2 * Copyright (c) 2015 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vlib/vlib.h>
17 #include <vlib/unix/plugin.h>
18 #include <vlibmemory/api.h>
19 #include <vpp/app/version.h>
20 #include <vnet/vnet.h>
21 #include <vppinfra/error.h>
22 #include <vppinfra/random.h>
23 #include <vnet/udp/udp.h>
24 #include <vnet/ipsec/ipsec.h>
25 #include <vnet/ipsec/ipsec_tun.h>
26 #include <vnet/ipip/ipip.h>
27 #include <plugins/ikev2/ikev2.h>
28 #include <plugins/ikev2/ikev2_priv.h>
29 #include <openssl/sha.h>
30 #include <vnet/ipsec/ipsec_punt.h>
31 #include <plugins/ikev2/ikev2.api_enum.h>
33 #define IKEV2_LIVENESS_RETRIES 3
34 #define IKEV2_LIVENESS_PERIOD_CHECK 30
36 ikev2_main_t ikev2_main;
38 static int ikev2_delete_tunnel_interface (vnet_main_t * vnm,
40 ikev2_child_sa_t * child);
42 #define ikev2_set_state(sa, v, ...) do { \
44 ikev2_elog_sa_state("ispi %lx SA state changed to " #v __VA_ARGS__, sa->ispi); \
54 format_ikev2_trace (u8 * s, va_list * args)
56 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
57 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
58 ikev2_trace_t *t = va_arg (*args, ikev2_trace_t *);
60 s = format (s, "ikev2: sw_if_index %d, next index %d",
61 t->sw_if_index, t->next_index);
65 #define IKEV2_GENERATE_SA_INIT_OK_str ""
66 #define IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR \
67 "no DH group configured for IKE proposals!"
68 #define IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR \
69 "DH group not supported!"
73 IKEV2_GENERATE_SA_INIT_OK,
74 IKEV2_GENERATE_SA_INIT_ERR_NO_DH,
75 IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH,
76 } ikev2_generate_sa_error_t;
79 format_ikev2_gen_sa_error (u8 * s, va_list * args)
81 ikev2_generate_sa_error_t e = va_arg (*args, ikev2_generate_sa_error_t);
84 case IKEV2_GENERATE_SA_INIT_OK:
86 case IKEV2_GENERATE_SA_INIT_ERR_NO_DH:
87 s = format (s, IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR);
89 case IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH:
90 s = format (s, IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR);
98 IKEV2_NEXT_IP4_LOOKUP,
99 IKEV2_NEXT_IP4_ERROR_DROP,
105 IKEV2_NEXT_IP6_LOOKUP,
106 IKEV2_NEXT_IP6_ERROR_DROP,
110 typedef u32 ikev2_non_esp_marker;
112 static_always_inline u16
113 ikev2_get_port (ikev2_sa_t * sa)
115 return ikev2_natt_active (sa) ? IKEV2_PORT_NATT : IKEV2_PORT;
118 static_always_inline int
119 ikev2_insert_non_esp_marker (ike_header_t * ike, int len)
121 memmove ((u8 *) ike + sizeof (ikev2_non_esp_marker), ike, len);
122 clib_memset (ike, 0, sizeof (ikev2_non_esp_marker));
123 return len + sizeof (ikev2_non_esp_marker);
126 static ikev2_sa_transform_t *
127 ikev2_find_transform_data (ikev2_sa_transform_t * t)
129 ikev2_main_t *km = &ikev2_main;
130 ikev2_sa_transform_t *td;
132 vec_foreach (td, km->supported_transforms)
134 if (td->type != t->type)
137 if (td->transform_id != t->transform_id)
140 if (td->type == IKEV2_TRANSFORM_TYPE_ENCR)
142 if (vec_len (t->attrs) != 4 || t->attrs[0] != 0x80
143 || t->attrs[1] != 14)
146 if (((t->attrs[2] << 8 | t->attrs[3]) / 8) != td->key_len)
154 static ikev2_sa_proposal_t *
155 ikev2_select_proposal (ikev2_sa_proposal_t * proposals,
156 ikev2_protocol_id_t prot_id)
158 ikev2_sa_proposal_t *rv = 0;
159 ikev2_sa_proposal_t *proposal;
160 ikev2_sa_transform_t *transform, *new_t;
161 u8 mandatory_bitmap, optional_bitmap;
163 if (prot_id == IKEV2_PROTOCOL_IKE)
165 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_ENCR) |
166 (1 << IKEV2_TRANSFORM_TYPE_PRF) | (1 << IKEV2_TRANSFORM_TYPE_DH);
167 optional_bitmap = mandatory_bitmap | (1 << IKEV2_TRANSFORM_TYPE_INTEG);
169 else if (prot_id == IKEV2_PROTOCOL_ESP)
171 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_ENCR) |
172 (1 << IKEV2_TRANSFORM_TYPE_ESN);
173 optional_bitmap = mandatory_bitmap |
174 (1 << IKEV2_TRANSFORM_TYPE_INTEG) | (1 << IKEV2_TRANSFORM_TYPE_DH);
176 else if (prot_id == IKEV2_PROTOCOL_AH)
178 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_INTEG) |
179 (1 << IKEV2_TRANSFORM_TYPE_ESN);
180 optional_bitmap = mandatory_bitmap | (1 << IKEV2_TRANSFORM_TYPE_DH);
185 vec_add2 (rv, proposal, 1);
187 vec_foreach (proposal, proposals)
190 if (proposal->protocol_id != prot_id)
193 vec_foreach (transform, proposal->transforms)
195 if ((1 << transform->type) & bitmap)
198 if (ikev2_find_transform_data (transform))
200 bitmap |= 1 << transform->type;
201 vec_add2 (rv->transforms, new_t, 1);
202 clib_memcpy_fast (new_t, transform, sizeof (*new_t));
203 new_t->attrs = vec_dup (transform->attrs);
207 if ((bitmap & mandatory_bitmap) == mandatory_bitmap &&
208 (bitmap & ~optional_bitmap) == 0)
210 rv->proposal_num = proposal->proposal_num;
211 rv->protocol_id = proposal->protocol_id;
212 RAND_bytes ((u8 *) & rv->spi, sizeof (rv->spi));
217 vec_free (rv->transforms);
226 ikev2_sa_transform_t *
227 ikev2_sa_get_td_for_type (ikev2_sa_proposal_t * p,
228 ikev2_transform_type_t type)
230 ikev2_sa_transform_t *t;
235 vec_foreach (t, p->transforms)
238 return ikev2_find_transform_data (t);
244 ikev2_sa_get_child (ikev2_sa_t * sa, u32 spi, ikev2_protocol_id_t prot_id,
248 vec_foreach (c, sa->childs)
250 ikev2_sa_proposal_t *proposal =
251 by_initiator ? &c->i_proposals[0] : &c->r_proposals[0];
252 if (proposal && proposal->spi == spi && proposal->protocol_id == prot_id)
260 ikev2_sa_free_proposal_vector (ikev2_sa_proposal_t ** v)
262 ikev2_sa_proposal_t *p;
263 ikev2_sa_transform_t *t;
270 vec_foreach (t, p->transforms)
274 vec_free (p->transforms);
280 ikev2_sa_free_child_sa (ikev2_child_sa_t * c)
282 ikev2_sa_free_proposal_vector (&c->r_proposals);
283 ikev2_sa_free_proposal_vector (&c->i_proposals);
293 ikev2_sa_free_all_child_sa (ikev2_child_sa_t ** childs)
296 vec_foreach (c, *childs) ikev2_sa_free_child_sa (c);
302 ikev2_sa_del_child_sa (ikev2_sa_t * sa, ikev2_child_sa_t * child)
304 ikev2_sa_free_child_sa (child);
305 vec_del1 (sa->childs, child - sa->childs);
309 ikev2_sa_free_all_vec (ikev2_sa_t * sa)
311 vec_free (sa->i_nonce);
312 vec_free (sa->r_nonce);
314 vec_free (sa->dh_shared_key);
315 vec_free (sa->dh_private_key);
316 vec_free (sa->i_dh_data);
317 vec_free (sa->r_dh_data);
319 ikev2_sa_free_proposal_vector (&sa->r_proposals);
320 ikev2_sa_free_proposal_vector (&sa->i_proposals);
323 vec_free (sa->sk_ai);
324 vec_free (sa->sk_ar);
325 vec_free (sa->sk_ei);
326 vec_free (sa->sk_er);
327 vec_free (sa->sk_pi);
328 vec_free (sa->sk_pr);
330 vec_free (sa->i_id.data);
331 vec_free (sa->r_id.data);
333 vec_free (sa->i_auth.data);
335 EVP_PKEY_free (sa->i_auth.key);
336 vec_free (sa->r_auth.data);
338 EVP_PKEY_free (sa->r_auth.key);
342 vec_free (sa->rekey);
344 vec_free (sa->last_sa_init_req_packet_data);
345 vec_free (sa->last_sa_init_res_packet_data);
347 vec_free (sa->last_res_packet_data);
349 ikev2_sa_free_all_child_sa (&sa->childs);
353 ikev2_delete_sa (ikev2_main_per_thread_data_t * ptd, ikev2_sa_t * sa)
357 ikev2_sa_free_all_vec (sa);
359 p = hash_get (ptd->sa_by_rspi, sa->rspi);
362 hash_unset (ptd->sa_by_rspi, sa->rspi);
363 pool_put (ptd->sas, sa);
367 static ikev2_generate_sa_error_t
368 ikev2_generate_sa_init_data (ikev2_sa_t * sa)
370 ikev2_sa_transform_t *t = 0, *t2;
371 ikev2_main_t *km = &ikev2_main;
373 if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
374 return IKEV2_GENERATE_SA_INIT_ERR_NO_DH;
376 /* check if received DH group is on our list of supported groups */
377 vec_foreach (t2, km->supported_transforms)
379 if (t2->type == IKEV2_TRANSFORM_TYPE_DH && sa->dh_group == t2->dh_type)
388 sa->dh_group = IKEV2_TRANSFORM_DH_TYPE_NONE;
389 return IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH;
392 if (sa->is_initiator)
395 RAND_bytes ((u8 *) & sa->ispi, 8);
398 sa->i_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
399 RAND_bytes ((u8 *) sa->i_nonce, IKEV2_NONCE_SIZE);
404 RAND_bytes ((u8 *) & sa->rspi, 8);
407 sa->r_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
408 RAND_bytes ((u8 *) sa->r_nonce, IKEV2_NONCE_SIZE);
411 /* generate dh keys */
412 ikev2_generate_dh (sa, t);
414 return IKEV2_GENERATE_SA_INIT_OK;
418 ikev2_complete_sa_data (ikev2_sa_t * sa, ikev2_sa_t * sai)
420 ikev2_sa_transform_t *t = 0, *t2;
421 ikev2_main_t *km = &ikev2_main;
423 /*move some data to the new SA */
424 #define _(A) ({void* __tmp__ = (A); (A) = 0; __tmp__;})
425 sa->i_nonce = _(sai->i_nonce);
426 sa->i_dh_data = _(sai->i_dh_data);
427 sa->dh_private_key = _(sai->dh_private_key);
428 ip_address_copy (&sa->iaddr, &sai->iaddr);
429 ip_address_copy (&sa->raddr, &sai->raddr);
430 sa->is_initiator = sai->is_initiator;
431 sa->i_id.type = sai->i_id.type;
432 sa->r_id.type = sai->r_id.type;
433 sa->profile_index = sai->profile_index;
434 sa->tun_itf = sai->tun_itf;
435 sa->is_tun_itf_set = sai->is_tun_itf_set;
436 if (sai->natt_state == IKEV2_NATT_DISABLED)
437 sa->natt_state = IKEV2_NATT_DISABLED;
438 sa->i_id.data = _(sai->i_id.data);
439 sa->r_id.data = _(sai->r_id.data);
440 sa->i_auth.method = sai->i_auth.method;
441 sa->i_auth.hex = sai->i_auth.hex;
442 sa->i_auth.data = _(sai->i_auth.data);
443 sa->i_auth.key = _(sai->i_auth.key);
444 sa->last_sa_init_req_packet_data = _(sai->last_sa_init_req_packet_data);
445 sa->last_init_msg_id = sai->last_init_msg_id;
446 sa->childs = _(sai->childs);
447 sa->udp_encap = sai->udp_encap;
448 sa->ipsec_over_udp_port = sai->ipsec_over_udp_port;
449 sa->dst_port = sai->dst_port;
450 sa->sw_if_index = sai->sw_if_index;
454 if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
459 /* check if received DH group is on our list of supported groups */
460 vec_foreach (t2, km->supported_transforms)
462 if (t2->type == IKEV2_TRANSFORM_TYPE_DH && sa->dh_group == t2->dh_type)
471 sa->dh_group = IKEV2_TRANSFORM_DH_TYPE_NONE;
476 /* generate dh keys */
477 ikev2_complete_dh (sa, t);
482 ikev2_calc_keys (ikev2_sa_t * sa)
485 /* calculate SKEYSEED = prf(Ni | Nr, g^ir) */
488 u16 integ_key_len = 0, salt_len = 0;
489 ikev2_sa_transform_t *tr_encr, *tr_prf, *tr_integ;
491 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
493 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
495 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
498 integ_key_len = tr_integ->key_len;
500 salt_len = sizeof (u32);
502 vec_append (s, sa->i_nonce);
503 vec_append (s, sa->r_nonce);
504 skeyseed = ikev2_calc_prf (tr_prf, s, sa->dh_shared_key);
506 /* Calculate S = Ni | Nr | SPIi | SPIr */
508 vec_add2 (s, tmp, 2 * sizeof (*spi));
510 spi[0] = clib_host_to_net_u64 (sa->ispi);
511 spi[1] = clib_host_to_net_u64 (sa->rspi);
513 /* calculate PRFplus */
515 int len = tr_prf->key_trunc + /* SK_d */
516 integ_key_len * 2 + /* SK_ai, SK_ar */
517 tr_encr->key_len * 2 + /* SK_ei, SK_er */
518 tr_prf->key_len * 2 + /* SK_pi, SK_pr */
521 keymat = ikev2_calc_prfplus (tr_prf, skeyseed, s, len);
528 sa->sk_d = vec_new (u8, tr_prf->key_trunc);
529 clib_memcpy_fast (sa->sk_d, keymat + pos, tr_prf->key_trunc);
530 pos += tr_prf->key_trunc;
535 sa->sk_ai = vec_new (u8, integ_key_len);
536 clib_memcpy_fast (sa->sk_ai, keymat + pos, integ_key_len);
537 pos += integ_key_len;
540 sa->sk_ar = vec_new (u8, integ_key_len);
541 clib_memcpy_fast (sa->sk_ar, keymat + pos, integ_key_len);
542 pos += integ_key_len;
546 sa->sk_ei = vec_new (u8, tr_encr->key_len + salt_len);
547 clib_memcpy_fast (sa->sk_ei, keymat + pos, tr_encr->key_len + salt_len);
548 pos += tr_encr->key_len + salt_len;
551 sa->sk_er = vec_new (u8, tr_encr->key_len + salt_len);
552 clib_memcpy_fast (sa->sk_er, keymat + pos, tr_encr->key_len + salt_len);
553 pos += tr_encr->key_len + salt_len;
556 sa->sk_pi = vec_new (u8, tr_prf->key_len);
557 clib_memcpy_fast (sa->sk_pi, keymat + pos, tr_prf->key_len);
558 pos += tr_prf->key_len;
561 sa->sk_pr = vec_new (u8, tr_prf->key_len);
562 clib_memcpy_fast (sa->sk_pr, keymat + pos, tr_prf->key_len);
563 pos += tr_prf->key_len;
566 sa->keys_generated = 1;
570 ikev2_calc_child_keys (ikev2_sa_t * sa, ikev2_child_sa_t * child)
573 u16 integ_key_len = 0;
576 ikev2_sa_transform_t *tr_prf, *ctr_encr, *ctr_integ;
578 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
