1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
|
/* $OpenBSD: rde_aspa.c,v 1.5 2023/08/16 08:26:35 claudio Exp $ */
/*
* Copyright (c) 2022 Claudio Jeker <claudio@openbsd.org>
*
* Permission to use, copy, modify, and distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
*
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
*/
#include <stdint.h>
#include <stdlib.h>
#include <string.h>
#include "bgpd.h"
#include "rde.h"
enum cp_state {
UNKNOWN,
NOT_PROVIDER,
PROVIDER,
};
struct rde_aspa_set {
uint32_t as;
uint32_t num;
uint32_t *pas;
int next;
};
/*
* Power of 2 hash table
* The nodes are stored in the sets array.
* Additonal data for the rde_aspa_set are stored in data.
* For lookups only table and mask need to be accessed.
*/
struct rde_aspa {
struct rde_aspa_set **table;
uint32_t mask;
uint32_t maxset;
struct rde_aspa_set *sets;
uint32_t *data;
size_t maxdata;
size_t curdata;
uint32_t curset;
time_t lastchange;
};
struct aspa_state {
int nhops;
int nup_p;
int nup_u;
int nup_np;
int ndown_p;
int ndown_u;
int ndown_np;
};
/*
* Use fmix32() the finalization mix of MurmurHash3 as a 32bit hash function.
*/
static inline uint32_t
hash(uint32_t h)
{
h ^= h >> 16;
h *= 0x85ebca6b;
h ^= h >> 13;
h *= 0xc2b2ae35;
h ^= h >> 16;
return h;
}
/*
* Lookup an asnum in the aspa hash table.
*/
static struct rde_aspa_set *
aspa_lookup(struct rde_aspa *ra, uint32_t asnum)
{
struct rde_aspa_set *aspa;
uint32_t h;
h = hash(asnum) & ra->mask;
aspa = ra->table[h];
if (aspa == NULL)
return NULL;
while (aspa->as < asnum) {
if (!aspa->next)
break;
aspa++;
}
if (aspa->as == asnum)
return aspa;
return NULL;
}
/*
* Lookup if there is a customer - provider relation between cas and pas.
* Returns UNKNOWN if cas is not in the ra table or the aid is out of range.
* Returns PROVIDER if pas is registered for cas for the specified aid.
* Retruns NOT_PROVIDER otherwise.
* This function is called very frequently and needs to be fast.
*/
static enum cp_state
aspa_cp_lookup(struct rde_aspa *ra, uint32_t cas, uint32_t pas)
{
struct rde_aspa_set *aspa;
uint32_t i;
aspa = aspa_lookup(ra, cas);
if (aspa == NULL)
return UNKNOWN;
if (aspa->num < 16) {
for (i = 0; i < aspa->num; i++) {
if (aspa->pas[i] == pas)
break;
if (aspa->pas[i] > pas)
return NOT_PROVIDER;
}
if (i == aspa->num)
return NOT_PROVIDER;
} else {
uint32_t lim, x;
for (i = 0, lim = aspa->num; lim != 0; lim /= 2) {
x = lim / 2;
i += x;
if (aspa->pas[i] == pas) {
break;
} else if (aspa->pas[i] < pas) {
/* move right */
i++;
lim--;
} else {
/* move left */
i -= x;
}
}
if (lim == 0)
return NOT_PROVIDER;
}
return PROVIDER;
}
/*
* Calculate the various indexes of an aspath.
* The up-ramp starts at the source-as which is the right-most / last element
* in the aspath. The down-ramp starts at index 1.
* nhops: number of unique hops in the path
* nup_p: smallest index after which all aspath hops are provider valid
* nup_u: The biggest index of an unknown aspath hop.
* nup_np: The biggest index of a not-provider aspath hop.
* ndown_p: biggest index before which all aspath hops are provider valid
* ndown_u: The smallest index of an unknown aspath hop.
* ndown_np: The smallest index of a not-provider aspath hop.
* Returns 0 on success and -1 if a AS_SET is encountered.
*/
static int
aspa_check_aspath(struct rde_aspa *ra, struct aspath *a, struct aspa_state *s)
{
uint8_t *seg;
uint32_t as, prevas = 0;
uint16_t len, seg_size;
uint8_t i, seg_type, seg_len;
/* the neighbor-as itself is by definition valid */
s->ndown_p = 1;
/*
* Walk aspath and validate if necessary both up- and down-ramp.
