bgpd: Avoid cluster list attribute truncation

[ton31337]

No description provided.

[greptile-apps]

Greptile Summary

This PR fixes a silent truncation bug in the BGP cluster list attribute encoding: when the total cluster list value exceeds 255 bytes, the old code called stream_putc for the length field, silently wrapping the value to its low 8 bits. The fix follows the same pattern already used for communities, large communities, and extended communities — switching to the RFC 4271 Extended Length encoding (BGP_ATTR_FLAG_EXTLEN + two-byte stream_putw) when cluster->length + 4 > 255.

• The condition cluster && cluster->length + 4 > 255 correctly gates the extended-length path; the cluster == NULL case falls through to the else branch and always fits in one byte.
• Duplicate router-id/cluster-id write logic from both branches of the original if (cluster) / else block is properly consolidated after the header-encoding split.

Confidence Score: 5/5

Safe to merge. The change is a targeted bug fix for a well-understood truncation path, follows an existing pattern already in the file, and the receive side already handles extended-length for all attributes.

The fix is self-contained, touches only the cluster list attribute encoding branch, and mirrors the identical extended-length pattern already applied to communities, large communities, and ecommunities in the same function. The receiving parser's extended-length handling at the attribute-loop level means no receive-side change is needed, and the flag-validation code already masks out EXTLEN before comparing. No edge-case regressions were identified.

No files require special attention.

Important Files Changed

Filename	Overview
bgpd/bgp_attr.c	Adds RFC 4271 Extended Length encoding for CLUSTER_LIST when total value length exceeds 255 bytes; consolidates duplicate cluster-id write logic; logic is correct and symmetric with the already-present extended-length handling on the receive path.

_{Reviews (1): Last reviewed commit: "bgpd: Avoid cluster list attribute trunc..." | Re-trigger Greptile}

[ton31337]

@Mergifyio backport stable/10.6 stable/10.5 stable/10.4 stable/10.3 stable/10.2

[mergify]

backport stable/10.6 stable/10.5 stable/10.4 stable/10.3 stable/10.2

✅ Backports have been created

Details

• #22170 bgpd: Avoid cluster list attribute truncation (backport #22081) has been created for branch stable/10.6
• #22171 bgpd: Avoid cluster list attribute truncation (backport #22081) has been created for branch stable/10.5
• #22172 bgpd: Avoid cluster list attribute truncation (backport #22081) has been created for branch stable/10.4
• #22173 bgpd: Avoid cluster list attribute truncation (backport #22081) has been created for branch stable/10.3
• #22174 bgpd: Avoid cluster list attribute truncation (backport #22081) has been created for branch stable/10.2

[donaldsharp]

Why not move these two lines outside the if/else and remove lines 5730 and 5731

[ton31337]

That's valid, but IMO, this doesn't do anything with the relevant fix. We should then fix this together with BGP_ATTR_LARGE_COMMUNITIES, BGP_ATTR_COMMUNITIES, etc. (the same pattern).

[riw777]

looks good