580 ikev2_sa_get_td_for_type (child->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
582 ikev2_sa_get_td_for_type (child->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
585 integ_key_len = ctr_integ->key_len;
587 salt_len = sizeof (u32);
589 vec_append (s, sa->i_nonce);
590 vec_append (s, sa->r_nonce);
591 /* calculate PRFplus */
593 int len = ctr_encr->key_len * 2 + integ_key_len * 2 + salt_len * 2;
595 keymat = ikev2_calc_prfplus (tr_prf, sa->sk_d, s, len);
600 child->sk_ei = vec_new (u8, ctr_encr->key_len);
601 clib_memcpy_fast (child->sk_ei, keymat + pos, ctr_encr->key_len);
602 pos += ctr_encr->key_len;
607 child->sk_ai = vec_new (u8, ctr_integ->key_len);
608 clib_memcpy_fast (child->sk_ai, keymat + pos, ctr_integ->key_len);
609 pos += ctr_integ->key_len;
613 clib_memcpy (&child->salt_ei, keymat + pos, salt_len);
618 child->sk_er = vec_new (u8, ctr_encr->key_len);
619 clib_memcpy_fast (child->sk_er, keymat + pos, ctr_encr->key_len);
620 pos += ctr_encr->key_len;
625 child->sk_ar = vec_new (u8, integ_key_len);
626 clib_memcpy_fast (child->sk_ar, keymat + pos, integ_key_len);
627 pos += integ_key_len;
631 clib_memcpy (&child->salt_er, keymat + pos, salt_len);
640 static_always_inline u8 *
641 ikev2_compute_nat_sha1 (u64 ispi, u64 rspi, ip_address_t * ia, u16 port)
643 const u32 max_buf_size =
644 sizeof (ispi) + sizeof (rspi) + sizeof (ip6_address_t) + sizeof (u16);
645 u8 buf[max_buf_size];
646 u8 *res = vec_new (u8, 20);
648 clib_memcpy_fast (&buf[0], &ispi, sizeof (ispi));
649 clib_memcpy_fast (&buf[8], &rspi, sizeof (rspi));
650 clib_memcpy_fast (&buf[8 + 8], ip_addr_bytes (ia), ip_address_size (ia));
651 clib_memcpy_fast (&buf[8 + 8 + ip_address_size (ia)], &port, sizeof (port));
652 SHA1 (buf, 2 * sizeof (ispi) + sizeof (port) + ip_address_size (ia), res);
657 ikev2_parse_ke_payload (const void *p, u32 rlen, ikev2_sa_t * sa,
660 const ike_ke_payload_header_t *ke = p;
661 u16 plen = clib_net_to_host_u16 (ke->length);
662 ASSERT (plen >= sizeof (*ke) && plen <= rlen);
663 if (sizeof (*ke) > rlen)
666 sa->dh_group = clib_net_to_host_u16 (ke->dh_group);
667 vec_reset_length (ke_data[0]);
668 vec_add (ke_data[0], ke->payload, plen - sizeof (*ke));
673 ikev2_parse_nonce_payload (const void *p, u32 rlen, u8 * nonce)
675 const ike_payload_header_t *ikep = p;
676 u16 plen = clib_net_to_host_u16 (ikep->length);
677 ASSERT (plen >= sizeof (*ikep) && plen <= rlen);
678 clib_memcpy_fast (nonce, ikep->payload, plen - sizeof (*ikep));
683 ikev2_check_payload_length (const ike_payload_header_t * ikep, int rlen,
686 if (sizeof (*ikep) > rlen)
688 *plen = clib_net_to_host_u16 (ikep->length);
689 if (*plen < sizeof (*ikep) || *plen > rlen)
695 ikev2_process_sa_init_req (vlib_main_t *vm, ikev2_sa_t *sa, ike_header_t *ike,
696 udp_header_t *udp, u32 len, u32 sw_if_index)
698 u8 nonce[IKEV2_NONCE_SIZE];
700 u8 payload = ike->nextpayload;
701 ike_payload_header_t *ikep;
704 ikev2_elog_exchange ("ispi %lx rspi %lx IKE_INIT request received "
705 "from ", clib_net_to_host_u64 (ike->ispi),
706 clib_net_to_host_u64 (ike->rspi),
707 ip_addr_v4 (&sa->iaddr).as_u32,
708 ip_addr_version (&sa->iaddr) == AF_IP4);
710 sa->ispi = clib_net_to_host_u64 (ike->ispi);
711 sa->sw_if_index = sw_if_index;
713 /* store whole IKE payload - needed for PSK auth */
714 vec_reset_length (sa->last_sa_init_req_packet_data);
715 vec_add (sa->last_sa_init_req_packet_data, ike, len);
717 if (len < sizeof (*ike))
720 len -= sizeof (*ike);
721 while (p < len && payload != IKEV2_PAYLOAD_NONE)
723 ikep = (ike_payload_header_t *) & ike->payload[p];
724 int current_length = len - p;
725 if (!ikev2_check_payload_length (ikep, current_length, &plen))
728 if (payload == IKEV2_PAYLOAD_SA)
730 ikev2_sa_free_proposal_vector (&sa->i_proposals);
731 sa->i_proposals = ikev2_parse_sa_payload (ikep, current_length);
733 else if (payload == IKEV2_PAYLOAD_KE)
735 if (!ikev2_parse_ke_payload (ikep, current_length, sa,
739 else if (payload == IKEV2_PAYLOAD_NONCE)
741 vec_reset_length (sa->i_nonce);
742 if (ikev2_parse_nonce_payload (ikep, current_length, nonce))
743 vec_add (sa->i_nonce, nonce, plen - sizeof (*ikep));
745 else if (payload == IKEV2_PAYLOAD_NOTIFY)
748 ikev2_parse_notify_payload (ikep, current_length);
749 if (n->msg_type == IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP)
751 u8 *src_sha = ikev2_compute_nat_sha1 (ike->ispi, 0, &sa->iaddr,
753 if (clib_memcmp (src_sha, n->data, vec_len (src_sha)))
755 if (sa->natt_state == IKEV2_NATT_ENABLED)
756 sa->natt_state = IKEV2_NATT_ACTIVE;
757 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx initiator"
758 " behind NAT", sa->ispi);
762 else if (n->msg_type ==
763 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP)
765 u8 *dst_sha = ikev2_compute_nat_sha1 (ike->ispi, 0, &sa->raddr,
767 if (clib_memcmp (dst_sha, n->data, vec_len (dst_sha)))
769 if (sa->natt_state == IKEV2_NATT_ENABLED)
770 sa->natt_state = IKEV2_NATT_ACTIVE;
771 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx responder"
772 " (self) behind NAT", sa->ispi);
778 else if (payload == IKEV2_PAYLOAD_VENDOR)
780 ikev2_parse_vendor_payload (ikep);
784 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
786 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
788 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
789 sa->unsupported_cp = payload;
794 payload = ikep->nextpayload;
798 ikev2_set_state (sa, IKEV2_STATE_SA_INIT);
803 ikev2_process_sa_init_resp (vlib_main_t * vm,
804 ikev2_sa_t * sa, ike_header_t * ike,
805 udp_header_t * udp, u32 len)
807 u8 nonce[IKEV2_NONCE_SIZE];
809 u8 payload = ike->nextpayload;
810 ike_payload_header_t *ikep;
813 sa->ispi = clib_net_to_host_u64 (ike->ispi);
814 sa->rspi = clib_net_to_host_u64 (ike->rspi);
816 ikev2_elog_exchange ("ispi %lx rspi %lx IKE_INIT response received "
817 "from ", sa->ispi, sa->rspi,
818 ip_addr_v4 (&sa->raddr).as_u32,
819 ip_addr_version (&sa->raddr) == AF_IP4);
821 /* store whole IKE payload - needed for PSK auth */
822 vec_reset_length (sa->last_sa_init_res_packet_data);
823 vec_add (sa->last_sa_init_res_packet_data, ike, len);
825 if (sizeof (*ike) > len)
828 len -= sizeof (*ike);
829 while (p < len && payload != IKEV2_PAYLOAD_NONE)
831 int current_length = len - p;
832 ikep = (ike_payload_header_t *) & ike->payload[p];
833 if (!ikev2_check_payload_length (ikep, current_length, &plen))
836 if (payload == IKEV2_PAYLOAD_SA)
838 ikev2_sa_free_proposal_vector (&sa->r_proposals);
839 sa->r_proposals = ikev2_parse_sa_payload (ikep, current_length);
842 ikev2_set_state (sa, IKEV2_STATE_SA_INIT);
844 clib_host_to_net_u32 (clib_net_to_host_u32 (ike->msgid) + 1);
847 else if (payload == IKEV2_PAYLOAD_KE)
849 if (!ikev2_parse_ke_payload (ikep, current_length, sa,
853 else if (payload == IKEV2_PAYLOAD_NONCE)
855 vec_reset_length (sa->r_nonce);
856 if (ikev2_parse_nonce_payload (ikep, current_length, nonce))
857 vec_add (sa->r_nonce, nonce, plen - sizeof (*ikep));
859 else if (payload == IKEV2_PAYLOAD_NOTIFY)
862 ikev2_parse_notify_payload (ikep, current_length);
863 if (n->msg_type == IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP)
865 u8 *src_sha = ikev2_compute_nat_sha1 (ike->ispi, ike->rspi,
868 if (clib_memcmp (src_sha, n->data, vec_len (src_sha)))
870 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx responder"
871 " behind NAT, unsupported", sa->ispi);
875 else if (n->msg_type ==
876 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP)
878 u8 *dst_sha = ikev2_compute_nat_sha1 (ike->ispi, ike->rspi,
881 if (clib_memcmp (dst_sha, n->data, vec_len (dst_sha)))
883 if (sa->natt_state == IKEV2_NATT_ENABLED)
884 sa->natt_state = IKEV2_NATT_ACTIVE;
885 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx initiator"
886 " (self) behind NAT", sa->ispi);
892 else if (payload == IKEV2_PAYLOAD_VENDOR)
894 ikev2_parse_vendor_payload (ikep);
898 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
900 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
902 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
903 sa->unsupported_cp = payload;
908 payload = ikep->nextpayload;
914 ikev2_decrypt_sk_payload (ikev2_sa_t * sa, ike_header_t * ike,
915 u8 * payload, u32 rlen, u32 * out_len)
917 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
919 u8 last_payload = 0, *hmac = 0, *plaintext = 0;
920 ike_payload_header_t *ikep = 0;
923 ikev2_sa_transform_t *tr_integ;
924 ikev2_sa_transform_t *tr_encr;
926 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
928 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
929 int is_aead = tr_encr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16;
931 if (((!sa->sk_ar || !sa->sk_ai) && !is_aead) || (!sa->sk_ei || !sa->sk_er))
934 if (rlen <= sizeof (*ike))
937 int len = rlen - sizeof (*ike);
939 *payload != IKEV2_PAYLOAD_NONE && last_payload != IKEV2_PAYLOAD_SK)
941 ikep = (ike_payload_header_t *) & ike->payload[p];
942 int current_length = len - p;
943 if (!ikev2_check_payload_length (ikep, current_length, &plen))
946 if (*payload == IKEV2_PAYLOAD_SK)
948 last_payload = *payload;
952 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
954 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
956 sa->unsupported_cp = *payload;
961 *payload = ikep->nextpayload;
965 if (last_payload != IKEV2_PAYLOAD_SK)
967 ikev2_elog_error ("Last payload must be SK");
973 if (plen < sizeof (*ikep) + IKEV2_GCM_ICV_SIZE)
976 plen -= sizeof (*ikep) + IKEV2_GCM_ICV_SIZE;
977 u8 *aad = (u8 *) ike;
978 u32 aad_len = ikep->payload - aad;
979 u8 *tag = ikep->payload + plen;
981 int rc = ikev2_decrypt_aead_data (ptd, sa, tr_encr, ikep->payload,
982 plen, aad, aad_len, tag, &dlen);
986 plaintext = ikep->payload + IKEV2_GCM_IV_SIZE;
991 if (rlen < tr_integ->key_trunc)
995 ikev2_calc_integr (tr_integ, sa->is_initiator ? sa->sk_ar : sa->sk_ai,
996 (u8 *) ike, rlen - tr_integ->key_trunc);
998 if (plen < sizeof (*ikep) + tr_integ->key_trunc)
1001 plen = plen - sizeof (*ikep) - tr_integ->key_trunc;
1003 if (clib_memcmp (hmac, &ikep->payload[plen], tr_integ->key_trunc))
1005 ikev2_elog_error ("message integrity check failed");
1011 int rc = ikev2_decrypt_data (ptd, sa, tr_encr, ikep->payload, plen,
1016 plaintext = ikep->payload + tr_encr->block_size;
1023 static_always_inline int
1024 ikev2_is_id_equal (ikev2_id_t * i1, ikev2_id_t * i2)
1026 if (i1->type != i2->type)
1029 if (vec_len (i1->data) != vec_len (i2->data))
1032 if (clib_memcmp (i1->data, i2->data, vec_len (i1->data)))
1039 ikev2_initial_contact_cleanup_internal (ikev2_main_per_thread_data_t * ptd,
1042 ikev2_main_t *km = &ikev2_main;
1045 ikev2_child_sa_t *c;
1047 /* find old IKE SAs with the same authenticated identity */
1049 pool_foreach (tmp, ptd->sas) {
1050 if (!ikev2_is_id_equal (&tmp->i_id, &sa->i_id)
1051 || !ikev2_is_id_equal(&tmp->r_id, &sa->r_id))
1054 if (sa->rspi != tmp->rspi)
1055 vec_add1(delete, tmp - ptd->sas);
1059 for (i = 0; i < vec_len (delete); i++)
1061 tmp = pool_elt_at_index (ptd->sas, delete[i]);
1062 vec_foreach (c, tmp->childs)
1064 ikev2_delete_tunnel_interface (km->vnet_main, tmp, c);
1066 ikev2_delete_sa (ptd, tmp);
1070 sa->initial_contact = 0;
1074 ikev2_initial_contact_cleanup (ikev2_main_per_thread_data_t * ptd,
1077 ikev2_main_t *km = &ikev2_main;
1079 if (!sa->initial_contact)
1084 ikev2_initial_contact_cleanup_internal (ptd, sa);
1088 vec_foreach (ptd, km->per_thread_data)
1089 ikev2_initial_contact_cleanup_internal (ptd, sa);
1091 sa->initial_contact = 0;
1095 ikev2_parse_id_payload (const void *p, u16 rlen, ikev2_id_t * sa_id)
1097 const ike_id_payload_header_t *id = p;
1098 u16 plen = clib_net_to_host_u16 (id->length);
1099 if (plen < sizeof (*id) || plen > rlen)
1102 sa_id->type = id->id_type;
1103 vec_reset_length (sa_id->data);
1104 vec_add (sa_id->data, id->payload, plen - sizeof (*id));
1110 ikev2_parse_auth_payload (const void *p, u32 rlen, ikev2_auth_t * a)
1112 const ike_auth_payload_header_t *ah = p;
1113 u16 plen = clib_net_to_host_u16 (ah->length);
1115 a->method = ah->auth_method;
1116 vec_reset_length (a->data);
1117 vec_add (a->data, ah->payload, plen - sizeof (*ah));
1122 ikev2_process_auth_req (vlib_main_t * vm, ikev2_sa_t * sa,
