Introduction

This PR introduces compatibility for RTR version 2 and handling of ASPA RTR PDUs as specified in draft-ietf-sidrops-8210bis-11, section 5.12 and adds AS_PATH verification according to draft-ietf-sidrops-aspa-verification-16, section 6.

Overview

This PR adds a new module called aspa which defines a new aspa_table organizing validated Autonomous System Provider Authorization data received from an RPKI-RTR cache server. The rtr module was enhanced to parse ASPA PDUs and update the aspa_table accordingly. Analogous to rtr_mgr_validate (prefixes/ROAs) and rtr_mgr_get_spki, we're introducing a new function rtr_mgr_verify_as_path for AS_PATH verification. rtrclient has gained a new option, -a, for printing ASPA data in addition to -p (prefixes) and -k.

Detailed Design

Storing ASPA Records

ASPA records are structs derived from RTR ASPA PDUs, each containing a customer ASN and a set of providers attested by the customer. The aspa_table consists of a linked list where each node holds a reference to an rtr_socket and an aspa_array⏤an ordered dynamic array of ASPA records. Each aspa_array is comprised of a contiguous block of memory of ASPA records ordered by their customer ASN, enabling faster lookups by binary searching the array of records.

Updating an ASPA Table

The ASPA table implements aggregated updating using an array of add record and remove record operations that will be performed sequentially on the ASPA table. This drastically decreases the number of iterations necessary on the existing aspa_array to 1. This PR implements two update mechanisms:

• In-Place: The aspa_array is manipulated in-place in a single iteration, reducing new memory allocations while blocking callers wanting to verify an AS_PATH (therefore needing read access to the table).
• Swap-In: A new aspa_array is created, incorporating both existing records and simultaneously adding new records in a single iteration. While this approach enables non-blocking updates, it's got a slightly higher memory demand.

Details: aspa_private.h

Alternatives Considered

Other Data Structures

• splaytree-4
• kbtree-4
• dynarray (only sorted by cas)
• binsearch (provider arrays and cas are sorted)

This plot shows how the different data structures compare in different benchmarks against each other:

AS_PATH Verification Algorithm Implementation

We tested several implementations of the verification algorithm: netd-tud/IETF-ASPA/hackathon. The algorithm integrated into this PR is an optimized version of the draft algorithm which avoids checking any AS hop twice.

Tests & Quality

This PR has test coverage for

• ASPA PDUs,
• modifications and search on an aspa_array,
• updates to an aspa_table and rtr_sync with ASPA
• AS_PATH verification
• Interoperability tests with standard RTR-Cache Server implementations (Routinator) were successfully performed.

Additionally, we checked for memory leaks and other faulty memory access using valgrind --leak-check=full.

Stats

Based on ASRank relationships we estimate ~75K ASPA records inferred from BGP paths. As an upper limit we consider an ASPA record to take up 24 bytes of memory.

Update Mechanism Performance Measurements

We conducted performance tests on both update approaches:

• Using the In-Place approach, adding 75K ASPA records in single update function call took ~100 ms on a reasonably sized laptop.
• The Swap-In mechanism has almost no effect on the time read access is blocked due to the old array just being swapped out in exchange for the new one.

Ping: @waehlisch @mroethke @fho