FD.io VPP  v20.05.1-6-gf53edbc3b
Vector Packet Processing
ikev2.c File Reference
+ Include dependency graph for ikev2.c:

Go to the source code of this file.

Data Structures

struct  ikev2_trace_t
 
struct  ikev2_add_ipsec_tunnel_args_t
 
struct  ikev2_del_ipsec_tunnel_args_t
 

Macros

#define IKEV2_LIVENESS_RETRIES   3
 
#define IKEV2_LIVENESS_PERIOD_CHECK   30
 
#define ikev2_set_state(sa, v)
 
#define foreach_ikev2_error
 

Enumerations

enum  ikev2_error_t { IKEV2_N_ERROR }
 
enum  ikev2_next_t { IKEV2_NEXT_IP4_LOOKUP, IKEV2_NEXT_ERROR_DROP, IKEV2_N_NEXT }
 

Functions

static int ikev2_delete_tunnel_interface (vnet_main_t *vnm, ikev2_sa_t *sa, ikev2_child_sa_t *child)
 
static u8format_ikev2_trace (u8 *s, va_list *args)
 
static ikev2_sa_transform_tikev2_find_transform_data (ikev2_sa_transform_t *t)
 
static ikev2_sa_proposal_tikev2_select_proposal (ikev2_sa_proposal_t *proposals, ikev2_protocol_id_t prot_id)
 
ikev2_sa_transform_tikev2_sa_get_td_for_type (ikev2_sa_proposal_t *p, ikev2_transform_type_t type)
 
ikev2_child_sa_tikev2_sa_get_child (ikev2_sa_t *sa, u32 spi, ikev2_protocol_id_t prot_id, int by_initiator)
 
void ikev2_sa_free_proposal_vector (ikev2_sa_proposal_t **v)
 
static void ikev2_sa_free_child_sa (ikev2_child_sa_t *c)
 
static void ikev2_sa_free_all_child_sa (ikev2_child_sa_t **childs)
 
static void ikev2_sa_del_child_sa (ikev2_sa_t *sa, ikev2_child_sa_t *child)
 
static void ikev2_sa_free_all_vec (ikev2_sa_t *sa)
 
static void ikev2_delete_sa (ikev2_sa_t *sa)
 
static void ikev2_generate_sa_init_data (ikev2_sa_t *sa)
 
static void ikev2_complete_sa_data (ikev2_sa_t *sa, ikev2_sa_t *sai)
 
static void ikev2_calc_keys (ikev2_sa_t *sa)
 
static void ikev2_calc_child_keys (ikev2_sa_t *sa, ikev2_child_sa_t *child)
 
static void ikev2_process_sa_init_req (vlib_main_t *vm, ikev2_sa_t *sa, ike_header_t *ike)
 
static void ikev2_process_sa_init_resp (vlib_main_t *vm, ikev2_sa_t *sa, ike_header_t *ike)
 
static u8ikev2_decrypt_sk_payload (ikev2_sa_t *sa, ike_header_t *ike, u8 *payload)
 
static void ikev2_initial_contact_cleanup (ikev2_sa_t *sa)
 
static void ikev2_process_auth_req (vlib_main_t *vm, ikev2_sa_t *sa, ike_header_t *ike)
 
static void ikev2_process_informational_req (vlib_main_t *vm, ikev2_sa_t *sa, ike_header_t *ike)
 
static void ikev2_process_create_child_sa_req (vlib_main_t *vm, ikev2_sa_t *sa, ike_header_t *ike)
 
static u8ikev2_sa_generate_authmsg (ikev2_sa_t *sa, int is_responder)
 
static int ikev2_ts_cmp (ikev2_ts_t *ts1, ikev2_ts_t *ts2)
 
static void ikev2_sa_match_ts (ikev2_sa_t *sa)
 
static void ikev2_sa_auth (ikev2_sa_t *sa)
 
static void ikev2_sa_auth_init (ikev2_sa_t *sa)
 