1123 ike_header_t * ike, u32 len)
1126 ikev2_child_sa_t *first_child_sa;
1127 u8 payload = ike->nextpayload;
1129 ike_payload_header_t *ikep;
1133 ikev2_elog_exchange ("ispi %lx rspi %lx EXCHANGE_IKE_AUTH received "
1134 "from ", clib_host_to_net_u64 (ike->ispi),
1135 clib_host_to_net_u64 (ike->rspi),
1137 ip_addr_v4 (&sa->raddr).as_u32 :
1138 ip_addr_v4 (&sa->iaddr).as_u32,
1139 ip_addr_version (&sa->raddr) == AF_IP4);
1141 ikev2_calc_keys (sa);
1143 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1147 if (sa->unsupported_cp)
1149 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1155 /* select or create 1st child SA */
1156 if (sa->is_initiator)
1158 first_child_sa = &sa->childs[0];
1162 ikev2_sa_free_all_child_sa (&sa->childs);
1163 vec_add2 (sa->childs, first_child_sa, 1);
1167 /* process encrypted payload */
1168 while (p < dlen && payload != IKEV2_PAYLOAD_NONE)
1170 ikep = (ike_payload_header_t *) & plaintext[p];
1171 int current_length = dlen - p;
1172 if (!ikev2_check_payload_length (ikep, current_length, &plen))
1175 if (payload == IKEV2_PAYLOAD_SA) /* 33 */
1177 if (sa->is_initiator)
1179 ikev2_sa_free_proposal_vector (&first_child_sa->r_proposals);
1180 first_child_sa->r_proposals = ikev2_parse_sa_payload (ikep,
1185 ikev2_sa_free_proposal_vector (&first_child_sa->i_proposals);
1186 first_child_sa->i_proposals = ikev2_parse_sa_payload (ikep,
1190 else if (payload == IKEV2_PAYLOAD_IDI) /* 35 */
1192 if (!ikev2_parse_id_payload (ikep, current_length, &sa->i_id))
1195 else if (payload == IKEV2_PAYLOAD_IDR) /* 36 */
1197 if (!ikev2_parse_id_payload (ikep, current_length, &sa->r_id))
1200 else if (payload == IKEV2_PAYLOAD_AUTH) /* 39 */
1202 if (sa->is_initiator)
1204 if (!ikev2_parse_auth_payload (ikep, current_length,
1210 if (!ikev2_parse_auth_payload (ikep, current_length,
1215 else if (payload == IKEV2_PAYLOAD_NOTIFY) /* 41 */
1218 ikev2_parse_notify_payload (ikep, current_length);
1219 if (n->msg_type == IKEV2_NOTIFY_MSG_INITIAL_CONTACT)
1221 sa->initial_contact = 1;
1225 else if (payload == IKEV2_PAYLOAD_VENDOR) /* 43 */
1227 ikev2_parse_vendor_payload (ikep);
1229 else if (payload == IKEV2_PAYLOAD_TSI) /* 44 */
1231 vec_free (first_child_sa->tsi);
1232 first_child_sa->tsi = ikev2_parse_ts_payload (ikep, current_length);
1234 else if (payload == IKEV2_PAYLOAD_TSR) /* 45 */
1236 vec_free (first_child_sa->tsr);
1237 first_child_sa->tsr = ikev2_parse_ts_payload (ikep, current_length);
1241 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1244 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1246 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1247 sa->unsupported_cp = payload;
1252 payload = ikep->nextpayload;
1259 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": malformed IKE_AUTH");
1264 ikev2_process_informational_req (vlib_main_t * vm,
1265 ikev2_sa_t * sa, ike_header_t * ike, u32 len)
1268 u8 payload = ike->nextpayload;
1270 ike_payload_header_t *ikep;
1272 ikev2_notify_t *n = 0;
1274 sa->liveness_retries = 0;
1275 ikev2_elog_exchange ("ispi %lx rspi %lx INFORMATIONAL received "
1276 "from ", clib_host_to_net_u64 (ike->ispi),
1277 clib_host_to_net_u64 (ike->rspi),
1278 ip_addr_v4 (&sa->iaddr).as_u32,
1279 ip_addr_version (&sa->iaddr) == AF_IP4);
1281 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1286 /* process encrypted payload */
1288 while (p < dlen && payload != IKEV2_PAYLOAD_NONE)
1290 u32 current_length = dlen - p;
1291 if (p + sizeof (*ikep) > dlen)
1294 ikep = (ike_payload_header_t *) & plaintext[p];
1295 u16 plen = clib_net_to_host_u16 (ikep->length);
1297 if (plen < sizeof (*ikep) || plen > current_length)
1300 if (payload == IKEV2_PAYLOAD_NOTIFY) /* 41 */
1302 n = ikev2_parse_notify_payload (ikep, current_length);
1305 if (n->msg_type == IKEV2_NOTIFY_MSG_AUTHENTICATION_FAILED)
1306 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1309 else if (payload == IKEV2_PAYLOAD_DELETE) /* 42 */
1311 sa->del = ikev2_parse_delete_payload (ikep, current_length);
1313 else if (payload == IKEV2_PAYLOAD_VENDOR) /* 43 */
1315 ikev2_parse_vendor_payload (ikep);
1319 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1321 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1323 sa->unsupported_cp = payload;
1327 payload = ikep->nextpayload;
1334 ikev2_process_create_child_sa_req (vlib_main_t * vm,
1335 ikev2_sa_t * sa, ike_header_t * ike,
1339 u8 payload = ike->nextpayload;
1342 u8 nonce[IKEV2_NONCE_SIZE];
1344 ike_payload_header_t *ikep;
1345 ikev2_notify_t *n = 0;
1346 ikev2_ts_t *tsi = 0;
1347 ikev2_ts_t *tsr = 0;
1348 ikev2_sa_proposal_t *proposal = 0;
1349 ikev2_child_sa_t *child_sa;
1353 if (sa->is_initiator)
1354 src = ip_addr_v4 (&sa->raddr).as_u32;
1356 src = ip_addr_v4 (&sa->iaddr).as_u32;
1358 ikev2_elog_exchange ("ispi %lx rspi %lx CREATE_CHILD_SA received from",
1359 clib_host_to_net_u64 (ike->ispi),
1360 clib_host_to_net_u64 (ike->rspi), src,
1361 ip_addr_version (&sa->raddr) == AF_IP4);
1363 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1366 goto cleanup_and_exit;
1368 /* process encrypted payload */
1370 while (payload != IKEV2_PAYLOAD_NONE)
1372 ikep = (ike_payload_header_t *) & plaintext[p];
1373 int current_length = dlen - p;
1374 if (!ikev2_check_payload_length (ikep, current_length, &plen))
1375 goto cleanup_and_exit;
1377 if (payload == IKEV2_PAYLOAD_SA)
1379 proposal = ikev2_parse_sa_payload (ikep, current_length);
1381 else if (payload == IKEV2_PAYLOAD_NOTIFY)
1383 n = ikev2_parse_notify_payload (ikep, current_length);
1384 if (n->msg_type == IKEV2_NOTIFY_MSG_REKEY_SA)
1389 else if (payload == IKEV2_PAYLOAD_DELETE)
1391 sa->del = ikev2_parse_delete_payload (ikep, current_length);
1393 else if (payload == IKEV2_PAYLOAD_VENDOR)
1395 ikev2_parse_vendor_payload (ikep);
1397 else if (payload == IKEV2_PAYLOAD_NONCE)
1399 ikev2_parse_nonce_payload (ikep, current_length, nonce);
1401 else if (payload == IKEV2_PAYLOAD_TSI)
1403 tsi = ikev2_parse_ts_payload (ikep, current_length);
1405 else if (payload == IKEV2_PAYLOAD_TSR)
1407 tsr = ikev2_parse_ts_payload (ikep, current_length);
1411 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1413 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1415 sa->unsupported_cp = payload;
1416 goto cleanup_and_exit;
1419 payload = ikep->nextpayload;
1423 if (sa->is_initiator && proposal
1424 && proposal->protocol_id == IKEV2_PROTOCOL_ESP)
1426 ikev2_rekey_t *rekey = sa->rekey;
1427 if (vec_len (rekey) == 0)
1428 goto cleanup_and_exit;
1429 rekey->protocol_id = proposal->protocol_id;
1431 ikev2_select_proposal (proposal, IKEV2_PROTOCOL_ESP);
1432 rekey->i_proposal->spi = rekey->spi;
1433 rekey->r_proposal = proposal;
1437 vec_reset_length (sa->r_nonce);
1438 vec_add (sa->r_nonce, nonce, IKEV2_NONCE_SIZE);
1439 child_sa = ikev2_sa_get_child (sa, rekey->ispi, IKEV2_PROTOCOL_ESP, 1);
1442 child_sa->rekey_retries = 0;
1447 ikev2_rekey_t *rekey;
1448 child_sa = ikev2_sa_get_child (sa, n->spi, n->protocol_id, 1);
1451 ikev2_elog_uint (IKEV2_LOG_ERROR, "child SA spi %lx not found",
1453 goto cleanup_and_exit;
1455 vec_add2 (sa->rekey, rekey, 1);
1456 rekey->protocol_id = n->protocol_id;
1457 rekey->spi = n->spi;
1458 rekey->i_proposal = proposal;
1460 ikev2_select_proposal (proposal, IKEV2_PROTOCOL_ESP);
1464 vec_reset_length (sa->i_nonce);
1465 vec_add (sa->i_nonce, nonce, IKEV2_NONCE_SIZE);
1466 /* generate new Nr */
1467 vec_validate (sa->r_nonce, IKEV2_NONCE_SIZE - 1);
1468 RAND_bytes ((u8 *) sa->r_nonce, IKEV2_NONCE_SIZE);
1471 goto cleanup_and_exit;
1477 vec_free (proposal);
1484 ikev2_sa_generate_authmsg (ikev2_sa_t * sa, int is_responder)
1492 ikev2_sa_transform_t *tr_prf;
1495 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1501 nonce = sa->i_nonce;
1502 packet_data = sa->last_sa_init_res_packet_data;
1508 nonce = sa->r_nonce;
1509 packet_data = sa->last_sa_init_req_packet_data;
1512 data = vec_new (u8, 4);
1514 vec_append (data, id->data);
1516 u8 *id_hash = ikev2_calc_prf (tr_prf, key, data);
1517 vec_append (authmsg, packet_data);
1518 vec_append (authmsg, nonce);
1519 vec_append (authmsg, id_hash);
1527 ikev2_ts_cmp (ikev2_ts_t * ts1, ikev2_ts_t * ts2)
1529 if (ts1->ts_type == ts2->ts_type && ts1->protocol_id == ts2->protocol_id &&
1530 ts1->start_port == ts2->start_port && ts1->end_port == ts2->end_port &&
1531 !ip_address_cmp (&ts1->start_addr, &ts2->start_addr) &&
1532 !ip_address_cmp (&ts1->end_addr, &ts2->end_addr))
1539 ikev2_sa_match_ts (ikev2_sa_t * sa)
1541 ikev2_main_t *km = &ikev2_main;
1543 ikev2_ts_t *ts, *p_tsi, *p_tsr, *tsi = 0, *tsr = 0;
1544 ikev2_id_t *id_rem, *id_loc;
1547 pool_foreach (p, km->profiles) {
1549 if (sa->is_initiator)
1565 if (!ikev2_is_id_equal (&p->rem_id, id_rem)
1566 || !ikev2_is_id_equal (&p->loc_id, id_loc))
1569 sa->profile_index = p - km->profiles;
1571 vec_foreach(ts, sa->childs[0].tsi)
1573 if (ikev2_ts_cmp(p_tsi, ts))
1575 vec_add1 (tsi, ts[0]);
1580 vec_foreach(ts, sa->childs[0].tsr)
1582 if (ikev2_ts_cmp(p_tsr, ts))
1584 vec_add1 (tsr, ts[0]);
1595 vec_free (sa->childs[0].tsi);
1596 vec_free (sa->childs[0].tsr);
1597 sa->childs[0].tsi = tsi;
1598 sa->childs[0].tsr = tsr;
1604 ikev2_set_state (sa, IKEV2_STATE_TS_UNACCEPTABLE);
1609 ikev2_sa_auth (ikev2_sa_t * sa)
1611 ikev2_main_t *km = &ikev2_main;
1612 ikev2_profile_t *p, *sel_p = 0;
1613 u8 *authmsg, *key_pad, *psk = 0, *auth = 0;
1614 ikev2_sa_transform_t *tr_prf;
1617 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1619 /* only shared key and rsa signature */
1620 if (!(sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC ||
1621 sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG))
1623 ikev2_elog_uint (IKEV2_LOG_ERROR,
1624 "unsupported authentication method %u",
1626 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1630 key_pad = format (0, "%s", IKEV2_KEY_PAD);
1631 authmsg = ikev2_sa_generate_authmsg (sa, sa->is_initiator);
1633 ikev2_id_t *id_rem, *id_loc;
1634 ikev2_auth_t *sa_auth;
1636 if (sa->is_initiator)
1640 sa_auth = &sa->r_auth;
1646 sa_auth = &sa->i_auth;
1650 pool_foreach (p, km->profiles) {
1653 if (!ikev2_is_id_equal (&p->rem_id, id_rem)
1654 || !ikev2_is_id_equal (&p->loc_id, id_loc))
1657 if (sa_auth->method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1659 if (!p->auth.data ||
1660 p->auth.method != IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1663 psk = ikev2_calc_prf(tr_prf, p->auth.data, key_pad);
1664 auth = ikev2_calc_prf(tr_prf, psk, authmsg);
1666 if (!clib_memcmp(auth, sa_auth->data, vec_len(sa_auth->data)))
1668 ikev2_set_state(sa, IKEV2_STATE_AUTHENTICATED);
1675 ikev2_elog_uint (IKEV2_LOG_ERROR, "shared key mismatch! ispi %lx",
1679 else if (sa_auth->method == IKEV2_AUTH_METHOD_RSA_SIG)
1681 if (p->auth.method != IKEV2_AUTH_METHOD_RSA_SIG)
1684 if (ikev2_verify_sign(p->auth.key, sa_auth->data, authmsg) == 1)
1686 ikev2_set_state(sa, IKEV2_STATE_AUTHENTICATED);
1692 ikev2_elog_uint (IKEV2_LOG_ERROR,
1693 "cert verification failed! ispi %lx", sa->ispi);
1704 sa->udp_encap = sel_p->udp_encap;
1705 sa->ipsec_over_udp_port = sel_p->ipsec_over_udp_port;
1709 if (sa->state == IKEV2_STATE_AUTHENTICATED)
1711 if (!sa->is_initiator)
1713 vec_free (sa->r_id.data);
1714 sa->r_id.data = vec_dup (sel_p->loc_id.data);
1715 sa->r_id.type = sel_p->loc_id.type;
1716 sa->i_id.data = vec_dup (sel_p->rem_id.data);
1717 sa->i_id.type = sel_p->rem_id.type;
1719 /* generate our auth data */
1720 authmsg = ikev2_sa_generate_authmsg (sa, 1);
1721 if (sel_p->auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1723 vec_free (sa->r_auth.data);
1724 sa->r_auth.data = ikev2_calc_prf (tr_prf, psk, authmsg);
1725 sa->r_auth.method = IKEV2_AUTH_METHOD_SHARED_KEY_MIC;
1727 else if (sel_p->auth.method == IKEV2_AUTH_METHOD_RSA_SIG)
1729 vec_free (sa->r_auth.data);
1730 sa->r_auth.data = ikev2_calc_sign (km->pkey, authmsg);
1731 sa->r_auth.method = IKEV2_AUTH_METHOD_RSA_SIG;
1735 /* select transforms for 1st child sa */
1736 ikev2_sa_free_proposal_vector (&sa->childs[0].r_proposals);
1737 sa->childs[0].r_proposals =
1738 ikev2_select_proposal (sa->childs[0].i_proposals,
1739 IKEV2_PROTOCOL_ESP);
1741 if (~0 != sel_p->tun_itf)
