1999-01-15 16:49:17 +00:00
|
|
|
/*
|
1999-03-17 14:29:39 +00:00
|
|
|
* BIRD Internet Routing Daemon -- Filters
|
1999-01-15 16:49:17 +00:00
|
|
|
*
|
1999-03-17 14:29:39 +00:00
|
|
|
* (c) 1999 Pavel Machek <pavel@ucw.cz>
|
1999-01-15 16:49:17 +00:00
|
|
|
*
|
|
|
|
* Can be freely distributed and used under the terms of the GNU GPL.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#ifndef _BIRD_FILT_H_
|
|
|
|
#define _BIRD_FILT_H_
|
|
|
|
|
|
|
|
#include "lib/resource.h"
|
1999-04-07 12:11:08 +00:00
|
|
|
#include "lib/ip.h"
|
2008-10-26 21:45:09 +00:00
|
|
|
#include "nest/route.h"
|
2000-04-17 11:20:00 +00:00
|
|
|
#include "nest/attrs.h"
|
1999-01-15 16:49:17 +00:00
|
|
|
|
2017-10-19 10:39:44 +00:00
|
|
|
/* Filter instruction types */
|
|
|
|
|
|
|
|
#define FI__TWOCHAR(a,b) ((a<<8) | b)
|
|
|
|
#define FI__LIST \
|
|
|
|
F(FI_ADD, 0, '+') \
|
|
|
|
F(FI_SUBTRACT, 0, '-') \
|
|
|
|
F(FI_MULTIPLY, 0, '*') \
|
|
|
|
F(FI_DIVIDE, 0, '/') \
|
|
|
|
F(FI_AND, 0, '&') \
|
|
|
|
F(FI_OR, 0, '|') \
|
|
|
|
F(FI_PAIR_CONSTRUCT, 'm', 'p') \
|
|
|
|
F(FI_EC_CONSTRUCT, 'm', 'c') \
|
|
|
|
F(FI_LC_CONSTRUCT, 'm', 'l') \
|
2018-02-28 15:57:50 +00:00
|
|
|
F(FI_PATHMASK_CONSTRUCT, 'm', 'P') \
|
2017-10-19 10:39:44 +00:00
|
|
|
F(FI_NEQ, '!', '=') \
|
|
|
|
F(FI_EQ, '=', '=') \
|
|
|
|
F(FI_LT, 0, '<') \
|
|
|
|
F(FI_LTE, '<', '=') \
|
|
|
|
F(FI_NOT, 0, '!') \
|
|
|
|
F(FI_MATCH, 0, '~') \
|
|
|
|
F(FI_NOT_MATCH, '!', '~') \
|
|
|
|
F(FI_DEFINED, 'd', 'e') \
|
2018-03-13 15:51:04 +00:00
|
|
|
F(FI_TYPE, 0, 'T') \
|
|
|
|
F(FI_IS_V4, 'I', 'i') \
|
2017-10-19 10:39:44 +00:00
|
|
|
F(FI_SET, 0, 's') \
|
|
|
|
F(FI_CONSTANT, 0, 'c') \
|
|
|
|
F(FI_VARIABLE, 0, 'V') \
|
|
|
|
F(FI_CONSTANT_INDIRECT, 0, 'C') \
|
|
|
|
F(FI_PRINT, 0, 'p') \
|
|
|
|
F(FI_CONDITION, 0, '?') \
|
|
|
|
F(FI_NOP, 0, '0') \
|
|
|
|
F(FI_PRINT_AND_DIE, 'p', ',') \
|
|
|
|
F(FI_RTA_GET, 0, 'a') \
|
|
|
|
F(FI_RTA_SET, 'a', 'S') \
|
|
|
|
F(FI_EA_GET, 'e', 'a') \
|
|
|
|
F(FI_EA_SET, 'e', 'S') \
|
|
|
|
F(FI_PREF_GET, 0, 'P') \
|
|
|
|
F(FI_PREF_SET, 'P', 'S') \
|
|
|
|
F(FI_LENGTH, 0, 'L') \
|
2018-03-13 15:51:04 +00:00
|
|
|
F(FI_ROA_MAXLEN, 'R', 'M') \
|
|
|
|
F(FI_ROA_ASN, 'R', 'A') \
|
2018-05-16 09:19:29 +00:00
|
|
|
F(FI_SADR_SRC, 'n', 's') \
|
2017-10-19 10:39:44 +00:00
|
|
|
F(FI_IP, 'c', 'p') \
|
2018-03-13 15:51:04 +00:00
|
|
|
F(FI_ROUTE_DISTINGUISHER, 'R', 'D') \
|
2017-10-19 10:39:44 +00:00
|
|
|
F(FI_AS_PATH_FIRST, 'a', 'f') \
|
|
|
|
F(FI_AS_PATH_LAST, 'a', 'l') \
|
|
|
|
F(FI_AS_PATH_LAST_NAG, 'a', 'L') \
|
|
|
