Include dependency graph for ikev2.c:

Data Structures
struct	ikev2_trace_t

struct	ikev2_add_ipsec_tunnel_args_t

struct	ikev2_del_ipsec_tunnel_args_t

Macros
#define	IKEV2_LIVENESS_RETRIES 3

#define	IKEV2_LIVENESS_PERIOD_CHECK 30

#define	ikev2_set_state(sa, v)

#define	foreach_ikev2_error

Typedefs
typedef u32	ikev2_non_esp_marker

Enumerations
enum	ikev2_error_t { IKEV2_N_ERROR }

enum	ikev2_next_t { IKEV2_NEXT_IP4_LOOKUP, IKEV2_NEXT_ERROR_DROP, IKEV2_N_NEXT }

Functions
static int	ikev2_delete_tunnel_interface (vnet_main_t vnm, ikev2_sa_t sa, ikev2_child_sa_t *child)

static u8 *	format_ikev2_trace (u8 s, va_list args)

static_always_inline u16	ikev2_get_port (ikev2_sa_t *sa)

static_always_inline int	ikev2_insert_non_esp_marker (ike_header_t *ike, int len)

static ikev2_sa_transform_t *	ikev2_find_transform_data (ikev2_sa_transform_t *t)

static ikev2_sa_proposal_t *	ikev2_select_proposal (ikev2_sa_proposal_t *proposals, ikev2_protocol_id_t prot_id)

ikev2_sa_transform_t *	ikev2_sa_get_td_for_type (ikev2_sa_proposal_t *p, ikev2_transform_type_t type)

ikev2_child_sa_t *	ikev2_sa_get_child (ikev2_sa_t *sa, u32 spi, ikev2_protocol_id_t prot_id, int by_initiator)

void	ikev2_sa_free_proposal_vector (ikev2_sa_proposal_t **v)

static void	ikev2_sa_free_child_sa (ikev2_child_sa_t *c)

static void	ikev2_sa_free_all_child_sa (ikev2_child_sa_t **childs)

static void	ikev2_sa_del_child_sa (ikev2_sa_t sa, ikev2_child_sa_t child)

static void	ikev2_sa_free_all_vec (ikev2_sa_t *sa)

static void	ikev2_delete_sa (ikev2_sa_t *sa)

static void	ikev2_generate_sa_init_data (ikev2_sa_t *sa)

static void	ikev2_complete_sa_data (ikev2_sa_t sa, ikev2_sa_t sai)

static void	ikev2_calc_keys (ikev2_sa_t *sa)

static void	ikev2_calc_child_keys (ikev2_sa_t sa, ikev2_child_sa_t child)

static_always_inline u8 *	ikev2_compute_nat_sha1 (u64 ispi, u64 rspi, u32 ip, u16 port)

static void	ikev2_process_sa_init_req (vlib_main_t vm, ikev2_sa_t sa, ike_header_t ike, udp_header_t udp, u32 len)

static void	ikev2_process_sa_init_resp (vlib_main_t vm, ikev2_sa_t sa, ike_header_t ike, udp_header_t udp, u32 len)

static u8 *	ikev2_decrypt_sk_payload (ikev2_sa_t sa, ike_header_t ike, u8 *payload, u32 len)

static_always_inline int	ikev2_is_id_equal (ikev2_id_t i1, ikev2_id_t i2)

static void	ikev2_initial_contact_cleanup (ikev2_sa_t *sa)

static void	ikev2_process_auth_req (vlib_main_t vm, ikev2_sa_t sa, ike_header_t *ike, u32 len)

static void	ikev2_process_informational_req (vlib_main_t vm, ikev2_sa_t sa, ike_header_t *ike, u32 len)

static void	ikev2_process_create_child_sa_req (vlib_main_t vm, ikev2_sa_t sa, ike_header_t *ike, u32 len)

static u8 *	ikev2_sa_generate_authmsg (ikev2_sa_t *sa, int is_responder)

static int	ikev2_ts_cmp (ikev2_ts_t ts1, ikev2_ts_t ts2)

static void	ikev2_sa_match_ts (ikev2_sa_t *sa)

static void	ikev2_sa_auth (ikev2_sa_t *sa)

