dst.s_addr = addr.s_addr;
4014
4015 /* Add packet to the interface output queue. */
4016 ospf_packet_add(oi, op);
4017 /* Call ospf_write() right away to send ospf packets to neighbors */
4018 if (send_lsupd_now) {
4019 struct thread os_packet_thd;
4020
4021 os_packet_thd.arg = (void *)oi->ospf;
4022 if (oi->on_write_q == 0) {
4023 listnode_add(oi->ospf->oi_write_q, oi);
4024 oi->on_write_q = 1;
4025 }
4026 ospf_write(&os_packet_thd);
4027 } else {
4028 /* Hook thread to write packet. */
4029 OSPF_ISM_WRITE_ON(oi->ospf);
4030 }
4031 }
4032
4033 static int ospf_ls_upd_send_queue_event(struct thread *thread)
4034 {
4035 struct ospf_interface *oi = THREAD_ARG(thread);
4036 struct route_node *rn;
4037 struct route_node *rnext;
4038 struct list *update;
4039 char again = 0;
4040
4041 oi->t_ls_upd_event = NULL;
4042
4043 if (IS_DEBUG_OSPF_EVENT)
4044 zlog_debug("ospf_ls_upd_send_queue start");
4045
4046 for (rn = route_top(oi->ls_upd_queue); rn; rn = rnext) {
4047 rnext = route_next(rn);
4048
4049 if (rn->info == NULL)
4050 continue;
4051
4052 update = (struct list *)rn->info;
4053
4054 ospf_ls_upd_queue_send(oi, update, rn->p.u.prefix4, 0);
4055
4056 /* list might not be empty. */
4057 if (listcount(update) == 0) {
4058 list_delete((struct list **)&rn->info);
4059 route_unlock_node(rn);
4060 } else
4061 again = 1;
4062 }
4063
4064 if (again != 0) {
4065 if (IS_DEBUG_OSPF_EVENT)
4066 zlog_debug(
4067 "ospf_ls_upd_send_queue: update lists not cleared,"
4068 " %d nodes to try again, raising new event",
4069 again);
4070 oi->t_ls_upd_event = NULL;
4071 thread_add_event(master, ospf_ls_upd_send_queue_event, oi, 0,
4072 &oi->t_ls_upd_event);
4073 }
4074
4075 if (IS_DEBUG_OSPF_EVENT)
4076 zlog_debug("ospf_ls_upd_send_queue stop");
4077
4078 return 0;
4079 }
4080
4081 void ospf_ls_upd_send(struct ospf_neighbor *nbr, struct list *update, int flag,
4082 int send_lsupd_now)
4083 {
4084 struct ospf_interface *oi;
4085 struct ospf_lsa *lsa;
4086 struct prefix_ipv4 p;
4087 struct route_node *rn;
4088 struct listnode *node;
4089
4090 oi = nbr->oi;
4091
4092 p.family = AF_INET;
4093 p.prefixlen = IPV4_MAX_BITLEN;
4094
4095 /* Decide destination address. */
4096 if (oi->type == OSPF_IFTYPE_VIRTUALLINK)
4097 p.prefix = oi->vl_data->peer_addr;
4098 else if (oi->type == OSPF_IFTYPE_POINTOPOINT)
4099 p.prefix.s_addr = htonl(OSPF_ALLSPFROUTERS);
4100 else if (flag == OSPF_SEND_PACKET_DIRECT)
4101 p.prefix = nbr->address.u.prefix4;
4102 else if (oi->state == ISM_DR || oi->state == ISM_Backup)
4103 p.prefix.s_addr = htonl(OSPF_ALLSPFROUTERS);
4104 else if (oi->type == OSPF_IFTYPE_POINTOMULTIPOINT)
4105 p.prefix.s_addr = htonl(OSPF_ALLSPFROUTERS);
4106 else
4107 p.prefix.s_addr = htonl(OSPF_ALLDROUTERS);
4108
4109 if (oi->type == OSPF_IFTYPE_NBMA) {
4110 if (flag == OSPF_SEND_PACKET_INDIRECT)
4111 flog_warn(
4112 EC_OSPF_PACKET,
4113 "* LS-Update is directly sent on NBMA network.");
4114 if (IPV4_ADDR_SAME(&oi->address->u.prefix4, &p.prefix))
4115 flog_warn(EC_OSPF_PACKET,
4116 "* LS-Update is sent to myself.");
4117 }
4118
4119 rn = route_node_get(oi->ls_upd_queue, (struct prefix *)&p);
4120
4121 if (rn->info == NULL)
4122 rn->info = list_new();
4123 else
4124 route_unlock_node(rn);
4125
4126 for (ALL_LIST_ELEMENTS_RO(update, node, lsa))
4127 listnode_add(rn->info,
4128 ospf_lsa_lock(lsa)); /* oi->ls_upd_queue */
4129 if (send_lsupd_now) {
4130 struct list *send_update_list;
4131 struct route_node *rnext;
4132
4133 for (rn = route_top(oi->ls_upd_queue); rn; rn = rnext) {
4134 rnext = route_next(rn);
4135
4136 if (rn->info == NULL)
4137 continue;
4138
4139 send_update_list = (struct list *)rn->info;
4140
4141 ospf_ls_upd_queue_send(oi, send_update_list,
4142 rn->p.u.prefix4, 1);
4143 }
4144 } else
4145 thread_add_event(master, ospf_ls_upd_send_queue_event, oi, 0,
4146 &oi->t_ls_upd_event);
4147 }
4148
4149 static void ospf_ls_ack_send_list(struct ospf_interface *oi, struct list *ack,
4150 struct in_addr dst)
4151 {
4152 struct ospf_packet *op;
4153 uint16_t length = OSPF_HEADER_SIZE;