static u32 ikev2_mk_local_sa_id (u32 sai, u32 ci, u32 ti)
 
static u32 ikev2_mk_remote_sa_id (u32 sai, u32 ci, u32 ti)
 
static void ikev2_add_tunnel_from_main (ikev2_add_ipsec_tunnel_args_t *a)
 
static int ikev2_create_tunnel_interface (vlib_main_t *vm, u32 thread_index, ikev2_sa_t *sa, ikev2_child_sa_t *child, u32 sa_index, u32 child_index, u8 is_rekey)
 
static_always_inline u32 ikev2_flip_alternate_sa_bit (u32 id)
 
static void ikev2_del_tunnel_from_main (ikev2_del_ipsec_tunnel_args_t *a)
 
static u32 ikev2_generate_message (ikev2_sa_t *sa, ike_header_t *ike, void *user)
 
static int ikev2_retransmit_sa_init (ike_header_t *ike, ip4_address_t iaddr, ip4_address_t raddr)
 
static int ikev2_retransmit_resp (ikev2_sa_t *sa, ike_header_t *ike)
 
static void ikev2_init_sa (vlib_main_t *vm, ikev2_sa_t *sa)
 
static void ikev2_del_sa_init_from_main (u64 *ispi)
 
static void ikev2_del_sa_init (u64 ispi)
 
static uword ikev2_node_fn (vlib_main_t *vm, vlib_node_runtime_t *node, vlib_frame_t *frame)
 
static clib_error_tikev2_set_initiator_proposals (vlib_main_t *vm, ikev2_sa_t *sa, ikev2_transforms_set *ts, ikev2_sa_proposal_t **proposals, int is_ike)
 
static ikev2_profile_tikev2_profile_index_by_name (u8 *name)
 
static void ikev2_send_ike (vlib_main_t *vm, ip4_address_t *src, ip4_address_t *dst, u32 bi0, u32 len)
 
static u32 ikev2_get_new_ike_header_buff (vlib_main_t *vm, ike_header_t **ike)
 
clib_error_tikev2_set_local_key (vlib_main_t *vm, u8 *file)
 
static_always_inline vnet_api_error_t ikev2_register_udp_port (ikev2_profile_t *p, u16 port)
 
static_always_inline void ikev2_unregister_udp_port (ikev2_profile_t *p)
 
clib_error_tikev2_add_del_profile (vlib_main_t *vm, u8 *name, int is_add)
 
clib_error_tikev2_set_profile_auth (vlib_main_t *vm, u8 *name, u8 auth_method, u8 *auth_data, u8 data_hex_format)
 
clib_error_tikev2_set_profile_id (vlib_main_t *vm, u8 *name, u8 id_type, u8 *data, int is_local)
 
clib_error_tikev2_set_profile_ts (vlib_main_t *vm, u8 *name, u8 protocol_id, u16 start_port, u16 end_port, ip4_address_t start_addr, ip4_address_t end_addr, int is_local)
 
clib_error_tikev2_set_profile_responder (vlib_main_t *vm, u8 *name, u32 sw_if_index, ip4_address_t ip4)
 
clib_error_tikev2_set_profile_ike_transforms (vlib_main_t *vm, u8 *name, ikev2_transform_encr_type_t crypto_alg, ikev2_transform_integ_type_t integ_alg, ikev2_transform_dh_type_t dh_type, u32 crypto_key_size)
 
clib_error_tikev2_set_profile_esp_transforms (vlib_main_t *vm, u8 *name, ikev2_transform_encr_type_t crypto_alg, ikev2_transform_integ_type_t integ_alg, ikev2_transform_dh_type_t dh_type, u32 crypto_key_size)
 
clib_error_tikev2_set_profile_tunnel_interface (vlib_main_t *vm, u8 *name, u32 sw_if_index)
 
vnet_api_error_t ikev2_set_profile_ipsec_udp_port (vlib_main_t *vm, u8 *name, u16 port, u8 is_set)
 
clib_error_tikev2_set_profile_udp_encap (vlib_main_t *vm, u8 *name)
 
