[mirror_frr.git] / bgpd / bgp_io.c

// SPDX-License-Identifier: GPL-2.0-or-later
/* BGP I/O.
 * Implements packet I/O in a pthread.
 * Copyright (C) 2017  Cumulus Networks
 * Quentin Young
 */

/* clang-format off */
#include <zebra.h>
#include <pthread.h>		// for pthread_mutex_unlock, pthread_mutex_lock
#include <sys/uio.h>		// for writev

#include "frr_pthread.h"
#include "linklist.h"		// for list_delete, list_delete_all_node, lis...
#include "log.h"		// for zlog_debug, safe_strerror, zlog_err
#include "memory.h"		// for MTYPE_TMP, XCALLOC, XFREE
#include "network.h"		// for ERRNO_IO_RETRY
#include "stream.h"		// for stream_get_endp, stream_getw_from, str...
#include "ringbuf.h"		// for ringbuf_remain, ringbuf_peek, ringbuf_...
#include "frrevent.h"		// for EVENT_OFF, EVENT_ARG, thread...

#include "bgpd/bgp_io.h"
#include "bgpd/bgp_debug.h"	// for bgp_debug_neighbor_events, bgp_type_str
#include "bgpd/bgp_errors.h"	// for expanded error reference information
#include "bgpd/bgp_fsm.h"	// for BGP_EVENT_ADD, bgp_event
#include "bgpd/bgp_packet.h"	// for bgp_notify_io_invalid...
#include "bgpd/bgp_trace.h"	// for frrtraces
#include "bgpd/bgpd.h"		// for peer, BGP_MARKER_SIZE, bgp_master, bm
/* clang-format on */

/* forward declarations */
static uint16_t bgp_write(struct peer *);
static uint16_t bgp_read(struct peer *peer, int *code_p);
static void bgp_process_writes(struct event *event);
static void bgp_process_reads(struct event *event);
static bool validate_header(struct peer *);

/* generic i/o status codes */
#define BGP_IO_TRANS_ERR (1 << 0) /* EAGAIN or similar occurred */
#define BGP_IO_FATAL_ERR (1 << 1) /* some kind of fatal TCP error */
#define BGP_IO_WORK_FULL_ERR (1 << 2) /* No room in work buffer */

/* Thread external API ----------------------------------------------------- */

void bgp_writes_on(struct peer *peer)
{
	struct frr_pthread *fpt = bgp_pth_io;
	assert(fpt->running);

	assert(peer->status != Deleted);
	assert(peer->obuf);
	assert(peer->ibuf);
	assert(peer->ibuf_work);
	assert(!peer->t_connect_check_r);
	assert(!peer->t_connect_check_w);
	assert(peer->fd);

	event_add_write(fpt->master, bgp_process_writes, peer, peer->fd,
			&peer->t_write);
	SET_FLAG(peer->thread_flags, PEER_THREAD_WRITES_ON);
}

void bgp_writes_off(struct peer *peer)
{
	struct frr_pthread *fpt = bgp_pth_io;
	assert(fpt->running);

	event_cancel_async(fpt->master, &peer->t_write, NULL);
	EVENT_OFF(peer->t_generate_updgrp_packets);

	UNSET_FLAG(peer->thread_flags, PEER_THREAD_WRITES_ON);
}

void bgp_reads_on(struct peer *peer)
{
	struct frr_pthread *fpt = bgp_pth_io;
	assert(fpt->running);

	assert(peer->status != Deleted);
	assert(peer->ibuf);
	assert(peer->fd);
	assert(peer->ibuf_work);
	assert(peer->obuf);
	assert(!peer->t_connect_check_r);
	assert(!peer->t_connect_check_w);
	assert(peer->fd);

	event_add_read(fpt->master, bgp_process_reads, peer, peer->fd,
		       &peer->t_read);

	SET_FLAG(peer->thread_flags, PEER_THREAD_READS_ON);
}

void bgp_reads_off(struct peer *peer)
{
	struct frr_pthread *fpt = bgp_pth_io;
	assert(fpt->running);

	event_cancel_async(fpt->master, &peer->t_read, NULL);
	EVENT_OFF(peer->t_process_packet);
	EVENT_OFF(peer->t_process_packet_error);

	UNSET_FLAG(peer->thread_flags, PEER_THREAD_READS_ON);
}

/* Thread internal functions ----------------------------------------------- */

/*
 * Called from I/O pthread when a file descriptor has become ready for writing.
 */
static void bgp_process_writes(struct event *thread)
{
	static struct peer *peer;
	peer = EVENT_ARG(thread);
	uint16_t status;
	bool reschedule;
	bool fatal = false;

	if (peer->fd < 0)
		return;

	struct frr_pthread *fpt = bgp_pth_io;

	frr_with_mutex (&peer->io_mtx) {
		status = bgp_write(peer);
		reschedule = (stream_fifo_head(peer->obuf) != NULL);
	}

	/* no problem */
	if (CHECK_FLAG(status, BGP_IO_TRANS_ERR)) {
	}

	/* problem */
	if (CHECK_FLAG(status, BGP_IO_FATAL_ERR)) {
		reschedule = false;
		fatal = true;
	}

	/* If suppress fib pending is enabled, route is advertised to peers when
	 * the status is received from the FIB. The delay is added
	 * to update group packet generate which will allow more routes to be
	 * sent in the update message
	 */
	if (reschedule) {
		event_add_write(fpt->master, bgp_process_writes, peer, peer->fd,
				&peer->t_write);
	} else if (!fatal) {
		BGP_UPDATE_GROUP_TIMER_ON(&peer->t_generate_updgrp_packets,
					  bgp_generate_updgrp_packets);
	}
}

static int read_ibuf_work(struct peer *peer)
{
	/* static buffer for transferring packets */
	/* shorter alias to peer's input buffer */
	struct ringbuf *ibw = peer->ibuf_work;
	/* packet size as given by header */
	uint16_t pktsize = 0;
	struct stream *pkt;

	/* ============================================== */
	frr_with_mutex (&peer->io_mtx) {
		if (peer->ibuf->count >= bm->inq_limit)
			return -ENOMEM;
	}

	/* check that we have enough data for a header */
	if (ringbuf_remain(ibw) < BGP_HEADER_SIZE)
		return 0;

	/* check that header is valid */
	if (!validate_header(peer))
		return -EBADMSG;

