bgpd.c revision 1.143
1/* $OpenBSD: bgpd.c,v 1.143 2007/01/26 17:40:48 claudio Exp $ */ 2 3/* 4 * Copyright (c) 2003, 2004 Henning Brauer <henning@openbsd.org> 5 * 6 * Permission to use, copy, modify, and distribute this software for any 7 * purpose with or without fee is hereby granted, provided that the above 8 * copyright notice and this permission notice appear in all copies. 9 * 10 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 11 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 12 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR 13 * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 14 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN 15 * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF 16 * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. 17 */ 18 19#include <sys/types.h> 20#include <sys/socket.h> 21#include <sys/wait.h> 22#include <netinet/in.h> 23#include <arpa/inet.h> 24#include <err.h> 25#include <errno.h> 26#include <fcntl.h> 27#include <poll.h> 28#include <pwd.h> 29#include <signal.h> 30#include <stdio.h> 31#include <stdlib.h> 32#include <string.h> 33#include <unistd.h> 34 35#include "mrt.h" 36#include "bgpd.h" 37#include "session.h" 38 39void sighdlr(int); 40__dead void usage(void); 41int main(int, char *[]); 42int check_child(pid_t, const char *); 43int send_filterset(struct imsgbuf *, struct filter_set_head *); 44int reconfigure(char *, struct bgpd_config *, struct mrt_head *, 45 struct peer **, struct filter_head *); 46int dispatch_imsg(struct imsgbuf *, int); 47 48int rfd = -1; 49int cflags = 0; 50struct filter_set_head *connectset; 51struct filter_set_head *connectset6; 52struct filter_set_head *staticset; 53struct filter_set_head *staticset6; 54volatile sig_atomic_t mrtdump = 0; 55volatile sig_atomic_t quit = 0; 56volatile sig_atomic_t sigchld = 0; 57volatile sig_atomic_t reconfig = 0; 58pid_t reconfpid = 0; 59struct imsgbuf *ibuf_se; 60struct imsgbuf *ibuf_rde; 61 62void 63sighdlr(int sig) 64{ 65 switch (sig) { 66 case SIGTERM: 67 case SIGINT: 68 quit = 1; 69 break; 70 case SIGCHLD: 71 sigchld = 1; 72 break; 73 case SIGHUP: 74 reconfig = 1; 75 break; 76 case SIGALRM: 77 case SIGUSR1: 78 mrtdump = 1; 79 break; 80 } 81} 82 83__dead void 84usage(void) 85{ 86 extern char *__progname; 87 88 fprintf(stderr, "usage: %s [-cdnv] ", __progname); 89 fprintf(stderr, "[-D macro=value] [-f file] [-r path] [-s path]\n"); 90 exit(1); 91} 92 93#define PFD_PIPE_SESSION 0 94#define PFD_PIPE_ROUTE 1 95#define PFD_SOCK_ROUTE 2 96#define POLL_MAX 3 97#define MAX_TIMEOUT 3600 98 99int 100main(int argc, char *argv[]) 101{ 102 struct bgpd_config conf; 103 struct peer *peer_l, *p; 104 struct mrt_head mrt_l; 105 struct network_head net_l; 106 struct filter_head *rules_l; 107 struct network *net; 108 struct filter_rule *r; 109 struct mrt *m; 110 struct listen_addr *la; 111 struct pollfd pfd[POLL_MAX]; 112 pid_t io_pid = 0, rde_pid = 