FD.io VPP  v19.08.1-401-g8e4ed521a
Vector Packet Processing
acl.c File Reference
+ Include dependency graph for acl.c:

Go to the source code of this file.

Data Structures

struct  macip_match_type_t
 

Macros

#define vl_typedefs
 
#define vl_endianfun
 
#define vl_print(handle, ...)   vlib_cli_output (handle, __VA_ARGS__)
 
#define vl_printfun
 
#define vl_api_version(n, v)   static u32 api_version=(v);
 
#define REPLY_MSG_ID_BASE   am->msg_id_base
 
#define foreach_acl_plugin_api_msg
 
#define vl_msg_name_crc_list
 

Typedefs

typedef void(* acl_vector_print_func_t) (vlib_main_t *vm, u8 *out0)
 

Functions

 VLIB_PLUGIN_REGISTER ()
 
u8format_vec16 (u8 *s, va_list *va)
 
static void * acl_set_heap (acl_main_t *am)
 
void * acl_plugin_set_heap ()
 
void acl_plugin_acl_set_validate_heap (acl_main_t *am, int on)
 
void acl_plugin_acl_set_trace_heap (acl_main_t *am, int on)
 
static void vl_api_acl_plugin_get_version_t_handler (vl_api_acl_plugin_get_version_t *mp)
 
static void vl_api_acl_plugin_control_ping_t_handler (vl_api_acl_plugin_control_ping_t *mp)
 
static void print_clib_warning_and_reset (vlib_main_t *vm, u8 *out0)
 
static void print_cli_and_reset (vlib_main_t *vm, u8 *out0)
 
static void acl_print_acl_x (acl_vector_print_func_t vpr, vlib_main_t *vm, acl_main_t *am, int acl_index)
 
static void vl_api_acl_plugin_get_conn_table_max_entries_t_handler (vl_api_acl_plugin_get_conn_table_max_entries_t *mp)
 
static void acl_print_acl (vlib_main_t *vm, acl_main_t *am, int acl_index)
 
static void warning_acl_print_acl (vlib_main_t *vm, acl_main_t *am, int acl_index)
 
static void increment_policy_epoch (acl_main_t *am, u32 sw_if_index, int is_input)
 
static void try_increment_acl_policy_epoch (acl_main_t *am, u32 acl_num, int is_input)
 
static void policy_notify_acl_change (acl_main_t *am, u32 acl_num)
 
static void validate_and_reset_acl_counters (acl_main_t *am, u32 acl_index)
 
static int acl_api_ip4_invalid_prefix (void *ip4_pref_raw, u8 ip4_prefix_len)
 
static int acl_api_ip6_invalid_prefix (void *ip6_pref_raw, u8 ip6_prefix_len)
 
static int acl_add_list (u32 count, vl_api_acl_rule_t rules[], u32 *acl_list_index, u8 *tag)
 
static int acl_is_used_by (u32 acl_index, u32 **foo_index_vec_by_acl)
 
static int acl_del_list (u32 acl_list_index)
 
static int count_skip (u8 *p, u32 size)
 
static int acl_classify_add_del_table_small (vnet_classify_main_t *cm, u8 *mask, u32 mask_len, u32 next_table_index, u32 miss_next_index, u32 *table_index, int is_add)
 
static int intf_has_etype_whitelist (acl_main_t *am, u32 sw_if_index, int is_input)
 
static void acl_clear_sessions (acl_main_t *am, u32 sw_if_index)
 
static int acl_interface_in_enable_disable (acl_main_t *am, u32 sw_if_index, int enable_disable)
 
static int acl_interface_out_enable_disable (acl_main_t *am, u32 sw_if_index, int enable_disable)
 
static int acl_stats_intf_counters_enable_disable (acl_main_t *am, int enable_disable)
 
static int acl_interface_inout_enable_disable (acl_main_t *am, u32 sw_if_index, int is_input, int enable_disable)
 
static int acl_is_not_defined (acl_main_t *am, u32 acl_list_index)
 
static int acl_interface_set_inout_acl_list (acl_main_t *am, u32 sw_if_index, u8 is_input, u32 *vec_acl_list_index, int *may_clear_sessions)
 
static void acl_interface_reset_inout_acls (u32 sw_if_index, u8 is_input, int *may_clear_sessions)
 
static int acl_interface_add_del_inout_acl (u32 sw_if_index, u8 is_add, u8 is_input, u32 acl_list_index)
 
static int acl_set_etype_whitelists (acl_main_t *am, u32 sw_if_index, u16 *vec_in, u16 *vec_out)
 
static u32 macip_find_match_type (macip_match_type_t *mv, u8 *mac_mask, u8 prefix_len, u8 is_ipv6)
 
static int match_type_metric (macip_match_type_t *m)
 