|
F(FI_RETURN, 0, 'r') \
|
|
|
|
F(FI_CALL, 'c', 'a') \
|
|
|
|
F(FI_CLEAR_LOCAL_VARS, 'c', 'V') \
|
|
|
|
F(FI_SWITCH, 'S', 'W') \
|
|
|
|
F(FI_IP_MASK, 'i', 'M') \
|
|
|
|
F(FI_EMPTY, 0, 'E') \
|
|
|
|
F(FI_PATH_PREPEND, 'A', 'p') \
|
|
|
|
F(FI_CLIST_ADD_DEL, 'C', 'a') \
|
2018-03-13 15:51:04 +00:00
|
|
|
F(FI_ROA_CHECK, 'R', 'C') \
|
|
|
|
F(FI_FORMAT, 0, 'F') \
|
|
|
|
F(FI_ASSERT, 'a', 's')
|
2017-10-19 10:39:44 +00:00
|
|
|
|
|
|
|
enum f_instruction_code {
|
|
|
|
#define F(c,a,b) \
|
2018-04-30 10:39:32 +00:00
|
|
|
c,
|
2017-10-19 10:39:44 +00:00
|
|
|
FI__LIST
|
|
|
|
#undef F
|
2018-04-30 10:49:22 +00:00
|
|
|
FI__MAX,
|
2017-10-19 10:39:44 +00:00
|
|
|
} PACKED;
|
|
|
|
|
2018-04-30 14:06:53 +00:00
|
|
|
const char *f_instruction_name(enum f_instruction_code fi);
|
|
|
|
|
1999-03-08 20:30:06 +00:00
|
|
|
struct f_inst { /* Instruction */
|
|
|
|
struct f_inst *next; /* Structure is 16 bytes, anyway */
|
2017-10-19 10:39:44 +00:00
|
|
|
enum f_instruction_code fi_code;
|
2016-11-09 15:36:34 +00:00
|
|
|
u16 aux; /* Extension to instruction code, T_*, EA_*, EAF_* */
|
1999-04-10 09:45:08 +00:00
|
|
|
union {
|
2017-05-23 15:22:53 +00:00
|
|
|
uint i;
|
1999-04-10 09:45:08 +00:00
|
|
|
void *p;
|
2016-11-09 15:36:34 +00:00
|
|
|
} a1; /* The first argument */
|
1999-04-10 09:45:08 +00:00
|
|
|
union {
|
2017-05-23 15:22:53 +00:00
|
|
|
uint i;
|
1999-04-10 09:45:08 +00:00
|
|
|
void *p;
|
2016-11-09 15:36:34 +00:00
|
|
|
} a2; /* The second argument */
|
2018-04-30 11:29:05 +00:00
|
|
|
union {
|
|
|
|
int i;
|
|
|
|
void *p;
|
|
|
|
} a3; /* The third argument */
|
2000-05-16 18:50:51 +00:00
|
|
|
int lineno;
|
1999-01-15 16:49:17 +00:00
|
|
|
};
|
|
|
|
|
1999-04-10 09:45:08 +00:00
|
|
|
#define arg1 a1.p
|
|
|
|
#define arg2 a2.p
|
|
|
|
|
2012-03-18 16:32:30 +00:00
|
|
|
/* Not enough fields in f_inst for three args used by roa_check() */
|
|
|
|
struct f_inst_roa_check {
|
|
|
|
struct f_inst i;
|
2016-01-20 14:38:37 +00:00
|
|
|
struct rtable_config *rtc;
|
2012-03-18 16:32:30 +00:00
|
|
|
};
|
|
|
|
|
2000-05-16 22:37:53 +00:00
|
|
|
struct f_prefix {
|
2015-12-24 14:52:03 +00:00
|
|
|
net_addr net;
|
2015-12-16 09:25:12 +00:00
|
|
|
u8 lo, hi;
|
1999-04-07 12:11:08 +00:00
|
|
|
};
|
|
|
|
|
1999-03-08 20:30:06 +00:00
|
|
|
struct f_val {
|
2016-11-09 15:36:34 +00:00
|
|
|
int type; /* T_* */
|
1999-03-08 20:30:06 +00:00
|
|
|
union {
|
2013-11-23 23:17:02 +00:00
|
|
|
uint i;
|
2011-08-12 19:03:43 +00:00
|
|
|
u64 ec;
|
2016-10-01 10:50:29 +00:00
|
|
|
lcomm lc;
|
