]> git.proxmox.com Git - mirror_frr.git/blame - bgpd/bgp_attr.c
projects / mirror_frr.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
zebra: Refactor kernel_rtm to be a bit smarter about how it handles options
[mirror_frr.git] / bgpd / bgp_attr.c
CommitLineData
718e3744 1/* BGP attributes management routines.
896014f4
DL		 2 * Copyright (C) 1996, 97, 98, 1999 Kunihiro Ishiguro
3 *
4 * This file is part of GNU Zebra.
5 *
6 * GNU Zebra is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the
8 * Free Software Foundation; either version 2, or (at your option) any
9 * later version.
10 *
11 * GNU Zebra is distributed in the hope that it will be useful, but
12 * WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License along
17 * with this program; see the file COPYING; if not, write to the Free Software
18 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
19 */
718e3744 20
21#include <zebra.h>
22
23#include "linklist.h"
24#include "prefix.h"
25#include "memory.h"
26#include "vector.h"
718e3744 27#include "stream.h"
28#include "log.h"
29#include "hash.h"
c8e7b895 30#include "jhash.h"
3f9c7369 31#include "queue.h"
f4c89855 32#include "table.h"
039f3a34 33#include "filter.h"
4dcadbef 34#include "command.h"
718e3744 35
36#include "bgpd/bgpd.h"
37#include "bgpd/bgp_attr.h"
38#include "bgpd/bgp_route.h"
39#include "bgpd/bgp_aspath.h"
40#include "bgpd/bgp_community.h"
41#include "bgpd/bgp_debug.h"
14454c9f 42#include "bgpd/bgp_errors.h"
9bedbb1e 43#include "bgpd/bgp_label.h"
718e3744 44#include "bgpd/bgp_packet.h"
45#include "bgpd/bgp_ecommunity.h"
57d187bc 46#include "bgpd/bgp_lcommunity.h"
3f9c7369 47#include "bgpd/bgp_updgrp.h"
6407da5a 48#include "bgpd/bgp_encap_types.h"
65efcfce 49#if ENABLE_BGP_VNC
d62a17ae 50#include "bgpd/rfapi/bgp_rfapi_cfg.h"
51#include "bgp_encap_types.h"
52#include "bgp_vnc_types.h"
65efcfce 53#endif
b18825eb
PG		 54#include "bgp_encap_types.h"
55#include "bgp_evpn.h"
7c40bf39 56#include "bgp_flowspec_private.h"
6b0655a2 57
718e3744 58/* Attribute strings for logging. */
d62a17ae 59static const struct message attr_str[] = {
60 {BGP_ATTR_ORIGIN, "ORIGIN"},
61 {BGP_ATTR_AS_PATH, "AS_PATH"},
62 {BGP_ATTR_NEXT_HOP, "NEXT_HOP"},
63 {BGP_ATTR_MULTI_EXIT_DISC, "MULTI_EXIT_DISC"},
64 {BGP_ATTR_LOCAL_PREF, "LOCAL_PREF"},
65 {BGP_ATTR_ATOMIC_AGGREGATE, "ATOMIC_AGGREGATE"},
66 {BGP_ATTR_AGGREGATOR, "AGGREGATOR"},
67 {BGP_ATTR_COMMUNITIES, "COMMUNITY"},
68 {BGP_ATTR_ORIGINATOR_ID, "ORIGINATOR_ID"},
69 {BGP_ATTR_CLUSTER_LIST, "CLUSTER_LIST"},
70 {BGP_ATTR_DPA, "DPA"},
71 {BGP_ATTR_ADVERTISER, "ADVERTISER"},
72 {BGP_ATTR_RCID_PATH, "RCID_PATH"},
73 {BGP_ATTR_MP_REACH_NLRI, "MP_REACH_NLRI"},
74 {BGP_ATTR_MP_UNREACH_NLRI, "MP_UNREACH_NLRI"},
75 {BGP_ATTR_EXT_COMMUNITIES, "EXT_COMMUNITIES"},
76 {BGP_ATTR_AS4_PATH, "AS4_PATH"},
77 {BGP_ATTR_AS4_AGGREGATOR, "AS4_AGGREGATOR"},
78 {BGP_ATTR_AS_PATHLIMIT, "AS_PATHLIMIT"},
a21bd7a3 79 {BGP_ATTR_PMSI_TUNNEL, "PMSI_TUNNEL_ATTRIBUTE"},
d62a17ae 80 {BGP_ATTR_ENCAP, "ENCAP"},
65efcfce 81#if ENABLE_BGP_VNC
d62a17ae 82 {BGP_ATTR_VNC, "VNC"},
65efcfce 83#endif
d62a17ae 84 {BGP_ATTR_LARGE_COMMUNITIES, "LARGE_COMMUNITY"},
85 {BGP_ATTR_PREFIX_SID, "PREFIX_SID"},
86 {0}};
afcb7679 87
996c9314
LB		 88static const struct message attr_flag_str[] = {
89 {BGP_ATTR_FLAG_OPTIONAL, "Optional"},
90 {BGP_ATTR_FLAG_TRANS, "Transitive"},
91 {BGP_ATTR_FLAG_PARTIAL, "Partial"},
92 /* bgp_attr_flags_diagnose() relies on this bit being last in
93 this list */
94 {BGP_ATTR_FLAG_EXTLEN, "Extended Length"},
95 {0}};
6b0655a2 96
9bddac4b 97static struct hash *cluster_hash;
718e3744 98
d62a17ae 99static void *cluster_hash_alloc(void *p)
718e3744 100{
d62a17ae 101 const struct cluster_list *val = (const struct cluster_list *)p;
102 struct cluster_list *cluster;
718e3744 103
d62a17ae 104 cluster = XMALLOC(MTYPE_CLUSTER, sizeof(struct cluster_list));
105 cluster->length = val->length;
718e3744 106
d62a17ae 107 if (cluster->length) {
108 cluster->list = XMALLOC(MTYPE_CLUSTER_VAL, val->length);
109 memcpy(cluster->list, val->list, val->length);
110 } else
111 cluster->list = NULL;
718e3744 112
d62a17ae 113 cluster->refcnt = 0;
718e3744 114
d62a17ae 115 return cluster;
718e3744 116}
117
118/* Cluster list related functions. */
d62a17ae 119static struct cluster_list *cluster_parse(struct in_addr *pnt, int length)
718e3744 120{
d62a17ae 121 struct cluster_list tmp;
122 struct cluster_list *cluster;
718e3744 123
d62a17ae 124 tmp.length = length;
125 tmp.list = pnt;
718e3744 126
d62a17ae 127 cluster = hash_get(cluster_hash, &tmp, cluster_hash_alloc);
128 cluster->refcnt++;
129 return cluster;
718e3744 130}
131
d62a17ae 132int cluster_loop_check(struct cluster_list *cluster, struct in_addr originator)
718e3744 133{
d62a17ae 134 int i;
135
136 for (i = 0; i < cluster->length / 4; i++)
137 if (cluster->list[i].s_addr == originator.s_addr)
138 return 1;
139 return 0;
718e3744 140}
141
d62a17ae 142static unsigned int cluster_hash_key_make(void *p)
718e3744 143{
d62a17ae 144 const struct cluster_list *cluster = p;
718e3744 145
d62a17ae 146 return jhash(cluster->list, cluster->length, 0);
718e3744 147}
148
74df8d6d 149static bool cluster_hash_cmp(const void *p1, const void *p2)
718e3744 150{
d62a17ae 151 const struct cluster_list *cluster1 = p1;
152 const struct cluster_list *cluster2 = p2;
923de654 153
d62a17ae 154 return (cluster1->length == cluster2->length
155 && memcmp(cluster1->list, cluster2->list, cluster1->length)
156 == 0);
718e3744 157}
158
d62a17ae 159static void cluster_free(struct cluster_list *cluster)
718e3744 160{
d62a17ae 161 if (cluster->list)
162 XFREE(MTYPE_CLUSTER_VAL, cluster->list);
163 XFREE(MTYPE_CLUSTER, cluster);
718e3744 164}
165
d62a17ae 166static struct cluster_list *cluster_intern(struct cluster_list *cluster)
718e3744 167{
d62a17ae 168 struct cluster_list *find;
718e3744 169
d62a17ae 170 find = hash_get(cluster_hash, cluster, cluster_hash_alloc);
171 find->refcnt++;
718e3744 172
d62a17ae 173 return find;
718e3744 174}
175
d62a17ae 176void cluster_unintern(struct cluster_list *cluster)
718e3744 177{
d62a17ae 178 if (cluster->refcnt)
179 cluster->refcnt--;
718e3744 180
d62a17ae 181 if (cluster->refcnt == 0) {
182 hash_release(cluster_hash, cluster);
183 cluster_free(cluster);
184 }
718e3744 185}
186
d62a17ae 187static void cluster_init(void)
718e3744 188{
996c9314 189 cluster_hash = hash_create(cluster_hash_key_make, cluster_hash_cmp,
3f65c5b1 190 "BGP Cluster");
718e3744 191}
228da428 192
d62a17ae 193static void cluster_finish(void)
228da428 194{
d62a17ae 195 hash_clean(cluster_hash, (void (*)(void *))cluster_free);
196 hash_free(cluster_hash);
197 cluster_hash = NULL;
228da428 198}
6b0655a2 199
bede7744
LB		 200static struct hash *encap_hash = NULL;
201#if ENABLE_BGP_VNC
202static struct hash *vnc_hash = NULL;
203#endif
204
d62a17ae 205struct bgp_attr_encap_subtlv *encap_tlv_dup(struct bgp_attr_encap_subtlv *orig)
f4c89855 206{
d62a17ae 207 struct bgp_attr_encap_subtlv *new;
208 struct bgp_attr_encap_subtlv *tail;
209 struct bgp_attr_encap_subtlv *p;
f4c89855 210
d62a17ae 211 for (p = orig, tail = new = NULL; p; p = p->next) {
12f70478 212 int size = sizeof(struct bgp_attr_encap_subtlv) + p->length;
d62a17ae 213 if (tail) {
214 tail->next = XCALLOC(MTYPE_ENCAP_TLV, size);
215 tail = tail->next;
216 } else {
217 tail = new = XCALLOC(MTYPE_ENCAP_TLV, size);
218 }
219 assert(tail);
220 memcpy(tail, p, size);
221 tail->next = NULL;
f4c89855 222 }
f4c89855 223
d62a17ae 224 return new;
f4c89855
LB		 225}
226
d62a17ae 227static void encap_free(struct bgp_attr_encap_subtlv *p)
f4c89855 228{
d62a17ae 229 struct bgp_attr_encap_subtlv *next;
230 while (p) {
231 next = p->next;
232 p->next = NULL;
233 XFREE(MTYPE_ENCAP_TLV, p);
234 p = next;
235 }
f4c89855
LB		 236}
237
d62a17ae 238void bgp_attr_flush_encap(struct attr *attr)
f4c89855 239{
d62a17ae 240 if (!attr)
241 return;
f4c89855 242
d62a17ae 243 if (attr->encap_subtlvs) {
244 encap_free(attr->encap_subtlvs);
245 attr->encap_subtlvs = NULL;
246 }
65efcfce 247#if ENABLE_BGP_VNC
d62a17ae 248 if (attr->vnc_subtlvs) {
249 encap_free(attr->vnc_subtlvs);
250 attr->vnc_subtlvs = NULL;
251 }
65efcfce 252#endif
f4c89855
LB		 253}
254
255/*
256 * Compare encap sub-tlv chains
257 *
258 * 1 = equivalent
259 * 0 = not equivalent
260 *
261 * This algorithm could be made faster if needed
262 */
36de6e0e
A		 263static int encap_same(const struct bgp_attr_encap_subtlv *h1,
264 const struct bgp_attr_encap_subtlv *h2)
f4c89855 265{
36de6e0e
A		 266 const struct bgp_attr_encap_subtlv *p;
267 const struct bgp_attr_encap_subtlv *q;
f4c89855 268
d62a17ae 269 if (h1 == h2)
270 return 1;
271 if (h1 == NULL || h2 == NULL)
272 return 0;
f4c89855 273
d62a17ae 274 for (p = h1; p; p = p->next) {
275 for (q = h2; q; q = q->next) {
276 if ((p->type == q->type) && (p->length == q->length)
277 && !memcmp(p->value, q->value, p->length)) {
f4c89855 278
d62a17ae 279 break;
280 }
281 }
282 if (!q)
283 return 0;
f4c89855 284 }
f4c89855 285
d62a17ae 286 for (p = h2; p; p = p->next) {
287 for (q = h1; q; q = q->next) {
288 if ((p->type == q->type) && (p->length == q->length)
289 && !memcmp(p->value, q->value, p->length)) {
f4c89855 290
d62a17ae 291 break;
292 }
293 }
294 if (!q)
295 return 0;
f4c89855 296 }
f4c89855 297
d62a17ae 298 return 1;
f4c89855
LB		 299}
300
d62a17ae 301static void *encap_hash_alloc(void *p)
bede7744 302{
d62a17ae 303 /* Encap structure is already allocated. */
304 return p;
bede7744
LB		 305}
306
d62a17ae 307typedef enum {
308 ENCAP_SUBTLV_TYPE,
bede7744 309#if ENABLE_BGP_VNC
d62a17ae 310 VNC_SUBTLV_TYPE
bede7744
LB		 311#endif
312} encap_subtlv_type;
313
314static struct bgp_attr_encap_subtlv *
d62a17ae 315encap_intern(struct bgp_attr_encap_subtlv *encap, encap_subtlv_type type)
bede7744 316{
d62a17ae 317 struct bgp_attr_encap_subtlv *find;
318 struct hash *hash = encap_hash;
bede7744 319#if ENABLE_BGP_VNC
d62a17ae 320 if (type == VNC_SUBTLV_TYPE)
321 hash = vnc_hash;
bede7744
LB		 322#endif
323
d62a17ae 324 find = hash_get(hash, encap, encap_hash_alloc);
325 if (find != encap)
326 encap_free(encap);
327 find->refcnt++;
bede7744 328
d62a17ae 329 return find;
bede7744
LB		 330}
331
d62a17ae 332static void encap_unintern(struct bgp_attr_encap_subtlv **encapp,
333 encap_subtlv_type type)
bede7744 334{
d62a17ae 335 struct bgp_attr_encap_subtlv *encap = *encapp;
336 if (encap->refcnt)
337 encap->refcnt--;
bede7744 338
d62a17ae 339 if (encap->refcnt == 0) {
340 struct hash *hash = encap_hash;
bede7744 341#if ENABLE_BGP_VNC
d62a17ae 342 if (type == VNC_SUBTLV_TYPE)
343 hash = vnc_hash;
bede7744 344#endif
d62a17ae 345 hash_release(hash, encap);
346 encap_free(encap);
347 *encapp = NULL;
348 }
bede7744
LB		 349}
350
d62a17ae 351static unsigned int encap_hash_key_make(void *p)
bede7744 352{
d62a17ae 353 const struct bgp_attr_encap_subtlv *encap = p;
bede7744 354
d62a17ae 355 return jhash(encap->value, encap->length, 0);
bede7744
LB		 356}
357
74df8d6d 358static bool encap_hash_cmp(const void *p1, const void *p2)
bede7744 359{
36de6e0e
A		 360 return encap_same((const struct bgp_attr_encap_subtlv *)p1,
361 (const struct bgp_attr_encap_subtlv *)p2);
bede7744
LB		 362}
363
d62a17ae 364static void encap_init(void)
bede7744 365{
996c9314 366 encap_hash = hash_create(encap_hash_key_make, encap_hash_cmp,
3f65c5b1 367 "BGP Encap Hash");
bede7744 368#if ENABLE_BGP_VNC
996c9314 369 vnc_hash = hash_create(encap_hash_key_make, encap_hash_cmp,
3f65c5b1 370 "BGP VNC Hash");
bede7744
LB		 371#endif
372}
373
d62a17ae 374static void encap_finish(void)
bede7744 375{
d62a17ae 376 hash_clean(encap_hash, (void (*)(void *))encap_free);
377 hash_free(encap_hash);
378 encap_hash = NULL;
bede7744 379#if ENABLE_BGP_VNC
d62a17ae 380 hash_clean(vnc_hash, (void (*)(void *))encap_free);
381 hash_free(vnc_hash);
382 vnc_hash = NULL;
bede7744
LB		 383#endif
384}
385
d62a17ae 386static bool overlay_index_same(const struct attr *a1, const struct attr *a2)
684a7227 387{
d62a17ae 388 if (!a1 && a2)
389 return false;
390 if (!a2 && a1)
391 return false;
392 if (!a1 && !a2)
393 return true;
394 return !memcmp(&(a1->evpn_overlay), &(a2->evpn_overlay),
395 sizeof(struct overlay_index));
684a7227
PG		 396}
397
718e3744 398/* Unknown transit attribute. */
9bddac4b 399static struct hash *transit_hash;
718e3744 400
d62a17ae 401static void transit_free(struct transit *transit)
718e3744 402{
d62a17ae 403 if (transit->val)
404 XFREE(MTYPE_TRANSIT_VAL, transit->val);
405 XFREE(MTYPE_TRANSIT, transit);
718e3744 406}
407
d62a17ae 408static void *transit_hash_alloc(void *p)
718e3744 409{
d62a17ae 410 /* Transit structure is already allocated. */
411 return p;
718e3744 412}
413
d62a17ae 414static struct transit *transit_intern(struct transit *transit)
718e3744 415{
d62a17ae 416 struct transit *find;
718e3744 417
d62a17ae 418 find = hash_get(transit_hash, transit, transit_hash_alloc);
419 if (find != transit)
420 transit_free(transit);
421 find->refcnt++;
718e3744 422
d62a17ae 423 return find;
718e3744 424}
425
d62a17ae 426void transit_unintern(struct transit *transit)
718e3744 427{
d62a17ae 428 if (transit->refcnt)
429 transit->refcnt--;
718e3744 430
d62a17ae 431 if (transit->refcnt == 0) {
432 hash_release(transit_hash, transit);
433 transit_free(transit);
434 }
718e3744 435}
436
d62a17ae 437static unsigned int transit_hash_key_make(void *p)
718e3744 438{
d62a17ae 439 const struct transit *transit = p;
718e3744 440
d62a17ae 441 return jhash(transit->val, transit->length, 0);
718e3744 442}
443
74df8d6d 444static bool transit_hash_cmp(const void *p1, const void *p2)
718e3744 445{
d62a17ae 446 const struct transit *transit1 = p1;
447 const struct transit *transit2 = p2;
923de654 448
d62a17ae 449 return (transit1->length == transit2->length
450 && memcmp(transit1->val, transit2->val, transit1->length) == 0);
718e3744 451}
452
d62a17ae 453static void transit_init(void)
718e3744 454{
996c9314 455 transit_hash = hash_create(transit_hash_key_make, transit_hash_cmp,
3f65c5b1 456 "BGP Transit Hash");
718e3744 457}
228da428 458
d62a17ae 459static void transit_finish(void)
228da428 460{
d62a17ae 461 hash_clean(transit_hash, (void (*)(void *))transit_free);
462 hash_free(transit_hash);
463 transit_hash = NULL;
228da428 464}
6b0655a2 465
718e3744 466/* Attribute hash routines. */
9bddac4b 467static struct hash *attrhash;
718e3744 468
fb982c25
PJ		 469/* Shallow copy of an attribute
470 * Though, not so shallow that it doesn't copy the contents
471 * of the attr_extra pointed to by 'extra'
472 */
d62a17ae 473void bgp_attr_dup(struct attr *new, struct attr *orig)
fb982c25 474{
d62a17ae 475 *new = *orig;
fb982c25
PJ		 476}
477
d62a17ae 478unsigned long int attr_count(void)
cbdfbaa5 479{
d62a17ae 480 return attrhash->count;
cbdfbaa5
PJ		 481}
482
d62a17ae 483unsigned long int attr_unknown_count(void)
cbdfbaa5 484{
d62a17ae 485 return transit_hash->count;
cbdfbaa5
PJ		 486}
487
d62a17ae 488unsigned int attrhash_key_make(void *p)
718e3744 489{
d62a17ae 490 const struct attr *attr = (struct attr *)p;
491 uint32_t key = 0;
c8e7b895 492#define MIX(val) key = jhash_1word(val, key)
0d0268a6 493#define MIX3(a, b, c) key = jhash_3words((a), (b), (c), key)
c8e7b895 494
0d0268a6 495 MIX3(attr->origin, attr->nexthop.s_addr, attr->med);
996c9314
LB		 496 MIX3(attr->local_pref, attr->aggregator_as,
497 attr->aggregator_addr.s_addr);
0d0268a6
LB		 498 MIX3(attr->weight, attr->mp_nexthop_global_in.s_addr,
499 attr->originator_id.s_addr);
500 MIX3(attr->tag, attr->label, attr->label_index);
d62a17ae 501
502 if (attr->aspath)
503 MIX(aspath_key_make(attr->aspath));
504 if (attr->community)
505 MIX(community_hash_make(attr->community));
506
507 if (attr->lcommunity)
508 MIX(lcommunity_hash_make(attr->lcommunity));
509 if (attr->ecommunity)