static void	ikev2_sa_auth_init (ikev2_sa_t *sa)

static u32	ikev2_mk_local_sa_id (u32 sai, u32 ci, u32 ti)

static u32	ikev2_mk_remote_sa_id (u32 sai, u32 ci, u32 ti)

static void	ikev2_add_tunnel_from_main (ikev2_add_ipsec_tunnel_args_t *a)

static int	ikev2_create_tunnel_interface (vlib_main_t vm, u32 thread_index, ikev2_sa_t sa, ikev2_child_sa_t *child, u32 sa_index, u32 child_index, u8 is_rekey)

static_always_inline u32	ikev2_flip_alternate_sa_bit (u32 id)

static void	ikev2_del_tunnel_from_main (ikev2_del_ipsec_tunnel_args_t *a)

static u32	ikev2_generate_message (ikev2_sa_t sa, ike_header_t ike, void user, udp_header_t udp)

static u32	ikev2_retransmit_sa_init (ike_header_t *ike, ip4_address_t iaddr, ip4_address_t raddr, u32 rlen)

static u32	ikev2_retransmit_resp (ikev2_sa_t sa, ike_header_t ike, u32 rlen)

static void	ikev2_init_sa (vlib_main_t vm, ikev2_sa_t sa)

static void	ikev2_del_sa_init_from_main (u64 *ispi)

static void	ikev2_del_sa_init (u64 ispi)

static uword	ikev2_node_fn (vlib_main_t vm, vlib_node_runtime_t node, vlib_frame_t *frame)

static clib_error_t *	ikev2_set_initiator_proposals (vlib_main_t vm, ikev2_sa_t sa, ikev2_transforms_set ts, ikev2_sa_proposal_t *proposals, int is_ike)

static ikev2_profile_t *	ikev2_profile_index_by_name (u8 *name)

static void	ikev2_send_ike (vlib_main_t vm, ip4_address_t src, ip4_address_t *dst, u32 bi0, u32 len, u16 src_port, u16 dst_port, u32 sw_if_index)

static u32	ikev2_get_new_ike_header_buff (vlib_main_t vm, ike_header_t *ike)

clib_error_t *	ikev2_set_local_key (vlib_main_t vm, u8 file)

static_always_inline vnet_api_error_t	ikev2_register_udp_port (ikev2_profile_t *p, u16 port)

static_always_inline void	ikev2_unregister_udp_port (ikev2_profile_t *p)

static void	ikev2_initiate_delete_ike_sa_internal (vlib_main_t vm, ikev2_main_per_thread_data_t tkm, ikev2_sa_t *sa)

static void	ikev2_cleanup_profile_sessions (ikev2_main_t km, ikev2_profile_t p)

static void	ikev2_profile_free (ikev2_profile_t *p)

clib_error_t *	ikev2_add_del_profile (vlib_main_t vm, u8 name, int is_add)

clib_error_t *	ikev2_set_profile_auth (vlib_main_t vm, u8 name, u8 auth_method, u8 *auth_data, u8 data_hex_format)

clib_error_t *	ikev2_set_profile_id (vlib_main_t vm, u8 name, u8 id_type, u8 *data, int is_local)

clib_error_t *	ikev2_set_profile_ts (vlib_main_t vm, u8 name, u8 protocol_id, u16 start_port, u16 end_port, ip4_address_t start_addr, ip4_address_t end_addr, int is_local)

clib_error_t *	ikev2_set_profile_responder (vlib_main_t vm, u8 name, u32 sw_if_index, ip4_address_t ip4)

clib_error_t *	ikev2_set_profile_ike_transforms (vlib_main_t vm, u8 name, ikev2_transform_encr_type_t crypto_alg, ikev2_transform_integ_type_t integ_alg, ikev2_transform_dh_type_t dh_type, u32 crypto_key_size)

clib_error_t *	ikev2_set_profile_esp_transforms (vlib_main_t vm, u8 name, ikev2_transform_encr_type_t crypto_alg, ikev2_transform_integ_type_t integ_alg, u32 crypto_key_size)

clib_error_t *	ikev2_set_profile_tunnel_interface (vlib_main_t vm, u8 name, u32 sw_if_index)

