0
0
mirror of https://gitlab.nic.cz/labs/bird.git synced 2024-11-15 07:38:43 +00:00
bird/proto/ospf/packet.c

526 lines
14 KiB
C
Raw Normal View History

/*
* BIRD -- OSPF
*
* (c) 1999--2005 Ondrej Filip <feela@network.cz>
2014-06-26 09:58:57 +00:00
* (c) 2009--2014 Ondrej Zajicek <santiago@crfreenet.org>
* (c) 2009--2014 CZ.NIC z.s.p.o.
*
* Can be freely distributed and used under the terms of the GNU GPL.
*/
#include "ospf.h"
#include "nest/password.h"
#include "lib/md5.h"
#include "lib/mac.h"
2015-11-13 15:08:28 +00:00
#include "lib/socket.h"
void
ospf_pkt_fill_hdr(struct ospf_iface *ifa, void *buf, u8 h_type)
{
2014-06-26 09:58:57 +00:00
struct ospf_proto *p = ifa->oa->po;
struct ospf_packet *pkt;
pkt = (struct ospf_packet *) buf;
2014-06-26 09:58:57 +00:00
pkt->version = ospf_get_version(p);
pkt->type = h_type;
2014-06-26 09:58:57 +00:00
pkt->length = htons(ospf_pkt_maxsize(ifa));
pkt->routerid = htonl(p->router_id);
pkt->areaid = htonl(ifa->oa->areaid);
pkt->checksum = 0;
2014-06-26 09:58:57 +00:00
pkt->instance_id = ifa->instance_id;
pkt->autype = ifa->autype;
}
2014-06-26 09:58:57 +00:00
/* We assume OSPFv2 in ospf_pkt_finalize() */
2009-08-21 07:27:52 +00:00
static void
ospf_pkt_finalize(struct ospf_iface *ifa, struct ospf_packet *pkt, uint *plen)
{
struct ospf_proto *p = ifa->oa->po;
struct password_item *pass = NULL;
2014-06-26 09:58:57 +00:00
union ospf_auth *auth = (void *) (pkt + 1);
2011-05-18 23:20:00 +00:00
pkt->checksum = 0;
2014-06-26 09:58:57 +00:00
pkt->autype = ifa->autype;
bzero(auth, sizeof(union ospf_auth));
2011-05-18 23:20:00 +00:00
2014-06-26 09:58:57 +00:00
/* Compatibility note: auth may contain anything if autype is
2011-05-18 23:20:00 +00:00
none, but nonzero values do not work with Mikrotik OSPF */
2014-06-26 09:58:57 +00:00
switch (ifa->autype)
{
2014-06-26 09:58:57 +00:00
case OSPF_AUTH_SIMPLE:
pass = password_find(ifa->passwords, 1);
if (!pass)
2014-06-26 09:58:57 +00:00
{
log(L_ERR "%s: No suitable password found for authentication", p->p.name);
STATS(tx_no_key);
2014-06-26 09:58:57 +00:00
return;
}
strncpy(auth->password, pass->password, sizeof(auth->password));
/* fallthrough */
2014-06-26 09:58:57 +00:00
case OSPF_AUTH_NONE:
{
void *body = (void *) (auth + 1);
uint blen = *plen - sizeof(struct ospf_packet) - sizeof(union ospf_auth);
2014-06-26 09:58:57 +00:00
pkt->checksum = ipsum_calculate(pkt, sizeof(struct ospf_packet), body, blen, NULL);
}
break;
2014-06-26 09:58:57 +00:00
case OSPF_AUTH_CRYPT:
pass = password_find(ifa->passwords, 0);
if (!pass)
2014-06-26 09:58:57 +00:00
{
log(L_ERR "%s: No suitable password found for authentication", p->p.name);
STATS(tx_no_key);
2014-06-26 09:58:57 +00:00
return;
}
2014-06-26 09:58:57 +00:00
/* Perhaps use random value to prevent replay attacks after
reboot when system does not have independent RTC? */
if (!ifa->csn)
{
