mirror of
https://gitlab.nic.cz/labs/bird.git
synced 2025-01-11 11:31:53 +00:00
e8bc64e308
The bgpmask literals can include expressions. This is OK but they have to be interpreted as soon as the code is run, not in the time the code is used as value. This led to strange behavior like rewriting bgpmasks when they shan't be rewritten: function mask_generator(int as) { return [= * as * =]; } function another() bgpmask m1; bgpmask m2; { m1 = mask_generator(10); m2 = mask_generator(20); if (m1 == m2) { print("strange"); # this would happen } } Moreover, sending this to CLI would cause stack overflow and knock down the whole BIRD, as soon as there is at least one route to execute the given filter on. show route filter bgpmask mmm; bgppath ppp; { ppp = +empty+; mmm = [= (ppp ~ mmm) =]; print(mmm); accept; } The magic match operator (~) inside the bgpmask literal would try to resolve mmm, which points to the same bgpmask so it would resolve itself, call the magic match operator and vice versa. After this patch, the bgpmask literal will get resolved as soon as it's assigned to mmm and it also will return a type error as bool is not convertible to ASN in BIRD.
567 lines
9.9 KiB
C
567 lines
9.9 KiB
C
/*
|
|
* BIRD -- Path Operations
|
|
*
|
|
* (c) 2000 Martin Mares <mj@ucw.cz>
|
|
* (c) 2000 Pavel Machek <pavel@ucw.cz>
|
|
*
|
|
* Can be freely distributed and used under the terms of the GNU GPL.
|
|
*/
|
|
|
|
#include "nest/bird.h"
|
|
#include "nest/route.h"
|
|
#include "nest/attrs.h"
|
|
#include "lib/resource.h"
|
|
#include "lib/unaligned.h"
|
|
#include "lib/string.h"
|
|
#include "filter/filter.h"
|
|
|
|
// static inline void put_as(byte *data, u32 as) { put_u32(data, as); }
|
|
// static inline u32 get_as(byte *data) { return get_u32(data); }
|
|
|
|
#define put_as put_u32
|
|
#define get_as get_u32
|
|
#define BS 4
|
|
|
|
struct adata *
|
|
as_path_prepend(struct linpool *pool, struct adata *olda, u32 as)
|
|
{
|
|
struct adata *newa;
|
|
|
|
if (olda->length && olda->data[0] == AS_PATH_SEQUENCE && olda->data[1] < 255)
|
|
/* Starting with sequence => just prepend the AS number */
|
|
{
|
|
int nl = olda->length + BS;
|
|
newa = lp_alloc(pool, sizeof(struct adata) + nl);
|
|
newa->length = nl;
|
|
newa->data[0] = AS_PATH_SEQUENCE;
|
|
newa->data[1] = olda->data[1] + 1;
|
|
memcpy(newa->data + BS + 2, olda->data + 2, olda->length - 2);
|
|
}
|
|
else /* Create new path segment */
|
|
{
|
|
int nl = olda->length + BS + 2;
|
|
newa = lp_alloc(pool, sizeof(struct adata) + nl);
|
|
newa->length = nl;
|
|
newa->data[0] = AS_PATH_SEQUENCE;
|
|
newa->data[1] = 1;
|
|
memcpy(newa->data + BS + 2, olda->data, olda->length);
|
|
}
|
|
put_as(newa->data + 2, as);
|
|
return newa;
|
|
}
|
|
|
|
int
|
|
as_path_convert_to_old(struct adata *path, byte *dst, int *new_used)
|
|
{
|
|
byte *src = path->data;
|
|
byte *src_end = src + path->length;
|
|
byte *dst_start = dst;
|
|
u32 as;
|
|
int i, n;
|
|
*new_used = 0;
|
|
|
|
while (src < src_end)
|
|
{
|
|
n = src[1];
|
|
*dst++ = *src++;
|
|
*dst++ = *src++;
|
|
|
|
for(i=0; i<n; i++)