vnet_api_error_t	ikev2_set_profile_ipsec_udp_port (vlib_main_t vm, u8 name, u16 port, u8 is_set)

clib_error_t *	ikev2_set_profile_udp_encap (vlib_main_t vm, u8 name)

clib_error_t *	ikev2_set_profile_sa_lifetime (vlib_main_t vm, u8 name, u64 lifetime, u32 jitter, u32 handover, u64 maxdata)

clib_error_t *	ikev2_initiate_sa_init (vlib_main_t vm, u8 name)

static void	ikev2_delete_child_sa_internal (vlib_main_t vm, ikev2_sa_t sa, ikev2_child_sa_t *csa)

clib_error_t *	ikev2_initiate_delete_child_sa (vlib_main_t *vm, u32 ispi)

clib_error_t *	ikev2_initiate_delete_ike_sa (vlib_main_t *vm, u64 ispi)

static void	ikev2_rekey_child_sa_internal (vlib_main_t vm, ikev2_sa_t sa, ikev2_child_sa_t *csa)

clib_error_t *	ikev2_initiate_rekey_child_sa (vlib_main_t *vm, u32 ispi)

clib_error_t *	ikev2_init (vlib_main_t *vm)

static u8	ikev2_mngr_process_child_sa (ikev2_sa_t sa, ikev2_child_sa_t csa, u8 del_old_ids)

int	ikev2_set_log_level (ikev2_log_level_t log_level)

clib_error_t *	ikev2_set_liveness_params (u32 period, u32 max_retries)

static void	ikev2_mngr_process_ipsec_sa (ipsec_sa_t *ipsec_sa)

static void	ikev2_process_pending_sa_init (ikev2_main_t *km)

static void	ikev2_send_informational_request (ikev2_sa_t *sa)

static_always_inline int	ikev2_mngr_process_responder_sas (ikev2_sa_t *sa)

static uword	ikev2_mngr_process_fn (vlib_main_t vm, vlib_node_runtime_t rt, vlib_frame_t *f)

	VLIB_PLUGIN_REGISTER ()

Variables
ikev2_main_t	ikev2_main

static vlib_node_registration_t	ikev2_node
	(constructor) VLIB_REGISTER_NODE (ikev2_node) More...

static char *	ikev2_error_strings []

static vlib_node_registration_t	ikev2_mngr_process_node
	(constructor) VLIB_REGISTER_NODE (ikev2_mngr_process_node) More...

Macro Definition Documentation

◆ foreach_ikev2_error

#define foreach_ikev2_error

Value:

_(PROCESSED, "IKEv2 packets processed") \
_(IKE_SA_INIT_RETRANSMIT, "IKE_SA_INIT retransmit ") \
_(IKE_SA_INIT_IGNORE, "IKE_SA_INIT ignore (IKE SA already auth)") \
_(IKE_REQ_RETRANSMIT, "IKE request retransmit") \
_(IKE_REQ_IGNORE, "IKE request ignore (old msgid)") \
_(NOT_IKEV2, "Non IKEv2 packets received") \
_(BAD_LENGTH, "Bad packet length")

Definition at line 67 of file ikev2.c.

◆ IKEV2_LIVENESS_PERIOD_CHECK

#define IKEV2_LIVENESS_PERIOD_CHECK 30

Definition at line 34 of file ikev2.c.

◆ IKEV2_LIVENESS_RETRIES

#define IKEV2_LIVENESS_RETRIES 3

Definition at line 33 of file ikev2.c.

◆ ikev2_set_state

#define ikev2_set_state	(	sa,
		v
	)

Value:

do { \
    (sa)->state = v; \
    ikev2_elog_sa_state("ispi %lx SA state changed to " #v, sa->ispi); \
  } while(0);

Definition at line 42 of file ikev2.c.

Typedef Documentation

◆ ikev2_non_esp_marker

typedef u32 ikev2_non_esp_marker

Definition at line 97 of file ikev2.c.

Enumeration Type Documentation

◆ ikev2_error_t

enum ikev2_error_t

Enumerator
IKEV2_N_ERROR

Definition at line 76 of file ikev2.c.