2015-12-16 09:25:12 +00:00
|
|
|
ip_addr ip;
|
|
|
|
const net_addr *net;
|
1999-04-07 12:11:08 +00:00
|
|
|
char *s;
|
1999-04-12 19:58:18 +00:00
|
|
|
struct f_tree *t;
|
2009-03-31 10:55:57 +00:00
|
|
|
struct f_trie *ti;
|
2000-04-12 13:31:39 +00:00
|
|
|
struct adata *ad;
|
|
|
|
struct f_path_mask *path_mask;
|
1999-03-08 20:30:06 +00:00
|
|
|
} val;
|
|
|
|
};
|
|
|
|
|
2017-10-19 10:39:44 +00:00
|
|
|
struct f_dynamic_attr {
|
|
|
|
int type;
|
|
|
|
int f_type;
|
|
|
|
int ea_code;
|
|
|
|
};
|
|
|
|
|
|
|
|
struct f_static_attr {
|
|
|
|
int f_type;
|
|
|
|
int sa_code;
|
|
|
|
int readonly;
|
|
|
|
};
|
|
|
|
|
1999-03-17 14:29:39 +00:00
|
|
|
struct filter {
|
|
|
|
char *name;
|
|
|
|
struct f_inst *root;
|
|
|
|
};
|
|
|
|
|
1999-04-12 19:58:18 +00:00
|
|
|
|
|
|
|
struct f_tree *build_tree(struct f_tree *);
|
|
|
|
struct f_tree *find_tree(struct f_tree *t, struct f_val val);
|
2000-01-31 17:44:22 +00:00
|
|
|
int same_tree(struct f_tree *t1, struct f_tree *t2);
|
2013-10-05 18:12:28 +00:00
|
|
|
void tree_format(struct f_tree *t, buffer *buf);
|
1999-03-02 19:49:28 +00:00
|
|
|
|
2015-02-21 13:05:20 +00:00
|
|
|
struct f_trie *f_new_trie(linpool *lp, uint node_size);
|
2015-12-21 16:17:21 +00:00
|
|
|
void *trie_add_prefix(struct f_trie *t, const net_addr *n, uint l, uint h);
|
2015-12-16 09:25:12 +00:00
|
|
|
int trie_match_net(struct f_trie *t, const net_addr *n);
|
2009-03-31 10:55:57 +00:00
|
|
|
int trie_same(struct f_trie *t1, struct f_trie *t2);
|
2013-10-05 18:12:28 +00:00
|
|
|
void trie_format(struct f_trie *t, buffer *buf);
|
2009-03-31 10:55:57 +00:00
|
|
|
|
1999-08-03 19:31:11 +00:00
|
|
|
struct ea_list;
|
|
|
|
struct rte;
|
|
|
|
|
2018-05-29 10:08:12 +00:00
|
|
|
int f_run(struct filter *filter, struct rte **rte, struct linpool *tmp_pool, int flags);
|
2015-07-20 09:12:02 +00:00
|
|
|
struct f_val f_eval_rte(struct f_inst *expr, struct rte **rte, struct linpool *tmp_pool);
|
2013-07-25 11:15:32 +00:00
|
|
|
struct f_val f_eval(struct f_inst *expr, struct linpool *tmp_pool);
|
2009-08-27 17:01:04 +00:00
|
|
|
|
1999-04-05 20:10:31 +00:00
|
|
|
char *filter_name(struct filter *filter);
|
2000-01-16 17:49:32 +00:00
|
|
|
int filter_same(struct filter *new, struct filter *old);
|
1999-03-17 14:29:39 +00:00
|
|
|
|
2000-01-31 17:44:22 +00:00
|
|
|
int i_same(struct f_inst *f1, struct f_inst *f2);
|
|
|
|
|
1999-04-12 19:58:18 +00:00
|
|
|
int val_compare(struct f_val v1, struct f_val v2);
|
2013-10-02 12:41:37 +00:00
|
|
|
int val_same(struct f_val v1, struct f_val v2);
|