510 MIX(ecommunity_hash_make(attr->ecommunity));
511 if (attr->cluster)
512 MIX(cluster_hash_key_make(attr->cluster));
513 if (attr->transit)
514 MIX(transit_hash_key_make(attr->transit));
515 if (attr->encap_subtlvs)
516 MIX(encap_hash_key_make(attr->encap_subtlvs));
bede7744 517#if ENABLE_BGP_VNC
d62a17ae 518 if (attr->vnc_subtlvs)
519 MIX(encap_hash_key_make(attr->vnc_subtlvs));
bede7744 520#endif
d62a17ae 521 MIX(attr->mp_nexthop_len);
522 key = jhash(attr->mp_nexthop_global.s6_addr, IPV6_MAX_BYTELEN, key);
523 key = jhash(attr->mp_nexthop_local.s6_addr, IPV6_MAX_BYTELEN, key);
77e62f2b 524 MIX(attr->nh_ifindex);
525 MIX(attr->nh_lla_ifindex);
d62a17ae 526
527 return key;
528}
529
74df8d6d 530bool attrhash_cmp(const void *p1, const void *p2)
d62a17ae 531{
532 const struct attr *attr1 = p1;
533 const struct attr *attr2 = p2;
534
535 if (attr1->flag == attr2->flag && attr1->origin == attr2->origin
536 && attr1->nexthop.s_addr == attr2->nexthop.s_addr
537 && attr1->aspath == attr2->aspath
538 && attr1->community == attr2->community && attr1->med == attr2->med
539 && attr1->local_pref == attr2->local_pref
540 && attr1->rmap_change_flags == attr2->rmap_change_flags) {
541 if (attr1->aggregator_as == attr2->aggregator_as
542 && attr1->aggregator_addr.s_addr
543 == attr2->aggregator_addr.s_addr
544 && attr1->weight == attr2->weight
545 && attr1->tag == attr2->tag
546 && attr1->label_index == attr2->label_index
547 && attr1->mp_nexthop_len == attr2->mp_nexthop_len
d62a17ae 548 && attr1->ecommunity == attr2->ecommunity
549 && attr1->lcommunity == attr2->lcommunity
550 && attr1->cluster == attr2->cluster
551 && attr1->transit == attr2->transit
552 && (attr1->encap_tunneltype == attr2->encap_tunneltype)
553 && encap_same(attr1->encap_subtlvs, attr2->encap_subtlvs)
65efcfce 554#if ENABLE_BGP_VNC
d62a17ae 555 && encap_same(attr1->vnc_subtlvs, attr2->vnc_subtlvs)
65efcfce 556#endif
0d0268a6
LB		 557 && IPV6_ADDR_SAME(&attr1->mp_nexthop_global,
558 &attr2->mp_nexthop_global)
559 && IPV6_ADDR_SAME(&attr1->mp_nexthop_local,
560 &attr2->mp_nexthop_local)
561 && IPV4_ADDR_SAME(&attr1->mp_nexthop_global_in,
562 &attr2->mp_nexthop_global_in)
d62a17ae 563 && IPV4_ADDR_SAME(&attr1->originator_id,
564 &attr2->originator_id)
77e62f2b 565 && overlay_index_same(attr1, attr2)
566 && attr1->nh_ifindex == attr2->nh_ifindex
567 && attr1->nh_lla_ifindex == attr2->nh_lla_ifindex)
74df8d6d 568 return true;
d62a17ae 569 }
aadc0905 570
74df8d6d 571 return false;
718e3744 572}
573
d62a17ae 574static void attrhash_init(void)
718e3744 575{
996c9314
LB		 576 attrhash =
577 hash_create(attrhash_key_make, attrhash_cmp, "BGP Attributes");
718e3744 578}
579
289d2501
LB		 580/*
581 * special for hash_clean below
582 */
d62a17ae 583static void attr_vfree(void *attr)
289d2501 584{
d62a17ae 585 XFREE(MTYPE_ATTR, attr);
289d2501
LB		 586}
587
d62a17ae 588static void attrhash_finish(void)
228da428 589{
d62a17ae 590 hash_clean(attrhash, attr_vfree);
591 hash_free(attrhash);
592 attrhash = NULL;
228da428
CC		 593}
594
d62a17ae 595static void attr_show_all_iterator(struct hash_backet *backet, struct vty *vty)
718e3744 596{
d62a17ae 597 struct attr *attr = backet->data;
718e3744 598
d62a17ae 599 vty_out(vty, "attr[%ld] nexthop %s\n", attr->refcnt,
600 inet_ntoa(attr->nexthop));
13b7e7f0 601 vty_out(vty, "\tflags: %" PRIu64 " med: %u local_pref: %u origin: %u weight: %u label: %u\n",
23a2a47e 602 attr->flag, attr->med, attr->local_pref, attr->origin,
13b7e7f0 603 attr->weight, attr->label);
718e3744 604}
605
d62a17ae 606void attr_show_all(struct vty *vty)
718e3744 607{
9d303b37
DL		 608 hash_iterate(attrhash, (void (*)(struct hash_backet *,
609 void *))attr_show_all_iterator,
610 vty);
718e3744 611}
612
d62a17ae 613static void *bgp_attr_hash_alloc(void *p)
718e3744 614{
d62a17ae 615 struct attr *val = (struct attr *)p;
616 struct attr *attr;
718e3744 617
d62a17ae 618 attr = XMALLOC(MTYPE_ATTR, sizeof(struct attr));
619 *attr = *val;
620 if (val->encap_subtlvs) {
621 val->encap_subtlvs = NULL;
622 }
65efcfce 623#if ENABLE_BGP_VNC
d62a17ae 624 if (val->vnc_subtlvs) {
625 val->vnc_subtlvs = NULL;
626 }
65efcfce 627#endif
d62a17ae 628 attr->refcnt = 0;
629 return attr;
718e3744 630}
631
632/* Internet argument attribute. */
d62a17ae 633struct attr *bgp_attr_intern(struct attr *attr)
634{
635 struct attr *find;
636
637 /* Intern referenced strucutre. */
638 if (attr->aspath) {
639 if (!attr->aspath->refcnt)
640 attr->aspath = aspath_intern(attr->aspath);
641 else
642 attr->aspath->refcnt++;
643 }
644 if (attr->community) {
645 if (!attr->community->refcnt)
646 attr->community = community_intern(attr->community);
647 else
648 attr->community->refcnt++;
649 }
650
651 if (attr->ecommunity) {
652 if (!attr->ecommunity->refcnt)
653 attr->ecommunity = ecommunity_intern(attr->ecommunity);
654 else
655 attr->ecommunity->refcnt++;
656 }
657 if (attr->lcommunity) {
658 if (!attr->lcommunity->refcnt)
659 attr->lcommunity = lcommunity_intern(attr->lcommunity);
660 else
661 attr->lcommunity->refcnt++;
662 }
663 if (attr->cluster) {
664 if (!attr->cluster->refcnt)
665 attr->cluster = cluster_intern(attr->cluster);
666 else
667 attr->cluster->refcnt++;
668 }
669 if (attr->transit) {
670 if (!attr->transit->refcnt)
671 attr->transit = transit_intern(attr->transit);
672 else
673 attr->transit->refcnt++;
674 }
675 if (attr->encap_subtlvs) {
676 if (!attr->encap_subtlvs->refcnt)
677 attr->encap_subtlvs = encap_intern(attr->encap_subtlvs,
678 ENCAP_SUBTLV_TYPE);
679 else
680 attr->encap_subtlvs->refcnt++;
681 }
bede7744 682#if ENABLE_BGP_VNC
d62a17ae 683 if (attr->vnc_subtlvs) {
684 if (!attr->vnc_subtlvs->refcnt)
685 attr->vnc_subtlvs = encap_intern(attr->vnc_subtlvs,
686 VNC_SUBTLV_TYPE);
687 else
688 attr->vnc_subtlvs->refcnt++;
689 }
aadc0905 690#endif
bede7744 691
dbbac180
DL		 692 /* At this point, attr only contains intern'd pointers. that means
693 * if we find it in attrhash, it has all the same pointers and we
694 * correctly updated the refcounts on these.
695 * If we don't find it, we need to allocate a one because in all
696 * cases this returns a new reference to a hashed attr, but the input
697 * wasn't on hash. */
d62a17ae 698 find = (struct attr *)hash_get(attrhash, attr, bgp_attr_hash_alloc);
699 find->refcnt++;
700
701 return find;
718e3744 702}
703
704/* Make network statement's attribute. */
d7c0a89a 705struct attr *bgp_attr_default_set(struct attr *attr, uint8_t origin)
718e3744 706{
d62a17ae 707 memset(attr, 0, sizeof(struct attr));
03e214c8 708
d62a17ae 709 attr->origin = origin;
710 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN);
711 attr->aspath = aspath_empty();
712 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH);
713 attr->weight = BGP_ATTR_DEFAULT_WEIGHT;
714 attr->tag = 0;
715 attr->label_index = BGP_INVALID_LABEL_INDEX;
716 attr->label = MPLS_INVALID_LABEL;
717 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP);
718 attr->mp_nexthop_len = IPV6_MAX_BYTELEN;
719
720 return attr;
718e3744 721}
722
b5d58c32 723/* Create the attributes for an aggregate */
d7c0a89a 724struct attr *bgp_attr_aggregate_intern(struct bgp *bgp, uint8_t origin,
d62a17ae 725 struct aspath *aspath,
3da2cc32
DS		 726 struct community *community,
727 struct ecommunity *ecommunity,
dd18c5a9 728 struct lcommunity *lcommunity,
3da2cc32 729 int as_set, uint8_t atomic_aggregate)
d62a17ae 730{
731 struct attr attr;
732 struct attr *new;
733
734 memset(&attr, 0, sizeof(struct attr));
735
736 /* Origin attribute. */
737 attr.origin = origin;
738 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN);
739
740 /* AS path attribute. */
741 if (aspath)
742 attr.aspath = aspath_intern(aspath);
743 else
744 attr.aspath = aspath_empty();
745 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH);
746
747 /* Next hop attribute. */
748 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP);
749
750 if (community) {
d7c0a89a 751 uint32_t gshut = COMMUNITY_GSHUT;
7f323236
DW		 752
753 /* If we are not shutting down ourselves and we are
754 * aggregating a route that contains the GSHUT community we
755 * need to remove that community when creating the aggregate */
996c9314
LB		 756 if (!bgp_flag_check(bgp, BGP_FLAG_GRACEFUL_SHUTDOWN)
757 && community_include(community, gshut)) {
7f323236
DW		 758 community_del_val(community, &gshut);
759 }
760
d62a17ae 761 attr.community = community;
762 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES);
763 }
764
3da2cc32
DS		 765 if (ecommunity) {
766 attr.ecommunity = ecommunity;
767 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES);
768 }
769
dd18c5a9
DS		 770 if (lcommunity) {
771 attr.lcommunity = lcommunity;
772 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES);
773 }
774
7f323236
DW		 775 if (bgp_flag_check(bgp, BGP_FLAG_GRACEFUL_SHUTDOWN)) {
776 bgp_attr_add_gshut_community(&attr);
777 }
778
d62a17ae 779 attr.label_index = BGP_INVALID_LABEL_INDEX;
780 attr.label = MPLS_INVALID_LABEL;
781 attr.weight = BGP_ATTR_DEFAULT_WEIGHT;
782 attr.mp_nexthop_len = IPV6_MAX_BYTELEN;
783 if (!as_set || atomic_aggregate)
784 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE);
785 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR);
786 if (CHECK_FLAG(bgp->config, BGP_CONFIG_CONFEDERATION))
787 attr.aggregator_as = bgp->confed_id;
788 else
789 attr.aggregator_as = bgp->as;
790 attr.aggregator_addr = bgp->router_id;
791 attr.label_index = BGP_INVALID_LABEL_INDEX;
792 attr.label = MPLS_INVALID_LABEL;
793
794 new = bgp_attr_intern(&attr);
795
796 aspath_unintern(&new->aspath);
797 return new;
718e3744 798}
799
b881c707 800/* Unintern just the sub-components of the attr, but not the attr */
d62a17ae 801void bgp_attr_unintern_sub(struct attr *attr)
802{
803 /* aspath refcount shoud be decrement. */
804 if (attr->aspath)
805 aspath_unintern(&attr->aspath);
806 UNSET_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH));
807
808 if (attr->community)
809 community_unintern(&attr->community);
810 UNSET_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES));
811
812 if (attr->ecommunity)
813 ecommunity_unintern(&attr->ecommunity);
814 UNSET_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES));
815
816 if (attr->lcommunity)
817 lcommunity_unintern(&attr->lcommunity);
818 UNSET_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES));
819
820 if (attr->cluster)
821 cluster_unintern(attr->cluster);
822 UNSET_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST));
823
824 if (attr->transit)
825 transit_unintern(attr->transit);
826
827 if (attr->encap_subtlvs)
828 encap_unintern(&attr->encap_subtlvs, ENCAP_SUBTLV_TYPE);
bede7744
LB		 829
830#if ENABLE_BGP_VNC
d62a17ae 831 if (attr->vnc_subtlvs)
832 encap_unintern(&attr->vnc_subtlvs, VNC_SUBTLV_TYPE);
bede7744 833#endif
b881c707
PJ		 834}
835
f46d8e1e
DS		 836/*
837 * We have some show commands that let you experimentally
838 * apply a route-map. When we apply the route-map
839 * we are reseting values but not saving them for
840 * posterity via intern'ing( because route-maps don't
841 * do that) but at this point in time we need
842 * to compare the new attr to the old and if the
843 * routemap has changed it we need to, as Snoop Dog says,
844 * Drop it like it's hot
845 */
846void bgp_attr_undup(struct attr *new, struct attr *old)
847{
848 if (new->aspath != old->aspath)
849 aspath_free(new->aspath);
850
851 if (new->community != old->community)
3c1f53de 852 community_free(&new->community);
f46d8e1e
DS		 853
854 if (new->ecommunity != old->ecommunity)
855 ecommunity_free(&new->ecommunity);
856
857 if (new->lcommunity != old->lcommunity)
858 lcommunity_free(&new->lcommunity);
f46d8e1e
DS		 859}
860
718e3744 861/* Free bgp attribute and aspath. */
d62a17ae 862void bgp_attr_unintern(struct attr **pattr)
863{
864 struct attr *attr = *pattr;
865 struct attr *ret;
866 struct attr tmp;
867
868 /* Decrement attribute reference. */
869 attr->refcnt--;
870
871 tmp = *attr;
872
873 /* If reference becomes zero then free attribute object. */
874 if (attr->refcnt == 0) {
875 ret = hash_release(attrhash, attr);
876 assert(ret != NULL);
877 XFREE(MTYPE_ATTR, attr);
878 *pattr = NULL;
879 }
880
881 bgp_attr_unintern_sub(&tmp);
882}
883
884void bgp_attr_flush(struct attr *attr)
885{
886 if (attr->aspath && !attr->aspath->refcnt) {
887 aspath_free(attr->aspath);
888 attr->aspath = NULL;
889 }
3c1f53de
SMS		 890 if (attr->community && !attr->community->refcnt)
891 community_free(&attr->community);
d62a17ae 892 if (attr->ecommunity && !attr->ecommunity->refcnt)
893 ecommunity_free(&attr->ecommunity);
894 if (attr->lcommunity && !attr->lcommunity->refcnt)
895 lcommunity_free(&attr->lcommunity);
896 if (attr->cluster && !attr->cluster->refcnt) {
897 cluster_free(attr->cluster);
898 attr->cluster = NULL;
899 }
900 if (attr->transit && !attr->transit->refcnt) {
901 transit_free(attr->transit);
902 attr->transit = NULL;
903 }
904 if (attr->encap_subtlvs && !attr->encap_subtlvs->refcnt) {
905 encap_free(attr->encap_subtlvs);
906 attr->encap_subtlvs = NULL;
907 }
65efcfce 908#if ENABLE_BGP_VNC
d62a17ae 909 if (attr->vnc_subtlvs && !attr->vnc_subtlvs->refcnt) {
910 encap_free(attr->vnc_subtlvs);
911 attr->vnc_subtlvs = NULL;
912 }
aadc0905 913#endif
718e3744 914}
915
b881c707
PJ		 916/* Implement draft-scudder-idr-optional-transitive behaviour and
917 * avoid resetting sessions for malformed attributes which are
918 * are partial/optional and hence where the error likely was not
919 * introduced by the sending neighbour.
920 */
921static bgp_attr_parse_ret_t
d7c0a89a 922bgp_attr_malformed(struct bgp_attr_parser_args *args, uint8_t subcode,
d62a17ae 923 bgp_size_t length)
924{
925 struct peer *const peer = args->peer;
d7c0a89a 926 const uint8_t flags = args->flags;
d62a17ae 927 /* startp and length must be special-cased, as whether or not to
928 * send the attribute data with the NOTIFY depends on the error,
929 * the caller therefore signals this with the seperate length argument
930 */
d7c0a89a 931 uint8_t *notify_datap = (length > 0 ? args->startp : NULL);
d62a17ae 932
933 /* Only relax error handling for eBGP peers */
934 if (peer->sort != BGP_PEER_EBGP) {
935 bgp_notify_send_with_data(peer, BGP_NOTIFY_UPDATE_ERR, subcode,
936 notify_datap, length);
937 return BGP_ATTR_PARSE_ERROR;
938 }
939
940 /* Adjust the stream getp to the end of the attribute, in case we can
941 * still proceed but the caller hasn't read all the attribute.
942 */
943 stream_set_getp(BGP_INPUT(peer),
944 (args->startp - STREAM_DATA(BGP_INPUT(peer)))
945 + args->total);
946
947 switch (args->type) {
948 /* where an attribute is relatively inconsequential, e.g. it does not
949 * affect route selection, and can be safely ignored, then any such
950 * attributes which are malformed should just be ignored and the route
951 * processed as normal.
952 */
953 case BGP_ATTR_AS4_AGGREGATOR:
954 case BGP_ATTR_AGGREGATOR:
955 case BGP_ATTR_ATOMIC_AGGREGATE:
956 return BGP_ATTR_PARSE_PROCEED;
957
958 /* Core attributes, particularly ones which may influence route
959 * selection, should always cause session resets
960 */
961 case BGP_ATTR_ORIGIN:
962 case BGP_ATTR_AS_PATH:
963 case BGP_ATTR_NEXT_HOP:
964 case BGP_ATTR_MULTI_EXIT_DISC:
965 case BGP_ATTR_LOCAL_PREF:
966 case BGP_ATTR_COMMUNITIES:
967 case BGP_ATTR_ORIGINATOR_ID:
968 case BGP_ATTR_CLUSTER_LIST:
969 case BGP_ATTR_MP_REACH_NLRI:
970 case BGP_ATTR_MP_UNREACH_NLRI:
971 case BGP_ATTR_EXT_COMMUNITIES:
972 bgp_notify_send_with_data(peer, BGP_NOTIFY_UPDATE_ERR, subcode,
973 notify_datap, length);
974 return BGP_ATTR_PARSE_ERROR;
975 }
976
977 /* Partial optional attributes that are malformed should not cause
978 * the whole session to be reset. Instead treat it as a withdrawal
979 * of the routes, if possible.