ifa->csn = (u32) (current_real_time() TO_S);
ifa->csn_use = current_time();
2014-06-26 09:58:57 +00:00
}
2014-07-19 15:28:38 +00:00
/* We must have sufficient delay between sending a packet and increasing
2014-06-26 09:58:57 +00:00
CSN to prevent reordering of packets (in a network) with different CSNs */
if ((current_time() - ifa->csn_use) > 1 S)
2014-06-26 09:58:57 +00:00
ifa->csn++;
ifa->csn_use = current_time();
2014-06-26 09:58:57 +00:00
uint auth_len = mac_type_length(pass->alg);
byte *auth_tail = ((byte *) pkt + *plen);
*plen += auth_len;
ASSERT(*plen < ifa->sk->tbsize);
2014-06-26 09:58:57 +00:00
auth->c32.zero = 0;
auth->c32.keyid = pass->id;
auth->c32.len = auth_len;
auth->c32.csn = htonl(ifa->csn);
/* Append key for keyed hash, append padding for HMAC (RFC 5709 3.3) */
if (pass->alg < ALG_HMAC)
strncpy(auth_tail, pass->password, auth_len);
else
memset32(auth_tail, HMAC_MAGIC, auth_len / 4);
mac_fill(pass->alg, pass->password, pass->length,
(byte *) pkt, *plen, auth_tail);
2014-06-26 09:58:57 +00:00
break;
default:
bug("Unknown authentication type");
}
}
2014-10-24 08:27:21 +00:00
2014-06-26 09:58:57 +00:00
/* We assume OSPFv2 in ospf_pkt_checkauth() */
2004-06-05 09:58:23 +00:00
static int
ospf_pkt_checkauth(struct ospf_neighbor *n, struct ospf_iface *ifa, struct ospf_packet *pkt, uint len)
2000-06-06 01:23:03 +00:00
{
2014-06-26 09:58:57 +00:00
struct ospf_proto *p = ifa->oa->po;
union ospf_auth *auth = (void *) (pkt + 1);
2014-10-24 08:27:21 +00:00
struct password_item *pass = NULL;
const char *err_dsc = NULL;
uint err_val = 0;
2014-06-26 09:58:57 +00:00
uint plen = ntohs(pkt->length);
u8 autype = pkt->autype;
2014-06-26 09:58:57 +00:00
if (autype != ifa->autype)
DROP(bad_au_type, "authentication method mismatch", autype);
2000-06-06 01:23:03 +00:00
2014-06-26 09:58:57 +00:00
switch (autype)
{
2014-06-26 09:58:57 +00:00
case OSPF_AUTH_NONE:
return 1;
2014-06-26 09:58:57 +00:00
case OSPF_AUTH_SIMPLE:
pass = password_find(ifa->passwords, 1);
if (!pass)
DROP1(bad_auth, "no password found");
2014-10-24 08:27:21 +00:00
if (!password_verify(pass, auth->password, sizeof(auth->password)))
DROP(bad_auth, "wrong password", pass->id);
2014-06-26 09:58:57 +00:00
return 1;
2014-06-26 09:58:57 +00:00
case OSPF_AUTH_CRYPT:
pass = password_find_by_id(ifa->passwords, auth->c32.keyid);
if (!pass)
DROP(bad_auth, "no suitable password found", auth->c32.keyid);
uint auth_len = mac_type_length(pass->alg);
if (plen + auth->c32.len > len)
DROP(bad_pkt, "packet length mismatch", len);
if (auth->c32.len != auth_len)
DROP(bad_auth, "wrong authentication length", auth->c32.len);
u32 rcv_csn = ntohl(auth->c32.csn);
2014-10-24 08:27:21 +00:00
if (n && (rcv_csn < n->csn))
// DROP("lower sequence number", rcv_csn);
2014-06-26 09:58:57 +00:00
{
2014-10-24 08:27:21 +00:00
/* We want to report both new and old CSN */