static int match_type_compare (macip_match_type_t *m1, macip_match_type_t *m2)
 
static int get_l3_src_offset (int is6)
 
static int get_l3_dst_offset (int is6)
 
static int macip_permit_also_egress (u8 is_permit)
 
static int macip_create_classify_tables (acl_main_t *am, u32 macip_acl_index)
 
static void macip_destroy_classify_tables (acl_main_t *am, u32 macip_acl_index)
 
static int macip_maybe_apply_unapply_classifier_tables (acl_main_t *am, u32 acl_index, int is_apply)
 
static int macip_acl_add_list (u32 count, vl_api_macip_acl_rule_t rules[], u32 *acl_list_index, u8 *tag)
 
static int macip_acl_interface_del_acl (acl_main_t *am, u32 sw_if_index)
 
static int macip_acl_interface_add_acl (acl_main_t *am, u32 sw_if_index, u32 macip_acl_index)
 
static int macip_acl_del_list (u32 acl_list_index)
 
static int macip_acl_interface_add_del_acl (u32 sw_if_index, u8 is_add, u32 acl_list_index)
 
static int verify_message_len (void *mp, u32 expected_len, char *where)
 
static void vl_api_acl_add_replace_t_handler (vl_api_acl_add_replace_t *mp)
 
static void vl_api_acl_del_t_handler (vl_api_acl_del_t *mp)
 
static void vl_api_acl_stats_intf_counters_enable_t_handler (vl_api_acl_stats_intf_counters_enable_t *mp)
 
static void vl_api_acl_interface_add_del_t_handler (vl_api_acl_interface_add_del_t *mp)
 
static void vl_api_acl_interface_set_acl_list_t_handler (vl_api_acl_interface_set_acl_list_t *mp)
 
static void copy_acl_rule_to_api_rule (vl_api_acl_rule_t *api_rule, acl_rule_t *r)
 
static void send_acl_details (acl_main_t *am, vl_api_registration_t *reg, acl_list_t *acl, u32 context)
 
static void vl_api_acl_dump_t_handler (vl_api_acl_dump_t *mp)
 
static void send_acl_interface_list_details (acl_main_t *am, vl_api_registration_t *reg, u32 sw_if_index, u32 context)
 
static void vl_api_acl_interface_list_dump_t_handler (vl_api_acl_interface_list_dump_t *mp)
 
static void vl_api_macip_acl_add_t_handler (vl_api_macip_acl_add_t *mp)
 
static void vl_api_macip_acl_add_replace_t_handler (vl_api_macip_acl_add_replace_t *mp)
 
static void vl_api_macip_acl_del_t_handler (vl_api_macip_acl_del_t *mp)
 
static void vl_api_macip_acl_interface_add_del_t_handler (vl_api_macip_acl_interface_add_del_t *mp)
 
static void send_macip_acl_details (acl_main_t *am, vl_api_registration_t *reg, macip_acl_list_t *acl, u32 context)
 
static void vl_api_macip_acl_dump_t_handler (vl_api_macip_acl_dump_t *mp)
 
static void vl_api_macip_acl_interface_get_t_handler (vl_api_macip_acl_interface_get_t *mp)
 
static void send_macip_acl_interface_list_details (acl_main_t *am, vl_api_registration_t *reg, u32 sw_if_index, u32 acl_index, u32 context)
 
static void vl_api_macip_acl_interface_list_dump_t_handler (vl_api_macip_acl_interface_list_dump_t *mp)
 
static void vl_api_acl_interface_set_etype_whitelist_t_handler (vl_api_acl_interface_set_etype_whitelist_t *mp)
 
static void send_acl_interface_etype_whitelist_details (acl_main_t *am, vl_api_registration_t *reg, u32 sw_if_index, u32 context)
 
static void vl_api_acl_interface_etype_whitelist_dump_t_handler (vl_api_acl_interface_list_dump_t *mp)
 
static clib_error_tacl_plugin_api_hookup (vlib_main_t *vm)
 
static void setup_message_id_table (acl_main_t *am, api_main_t *apim)
 
static void acl_set_timeout_sec (int timeout_type, u32 value)
 
static void acl_set_session_max_entries (u32 value)
 
static int acl_set_skip_ipv6_eh (u32 eh, u32 value)
 
static clib_error_tacl_sw_interface_add_del (vnet_main_t *vnm, u32 sw_if_index, u32 is_add)
 
