de/d2e/sr_8h_source.html

 /*
  * Copyright (c) 2015 Cisco and/or its affiliates.
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at:
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 #ifndef included_vnet_sr_h
 #define included_vnet_sr_h

 #include <vnet/vnet.h>
 #include <vnet/sr/sr_packet.h>
 #include <vnet/ip/ip6_packet.h>

 #include <openssl/opensslconf.h>
 #include <stdlib.h>
 #include <string.h>

 #include <openssl/crypto.h>
 #include <openssl/sha.h>
 #include <openssl/opensslv.h>
 #include <openssl/hmac.h>

 typedef struct {
   ip6_address_t src;
   ip6_address_t dst;
 } ip6_sr_tunnel_key_t;

 typedef struct {
   /* src, dst address */
   ip6_sr_tunnel_key_t key;

   /* optional tunnel name */
   u8 * name;

   /* mask width for FIB entry */
   u32 dst_mask_width;

   /* first hop, to save 1 elt in the segment list */
   ip6_address_t first_hop;

   /* Fib indices */
   u32 rx_fib_index;
   u32 tx_fib_index;

   /* The actual ip6 sr header */
   u8 * rewrite;

   /* Indicates that this tunnel is part of a policy comprising
      of multiple tunnels. */
   u32 policy_index;
 } ip6_sr_tunnel_t;

 typedef struct {
   u8 * shared_secret;
 } ip6_sr_hmac_key_t;

 typedef struct {
   /* Key (header imposition case) */
   ip6_address_t *src_address;
   ip6_address_t *dst_address;
   u32 dst_mask_width;
   u32 rx_table_id;
   u32 tx_table_id;

   /* optional name argument - for referencing SR tunnel/policy by name */
   u8 * name;

   /* optional policy name */
   u8 * policy_name;

   /* segment list, when inserting an ip6 SR header*/
   ip6_address_t *segments;

   /*
    * "Tag" list, aka segments inserted at the end of the list,
    * past last_seg
    */
   ip6_address_t *tags;

   /* Shared secret => generate SHA-256 HMAC security fields */
   u8 * shared_secret;

   /* Flags, e.g. cleanup, policy-list flags */
   u16 flags_net_byte_order;

   /* Delete the tunnnel? */
   u8 is_del;
 } ip6_sr_add_del_tunnel_args_t;

 typedef struct {
   /* policy name */
   u8 * name;

   /* tunnel names */
   u8 ** tunnel_names;

   /* Delete the policy? */
   u8 is_del;
 } ip6_sr_add_del_policy_args_t;


 typedef struct {
   /* name of policy */
   u8 * name;

   /* vector to SR tunnel index */
   u32 * tunnel_indices;

 } ip6_sr_policy_t;

 typedef struct {
   /* multicast IP6 address */
   ip6_address_t *multicast_address;

   /* name of policy to map to */
   u8 * policy_name;

   /* Delete the mapping */
   u8 is_del;

 } ip6_sr_add_del_multicastmap_args_t;

 typedef struct {
   /* pool of tunnel instances, sr entry only */
   ip6_sr_tunnel_t *tunnels;

   /* find an sr "tunnel" by its outer-IP src/dst */
   uword * tunnel_index_by_key;

   /* find an sr "tunnel" by its name */
   uword * tunnel_index_by_name;

   /* policy pool */
   ip6_sr_policy_t * policies;

   /* find a policy by name */
   uword * policy_index_by_policy_name;

   /* multicast address to policy mapping */
   uword * policy_index_by_multicast_address;

   /* ip6-lookup next index for imposition FIB entries */
   u32 ip6_lookup_sr_next_index;

   /* hmac key id by shared secret */
   uword * hmac_key_by_shared_secret;

   /* ip6-rewrite next index for reinstalling the original dst address */
   u32 ip6_rewrite_sr_next_index;

   /* ip6-replicate next index for multicast tunnel */
   u32 ip6_lookup_sr_replicate_index;

   /* application API callback */
   void *sr_local_cb;

   /* validate hmac keys */
   u8 validate_hmac;

   /* pool of hmac keys */
   ip6_sr_hmac_key_t * hmac_keys;

   /* Openssl vbls */
   EVP_MD * md;
   HMAC_CTX * hmac_ctx;

   /* enable debug spew */
   u8 is_debug;