LOG_PKT_AUTH("Authentication failed for nbr %R on %s - "
"lower sequence number (rcv %u, old %u)",
n->rid, ifa->ifname, rcv_csn, n->csn);
STATS2(bad_auth, dropped);
2014-10-24 08:27:21 +00:00
return 0;
2014-06-26 09:58:57 +00:00
}
byte *auth_tail = ((byte *) pkt) + plen;
byte *auth_data = alloca(auth_len);
memcpy(auth_data, auth_tail, auth_len);
2009-08-21 07:27:52 +00:00
/* Append key for keyed hash, append padding for HMAC (RFC 5709 3.3) */
if (pass->alg < ALG_HMAC)
strncpy(auth_tail, pass->password, auth_len);
else
memset32(auth_tail, HMAC_MAGIC, auth_len / 4);
2009-08-21 07:27:52 +00:00
if (!mac_verify(pass->alg, pass->password, pass->length,
(byte *) pkt, plen + auth_len, auth_data))
DROP(bad_auth, "wrong authentication code", pass->id);
2014-10-24 08:27:21 +00:00
if (n)
n->csn = rcv_csn;
2014-06-26 09:58:57 +00:00
return 1;
2009-08-21 07:27:52 +00:00
2014-06-26 09:58:57 +00:00
default:
2014-10-24 08:27:21 +00:00
bug("Unknown authentication type");
2014-06-26 09:58:57 +00:00
}
2014-10-24 08:27:21 +00:00
drop:
LOG_PKT_AUTH("Authentication failed for nbr %R on %s - %s (%u)",
(n ? n->rid : ntohl(pkt->routerid)), ifa->ifname, err_dsc, err_val);
return 0;
}
2009-08-21 07:27:52 +00:00
2000-06-07 21:56:32 +00:00
/**
* ospf_rx_hook
* @sk: socket we received the packet.
* @len: length of the packet
2000-06-07 21:56:32 +00:00
*
* This is the entry point for messages from neighbors. Many checks (like
* authentication, checksums, size) are done before the packet is passed to
2000-06-07 21:56:32 +00:00
* non generic functions.
*/
int
ospf_rx_hook(sock *sk, uint len)
{
2014-10-24 08:27:21 +00:00
/* We want just packets from sk->iface. Unfortunately, on BSD we cannot filter
out other packets at kernel level and we receive all packets on all sockets */
if (sk->lifindex != sk->iface->index)
return 1;
DBG("OSPF: RX hook called (iface %s, src %I, dst %I)\n",
sk->iface->name, sk->faddr, sk->laddr);
/* Initially, the packet is associated with the 'master' iface */
struct ospf_iface *ifa = sk->data;
2014-06-26 09:58:57 +00:00
struct ospf_proto *p = ifa->oa->po;
2014-10-24 08:27:21 +00:00
const char *err_dsc = NULL;
uint err_val = 0;
/* Should not happen */
if (ifa->state <= OSPF_IS_LOOP)
return 1;
2014-07-19 15:28:38 +00:00
int src_local, dst_local, dst_mcast;
src_local = ipa_in_netX(sk->faddr, &ifa->addr->prefix);
dst_local = ipa_equal(sk->laddr, ifa->addr->ip);
2014-06-26 09:58:57 +00:00
dst_mcast = ipa_equal(sk->laddr, ifa->all_routers) || ipa_equal(sk->laddr, ifa->des_routers);
2014-06-26 09:58:57 +00:00
if (ospf_is_v2(p))
{
/* First, we eliminate packets with strange address combinations.
* In OSPFv2, they might be for other ospf_ifaces (with different IP
* prefix) on the same real iface, so we don't log it. We enforce
* that (src_local || dst_local), therefore we are eliminating all
2014-07-19 15:28:38 +00:00
* such cases.
