]> The Tcpdump Group git mirrors - tcpdump/blob - print-bgp.c
projects / tcpdump / blob
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Add bounds checking and other sanity checking.
[tcpdump] / print-bgp.c
1 /*
2 * Copyright (C) 1999 WIDE Project.
3 * All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 * 3. Neither the name of the project nor the names of its contributors
14 * may be used to endorse or promote products derived from this software
15 * without specific prior written permission.
16 *
17 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
18 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
21 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27 * SUCH DAMAGE.
28 *
29 * Extensively modified by Hannes Gredler (hannes@juniper.net) for more
30 * complete BGP support.
31 */
32
33 #ifdef HAVE_CONFIG_H
34 #include "config.h"
35 #endif
36
37 #ifndef lint
38 static const char rcsid[] _U_ =
39 "@(#) $Header: /tcpdump/master/tcpdump/print-bgp.c,v 1.95 2005-05-05 22:49:17 guy Exp $";
40 #endif
41
42 #include <tcpdump-stdinc.h>
43
44 #include <stdio.h>
45 #include <string.h>
46
47 #include "interface.h"
48 #include "decode_prefix.h"
49 #include "addrtoname.h"
50 #include "extract.h"
51 #include "bgp.h"
52 #include "l2vpn.h"
53
54 struct bgp {
55 u_int8_t bgp_marker[16];
56 u_int16_t bgp_len;
57 u_int8_t bgp_type;
58 };
59 #define BGP_SIZE 19 /* unaligned */
60
61 #define BGP_OPEN 1
62 #define BGP_UPDATE 2
63 #define BGP_NOTIFICATION 3
64 #define BGP_KEEPALIVE 4
65 #define BGP_ROUTE_REFRESH 5
66
67 static struct tok bgp_msg_values[] = {
68 { BGP_OPEN, "Open"},
69 { BGP_UPDATE, "Update"},
70 { BGP_NOTIFICATION, "Notification"},
71 { BGP_KEEPALIVE, "Keepalive"},
72 { BGP_ROUTE_REFRESH, "Route Refresh"},
73 { 0, NULL}
74 };
75
76 struct bgp_open {
77 u_int8_t bgpo_marker[16];
78 u_int16_t bgpo_len;
79 u_int8_t bgpo_type;
80 u_int8_t bgpo_version;
81 u_int16_t bgpo_myas;
82 u_int16_t bgpo_holdtime;
83 u_int32_t bgpo_id;
84 u_int8_t bgpo_optlen;
85 /* options should follow */
86 };
87 #define BGP_OPEN_SIZE 29 /* unaligned */
88
89 struct bgp_opt {
90 u_int8_t bgpopt_type;
91 u_int8_t bgpopt_len;
92 /* variable length */
93 };
94 #define BGP_OPT_SIZE 2 /* some compilers may pad to 4 bytes */
95
96 #define BGP_UPDATE_MINSIZE 23
97
98 struct bgp_notification {
99 u_int8_t bgpn_marker[16];
100 u_int16_t bgpn_len;
101 u_int8_t bgpn_type;
102 u_int8_t bgpn_major;
103 u_int8_t bgpn_minor;
104 };
105 #define BGP_NOTIFICATION_SIZE 21 /* unaligned */
106
107 struct bgp_route_refresh {
108 u_int8_t bgp_marker[16];
109 u_int16_t len;
110 u_int8_t type;
111 u_int8_t afi[2]; /* the compiler messes this structure up */
112 u_int8_t res; /* when doing misaligned sequences of int8 and int16 */
113 u_int8_t safi; /* afi should be int16 - so we have to access it using */
114 }; /* EXTRACT_16BITS(&bgp_route_refresh->afi) (sigh) */
115 #define BGP_ROUTE_REFRESH_SIZE 23
116
117 struct bgp_attr {
118 u_int8_t bgpa_flags;
119 u_int8_t bgpa_type;
120 union {
121 u_int8_t len;
122 u_int16_t elen;
123 } bgpa_len;
124 #define bgp_attr_len(p) \
125 (((p)->bgpa_flags & 0x10) ? \
126 EXTRACT_16BITS(&(p)->bgpa_len.elen) : (p)->bgpa_len.len)
127 #define bgp_attr_off(p) \
128 (((p)->bgpa_flags & 0x10) ? 4 : 3)
129 };
130
131 #define BGPTYPE_ORIGIN 1
132 #define BGPTYPE_AS_PATH 2
133 #define BGPTYPE_NEXT_HOP 3
134 #define BGPTYPE_MULTI_EXIT_DISC 4
135 #define BGPTYPE_LOCAL_PREF 5
136 #define BGPTYPE_ATOMIC_AGGREGATE 6
137 #define BGPTYPE_AGGREGATOR 7
138 #define BGPTYPE_COMMUNITIES 8 /* RFC1997 */
139 #define BGPTYPE_ORIGINATOR_ID 9 /* RFC1998 */
140 #define BGPTYPE_CLUSTER_LIST 10 /* RFC1998 */
141 #define BGPTYPE_DPA 11 /* draft-ietf-idr-bgp-dpa */
142 #define BGPTYPE_ADVERTISERS 12 /* RFC1863 */
143 #define BGPTYPE_RCID_PATH 13 /* RFC1863 */
144 #define BGPTYPE_MP_REACH_NLRI 14 /* RFC2283 */
145 #define BGPTYPE_MP_UNREACH_NLRI 15 /* RFC2283 */
146 #define BGPTYPE_EXTD_COMMUNITIES 16 /* draft-ietf-idr-bgp-ext-communities */
147 #define BGPTYPE_ATTR_SET 128 /* draft-marques-ppvpn-ibgp */
148
149 #define BGP_MP_NLRI_MINSIZE 3 /* End of RIB Marker detection */
150
151 static struct tok bgp_attr_values[] = {
152 { BGPTYPE_ORIGIN, "Origin"},
153 { BGPTYPE_AS_PATH, "AS Path"},
154 { BGPTYPE_NEXT_HOP, "Next Hop"},
155 { BGPTYPE_MULTI_EXIT_DISC, "Multi Exit Discriminator"},
156 { BGPTYPE_LOCAL_PREF, "Local Preference"},
157 { BGPTYPE_ATOMIC_AGGREGATE, "Atomic Aggregate"},
158 { BGPTYPE_AGGREGATOR, "Aggregator"},
159 { BGPTYPE_COMMUNITIES, "Community"},
160 { BGPTYPE_ORIGINATOR_ID, "Originator ID"},
161 { BGPTYPE_CLUSTER_LIST, "Cluster List"},
162 { BGPTYPE_DPA, "DPA"},
163 { BGPTYPE_ADVERTISERS, "Advertisers"},
164 { BGPTYPE_RCID_PATH, "RCID Path / Cluster ID"},
165 { BGPTYPE_MP_REACH_NLRI, "Multi-Protocol Reach NLRI"},
166 { BGPTYPE_MP_UNREACH_NLRI, "Multi-Protocol Unreach NLRI"},
167 { BGPTYPE_EXTD_COMMUNITIES, "Extended Community"},
168 { BGPTYPE_ATTR_SET, "Attribute Set"},
169 { 255, "Reserved for development"},
170 { 0, NULL}
171 };
172
173 #define BGP_AS_SET 1
174 #define BGP_AS_SEQUENCE 2
175 #define BGP_CONFED_AS_SEQUENCE 3 /* draft-ietf-idr-rfc3065bis-01 */
176 #define BGP_CONFED_AS_SET 4 /* draft-ietf-idr-rfc3065bis-01 */
177
178 static struct tok bgp_as_path_segment_open_values[] = {
179 { BGP_AS_SEQUENCE, ""},
180 { BGP_AS_SET, "{ "},
181 { BGP_CONFED_AS_SEQUENCE, "( "},
182 { BGP_CONFED_AS_SET, "({ "},
183 { 0, NULL}
184 };
185
186 static struct tok bgp_as_path_segment_close_values[] = {
187 { BGP_AS_SEQUENCE, ""},
188 { BGP_AS_SET, "}"},
189 { BGP_CONFED_AS_SEQUENCE, ")"},
190 { BGP_CONFED_AS_SET, "})"},
191 { 0, NULL}
192 };
193
194 #define BGP_OPT_AUTH 1
195 #define BGP_OPT_CAP 2
196
197
198 static struct tok bgp_opt_values[] = {
199 { BGP_OPT_AUTH, "Authentication Information"},
200 { BGP_OPT_CAP, "Capabilities Advertisement"},
201 { 0, NULL}
202 };
203
204 #define BGP_CAPCODE_MP 1
205 #define BGP_CAPCODE_RR 2
206 #define BGP_CAPCODE_ORF 3 /* XXX */
207 #define BGP_CAPCODE_RESTART 64 /* draft-ietf-idr-restart-05 */
208 #define BGP_CAPCODE_AS_NEW 65 /* XXX */
209 #define BGP_CAPCODE_DYN_CAP 67 /* XXX */
210 #define BGP_CAPCODE_RR_CISCO 128
211
212 static struct tok bgp_capcode_values[] = {
213 { BGP_CAPCODE_MP, "Multiprotocol Extensions"},
214 { BGP_CAPCODE_RR, "Route Refresh"},
215 { BGP_CAPCODE_ORF, "Cooperative Route Filtering"},
216 { BGP_CAPCODE_RESTART, "Graceful Restart"},
217 { BGP_CAPCODE_AS_NEW, "32-Bit AS Number"},
218 { BGP_CAPCODE_DYN_CAP, "Dynamic Capability"},
219 { BGP_CAPCODE_RR_CISCO, "Route Refresh (Cisco)"},
220 { 0, NULL}
221 };
222
223 #define BGP_NOTIFY_MAJOR_MSG 1
224 #define BGP_NOTIFY_MAJOR_OPEN 2
225 #define BGP_NOTIFY_MAJOR_UPDATE 3
226 #define BGP_NOTIFY_MAJOR_HOLDTIME 4
227 #define BGP_NOTIFY_MAJOR_FSM 5
228 #define BGP_NOTIFY_MAJOR_CEASE 6
229 #define BGP_NOTIFY_MAJOR_CAP 7
230
231 static struct tok bgp_notify_major_values[] = {
232 { BGP_NOTIFY_MAJOR_MSG, "Message Header Error"},
233 { BGP_NOTIFY_MAJOR_OPEN, "OPEN Message Error"},
234 { BGP_NOTIFY_MAJOR_UPDATE, "UPDATE Message Error"},
235 { BGP_NOTIFY_MAJOR_HOLDTIME,"Hold Timer Expired"},
236 { BGP_NOTIFY_MAJOR_FSM, "Finite State Machine Error"},
237 { BGP_NOTIFY_MAJOR_CEASE, "Cease"},
238 { BGP_NOTIFY_MAJOR_CAP, "Capability Message Error"},
239 { 0, NULL}
240 };
241