	/* header is valid; retrieve packet size */
	ringbuf_peek(ibw, BGP_MARKER_SIZE, &pktsize, sizeof(pktsize));

	pktsize = ntohs(pktsize);

	/* if this fails we are seriously screwed */
	assert(pktsize <= peer->max_packet_size);

	/*
	 * If we have that much data, chuck it into its own
	 * stream and append to input queue for processing.
	 *
	 * Otherwise, come back later.
	 */
	if (ringbuf_remain(ibw) < pktsize)
		return 0;

	pkt = stream_new(pktsize);
	assert(STREAM_WRITEABLE(pkt) == pktsize);
	assert(ringbuf_get(ibw, pkt->data, pktsize) == pktsize);
	stream_set_endp(pkt, pktsize);

	frrtrace(2, frr_bgp, packet_read, peer, pkt);
	frr_with_mutex (&peer->io_mtx) {
		stream_fifo_push(peer->ibuf, pkt);
	}

	return pktsize;
}

/*
 * Called from I/O pthread when a file descriptor has become ready for reading,
 * or has hung up.
 *
 * We read as much data as possible, process as many packets as we can and
 * place them on peer->ibuf for secondary processing by the main thread.
 */
static void bgp_process_reads(struct event *thread)
{
	/* clang-format off */
	static struct peer *peer;       /* peer to read from */
	uint16_t status;                /* bgp_read status code */
	bool fatal = false;             /* whether fatal error occurred */
	bool added_pkt = false;         /* whether we pushed onto ->ibuf */
	int code = 0;                   /* FSM code if error occurred */
	bool ibuf_full = false;         /* Is peer fifo IN Buffer full */
	static bool ibuf_full_logged;   /* Have we logged full already */
	int ret = 1;
	/* clang-format on */

	peer = EVENT_ARG(thread);

	if (peer->fd < 0 || bm->terminating)
		return;

	struct frr_pthread *fpt = bgp_pth_io;

	frr_with_mutex (&peer->io_mtx) {
		status = bgp_read(peer, &code);
	}

	/* error checking phase */
	if (CHECK_FLAG(status, BGP_IO_TRANS_ERR)) {
		/* no problem; just don't process packets */
		goto done;
	}

	if (CHECK_FLAG(status, BGP_IO_FATAL_ERR)) {
		/* problem; tear down session */
		fatal = true;

		/* Handle the error in the main pthread, include the
		 * specific state change from 'bgp_read'.
		 */
		event_add_event(bm->master, bgp_packet_process_error, peer,
				code, &peer->t_process_packet_error);
		goto done;
	}

	while (true) {
		ret = read_ibuf_work(peer);
		if (ret <= 0)
			break;

		added_pkt = true;
	}

	switch (ret) {
	case -EBADMSG:
		fatal = true;
		break;
	case -ENOMEM:
		ibuf_full = true;
		if (!ibuf_full_logged) {
			if (bgp_debug_neighbor_events(peer))
				zlog_debug(
					"%s [Event] Peer Input-Queue is full: limit (%u)",
					peer->host, bm->inq_limit);

			ibuf_full_logged = true;
		}
		break;
	default:
		ibuf_full_logged = false;
		break;
	}

done:
	/* handle invalid header */
	if (fatal) {
		/* wipe buffer just in case someone screwed up */
		ringbuf_wipe(peer->ibuf_work);
		return;
	}

	/* ringbuf should be fully drained unless ibuf is full */
	if (!ibuf_full)
		assert(ringbuf_space(peer->ibuf_work) >= peer->max_packet_size);

	event_add_read(fpt->master, bgp_process_reads, peer, peer->fd,
		       &peer->t_read);
	if (added_pkt)
		event_add_event(bm->master, bgp_process_packet, peer, 0,
				&peer->t_process_packet);
}

/*
 * Flush peer output buffer.
 *
 * This function pops packets off of peer->obuf and writes them to peer->fd.
 * The amount of packets written is equal to the minimum of peer->wpkt_quanta
 * and the number of packets on the output buffer, unless an error occurs.
 *
 * If write() returns an error, the appropriate FSM event is generated.
 *
 * The return value is equal to the number of packets written
 * (which may be zero).
 */
static uint16_t bgp_write(struct peer *peer)
{
	uint8_t type;
	struct stream *s;
	int update_last_write = 0;
	unsigned int count;
	uint32_t uo = 0;
	uint16_t status = 0;
	uint32_t wpkt_quanta_old;

	int writenum = 0;
	int num;
	unsigned int iovsz;
	unsigned int strmsz;
	unsigned int total_written;
	time_t now;

	wpkt_quanta_old = atomic_load_explicit(&peer->bgp->wpkt_quanta,
					       memory_order_relaxed);
	struct stream *ostreams[wpkt_quanta_old];
	struct stream **streams = ostreams;
	struct iovec iov[wpkt_quanta_old];

	s = stream_fifo_head(peer->obuf);

	if (!s)
		goto done;

	count = iovsz = 0;
	while (count < wpkt_quanta_old && iovsz < array_size(iov) && s) {
		ostreams[iovsz] = s;
		iov[iovsz].iov_base = stream_pnt(s);
		iov[iovsz].iov_len = STREAM_READABLE(s);
		writenum += STREAM_READABLE(s);
		s = s->next;
		++iovsz;
		++count;
	}

	strmsz = iovsz;
	total_written = 0;

	do {
		num = writev(peer->fd, iov, iovsz);

		if (num < 0) {
			if (!ERRNO_IO_RETRY(errno)) {
				BGP_EVENT_ADD(peer, TCP_fatal_error);
				SET_FLAG(status, BGP_IO_FATAL_ERR);
			} else {
				SET_FLAG(status, BGP_IO_TRANS_ERR);
			}

			break;
		} else if (num != writenum) {
			unsigned int msg_written = 0;
			unsigned int ic = iovsz;

			for (unsigned int i = 0; i < ic; i++) {
				size_t ss = iov[i].iov_len;

				if (ss > (unsigned int) num)
					break;

				msg_written++;
				iovsz--;
				writenum -= ss;
				num -= ss;
			}

			total_written += msg_written;

			assert(total_written < count);

			memmove(&iov, &iov[msg_written],
				sizeof(iov[0]) * iovsz);
			streams = &streams[msg_written];
			stream_forward_getp(streams[0], num);
			iov[0].iov_base = stream_pnt(streams[0]);
			iov[0].iov_len = STREAM_READABLE(streams[0]);

			writenum -= num;
			num = 0;
			assert(writenum > 0);
		} else {
			total_written = strmsz;
		}