1743 sa->is_tun_itf_set = 1;
1744 sa->tun_itf = sel_p->tun_itf;
1750 ikev2_elog_uint (IKEV2_LOG_ERROR, "authentication failed, no matching "
1751 "profile found! ispi %lx", sa->ispi);
1752 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1760 ikev2_sa_auth_init (ikev2_sa_t * sa)
1762 ikev2_main_t *km = &ikev2_main;
1763 u8 *authmsg, *key_pad, *psk = 0;
1764 ikev2_sa_transform_t *tr_prf;
1767 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1769 /* only shared key and rsa signature */
1770 if (!(sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC ||
1771 sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG))
1773 ikev2_elog_uint (IKEV2_LOG_ERROR,
1774 "unsupported authentication method %u",
1776 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1780 key_pad = format (0, "%s", IKEV2_KEY_PAD);
1781 authmsg = ikev2_sa_generate_authmsg (sa, 0);
1782 psk = ikev2_calc_prf (tr_prf, sa->i_auth.data, key_pad);
1784 if (sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1786 vec_free (sa->i_auth.data);
1787 sa->i_auth.data = ikev2_calc_prf (tr_prf, psk, authmsg);
1788 sa->i_auth.method = IKEV2_AUTH_METHOD_SHARED_KEY_MIC;
1790 else if (sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG)
1792 vec_free (sa->i_auth.data);
1793 sa->i_auth.data = ikev2_calc_sign (km->pkey, authmsg);
1794 sa->i_auth.method = IKEV2_AUTH_METHOD_RSA_SIG;
1803 ikev2_mk_local_sa_id (u32 sai, u32 ci, u32 ti)
1805 return (0x80000000 | (ti << 24) | (sai << 12) | ci);
1809 ikev2_mk_remote_sa_id (u32 sai, u32 ci, u32 ti)
1811 return (0xc0000000 | (ti << 24) | (sai << 12) | ci);
1821 ipsec_sa_flags_t flags;
1824 ipsec_crypto_alg_t encr_type;
1825 ipsec_integ_alg_t integ_type;
1826 ip46_address_t local_ip;
1827 ip46_address_t remote_ip;
1828 ipsec_key_t loc_ckey, rem_ckey, loc_ikey, rem_ikey;
1830 u32 old_remote_sa_id;
1831 u16 ipsec_over_udp_port;
1834 } ikev2_add_ipsec_tunnel_args_t;
1837 ikev2_add_tunnel_from_main (ikev2_add_ipsec_tunnel_args_t * a)
1839 ikev2_main_t *km = &ikev2_main;
1843 if (~0 == a->sw_if_index)
1845 /* no tunnel associated with the SA/profile - create a new one */
1846 rv = ipip_add_tunnel (IPIP_TRANSPORT_IP4, ~0,
1847 &a->local_ip, &a->remote_ip, 0,
1848 TUNNEL_ENCAP_DECAP_FLAG_NONE, IP_DSCP_CS0,
1849 TUNNEL_MODE_P2P, &sw_if_index);
1851 if (rv == VNET_API_ERROR_IF_ALREADY_EXISTS)
1853 if (hash_get (km->sw_if_indices, sw_if_index))
1854 /* interface is managed by IKE; proceed with updating SAs */
1857 hash_set1 (km->sw_if_indices, sw_if_index);
1861 sw_if_index = a->sw_if_index;
1862 vnet_sw_interface_admin_up (vnet_get_main (), sw_if_index);
1867 ikev2_elog_uint (IKEV2_LOG_ERROR,
1868 "installing ipip tunnel failed! local spi: %x",
1874 vec_add1 (sas_in, a->remote_sa_id);
1877 ipsec_tun_protect_del (sw_if_index, NULL);
1879 /* replace local SA immediately */
1880 ipsec_sa_unlock_id (a->local_sa_id);
1882 /* keep the old sa */
1883 vec_add1 (sas_in, a->old_remote_sa_id);
1886 rv = ipsec_sa_add_and_lock (a->local_sa_id,
1888 IPSEC_PROTOCOL_ESP, a->encr_type,
1889 &a->loc_ckey, a->integ_type, &a->loc_ikey,
1890 a->flags, 0, a->salt_local, &a->local_ip,
1891 &a->remote_ip, TUNNEL_ENCAP_DECAP_FLAG_NONE,
1892 IP_DSCP_CS0, NULL, a->src_port, a->dst_port);
1896 rv = ipsec_sa_add_and_lock (a->remote_sa_id, a->remote_spi,
1897 IPSEC_PROTOCOL_ESP, a->encr_type, &a->rem_ckey,
1898 a->integ_type, &a->rem_ikey,
1899 (a->flags | IPSEC_SA_FLAG_IS_INBOUND), 0,
1900 a->salt_remote, &a->remote_ip,
1901 &a->local_ip, TUNNEL_ENCAP_DECAP_FLAG_NONE,
1903 a->ipsec_over_udp_port, a->ipsec_over_udp_port);
1907 rv = ipsec_tun_protect_update (sw_if_index, NULL, a->local_sa_id, sas_in);
1914 ipsec_sa_unlock_id (a->remote_sa_id);
1916 ipsec_sa_unlock_id (a->local_sa_id);
1922 ikev2_create_tunnel_interface (vlib_main_t * vm,
1924 ikev2_child_sa_t * child, u32 sa_index,
1925 u32 child_index, u8 is_rekey)
1927 u32 thread_index = vlib_get_thread_index ();
1928 ikev2_main_t *km = &ikev2_main;
1929 ipsec_crypto_alg_t encr_type;
1930 ipsec_integ_alg_t integ_type;
1931 ikev2_profile_t *p = 0;
1932 ikev2_sa_transform_t *tr;
1933 ikev2_sa_proposal_t *proposals;
1935 ikev2_add_ipsec_tunnel_args_t a;
1937 clib_memset (&a, 0, sizeof (a));
1939 if (!child->r_proposals)
1941 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1945 if (sa->is_initiator)
1947 ip_address_to_46 (&sa->iaddr, &a.local_ip);
1948 ip_address_to_46 (&sa->raddr, &a.remote_ip);
1949 proposals = child->r_proposals;
1950 a.local_spi = child->r_proposals[0].spi;
1951 a.remote_spi = child->i_proposals[0].spi;
1955 ip_address_to_46 (&sa->raddr, &a.local_ip);
1956 ip_address_to_46 (&sa->iaddr, &a.remote_ip);
1957 proposals = child->i_proposals;
1958 a.local_spi = child->i_proposals[0].spi;
1959 a.remote_spi = child->r_proposals[0].spi;
1962 a.flags = IPSEC_SA_FLAG_USE_ANTI_REPLAY;
1965 a.flags |= IPSEC_SA_FLAG_IS_TUNNEL;
1966 a.flags |= IPSEC_SA_FLAG_UDP_ENCAP;
1968 if (ikev2_natt_active (sa))
1969 a.flags |= IPSEC_SA_FLAG_UDP_ENCAP;
1970 a.is_rekey = is_rekey;
1972 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_ESN);
1973 if (tr && tr->esn_type)
1974 a.flags |= IPSEC_SA_FLAG_USE_ESN;
1976 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_ENCR);
1979 if (tr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_CBC && tr->key_len)
1981 switch (tr->key_len)
1984 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_128;
1987 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_192;
1990 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_256;
1993 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1998 else if (tr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16
2001 switch (tr->key_len)
2004 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_128;
2007 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_192;
2010 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_256;
2013 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2021 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2027 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2030 a.encr_type = encr_type;
2034 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_INTEG);
2037 switch (tr->integ_type)
2039 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_256_128:
2040 integ_type = IPSEC_INTEG_ALG_SHA_256_128;
2042 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_384_192:
2043 integ_type = IPSEC_INTEG_ALG_SHA_384_192;
2045 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_512_256:
2046 integ_type = IPSEC_INTEG_ALG_SHA_512_256;
2048 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA1_96:
2049 integ_type = IPSEC_INTEG_ALG_SHA1_96;
2052 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2058 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2064 integ_type = IPSEC_INTEG_ALG_NONE;
2067 a.integ_type = integ_type;
2068 ikev2_calc_child_keys (sa, child);
2070 if (sa->is_initiator)
2072 ipsec_mk_key (&a.loc_ikey, child->sk_ai, vec_len (child->sk_ai));
2073 ipsec_mk_key (&a.rem_ikey, child->sk_ar, vec_len (child->sk_ar));
2074 ipsec_mk_key (&a.loc_ckey, child->sk_ei, vec_len (child->sk_ei));
2075 ipsec_mk_key (&a.rem_ckey, child->sk_er, vec_len (child->sk_er));
2078 a.salt_remote = child->salt_er;
2079 a.salt_local = child->salt_ei;
2081 a.dst_port = a.src_port = sa->ipsec_over_udp_port;
2085 ipsec_mk_key (&a.loc_ikey, child->sk_ar, vec_len (child->sk_ar));
2086 ipsec_mk_key (&a.rem_ikey, child->sk_ai, vec_len (child->sk_ai));
2087 ipsec_mk_key (&a.loc_ckey, child->sk_er, vec_len (child->sk_er));
2088 ipsec_mk_key (&a.rem_ckey, child->sk_ei, vec_len (child->sk_ei));
2091 a.salt_remote = child->salt_ei;
2092 a.salt_local = child->salt_er;
2095 ikev2_natt_active (sa) ? sa->dst_port : sa->ipsec_over_udp_port;
2096 a.src_port = sa->ipsec_over_udp_port;
2099 if (sa->is_initiator && sa->profile_index != ~0)
2100 p = pool_elt_at_index (km->profiles, sa->profile_index);
2102 if (p && p->lifetime)
2104 child->time_to_expiration = vlib_time_now (vm) + p->lifetime;
2105 if (p->lifetime_jitter)
2107 // This is not much better than rand(3), which Coverity warns
2108 // is unsuitable for security applications; random_u32 is
2109 // however fast. If this perturbance to the expiration time
2110 // needs to use a better RNG then we may need to use something
2111 // like /dev/urandom which has significant overhead.
2112 u32 rnd = (u32) (vlib_time_now (vm) * 1e6);
2113 rnd = random_u32 (&rnd);
2115 child->time_to_expiration += 1 + (rnd % p->lifetime_jitter);
2119 if (thread_index & 0xffffffc0)
2120 ikev2_elog_error ("error: thread index exceeds max range 0x3f!");
2122 if (child_index & 0xfffff000 || sa_index & 0xfffff000)
2123 ikev2_elog_error ("error: sa/child index exceeds max range 0xfff!");
2125 child->local_sa_id =
2127 ikev2_mk_local_sa_id (sa_index, child_index, thread_index);
2129 u32 remote_sa_id = ikev2_mk_remote_sa_id (sa_index, child_index,
2134 /* create a new remote SA ID to keep the old SA for a bit longer
2135 * so the peer has some time to swap their SAs */
2137 /* use most significat bit of child index part in id */
2139 if (sa->current_remote_id_mask)
2141 sa->old_remote_id = a.old_remote_sa_id = remote_sa_id | mask;
2142 sa->current_remote_id_mask = 0;
2146 sa->old_remote_id = a.old_remote_sa_id = remote_sa_id;
2147 sa->current_remote_id_mask = mask;
2148 remote_sa_id |= mask;
2150 sa->old_id_expiration = 3.0;
2151 sa->old_remote_id_present = 1;
2154 child->remote_sa_id = a.remote_sa_id = remote_sa_id;
2156 a.sw_if_index = (sa->is_tun_itf_set ? sa->tun_itf : ~0);
2157 a.ipsec_over_udp_port = sa->ipsec_over_udp_port;
2159 vl_api_rpc_call_main_thread (ikev2_add_tunnel_from_main,
2160 (u8 *) & a, sizeof (a));
2166 ip46_address_t local_ip;
2167 ip46_address_t remote_ip;
2171 } ikev2_del_ipsec_tunnel_args_t;
2173 static_always_inline u32
2174 ikev2_flip_alternate_sa_bit (u32 id)
2183 ikev2_del_tunnel_from_main (ikev2_del_ipsec_tunnel_args_t * a)
2185 ikev2_main_t *km = &ikev2_main;
2186 ipip_tunnel_t *ipip = NULL;
2189 if (~0 == a->sw_if_index)
2192 ipip_tunnel_key_t key = {
2194 .dst = a->remote_ip,
2195 .transport = IPIP_TRANSPORT_IP4,
2200 ipip = ipip_tunnel_db_find (&key);
2204 sw_if_index = ipip->sw_if_index;
2205 hash_unset (km->sw_if_indices, ipip->sw_if_index);
2212 sw_if_index = a->sw_if_index;
2213 vnet_sw_interface_admin_down (vnet_get_main (), sw_if_index);
2216 if (~0 != sw_if_index)
2217 ipsec_tun_protect_del (sw_if_index, NULL);
2219 ipsec_sa_unlock_id (a->remote_sa_id);
2220 ipsec_sa_unlock_id (a->local_sa_id);
2221 ipsec_sa_unlock_id (ikev2_flip_alternate_sa_bit (a->remote_sa_id));
2224 ipip_del_tunnel (ipip->sw_if_index);
2228 ikev2_delete_tunnel_interface (vnet_main_t * vnm, ikev2_sa_t * sa,
2229 ikev2_child_sa_t * child)
2231 ikev2_del_ipsec_tunnel_args_t a;
2233 clib_memset (&a, 0, sizeof (a));
2235 if (sa->is_initiator)
2237 ip_address_to_46 (&sa->iaddr, &a.local_ip);
2238 ip_address_to_46 (&sa->raddr, &a.remote_ip);
2242 ip_address_to_46 (&sa->raddr, &a.local_ip);
2243 ip_address_to_46 (&sa->iaddr, &a.remote_ip);
2246 a.remote_sa_id = child->remote_sa_id;
2247 a.local_sa_id = child->local_sa_id;
2248 a.sw_if_index = (sa->is_tun_itf_set ? sa->tun_itf : ~0);
2250 vl_api_rpc_call_main_thread (ikev2_del_tunnel_from_main, (u8 *) & a,
2256 ikev2_generate_message (vlib_buffer_t *b, ikev2_sa_t *sa, ike_header_t *ike,
2257 void *user, udp_header_t *udp, ikev2_stats_t *stats)
2259 ikev2_main_t *km = &ikev2_main;
2260 u16 buffer_data_size = vlib_buffer_get_default_data_size (km->vlib_main);
2262 ike_payload_header_t *ph;
2266 ikev2_sa_transform_t *tr_encr, *tr_integ;
2268 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
2270 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
2272 ikev2_payload_chain_t *chain = 0;
2273 ikev2_payload_new_chain (chain);
2275 if (ike->exchange == IKEV2_EXCHANGE_SA_INIT)
2277 if (sa->r_proposals == 0)
2279 ikev2_payload_add_notify (chain,
2280 IKEV2_NOTIFY_MSG_NO_PROPOSAL_CHOSEN, 0);
2281 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2283 else if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
2285 u8 *data = vec_new (u8, 2);
2286 ikev2_sa_transform_t *tr_dh;
