X-Git-Url: https://gerrit.fd.io/r/gitweb?a=blobdiff_plain;f=src%2Fplugins%2Fikev2%2Fikev2.api;h=9f44cba1661a814f3c83408f035445de56df0ec7;hb=d7fc12f07;hp=53f4d7736c5e9280b6d907421603892438ecca03;hpb=ac46e3b1db9e2dc49e2fb72545f7d5157a78af2a;p=vpp.git diff --git a/src/plugins/ikev2/ikev2.api b/src/plugins/ikev2/ikev2.api index 53f4d7736c5..9f44cba1661 100644 --- a/src/plugins/ikev2/ikev2.api +++ b/src/plugins/ikev2/ikev2.api @@ -1,6 +1,6 @@ /* Hey Emacs use -*- mode: C -*- */ /* - * Copyright (c) 2015-2016 Cisco and/or its affiliates. + * Copyright (c) 2015-2020 Cisco and/or its affiliates. * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at: @@ -64,6 +64,129 @@ define ikev2_profile_details option status="in_progress"; }; +/** \brief Dump all SAs + @param client_index - opaque cookie to identify the sender + @param context - sender context, to match reply w/ request +*/ +define ikev2_sa_dump +{ + u32 client_index; + u32 context; + + option status = "in_progress"; +}; + +/** \brief Details about IKE SA + @param context - sender context, to match reply w/ request + @param retval - return code + @param sa - SA data +*/ +define ikev2_sa_details +{ + u32 context; + i32 retval; + + vl_api_ikev2_sa_t sa; + option status = "in_progress"; +}; + +/** \brief Dump child SA of specific SA + @param client_index - opaque cookie to identify the sender + @param context - sender context, to match reply w/ request + @param sa_index - index of specific sa +*/ +define ikev2_child_sa_dump +{ + u32 client_index; + u32 context; + + u32 sa_index; + option vat_help = "sa_index "; + option status = "in_progress"; +}; + +/** \brief Child SA details + @param context - sender context, to match reply w/ request + @param retval - return code + @param child_sa - child SA data +*/ +define ikev2_child_sa_details +{ + u32 context; + i32 retval; + + vl_api_ikev2_child_sa_t child_sa; + option status = "in_progress"; +}; + +/** \brief get specific nonce + @param client_index - opaque cookie to identify the sender + @param context - sender context, to match reply w/ request + @param is_initiator - specify type initiator|responder of nonce + @param sa_index - index of specific sa +*/ +define ikev2_nonce_get +{ + u32 client_index; + u32 context; + + bool is_initiator; + u32 sa_index; + option vat_help = "initiator|responder sa_index "; + option status = "in_progress"; +}; + +/** \brief reply on specific nonce + @param context - sender context, to match reply w/ request + @param retval - return code + @param data_len - nonce length + @param nonce - nonce data +*/ + +define ikev2_nonce_get_reply +{ + u32 context; + i32 retval; + + u32 data_len; + u8 nonce[data_len]; + option status = "in_progress"; +}; + +/** \brief dump traffic selectors + @param client_index - opaque cookie to identify the sender + @param context - sender context, to match reply w/ request + @param is_initiator - specify type initiator|responder of nonce + @param sa_index - index of specific sa + @param child_sa_index - index of specific sa child of specific sa +*/ + +define ikev2_traffic_selector_dump +{ + u32 client_index; + u32 context; + + bool is_initiator; + u32 sa_index; + u32 child_sa_index; + option vat_help = "initiator|responder sa_index child_sa_index "; + option status = "in_progress"; +}; + +/** \brief details on specific traffic selector + @param context - sender context, to match reply w/ request + @param retval - return code + @param ts - traffic selector data +*/ + +define ikev2_traffic_selector_details +{ + u32 context; + i32 retval; + + vl_api_ikev2_ts_t ts; + option status = "in_progress"; +}; /** \brief IKEv2: Add/delete profile @param client_index - opaque cookie to identify the sender @@ -128,16 +251,25 @@ autoreply define ikev2_profile_set_id option status="in_progress"; }; +/** \brief IKEv2: Disable