clib_error_tikev2_set_profile_sa_lifetime (vlib_main_t *vm, u8 *name, u64 lifetime, u32 jitter, u32 handover, u64 maxdata)
 
clib_error_tikev2_initiate_sa_init (vlib_main_t *vm, u8 *name)
 
static void ikev2_delete_child_sa_internal (vlib_main_t *vm, ikev2_sa_t *sa, ikev2_child_sa_t *csa)
 
clib_error_tikev2_initiate_delete_child_sa (vlib_main_t *vm, u32 ispi)
 
clib_error_tikev2_initiate_delete_ike_sa (vlib_main_t *vm, u64 ispi)
 
static void ikev2_rekey_child_sa_internal (vlib_main_t *vm, ikev2_sa_t *sa, ikev2_child_sa_t *csa)
 
clib_error_tikev2_initiate_rekey_child_sa (vlib_main_t *vm, u32 ispi)
 
clib_error_tikev2_init (vlib_main_t *vm)
 
static u8 ikev2_mngr_process_child_sa (ikev2_sa_t *sa, ikev2_child_sa_t *csa, u8 del_old_ids)
 
int ikev2_set_log_level (ikev2_log_level_t log_level)
 
clib_error_tikev2_set_liveness_params (u32 period, u32 max_retries)
 
static void ikev2_mngr_process_ipsec_sa (ipsec_sa_t *ipsec_sa)
 
static void ikev2_process_pending_sa_init (ikev2_main_t *km)
 
static void ikev2_send_informational_request (ikev2_sa_t *sa)
 
static_always_inline int ikev2_mngr_process_responder_sas (ikev2_sa_t *sa)
 
static uword ikev2_mngr_process_fn (vlib_main_t *vm, vlib_node_runtime_t *rt, vlib_frame_t *f)
 
 VLIB_PLUGIN_REGISTER ()
 

Variables

ikev2_main_t ikev2_main
 
static vlib_node_registration_t ikev2_node
 (constructor) VLIB_REGISTER_NODE (ikev2_node) More...
 
static char * ikev2_error_strings []
 
static vlib_node_registration_t ikev2_mngr_process_node
 (constructor) VLIB_REGISTER_NODE (ikev2_mngr_process_node) More...
 

Macro Definition Documentation

◆ foreach_ikev2_error

#define foreach_ikev2_error
Value:
_(PROCESSED, "IKEv2 packets processed") \
_(IKE_SA_INIT_RETRANSMIT, "IKE_SA_INIT retransmit ") \
_(IKE_SA_INIT_IGNORE, "IKE_SA_INIT ignore (IKE SA already auth)") \
_(IKE_REQ_RETRANSMIT, "IKE request retransmit") \
_(IKE_REQ_IGNORE, "IKE request ignore (old msgid)") \
_(NOT_IKEV2, "Non IKEv2 packets received")

Definition at line 66 of file ikev2.c.

◆ IKEV2_LIVENESS_PERIOD_CHECK

#define IKEV2_LIVENESS_PERIOD_CHECK   30

Definition at line 33 of file ikev2.c.

◆ IKEV2_LIVENESS_RETRIES

#define IKEV2_LIVENESS_RETRIES   3

Definition at line 32 of file ikev2.c.

◆ ikev2_set_state

#define ikev2_set_state (   sa,
 
)
Value:
do { \
(sa)->state = v; \
ikev2_elog_sa_state("ispi %lx SA state changed to " #v, sa->ispi); \
} while(0);
vl_api_dhcp_client_state_t state
Definition: dhcp.api:201

Definition at line 41 of file ikev2.c.

Enumeration Type Documentation

◆ ikev2_error_t

Enumerator
IKEV2_N_ERROR 

Definition at line 74 of file ikev2.c.

◆ ikev2_next_t

Enumerator
IKEV2_NEXT_IP4_LOOKUP 
IKEV2_NEXT_ERROR_DROP 
IKEV2_N_NEXT 

Definition at line 88 of file ikev2.c.