 VNET_SW_INTERFACE_ADD_DEL_FUNCTION (acl_sw_interface_add_del)
 
static clib_error_tacl_set_aclplugin_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static u8my_format_mac_address (u8 *s, va_list *args)
 
static u8my_macip_acl_rule_t_pretty_format (u8 *out, va_list *args)
 
static void macip_acl_print (acl_main_t *am, u32 macip_acl_index)
 
static clib_error_tacl_show_aclplugin_macip_acl_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tacl_show_aclplugin_macip_interface_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static void acl_plugin_show_acl (acl_main_t *am, u32 acl_index)
 
static clib_error_tacl_show_aclplugin_acl_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tacl_show_aclplugin_lookup_context_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tacl_show_aclplugin_lookup_user_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static void acl_plugin_show_interface (acl_main_t *am, u32 sw_if_index, int show_acl, int detail)
 
static clib_error_tacl_show_aclplugin_decode_5tuple_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tacl_show_aclplugin_interface_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tacl_show_aclplugin_memory_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static void acl_plugin_show_sessions (acl_main_t *am, u32 show_session_thread_id, u32 show_session_session_index)
 
static clib_error_tacl_show_aclplugin_sessions_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tacl_show_aclplugin_tables_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tacl_clear_aclplugin_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tacl_plugin_config (vlib_main_t *vm, unformat_input_t *input)
 
static clib_error_tacl_init (vlib_main_t *vm)
 

Variables

acl_main_t acl_main
 
static acl_plugin_methods_t acl_plugin
 
static vlib_cli_command_t aclplugin_set_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_set_command) More...
 
static vlib_cli_command_t aclplugin_show_acl_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_acl_command) More...
 
static vlib_cli_command_t aclplugin_show_lookup_context_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_lookup_context_command) More...
 
static vlib_cli_command_t aclplugin_show_lookup_user_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_lookup_user_command) More...
 
static vlib_cli_command_t aclplugin_show_decode_5tuple_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_decode_5tuple_command) More...
 
static vlib_cli_command_t aclplugin_show_interface_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_interface_command) More...
 
static vlib_cli_command_t aclplugin_show_memory_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_memory_command) More...
 
static vlib_cli_command_t aclplugin_show_sessions_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_sessions_command) More...
 
static vlib_cli_command_t aclplugin_show_tables_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_tables_command) More...
 
static vlib_cli_command_t aclplugin_show_macip_acl_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_macip_acl_command) More...
 
static vlib_cli_command_t aclplugin_show_macip_interface_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_show_macip_interface_command) More...
 
static vlib_cli_command_t aclplugin_clear_command
 (constructor) VLIB_CLI_COMMAND (aclplugin_clear_command) More...
 

Macro Definition Documentation

◆ foreach_acl_plugin_api_msg

#define foreach_acl_plugin_api_msg
Value:
_(ACL_PLUGIN_GET_VERSION, acl_plugin_get_version) \
_(ACL_PLUGIN_CONTROL_PING, acl_plugin_control_ping) \
_(ACL_ADD_REPLACE, acl_add_replace) \
_(ACL_DEL, acl_del) \
_(ACL_INTERFACE_ADD_DEL, acl_interface_add_del) \
_(ACL_INTERFACE_SET_ACL_LIST, acl_interface_set_acl_list) \
_(ACL_DUMP, acl_dump) \
_(ACL_INTERFACE_LIST_DUMP, acl_interface_list_dump) \
_(MACIP_ACL_ADD, macip_acl_add) \
_(MACIP_ACL_ADD_REPLACE, macip_acl_add_replace) \
_(MACIP_ACL_DEL, macip_acl_del) \
_(MACIP_ACL_INTERFACE_ADD_DEL, macip_acl_interface_add_del) \
_(MACIP_ACL_DUMP, macip_acl_dump) \
_(MACIP_ACL_INTERFACE_GET, macip_acl_interface_get) \
_(MACIP_ACL_INTERFACE_LIST_DUMP, macip_acl_interface_list_dump) \
_(ACL_INTERFACE_SET_ETYPE_WHITELIST, acl_interface_set_etype_whitelist) \
_(ACL_INTERFACE_ETYPE_WHITELIST_DUMP, acl_interface_etype_whitelist_dump) \
_(ACL_PLUGIN_GET_CONN_TABLE_MAX_ENTRIES,acl_plugin_get_conn_table_max_entries) \
_(ACL_STATS_INTF_COUNTERS_ENABLE, acl_stats_intf_counters_enable)

Definition at line 71 of file acl.c.

◆ REPLY_MSG_ID_BASE

#define REPLY_MSG_ID_BASE   am->msg_id_base

Definition at line 59 of file acl.c.

◆ vl_api_version

#define vl_api_version (   n,
 
)    static u32 api_version=(v);

Definition at line 50 of file acl.c.

◆ vl_endianfun

#define vl_endianfun

Definition at line 39 of file acl.c.

◆ vl_msg_name_crc_list

#define vl_msg_name_crc_list

Definition at line 2677 of file acl.c.

◆ vl_print

#define vl_print (   handle,
  ... 
)    vlib_cli_output (handle, __VA_ARGS__)

Definition at line 44 of file acl.c.