◆ ikev2_next_t

enum ikev2_next_t

Enumerator
IKEV2_NEXT_IP4_LOOKUP
IKEV2_NEXT_ERROR_DROP
IKEV2_N_NEXT

Definition at line 90 of file ikev2.c.

Function Documentation

◆ format_ikev2_trace()

static u8* format_ikev2_trace	(	u8 *	s,
		va_list *	args
	)

static

Definition at line 54 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_add_del_profile()

clib_error_t* ikev2_add_del_profile	(	vlib_main_t *	vm,
		u8 *	name,
		int	is_add
	)

Definition at line 3372 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_add_tunnel_from_main()

static void ikev2_add_tunnel_from_main ( ikev2_add_ipsec_tunnel_args_t * a )

static

Definition at line 1672 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_calc_child_keys()

static void ikev2_calc_child_keys	(	ikev2_sa_t *	sa,
		ikev2_child_sa_t *	child
	)

static

Definition at line 557 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_calc_keys()

static void ikev2_calc_keys ( ikev2_sa_t * sa )

static

Definition at line 469 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_cleanup_profile_sessions()

static void ikev2_cleanup_profile_sessions	(	ikev2_main_t *	km,
		ikev2_profile_t *	p
	)

static

Definition at line 3329 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_complete_sa_data()

static void ikev2_complete_sa_data	(	ikev2_sa_t *	sa,
		ikev2_sa_t *	sai
	)

static

Definition at line 408 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_compute_nat_sha1()

static_always_inline u8* ikev2_compute_nat_sha1	(	u64	ispi,
		u64	rspi,
		u32	ip,
		u16	port
	)

Definition at line 628 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_create_tunnel_interface()

static int ikev2_create_tunnel_interface	(	vlib_main_t *	vm,
		u32	thread_index,
		ikev2_sa_t *	sa,
		ikev2_child_sa_t *	child,
		u32	sa_index,
		u32	child_index,
		u8	is_rekey
	)

static

Definition at line 1739 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_decrypt_sk_payload()

static u8* ikev2_decrypt_sk_payload	(	ikev2_sa_t *	sa,
		ike_header_t *	ike,
		u8 *	payload,
		u32	len
	)

static

Definition at line 844 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_del_sa_init()

static void ikev2_del_sa_init ( u64 ispi )

static

Definition at line 2525 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_del_sa_init_from_main()

static void ikev2_del_sa_init_from_main ( u64 * ispi )

static

Definition at line 2511 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_del_tunnel_from_main()

static void ikev2_del_tunnel_from_main ( ikev2_del_ipsec_tunnel_args_t * a )

static

Definition at line 1999 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_delete_child_sa_internal()

static void ikev2_delete_child_sa_internal	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa,
		ikev2_child_sa_t *	csa
	)

static

Definition at line 3845 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_delete_sa()

static void ikev2_delete_sa ( ikev2_sa_t * sa )

static

Definition at line 340 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_delete_tunnel_interface()

static int ikev2_delete_tunnel_interface	(	vnet_main_t *	vnm,
		ikev2_sa_t *	sa,
		ikev2_child_sa_t *	child
	)

static

Definition at line 2044 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_find_transform_data()

static ikev2_sa_transform_t* ikev2_find_transform_data ( ikev2_sa_transform_t * t )

static

Definition at line 114 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_flip_alternate_sa_bit()

static_always_inline u32 ikev2_flip_alternate_sa_bit ( u32 id )

Definition at line 1990 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_generate_message()

static u32 ikev2_generate_message	(	ikev2_sa_t *	sa,
		ike_header_t *	ike,
		void *	user,
		udp_header_t *	udp
	)

static

Definition at line 2072 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_generate_sa_init_data()

static void ikev2_generate_sa_init_data ( ikev2_sa_t * sa )

static

Definition at line 357 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_get_new_ike_header_buff()

static u32 ikev2_get_new_ike_header_buff	(	vlib_main_t *	vm,
		ike_header_t **	ike
	)

static

Definition at line 3190 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_get_port()

static_always_inline u16 ikev2_get_port ( ikev2_sa_t * sa )

Definition at line 100 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_init()

clib_error_t* ikev2_init ( vlib_main_t * vm )

Definition at line 4038 of file ikev2.c.