2288 ikev2_sa_get_td_for_type (sa->r_proposals,
2289 IKEV2_TRANSFORM_TYPE_DH);
2290 ASSERT (tr_dh && tr_dh->dh_type);
2292 data[0] = (tr_dh->dh_type >> 8) & 0xff;
2293 data[1] = (tr_dh->dh_type) & 0xff;
2295 ikev2_payload_add_notify (chain,
2296 IKEV2_NOTIFY_MSG_INVALID_KE_PAYLOAD,
2299 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2301 else if (sa->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2303 u8 *data = vec_new (u8, 1);
2305 data[0] = sa->unsupported_cp;
2306 ikev2_payload_add_notify (chain,
2307 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2315 ike->rspi = clib_host_to_net_u64 (sa->rspi);
2316 ikev2_payload_add_sa (chain, sa->r_proposals);
2317 ikev2_payload_add_ke (chain, sa->dh_group, sa->r_dh_data);
2318 ikev2_payload_add_nonce (chain, sa->r_nonce);
2320 u8 *nat_detection_sha1 =
2321 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
2322 clib_host_to_net_u64 (sa->rspi),
2323 &sa->raddr, udp->dst_port);
2324 ikev2_payload_add_notify (chain,
2325 IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP,
2326 nat_detection_sha1);
2327 vec_free (nat_detection_sha1);
2328 nat_detection_sha1 =
2329 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
2330 clib_host_to_net_u64 (sa->rspi),
2331 &sa->iaddr, udp->src_port);
2332 ikev2_payload_add_notify (chain,
2333 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP,
2334 nat_detection_sha1);
2335 vec_free (nat_detection_sha1);
2338 else if (ike->exchange == IKEV2_EXCHANGE_IKE_AUTH)
2340 if (sa->state == IKEV2_STATE_AUTHENTICATED)
2342 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2343 ikev2_payload_add_id (chain, &sa->i_id, IKEV2_PAYLOAD_IDI);
2344 ikev2_payload_add_auth (chain, &sa->r_auth);
2345 ikev2_payload_add_sa (chain, sa->childs[0].r_proposals);
2346 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2347 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2349 else if (sa->state == IKEV2_STATE_AUTH_FAILED)
2351 ikev2_payload_add_notify (chain,
2352 IKEV2_NOTIFY_MSG_AUTHENTICATION_FAILED,
2354 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2356 else if (sa->state == IKEV2_STATE_TS_UNACCEPTABLE)
2358 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_TS_UNACCEPTABLE,
2360 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2361 ikev2_payload_add_auth (chain, &sa->r_auth);
2363 else if (sa->state == IKEV2_STATE_NO_PROPOSAL_CHOSEN)
2365 ikev2_payload_add_notify (chain,
2366 IKEV2_NOTIFY_MSG_NO_PROPOSAL_CHOSEN, 0);
2367 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2368 ikev2_payload_add_auth (chain, &sa->r_auth);
2369 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2370 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2372 else if (sa->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2374 u8 *data = vec_new (u8, 1);
2376 data[0] = sa->unsupported_cp;
2377 ikev2_payload_add_notify (chain,
2378 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2382 else if (sa->state == IKEV2_STATE_SA_INIT)
2384 ikev2_payload_add_id (chain, &sa->i_id, IKEV2_PAYLOAD_IDI);
2385 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2386 ikev2_payload_add_auth (chain, &sa->i_auth);
2387 ikev2_payload_add_sa (chain, sa->childs[0].i_proposals);
2388 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2389 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2390 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_INITIAL_CONTACT,
2395 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": unexpected IKE_AUTH");
2399 else if (ike->exchange == IKEV2_EXCHANGE_INFORMATIONAL)
2401 /* if pending delete */
2404 if (sa->del[0].protocol_id == IKEV2_PROTOCOL_IKE)
2406 if (ike_hdr_is_request (ike))
2407 ikev2_payload_add_delete (chain, sa->del);
2409 /* The response to a request that deletes the IKE SA is an empty
2410 INFORMATIONAL response. */
2411 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2413 /* The response to a request that deletes ESP or AH SAs will contain
2414 delete payloads for the paired SAs going in the other direction. */
2417 ikev2_payload_add_delete (chain, sa->del);
2422 /* received N(AUTHENTICATION_FAILED) */
2423 else if (sa->state == IKEV2_STATE_AUTH_FAILED)
2425 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": auth failed");
2428 /* received unsupported critical payload */
2429 else if (sa->unsupported_cp)
2431 u8 *data = vec_new (u8, 1);
2433 data[0] = sa->unsupported_cp;
2434 ikev2_payload_add_notify (chain,
2435 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2438 sa->unsupported_cp = 0;
2441 /* else send empty response */
2443 if (ike_hdr_is_response (ike))
2445 ASSERT (stats != 0);
2446 stats->n_keepalives++;
2447 sa->stats.n_keepalives++;
2451 else if (ike->exchange == IKEV2_EXCHANGE_CREATE_CHILD_SA)
2453 if (sa->is_initiator)
2456 ikev2_sa_proposal_t *proposals = (ikev2_sa_proposal_t *) user;
2457 ikev2_notify_t notify;
2458 u8 *data = vec_new (u8, 4);
2459 clib_memset (¬ify, 0, sizeof (notify));
2460 notify.protocol_id = IKEV2_PROTOCOL_ESP;
2461 notify.spi = sa->childs[0].i_proposals->spi;
2462 *(u32 *) data = clib_host_to_net_u32 (notify.spi);
2464 ikev2_payload_add_sa (chain, proposals);
2465 ikev2_payload_add_nonce (chain, sa->i_nonce);
2466 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2467 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2468 ikev2_payload_add_notify_2 (chain, IKEV2_NOTIFY_MSG_REKEY_SA, data,
2475 if (vec_len (sa->rekey) > 0)
2477 ikev2_payload_add_sa (chain, sa->rekey[0].r_proposal);
2478 ikev2_payload_add_nonce (chain, sa->r_nonce);
2479 ikev2_payload_add_ts (chain, sa->rekey[0].tsi,
2481 ikev2_payload_add_ts (chain, sa->rekey[0].tsr,
2483 vec_del1 (sa->rekey, 0);
2485 else if (sa->unsupported_cp)
2487 u8 *data = vec_new (u8, 1);
2489 data[0] = sa->unsupported_cp;
2490 ikev2_payload_add_notify (chain,
2491 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2494 sa->unsupported_cp = 0;
2498 ikev2_payload_add_notify (chain,
2499 IKEV2_NOTIFY_MSG_NO_ADDITIONAL_SAS,
2506 ike->version = IKE_VERSION_2;
2507 ike->nextpayload = IKEV2_PAYLOAD_SK;
2508 tlen = sizeof (*ike);
2510 if (sa->is_initiator)
2511 ike->flags |= IKEV2_HDR_FLAG_INITIATOR;
2513 if (ike->exchange == IKEV2_EXCHANGE_SA_INIT)
2515 tlen += vec_len (chain->data);
2516 ike->nextpayload = chain->first_payload_type;
2517 ike->length = clib_host_to_net_u32 (tlen);
2519 if (tlen + b->current_length + b->current_data > buffer_data_size)
2525 clib_memcpy_fast (ike->payload, chain->data, vec_len (chain->data));
2527 /* store whole IKE payload - needed for PSK auth */
2528 vec_reset_length (sa->last_sa_init_res_packet_data);
2529 vec_add (sa->last_sa_init_res_packet_data, ike, tlen);
2533 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2534 ikev2_payload_chain_add_padding (chain, tr_encr->block_size);
2537 plen = sizeof (*ph);
2538 ph = (ike_payload_header_t *) & ike->payload[0];
2539 ph->nextpayload = chain->first_payload_type;
2542 tr_encr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16;
2543 int iv_len = is_aead ? IKEV2_GCM_IV_SIZE : tr_encr->block_size;
2544 plen += vec_len (chain->data) + iv_len;
2546 /* add space for hmac/tag */
2548 plen += tr_integ->key_trunc;
2550 plen += IKEV2_GCM_ICV_SIZE;
2553 if (tlen + b->current_length + b->current_data > buffer_data_size)
2559 /* payload and total length */
2560 ph->length = clib_host_to_net_u16 (plen);
2561 ike->length = clib_host_to_net_u32 (tlen);
2565 if (!ikev2_encrypt_aead_data (ptd, sa, tr_encr, chain->data,
2566 ph->payload, (u8 *) ike,
2567 sizeof (*ike) + sizeof (*ph),
2568 ph->payload + plen - sizeof (*ph) -
2569 IKEV2_GCM_ICV_SIZE))
2577 if (!ikev2_encrypt_data
2578 (ptd, sa, tr_encr, chain->data, ph->payload))
2584 ikev2_calc_integr (tr_integ,
2585 sa->is_initiator ? sa->sk_ai : sa->sk_ar,
2586 (u8 *) ike, tlen - tr_integ->key_trunc);
2587 clib_memcpy_fast (ike->payload + tlen - tr_integ->key_trunc -
2588 sizeof (*ike), integ, tr_integ->key_trunc);
2591 /* store whole IKE payload - needed for retransmit */
2592 vec_reset_length (sa->last_res_packet_data);
2593 vec_add (sa->last_res_packet_data, ike, tlen);
2597 ikev2_payload_destroy_chain (chain);
2603 ikev2_retransmit_sa_init_one (ikev2_sa_t * sa, ike_header_t * ike,
2604 ip_address_t iaddr, ip_address_t raddr,
2609 u8 payload = ike->nextpayload;
2611 if (sa->ispi != clib_net_to_host_u64 (ike->ispi) ||
2612 ip_address_cmp (&sa->iaddr, &iaddr) ||
2613 ip_address_cmp (&sa->raddr, &raddr))
2618 while (p < rlen && payload != IKEV2_PAYLOAD_NONE)
2620 ike_payload_header_t *ikep = (ike_payload_header_t *) & ike->payload[p];
2621 u32 plen = clib_net_to_host_u16 (ikep->length);
2623 if (plen < sizeof (ike_payload_header_t))
2626 if (payload == IKEV2_PAYLOAD_NONCE &&
2627 !clib_memcmp (sa->i_nonce, ikep->payload, plen - sizeof (*ikep)))
2629 /* req is retransmit */
2630 if (sa->state == IKEV2_STATE_SA_INIT)
2632 sa->stats.n_init_retransmit++;
2633 tmp = (ike_header_t *) sa->last_sa_init_res_packet_data;
2634 u32 slen = clib_net_to_host_u32 (tmp->length);
2635 ike->ispi = tmp->ispi;
2636 ike->rspi = tmp->rspi;
2637 ike->nextpayload = tmp->nextpayload;
2638 ike->version = tmp->version;
2639 ike->exchange = tmp->exchange;
2640 ike->flags = tmp->flags;
2641 ike->msgid = tmp->msgid;
2642 ike->length = tmp->length;
2643 clib_memcpy_fast (ike->payload, tmp->payload,
2644 slen - sizeof (*ike));
2645 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG,
2646 "ispi %lx IKE_SA_INIT retransmit "
2647 "from %d.%d.%d.%d to %d.%d.%d.%d",
2649 ip_addr_v4 (&raddr).as_u32,
2650 ip_addr_v4 (&iaddr).as_u32);
2653 /* else ignore req */
2656 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG,
2657 "ispi %lx IKE_SA_INIT ignore "
2658 "from %d.%d.%d.%d to %d.%d.%d.%d",
2660 ip_addr_v4 (&raddr).as_u32,
2661 ip_addr_v4 (&iaddr).as_u32);
2665 payload = ikep->nextpayload;
2673 ikev2_retransmit_sa_init (ike_header_t * ike, ip_address_t iaddr,
2674 ip_address_t raddr, u32 rlen)
2678 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2681 pool_foreach (sa, ptd->sas) {
2682 res = ikev2_retransmit_sa_init_one (sa, ike, iaddr, raddr, rlen);
2688 /* req is not retransmit */
2693 ikev2_retransmit_resp (ikev2_sa_t * sa, ike_header_t * ike)
2695 if (ike_hdr_is_response (ike))
2698 u32 msg_id = clib_net_to_host_u32 (ike->msgid);
2701 if (msg_id > sa->last_msg_id)
2703 sa->last_msg_id = msg_id;
2707 /* retransmitted req */
2708 if (msg_id == sa->last_msg_id)
2710 sa->stats.n_retransmit++;
2711 ike_header_t *tmp = (ike_header_t *) sa->last_res_packet_data;
2712 u32 slen = clib_net_to_host_u32 (tmp->length);
2713 ike->ispi = tmp->ispi;
2714 ike->rspi = tmp->rspi;
2715 ike->nextpayload = tmp->nextpayload;
2716 ike->version = tmp->version;
2717 ike->exchange = tmp->exchange;
2718 ike->flags = tmp->flags;
2719 ike->msgid = tmp->msgid;
2720 ike->length = tmp->length;
2721 clib_memcpy_fast (ike->payload, tmp->payload, slen - sizeof (*ike));
2722 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG, "IKE retransmit msgid %d",
2723 msg_id, ip_addr_v4 (&sa->raddr).as_u32,
2724 ip_addr_v4 (&sa->iaddr).as_u32);
2728 /* old req ignore */
2729 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG, "IKE req ignore msgid %d",
2730 msg_id, ip_addr_v4 (&sa->raddr).as_u32,
2731 ip_addr_v4 (&sa->iaddr).as_u32);
2736 ikev2_init_sa (vlib_main_t * vm, ikev2_sa_t * sa)
2738 ikev2_main_t *km = &ikev2_main;
2739 sa->liveness_period_check = vlib_time_now (vm) + km->liveness_period;
2740 sa->profile_index = ~0;
2744 ikev2_del_sa_init_from_main (u64 * ispi)
2746 ikev2_main_t *km = &ikev2_main;
2747 uword *p = hash_get (km->sa_by_ispi, *ispi);
2750 ikev2_sa_t *sai = pool_elt_at_index (km->sais, p[0]);
2751 hash_unset (km->sa_by_ispi, sai->ispi);
2752 ikev2_sa_free_all_vec (sai);
2753 pool_put (km->sais, sai);
2758 ikev2_del_sa_init (u64 ispi)
2760 vl_api_rpc_call_main_thread (ikev2_del_sa_init_from_main, (u8 *) & ispi,
2764 static_always_inline void
2765 ikev2_rewrite_v6_addrs (ikev2_sa_t * sa, ip6_header_t * ih)
2767 if (sa->is_initiator)
2769 ip_address_copy_addr (&ih->dst_address, &sa->raddr);
2770 ip_address_copy_addr (&ih->src_address, &sa->iaddr);
2774 ip_address_copy_addr (&ih->dst_address, &sa->iaddr);