0, pid; 113 char *conffile; 114 int debug = 0; 115 int ch, timeout, nfds; 116 int pipe_m2s[2]; 117 int pipe_m2r[2]; 118 int pipe_s2r[2]; 119 int pipe_s2r_c[2]; 120 121 conffile = CONFFILE; 122 bgpd_process = PROC_MAIN; 123 124 log_init(1); /* log to stderr until daemonized */ 125 126 if ((rules_l = calloc(1, sizeof(struct filter_head))) == NULL) 127 err(1, NULL); 128 129 bzero(&conf, sizeof(conf)); 130 LIST_INIT(&mrt_l); 131 TAILQ_INIT(&net_l); 132 TAILQ_INIT(rules_l); 133 peer_l = NULL; 134 conf.csock = SOCKET_NAME; 135 136 while ((ch = getopt(argc, argv, "cdD:f:nr:s:v")) != -1) { 137 switch (ch) { 138 case 'c': 139 conf.opts |= BGPD_OPT_FORCE_DEMOTE; 140 break; 141 case 'd': 142 debug = 1; 143 break; 144 case 'D': 145 if (cmdline_symset(optarg) < 0) 146 log_warnx("could not parse macro definition %s", 147 optarg); 148 break; 149 case 'f': 150 conffile = optarg; 151 break; 152 case 'n': 153 conf.opts |= BGPD_OPT_NOACTION; 154 break; 155 case 'v': 156 if (conf.opts & BGPD_OPT_VERBOSE) 157 conf.opts |= BGPD_OPT_VERBOSE2; 158 conf.opts |= BGPD_OPT_VERBOSE; 159 break; 160 case 'r': 161 conf.rcsock = optarg; 162 break; 163 case 's': 164 conf.csock = optarg; 165 break; 166 default: 167 usage(); 168 /* NOTREACHED */ 169 } 170 } 171 172 if (parse_config(conffile, &conf, &mrt_l, &peer_l, &net_l, rules_l)) { 173 free(rules_l); 174 exit(1); 175 } 176 177 if (conf.opts & BGPD_OPT_NOACTION) { 178 if (conf.opts & BGPD_OPT_VERBOSE) 179 print_config(&conf, &net_l, peer_l, rules_l, &mrt_l); 180 else 181 fprintf(stderr, "configuration OK\n"); 182 exit(0); 183 } 184 cflags = conf.flags; 185 connectset = &conf.connectset; 186 staticset = &conf.staticset; 187 connectset6 = &conf.connectset6; 188 staticset6 = &conf.staticset6; 189 190 if (geteuid()) 191 errx(1, "need root privileges"); 192 193 if (getpwnam(BGPD_USER) == NULL) 194 errx(1, "unknown user %s", BGPD_USER); 195 196 log_init(debug); 197 198 if (!debug) 199 daemon(1, 0); 200 201 log_info("startup"); 202 203 if (socketpair(AF_UNIX, SOCK_STREAM, PF_UNSPEC, pipe_m2s) == -1) 204 fatal("socketpair"); 205 if (socketpair(AF_UNIX, SOCK_STREAM, PF_UNSPEC, pipe_m2r) == -1) 206 fatal("socketpair"); 207 if (socketpair(AF_UNIX, SOCK_STREAM, PF_UNSPEC, pipe_s2r) == -1) 208 fatal("socketpair"); 209 if (socketpair(AF_UNIX, SOCK_STREAM, PF_UNSPEC, pipe_s2r_c) == -1) 210 fatal("socketpair"); 211 session_socket_blockmode(pipe_m2s[0], BM_NONBLOCK); 212 session_socket_blockmode(pipe_m2s[1], BM_NONBLOCK); 213 session_socket_blockmode(pipe_m2r[0], BM_NONBLOCK); 214 session_socket_blockmode(pipe_m2r[1], BM_NONBLOCK); 215 session_socket_blockmode(pipe_s2r[0], BM_NONBLOCK); 216 session_socket_blockmode(pipe_s2r[1], BM_NONBLOCK); 217 session_socket_blockmode(pipe_s2r_c[0], BM_NONBLOCK); 218 session_socket_blockmode(pipe_s2r_c[1], BM_NONBLOCK); 219 220 prepare_listeners(&conf); 221 222 /* fork children */ 223 rde_pid = rde_main(&conf, peer_l, &net_l, rules_l, &mrt_l, 