	} while (num != writenum);

	/* Handle statistics */
	for (unsigned int i = 0; i < total_written; i++) {
		s = stream_fifo_pop(peer->obuf);

		assert(s == ostreams[i]);

		/* Retrieve BGP packet type. */
		stream_set_getp(s, BGP_MARKER_SIZE + 2);
		type = stream_getc(s);

		switch (type) {
		case BGP_MSG_OPEN:
			atomic_fetch_add_explicit(&peer->open_out, 1,
						  memory_order_relaxed);
			break;
		case BGP_MSG_UPDATE:
			atomic_fetch_add_explicit(&peer->update_out, 1,
						  memory_order_relaxed);
			uo++;
			break;
		case BGP_MSG_NOTIFY:
			atomic_fetch_add_explicit(&peer->notify_out, 1,
						  memory_order_relaxed);
			/* Double start timer. */
			peer->v_start *= 2;

			/* Overflow check. */
			if (peer->v_start >= (60 * 2))
				peer->v_start = (60 * 2);

			/*
			 * Handle Graceful Restart case where the state changes
			 * to Connect instead of Idle.
			 */
			BGP_EVENT_ADD(peer, BGP_Stop);
			goto done;

		case BGP_MSG_KEEPALIVE:
			atomic_fetch_add_explicit(&peer->keepalive_out, 1,
						  memory_order_relaxed);
			break;
		case BGP_MSG_ROUTE_REFRESH_NEW:
		case BGP_MSG_ROUTE_REFRESH_OLD:
			atomic_fetch_add_explicit(&peer->refresh_out, 1,
						  memory_order_relaxed);
			break;
		case BGP_MSG_CAPABILITY:
			atomic_fetch_add_explicit(&peer->dynamic_cap_out, 1,
						  memory_order_relaxed);
			break;
		}

		stream_free(s);
		ostreams[i] = NULL;
		update_last_write = 1;
	}

done : {
	now = monotime(NULL);
	/*
	 * Update last_update if UPDATEs were written.
	 * Note: that these are only updated at end,
	 *       not per message (i.e., per loop)
	 */
	if (uo)
		atomic_store_explicit(&peer->last_update, now,
				      memory_order_relaxed);

	/* If we TXed any flavor of packet */
	if (update_last_write) {
		atomic_store_explicit(&peer->last_write, now,
				      memory_order_relaxed);
		peer->last_sendq_ok = now;
	}
}

	return status;
}

/*
 * Reads a chunk of data from peer->fd into peer->ibuf_work.
 *
 * code_p
 *    Pointer to location to store FSM event code in case of fatal error.
 *
 * @return status flag (see top-of-file)
 */
static uint16_t bgp_read(struct peer *peer, int *code_p)
{
	size_t readsize; /* how many bytes we want to read */
	ssize_t nbytes;  /* how many bytes we actually read */
	size_t ibuf_work_space; /* space we can read into the work buf */
	uint16_t status = 0;

	ibuf_work_space = ringbuf_space(peer->ibuf_work);

	if (ibuf_work_space == 0) {
		SET_FLAG(status, BGP_IO_WORK_FULL_ERR);
		return status;
	}

	readsize = MIN(ibuf_work_space, sizeof(peer->ibuf_scratch));

	nbytes = read(peer->fd, peer->ibuf_scratch, readsize);

	/* EAGAIN or EWOULDBLOCK; come back later */
	if (nbytes < 0 && ERRNO_IO_RETRY(errno)) {
		SET_FLAG(status, BGP_IO_TRANS_ERR);
	} else if (nbytes < 0) {
		/* Fatal error; tear down session */
		flog_err(EC_BGP_UPDATE_RCV,
			 "%s [Error] bgp_read_packet error: %s", peer->host,
			 safe_strerror(errno));

		/* Handle the error in the main pthread. */
		if (code_p)
			*code_p = TCP_fatal_error;

		SET_FLAG(status, BGP_IO_FATAL_ERR);

	} else if (nbytes == 0) {
		/* Received EOF / TCP session closed */
		if (bgp_debug_neighbor_events(peer))
			zlog_debug("%s [Event] BGP connection closed fd %d",
				   peer->host, peer->fd);

		/* Handle the error in the main pthread. */
		if (code_p)
			*code_p = TCP_connection_closed;

		SET_FLAG(status, BGP_IO_FATAL_ERR);
	} else {
		assert(ringbuf_put(peer->ibuf_work, peer->ibuf_scratch, nbytes)
		       == (size_t)nbytes);
	}

	return status;
}

/*
 * Called after we have read a BGP packet header. Validates marker, message
 * type and packet length. If any of these aren't correct, sends a notify.
 *
 * Assumes that there are at least BGP_HEADER_SIZE readable bytes in the input
 * buffer.
 */
static bool validate_header(struct peer *peer)
{
	uint16_t size;
	uint8_t type;
	struct ringbuf *pkt = peer->ibuf_work;

	static const uint8_t m_correct[BGP_MARKER_SIZE] = {
		0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
		0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
	uint8_t m_rx[BGP_MARKER_SIZE] = {0x00};

	if (ringbuf_peek(pkt, 0, m_rx, BGP_MARKER_SIZE) != BGP_MARKER_SIZE)
		return false;

	if (memcmp(m_correct, m_rx, BGP_MARKER_SIZE) != 0) {
		bgp_notify_io_invalid(peer, BGP_NOTIFY_HEADER_ERR,
				      BGP_NOTIFY_HEADER_NOT_SYNC, NULL, 0);
		return false;
	}

	/* Get size and type in network byte order. */
	ringbuf_peek(pkt, BGP_MARKER_SIZE, &size, sizeof(size));
	ringbuf_peek(pkt, BGP_MARKER_SIZE + 2, &type, sizeof(type));

	size = ntohs(size);

	/* BGP type check. */
	if (type != BGP_MSG_OPEN && type != BGP_MSG_UPDATE
	    && type != BGP_MSG_NOTIFY && type != BGP_MSG_KEEPALIVE
	    && type != BGP_MSG_ROUTE_REFRESH_NEW
	    && type != BGP_MSG_ROUTE_REFRESH_OLD
	    && type != BGP_MSG_CAPABILITY) {
		if (bgp_debug_neighbor_events(peer))
			zlog_debug("%s unknown message type 0x%02x", peer->host,
				   type);

		bgp_notify_io_invalid(peer, BGP_NOTIFY_HEADER_ERR,
				      BGP_NOTIFY_HEADER_BAD_MESTYPE, &type, 1);
		return false;
	}

