FD.io VPP  v21.06-3-gbb25fbf28
Vector Packet Processing
ipsec_types_api.c
Go to the documentation of this file.
1 /*
2  * Copyright (c) 2019 Cisco and/or its affiliates.
3  * Licensed under the Apache License, Version 2.0 (the "License");
4  * you may not use this file except in compliance with the License.
5  * You may obtain a copy of the License at:
6  *
7  * http://www.apache.org/licenses/LICENSE-2.0
8  *
9  * Unless required by applicable law or agreed to in writing, software
10  * distributed under the License is distributed on an "AS IS" BASIS,
11  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12  * See the License for the specific language governing permissions and
13  * limitations under the License.
14  */
15 
16 
18 #include <vlibapi/api_types.h>
19 
20 #define vl_typedefs /* define message structures */
21 #include <vnet/vnet_all_api_h.h>
22 #undef vl_typedefs
23 
24 int
25 ipsec_proto_decode (vl_api_ipsec_proto_t in, ipsec_protocol_t * out)
26 {
27  in = clib_net_to_host_u32 (in);
28 
29  switch (in)
30  {
32  *out = IPSEC_PROTOCOL_ESP;
33  return (0);
34  case IPSEC_API_PROTO_AH:
35  *out = IPSEC_PROTOCOL_AH;
36  return (0);
37  }
38  return (VNET_API_ERROR_INVALID_PROTOCOL);
39 }
40 
41 vl_api_ipsec_proto_t
42 ipsec_proto_encode (ipsec_protocol_t p)
43 {
44  switch (p)
45  {
46  case IPSEC_PROTOCOL_ESP:
47  return clib_host_to_net_u32 (IPSEC_API_PROTO_ESP);
48  case IPSEC_PROTOCOL_AH:
49  return clib_host_to_net_u32 (IPSEC_API_PROTO_AH);
50  }
51  return (VNET_API_ERROR_UNIMPLEMENTED);
52 }
53 
54 int
55 ipsec_crypto_algo_decode (vl_api_ipsec_crypto_alg_t in,
56  ipsec_crypto_alg_t * out)
57 {
58  in = clib_net_to_host_u32 (in);
59 
60  switch (in)
61  {
62 #define _(v,f,s) case IPSEC_API_CRYPTO_ALG_##f: \
63  *out = IPSEC_CRYPTO_ALG_##f; \
64  return (0);
66 #undef _
67  }
68  return (VNET_API_ERROR_INVALID_ALGORITHM);
69 }
70 
71 vl_api_ipsec_crypto_alg_t
72 ipsec_crypto_algo_encode (ipsec_crypto_alg_t c)
73 {
74  switch (c)
75  {
76 #define _(v,f,s) case IPSEC_CRYPTO_ALG_##f: \
77  return clib_host_to_net_u32(IPSEC_API_CRYPTO_ALG_##f);
79 #undef _
80  case IPSEC_CRYPTO_N_ALG:
81  break;
82  }
83  ASSERT (0);
84  return (VNET_API_ERROR_UNIMPLEMENTED);
85 }
86 
87 int
88 ipsec_integ_algo_decode (vl_api_ipsec_integ_alg_t in, ipsec_integ_alg_t * out)
89 {
90  in = clib_net_to_host_u32 (in);
91 
92  switch (in)
93  {
94 #define _(v,f,s) case IPSEC_API_INTEG_ALG_##f: \
95  *out = IPSEC_INTEG_ALG_##f; \
96  return (0);
98 #undef _
99  }
100  return (VNET_API_ERROR_INVALID_ALGORITHM);
101 }
102 