   /* convenience */
   vlib_main_t * vlib_main;
   vnet_main_t * vnet_main;
 } ip6_sr_main_t;

 ip6_sr_main_t sr_main;

 format_function_t format_ip6_sr_header;
 format_function_t format_ip6_sr_header_with_length;

 vlib_node_registration_t ip6_sr_input_node;

 #if DPDK > 0
 extern vlib_node_registration_t sr_replicate_node;
 #endif /* DPDK */

 int ip6_sr_add_del_tunnel (ip6_sr_add_del_tunnel_args_t * a);
 int ip6_sr_add_del_policy (ip6_sr_add_del_policy_args_t * a);
 int ip6_sr_add_del_multicastmap (ip6_sr_add_del_multicastmap_args_t * a);

 void vnet_register_sr_app_callback (void *cb);

 void sr_fix_hmac (ip6_sr_main_t * sm, ip6_header_t * ip,
                   ip6_sr_header_t * sr);

 #endif /* included_vnet_sr_h */
ip6_sr_main_t::hmac_ctx
HMAC_CTX * hmac_ctx
Definition: sr.h:173

ip6_sr_tunnel_key_t
Definition: sr.h:31

ip6_sr_add_del_tunnel_args_t::rx_table_id
u32 rx_table_id
Definition: sr.h:70

ip6_sr_add_del_policy_args_t
Definition: sr.h:98

ip6_sr_main_t::tunnel_index_by_key
uword * tunnel_index_by_key
Definition: sr.h:136

a
a
Definition: bitmap.h:393

ip6_sr_tunnel_t::tx_fib_index
u32 tx_fib_index
Definition: sr.h:51

ip6_sr_tunnel_t::policy_index
u32 policy_index
Definition: sr.h:58

ip6_sr_tunnel_t::dst_mask_width
u32 dst_mask_width
Definition: sr.h:44

ip6_sr_add_del_multicastmap_args_t::multicast_address
ip6_address_t * multicast_address
Definition: sr.h:121

string.h

ip6_sr_tunnel_t::name
u8 * name
Definition: sr.h:41

ip6_packet.h

vlib_node_registration_t
struct _vlib_node_registration vlib_node_registration_t

ip6_sr_add_del_tunnel_args_t::tags
ip6_address_t * tags
Definition: sr.h:86

ip6_sr_tunnel_t::key
ip6_sr_tunnel_key_t key
Definition: sr.h:38

ip6_sr_tunnel_t::rx_fib_index
u32 rx_fib_index
Definition: sr.h:50

ip6_sr_tunnel_key_t::dst
ip6_address_t dst
Definition: sr.h:33

ip6_sr_tunnel_key_t::src
ip6_address_t src
Definition: sr.h:32

ip6_sr_policy_t::name
u8 * name
Definition: sr.h:112

ip6_sr_add_del_tunnel_args_t::segments
ip6_address_t * segments
Definition: sr.h:80

ip6_sr_main_t::md
EVP_MD * md
Definition: sr.h:172

ip6_sr_add_del_policy
int ip6_sr_add_del_policy(ip6_sr_add_del_policy_args_t *a)
Definition: sr.c:1287

ip6_sr_add_del_tunnel_args_t::dst_mask_width
u32 dst_mask_width
Definition: sr.h:69

ip6_sr_main_t::hmac_keys
ip6_sr_hmac_key_t * hmac_keys
Definition: sr.h:169

ip6_sr_add_del_tunnel_args_t::name
u8 * name
Definition: sr.h:74

ip6_sr_add_del_multicastmap
int ip6_sr_add_del_multicastmap(ip6_sr_add_del_multicastmap_args_t *a)
Definition: sr.c:1503

format_ip6_sr_header_with_length
format_function_t format_ip6_sr_header_with_length
Definition: sr.h:186

ip6_sr_add_del_tunnel_args_t
Definition: sr.h:65

sr_fix_hmac
void sr_fix_hmac(ip6_sr_main_t *sm, ip6_header_t *ip, ip6_sr_header_t *sr)
Definition: sr.c:26

ip6_sr_add_del_tunnel_args_t::is_del
u8 is_del
Definition: sr.h:95

ip6_sr_add_del_multicastmap_args_t
Definition: sr.h:119

ip6_sr_main_t::vlib_main
vlib_main_t * vlib_main
Definition: sr.h:179

vnet_register_sr_app_callback
void vnet_register_sr_app_callback(void *cb)
Definition: sr.c:2665