	/* Minimum packet length check. */
	if ((size < BGP_HEADER_SIZE) || (size > peer->max_packet_size)
	    || (type == BGP_MSG_OPEN && size < BGP_MSG_OPEN_MIN_SIZE)
	    || (type == BGP_MSG_UPDATE && size < BGP_MSG_UPDATE_MIN_SIZE)
	    || (type == BGP_MSG_NOTIFY && size < BGP_MSG_NOTIFY_MIN_SIZE)
	    || (type == BGP_MSG_KEEPALIVE && size != BGP_MSG_KEEPALIVE_MIN_SIZE)
	    || (type == BGP_MSG_ROUTE_REFRESH_NEW
		&& size < BGP_MSG_ROUTE_REFRESH_MIN_SIZE)
	    || (type == BGP_MSG_ROUTE_REFRESH_OLD
		&& size < BGP_MSG_ROUTE_REFRESH_MIN_SIZE)
	    || (type == BGP_MSG_CAPABILITY
		&& size < BGP_MSG_CAPABILITY_MIN_SIZE)) {
		if (bgp_debug_neighbor_events(peer)) {
			zlog_debug("%s bad message length - %d for %s",
				   peer->host, size,
				   type == 128 ? "ROUTE-REFRESH"
					       : bgp_type_str[(int)type]);
		}

		uint16_t nsize = htons(size);

		bgp_notify_io_invalid(peer, BGP_NOTIFY_HEADER_ERR,
				      BGP_NOTIFY_HEADER_BAD_MESLEN,
				      (unsigned char *)&nsize, 2);
		return false;
	}

