Jerry/bird
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
bird/nest/config.Y

742 lines
21 KiB
Plaintext
Raw Normal View History

Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
/*
* BIRD -- Core Configuration
*
Split off general commands to cmds.c. Added `show symbols' command which dumps whole symbol table together with symbol types etc.
2000-01-19 20:30:19 +08:00
* (c) 1998--2000 Martin Mares <mj@ucw.cz>
MD5 authentication in OSPF works. :-)
2004-07-13 22:46:14 +08:00
* (c) 2004 Ondrej Filip <feela@network.cz>
Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
*
* Can be freely distributed and used under the terms of the GNU GPL.
*/
CF_HDR
Added configuration of the device internal protocol. This is primarily intended to serve as an example of interface pattern list use. As a side effect, you can disable generating of device routes by disabling this protocol.
1998-11-30 06:03:58 +08:00
#include "nest/rt-dev.h"
Skeleton for password handling, currently I only build structures and do nothing more advanced for them
1999-05-26 22:24:57 +08:00
#include "nest/password.h"
Split off general commands to cmds.c. Added `show symbols' command which dumps whole symbol table together with symbol types etc.
2000-01-19 20:30:19 +08:00
#include "nest/cmds.h"
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
#include "lib/lists.h"
Nest: Add support for MAC algorithms in grammar
2016-01-26 23:45:13 +08:00
#include "lib/mac.h"
Added configuration of the device internal protocol. This is primarily intended to serve as an example of interface pattern list use. As a side effect, you can disable generating of device routes by disabling this protocol.
1998-11-30 06:03:58 +08:00
Split CF_HDR section to CF_HDR (only includes) and CF_DEFINES (defines, C declarations etc.).
2000-04-28 23:11:10 +08:00
CF_DEFINES
static struct proto_config *this_proto;
static struct iface_patt *this_ipatt;
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
static struct iface_patt_node *this_ipn;
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
static struct roa_table_config *this_roa_table;
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
static list *this_p_list;
static struct password_item *this_p_item;
Fix bugs in OSPF MD5 authentication. First bug is that default values for MD5 password ID changed during reconfigure, Second bug is that BIRD chooses password in first-fit manner, but RFC says that it should use the one with the latest generate-from. It also modifies the syntax for multiple passwords. Now it is possible to just add more 'password' statements to the interface section and it is not needed to use 'passwords' section. Old syntax can be used too.
2008-11-09 00:24:23 +08:00
static int password_id;
Check validity of interface definitions. Thanks to Aleksey Berezin for the bugreport.
2014-03-31 06:56:44 +08:00
static void
iface_patt_check(void)
{
struct iface_patt_node *pn;
WALK_LIST(pn, this_ipatt->ipn_list)
if (!pn->pattern || pn->pxlen)
cf_error("Interface name/mask expected, not IP prefix");
}
Fixes broken cryptographic authentication in OSPF Cryptographic authentication in OSPF is defective by design - there might be several packets independently sent to the network (for example HELLO, LSUPD and LSACK) where they might be reordered and that causes crypt. sequence number error. That can be workarounded by not incresing sequence number too often. Now we update it only when last packet was sent before at least one second. This can constitute a risk of replay attacks, but RFC supposes something similar (like time in seconds used as CSN).
2009-04-09 02:15:01 +08:00
static inline void
reset_passwords(void)
{
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
this_p_list = NULL;
Fixes broken cryptographic authentication in OSPF Cryptographic authentication in OSPF is defective by design - there might be several packets independently sent to the network (for example HELLO, LSUPD and LSACK) where they might be reordered and that causes crypt. sequence number error. That can be workarounded by not incresing sequence number too often. Now we update it only when last packet was sent before at least one second. This can constitute a risk of replay attacks, but RFC supposes something similar (like time in seconds used as CSN).
2009-04-09 02:15:01 +08:00
}
static inline list *
Fix bugs in OSPF MD5 authentication. First bug is that default values for MD5 password ID changed during reconfigure, Second bug is that BIRD chooses password in first-fit manner, but RFC says that it should use the one with the latest generate-from. It also modifies the syntax for multiple passwords. Now it is possible to just add more 'password' statements to the interface section and it is not needed to use 'passwords' section. Old syntax can be used too.
2008-11-09 00:24:23 +08:00
get_passwords(void)
{
list *rv = this_p_list;
this_p_list = NULL;
return rv;
}
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
#define DIRECT_CFG ((struct rt_dev_config *) this_proto)
Split CF_HDR section to CF_HDR (only includes) and CF_DEFINES (defines, C declarations etc.).
2000-04-28 23:11:10 +08:00
Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
CF_DECLS
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
CF_KEYWORDS(ROUTER, ID, PROTOCOL, TEMPLATE, PREFERENCE, DISABLED, DEBUG, ALL, OFF, DIRECT)
Basic VRF support Add basic VRF (virtual routing and forwarding) support. Protocols can be associated with VRFs, such protocols will be restricted to interfaces assigned to the VRF (as reported by Linux kernel) and will use sockets bound to the VRF. E.g., different multihop BGP instances can use diffent kernel routing tables to handle BGP TCP connections. The VRF support is preliminary, currently there are several limitations: - Recent Linux kernels (4.11) do not handle correctly sockets bound to interaces that are part of VRF, so most protocols other than multihop BGP do not work. This will be fixed by future kernel versions. - Neighbor cache ignores VRFs. Breaks config with the same prefix on local interfaces in different VRFs. Not much problem as single hop protocols do not work anyways. - Olock code ignores VRFs. Breaks config with multiple BGP peers with the same IP address in different VRFs. - Incoming BGP connections are not dispatched according to VRFs. Breaks config with multiple BGP peers with the same IP address in different VRFs. Perhaps we would need some kernel API to read VRF of incoming connection? Or probably use multiple listening sockets in int-new branch. - We should handle master VRF interface up/down events and perhaps disable associated protocols when VRF goes down. Or at least disable associated interfaces. - Also we should check if the master iface is really VRF iface and not some other kind of master iface. - BFD session request dispatch should be aware of VRFs. - Perhaps kernel protocol should read default kernel table ID from VRF iface so it is not necessary to configure it. - Perhaps we should have per-VRF default table.
2017-09-06 23:38:48 +08:00
CF_KEYWORDS(INTERFACE, IMPORT, EXPORT, FILTER, NONE, VRF, TABLE, STATES, ROUTES, FILTERS)
Separate import and receive limits. They have different behavior w.r.t. filtered routes that are kept.
2013-01-10 20:07:33 +08:00
CF_KEYWORDS(RECEIVE, LIMIT, ACTION, WARN, BLOCK, RESTART, DISABLE, KEEP, FILTERED)
Added tracing of interface events.
2000-03-13 04:50:35 +08:00
CF_KEYWORDS(PASSWORD, FROM, PASSIVE, TO, ID, EVENTS, PACKETS, PROTOCOLS, INTERFACES)
Nest: Add support for MAC algorithms in grammar
2016-01-26 23:45:13 +08:00
CF_KEYWORDS(ALGORITHM, KEYED, HMAC, MD5, SHA1, SHA256, SHA384, SHA512)
Implements show route noexport option. Shows routes that would be exported to the protocol but are rejected by the export filter.
2014-10-02 18:46:26 +08:00
CF_KEYWORDS(PRIMARY, STATS, COUNT, FOR, COMMANDS, PREEXPORT, NOEXPORT, GENERATE, ROA)
Finalize RA_ACCEPTED handling.
2012-07-05 03:31:03 +08:00
CF_KEYWORDS(LISTEN, BGP, V6ONLY, DUAL, ADDRESS, PORT, PASSWORDS, DESCRIPTION, SORTED)
Better packet priority and traffic class handling. Implements support for IPv6 traffic class, sets higher priority for OSPF and RIP outgoing packets by default and allows to configure ToS/DS/TClass IP header field and the local priority of outgoing packets.
2013-06-24 22:37:30 +08:00
CF_KEYWORDS(RELOAD, IN, OUT, MRTDUMP, MESSAGES, RESTRICT, MEMORY, IGP_METRIC, CLASS, DSCP)
Implements show route noexport option. Shows routes that would be exported to the protocol but are rejected by the export filter.
2014-10-02 18:46:26 +08:00
CF_KEYWORDS(GRACEFUL, RESTART, WAIT, MAX, FLUSH, AS)
Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
An example of how to define enums.
1999-11-15 19:36:22 +08:00
CF_ENUM(T_ENUM_RTS, RTS_, DUMMY, STATIC, INHERIT, DEVICE, STATIC_DEVICE, REDIRECT,
Babel: Documentation updates This updates the documentation to correctly mention Babel when protocols are listed, and adds examples and route attribute documentation to the Babel section of the docs. Signed-off-by: Toke Høiland-Jørgensen <toke@toke.dk>
2016-07-19 18:16:51 +08:00
RIP, OSPF, OSPF_IA, OSPF_EXT1, OSPF_EXT2, BGP, PIPE, BABEL)
Use undefined scope for undefined IPv6 addresses.
2011-09-24 17:06:42 +08:00
CF_ENUM(T_ENUM_SCOPE, SCOPE_, HOST, LINK, SITE, ORGANIZATION, UNIVERSE, UNDEFINED)
Added read-only access to all required fields in rta.