242 /* draft-ietf-idr-cease-subcode-02 */
243 #define BGP_NOTIFY_MINOR_CEASE_MAXPRFX 1
244 static struct tok bgp_notify_minor_cease_values[] = {
245 { BGP_NOTIFY_MINOR_CEASE_MAXPRFX, "Maximum Number of Prefixes Reached"},
246 { 2, "Administratively Shutdown"},
247 { 3, "Peer Unconfigured"},
248 { 4, "Administratively Reset"},
249 { 5, "Connection Rejected"},
250 { 6, "Other Configuration Change"},
251 { 7, "Connection Collision Resolution"},
252 { 0, NULL}
253 };
254
255 static struct tok bgp_notify_minor_msg_values[] = {
256 { 1, "Connection Not Synchronized"},
257 { 2, "Bad Message Length"},
258 { 3, "Bad Message Type"},
259 { 0, NULL}
260 };
261
262 static struct tok bgp_notify_minor_open_values[] = {
263 { 1, "Unsupported Version Number"},
264 { 2, "Bad Peer AS"},
265 { 3, "Bad BGP Identifier"},
266 { 4, "Unsupported Optional Parameter"},
267 { 5, "Authentication Failure"},
268 { 6, "Unacceptable Hold Time"},
269 { 0, NULL}
270 };
271
272 static struct tok bgp_notify_minor_update_values[] = {
273 { 1, "Malformed Attribute List"},
274 { 2, "Unrecognized Well-known Attribute"},
275 { 3, "Missing Well-known Attribute"},
276 { 4, "Attribute Flags Error"},
277 { 5, "Attribute Length Error"},
278 { 6, "Invalid ORIGIN Attribute"},
279 { 7, "AS Routing Loop"},
280 { 8, "Invalid NEXT_HOP Attribute"},
281 { 9, "Optional Attribute Error"},
282 { 10, "Invalid Network Field"},
283 { 11, "Malformed AS_PATH"},
284 { 0, NULL}
285 };
286
287 static struct tok bgp_notify_minor_cap_values[] = {
288 { 1, "Invalid Action Value" },
289 { 2, "Invalid Capability Length" },
290 { 3, "Malformed Capability Value" },
291 { 4, "Unsupported Capability Code" },
292 { 0, NULL }
293 };
294
295 static struct tok bgp_origin_values[] = {
296 { 0, "IGP"},
297 { 1, "EGP"},
298 { 2, "Incomplete"},
299 { 0, NULL}
300 };
301
302 /* Subsequent address family identifier, RFC2283 section 7 */
303 #define SAFNUM_RES 0
304 #define SAFNUM_UNICAST 1
305 #define SAFNUM_MULTICAST 2
306 #define SAFNUM_UNIMULTICAST 3
307 /* labeled BGP RFC3107 */
308 #define SAFNUM_LABUNICAST 4
309 #define SAFNUM_TUNNEL 64 /* XXX */
310 #define SAFNUM_VPLS 65 /* XXX */
311 #define SAFNUM_MDT 66 /* XXX */
312 /* Section 4.3.4 of draft-rosen-rfc2547bis-03.txt */
313 #define SAFNUM_VPNUNICAST 128
314 #define SAFNUM_VPNMULTICAST 129
315 #define SAFNUM_VPNUNIMULTICAST 130
316 /* draft-marques-ppvpn-rt-constrain-01.txt */
317 #define SAFNUM_RT_ROUTING_INFO 132
318
319 #define BGP_VPN_RD_LEN 8
320
321 static struct tok bgp_safi_values[] = {
322 { SAFNUM_RES, "Reserved"},
323 { SAFNUM_UNICAST, "Unicast"},
324 { SAFNUM_MULTICAST, "Multicast"},
325 { SAFNUM_UNIMULTICAST, "Unicast+Multicast"},
326 { SAFNUM_LABUNICAST, "labeled Unicast"},
327 { SAFNUM_TUNNEL, "Tunnel"},
328 { SAFNUM_VPLS, "VPLS"},
329 { SAFNUM_MDT, "MDT"},
330 { SAFNUM_VPNUNICAST, "labeled VPN Unicast"},
331 { SAFNUM_VPNMULTICAST, "labeled VPN Multicast"},
332 { SAFNUM_VPNUNIMULTICAST, "labeled VPN Unicast+Multicast"},
333 { SAFNUM_RT_ROUTING_INFO, "Route Target Routing Information"}, /* draft-marques-ppvpn-rt-constrain-01.txt */
334 { 0, NULL }
335 };
336
337 /* well-known community */
338 #define BGP_COMMUNITY_NO_EXPORT 0xffffff01
339 #define BGP_COMMUNITY_NO_ADVERT 0xffffff02
340 #define BGP_COMMUNITY_NO_EXPORT_SUBCONFED 0xffffff03
341
342 /* RFC1700 address family numbers */
343 #define AFNUM_INET 1
344 #define AFNUM_INET6 2
345 #define AFNUM_NSAP 3
346 #define AFNUM_HDLC 4
347 #define AFNUM_BBN1822 5
348 #define AFNUM_802 6
349 #define AFNUM_E163 7
350 #define AFNUM_E164 8
351 #define AFNUM_F69 9
352 #define AFNUM_X121 10
353 #define AFNUM_IPX 11
354 #define AFNUM_ATALK 12
355 #define AFNUM_DECNET 13
356 #define AFNUM_BANYAN 14
357 #define AFNUM_E164NSAP 15
358 /* draft-kompella-ppvpn-l2vpn */
359 #define AFNUM_L2VPN 196 /* still to be approved by IANA */
360
361 static struct tok bgp_afi_values[] = {
362 { 0, "Reserved"},
363 { AFNUM_INET, "IPv4"},
364 { AFNUM_INET6, "IPv6"},
365 { AFNUM_NSAP, "NSAP"},
366 { AFNUM_HDLC, "HDLC"},
367 { AFNUM_BBN1822, "BBN 1822"},
368 { AFNUM_802, "802"},
369 { AFNUM_E163, "E.163"},
370 { AFNUM_E164, "E.164"},
371 { AFNUM_F69, "F.69"},
372 { AFNUM_X121, "X.121"},
373 { AFNUM_IPX, "Novell IPX"},
374 { AFNUM_ATALK, "Appletalk"},
375 { AFNUM_DECNET, "Decnet IV"},
376 { AFNUM_BANYAN, "Banyan Vines"},
377 { AFNUM_E164NSAP, "E.164 with NSAP subaddress"},
378 { AFNUM_L2VPN, "Layer-2 VPN"},
379 { 0, NULL},
380 };
381
382 /* Extended community type - draft-ietf-idr-bgp-ext-communities-05 */
383 #define BGP_EXT_COM_RT_0 0x0002 /* Route Target,Format AS(2bytes):AN(4bytes) */
384 #define BGP_EXT_COM_RT_1 0x0102 /* Route Target,Format IP address:AN(2bytes) */
385 #define BGP_EXT_COM_RT_2 0x0202 /* Route Target,Format AN(4bytes):local(2bytes) */
386 #define BGP_EXT_COM_RO_0 0x0003 /* Route Origin,Format AS(2bytes):AN(4bytes) */
387 #define BGP_EXT_COM_RO_1 0x0103 /* Route Origin,Format IP address:AN(2bytes) */
388 #define BGP_EXT_COM_RO_2 0x0203 /* Route Origin,Format AN(4bytes):local(2bytes) */
389 #define BGP_EXT_COM_LINKBAND 0x4004 /* Link Bandwidth,Format AS(2B):Bandwidth(4B) */
390 /* rfc2547 bgp-mpls-vpns */
391 #define BGP_EXT_COM_CISCO_MCAST 0x0009 /* cisco proprietary */
392
393 #define BGP_EXT_COM_VPN_ORIGIN 0x0005 /* OSPF Domain ID / VPN of Origin - draft-rosen-vpns-ospf-bgp-mpls */
394 #define BGP_EXT_COM_VPN_ORIGIN2 0x0105 /* duplicate - keep for backwards compatability */
395 #define BGP_EXT_COM_VPN_ORIGIN3 0x0205 /* duplicate - keep for backwards compatability */
396 #define BGP_EXT_COM_VPN_ORIGIN4 0x8005 /* duplicate - keep for backwards compatability */
397
398 #define BGP_EXT_COM_OSPF_RTYPE 0x0306 /* OSPF Route Type,Format Area(4B):RouteType(1B):Options(1B) */
399 #define BGP_EXT_COM_OSPF_RTYPE2 0x8000 /* duplicate - keep for backwards compatability */
400
401 #define BGP_EXT_COM_OSPF_RID 0x0107 /* OSPF Router ID,Format RouterID(4B):Unused(2B) */
402 #define BGP_EXT_COM_OSPF_RID2 0x8001 /* duplicate - keep for backwards compatability */
403
404 #define BGP_EXT_COM_L2INFO 0x800a /* draft-kompella-ppvpn-l2vpn */
405
406 static struct tok bgp_extd_comm_flag_values[] = {
407 { 0x8000, "vendor-specific"},
408 { 0x4000, "non-transitive"},
409 { 0, NULL},
410 };
411
412 static struct tok bgp_extd_comm_subtype_values[] = {
413 { BGP_EXT_COM_RT_0, "target"},
414 { BGP_EXT_COM_RT_1, "target"},
415 { BGP_EXT_COM_RT_2, "target"},
416 { BGP_EXT_COM_RO_0, "origin"},
417 { BGP_EXT_COM_RO_1, "origin"},
418 { BGP_EXT_COM_RO_2, "origin"},
419 { BGP_EXT_COM_LINKBAND, "link-BW"},
420 { BGP_EXT_COM_CISCO_MCAST, "mdt-group"},
421 { BGP_EXT_COM_VPN_ORIGIN, "ospf-domain"},
422 { BGP_EXT_COM_VPN_ORIGIN2, "ospf-domain"},
423 { BGP_EXT_COM_VPN_ORIGIN3, "ospf-domain"},
424 { BGP_EXT_COM_VPN_ORIGIN4, "ospf-domain"},
425 { BGP_EXT_COM_OSPF_RTYPE, "ospf-route-type"},
426 { BGP_EXT_COM_OSPF_RTYPE2, "ospf-route-type"},
427 { BGP_EXT_COM_OSPF_RID, "ospf-router-id"},
428 { BGP_EXT_COM_OSPF_RID2, "ospf-router-id"},
429 { BGP_EXT_COM_L2INFO, "layer2-info"},
430 { 0, NULL},
431 };
432
433 /* OSPF codes for BGP_EXT_COM_OSPF_RTYPE draft-rosen-vpns-ospf-bgp-mpls */
434 #define BGP_OSPF_RTYPE_RTR 1 /* OSPF Router LSA */
435 #define BGP_OSPF_RTYPE_NET 2 /* OSPF Network LSA */
436 #define BGP_OSPF_RTYPE_SUM 3 /* OSPF Summary LSA */