	return true;
}
Commit	Line	Data
acddc0ed	1	// SPDX-License-Identifier: GPL-2.0-or-later
958b450c	2	/* BGP I/O.
51abb4b4	3	* Implements packet I/O in a pthread.
958b450c	4	* Copyright (C) 2017 Cumulus Networks
51abb4b4	5	* Quentin Young
56257a44 QY	6	*/
56257a44 QY	7
95158b0c	8	/* clang-format off */
42cf651e	9	#include <zebra.h>
95158b0c	10	#include <pthread.h> // for pthread_mutex_unlock, pthread_mutex_lock
093279cd	11	#include <sys/uio.h> // for writev
56257a44	12
1ac267a2	13	#include "frr_pthread.h"
95158b0c QY	14	#include "linklist.h" // for list_delete, list_delete_all_node, lis...
	15	#include "log.h" // for zlog_debug, safe_strerror, zlog_err
	16	#include "memory.h" // for MTYPE_TMP, XCALLOC, XFREE
	17	#include "network.h" // for ERRNO_IO_RETRY
	18	#include "stream.h" // for stream_get_endp, stream_getw_from, str...
74ffbfe6	19	#include "ringbuf.h" // for ringbuf_remain, ringbuf_peek, ringbuf_...
24a58196	20	#include "frrevent.h" // for EVENT_OFF, EVENT_ARG, thread...
56257a44	21
42cf651e	22	#include "bgpd/bgp_io.h"
95158b0c	23	#include "bgpd/bgp_debug.h" // for bgp_debug_neighbor_events, bgp_type_str
14454c9f	24	#include "bgpd/bgp_errors.h" // for expanded error reference information
95158b0c	25	#include "bgpd/bgp_fsm.h" // for BGP_EVENT_ADD, bgp_event
71ca5b09	26	#include "bgpd/bgp_packet.h" // for bgp_notify_io_invalid...
c7bb4f00	27	#include "bgpd/bgp_trace.h" // for frrtraces
95158b0c QY	28	#include "bgpd/bgpd.h" // for peer, BGP_MARKER_SIZE, bgp_master, bm
95158b0c QY	29	/* clang-format on */
56257a44	30
424ab01d QY	31	/* forward declarations */
424ab01d QY	32	static uint16_t bgp_write(struct peer *);
6af96fa3	33	static uint16_t bgp_read(struct peer peer, int code_p);
e6685141 DS	34	static void bgp_process_writes(struct event *event);
e6685141 DS	35	static void bgp_process_reads(struct event *event);
424ab01d	36	static bool validate_header(struct peer *);
56257a44	37
424ab01d	38	/* generic i/o status codes */
847ee2bb SW	39	#define BGP_IO_TRANS_ERR (1 << 0) /* EAGAIN or similar occurred */
	40	#define BGP_IO_FATAL_ERR (1 << 1) /* some kind of fatal TCP error */
	41	#define BGP_IO_WORK_FULL_ERR (1 << 2) /* No room in work buffer */
56257a44	42
a715eab3	43	/* Thread external API ----------------------------------------------------- */
56257a44	44
424ab01d	45	void bgp_writes_on(struct peer *peer)
56257a44	46	{
1ac267a2	47	struct frr_pthread *fpt = bgp_pth_io;
a715eab3	48	assert(fpt->running);
f09a656d	49
424ab01d QY	50	assert(peer->status != Deleted);
	51	assert(peer->obuf);
	52	assert(peer->ibuf);
	53	assert(peer->ibuf_work);
387f984e QY	54	assert(!peer->t_connect_check_r);
387f984e QY	55	assert(!peer->t_connect_check_w);
424ab01d	56	assert(peer->fd);
56257a44	57
907a2395 DS	58	event_add_write(fpt->master, bgp_process_writes, peer, peer->fd,
907a2395 DS	59	&peer->t_write);
b750b0ba	60	SET_FLAG(peer->thread_flags, PEER_THREAD_WRITES_ON);
424ab01d	61	}
56257a44	62
424ab01d QY	63	void bgp_writes_off(struct peer *peer)
424ab01d QY	64	{
1ac267a2	65	struct frr_pthread *fpt = bgp_pth_io;
a715eab3	66	assert(fpt->running);
151044ce	67
332beb64	68	event_cancel_async(fpt->master, &peer->t_write, NULL);
e16d030c	69	EVENT_OFF(peer->t_generate_updgrp_packets);
56257a44	70
b750b0ba	71	UNSET_FLAG(peer->thread_flags, PEER_THREAD_WRITES_ON);
56257a44 QY	72	}
56257a44 QY	73
424ab01d	74	void bgp_reads_on(struct peer *peer)
56257a44	75	{
1ac267a2	76	struct frr_pthread *fpt = bgp_pth_io;
a715eab3	77	assert(fpt->running);
f09a656d	78
424ab01d QY	79	assert(peer->status != Deleted);
	80	assert(peer->ibuf);
	81	assert(peer->fd);
	82	assert(peer->ibuf_work);
424ab01d	83	assert(peer->obuf);
387f984e QY	84	assert(!peer->t_connect_check_r);
387f984e QY	85	assert(!peer->t_connect_check_w);
424ab01d QY	86	assert(peer->fd);
424ab01d QY	87
907a2395 DS	88	event_add_read(fpt->master, bgp_process_reads, peer, peer->fd,
907a2395 DS	89	&peer->t_read);
b750b0ba QY	90
b750b0ba QY	91	SET_FLAG(peer->thread_flags, PEER_THREAD_READS_ON);
56257a44 QY	92	}
56257a44 QY	93
424ab01d	94	void bgp_reads_off(struct peer *peer)
56257a44	95	{
1ac267a2	96	struct frr_pthread *fpt = bgp_pth_io;
a715eab3	97	assert(fpt->running);
151044ce	98
332beb64	99	event_cancel_async(fpt->master, &peer->t_read, NULL);
e16d030c DS	100	EVENT_OFF(peer->t_process_packet);
e16d030c DS	101	EVENT_OFF(peer->t_process_packet_error);
56257a44	102
b750b0ba	103	UNSET_FLAG(peer->thread_flags, PEER_THREAD_READS_ON);
56257a44 QY	104	}
56257a44 QY	105
a715eab3	106	/* Thread internal functions ----------------------------------------------- */
51abb4b4	107
a715eab3	108	/*
51abb4b4	109	* Called from I/O pthread when a file descriptor has become ready for writing.
424ab01d	110	*/
e6685141	111	static void bgp_process_writes(struct event *thread)
56257a44	112	{
424ab01d	113	static struct peer *peer;
e16d030c	114	peer = EVENT_ARG(thread);
424ab01d	115	uint16_t status;
b750b0ba	116	bool reschedule;
bbac44ac	117	bool fatal = false;
424ab01d QY	118
424ab01d QY	119	if (peer->fd < 0)
cc9f21da	120	return;
424ab01d	121
1ac267a2	122	struct frr_pthread *fpt = bgp_pth_io;
424ab01d	123
cb1991af	124	frr_with_mutex (&peer->io_mtx) {
424ab01d QY	125	status = bgp_write(peer);
	126	reschedule = (stream_fifo_head(peer->obuf) != NULL);
	127	}
56257a44	128
a715eab3 QY	129	/* no problem */
a715eab3 QY	130	if (CHECK_FLAG(status, BGP_IO_TRANS_ERR)) {
56257a44	131	}
56257a44	132
a715eab3	133	/* problem */