◆ vl_printfun

#define vl_printfun

Definition at line 45 of file acl.c.

◆ vl_typedefs

#define vl_typedefs

Definition at line 34 of file acl.c.

Typedef Documentation

◆ acl_vector_print_func_t

typedef void(* acl_vector_print_func_t) (vlib_main_t *vm, u8 *out0)

Definition at line 257 of file acl.c.

Function Documentation

◆ acl_add_list()

static int acl_add_list ( u32  count,
vl_api_acl_rule_t  rules[],
u32 acl_list_index,
u8 tag 
)
static

Definition at line 439 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_api_ip4_invalid_prefix()

static int acl_api_ip4_invalid_prefix ( void *  ip4_pref_raw,
u8  ip4_prefix_len 
)
static

Definition at line 411 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_api_ip6_invalid_prefix()

static int acl_api_ip6_invalid_prefix ( void *  ip6_pref_raw,
u8  ip6_prefix_len 
)
static

Definition at line 424 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_classify_add_del_table_small()

static int acl_classify_add_del_table_small ( vnet_classify_main_t cm,
u8 mask,
u32  mask_len,
u32  next_table_index,
u32  miss_next_index,
u32 table_index,
int  is_add 
)
static

Definition at line 637 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_clear_aclplugin_fn()

static clib_error_t* acl_clear_aclplugin_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3536 of file acl.c.

+ Here is the call graph for this function:

◆ acl_clear_sessions()

static void acl_clear_sessions ( acl_main_t am,
u32  sw_if_index 
)
static

Definition at line 675 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_del_list()

static int acl_del_list ( u32  acl_list_index)
static

Definition at line 592 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_init()

static clib_error_t* acl_init ( vlib_main_t vm)
static

Definition at line 3688 of file acl.c.

+ Here is the call graph for this function:

◆ acl_interface_add_del_inout_acl()

static int acl_interface_add_del_inout_acl ( u32  sw_if_index,
u8  is_add,
u8  is_input,
u32  acl_list_index 
)
static

Definition at line 944 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_interface_in_enable_disable()

static int acl_interface_in_enable_disable ( acl_main_t am,
u32  sw_if_index,
int  enable_disable 
)
static

Definition at line 686 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_interface_inout_enable_disable()

static int acl_interface_inout_enable_disable ( acl_main_t am,
u32  sw_if_index,
int  is_input,
int  enable_disable 
)
static

Definition at line 778 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_interface_out_enable_disable()

static int acl_interface_out_enable_disable ( acl_main_t am,
u32  sw_if_index,
int  enable_disable 
)
static

Definition at line 726 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_interface_reset_inout_acls()

static void acl_interface_reset_inout_acls ( u32  sw_if_index,
u8  is_input,
int *  may_clear_sessions 
)
static

Definition at line 933 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_interface_set_inout_acl_list()

static int acl_interface_set_inout_acl_list ( acl_main_t am,
u32  sw_if_index,
u8  is_input,
u32 vec_acl_list_index,
int *  may_clear_sessions 
)
static

Definition at line 794 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_is_not_defined()

static int acl_is_not_defined ( acl_main_t am,
u32  acl_list_index 
)
static

Definition at line 788 of file acl.c.

+ Here is the caller graph for this function:

◆ acl_is_used_by()

static int acl_is_used_by ( u32  acl_index,
u32 **  foo_index_vec_by_acl 
)
static

Definition at line 578 of file acl.c.

+ Here is the caller graph for this function:

◆ acl_plugin_acl_set_trace_heap()

void acl_plugin_acl_set_trace_heap ( acl_main_t am,
int  on 
)

Definition at line 188 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_plugin_acl_set_validate_heap()

void acl_plugin_acl_set_validate_heap ( acl_main_t am,
int  on 
)

Definition at line 168 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_plugin_api_hookup()

static clib_error_t* acl_plugin_api_hookup ( vlib_main_t vm)
static

Definition at line 2660 of file acl.c.

+ Here is the caller graph for this function:

◆ acl_plugin_config()

static clib_error_t* acl_plugin_config ( vlib_main_t vm,
unformat_input_t input 
)
static

Definition at line 3621 of file acl.c.

+ Here is the call graph for this function:

◆ acl_plugin_set_heap()

void* acl_plugin_set_heap ( )

Definition at line 161 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_plugin_show_acl()

static void acl_plugin_show_acl ( acl_main_t am,
u32  acl_index 
)
static

Definition at line 3066 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_plugin_show_interface()

static void acl_plugin_show_interface ( acl_main_t am,
u32  sw_if_index,
int  show_acl,
int  detail 
)
static

Definition at line 3148 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_plugin_show_sessions()

static void acl_plugin_show_sessions ( acl_main_t am,
u32  show_session_thread_id,
u32  show_session_session_index 
)
static

Definition at line 3297 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_print_acl()

static void acl_print_acl ( vlib_main_t vm,
acl_main_t am,
int  acl_index 
)
static

Definition at line 327 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_print_acl_x()

static void acl_print_acl_x ( acl_vector_print_func_t  vpr,
vlib_main_t vm,
acl_main_t am,
int  acl_index 
)
static

Definition at line 260 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_set_aclplugin_fn()

static clib_error_t* acl_set_aclplugin_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 2760 of file acl.c.