437 #define BGP_OSPF_RTYPE_EXT 5 /* OSPF External LSA, note that ASBR doesn't apply to MPLS-VPN */
438 #define BGP_OSPF_RTYPE_NSSA 7 /* OSPF NSSA External*/
439 #define BGP_OSPF_RTYPE_SHAM 129 /* OSPF-MPLS-VPN Sham link */
440 #define BGP_OSPF_RTYPE_METRIC_TYPE 0x1 /* LSB of RTYPE Options Field */
441
442 static struct tok bgp_extd_comm_ospf_rtype_values[] = {
443 { BGP_OSPF_RTYPE_RTR, "Router" },
444 { BGP_OSPF_RTYPE_NET, "Network" },
445 { BGP_OSPF_RTYPE_SUM, "Summary" },
446 { BGP_OSPF_RTYPE_EXT, "External" },
447 { BGP_OSPF_RTYPE_NSSA,"NSSA External" },
448 { BGP_OSPF_RTYPE_SHAM,"MPLS-VPN Sham" },
449 { 0, NULL },
450 };
451
452 int
453 decode_prefix4(const u_char *pptr, char *buf, u_int buflen)
454 {
455 struct in_addr addr;
456 u_int plen;
457
458 TCHECK(pptr[0]);
459 plen = pptr[0];
460 if (32 < plen)
461 return -1;
462
463 memset(&addr, 0, sizeof(addr));
464 TCHECK2(pptr[1], (plen + 7) / 8);
465 memcpy(&addr, &pptr[1], (plen + 7) / 8);
466 if (plen % 8) {
467 ((u_char *)&addr)[(plen + 7) / 8 - 1] &=
468 ((0xff00 >> (plen % 8)) & 0xff);
469 }
470 snprintf(buf, buflen, "%s/%d", getname((u_char *)&addr), plen);
471 return 1 + (plen + 7) / 8;
472
473 trunc:
474 return -2;
475 }
476
477 static int
478 decode_labeled_prefix4(const u_char *pptr, char *buf, u_int buflen)
479 {
480 struct in_addr addr;
481 u_int plen;
482
483 TCHECK(pptr[0]);
484 plen = pptr[0]; /* get prefix length */
485
486 /* this is one of the weirdnesses of rfc3107
487 the label length (actually the label + COS bits)
488 is added to the prefix length;
489 we also do only read out just one label -
490 there is no real application for advertisement of
491 stacked labels in a a single BGP message
492 */
493
494 plen-=24; /* adjust prefixlen - labellength */
495
496 if (32 < plen)
497 return -1;
498
499 memset(&addr, 0, sizeof(addr));
500 TCHECK2(pptr[4], (plen + 7) / 8);
501 memcpy(&addr, &pptr[4], (plen + 7) / 8);
502 if (plen % 8) {
503 ((u_char *)&addr)[(plen + 7) / 8 - 1] &=
504 ((0xff00 >> (plen % 8)) & 0xff);
505 }
506 /* the label may get offsetted by 4 bits so lets shift it right */
507 snprintf(buf, buflen, "%s/%d, label:%u %s",
508 getname((u_char *)&addr),
509 plen,
510 EXTRACT_24BITS(pptr+1)>>4,
511 ((pptr[3]&1)==0) ? "(BOGUS: Bottom of Stack NOT set!)" : "(bottom)" );
512
513 return 4 + (plen + 7) / 8;
514
515 trunc:
516 return -2;
517 }
518
519 /* RDs and RTs share the same semantics
520 * we use bgp_vpn_rd_print for
521 * printing route targets inside a NLRI */
522 char *
523 bgp_vpn_rd_print (const u_char *pptr) {
524
525 /* allocate space for the largest possible string */
526 static char rd[sizeof("xxxxxxxxxx:xxxxx (xxx.xxx.xxx.xxx:xxxxx)")];
527 char *pos = rd;
528
529 /* ok lets load the RD format */
530 switch (EXTRACT_16BITS(pptr)) {
531
532 /* AS:IP-address fmt*/
533 case 0:
534 snprintf(pos, sizeof(rd) - (pos - rd), "%u:%u.%u.%u.%u",
535 EXTRACT_16BITS(pptr+2), *(pptr+4), *(pptr+5), *(pptr+6), *(pptr+7));
536 break;
537 /* IP-address:AS fmt*/
538
539 case 1:
540 snprintf(pos, sizeof(rd) - (pos - rd), "%u.%u.%u.%u:%u",
541 *(pptr+2), *(pptr+3), *(pptr+4), *(pptr+5), EXTRACT_16BITS(pptr+6));
542 break;
543
544 /* 4-byte-AS:number fmt*/
545 case 2:
546 snprintf(pos, sizeof(rd) - (pos - rd), "%u:%u (%u.%u.%u.%u:%u)",
547 EXTRACT_32BITS(pptr+2), EXTRACT_16BITS(pptr+6),
548 *(pptr+2), *(pptr+3), *(pptr+4), *(pptr+5), EXTRACT_16BITS(pptr+6));
549 break;
550 default:
551 snprintf(pos, sizeof(rd) - (pos - rd), "unknown RD format");
552 break;
553 }
554 pos += strlen(pos);
555 *(pos) = '\0';
556 return (rd);
557 }
558
559 static int
560 decode_rt_routing_info(const u_char *pptr, char *buf, u_int buflen)
561 {
562 u_int8_t route_target[8];
563 u_int plen;
564
565 TCHECK(pptr[0]);
566 plen = pptr[0]; /* get prefix length */
567
568 plen-=32; /* adjust prefix length */
569
570 if (0 < plen)
571 return -1;
572
573 memset(&route_target, 0, sizeof(route_target));
574 TCHECK2(pptr[1], (plen + 7) / 8);
575 memcpy(&route_target, &pptr[1], (plen + 7) / 8);
576 if (plen % 8) {
577 ((u_char *)&route_target)[(plen + 7) / 8 - 1] &=
578 ((0xff00 >> (plen % 8)) & 0xff);
579 }
580 snprintf(buf, buflen, "origin AS: %u, route target %s",
581 EXTRACT_32BITS(pptr+1),
582 bgp_vpn_rd_print((u_char *)&route_target));
583
584 return 5 + (plen + 7) / 8;
585
586 trunc:
587 return -2;
588 }
589
590 static int
591 decode_labeled_vpn_prefix4(const u_char *pptr, char *buf, u_int buflen)
592 {
593 struct in_addr addr;
594 u_int plen;
595
596 TCHECK(pptr[0]);
597 plen = pptr[0]; /* get prefix length */
598
599 plen-=(24+64); /* adjust prefixlen - labellength - RD len*/
600
601 if (32 < plen)
602 return -1;
603
604 memset(&addr, 0, sizeof(addr));
605 TCHECK2(pptr[12], (plen + 7) / 8);
606 memcpy(&addr, &pptr[12], (plen + 7) / 8);
607 if (plen % 8) {
608 ((u_char *)&addr)[(plen + 7) / 8 - 1] &=
609 ((0xff00 >> (plen % 8)) & 0xff);
610 }
611 /* the label may get offsetted by 4 bits so lets shift it right */
612 snprintf(buf, buflen, "RD: %s, %s/%d, label:%u %s",
613 bgp_vpn_rd_print(pptr+4),
614 getname((u_char *)&addr),
615 plen,
616 EXTRACT_24BITS(pptr+1)>>4,
617 ((pptr[3]&1)==0) ? "(BOGUS: Bottom of Stack NOT set!)" : "(bottom)" );
618
619 return 12 + (plen + 7) / 8;
620
621 trunc:
622 return -2;
623 }
624
625 static int
626 decode_labeled_vpn_l2(const u_char *pptr, char *buf, u_int buflen)
627 {
628 int plen,tlen,strlen,tlv_type,tlv_len,ttlv_len;
629
630 TCHECK2(pptr[0], 2);
631 plen=EXTRACT_16BITS(pptr);
632 tlen=plen;
633 pptr+=2;
634 TCHECK2(pptr[0],15);
635 strlen=snprintf(buf, buflen, "RD: %s, CE-ID: %u, Label-Block Offset: %u, Label Base %u",
636 bgp_vpn_rd_print(pptr),
637 EXTRACT_16BITS(pptr+8),
638 EXTRACT_16BITS(pptr+10),
639 EXTRACT_24BITS(pptr+12)>>4); /* the label is offsetted by 4 bits so lets shift it right */
640 pptr+=15;
641 tlen-=15;
642
643 /* ok now the variable part - lets read out TLVs*/
644 while (tlen>0) {
645 if (tlen < 3)
646 return -1;
647 TCHECK2(pptr[0], 3);
648 tlv_type=*pptr++;
649 tlv_len=EXTRACT_16BITS(pptr);
650 ttlv_len=tlv_len;
651 pptr+=2;
652
653 switch(tlv_type) {
654 case 1:
655 strlen+=snprintf(buf+strlen,buflen-strlen, "\n\t\tcircuit status vector (%u) length: %u: 0x",
656 tlv_type,
657 tlv_len);
658 ttlv_len=ttlv_len/8+1; /* how many bytes do we need to read ? */
659 while (ttlv_len>0) {
660 TCHECK(pptr[0]);
661 strlen+=snprintf(buf+strlen,buflen-strlen, "%02x",*pptr++);
662 ttlv_len--;
663 }
664 break;
665 default:
666 snprintf(buf+strlen,buflen-strlen, "\n\t\tunknown TLV #%u, length: %u",
667 tlv_type,
668 tlv_len);
669 break;
670 }
671 tlen-=(tlv_len<<3); /* the tlv-length is expressed in bits so lets shift it tright */
672 }
673 return plen+2;
674
675 trunc:
676 return -2;
677 }
678
679 #ifdef INET6
680 int
681 decode_prefix6(const u_char *pd, char *buf, u_int buflen)
682 {
683 struct in6_addr addr;
684 u_int plen;
685
686 TCHECK(pd[0]);
687 plen = pd[0];
688 if (128 < plen)
689 return -1;
690
691 memset(&addr, 0, sizeof(addr));
692 TCHECK2(pd[1], (plen + 7) / 8);
693 memcpy(&addr, &pd[1], (plen + 7) / 8);
694 if (plen % 8) {
695 addr.s6_addr[(plen + 7) / 8 - 1] &=
696 ((0xff00 >> (plen % 8)) & 0xff);
697 }
698 snprintf(buf, buflen, "%s/%d", getname6((u_char *)&addr), plen);
699 return 1 + (plen + 7) / 8;
700
701 trunc:
702 return -2;
703 }
704
705 static int