2014-06-26 09:58:57 +00:00
*/
if (dst_mcast && !src_local)
return 1;
if (!dst_mcast && !dst_local)
return 1;
2014-06-26 09:58:57 +00:00
/* Ignore my own broadcast packets */
if (ifa->cf->real_bcast && ipa_equal(sk->faddr, ifa->addr->ip))
return 1;
}
else
{
2014-07-19 15:28:38 +00:00
/* In OSPFv3, src_local and dst_local mean link-local.
2014-06-26 09:58:57 +00:00
* RFC 5340 says that local (non-vlink) packets use
* link-local src address, but does not enforce it. Strange.
*/
if (dst_mcast && !src_local)
2014-11-03 09:42:55 +00:00
LOG_PKT_WARN("Multicast packet received from non-link-local %I via %s",
2014-10-24 08:27:21 +00:00
sk->faddr, ifa->ifname);
2014-06-26 09:58:57 +00:00
}
2014-10-24 08:27:21 +00:00
/* Second, we check packet length, checksum, and the protocol version */
2014-10-24 09:11:43 +00:00
struct ospf_packet *pkt = (void *) sk_rx_buffer(sk, &len);
2014-06-26 09:58:57 +00:00
if (pkt == NULL)
DROP(bad_pkt, "bad IP header", len);
2014-10-24 08:27:21 +00:00
if (len < sizeof(struct ospf_packet))
DROP(bad_pkt, "too short", len);
2014-10-24 08:27:21 +00:00
if (pkt->version != ospf_get_version(p))
DROP(bad_ver, "version mismatch", pkt->version);
2014-06-26 09:58:57 +00:00
uint plen = ntohs(pkt->length);
if ((plen < sizeof(struct ospf_packet)) || ((plen % 4) != 0))
DROP(bad_pkt, "invalid length", plen);
2011-04-13 11:19:37 +00:00
if (sk->flags & SKF_TRUNCATED)
2004-06-06 09:37:54 +00:00
{
/* If we have dynamic buffers and received truncated message, we expand RX buffer */
uint bs = plen + 256;
bs = BIRD_ALIGN(bs, 1024);
if (!ifa->cf->rx_buffer && (bs > sk->rbsize))
sk_set_rbsize(sk, bs);
DROP(sk_error, "truncated", plen);
2004-06-06 09:37:54 +00:00
}
2014-10-24 08:27:21 +00:00
if (plen > len)
DROP(bad_pkt, "length mismatch", plen);
2014-06-26 09:58:57 +00:00
if (ospf_is_v2(p) && (pkt->autype != OSPF_AUTH_CRYPT))
2004-06-06 09:37:54 +00:00
{
2014-06-26 09:58:57 +00:00
uint hlen = sizeof(struct ospf_packet) + sizeof(union ospf_auth);
uint blen = plen - hlen;
void *body = ((void *) pkt) + hlen;
2014-10-24 08:27:21 +00:00
if (!ipsum_verify(pkt, sizeof(struct ospf_packet), body, blen, NULL))
DROP1(bad_check, "invalid checksum");
2014-06-26 09:58:57 +00:00
}
/* Third, we resolve associated iface and handle vlinks. */
2014-06-26 09:58:57 +00:00
u32 areaid = ntohl(pkt->areaid);
u32 rid = ntohl(pkt->routerid);
u8 instance_id = pkt->instance_id;
2014-06-26 09:58:57 +00:00
if (areaid == ifa->oa->areaid)
{
2014-06-26 09:58:57 +00:00
/* Matching area ID */
if (instance_id != ifa->instance_id)
return 1;
/* It is real iface, source should be local (in OSPFv2) */
2014-06-26 09:58:57 +00:00
if (ospf_is_v2(p) && !src_local)
DROP1(bad_src, "strange source address");
2014-06-26 09:58:57 +00:00
goto found;
}
2014-06-26 09:58:57 +00:00
else if ((areaid == 0) && !dst_mcast)
2004-06-06 09:37:54 +00:00
{
2014-06-26 09:58:57 +00:00
/* Backbone area ID and possible vlink packet */
if ((p->areano == 1) || !oa_is_ext(ifa->oa))
return 1;
2014-06-26 09:58:57 +00:00
struct ospf_iface *iff = NULL;
WALK_LIST(iff, p->iface_list)
{
2014-07-19 15:28:38 +00:00
if ((iff->type == OSPF_IT_VLINK) &&
(iff->voa == ifa->oa) &&
2014-06-26 09:58:57 +00:00
(iff->instance_id == instance_id) &&
(iff->vid == rid))
2014-06-26 09:58:57 +00:00
{
/* Vlink should be UP */
if (iff->state != OSPF_IS_PTP)
return 1;
ifa = iff;
goto found;
}
}
2014-06-26 09:58:57 +00:00
/*
* Cannot find matching vlink. It is either misconfigured vlink; NBMA or
* PtMP with misconfigured area ID, or packet for some other instance (that
* is possible even if instance_id == ifa->instance_id, because it may be
* also vlink packet in the other instance, which is different namespace).