* If an AS_SET is found return -1 to indicate failure.
*/
seg = aspath_dump(a);
len = aspath_length(a);
for (; len > 0; len -= seg_size, seg += seg_size) {
seg_type = seg[0];
seg_len = seg[1];
seg_size = 2 + sizeof(uint32_t) * seg_len;
if (seg_type != AS_SEQUENCE)
return -1;
for (i = 0; i < seg_len; i++) {
as = aspath_extract(seg, i);
if (as == prevas)
continue; /* skip prepends */
s->nhops++;
if (prevas == 0) {
prevas = as; /* skip left-most AS */
continue;
}
/*
* down-ramp check, remember the
* left-most unknown or not-provider
* node and the right-most provider node
* for which all nodes before are valid.
*/
switch (aspa_cp_lookup(ra, prevas, as)) {
case UNKNOWN:
if (s->ndown_u == 0)
s->ndown_u = s->nhops;
break;
case PROVIDER:
if (s->ndown_p + 1 == s->nhops)
s->ndown_p = s->nhops;
break;
case NOT_PROVIDER:
if (s->ndown_np == 0)
s->ndown_np = s->nhops;
break;
}
/*
* up-ramp check, remember the right-most
* unknown and not-provider node and the
* left-most provider node for which all nodes
* after are valid.
* We recorde the nhops value of prevas,
* that's why the use of nhops - 1.
*/
switch (aspa_cp_lookup(ra, as, prevas)) {
case UNKNOWN:
s->nup_p = 0;
s->nup_u = s->nhops - 1;
break;
case PROVIDER:
if (s->nup_p == 0)
s->nup_p = s->nhops - 1;
break;
case NOT_PROVIDER:
s->nup_p = 0;
s->nup_np = s->nhops - 1;
break;
}
prevas = as;
}
}
/* the source-as itself is by definition valid */
if (s->nup_p == 0)
s->nup_p = s->nhops;
return 0;
}
/*
* Set the two possible aspa outcomes for up-ramp only and up/down ramp
* in the vstate array.
*/
static void
aspa_check_finalize(struct aspa_state *state, uint8_t *onlyup, uint8_t *downup)
{
/*
* Just an up-ramp:
* if a check returned NOT_PROVIDER then the result is invalid.
* if a check returned UNKNOWN then the result is unknown.
* else path is valid.
*/
if (state->nup_np != 0)
*onlyup = ASPA_INVALID;
else if (state->nup_u != 0)
*onlyup = ASPA_UNKNOWN;
else
*onlyup = ASPA_VALID;
/*
* Both up-ramp and down-ramp:
* if nhops <= 2 the result is valid.
* if there is less than one AS hop between up-ramp and
* down-ramp then the result is valid.
* if not-provider nodes for both ramps exist and they
* do not overlap the path is invalid.
* else the path is unknown.
*/
if (state->nhops <= 2)
*downup = ASPA_VALID;
else if (state->nup_p - state->ndown_p <= 1)
*downup = ASPA_VALID;
else if (state->nup_np != 0 && state->ndown_np != 0 &&
state->nup_np - state->ndown_np >= 0)
*downup = ASPA_INVALID;
else
*downup = ASPA_UNKNOWN;
}
/*
* Validate an aspath against the aspa_set *ra.
* Returns ASPA_VALID if the aspath is valid, ASPA_UNKNOWN if the
* aspath contains hops with unknown relation and ASPA_INVALID for
* empty aspaths, aspath with AS_SET and aspaths that fail validation.
*/
void
aspa_validation(struct rde_aspa *ra, struct aspath *a,
struct rde_aspa_state *vstate)
{
struct aspa_state state = { 0 };
/* no aspa table, evrything is unknown */
if (ra == NULL) {
memset(vstate, ASPA_UNKNOWN, sizeof(*vstate));
return;
}
/* empty ASPATHs are always invalid */
if (aspath_length(a) == 0) {
memset(vstate, ASPA_INVALID, sizeof(*vstate));
return;
}
if (aspa_check_aspath(ra, a, &state) == -1) {
memset(vstate, ASPA_INVALID, sizeof(*vstate));
return;
}
aspa_check_finalize(&state, &vstate->onlyup, &vstate->downup);
}
/*
* Preallocate all data structures needed for the aspa table.