2000-05-30 18:42:39 +08:00
CF_ENUM(T_ENUM_RTC, RTC_, UNICAST, BROADCAST, MULTICAST, ANYCAST)
Core multipath support.
2010-12-08 06:33:55 +08:00
CF_ENUM(T_ENUM_RTD, RTD_, ROUTER, DEVICE, BLACKHOLE, UNREACHABLE, PROHIBIT, MULTIPATH)
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
CF_ENUM(T_ENUM_ROA, ROA_, UNKNOWN, VALID, INVALID)
An example of how to define enums.
1999-11-15 19:36:22 +08:00
Basic support for IPv6. The system-dependent part doesn't work yet, but the core routines are there and seem to be working. o lib/ipv6.[ch] written o Lexical analyser recognizes IPv6 addresses and when in IPv6 mode, treats pure IPv4 addresses as router IDs. o Router ID must be configured manually on IPv6 systems. o Added SCOPE_ORGANIZATION for org-scoped IPv6 multicasts. o Fixed few places where ipa_(hton|ntoh) was called as a function returning converted address.
1999-08-04 03:36:06 +08:00
%type <i32> idval
Changed syntax of attaching filters to protocols to hopefully the final version: EXPORT <filter-spec> for outbound routes (i.e., those announced by BIRD to the rest of the world). IMPORT <filter-spec> for inbound routes (i.e., those imported by BIRD from the rest of the world). where <filter-spec> is one of: ALL pass all routes NONE drop all routes FILTER <name> use named filter FILTER { <filter> } use explicitly defined filter For all protocols, the default is IMPORT ALL, EXPORT NONE. This includes the kernel protocol, so that you need to add EXPORT ALL to get the previous configuration of kernel syncer (as usually, see doc/bird.conf.example for a bird.conf example :)).
1999-04-06 04:15:31 +08:00
%type <f> imexport
From now we support multiple tables. The master_table variable is definitely gone. Both rte_update() and rte_discard() have an additional argument telling which table should they modify. Also, rte_update() no longer walks the whole protocol list -- each table has a list of all protocols connected to this table and having the rt_notify hook set. Each protocol can also freely decide (by calling proto_add_announce_hook) to connect to any other table, but it will be probably used only by the table-to-table protocol. The default debugging dumps now include all routing tables and also all their connections.
1999-05-18 04:14:52 +08:00
%type <r> rtable
Added few basic commands: show status, show interfaces [summary], show protocols (incomplete).
1999-11-25 23:35:30 +08:00
%type <s> optsym
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
%type <ra> r_args
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
%type <ro> roa_args
%type <rot> roa_table_arg
Adds filtering to 'show symbols' command. Thanks Alexander V. Chernikov for the original patch.
2012-03-16 19:47:12 +08:00
%type <sd> sym_args
Nest: Add support for MAC algorithms in grammar
2016-01-26 23:45:13 +08:00
%type <i> proto_start echo_mask echo_size debug_mask debug_list debug_flag mrtdump_mask mrtdump_list mrtdump_flag export_mode roa_mode limit_action tab_sorted tos password_algorithm
Implements pattern match for 'show protocols' command. And generally consolidates protocol commands.
2010-02-20 07:03:31 +08:00
%type <ps> proto_patt proto_patt2
Implements generalized import hooks. Thanks to Alexander V. Chernikov for the original patch.
2012-04-15 21:28:29 +08:00
%type <g> limit_spec
Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
CF_GRAMMAR
First attempt at protocol configuration (now done only for RIP).
1998-11-28 05:09:57 +08:00
/* Setting of router ID */
Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
CF_ADDTO(conf, rtrid)
From now we support multiple tables. The master_table variable is definitely gone. Both rte_update() and rte_discard() have an additional argument telling which table should they modify. Also, rte_update() no longer walks the whole protocol list -- each table has a list of all protocols connected to this table and having the rt_notify hook set. Each protocol can also freely decide (by calling proto_add_announce_hook) to connect to any other table, but it will be probably used only by the table-to-table protocol. The default debugging dumps now include all routing tables and also all their connections.
1999-05-18 04:14:52 +08:00
Nest: Remove trailing whitespaces
2016-09-19 22:01:29 +08:00
rtrid:
Implements interface masks for choosing router id. Router ID could be automatically determined based of subset of ifaces/addresses specified by 'router id from' option. The patch also does some minor changes related to router ID reconfiguration. Thanks to Alexander V. Chernikov for most of the work.
2012-12-27 19:56:23 +08:00
ROUTER ID idval ';' { new_config->router_id = $3; }
| ROUTER ID FROM iface_patt ';' { new_config->router_id_from = this_ipatt; }
Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
;
idval:
Basic support for IPv6. The system-dependent part doesn't work yet, but the core routines are there and seem to be working. o lib/ipv6.[ch] written o Lexical analyser recognizes IPv6 addresses and when in IPv6 mode, treats pure IPv4 addresses as router IDs. o Router ID must be configured manually on IPv6 systems. o Added SCOPE_ORGANIZATION for org-scoped IPv6 multicasts. o Fixed few places where ipa_(hton|ntoh) was called as a function returning converted address.
1999-08-04 03:36:06 +08:00
NUM { $$ = $1; }
Nest: Fixes symbols in router id Thanks to Peter Hudec for noticing the problem.
2015-07-19 01:30:35 +08:00
| '(' term ')' { $$ = f_eval_int($2); }
Basic support for IPv6. The system-dependent part doesn't work yet, but the core routines are there and seem to be working. o lib/ipv6.[ch] written o Lexical analyser recognizes IPv6 addresses and when in IPv6 mode, treats pure IPv4 addresses as router IDs. o Router ID must be configured manually on IPv6 systems. o Added SCOPE_ORGANIZATION for org-scoped IPv6 multicasts. o Fixed few places where ipa_(hton|ntoh) was called as a function returning converted address.
1999-08-04 03:36:06 +08:00
| RTRID
| IPA {
#ifndef IPV6
$$ = ipa_to_u32($1);
#else
Fixed incorrect error message about router ID syntax.
2000-05-16 23:08:43 +08:00
cf_error("Router IDs must be entered as hexadecimal numbers or IPv4 addresses in IPv6 version");
Basic support for IPv6. The system-dependent part doesn't work yet, but the core routines are there and seem to be working. o lib/ipv6.[ch] written o Lexical analyser recognizes IPv6 addresses and when in IPv6 mode, treats pure IPv4 addresses as router IDs. o Router ID must be configured manually on IPv6 systems. o Added SCOPE_ORGANIZATION for org-scoped IPv6 multicasts. o Fixed few places where ipa_(hton|ntoh) was called as a function returning converted address.
1999-08-04 03:36:06 +08:00
#endif
}
Nest: Fixes symbols in router id Thanks to Peter Hudec for noticing the problem.
2015-07-19 01:30:35 +08:00
| SYM {
if ($1->class == (SYM_CONSTANT | T_INT) || $1->class == (SYM_CONSTANT | T_QUAD))
$$ = SYM_VAL($1).i;
#ifndef IPV6
else if ($1->class == (SYM_CONSTANT | T_IP))
Nest: Fixes one of previous commit
2015-07-28 21:08:21 +08:00
$$ = ipa_to_u32(SYM_VAL($1).px.ip);
Nest: Fixes symbols in router id Thanks to Peter Hudec for noticing the problem.
2015-07-19 01:30:35 +08:00
#endif
else
BGP: Add documentaion for extended messages
2016-03-15 17:29:32 +08:00
cf_error("Number or IPv4 address constant expected");
Nest: Fixes symbols in router id Thanks to Peter Hudec for noticing the problem.
2015-07-19 01:30:35 +08:00
}
Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
;
Implements option that changes BGP listening socket parametres.
2009-06-19 01:20:07 +08:00
Replace 'bind' option with 'listen' option. To be consistent with other daemons.
2009-06-23 17:08:30 +08:00
CF_ADDTO(conf, listen)
Implements option that changes BGP listening socket parametres.
2009-06-19 01:20:07 +08:00
Replace 'bind' option with 'listen' option. To be consistent with other daemons.
2009-06-23 17:08:30 +08:00
listen: LISTEN BGP listen_opts ';' ;
Implements option that changes BGP listening socket parametres.
2009-06-19 01:20:07 +08:00
Replace 'bind' option with 'listen' option. To be consistent with other daemons.
2009-06-23 17:08:30 +08:00
listen_opts:
Implements option that changes BGP listening socket parametres.
2009-06-19 01:20:07 +08:00
/* Nothing */
Replace 'bind' option with 'listen' option. To be consistent with other daemons.
2009-06-23 17:08:30 +08:00
| listen_opts listen_opt
Implements option that changes BGP listening socket parametres.
2009-06-19 01:20:07 +08:00
;
Nest: Remove trailing whitespaces
2016-09-19 22:01:29 +08:00
listen_opt:
Replace 'bind' option with 'listen' option. To be consistent with other daemons.
2009-06-23 17:08:30 +08:00
ADDRESS ipa { new_config->listen_bgp_addr = $2; }
| PORT expr { new_config->listen_bgp_port = $2; }
Change default for BGP IPv6 socket to V6ONLY. Also add a new option 'dual' for the old behavior.