|
|
{
|
|
as = get_u32(src);
|
|
if (as > 0xFFFF)
|
|
{
|
|
as = AS_TRANS;
|
|
*new_used = 1;
|
|
}
|
|
put_u16(dst, as);
|
|
src += 4;
|
|
dst += 2;
|
|
}
|
|
}
|
|
|
|
return dst - dst_start;
|
|
}
|
|
|
|
int
|
|
as_path_convert_to_new(struct adata *path, byte *dst, int req_as)
|
|
{
|
|
byte *src = path->data;
|
|
byte *src_end = src + path->length;
|
|
byte *dst_start = dst;
|
|
u32 as;
|
|
int i, t, n;
|
|
|
|
|
|
while ((src < src_end) && (req_as > 0))
|
|
{
|
|
t = *src++;
|
|
n = *src++;
|
|
|
|
if (t == AS_PATH_SEQUENCE)
|
|
{
|
|
if (n > req_as)
|
|
n = req_as;
|
|
|
|
req_as -= n;
|
|
}
|
|
else // t == AS_PATH_SET
|
|
req_as--;
|
|
|
|
*dst++ = t;
|
|
*dst++ = n;
|
|
|
|
for(i=0; i<n; i++)
|
|
{
|
|
as = get_u16(src);
|
|
put_u32(dst, as);
|
|
src += 2;
|
|
dst += 4;
|
|
}
|
|
}
|
|
|
|
return dst - dst_start;
|
|
}
|
|
|
|
void
|
|
as_path_format(struct adata *path, byte *buf, uint size)
|
|
{
|
|
byte *p = path->data;
|
|
byte *e = p + path->length;
|
|
byte *end = buf + size - 16;
|
|
int sp = 1;
|
|
int l, isset;
|
|
|
|
while (p < e)
|
|
{
|
|
if (buf > end)
|
|
{
|
|
strcpy(buf, " ...");
|
|
return;
|
|
}
|
|
isset = (*p++ == AS_PATH_SET);
|
|
l = *p++;
|
|
if (isset)
|
|
{
|
|
if (!sp)
|
|
*buf++ = ' ';
|
|
*buf++ = '{';
|
|
sp = 0;
|
|
}
|
|
while (l-- && buf <= end)
|
|
{
|
|
if (!sp)
|
|
*buf++ = ' ';
|
|
buf += bsprintf(buf, "%u", get_as(p));
|
|
p += BS;
|
|
sp = 0;
|
|
}
|
|
if (isset)
|
|
{
|
|
*buf++ = ' ';
|
|
*buf++ = '}';
|
|
sp = 0;
|
|
}
|
|
}
|
|
*buf = 0;
|
|
}
|
|
|
|
int
|
|
as_path_getlen(struct adata *path)
|
|
{
|
|
return as_path_getlen_int(path, BS);
|
|
}
|
|
|
|
int
|
|
as_path_getlen_int(struct adata *path, int bs)
|
|
{
|
|
int res = 0;
|
|
u8 *p = path->data;
|
|
u8 *q = p+path->length;
|
|
int len;
|
|
|
|
while (p<q)
|
|
{
|
|
switch (*p++)
|
|
{
|
|
case AS_PATH_SET: len = *p++; res++; p += bs * len; break;
|
|
case AS_PATH_SEQUENCE: len = *p++; res += len; p += bs * len; break;
|
|
default: bug("as_path_getlen: Invalid path segment");
|
|
}
|
|
}
|
|
return res;
|
|
}
|
|
|
|
int
|
|
as_path_get_last(struct adata *path, u32 *orig_as)
|
|
{
|
|
int found = 0;
|
|
u32 res = 0;
|
|
u8 *p = path->data;
|
|
u8 *q = p+path->length;
|
|
int len;
|
|
|
|
while (p<q)
|
|
{
|
|
switch (*p++)
|
|
{
|
|
case AS_PATH_SET:
|
|
if (len = *p++)
|
|
{
|
|
found = 0;
|
|
p += BS * len;
|
|
}
|
|
break;
|
|
case AS_PATH_SEQUENCE:
|
|
if (len = *p++)
|
|
{
|
|
found = 1;
|
|
res = get_as(p + BS * (len - 1));
|
|
p += BS * len;
|
|
}
|
|
break;
|
|
default: bug("Invalid path segment");
|
|
}
|
|
}
|
|
|
|
if (found)
|
|
*orig_as = res;
|
|
return found;
|
|
}
|
|
|
|
u32
|
|
as_path_get_last_nonaggregated(struct adata *path)
|
|
{
|
|
u8 *p = path->data;
|
|
u8 *q = p+path->length;
|
|
u32 res = 0;
|
|
int len;
|
|
|
|
while (p<q)
|
|
{
|
|
switch (*p++)
|
|
{
|
|
case AS_PATH_SET:
|
|
return res;
|
|
|
|
case AS_PATH_SEQUENCE:
|
|
if (len = *p++)
|
|
res = get_as(p + BS * (len - 1));
|
|
p += BS * len;
|
|
break;
|
|
|
|
default: bug("Invalid path segment");
|
|
}
|
|
}
|
|