Here is the call graph for this function:

◆ ikev2_init_sa()

static void ikev2_init_sa	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa
	)

static

Definition at line 2503 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_initial_contact_cleanup()

static void ikev2_initial_contact_cleanup ( ikev2_sa_t * sa )

static

Definition at line 955 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_initiate_delete_child_sa()

clib_error_t* ikev2_initiate_delete_child_sa	(	vlib_main_t *	vm,
		u32	ispi
	)

Definition at line 3881 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_initiate_delete_ike_sa()

clib_error_t* ikev2_initiate_delete_ike_sa	(	vlib_main_t *	vm,
		u64	ispi
	)

Definition at line 3921 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_initiate_delete_ike_sa_internal()

static void ikev2_initiate_delete_ike_sa_internal	(	vlib_main_t *	vm,
		ikev2_main_per_thread_data_t *	tkm,
		ikev2_sa_t *	sa
	)

static

Definition at line 3270 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_initiate_rekey_child_sa()

clib_error_t* ikev2_initiate_rekey_child_sa	(	vlib_main_t *	vm,
		u32	ispi
	)

Definition at line 3998 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_initiate_sa_init()

clib_error_t* ikev2_initiate_sa_init	(	vlib_main_t *	vm,
		u8 *	name
	)

Definition at line 3681 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_insert_non_esp_marker()

static_always_inline int ikev2_insert_non_esp_marker	(	ike_header_t *	ike,
		int	len
	)

Definition at line 106 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_is_id_equal()

static_always_inline int ikev2_is_id_equal	(	ikev2_id_t *	i1,
		ikev2_id_t *	i2
	)

Definition at line 940 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_mk_local_sa_id()

static u32 ikev2_mk_local_sa_id	(	u32	sai,
		u32	ci,
		u32	ti
	)

static

Definition at line 1638 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_mk_remote_sa_id()

static u32 ikev2_mk_remote_sa_id	(	u32	sai,
		u32	ci,
		u32	ti
	)

static

Definition at line 1644 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_mngr_process_child_sa()

static u8 ikev2_mngr_process_child_sa	(	ikev2_sa_t *	sa,
		ikev2_child_sa_t *	csa,
		u8	del_old_ids
	)

static

Definition at line 4099 of file ikev2.c.

Here is the call graph for this function:

◆ ikev2_mngr_process_fn()

static uword ikev2_mngr_process_fn	(	vlib_main_t *	vm,
		vlib_node_runtime_t *	rt,
		vlib_frame_t *	f
	)

static

Definition at line 4360 of file ikev2.c.

Here is the call graph for this function:

◆ ikev2_mngr_process_ipsec_sa()

static void ikev2_mngr_process_ipsec_sa ( ipsec_sa_t * ipsec_sa )

static

Definition at line 4220 of file ikev2.c.

Here is the call graph for this function:

◆ ikev2_mngr_process_responder_sas()

static_always_inline int ikev2_mngr_process_responder_sas ( ikev2_sa_t * sa )

Definition at line 4337 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_node_fn()

static uword ikev2_node_fn	(	vlib_main_t *	vm,
		vlib_node_runtime_t *	node,
		vlib_frame_t *	frame
	)

static

Definition at line 2532 of file ikev2.c.

Here is the call graph for this function:

◆ ikev2_process_auth_req()

static void ikev2_process_auth_req	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa,
		ike_header_t *	ike,
		u32	len
	)

static

Definition at line 993 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_process_create_child_sa_req()

static void ikev2_process_create_child_sa_req	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa,
		ike_header_t *	ike,
		u32	len
	)

static

Definition at line 1197 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_process_informational_req()

static void ikev2_process_informational_req	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa,
		ike_header_t *	ike,
		u32	len
	)

static

Definition at line 1133 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_process_pending_sa_init()

static void ikev2_process_pending_sa_init ( ikev2_main_t * km )

static

Definition at line 4264 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_process_sa_init_req()

static void ikev2_process_sa_init_req	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa,
		ike_header_t *	ike,
		udp_header_t *	udp,
		u32	len
	)

static

Definition at line 643 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_process_sa_init_resp()

static void ikev2_process_sa_init_resp	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa,
		ike_header_t *	ike,
		udp_header_t *	udp,
		u32	len
	)

static

Definition at line 741 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_profile_free()

static void ikev2_profile_free ( ikev2_profile_t * p )

static

Definition at line 3359 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_profile_index_by_name()

static ikev2_profile_t* ikev2_profile_index_by_name ( u8 * name )

static

Definition at line 3131 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_register_udp_port()

static_always_inline vnet_api_error_t ikev2_register_udp_port	(	ikev2_profile_t *	p,
		u16	port
	)