2010-11-03 17:02:24 +08:00
| V6ONLY { new_config->listen_bgp_flags = 0; }
| DUAL { new_config->listen_bgp_flags = 1; }
Implements option that changes BGP listening socket parametres.
2009-06-19 01:20:07 +08:00
;
BGP graceful restart support. Also significant core protocol state changes needed for that, global graceful restart recovery state and kernel proto support for recovery.
2014-03-20 21:07:12 +08:00
CF_ADDTO(conf, gr_opts)
gr_opts: GRACEFUL RESTART WAIT expr ';' { new_config->gr_wait = $4; } ;
From now we support multiple tables. The master_table variable is definitely gone. Both rte_update() and rte_discard() have an additional argument telling which table should they modify. Also, rte_update() no longer walks the whole protocol list -- each table has a list of all protocols connected to this table and having the rt_notify hook set. Each protocol can also freely decide (by calling proto_add_announce_hook) to connect to any other table, but it will be probably used only by the table-to-table protocol. The default debugging dumps now include all routing tables and also all their connections.
1999-05-18 04:14:52 +08:00
/* Creation of routing tables */
Finalize RA_ACCEPTED handling.
2012-07-05 03:31:03 +08:00
tab_sorted:
{ $$ = 0; }
| SORTED { $$ = 1; }
;
From now we support multiple tables. The master_table variable is definitely gone. Both rte_update() and rte_discard() have an additional argument telling which table should they modify. Also, rte_update() no longer walks the whole protocol list -- each table has a list of all protocols connected to this table and having the rt_notify hook set. Each protocol can also freely decide (by calling proto_add_announce_hook) to connect to any other table, but it will be probably used only by the table-to-table protocol. The default debugging dumps now include all routing tables and also all their connections.
1999-05-18 04:14:52 +08:00
CF_ADDTO(conf, newtab)
Finalize RA_ACCEPTED handling.
2012-07-05 03:31:03 +08:00
newtab: TABLE SYM tab_sorted {
struct rtable_config *cf;
cf = rt_new_table($2);
cf->sorted = $3;
From now we support multiple tables. The master_table variable is definitely gone. Both rte_update() and rte_discard() have an additional argument telling which table should they modify. Also, rte_update() no longer walks the whole protocol list -- each table has a list of all protocols connected to this table and having the rt_notify hook set. Each protocol can also freely decide (by calling proto_add_announce_hook) to connect to any other table, but it will be probably used only by the table-to-table protocol. The default debugging dumps now include all routing tables and also all their connections.
1999-05-18 04:14:52 +08:00
}
;
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
CF_ADDTO(conf, roa_table)
roa_table_start: ROA TABLE SYM {
this_roa_table = roa_new_table_config($3);
};
roa_table_opts:
/* empty */
| roa_table_opts ROA prefix MAX NUM AS NUM ';' {
roa_add_item_config(this_roa_table, $3.addr, $3.len, $5, $7);
}
;
roa_table:
roa_table_start
| roa_table_start '{' roa_table_opts '}'
;
First attempt at protocol configuration (now done only for RIP).
1998-11-28 05:09:57 +08:00
/* Definition of protocols */
CF_ADDTO(conf, proto)
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
proto_start:
PROTOCOL { $$ = SYM_PROTO; }
| TEMPLATE { $$ = SYM_TEMPLATE; }
Added missing semicolons.
2002-11-13 16:46:12 +08:00
;
First attempt at protocol configuration (now done only for RIP).
1998-11-28 05:09:57 +08:00
proto_name:
/* EMPTY */ {
Separated `official protocol names' used in status dumps from name templates used for automatic generation of instance names. protocol->name is the official name protocol->template is the name template (usually "name%d"), should be all lowercase. Updated all protocols to define the templates, checked that their configuration grammar includes proto_name which generates the name and interns it in the symbol table.
2000-01-17 19:52:50 +08:00
struct symbol *s = cf_default_name(this_proto->protocol->template, &this_proto->protocol->name_counter);
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
s->class = this_proto->class;
First attempt at protocol configuration (now done only for RIP).
1998-11-28 05:09:57 +08:00
s->def = this_proto;
this_proto->name = s->name;
}
| SYM {
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
cf_define_symbol($1, this_proto->class, this_proto);
First attempt at protocol configuration (now done only for RIP).
1998-11-28 05:09:57 +08:00
this_proto->name = $1->name;
}
Possibility to define unnamed protocols from template added.
2015-03-10 06:59:26 +08:00
| FROM SYM {
struct symbol *s = cf_default_name(this_proto->protocol->template, &this_proto->protocol->name_counter);
Fixes unnamed protocols from templates
2015-05-22 17:12:48 +08:00
s->class = this_proto->class;
s->def = this_proto;
Possibility to define unnamed protocols from template added.
2015-03-10 06:59:26 +08:00
this_proto->name = s->name;
Fixes unnamed protocols from templates
2015-05-22 17:12:48 +08:00
Possibility to define unnamed protocols from template added.
2015-03-10 06:59:26 +08:00
if (($2->class != SYM_TEMPLATE) && ($2->class != SYM_PROTO)) cf_error("Template or protocol name expected");
proto_copy_config(this_proto, $2->def);
}
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
| SYM FROM SYM {
cf_define_symbol($1, this_proto->class, this_proto);
this_proto->name = $1->name;
Fixes unnamed protocols from templates
2015-05-22 17:12:48 +08:00
if (($3->class != SYM_TEMPLATE) && ($3->class != SYM_PROTO)) cf_error("Template or protocol name expected");
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
proto_copy_config(this_proto, $3->def);
}
First attempt at protocol configuration (now done only for RIP).
1998-11-28 05:09:57 +08:00
;
proto_item:
/* EMPTY */
Trivial 15-line bison excercise: Implemented expressions including user-defined numeric symbols. Whenever possible, use `expr' instead of `NUM' to get full express ion power :-)
1998-11-28 05:32:45 +08:00
| PREFERENCE expr {
Fixes preference bounds.
2009-09-17 19:35:37 +08:00
if ($2 < 0 || $2 > 0xFFFF) cf_error("Invalid preference");
First attempt at protocol configuration (now done only for RIP).
1998-11-28 05:09:57 +08:00
this_proto->preference = $2;
}
Use `switch' for `disabled'.
2000-06-08 18:25:56 +08:00
| DISABLED bool { this_proto->disabled = $2; }
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
| DEBUG debug_mask { this_proto->debug = $2; }
Implements MRTdump feature.
2010-01-03 19:17:52 +08:00
| MRTDUMP mrtdump_mask { this_proto->mrtdump = $2; }
Changed syntax of attaching filters to protocols to hopefully the final version: EXPORT <filter-spec> for outbound routes (i.e., those announced by BIRD to the rest of the world). IMPORT <filter-spec> for inbound routes (i.e., those imported by BIRD from the rest of the world). where <filter-spec> is one of: ALL pass all routes NONE drop all routes FILTER <name> use named filter FILTER { <filter> } use explicitly defined filter For all protocols, the default is IMPORT ALL, EXPORT NONE. This includes the kernel protocol, so that you need to add EXPORT ALL to get the previous configuration of kernel syncer (as usually, see doc/bird.conf.example for a bird.conf example :)).
1999-04-06 04:15:31 +08:00
| IMPORT imexport { this_proto->in_filter = $2; }
| EXPORT imexport { this_proto->out_filter = $2; }
Separate import and receive limits. They have different behavior w.r.t. filtered routes that are kept.
2013-01-10 20:07:33 +08:00
| RECEIVE LIMIT limit_spec { this_proto->rx_limit = $3; }
Implements generalized import hooks. Thanks to Alexander V. Chernikov for the original patch.
2012-04-15 21:28:29 +08:00
| IMPORT LIMIT limit_spec { this_proto->in_limit = $3; }
Implements generalized export limits. And also fixes some minor bugs in limits.
2012-04-25 05:39:57 +08:00
| EXPORT LIMIT limit_spec { this_proto->out_limit = $3; }
Changes 'rejected' to 'filtered' in one of the last patches.
2012-11-15 08:29:01 +08:00
| IMPORT KEEP FILTERED bool { this_proto->in_keep_filtered = $4; }
Basic VRF support Add basic VRF (virtual routing and forwarding) support. Protocols can be associated with VRFs, such protocols will be restricted to interfaces assigned to the VRF (as reported by Linux kernel) and will use sockets bound to the VRF. E.g., different multihop BGP instances can use diffent kernel routing tables to handle BGP TCP connections. The VRF support is preliminary, currently there are several limitations: - Recent Linux kernels (4.11) do not handle correctly sockets bound to interaces that are part of VRF, so most protocols other than multihop BGP do not work. This will be fixed by future kernel versions. - Neighbor cache ignores VRFs. Breaks config with the same prefix on local interfaces in different VRFs. Not much problem as single hop protocols do not work anyways. - Olock code ignores VRFs. Breaks config with multiple BGP peers with the same IP address in different VRFs. - Incoming BGP connections are not dispatched according to VRFs. Breaks config with multiple BGP peers with the same IP address in different VRFs. Perhaps we would need some kernel API to read VRF of incoming connection? Or probably use multiple listening sockets in int-new branch. - We should handle master VRF interface up/down events and perhaps disable associated protocols when VRF goes down. Or at least disable associated interfaces. - Also we should check if the master iface is really VRF iface and not some other kind of master iface. - BFD session request dispatch should be aware of VRFs. - Perhaps kernel protocol should read default kernel table ID from VRF iface so it is not necessary to configure it. - Perhaps we should have per-VRF default table.