706 decode_labeled_prefix6(const u_char *pptr, char *buf, u_int buflen)
707 {
708 struct in6_addr addr;
709 u_int plen;
710
711 TCHECK(pptr[0]);
712 plen = pptr[0]; /* get prefix length */
713 plen-=24; /* adjust prefixlen - labellength */
714
715 if (128 < plen)
716 return -1;
717
718 memset(&addr, 0, sizeof(addr));
719 TCHECK2(pptr[4], (plen + 7) / 8);
720 memcpy(&addr, &pptr[4], (plen + 7) / 8);
721 if (plen % 8) {
722 addr.s6_addr[(plen + 7) / 8 - 1] &=
723 ((0xff00 >> (plen % 8)) & 0xff);
724 }
725 /* the label may get offsetted by 4 bits so lets shift it right */
726 snprintf(buf, buflen, "%s/%d, label:%u %s",
727 getname6((u_char *)&addr),
728 plen,
729 EXTRACT_24BITS(pptr+1)>>4,
730 ((pptr[3]&1)==0) ? "(BOGUS: Bottom of Stack NOT set!)" : "(bottom)" );
731
732 return 4 + (plen + 7) / 8;
733
734 trunc:
735 return -2;
736 }
737
738 static int
739 decode_labeled_vpn_prefix6(const u_char *pptr, char *buf, u_int buflen)
740 {
741 struct in6_addr addr;
742 u_int plen;
743
744 TCHECK(pptr[0]);
745 plen = pptr[0]; /* get prefix length */
746
747 plen-=(24+64); /* adjust prefixlen - labellength - RD len*/
748
749 if (128 < plen)
750 return -1;
751
752 memset(&addr, 0, sizeof(addr));
753 TCHECK2(pptr[12], (plen + 7) / 8);
754 memcpy(&addr, &pptr[12], (plen + 7) / 8);
755 if (plen % 8) {
756 addr.s6_addr[(plen + 7) / 8 - 1] &=
757 ((0xff00 >> (plen % 8)) & 0xff);
758 }
759 /* the label may get offsetted by 4 bits so lets shift it right */
760 snprintf(buf, buflen, "RD: %s, %s/%d, label:%u %s",
761 bgp_vpn_rd_print(pptr+4),
762 getname6((u_char *)&addr),
763 plen,
764 EXTRACT_24BITS(pptr+1)>>4,
765 ((pptr[3]&1)==0) ? "(BOGUS: Bottom of Stack NOT set!)" : "(bottom)" );
766
767 return 12 + (plen + 7) / 8;
768
769 trunc:
770 return -2;
771 }
772 #endif
773
774 static int
775 decode_labeled_clnp_prefix(const u_char *pptr, char *buf, u_int buflen)
776 {
777 u_int8_t addr[19];
778 u_int plen;
779
780 TCHECK(pptr[0]);
781 plen = pptr[0]; /* get prefix length */
782 plen-=24; /* adjust prefixlen - labellength */
783
784 if (152 < plen)
785 return -1;
786
787 memset(&addr, 0, sizeof(addr));
788 TCHECK2(pptr[4], (plen + 7) / 8);
789 memcpy(&addr, &pptr[4], (plen + 7) / 8);
790 if (plen % 8) {
791 addr[(plen + 7) / 8 - 1] &=
792 ((0xff00 >> (plen % 8)) & 0xff);
793 }
794 /* the label may get offsetted by 4 bits so lets shift it right */
795 snprintf(buf, buflen, "%s/%d, label:%u %s",
796 isonsap_string(addr,(plen + 7) / 8 - 1),
797 plen,
798 EXTRACT_24BITS(pptr+1)>>4,
799 ((pptr[3]&1)==0) ? "(BOGUS: Bottom of Stack NOT set!)" : "(bottom)" );
800
801 return 4 + (plen + 7) / 8;
802
803 trunc:
804 return -2;
805 }
806
807 static int
808 decode_labeled_vpn_clnp_prefix(const u_char *pptr, char *buf, u_int buflen)
809 {
810 u_int8_t addr[19];
811 u_int plen;
812
813 TCHECK(pptr[0]);
814 plen = pptr[0]; /* get prefix length */
815
816 plen-=(24+64); /* adjust prefixlen - labellength - RD len*/
817
818 if (152 < plen)
819 return -1;
820
821 memset(&addr, 0, sizeof(addr));
822 TCHECK2(pptr[12], (plen + 7) / 8);
823 memcpy(&addr, &pptr[12], (plen + 7) / 8);
824 if (plen % 8) {
825 addr[(plen + 7) / 8 - 1] &=
826 ((0xff00 >> (plen % 8)) & 0xff);
827 }
828 /* the label may get offsetted by 4 bits so lets shift it right */
829 snprintf(buf, buflen, "RD: %s, %s/%d, label:%u %s",
830 bgp_vpn_rd_print(pptr+4),
831 isonsap_string(addr,(plen + 7) / 8 - 1),
832 plen,
833 EXTRACT_24BITS(pptr+1)>>4,
834 ((pptr[3]&1)==0) ? "(BOGUS: Bottom of Stack NOT set!)" : "(bottom)" );
835
836 return 12 + (plen + 7) / 8;
837
838 trunc:
839 return -2;
840 }
841
842 static int
843 bgp_attr_print(const struct bgp_attr *attr, const u_char *pptr, int len)
844 {
845 int i;
846 u_int16_t af;
847 u_int8_t safi, snpa;
848 union { /* copy buffer for bandwidth values */
849 float f;
850 u_int32_t i;
851 } bw;
852 int advance;
853 int tlen;
854 const u_char *tptr;
855 char buf[MAXHOSTNAMELEN + 100];
856 char tokbuf[TOKBUFSIZE];
857
858 tptr = pptr;
859 tlen=len;
860
861 switch (attr->bgpa_type) {
862 case BGPTYPE_ORIGIN:
863 if (len != 1)
864 printf("invalid len");
865 else {
866 TCHECK(*tptr);
867 printf("%s", tok2strbuf(bgp_origin_values,
868 "Unknown Origin Typecode",
869 tptr[0],
870 tokbuf, sizeof(tokbuf)));
871 }
872 break;
873
874 case BGPTYPE_AS_PATH:
875 if (len % 2) {
876 printf("invalid len");
877 break;
878 }
879 if (!len) {
880 printf("empty");
881 break;
882 }
883
884 while (tptr < pptr + len) {
885 TCHECK(tptr[0]);
886 printf("%s", tok2strbuf(bgp_as_path_segment_open_values,
887 "?", tptr[0],
888 tokbuf, sizeof(tokbuf)));
889 for (i = 0; i < tptr[1] * 2; i += 2) {
890 TCHECK2(tptr[2 + i], 2);
891 printf("%u ", EXTRACT_16BITS(&tptr[2 + i]));
892 }
893 TCHECK(tptr[0]);
894 printf("%s", tok2strbuf(bgp_as_path_segment_close_values,
895 "?", tptr[0],
896 tokbuf, sizeof(tokbuf)));
897 TCHECK(tptr[1]);
898 tptr += 2 + tptr[1] * 2;
899 }
900 break;
901 case BGPTYPE_NEXT_HOP:
902 if (len != 4)
903 printf("invalid len");
904 else {
905 TCHECK2(tptr[0], 4);
906 printf("%s", getname(tptr));
907 }
908 break;
909 case BGPTYPE_MULTI_EXIT_DISC:
910 case BGPTYPE_LOCAL_PREF:
911 if (len != 4)
912 printf("invalid len");
913 else {
914 TCHECK2(tptr[0], 4);
915 printf("%u", EXTRACT_32BITS(tptr));
916 }
917 break;
918 case BGPTYPE_ATOMIC_AGGREGATE:
919 if (len != 0)
920 printf("invalid len");
921 break;
922 case BGPTYPE_AGGREGATOR:
923 if (len != 6) {
924 printf("invalid len");
925 break;
926 }
927 TCHECK2(tptr[0], 6);
928 printf(" AS #%u, origin %s", EXTRACT_16BITS(tptr),
929 getname(tptr + 2));
930 break;
931 case BGPTYPE_COMMUNITIES:
932 if (len % 4) {
933 printf("invalid len");
934 break;
935 }
936 while (tlen>0) {
937 u_int32_t comm;
938 TCHECK2(tptr[0], 4);
939 comm = EXTRACT_32BITS(tptr);
940 switch (comm) {
941 case BGP_COMMUNITY_NO_EXPORT:
942 printf(" NO_EXPORT");
943 break;
944 case BGP_COMMUNITY_NO_ADVERT:
945 printf(" NO_ADVERTISE");
946 break;
947 case BGP_COMMUNITY_NO_EXPORT_SUBCONFED:
948 printf(" NO_EXPORT_SUBCONFED");
949 break;
950 default:
951 printf("%u:%u%s",
952 (comm >> 16) & 0xffff,
953 comm & 0xffff,
954 (tlen>4) ? ", " : "");
955 break;
956 }
957 tlen -=4;
958 tptr +=4;
959 }
960 break;
961 case BGPTYPE_ORIGINATOR_ID:
962 if (len != 4) {
963 printf("invalid len");
964 break;
965 }
966 TCHECK2(tptr[0], 4);
967 printf("%s",getname(tptr));
968 break;
969 case BGPTYPE_CLUSTER_LIST:
970 if (len % 4) {
971 printf("invalid len");
972 break;
973 }
974 while (tlen>0) {
975 TCHECK2(tptr[0], 4);
976 printf("%s%s",
977 getname(tptr),
978 (tlen>4) ? ", " : "");
979 tlen -=4;
980 tptr +=4;
981 }
982 break;
983 case BGPTYPE_MP_REACH_NLRI:
984 TCHECK2(tptr[0], 3);
985 af = EXTRACT_16BITS(tptr);
986 safi = tptr[2];
987
988 printf("\n\t AFI: %s (%u), %sSAFI: %s (%u)",
989 tok2strbuf(bgp_afi_values, "Unknown AFI", af,
990 tokbuf, sizeof(tokbuf)),
991 af,
992 (safi>128) ? "vendor specific " : "", /* 128 is meanwhile wellknown */
993 tok2strbuf(bgp_safi_values, "Unknown SAFI", safi,
994 tokbuf, sizeof(tokbuf)),
995 safi);
996
997 switch(af<<8 | safi) {
998 case (AFNUM_INET<<8 | SAFNUM_UNICAST):
999 case (AFNUM_INET<<8 | SAFNUM_MULTICAST):
1000 case (AFNUM_INET<<8 | SAFNUM_UNIMULTICAST):
1001 case (AFNUM_INET<<8 | SAFNUM_LABUNICAST):
1002 case (AFNUM_INET<<8 | SAFNUM_RT_ROUTING_INFO):