2775 ip_address_copy_addr (&ih->src_address, &sa->raddr);
2779 static_always_inline void
2780 ikev2_rewrite_v4_addrs (ikev2_sa_t * sa, ip4_header_t * ih)
2782 if (sa->is_initiator)
2784 ip_address_copy_addr (&ih->dst_address, &sa->raddr);
2785 ip_address_copy_addr (&ih->src_address, &sa->iaddr);
2789 ip_address_copy_addr (&ih->dst_address, &sa->iaddr);
2790 ip_address_copy_addr (&ih->src_address, &sa->raddr);
2794 static_always_inline void
2795 ikev2_set_ip_address (ikev2_sa_t *sa, const void *iaddr, const void *raddr,
2796 const ip_address_family_t af)
2798 ip_address_set (&sa->raddr, raddr, af);
2799 ip_address_set (&sa->iaddr, iaddr, af);
2803 ikev2_elog_uint_peers_addr (u32 exchange, ip4_header_t * ip4,
2804 ip6_header_t * ip6, u8 is_ip4)
2809 src = ip4->src_address.as_u32;
2810 dst = ip4->dst_address.as_u32;
2814 src = ip6->src_address.as_u32[3];
2815 dst = ip6->dst_address.as_u32[3];
2817 ikev2_elog_uint_peers (IKEV2_LOG_WARNING, "IKEv2 exchange %d "
2818 "received from %d.%d.%d.%d to %d.%d.%d.%d",
2819 exchange, src, dst);
2823 ikev2_generate_sa_init_data_and_log (ikev2_sa_t * sa)
2825 ikev2_generate_sa_error_t rc = ikev2_generate_sa_init_data (sa);
2827 if (PREDICT_TRUE (rc == IKEV2_GENERATE_SA_INIT_OK))
2830 if (rc == IKEV2_GENERATE_SA_INIT_ERR_NO_DH)
2831 ikev2_elog_error (IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR);
2832 else if (rc == IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH)
2833 ikev2_elog_error (IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR);
2837 ikev2_update_stats (vlib_main_t *vm, u32 node_index, ikev2_stats_t *s)
2839 vlib_node_increment_counter (vm, node_index, IKEV2_ERROR_KEEPALIVE,
2841 vlib_node_increment_counter (vm, node_index, IKEV2_ERROR_REKEY_REQ,
2843 vlib_node_increment_counter (vm, node_index, IKEV2_ERROR_INIT_SA_REQ,
2845 vlib_node_increment_counter (vm, node_index, IKEV2_ERROR_IKE_AUTH_REQ,
2849 static_always_inline uword
2850 ikev2_node_internal (vlib_main_t *vm, vlib_node_runtime_t *node,
2851 vlib_frame_t *frame, u8 is_ip4, u8 natt)
2853 u32 n_left = frame->n_vectors, *from;
2854 ikev2_main_t *km = &ikev2_main;
2855 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b;
2856 u16 nexts[VLIB_FRAME_SIZE], *next = nexts;
2857 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2858 ikev2_stats_t _stats, *stats = &_stats;
2861 clib_memset_u16 (stats, 0, sizeof (stats[0]) / sizeof (u16));
2862 from = vlib_frame_vector_args (frame);
2863 vlib_get_buffers (vm, from, bufs, n_left);
2868 vlib_buffer_t *b0 = b[0];
2869 next[0] = is_ip4 ? IKEV2_NEXT_IP4_ERROR_DROP
2870 : IKEV2_NEXT_IP6_ERROR_DROP;
2871 ip4_header_t *ip40 = 0;
2872 ip6_header_t *ip60 = 0;
2875 ikev2_sa_t *sa0 = 0;
2876 ikev2_sa_t sa; /* temporary store for SA */
2883 u8 *ptr = vlib_buffer_get_current (b0);
2884 ip40 = (ip4_header_t *) ptr;
2885 ptr += sizeof (*ip40);
2886 udp0 = (udp_header_t *) ptr;
2887 ptr += sizeof (*udp0);
2888 ike0 = (ike_header_t *) ptr;
2889 ip_hdr_sz = sizeof (*ip40);
2893 u8 *ipx_hdr = b0->data + vnet_buffer (b0)->l3_hdr_offset;
2894 ike0 = vlib_buffer_get_current (b0);
2895 vlib_buffer_advance (b0, -sizeof (*udp0));
2896 udp0 = vlib_buffer_get_current (b0);
2900 ip40 = (ip4_header_t *) ipx_hdr;
2901 ip_hdr_sz = sizeof (*ip40);
2905 ip60 = (ip6_header_t *) ipx_hdr;
2906 ip_hdr_sz = sizeof (*ip60);
2908 vlib_buffer_advance (b0, -ip_hdr_sz);
2911 rlen = b0->current_length - ip_hdr_sz - sizeof (*udp0);
2913 /* check for non-esp marker */
2916 ASSERT (*((u32 *) ike0) == 0);
2918 (ike_header_t *) ((u8 *) ike0 + sizeof (ikev2_non_esp_marker));
2919 rlen -= sizeof (ikev2_non_esp_marker);
2922 if (clib_net_to_host_u32 (ike0->length) != rlen)
2924 vlib_node_increment_counter (vm, node->node_index,
2925 IKEV2_ERROR_BAD_LENGTH, 1);
2929 if (ike0->version != IKE_VERSION_2)
2931 vlib_node_increment_counter (vm, node->node_index,
2932 IKEV2_ERROR_NOT_IKEV2, 1);
2936 if (ike0->exchange == IKEV2_EXCHANGE_SA_INIT)
2939 clib_memset (sa0, 0, sizeof (*sa0));
2941 if (ike_hdr_is_initiator (ike0))
2943 sa0->stats.n_sa_init_req++;
2944 stats->n_sa_init_req++;
2945 if (ike0->rspi == 0)
2948 ikev2_set_ip_address (sa0, &ip40->src_address,
2949 &ip40->dst_address, AF_IP4);
2951 ikev2_set_ip_address (sa0, &ip60->src_address,
2952 &ip60->dst_address, AF_IP6);
2954 sa0->dst_port = clib_net_to_host_u16 (udp0->src_port);
2957 ikev2_retransmit_sa_init (ike0, sa0->iaddr,
2961 vlib_node_increment_counter (vm, node->node_index,
2964 IKEV2_ERROR_IKE_SA_INIT_IGNORE
2966 IKEV2_ERROR_IKE_SA_INIT_RETRANSMIT,
2971 res = ikev2_process_sa_init_req (
2972 vm, sa0, ike0, udp0, rlen,
2973 vnet_buffer (b0)->sw_if_index[VLIB_RX]);
2975 vlib_node_increment_counter (vm, node->node_index,
2976 IKEV2_ERROR_MALFORMED_PACKET,
2979 if (sa0->state == IKEV2_STATE_SA_INIT)
2981 ikev2_sa_free_proposal_vector (&sa0->r_proposals);
2983 ikev2_select_proposal (sa0->i_proposals,
2984 IKEV2_PROTOCOL_IKE);
2985 ikev2_generate_sa_init_data_and_log (sa0);
2988 if (sa0->state == IKEV2_STATE_SA_INIT
2989 || sa0->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2991 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
2993 ikev2_generate_message (b0, sa0, ike0, 0, udp0, stats);
2995 vlib_node_increment_counter (vm, node->node_index,
2996 IKEV2_ERROR_NO_BUFF_SPACE,
3000 if (sa0->state == IKEV2_STATE_SA_INIT)
3002 /* add SA to the pool */
3003 pool_get (ptd->sas, sa0);
3004 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
3005 ikev2_init_sa (vm, sa0);
3006 hash_set (ptd->sa_by_rspi, sa0->rspi, sa0 - ptd->sas);
3010 ikev2_sa_free_all_vec (sa0);
3014 else //received sa_init without initiator flag
3017 ikev2_set_ip_address (sa0, &ip40->dst_address,
3018 &ip40->src_address, AF_IP4);
3020 ikev2_set_ip_address (sa0, &ip60->dst_address,
3021 &ip60->src_address, AF_IP6);
3023 ikev2_process_sa_init_resp (vm, sa0, ike0, udp0, rlen);
3025 if (sa0->state == IKEV2_STATE_SA_INIT)
3028 ike0->exchange = IKEV2_EXCHANGE_IKE_AUTH;
3029 uword *p = hash_get (km->sa_by_ispi, sa0->ispi);
3032 ikev2_sa_t *sai = pool_elt_at_index (km->sais, p[0]);
3034 if (clib_atomic_bool_cmp_and_swap
3035 (&sai->init_response_received, 0, 1))
3037 ikev2_complete_sa_data (sa0, sai);
3038 ikev2_calc_keys (sa0);
3039 ikev2_sa_auth_init (sa0);
3040 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
3042 clib_net_to_host_u32 (sai->last_init_msg_id);
3043 sa0->last_init_msg_id = sai->last_init_msg_id + 1;
3044 slen = ikev2_generate_message (b0, sa0, ike0, 0,
3047 vlib_node_increment_counter (vm,
3049 IKEV2_ERROR_NO_BUFF_SPACE,
3054 /* we've already processed sa-init response */
3055 sa0->state = IKEV2_STATE_UNKNOWN;
3060 if (sa0->state == IKEV2_STATE_SA_INIT)
3062 /* add SA to the pool */
3063 pool_get (ptd->sas, sa0);
3064 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
3065 hash_set (ptd->sa_by_rspi, sa0->rspi, sa0 - ptd->sas);
3069 ikev2_sa_free_all_vec (sa0);
3073 else if (ike0->exchange == IKEV2_EXCHANGE_IKE_AUTH)
3076 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3079 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3080 slen = ikev2_retransmit_resp (sa0, ike0);
3083 vlib_node_increment_counter (vm, node->node_index,
3086 IKEV2_ERROR_IKE_REQ_IGNORE
3088 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3093 sa0->dst_port = clib_net_to_host_u16 (udp0->src_port);
3094 res = ikev2_process_auth_req (vm, sa0, ike0, rlen);
3096 ikev2_sa_auth (sa0);
3098 vlib_node_increment_counter (vm, node->node_index,
3099 IKEV2_ERROR_MALFORMED_PACKET, 1);
3100 if (sa0->state == IKEV2_STATE_AUTHENTICATED)
3102 ikev2_initial_contact_cleanup (ptd, sa0);
3103 ikev2_sa_match_ts (sa0);
3104 if (sa0->state != IKEV2_STATE_TS_UNACCEPTABLE)
3105 ikev2_create_tunnel_interface (vm, sa0,
3110 if (sa0->is_initiator)
3112 ikev2_del_sa_init (sa0->ispi);
3116 sa0->stats.n_sa_auth_req++;
3117 stats->n_sa_auth_req++;
3118 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3119 sa0->last_init_msg_id = 1;
3121 ikev2_generate_message (b0, sa0, ike0, 0, udp0, stats);
3123 vlib_node_increment_counter (vm, node->node_index,
3124 IKEV2_ERROR_NO_BUFF_SPACE,
3129 else if (ike0->exchange == IKEV2_EXCHANGE_INFORMATIONAL)
3132 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3135 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3136 slen = ikev2_retransmit_resp (sa0, ike0);
3139 vlib_node_increment_counter (vm, node->node_index,
3142 IKEV2_ERROR_IKE_REQ_IGNORE
3144 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3149 res = ikev2_process_informational_req (vm, sa0, ike0, rlen);
3152 vlib_node_increment_counter (vm, node->node_index,
3153 IKEV2_ERROR_MALFORMED_PACKET,
3161 if (sa0->del[0].protocol_id != IKEV2_PROTOCOL_IKE)
3163 ikev2_delete_t *d, *tmp, *resp = 0;
3164 vec_foreach (d, sa0->del)
3166 ikev2_child_sa_t *ch_sa;
3167 ch_sa = ikev2_sa_get_child (sa0, d->spi,
3169 !sa0->is_initiator);
3172 ikev2_delete_tunnel_interface (km->vnet_main,
3174 if (!sa0->is_initiator)
3176 vec_add2 (resp, tmp, 1);
3177 tmp->protocol_id = d->protocol_id;
3178 tmp->spi = ch_sa->r_proposals[0].spi;
3180 ikev2_sa_del_child_sa (sa0, ch_sa);
3183 if (!sa0->is_initiator)
3185 vec_free (sa0->del);
3190 if (ike_hdr_is_request (ike0))
3192 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3194 ikev2_generate_message (b0, sa0, ike0, 0, udp0, stats);
3196 vlib_node_increment_counter (vm, node->node_index,
3197 IKEV2_ERROR_NO_BUFF_SPACE,
3202 else if (ike0->exchange == IKEV2_EXCHANGE_CREATE_CHILD_SA)
3205 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3208 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3209 slen = ikev2_retransmit_resp (sa0, ike0);
3212 vlib_node_increment_counter (vm, node->node_index,
3215 IKEV2_ERROR_IKE_REQ_IGNORE
3217 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3222 res = ikev2_process_create_child_sa_req (vm, sa0, ike0, rlen);
3225 vlib_node_increment_counter (vm, node->node_index,
3226 IKEV2_ERROR_MALFORMED_PACKET,
3234 if (sa0->rekey[0].protocol_id != IKEV2_PROTOCOL_IKE)
3237 ikev2_sa_free_all_child_sa (&sa0->childs);
3238 ikev2_child_sa_t *child;
3239 vec_add2 (sa0->childs, child, 1);
3240 clib_memset (child, 0, sizeof (*child));
3241 child->r_proposals = sa0->rekey[0].r_proposal;
3242 child->i_proposals = sa0->rekey[0].i_proposal;
3243 child->tsi = sa0->rekey[0].tsi;
3244 child->tsr = sa0->rekey[0].tsr;
3245 ikev2_create_tunnel_interface (vm, sa0, child, p[0],
3246 child - sa0->childs, 1);
3248 if (ike_hdr_is_response (ike0))
3250 vec_free (sa0->rekey);
3254 stats->n_rekey_req++;
3255 sa0->stats.n_rekey_req++;
3256 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3258 ikev2_generate_message (b0, sa0, ike0, 0, udp0, stats);
3260 vlib_node_increment_counter (vm, node->node_index,
3261 IKEV2_ERROR_NO_BUFF_SPACE,
3269 ikev2_elog_uint_peers_addr (ike0->exchange, ip40, ip60, is_ip4);
3273 /* if we are sending packet back, rewrite headers */
3274 if (slen && ~0 != slen)
3278 next[0] = IKEV2_NEXT_IP4_LOOKUP;
3279 ikev2_rewrite_v4_addrs (sa0, ip40);
3283 next[0] = IKEV2_NEXT_IP6_LOOKUP;
3284 ikev2_rewrite_v6_addrs (sa0, ip60);
3289 udp0->dst_port = udp0->src_port =
3290 clib_net_to_host_u16 (ikev2_get_port (sa0));
3292 if (udp0->dst_port == clib_net_to_host_u16 (IKEV2_PORT_NATT)
3293 && ikev2_natt_active (sa0))
3296 slen = ikev2_insert_non_esp_marker (ike0, slen);
3302 slen += sizeof (ikev2_non_esp_marker);
3304 u16 tp = udp0->dst_port;
3305 udp0->dst_port = udp0->src_port;
3306 udp0->src_port = tp;
3309 udp0->length = clib_host_to_net_u16 (slen + sizeof (udp_header_t));
3311 b0->current_length = slen + ip_hdr_sz + sizeof (udp_header_t);
3314 ip40->length = clib_host_to_net_u16 (b0->current_length);
3315 ip40->checksum = ip4_header_checksum (ip40);
3319 ip60->payload_length =
3320 clib_host_to_net_u16 (b0->current_length - sizeof (*ip60));
3324 if (sa0 && (sa0->state == IKEV2_STATE_DELETED ||
3325 sa0->state == IKEV2_STATE_NOTIFY_AND_DELETE))
3327 ikev2_child_sa_t *c;
3329 vec_foreach (c, sa0->childs)
3330 ikev2_delete_tunnel_interface (km->vnet_main, sa0, c);
3332 ikev2_delete_sa (ptd, sa0);
3334 if (PREDICT_FALSE ((node->flags & VLIB_NODE_FLAG_TRACE)
3335 && (b0->flags & VLIB_BUFFER_IS_TRACED)))