224 pipe_m2r, pipe_s2r, pipe_m2s, pipe_s2r_c, debug); 225 io_pid = session_main(&conf, peer_l, &net_l, rules_l, &mrt_l, 226 pipe_m2s, pipe_s2r, pipe_m2r, pipe_s2r_c); 227 228 setproctitle("parent"); 229 230 signal(SIGTERM, sighdlr); 231 signal(SIGINT, sighdlr); 232 signal(SIGCHLD, sighdlr); 233 signal(SIGHUP, sighdlr); 234 signal(SIGALRM, sighdlr); 235 signal(SIGUSR1, sighdlr); 236 signal(SIGPIPE, SIG_IGN); 237 238 close(pipe_m2s[1]); 239 close(pipe_m2r[1]); 240 close(pipe_s2r[0]); 241 close(pipe_s2r[1]); 242 243 if ((ibuf_se = malloc(sizeof(struct imsgbuf))) == NULL || 244 (ibuf_rde = malloc(sizeof(struct imsgbuf))) == NULL) 245 fatal(NULL); 246 imsg_init(ibuf_se, pipe_m2s[0]); 247 imsg_init(ibuf_rde, pipe_m2r[0]); 248 mrt_init(ibuf_rde, ibuf_se); 249 if ((rfd = kr_init(!(conf.flags & BGPD_FLAG_NO_FIB_UPDATE), 250 conf.rtableid)) == -1) 251 quit = 1; 252 if (pftable_clear_all() != 0) 253 quit = 1; 254 255 while ((net = TAILQ_FIRST(&net_l)) != NULL) { 256 TAILQ_REMOVE(&net_l, net, entry); 257 filterset_free(&net->net.attrset); 258 free(net); 259 } 260 261 while ((r = TAILQ_FIRST(rules_l)) != NULL) { 262 TAILQ_REMOVE(rules_l, r, entry); 263 free(r); 264 } 265 TAILQ_FOREACH(la, conf.listen_addrs, entry) { 266 close(la->fd); 267 la->fd = -1; 268 } 269 270 mrt_reconfigure(&mrt_l); 271 272 while (quit == 0) { 273 bzero(pfd, sizeof(pfd)); 274 pfd[PFD_PIPE_SESSION].fd = ibuf_se->fd; 275 pfd[PFD_PIPE_SESSION].events = POLLIN; 276 if (ibuf_se->w.queued) 277 pfd[PFD_PIPE_SESSION].events |= POLLOUT; 278 pfd[PFD_PIPE_ROUTE].fd = ibuf_rde->fd; 279 pfd[PFD_PIPE_ROUTE].events = POLLIN; 280 if (ibuf_rde->w.queued) 281 pfd[PFD_PIPE_ROUTE].events |= POLLOUT; 282 pfd[PFD_SOCK_ROUTE].fd = rfd; 283 pfd[PFD_SOCK_ROUTE].events = POLLIN; 284 285 timeout = mrt_timeout(&mrt_l); 286 if (timeout > MAX_TIMEOUT) 287 timeout = MAX_TIMEOUT; 288 289 if ((nfds = poll(pfd, POLL_MAX, timeout * 1000)) == -1) 290 if (errno != EINTR) { 291 log_warn("poll error"); 292 quit = 1; 293 } 294 295 if (nfds > 0 && pfd[PFD_PIPE_SESSION].revents & POLLOUT) 296 if (msgbuf_write(&ibuf_se->w) < 0) { 297 log_warn("pipe write error (to SE)"); 298 quit = 1; 299 } 300 301 if (nfds > 0 && pfd[PFD_PIPE_ROUTE].revents & POLLOUT) 302 if (msgbuf_write(&ibuf_rde->w) < 0) { 303 log_warn("pipe write error (to RDE)"); 304 quit = 1; 305 } 306 307 if (nfds > 0 && pfd[PFD_PIPE_SESSION].revents & POLLIN) { 308 if (dispatch_imsg(ibuf_se, PFD_PIPE_SESSION) == -1) 309 quit = 1; 310 } 311 312 if (nfds > 0 && pfd[PFD_PIPE_ROUTE].revents & POLLIN) { 313 if (dispatch_imsg(ibuf_rde, PFD_PIPE_ROUTE) == -1) 314 quit = 1; 315 } 316 317 if (nfds > 0 && pfd[PFD_SOCK_ROUTE].revents & POLLIN) { 318 if (kr_dispatch_msg() == -1) 319 quit = 1; 320 } 321 322 if (reconfig) { 323 u_int error; 324 325 reconfig = 0; 326 log_info("rereading config"); 327 switch (reconfigure(conffile, &conf, &mrt_l, &peer_l, 328 rules_l)) { 329 case -1: /* fatal