FD.io VPP  v21.01.1
Vector Packet Processing
ipsec_cli.c File Reference
+ Include dependency graph for ipsec_cli.c:

Go to the source code of this file.

Functions

static clib_error_tset_interface_spd_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tipsec_sa_add_del_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tipsec_spd_add_del_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tipsec_policy_add_del_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static void ipsec_sa_show_all (vlib_main_t *vm, ipsec_main_t *im, u8 detail)
 
static void ipsec_spd_show_all (vlib_main_t *vm, ipsec_main_t *im)
 
static void ipsec_spd_bindings_show_all (vlib_main_t *vm, ipsec_main_t *im)
 
static walk_rc_t ipsec_tun_protect_show_one (index_t itpi, void *ctx)
 
static void ipsec_tunnel_show_all (vlib_main_t *vm)
 
static clib_error_tshow_ipsec_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tshow_ipsec_sa_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tclear_ipsec_sa_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tshow_ipsec_spd_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tshow_ipsec_tunnel_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tipsec_show_backends_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tipsec_select_backend_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tclear_ipsec_counters_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static u32 ipsec_tun_mk_local_sa_id (u32 ti)
 
static u32 ipsec_tun_mk_remote_sa_id (u32 ti)
 
static clib_error_tcreate_ipsec_tunnel_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tipsec_tun_protect_cmd (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static clib_error_tipsec_tun_protect_show (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
static int ipsec_tun_protect4_hash_show_one (clib_bihash_kv_8_16_t *kv, void *arg)
 
static int ipsec_tun_protect6_hash_show_one (clib_bihash_kv_24_16_t *kv, void *arg)
 
static clib_error_tipsec_tun_protect_hash_show (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 
clib_error_tipsec_cli_init (vlib_main_t *vm)
 
static clib_error_tset_async_mode_command_fn (vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
 

Variables

static vlib_cli_command_t set_interface_spd_command
 (constructor) VLIB_CLI_COMMAND (set_interface_spd_command) More...
 
static vlib_cli_command_t ipsec_sa_add_del_command
 (constructor) VLIB_CLI_COMMAND (ipsec_sa_add_del_command) More...
 
static vlib_cli_command_t ipsec_spd_add_del_command
 (constructor) VLIB_CLI_COMMAND (ipsec_spd_add_del_command) More...
 
static vlib_cli_command_t ipsec_policy_add_del_command
 (constructor) VLIB_CLI_COMMAND (ipsec_policy_add_del_command) More...
 
static vlib_cli_command_t show_ipsec_command
 (constructor) VLIB_CLI_COMMAND (show_ipsec_command) More...
 
static vlib_cli_command_t show_ipsec_sa_command
 (constructor) VLIB_CLI_COMMAND (show_ipsec_sa_command) More...
 
static vlib_cli_command_t clear_ipsec_sa_command
 (constructor) VLIB_CLI_COMMAND (clear_ipsec_sa_command) More...
 
static vlib_cli_command_t show_ipsec_spd_command
 (constructor) VLIB_CLI_COMMAND (show_ipsec_spd_command) More...
 
static vlib_cli_command_t show_ipsec_tunnel_command
 (constructor) VLIB_CLI_COMMAND (show_ipsec_tunnel_command) More...
 
static vlib_cli_command_t ipsec_show_backends_command
 (constructor) VLIB_CLI_COMMAND (ipsec_show_backends_command) More...
 
static vlib_cli_command_t ipsec_select_backend_command
 (constructor) VLIB_CLI_COMMAND (ipsec_select_backend_command) More...
 
static vlib_cli_command_t clear_ipsec_counters_command
 (constructor) VLIB_CLI_COMMAND (clear_ipsec_counters_command) More...
 
static vlib_cli_command_t create_ipsec_tunnel_command
 (constructor) VLIB_CLI_COMMAND (create_ipsec_tunnel_command) More...
 
static vlib_cli_command_t ipsec_tun_protect_cmd_node
 Protect tunnel with IPSEC. More...
 
static vlib_cli_command_t ipsec_tun_protect_show_node
 show IPSEC tunnel protection More...
 
static vlib_cli_command_t ipsec_tun_protect_hash_show_node
 show IPSEC tunnel protection hash tables More...
 
static vlib_cli_command_t set_async_mode_command
 (constructor) VLIB_CLI_COMMAND (set_async_mode_command) More...
 