980 */
981 if (CHECK_FLAG(flags, BGP_ATTR_FLAG_TRANS)
982 && CHECK_FLAG(flags, BGP_ATTR_FLAG_OPTIONAL)
983 && CHECK_FLAG(flags, BGP_ATTR_FLAG_PARTIAL))
984 return BGP_ATTR_PARSE_WITHDRAW;
985
986 /* default to reset */
987 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS;
b881c707
PJ		 988}
989
afcb7679
DO		 990/* Find out what is wrong with the path attribute flag bits and log the error.
991 "Flag bits" here stand for Optional, Transitive and Partial, but not for
992 Extended Length. Checking O/T/P bits at once implies, that the attribute
993 being diagnosed is defined by RFC as either a "well-known" or an "optional,
994 non-transitive" attribute. */
995static void
d62a17ae 996bgp_attr_flags_diagnose(struct bgp_attr_parser_args *args,
d7c0a89a
QY		 997 uint8_t desired_flags /* how RFC says it must be */
998)
d62a17ae 999{
d7c0a89a
QY		 1000 uint8_t seen = 0, i;
1001 uint8_t real_flags = args->flags;
1002 const uint8_t attr_code = args->type;
d62a17ae 1003
1004 desired_flags &= ~BGP_ATTR_FLAG_EXTLEN;
1005 real_flags &= ~BGP_ATTR_FLAG_EXTLEN;
1006 for (i = 0; i <= 2; i++) /* O,T,P, but not E */
1007 if (CHECK_FLAG(desired_flags, attr_flag_str[i].key)
1008 != CHECK_FLAG(real_flags, attr_flag_str[i].key)) {
1c50c1c0
QY		 1009 flog_err(EC_BGP_ATTR_FLAG,
1010 "%s attribute must%s be flagged as \"%s\"",
1011 lookup_msg(attr_str, attr_code, NULL),
1012 CHECK_FLAG(desired_flags, attr_flag_str[i].key)
1013 ? ""
1014 : " not",
1015 attr_flag_str[i].str);
d62a17ae 1016 seen = 1;
1017 }
1018 if (!seen) {
1019 zlog_debug(
1020 "Strange, %s called for attr %s, but no problem found with flags"
1021 " (real flags 0x%x, desired 0x%x)",
1022 __func__, lookup_msg(attr_str, attr_code, NULL),
1023 real_flags, desired_flags);
1024 }
afcb7679
DO		 1025}
1026
3ecab4c8
PJ		 1027/* Required flags for attributes. EXTLEN will be masked off when testing,
1028 * as will PARTIAL for optional+transitive attributes.
1029 */
d7c0a89a
QY		 1030const uint8_t attr_flags_values[] = {
1031 [BGP_ATTR_ORIGIN] = BGP_ATTR_FLAG_TRANS,
1032 [BGP_ATTR_AS_PATH] = BGP_ATTR_FLAG_TRANS,
1033 [BGP_ATTR_NEXT_HOP] = BGP_ATTR_FLAG_TRANS,
1034 [BGP_ATTR_MULTI_EXIT_DISC] = BGP_ATTR_FLAG_OPTIONAL,
1035 [BGP_ATTR_LOCAL_PREF] = BGP_ATTR_FLAG_TRANS,
1036 [BGP_ATTR_ATOMIC_AGGREGATE] = BGP_ATTR_FLAG_TRANS,
1037 [BGP_ATTR_AGGREGATOR] = BGP_ATTR_FLAG_TRANS | BGP_ATTR_FLAG_OPTIONAL,
1038 [BGP_ATTR_COMMUNITIES] = BGP_ATTR_FLAG_TRANS | BGP_ATTR_FLAG_OPTIONAL,
1039 [BGP_ATTR_ORIGINATOR_ID] = BGP_ATTR_FLAG_OPTIONAL,
1040 [BGP_ATTR_CLUSTER_LIST] = BGP_ATTR_FLAG_OPTIONAL,
1041 [BGP_ATTR_MP_REACH_NLRI] = BGP_ATTR_FLAG_OPTIONAL,
1042 [BGP_ATTR_MP_UNREACH_NLRI] = BGP_ATTR_FLAG_OPTIONAL,
1043 [BGP_ATTR_EXT_COMMUNITIES] =
1044 BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS,
1045 [BGP_ATTR_AS4_PATH] = BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS,
1046 [BGP_ATTR_AS4_AGGREGATOR] =
1047 BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS,
1048 [BGP_ATTR_PMSI_TUNNEL] = BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS,
1049 [BGP_ATTR_LARGE_COMMUNITIES] =
1050 BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS,
1051 [BGP_ATTR_PREFIX_SID] = BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS,
3ecab4c8 1052};
099111ef 1053static const size_t attr_flags_values_max = array_size(attr_flags_values) - 1;
3ecab4c8 1054
d62a17ae 1055static int bgp_attr_flag_invalid(struct bgp_attr_parser_args *args)
1056{
d7c0a89a
QY		 1057 uint8_t mask = BGP_ATTR_FLAG_EXTLEN;
1058 const uint8_t flags = args->flags;
1059 const uint8_t attr_code = args->type;
d62a17ae 1060
1061 /* there may be attributes we don't know about */
1062 if (attr_code > attr_flags_values_max)
1063 return 0;
1064 if (attr_flags_values[attr_code] == 0)
1065 return 0;
1066
1067 /* RFC4271, "For well-known attributes, the Transitive bit MUST be set
1068 * to
1069 * 1."
1070 */
1071 if (!CHECK_FLAG(BGP_ATTR_FLAG_OPTIONAL, flags)
1072 && !CHECK_FLAG(BGP_ATTR_FLAG_TRANS, flags)) {
af4c2728 1073 flog_err(
e50f7cfd 1074 EC_BGP_ATTR_FLAG,
d62a17ae 1075 "%s well-known attributes must have transitive flag set (%x)",
1076 lookup_msg(attr_str, attr_code, NULL), flags);
1077 return 1;
1078 }
1079
1080 /* "For well-known attributes and for optional non-transitive
1081 * attributes,
1082 * the Partial bit MUST be set to 0."
1083 */
1084 if (CHECK_FLAG(flags, BGP_ATTR_FLAG_PARTIAL)) {
1085 if (!CHECK_FLAG(flags, BGP_ATTR_FLAG_OPTIONAL)) {
e50f7cfd 1086 flog_err(EC_BGP_ATTR_FLAG,
1c50c1c0
QY		 1087 "%s well-known attribute "
1088 "must NOT have the partial flag set (%x)",
1089 lookup_msg(attr_str, attr_code, NULL), flags);
d62a17ae 1090 return 1;
1091 }
1092 if (CHECK_FLAG(flags, BGP_ATTR_FLAG_OPTIONAL)
1093 && !CHECK_FLAG(flags, BGP_ATTR_FLAG_TRANS)) {
e50f7cfd 1094 flog_err(EC_BGP_ATTR_FLAG,
1c50c1c0
QY		 1095 "%s optional + transitive attribute "
1096 "must NOT have the partial flag set (%x)",
1097 lookup_msg(attr_str, attr_code, NULL), flags);
d62a17ae 1098 return 1;
1099 }
1100 }
1101
1102 /* Optional transitive attributes may go through speakers that don't
1103 * reocgnise them and set the Partial bit.
1104 */
1105 if (CHECK_FLAG(flags, BGP_ATTR_FLAG_OPTIONAL)
1106 && CHECK_FLAG(flags, BGP_ATTR_FLAG_TRANS))
1107 SET_FLAG(mask, BGP_ATTR_FLAG_PARTIAL);
1108
1109 if ((flags & ~mask) == attr_flags_values[attr_code])
1110 return 0;
1111
1112 bgp_attr_flags_diagnose(args, attr_flags_values[attr_code]);
1113 return 1;
3ecab4c8
PJ		 1114}
1115
718e3744 1116/* Get origin attribute of the update message. */
d62a17ae 1117static bgp_attr_parse_ret_t bgp_attr_origin(struct bgp_attr_parser_args *args)
1118{
1119 struct peer *const peer = args->peer;
1120 struct attr *const attr = args->attr;
1121 const bgp_size_t length = args->length;
1122
1123 /* If any recognized attribute has Attribute Length that conflicts
1124 with the expected length (based on the attribute type code), then
1125 the Error Subcode is set to Attribute Length Error. The Data
1126 field contains the erroneous attribute (type, length and
1127 value). */
1128 if (length != 1) {
e50f7cfd 1129 flog_err(EC_BGP_ATTR_LEN,
1c50c1c0 1130 "Origin attribute length is not one %d", length);
d62a17ae 1131 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1132 args->total);
1133 }
1134
1135 /* Fetch origin attribute. */
1136 attr->origin = stream_getc(BGP_INPUT(peer));
1137
1138 /* If the ORIGIN attribute has an undefined value, then the Error
1139 Subcode is set to Invalid Origin Attribute. The Data field
1140 contains the unrecognized attribute (type, length and value). */
1141 if ((attr->origin != BGP_ORIGIN_IGP) && (attr->origin != BGP_ORIGIN_EGP)
1142 && (attr->origin != BGP_ORIGIN_INCOMPLETE)) {
e50f7cfd 1143 flog_err(EC_BGP_ATTR_ORIGIN,
1c50c1c0 1144 "Origin attribute value is invalid %d", attr->origin);
d62a17ae 1145 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_INVAL_ORIGIN,
1146 args->total);
1147 }
1148
1149 /* Set oring attribute flag. */
1150 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_ORIGIN);
1151
1152 return 0;
718e3744 1153}
ab005298
PJ		 1154
1155/* Parse AS path information. This function is wrapper of
1156 aspath_parse. */
d62a17ae 1157static int bgp_attr_aspath(struct bgp_attr_parser_args *args)
1158{
1159 struct attr *const attr = args->attr;
1160 struct peer *const peer = args->peer;
1161 const bgp_size_t length = args->length;
1162
1163 /*
1164 * peer with AS4 => will get 4Byte ASnums
1165 * otherwise, will get 16 Bit
1166 */
424ab01d 1167 attr->aspath = aspath_parse(peer->curr, length,
d62a17ae 1168 CHECK_FLAG(peer->cap, PEER_CAP_AS4_RCV));
1169
1170 /* In case of IBGP, length will be zero. */
1171 if (!attr->aspath) {
e50f7cfd 1172 flog_err(EC_BGP_ATTR_MAL_AS_PATH,
1c50c1c0
QY		 1173 "Malformed AS path from %s, length is %d", peer->host,
1174 length);
d62a17ae 1175 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_MAL_AS_PATH,
1176 0);
1177 }
0b2aa3a0 1178
d62a17ae 1179 /* Set aspath attribute flag. */
1180 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_AS_PATH);
1181
1182 return BGP_ATTR_PARSE_PROCEED;
1183}
1184
1185static bgp_attr_parse_ret_t bgp_attr_aspath_check(struct peer *const peer,
1186 struct attr *const attr)
1187{
1188 /* These checks were part of bgp_attr_aspath, but with
1189 * as4 we should to check aspath things when
1190 * aspath synthesizing with as4_path has already taken place.
1191 * Otherwise we check ASPATH and use the synthesized thing, and that is
1192 * not right.
1193 * So do the checks later, i.e. here
1194 */
d62a17ae 1195 struct aspath *aspath;
1196
1197 /* Confederation sanity check. */
1198 if ((peer->sort == BGP_PEER_CONFED
1199 && !aspath_left_confed_check(attr->aspath))
1200 || (peer->sort == BGP_PEER_EBGP
1201 && aspath_confed_check(attr->aspath))) {
e50f7cfd 1202 flog_err(EC_BGP_ATTR_MAL_AS_PATH, "Malformed AS path from %s",
1c50c1c0 1203 peer->host);
d62a17ae 1204 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
1205 BGP_NOTIFY_UPDATE_MAL_AS_PATH);
1206 return BGP_ATTR_PARSE_ERROR;
1207 }
cddb8112 1208
d62a17ae 1209 /* First AS check for EBGP. */
47cbc09b 1210 if (CHECK_FLAG(peer->flags, PEER_FLAG_ENFORCE_FIRST_AS)) {
d62a17ae 1211 if (peer->sort == BGP_PEER_EBGP
1212 && !aspath_firstas_check(attr->aspath, peer->as)) {
e50f7cfd 1213 flog_err(EC_BGP_ATTR_FIRST_AS,
1c50c1c0
QY		 1214 "%s incorrect first AS (must be %u)",
1215 peer->host, peer->as);
d62a17ae 1216 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
1217 BGP_NOTIFY_UPDATE_MAL_AS_PATH);
1218 return BGP_ATTR_PARSE_ERROR;
1219 }
1220 }
0b2aa3a0 1221
d62a17ae 1222 /* local-as prepend */
1223 if (peer->change_local_as
1224 && !CHECK_FLAG(peer->flags, PEER_FLAG_LOCAL_AS_NO_PREPEND)) {
1225 aspath = aspath_dup(attr->aspath);
1226 aspath = aspath_add_seq(aspath, peer->change_local_as);
1227 aspath_unintern(&attr->aspath);
1228 attr->aspath = aspath_intern(aspath);
1229 }
0b2aa3a0 1230
d62a17ae 1231 return BGP_ATTR_PARSE_PROCEED;
0b2aa3a0
PJ		 1232}
1233
ab005298
PJ		 1234/* Parse AS4 path information. This function is another wrapper of
1235 aspath_parse. */
d62a17ae 1236static int bgp_attr_as4_path(struct bgp_attr_parser_args *args,
1237 struct aspath **as4_path)
ab005298 1238{
d62a17ae 1239 struct peer *const peer = args->peer;
1240 struct attr *const attr = args->attr;
1241 const bgp_size_t length = args->length;
ab005298 1242
424ab01d 1243 *as4_path = aspath_parse(peer->curr, length, 1);
b881c707 1244
d62a17ae 1245 /* In case of IBGP, length will be zero. */
1246 if (!*as4_path) {
e50f7cfd 1247 flog_err(EC_BGP_ATTR_MAL_AS_PATH,
1c50c1c0
QY		 1248 "Malformed AS4 path from %s, length is %d", peer->host,
1249 length);
d62a17ae 1250 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_MAL_AS_PATH,
1251 0);
1252 }
ab005298 1253
d62a17ae 1254 /* Set aspath attribute flag. */
1255 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH);
1256
1257 return BGP_ATTR_PARSE_PROCEED;
0b2aa3a0
PJ		 1258}
1259
718e3744 1260/* Nexthop attribute. */
d62a17ae 1261static bgp_attr_parse_ret_t bgp_attr_nexthop(struct bgp_attr_parser_args *args)
1262{
1263 struct peer *const peer = args->peer;
1264 struct attr *const attr = args->attr;
1265 const bgp_size_t length = args->length;
1266
1267 in_addr_t nexthop_h, nexthop_n;
1268
1269 /* Check nexthop attribute length. */
1270 if (length != 4) {
e50f7cfd 1271 flog_err(EC_BGP_ATTR_LEN,
1c50c1c0 1272 "Nexthop attribute length isn't four [%d]", length);
d62a17ae 1273
1274 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1275 args->total);
1276 }
1277
1278 /* According to section 6.3 of RFC4271, syntactically incorrect NEXT_HOP
1279 attribute must result in a NOTIFICATION message (this is implemented
1280 below).
1281 At the same time, semantically incorrect NEXT_HOP is more likely to
1282 be just
1283 logged locally (this is implemented somewhere else). The UPDATE
1284 message
1285 gets ignored in any of these cases. */
424ab01d 1286 nexthop_n = stream_get_ipv4(peer->curr);
d62a17ae 1287 nexthop_h = ntohl(nexthop_n);
1288 if ((IPV4_NET0(nexthop_h) || IPV4_NET127(nexthop_h)
1289 || IPV4_CLASS_DE(nexthop_h))
1290 && !BGP_DEBUG(
1291 allow_martians,
1292 ALLOW_MARTIANS)) /* loopbacks may be used in testing */
1293 {
1294 char buf[INET_ADDRSTRLEN];
1295 inet_ntop(AF_INET, &nexthop_n, buf, INET_ADDRSTRLEN);
e50f7cfd 1296 flog_err(EC_BGP_ATTR_MARTIAN_NH, "Martian nexthop %s", buf);
d62a17ae 1297 return bgp_attr_malformed(
1298 args, BGP_NOTIFY_UPDATE_INVAL_NEXT_HOP, args->total);
1299 }
1300
1301 attr->nexthop.s_addr = nexthop_n;
1302 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP);
1303
1304 return BGP_ATTR_PARSE_PROCEED;
718e3744 1305}
1306
1307/* MED atrribute. */
d62a17ae 1308static bgp_attr_parse_ret_t bgp_attr_med(struct bgp_attr_parser_args *args)
718e3744 1309{
d62a17ae 1310 struct peer *const peer = args->peer;
1311 struct attr *const attr = args->attr;
1312 const bgp_size_t length = args->length;
b881c707 1313
d62a17ae 1314 /* Length check. */
1315 if (length != 4) {
e50f7cfd 1316 flog_err(EC_BGP_ATTR_LEN,
1c50c1c0 1317 "MED attribute length isn't four [%d]", length);
718e3744 1318
d62a17ae 1319 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1320 args->total);
1321 }
1322
424ab01d 1323 attr->med = stream_getl(peer->curr);
718e3744 1324
d62a17ae 1325 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC);
718e3744 1326
d62a17ae 1327 return BGP_ATTR_PARSE_PROCEED;
718e3744 1328}
1329
1330/* Local preference attribute. */
b881c707 1331static bgp_attr_parse_ret_t
d62a17ae 1332bgp_attr_local_pref(struct bgp_attr_parser_args *args)
1333{
1334 struct peer *const peer = args->peer;
1335 struct attr *const attr = args->attr;
1336 const bgp_size_t length = args->length;
1337
1338 /* Length check. */
1339 if (length != 4) {
e50f7cfd 1340 flog_err(EC_BGP_ATTR_LEN,
1c50c1c0 1341 "LOCAL_PREF attribute length isn't 4 [%u]", length);
d62a17ae 1342 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1343 args->total);
1344 }
1345
1346 /* If it is contained in an UPDATE message that is received from an
1347 external peer, then this attribute MUST be ignored by the
1348 receiving speaker. */
1349 if (peer->sort == BGP_PEER_EBGP) {
424ab01d 1350 stream_forward_getp(peer->curr, length);
d62a17ae 1351 return BGP_ATTR_PARSE_PROCEED;
1352 }
1353
424ab01d 1354 attr->local_pref = stream_getl(peer->curr);
d62a17ae 1355
7f323236 1356 /* Set the local-pref flag. */
d62a17ae 1357 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF);
1358
1359 return BGP_ATTR_PARSE_PROCEED;
718e3744 1360}
1361
1362/* Atomic aggregate. */
d62a17ae 1363static int bgp_attr_atomic(struct bgp_attr_parser_args *args)
718e3744 1364{
d62a17ae 1365 struct attr *const attr = args->attr;
1366 const bgp_size_t length = args->length;
1367
1368 /* Length check. */
1369 if (length != 0) {
e50f7cfd 1370 flog_err(EC_BGP_ATTR_LEN,
1c50c1c0
QY		 1371 "ATOMIC_AGGREGATE attribute length isn't 0 [%u]",
1372 length);
d62a17ae 1373 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1374 args->total);
1375 }
718e3744 1376
d62a17ae 1377 /* Set atomic aggregate flag. */
1378 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE);
718e3744 1379
d62a17ae 1380 return BGP_ATTR_PARSE_PROCEED;
718e3744 1381}
1382
1383/* Aggregator attribute */
d62a17ae 1384static int bgp_attr_aggregator(struct bgp_attr_parser_args *args)
1385{
1386 struct peer *const peer = args->peer;
1387 struct attr *const attr = args->attr;
1388 const bgp_size_t length = args->length;
1389
1390 int wantedlen = 6;
1391
1392 /* peer with AS4 will send 4 Byte AS, peer without will send 2 Byte */
1393 if (CHECK_FLAG(peer->cap, PEER_CAP_AS4_RCV))
1394 wantedlen = 8;
1395
1396 if (length != wantedlen) {
e50f7cfd 1397 flog_err(EC_BGP_ATTR_LEN,
1c50c1c0
QY		 1398 "AGGREGATOR attribute length isn't %u [%u]", wantedlen,
1399 length);
d62a17ae 1400 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1401 args->total);
1402 }
1403
1404 if (CHECK_FLAG(peer->cap, PEER_CAP_AS4_RCV))
424ab01d 1405 attr->aggregator_as = stream_getl(peer->curr);
d62a17ae 1406 else
424ab01d
QY		 1407 attr->aggregator_as = stream_getw(peer->curr);
1408 attr->aggregator_addr.s_addr = stream_get_ipv4(peer->curr);
d62a17ae 1409
1410 /* Set atomic aggregate flag. */
1411 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR);
1412
1413 return BGP_ATTR_PARSE_PROCEED;
718e3744 1414}
1415
0b2aa3a0 1416/* New Aggregator attribute */
b881c707 1417static bgp_attr_parse_ret_t
d62a17ae 1418bgp_attr_as4_aggregator(struct bgp_attr_parser_args *args,
1419 as_t *as4_aggregator_as,
1420 struct in_addr *as4_aggregator_addr)
1421{
1422 struct peer *const peer = args->peer;
1423 struct attr *const attr = args->attr;
1424 const bgp_size_t length = args->length;
1425
1426 if (length != 8) {
1c50c1c0
QY		 1427 flog_err(EC_BGP_ATTR_LEN, "New Aggregator length is not 8 [%d]",
1428 length);
d62a17ae 1429 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1430 0);
1431 }
1432
424ab01d
QY		 1433 *as4_aggregator_as = stream_getl(peer->curr);
1434 as4_aggregator_addr->s_addr = stream_get_ipv4(peer->curr);
d62a17ae 1435
1436 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR);
1437
1438 return BGP_ATTR_PARSE_PROCEED;
0b2aa3a0
PJ		 1439}
1440
1441/* Munge Aggregator and New-Aggregator, AS_PATH and NEW_AS_PATH.