2017-09-06 23:38:48 +08:00
| VRF TEXT { this_proto->vrf = if_get_by_name($2); }
From now we support multiple tables. The master_table variable is definitely gone. Both rte_update() and rte_discard() have an additional argument telling which table should they modify. Also, rte_update() no longer walks the whole protocol list -- each table has a list of all protocols connected to this table and having the rt_notify hook set. Each protocol can also freely decide (by calling proto_add_announce_hook) to connect to any other table, but it will be probably used only by the table-to-table protocol. The default debugging dumps now include all routing tables and also all their connections.
1999-05-18 04:14:52 +08:00
| TABLE rtable { this_proto->table = $2; }
Implements protocol-specific router id and updates documentation.
2009-10-13 05:31:42 +08:00
| ROUTER ID idval { this_proto->router_id = $3; }
String constants could be used for string option values. Thanks to Frederik Kriewitz for the patch.
2014-05-30 05:05:03 +08:00
| DESCRIPTION text { this_proto->dsc = $2; }
Changed syntax of attaching filters to protocols to hopefully the final version: EXPORT <filter-spec> for outbound routes (i.e., those announced by BIRD to the rest of the world). IMPORT <filter-spec> for inbound routes (i.e., those imported by BIRD from the rest of the world). where <filter-spec> is one of: ALL pass all routes NONE drop all routes FILTER <name> use named filter FILTER { <filter> } use explicitly defined filter For all protocols, the default is IMPORT ALL, EXPORT NONE. This includes the kernel protocol, so that you need to add EXPORT ALL to get the previous configuration of kernel syncer (as usually, see doc/bird.conf.example for a bird.conf example :)).
1999-04-06 04:15:31 +08:00
;
imexport:
FILTER filter { $$ = $2; }
BGP now handles incoming routes (IPv4 only).
2000-04-01 17:17:33 +08:00
| where_filter
Changed syntax of attaching filters to protocols to hopefully the final version: EXPORT <filter-spec> for outbound routes (i.e., those announced by BIRD to the rest of the world). IMPORT <filter-spec> for inbound routes (i.e., those imported by BIRD from the rest of the world). where <filter-spec> is one of: ALL pass all routes NONE drop all routes FILTER <name> use named filter FILTER { <filter> } use explicitly defined filter For all protocols, the default is IMPORT ALL, EXPORT NONE. This includes the kernel protocol, so that you need to add EXPORT ALL to get the previous configuration of kernel syncer (as usually, see doc/bird.conf.example for a bird.conf example :)).
1999-04-06 04:15:31 +08:00
| ALL { $$ = FILTER_ACCEPT; }
| NONE { $$ = FILTER_REJECT; }
First attempt at protocol configuration (now done only for RIP).
1998-11-28 05:09:57 +08:00
;
Implements generalized import hooks. Thanks to Alexander V. Chernikov for the original patch.
2012-04-15 21:28:29 +08:00
limit_action:
Implements generalized export limits. And also fixes some minor bugs in limits.
2012-04-25 05:39:57 +08:00
/* default */ { $$ = PLA_DISABLE; }
Changes keyword 'exceed' to 'action'.
2012-04-28 19:03:48 +08:00
| ACTION WARN { $$ = PLA_WARN; }
| ACTION BLOCK { $$ = PLA_BLOCK; }
| ACTION RESTART { $$ = PLA_RESTART; }
| ACTION DISABLE { $$ = PLA_DISABLE; }
Implements generalized import hooks. Thanks to Alexander V. Chernikov for the original patch.
2012-04-15 21:28:29 +08:00
;
limit_spec:
Implements generalized export limits. And also fixes some minor bugs in limits.
2012-04-25 05:39:57 +08:00
expr limit_action {
Implements generalized import hooks. Thanks to Alexander V. Chernikov for the original patch.
2012-04-15 21:28:29 +08:00
struct proto_limit *l = cfg_allocz(sizeof(struct proto_limit));
l->limit = $1;
Implements generalized export limits. And also fixes some minor bugs in limits.
2012-04-25 05:39:57 +08:00
l->action = $2;
Implements generalized import hooks. Thanks to Alexander V. Chernikov for the original patch.
2012-04-15 21:28:29 +08:00
$$ = l;
}
I still believe that 0 == NULL, however this patch will make Santiago happy. :-)
2013-02-15 06:35:51 +08:00
| OFF { $$ = NULL; }
Implements generalized import hooks. Thanks to Alexander V. Chernikov for the original patch.
2012-04-15 21:28:29 +08:00
;
From now we support multiple tables. The master_table variable is definitely gone. Both rte_update() and rte_discard() have an additional argument telling which table should they modify. Also, rte_update() no longer walks the whole protocol list -- each table has a list of all protocols connected to this table and having the rt_notify hook set. Each protocol can also freely decide (by calling proto_add_announce_hook) to connect to any other table, but it will be probably used only by the table-to-table protocol. The default debugging dumps now include all routing tables and also all their connections.
1999-05-18 04:14:52 +08:00
rtable:
SYM {
if ($1->class != SYM_TABLE) cf_error("Table name expected");
$$ = $1->def;
}
;
Added configuration of default protocol debugging flags.
2000-03-08 05:50:03 +08:00
CF_ADDTO(conf, debug_default)
debug_default:
DEBUG PROTOCOLS debug_mask { new_config->proto_default_debug = $3; }
Tracing of CLI connections/commands can be now controlled by `debug commands <level>' in the configuration. Level 0 means no tracing, 1 means connections only, 2 includes all commands.
2000-05-30 06:10:18 +08:00
| DEBUG COMMANDS expr { new_config->cli_debug = $3; }
Added configuration of default protocol debugging flags.
2000-03-08 05:50:03 +08:00
;
Implements MRTdump feature.
2010-01-03 19:17:52 +08:00
/* MRTDUMP PROTOCOLS is in systep/unix/config.Y */
Cleaned up handling of interface patterns: o Parsing of interface patterns moved to generic code, introduced this_ipatt which works similarly to this_iface. o Interface patterns now support selection by both interface names and primary IP addresses. o Proto `direct' updated. o RIP updated as well, it also seems the memory corruption bug there is gone.
1999-08-04 03:30:49 +08:00
/* Interface patterns */
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
iface_patt_node_init:
/* EMPTY */ {
struct iface_patt_node *ipn = cfg_allocz(sizeof(struct iface_patt_node));
add_tail(&this_ipatt->ipn_list, NODE ipn);
this_ipn = ipn;
}
;
iface_patt_node_body:
TEXT { this_ipn->pattern = $1; this_ipn->prefix = IPA_NONE; this_ipn->pxlen = 0; }
Allow iface pattern matching code to match peer address on ptp links.
2010-03-20 01:46:56 +08:00
| prefix_or_ipa { this_ipn->pattern = NULL; this_ipn->prefix = $1.addr; this_ipn->pxlen = $1.len; }
| TEXT prefix_or_ipa { this_ipn->pattern = $1; this_ipn->prefix = $2.addr; this_ipn->pxlen = $2.len; }
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
;
iface_negate:
{ this_ipn->positive = 1; }
| '-' { this_ipn->positive = 0; }
;
iface_patt_node:
Nest: Remove trailing whitespaces
2016-09-19 22:01:29 +08:00
iface_patt_node_init iface_negate iface_patt_node_body
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
;
iface_patt_list:
iface_patt_node
| iface_patt_list ',' iface_patt_node
Cleaned up handling of interface patterns: o Parsing of interface patterns moved to generic code, introduced this_ipatt which works similarly to this_iface. o Interface patterns now support selection by both interface names and primary IP addresses. o Proto `direct' updated. o RIP updated as well, it also seems the memory corruption bug there is gone.
1999-08-04 03:30:49 +08:00
;
Check validity of interface definitions. Thanks to Aleksey Berezin for the bugreport.
2014-03-31 06:56:44 +08:00
/* For name/mask-only iface patterns */
iface_patt_list_nopx: iface_patt_list { iface_patt_check(); }
Implements interface masks for choosing router id. Router ID could be automatically determined based of subset of ifaces/addresses specified by 'router id from' option. The patch also does some minor changes related to router ID reconfiguration. Thanks to Alexander V. Chernikov for most of the work.
2012-12-27 19:56:23 +08:00
iface_patt_init: {
/* Generic this_ipatt init */
this_ipatt = cfg_allocz(sizeof(struct iface_patt));
init_list(&this_ipatt->ipn_list);
}
;
iface_patt:
iface_patt_init iface_patt_list
;
Better packet priority and traffic class handling. Implements support for IPv6 traffic class, sets higher priority for OSPF and RIP outgoing packets by default and allows to configure ToS/DS/TClass IP header field and the local priority of outgoing packets.