sr_packet.h

ip6_sr_main_t::sr_local_cb
void * sr_local_cb
Definition: sr.h:163

ip6_sr_hmac_key_t::shared_secret
u8 * shared_secret
Definition: sr.h:62

ip6_sr_main_t::is_debug
u8 is_debug
Definition: sr.h:176

ip6_sr_add_del_tunnel
int ip6_sr_add_del_tunnel(ip6_sr_add_del_tunnel_args_t *a)
Definition: sr.c:740

ip6_sr_add_del_tunnel_args_t::flags_net_byte_order
u16 flags_net_byte_order
Definition: sr.h:92

ip6_sr_main_t::ip6_lookup_sr_replicate_index
u32 ip6_lookup_sr_replicate_index
Definition: sr.h:160

vnet.h

ip6_sr_add_del_tunnel_args_t::src_address
ip6_address_t * src_address
Definition: sr.h:67

ip6_sr_add_del_tunnel_args_t::policy_name
u8 * policy_name
Definition: sr.h:77

ip6_sr_main_t::vnet_main
vnet_main_t * vnet_main
Definition: sr.h:180

ip6_sr_tunnel_t::rewrite
u8 * rewrite
Definition: sr.h:54

ip6_sr_input_node
vlib_node_registration_t ip6_sr_input_node
Definition: sr.h:188

ip6_sr_policy_t::tunnel_indices
u32 * tunnel_indices
Definition: sr.h:115

ip6_sr_add_del_multicastmap_args_t::policy_name
u8 * policy_name
Definition: sr.h:124

ip6_sr_tunnel_t
Definition: sr.h:36

ip6_sr_main_t::validate_hmac
u8 validate_hmac
Definition: sr.h:166

vnet_main_t
Definition: vnet.h:58

ip6_sr_tunnel_t::first_hop
ip6_address_t first_hop
Definition: sr.h:47

u32
unsigned int u32
Definition: types.h:88

ip6_sr_add_del_policy_args_t::name
u8 * name
Definition: sr.h:100

ip6_header_t
Definition: ip6_packet.h:278

ip6_sr_main_t::tunnels
ip6_sr_tunnel_t * tunnels
Definition: sr.h:133

ip6_sr_main_t::policy_index_by_policy_name
uword * policy_index_by_policy_name
Definition: sr.h:145

ip6_sr_add_del_policy_args_t::is_del
u8 is_del
Definition: sr.h:106

ip6_sr_main_t::tunnel_index_by_name
uword * tunnel_index_by_name
Definition: sr.h:139

format_function_t
u8 *( format_function_t)(u8 *s, va_list *args)
Definition: format.h:48

uword
u64 uword
Definition: types.h:112

ip6_sr_main_t::ip6_lookup_sr_next_index
u32 ip6_lookup_sr_next_index
Definition: sr.h:151

format_ip6_sr_header
format_function_t format_ip6_sr_header
Definition: sr.h:185

ip6_sr_add_del_tunnel_args_t::shared_secret
u8 * shared_secret
Definition: sr.h:89

ip6_sr_main_t::hmac_key_by_shared_secret
uword * hmac_key_by_shared_secret
Definition: sr.h:154

u16
unsigned short u16
Definition: types.h:57

ip6_sr_main_t::policy_index_by_multicast_address
uword * policy_index_by_multicast_address
Definition: sr.h:148

u8
unsigned char u8
Definition: types.h:56

ip6_sr_policy_t
Definition: sr.h:110

ip6_sr_main_t::policies
ip6_sr_policy_t * policies
Definition: sr.h:142

vlib_main_t
Definition: main.h:59

ip6_sr_header_t
Definition: sr_packet.h:172

ip6_sr_add_del_tunnel_args_t::dst_address
ip6_address_t * dst_address
Definition: sr.h:68

ip6_sr_add_del_policy_args_t::tunnel_names
u8 ** tunnel_names
Definition: sr.h:103

ip6_sr_hmac_key_t
Definition: sr.h:61

ip6_sr_main_t
Definition: sr.h:131

ip6_sr_add_del_tunnel_args_t::tx_table_id
u32 tx_table_id
Definition: sr.h:71

ip6_sr_add_del_multicastmap_args_t::is_del
u8 is_del
Definition: sr.h:127

sr_main
ip6_sr_main_t sr_main
Definition: sr.h:183

ip6_address_t
Definition: ip6_packet.h:46

ip6_sr_main_t::ip6_rewrite_sr_next_index
u32 ip6_rewrite_sr_next_index
Definition: sr.h:157