1442 */
b881c707 1443static bgp_attr_parse_ret_t
d62a17ae 1444bgp_attr_munge_as4_attrs(struct peer *const peer, struct attr *const attr,
1445 struct aspath *as4_path, as_t as4_aggregator,
1446 struct in_addr *as4_aggregator_addr)
1447{
1448 int ignore_as4_path = 0;
1449 struct aspath *newpath;
1450
1451 if (!attr->aspath) {
1452 /* NULL aspath shouldn't be possible as bgp_attr_parse should
1453 * have
1454 * checked that all well-known, mandatory attributes were
1455 * present.
1456 *
1457 * Can only be a problem with peer itself - hard error
1458 */
1459 return BGP_ATTR_PARSE_ERROR;
1460 }
1461
1462 if (CHECK_FLAG(peer->cap, PEER_CAP_AS4_RCV)) {
1463 /* peer can do AS4, so we ignore AS4_PATH and AS4_AGGREGATOR
1464 * if given.
1465 * It is worth a warning though, because the peer really
1466 * should not send them
1467 */
1468 if (BGP_DEBUG(as4, AS4)) {
1469 if (attr->flag & (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH)))
1470 zlog_debug("[AS4] %s %s AS4_PATH", peer->host,
1471 "AS4 capable peer, yet it sent");
1472
1473 if (attr->flag
1474 & (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR)))
1475 zlog_debug("[AS4] %s %s AS4_AGGREGATOR",
1476 peer->host,
1477 "AS4 capable peer, yet it sent");
1478 }
1479
1480 return BGP_ATTR_PARSE_PROCEED;
1481 }
1482
1483 /* We have a asn16 peer. First, look for AS4_AGGREGATOR
1484 * because that may override AS4_PATH
1485 */
1486 if (attr->flag & (ATTR_FLAG_BIT(BGP_ATTR_AS4_AGGREGATOR))) {
1487 if (attr->flag & (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR))) {
1488 /* received both.
1489 * if the as_number in aggregator is not AS_TRANS,
1490 * then AS4_AGGREGATOR and AS4_PATH shall be ignored
1491 * and the Aggregator shall be taken as
1492 * info on the aggregating node, and the AS_PATH
1493 * shall be taken as the AS_PATH
1494 * otherwise
1495 * the Aggregator shall be ignored and the
1496 * AS4_AGGREGATOR shall be taken as the
1497 * Aggregating node and the AS_PATH is to be
1498 * constructed "as in all other cases"
1499 */
1500 if (attr->aggregator_as != BGP_AS_TRANS) {
1501 /* ignore */
1502 if (BGP_DEBUG(as4, AS4))
1503 zlog_debug(
1504 "[AS4] %s BGP not AS4 capable peer"
1505 " send AGGREGATOR != AS_TRANS and"
1506 " AS4_AGGREGATOR, so ignore"
1507 " AS4_AGGREGATOR and AS4_PATH",
1508 peer->host);
1509 ignore_as4_path = 1;
1510 } else {
1511 /* "New_aggregator shall be taken as aggregator"
1512 */
1513 attr->aggregator_as = as4_aggregator;
1514 attr->aggregator_addr.s_addr =
1515 as4_aggregator_addr->s_addr;
1516 }
1517 } else {
1518 /* We received a AS4_AGGREGATOR but no AGGREGATOR.
1519 * That is bogus - but reading the conditions
1520 * we have to handle AS4_AGGREGATOR as if it were
1521 * AGGREGATOR in that case
1522 */
1523 if (BGP_DEBUG(as4, AS4))
1524 zlog_debug(
1525 "[AS4] %s BGP not AS4 capable peer send"
1526 " AS4_AGGREGATOR but no AGGREGATOR, will take"
1527 " it as if AGGREGATOR with AS_TRANS had been there",
1528 peer->host);
1529 attr->aggregator_as = as4_aggregator;
1530 /* sweep it under the carpet and simulate a "good"
1531 * AGGREGATOR */
1532 attr->flag |= (ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR));
1533 }
1534 }
1535
1536 /* need to reconcile NEW_AS_PATH and AS_PATH */
1537 if (!ignore_as4_path
1538 && (attr->flag & (ATTR_FLAG_BIT(BGP_ATTR_AS4_PATH)))) {
1539 newpath = aspath_reconcile_as4(attr->aspath, as4_path);
e8a3a0a0 1540 if (!newpath)
1541 return BGP_ATTR_PARSE_ERROR;
1542
d62a17ae 1543 aspath_unintern(&attr->aspath);
1544 attr->aspath = aspath_intern(newpath);
1545 }
1546 return BGP_ATTR_PARSE_PROCEED;
0b2aa3a0
PJ		 1547}
1548
718e3744 1549/* Community attribute. */
b881c707 1550static bgp_attr_parse_ret_t
d62a17ae 1551bgp_attr_community(struct bgp_attr_parser_args *args)
1552{
1553 struct peer *const peer = args->peer;
1554 struct attr *const attr = args->attr;
1555 const bgp_size_t length = args->length;
1556
1557 if (length == 0) {
1558 attr->community = NULL;
1559 return BGP_ATTR_PARSE_PROCEED;
1560 }
1561
1562 attr->community =
d7c0a89a 1563 community_parse((uint32_t *)stream_pnt(peer->curr), length);
d62a17ae 1564
1565 /* XXX: fix community_parse to use stream API and remove this */
424ab01d 1566 stream_forward_getp(peer->curr, length);
d62a17ae 1567
1568 if (!attr->community)
1569 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR,
1570 args->total);
1571
1572 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES);
1573
1574 return BGP_ATTR_PARSE_PROCEED;
718e3744 1575}
1576
1577/* Originator ID attribute. */
b881c707 1578static bgp_attr_parse_ret_t
d62a17ae 1579bgp_attr_originator_id(struct bgp_attr_parser_args *args)
718e3744 1580{
d62a17ae 1581 struct peer *const peer = args->peer;
1582 struct attr *const attr = args->attr;
1583 const bgp_size_t length = args->length;
718e3744 1584
d62a17ae 1585 /* Length check. */
1586 if (length != 4) {
e50f7cfd 1587 flog_err(EC_BGP_ATTR_LEN, "Bad originator ID length %d",
1c50c1c0 1588 length);
718e3744 1589
d62a17ae 1590 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1591 args->total);
1592 }
1593
424ab01d 1594 attr->originator_id.s_addr = stream_get_ipv4(peer->curr);
718e3744 1595
d62a17ae 1596 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID);
718e3744 1597
d62a17ae 1598 return BGP_ATTR_PARSE_PROCEED;
718e3744 1599}
1600
1601/* Cluster list attribute. */
b881c707 1602static bgp_attr_parse_ret_t
d62a17ae 1603bgp_attr_cluster_list(struct bgp_attr_parser_args *args)
718e3744 1604{
d62a17ae 1605 struct peer *const peer = args->peer;
1606 struct attr *const attr = args->attr;
1607 const bgp_size_t length = args->length;
1608
1609 /* Check length. */
1610 if (length % 4) {
1c50c1c0 1611 flog_err(EC_BGP_ATTR_LEN, "Bad cluster list length %d", length);
718e3744 1612
d62a17ae 1613 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
1614 args->total);
1615 }
1616
1617 attr->cluster =
424ab01d 1618 cluster_parse((struct in_addr *)stream_pnt(peer->curr), length);
718e3744 1619
d62a17ae 1620 /* XXX: Fix cluster_parse to use stream API and then remove this */
424ab01d 1621 stream_forward_getp(peer->curr, length);
718e3744 1622
d62a17ae 1623 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST);
718e3744 1624
d62a17ae 1625 return BGP_ATTR_PARSE_PROCEED;
718e3744 1626}
1627
1628/* Multiprotocol reachability information parse. */
d62a17ae 1629int bgp_mp_reach_parse(struct bgp_attr_parser_args *args,
1630 struct bgp_nlri *mp_update)
1631{
1632 iana_afi_t pkt_afi;
1633 afi_t afi;
5c525538
RW		 1634 iana_safi_t pkt_safi;
1635 safi_t safi;
d62a17ae 1636 bgp_size_t nlri_len;
1637 size_t start;
1638 struct stream *s;
1639 struct peer *const peer = args->peer;
1640 struct attr *const attr = args->attr;
1641 const bgp_size_t length = args->length;
1642
1643 /* Set end of packet. */
1644 s = BGP_INPUT(peer);
1645 start = stream_get_getp(s);
1646
1647/* safe to read statically sized header? */
6e4ab12f 1648#define BGP_MP_REACH_MIN_SIZE 5
03292809 1649#define LEN_LEFT (length - (stream_get_getp(s) - start))
d62a17ae 1650 if ((length > STREAM_READABLE(s)) || (length < BGP_MP_REACH_MIN_SIZE)) {
1651 zlog_info("%s: %s sent invalid length, %lu", __func__,
1652 peer->host, (unsigned long)length);
1653 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS;
1654 }
1655
1656 /* Load AFI, SAFI. */
1657 pkt_afi = stream_getw(s);
1658 pkt_safi = stream_getc(s);
1659
1660 /* Convert AFI, SAFI to internal values, check. */
1661 if (bgp_map_afi_safi_iana2int(pkt_afi, pkt_safi, &afi, &safi)) {
1662 /* Log if AFI or SAFI is unrecognized. This is not an error
1663 * unless
1664 * the attribute is otherwise malformed.
1665 */
1666 if (bgp_debug_update(peer, NULL, NULL, 0))
1667 zlog_debug(
1668 "%s: MP_REACH received AFI %u or SAFI %u is unrecognized",
1669 peer->host, pkt_afi, pkt_safi);
1670 return BGP_ATTR_PARSE_ERROR;
1671 }
1672
1673 /* Get nexthop length. */
1674 attr->mp_nexthop_len = stream_getc(s);
1675
1676 if (LEN_LEFT < attr->mp_nexthop_len) {
1677 zlog_info(
1678 "%s: %s, MP nexthop length, %u, goes past end of attribute",
1679 __func__, peer->host, attr->mp_nexthop_len);
1680 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS;
1681 }
1682
1683 /* Nexthop length check. */
1684 switch (attr->mp_nexthop_len) {
7c40bf39 1685 case 0:
1686 if (safi != SAFI_FLOWSPEC) {
1687 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1688 __func__, peer->host, attr->mp_nexthop_len);
1689 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS;
1690 }
1691 break;
b6453163
LB		 1692 case BGP_ATTR_NHLEN_VPNV4:
1693 stream_getl(s); /* RD high */
1694 stream_getl(s); /* RD low */
996c9314
LB		 1695 /*
1696 * NOTE: intentional fall through
1697 * - for consistency in rx processing
1698 *
1699 * The following comment is to signal GCC this intention
0437e105 1700 * and suppress the warning
996c9314
LB		 1701 */
1702 /* FALLTHRU */
d62a17ae 1703 case BGP_ATTR_NHLEN_IPV4:
1704 stream_get(&attr->mp_nexthop_global_in, s, IPV4_MAX_BYTELEN);
1705 /* Probably needed for RFC 2283 */
1706 if (attr->nexthop.s_addr == 0)
1707 memcpy(&attr->nexthop.s_addr,
1708 &attr->mp_nexthop_global_in, IPV4_MAX_BYTELEN);
1709 break;
d62a17ae 1710 case BGP_ATTR_NHLEN_IPV6_GLOBAL:
1711 case BGP_ATTR_NHLEN_VPNV6_GLOBAL:
1712 if (attr->mp_nexthop_len == BGP_ATTR_NHLEN_VPNV6_GLOBAL) {
1713 stream_getl(s); /* RD high */
1714 stream_getl(s); /* RD low */
1715 }
1716 stream_get(&attr->mp_nexthop_global, s, IPV6_MAX_BYTELEN);
17cdd31e
DS		 1717 if (IN6_IS_ADDR_LINKLOCAL(&attr->mp_nexthop_global)) {
1718 if (!peer->nexthop.ifp) {
1719 zlog_warn("%s: interface not set appropriately to handle some attributes",
1720 peer->host);
1721 return BGP_ATTR_PARSE_WITHDRAW;
1722 }
77e62f2b 1723 attr->nh_ifindex = peer->nexthop.ifp->ifindex;
17cdd31e 1724 }
d62a17ae 1725 break;
1726 case BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL:
1727 case BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL:
1728 if (attr->mp_nexthop_len
1729 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL) {
1730 stream_getl(s); /* RD high */
1731 stream_getl(s); /* RD low */
1732 }
1733 stream_get(&attr->mp_nexthop_global, s, IPV6_MAX_BYTELEN);
17cdd31e
DS		 1734 if (IN6_IS_ADDR_LINKLOCAL(&attr->mp_nexthop_global)) {
1735 if (!peer->nexthop.ifp) {
1736 zlog_warn("%s: interface not set appropriately to handle some attributes",
1737 peer->host);
1738 return BGP_ATTR_PARSE_WITHDRAW;
1739 }
77e62f2b 1740 attr->nh_ifindex = peer->nexthop.ifp->ifindex;
17cdd31e 1741 }
d62a17ae 1742 if (attr->mp_nexthop_len
1743 == BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL) {
1744 stream_getl(s); /* RD high */
1745 stream_getl(s); /* RD low */
1746 }
1747 stream_get(&attr->mp_nexthop_local, s, IPV6_MAX_BYTELEN);
1748 if (!IN6_IS_ADDR_LINKLOCAL(&attr->mp_nexthop_local)) {
1749 char buf1[INET6_ADDRSTRLEN];
1750 char buf2[INET6_ADDRSTRLEN];
1751
1752 if (bgp_debug_update(peer, NULL, NULL, 1))
1753 zlog_debug(
1754 "%s rcvd nexthops %s, %s -- ignoring non-LL value",
1755 peer->host,
1756 inet_ntop(AF_INET6,
1757 &attr->mp_nexthop_global,
1758 buf1, INET6_ADDRSTRLEN),
1759 inet_ntop(AF_INET6,
1760 &attr->mp_nexthop_local, buf2,
1761 INET6_ADDRSTRLEN));
1762
1763 attr->mp_nexthop_len = IPV6_MAX_BYTELEN;
1764 }
17cdd31e
DS		 1765 if (!peer->nexthop.ifp) {
1766 zlog_warn("%s: Interface not set appropriately to handle this some attributes",
1767 peer->host);
1768 return BGP_ATTR_PARSE_WITHDRAW;
1769 }
77e62f2b 1770 attr->nh_lla_ifindex = peer->nexthop.ifp->ifindex;
d62a17ae 1771 break;
1772 default:
1773 zlog_info("%s: (%s) Wrong multiprotocol next hop length: %d",
1774 __func__, peer->host, attr->mp_nexthop_len);
1775 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS;
1776 }
1777
1778 if (!LEN_LEFT) {
1779 zlog_info("%s: (%s) Failed to read SNPA and NLRI(s)", __func__,
1780 peer->host);
1781 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS;
1782 }
1783
718e3744 1784 {
d7c0a89a 1785 uint8_t val;
d62a17ae 1786 if ((val = stream_getc(s)))
ade6974d 1787 flog_warn(
e50f7cfd 1788 EC_BGP_DEFUNCT_SNPA_LEN,
ade6974d
QY		 1789 "%s sent non-zero value, %u, for defunct SNPA-length field",
1790 peer->host, val);
d62a17ae 1791 }
1792
1793 /* must have nrli_len, what is left of the attribute */
1794 nlri_len = LEN_LEFT;
9b9df989 1795 if (nlri_len > STREAM_READABLE(s)) {
d62a17ae 1796 zlog_info("%s: (%s) Failed to read NLRI", __func__, peer->host);
1797 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS;
1798 }
1799
9b9df989
DS		 1800 if (!nlri_len) {
1801 zlog_info("%s: (%s) No Reachability, Treating as a EOR marker",
1802 __func__, peer->host);
1803
1804 mp_update->afi = afi;
1805 mp_update->safi = safi;
1806 return BGP_ATTR_PARSE_EOR;
1807 }
1808
d62a17ae 1809 mp_update->afi = afi;
1810 mp_update->safi = safi;
1811 mp_update->nlri = stream_pnt(s);
1812 mp_update->length = nlri_len;
1813
1814 stream_forward_getp(s, nlri_len);
1815
1816 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI);
1817
1818 return BGP_ATTR_PARSE_PROCEED;
03292809 1819#undef LEN_LEFT
718e3744 1820}
1821
1822/* Multiprotocol unreachable parse */
d62a17ae 1823int bgp_mp_unreach_parse(struct bgp_attr_parser_args *args,
1824 struct bgp_nlri *mp_withdraw)
1825{
1826 struct stream *s;
1827 iana_afi_t pkt_afi;
1828 afi_t afi;
5c525538
RW		 1829 iana_safi_t pkt_safi;
1830 safi_t safi;
d7c0a89a 1831 uint16_t withdraw_len;
d62a17ae 1832 struct peer *const peer = args->peer;
1833 struct attr *const attr = args->attr;
1834 const bgp_size_t length = args->length;
9cabb64b 1835
424ab01d 1836 s = peer->curr;
9cabb64b 1837
d62a17ae 1838#define BGP_MP_UNREACH_MIN_SIZE 3
1839 if ((length > STREAM_READABLE(s)) || (length < BGP_MP_UNREACH_MIN_SIZE))
1840 return BGP_ATTR_PARSE_ERROR_NOTIFYPLS;
1841
1842 pkt_afi = stream_getw(s);
1843 pkt_safi = stream_getc(s);
1844
1845 /* Convert AFI, SAFI to internal values, check. */
1846 if (bgp_map_afi_safi_iana2int(pkt_afi, pkt_safi, &afi, &safi)) {
1847 /* Log if AFI or SAFI is unrecognized. This is not an error
1848 * unless
1849 * the attribute is otherwise malformed.
1850 */
1851 if (bgp_debug_update(peer, NULL, NULL, 0))
1852 zlog_debug(
1853 "%s: MP_UNREACH received AFI %u or SAFI %u is unrecognized",
1854 peer->host, pkt_afi, pkt_safi);
1855 return BGP_ATTR_PARSE_ERROR;
1856 }
718e3744 1857
d62a17ae 1858 withdraw_len = length - BGP_MP_UNREACH_MIN_SIZE;
718e3744 1859
d62a17ae 1860 mp_withdraw->afi = afi;
1861 mp_withdraw->safi = safi;
1862 mp_withdraw->nlri = stream_pnt(s);
1863 mp_withdraw->length = withdraw_len;
718e3744 1864
d62a17ae 1865 stream_forward_getp(s, withdraw_len);
37da8fa9 1866
d62a17ae 1867 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI);
1868
1869 return BGP_ATTR_PARSE_PROCEED;
718e3744 1870}
1871
57d187bc
JS		 1872/* Large Community attribute. */
1873static bgp_attr_parse_ret_t
d62a17ae 1874bgp_attr_large_community(struct bgp_attr_parser_args *args)
1875{
1876 struct peer *const peer = args->peer;
1877 struct attr *const attr = args->attr;
1878 const bgp_size_t length = args->length;
1879
1880 /*
1881 * Large community follows new attribute format.