1999-04-07 12:11:08 +00:00
|
|
|
|
2013-10-05 18:12:28 +00:00
|
|
|
void val_format(struct f_val v, buffer *buf);
|
|
|
|
|
2013-07-25 11:15:32 +00:00
|
|
|
|
1999-04-07 12:11:08 +00:00
|
|
|
#define F_NOP 0
|
1999-10-12 06:27:42 +00:00
|
|
|
#define F_NONL 1
|
|
|
|
#define F_ACCEPT 2 /* Need to preserve ordering: accepts < rejects! */
|
1999-12-16 12:18:19 +00:00
|
|
|
#define F_REJECT 3
|
|
|
|
#define F_ERROR 4
|
|
|
|
#define F_QUITBIRD 5
|
1999-01-15 18:13:55 +00:00
|
|
|
|
1999-04-05 20:10:31 +00:00
|
|
|
#define FILTER_ACCEPT NULL
|
|
|
|
#define FILTER_REJECT ((void *) 1)
|
2018-01-16 03:14:49 +00:00
|
|
|
#define FILTER_UNDEF ((void *) 2) /* Used in BGP */
|
1999-04-05 20:10:31 +00:00
|
|
|
|
1999-03-29 20:21:28 +00:00
|
|
|
/* Type numbers must be in 0..0xff range */
|
|
|
|
#define T_MASK 0xff
|
|
|
|
|
|
|
|
/* Internal types */
|
1999-11-18 14:01:36 +00:00
|
|
|
/* Do not use type of zero, that way we'll see errors easier. */
|
|
|
|
#define T_VOID 1
|
1999-03-29 20:21:28 +00:00
|
|
|
|
|
|
|
/* User visible types, which fit in int */
|
|
|
|
#define T_INT 0x10
|
|
|
|
#define T_BOOL 0x11
|
2000-04-26 08:03:50 +00:00
|
|
|
#define T_PAIR 0x12 /* Notice that pair is stored as integer: first << 16 | second */
|
2010-03-29 17:29:03 +00:00
|
|
|
#define T_QUAD 0x13
|
1999-11-10 12:44:07 +00:00
|
|
|
|
2000-02-25 11:15:26 +00:00
|
|
|
/* Put enumerational types in 0x30..0x3f range */
|
1999-11-10 12:44:07 +00:00
|
|
|
#define T_ENUM_LO 0x30
|
2000-02-25 11:15:26 +00:00
|
|
|
#define T_ENUM_HI 0x3f
|
1999-11-10 12:44:07 +00:00
|
|
|
|
1999-11-10 13:44:29 +00:00
|
|
|
#define T_ENUM_RTS 0x30
|
2000-04-26 07:47:47 +00:00
|
|
|
#define T_ENUM_BGP_ORIGIN 0x31
|
2000-05-30 10:42:39 +00:00
|
|
|
#define T_ENUM_SCOPE 0x32
|
|
|
|
#define T_ENUM_RTC 0x33
|
|
|
|
#define T_ENUM_RTD 0x34
|
2016-01-20 14:06:19 +00:00
|
|
|
#define T_ENUM_ROA 0x35
|
2017-03-13 12:50:32 +00:00
|
|
|
#define T_ENUM_NETTYPE 0x36
|
2017-12-07 20:54:47 +00:00
|
|
|
#define T_ENUM_RA_PREFERENCE 0x37
|
2017-03-13 12:50:32 +00:00
|
|
|
|
2000-04-26 07:47:47 +00:00
|
|
|
/* new enums go here */
|
2000-04-17 12:40:38 +00:00
|
|
|
#define T_ENUM_EMPTY 0x3f /* Special hack for atomic_aggr */
|
1999-11-10 13:44:29 +00:00
|
|
|
|
1999-11-10 12:44:07 +00:00
|
|
|
#define T_ENUM T_ENUM_LO ... T_ENUM_HI
|
1999-03-29 20:21:28 +00:00
|
|
|
|
|
|
|
/* Bigger ones */
|
|
|
|
#define T_IP 0x20
|
2015-12-16 09:25:12 +00:00
|
|
|
#define T_NET 0x21
|
1999-03-29 20:21:28 +00:00
|
|
|
#define T_STRING 0x22
|
2000-04-12 13:07:53 +00:00
|
|
|