Function Documentation

◆ clear_ipsec_counters_command_fn()

static clib_error_t* clear_ipsec_counters_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 769 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ clear_ipsec_sa_command_fn()

static clib_error_t* clear_ipsec_sa_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 531 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ create_ipsec_tunnel_command_fn()

static clib_error_t* create_ipsec_tunnel_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 800 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_cli_init()

clib_error_t* ipsec_cli_init ( vlib_main_t vm)

Definition at line 1119 of file ipsec_cli.c.

+ Here is the caller graph for this function:

◆ ipsec_policy_add_del_command_fn()

static clib_error_t* ipsec_policy_add_del_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 282 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_sa_add_del_command_fn()

static clib_error_t* ipsec_sa_add_del_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 84 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_sa_show_all()

static void ipsec_sa_show_all ( vlib_main_t vm,
ipsec_main_t im,
u8  detail 
)
static

Definition at line 422 of file ipsec_cli.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ipsec_select_backend_command_fn()

static clib_error_t* ipsec_select_backend_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 700 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_show_backends_command_fn()

static clib_error_t* ipsec_show_backends_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 633 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_spd_add_del_command_fn()

static clib_error_t* ipsec_spd_add_del_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 229 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_spd_bindings_show_all()

static void ipsec_spd_bindings_show_all ( vlib_main_t vm,
ipsec_main_t im 
)
static

Definition at line 447 of file ipsec_cli.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ipsec_spd_show_all()

static void ipsec_spd_show_all ( vlib_main_t vm,
ipsec_main_t im 
)
static

Definition at line 435 of file ipsec_cli.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ipsec_tun_mk_local_sa_id()

static u32 ipsec_tun_mk_local_sa_id ( u32  ti)
static

Definition at line 788 of file ipsec_cli.c.

+ Here is the caller graph for this function:

◆ ipsec_tun_mk_remote_sa_id()

static u32 ipsec_tun_mk_remote_sa_id ( u32  ti)
static

Definition at line 794 of file ipsec_cli.c.

+ Here is the caller graph for this function:

◆ ipsec_tun_protect4_hash_show_one()

static int ipsec_tun_protect4_hash_show_one ( clib_bihash_kv_8_16_t kv,
void *  arg 
)
static

Definition at line 1063 of file ipsec_cli.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ipsec_tun_protect6_hash_show_one()

static int ipsec_tun_protect6_hash_show_one ( clib_bihash_kv_24_16_t kv,
void *  arg 
)
static

Definition at line 1074 of file ipsec_cli.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ipsec_tun_protect_cmd()

static clib_error_t* ipsec_tun_protect_cmd ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 983 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_tun_protect_hash_show()

static clib_error_t* ipsec_tun_protect_hash_show ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 1085 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_tun_protect_show()

static clib_error_t* ipsec_tun_protect_show ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 1042 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ ipsec_tun_protect_show_one()

static walk_rc_t ipsec_tun_protect_show_one ( index_t  itpi,
void *  ctx 
)
static

Definition at line 465 of file ipsec_cli.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ ipsec_tunnel_show_all()

static void ipsec_tunnel_show_all ( vlib_main_t vm)
static

Definition at line 473 of file ipsec_cli.c.

+ Here is the call graph for this function:
+ Here is the caller graph for this function:

◆ set_async_mode_command_fn()

static clib_error_t* set_async_mode_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 1127 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ set_interface_spd_command_fn()

static clib_error_t* set_interface_spd_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 29 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ show_ipsec_command_fn()

static clib_error_t* show_ipsec_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 479 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ show_ipsec_sa_command_fn()

static clib_error_t* show_ipsec_sa_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 504 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ show_ipsec_spd_command_fn()

static clib_error_t* show_ipsec_spd_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 579 of file ipsec_cli.c.