1882 */
1883 if (length == 0) {
1884 attr->lcommunity = NULL;
1885 /* Empty extcomm doesn't seem to be invalid per se */
1886 return BGP_ATTR_PARSE_PROCEED;
1887 }
57d187bc 1888
d62a17ae 1889 attr->lcommunity =
d7c0a89a 1890 lcommunity_parse((uint8_t *)stream_pnt(peer->curr), length);
d62a17ae 1891 /* XXX: fix ecommunity_parse to use stream API */
424ab01d 1892 stream_forward_getp(peer->curr, length);
57d187bc 1893
d62a17ae 1894 if (!attr->lcommunity)
1895 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR,
1896 args->total);
57d187bc 1897
d62a17ae 1898 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES);
57d187bc 1899
d62a17ae 1900 return BGP_ATTR_PARSE_PROCEED;
57d187bc
JS		 1901}
1902
718e3744 1903/* Extended Community attribute. */
b881c707 1904static bgp_attr_parse_ret_t
d62a17ae 1905bgp_attr_ext_communities(struct bgp_attr_parser_args *args)
1906{
1907 struct peer *const peer = args->peer;
1908 struct attr *const attr = args->attr;
1909 const bgp_size_t length = args->length;
d7c0a89a 1910 uint8_t sticky = 0;
d62a17ae 1911
1912 if (length == 0) {
1913 attr->ecommunity = NULL;
1914 /* Empty extcomm doesn't seem to be invalid per se */
1915 return BGP_ATTR_PARSE_PROCEED;
1916 }
1917
1918 attr->ecommunity =
d7c0a89a 1919 ecommunity_parse((uint8_t *)stream_pnt(peer->curr), length);
d62a17ae 1920 /* XXX: fix ecommunity_parse to use stream API */
424ab01d 1921 stream_forward_getp(peer->curr, length);
d62a17ae 1922
1923 if (!attr->ecommunity)
1924 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR,
1925 args->total);
1926
1927 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES);
1928
1929 /* Extract MAC mobility sequence number, if any. */
1930 attr->mm_seqnum = bgp_attr_mac_mobility_seqnum(attr, &sticky);
1931 attr->sticky = sticky;
1932
ead40654
MK		 1933 /* Check if this is a Gateway MAC-IP advertisement */
1934 attr->default_gw = bgp_attr_default_gw(attr);
1935
68e33151
CS		 1936 /* Handle scenario where router flag ecommunity is not
1937 * set but default gw ext community is present.
1938 * Use default gateway, set and propogate R-bit.
1939 */
1940 if (attr->default_gw)
1941 attr->router_flag = 1;
1942
1943 /* Check EVPN Neighbor advertisement flags, R-bit */
1944 bgp_attr_evpn_na_flag(attr, &attr->router_flag);
1945
bc59a672
MK		 1946 /* Extract the Rmac, if any */
1947 bgp_attr_rmac(attr, &attr->rmac);
1948
d62a17ae 1949 return BGP_ATTR_PARSE_PROCEED;
718e3744 1950}
1951
f4c89855 1952/* Parse Tunnel Encap attribute in an UPDATE */
d62a17ae 1953static int bgp_attr_encap(uint8_t type, struct peer *peer, /* IN */
1954 bgp_size_t length, /* IN: attr's length field */
1955 struct attr *attr, /* IN: caller already allocated */
d7c0a89a
QY		 1956 uint8_t flag, /* IN: attr's flags field */
1957 uint8_t *startp)
d62a17ae 1958{
1959 bgp_size_t total;
d62a17ae 1960 uint16_t tunneltype = 0;
1961
1962 total = length + (CHECK_FLAG(flag, BGP_ATTR_FLAG_EXTLEN) ? 4 : 3);
1963
1964 if (!CHECK_FLAG(flag, BGP_ATTR_FLAG_TRANS)
1965 || !CHECK_FLAG(flag, BGP_ATTR_FLAG_OPTIONAL)) {
1966 zlog_info(
1967 "Tunnel Encap attribute flag isn't optional and transitive %d",
1968 flag);
1969 bgp_notify_send_with_data(peer, BGP_NOTIFY_UPDATE_ERR,
1970 BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR,
1971 startp, total);
1972 return -1;
1973 }
1974
1975 if (BGP_ATTR_ENCAP == type) {
1976 /* read outer TLV type and length */
1977 uint16_t tlv_length;
1978
1979 if (length < 4) {
1980 zlog_info(
1981 "Tunnel Encap attribute not long enough to contain outer T,L");
1982 bgp_notify_send_with_data(
1983 peer, BGP_NOTIFY_UPDATE_ERR,
1984 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR, startp, total);
1985 return -1;
1986 }
1987 tunneltype = stream_getw(BGP_INPUT(peer));
1988 tlv_length = stream_getw(BGP_INPUT(peer));
1989 length -= 4;
1990
1991 if (tlv_length != length) {
1992 zlog_info("%s: tlv_length(%d) != length(%d)", __func__,
1993 tlv_length, length);
1994 }
1995 }
1996
1997 while (length >= 4) {
1998 uint16_t subtype = 0;
1999 uint16_t sublength = 0;
2000 struct bgp_attr_encap_subtlv *tlv;
2001
2002 if (BGP_ATTR_ENCAP == type) {
2003 subtype = stream_getc(BGP_INPUT(peer));
2004 sublength = stream_getc(BGP_INPUT(peer));
2005 length -= 2;
65efcfce 2006#if ENABLE_BGP_VNC
d62a17ae 2007 } else {
2008 subtype = stream_getw(BGP_INPUT(peer));
2009 sublength = stream_getw(BGP_INPUT(peer));
2010 length -= 4;
65efcfce 2011#endif
d62a17ae 2012 }
2013
2014 if (sublength > length) {
2015 zlog_info(
2016 "Tunnel Encap attribute sub-tlv length %d exceeds remaining length %d",
2017 sublength, length);
2018 bgp_notify_send_with_data(
2019 peer, BGP_NOTIFY_UPDATE_ERR,
2020 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR, startp, total);
2021 return -1;
2022 }
2023
2024 /* alloc and copy sub-tlv */
2025 /* TBD make sure these are freed when attributes are released */
2026 tlv = XCALLOC(MTYPE_ENCAP_TLV,
996c9314 2027 sizeof(struct bgp_attr_encap_subtlv) + sublength);
d62a17ae 2028 tlv->type = subtype;
2029 tlv->length = sublength;
424ab01d 2030 stream_get(tlv->value, peer->curr, sublength);
d62a17ae 2031 length -= sublength;
2032
2033 /* attach tlv to encap chain */
2034 if (BGP_ATTR_ENCAP == type) {
e4002056 2035 struct bgp_attr_encap_subtlv *stlv_last;
d62a17ae 2036 for (stlv_last = attr->encap_subtlvs;
2037 stlv_last && stlv_last->next;
2038 stlv_last = stlv_last->next)
2039 ;
2040 if (stlv_last) {
2041 stlv_last->next = tlv;
2042 } else {
2043 attr->encap_subtlvs = tlv;
2044 }
65efcfce 2045#if ENABLE_BGP_VNC
d62a17ae 2046 } else {
e4002056 2047 struct bgp_attr_encap_subtlv *stlv_last;
d62a17ae 2048 for (stlv_last = attr->vnc_subtlvs;
2049 stlv_last && stlv_last->next;
2050 stlv_last = stlv_last->next)
2051 ;
2052 if (stlv_last) {
2053 stlv_last->next = tlv;
2054 } else {
2055 attr->vnc_subtlvs = tlv;
2056 }
aadc0905 2057#endif
d62a17ae 2058 }
d62a17ae 2059 }
f4c89855 2060
d62a17ae 2061 if (BGP_ATTR_ENCAP == type) {
2062 attr->encap_tunneltype = tunneltype;
2063 }
f4c89855 2064
d62a17ae 2065 if (length) {
2066 /* spurious leftover data */
2067 zlog_info(
2068 "Tunnel Encap attribute length is bad: %d leftover octets",
2069 length);
2070 bgp_notify_send_with_data(peer, BGP_NOTIFY_UPDATE_ERR,
2071 BGP_NOTIFY_UPDATE_OPT_ATTR_ERR,
2072 startp, total);
2073 return -1;
2074 }
f4c89855 2075
d62a17ae 2076 return 0;
f4c89855
LB		 2077}
2078
30adbd4e
DS		 2079/*
2080 * Read an individual SID value returning how much data we have read
2081 * Returns 0 if there was an error that needs to be passed up the stack
c5a543b4 2082 */
30adbd4e
DS		 2083static bgp_attr_parse_ret_t bgp_attr_psid_sub(int32_t type,
2084 int32_t length,
2085 struct bgp_attr_parser_args *args,
2086 struct bgp_nlri *mp_update)
d62a17ae 2087{
2088 struct peer *const peer = args->peer;
2089 struct attr *const attr = args->attr;
d7c0a89a 2090 uint32_t label_index;
d62a17ae 2091 struct in6_addr ipv6_sid;
d7c0a89a
QY		 2092 uint32_t srgb_base;
2093 uint32_t srgb_range;
d62a17ae 2094 int srgb_count;
2095
d62a17ae 2096 if (type == BGP_PREFIX_SID_LABEL_INDEX) {
2097 if (length != BGP_PREFIX_SID_LABEL_INDEX_LENGTH) {
af4c2728 2098 flog_err(
e50f7cfd 2099 EC_BGP_ATTR_LEN,
14454c9f
DS		 2100 "Prefix SID label index length is %d instead of %d",
2101 length, BGP_PREFIX_SID_LABEL_INDEX_LENGTH);
30adbd4e
DS		 2102 return bgp_attr_malformed(args,
2103 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
2104 args->total);
d62a17ae 2105 }
2106
2107 /* Ignore flags and reserved */
424ab01d
QY		 2108 stream_getc(peer->curr);
2109 stream_getw(peer->curr);
d62a17ae 2110
2111 /* Fetch the label index and see if it is valid. */
424ab01d 2112 label_index = stream_getl(peer->curr);
d62a17ae 2113 if (label_index == BGP_INVALID_LABEL_INDEX)
30adbd4e
DS		 2114 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR,
2115 args->total);
d62a17ae 2116
2117 /* Store label index; subsequently, we'll check on
2118 * address-family */
2119 attr->label_index = label_index;
2120
2121 /*
2122 * Ignore the Label index attribute unless received for
2123 * labeled-unicast
2124 * SAFI.
2125 */
2126 if (!mp_update->length
2127 || mp_update->safi != SAFI_LABELED_UNICAST)
2128 attr->label_index = BGP_INVALID_LABEL_INDEX;
2129 }
2130
2131 /* Placeholder code for the IPv6 SID type */
2132 else if (type == BGP_PREFIX_SID_IPV6) {
2133 if (length != BGP_PREFIX_SID_IPV6_LENGTH) {
e50f7cfd 2134 flog_err(EC_BGP_ATTR_LEN,
1c50c1c0
QY		 2135 "Prefix SID IPv6 length is %d instead of %d",
2136 length, BGP_PREFIX_SID_IPV6_LENGTH);
30adbd4e
DS		 2137 return bgp_attr_malformed(args,
2138 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
2139 args->total);
d62a17ae 2140 }
2141
2142 /* Ignore reserved */
424ab01d
QY		 2143 stream_getc(peer->curr);
2144 stream_getw(peer->curr);
d62a17ae 2145
424ab01d 2146 stream_get(&ipv6_sid, peer->curr, 16);
d62a17ae 2147 }
2148
2149 /* Placeholder code for the Originator SRGB type */
2150 else if (type == BGP_PREFIX_SID_ORIGINATOR_SRGB) {
2151 /* Ignore flags */
424ab01d 2152 stream_getw(peer->curr);
d62a17ae 2153
2154 length -= 2;
2155
2156 if (length % BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH) {
af4c2728 2157 flog_err(
e50f7cfd 2158 EC_BGP_ATTR_LEN,
d62a17ae 2159 "Prefix SID Originator SRGB length is %d, it must be a multiple of %d ",
2160 length, BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH);
2161 return bgp_attr_malformed(
2162 args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
2163 args->total);
2164 }
2165
2166 srgb_count = length / BGP_PREFIX_SID_ORIGINATOR_SRGB_LENGTH;
2167
2168 for (int i = 0; i < srgb_count; i++) {
424ab01d
QY		 2169 stream_get(&srgb_base, peer->curr, 3);
2170 stream_get(&srgb_range, peer->curr, 3);
d62a17ae 2171 }
2172 }
2173
2174 return BGP_ATTR_PARSE_PROCEED;
6cf48acc
VV		 2175}
2176
30adbd4e
DS		 2177/* Prefix SID attribute
2178 * draft-ietf-idr-bgp-prefix-sid-05
2179 */
2180bgp_attr_parse_ret_t
2181bgp_attr_prefix_sid(int32_t tlength, struct bgp_attr_parser_args *args,
2182 struct bgp_nlri *mp_update)
2183{
2184 struct peer *const peer = args->peer;
2185 struct attr *const attr = args->attr;
2186 bgp_attr_parse_ret_t ret;
2187
2188 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID);
2189
2190 while (tlength) {
2191 int32_t type, length;
2192
2193 type = stream_getc(peer->curr);
2194 length = stream_getw(peer->curr);
2195
2196 ret = bgp_attr_psid_sub(type, length, args, mp_update);
2197
2198 if (ret != BGP_ATTR_PARSE_PROCEED)
2199 return ret;
2200 /*
2201 * Subtract length + the T and the L
2202 * since length is the Vector portion
2203 */
2204 tlength -= length + 3;
2205
2206 if (tlength < 0) {
af4c2728 2207 flog_err(
e50f7cfd 2208 EC_BGP_ATTR_LEN,
14454c9f
DS		 2209 "Prefix SID internal length %d causes us to read beyond the total Prefix SID length",
2210 length);
30adbd4e
DS		 2211 return bgp_attr_malformed(args,
2212 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
2213 args->total);
2214 }
2215 }
2216
2217 return BGP_ATTR_PARSE_PROCEED;
2218}
2219
7fd077aa 2220/* PMSI tunnel attribute (RFC 6514)
2221 * Basic validation checks done here.
2222 */
2223static bgp_attr_parse_ret_t
2224bgp_attr_pmsi_tunnel(struct bgp_attr_parser_args *args)
2225{
2226 struct peer *const peer = args->peer;
2227 struct attr *const attr = args->attr;
2228 const bgp_size_t length = args->length;
d7c0a89a 2229 uint8_t tnl_type;
7fd077aa 2230
2231 /* Verify that the receiver is expecting "ingress replication" as we
2232 * can only support that.
2233 */
2234 if (length < 2) {
1c50c1c0
QY		 2235 flog_err(EC_BGP_ATTR_LEN, "Bad PMSI tunnel attribute length %d",
2236 length);
7fd077aa 2237 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
2238 args->total);
2239 }
2240 stream_getc(peer->curr); /* Flags */
2241 tnl_type = stream_getc(peer->curr);
2242 if (tnl_type > PMSI_TNLTYPE_MAX) {
e50f7cfd 2243 flog_err(EC_BGP_ATTR_PMSI_TYPE,
1c50c1c0 2244 "Invalid PMSI tunnel attribute type %d", tnl_type);
7fd077aa 2245 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_OPT_ATTR_ERR,
2246 args->total);
2247 }
2248 if (tnl_type == PMSI_TNLTYPE_INGR_REPL) {
2249 if (length != 9) {
e50f7cfd 2250 flog_err(EC_BGP_ATTR_PMSI_LEN,
1c50c1c0
QY		 2251 "Bad PMSI tunnel attribute length %d for IR",
2252 length);
052ea98b 2253 return bgp_attr_malformed(
2254 args, BGP_NOTIFY_UPDATE_ATTR_LENG_ERR,
2255 args->total);
7fd077aa 2256 }
2257 }
2258
2259 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL);
2260 attr->pmsi_tnl_type = tnl_type;
2261
2262 /* Forward read pointer of input stream. */
2263 stream_forward_getp(peer->curr, length - 2);
2264
2265 return BGP_ATTR_PARSE_PROCEED;
2266}
2267
718e3744 2268/* BGP unknown attribute treatment. */
d62a17ae 2269static bgp_attr_parse_ret_t bgp_attr_unknown(struct bgp_attr_parser_args *args)
2270{
2271 bgp_size_t total = args->total;
2272 struct transit *transit;
2273 struct peer *const peer = args->peer;
2274 struct attr *const attr = args->attr;
d7c0a89a
QY		 2275 uint8_t *const startp = args->startp;
2276 const uint8_t type = args->type;
2277 const uint8_t flag = args->flags;
d62a17ae 2278 const bgp_size_t length = args->length;
2279
2280 if (bgp_debug_update(peer, NULL, NULL, 1))
2281 zlog_debug(
2282 "%s Unknown attribute is received (type %d, length %d)",
2283 peer->host, type, length);
2284
2285 /* Forward read pointer of input stream. */
424ab01d 2286 stream_forward_getp(peer->curr, length);
d62a17ae 2287
2288 /* If any of the mandatory well-known attributes are not recognized,
2289 then the Error Subcode is set to Unrecognized Well-known
2290 Attribute. The Data field contains the unrecognized attribute
2291 (type, length and value). */
2292 if (!CHECK_FLAG(flag, BGP_ATTR_FLAG_OPTIONAL)) {
2293 return bgp_attr_malformed(args, BGP_NOTIFY_UPDATE_UNREC_ATTR,
2294 args->total);
2295 }
2296
2297 /* Unrecognized non-transitive optional attributes must be quietly
2298 ignored and not passed along to other BGP peers. */
2299 if (!CHECK_FLAG(flag, BGP_ATTR_FLAG_TRANS))
2300 return BGP_ATTR_PARSE_PROCEED;
2301
2302 /* If a path with recognized transitive optional attribute is
2303 accepted and passed along to other BGP peers and the Partial bit
2304 in the Attribute Flags octet is set to 1 by some previous AS, it
2305 is not set back to 0 by the current AS. */
2306 SET_FLAG(*startp, BGP_ATTR_FLAG_PARTIAL);
2307
2308 /* Store transitive attribute to the end of attr->transit. */
2309 if (!attr->transit)
2310 attr->transit = XCALLOC(MTYPE_TRANSIT, sizeof(struct transit));
2311
2312 transit = attr->transit;
2313
2314 if (transit->val)
2315 transit->val = XREALLOC(MTYPE_TRANSIT_VAL, transit->val,
2316 transit->length + total);
2317 else
2318 transit->val = XMALLOC(MTYPE_TRANSIT_VAL, total);
2319
2320 memcpy(transit->val + transit->length, startp, total);
2321 transit->length += total;
2322
2323 return BGP_ATTR_PARSE_PROCEED;
718e3744 2324}
2325
bb7bef14 2326/* Well-known attribute check. */
d62a17ae 2327static int bgp_attr_check(struct peer *peer, struct attr *attr)
2328{
d7c0a89a 2329 uint8_t type = 0;
d62a17ae 2330
2331 /* BGP Graceful-Restart End-of-RIB for IPv4 unicast is signaled as an
2332 * empty UPDATE. */
2333 if (CHECK_FLAG(peer->cap, PEER_CAP_RESTART_RCV) && !attr->flag)
2334 return BGP_ATTR_PARSE_PROCEED;
2335
2336 /* "An UPDATE message that contains the MP_UNREACH_NLRI is not required
2337 to carry any other path attributes.", though if MP_REACH_NLRI or NLRI
2338 are present, it should. Check for any other attribute being present
2339 instead.