error */ 330 quit = 1; 331 break; 332 case 0: /* all OK */ 333 error = 0; 334 break; 335 default: /* parse error */ 336 error = CTL_RES_PARSE_ERROR; 337 break; 338 } 339 if (reconfpid != 0) { 340 send_imsg_session(IMSG_CTL_RESULT, reconfpid, 341 &error, sizeof(error)); 342 reconfpid = 0; 343 } 344 } 345 346 if (sigchld) { 347 sigchld = 0; 348 if (check_child(io_pid, "session engine")) { 349 quit = 1; 350 io_pid = 0; 351 } 352 if (check_child(rde_pid, "route decision engine")) { 353 quit = 1; 354 rde_pid = 0; 355 } 356 } 357 358 if (mrtdump) { 359 mrtdump = 0; 360 mrt_handler(&mrt_l); 361 } 362 } 363 364 signal(SIGCHLD, SIG_IGN); 365 366 if (io_pid) 367 kill(io_pid, SIGTERM); 368 369 if (rde_pid) 370 kill(rde_pid, SIGTERM); 371 372 while ((p = peer_l) != NULL) { 373 peer_l = p->next; 374 free(p); 375 } 376 while ((m = LIST_FIRST(&mrt_l)) != NULL) { 377 LIST_REMOVE(m, entry); 378 free(m); 379 } 380 while ((la = TAILQ_FIRST(conf.listen_addrs)) != NULL) { 381 TAILQ_REMOVE(conf.listen_addrs, la, entry); 382 close(la->fd); 383 free(la); 384 } 385 386 free(rules_l); 387 control_cleanup(conf.csock); 388 control_cleanup(conf.rcsock); 389 carp_demote_shutdown(); 390 kr_shutdown(); 391 pftable_clear_all(); 392 free(conf.listen_addrs); 393 394 do { 395 if ((pid = wait(NULL)) == -1 && 396 errno != EINTR && errno != ECHILD) 397 fatal("wait"); 398 } while (pid != -1 || (pid == -1 && errno == EINTR)); 399 400 msgbuf_clear(&ibuf_se->w); 401 free(ibuf_se); 402 msgbuf_clear(&ibuf_rde->w); 403 free(ibuf_rde); 404 405 log_info("Terminating"); 406 return (0); 407} 408 409int 410check_child(pid_t pid, const char *pname) 411{ 412 int status; 413 414 if (waitpid(pid, &status, WNOHANG) > 0) { 415 if (WIFEXITED(status)) { 416 log_warnx("Lost child: %s exited", pname); 417 return (1); 418 } 419 if (WIFSIGNALED(status)) { 420 log_warnx("Lost child: %s terminated; signal %d", 421 pname, WTERMSIG(status)); 422 return (1); 423 } 424 } 425 426 return (0); 427} 428 429int 430send_filterset(struct imsgbuf *i, struct filter_set_head *set) 431{ 432 struct filter_set *s; 433 434 TAILQ_FOREACH(s, set, entry) 435 if (imsg_compose(i, IMSG_FILTER_SET, 0, 0, -1, s, 436 sizeof(struct filter_set)) == -1) 437 return (-1); 438 return (0); 439} 440 441int 442reconfigure(char *conffile, struct bgpd_config *conf, struct mrt_head *mrt_l, 443 struct peer **peer_l, struct filter_head *rules_l) 444{ 445 struct network_head net_l; 446 struct network *n; 447 struct peer *p; 448 struct filter_rule *r; 449 struct listen_addr *la; 450 451 if (parse_config(conffile, conf, mrt_l, peer_l, &net_l, rules_l)) { 452 log_warnx("config file %s has errors, not reloading", 453 conffile); 454 return (1); 455 } 456 457 cflags = conf->flags; 458 connectset = &conf->connectset; 459 staticset = &conf->staticset; 460 connectset6 = &conf->connectset6; 461 staticset6 = &conf->staticset6; 462 463 prepare_listeners(conf); 464 465 /* start