+ Here is the call graph for this function:

◆ acl_set_etype_whitelists()

static int acl_set_etype_whitelists ( acl_main_t am,
u32  sw_if_index,
u16 vec_in,
u16 vec_out 
)
static

Definition at line 1006 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_set_heap()

static void* acl_set_heap ( acl_main_t am)
static

Definition at line 120 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_set_session_max_entries()

static void acl_set_session_max_entries ( u32  value)
static

Definition at line 2710 of file acl.c.

+ Here is the caller graph for this function:

◆ acl_set_skip_ipv6_eh()

static int acl_set_skip_ipv6_eh ( u32  eh,
u32  value 
)
static

Definition at line 2717 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ acl_set_timeout_sec()

static void acl_set_timeout_sec ( int  timeout_type,
u32  value 
)
static

Definition at line 2691 of file acl.c.

+ Here is the caller graph for this function:

◆ acl_show_aclplugin_acl_fn()

static clib_error_t* acl_show_aclplugin_acl_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3105 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_decode_5tuple_fn()

static clib_error_t* acl_show_aclplugin_decode_5tuple_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3232 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_interface_fn()

static clib_error_t* acl_show_aclplugin_interface_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3251 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_lookup_context_fn()

static clib_error_t* acl_show_aclplugin_lookup_context_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3119 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_lookup_user_fn()

static clib_error_t* acl_show_aclplugin_lookup_user_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3133 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_macip_acl_fn()

static clib_error_t* acl_show_aclplugin_macip_acl_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3014 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_macip_interface_fn()

static clib_error_t* acl_show_aclplugin_macip_interface_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3050 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_memory_fn()

static clib_error_t* acl_show_aclplugin_memory_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3268 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_sessions_fn()

static clib_error_t* acl_show_aclplugin_sessions_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3454 of file acl.c.

+ Here is the call graph for this function:

◆ acl_show_aclplugin_tables_fn()

static clib_error_t* acl_show_aclplugin_tables_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 3475 of file acl.c.

+ Here is the call graph for this function:

◆ acl_stats_intf_counters_enable_disable()

static int acl_stats_intf_counters_enable_disable ( acl_main_t am,
int  enable_disable 
)
static

Definition at line 768 of file acl.c.

+ Here is the caller graph for this function:

◆ acl_sw_interface_add_del()

static clib_error_t* acl_sw_interface_add_del ( vnet_main_t vnm,
u32  sw_if_index,
u32  is_add 
)
static

Definition at line 2733 of file acl.c.

+ Here is the call graph for this function:

◆ copy_acl_rule_to_api_rule()

static void copy_acl_rule_to_api_rule ( vl_api_acl_rule_t api_rule,
acl_rule_t r 
)
static

Definition at line 2096 of file acl.c.

+ Here is the caller graph for this function:

◆ count_skip()

static int count_skip ( u8 p,
u32  size 
)
static

Definition at line 622 of file acl.c.

+ Here is the caller graph for this function:

◆ format_vec16()

u8* format_vec16 ( u8 s,
va_list *  va 
)

Definition at line 105 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ get_l3_dst_offset()

static int get_l3_dst_offset ( int  is6)
static

Definition at line 1128 of file acl.c.

+ Here is the caller graph for this function:

◆ get_l3_src_offset()

static int get_l3_src_offset ( int  is6)
static

Definition at line 1117 of file acl.c.

+ Here is the caller graph for this function:

◆ increment_policy_epoch()

static void increment_policy_epoch ( acl_main_t am,
u32  sw_if_index,
int  is_input 
)
static

Definition at line 339 of file acl.c.

+ Here is the caller graph for this function:

◆ intf_has_etype_whitelist()

static int intf_has_etype_whitelist ( acl_main_t am,
u32  sw_if_index,
int  is_input 
)
static

Definition at line 665 of file acl.c.