2340 */
404c82d5
PG		 2341 if ((!CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI)) &&
2342 CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_MP_UNREACH_NLRI))))
d62a17ae 2343 return BGP_ATTR_PARSE_PROCEED;
2344
2345 if (!CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_ORIGIN)))
2346 type = BGP_ATTR_ORIGIN;
2347
2348 if (!CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH)))
2349 type = BGP_ATTR_AS_PATH;
2350
2351 /* RFC 2858 makes Next-Hop optional/ignored, if MP_REACH_NLRI is present
2352 * and
2353 * NLRI is empty. We can't easily check NLRI empty here though.
2354 */
2355 if (!CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP))
2356 && !CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_MP_REACH_NLRI)))
2357 type = BGP_ATTR_NEXT_HOP;
2358
2359 if (peer->sort == BGP_PEER_IBGP
2360 && !CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF)))
2361 type = BGP_ATTR_LOCAL_PREF;
2362
2363 if (type) {
e50f7cfd 2364 flog_warn(EC_BGP_MISSING_ATTRIBUTE,
559aaa30 2365 "%s Missing well-known attribute %s.", peer->host,
d62a17ae 2366 lookup_msg(attr_str, type, NULL));
2367 bgp_notify_send_with_data(peer, BGP_NOTIFY_UPDATE_ERR,
2368 BGP_NOTIFY_UPDATE_MISS_ATTR, &type,
2369 1);
2370 return BGP_ATTR_PARSE_ERROR;
2371 }
2372 return BGP_ATTR_PARSE_PROCEED;
bb7bef14
PJ		 2373}
2374
718e3744 2375/* Read attribute of update packet. This function is called from
8b366b9c 2376 bgp_update_receive() in bgp_packet.c. */
d62a17ae 2377bgp_attr_parse_ret_t bgp_attr_parse(struct peer *peer, struct attr *attr,
2378 bgp_size_t size, struct bgp_nlri *mp_update,
2379 struct bgp_nlri *mp_withdraw)
2380{
f7813c7c 2381 bgp_attr_parse_ret_t ret;
d7c0a89a
QY		 2382 uint8_t flag = 0;
2383 uint8_t type = 0;
d62a17ae 2384 bgp_size_t length;
d7c0a89a
QY		 2385 uint8_t *startp, *endp;
2386 uint8_t *attr_endp;
2387 uint8_t seen[BGP_ATTR_BITMAP_SIZE];
d62a17ae 2388 /* we need the as4_path only until we have synthesized the as_path with
2389 * it */
2390 /* same goes for as4_aggregator */
2391 struct aspath *as4_path = NULL;
2392 as_t as4_aggregator = 0;
2393 struct in_addr as4_aggregator_addr = {.s_addr = 0};
2394
2395 /* Initialize bitmap. */
2396 memset(seen, 0, BGP_ATTR_BITMAP_SIZE);
2397
2398 /* End pointer of BGP attribute. */
2399 endp = BGP_INPUT_PNT(peer) + size;
2400
2401 /* Get attributes to the end of attribute length. */
2402 while (BGP_INPUT_PNT(peer) < endp) {
2403 /* Check remaining length check.*/
2404 if (endp - BGP_INPUT_PNT(peer) < BGP_ATTR_MIN_LEN) {
2405 /* XXX warning: long int format, int arg (arg 5) */
ade6974d 2406 flog_warn(
e50f7cfd 2407 EC_BGP_ATTRIBUTE_TOO_SMALL,
ade6974d
QY		 2408 "%s: error BGP attribute length %lu is smaller than min len",
2409 peer->host,
2410 (unsigned long)(endp
2411 - stream_pnt(BGP_INPUT(peer))));
d62a17ae 2412
2413 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
2414 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR);
2415 return BGP_ATTR_PARSE_ERROR;
2416 }
718e3744 2417
d62a17ae 2418 /* Fetch attribute flag and type. */
2419 startp = BGP_INPUT_PNT(peer);
2420 /* "The lower-order four bits of the Attribute Flags octet are
2421 unused. They MUST be zero when sent and MUST be ignored when
2422 received." */
2423 flag = 0xF0 & stream_getc(BGP_INPUT(peer));
2424 type = stream_getc(BGP_INPUT(peer));
2425
2426 /* Check whether Extended-Length applies and is in bounds */
2427 if (CHECK_FLAG(flag, BGP_ATTR_FLAG_EXTLEN)
2428 && ((endp - startp) < (BGP_ATTR_MIN_LEN + 1))) {
ade6974d 2429 flog_warn(
e50f7cfd 2430 EC_BGP_EXT_ATTRIBUTE_TOO_SMALL,
ade6974d
QY		 2431 "%s: Extended length set, but just %lu bytes of attr header",
2432 peer->host,
2433 (unsigned long)(endp
2434 - stream_pnt(BGP_INPUT(peer))));
d62a17ae 2435
2436 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
2437 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR);
2438 return BGP_ATTR_PARSE_ERROR;
2439 }
718e3744 2440
d62a17ae 2441 /* Check extended attribue length bit. */
2442 if (CHECK_FLAG(flag, BGP_ATTR_FLAG_EXTLEN))
2443 length = stream_getw(BGP_INPUT(peer));
2444 else
2445 length = stream_getc(BGP_INPUT(peer));
718e3744 2446
d62a17ae 2447 /* If any attribute appears more than once in the UPDATE
2448 message, then the Error Subcode is set to Malformed Attribute
2449 List. */
718e3744 2450
d62a17ae 2451 if (CHECK_BITMAP(seen, type)) {
ade6974d 2452 flog_warn(
e50f7cfd 2453 EC_BGP_ATTRIBUTE_REPEATED,
ade6974d
QY		 2454 "%s: error BGP attribute type %d appears twice in a message",
2455 peer->host, type);
718e3744 2456
d62a17ae 2457 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
2458 BGP_NOTIFY_UPDATE_MAL_ATTR);
2459 return BGP_ATTR_PARSE_ERROR;
2460 }
2461
2462 /* Set type to bitmap to check duplicate attribute. `type' is
2463 unsigned char so it never overflow bitmap range. */
2464
2465 SET_BITMAP(seen, type);
2466
2467 /* Overflow check. */
2468 attr_endp = BGP_INPUT_PNT(peer) + length;
2469
2470 if (attr_endp > endp) {
ade6974d 2471 flog_warn(
e50f7cfd 2472 EC_BGP_ATTRIBUTE_TOO_LARGE,
ade6974d
QY		 2473 "%s: BGP type %d length %d is too large, attribute total length is %d. attr_endp is %p. endp is %p",
2474 peer->host, type, length, size, attr_endp,
2475 endp);
dacffad4
QY		 2476 /*
2477 * RFC 4271 6.3
2478 * If any recognized attribute has an Attribute
2479 * Length that conflicts with the expected length
2480 * (based on the attribute type code), then the
2481 * Error Subcode MUST be set to Attribute Length
2482 * Error. The Data field MUST contain the erroneous
2483 * attribute (type, length, and value).
2484 * ----------
2485 * We do not currently have a good way to determine the
2486 * length of the attribute independent of the length
2487 * received in the message. Instead we send the
2488 * minimum between the amount of data we have and the
2489 * amount specified by the attribute length field.
2490 *
2491 * Instead of directly passing in the packet buffer and
2492 * offset we use the stream_get* functions to read into
2493 * a stack buffer, since they perform bounds checking
2494 * and we are working with untrusted data.
2495 */
2496 unsigned char ndata[BGP_MAX_PACKET_SIZE];
2497 memset(ndata, 0x00, sizeof(ndata));
2498 size_t lfl =
2499 CHECK_FLAG(flag, BGP_ATTR_FLAG_EXTLEN) ? 2 : 1;
2500 /* Rewind to end of flag field */
2501 stream_forward_getp(BGP_INPUT(peer), -(1 + lfl));
2502 /* Type */
2503 stream_get(&ndata[0], BGP_INPUT(peer), 1);
2504 /* Length */
2505 stream_get(&ndata[1], BGP_INPUT(peer), lfl);
2506 /* Value */
2507 size_t atl = attr_endp - startp;
2508 size_t ndl = MIN(atl, STREAM_READABLE(BGP_INPUT(peer)));
2509 stream_get(&ndata[lfl + 1], BGP_INPUT(peer), ndl);
2510
d62a17ae 2511 bgp_notify_send_with_data(
2512 peer, BGP_NOTIFY_UPDATE_ERR,
dacffad4
QY		 2513 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR, ndata,
2514 ndl + lfl + 1);
2515
d62a17ae 2516 return BGP_ATTR_PARSE_ERROR;
2517 }
2518
2519 struct bgp_attr_parser_args attr_args = {
2520 .peer = peer,
2521 .length = length,
2522 .attr = attr,
2523 .type = type,
2524 .flags = flag,
2525 .startp = startp,
2526 .total = attr_endp - startp,
2527 };
2528
2529
2530 /* If any recognized attribute has Attribute Flags that conflict
2531 with the Attribute Type Code, then the Error Subcode is set
2532 to
2533 Attribute Flags Error. The Data field contains the erroneous
2534 attribute (type, length and value). */
2535 if (bgp_attr_flag_invalid(&attr_args)) {
d62a17ae 2536 ret = bgp_attr_malformed(
2537 &attr_args, BGP_NOTIFY_UPDATE_ATTR_FLAG_ERR,
2538 attr_args.total);
2539 if (ret == BGP_ATTR_PARSE_PROCEED)
2540 continue;
2541 return ret;
2542 }
2543
2544 /* OK check attribute and store it's value. */
2545 switch (type) {
2546 case BGP_ATTR_ORIGIN:
2547 ret = bgp_attr_origin(&attr_args);
2548 break;
2549 case BGP_ATTR_AS_PATH:
2550 ret = bgp_attr_aspath(&attr_args);
2551 break;
2552 case BGP_ATTR_AS4_PATH:
2553 ret = bgp_attr_as4_path(&attr_args, &as4_path);
2554 break;
2555 case BGP_ATTR_NEXT_HOP:
2556 ret = bgp_attr_nexthop(&attr_args);
2557 break;
2558 case BGP_ATTR_MULTI_EXIT_DISC:
2559 ret = bgp_attr_med(&attr_args);
2560 break;
2561 case BGP_ATTR_LOCAL_PREF:
2562 ret = bgp_attr_local_pref(&attr_args);
2563 break;
2564 case BGP_ATTR_ATOMIC_AGGREGATE:
2565 ret = bgp_attr_atomic(&attr_args);
2566 break;
2567 case BGP_ATTR_AGGREGATOR:
2568 ret = bgp_attr_aggregator(&attr_args);
2569 break;
2570 case BGP_ATTR_AS4_AGGREGATOR:
2571 ret = bgp_attr_as4_aggregator(&attr_args,
2572 &as4_aggregator,
2573 &as4_aggregator_addr);
2574 break;
2575 case BGP_ATTR_COMMUNITIES:
2576 ret = bgp_attr_community(&attr_args);
2577 break;
2578 case BGP_ATTR_LARGE_COMMUNITIES:
2579 ret = bgp_attr_large_community(&attr_args);
2580 break;
2581 case BGP_ATTR_ORIGINATOR_ID:
2582 ret = bgp_attr_originator_id(&attr_args);
2583 break;
2584 case BGP_ATTR_CLUSTER_LIST:
2585 ret = bgp_attr_cluster_list(&attr_args);
2586 break;
2587 case BGP_ATTR_MP_REACH_NLRI:
2588 ret = bgp_mp_reach_parse(&attr_args, mp_update);
2589 break;
2590 case BGP_ATTR_MP_UNREACH_NLRI:
2591 ret = bgp_mp_unreach_parse(&attr_args, mp_withdraw);
2592 break;
2593 case BGP_ATTR_EXT_COMMUNITIES:
2594 ret = bgp_attr_ext_communities(&attr_args);
2595 break;
65efcfce 2596#if ENABLE_BGP_VNC
d62a17ae 2597 case BGP_ATTR_VNC:
65efcfce 2598#endif
d62a17ae 2599 case BGP_ATTR_ENCAP:
2600 ret = bgp_attr_encap(type, peer, length, attr, flag,
2601 startp);
2602 break;
2603 case BGP_ATTR_PREFIX_SID:
30adbd4e
DS		 2604 ret = bgp_attr_prefix_sid(length,
2605 &attr_args, mp_update);
d62a17ae 2606 break;
7fd077aa 2607 case BGP_ATTR_PMSI_TUNNEL:
2608 ret = bgp_attr_pmsi_tunnel(&attr_args);
2609 break;
d62a17ae 2610 default:
2611 ret = bgp_attr_unknown(&attr_args);
2612 break;
2613 }
2614
2615 if (ret == BGP_ATTR_PARSE_ERROR_NOTIFYPLS) {
2616 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
2617 BGP_NOTIFY_UPDATE_MAL_ATTR);
2618 ret = BGP_ATTR_PARSE_ERROR;
2619 }
2620
9b9df989
DS		 2621 if (ret == BGP_ATTR_PARSE_EOR) {
2622 if (as4_path)
2623 aspath_unintern(&as4_path);
2624 return ret;
2625 }
2626
0437e105 2627 /* If hard error occurred immediately return to the caller. */
d62a17ae 2628 if (ret == BGP_ATTR_PARSE_ERROR) {
e50f7cfd 2629 flog_warn(EC_BGP_ATTRIBUTE_PARSE_ERROR,
559aaa30 2630 "%s: Attribute %s, parse error", peer->host,
d62a17ae 2631 lookup_msg(attr_str, type, NULL));
2632 if (as4_path)
2633 aspath_unintern(&as4_path);
2634 return ret;
2635 }
2636 if (ret == BGP_ATTR_PARSE_WITHDRAW) {
2637
ade6974d 2638 flog_warn(
e50f7cfd 2639 EC_BGP_ATTRIBUTE_PARSE_WITHDRAW,
d62a17ae 2640 "%s: Attribute %s, parse error - treating as withdrawal",
2641 peer->host, lookup_msg(attr_str, type, NULL));
2642 if (as4_path)
2643 aspath_unintern(&as4_path);
2644 return ret;
2645 }
2646
2647 /* Check the fetched length. */
2648 if (BGP_INPUT_PNT(peer) != attr_endp) {
e50f7cfd 2649 flog_warn(EC_BGP_ATTRIBUTE_FETCH_ERROR,
559aaa30 2650 "%s: BGP attribute %s, fetch error",
d62a17ae 2651 peer->host, lookup_msg(attr_str, type, NULL));
2652 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
2653 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR);
2654 if (as4_path)
2655 aspath_unintern(&as4_path);
2656 return BGP_ATTR_PARSE_ERROR;
2657 }
718e3744 2658 }
d62a17ae 2659
2660 /* Check final read pointer is same as end pointer. */
2661 if (BGP_INPUT_PNT(peer) != endp) {
e50f7cfd 2662 flog_warn(EC_BGP_ATTRIBUTES_MISMATCH,
559aaa30 2663 "%s: BGP attribute %s, length mismatch", peer->host,
d62a17ae 2664 lookup_msg(attr_str, type, NULL));
2665 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
2666 BGP_NOTIFY_UPDATE_ATTR_LENG_ERR);
2667 if (as4_path)
2668 aspath_unintern(&as4_path);
2669 return BGP_ATTR_PARSE_ERROR;
2670 }
2671
2672 /* Check all mandatory well-known attributes are present */
f7813c7c
A		 2673 if ((ret = bgp_attr_check(peer, attr)) < 0) {
2674 if (as4_path)
2675 aspath_unintern(&as4_path);
2676 return ret;
d62a17ae 2677 }
2678
2679 /*
2680 * At this place we can see whether we got AS4_PATH and/or
2681 * AS4_AGGREGATOR from a 16Bit peer and act accordingly.
2682 * We can not do this before we've read all attributes because
2683 * the as4 handling does not say whether AS4_PATH has to be sent
2684 * after AS_PATH or not - and when AS4_AGGREGATOR will be send
2685 * in relationship to AGGREGATOR.
2686 * So, to be defensive, we are not relying on any order and read
2687 * all attributes first, including these 32bit ones, and now,
2688 * afterwards, we look what and if something is to be done for as4.
2689 *
2690 * It is possible to not have AS_PATH, e.g. GR EoR and sole
2691 * MP_UNREACH_NLRI.
2692 */
2693 /* actually... this doesn't ever return failure currently, but
2694 * better safe than sorry */
2695 if (CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_AS_PATH))
2696 && bgp_attr_munge_as4_attrs(peer, attr, as4_path, as4_aggregator,
2697 &as4_aggregator_addr)) {
2698 bgp_notify_send(peer, BGP_NOTIFY_UPDATE_ERR,
2699 BGP_NOTIFY_UPDATE_MAL_ATTR);
2700 if (as4_path)
2701 aspath_unintern(&as4_path);
2702 return BGP_ATTR_PARSE_ERROR;
2703 }
2704
2705 /* At this stage, we have done all fiddling with as4, and the
2706 * resulting info is in attr->aggregator resp. attr->aspath
2707 * so we can chuck as4_aggregator and as4_path alltogether in
2708 * order to save memory
2709 */
2710 if (as4_path) {
2711 aspath_unintern(&as4_path); /* unintern - it is in the hash */
2712 /* The flag that we got this is still there, but that does not
2713 * do any trouble
2714 */
2715 }
2716 /*
2717 * The "rest" of the code does nothing with as4_aggregator.
2718 * there is no memory attached specifically which is not part
2719 * of the attr.
2720 * so ignoring just means do nothing.
2721 */
2722 /*
2723 * Finally do the checks on the aspath we did not do yet
2724 * because we waited for a potentially synthesized aspath.