|
|
return res;
|
|
}
|
|
|
|
|
|
int
|
|
as_path_get_first(struct adata *path, u32 *last_as)
|
|
{
|
|
u8 *p = path->data;
|
|
|
|
if ((path->length == 0) || (p[0] != AS_PATH_SEQUENCE) || (p[1] == 0))
|
|
return 0;
|
|
else
|
|
{
|
|
*last_as = get_as(p+2);
|
|
return 1;
|
|
}
|
|
}
|
|
|
|
int
|
|
as_path_contains(struct adata *path, u32 as, int min)
|
|
{
|
|
u8 *p = path->data;
|
|
u8 *q = p+path->length;
|
|
int num = 0;
|
|
int i, n;
|
|
|
|
while (p<q)
|
|
{
|
|
n = p[1];
|
|
p += 2;
|
|
for(i=0; i<n; i++)
|
|
{
|
|
if (get_as(p) == as)
|
|
if (++num == min)
|
|
return 1;
|
|
p += BS;
|
|
}
|
|
}
|
|
return 0;
|
|
}
|
|
|
|
int
|
|
as_path_match_set(struct adata *path, struct f_tree *set)
|
|
{
|
|
u8 *p = path->data;
|
|
u8 *q = p+path->length;
|
|
int i, n;
|
|
|
|
while (p<q)
|
|
{
|
|
n = p[1];
|
|
p += 2;
|
|
for (i=0; i<n; i++)
|
|
{
|
|
struct f_val v = {T_INT, .val.i = get_as(p)};
|
|
if (find_tree(set, v))
|
|
return 1;
|
|
p += BS;
|
|
}
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
struct adata *
|
|
as_path_filter(struct linpool *pool, struct adata *path, struct f_tree *set, u32 key, int pos)
|
|
{
|
|
if (!path)
|
|
return NULL;
|
|
|
|
int len = path->length;
|
|
u8 *p = path->data;
|
|
u8 *q = path->data + len;
|
|
u8 *d, *d2;
|
|
int i, bt, sn, dn;
|
|
u8 buf[len];
|
|
|
|
d = buf;
|
|
while (p<q)
|
|
{
|
|
/* Read block header (type and length) */
|
|
bt = p[0];
|
|
sn = p[1];
|
|
dn = 0;
|
|
p += 2;
|
|
d2 = d + 2;
|
|
|
|
for (i = 0; i < sn; i++)
|
|
{
|
|
u32 as = get_as(p);
|
|
int match;
|
|
|
|
if (set)
|
|
match = !!find_tree(set, (struct f_val){T_INT, .val.i = as});
|
|
else
|
|
match = (as == key);
|
|
|
|
if (match == pos)
|
|
{
|
|
put_as(d2, as);
|
|
d2 += BS;
|
|
dn++;
|
|
}
|
|
|
|
p += BS;
|
|
}
|
|
|
|
if (dn > 0)
|
|
{
|
|
/* Nonempty block, set block header and advance */
|
|
d[0] = bt;
|
|
d[1] = dn;
|
|
d = d2;
|
|
}
|
|
}
|
|
|
|
uint nl = d - buf;
|
|
if (nl == path->length)
|
|
return path;
|
|
|
|
struct adata *res = lp_alloc(pool, sizeof(struct adata) + nl);
|
|
res->length = nl;
|
|
memcpy(res->data, buf, nl);
|
|
|
|
return res;
|
|
}
|
|
|
|
|
|
struct pm_pos
|
|
{
|
|
u8 set;
|
|
u8 mark;
|
|
union
|
|
{
|
|
char *sp;
|
|
u32 asn;
|
|
} val;
|
|
};
|
|
|
|
static int
|
|
parse_path(struct adata *path, struct pm_pos *pos)
|
|
{
|
|
u8 *p = path->data;
|
|
u8 *q = p + path->length;
|
|
struct pm_pos *opos = pos;
|
|
int i, len;
|
|
|
|
|
|
while (p < q)
|
|
switch (*p++)
|
|
{
|
|
case AS_PATH_SET:
|
|
pos->set = 1;
|
|
pos->mark = 0;
|
|
pos->val.sp = p;
|
|
len = *p;
|
|
p += 1 + BS * len;
|
|
pos++;
|
|
break;
|
|
|
|
case AS_PATH_SEQUENCE:
|
|
len = *p++;
|
|
for (i = 0; i < len; i++)
|
|
{
|
|
pos->set = 0;
|
|
pos->mark = 0;
|
|
pos->val.asn = get_as(p);
|
|
p += BS;
|
|
pos++;
|
|
}
|
|
break;
|
|
|
|
default:
|
|
bug("as_path_match: Invalid path component");
|
|
}
|
|
|
|
return pos - opos;
|
|
}
|
|
|
|
|
|
static int
|
|
pm_match(struct pm_pos *pos, u32 asn, u32 asn2)
|
|
{
|
|
u32 gas;
|
|
if (! pos->set)
|
|
return ((pos->val.asn >= asn) && (pos->val.asn <= asn2));