2013-06-24 22:37:30 +08:00
tos:
CLASS expr { $$ = $2 & 0xfc; if (($2 < 0) || ($2 > 255)) cf_error("TX class must be in range 0-255"); }
| DSCP expr { $$ = ($2 & 0x3f) << 2; if (($2 < 0) || ($2 > 63)) cf_error("TX DSCP must be in range 0-63"); }
;
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
Moved to a much more systematic way of configuring kernel protocols. o Nothing is configured automatically. You _need_ to specify the kernel syncer in config file in order to get it started. o Syncing has been split to route syncer (protocol "Kernel") and interface syncer (protocol "Device"), device routes are generated by protocol "Direct" (now can exist in multiple instances, so that it will be possible to feed different device routes to different routing tables once multiple tables get supported). See doc/bird.conf.example for a living example of these shiny features.
1999-03-27 05:44:38 +08:00
/* Direct device route protocol */
Added configuration of the device internal protocol. This is primarily intended to serve as an example of interface pattern list use. As a side effect, you can disable generating of device routes by disabling this protocol.
1998-11-30 06:03:58 +08:00
CF_ADDTO(proto, dev_proto '}')
Moved to a much more systematic way of configuring kernel protocols. o Nothing is configured automatically. You _need_ to specify the kernel syncer in config file in order to get it started. o Syncing has been split to route syncer (protocol "Kernel") and interface syncer (protocol "Device"), device routes are generated by protocol "Direct" (now can exist in multiple instances, so that it will be possible to feed different device routes to different routing tables once multiple tables get supported). See doc/bird.conf.example for a living example of these shiny features.
1999-03-27 05:44:38 +08:00
dev_proto_start: proto_start DIRECT {
Store protocol config size inside protocol structure Make proto_config_new() use this info instead of supplied size. Thanks to Alexander V. Chernikov for the patch.
2015-02-22 04:08:23 +08:00
this_proto = proto_config_new(&proto_device, $1);
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
init_list(&DIRECT_CFG->iface_list);
Added configuration of the device internal protocol. This is primarily intended to serve as an example of interface pattern list use. As a side effect, you can disable generating of device routes by disabling this protocol.
1998-11-30 06:03:58 +08:00
}
;
dev_proto:
Moved to a much more systematic way of configuring kernel protocols. o Nothing is configured automatically. You _need_ to specify the kernel syncer in config file in order to get it started. o Syncing has been split to route syncer (protocol "Kernel") and interface syncer (protocol "Device"), device routes are generated by protocol "Direct" (now can exist in multiple instances, so that it will be possible to feed different device routes to different routing tables once multiple tables get supported). See doc/bird.conf.example for a living example of these shiny features.
1999-03-27 05:44:38 +08:00
dev_proto_start proto_name '{'
Added configuration of the device internal protocol. This is primarily intended to serve as an example of interface pattern list use. As a side effect, you can disable generating of device routes by disabling this protocol.
1998-11-30 06:03:58 +08:00
| dev_proto proto_item ';'
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
| dev_proto dev_iface_patt ';'
Direct: Implement check link for direct protocol When enabled, direct protocol generates routes only if the underlying link state is up.
2016-04-08 21:10:57 +08:00
| dev_proto CHECK LINK bool ';' { DIRECT_CFG->check_link = $4; }
Added configuration of the device internal protocol. This is primarily intended to serve as an example of interface pattern list use. As a side effect, you can disable generating of device routes by disabling this protocol.
1998-11-30 06:03:58 +08:00
;
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
dev_iface_init:
Cleaned up handling of interface patterns: o Parsing of interface patterns moved to generic code, introduced this_ipatt which works similarly to this_iface. o Interface patterns now support selection by both interface names and primary IP addresses. o Proto `direct' updated. o RIP updated as well, it also seems the memory corruption bug there is gone.
1999-08-04 03:30:49 +08:00
/* EMPTY */ {
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
this_ipatt = cfg_allocz(sizeof(struct iface_patt));
Implements protocol templates. Based on the patch from Alexander V. Chernikov. Extended to support almost all protocols. Uses 'protocol bgp NAME from TEMPLATE { ... }' syntax.
2011-11-07 07:31:23 +08:00
add_tail(&DIRECT_CFG->iface_list, NODE this_ipatt);
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
init_list(&this_ipatt->ipn_list);
Added configuration of the device internal protocol. This is primarily intended to serve as an example of interface pattern list use. As a side effect, you can disable generating of device routes by disabling this protocol.
1998-11-30 06:03:58 +08:00
}
;
A change in OSPF and RIP interface patterns. Allows to add more interface patterns to one common 'options' section like: interface "eth3", "eth4" { options common to eth3 and eth4 }; Also removes undocumented and unnecessary ability to specify more interface patterns with different 'options' sections: interface "eth3" { options ... }, "eth4" { options ... };
2009-05-07 04:02:45 +08:00
dev_iface_patt:
INTERFACE dev_iface_init iface_patt_list
Cleaned up handling of interface patterns: o Parsing of interface patterns moved to generic code, introduced this_ipatt which works similarly to this_iface. o Interface patterns now support selection by both interface names and primary IP addresses. o Proto `direct' updated. o RIP updated as well, it also seems the memory corruption bug there is gone.
1999-08-04 03:30:49 +08:00
;
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
/* Debug flags */
debug_mask:
ALL { $$ = ~0; }
| OFF { $$ = 0; }
| '{' debug_list '}' { $$ = $2; }
;
debug_list:
debug_flag
| debug_list ',' debug_flag { $$ = $1 | $3; }
;
debug_flag:
STATES { $$ = D_STATES; }
| ROUTES { $$ = D_ROUTES; }
| FILTERS { $$ = D_FILTERS; }
Added tracing of interface events.
2000-03-13 04:50:35 +08:00
| INTERFACES { $$ = D_IFACES; }
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
| EVENTS { $$ = D_EVENTS; }
| PACKETS { $$ = D_PACKETS; }
;
Implements MRTdump feature.
2010-01-03 19:17:52 +08:00
/* MRTDump flags */
mrtdump_mask:
ALL { $$ = ~0; }
| OFF { $$ = 0; }
| '{' mrtdump_list '}' { $$ = $2; }
;
mrtdump_list:
mrtdump_flag
| mrtdump_list ',' mrtdump_flag { $$ = $1 | $3; }
;
mrtdump_flag:
STATES { $$ = MD_STATES; }
| MESSAGES { $$ = MD_MESSAGES; }
;
Cleaned up handling of interface patterns: o Parsing of interface patterns moved to generic code, introduced this_ipatt which works similarly to this_iface. o Interface patterns now support selection by both interface names and primary IP addresses. o Proto `direct' updated. o RIP updated as well, it also seems the memory corruption bug there is gone.
1999-08-04 03:30:49 +08:00
/* Password lists */
Fix bugs in OSPF MD5 authentication. First bug is that default values for MD5 password ID changed during reconfigure, Second bug is that BIRD chooses password in first-fit manner, but RFC says that it should use the one with the latest generate-from. It also modifies the syntax for multiple passwords. Now it is possible to just add more 'password' statements to the interface section and it is not needed to use 'passwords' section. Old syntax can be used too.
2008-11-09 00:24:23 +08:00
password_list:
PASSWORDS '{' password_items '}'
| password_item
;
Nest: Remove trailing whitespaces
2016-09-19 22:01:29 +08:00
password_items:
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
/* empty */
| password_item ';' password_items
;
password_item:
password_item_begin '{' password_item_params '}'
| password_item_begin
;
password_item_begin:
String constants could be used for string option values. Thanks to Frederik Kriewitz for the patch.
2014-05-30 05:05:03 +08:00
PASSWORD text {
Fix bugs in OSPF MD5 authentication. First bug is that default values for MD5 password ID changed during reconfigure, Second bug is that BIRD chooses password in first-fit manner, but RFC says that it should use the one with the latest generate-from. It also modifies the syntax for multiple passwords. Now it is possible to just add more 'password' statements to the interface section and it is not needed to use 'passwords' section. Old syntax can be used too.
2008-11-09 00:24:23 +08:00
if (!this_p_list) {
this_p_list = cfg_alloc(sizeof(list));
init_list(this_p_list);
password_id = 1;
}
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
this_p_item = cfg_alloc(sizeof (struct password_item));
this_p_item->password = $2;
Nest: Add support for MAC algorithms in grammar
2016-01-26 23:45:13 +08:00
this_p_item->length = strlen($2);
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
this_p_item->genfrom = 0;
this_p_item->gento = TIME_INFINITY;
this_p_item->accfrom = 0;
this_p_item->accto = TIME_INFINITY;
Fix bugs in OSPF MD5 authentication. First bug is that default values for MD5 password ID changed during reconfigure, Second bug is that BIRD chooses password in first-fit manner, but RFC says that it should use the one with the latest generate-from. It also modifies the syntax for multiple passwords. Now it is possible to just add more 'password' statements to the interface section and it is not needed to use 'passwords' section. Old syntax can be used too.
2008-11-09 00:24:23 +08:00
this_p_item->id = password_id++;
Nest: Add support for MAC algorithms in grammar
2016-01-26 23:45:13 +08:00
this_p_item->alg = ALG_UNDEFINED;
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
add_tail(this_p_list, &this_p_item->n);
Skeleton for password handling, currently I only build structures and do nothing more advanced for them
1999-05-26 22:24:57 +08:00
}
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
;
Skeleton for password handling, currently I only build structures and do nothing more advanced for them
1999-05-26 22:24:57 +08:00
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
password_item_params:
Nest: Remove trailing whitespaces
2016-09-19 22:01:29 +08:00
/* empty */ { }
Password management redesigned (untested).