bbac44ac	134	if (CHECK_FLAG(status, BGP_IO_FATAL_ERR)) {
a715eab3	135	reschedule = false;
bbac44ac QY	136	fatal = true;
bbac44ac QY	137	}
424ab01d	138
a77e2f4b S	139	/* If suppress fib pending is enabled, route is advertised to peers when
	140	* the status is received from the FIB. The delay is added
	141	* to update group packet generate which will allow more routes to be
	142	* sent in the update message
	143	*/
424ab01d	144	if (reschedule) {
907a2395 DS	145	event_add_write(fpt->master, bgp_process_writes, peer, peer->fd,
907a2395 DS	146	&peer->t_write);
b785b7ad	147	} else if (!fatal) {
a77e2f4b S	148	BGP_UPDATE_GROUP_TIMER_ON(&peer->t_generate_updgrp_packets,
a77e2f4b S	149	bgp_generate_updgrp_packets);
424ab01d	150	}
56257a44 QY	151	}
56257a44 QY	152
a0b937de SW	153	static int read_ibuf_work(struct peer *peer)
	154	{
	155	/* static buffer for transferring packets */
	156	/* shorter alias to peer's input buffer */
	157	struct ringbuf *ibw = peer->ibuf_work;
	158	/* packet size as given by header */
	159	uint16_t pktsize = 0;
	160	struct stream *pkt;
	161
a0b937de	162	/* ============================================== */
f1b1efde DS	163	frr_with_mutex (&peer->io_mtx) {
	164	if (peer->ibuf->count >= bm->inq_limit)
	165	return -ENOMEM;
	166	}
a0b937de SW	167
	168	/* check that we have enough data for a header */
	169	if (ringbuf_remain(ibw) < BGP_HEADER_SIZE)
	170	return 0;
	171
	172	/* check that header is valid */
	173	if (!validate_header(peer))
	174	return -EBADMSG;
	175
	176	/* header is valid; retrieve packet size */
	177	ringbuf_peek(ibw, BGP_MARKER_SIZE, &pktsize, sizeof(pktsize));
	178
	179	pktsize = ntohs(pktsize);
	180
	181	/* if this fails we are seriously screwed */
	182	assert(pktsize <= peer->max_packet_size);
	183
	184	/*
	185	* If we have that much data, chuck it into its own
	186	* stream and append to input queue for processing.
	187	*
	188	* Otherwise, come back later.
	189	*/
	190	if (ringbuf_remain(ibw) < pktsize)
	191	return 0;
	192
	193	pkt = stream_new(pktsize);
	194	assert(STREAM_WRITEABLE(pkt) == pktsize);
	195	assert(ringbuf_get(ibw, pkt->data, pktsize) == pktsize);
	196	stream_set_endp(pkt, pktsize);
	197
	198	frrtrace(2, frr_bgp, packet_read, peer, pkt);
f1b1efde DS	199	frr_with_mutex (&peer->io_mtx) {
	200	stream_fifo_push(peer->ibuf, pkt);
	201	}
a0b937de SW	202
	203	return pktsize;
	204	}
	205
a715eab3	206	/*
51abb4b4 QY	207	* Called from I/O pthread when a file descriptor has become ready for reading,
51abb4b4 QY	208	* or has hung up.
9eb217ff QY	209	*
	210	* We read as much data as possible, process as many packets as we can and
	211	* place them on peer->ibuf for secondary processing by the main thread.
56257a44	212	*/
e6685141	213	static void bgp_process_reads(struct event *thread)
56257a44	214	{
e11eeb8c	215	/* clang-format off */
847ee2bb SW	216	static struct peer peer; / peer to read from */
	217	uint16_t status; /* bgp_read status code */
	218	bool fatal = false; /* whether fatal error occurred */
	219	bool added_pkt = false; /* whether we pushed onto ->ibuf */
	220	int code = 0; /* FSM code if error occurred */
	221	bool ibuf_full = false; /* Is peer fifo IN Buffer full */
	222	static bool ibuf_full_logged; /* Have we logged full already */
a0b937de	223	int ret = 1;
e11eeb8c	224	/* clang-format on */
9eb217ff	225
e16d030c	226	peer = EVENT_ARG(thread);
424ab01d	227
97b4a0ec	228	if (peer->fd < 0 \|\| bm->terminating)
cc9f21da	229	return;
424ab01d	230
1ac267a2	231	struct frr_pthread *fpt = bgp_pth_io;
424ab01d	232
cb1991af	233	frr_with_mutex (&peer->io_mtx) {
6af96fa3	234	status = bgp_read(peer, &code);
424ab01d	235	}
424ab01d	236
9eb217ff QY	237	/* error checking phase */
	238	if (CHECK_FLAG(status, BGP_IO_TRANS_ERR)) {
	239	/* no problem; just don't process packets */
a0b937de	240	goto done;
9eb217ff	241	}
424ab01d	242
9eb217ff QY	243	if (CHECK_FLAG(status, BGP_IO_FATAL_ERR)) {
9eb217ff QY	244	/* problem; tear down session */
9eb217ff	245	fatal = true;
6af96fa3 MS	246
	247	/* Handle the error in the main pthread, include the
	248	* specific state change from 'bgp_read'.
	249	*/
907a2395 DS	250	event_add_event(bm->master, bgp_packet_process_error, peer,
907a2395 DS	251	code, &peer->t_process_packet_error);
a0b937de	252	goto done;
56257a44	253	}
56257a44	254
a0b937de SW	255	while (true) {
	256	ret = read_ibuf_work(peer);
	257	if (ret <= 0)
9eb217ff	258	break;
424ab01d	259
a0b937de SW	260	added_pkt = true;
a0b937de SW	261	}
9eb217ff	262
a0b937de SW	263	switch (ret) {
	264	case -EBADMSG:
	265	fatal = true;
	266	break;
	267	case -ENOMEM:
	268	ibuf_full = true;
	269	if (!ibuf_full_logged) {
3448b625 SW	270	if (bgp_debug_neighbor_events(peer))
	271	zlog_debug(
	272	"%s [Event] Peer Input-Queue is full: limit (%u)",
	273	peer->host, bm->inq_limit);
	274
a0b937de SW	275	ibuf_full_logged = true;
	276	}
	277	break;
	278	default:
	279	ibuf_full_logged = false;
	280	break;
9eb217ff QY	281	}
9eb217ff QY	282
a0b937de	283	done:
9eb217ff QY	284	/* handle invalid header */
9eb217ff QY	285	if (fatal) {
9eb217ff	286	/* wipe buffer just in case someone screwed up */
74ffbfe6	287	ringbuf_wipe(peer->ibuf_work);
a0b937de SW	288	return;
	289	}
	290
	291	/* ringbuf should be fully drained unless ibuf is full */
	292	if (!ibuf_full)
ef56aee4	293	assert(ringbuf_space(peer->ibuf_work) >= peer->max_packet_size);
421a7dfc	294
907a2395 DS	295	event_add_read(fpt->master, bgp_process_reads, peer, peer->fd,
907a2395 DS	296	&peer->t_read);