*/
return 1;
}
else
{
/* Non-matching area ID but cannot be vlink packet */
if (instance_id != ifa->instance_id)
return 1;
DROP(bad_area, "area mismatch", areaid);
2004-06-06 09:37:54 +00:00
}
2014-06-26 09:58:57 +00:00
2014-10-24 08:27:21 +00:00
found:
if (ifa->stub) /* This shouldn't happen */
return 1;
2014-06-26 09:58:57 +00:00
if (ipa_equal(sk->laddr, ifa->des_routers) && (ifa->sk_dr == 0))
2009-08-21 07:27:52 +00:00
return 1;
/* TTL check must be done after instance dispatch */
if (ifa->check_ttl && (sk->rcv_ttl < 255))
DROP(bad_ttl, "wrong TTL", sk->rcv_ttl);
2014-06-26 09:58:57 +00:00
if (rid == p->router_id)
DROP1(bad_nbr, "my own router ID");
if (rid == 0)
DROP1(bad_nbr, "zero router ID");
2014-10-24 08:27:21 +00:00
/* In OSPFv2, neighbors are identified by either IP or Router ID, based on network type */
2014-06-26 09:58:57 +00:00
uint t = ifa->type;
struct ospf_neighbor *n;
2014-06-26 09:58:57 +00:00
if (ospf_is_v2(p) && ((t == OSPF_IT_BCAST) || (t == OSPF_IT_NBMA) || (t == OSPF_IT_PTMP)))
n = find_neigh_by_ip(ifa, sk->faddr);
else
n = find_neigh(ifa, rid);
2014-06-26 09:58:57 +00:00
if (!n && (pkt->type != HELLO_P))
{
2014-11-03 09:42:55 +00:00
OSPF_TRACE(D_PACKETS, "Non-HELLO packet received from unknown nbr %R on %s, src %I",
2014-10-24 08:27:21 +00:00
rid, ifa->ifname, sk->faddr);
STATS2(bad_nbr, dropped);
return 1;
2004-06-06 09:37:54 +00:00
}
/* Check packet type here, ospf_pkt_checkauth3() expects valid values */
if (pkt->type < HELLO_P || pkt->type > LSACK_P)
DROP(bad_pkt_type, "invalid packet type", pkt->type);
2014-10-24 08:27:21 +00:00
/* ospf_pkt_checkauth() has its own error logging */
if (ospf_is_v2(p) && !ospf_pkt_checkauth(n, ifa, pkt, len))
return 1;
STATS(rx_pkts[pkt->type - 1]);
if (ifa->type == OSPF_IT_VLINK)
STATS(rx_vlink);
2014-06-26 09:58:57 +00:00
switch (pkt->type)
2004-06-06 09:37:54 +00:00
{
case HELLO_P:
2014-06-26 09:58:57 +00:00
ospf_receive_hello(pkt, ifa, n, sk->faddr);
2004-06-06 09:37:54 +00:00
break;
2014-06-26 09:58:57 +00:00
2004-06-06 09:37:54 +00:00
case DBDES_P:
2014-06-26 09:58:57 +00:00
ospf_receive_dbdes(pkt, ifa, n);
2004-06-06 09:37:54 +00:00
break;
2014-06-26 09:58:57 +00:00
2004-06-06 09:37:54 +00:00
case LSREQ_P:
2014-06-26 09:58:57 +00:00
ospf_receive_lsreq(pkt, ifa, n);
2004-06-06 09:37:54 +00:00