+ Here is the call graph for this function:

◆ show_ipsec_tunnel_command_fn()

static clib_error_t* show_ipsec_tunnel_command_fn ( vlib_main_t vm,
unformat_input_t input,
vlib_cli_command_t cmd 
)
static

Definition at line 615 of file ipsec_cli.c.

+ Here is the call graph for this function:

Variable Documentation

◆ clear_ipsec_counters_command

vlib_cli_command_t clear_ipsec_counters_command
static
Initial value:
= {
.path = "clear ipsec counters",
.short_help = "clear ipsec counters",
}
static clib_error_t * clear_ipsec_counters_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:769

(constructor) VLIB_CLI_COMMAND (clear_ipsec_counters_command)

Definition at line 780 of file ipsec_cli.c.

◆ clear_ipsec_sa_command

vlib_cli_command_t clear_ipsec_sa_command
static
Initial value:
= {
.path = "clear ipsec sa",
.short_help = "clear ipsec sa [index]",
}
static clib_error_t * clear_ipsec_sa_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:531

(constructor) VLIB_CLI_COMMAND (clear_ipsec_sa_command)

Definition at line 571 of file ipsec_cli.c.

◆ create_ipsec_tunnel_command

vlib_cli_command_t create_ipsec_tunnel_command
static
Initial value:
= {
.path = "create ipsec tunnel",
.short_help = "create ipsec tunnel local-ip <addr> local-spi <spi> "
"remote-ip <addr> remote-spi <spi> [instance <inst_num>] [udp-encap] [use-esn] [use-anti-replay] "
"[tx-table <table-id>]",
}
static clib_error_t * create_ipsec_tunnel_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:800

(constructor) VLIB_CLI_COMMAND (create_ipsec_tunnel_command)

Definition at line 973 of file ipsec_cli.c.

◆ ipsec_policy_add_del_command

vlib_cli_command_t ipsec_policy_add_del_command
static
Initial value:
= {
.path = "ipsec policy",
.short_help =
"ipsec policy [add|del] spd <id> priority <n> ",
}
static clib_error_t * ipsec_policy_add_del_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:282

(constructor) VLIB_CLI_COMMAND (ipsec_policy_add_del_command)

Definition at line 413 of file ipsec_cli.c.

◆ ipsec_sa_add_del_command

vlib_cli_command_t ipsec_sa_add_del_command
static
Initial value:
= {
.path = "ipsec sa",
.short_help =
"ipsec sa [add|del]",
}
static clib_error_t * ipsec_sa_add_del_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:84

(constructor) VLIB_CLI_COMMAND (ipsec_sa_add_del_command)

Definition at line 220 of file ipsec_cli.c.

◆ ipsec_select_backend_command

vlib_cli_command_t ipsec_select_backend_command
static
Initial value:
= {
.path = "ipsec select backend",
.short_help = "ipsec select backend <ah|esp> <backend index>",
}
static clib_error_t * ipsec_select_backend_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:700

(constructor) VLIB_CLI_COMMAND (ipsec_select_backend_command)

Definition at line 760 of file ipsec_cli.c.

◆ ipsec_show_backends_command

vlib_cli_command_t ipsec_show_backends_command
static
Initial value:
= {
.path = "show ipsec backends",
.short_help = "show ipsec backends",
}
static clib_error_t * ipsec_show_backends_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:633

(constructor) VLIB_CLI_COMMAND (ipsec_show_backends_command)

Definition at line 692 of file ipsec_cli.c.

◆ ipsec_spd_add_del_command

vlib_cli_command_t ipsec_spd_add_del_command
static
Initial value:
= {
.path = "ipsec spd",
.short_help =
"ipsec spd [add|del] <id>",
}
static clib_error_t * ipsec_spd_add_del_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:229

(constructor) VLIB_CLI_COMMAND (ipsec_spd_add_del_command)

Definition at line 272 of file ipsec_cli.c.