1003 case (AFNUM_INET<<8 | SAFNUM_VPNUNICAST):
1004 case (AFNUM_INET<<8 | SAFNUM_VPNMULTICAST):
1005 case (AFNUM_INET<<8 | SAFNUM_VPNUNIMULTICAST):
1006 #ifdef INET6
1007 case (AFNUM_INET6<<8 | SAFNUM_UNICAST):
1008 case (AFNUM_INET6<<8 | SAFNUM_MULTICAST):
1009 case (AFNUM_INET6<<8 | SAFNUM_UNIMULTICAST):
1010 case (AFNUM_INET6<<8 | SAFNUM_LABUNICAST):
1011 case (AFNUM_INET6<<8 | SAFNUM_RT_ROUTING_INFO):
1012 case (AFNUM_INET6<<8 | SAFNUM_VPNUNICAST):
1013 case (AFNUM_INET6<<8 | SAFNUM_VPNMULTICAST):
1014 case (AFNUM_INET6<<8 | SAFNUM_VPNUNIMULTICAST):
1015 #endif
1016 case (AFNUM_NSAP<<8 | SAFNUM_UNICAST):
1017 case (AFNUM_NSAP<<8 | SAFNUM_MULTICAST):
1018 case (AFNUM_NSAP<<8 | SAFNUM_UNIMULTICAST):
1019 case (AFNUM_NSAP<<8 | SAFNUM_VPNUNICAST):
1020 case (AFNUM_NSAP<<8 | SAFNUM_VPNMULTICAST):
1021 case (AFNUM_NSAP<<8 | SAFNUM_VPNUNIMULTICAST):
1022 case (AFNUM_L2VPN<<8 | SAFNUM_VPNUNICAST):
1023 case (AFNUM_L2VPN<<8 | SAFNUM_VPNMULTICAST):
1024 case (AFNUM_L2VPN<<8 | SAFNUM_VPNUNIMULTICAST):
1025 break;
1026 default:
1027 TCHECK2(tptr[0], tlen);
1028 printf("\n\t no AFI %u / SAFI %u decoder",af,safi);
1029 if (vflag <= 1)
1030 print_unknown_data(tptr,"\n\t ",tlen);
1031 goto done;
1032 break;
1033 }
1034
1035 tptr +=3;
1036
1037 TCHECK(tptr[0]);
1038 tlen = tptr[0];
1039 tptr++;
1040
1041 if (tlen) {
1042 printf("\n\t nexthop: ");
1043 while (tlen > 0) {
1044 switch(af<<8 | safi) {
1045 case (AFNUM_INET<<8 | SAFNUM_UNICAST):
1046 case (AFNUM_INET<<8 | SAFNUM_MULTICAST):
1047 case (AFNUM_INET<<8 | SAFNUM_UNIMULTICAST):
1048 case (AFNUM_INET<<8 | SAFNUM_LABUNICAST):
1049 case (AFNUM_INET<<8 | SAFNUM_RT_ROUTING_INFO):
1050 if (tlen < (int)sizeof(struct in_addr)) {
1051 printf("invalid len");
1052 tlen = 0;
1053 } else {
1054 TCHECK2(tptr[0], sizeof(struct in_addr));
1055 printf("%s",getname(tptr));
1056 tlen -= sizeof(struct in_addr);
1057 tptr += sizeof(struct in_addr);
1058 }
1059 break;
1060 case (AFNUM_INET<<8 | SAFNUM_VPNUNICAST):
1061 case (AFNUM_INET<<8 | SAFNUM_VPNMULTICAST):
1062 case (AFNUM_INET<<8 | SAFNUM_VPNUNIMULTICAST):
1063 if (tlen < (int)(sizeof(struct in_addr)+BGP_VPN_RD_LEN)) {
1064 printf("invalid len");
1065 tlen = 0;
1066 } else {
1067 TCHECK2(tptr[0], sizeof(struct in_addr)+BGP_VPN_RD_LEN);
1068 printf("RD: %s, %s",
1069 bgp_vpn_rd_print(tptr),
1070 getname(tptr+BGP_VPN_RD_LEN));
1071 tlen -= (sizeof(struct in_addr)+BGP_VPN_RD_LEN);
1072 tptr += (sizeof(struct in_addr)+BGP_VPN_RD_LEN);
1073 }
1074 break;
1075 #ifdef INET6
1076 case (AFNUM_INET6<<8 | SAFNUM_UNICAST):
1077 case (AFNUM_INET6<<8 | SAFNUM_MULTICAST):
1078 case (AFNUM_INET6<<8 | SAFNUM_UNIMULTICAST):
1079 case (AFNUM_INET6<<8 | SAFNUM_LABUNICAST):
1080 case (AFNUM_INET6<<8 | SAFNUM_RT_ROUTING_INFO):
1081 if (tlen < (int)sizeof(struct in6_addr)) {
1082 printf("invalid len");
1083 tlen = 0;
1084 } else {
1085 TCHECK2(tptr[0], sizeof(struct in6_addr));
1086 printf("%s", getname6(tptr));
1087 tlen -= sizeof(struct in6_addr);
1088 tptr += sizeof(struct in6_addr);
1089 }
1090 break;
1091 case (AFNUM_INET6<<8 | SAFNUM_VPNUNICAST):
1092 case (AFNUM_INET6<<8 | SAFNUM_VPNMULTICAST):
1093 case (AFNUM_INET6<<8 | SAFNUM_VPNUNIMULTICAST):
1094 if (tlen < (int)(sizeof(struct in6_addr)+BGP_VPN_RD_LEN)) {
1095 printf("invalid len");
1096 tlen = 0;
1097 } else {
1098 TCHECK2(tptr[0], sizeof(struct in6_addr)+BGP_VPN_RD_LEN);
1099 printf("RD: %s, %s",
1100 bgp_vpn_rd_print(tptr),
1101 getname6(tptr+BGP_VPN_RD_LEN));
1102 tlen -= (sizeof(struct in6_addr)+BGP_VPN_RD_LEN);
1103 tptr += (sizeof(struct in6_addr)+BGP_VPN_RD_LEN);
1104 }
1105 break;
1106 #endif
1107 case (AFNUM_L2VPN<<8 | SAFNUM_VPNUNICAST):
1108 case (AFNUM_L2VPN<<8 | SAFNUM_VPNMULTICAST):
1109 case (AFNUM_L2VPN<<8 | SAFNUM_VPNUNIMULTICAST):
1110 if (tlen < (int)sizeof(struct in_addr)) {
1111 printf("invalid len");
1112 tlen = 0;
1113 } else {
1114 TCHECK2(tptr[0], sizeof(struct in_addr));
1115 printf("%s", getname(tptr));
1116 tlen -= (sizeof(struct in_addr));
1117 tptr += (sizeof(struct in_addr));
1118 }
1119 break;
1120 case (AFNUM_NSAP<<8 | SAFNUM_UNICAST):
1121 case (AFNUM_NSAP<<8 | SAFNUM_MULTICAST):
1122 case (AFNUM_NSAP<<8 | SAFNUM_UNIMULTICAST):
1123 TCHECK2(tptr[0], tlen);
1124 printf("%s",isonsap_string(tptr,tlen));
1125 tptr += tlen;
1126 tlen = 0;
1127 break;
1128
1129 case (AFNUM_NSAP<<8 | SAFNUM_VPNUNICAST):
1130 case (AFNUM_NSAP<<8 | SAFNUM_VPNMULTICAST):
1131 case (AFNUM_NSAP<<8 | SAFNUM_VPNUNIMULTICAST):
1132 if (tlen < BGP_VPN_RD_LEN+1) {
1133 printf("invalid len");
1134 tlen = 0;
1135 } else {
1136 TCHECK2(tptr[0], tlen);
1137 printf("RD: %s, %s",
1138 bgp_vpn_rd_print(tptr),
1139 isonsap_string(tptr+BGP_VPN_RD_LEN,tlen-BGP_VPN_RD_LEN));
1140 /* rfc986 mapped IPv4 address ? */
1141 if (EXTRACT_32BITS(tptr+BGP_VPN_RD_LEN) == 0x47000601)
1142 printf(" = %s", getname(tptr+BGP_VPN_RD_LEN+4));
1143 #ifdef INET6
1144 /* rfc1888 mapped IPv6 address ? */
1145 else if (EXTRACT_24BITS(tptr+BGP_VPN_RD_LEN) == 0x350000)
1146 printf(" = %s", getname6(tptr+BGP_VPN_RD_LEN+3));
1147 #endif
1148 tptr += tlen;
1149 tlen = 0;
1150 }
1151 break;
1152 default:
1153 TCHECK2(tptr[0], tlen);
1154 printf("no AFI %u/SAFI %u decoder",af,safi);
1155 if (vflag <= 1)
1156 print_unknown_data(tptr,"\n\t ",tlen);
1157 tptr += tlen;
1158 tlen = 0;
1159 goto done;
1160 break;
1161 }
1162 }
1163 }
1164 tptr += tlen;
1165
1166 TCHECK(tptr[0]);
1167 snpa = tptr[0];
1168 tptr++;
1169
1170 if (snpa) {
1171 printf("\n\t %u SNPA", snpa);
1172 for (/*nothing*/; snpa > 0; snpa--) {
1173 TCHECK(tptr[0]);
1174 printf("\n\t %d bytes", tptr[0]);
1175 tptr += tptr[0] + 1;
1176 }
1177 } else {
1178 printf(", no SNPA");
1179 }
1180
1181 while (len - (tptr - pptr) > 0) {
1182 switch (af<<8 | safi) {
1183 case (AFNUM_INET<<8 | SAFNUM_UNICAST):
1184 case (AFNUM_INET<<8 | SAFNUM_MULTICAST):
1185 case (AFNUM_INET<<8 | SAFNUM_UNIMULTICAST):
1186 advance = decode_prefix4(tptr, buf, sizeof(buf));
1187 if (advance == -1)
1188 printf("\n\t (illegal prefix length)");
1189 else if (advance == -2)
1190 goto trunc;
1191 else
1192 printf("\n\t %s", buf);
1193 break;
1194 case (AFNUM_INET<<8 | SAFNUM_LABUNICAST):
1195 advance = decode_labeled_prefix4(tptr, buf, sizeof(buf));
1196 if (advance == -1)
1197 printf("\n\t (illegal prefix length)");
1198 else if (advance == -2)
1199 goto trunc;
1200 else
1201 printf("\n\t %s", buf);
1202 break;
1203 case (AFNUM_INET<<8 | SAFNUM_VPNUNICAST):
1204 case (AFNUM_INET<<8 | SAFNUM_VPNMULTICAST):
1205 case (AFNUM_INET<<8 | SAFNUM_VPNUNIMULTICAST):
1206 advance = decode_labeled_vpn_prefix4(tptr, buf, sizeof(buf));
1207 if (advance == -1)
1208 printf("\n\t (illegal prefix length)");
1209 else if (advance == -2)
1210 goto trunc;
1211 else
1212 printf("\n\t %s", buf);
1213 break;
1214 case (AFNUM_INET<<8 | SAFNUM_RT_ROUTING_INFO):
1215 advance = decode_rt_routing_info(tptr, buf, sizeof(buf));
1216 if (advance == -1)
1217 printf("\n\t (illegal prefix length)");
1218 else if (advance == -2)
1219 goto trunc;
1220 else
1221 printf("\n\t %s", buf);
1222 break;
1223 #ifdef INET6
1224 case (AFNUM_INET6<<8 | SAFNUM_UNICAST):
1225 case (AFNUM_INET6<<8 | SAFNUM_MULTICAST):
1226 case (AFNUM_INET6<<8 | SAFNUM_UNIMULTICAST):
1227 advance = decode_prefix6(tptr, buf, sizeof(buf));
1228 if (advance == -1)
1229 printf("\n\t (illegal prefix length)");