Function Documentation

◆ format_ikev2_trace()

static u8* format_ikev2_trace ( u8 s,
va_list *  args 
)
static

Definition at line 53 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_add_del_profile()

clib_error_t* ikev2_add_del_profile ( vlib_main_t vm,
u8 name,
int  is_add 
)

Definition at line 3021 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_add_tunnel_from_main()

static void ikev2_add_tunnel_from_main ( ikev2_add_ipsec_tunnel_args_t a)
static

Definition at line 1515 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_calc_child_keys()

static void ikev2_calc_child_keys ( ikev2_sa_t sa,
ikev2_child_sa_t child 
)
static

Definition at line 520 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_calc_keys()

static void ikev2_calc_keys ( ikev2_sa_t sa)
static

Definition at line 436 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_complete_sa_data()

static void ikev2_complete_sa_data ( ikev2_sa_t sa,
ikev2_sa_t sai 
)
static

Definition at line 378 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_create_tunnel_interface()

static int ikev2_create_tunnel_interface ( vlib_main_t vm,
u32  thread_index,
ikev2_sa_t sa,
ikev2_child_sa_t child,
u32  sa_index,
u32  child_index,
u8  is_rekey 
)
static

Definition at line 1581 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_decrypt_sk_payload()

static u8* ikev2_decrypt_sk_payload ( ikev2_sa_t sa,
ike_header_t *  ike,
u8 payload 
)
static

Definition at line 739 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_del_sa_init()

static void ikev2_del_sa_init ( u64  ispi)
static

Definition at line 2326 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_del_sa_init_from_main()

static void ikev2_del_sa_init_from_main ( u64 ispi)
static

Definition at line 2312 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_del_tunnel_from_main()

static void ikev2_del_tunnel_from_main ( ikev2_del_ipsec_tunnel_args_t a)
static

Definition at line 1836 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_delete_child_sa_internal()

static void ikev2_delete_child_sa_internal ( vlib_main_t vm,
ikev2_sa_t sa,
ikev2_child_sa_t csa 
)
static

Definition at line 3491 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_delete_sa()

static void ikev2_delete_sa ( ikev2_sa_t sa)
static

Definition at line 310 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_delete_tunnel_interface()

static int ikev2_delete_tunnel_interface ( vnet_main_t vnm,
ikev2_sa_t sa,
ikev2_child_sa_t child 
)
static

Definition at line 1881 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_find_transform_data()

static ikev2_sa_transform_t* ikev2_find_transform_data ( ikev2_sa_transform_t t)
static

Definition at line 96 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_flip_alternate_sa_bit()

static_always_inline u32 ikev2_flip_alternate_sa_bit ( u32  id)

Definition at line 1827 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_generate_message()

static u32 ikev2_generate_message ( ikev2_sa_t sa,
ike_header_t *  ike,
void *  user 
)
static

Definition at line 1909 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_generate_sa_init_data()

static void ikev2_generate_sa_init_data ( ikev2_sa_t sa)
static

Definition at line 327 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_get_new_ike_header_buff()

static u32 ikev2_get_new_ike_header_buff ( vlib_main_t vm,
ike_header_t **  ike 
)
static

Definition at line 2943 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_init()

clib_error_t* ikev2_init ( vlib_main_t vm)

Definition at line 3711 of file ikev2.c.

+ Here is the call graph for this function:

◆ ikev2_init_sa()

static void ikev2_init_sa ( vlib_main_t vm,
ikev2_sa_t sa 
)
static

Definition at line 2305 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_initial_contact_cleanup()

static void ikev2_initial_contact_cleanup ( ikev2_sa_t sa)
static

Definition at line 803 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_initiate_delete_child_sa()

clib_error_t* ikev2_initiate_delete_child_sa ( vlib_main_t vm,
u32  ispi 
)

Definition at line 3521 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_initiate_delete_ike_sa()

clib_error_t* ikev2_initiate_delete_ike_sa ( vlib_main_t vm,
u64  ispi 
)