reconfiguration */ 466 if (imsg_compose(ibuf_se, IMSG_RECONF_CONF, 0, 0, -1, 467 conf, sizeof(struct bgpd_config)) == -1) 468 return (-1); 469 if (imsg_compose(ibuf_rde, IMSG_RECONF_CONF, 0, 0, -1, 470 conf, sizeof(struct bgpd_config)) == -1) 471 return (-1); 472 473 /* send peer list and listeners to the SE */ 474 for (p = *peer_l; p != NULL; p = p->next) 475 if (imsg_compose(ibuf_se, IMSG_RECONF_PEER, p->conf.id, 0, -1, 476 &p->conf, sizeof(struct peer_config)) == -1) 477 return (-1); 478 479 TAILQ_FOREACH(la, conf->listen_addrs, entry) { 480 if (imsg_compose(ibuf_se, IMSG_RECONF_LISTENER, 0, 0, la->fd, 481 la, sizeof(struct listen_addr)) == -1) 482 return (-1); 483 la->fd = -1; 484 } 485 486 /* networks for the RDE */ 487 while ((n = TAILQ_FIRST(&net_l)) != NULL) { 488 if (imsg_compose(ibuf_rde, IMSG_NETWORK_ADD, 0, 0, -1, 489 &n->net, sizeof(struct network_config)) == -1) 490 return (-1); 491 if (send_filterset(ibuf_rde, &n->net.attrset) == -1) 492 return (-1); 493 if (imsg_compose(ibuf_rde, IMSG_NETWORK_DONE, 0, 0, -1, 494 NULL, 0) == -1) 495 return (-1); 496 TAILQ_REMOVE(&net_l, n, entry); 497 filterset_free(&n->net.attrset); 498 free(n); 499 } 500 501 /* redistribute list needs to be reloaded too */ 502 if (kr_reload() == -1) 503 return (-1); 504 505 /* filters for the RDE */ 506 while ((r = TAILQ_FIRST(rules_l)) != NULL) { 507 if (imsg_compose(ibuf_rde, IMSG_RECONF_FILTER, 0, 0, -1, 508 r, sizeof(struct filter_rule)) == -1) 509 return (-1); 510 if (send_filterset(ibuf_rde, &r->set) == -1) 511 return (-1); 512 TAILQ_REMOVE(rules_l, r, entry); 513 filterset_free(&r->set); 514 free(r); 515 } 516 517 /* singal both childs to replace their config */ 518 if (imsg_compose(ibuf_se, IMSG_RECONF_DONE, 0, 0, -1, NULL, 0) == -1 || 519 imsg_compose(ibuf_rde, IMSG_RECONF_DONE, 0, 0, -1, NULL, 0) == -1) 520 return (-1); 521 522 /* mrt changes can be sent out of bound */ 523 mrt_reconfigure(mrt_l); 524 return (0); 525} 526 527int 528dispatch_imsg(struct imsgbuf *ibuf, int idx) 529{ 530 struct imsg imsg; 531 int n; 532 int rv; 533 534 if ((n = imsg_read(ibuf)) == -1) 535 return (-1); 536 537 if (n == 0) { /* connection closed */ 538 log_warnx("dispatch_imsg in main: pipe closed"); 539 return (-1); 540 } 541 542 rv = 0; 543 for (;;) { 544 if ((n = imsg_get(ibuf, &imsg)) == -1) 545 return (-1); 546 547 if (n == 0) 548 break; 549 550 switch (imsg.hdr.type) { 551 case IMSG_KROUTE_CHANGE: 552 if (idx != PFD_PIPE_ROUTE) 553 log_warnx("route request not from RDE"); 554 else if (kr_change(imsg.data)) 555 rv = -1; 556 break; 557 case IMSG_KROUTE_DELETE: 558 if (idx != PFD_PIPE_ROUTE) 559 log_warnx("route request not from RDE"); 560 else if (kr_delete(imsg.data)) 561 rv = -1; 562 break; 563 case IMSG_KROUTE6_CHANGE: 564 if (idx != PFD_PIPE_ROUTE) 565 log_warnx("route request not from RDE"); 566 else if (kr6_change(imsg.data)) 567 rv = -1; 568 break; 569 case IMSG_KROUTE6_DELETE: 570 if (idx != PFD_PIPE_ROUTE) 571 log_warnx("route request not from RDE"); 572 else if (kr6_delete(imsg.data)) 573 rv = -1; 574 break; 575 case IMSG_NEXTHOP_ADD: 576 if (idx != PFD_PIPE_ROUTE) 577 log_warnx("nexthop request not from RDE"); 578 else 579 if (imsg.hdr.len != IMSG_HEADER_SIZE + 580 sizeof(struct bgpd_addr)) 581 log_warnx("wrong imsg len"); 582 else if (kr_nexthop_add(imsg.data) == -1) 583 rv = -1; 584 break; 585 case IMSG_NEXTHOP_REMOVE: 586 if (idx != PFD_PIPE_ROUTE) 587 log_warnx("nexthop request not from RDE"); 588 else 589 if (imsg.hdr.len != IMSG_HEADER_SIZE + 590 sizeof(struct bgpd_addr)) 591 log_warnx("wrong imsg len"); 592 else 593 kr_nexthop_delete(imsg.data); 594 break; 595 case IMSG_PFTABLE_ADD: 596 if (idx != PFD_PIPE_ROUTE) 597 log_warnx("pftable request not from RDE"); 598 else 599 if (imsg.hdr.len != IMSG_HEADER_SIZE + 600 sizeof(struct pftable_msg)) 601 log_warnx("wrong imsg len"); 602 else if (pftable_addr_add(imsg.data) != 0) 603 rv = -1; 604 break; 605 case IMSG_PFTABLE_REMOVE: 606 if (idx != PFD_PIPE_ROUTE) 607 log_warnx("pftable request not from RDE"); 608 else 609 if (imsg.hdr.len != IMSG_HEADER_SIZE + 610 sizeof(struct pftable_msg)) 611 log_warnx("wrong imsg len"); 612 else if (pftable_addr_remove(imsg.data) != 0) 613 rv = -1; 614 break; 615 case IMSG_PFTABLE_COMMIT: 616 if (idx != PFD_PIPE_ROUTE) 617 log_warnx("pftable request not from RDE"); 618 else 619 if (imsg.hdr.len != IMSG_HEADER_SIZE) 620 log_warnx("wrong imsg len"); 621 else if (pftable_commit() != 0) 622 rv = -1; 623 break; 624 case IMSG_CTL_RELOAD: 625 if (idx != PFD_PIPE_SESSION) 626 log_warnx("reload request not from SE"); 627 else 628 reconfig = 1; 629 reconfpid = imsg.hdr.pid; 630 break; 631 case IMSG_CTL_FIB_COUPLE: 632 if (idx != PFD_PIPE_SESSION) 633 log_warnx("couple request not from SE"); 634 else 635 kr_fib_couple(); 636 break; 637 case IMSG_CTL_FIB_DECOUPLE: 638 if (idx != PFD_PIPE_SESSION) 639 log_warnx("decouple request not from SE"); 640 else 641 kr_fib_decouple(); 642 break; 643 case IMSG_CTL_KROUTE: 644 case IMSG_CTL_KROUTE_ADDR: 645 case IMSG_CTL_SHOW_NEXTHOP: 646 case IMSG_CTL_SHOW_INTERFACE: 647 if (idx != PFD_PIPE_SESSION) 648 log_warnx("kroute request not from SE"); 649 else 650 kr_show_route(&imsg); 651 break; 652 case IMSG_IFINFO: 653 if (idx != PFD_PIPE_SESSION) 654 log_warnx("IFINFO request not from SE"); 655 else if (imsg.hdr.len != IMSG_HEADER_SIZE + IFNAMSIZ) 656 log_warnx("IFINFO request with wrong len"); 657 else 658 kr_ifinfo(imsg.data); 659 break; 660 case IMSG_DEMOTE: 661 if (idx != PFD_PIPE_SESSION) 662 log_warnx("demote request not from SE"); 663 else if (imsg.hdr.len != IMSG_HEADER_SIZE + 664 sizeof(struct demote_msg)) 665 log_warnx("DEMOTE request with wrong len"); 666 else { 667 struct demote_msg *msg; 668 669 msg = imsg.data; 670 carp_demote_set(msg->demote_group, msg->level); 671 } 672 break; 673 default: 674 break; 675 } 676 