* There are entries number of rde_aspa_sets with data_size bytes of
* extra data (used to store SPAS and optional AFI bitmasks).
*/
struct rde_aspa *
aspa_table_prep(uint32_t entries, size_t datasize)
{
struct rde_aspa *ra;
uint32_t hsize = 1024;
if (entries == 0)
return NULL;
if (entries > UINT32_MAX / 2)
fatalx("aspa_table_prep overflow");
while (hsize < entries)
hsize *= 2;
if ((ra = calloc(1, sizeof(*ra))) == NULL)
fatal("aspa table prep");
if ((ra->table = calloc(hsize, sizeof(ra->table[0]))) == NULL)
fatal("aspa table prep");
if ((ra->sets = calloc(entries, sizeof(ra->sets[0]))) == NULL)
fatal("aspa table prep");
if ((ra->data = malloc(datasize)) == NULL)
fatal("aspa table prep");
ra->mask = hsize - 1;
ra->maxset = entries;
ra->maxdata = datasize / sizeof(ra->data[0]);
ra->lastchange = getmonotime();
return ra;
}
/*
* Insert an aspa customer/provider set into the hash table.
* For hash conflict resulution insertion must happen in reverse order (biggest
* customer asnum first). On conflict objects in the sets array are moved
* around so that conflicting elements are direct neighbors.
* The per AID information is (if required) stored as 2bits per provider.
*/
void
aspa_add_set(struct rde_aspa *ra, uint32_t cas, const uint32_t *pas,
uint32_t pascnt)
{
struct rde_aspa_set *aspa;
uint32_t h, i;
if (ra->curset >= ra->maxset)
fatalx("aspa set overflow");
h = hash(cas) & ra->mask;
aspa = ra->table[h];
if (aspa == NULL) {
aspa = &ra->sets[ra->curset++];
} else {
if (aspa->as <= cas)
fatalx("%s: bad order of adds", __func__);
/* insert before aspa */
memmove(aspa + 1, aspa,
(ra->sets + ra->curset - aspa) * sizeof(*aspa));
ra->curset++;
memset(aspa, 0, sizeof(*aspa));
aspa->next = 1;
/* adjust hashtable after shift of elements */
for (i = 0; i <= ra->mask; i++) {
if (ra->table[i] > aspa)
ra->table[i]++;
}
}
aspa->as = cas;
ra->table[h] = aspa;
if (ra->maxdata - ra->curdata < pascnt)
fatalx("aspa set data overflow");
aspa->num = pascnt;
aspa->pas = ra->data + ra->curdata;
for (i = 0; i < pascnt; i++)
ra->data[ra->curdata++] = pas[i];
}
void
aspa_table_free(struct rde_aspa *ra)
{
if (ra == NULL)
return;
free(ra->table);
free(ra->sets);
free(ra->data);
free(ra);
}
void
aspa_table_stats(const struct rde_aspa *ra, struct ctl_show_set *cset)
{
if (ra == NULL)
return;
cset->lastchange = ra->lastchange;
cset->as_cnt = ra->maxset;
}
/*
* Return true if the two rde_aspa tables contain the same data.
*/
int
aspa_table_equal(const struct rde_aspa *ra, const struct rde_aspa *rb)
{
uint32_t i;
/* allow NULL pointers to be passed */
if (ra == NULL && rb == NULL)
return 1;
if (ra == NULL || rb == NULL)
return 0;
if (ra->maxset != rb->maxset ||
ra->maxdata != rb->maxdata)
return 0;
for (i = 0; i < ra->maxset; i++)
if (ra->sets[i].as != rb->sets[i].as)
return 0;
if (memcmp(ra->data, rb->data, ra->maxdata * sizeof(ra->data[0])) != 0)
return 0;
return 1;
}
void
aspa_table_unchanged(struct rde_aspa *ra, const struct rde_aspa *old)
{
if (ra == NULL || old == NULL)
return;
ra->lastchange = old->lastchange;
}
|