2725 */
2726 if (attr->flag & (ATTR_FLAG_BIT(BGP_ATTR_AS_PATH))) {
2727 ret = bgp_attr_aspath_check(peer, attr);
2728 if (ret != BGP_ATTR_PARSE_PROCEED)
2729 return ret;
2730 }
2731 /* Finally intern unknown attribute. */
2732 if (attr->transit)
2733 attr->transit = transit_intern(attr->transit);
2734 if (attr->encap_subtlvs)
2735 attr->encap_subtlvs =
2736 encap_intern(attr->encap_subtlvs, ENCAP_SUBTLV_TYPE);
bede7744 2737#if ENABLE_BGP_VNC
d62a17ae 2738 if (attr->vnc_subtlvs)
2739 attr->vnc_subtlvs =
2740 encap_intern(attr->vnc_subtlvs, VNC_SUBTLV_TYPE);
bede7744 2741#endif
718e3744 2742
d62a17ae 2743 return BGP_ATTR_PARSE_PROCEED;
2744}
2745
2746size_t bgp_packet_mpattr_start(struct stream *s, struct peer *peer, afi_t afi,
2747 safi_t safi, struct bpacket_attr_vec_arr *vecarr,
2748 struct attr *attr)
2749{
2750 size_t sizep;
2751 iana_afi_t pkt_afi;
5c525538 2752 iana_safi_t pkt_safi;
d62a17ae 2753 afi_t nh_afi;
2754
2755 /* Set extended bit always to encode the attribute length as 2 bytes */
2756 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_EXTLEN);
2757 stream_putc(s, BGP_ATTR_MP_REACH_NLRI);
2758 sizep = stream_get_endp(s);
2759 stream_putw(s, 0); /* Marker: Attribute length. */
2760
2761
2762 /* Convert AFI, SAFI to values for packet. */
2763 bgp_map_afi_safi_int2iana(afi, safi, &pkt_afi, &pkt_safi);
2764
2765 stream_putw(s, pkt_afi); /* AFI */
2766 stream_putc(s, pkt_safi); /* SAFI */
2767
2768 /* Nexthop AFI */
ce78a6fb 2769 if (afi == AFI_IP
2770 && (safi == SAFI_UNICAST || safi == SAFI_LABELED_UNICAST))
d62a17ae 2771 nh_afi = peer_cap_enhe(peer, afi, safi) ? AFI_IP6 : AFI_IP;
d62a17ae 2772 else
2773 nh_afi = BGP_NEXTHOP_AFI_FROM_NHLEN(attr->mp_nexthop_len);
2774
2775 /* Nexthop */
2776 bpacket_attr_vec_arr_set_vec(vecarr, BGP_ATTR_VEC_NH, s, attr);
2777 switch (nh_afi) {
2778 case AFI_IP:
2779 switch (safi) {
2780 case SAFI_UNICAST:
2781 case SAFI_MULTICAST:
2782 case SAFI_LABELED_UNICAST:
2783 stream_putc(s, 4);
2784 stream_put_ipv4(s, attr->nexthop.s_addr);
2785 break;
2786 case SAFI_MPLS_VPN:
2787 stream_putc(s, 12);
2788 stream_putl(s, 0); /* RD = 0, per RFC */
2789 stream_putl(s, 0);
2790 stream_put(s, &attr->mp_nexthop_global_in, 4);
2791 break;
2792 case SAFI_ENCAP:
2793 case SAFI_EVPN:
2794 stream_putc(s, 4);
2795 stream_put(s, &attr->mp_nexthop_global_in, 4);
2796 break;
7c40bf39 2797 case SAFI_FLOWSPEC:
2798 stream_putc(s, 0); /* no nexthop for flowspec */
d62a17ae 2799 default:
2800 break;
2801 }
2802 break;
2803 case AFI_IP6:
2804 switch (safi) {
2805 case SAFI_UNICAST:
2806 case SAFI_MULTICAST:
2807 case SAFI_LABELED_UNICAST:
2808 case SAFI_EVPN: {
2809 if (attr->mp_nexthop_len
2810 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL) {
2811 stream_putc(s,
2812 BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL);
2813 stream_put(s, &attr->mp_nexthop_global,
2814 IPV6_MAX_BYTELEN);
2815 stream_put(s, &attr->mp_nexthop_local,
2816 IPV6_MAX_BYTELEN);
2817 } else {
2818 stream_putc(s, IPV6_MAX_BYTELEN);
2819 stream_put(s, &attr->mp_nexthop_global,
2820 IPV6_MAX_BYTELEN);
2821 }
2822 } break;
2823 case SAFI_MPLS_VPN: {
2824 if (attr->mp_nexthop_len
2825 == BGP_ATTR_NHLEN_IPV6_GLOBAL) {
2826 stream_putc(s, 24);
2827 stream_putl(s, 0); /* RD = 0, per RFC */
2828 stream_putl(s, 0);
2829 stream_put(s, &attr->mp_nexthop_global,
2830 IPV6_MAX_BYTELEN);
2831 } else if (attr->mp_nexthop_len
2832 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL) {
2833 stream_putc(s, 48);
2834 stream_putl(s, 0); /* RD = 0, per RFC */
2835 stream_putl(s, 0);
2836 stream_put(s, &attr->mp_nexthop_global,
2837 IPV6_MAX_BYTELEN);
2838 stream_putl(s, 0); /* RD = 0, per RFC */
2839 stream_putl(s, 0);
2840 stream_put(s, &attr->mp_nexthop_local,
2841 IPV6_MAX_BYTELEN);
2842 }
2843 } break;
2844 case SAFI_ENCAP:
2845 stream_putc(s, IPV6_MAX_BYTELEN);
2846 stream_put(s, &attr->mp_nexthop_global,
2847 IPV6_MAX_BYTELEN);
2848 break;
7c40bf39 2849 case SAFI_FLOWSPEC:
2850 stream_putc(s, 0); /* no nexthop for flowspec */
d62a17ae 2851 default:
2852 break;
2853 }
2854 break;
8c71e481 2855 default:
a83da8e1 2856 if (safi != SAFI_FLOWSPEC)
af4c2728 2857 flog_err(
e50f7cfd 2858 EC_BGP_ATTR_NH_SEND_LEN,
14454c9f
DS		 2859 "Bad nexthop when sending to %s, AFI %u SAFI %u nhlen %d",
2860 peer->host, afi, safi, attr->mp_nexthop_len);
d62a17ae 2861 break;
2862 }
2863
2864 /* SNPA */
2865 stream_putc(s, 0);
2866 return sizep;
2867}
2868
2869void bgp_packet_mpattr_prefix(struct stream *s, afi_t afi, safi_t safi,
2870 struct prefix *p, struct prefix_rd *prd,
d7c0a89a
QY		 2871 mpls_label_t *label, uint32_t num_labels,
2872 int addpath_encode, uint32_t addpath_tx_id,
b57ba6d2 2873 struct attr *attr)
d62a17ae 2874{
2875 if (safi == SAFI_MPLS_VPN) {
2876 if (addpath_encode)
2877 stream_putl(s, addpath_tx_id);
2878 /* Label, RD, Prefix write. */
2879 stream_putc(s, p->prefixlen + 88);
2880 stream_put(s, label, BGP_LABEL_BYTES);
2881 stream_put(s, prd->val, 8);
2882 stream_put(s, &p->u.prefix, PSIZE(p->prefixlen));
2883 } else if (afi == AFI_L2VPN && safi == SAFI_EVPN) {
2884 /* EVPN prefix - contents depend on type */
996c9314
LB		 2885 bgp_evpn_encode_prefix(s, p, prd, label, num_labels, attr,
2886 addpath_encode, addpath_tx_id);
d62a17ae 2887 } else if (safi == SAFI_LABELED_UNICAST) {
2888 /* Prefix write with label. */
2889 stream_put_labeled_prefix(s, p, label);
7c40bf39 2890 } else if (safi == SAFI_FLOWSPEC) {
2891 if (PSIZE (p->prefixlen)+2 < FLOWSPEC_NLRI_SIZELIMIT)
2892 stream_putc(s, PSIZE (p->prefixlen)+2);
2893 else
2894 stream_putw(s, (PSIZE (p->prefixlen)+2)|(0xf<<12));
2895 stream_putc(s, 2);/* Filter type */
2896 stream_putc(s, p->prefixlen);/* Prefix length */
2897 stream_put(s, &p->u.prefix, PSIZE (p->prefixlen));
d62a17ae 2898 } else
2899 stream_put_prefix_addpath(s, p, addpath_encode, addpath_tx_id);
2900}
2901
2902size_t bgp_packet_mpattr_prefix_size(afi_t afi, safi_t safi, struct prefix *p)
2903{
2904 int size = PSIZE(p->prefixlen);
2905 if (safi == SAFI_MPLS_VPN)
2906 size += 88;
2907 else if (afi == AFI_L2VPN && safi == SAFI_EVPN)
2908 size += 232; // TODO: Maximum possible for type-2, type-3 and
2909 // type-5
2910 return size;
8c71e481
PM		 2911}
2912
f4c89855 2913/*
65efcfce 2914 * Encodes the tunnel encapsulation attribute,
d62a17ae 2915 * and with ENABLE_BGP_VNC the VNC attribute which uses
65efcfce 2916 * almost the same TLV format
f4c89855 2917 */
d62a17ae 2918static void bgp_packet_mpattr_tea(struct bgp *bgp, struct peer *peer,
2919 struct stream *s, struct attr *attr,
2920 uint8_t attrtype)
2921{
2922 unsigned int attrlenfield = 0;
2923 unsigned int attrhdrlen = 0;
2924 struct bgp_attr_encap_subtlv *subtlvs;
2925 struct bgp_attr_encap_subtlv *st;
2926 const char *attrname;
2927
9d303b37
DL		 2928 if (!attr || (attrtype == BGP_ATTR_ENCAP
2929 && (!attr->encap_tunneltype
2930 || attr->encap_tunneltype == BGP_ENCAP_TYPE_MPLS)))
d62a17ae 2931 return;
2932
2933 switch (attrtype) {
f4c89855 2934 case BGP_ATTR_ENCAP:
d62a17ae 2935 attrname = "Tunnel Encap";
2936 subtlvs = attr->encap_subtlvs;
2937 if (subtlvs == NULL) /* nothing to do */
2938 return;
2939 /*
2940 * The tunnel encap attr has an "outer" tlv.
2941 * T = tunneltype,
2942 * L = total length of subtlvs,
2943 * V = concatenated subtlvs.
2944 */
2945 attrlenfield = 2 + 2; /* T + L */
2946 attrhdrlen = 1 + 1; /* subTLV T + L */
2947 break;
f4c89855 2948
65efcfce
LB		 2949#if ENABLE_BGP_VNC
2950 case BGP_ATTR_VNC:
d62a17ae 2951 attrname = "VNC";
2952 subtlvs = attr->vnc_subtlvs;
2953 if (subtlvs == NULL) /* nothing to do */
2954 return;
2955 attrlenfield = 0; /* no outer T + L */
2956 attrhdrlen = 2 + 2; /* subTLV T + L */
2957 break;
65efcfce
LB		 2958#endif
2959
f4c89855 2960 default:
d62a17ae 2961 assert(0);
2962 }
2963
2964 /* compute attr length */
2965 for (st = subtlvs; st; st = st->next) {
2966 attrlenfield += (attrhdrlen + st->length);
2967 }
2968
2969 if (attrlenfield > 0xffff) {
2970 zlog_info("%s attribute is too long (length=%d), can't send it",
2971 attrname, attrlenfield);
2972 return;
2973 }
2974
2975 if (attrlenfield > 0xff) {
2976 /* 2-octet length field */
996c9314
LB		 2977 stream_putc(s,
2978 BGP_ATTR_FLAG_TRANS | BGP_ATTR_FLAG_OPTIONAL
2979 | BGP_ATTR_FLAG_EXTLEN);
d62a17ae 2980 stream_putc(s, attrtype);
2981 stream_putw(s, attrlenfield & 0xffff);
2982 } else {
2983 /* 1-octet length field */
2984 stream_putc(s, BGP_ATTR_FLAG_TRANS | BGP_ATTR_FLAG_OPTIONAL);
2985 stream_putc(s, attrtype);
2986 stream_putc(s, attrlenfield & 0xff);
2987 }
2988
2989 if (attrtype == BGP_ATTR_ENCAP) {
2990 /* write outer T+L */
2991 stream_putw(s, attr->encap_tunneltype);
2992 stream_putw(s, attrlenfield - 4);
2993 }
2994
2995 /* write each sub-tlv */
2996 for (st = subtlvs; st; st = st->next) {
2997 if (attrtype == BGP_ATTR_ENCAP) {
2998 stream_putc(s, st->type);
2999 stream_putc(s, st->length);
65efcfce 3000#if ENABLE_BGP_VNC
d62a17ae 3001 } else {
3002 stream_putw(s, st->type);
3003 stream_putw(s, st->length);
65efcfce 3004#endif
d62a17ae 3005 }
3006 stream_put(s, st->value, st->length);
3007 }
f4c89855 3008}
f4c89855 3009
d62a17ae 3010void bgp_packet_mpattr_end(struct stream *s, size_t sizep)
8c71e481 3011{
d62a17ae 3012 /* Set MP attribute length. Don't count the (2) bytes used to encode
3013 the attr length */
3014 stream_putw_at(s, sizep, (stream_get_endp(s) - sizep) - 2);
8c71e481
PM		 3015}
3016
718e3744 3017/* Make attribute packet. */
d62a17ae 3018bgp_size_t bgp_packet_attribute(struct bgp *bgp, struct peer *peer,
3019 struct stream *s, struct attr *attr,
3020 struct bpacket_attr_vec_arr *vecarr,
3021 struct prefix *p, afi_t afi, safi_t safi,
3022 struct peer *from, struct prefix_rd *prd,
d7c0a89a
QY		 3023 mpls_label_t *label, uint32_t num_labels,
3024 int addpath_encode, uint32_t addpath_tx_id)
d62a17ae 3025{
3026 size_t cp;
3027 size_t aspath_sizep;
3028 struct aspath *aspath;
3029 int send_as4_path = 0;
3030 int send_as4_aggregator = 0;
3031 int use32bit = (CHECK_FLAG(peer->cap, PEER_CAP_AS4_RCV)) ? 1 : 0;
3032
3033 if (!bgp)
3034 bgp = peer->bgp;
3035
3036 /* Remember current pointer. */
3037 cp = stream_get_endp(s);
3038
3039 if (p
3040 && !((afi == AFI_IP && safi == SAFI_UNICAST)
3041 && !peer_cap_enhe(peer, afi, safi))) {
3042 size_t mpattrlen_pos = 0;
3043
3044 mpattrlen_pos = bgp_packet_mpattr_start(s, peer, afi, safi,
3045 vecarr, attr);
996c9314
LB		 3046 bgp_packet_mpattr_prefix(s, afi, safi, p, prd, label,
3047 num_labels, addpath_encode,
3048 addpath_tx_id, attr);
d62a17ae 3049 bgp_packet_mpattr_end(s, mpattrlen_pos);
718e3744 3050 }
d62a17ae 3051
3052 /* Origin attribute. */
3053 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3054 stream_putc(s, BGP_ATTR_ORIGIN);
3055 stream_putc(s, 1);
3056 stream_putc(s, attr->origin);
3057
3058 /* AS path attribute. */
3059
3060 /* If remote-peer is EBGP */
3061 if (peer->sort == BGP_PEER_EBGP
3062 && (!CHECK_FLAG(peer->af_flags[afi][safi],
3063 PEER_FLAG_AS_PATH_UNCHANGED)
3064 || attr->aspath->segments == NULL)
3065 && (!CHECK_FLAG(peer->af_flags[afi][safi],
3066 PEER_FLAG_RSERVER_CLIENT))) {
3067 aspath = aspath_dup(attr->aspath);
3068
3069 /* Even though we may not be configured for confederations we
3070 * may have
3071 * RXed an AS_PATH with AS_CONFED_SEQUENCE or AS_CONFED_SET */
3072 aspath = aspath_delete_confed_seq(aspath);
3073
3074 if (CHECK_FLAG(bgp->config, BGP_CONFIG_CONFEDERATION)) {
3075 /* Stuff our path CONFED_ID on the front */
3076 aspath = aspath_add_seq(aspath, bgp->confed_id);
3077 } else {
3078 if (peer->change_local_as) {
3079 /* If replace-as is specified, we only use the
3080 change_local_as when
3081 advertising routes. */
3082 if (!CHECK_FLAG(
3083 peer->flags,
3084 PEER_FLAG_LOCAL_AS_REPLACE_AS)) {
3085 aspath = aspath_add_seq(aspath,
3086 peer->local_as);
3087 }
3088 aspath = aspath_add_seq(aspath,
3089 peer->change_local_as);
3090 } else {
3091 aspath = aspath_add_seq(aspath, peer->local_as);
3092 }
3093 }
3094 } else if (peer->sort == BGP_PEER_CONFED) {
3095 /* A confed member, so we need to do the AS_CONFED_SEQUENCE
3096 * thing */
3097 aspath = aspath_dup(attr->aspath);
3098 aspath = aspath_add_confed_seq(aspath, peer->local_as);
3099 } else
3100 aspath = attr->aspath;
3101
3102 /* If peer is not AS4 capable, then:
3103 * - send the created AS_PATH out as AS4_PATH (optional, transitive),
3104 * but ensure that no AS_CONFED_SEQUENCE and AS_CONFED_SET path
3105 * segment
3106 * types are in it (i.e. exclude them if they are there)
3107 * AND do this only if there is at least one asnum > 65535 in the
3108 * path!
3109 * - send an AS_PATH out, but put 16Bit ASnums in it, not 32bit, and
3110 * change
3111 * all ASnums > 65535 to BGP_AS_TRANS
3112 */
3113
3114 stream_putc(s, BGP_ATTR_FLAG_TRANS | BGP_ATTR_FLAG_EXTLEN);
3115 stream_putc(s, BGP_ATTR_AS_PATH);
3116 aspath_sizep = stream_get_endp(s);
3117 stream_putw(s, 0);
3118 stream_putw_at(s, aspath_sizep, aspath_put(s, aspath, use32bit));
3119
3120 /* OLD session may need NEW_AS_PATH sent, if there are 4-byte ASNs
3121 * in the path
3122 */
3123 if (!use32bit && aspath_has_as4(aspath))
3124 send_as4_path =
3125 1; /* we'll do this later, at the correct place */
3126
3127 /* Nexthop attribute. */
3128 if (afi == AFI_IP && safi == SAFI_UNICAST
3129 && !peer_cap_enhe(peer, afi, safi)) {
3130 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP)) {
3131 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3132 stream_putc(s, BGP_ATTR_NEXT_HOP);
3133 bpacket_attr_vec_arr_set_vec(vecarr, BGP_ATTR_VEC_NH, s,
3134 attr);
3135 stream_putc(s, 4);
3136 stream_put_ipv4(s, attr->nexthop.s_addr);
3137 } else if (peer_cap_enhe(from, afi, safi)) {
3138 /*
3139 * Likely this is the case when an IPv4 prefix was
3140 * received with
3141 * Extended Next-hop capability and now being advertised
3142 * to
3143 * non-ENHE peers.
3144 * Setting the mandatory (ipv4) next-hop attribute here
3145 * to enable
3146 * implicit next-hop self with correct (ipv4 address
3147 * family).
3148 */
3149 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3150 stream_putc(s, BGP_ATTR_NEXT_HOP);
3151 bpacket_attr_vec_arr_set_vec(vecarr, BGP_ATTR_VEC_NH, s,
3152 NULL);
3153 stream_putc(s, 4);
3154 stream_put_ipv4(s, 0);
3155 }
718e3744 3156 }
d62a17ae 3157
3158 /* MED attribute. */
3159 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC)
3160 || bgp->maxmed_active) {
3161 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL);
3162 stream_putc(s, BGP_ATTR_MULTI_EXIT_DISC);
3163 stream_putc(s, 4);
3164 stream_putl(s, (bgp->maxmed_active ? bgp->maxmed_value
3165 : attr->med));
3166 }
3167
3168 /* Local preference. */
3169 if (peer->sort == BGP_PEER_IBGP || peer->sort == BGP_PEER_CONFED) {
3170 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3171 stream_putc(s, BGP_ATTR_LOCAL_PREF);
3172 stream_putc(s, 4);
3173 stream_putl(s, attr->local_pref);
3174 }
3175
3176 /* Atomic aggregate. */
3177 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE)) {
3178 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3179 stream_putc(s, BGP_ATTR_ATOMIC_AGGREGATE);
3180 stream_putc(s, 0);
3181 }
3182
3183 /* Aggregator. */
3184 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR)) {
3185 /* Common to BGP_ATTR_AGGREGATOR, regardless of ASN size */
3186 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS);
3187 stream_putc(s, BGP_ATTR_AGGREGATOR);
3188
3189 if (use32bit) {
3190 /* AS4 capable peer */
3191 stream_putc(s, 8);
3192 stream_putl(s, attr->aggregator_as);
3193 } else {
3194 /* 2-byte AS peer */
3195 stream_putc(s, 6);
3196
3197 /* Is ASN representable in 2-bytes? Or must AS_TRANS be
3198 * used? */
3199 if (attr->aggregator_as > 65535) {
3200 stream_putw(s, BGP_AS_TRANS);
3201
3202 /* we have to send AS4_AGGREGATOR, too.
3203 * we'll do that later in order to send
3204 * attributes in ascending
3205 * order.
3206 */
3207 send_as4_aggregator = 1;
3208 } else
d7c0a89a 3209 stream_putw(s, (uint16_t)attr->aggregator_as);
d62a17ae 3210 }
3211 stream_put_ipv4(s, attr->aggregator_addr.s_addr);
3212 }
3213
3214 /* Community attribute. */
3215 if (CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_SEND_COMMUNITY)
3216 && (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES))) {
3217 if (attr->community->size * 4 > 255) {
996c9314
LB		 3218 stream_putc(s,
3219 BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS
3220 | BGP_ATTR_FLAG_EXTLEN);
d62a17ae 3221 stream_putc(s, BGP_ATTR_COMMUNITIES);
3222 stream_putw(s, attr->community->size * 4);
3223 } else {
996c9314
LB		 3224 stream_putc(s,
3225 BGP_ATTR_FLAG_OPTIONAL
3226 | BGP_ATTR_FLAG_TRANS);
d62a17ae 3227 stream_putc(s, BGP_ATTR_COMMUNITIES);
3228 stream_putc(s, attr->community->size * 4);
4372df71 3229 }
d62a17ae 3230 stream_put(s, attr->community->val, attr->community->size * 4);
3231 }
3232
3233 /*
3234 * Large Community attribute.