4154
4155 op = ospf_packet_new(oi->ifp->mtu);
4156
4157 /* Prepare OSPF common header. */
4158 ospf_make_header(OSPF_MSG_LS_ACK, oi, op->s);
4159
4160 /* Prepare OSPF Link State Acknowledgment body. */
4161 length += ospf_make_ls_ack(oi, ack, op->s);
4162
4163 /* Fill OSPF header. */
4164 ospf_fill_header(oi, op->s, length);
4165
4166 /* Set packet length. */
4167 op->length = length;
4168
4169 /* Decide destination address. */
4170 if (oi->type == OSPF_IFTYPE_POINTOPOINT)
4171 op->dst.s_addr = htonl(OSPF_ALLSPFROUTERS);
4172 else
4173 op->dst.s_addr = dst.s_addr;
4174
4175 /* Add packet to the interface output queue. */
4176 ospf_packet_add(oi, op);
4177
4178 /* Hook thread to write packet. */
4179 OSPF_ISM_WRITE_ON(oi->ospf);
4180 }
4181
4182 static int ospf_ls_ack_send_event(struct thread *thread)
4183 {
4184 struct ospf_interface *oi = THREAD_ARG(thread);
4185
4186 oi->t_ls_ack_direct = NULL;
4187
4188 while (listcount(oi->ls_ack_direct.ls_ack))
4189 ospf_ls_ack_send_list(oi, oi->ls_ack_direct.ls_ack,
4190 oi->ls_ack_direct.dst);
4191
4192 return 0;
4193 }
4194
4195 void ospf_ls_ack_send(struct ospf_neighbor *nbr, struct ospf_lsa *lsa)
4196 {
4197 struct ospf_interface *oi = nbr->oi;
4198
4199 if (listcount(oi->ls_ack_direct.ls_ack) == 0)
4200 oi->ls_ack_direct.dst = nbr->address.u.prefix4;
4201
4202 listnode_add(oi->ls_ack_direct.ls_ack, ospf_lsa_lock(lsa));
4203
4204 thread_add_event(master, ospf_ls_ack_send_event, oi, 0,
4205 &oi->t_ls_ack_direct);
4206 }
4207
4208 /* Send Link State Acknowledgment delayed. */
4209 void ospf_ls_ack_send_delayed(struct ospf_interface *oi)
4210 {
4211 struct in_addr dst;
4212
4213 /* Decide destination address. */
4214 /* RFC2328 Section 13.5 On non-broadcast
4215 networks, delayed Link State Acknowledgment packets must be
4216 unicast separately over each adjacency (i.e., neighbor whose
4217 state is >= Exchange). */
4218 if (oi->type == OSPF_IFTYPE_NBMA) {
4219 struct ospf_neighbor *nbr;
4220 struct route_node *rn;
4221
4222 for (rn = route_top(oi->nbrs); rn; rn = route_next(rn))
4223 if ((nbr = rn->info) != NULL)
4224 if (nbr != oi->nbr_self
4225 && nbr->state >= NSM_Exchange)
4226 while (listcount(oi->ls_ack))
4227 ospf_ls_ack_send_list(
4228 oi, oi->ls_ack,
4229 nbr->address.u.prefix4);
4230 return;
4231 }
4232 if (oi->type == OSPF_IFTYPE_VIRTUALLINK)
4233 dst.s_addr = oi->vl_data->peer_addr.s_addr;
4234 else if (oi->state == ISM_DR || oi->state == ISM_Backup)
4235 dst.s_addr = htonl(OSPF_ALLSPFROUTERS);
4236 else if (oi->type == OSPF_IFTYPE_POINTOPOINT)
4237 dst.s_addr = htonl(OSPF_ALLSPFROUTERS);
4238 else if (oi->type == OSPF_IFTYPE_POINTOMULTIPOINT)
4239 dst.s_addr = htonl(OSPF_ALLSPFROUTERS);
4240 else
4241 dst.s_addr = htonl(OSPF_ALLDROUTERS);
4242
4243 while (listcount(oi->ls_ack))
4244 ospf_ls_ack_send_list(oi, oi->ls_ack, dst);
4245 }
4246
4247 /*
4248 * On pt-to-pt links, all OSPF control packets are sent to the multicast
4249 * address. As a result, the kernel does not need to learn the interface
4250 * MAC of the OSPF neighbor. However, in our world, this will delay
4251 * convergence. Take the case when due to a link flap, all routes now
4252 * want to use an interface which was deemed to be costlier prior to this
4253 * event. For routes that will be installed, the missing MAC will have
4254 * punt-to-CPU set on them. This may overload the CPU control path that
4255 * can be avoided if the MAC was known apriori.
4256 */
4257 #define OSPF_PING_NBR_STR_MAX (BUFSIZ)
4258 void ospf_proactively_arp(struct ospf_neighbor *nbr)
4259 {
4260 char ping_nbr[OSPF_PING_NBR_STR_MAX];
4261 int ret;
4262
4263 if (!nbr || !nbr->oi || !nbr->oi->ifp)
4264 return;
4265
4266 snprintf(ping_nbr, sizeof(ping_nbr),
4267 "ping -c 1 -I %s %s > /dev/null 2>&1 &", nbr->oi->ifp->name,
4268 inet_ntoa(nbr->address.u.prefix4));
4269
4270 ret = system(ping_nbr);
4271 if (IS_DEBUG_OSPF_EVENT)
4272 zlog_debug("Executed %s %s", ping_nbr,
4273 ((ret == 0) ? "successfully" : "but failed"));
4274 }
FRRouting mirror