Definition at line 3561 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_initiate_rekey_child_sa()

clib_error_t* ikev2_initiate_rekey_child_sa ( vlib_main_t vm,
u32  ispi 
)

Definition at line 3671 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_initiate_sa_init()

clib_error_t* ikev2_initiate_sa_init ( vlib_main_t vm,
u8 name 
)

Definition at line 3329 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_mk_local_sa_id()

static u32 ikev2_mk_local_sa_id ( u32  sai,
u32  ci,
u32  ti 
)
static

Definition at line 1483 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_mk_remote_sa_id()

static u32 ikev2_mk_remote_sa_id ( u32  sai,
u32  ci,
u32  ti 
)
static

Definition at line 1489 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_mngr_process_child_sa()

static u8 ikev2_mngr_process_child_sa ( ikev2_sa_t sa,
ikev2_child_sa_t csa,
u8  del_old_ids 
)
static

Definition at line 3756 of file ikev2.c.

+ Here is the call graph for this function:

◆ ikev2_mngr_process_fn()

static uword ikev2_mngr_process_fn ( vlib_main_t vm,
vlib_node_runtime_t rt,
vlib_frame_t f 
)
static

Definition at line 4004 of file ikev2.c.

+ Here is the call graph for this function:

◆ ikev2_mngr_process_ipsec_sa()

static void ikev2_mngr_process_ipsec_sa ( ipsec_sa_t ipsec_sa)
static

Definition at line 3874 of file ikev2.c.

+ Here is the call graph for this function:

◆ ikev2_mngr_process_responder_sas()

static_always_inline int ikev2_mngr_process_responder_sas ( ikev2_sa_t sa)

Definition at line 3981 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_node_fn()

static uword ikev2_node_fn ( vlib_main_t vm,
vlib_node_runtime_t node,
vlib_frame_t frame 
)
static

Definition at line 2333 of file ikev2.c.

+ Here is the call graph for this function:

◆ ikev2_process_auth_req()

static void ikev2_process_auth_req ( vlib_main_t vm,
ikev2_sa_t sa,
ike_header_t *  ike 
)
static

Definition at line 842 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_process_create_child_sa_req()

static void ikev2_process_create_child_sa_req ( vlib_main_t vm,
ikev2_sa_t sa,
ike_header_t *  ike 
)
static

Definition at line 1045 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_process_informational_req()

static void ikev2_process_informational_req ( vlib_main_t vm,
ikev2_sa_t sa,
ike_header_t *  ike 
)
static

Definition at line 981 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_process_pending_sa_init()

static void ikev2_process_pending_sa_init ( ikev2_main_t km)
static

Definition at line 3918 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_process_sa_init_req()

static void ikev2_process_sa_init_req ( vlib_main_t vm,
ikev2_sa_t sa,
ike_header_t *  ike 
)
static

Definition at line 591 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_process_sa_init_resp()

static void ikev2_process_sa_init_resp ( vlib_main_t vm,
ikev2_sa_t sa,
ike_header_t *  ike 
)
static

Definition at line 663 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_profile_index_by_name()

static ikev2_profile_t* ikev2_profile_index_by_name ( u8 name)
static

Definition at line 2886 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_register_udp_port()

static_always_inline vnet_api_error_t ikev2_register_udp_port ( ikev2_profile_t p,
u16  port 
)

Definition at line 2969 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_rekey_child_sa_internal()

static void ikev2_rekey_child_sa_internal ( vlib_main_t vm,
ikev2_sa_t sa,
ikev2_child_sa_t csa 
)
static

Definition at line 3637 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_retransmit_resp()

static int ikev2_retransmit_resp ( ikev2_sa_t sa,
ike_header_t *  ike 
)
static

Definition at line 2266 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_retransmit_sa_init()

static int ikev2_retransmit_sa_init ( ike_header_t *  ike,
ip4_address_t  iaddr,
ip4_address_t  raddr 
)
static