103 vl_api_ipsec_integ_alg_t
104 ipsec_integ_algo_encode (ipsec_integ_alg_t i)
105 {
106  switch (i)
107  {
108 #define _(v,f,s) case IPSEC_INTEG_ALG_##f: \
109  return (clib_host_to_net_u32(IPSEC_API_INTEG_ALG_##f));
111 #undef _
112  case IPSEC_INTEG_N_ALG:
113  break;
114  }
115  ASSERT (0);
116  return (VNET_API_ERROR_UNIMPLEMENTED);
117 }
118 
119 void
120 ipsec_key_decode (const vl_api_key_t * key, ipsec_key_t * out)
121 {
122  ipsec_mk_key (out, key->data, key->length);
123 }
124 
125 void
126 ipsec_key_encode (const ipsec_key_t * in, vl_api_key_t * out)
127 {
128  out->length = in->len;
129  clib_memcpy (out->data, in->data, out->length);
130 }
131 
133 ipsec_sa_flags_decode (vl_api_ipsec_sad_flags_t in)
134 {
135  ipsec_sa_flags_t flags = IPSEC_SA_FLAG_NONE;
136  in = clib_net_to_host_u32 (in);
137 
139  flags |= IPSEC_SA_FLAG_USE_ESN;
141  flags |= IPSEC_SA_FLAG_USE_ANTI_REPLAY;
143  flags |= IPSEC_SA_FLAG_IS_TUNNEL;
145  flags |= IPSEC_SA_FLAG_IS_TUNNEL_V6;
147  flags |= IPSEC_SA_FLAG_UDP_ENCAP;
149  flags |= IPSEC_SA_FLAG_IS_INBOUND;
150  if (in & IPSEC_API_SAD_FLAG_ASYNC)
151  flags |= IPSEC_SA_FLAG_IS_ASYNC;
152 
153  return (flags);
154 }
155 
156 vl_api_ipsec_sad_flags_t
158 {
159  vl_api_ipsec_sad_flags_t flags = IPSEC_API_SAD_FLAG_NONE;
160 
161  if (ipsec_sa_is_set_USE_ESN (sa))
163  if (ipsec_sa_is_set_USE_ANTI_REPLAY (sa))
165  if (ipsec_sa_is_set_IS_TUNNEL (sa))
167  if (ipsec_sa_is_set_IS_TUNNEL_V6 (sa))
169  if (ipsec_sa_is_set_UDP_ENCAP (sa))
171  if (ipsec_sa_is_set_IS_INBOUND (sa))
173  if (ipsec_sa_is_set_IS_ASYNC (sa))
175 
176  return clib_host_to_net_u32 (flags);
177 }
178 
179 /*
180  * fd.io coding-style-patch-verification: ON
181  *
182  * Local Variables:
183  * eval: (c-set-style "gnu")
184  * End:
185  */
ipsec_integ_algo_decode
int ipsec_integ_algo_decode(vl_api_ipsec_integ_alg_t in, ipsec_integ_alg_t *out)
Definition: ipsec_types_api.c:88
IPSEC_API_SAD_FLAG_ASYNC
@ IPSEC_API_SAD_FLAG_ASYNC
Definition: ipsec_types.api:78
clib_memcpy
#define clib_memcpy(d, s, n)
Definition: string.h:197
IPSEC_API_SAD_FLAG_USE_ANTI_REPLAY
@ IPSEC_API_SAD_FLAG_USE_ANTI_REPLAY
Definition: ipsec_types.api:67
api_types.h
ipsec_key_encode
void ipsec_key_encode(const ipsec_key_t *in, vl_api_key_t *out)
Definition: ipsec_types_api.c:126
ipsec_proto_encode
vl_api_ipsec_proto_t ipsec_proto_encode(ipsec_protocol_t p)
Definition: ipsec_types_api.c:42
IPSEC_PROTOCOL_ESP
@ IPSEC_PROTOCOL_ESP
Definition: ipsec_sa.h:76
key
typedef key
Definition: ipsec_types.api:88
ipsec_key_decode
void ipsec_key_decode(const vl_api_key_t *key, ipsec_key_t *out)