NAT traversal + @param client_index - opaque cookie to identify the sender + @param context - sender context, to match reply w/ request + @param name - IKEv2 profile name +*/ +autoreply define ikev2_profile_disable_natt +{ + u32 client_index; + u32 context; + + string name[64]; + option status="in_progress"; +}; + /** \brief IKEv2: Set IKEv2 profile traffic selector parameters @param client_index - opaque cookie to identify the sender @param context - sender context, to match reply w/ request @param name - IKEv2 profile name - @param is_local - Traffic selector is local if non-zero, else remote - @param proto - Traffic selector IP protocol (if zero not relevant) - @param start_port - The smallest port number allowed by traffic selector - @param end_port - The largest port number allowed by traffic selector - @param start_addr - The smallest address included in traffic selector - @param end_addr - The largest address included in traffic selector + @param ts - traffic selector data */ autoreply define ikev2_profile_set_ts { @@ -145,20 +277,14 @@ autoreply define ikev2_profile_set_ts u32 context; string name[64]; - bool is_local; - u8 proto; - u16 start_port; - u16 end_port; - u32 start_addr; - u32 end_addr; - option vat_help = "name protocol start_port end_port start_addr end_addr (local|remote)"; + vl_api_ikev2_ts_t ts; + option vat_help = "name protocol start_port end_port start_addr end_addr (local|remote)"; option status="in_progress"; }; /** \brief IKEv2: Set IKEv2 local RSA private key @param client_index - opaque cookie to identify the sender @param context - sender context, to match reply w/ request - @param key_file - Key file absolute path */ autoreply define ikev2_set_local_key @@ -192,8 +318,7 @@ autoreply define ikev2_set_tunnel_interface @param client_index - opaque cookie to identify the sender @param context - sender context, to match reply w/ request @param name - IKEv2 profile name - @param sw_if_index - interface index - @param address - interface address + @param responder - responder data */ autoreply define ikev2_set_responder { @@ -201,8 +326,7 @@ autoreply define ikev2_set_responder u32 context; string name[64]; - vl_api_interface_index_t sw_if_index; - vl_api_ip4_address_t address; + vl_api_ikev2_responder_t responder; option vat_help = " interface address "; option status="in_progress"; }; @@ -211,10 +335,7 @@ autoreply define ikev2_set_responder @param client_index - opaque cookie to identify the sender @param context - sender context, to match reply w/ request @param name - IKEv2 profile name - @param crypto_alg - encryption algorithm - @param crypto_key_size - encryption key size - @param integ_alg - integrity algorithm - @param dh_group - Diffie-Hellman group + @param tr - IKE transforms */ autoreply define ikev2_set_ike_transforms { @@ -222,10 +343,7 @@ autoreply define ikev2_set_ike_transforms u32 context; string name[64]; - u32 crypto_alg; - u32 crypto_key_size; - u32 integ_alg; - u32 dh_group; + vl_api_ikev2_ike_transforms_t tr; option vat_help = " "; option status="in_progress"; }; @@ -234,10 +352,7 @@ autoreply define ikev2_set_ike_transforms @param client_index - opaque cookie to identify the sender @param context - sender context, to match reply w/ request @param name - IKEv2 profile name - @param crypto_alg - encryption algorithm - @param crypto_key_size - encryption key size - @param integ_alg - integrity algorithm - @param dh_group - Diffie-Hellman group + @param tr - ESP transforms */ autoreply define ikev2_set_esp_transforms { @@ -245,11 +360,8 @@ autoreply define ikev2_set_esp_transforms u32 context; string name[64]; - u32 crypto_alg; - u32 crypto_key_size; - u32 integ_alg; - u32 dh_group; - option vat_help = " "; + vl_api_ikev2_esp_transforms_t tr; + option vat_help = " "; option status="in_progress"; };