Definition at line 3218 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_rekey_child_sa_internal()

static void ikev2_rekey_child_sa_internal	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa,
		ikev2_child_sa_t *	csa
	)

static

Definition at line 3958 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_retransmit_resp()

static u32 ikev2_retransmit_resp	(	ikev2_sa_t *	sa,
		ike_header_t *	ike,
		u32	rlen
	)

static

Definition at line 2466 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_retransmit_sa_init()

static u32 ikev2_retransmit_sa_init	(	ike_header_t *	ike,
		ip4_address_t	iaddr,
		ip4_address_t	raddr,
		u32	rlen
	)

static

Definition at line 2394 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_auth()

static void ikev2_sa_auth ( ikev2_sa_t * sa )

static

Definition at line 1457 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_auth_init()

static void ikev2_sa_auth_init ( ikev2_sa_t * sa )

static

Definition at line 1597 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_del_child_sa()

static void ikev2_sa_del_child_sa	(	ikev2_sa_t *	sa,
		ikev2_child_sa_t *	child
	)

static

Definition at line 289 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_free_all_child_sa()

static void ikev2_sa_free_all_child_sa ( ikev2_child_sa_t ** childs )

static

Definition at line 280 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_free_all_vec()

static void ikev2_sa_free_all_vec ( ikev2_sa_t * sa )

static

Definition at line 296 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_free_child_sa()

static void ikev2_sa_free_child_sa ( ikev2_child_sa_t * c )

static

Definition at line 267 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_free_proposal_vector()

void ikev2_sa_free_proposal_vector ( ikev2_sa_proposal_t ** v )

Definition at line 247 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_sa_generate_authmsg()

static u8* ikev2_sa_generate_authmsg	(	ikev2_sa_t *	sa,
		int	is_responder
	)

static

Definition at line 1332 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_get_child()

ikev2_child_sa_t* ikev2_sa_get_child	(	ikev2_sa_t *	sa,
		u32	spi,
		ikev2_protocol_id_t	prot_id,
		int	by_initiator
	)

Definition at line 231 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_sa_get_td_for_type()

ikev2_sa_transform_t* ikev2_sa_get_td_for_type	(	ikev2_sa_proposal_t *	p,
		ikev2_transform_type_t	type
	)

Definition at line 214 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_sa_match_ts()

static void ikev2_sa_match_ts ( ikev2_sa_t * sa )

static

Definition at line 1387 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_select_proposal()

static ikev2_sa_proposal_t* ikev2_select_proposal	(	ikev2_sa_proposal_t *	proposals,
		ikev2_protocol_id_t	prot_id
	)

static

Definition at line 142 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_send_ike()

static void ikev2_send_ike	(	vlib_main_t *	vm,
		ip4_address_t *	src,
		ip4_address_t *	dst,
		u32	bi0,
		u32	len,
		u16	src_port,
		u16	dst_port,
		u32	sw_if_index
	)

static

Definition at line 3145 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_send_informational_request()

static void ikev2_send_informational_request ( ikev2_sa_t * sa )

static

Definition at line 4295 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_initiator_proposals()

static clib_error_t* ikev2_set_initiator_proposals	(	vlib_main_t *	vm,
		ikev2_sa_t *	sa,
		ikev2_transforms_set *	ts,
		ikev2_sa_proposal_t **	proposals,
		int	is_ike
	)

static

Definition at line 3004 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_set_liveness_params()

clib_error_t* ikev2_set_liveness_params	(	u32	period,
		u32	max_retries
	)

Definition at line 4207 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_set_local_key()

clib_error_t* ikev2_set_local_key	(	vlib_main_t *	vm,
		u8 *	file
	)

Definition at line 3204 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_log_level()

int ikev2_set_log_level ( ikev2_log_level_t log_level )

Definition at line 4192 of file ikev2.c.