1230 else if (advance == -2)
1231 goto trunc;
1232 else
1233 printf("\n\t %s", buf);
1234 break;
1235 case (AFNUM_INET6<<8 | SAFNUM_LABUNICAST):
1236 advance = decode_labeled_prefix6(tptr, buf, sizeof(buf));
1237 if (advance == -1)
1238 printf("\n\t (illegal prefix length)");
1239 else if (advance == -2)
1240 goto trunc;
1241 else
1242 printf("\n\t %s", buf);
1243 break;
1244 case (AFNUM_INET6<<8 | SAFNUM_VPNUNICAST):
1245 case (AFNUM_INET6<<8 | SAFNUM_VPNMULTICAST):
1246 case (AFNUM_INET6<<8 | SAFNUM_VPNUNIMULTICAST):
1247 advance = decode_labeled_vpn_prefix6(tptr, buf, sizeof(buf));
1248 if (advance == -1)
1249 printf("\n\t (illegal prefix length)");
1250 else if (advance == -2)
1251 goto trunc;
1252 else
1253 printf("\n\t %s", buf);
1254 break;
1255 case (AFNUM_INET6<<8 | SAFNUM_RT_ROUTING_INFO):
1256 advance = decode_rt_routing_info(tptr, buf, sizeof(buf));
1257 if (advance == -1)
1258 printf("\n\t (illegal prefix length)");
1259 else if (advance == -2)
1260 goto trunc;
1261 else
1262 printf("\n\t %s", buf);
1263 break;
1264 #endif
1265 case (AFNUM_L2VPN<<8 | SAFNUM_VPNUNICAST):
1266 case (AFNUM_L2VPN<<8 | SAFNUM_VPNMULTICAST):
1267 case (AFNUM_L2VPN<<8 | SAFNUM_VPNUNIMULTICAST):
1268 advance = decode_labeled_vpn_l2(tptr, buf, sizeof(buf));
1269 if (advance == -1)
1270 printf("\n\t (illegal length)");
1271 else if (advance == -2)
1272 goto trunc;
1273 else
1274 printf("\n\t %s", buf);
1275 break;
1276 case (AFNUM_NSAP<<8 | SAFNUM_UNICAST):
1277 case (AFNUM_NSAP<<8 | SAFNUM_MULTICAST):
1278 case (AFNUM_NSAP<<8 | SAFNUM_UNIMULTICAST):
1279 advance = decode_labeled_clnp_prefix(tptr, buf, sizeof(buf));
1280 if (advance == -1)
1281 printf("\n\t (illegal prefix length)");
1282 else if (advance == -2)
1283 goto trunc;
1284 else
1285 printf("\n\t %s", buf);
1286 break;
1287 case (AFNUM_NSAP<<8 | SAFNUM_VPNUNICAST):
1288 case (AFNUM_NSAP<<8 | SAFNUM_VPNMULTICAST):
1289 case (AFNUM_NSAP<<8 | SAFNUM_VPNUNIMULTICAST):
1290 advance = decode_labeled_vpn_clnp_prefix(tptr, buf, sizeof(buf));
1291 if (advance == -1)
1292 printf("\n\t (illegal prefix length)");
1293 else if (advance == -2)
1294 goto trunc;
1295 else
1296 printf("\n\t %s", buf);
1297 break;
1298 default:
1299 TCHECK2(*tptr,tlen);
1300 printf("\n\t no AFI %u / SAFI %u decoder",af,safi);
1301 if (vflag <= 1)
1302 print_unknown_data(tptr,"\n\t ",tlen);
1303 advance = 0;
1304 tptr = pptr + len;
1305 break;
1306 }
1307 if (advance < 0)
1308 break;
1309 tptr += advance;
1310 }
1311 done:
1312 break;
1313
1314 case BGPTYPE_MP_UNREACH_NLRI:
1315 TCHECK2(tptr[0], BGP_MP_NLRI_MINSIZE);
1316 af = EXTRACT_16BITS(tptr);
1317 safi = tptr[2];
1318
1319 printf("\n\t AFI: %s (%u), %sSAFI: %s (%u)",
1320 tok2strbuf(bgp_afi_values, "Unknown AFI", af,
1321 tokbuf, sizeof(tokbuf)),
1322 af,
1323 (safi>128) ? "vendor specific " : "", /* 128 is meanwhile wellknown */
1324 tok2strbuf(bgp_safi_values, "Unknown SAFI", safi,
1325 tokbuf, sizeof(tokbuf)),
1326 safi);
1327
1328 if (len == BGP_MP_NLRI_MINSIZE)
1329 printf("\n\t End-of-Rib Marker (empty NLRI)");
1330
1331 tptr += 3;
1332
1333 while (len - (tptr - pptr) > 0) {
1334 switch (af<<8 | safi) {
1335 case (AFNUM_INET<<8 | SAFNUM_UNICAST):
1336 case (AFNUM_INET<<8 | SAFNUM_MULTICAST):
1337 case (AFNUM_INET<<8 | SAFNUM_UNIMULTICAST):
1338 advance = decode_prefix4(tptr, buf, sizeof(buf));
1339 if (advance == -1)
1340 printf("\n\t (illegal prefix length)");
1341 else if (advance == -2)
1342 goto trunc;
1343 else
1344 printf("\n\t %s", buf);
1345 break;
1346 case (AFNUM_INET<<8 | SAFNUM_LABUNICAST):
1347 advance = decode_labeled_prefix4(tptr, buf, sizeof(buf));
1348 if (advance == -1)
1349 printf("\n\t (illegal prefix length)");
1350 else if (advance == -2)
1351 goto trunc;
1352 else
1353 printf("\n\t %s", buf);
1354 break;
1355 case (AFNUM_INET<<8 | SAFNUM_VPNUNICAST):
1356 case (AFNUM_INET<<8 | SAFNUM_VPNMULTICAST):
1357 case (AFNUM_INET<<8 | SAFNUM_VPNUNIMULTICAST):
1358 advance = decode_labeled_vpn_prefix4(tptr, buf, sizeof(buf));
1359 if (advance == -1)
1360 printf("\n\t (illegal prefix length)");
1361 else if (advance == -2)
1362 goto trunc;
1363 else
1364 printf("\n\t %s", buf);
1365 break;
1366 #ifdef INET6
1367 case (AFNUM_INET6<<8 | SAFNUM_UNICAST):
1368 case (AFNUM_INET6<<8 | SAFNUM_MULTICAST):
1369 case (AFNUM_INET6<<8 | SAFNUM_UNIMULTICAST):
1370 advance = decode_prefix6(tptr, buf, sizeof(buf));
1371 if (advance == -1)
1372 printf("\n\t (illegal prefix length)");
1373 else if (advance == -2)
1374 goto trunc;
1375 else
1376 printf("\n\t %s", buf);
1377 break;
1378 case (AFNUM_INET6<<8 | SAFNUM_LABUNICAST):
1379 advance = decode_labeled_prefix6(tptr, buf, sizeof(buf));
1380 if (advance == -1)
1381 printf("\n\t (illegal prefix length)");
1382 else if (advance == -2)
1383 goto trunc;
1384 else
1385 printf("\n\t %s", buf);
1386 break;
1387 case (AFNUM_INET6<<8 | SAFNUM_VPNUNICAST):
1388 case (AFNUM_INET6<<8 | SAFNUM_VPNMULTICAST):
1389 case (AFNUM_INET6<<8 | SAFNUM_VPNUNIMULTICAST):
1390 advance = decode_labeled_vpn_prefix6(tptr, buf, sizeof(buf));
1391 if (advance == -1)
1392 printf("\n\t (illegal prefix length)");
1393 else if (advance == -2)
1394 goto trunc;
1395 else
1396 printf("\n\t %s", buf);
1397 break;
1398 #endif
1399 case (AFNUM_L2VPN<<8 | SAFNUM_VPNUNICAST):
1400 case (AFNUM_L2VPN<<8 | SAFNUM_VPNMULTICAST):
1401 case (AFNUM_L2VPN<<8 | SAFNUM_VPNUNIMULTICAST):
1402 advance = decode_labeled_vpn_l2(tptr, buf, sizeof(buf));
1403 if (advance == -1)
1404 printf("\n\t (illegal length)");
1405 else if (advance == -2)
1406 goto trunc;
1407 else
1408 printf("\n\t %s", buf);
1409 break;
1410 case (AFNUM_NSAP<<8 | SAFNUM_UNICAST):
1411 case (AFNUM_NSAP<<8 | SAFNUM_MULTICAST):
1412 case (AFNUM_NSAP<<8 | SAFNUM_UNIMULTICAST):
1413 advance = decode_labeled_clnp_prefix(tptr, buf, sizeof(buf));
1414 if (advance == -1)
1415 printf("\n\t (illegal prefix length)");
1416 else if (advance == -2)
1417 goto trunc;
1418 else
1419 printf("\n\t %s", buf);
1420 break;
1421 case (AFNUM_NSAP<<8 | SAFNUM_VPNUNICAST):
1422 case (AFNUM_NSAP<<8 | SAFNUM_VPNMULTICAST):
1423 case (AFNUM_NSAP<<8 | SAFNUM_VPNUNIMULTICAST):
1424 advance = decode_labeled_vpn_clnp_prefix(tptr, buf, sizeof(buf));
1425 if (advance == -1)
1426 printf("\n\t (illegal prefix length)");
1427 else if (advance == -2)
1428 goto trunc;
1429 else
1430 printf("\n\t %s", buf);
1431 break;
1432 default:
1433 TCHECK2(*(tptr-3),tlen);
1434 printf("no AFI %u / SAFI %u decoder",af,safi);
1435 if (vflag <= 1)
1436 print_unknown_data(tptr-3,"\n\t ",tlen);
1437 advance = 0;
1438 tptr = pptr + len;
1439 break;
1440 }
1441 if (advance < 0)
1442 break;
1443 tptr += advance;
1444 }
1445 break;
1446 case BGPTYPE_EXTD_COMMUNITIES:
1447 if (len % 8) {
1448 printf("invalid len");
1449 break;
1450 }
1451 while (tlen>0) {
1452 u_int16_t extd_comm;
1453
1454 TCHECK2(tptr[0], 2);
1455 extd_comm=EXTRACT_16BITS(tptr);
1456
1457 printf("\n\t %s (0x%04x), Flags [%s]",
1458 tok2strbuf(bgp_extd_comm_subtype_values,
1459 "unknown extd community typecode",
1460 extd_comm, tokbuf, sizeof(tokbuf)),
1461 extd_comm,
1462 bittok2str(bgp_extd_comm_flag_values, "none", extd_comm));
1463
1464 TCHECK2(*(tptr+2), 6);
1465 switch(extd_comm) {
1466 case BGP_EXT_COM_RT_0:
1467 case BGP_EXT_COM_RO_0:
1468 printf(": %u:%s",
1469 EXTRACT_16BITS(tptr+2),
1470 getname(tptr+4));