#define T_PATH_MASK 0x23 /* mask for BGP path */
|
2000-04-12 13:31:39 +00:00
|
|
|
#define T_PATH 0x24 /* BGP path */
|
|
|
|
#define T_CLIST 0x25 /* Community list */
|
2016-10-01 10:50:29 +00:00
|
|
|
#define T_EC 0x26 /* Extended community value, u64 */
|
|
|
|
#define T_ECLIST 0x27 /* Extended community list */
|
|
|
|
#define T_LC 0x28 /* Large community value, lcomm */
|
|
|
|
#define T_LCLIST 0x29 /* Large community list */
|
2017-03-13 12:50:32 +00:00
|
|
|
#define T_RD 0x2a /* Route distinguisher for VPN addresses */
|
1999-03-29 20:21:28 +00:00
|
|
|
|
2000-02-25 11:15:26 +00:00
|
|
|
#define T_RETURN 0x40
|
1999-03-29 20:21:28 +00:00
|
|
|
#define T_SET 0x80
|
2009-03-31 10:55:57 +00:00
|
|
|
#define T_PREFIX_SET 0x81
|
1999-03-17 10:19:07 +00:00
|
|
|
|
2013-09-26 20:08:21 +00:00
|
|
|
|
2015-12-16 09:25:12 +00:00
|
|
|
#define SA_FROM 1
|
|
|
|
#define SA_GW 2
|
|
|
|
#define SA_NET 3
|
|
|
|
#define SA_PROTO 4
|
|
|
|
#define SA_SOURCE 5
|
|
|
|
#define SA_SCOPE 6
|
2017-02-20 01:26:45 +00:00
|
|
|
#define SA_DEST 7
|
|
|
|
#define SA_IFNAME 8
|
|
|
|
#define SA_IFINDEX 9
|
2013-09-26 20:08:21 +00:00
|
|
|
|
|
|
|
|
1999-04-12 19:58:18 +00:00
|
|
|
struct f_tree {
|
|
|
|
struct f_tree *left, *right;
|
|
|
|
struct f_val from, to;
|
|
|
|
void *data;
|
|
|
|
};
|
|
|
|
|
2009-03-31 10:55:57 +00:00
|
|
|
struct f_trie_node
|
|
|
|
{
|
|
|
|
ip_addr addr, mask, accept;
|
2016-11-08 18:27:58 +00:00
|
|
|
uint plen;
|
2009-03-31 10:55:57 +00:00
|
|
|
struct f_trie_node *c[2];
|
|
|
|
};
|
|
|
|
|
|
|
|
struct f_trie
|
|
|
|
{
|
2010-07-27 15:17:11 +00:00
|
|
|
linpool *lp;
|
2009-03-31 10:55:57 +00:00
|
|
|
int zero;
|
2015-02-21 13:05:20 +00:00
|
|
|
uint node_size;
|
|
|
|
struct f_trie_node root[0]; /* Root trie node follows */
|
2009-03-31 10:55:57 +00:00
|
|
|
};
|
|
|
|
|
1999-10-12 06:27:42 +00:00
|
|
|
#define NEW_F_VAL struct f_val * val; val = cfg_alloc(sizeof(struct f_val));
|
|
|
|
|
2018-01-16 15:20:01 +00:00
|
|
|
#define FF_SILENT 2 /* Silent filter execution */
|
2000-03-29 09:02:00 +00:00
|
|
|
|
2016-11-09 15:36:34 +00:00
|
|
|
/* Bird Tests */
|
|
|
|
struct f_bt_test_suite {
|
|
|
|
node n; /* Node in config->tests */
|
|
|
|
struct f_inst *fn; /* Root of function */
|
|
|
|
const char *fn_name; /* Name of test */
|
|
|
|
const char *dsc; /* Description */
|
|
|
|
};
|
|
|
|
|
|
|
|
/* Hook for call bt_assert() function in configuration */
|
|
|
|
extern void (*bt_assert_hook)(int result, struct f_inst *assert);
|
|
|
|
|
1999-01-15 16:49:17 +00:00
|
|
|
#endif
|