+ Here is the caller graph for this function:

◆ macip_acl_add_list()

static int macip_acl_add_list ( u32  count,
vl_api_macip_acl_rule_t  rules[],
u32 acl_list_index,
u8 tag 
)
static

Definition at line 1726 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_acl_del_list()

static int macip_acl_del_list ( u32  acl_list_index)
static

Definition at line 1885 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_acl_interface_add_acl()

static int macip_acl_interface_add_acl ( acl_main_t am,
u32  sw_if_index,
u32  macip_acl_index 
)
static

Definition at line 1853 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_acl_interface_add_del_acl()

static int macip_acl_interface_add_del_acl ( u32  sw_if_index,
u8  is_add,
u32  acl_list_index 
)
static

Definition at line 1921 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_acl_interface_del_acl()

static int macip_acl_interface_del_acl ( acl_main_t am,
u32  sw_if_index 
)
static

Definition at line 1816 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_acl_print()

static void macip_acl_print ( acl_main_t am,
u32  macip_acl_index 
)
static

Definition at line 2983 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_create_classify_tables()

static int macip_create_classify_tables ( acl_main_t am,
u32  macip_acl_index 
)
static

Definition at line 1151 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_destroy_classify_tables()

static void macip_destroy_classify_tables ( acl_main_t am,
u32  macip_acl_index 
)
static

Definition at line 1655 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_find_match_type()

static u32 macip_find_match_type ( macip_match_type_t mv,
u8 mac_mask,
u8  prefix_len,
u8  is_ipv6 
)
static

Definition at line 1066 of file acl.c.

+ Here is the caller graph for this function:

◆ macip_maybe_apply_unapply_classifier_tables()

static int macip_maybe_apply_unapply_classifier_tables ( acl_main_t am,
u32  acl_index,
int  is_apply 
)
static

Definition at line 1699 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ macip_permit_also_egress()

static int macip_permit_also_egress ( u8  is_permit)
static

Definition at line 1145 of file acl.c.

+ Here is the caller graph for this function:

◆ match_type_compare()

static int match_type_compare ( macip_match_type_t m1,
macip_match_type_t m2 
)
static

Definition at line 1109 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ match_type_metric()

static int match_type_metric ( macip_match_type_t m)
static

Definition at line 1088 of file acl.c.

+ Here is the caller graph for this function:

◆ my_format_mac_address()

static u8* my_format_mac_address ( u8 s,
va_list *  args 
)
static

Definition at line 2960 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ my_macip_acl_rule_t_pretty_format()

static u8* my_macip_acl_rule_t_pretty_format ( u8 out,
va_list *  args 
)
inlinestatic

Definition at line 2968 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ policy_notify_acl_change()

static void policy_notify_acl_change ( acl_main_t am,
u32  acl_num 
)
static

Definition at line 370 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ print_cli_and_reset()

static void print_cli_and_reset ( vlib_main_t vm,
u8 out0 
)
static

Definition at line 251 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ print_clib_warning_and_reset()

static void print_clib_warning_and_reset ( vlib_main_t vm,
u8 out0 
)
static

Definition at line 244 of file acl.c.

+ Here is the caller graph for this function:

◆ send_acl_details()

static void send_acl_details ( acl_main_t am,
vl_api_registration_t reg,
acl_list_t acl,
u32  context 
)
static

Definition at line 2122 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ send_acl_interface_etype_whitelist_details()

static void send_acl_interface_etype_whitelist_details ( acl_main_t am,
vl_api_registration_t reg,
u32  sw_if_index,
u32  context 
)
static

Definition at line 2566 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ send_acl_interface_list_details()

static void send_acl_interface_list_details ( acl_main_t am,
vl_api_registration_t reg,
u32  sw_if_index,
u32  context 
)
static

Definition at line 2194 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ send_macip_acl_details()

static void send_macip_acl_details ( acl_main_t am,
vl_api_registration_t reg,
macip_acl_list_t acl,
u32  context 
)
static

Definition at line 2361 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ send_macip_acl_interface_list_details()

static void send_macip_acl_interface_list_details ( acl_main_t am,
vl_api_registration_t reg,
u32  sw_if_index,
u32  acl_index,
u32  context 
)
static

Definition at line 2475 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ setup_message_id_table()

static void setup_message_id_table ( acl_main_t am,
api_main_t apim 
)
static

Definition at line 2682 of file acl.c.

+ Here is the caller graph for this function:

◆ try_increment_acl_policy_epoch()

static void try_increment_acl_policy_epoch ( acl_main_t am,
u32  acl_num,
int  is_input 
)
static

Definition at line 354 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ validate_and_reset_acl_counters()

static void validate_and_reset_acl_counters ( acl_main_t am,
u32  acl_index 
)
static

Definition at line 378 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ verify_message_len()

static int verify_message_len ( void *  mp,
u32  expected_len,
char *  where 
)
static

Definition at line 1954 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ vl_api_acl_add_replace_t_handler()

static void vl_api_acl_add_replace_t_handler ( vl_api_acl_add_replace_t mp)
static