imsg_free(&imsg); 677 if (rv != 0) 678 return (rv); 679 } 680 return (0); 681} 682 683void 684send_nexthop_update(struct kroute_nexthop *msg) 685{ 686 char *gw = NULL; 687 688 if (msg->gateway.af) 689 if (asprintf(&gw, ": via %s", 690 log_addr(&msg->gateway)) == -1) { 691 log_warn("send_nexthop_update"); 692 quit = 1; 693 } 694 695 log_info("nexthop %s now %s%s%s", log_addr(&msg->nexthop), 696 msg->valid ? "valid" : "invalid", 697 msg->connected ? ": directly connected" : "", 698 msg->gateway.af ? gw : ""); 699 700 free(gw); 701 702 if (imsg_compose(ibuf_rde, IMSG_NEXTHOP_UPDATE, 0, 0, -1, 703 msg, sizeof(struct kroute_nexthop)) == -1) 704 quit = 1; 705} 706 707void 708send_imsg_session(int type, pid_t pid, void *data, u_int16_t datalen) 709{ 710 imsg_compose(ibuf_se, type, 0, pid, -1, data, datalen); 711} 712 713int 714bgpd_redistribute(int type, struct kroute *kr, struct kroute6 *kr6) 715{ 716 struct network_config net; 717 struct filter_set_head *h; 718 719 if ((cflags & BGPD_FLAG_REDIST_CONNECTED) && kr && 720 (kr->flags & F_CONNECTED)) 721 h = connectset; 722 else if ((cflags & BGPD_FLAG_REDIST_STATIC) && kr && 723 (kr->flags & F_STATIC)) 724 h = staticset; 725 else if ((cflags & BGPD_FLAG_REDIST6_CONNECTED) && kr6 && 726 (kr6->flags & F_CONNECTED)) 727 h = connectset6; 728 else if ((cflags & BGPD_FLAG_REDIST6_STATIC) && kr6 && 729 (kr6->flags & F_STATIC)) 730 h = staticset6; 731 else 732 return (0); 733 734 bzero(&net, sizeof(net)); 735 if (kr && kr6) 736 fatalx("bgpd_redistribute: unable to redistribute v4 and v6" 737 "together"); 738 if (kr != NULL) { 739 net.prefix.af = AF_INET; 740 net.prefix.v4.s_addr = kr->prefix.s_addr; 741 net.prefixlen = kr->prefixlen; 742 } 743 if (kr6 != NULL) { 744 net.prefix.af = AF_INET6; 745 memcpy(&net.prefix.v6, &kr6->prefix, sizeof(struct in6_addr)); 746 net.prefixlen = kr6->prefixlen; 747 } 748 749 750 if (imsg_compose(ibuf_rde, type, 0, 0, -1, &net, 751 sizeof(struct network_config)) == -1) 752 return (-1); 753 754 /* networks that get deleted don't need to send the filter set */ 755 if (type == IMSG_NETWORK_REMOVE) 756 return (1); 757 758 if (send_filterset(ibuf_rde, h) == -1) 759 return (-1); 760 if (imsg_compose(ibuf_rde, IMSG_NETWORK_DONE, 0, 0, -1, NULL, 0) == -1) 761 return (-1); 762 763 return (1); 764} 765 766int 767bgpd_filternexthop(struct kroute *kr, struct kroute6 *kr6) 768{ 769 /* kernel routes are never filtered */ 770 if (kr && kr->flags & F_KERNEL && kr->prefixlen != 0) 771 return (0); 772 if (kr6 && kr6->flags & F_KERNEL && kr6->prefixlen != 0) 773 return (0); 774 775 if (cflags & BGPD_FLAG_NEXTHOP_BGP) { 776 if (kr && kr->flags & F_BGPD_INSERTED) 777 return (0); 778 if (kr6 && kr6->flags & F_BGPD_INSERTED) 779 return (0); 780 } 781 782 if (cflags & BGPD_FLAG_NEXTHOP_DEFAULT) { 783 if (kr && kr->prefixlen == 0) 784 return (0); 785 if (kr6 && kr6->prefixlen == 0) 786 return (0); 787 } 788 789 return (1); 790} 791