2004-06-27 04:11:14 +08:00
| GENERATE FROM datetime ';' password_item_params { this_p_item->genfrom = $3; }
| GENERATE TO datetime ';' password_item_params { this_p_item->gento = $3; }
| ACCEPT FROM datetime ';' password_item_params { this_p_item->accfrom = $3; }
| ACCEPT TO datetime ';' password_item_params { this_p_item->accto = $3; }
Nest: Add support for MAC algorithms in grammar
2016-01-26 23:45:13 +08:00
| FROM datetime ';' password_item_params { this_p_item->genfrom = this_p_item->accfrom = $2; }
| TO datetime ';' password_item_params { this_p_item->gento = this_p_item->accto = $2; }
MD5 authentication in OSPF works. :-)
2004-07-13 22:46:14 +08:00
| ID expr ';' password_item_params { this_p_item->id = $2; if ($2 <= 0) cf_error("Password ID has to be greated than zero."); }
Nest: Add support for MAC algorithms in grammar
2016-01-26 23:45:13 +08:00
| ALGORITHM password_algorithm ';' password_item_params { this_p_item->alg = $2; }
Skeleton for password handling, currently I only build structures and do nothing more advanced for them
1999-05-26 22:24:57 +08:00
;
Nest: Add support for MAC algorithms in grammar
2016-01-26 23:45:13 +08:00
password_algorithm:
KEYED MD5 { $$ = ALG_MD5; }
| KEYED SHA1 { $$ = ALG_SHA1; }
| KEYED SHA256 { $$ = ALG_SHA256; }
| KEYED SHA384 { $$ = ALG_SHA384; }
| KEYED SHA512 { $$ = ALG_SHA512; }
| HMAC MD5 { $$ = ALG_HMAC_MD5; }
| HMAC SHA1 { $$ = ALG_HMAC_SHA1; }
| HMAC SHA256 { $$ = ALG_HMAC_SHA256; }
| HMAC SHA384 { $$ = ALG_HMAC_SHA384; }
| HMAC SHA512 { $$ = ALG_HMAC_SHA512; }
;
Bugfix - each protocol can be compiled separately.
2009-08-17 04:36:41 +08:00
Parse CLI commands. We use the same parser as for configuration files (because we want to allow filter and similar complex constructs to be used in commands and we should avoid code duplication), only with CLI_MARKER token prepended before the whole input. Defined macro CF_CLI(cmd, args, help) for defining CLI commands in .Y files. The first argument specifies the command itself, the remaining two arguments are copied to the help file (er, will be copied after the help file starts to exist). This macro automatically creates a skeleton rule for the command, you only need to append arguments as in: CF_CLI(STEAL MONEY, <$>, [[Steal <$> US dollars or equivalent in any other currency]]): NUM { cli_msg(0, "%d$ stolen", $3); } ; Also don't forget to reset lexer state between inputs.
1999-11-01 01:47:47 +08:00
/* Core commands */
Completion works. Unfortunately, we have to access a couple of internal symbols of libreadline :-(
2000-02-18 07:37:16 +08:00
CF_CLI_HELP(SHOW, ..., [[Show status information]])
Added few basic commands: show status, show interfaces [summary], show protocols (incomplete).
1999-11-25 23:35:30 +08:00
Split off general commands to cmds.c. Added `show symbols' command which dumps whole symbol table together with symbol types etc.
2000-01-19 20:30:19 +08:00
CF_CLI(SHOW STATUS,,, [[Show router status]])
Added missing semicolons.
2002-11-13 16:46:12 +08:00
{ cmd_show_status(); } ;
Added few basic commands: show status, show interfaces [summary], show protocols (incomplete).
1999-11-25 23:35:30 +08:00
Implements command that shows memory usage.
2010-06-03 04:20:40 +08:00
CF_CLI(SHOW MEMORY,,, [[Show memory usage]])
{ cmd_show_memory(); } ;
Implements pattern match for 'show protocols' command. And generally consolidates protocol commands.
2010-02-20 07:03:31 +08:00
CF_CLI(SHOW PROTOCOLS, proto_patt2, [<protocol> | \"<pattern>\"], [[Show routing protocols]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($3, proto_cmd_show, 0, 0); } ;
`show interfaces' and `show protocols' works.
1999-11-30 20:57:14 +08:00
Implements pattern match for 'show protocols' command. And generally consolidates protocol commands.
2010-02-20 07:03:31 +08:00
CF_CLI(SHOW PROTOCOLS ALL, proto_patt2, [<protocol> | \"<pattern>\"], [[Show routing protocol details]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($4, proto_cmd_show, 0, 1); } ;
Added few basic commands: show status, show interfaces [summary], show protocols (incomplete).
1999-11-25 23:35:30 +08:00
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
optsym:
SYM
| /* empty */ { $$ = NULL; }
;
Added few basic commands: show status, show interfaces [summary], show protocols (incomplete).
1999-11-25 23:35:30 +08:00
CF_CLI(SHOW INTERFACES,,, [[Show network interfaces]])
{ if_show(); } ;
CF_CLI(SHOW INTERFACES SUMMARY,,, [[Show summary of network interfaces]])
{ if_show_summary(); } ;
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
CF_CLI_HELP(SHOW ROUTE, ..., [[Show routing table]])
Implements show route noexport option. Shows routes that would be exported to the protocol but are rejected by the export filter.
2014-10-02 18:46:26 +08:00
CF_CLI(SHOW ROUTE, r_args, [[[<prefix>|for <prefix>|for <ip>] [table <t>] [filter <f>|where <cond>] [all] [primary] [filtered] [(export|preexport|noexport) <p>] [protocol <p>] [stats|count]]], [[Show routing table]])
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
{ rt_show($3); } ;
r_args:
/* empty */ {
$$ = cfg_allocz(sizeof(struct rt_show_data));
$$->pxlen = 256;
$$->filter = FILTER_ACCEPT;
}
Unified parsing of prefixes. Had to rename `prefix' in filters to `fprefix'.
2000-05-13 19:17:49 +08:00
| r_args prefix {
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
$$ = $1;
if ($$->pxlen != 256) cf_error("Only one prefix expected");
Unified parsing of prefixes. Had to rename `prefix' in filters to `fprefix'.
2000-05-13 19:17:49 +08:00
$$->prefix = $2.addr;
$$->pxlen = $2.len;
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
}
Added `show route for <prefix-or-ipa>' which looks up route leading to given network.
2000-05-13 19:42:42 +08:00
| r_args FOR prefix_or_ipa {
$$ = $1;
if ($$->pxlen != 256) cf_error("Only one prefix expected");
$$->prefix = $3.addr;
$$->pxlen = $3.len;
$$->show_for = 1;
}
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
| r_args TABLE SYM {
$$ = $1;
if ($3->class != SYM_TABLE) cf_error("%s is not a table", $3->name);
$$->table = ((struct rtable_config *)$3->def)->table;
}
| r_args FILTER filter {
$$ = $1;
Implemented `show route where <condition>' command. Pavel, please check my addition to filter/config.Y.
1999-12-02 22:04:44 +08:00
if ($$->filter != FILTER_ACCEPT) cf_error("Filter specified twice");
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
$$->filter = $3;
}
Implemented `show route where <condition>' command. Pavel, please check my addition to filter/config.Y.
1999-12-02 22:04:44 +08:00
| r_args where_filter {
$$ = $1;
if ($$->filter != FILTER_ACCEPT) cf_error("Filter specified twice");
$$->filter = $2;
}
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
| r_args ALL {
$$ = $1;
$$->verbose = 1;
}
Added commands `show route protocol <p>' and `show route import <p>' which show the routing table as exported to the protocol given resp. as returned from its import control hook. To get handling of filtered extended attributes right (even in the old `show route where <filter>' command), the get_route_info hook gets an attribute list and all protocol specific rte attributes are contained there as temporary ones. Updated RIP to do that. Added ea_append() which joins two ea_list's.
2000-05-07 06:57:39 +08:00
| r_args PRIMARY {
$$ = $1;
$$->primary_only = 1;
}
Changes 'rejected' to 'filtered' in one of the last patches.
2012-11-15 08:29:01 +08:00
| r_args FILTERED {
Allows rejected routes to be kept and examined. When 'import keep rejected' protocol option is activated, routes rejected by the import filter are kept in the routing table, but they are hidden and not propagated to other protocols. It is possible to examine them using 'show route rejected'.
2012-11-10 21:26:13 +08:00
$$ = $1;
Changes 'rejected' to 'filtered' in one of the last patches.
2012-11-15 08:29:01 +08:00
$$->filtered = 1;
Allows rejected routes to be kept and examined. When 'import keep rejected' protocol option is activated, routes rejected by the import filter are kept in the routing table, but they are hidden and not propagated to other protocols. It is possible to examine them using 'show route rejected'.
2012-11-10 21:26:13 +08:00
}
Implements show route noexport option. Shows routes that would be exported to the protocol but are rejected by the export filter.
2014-10-02 18:46:26 +08:00
| r_args export_mode SYM {
Added commands `show route protocol <p>' and `show route import <p>' which show the routing table as exported to the protocol given resp. as returned from its import control hook. To get handling of filtered extended attributes right (even in the old `show route where <filter>' command), the get_route_info hook gets an attribute list and all protocol specific rte attributes are contained there as temporary ones. Updated RIP to do that. Added ea_append() which joins two ea_list's.