Definition at line 1971 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_acl_del_t_handler()

static void vl_api_acl_del_t_handler ( vl_api_acl_del_t mp)
static

Definition at line 1998 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_acl_dump_t_handler()

static void vl_api_acl_dump_t_handler ( vl_api_acl_dump_t mp)
static

Definition at line 2154 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_acl_interface_add_del_t_handler()

static void vl_api_acl_interface_add_del_t_handler ( vl_api_acl_interface_add_del_t mp)
static

Definition at line 2025 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_acl_interface_etype_whitelist_dump_t_handler()

static void vl_api_acl_interface_etype_whitelist_dump_t_handler ( vl_api_acl_interface_list_dump_t mp)
static

Definition at line 2625 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ vl_api_acl_interface_list_dump_t_handler()

static void vl_api_acl_interface_list_dump_t_handler ( vl_api_acl_interface_list_dump_t mp)
static

Definition at line 2241 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_acl_interface_set_acl_list_t_handler()

static void vl_api_acl_interface_set_acl_list_t_handler ( vl_api_acl_interface_set_acl_list_t mp)
static

Definition at line 2045 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ vl_api_acl_interface_set_etype_whitelist_t_handler()

static void vl_api_acl_interface_set_etype_whitelist_t_handler ( vl_api_acl_interface_set_etype_whitelist_t mp)
static

Definition at line 2536 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ vl_api_acl_plugin_control_ping_t_handler()

static void vl_api_acl_plugin_control_ping_t_handler ( vl_api_acl_plugin_control_ping_t mp)
static

Definition at line 228 of file acl.c.

◆ vl_api_acl_plugin_get_conn_table_max_entries_t_handler()

static void vl_api_acl_plugin_get_conn_table_max_entries_t_handler ( vl_api_acl_plugin_get_conn_table_max_entries_t mp)
static

Definition at line 304 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ vl_api_acl_plugin_get_version_t_handler()

static void vl_api_acl_plugin_get_version_t_handler ( vl_api_acl_plugin_get_version_t mp)
static

Definition at line 205 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_acl_stats_intf_counters_enable_t_handler()

static void vl_api_acl_stats_intf_counters_enable_t_handler ( vl_api_acl_stats_intf_counters_enable_t mp)
static

Definition at line 2012 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ vl_api_macip_acl_add_replace_t_handler()

static void vl_api_macip_acl_add_replace_t_handler ( vl_api_macip_acl_add_replace_t mp)
static

Definition at line 2302 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_macip_acl_add_t_handler()

static void vl_api_macip_acl_add_t_handler ( vl_api_macip_acl_add_t mp)
static

Definition at line 2275 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_macip_acl_del_t_handler()

static void vl_api_macip_acl_del_t_handler ( vl_api_macip_acl_del_t mp)
static

Definition at line 2329 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_macip_acl_dump_t_handler()

static void vl_api_macip_acl_dump_t_handler ( vl_api_macip_acl_dump_t mp)
static

Definition at line 2411 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_macip_acl_interface_add_del_t_handler()

static void vl_api_macip_acl_interface_add_del_t_handler ( vl_api_macip_acl_interface_add_del_t mp)
static

Definition at line 2342 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ vl_api_macip_acl_interface_get_t_handler()

static void vl_api_macip_acl_interface_get_t_handler ( vl_api_macip_acl_interface_get_t mp)
static

Definition at line 2446 of file acl.c.

+ Here is the call graph for this function:

◆ vl_api_macip_acl_interface_list_dump_t_handler()

static void vl_api_macip_acl_interface_list_dump_t_handler ( vl_api_macip_acl_interface_list_dump_t mp)
static

Definition at line 2500 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ VLIB_PLUGIN_REGISTER()

VLIB_PLUGIN_REGISTER ( )

◆ VNET_SW_INTERFACE_ADD_DEL_FUNCTION()

VNET_SW_INTERFACE_ADD_DEL_FUNCTION ( acl_sw_interface_add_del  )
+ Here is the caller graph for this function:

◆ warning_acl_print_acl()

static void warning_acl_print_acl ( vlib_main_t vm,
acl_main_t am,
int  acl_index 
)
static

Definition at line 333 of file acl.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

Variable Documentation

◆ acl_main

acl_main_t acl_main

Definition at line 57 of file acl.c.

◆ acl_plugin

acl_plugin_methods_t acl_plugin
static

Definition at line 101 of file acl.c.

◆ aclplugin_clear_command

vlib_cli_command_t aclplugin_clear_command
static
Initial value:
= {
.path = "clear acl-plugin sessions",
.short_help = "clear acl-plugin sessions",
}
static clib_error_t * acl_clear_aclplugin_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3536

(constructor) VLIB_CLI_COMMAND (aclplugin_clear_command)

Definition at line 3613 of file acl.c.