Here is the caller graph for this function:

◆ ikev2_set_profile_auth()

clib_error_t* ikev2_set_profile_auth	(	vlib_main_t *	vm,
		u8 *	name,
		u8	auth_method,
		u8 *	auth_data,
		u8	data_hex_format
	)

Definition at line 3408 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_esp_transforms()

clib_error_t* ikev2_set_profile_esp_transforms	(	vlib_main_t *	vm,
		u8 *	name,
		ikev2_transform_encr_type_t	crypto_alg,
		ikev2_transform_integ_type_t	integ_alg,
		u32	crypto_key_size
	)

Definition at line 3566 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_id()

clib_error_t* ikev2_set_profile_id	(	vlib_main_t *	vm,
		u8 *	name,
		u8	id_type,
		u8 *	data,
		int	is_local
	)

Definition at line 3442 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_ike_transforms()

clib_error_t* ikev2_set_profile_ike_transforms	(	vlib_main_t *	vm,
		u8 *	name,
		ikev2_transform_encr_type_t	crypto_alg,
		ikev2_transform_integ_type_t	integ_alg,
		ikev2_transform_dh_type_t	dh_type,
		u32	crypto_key_size
	)

Definition at line 3541 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_ipsec_udp_port()

vnet_api_error_t ikev2_set_profile_ipsec_udp_port	(	vlib_main_t *	vm,
		u8 *	name,
		u16	port,
		u8	is_set
	)

Definition at line 3609 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_responder()

clib_error_t* ikev2_set_profile_responder	(	vlib_main_t *	vm,
		u8 *	name,
		u32	sw_if_index,
		ip4_address_t	ip4
	)

Definition at line 3520 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_sa_lifetime()

clib_error_t* ikev2_set_profile_sa_lifetime	(	vlib_main_t *	vm,
		u8 *	name,
		u64	lifetime,
		u32	jitter,
		u32	handover,
		u64	maxdata
	)

Definition at line 3658 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_ts()

clib_error_t* ikev2_set_profile_ts	(	vlib_main_t *	vm,
		u8 *	name,
		u8	protocol_id,
		u16	start_port,
		u16	end_port,
		ip4_address_t	start_addr,
		ip4_address_t	end_addr,
		int	is_local
	)

Definition at line 3481 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_tunnel_interface()

clib_error_t* ikev2_set_profile_tunnel_interface	(	vlib_main_t *	vm,
		u8 *	name,
		u32	sw_if_index
	)

Definition at line 3589 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_set_profile_udp_encap()

clib_error_t* ikev2_set_profile_udp_encap	(	vlib_main_t *	vm,
		u8 *	name
	)

Definition at line 3642 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ ikev2_ts_cmp()

static int ikev2_ts_cmp	(	ikev2_ts_t *	ts1,
		ikev2_ts_t *	ts2
	)

static

Definition at line 1375 of file ikev2.c.

◆ ikev2_unregister_udp_port()

static_always_inline void ikev2_unregister_udp_port ( ikev2_profile_t * p )

Definition at line 3246 of file ikev2.c.

Here is the call graph for this function:

Here is the caller graph for this function:

◆ VLIB_PLUGIN_REGISTER()

VLIB_PLUGIN_REGISTER ( )

Here is the caller graph for this function:

Variable Documentation

◆ ikev2_error_strings

char* ikev2_error_strings[]

static

Initial value:

= {
#define _(sym,string) 
  foreach_ikev2_error
}

Definition at line 84 of file ikev2.c.

◆ ikev2_main

ikev2_main_t ikev2_main

Definition at line 36 of file ikev2.c.

◆ ikev2_mngr_process_node

static vlib_node_registration_t ikev2_mngr_process_node

static

Initial value:

= {
    .function = ikev2_mngr_process_fn,
    .type = VLIB_NODE_TYPE_PROCESS,
    .name =
    "ikev2-manager-process",
}

(constructor) VLIB_REGISTER_NODE (ikev2_mngr_process_node)

Definition at line 4292 of file ikev2.c.