Definition at line 2192 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_auth()

static void ikev2_sa_auth ( ikev2_sa_t sa)
static

Definition at line 1302 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_auth_init()

static void ikev2_sa_auth_init ( ikev2_sa_t sa)
static

Definition at line 1439 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_del_child_sa()

static void ikev2_sa_del_child_sa ( ikev2_sa_t sa,
ikev2_child_sa_t child 
)
static

Definition at line 272 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_free_all_child_sa()

static void ikev2_sa_free_all_child_sa ( ikev2_child_sa_t **  childs)
static

Definition at line 263 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_free_all_vec()

static void ikev2_sa_free_all_vec ( ikev2_sa_t sa)
static

Definition at line 279 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_free_child_sa()

static void ikev2_sa_free_child_sa ( ikev2_child_sa_t c)
static

Definition at line 250 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_free_proposal_vector()

void ikev2_sa_free_proposal_vector ( ikev2_sa_proposal_t **  v)

Definition at line 230 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_sa_generate_authmsg()

static u8* ikev2_sa_generate_authmsg ( ikev2_sa_t sa,
int  is_responder 
)
static

Definition at line 1180 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_get_child()

ikev2_child_sa_t* ikev2_sa_get_child ( ikev2_sa_t sa,
u32  spi,
ikev2_protocol_id_t  prot_id,
int  by_initiator 
)

Definition at line 214 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_sa_get_td_for_type()

ikev2_sa_transform_t* ikev2_sa_get_td_for_type ( ikev2_sa_proposal_t p,
ikev2_transform_type_t  type 
)

Definition at line 197 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_sa_match_ts()

static void ikev2_sa_match_ts ( ikev2_sa_t sa)
static

Definition at line 1235 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_select_proposal()

static ikev2_sa_proposal_t* ikev2_select_proposal ( ikev2_sa_proposal_t proposals,
ikev2_protocol_id_t  prot_id 
)
static

Definition at line 124 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_send_ike()

static void ikev2_send_ike ( vlib_main_t vm,
ip4_address_t src,
ip4_address_t dst,
u32  bi0,
u32  len 
)
static

Definition at line 2900 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_send_informational_request()

static void ikev2_send_informational_request ( ikev2_sa_t sa)
static

Definition at line 3948 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_initiator_proposals()

static clib_error_t* ikev2_set_initiator_proposals ( vlib_main_t vm,
ikev2_sa_t sa,
ikev2_transforms_set ts,
ikev2_sa_proposal_t **  proposals,
int  is_ike 
)
static

Definition at line 2758 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_set_liveness_params()

clib_error_t* ikev2_set_liveness_params ( u32  period,
u32  max_retries 
)

Definition at line 3861 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_set_local_key()

clib_error_t* ikev2_set_local_key ( vlib_main_t vm,
u8 file 
)

Definition at line 2957 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_log_level()

int ikev2_set_log_level ( ikev2_log_level_t  log_level)

Definition at line 3846 of file ikev2.c.

+ Here is the caller graph for this function:

◆ ikev2_set_profile_auth()

clib_error_t* ikev2_set_profile_auth ( vlib_main_t vm,
u8 name,
u8  auth_method,
u8 auth_data,
u8  data_hex_format 
)

Definition at line 3056 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_esp_transforms()

clib_error_t* ikev2_set_profile_esp_transforms ( vlib_main_t vm,
u8 name,
ikev2_transform_encr_type_t  crypto_alg,
ikev2_transform_integ_type_t  integ_alg,
ikev2_transform_dh_type_t  dh_type,
u32  crypto_key_size 
)

Definition at line 3212 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_id()

clib_error_t* ikev2_set_profile_id ( vlib_main_t vm,
u8 name,
u8  id_type,
u8 data,
int  is_local 
)

Definition at line 3088 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_ike_transforms()

clib_error_t* ikev2_set_profile_ike_transforms ( vlib_main_t vm,
u8 name,
ikev2_transform_encr_type_t  crypto_alg,
ikev2_transform_integ_type_t  integ_alg,
ikev2_transform_dh_type_t  dh_type,
u32  crypto_key_size 
)