◆ aclplugin_set_command

vlib_cli_command_t aclplugin_set_command
static
Initial value:
= {
.path = "set acl-plugin",
.short_help = "set acl-plugin session timeout {{udp idle}|tcp {idle|transient}} <seconds>",
.function = acl_set_aclplugin_fn,
}
static clib_error_t * acl_set_aclplugin_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:2760

(constructor) VLIB_CLI_COMMAND (aclplugin_set_command)

Definition at line 3547 of file acl.c.

◆ aclplugin_show_acl_command

vlib_cli_command_t aclplugin_show_acl_command
static
Initial value:
= {
.path = "show acl-plugin acl",
.short_help = "show acl-plugin acl [index N]",
}
static clib_error_t * acl_show_aclplugin_acl_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3105

(constructor) VLIB_CLI_COMMAND (aclplugin_show_acl_command)

Definition at line 3553 of file acl.c.

◆ aclplugin_show_decode_5tuple_command

vlib_cli_command_t aclplugin_show_decode_5tuple_command
static
Initial value:
= {
.path = "show acl-plugin decode 5tuple",
.short_help = "show acl-plugin decode 5tuple XXXX XXXX XXXX XXXX XXXX XXXX",
}
static clib_error_t * acl_show_aclplugin_decode_5tuple_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3232

(constructor) VLIB_CLI_COMMAND (aclplugin_show_decode_5tuple_command)

Definition at line 3571 of file acl.c.

◆ aclplugin_show_interface_command

vlib_cli_command_t aclplugin_show_interface_command
static
Initial value:
= {
.path = "show acl-plugin interface",
.short_help = "show acl-plugin interface [sw_if_index N] [acl]",
}
static clib_error_t * acl_show_aclplugin_interface_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3251

(constructor) VLIB_CLI_COMMAND (aclplugin_show_interface_command)

Definition at line 3577 of file acl.c.

◆ aclplugin_show_lookup_context_command

vlib_cli_command_t aclplugin_show_lookup_context_command
static
Initial value:
= {
.path = "show acl-plugin lookup context",
.short_help = "show acl-plugin lookup context [index N]",
}
static clib_error_t * acl_show_aclplugin_lookup_context_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3119

(constructor) VLIB_CLI_COMMAND (aclplugin_show_lookup_context_command)

Definition at line 3559 of file acl.c.

◆ aclplugin_show_lookup_user_command

vlib_cli_command_t aclplugin_show_lookup_user_command
static
Initial value:
= {
.path = "show acl-plugin lookup user",
.short_help = "show acl-plugin lookup user [index N]",
}
static clib_error_t * acl_show_aclplugin_lookup_user_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3133

(constructor) VLIB_CLI_COMMAND (aclplugin_show_lookup_user_command)

Definition at line 3565 of file acl.c.

◆ aclplugin_show_macip_acl_command

vlib_cli_command_t aclplugin_show_macip_acl_command
static
Initial value:
= {
.path = "show acl-plugin macip acl",
.short_help = "show acl-plugin macip acl [index N]",
}
static clib_error_t * acl_show_aclplugin_macip_acl_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3014

(constructor) VLIB_CLI_COMMAND (aclplugin_show_macip_acl_command)

Definition at line 3601 of file acl.c.

◆ aclplugin_show_macip_interface_command

vlib_cli_command_t aclplugin_show_macip_interface_command
static
Initial value:
= {
.path = "show acl-plugin macip interface",
.short_help = "show acl-plugin macip interface",
}
static clib_error_t * acl_show_aclplugin_macip_interface_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3050

(constructor) VLIB_CLI_COMMAND (aclplugin_show_macip_interface_command)

Definition at line 3607 of file acl.c.

◆ aclplugin_show_memory_command

vlib_cli_command_t aclplugin_show_memory_command
static
Initial value:
= {
.path = "show acl-plugin memory",
.short_help = "show acl-plugin memory",
}
static clib_error_t * acl_show_aclplugin_memory_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3268

(constructor) VLIB_CLI_COMMAND (aclplugin_show_memory_command)

Definition at line 3583 of file acl.c.

◆ aclplugin_show_sessions_command

vlib_cli_command_t aclplugin_show_sessions_command
static
Initial value:
= {
.path = "show acl-plugin sessions",
.short_help = "show acl-plugin sessions",
}
static clib_error_t * acl_show_aclplugin_sessions_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3454

(constructor) VLIB_CLI_COMMAND (aclplugin_show_sessions_command)

Definition at line 3589 of file acl.c.

◆ aclplugin_show_tables_command

vlib_cli_command_t aclplugin_show_tables_command
static
Initial value:
= {
.path = "show acl-plugin tables",
.short_help = "show acl-plugin tables [ acl [index N] | applied [ lc_index N ] | mask | hash [verbose N] ]",
}
static clib_error_t * acl_show_aclplugin_tables_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: acl.c:3475

(constructor) VLIB_CLI_COMMAND (aclplugin_show_tables_command)

Definition at line 3595 of file acl.c.