a0b937de	297	if (added_pkt)
907a2395 DS	298	event_add_event(bm->master, bgp_process_packet, peer, 0,
907a2395 DS	299	&peer->t_process_packet);
56257a44 QY	300	}
56257a44 QY	301
a715eab3	302	/*
56257a44 QY	303	* Flush peer output buffer.
	304	*
	305	* This function pops packets off of peer->obuf and writes them to peer->fd.
	306	* The amount of packets written is equal to the minimum of peer->wpkt_quanta
424ab01d	307	* and the number of packets on the output buffer, unless an error occurs.
56257a44 QY	308	*
	309	* If write() returns an error, the appropriate FSM event is generated.
	310	*
	311	* The return value is equal to the number of packets written
	312	* (which may be zero).
	313	*/
424ab01d	314	static uint16_t bgp_write(struct peer *peer)
56257a44	315	{
d7c0a89a	316	uint8_t type;
56257a44	317	struct stream *s;
56257a44	318	int update_last_write = 0;
093279cd	319	unsigned int count;
eb2277cf	320	uint32_t uo = 0;
424ab01d	321	uint16_t status = 0;
555e09d4	322	uint32_t wpkt_quanta_old;
56257a44	323
093279cd QY	324	int writenum = 0;
	325	int num;
	326	unsigned int iovsz;
	327	unsigned int strmsz;
	328	unsigned int total_written;
bd9fb6f3	329	time_t now;
093279cd	330
996c9314 LB	331	wpkt_quanta_old = atomic_load_explicit(&peer->bgp->wpkt_quanta,
996c9314 LB	332	memory_order_relaxed);
093279cd QY	333	struct stream *ostreams[wpkt_quanta_old];
	334	struct stream **streams = ostreams;
	335	struct iovec iov[wpkt_quanta_old];
	336
	337	s = stream_fifo_head(peer->obuf);
	338
	339	if (!s)
	340	goto done;
	341
	342	count = iovsz = 0;
	343	while (count < wpkt_quanta_old && iovsz < array_size(iov) && s) {
	344	ostreams[iovsz] = s;
	345	iov[iovsz].iov_base = stream_pnt(s);
	346	iov[iovsz].iov_len = STREAM_READABLE(s);
	347	writenum += STREAM_READABLE(s);
	348	s = s->next;
	349	++iovsz;
	350	++count;
	351	}
	352
	353	strmsz = iovsz;
	354	total_written = 0;
	355
	356	do {
	357	num = writev(peer->fd, iov, iovsz);
	358
	359	if (num < 0) {
	360	if (!ERRNO_IO_RETRY(errno)) {
	361	BGP_EVENT_ADD(peer, TCP_fatal_error);
	362	SET_FLAG(status, BGP_IO_FATAL_ERR);
	363	} else {
	364	SET_FLAG(status, BGP_IO_TRANS_ERR);
	365	}
	366
	367	break;
	368	} else if (num != writenum) {
	369	unsigned int msg_written = 0;
	370	unsigned int ic = iovsz;
	371
	372	for (unsigned int i = 0; i < ic; i++) {
	373	size_t ss = iov[i].iov_len;
555e09d4	374
093279cd QY	375	if (ss > (unsigned int) num)
093279cd QY	376	break;
56257a44	377
093279cd QY	378	msg_written++;
	379	iovsz--;
	380	writenum -= ss;
	381	num -= ss;
	382	}
56257a44	383
093279cd	384	total_written += msg_written;
56257a44	385
18555366 QY	386	assert(total_written < count);
18555366 QY	387
093279cd QY	388	memmove(&iov, &iov[msg_written],
	389	sizeof(iov[0]) * iovsz);
	390	streams = &streams[msg_written];
	391	stream_forward_getp(streams[0], num);
	392	iov[0].iov_base = stream_pnt(streams[0]);
	393	iov[0].iov_len = STREAM_READABLE(streams[0]);
	394
	395	writenum -= num;
	396	num = 0;
	397	assert(writenum > 0);
	398	} else {
	399	total_written = strmsz;
	400	}
	401
	402	} while (num != writenum);
	403
	404	/* Handle statistics */
	405	for (unsigned int i = 0; i < total_written; i++) {
	406	s = stream_fifo_pop(peer->obuf);
	407
	408	assert(s == ostreams[i]);
56257a44 QY	409
	410	/* Retrieve BGP packet type. */
	411	stream_set_getp(s, BGP_MARKER_SIZE + 2);
	412	type = stream_getc(s);
	413
	414	switch (type) {
	415	case BGP_MSG_OPEN:
1588f6f4 QY	416	atomic_fetch_add_explicit(&peer->open_out, 1,
1588f6f4 QY	417	memory_order_relaxed);
56257a44 QY	418	break;
56257a44 QY	419	case BGP_MSG_UPDATE:
1588f6f4 QY	420	atomic_fetch_add_explicit(&peer->update_out, 1,
1588f6f4 QY	421	memory_order_relaxed);
eb2277cf	422	uo++;
56257a44 QY	423	break;
56257a44 QY	424	case BGP_MSG_NOTIFY:
1588f6f4 QY	425	atomic_fetch_add_explicit(&peer->notify_out, 1,
1588f6f4 QY	426	memory_order_relaxed);
56257a44 QY	427	/* Double start timer. */
	428	peer->v_start *= 2;
	429
	430	/* Overflow check. */
	431	if (peer->v_start >= (60 * 2))
	432	peer->v_start = (60 * 2);
	433
a715eab3 QY	434	/*
	435	* Handle Graceful Restart case where the state changes
	436	* to Connect instead of Idle.
	437	*/
56257a44 QY	438	BGP_EVENT_ADD(peer, BGP_Stop);
	439	goto done;
	440
	441	case BGP_MSG_KEEPALIVE:
1588f6f4 QY	442	atomic_fetch_add_explicit(&peer->keepalive_out, 1,
1588f6f4 QY	443	memory_order_relaxed);
56257a44 QY	444	break;
	445	case BGP_MSG_ROUTE_REFRESH_NEW:
	446	case BGP_MSG_ROUTE_REFRESH_OLD:
1588f6f4 QY	447	atomic_fetch_add_explicit(&peer->refresh_out, 1,
1588f6f4 QY	448	memory_order_relaxed);
56257a44 QY	449	break;
56257a44 QY	450	case BGP_MSG_CAPABILITY:
1588f6f4 QY	451	atomic_fetch_add_explicit(&peer->dynamic_cap_out, 1,
1588f6f4 QY	452	memory_order_relaxed);
56257a44 QY	453	break;
	454	}
	455
093279cd QY	456	stream_free(s);
093279cd QY	457	ostreams[i] = NULL;
56257a44 QY	458	update_last_write = 1;
	459	}
	460
	461	done : {
083ec940	462	now = monotime(NULL);
eb2277cf LB	463	/*
	464	* Update last_update if UPDATEs were written.
	465	* Note: that these are only updated at end,
	466	* not per message (i.e., per loop)
	467	*/
	468	if (uo)
bd9fb6f3	469	atomic_store_explicit(&peer->last_update, now,
1588f6f4	470	memory_order_relaxed);
56257a44	471
5c075a90	472	/* If we TXed any flavor of packet */
bd9fb6f3 DL	473	if (update_last_write) {
bd9fb6f3 DL	474	atomic_store_explicit(&peer->last_write, now,
1588f6f4	475	memory_order_relaxed);