1471 break;
1472 case BGP_EXT_COM_RT_1:
1473 case BGP_EXT_COM_RO_1:
1474 printf(": %s:%u",
1475 getname(tptr+2),
1476 EXTRACT_16BITS(tptr+6));
1477 break;
1478 case BGP_EXT_COM_RT_2:
1479 case BGP_EXT_COM_RO_2:
1480 printf(": %u:%u",
1481 EXTRACT_32BITS(tptr+2),
1482 EXTRACT_16BITS(tptr+6));
1483 break;
1484 case BGP_EXT_COM_LINKBAND:
1485 bw.i = EXTRACT_32BITS(tptr+2);
1486 printf(": bandwidth: %.3f Mbps",
1487 bw.f*8/1000000);
1488 break;
1489 case BGP_EXT_COM_CISCO_MCAST:
1490 printf(": AS %u, group %s",
1491 EXTRACT_16BITS(tptr+2),
1492 getname(tptr+4));
1493 break;
1494 case BGP_EXT_COM_VPN_ORIGIN:
1495 case BGP_EXT_COM_VPN_ORIGIN2:
1496 case BGP_EXT_COM_VPN_ORIGIN3:
1497 case BGP_EXT_COM_VPN_ORIGIN4:
1498 case BGP_EXT_COM_OSPF_RID:
1499 case BGP_EXT_COM_OSPF_RID2:
1500 printf("%s", getname(tptr+2));
1501 break;
1502 case BGP_EXT_COM_OSPF_RTYPE:
1503 case BGP_EXT_COM_OSPF_RTYPE2:
1504 printf(": area:%s, router-type:%s, metric-type:%s%s",
1505 getname(tptr+2),
1506 tok2strbuf(bgp_extd_comm_ospf_rtype_values,
1507 "unknown (0x%02x)",
1508 *(tptr+6),
1509 tokbuf, sizeof(tokbuf)),
1510 (*(tptr+7) & BGP_OSPF_RTYPE_METRIC_TYPE) ? "E2" : "",
1511 (*(tptr+6) == (BGP_OSPF_RTYPE_EXT ||BGP_OSPF_RTYPE_NSSA )) ? "E1" : "");
1512 break;
1513 case BGP_EXT_COM_L2INFO:
1514 printf(": %s Control Flags [0x%02x]:MTU %u",
1515 tok2strbuf(l2vpn_encaps_values,
1516 "unknown encaps",
1517 *(tptr+2),
1518 tokbuf, sizeof(tokbuf)),
1519 *(tptr+3),
1520 EXTRACT_16BITS(tptr+4));
1521 break;
1522 default:
1523 TCHECK2(*tptr,8);
1524 print_unknown_data(tptr,"\n\t ",8);
1525 break;
1526 }
1527 tlen -=8;
1528 tptr +=8;
1529 }
1530 break;
1531
1532 case BGPTYPE_ATTR_SET:
1533 TCHECK2(tptr[0], 4);
1534 printf("\n\t Origin AS: %u", EXTRACT_32BITS(tptr));
1535 tptr+=4;
1536 len -=4;
1537
1538 while (len >= 2 ) {
1539 int alen;
1540 struct bgp_attr bgpa;
1541
1542 TCHECK2(tptr[0], sizeof(bgpa));
1543 memcpy(&bgpa, tptr, sizeof(bgpa));
1544 alen = bgp_attr_len(&bgpa);
1545 tptr += bgp_attr_off(&bgpa);
1546 len -= bgp_attr_off(&bgpa);
1547
1548 printf("\n\t %s (%u), length: %u",
1549 tok2strbuf(bgp_attr_values,
1550 "Unknown Attribute", bgpa.bgpa_type,
1551 tokbuf, sizeof(tokbuf)),
1552 bgpa.bgpa_type,
1553 alen);
1554
1555 if (bgpa.bgpa_flags) {
1556 printf(", Flags [%s%s%s%s",
1557 bgpa.bgpa_flags & 0x80 ? "O" : "",
1558 bgpa.bgpa_flags & 0x40 ? "T" : "",
1559 bgpa.bgpa_flags & 0x20 ? "P" : "",
1560 bgpa.bgpa_flags & 0x10 ? "E" : "");
1561 if (bgpa.bgpa_flags & 0xf)
1562 printf("+%x", bgpa.bgpa_flags & 0xf);
1563 printf("]: ");
1564 }
1565 /* FIXME check for recursion */
1566 if (!bgp_attr_print(&bgpa, tptr, alen))
1567 return 0;
1568 tptr += alen;
1569 len -= alen;
1570 }
1571 break;
1572
1573
1574 default:
1575 TCHECK2(*pptr,len);
1576 printf("\n\t no Attribute %u decoder",attr->bgpa_type); /* we have no decoder for the attribute */
1577 if (vflag <= 1)
1578 print_unknown_data(pptr,"\n\t ",len);
1579 break;
1580 }
1581 if (vflag > 1 && len) { /* omit zero length attributes*/
1582 TCHECK2(*pptr,len);
1583 print_unknown_data(pptr,"\n\t ",len);
1584 }
1585 return 1;
1586
1587 trunc:
1588 return 0;
1589 }
1590
1591 static void
1592 bgp_open_print(const u_char *dat, int length)
1593 {
1594 struct bgp_open bgpo;
1595 struct bgp_opt bgpopt;
1596 const u_char *opt;
1597 int i,cap_type,cap_len,tcap_len,cap_offset;
1598 char tokbuf[TOKBUFSIZE];
1599 char tokbuf2[TOKBUFSIZE];
1600
1601 TCHECK2(dat[0], BGP_OPEN_SIZE);
1602 memcpy(&bgpo, dat, BGP_OPEN_SIZE);
1603
1604 printf("\n\t Version %d, ", bgpo.bgpo_version);
1605 printf("my AS %u, ", ntohs(bgpo.bgpo_myas));
1606 printf("Holdtime %us, ", ntohs(bgpo.bgpo_holdtime));
1607 printf("ID %s", getname((u_char *)&bgpo.bgpo_id));
1608 printf("\n\t Optional parameters, length: %u", bgpo.bgpo_optlen);
1609
1610 /* some little sanity checking */
1611 if (length < bgpo.bgpo_optlen+BGP_OPEN_SIZE)
1612 return;
1613
1614 /* ugly! */
1615 opt = &((const struct bgp_open *)dat)->bgpo_optlen;
1616 opt++;
1617
1618 i = 0;
1619 while (i < bgpo.bgpo_optlen) {
1620 TCHECK2(opt[i], BGP_OPT_SIZE);
1621 memcpy(&bgpopt, &opt[i], BGP_OPT_SIZE);
1622 if (i + 2 + bgpopt.bgpopt_len > bgpo.bgpo_optlen) {
1623 printf("\n\t Option %d, length: %u", bgpopt.bgpopt_type, bgpopt.bgpopt_len);
1624 break;
1625 }
1626
1627 printf("\n\t Option %s (%u), length: %u",
1628 tok2strbuf(bgp_opt_values,"Unknown",
1629 bgpopt.bgpopt_type,
1630 tokbuf, sizeof(tokbuf)),
1631 bgpopt.bgpopt_type,
1632 bgpopt.bgpopt_len);
1633
1634 /* now lets decode the options we know*/
1635 switch(bgpopt.bgpopt_type) {
1636 case BGP_OPT_CAP:
1637 cap_type=opt[i+BGP_OPT_SIZE];
1638 cap_len=opt[i+BGP_OPT_SIZE+1];
1639 tcap_len=cap_len;
1640 printf("\n\t %s (%u), length: %u",
1641 tok2strbuf(bgp_capcode_values, "Unknown",
1642 cap_type, tokbuf, sizeof(tokbuf)),
1643 cap_type,
1644 cap_len);
1645 switch(cap_type) {
1646 case BGP_CAPCODE_MP:
1647 printf("\n\t\tAFI %s (%u), SAFI %s (%u)",
1648 tok2strbuf(bgp_afi_values, "Unknown",
1649 EXTRACT_16BITS(opt+i+BGP_OPT_SIZE+2),
1650 tokbuf, sizeof(tokbuf)),
1651 EXTRACT_16BITS(opt+i+BGP_OPT_SIZE+2),
1652 tok2strbuf(bgp_safi_values, "Unknown",
1653 opt[i+BGP_OPT_SIZE+5],
1654 tokbuf, sizeof(tokbuf)),
1655 opt[i+BGP_OPT_SIZE+5]);
1656 break;
1657 case BGP_CAPCODE_RESTART:
1658 printf("\n\t\tRestart Flags: [%s], Restart Time %us",
1659 ((opt[i+BGP_OPT_SIZE+2])&0x80) ? "R" : "none",
1660 EXTRACT_16BITS(opt+i+BGP_OPT_SIZE+2)&0xfff);
1661 tcap_len-=2;
1662 cap_offset=4;
1663 while(tcap_len>=4) {
1664 printf("\n\t\t AFI %s (%u), SAFI %s (%u), Forwarding state preserved: %s",
1665 tok2strbuf(bgp_afi_values,"Unknown",
1666 EXTRACT_16BITS(opt+i+BGP_OPT_SIZE+cap_offset),
1667 tokbuf, sizeof(tokbuf)),
1668 EXTRACT_16BITS(opt+i+BGP_OPT_SIZE+cap_offset),
1669 tok2strbuf(bgp_safi_values,"Unknown",
1670 opt[i+BGP_OPT_SIZE+cap_offset+2],
1671 tokbuf2, sizeof(tokbuf2)),
1672 opt[i+BGP_OPT_SIZE+cap_offset+2],
1673 ((opt[i+BGP_OPT_SIZE+cap_offset+3])&0x80) ? "yes" : "no" );
1674 tcap_len-=4;
1675 cap_offset+=4;
1676 }
1677 break;
1678 case BGP_CAPCODE_RR:
1679 case BGP_CAPCODE_RR_CISCO:
1680 break;
1681 default:
1682 TCHECK2(opt[i+BGP_OPT_SIZE+2],cap_len);
1683 printf("\n\t\tno decoder for Capability %u",
1684 cap_type);
1685 if (vflag <= 1)
1686 print_unknown_data(&opt[i+BGP_OPT_SIZE+2],"\n\t\t",cap_len);
1687 break;
1688 }
1689 if (vflag > 1) {
1690 TCHECK2(opt[i+BGP_OPT_SIZE+2],cap_len);
1691 print_unknown_data(&opt[i+BGP_OPT_SIZE+2],"\n\t\t",cap_len);
1692 }
1693 break;
1694 case BGP_OPT_AUTH:
1695 default:
1696 printf("\n\t no decoder for option %u",
1697 bgpopt.bgpopt_type);
1698 break;
1699 }
1700
1701 i += BGP_OPT_SIZE + bgpopt.bgpopt_len;
1702 }
1703 return;
1704 trunc:
1705 printf("[|BGP]");
1706 }
1707
1708 static void
1709 bgp_update_print(const u_char *dat, int length)
1710 {
1711 struct bgp bgp;
1712 struct bgp_attr bgpa;
1713 const u_char *p;
1714 int len;
1715 int i;
1716 char tokbuf[TOKBUFSIZE];
1717
1718 TCHECK2(dat[0], BGP_SIZE);
1719 memcpy(&bgp, dat, BGP_SIZE);
1720 p = dat + BGP_SIZE; /*XXX*/
1721
1722 /* Unfeasible routes */
1723 len = EXTRACT_16BITS(p);
1724 if (len) {
1725 /*
1726 * Without keeping state from the original NLRI message,
1727 * it's not possible to tell if this a v4 or v6 route,
1728 * so only try to decode it if we're not v6 enabled.