|
|
|
|
u8 *p = pos->val.sp;
|
|
int len = *p++;
|
|
int i;
|
|
|
|
for (i = 0; i < len; i++)
|
|
{
|
|
gas = get_as(p + i * BS);
|
|
|
|
if ((gas >= asn) && (gas <= asn2))
|
|
return 1;
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
static void
|
|
pm_mark(struct pm_pos *pos, int i, int plen, int *nl, int *nh)
|
|
{
|
|
int j;
|
|
|
|
if (pos[i].set)
|
|
pos[i].mark = 1;
|
|
|
|
for (j = i + 1; (j < plen) && pos[j].set && (! pos[j].mark); j++)
|
|
pos[j].mark = 1;
|
|
pos[j].mark = 1;
|
|
|
|
/* We are going downwards, therefore every mark is
|
|
new low and just the first mark is new high */
|
|
|
|
*nl = i + (pos[i].set ? 0 : 1);
|
|
|
|
if (*nh < 0)
|
|
*nh = j;
|
|
}
|
|
|
|
/* AS path matching is nontrivial. Because AS path can
|
|
* contain sets, it is not a plain wildcard matching. A set
|
|
* in an AS path is interpreted as it might represent any
|
|
* sequence of AS numbers from that set (possibly with
|
|
* repetitions). So it is also a kind of a pattern,
|
|
* more complicated than a path mask.
|
|
*
|
|
* The algorithm for AS path matching is a variant
|
|
* of nondeterministic finite state machine, where
|
|
* positions in AS path are states, and items in
|
|
* path mask are input for that finite state machine.
|
|
* During execution of the algorithm we maintain a set
|
|
* of marked states - a state is marked if it can be
|
|
* reached by any walk through NFSM with regard to
|
|
* currently processed part of input. When we process
|
|
* next part of mask, we advance each marked state.
|
|
* We start with marked first position, when we
|
|
* run out of marked positions, we reject. When
|
|
* we process the whole mask, we accept if final position
|
|
* (auxiliary position after last real position in AS path)
|
|
* is marked.
|
|
*/
|
|
|
|
int
|
|
as_path_match(struct adata *path, struct f_path_mask *mask)
|
|
{
|
|
struct pm_pos pos[2048 + 1];
|
|
int plen = parse_path(path, pos);
|
|
int l, h, i, nh, nl;
|
|
u32 val = 0;
|
|
u32 val2 = 0;
|
|
|
|
/* l and h are bound of interval of positions where
|
|
are marked states */
|
|
|
|
pos[plen].set = 0;
|
|
pos[plen].mark = 0;
|
|
|
|
l = h = 0;
|
|
pos[0].mark = 1;
|
|
|
|
while (mask)
|
|
{
|
|
/* We remove this mark to not step after pos[plen] */
|
|
pos[plen].mark = 0;
|
|
|
|
switch (mask->kind)
|
|
{
|
|
case PM_ASTERISK:
|
|
for (i = l; i <= plen; i++)
|
|
pos[i].mark = 1;
|
|
h = plen;
|
|
break;
|
|
|
|
case PM_ASN: /* Define single ASN as ASN..ASN - very narrow interval */
|
|
val2 = val = mask->val;
|
|
goto step;
|
|
case PM_ASN_EXPR:
|
|
ASSERT(0);
|
|
case PM_ASN_RANGE:
|
|
val = mask->val;
|
|
val2 = mask->val2;
|
|
goto step;
|
|
case PM_QUESTION:
|
|
step:
|
|
nh = nl = -1;
|
|
for (i = h; i >= l; i--)
|
|
if (pos[i].mark)
|
|
{
|
|
pos[i].mark = 0;
|
|
if ((mask->kind == PM_QUESTION) || pm_match(pos + i, val, val2))
|
|
pm_mark(pos, i, plen, &nl, &nh);
|
|
}
|
|
|
|
if (nh < 0)
|
|
return 0;
|
|
|
|
h = nh;
|
|
l = nl;
|
|
break;
|
|
}
|
|
|
|
mask = mask->next;
|
|
}
|
|
|
|
return pos[plen].mark;
|
|
}
|