Definition at line 3187 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_ipsec_udp_port()

vnet_api_error_t ikev2_set_profile_ipsec_udp_port ( vlib_main_t vm,
u8 name,
u16  port,
u8  is_set 
)

Definition at line 3257 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_responder()

clib_error_t* ikev2_set_profile_responder ( vlib_main_t vm,
u8 name,
u32  sw_if_index,
ip4_address_t  ip4 
)

Definition at line 3166 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_sa_lifetime()

clib_error_t* ikev2_set_profile_sa_lifetime ( vlib_main_t vm,
u8 name,
u64  lifetime,
u32  jitter,
u32  handover,
u64  maxdata 
)

Definition at line 3306 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_ts()

clib_error_t* ikev2_set_profile_ts ( vlib_main_t vm,
u8 name,
u8  protocol_id,
u16  start_port,
u16  end_port,
ip4_address_t  start_addr,
ip4_address_t  end_addr,
int  is_local 
)

Definition at line 3127 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_tunnel_interface()

clib_error_t* ikev2_set_profile_tunnel_interface ( vlib_main_t vm,
u8 name,
u32  sw_if_index 
)

Definition at line 3237 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_set_profile_udp_encap()

clib_error_t* ikev2_set_profile_udp_encap ( vlib_main_t vm,
u8 name 
)

Definition at line 3290 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ikev2_ts_cmp()

static int ikev2_ts_cmp ( ikev2_ts_t ts1,
ikev2_ts_t ts2 
)
static

Definition at line 1223 of file ikev2.c.

◆ ikev2_unregister_udp_port()

static_always_inline void ikev2_unregister_udp_port ( ikev2_profile_t p)

Definition at line 2997 of file ikev2.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ VLIB_PLUGIN_REGISTER()

VLIB_PLUGIN_REGISTER ( )
+ Here is the caller graph for this function:

Variable Documentation

◆ ikev2_error_strings

char* ikev2_error_strings[]
static
Initial value:
= {
#define _(sym,string)
}
#define foreach_ikev2_error
Definition: ikev2.c:66

Definition at line 82 of file ikev2.c.

◆ ikev2_main

ikev2_main_t ikev2_main

Definition at line 35 of file ikev2.c.

◆ ikev2_mngr_process_node

static vlib_node_registration_t ikev2_mngr_process_node
static
Initial value:
= {
.function = ikev2_mngr_process_fn,
.name =
"ikev2-manager-process",
}
static uword ikev2_mngr_process_fn(vlib_main_t *vm, vlib_node_runtime_t *rt, vlib_frame_t *f)
Definition: ikev2.c:4004

(constructor) VLIB_REGISTER_NODE (ikev2_mngr_process_node)

Definition at line 3945 of file ikev2.c.

◆ ikev2_node

static vlib_node_registration_t ikev2_node
static
Initial value:
= {
.function = ikev2_node_fn,
.name = "ikev2",
.vector_size = sizeof (u32),
.format_trace = format_ikev2_trace,
.error_strings = ikev2_error_strings,
.n_next_nodes = IKEV2_N_NEXT,
.next_nodes = {
[IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
[IKEV2_NEXT_ERROR_DROP] = "error-drop",
},
}
static u8 * format_ikev2_trace(u8 *s, va_list *args)
Definition: ikev2.c:53
unsigned int u32
Definition: types.h:88
vl_api_fib_path_type_t type
Definition: fib_types.api:123
static uword ikev2_node_fn(vlib_main_t *vm, vlib_node_runtime_t *node, vlib_frame_t *frame)
Definition: ikev2.c:2333
#define ARRAY_LEN(x)
Definition: clib.h:66
static char * ikev2_error_strings[]
Definition: ikev2.c:82

(constructor) VLIB_REGISTER_NODE (ikev2_node)

Definition at line 64 of file ikev2.c.