2000-05-07 06:57:39 +08:00
struct proto_config *c = (struct proto_config *) $3->def;
$$ = $1;
Change import/preimport to export/preexport to be consistent with filters.
2009-05-22 23:12:15 +08:00
if ($$->export_mode) cf_error("Protocol specified twice");
Added commands `show route protocol <p>' and `show route import <p>' which show the routing table as exported to the protocol given resp. as returned from its import control hook. To get handling of filtered extended attributes right (even in the old `show route where <filter>' command), the get_route_info hook gets an attribute list and all protocol specific rte attributes are contained there as temporary ones. Updated RIP to do that. Added ea_append() which joins two ea_list's.
2000-05-07 06:57:39 +08:00
if ($3->class != SYM_PROTO || !c->proto) cf_error("%s is not a protocol", $3->name);
Change import/preimport to export/preexport to be consistent with filters.
2009-05-22 23:12:15 +08:00
$$->export_mode = $2;
$$->export_protocol = c->proto;
Added commands `show route protocol <p>' and `show route import <p>' which show the routing table as exported to the protocol given resp. as returned from its import control hook. To get handling of filtered extended attributes right (even in the old `show route where <filter>' command), the get_route_info hook gets an attribute list and all protocol specific rte attributes are contained there as temporary ones. Updated RIP to do that. Added ea_append() which joins two ea_list's.
2000-05-07 06:57:39 +08:00
$$->running_on_config = c->proto->cf->global;
}
'show route protocol <p>' added to CLI.
2009-05-11 08:01:11 +08:00
| r_args PROTOCOL SYM {
struct proto_config *c = (struct proto_config *) $3->def;
$$ = $1;
if ($$->show_protocol) cf_error("Protocol specified twice");
if ($3->class != SYM_PROTO || !c->proto) cf_error("%s is not a protocol", $3->name);
$$->show_protocol = c->proto;
$$->running_on_config = c->proto->cf->global;
Added commands `show route protocol <p>' and `show route import <p>' which show the routing table as exported to the protocol given resp. as returned from its import control hook. To get handling of filtered extended attributes right (even in the old `show route where <filter>' command), the get_route_info hook gets an attribute list and all protocol specific rte attributes are contained there as temporary ones. Updated RIP to do that. Added ea_append() which joins two ea_list's.
2000-05-07 06:57:39 +08:00
}
Implemented `show route <...> stats'.
2000-05-07 19:28:59 +08:00
| r_args STATS {
$$ = $1;
$$->stats = 1;
}
Implemented `show route count' which is `show route stats' with exception that it doesn't print the routes themselves.
2000-05-08 22:58:00 +08:00
| r_args COUNT {
$$ = $1;
$$->stats = 2;
}
Added commands `show route protocol <p>' and `show route import <p>' which show the routing table as exported to the protocol given resp. as returned from its import control hook. To get handling of filtered extended attributes right (even in the old `show route where <filter>' command), the get_route_info hook gets an attribute list and all protocol specific rte attributes are contained there as temporary ones. Updated RIP to do that. Added ea_append() which joins two ea_list's.
2000-05-07 06:57:39 +08:00
;
Implements show route noexport option. Shows routes that would be exported to the protocol but are rejected by the export filter.
2014-10-02 18:46:26 +08:00
export_mode:
PREEXPORT { $$ = RSEM_PREEXPORT; }
| EXPORT { $$ = RSEM_EXPORT; }
| NOEXPORT { $$ = RSEM_NOEXPORT; }
Added dumping of routing tables (`show route'). This includes filtering.
1999-12-01 23:10:21 +08:00
;
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
CF_CLI_HELP(SHOW ROA, ..., [[Show ROA table]])
CF_CLI(SHOW ROA, roa_args, [<prefix> | in <prefix> | for <prefix>] [as <num>] [table <t>], [[Show ROA table]])
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
{ roa_show($3); } ;
roa_args:
/* empty */ {
$$ = cfg_allocz(sizeof(struct roa_show_data));
$$->mode = ROA_SHOW_ALL;
$$->table = roa_table_default;
if (roa_table_default == NULL)
cf_error("No ROA table defined");
}
| roa_args roa_mode prefix {
$$ = $1;
if ($$->mode != ROA_SHOW_ALL) cf_error("Only one prefix expected");
$$->prefix = $3.addr;
$$->pxlen = $3.len;
$$->mode = $2;
}
| roa_args AS NUM {
$$ = $1;
$$->asn = $3;
}
| roa_args TABLE SYM {
$$ = $1;
if ($3->class != SYM_ROA) cf_error("%s is not a ROA table", $3->name);
$$->table = ((struct roa_table_config *)$3->def)->table;
}
;
roa_mode:
{ $$ = ROA_SHOW_PX; }
| IN { $$ = ROA_SHOW_IN; }
| FOR { $$ = ROA_SHOW_FOR; }
;
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
CF_CLI_HELP(SHOW SYMBOLS, ..., [[Show all known symbolic names]])
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
CF_CLI(SHOW SYMBOLS, sym_args, [table|filter|function|protocol|template|roa|<symbol>], [[Show all known symbolic names]])
Split off general commands to cmds.c. Added `show symbols' command which dumps whole symbol table together with symbol types etc.
2000-01-19 20:30:19 +08:00
{ cmd_show_symbols($3); } ;
Adds filtering to 'show symbols' command. Thanks Alexander V. Chernikov for the original patch.
2012-03-16 19:47:12 +08:00
sym_args:
/* empty */ {
$$ = cfg_allocz(sizeof(struct sym_show_data));
}
| sym_args TABLE { $$ = $1; $$->type = SYM_TABLE; }
| sym_args FUNCTION { $$ = $1; $$->type = SYM_FUNCTION; }
| sym_args FILTER { $$ = $1; $$->type = SYM_FILTER; }
| sym_args PROTOCOL { $$ = $1; $$->type = SYM_PROTO; }
| sym_args TEMPLATE { $$ = $1; $$->type = SYM_TEMPLATE; }
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
| sym_args ROA { $$ = $1; $$->type = SYM_ROA; }
Adds filtering to 'show symbols' command. Thanks Alexander V. Chernikov for the original patch.
2012-03-16 19:47:12 +08:00
| sym_args SYM { $$ = $1; $$->sym = $2; }
;
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
roa_table_arg:
Nest: Remove trailing whitespaces
2016-09-19 22:01:29 +08:00
/* empty */ {
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
if (roa_table_default == NULL)
cf_error("No ROA table defined");
$$ = roa_table_default;
}
| TABLE SYM {
if ($2->class != SYM_ROA)
cf_error("%s is not a ROA table", $2->name);
$$ = ((struct roa_table_config *)$2->def)->table;
}
;
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
CF_CLI_HELP(ADD, roa ..., [[Add ROA record]])
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
CF_CLI(ADD ROA, prefix MAX NUM AS NUM roa_table_arg, <prefix> max <num> as <num> [table <name>], [[Add ROA record]])
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
{
if (! cli_access_restricted())
{ roa_add_item($8, $3.addr, $3.len, $5, $7, ROA_SRC_DYNAMIC); cli_msg(0, ""); }
};
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
CF_CLI_HELP(DELETE, roa ..., [[Delete ROA record]])
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
CF_CLI(DELETE ROA, prefix MAX NUM AS NUM roa_table_arg, <prefix> max <num> as <num> [table <name>], [[Delete ROA record]])
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
{
if (! cli_access_restricted())
{ roa_delete_item($8, $3.addr, $3.len, $5, $7, ROA_SRC_DYNAMIC); cli_msg(0, ""); }
};
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
CF_CLI_HELP(FLUSH, roa [table <name>], [[Removes all dynamic ROA records]])
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
CF_CLI(FLUSH ROA, roa_table_arg, [table <name>], [[Removes all dynamic ROA records]])
Some minor changes to CLI.
2012-03-22 18:46:38 +08:00
{
if (! cli_access_restricted())
{ roa_flush($3, ROA_SRC_DYNAMIC); cli_msg(0, ""); }
};
Route Origin Authorization basics. - ROA tables, which are used as a basic part for RPKI. - Commands for examining and modifying ROA tables. - Filter operators based on ROA tables consistent with RFC 6483.
2012-03-19 00:32:30 +08:00
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
CF_CLI_HELP(DUMP, ..., [[Dump debugging information]])
CF_CLI(DUMP RESOURCES,,, [[Dump all allocated resource]])
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
{ rdump(&root_pool); cli_msg(0, ""); } ;
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
CF_CLI(DUMP SOCKETS,,, [[Dump open sockets]])
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
{ sk_dump_all(); cli_msg(0, ""); } ;
Implement latency tracking, internal event log and watchdog
2015-03-02 16:41:14 +08:00
CF_CLI(DUMP EVENTS,,, [[Dump event log]])
{ io_log_dump(); cli_msg(0, ""); } ;
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
CF_CLI(DUMP INTERFACES,,, [[Dump interface information]])
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
{ if_dump_all(); cli_msg(0, ""); } ;
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
CF_CLI(DUMP NEIGHBORS,,, [[Dump neighbor cache]])
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
{ neigh_dump_all(); cli_msg(0, ""); } ;
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
CF_CLI(DUMP ATTRIBUTES,,, [[Dump attribute cache]])
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
{ rta_dump_all(); cli_msg(0, ""); } ;
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
CF_CLI(DUMP ROUTES,,, [[Dump routing table]])
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
{ rt_dump_all(); cli_msg(0, ""); } ;
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
CF_CLI(DUMP PROTOCOLS,,, [[Dump protocol information]])
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
{ protos_dump_all(); cli_msg(0, ""); } ;
Implements eval command and minor CLI cleanups. Implemented eval command can be used to evaluate expressions. The patch also documents echo command and allows to use log classes instead of integer as a mask for echo.