3338 ikev2_trace_t *t = vlib_add_trace (vm, node, b0, sizeof (*t));
3339 t->sw_if_index = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3340 t->next_index = next[0];
3347 ikev2_update_stats (vm, node->node_index, stats);
3348 vlib_node_increment_counter (vm, node->node_index,
3349 IKEV2_ERROR_PROCESSED, frame->n_vectors);
3350 vlib_buffer_enqueue_to_next (vm, node, from, nexts, frame->n_vectors);
3351 return frame->n_vectors;
3355 ikev2_ip4 (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_frame_t * frame)
3357 return ikev2_node_internal (vm, node, frame, 1 /* is_ip4 */, 0);
3361 ikev2_ip4_natt (vlib_main_t *vm, vlib_node_runtime_t *node,
3362 vlib_frame_t *frame)
3364 return ikev2_node_internal (vm, node, frame, 1 /* is_ip4 */, 1 /* natt */);
3368 ikev2_ip6 (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_frame_t * frame)
3370 return ikev2_node_internal (vm, node, frame, 0 /* is_ip4 */, 0);
3374 VLIB_REGISTER_NODE (ikev2_node_ip4,static) = {
3375 .function = ikev2_ip4,
3376 .name = "ikev2-ip4",
3377 .vector_size = sizeof (u32),
3378 .format_trace = format_ikev2_trace,
3379 .type = VLIB_NODE_TYPE_INTERNAL,
3381 .n_errors = IKEV2_N_ERROR,
3382 .error_counters = ikev2_error_counters,
3384 .n_next_nodes = IKEV2_IP4_N_NEXT,
3386 [IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
3387 [IKEV2_NEXT_IP4_ERROR_DROP] = "error-drop",
3391 VLIB_REGISTER_NODE (ikev2_node_ip4_natt,static) = {
3392 .function = ikev2_ip4_natt,
3393 .name = "ikev2-ip4-natt",
3394 .vector_size = sizeof (u32),
3395 .format_trace = format_ikev2_trace,
3396 .type = VLIB_NODE_TYPE_INTERNAL,
3398 .n_errors = IKEV2_N_ERROR,
3399 .error_counters = ikev2_error_counters,
3401 .n_next_nodes = IKEV2_IP4_N_NEXT,
3403 [IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
3404 [IKEV2_NEXT_IP4_ERROR_DROP] = "error-drop",
3408 VLIB_REGISTER_NODE (ikev2_node_ip6,static) = {
3409 .function = ikev2_ip6,
3410 .name = "ikev2-ip6",
3411 .vector_size = sizeof (u32),
3412 .format_trace = format_ikev2_trace,
3413 .type = VLIB_NODE_TYPE_INTERNAL,
3415 .n_errors = IKEV2_N_ERROR,
3416 .error_counters = ikev2_error_counters,
3418 .n_next_nodes = IKEV2_IP6_N_NEXT,
3420 [IKEV2_NEXT_IP6_LOOKUP] = "ip6-lookup",
3421 [IKEV2_NEXT_IP6_ERROR_DROP] = "error-drop",
3426 // set ikev2 proposals when vpp is used as initiator
3427 static clib_error_t *
3428 ikev2_set_initiator_proposals (vlib_main_t * vm, ikev2_sa_t * sa,
3429 ikev2_transforms_set * ts,
3430 ikev2_sa_proposal_t ** proposals, int is_ike)
3433 ikev2_main_t *km = &ikev2_main;
3434 ikev2_sa_proposal_t *proposal;
3435 vec_add2 (*proposals, proposal, 1);
3436 ikev2_sa_transform_t *td;
3441 vec_foreach (td, km->supported_transforms)
3443 if (td->type == IKEV2_TRANSFORM_TYPE_ENCR
3444 && td->encr_type == ts->crypto_alg
3445 && td->key_len == ts->crypto_key_size / 8)
3448 attr[0] = clib_host_to_net_u16 (14 | (1 << 15));
3449 attr[1] = clib_host_to_net_u16 (td->key_len << 3);
3450 vec_add (td->attrs, (u8 *) attr, 4);
3451 vec_add1 (proposal->transforms, *td);
3460 r = clib_error_return (0, "Unsupported algorithm");
3464 if (IKEV2_TRANSFORM_INTEG_TYPE_NONE != ts->integ_alg)
3468 vec_foreach (td, km->supported_transforms)
3470 if (td->type == IKEV2_TRANSFORM_TYPE_INTEG
3471 && td->integ_type == ts->integ_alg)
3473 vec_add1 (proposal->transforms, *td);
3481 ("Didn't find any supported algorithm for IKEV2_TRANSFORM_TYPE_INTEG");
3482 r = clib_error_return (0, "Unsupported algorithm");
3491 vec_foreach (td, km->supported_transforms)
3493 if (td->type == IKEV2_TRANSFORM_TYPE_PRF
3494 && td->prf_type == IKEV2_TRANSFORM_PRF_TYPE_PRF_HMAC_SHA2_256)
3496 vec_add1 (proposal->transforms, *td);
3503 r = clib_error_return (0, "Unsupported algorithm");
3512 vec_foreach (td, km->supported_transforms)
3514 if (td->type == IKEV2_TRANSFORM_TYPE_DH && td->dh_type == ts->dh_type)
3516 vec_add1 (proposal->transforms, *td);
3519 sa->dh_group = td->dh_type;
3527 r = clib_error_return (0, "Unsupported algorithm");
3535 vec_foreach (td, km->supported_transforms)
3537 if (td->type == IKEV2_TRANSFORM_TYPE_ESN)
3539 vec_add1 (proposal->transforms, *td);
3545 r = clib_error_return (0, "Unsupported algorithm");
3554 static ikev2_profile_t *
3555 ikev2_profile_index_by_name (u8 * name)
3557 ikev2_main_t *km = &ikev2_main;
3560 p = mhash_get (&km->profile_index_by_name, name);
3564 return pool_elt_at_index (km->profiles, p[0]);
3569 ikev2_send_ike (vlib_main_t * vm, ip_address_t * src, ip_address_t * dst,
3570 u32 bi0, u32 len, u16 src_port, u16 dst_port, u32 sw_if_index)
3579 b0 = vlib_get_buffer (vm, bi0);
3580 vlib_buffer_advance (b0, -sizeof (udp_header_t));
3581 udp0 = vlib_buffer_get_current (b0);
3582 udp0->dst_port = clib_host_to_net_u16 (dst_port);
3583 udp0->src_port = clib_host_to_net_u16 (src_port);
3584 udp0->length = clib_host_to_net_u16 (len + sizeof (udp_header_t));
3587 if (ip_addr_version (dst) == AF_IP4)
3589 vlib_buffer_advance (b0, -sizeof (ip4_header_t));
3590 ip40 = vlib_buffer_get_current (b0);
3591 ip40->ip_version_and_header_length = 0x45;
3593 ip40->fragment_id = 0;
3594 ip40->flags_and_fragment_offset = 0;
3596 ip40->protocol = IP_PROTOCOL_UDP;
3597 ip40->dst_address.as_u32 = ip_addr_v4 (dst).as_u32;
3598 ip40->src_address.as_u32 = ip_addr_v4 (src).as_u32;
3599 b0->current_length =
3600 len + sizeof (ip4_header_t) + sizeof (udp_header_t);
3601 ip40->length = clib_host_to_net_u16 (b0->current_length);
3602 ip40->checksum = ip4_header_checksum (ip40);
3606 vlib_buffer_advance (b0, -sizeof (ip6_header_t));
3607 ip60 = vlib_buffer_get_current (b0);
3609 b0->current_length = len + sizeof (*ip60) + sizeof (udp_header_t);
3610 ip60->ip_version_traffic_class_and_flow_label =
3611 clib_host_to_net_u32 (0x6 << 28);
3612 ip60->payload_length =
3613 clib_host_to_net_u16 (b0->current_length - sizeof (*ip60));
3614 ip60->protocol = IP_PROTOCOL_UDP;
3615 ip60->hop_limit = 0xff;
3616 clib_memcpy_fast (ip60->src_address.as_u8, ip_addr_v6 (src).as_u8,
3617 sizeof (ip60->src_address));
3618 clib_memcpy_fast (ip60->dst_address.as_u8, ip_addr_v6 (dst).as_u8,
3619 sizeof (ip60->src_address));
3622 b0->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
3623 vnet_buffer (b0)->sw_if_index[VLIB_RX] = sw_if_index;
3624 vnet_buffer (b0)->sw_if_index[VLIB_TX] = ~0;
3626 u32 next_index = (ip_addr_version (dst) == AF_IP4) ?
3627 ip4_lookup_node.index : ip6_lookup_node.index;
3629 /* send the request */
3630 f = vlib_get_frame_to_node (vm, next_index);
3631 to_next = vlib_frame_vector_args (f);
3634 vlib_put_frame_to_node (vm, next_index, f);
3639 ikev2_get_new_ike_header_buff (vlib_main_t * vm, vlib_buffer_t ** b)
3642 if (vlib_buffer_alloc (vm, &bi0, 1) != 1)
3647 *b = vlib_get_buffer (vm, bi0);
3652 ikev2_set_local_key (vlib_main_t * vm, u8 * file)
3654 ikev2_main_t *km = &ikev2_main;
3657 EVP_PKEY_free (km->pkey);
3658 km->pkey = ikev2_load_key_file (file);
3659 if (km->pkey == NULL)
3660 return clib_error_return (0, "load key '%s' failed", file);
3665 static_always_inline vnet_api_error_t
3666 ikev2_register_udp_port (ikev2_profile_t * p, u16 port)
3668 ikev2_main_t *km = &ikev2_main;
3669 udp_dst_port_info_t *pi;
3671 uword *v = hash_get (km->udp_ports, port);
3672 pi = udp_get_dst_port_info (&udp_main, port, UDP_IP4);
3676 /* IKE already uses this port, only increment reference counter */
3683 return VNET_API_ERROR_UDP_PORT_TAKEN;
3685 udp_register_dst_port (km->vlib_main, port,
3686 ipsec4_tun_input_node.index, 1);
3687 hash_set (km->udp_ports, port, 1);
3689 p->ipsec_over_udp_port = port;
3693 static_always_inline void
3694 ikev2_unregister_udp_port (ikev2_profile_t * p)
3696 ikev2_main_t *km = &ikev2_main;
3699 if (p->ipsec_over_udp_port == IPSEC_UDP_PORT_NONE)
3702 v = hash_get (km->udp_ports, p->ipsec_over_udp_port);
3710 udp_unregister_dst_port (km->vlib_main, p->ipsec_over_udp_port, 1);
3711 hash_unset (km->udp_ports, p->ipsec_over_udp_port);
3714 p->ipsec_over_udp_port = IPSEC_UDP_PORT_NONE;
3718 ikev2_initiate_delete_ike_sa_internal (vlib_main_t * vm,
3719 ikev2_main_per_thread_data_t * tkm,
3720 ikev2_sa_t * sa, u8 send_notification)
3722 ikev2_main_t *km = &ikev2_main;
3723 ip_address_t *src, *dst;
3725 ikev2_child_sa_t *c;
3727 /* Create the Initiator notification for IKE SA removal */
3732 vec_resize (sa->del, 1);
3733 sa->del->protocol_id = IKEV2_PROTOCOL_IKE;
3734 sa->del->spi = sa->ispi;
3736 if (send_notification)
3738 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
3741 ikev2_log_error ("buffer alloc failure");
3745 ike0 = vlib_buffer_get_current (b0);
3746 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
3747 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
3748 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
3750 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
3751 sa->last_init_msg_id += 1;
3752 len = ikev2_generate_message (b0, sa, ike0, 0, 0, 0);
3756 if (ikev2_natt_active (sa))
3757 len = ikev2_insert_non_esp_marker (ike0, len);
3759 if (sa->is_initiator)
3770 ikev2_send_ike (vm, src, dst, bi0, len,
3771 ikev2_get_port (sa), sa->dst_port, 0);
3775 /* delete local SA */
3776 vec_foreach (c, sa->childs)
3777 ikev2_delete_tunnel_interface (km->vnet_main, sa, c);
3779 u64 rspi = sa->rspi;
3780 ikev2_sa_free_all_vec (sa);
3781 uword *p = hash_get (tkm->sa_by_rspi, rspi);
3784 hash_unset (tkm->sa_by_rspi, rspi);
3785 pool_put (tkm->sas, sa);
3790 ikev2_cleanup_profile_sessions (ikev2_main_t * km, ikev2_profile_t * p)
3792 ikev2_main_per_thread_data_t *tkm;
3794 u32 pi = p - km->profiles;
3799 pool_foreach (sa, km->sais) {
3800 if (pi == sa->profile_index)
3801 vec_add1 (del_sai, sa - km->sais);
3805 vec_foreach (sai, del_sai)
3807 sa = pool_elt_at_index (km->sais, sai[0]);
3808 ikev2_sa_free_all_vec (sa);
3809 hash_unset (km->sa_by_ispi, sa->ispi);
3810 pool_put (km->sais, sa);
3812 vec_reset_length (del_sai);
3814 vec_foreach (tkm, km->per_thread_data)
3817 pool_foreach (sa, tkm->sas) {
3818 if (sa->profile_index != ~0 && pi == sa->profile_index)
3819 vec_add1 (del_sai, sa - tkm->sas);
3823 vec_foreach (sai, del_sai)
3825 sa = pool_elt_at_index (tkm->sas, sai[0]);
3826 ikev2_initiate_delete_ike_sa_internal (km->vlib_main, tkm, sa, 1);
3829 vec_reset_length (del_sai);
3836 ikev2_profile_free (ikev2_profile_t * p)
3840 vec_free (p->auth.data);
3842 EVP_PKEY_free (p->auth.key);
3844 vec_free (p->loc_id.data);
3845 vec_free (p->rem_id.data);
3849 ikev2_add_del_profile (vlib_main_t * vm, u8 * name, int is_add)
3851 ikev2_main_t *km = &ikev2_main;
3856 if (ikev2_profile_index_by_name (name))
3857 return clib_error_return (0, "policy %v already exists", name);
3859 pool_get (km->profiles, p);
3860 clib_memset (p, 0, sizeof (*p));
3861 p->name = vec_dup (name);
3862 p->ipsec_over_udp_port = IPSEC_UDP_PORT_NONE;
3863 p->responder.sw_if_index = ~0;
3865 uword index = p - km->profiles;
3866 mhash_set_mem (&km->profile_index_by_name, name, &index, 0);
3870 p = ikev2_profile_index_by_name (name);
3872 return clib_error_return (0, "policy %v does not exists", name);
3874 ikev2_unregister_udp_port (p);
3875 ikev2_cleanup_profile_sessions (km, p);
3877 ikev2_profile_free (p);
3878 pool_put (km->profiles, p);
3879 mhash_unset (&km->profile_index_by_name, name, 0);
3885 ikev2_set_profile_auth (vlib_main_t * vm, u8 * name, u8 auth_method,
3886 u8 * auth_data, u8 data_hex_format)
3891 p = ikev2_profile_index_by_name (name);
3895 r = clib_error_return (0, "unknown profile %v", name);
3900 EVP_PKEY_free (p->auth.key);
3901 vec_free (p->auth.data);
3903 p->auth.method = auth_method;
3904 p->auth.data = vec_dup (auth_data);
3905 p->auth.hex = data_hex_format;
3907 if (auth_method == IKEV2_AUTH_METHOD_RSA_SIG)
3909 vec_add1 (p->auth.data, 0);
3910 p->auth.key = ikev2_load_cert_file (p->auth.data);
3911 if (p->auth.key == NULL)
3912 return clib_error_return (0, "load cert '%s' failed", p->auth.data);
3919 ikev2_is_id_supported (u8 id_type)
3921 return (id_type == IKEV2_ID_TYPE_ID_IPV4_ADDR ||
3922 id_type == IKEV2_ID_TYPE_ID_IPV6_ADDR ||
3923 id_type == IKEV2_ID_TYPE_ID_RFC822_ADDR ||
3924 id_type == IKEV2_ID_TYPE_ID_FQDN);
3928 ikev2_set_profile_id (vlib_main_t * vm, u8 * name, u8 id_type, u8 * data,