bd9fb6f3 DL	476	peer->last_sendq_ok = now;
bd9fb6f3 DL	477	}
56257a44 QY	478	}
56257a44 QY	479
424ab01d QY	480	return status;
	481	}
	482
a715eab3	483	/*
51abb4b4	484	* Reads a chunk of data from peer->fd into peer->ibuf_work.
424ab01d	485	*
b8cfb2cd QY	486	* code_p
	487	* Pointer to location to store FSM event code in case of fatal error.
	488	*
51abb4b4	489	* @return status flag (see top-of-file)
424ab01d	490	*/
6af96fa3	491	static uint16_t bgp_read(struct peer peer, int code_p)
424ab01d	492	{
847ee2bb SW	493	size_t readsize; /* how many bytes we want to read */
	494	ssize_t nbytes; /* how many bytes we actually read */
	495	size_t ibuf_work_space; /* space we can read into the work buf */
424ab01d QY	496	uint16_t status = 0;
424ab01d QY	497
a0b937de SW	498	ibuf_work_space = ringbuf_space(peer->ibuf_work);
	499
	500	if (ibuf_work_space == 0) {
	501	SET_FLAG(status, BGP_IO_WORK_FULL_ERR);
	502	return status;
	503	}
	504
	505	readsize = MIN(ibuf_work_space, sizeof(peer->ibuf_scratch));
	506
338f4a78	507	nbytes = read(peer->fd, peer->ibuf_scratch, readsize);
424ab01d	508
74ffbfe6 QY	509	/* EAGAIN or EWOULDBLOCK; come back later */
	510	if (nbytes < 0 && ERRNO_IO_RETRY(errno)) {
	511	SET_FLAG(status, BGP_IO_TRANS_ERR);
74ffbfe6	512	} else if (nbytes < 0) {
6af96fa3	513	/* Fatal error; tear down session */
e50f7cfd	514	flog_err(EC_BGP_UPDATE_RCV,
1c50c1c0 QY	515	"%s [Error] bgp_read_packet error: %s", peer->host,
1c50c1c0 QY	516	safe_strerror(errno));
85145b62	517
6af96fa3 MS	518	/* Handle the error in the main pthread. */
	519	if (code_p)
	520	*code_p = TCP_fatal_error;
424ab01d	521
85145b62	522	SET_FLAG(status, BGP_IO_FATAL_ERR);
6af96fa3	523
74ffbfe6	524	} else if (nbytes == 0) {
6af96fa3	525	/* Received EOF / TCP session closed */
85145b62 QY	526	if (bgp_debug_neighbor_events(peer))
85145b62 QY	527	zlog_debug("%s [Event] BGP connection closed fd %d",
36235319	528	peer->host, peer->fd);
85145b62	529
6af96fa3 MS	530	/* Handle the error in the main pthread. */
	531	if (code_p)
	532	*code_p = TCP_connection_closed;
424ab01d	533
85145b62	534	SET_FLAG(status, BGP_IO_FATAL_ERR);
fe2e3bae	535	} else {
338f4a78	536	assert(ringbuf_put(peer->ibuf_work, peer->ibuf_scratch, nbytes)
fe2e3bae	537	== (size_t)nbytes);
424ab01d QY	538	}
424ab01d QY	539
424ab01d QY	540	return status;
	541	}
	542
	543	/*
	544	* Called after we have read a BGP packet header. Validates marker, message
	545	* type and packet length. If any of these aren't correct, sends a notify.
74ffbfe6 QY	546	*
	547	* Assumes that there are at least BGP_HEADER_SIZE readable bytes in the input
	548	* buffer.
424ab01d QY	549	*/
	550	static bool validate_header(struct peer *peer)
	551	{
3fe63c29 QY	552	uint16_t size;
3fe63c29 QY	553	uint8_t type;
74ffbfe6	554	struct ringbuf *pkt = peer->ibuf_work;
424ab01d	555
2b64873d	556	static const uint8_t m_correct[BGP_MARKER_SIZE] = {
74ffbfe6 QY	557	0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
	558	0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
	559	uint8_t m_rx[BGP_MARKER_SIZE] = {0x00};
442c9afb	560
74ffbfe6 QY	561	if (ringbuf_peek(pkt, 0, m_rx, BGP_MARKER_SIZE) != BGP_MARKER_SIZE)
	562	return false;
	563
	564	if (memcmp(m_correct, m_rx, BGP_MARKER_SIZE) != 0) {
71ca5b09 MS	565	bgp_notify_io_invalid(peer, BGP_NOTIFY_HEADER_ERR,
71ca5b09 MS	566	BGP_NOTIFY_HEADER_NOT_SYNC, NULL, 0);
442c9afb QY	567	return false;
442c9afb QY	568	}
424ab01d	569
74ffbfe6 QY	570	/* Get size and type in network byte order. */
	571	ringbuf_peek(pkt, BGP_MARKER_SIZE, &size, sizeof(size));
	572	ringbuf_peek(pkt, BGP_MARKER_SIZE + 2, &type, sizeof(type));
	573
	574	size = ntohs(size);
424ab01d QY	575
	576	/* BGP type check. */
	577	if (type != BGP_MSG_OPEN && type != BGP_MSG_UPDATE
	578	&& type != BGP_MSG_NOTIFY && type != BGP_MSG_KEEPALIVE
	579	&& type != BGP_MSG_ROUTE_REFRESH_NEW
	580	&& type != BGP_MSG_ROUTE_REFRESH_OLD
	581	&& type != BGP_MSG_CAPABILITY) {
3fe63c29	582	if (bgp_debug_neighbor_events(peer))
424ab01d QY	583	zlog_debug("%s unknown message type 0x%02x", peer->host,
	584	type);
	585
71ca5b09 MS	586	bgp_notify_io_invalid(peer, BGP_NOTIFY_HEADER_ERR,
71ca5b09 MS	587	BGP_NOTIFY_HEADER_BAD_MESTYPE, &type, 1);
424ab01d QY	588	return false;
	589	}
	590
3fe63c29	591	/* Minimum packet length check. */
ef56aee4	592	if ((size < BGP_HEADER_SIZE) \|\| (size > peer->max_packet_size)
424ab01d QY	593	\|\| (type == BGP_MSG_OPEN && size < BGP_MSG_OPEN_MIN_SIZE)
	594	\|\| (type == BGP_MSG_UPDATE && size < BGP_MSG_UPDATE_MIN_SIZE)
	595	\|\| (type == BGP_MSG_NOTIFY && size < BGP_MSG_NOTIFY_MIN_SIZE)
	596	\|\| (type == BGP_MSG_KEEPALIVE && size != BGP_MSG_KEEPALIVE_MIN_SIZE)
	597	\|\| (type == BGP_MSG_ROUTE_REFRESH_NEW
	598	&& size < BGP_MSG_ROUTE_REFRESH_MIN_SIZE)
	599	\|\| (type == BGP_MSG_ROUTE_REFRESH_OLD
	600	&& size < BGP_MSG_ROUTE_REFRESH_MIN_SIZE)
	601	\|\| (type == BGP_MSG_CAPABILITY
	602	&& size < BGP_MSG_CAPABILITY_MIN_SIZE)) {
1588f6f4	603	if (bgp_debug_neighbor_events(peer)) {
424ab01d QY	604	zlog_debug("%s bad message length - %d for %s",
	605	peer->host, size,
	606	type == 128 ? "ROUTE-REFRESH"
996c9314	607	: bgp_type_str[(int)type]);
1588f6f4	608	}
424ab01d	609
3fe63c29 QY	610	uint16_t nsize = htons(size);
3fe63c29 QY	611
71ca5b09 MS	612	bgp_notify_io_invalid(peer, BGP_NOTIFY_HEADER_ERR,
	613	BGP_NOTIFY_HEADER_BAD_MESLEN,
	614	(unsigned char *)&nsize, 2);
424ab01d QY	615	return false;
	616	}
	617
	618	return true;
56257a44	619	}