2013-07-25 19:15:32 +08:00
CF_CLI(EVAL, term, <expr>, [[Evaluate an expression]])
{ cmd_eval($2); } ;
CF_CLI_HELP(ECHO, ..., [[Control echoing of log messages]])
Doc: Change debug to { flag1|flag2|flag3 [, ...] } style Thanks to Micah Anderson for bug report and Ondrej Zajicek for the idea!
2016-09-05 17:20:28 +08:00
CF_CLI(ECHO, echo_mask echo_size, (all | off | { debug|trace|info|remote|warning|error|auth [, ...] }) [<buffer-size>], [[Control echoing of log messages]]) {
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
cli_set_log_echo(this_cli, $2, $3);
cli_msg(0, "");
} ;
echo_mask:
ALL { $$ = ~0; }
| OFF { $$ = 0; }
Implements eval command and minor CLI cleanups. Implemented eval command can be used to evaluate expressions. The patch also documents echo command and allows to use log classes instead of integer as a mask for echo.
2013-07-25 19:15:32 +08:00
| '{' log_mask_list '}' { $$ = $2; }
Implemented echoing of log messages to CLI connections. Just try `echo all'.
1999-12-06 20:34:45 +08:00
;
echo_size:
/* empty */ { $$ = 4096; }
| NUM {
if ($1 < 256 || $1 > 65536) cf_error("Invalid log buffer size");
$$ = $1;
}
;
Parse CLI commands. We use the same parser as for configuration files (because we want to allow filter and similar complex constructs to be used in commands and we should avoid code duplication), only with CLI_MARKER token prepended before the whole input. Defined macro CF_CLI(cmd, args, help) for defining CLI commands in .Y files. The first argument specifies the command itself, the remaining two arguments are copied to the help file (er, will be copied after the help file starts to exist). This macro automatically creates a skeleton rule for the command, you only need to append arguments as in: CF_CLI(STEAL MONEY, <$>, [[Steal <$> US dollars or equivalent in any other currency]]): NUM { cli_msg(0, "%d$ stolen", $3); } ; Also don't forget to reset lexer state between inputs.
1999-11-01 01:47:47 +08:00
Oops! Configuration compiles now.
2000-06-08 18:48:35 +08:00
CF_CLI(DISABLE, proto_patt, <protocol> | \"<pattern>\" | all, [[Disable protocol]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($2, proto_cmd_disable, 1, 0); } ;
Oops! Configuration compiles now.
2000-06-08 18:48:35 +08:00
CF_CLI(ENABLE, proto_patt, <protocol> | \"<pattern>\" | all, [[Enable protocol]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($2, proto_cmd_enable, 1, 0); } ;
Oops! Configuration compiles now.
2000-06-08 18:48:35 +08:00
CF_CLI(RESTART, proto_patt, <protocol> | \"<pattern>\" | all, [[Restart protocol]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($2, proto_cmd_restart, 1, 0); } ;
Implements BGP route refresh.
2009-11-27 03:47:59 +08:00
CF_CLI(RELOAD, proto_patt, <protocol> | \"<pattern>\" | all, [[Reload protocol]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($2, proto_cmd_reload, 1, CMD_RELOAD); } ;
Finishes 'route reload' feature.
2009-12-14 08:32:37 +08:00
CF_CLI(RELOAD IN, proto_patt, <protocol> | \"<pattern>\" | all, [[Reload protocol (just imported routes)]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($3, proto_cmd_reload, 1, CMD_RELOAD_IN); } ;
Finishes 'route reload' feature.
2009-12-14 08:32:37 +08:00
CF_CLI(RELOAD OUT, proto_patt, <protocol> | \"<pattern>\" | all, [[Reload protocol (just exported routes)]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($3, proto_cmd_reload, 1, CMD_RELOAD_OUT); } ;
Reworked proto lists -- each proto is now in two lists: the global one (proto_list) and per-type one (original lists). A lot of things simplified. Implemented `disable', `enable' and `restart' CLI commands.
2000-01-17 07:30:06 +08:00
Implements MRTdump feature.
2010-01-03 19:17:52 +08:00
CF_CLI_HELP(DEBUG, ..., [[Control protocol debugging via BIRD logs]])
Doc: Change debug to { flag1|flag2|flag3 [, ...] } style Thanks to Micah Anderson for bug report and Ondrej Zajicek for the idea!
2016-09-05 17:20:28 +08:00
CF_CLI(DEBUG, proto_patt debug_mask, (<protocol> | \"<pattern>\" | all) (all | off | { states|routes|filters|interfaces|events|packets [, ...] }), [[Control protocol debugging via BIRD logs]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($2, proto_cmd_debug, 1, $3); } ;
Implements MRTdump feature.
2010-01-03 19:17:52 +08:00
CF_CLI_HELP(MRTDUMP, ..., [[Control protocol debugging via MRTdump files]])
Doc: Change debug to { flag1|flag2|flag3 [, ...] } style Thanks to Micah Anderson for bug report and Ondrej Zajicek for the idea!
2016-09-05 17:20:28 +08:00
CF_CLI(MRTDUMP, proto_patt mrtdump_mask, (<protocol> | \"<pattern>\" | all) (all | off | { states|messages [, ...] }), [[Control protocol debugging via MRTdump format]])
Restricted read-only CLI. Also adds support for executing commands using birdc <cmd>.
2010-02-21 16:57:26 +08:00
{ proto_apply_cmd($2, proto_cmd_mrtdump, 1, $3); } ;
CF_CLI(RESTRICT,,,[[Restrict current CLI session to safe commands]])
{ this_cli->restricted = 1; cli_msg(16, "Access restricted"); } ;
Added protocol debugging flags (protocol.h: D_xxx), parsing of them in configuration files and commands for manipulating them. Current debug message policy: o D_STATES, D_ROUTES and D_FILTERS are handled in generic code. o Other debug flags should be handled in the protocols and whenever the flag is set, the corresponding messages should be printed using calls to log(L_TRACE, ...), each message prefixed with the name of the protocol instance. These messages should cover the whole normal operation of the protocol and should be useful for an administrator trying to understand what does the protocol behave on his network or who is attempting to diagnose network problems. If your messages don't fit to the categories I've defined, feel free to add your own ones (by adding them to protocol.h and on two places in nest/config.Y), but please try to keep the categories as general as possible (i.e., not tied to your protocol). o Internal debug messages not interesting even to an experienced user should be printed by calling DBG() which is either void or a call to debug() depending on setting of the LOCAL_DEBUG symbol at the top of your source. o Dump functions (proto->dump etc.) should call debug() to print their messages. o If you are doing any internal consistency checks, use ASSERT or bug(). o Nobody shall ever call printf() or any other stdio functions. Also please try to log any protocol errors you encounter and tag them with the appropriate message category (usually L_REMOTE or L_AUTH). Always carefully check contents of any message field you receive and verify all IP addresses you work with (by calling ipa_classify() or by using the neighbour cache if you want to check direct connectedness as well).
2000-03-08 04:49:48 +08:00
Reworked proto lists -- each proto is now in two lists: the global one (proto_list) and per-type one (original lists). A lot of things simplified. Implemented `disable', `enable' and `restart' CLI commands.
2000-01-17 07:30:06 +08:00
proto_patt:
Implements pattern match for 'show protocols' command. And generally consolidates protocol commands.
2010-02-20 07:03:31 +08:00
SYM { $$.ptr = $1; $$.patt = 0; }
| ALL { $$.ptr = NULL; $$.patt = 1; }
| TEXT { $$.ptr = $1; $$.patt = 1; }
Reworked proto lists -- each proto is now in two lists: the global one (proto_list) and per-type one (original lists). A lot of things simplified. Implemented `disable', `enable' and `restart' CLI commands.
2000-01-17 07:30:06 +08:00
;
Implements pattern match for 'show protocols' command. And generally consolidates protocol commands.
2010-02-20 07:03:31 +08:00
proto_patt2:
SYM { $$.ptr = $1; $$.patt = 0; }
| { $$.ptr = NULL; $$.patt = 1; }
| TEXT { $$.ptr = $1; $$.patt = 1; }
;
Adds igp_metric attribute.
2010-08-02 19:11:53 +08:00
CF_ADDTO(dynamic_attr, IGP_METRIC
{ $$ = f_new_dynamic_attr(EAF_TYPE_INT, T_INT, EA_GEN_IGP_METRIC); })
Implements pattern match for 'show protocols' command. And generally consolidates protocol commands.
2010-02-20 07:03:31 +08:00
Parser fragment for the core. Now handles only router ID setting.
1998-11-28 03:37:57 +08:00
CF_CODE
CF_END
Reference in a new issue Copy permalink