3235 */
3236 if (CHECK_FLAG(peer->af_flags[afi][safi],
3237 PEER_FLAG_SEND_LARGE_COMMUNITY)
3238 && (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES))) {
79dab4b7 3239 if (lcom_length(attr->lcommunity) > 255) {
996c9314
LB		 3240 stream_putc(s,
3241 BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS
3242 | BGP_ATTR_FLAG_EXTLEN);
d62a17ae 3243 stream_putc(s, BGP_ATTR_LARGE_COMMUNITIES);
79dab4b7 3244 stream_putw(s, lcom_length(attr->lcommunity));
d62a17ae 3245 } else {
996c9314
LB		 3246 stream_putc(s,
3247 BGP_ATTR_FLAG_OPTIONAL
3248 | BGP_ATTR_FLAG_TRANS);
d62a17ae 3249 stream_putc(s, BGP_ATTR_LARGE_COMMUNITIES);
79dab4b7 3250 stream_putc(s, lcom_length(attr->lcommunity));
4372df71 3251 }
d62a17ae 3252 stream_put(s, attr->lcommunity->val,
79dab4b7 3253 lcom_length(attr->lcommunity));
d62a17ae 3254 }
4372df71 3255
d62a17ae 3256 /* Route Reflector. */
3257 if (peer->sort == BGP_PEER_IBGP && from
3258 && from->sort == BGP_PEER_IBGP) {
3259 /* Originator ID. */
3260 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL);
3261 stream_putc(s, BGP_ATTR_ORIGINATOR_ID);
3262 stream_putc(s, 4);
3263
3264 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID))
3265 stream_put_in_addr(s, &attr->originator_id);
3266 else
3267 stream_put_in_addr(s, &from->remote_id);
3268
3269 /* Cluster list. */
3270 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL);
3271 stream_putc(s, BGP_ATTR_CLUSTER_LIST);
3272
3273 if (attr->cluster) {
3274 stream_putc(s, attr->cluster->length + 4);
3275 /* If this peer configuration's parent BGP has
3276 * cluster_id. */
3277 if (bgp->config & BGP_CONFIG_CLUSTER_ID)
3278 stream_put_in_addr(s, &bgp->cluster_id);
3279 else
3280 stream_put_in_addr(s, &bgp->router_id);
3281 stream_put(s, attr->cluster->list,
3282 attr->cluster->length);
3283 } else {
3284 stream_putc(s, 4);
3285 /* If this peer configuration's parent BGP has
3286 * cluster_id. */
3287 if (bgp->config & BGP_CONFIG_CLUSTER_ID)
3288 stream_put_in_addr(s, &bgp->cluster_id);
3289 else
3290 stream_put_in_addr(s, &bgp->router_id);
3291 }
3292 }
4372df71 3293
d62a17ae 3294 /* Extended Communities attribute. */
3295 if (CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_SEND_EXT_COMMUNITY)
3296 && (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES))) {
3297 if (peer->sort == BGP_PEER_IBGP
3298 || peer->sort == BGP_PEER_CONFED) {
3299 if (attr->ecommunity->size * 8 > 255) {
996c9314
LB		 3300 stream_putc(s,
3301 BGP_ATTR_FLAG_OPTIONAL
3302 | BGP_ATTR_FLAG_TRANS
3303 | BGP_ATTR_FLAG_EXTLEN);
d62a17ae 3304 stream_putc(s, BGP_ATTR_EXT_COMMUNITIES);
3305 stream_putw(s, attr->ecommunity->size * 8);
3306 } else {
996c9314
LB		 3307 stream_putc(s,
3308 BGP_ATTR_FLAG_OPTIONAL
3309 | BGP_ATTR_FLAG_TRANS);
d62a17ae 3310 stream_putc(s, BGP_ATTR_EXT_COMMUNITIES);
3311 stream_putc(s, attr->ecommunity->size * 8);
3312 }
3313 stream_put(s, attr->ecommunity->val,
3314 attr->ecommunity->size * 8);
3315 } else {
d7c0a89a 3316 uint8_t *pnt;
d62a17ae 3317 int tbit;
3318 int ecom_tr_size = 0;
3319 int i;
3320
3321 for (i = 0; i < attr->ecommunity->size; i++) {
3322 pnt = attr->ecommunity->val + (i * 8);
3323 tbit = *pnt;
3324
3325 if (CHECK_FLAG(tbit,
3326 ECOMMUNITY_FLAG_NON_TRANSITIVE))
3327 continue;
3328
3329 ecom_tr_size++;
3330 }
3331
3332 if (ecom_tr_size) {
3333 if (ecom_tr_size * 8 > 255) {
3334 stream_putc(
3335 s,
3336 BGP_ATTR_FLAG_OPTIONAL
3337 | BGP_ATTR_FLAG_TRANS
3338 | BGP_ATTR_FLAG_EXTLEN);
3339 stream_putc(s,
3340 BGP_ATTR_EXT_COMMUNITIES);
3341 stream_putw(s, ecom_tr_size * 8);
3342 } else {
3343 stream_putc(
3344 s,
3345 BGP_ATTR_FLAG_OPTIONAL
3346 | BGP_ATTR_FLAG_TRANS);
3347 stream_putc(s,
3348 BGP_ATTR_EXT_COMMUNITIES);
3349 stream_putc(s, ecom_tr_size * 8);
3350 }
3351
3352 for (i = 0; i < attr->ecommunity->size; i++) {
3353 pnt = attr->ecommunity->val + (i * 8);
3354 tbit = *pnt;
3355
3356 if (CHECK_FLAG(
3357 tbit,
3358 ECOMMUNITY_FLAG_NON_TRANSITIVE))
3359 continue;
3360
3361 stream_put(s, pnt, 8);
3362 }
3363 }
3364 }
3365 }
4372df71 3366
d62a17ae 3367 /* Label index attribute. */
3368 if (safi == SAFI_LABELED_UNICAST) {
3369 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID)) {
d7c0a89a 3370 uint32_t label_index;
d62a17ae 3371
3372 label_index = attr->label_index;
3373
3374 if (label_index != BGP_INVALID_LABEL_INDEX) {
996c9314
LB		 3375 stream_putc(s,
3376 BGP_ATTR_FLAG_OPTIONAL
3377 | BGP_ATTR_FLAG_TRANS);
d62a17ae 3378 stream_putc(s, BGP_ATTR_PREFIX_SID);
3379 stream_putc(s, 10);
3380 stream_putc(s, BGP_PREFIX_SID_LABEL_INDEX);
3381 stream_putw(s,
3382 BGP_PREFIX_SID_LABEL_INDEX_LENGTH);
3383 stream_putc(s, 0); // reserved
3384 stream_putw(s, 0); // flags
3385 stream_putl(s, label_index);
3386 }
4372df71 3387 }
d62a17ae 3388 }
3389
3390 if (send_as4_path) {
3391 /* If the peer is NOT As4 capable, AND */
3392 /* there are ASnums > 65535 in path THEN
3393 * give out AS4_PATH */
3394
3395 /* Get rid of all AS_CONFED_SEQUENCE and AS_CONFED_SET
3396 * path segments!
3397 * Hm, I wonder... confederation things *should* only be at
3398 * the beginning of an aspath, right? Then we should use
3399 * aspath_delete_confed_seq for this, because it is already
3400 * there! (JK)
3401 * Folks, talk to me: what is reasonable here!?
3402 */
3403 aspath = aspath_delete_confed_seq(aspath);
3404
996c9314
LB		 3405 stream_putc(s,
3406 BGP_ATTR_FLAG_TRANS | BGP_ATTR_FLAG_OPTIONAL
3407 | BGP_ATTR_FLAG_EXTLEN);
d62a17ae 3408 stream_putc(s, BGP_ATTR_AS4_PATH);
3409 aspath_sizep = stream_get_endp(s);
3410 stream_putw(s, 0);
3411 stream_putw_at(s, aspath_sizep, aspath_put(s, aspath, 1));
3412 }
3413
3414 if (aspath != attr->aspath)
3415 aspath_free(aspath);
3416
3417 if (send_as4_aggregator) {
3418 /* send AS4_AGGREGATOR, at this place */
3419 /* this section of code moved here in order to ensure the
3420 * correct
3421 * *ascending* order of attributes
3422 */
3423 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS);
3424 stream_putc(s, BGP_ATTR_AS4_AGGREGATOR);
3425 stream_putc(s, 8);
3426 stream_putl(s, attr->aggregator_as);
3427 stream_put_ipv4(s, attr->aggregator_addr.s_addr);
3428 }
3429
3430 if (((afi == AFI_IP || afi == AFI_IP6)
3431 && (safi == SAFI_ENCAP || safi == SAFI_MPLS_VPN))
3432 || (afi == AFI_L2VPN && safi == SAFI_EVPN)) {
3433 /* Tunnel Encap attribute */
3434 bgp_packet_mpattr_tea(bgp, peer, s, attr, BGP_ATTR_ENCAP);
65efcfce
LB		 3435
3436#if ENABLE_BGP_VNC
d62a17ae 3437 /* VNC attribute */
3438 bgp_packet_mpattr_tea(bgp, peer, s, attr, BGP_ATTR_VNC);
65efcfce 3439#endif
d62a17ae 3440 }
587ff0fd 3441
a21bd7a3
DW		 3442 /* PMSI Tunnel */
3443 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL)) {
3444 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS);
3445 stream_putc(s, BGP_ATTR_PMSI_TUNNEL);
3446 stream_putc(s, 9); // Length
3447 stream_putc(s, 0); // Flags
7fd077aa 3448 stream_putc(s, PMSI_TNLTYPE_INGR_REPL); // IR (6)
996c9314
LB		 3449 stream_put(s, &(attr->label),
3450 BGP_LABEL_BYTES); // MPLS Label / VXLAN VNI
30d85a30
LB		 3451 stream_put_ipv4(s, attr->nexthop.s_addr);
3452 // Unicast tunnel endpoint IP address
a21bd7a3
DW		 3453 }
3454
d62a17ae 3455 /* Unknown transit attribute. */
3456 if (attr->transit)
3457 stream_put(s, attr->transit->val, attr->transit->length);
718e3744 3458
d62a17ae 3459 /* Return total size of attribute. */
3460 return stream_get_endp(s) - cp;
718e3744 3461}
3462
d62a17ae 3463size_t bgp_packet_mpunreach_start(struct stream *s, afi_t afi, safi_t safi)
718e3744 3464{
d62a17ae 3465 unsigned long attrlen_pnt;
3466 iana_afi_t pkt_afi;
5c525538 3467 iana_safi_t pkt_safi;
718e3744 3468
d62a17ae 3469 /* Set extended bit always to encode the attribute length as 2 bytes */
3470 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_EXTLEN);
3471 stream_putc(s, BGP_ATTR_MP_UNREACH_NLRI);
718e3744 3472
d62a17ae 3473 attrlen_pnt = stream_get_endp(s);
3474 stream_putw(s, 0); /* Length of this attribute. */
718e3744 3475
d62a17ae 3476 /* Convert AFI, SAFI to values for packet. */
3477 bgp_map_afi_safi_int2iana(afi, safi, &pkt_afi, &pkt_safi);
9cabb64b 3478
d62a17ae 3479 stream_putw(s, pkt_afi);
3480 stream_putc(s, pkt_safi);
9cabb64b 3481
d62a17ae 3482 return attrlen_pnt;
8c71e481 3483}
718e3744 3484
d62a17ae 3485void bgp_packet_mpunreach_prefix(struct stream *s, struct prefix *p, afi_t afi,
3486 safi_t safi, struct prefix_rd *prd,
d7c0a89a
QY		 3487 mpls_label_t *label, uint32_t num_labels,
3488 int addpath_encode, uint32_t addpath_tx_id,
b57ba6d2 3489 struct attr *attr)
8c71e481 3490{
d7c0a89a 3491 uint8_t wlabel[3] = {0x80, 0x00, 0x00};
cd1964ff 3492
b57ba6d2 3493 if (safi == SAFI_LABELED_UNICAST) {
d62a17ae 3494 label = (mpls_label_t *)wlabel;
b57ba6d2
MK		 3495 num_labels = 1;
3496 }
cd1964ff 3497
d90b788e
A		 3498 bgp_packet_mpattr_prefix(s, afi, safi, p, prd, label, num_labels,
3499 addpath_encode, addpath_tx_id, attr);
8c71e481 3500}
718e3744 3501
d62a17ae 3502void bgp_packet_mpunreach_end(struct stream *s, size_t attrlen_pnt)
8c71e481 3503{
d62a17ae 3504 bgp_packet_mpattr_end(s, attrlen_pnt);
718e3744 3505}
3506
3507/* Initialization of attribute. */
d62a17ae 3508void bgp_attr_init(void)
718e3744 3509{
d62a17ae 3510 aspath_init();
3511 attrhash_init();
3512 community_init();
3513 ecommunity_init();
3514 lcommunity_init();
3515 cluster_init();
3516 transit_init();
3517 encap_init();
718e3744 3518}
3519
d62a17ae 3520void bgp_attr_finish(void)
228da428 3521{
d62a17ae 3522 aspath_finish();
3523 attrhash_finish();
3524 community_finish();
3525 ecommunity_finish();
3526 lcommunity_finish();
3527 cluster_finish();
3528 transit_finish();
3529 encap_finish();
228da428
CC		 3530}
3531
718e3744 3532/* Make attribute packet. */
d62a17ae 3533void bgp_dump_routes_attr(struct stream *s, struct attr *attr,
3534 struct prefix *prefix)
3535{
3536 unsigned long cp;
3537 unsigned long len;
3538 size_t aspath_lenp;
3539 struct aspath *aspath;
3540 int addpath_encode = 0;
d7c0a89a 3541 uint32_t addpath_tx_id = 0;
d62a17ae 3542
3543 /* Remember current pointer. */
3544 cp = stream_get_endp(s);
3545
3546 /* Place holder of length. */
3547 stream_putw(s, 0);
3548
3549 /* Origin attribute. */
3550 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3551 stream_putc(s, BGP_ATTR_ORIGIN);
3552 stream_putc(s, 1);
3553 stream_putc(s, attr->origin);
3554
3555 aspath = attr->aspath;
3556
3557 stream_putc(s, BGP_ATTR_FLAG_TRANS | BGP_ATTR_FLAG_EXTLEN);
3558 stream_putc(s, BGP_ATTR_AS_PATH);
3559 aspath_lenp = stream_get_endp(s);
3560 stream_putw(s, 0);
3561
3562 stream_putw_at(s, aspath_lenp, aspath_put(s, aspath, 1));
3563
3564 /* Nexthop attribute. */
3565 /* If it's an IPv6 prefix, don't dump the IPv4 nexthop to save space */
3566 if (prefix != NULL && prefix->family != AF_INET6) {
3567 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3568 stream_putc(s, BGP_ATTR_NEXT_HOP);
3569 stream_putc(s, 4);
3570 stream_put_ipv4(s, attr->nexthop.s_addr);
718e3744 3571 }
d62a17ae 3572
3573 /* MED attribute. */
3574 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC)) {
3575 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL);
3576 stream_putc(s, BGP_ATTR_MULTI_EXIT_DISC);
3577 stream_putc(s, 4);
3578 stream_putl(s, attr->med);
3579 }
3580
3581 /* Local preference. */
3582 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF)) {
3583 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3584 stream_putc(s, BGP_ATTR_LOCAL_PREF);
3585 stream_putc(s, 4);
3586 stream_putl(s, attr->local_pref);
3587 }
3588
3589 /* Atomic aggregate. */
3590 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE)) {
3591 stream_putc(s, BGP_ATTR_FLAG_TRANS);
3592 stream_putc(s, BGP_ATTR_ATOMIC_AGGREGATE);
3593 stream_putc(s, 0);
3594 }
3595
3596 /* Aggregator. */
3597 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR)) {
3598 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS);
3599 stream_putc(s, BGP_ATTR_AGGREGATOR);
3600 stream_putc(s, 8);
3601 stream_putl(s, attr->aggregator_as);
3602 stream_put_ipv4(s, attr->aggregator_addr.s_addr);
3603 }
3604
3605 /* Community attribute. */
3606 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES)) {
3607 if (attr->community->size * 4 > 255) {
996c9314
LB		 3608 stream_putc(s,
3609 BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS
3610 | BGP_ATTR_FLAG_EXTLEN);
d62a17ae 3611 stream_putc(s, BGP_ATTR_COMMUNITIES);
3612 stream_putw(s, attr->community->size * 4);
3613 } else {
996c9314
LB		 3614 stream_putc(s,
3615 BGP_ATTR_FLAG_OPTIONAL
3616 | BGP_ATTR_FLAG_TRANS);
d62a17ae 3617 stream_putc(s, BGP_ATTR_COMMUNITIES);
3618 stream_putc(s, attr->community->size * 4);
3619 }
3620 stream_put(s, attr->community->val, attr->community->size * 4);
3621 }
3622
3623 /* Large Community attribute. */
3624 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES)) {
79dab4b7 3625 if (lcom_length(attr->lcommunity) > 255) {
996c9314
LB		 3626 stream_putc(s,
3627 BGP_ATTR_FLAG_OPTIONAL | BGP_ATTR_FLAG_TRANS
3628 | BGP_ATTR_FLAG_EXTLEN);
d62a17ae 3629 stream_putc(s, BGP_ATTR_LARGE_COMMUNITIES);
79dab4b7 3630 stream_putw(s, lcom_length(attr->lcommunity));
d62a17ae 3631 } else {
996c9314
LB		 3632 stream_putc(s,
3633 BGP_ATTR_FLAG_OPTIONAL
3634 | BGP_ATTR_FLAG_TRANS);
d62a17ae 3635 stream_putc(s, BGP_ATTR_LARGE_COMMUNITIES);
79dab4b7 3636 stream_putc(s, lcom_length(attr->lcommunity));
d62a17ae 3637 }
3638
996c9314
LB		 3639 stream_put(s, attr->lcommunity->val,
3640 lcom_length(attr->lcommunity));
d62a17ae 3641 }
3642
3643 /* Add a MP_NLRI attribute to dump the IPv6 next hop */
3644 if (prefix != NULL && prefix->family == AF_INET6
3645 && (attr->mp_nexthop_len == BGP_ATTR_NHLEN_IPV6_GLOBAL
3646 || attr->mp_nexthop_len == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL)) {
3647 int sizep;
3648
3649 stream_putc(s, BGP_ATTR_FLAG_OPTIONAL);
3650 stream_putc(s, BGP_ATTR_MP_REACH_NLRI);
3651 sizep = stream_get_endp(s);
3652
3653 /* MP header */
3654 stream_putc(s, 0); /* Marker: Attribute length. */
3655 stream_putw(s, AFI_IP6); /* AFI */
3656 stream_putc(s, SAFI_UNICAST); /* SAFI */
3657
3658 /* Next hop */
3659 stream_putc(s, attr->mp_nexthop_len);
3660 stream_put(s, &attr->mp_nexthop_global, IPV6_MAX_BYTELEN);
3661 if (attr->mp_nexthop_len == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL)
3662 stream_put(s, &attr->mp_nexthop_local,
3663 IPV6_MAX_BYTELEN);
3664
3665 /* SNPA */
3666 stream_putc(s, 0);
3667
3668 /* Prefix */
3669 stream_put_prefix_addpath(s, prefix, addpath_encode,
3670 addpath_tx_id);
3671
3672 /* Set MP attribute length. */
3673 stream_putc_at(s, sizep, (stream_get_endp(s) - sizep) - 1);
3674 }
3675
3676 /* Prefix SID */
3677 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID)) {
3678 if (attr->label_index != BGP_INVALID_LABEL_INDEX) {
996c9314
LB		 3679 stream_putc(s,
3680 BGP_ATTR_FLAG_OPTIONAL
3681 | BGP_ATTR_FLAG_TRANS);
d62a17ae 3682 stream_putc(s, BGP_ATTR_PREFIX_SID);
3683 stream_putc(s, 10);
3684 stream_putc(s, BGP_PREFIX_SID_LABEL_INDEX);
3685 stream_putc(s, BGP_PREFIX_SID_LABEL_INDEX_LENGTH);
3686 stream_putc(s, 0); // reserved
3687 stream_putw(s, 0); // flags
3688 stream_putl(s, attr->label_index);
3689 }
3690 }
3691
3692 /* Return total size of attribute. */
3693 len = stream_get_endp(s) - cp - 2;
3694 stream_putw_at(s, cp, len);
718e3744 3695}
FRRouting mirror