◆ ikev2_node

static vlib_node_registration_t ikev2_node

static

Initial value:

= {
  .function = ikev2_node_fn,
  .name = "ikev2",
  .vector_size = sizeof (u32),
  .format_trace = format_ikev2_trace,
  .type = VLIB_NODE_TYPE_INTERNAL,
  .n_errors = ARRAY_LEN(ikev2_error_strings),
  .error_strings = ikev2_error_strings,
  .n_next_nodes = IKEV2_N_NEXT,
  .next_nodes = {
    [IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
        [IKEV2_NEXT_ERROR_DROP] = "error-drop",
  },
}

(constructor) VLIB_REGISTER_NODE (ikev2_node)

Definition at line 65 of file ikev2.c.

Data Structures

Macros

Typedefs

Enumerations

Functions

Variables

Macro Definition Documentation

◆ foreach_ikev2_error

◆ IKEV2_LIVENESS_PERIOD_CHECK

◆ IKEV2_LIVENESS_RETRIES

◆ ikev2_set_state

Typedef Documentation

◆ ikev2_non_esp_marker

Enumeration Type Documentation

◆ ikev2_error_t

◆ ikev2_next_t

Function Documentation

◆ format_ikev2_trace()

◆ ikev2_add_del_profile()

◆ ikev2_add_tunnel_from_main()

◆ ikev2_calc_child_keys()

◆ ikev2_calc_keys()

◆ ikev2_cleanup_profile_sessions()

◆ ikev2_complete_sa_data()

◆ ikev2_compute_nat_sha1()

◆ ikev2_create_tunnel_interface()

◆ ikev2_decrypt_sk_payload()

◆ ikev2_del_sa_init()

◆ ikev2_del_sa_init_from_main()

◆ ikev2_del_tunnel_from_main()

◆ ikev2_delete_child_sa_internal()

◆ ikev2_delete_sa()

◆ ikev2_delete_tunnel_interface()

◆ ikev2_find_transform_data()

◆ ikev2_flip_alternate_sa_bit()

◆ ikev2_generate_message()

◆ ikev2_generate_sa_init_data()

◆ ikev2_get_new_ike_header_buff()

◆ ikev2_get_port()

◆ ikev2_init()

◆ ikev2_init_sa()

◆ ikev2_initial_contact_cleanup()

◆ ikev2_initiate_delete_child_sa()

◆ ikev2_initiate_delete_ike_sa()

◆ ikev2_initiate_delete_ike_sa_internal()

◆ ikev2_initiate_rekey_child_sa()

◆ ikev2_initiate_sa_init()

◆ ikev2_insert_non_esp_marker()

◆ ikev2_is_id_equal()

◆ ikev2_mk_local_sa_id()

◆ ikev2_mk_remote_sa_id()

◆ ikev2_mngr_process_child_sa()

◆ ikev2_mngr_process_fn()

◆ ikev2_mngr_process_ipsec_sa()

◆ ikev2_mngr_process_responder_sas()

◆ ikev2_node_fn()

◆ ikev2_process_auth_req()

◆ ikev2_process_create_child_sa_req()

◆ ikev2_process_informational_req()

◆ ikev2_process_pending_sa_init()

◆ ikev2_process_sa_init_req()

◆ ikev2_process_sa_init_resp()

◆ ikev2_profile_free()

◆ ikev2_profile_index_by_name()

◆ ikev2_register_udp_port()

◆ ikev2_rekey_child_sa_internal()

◆ ikev2_retransmit_resp()

◆ ikev2_retransmit_sa_init()

◆ ikev2_sa_auth()

◆ ikev2_sa_auth_init()

◆ ikev2_sa_del_child_sa()

◆ ikev2_sa_free_all_child_sa()

◆ ikev2_sa_free_all_vec()

◆ ikev2_sa_free_child_sa()

◆ ikev2_sa_free_proposal_vector()

◆ ikev2_sa_generate_authmsg()

◆ ikev2_sa_get_child()

◆ ikev2_sa_get_td_for_type()

◆ ikev2_sa_match_ts()

◆ ikev2_select_proposal()