◆ ipsec_tun_protect_cmd_node

vlib_cli_command_t ipsec_tun_protect_cmd_node
static
Initial value:
=
{
.path = "ipsec tunnel protect",
.function = ipsec_tun_protect_cmd,
.short_help = "ipsec tunnel protect <interface> input-sa <SA> output-sa <SA> [add|del]",
}
static clib_error_t * ipsec_tun_protect_cmd(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:983

Protect tunnel with IPSEC.

(constructor) VLIB_CLI_COMMAND (ipsec_tun_protect_cmd_node)

Definition at line 1031 of file ipsec_cli.c.

◆ ipsec_tun_protect_hash_show_node

vlib_cli_command_t ipsec_tun_protect_hash_show_node
static
Initial value:
=
{
.path = "show ipsec protect-hash",
.short_help = "show ipsec protect-hash",
}
static clib_error_t * ipsec_tun_protect_hash_show(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:1085

show IPSEC tunnel protection hash tables

(constructor) VLIB_CLI_COMMAND (ipsec_tun_protect_hash_show_node)

Definition at line 1110 of file ipsec_cli.c.

◆ ipsec_tun_protect_show_node

vlib_cli_command_t ipsec_tun_protect_show_node
static
Initial value:
=
{
.path = "show ipsec protect",
.short_help = "show ipsec protect",
}
static clib_error_t * ipsec_tun_protect_show(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:1042

show IPSEC tunnel protection

(constructor) VLIB_CLI_COMMAND (ipsec_tun_protect_show_node)

Definition at line 1054 of file ipsec_cli.c.

◆ set_async_mode_command

vlib_cli_command_t set_async_mode_command
static
Initial value:
= {
.path = "set ipsec async mode",
.short_help = "set ipsec async mode on|off",
}
static clib_error_t * set_async_mode_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:1127

(constructor) VLIB_CLI_COMMAND (set_async_mode_command)

Definition at line 1155 of file ipsec_cli.c.

◆ set_interface_spd_command

vlib_cli_command_t set_interface_spd_command
static
Initial value:
= {
.path = "set interface ipsec spd",
.short_help =
"set interface ipsec spd <int> <id>",
}
static clib_error_t * set_interface_spd_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:29

(constructor) VLIB_CLI_COMMAND (set_interface_spd_command)

Definition at line 75 of file ipsec_cli.c.

◆ show_ipsec_command

vlib_cli_command_t show_ipsec_command
static
Initial value:
= {
.path = "show ipsec all",
.short_help = "show ipsec all",
.function = show_ipsec_command_fn,
}
static clib_error_t * show_ipsec_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:479

(constructor) VLIB_CLI_COMMAND (show_ipsec_command)

Definition at line 496 of file ipsec_cli.c.

◆ show_ipsec_sa_command

vlib_cli_command_t show_ipsec_sa_command
static
Initial value:
= {
.path = "show ipsec sa",
.short_help = "show ipsec sa [index]",
}
static clib_error_t * show_ipsec_sa_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:504

(constructor) VLIB_CLI_COMMAND (show_ipsec_sa_command)

Definition at line 565 of file ipsec_cli.c.

◆ show_ipsec_spd_command

vlib_cli_command_t show_ipsec_spd_command
static
Initial value:
= {
.path = "show ipsec spd",
.short_help = "show ipsec spd [index]",
}
static clib_error_t * show_ipsec_spd_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:579

(constructor) VLIB_CLI_COMMAND (show_ipsec_spd_command)

Definition at line 607 of file ipsec_cli.c.

◆ show_ipsec_tunnel_command

vlib_cli_command_t show_ipsec_tunnel_command
static
Initial value:
= {
.path = "show ipsec tunnel",
.short_help = "show ipsec tunnel",
}
static clib_error_t * show_ipsec_tunnel_command_fn(vlib_main_t *vm, unformat_input_t *input, vlib_cli_command_t *cmd)
Definition: ipsec_cli.c:615

(constructor) VLIB_CLI_COMMAND (show_ipsec_tunnel_command)

Definition at line 625 of file ipsec_cli.c.