bgpd: Implement BGP confederation error handling (RFC5065, Par. 5) This patch implements BGP confederation error handling in Quagga as described in RFC5065, paragraph 5. * bgp_aspath.c: (aspath_confed_check, aspath_left_confed_check) new functions * bgp_attr.c: (bgp_attr_aspath_check) apply previous and NOTIFY if there's a problem.

commit: ca87e1d37b3c30648e9bacb476a3c89729512f6d [log] [tgz]
author: Vasilis Tsiligiannis <b_tsiligiannis@silverton.gr> Mon Jul 20 01:28:35 2009 +0300
committer: Paul Jakma <paul@quagga.net> Tue Jul 28 14:49:33 2009 +0100
tree: d0911b72e7d4c3c94c88a65233ee8a7fa8a4c950
parent: 30d205909c5a81cc306b161c16abff0fd7f566a7 [diff] [blame]
diff --git a/bgpd/bgp_attr.c b/bgpd/bgp_attr.c
index 9416837..a664858 100644
--- a/bgpd/bgp_attr.c
+++ b/bgpd/bgp_attr.c

@@ -872,6 +872,17 @@
 
   bgp = peer->bgp;
     
+  /* Confederation sanity check. */
+  if ((peer_sort (peer) == BGP_PEER_CONFED && ! aspath_left_confed_check (attr->aspath)) ||
+     (peer_sort (peer) == BGP_PEER_EBGP && aspath_confed_check (attr->aspath)))
+    {
+      zlog (peer->log, LOG_ERR, "Malformed AS path from %s", peer->host);
+      bgp_notify_send (peer, 
+		       BGP_NOTIFY_UPDATE_ERR, 
+		       BGP_NOTIFY_UPDATE_MAL_AS_PATH);
+      return -1;
+    }
+
   /* First AS check for EBGP. */
   if (bgp != NULL && bgp_flag_check (bgp, BGP_FLAG_ENFORCE_FIRST_AS))
     {
commit	ca87e1d37b3c30648e9bacb476a3c89729512f6d	[log] [tgz]
author	Vasilis Tsiligiannis <b_tsiligiannis@silverton.gr>	Mon Jul 20 01:28:35 2009 +0300
committer	Paul Jakma <paul@quagga.net>	Tue Jul 28 14:49:33 2009 +0100
tree	d0911b72e7d4c3c94c88a65233ee8a7fa8a4c950
parent	30d205909c5a81cc306b161c16abff0fd7f566a7 [diff] [blame]