Definition: ipsec_types_api.c:120
ipsec_key_t_::data
u8 data[IPSEC_KEY_MAX_LEN]
Definition: ipsec_sa.h:83
IPSEC_API_SAD_FLAG_IS_INBOUND
@ IPSEC_API_SAD_FLAG_IS_INBOUND
Definition: ipsec_types.api:76
ipsec_sa_flags_t
enum ipsec_sad_flags_t_ ipsec_sa_flags_t
IPSEC_API_SAD_FLAG_USE_ESN
@ IPSEC_API_SAD_FLAG_USE_ESN
Definition: ipsec_types.api:65
foreach_ipsec_integ_alg
#define foreach_ipsec_integ_alg
Definition: ipsec_sa.h:56
IPSEC_API_SAD_FLAG_UDP_ENCAP
@ IPSEC_API_SAD_FLAG_UDP_ENCAP
Definition: ipsec_types.api:74
c
svmdb_client_t * c
Definition: vpp_get_metrics.c:48
IPSEC_API_SAD_FLAG_NONE
@ IPSEC_API_SAD_FLAG_NONE
Definition: ipsec_types.api:63
i
sll srl srl sll sra u16x4 i
Definition: vector_sse42.h:261
IPSEC_API_SAD_FLAG_IS_TUNNEL
@ IPSEC_API_SAD_FLAG_IS_TUNNEL
Definition: ipsec_types.api:69
ipsec_key_t_
Definition: ipsec_sa.h:80
IPSEC_CRYPTO_N_ALG
@ IPSEC_CRYPTO_N_ALG
Definition: ipsec_sa.h:43
ipsec_sa_t
Definition: ipsec_sa.h:116
ipsec_mk_key
void ipsec_mk_key(ipsec_key_t *key, const u8 *data, u8 len)
Definition: ipsec_sa.c:57
ipsec_key_t_::len
u8 len
Definition: ipsec_sa.h:82
ASSERT
#define ASSERT(truth)
Definition: error_bootstrap.h:69
IPSEC_API_PROTO_AH
@ IPSEC_API_PROTO_AH
Definition: ipsec_types.api:84
ipsec_proto_decode
int ipsec_proto_decode(vl_api_ipsec_proto_t in, ipsec_protocol_t *out)
Encode/decode function from/to API to internal types.
Definition: ipsec_types_api.c:25
IPSEC_PROTOCOL_AH
@ IPSEC_PROTOCOL_AH
Definition: ipsec_sa.h:75
ipsec_sad_flags_encode
vl_api_ipsec_sad_flags_t ipsec_sad_flags_encode(const ipsec_sa_t *sa)
Definition: ipsec_types_api.c:157
ipsec_types_api.h
IPSEC_API_PROTO_ESP
@ IPSEC_API_PROTO_ESP
Definition: ipsec_types.api:83
vnet_all_api_h.h
IPSEC_INTEG_N_ALG
@ IPSEC_INTEG_N_ALG
Definition: ipsec_sa.h:70
ipsec_crypto_algo_encode
vl_api_ipsec_crypto_alg_t ipsec_crypto_algo_encode(ipsec_crypto_alg_t c)
Definition: ipsec_types_api.c:72
foreach_ipsec_crypto_alg
#define foreach_ipsec_crypto_alg
Definition: ipsec_sa.h:24
IPSEC_API_SAD_FLAG_IS_TUNNEL_V6
@ IPSEC_API_SAD_FLAG_IS_TUNNEL_V6
Definition: ipsec_types.api:72
ipsec_crypto_algo_decode
int ipsec_crypto_algo_decode(vl_api_ipsec_crypto_alg_t in, ipsec_crypto_alg_t *out)
Definition: ipsec_types_api.c:55
ipsec_integ_algo_encode
vl_api_ipsec_integ_alg_t ipsec_integ_algo_encode(ipsec_integ_alg_t i)
Definition: ipsec_types_api.c:104
ipsec_sa_flags_decode
ipsec_sa_flags_t ipsec_sa_flags_decode(vl_api_ipsec_sad_flags_t in)
Definition: ipsec_types_api.c:133
flags
vl_api_wireguard_peer_flags_t flags
Definition: wireguard.api:105