break;
2014-06-26 09:58:57 +00:00
2004-06-06 09:37:54 +00:00
case LSUPD_P:
2014-06-26 09:58:57 +00:00
ospf_receive_lsupd(pkt, ifa, n);
2004-06-06 09:37:54 +00:00
break;
2014-06-26 09:58:57 +00:00
2004-06-06 09:37:54 +00:00
case LSACK_P:
2014-06-26 09:58:57 +00:00
ospf_receive_lsack(pkt, ifa, n);
2004-06-06 09:37:54 +00:00
break;
};
return 1;
2014-10-24 08:27:21 +00:00
drop:
LOG_PKT("Bad packet from %I via %s - %s (%u)",
sk->faddr, ifa->ifname, err_dsc, err_val);
return 1;
}
/*
void
2004-06-06 09:37:54 +00:00
ospf_tx_hook(sock * sk)
{
2012-01-22 10:03:30 +00:00
struct ospf_iface *ifa= (struct ospf_iface *) (sk->data);
2014-06-26 09:58:57 +00:00
// struct proto *p = (struct proto *) (ifa->oa->p);
log(L_ERR "OSPF: TX hook called on %s", ifa->ifname);
}
*/
void
2005-02-14 21:34:46 +00:00
ospf_err_hook(sock * sk, int err)
{
2012-01-22 10:03:30 +00:00
struct ospf_iface *ifa= (struct ospf_iface *) (sk->data);
2014-06-26 09:58:57 +00:00
struct ospf_proto *p = ifa->oa->po;
log(L_ERR "%s: Socket error on %s: %M", p->p.name, ifa->ifname, err);
STATS(sk_error);
}
void
ospf_verr_hook(sock *sk, int err)
{
2014-06-26 09:58:57 +00:00
struct ospf_proto *p = (struct ospf_proto *) (sk->data);
log(L_ERR "%s: Vlink socket error: %M", p->p.name, err);
/* Cannot use STATS() as there is no specific iface */
p->iface_stats.sk_error++;
2014-06-26 09:58:57 +00:00
}
void
ospf_send_to(struct ospf_iface *ifa, ip_addr dst)
{
sock *sk = ifa->sk;
struct ospf_packet *pkt = (struct ospf_packet *) sk->tbuf;
struct ospf_proto *p = ifa->oa->po;
uint plen = ntohs(pkt->length);
2014-06-26 09:58:57 +00:00
if (ospf_is_v2(ifa->oa->po))
ospf_pkt_finalize(ifa, pkt, &plen);
2014-06-26 09:58:57 +00:00
int done = sk_send_to(sk, plen, dst, 0);
if (!done)
{
log(L_WARN "%s: TX queue full on %s", p->p.name, ifa->ifname);
STATS(tx_queue_full);
return;
}
STATS(tx_pkts[pkt->type - 1]);
if (ifa->type == OSPF_IT_VLINK)
STATS(tx_vlink);
}
void
ospf_send_to_agt(struct ospf_iface *ifa, u8 state)
{
struct ospf_neighbor *n;
WALK_LIST(n, ifa->neigh_list)
if (n->state >= state)
ospf_send_to(ifa, n->ip);
}
void
ospf_send_to_bdr(struct ospf_iface *ifa)
{
2015-12-24 14:52:03 +00:00
if (ipa_nonzero2(ifa->drip))
ospf_send_to(ifa, ifa->drip);
2015-12-24 14:52:03 +00:00
if (ipa_nonzero2(ifa->bdrip))
ospf_send_to(ifa, ifa->bdrip);
}