1729 */
1730 #ifdef INET6
1731 printf("\n\t Withdrawn routes: %d bytes", len);
1732 #else
1733 char buf[MAXHOSTNAMELEN + 100];
1734 int wpfx;
1735
1736 TCHECK2(p[2], len);
1737 i = 2;
1738
1739 printf("\n\t Withdrawn routes:");
1740
1741 while(i < 2 + len) {
1742 wpfx = decode_prefix4(&p[i], buf, sizeof(buf));
1743 if (wpfx == -1) {
1744 printf("\n\t (illegal prefix length)");
1745 break;
1746 } else if (wpfx == -2)
1747 goto trunc;
1748 else {
1749 i += wpfx;
1750 printf("\n\t %s", buf);
1751 }
1752 }
1753 #endif
1754 }
1755 p += 2 + len;
1756
1757 TCHECK2(p[0], 2);
1758 len = EXTRACT_16BITS(p);
1759
1760 if (len == 0 && length == BGP_UPDATE_MINSIZE) {
1761 printf("\n\t End-of-Rib Marker (empty NLRI)");
1762 return;
1763 }
1764
1765 if (len) {
1766 /* do something more useful!*/
1767 i = 2;
1768 while (i < 2 + len) {
1769 int alen, aoff;
1770
1771 TCHECK2(p[i], sizeof(bgpa));
1772 memcpy(&bgpa, &p[i], sizeof(bgpa));
1773 alen = bgp_attr_len(&bgpa);
1774 aoff = bgp_attr_off(&bgpa);
1775
1776 printf("\n\t %s (%u), length: %u",
1777 tok2strbuf(bgp_attr_values, "Unknown Attribute",
1778 bgpa.bgpa_type,
1779 tokbuf, sizeof(tokbuf)),
1780 bgpa.bgpa_type,
1781 alen);
1782
1783 if (bgpa.bgpa_flags) {
1784 printf(", Flags [%s%s%s%s",
1785 bgpa.bgpa_flags & 0x80 ? "O" : "",
1786 bgpa.bgpa_flags & 0x40 ? "T" : "",
1787 bgpa.bgpa_flags & 0x20 ? "P" : "",
1788 bgpa.bgpa_flags & 0x10 ? "E" : "");
1789 if (bgpa.bgpa_flags & 0xf)
1790 printf("+%x", bgpa.bgpa_flags & 0xf);
1791 printf("]: ");
1792 }
1793 if (!bgp_attr_print(&bgpa, &p[i + aoff], alen))
1794 goto trunc;
1795 i += aoff + alen;
1796 }
1797 }
1798 p += 2 + len;
1799
1800 if (dat + length > p) {
1801 printf("\n\t Updated routes:");
1802 while (dat + length > p) {
1803 char buf[MAXHOSTNAMELEN + 100];
1804 i = decode_prefix4(p, buf, sizeof(buf));
1805 if (i == -1) {
1806 printf("\n\t (illegal prefix length)");
1807 break;
1808 } else if (i == -2)
1809 goto trunc;
1810 else {
1811 printf("\n\t %s", buf);
1812 p += i;
1813 }
1814 }
1815 }
1816 return;
1817 trunc:
1818 printf("[|BGP]");
1819 }
1820
1821 static void
1822 bgp_notification_print(const u_char *dat, int length)
1823 {
1824 struct bgp_notification bgpn;
1825 const u_char *tptr;
1826 char tokbuf[TOKBUFSIZE];
1827 char tokbuf2[TOKBUFSIZE];
1828
1829 TCHECK2(dat[0], BGP_NOTIFICATION_SIZE);
1830 memcpy(&bgpn, dat, BGP_NOTIFICATION_SIZE);
1831
1832 /* some little sanity checking */
1833 if (length<BGP_NOTIFICATION_SIZE)
1834 return;
1835
1836 printf(", %s (%u)",
1837 tok2strbuf(bgp_notify_major_values, "Unknown Error",
1838 bgpn.bgpn_major, tokbuf, sizeof(tokbuf)),
1839 bgpn.bgpn_major);
1840
1841 switch (bgpn.bgpn_major) {
1842
1843 case BGP_NOTIFY_MAJOR_MSG:
1844 printf(", subcode %s (%u)",
1845 tok2strbuf(bgp_notify_minor_msg_values, "Unknown",
1846 bgpn.bgpn_minor, tokbuf, sizeof(tokbuf)),
1847 bgpn.bgpn_minor);
1848 break;
1849 case BGP_NOTIFY_MAJOR_OPEN:
1850 printf(", subcode %s (%u)",
1851 tok2strbuf(bgp_notify_minor_open_values, "Unknown",
1852 bgpn.bgpn_minor, tokbuf, sizeof(tokbuf)),
1853 bgpn.bgpn_minor);
1854 break;
1855 case BGP_NOTIFY_MAJOR_UPDATE:
1856 printf(", subcode %s (%u)",
1857 tok2strbuf(bgp_notify_minor_update_values, "Unknown",
1858 bgpn.bgpn_minor, tokbuf, sizeof(tokbuf)),
1859 bgpn.bgpn_minor);
1860 break;
1861 case BGP_NOTIFY_MAJOR_CAP:
1862 printf(" subcode %s (%u)",
1863 tok2strbuf(bgp_notify_minor_cap_values, "Unknown",
1864 bgpn.bgpn_minor, tokbuf, sizeof(tokbuf)),
1865 bgpn.bgpn_minor);
1866 case BGP_NOTIFY_MAJOR_CEASE:
1867 printf(", subcode %s (%u)",
1868 tok2strbuf(bgp_notify_minor_cease_values, "Unknown",
1869 bgpn.bgpn_minor, tokbuf, sizeof(tokbuf)),
1870 bgpn.bgpn_minor);
1871
1872 /* draft-ietf-idr-cease-subcode-02 mentions optionally 7 bytes
1873 * for the maxprefix subtype, which may contain AFI, SAFI and MAXPREFIXES
1874 */
1875 if(bgpn.bgpn_minor == BGP_NOTIFY_MINOR_CEASE_MAXPRFX && length >= BGP_NOTIFICATION_SIZE + 7) {
1876 tptr = dat + BGP_NOTIFICATION_SIZE;
1877 TCHECK2(*tptr, 7);
1878 printf(", AFI %s (%u), SAFI %s (%u), Max Prefixes: %u",
1879 tok2strbuf(bgp_afi_values, "Unknown",
1880 EXTRACT_16BITS(tptr), tokbuf, sizeof(tokbuf)),
1881 EXTRACT_16BITS(tptr),
1882 tok2strbuf(bgp_safi_values, "Unknown", *(tptr+2),
1883 tokbuf2, sizeof(tokbuf)),
1884 *(tptr+2),
1885 EXTRACT_32BITS(tptr+3));
1886 }
1887 break;
1888 default:
1889 break;
1890 }
1891
1892 return;
1893 trunc:
1894 printf("[|BGP]");
1895 }
1896
1897 static void
1898 bgp_route_refresh_print(const u_char *pptr, int len) {
1899
1900 const struct bgp_route_refresh *bgp_route_refresh_header;
1901 char tokbuf[TOKBUFSIZE];
1902 char tokbuf2[TOKBUFSIZE];
1903
1904 TCHECK2(pptr[0], BGP_ROUTE_REFRESH_SIZE);
1905
1906 /* some little sanity checking */
1907 if (len<BGP_ROUTE_REFRESH_SIZE)
1908 return;
1909
1910 bgp_route_refresh_header = (const struct bgp_route_refresh *)pptr;
1911
1912 printf("\n\t AFI %s (%u), SAFI %s (%u)",
1913 tok2strbuf(bgp_afi_values,"Unknown",
1914 /* this stinks but the compiler pads the structure
1915 * weird */
1916 EXTRACT_16BITS(&bgp_route_refresh_header->afi),
1917 tokbuf, sizeof(tokbuf)),
1918 EXTRACT_16BITS(&bgp_route_refresh_header->afi),
1919 tok2strbuf(bgp_safi_values,"Unknown",
1920 bgp_route_refresh_header->safi,
1921 tokbuf2, sizeof(tokbuf2)),
1922 bgp_route_refresh_header->safi);
1923
1924 if (vflag > 1) {
1925 TCHECK2(*pptr, len);
1926 print_unknown_data(pptr,"\n\t ", len);
1927 }
1928
1929 return;
1930 trunc:
1931 printf("[|BGP]");
1932 }
1933
1934 static int
1935 bgp_header_print(const u_char *dat, int length)
1936 {
1937 struct bgp bgp;
1938 char tokbuf[TOKBUFSIZE];
1939
1940 TCHECK2(dat[0], BGP_SIZE);
1941 memcpy(&bgp, dat, BGP_SIZE);
1942 printf("\n\t%s Message (%u), length: %u",
1943 tok2strbuf(bgp_msg_values, "Unknown", bgp.bgp_type,
1944 tokbuf, sizeof(tokbuf)),
1945 bgp.bgp_type,
1946 length);
1947
1948 switch (bgp.bgp_type) {
1949 case BGP_OPEN:
1950 bgp_open_print(dat, length);
1951 break;
1952 case BGP_UPDATE:
1953 bgp_update_print(dat, length);
1954 break;
1955 case BGP_NOTIFICATION:
1956 bgp_notification_print(dat, length);
1957 break;
1958 case BGP_KEEPALIVE:
1959 break;
1960 case BGP_ROUTE_REFRESH:
1961 bgp_route_refresh_print(dat, length);
1962 break;
1963 default:
1964 /* we have no decoder for the BGP message */
1965 TCHECK2(*dat, length);
1966 printf("\n\t no Message %u decoder",bgp.bgp_type);
1967 print_unknown_data(dat,"\n\t ",length);
1968 break;
1969 }
1970 return 1;
1971 trunc:
1972 printf("[|BGP]");
1973 return 0;
1974 }
1975
1976 void
1977 bgp_print(const u_char *dat, int length)
1978 {
1979 const u_char *p;
1980 const u_char *ep;
1981 const u_char *start;
1982 const u_char marker[] = {
1983 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
1984 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff,
1985 };
1986 struct bgp bgp;
1987 u_int16_t hlen;
1988 char tokbuf[TOKBUFSIZE];
1989
1990 ep = dat + length;
1991 if (snapend < dat + length)
1992 ep = snapend;
1993
1994 printf(": BGP, length: %u",length);
1995
1996 if (vflag < 1) /* lets be less chatty */
1997 return;
1998
1999 p = dat;
2000 start = p;
2001 while (p < ep) {
2002 if (!TTEST2(p[0], 1))
2003 break;
2004 if (p[0] != 0xff) {
2005 p++;
2006 continue;
2007 }
2008
2009 if (!TTEST2(p[0], sizeof(marker)))
2010 break;
2011 if (memcmp(p, marker, sizeof(marker)) != 0) {
2012 p++;
2013 continue;
2014 }
2015
2016 /* found BGP header */
2017 TCHECK2(p[0], BGP_SIZE); /*XXX*/
2018 memcpy(&bgp, p, BGP_SIZE);
2019
2020 if (start != p)
2021 printf(" [|BGP]");
2022
2023 hlen = ntohs(bgp.bgp_len);
2024 if (hlen < BGP_SIZE) {
2025 printf("\n[|BGP Bogus header length %u < %u]", hlen,
2026 BGP_SIZE);
2027 break;
2028 }
2029
2030 if (TTEST2(p[0], hlen)) {
2031 if (!bgp_header_print(p, hlen))
2032 return;
2033 p += hlen;
2034 start = p;
2035 } else {
2036 printf("\n[|BGP %s]",
2037 tok2strbuf(bgp_msg_values,
2038 "Unknown Message Type",
2039 bgp.bgp_type,
2040 tokbuf, sizeof(tokbuf)));
2041 break;
2042 }
2043 }
2044
2045 return;
2046
2047 trunc:
2048 printf(" [|BGP]");
2049 }
[mirror] the TCPdump network dissector