3934 if (!ikev2_is_id_supported (id_type))
3936 r = clib_error_return (0, "unsupported identity type %U",
3937 format_ikev2_id_type, id_type);
3941 p = ikev2_profile_index_by_name (name);
3945 r = clib_error_return (0, "unknown profile %v", name);
3951 vec_free (p->loc_id.data);
3952 p->loc_id.type = id_type;
3953 p->loc_id.data = vec_dup (data);
3957 vec_free (p->rem_id.data);
3958 p->rem_id.type = id_type;
3959 p->rem_id.data = vec_dup (data);
3965 static_always_inline void
3966 ikev2_set_ts_type (ikev2_ts_t * ts, const ip_address_t * addr)
3968 if (ip_addr_version (addr) == AF_IP4)
3969 ts->ts_type = TS_IPV4_ADDR_RANGE;
3971 ts->ts_type = TS_IPV6_ADDR_RANGE;
3974 static_always_inline void
3975 ikev2_set_ts_addrs (ikev2_ts_t * ts, const ip_address_t * start,
3976 const ip_address_t * end)
3978 ip_address_copy (&ts->start_addr, start);
3979 ip_address_copy (&ts->end_addr, end);
3983 ikev2_set_profile_ts (vlib_main_t * vm, u8 * name, u8 protocol_id,
3984 u16 start_port, u16 end_port, ip_address_t start_addr,
3985 ip_address_t end_addr, int is_local)
3990 p = ikev2_profile_index_by_name (name);
3994 r = clib_error_return (0, "unknown profile %v", name);
3998 if (ip_addr_version (&start_addr) != ip_addr_version (&end_addr))
3999 return clib_error_return (0, "IP address version mismatch!");
4003 ikev2_set_ts_addrs (&p->loc_ts, &start_addr, &end_addr);
4004 p->loc_ts.start_port = start_port;
4005 p->loc_ts.end_port = end_port;
4006 p->loc_ts.protocol_id = protocol_id;
4007 ikev2_set_ts_type (&p->loc_ts, &start_addr);
4011 ikev2_set_ts_addrs (&p->rem_ts, &start_addr, &end_addr);
4012 p->rem_ts.start_port = start_port;
4013 p->rem_ts.end_port = end_port;
4014 p->rem_ts.protocol_id = protocol_id;
4015 ikev2_set_ts_type (&p->rem_ts, &start_addr);
4023 ikev2_set_profile_responder (vlib_main_t * vm, u8 * name,
4024 u32 sw_if_index, ip_address_t addr)
4029 p = ikev2_profile_index_by_name (name);
4033 r = clib_error_return (0, "unknown profile %v", name);
4037 p->responder.sw_if_index = sw_if_index;
4038 ip_address_copy (&p->responder.addr, &addr);
4044 ikev2_set_profile_ike_transforms (vlib_main_t * vm, u8 * name,
4045 ikev2_transform_encr_type_t crypto_alg,
4046 ikev2_transform_integ_type_t integ_alg,
4047 ikev2_transform_dh_type_t dh_type,
4048 u32 crypto_key_size)
4053 p = ikev2_profile_index_by_name (name);
4057 r = clib_error_return (0, "unknown profile %v", name);
4061 p->ike_ts.crypto_alg = crypto_alg;
4062 p->ike_ts.integ_alg = integ_alg;
4063 p->ike_ts.dh_type = dh_type;
4064 p->ike_ts.crypto_key_size = crypto_key_size;
4069 ikev2_set_profile_esp_transforms (vlib_main_t * vm, u8 * name,
4070 ikev2_transform_encr_type_t crypto_alg,
4071 ikev2_transform_integ_type_t integ_alg,
4072 u32 crypto_key_size)
4077 p = ikev2_profile_index_by_name (name);
4081 r = clib_error_return (0, "unknown profile %v", name);
4085 p->esp_ts.crypto_alg = crypto_alg;
4086 p->esp_ts.integ_alg = integ_alg;
4087 p->esp_ts.crypto_key_size = crypto_key_size;
4092 ikev2_set_profile_tunnel_interface (vlib_main_t * vm,
4093 u8 * name, u32 sw_if_index)
4098 p = ikev2_profile_index_by_name (name);
4102 r = clib_error_return (0, "unknown profile %v", name);
4106 p->tun_itf = sw_if_index;
4112 ikev2_set_profile_ipsec_udp_port (vlib_main_t * vm, u8 * name, u16 port,
4115 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4116 ikev2_main_t *km = &ikev2_main;
4117 vnet_api_error_t rv = 0;
4121 return VNET_API_ERROR_INVALID_VALUE;
4125 if (p->ipsec_over_udp_port != IPSEC_UDP_PORT_NONE)
4126 return VNET_API_ERROR_VALUE_EXIST;
4128 rv = ikev2_register_udp_port (p, port);
4132 v = hash_get (km->udp_ports, port);
4134 return VNET_API_ERROR_IKE_NO_PORT;
4136 if (p->ipsec_over_udp_port == IPSEC_UDP_PORT_NONE)
4137 return VNET_API_ERROR_INVALID_VALUE;
4139 ikev2_unregister_udp_port (p);
4145 ikev2_set_profile_udp_encap (vlib_main_t * vm, u8 * name)
4147 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4152 r = clib_error_return (0, "unknown profile %v", name);
4161 ikev2_set_profile_sa_lifetime (vlib_main_t * vm, u8 * name,
4162 u64 lifetime, u32 jitter, u32 handover,
4168 p = ikev2_profile_index_by_name (name);
4172 r = clib_error_return (0, "unknown profile %v", name);
4176 p->lifetime = lifetime;
4177 p->lifetime_jitter = jitter;
4178 p->handover = handover;
4179 p->lifetime_maxdata = maxdata;
4184 ikev2_get_if_address (u32 sw_if_index, ip_address_family_t af,
4185 ip_address_t * out_addr)
4187 ip4_address_t *if_ip4;
4188 ip6_address_t *if_ip6;
4192 if_ip4 = ip4_interface_first_address (&ip4_main, sw_if_index, 0);
4195 ip_address_set (out_addr, if_ip4, AF_IP4);
4201 if_ip6 = ip6_interface_first_address (&ip6_main, sw_if_index);
4204 ip_address_set (out_addr, if_ip6, AF_IP6);
4212 ikev2_initiate_sa_init (vlib_main_t * vm, u8 * name)
4216 ikev2_main_t *km = &ikev2_main;
4220 int len = sizeof (ike_header_t), valid_ip = 0;
4221 ip_address_t if_ip = ip_address_initializer;
4223 p = ikev2_profile_index_by_name (name);
4227 r = clib_error_return (0, "unknown profile %v", name);
4231 if (p->responder.sw_if_index == ~0
4232 || ip_address_is_zero (&p->responder.addr))
4234 r = clib_error_return (0, "responder not set for profile %v", name);
4238 if (ikev2_get_if_address (p->responder.sw_if_index,
4239 ip_addr_version (&p->responder.addr), &if_ip))
4244 /* Prepare the SA and the IKE payload */
4246 clib_memset (&sa, 0, sizeof (ikev2_sa_t));
4247 ikev2_payload_chain_t *chain = 0;
4248 ikev2_payload_new_chain (chain);
4250 /* Build the IKE proposal payload */
4251 ikev2_sa_proposal_t *proposals = 0;
4252 ikev2_set_initiator_proposals (vm, &sa, &p->ike_ts, &proposals, 1);
4253 proposals[0].proposal_num = 1;
4254 proposals[0].protocol_id = IKEV2_PROTOCOL_IKE;
4256 /* Add and then cleanup proposal data */
4257 ikev2_payload_add_sa (chain, proposals);
4258 ikev2_sa_free_proposal_vector (&proposals);
4260 sa.is_initiator = 1;
4261 sa.profile_index = p - km->profiles;
4262 sa.state = IKEV2_STATE_SA_INIT;
4263 sa.tun_itf = p->tun_itf;
4264 sa.udp_encap = p->udp_encap;
4265 if (p->natt_disabled)
4266 sa.natt_state = IKEV2_NATT_DISABLED;
4267 sa.ipsec_over_udp_port = p->ipsec_over_udp_port;
4268 sa.is_tun_itf_set = 1;
4269 sa.initial_contact = 1;
4270 sa.dst_port = IKEV2_PORT;
4272 ikev2_generate_sa_error_t rc = ikev2_generate_sa_init_data (&sa);
4273 if (rc != IKEV2_GENERATE_SA_INIT_OK)
4275 ikev2_sa_free_all_vec (&sa);
4276 ikev2_payload_destroy_chain (chain);
4277 return clib_error_return (0, "%U", format_ikev2_gen_sa_error, rc);
4280 ikev2_payload_add_ke (chain, sa.dh_group, sa.i_dh_data);
4281 ikev2_payload_add_nonce (chain, sa.i_nonce);
4283 /* Build the child SA proposal */
4284 vec_resize (sa.childs, 1);
4285 ikev2_set_initiator_proposals (vm, &sa, &p->esp_ts,
4286 &sa.childs[0].i_proposals, 0);
4287 sa.childs[0].i_proposals[0].proposal_num = 1;
4288 sa.childs[0].i_proposals[0].protocol_id = IKEV2_PROTOCOL_ESP;
4289 RAND_bytes ((u8 *) & sa.childs[0].i_proposals[0].spi,
4290 sizeof (sa.childs[0].i_proposals[0].spi));
4292 /* Add NAT detection notification messages (mandatory) */
4293 u8 *nat_detection_sha1 =
4294 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa.ispi),
4295 clib_host_to_net_u64 (sa.rspi),
4296 &if_ip, clib_host_to_net_u16 (IKEV2_PORT));
4298 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP,
4299 nat_detection_sha1);
4300 vec_free (nat_detection_sha1);
4301 nat_detection_sha1 =
4302 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa.ispi),
4303 clib_host_to_net_u64 (sa.rspi),
4305 clib_host_to_net_u16 (sa.dst_port));
4306 ikev2_payload_add_notify (chain,
4307 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP,
4308 nat_detection_sha1);
4309 vec_free (nat_detection_sha1);
4311 u8 *sig_hash_algo = vec_new (u8, 8);
4312 u64 tmpsig = clib_host_to_net_u64 (0x0001000200030004);
4313 clib_memcpy_fast (sig_hash_algo, &tmpsig, sizeof (tmpsig));
4314 ikev2_payload_add_notify (chain,
4315 IKEV2_NOTIFY_MSG_SIGNATURE_HASH_ALGORITHMS,
4317 vec_free (sig_hash_algo);
4319 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4322 ikev2_sa_free_all_vec (&sa);
4323 ikev2_payload_destroy_chain (chain);
4324 char *errmsg = "buffer alloc failure";
4325 ikev2_log_error (errmsg);
4326 return clib_error_return (0, errmsg);
4328 ike0 = vlib_buffer_get_current (b0);
4330 /* Buffer update and boilerplate */
4331 len += vec_len (chain->data);
4332 ike0->nextpayload = chain->first_payload_type;
4333 ike0->length = clib_host_to_net_u32 (len);
4334 clib_memcpy_fast (ike0->payload, chain->data, vec_len (chain->data));
4335 ikev2_payload_destroy_chain (chain);
4337 ike0->version = IKE_VERSION_2;
4338 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
4339 ike0->exchange = IKEV2_EXCHANGE_SA_INIT;
4340 ike0->ispi = clib_host_to_net_u64 (sa.ispi);
4343 sa.last_init_msg_id += 1;
4345 /* store whole IKE payload - needed for PSK auth */
4346 vec_reset_length (sa.last_sa_init_req_packet_data);
4347 vec_add (sa.last_sa_init_req_packet_data, ike0, len);
4349 /* add data to the SA then add it to the pool */
4350 ip_address_copy (&sa.iaddr, &if_ip);
4351 ip_address_copy (&sa.raddr, &p->responder.addr);
4352 sa.i_id.type = p->loc_id.type;
4353 sa.i_id.data = vec_dup (p->loc_id.data);
4354 sa.r_id.type = p->rem_id.type;
4355 sa.r_id.data = vec_dup (p->rem_id.data);
4356 sa.i_auth.method = p->auth.method;
4357 sa.i_auth.hex = p->auth.hex;
4358 sa.i_auth.data = vec_dup (p->auth.data);
4359 sa.sw_if_index = p->responder.sw_if_index;
4360 vec_add (sa.childs[0].tsi, &p->loc_ts, 1);
4361 vec_add (sa.childs[0].tsr, &p->rem_ts, 1);
4363 ikev2_initial_contact_cleanup (0, &sa);
4365 /* add SA to the pool */
4366 ikev2_sa_t *sa0 = 0;
4367 pool_get (km->sais, sa0);
4368 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
4369 hash_set (km->sa_by_ispi, sa0->ispi, sa0 - km->sais);
4373 ikev2_send_ike (vm, &if_ip, &p->responder.addr, bi0, len,
4374 IKEV2_PORT, sa.dst_port, sa.sw_if_index);
4377 ("ispi %lx rspi %lx IKEV2_EXCHANGE_SA_INIT sent to ",
4378 clib_host_to_net_u64 (sa0->ispi), 0,
4379 ip_addr_v4 (&p->responder.addr).as_u32,
4380 ip_addr_version (&p->responder.addr) == AF_IP4);
4385 clib_error_return (0, "interface %U does not have any IP address!",
4386 format_vnet_sw_if_index_name, vnet_get_main (),
4387 p->responder.sw_if_index);
4395 ikev2_delete_child_sa_internal (vlib_main_t * vm, ikev2_sa_t * sa,
4396 ikev2_child_sa_t * csa)
4398 /* Create the Initiator notification for child SA removal */
4399 ikev2_main_t *km = &ikev2_main;
4405 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4408 ikev2_log_error ("buffer alloc failure");
4412 ike0 = vlib_buffer_get_current (b0);
4413 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
4414 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4415 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4417 vec_resize (sa->del, 1);
4418 sa->del->protocol_id = IKEV2_PROTOCOL_ESP;
4419 sa->del->spi = csa->i_proposals->spi;
4420 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
4421 sa->last_init_msg_id += 1;
4422 len = ikev2_generate_message (b0, sa, ike0, 0, 0, 0);
4426 if (ikev2_natt_active (sa))
4427 len = ikev2_insert_non_esp_marker (ike0, len);
4428 ikev2_send_ike (vm, &sa->iaddr, &sa->raddr, bi0, len,
4429 ikev2_get_port (sa), sa->dst_port, sa->sw_if_index);
4431 /* delete local child SA */
4432 ikev2_delete_tunnel_interface (km->vnet_main, sa, csa);
4433 ikev2_sa_del_child_sa (sa, csa);
4437 ikev2_initiate_delete_child_sa (vlib_main_t * vm, u32 ispi)
4440 ikev2_main_t *km = &ikev2_main;
4441 ikev2_main_per_thread_data_t *tkm;
4442 ikev2_sa_t *fsa = 0;
4443 ikev2_child_sa_t *fchild = 0;
4445 /* Search for the child SA */
4446 vec_foreach (tkm, km->per_thread_data)
4452 pool_foreach (sa, tkm->sas) {
4453 fchild = ikev2_sa_get_child(sa, ispi, IKEV2_PROTOCOL_ESP, 1);
4463 if (!fchild || !fsa)
4465 r = clib_error_return (0, "Child SA not found");
4470 ikev2_delete_child_sa_internal (vm, fsa, fchild);
4477 ikev2_initiate_delete_ike_sa (vlib_main_t * vm, u64 ispi)
4480 ikev2_main_t *km = &ikev2_main;
4481 ikev2_main_per_thread_data_t *tkm;
4482 ikev2_sa_t *fsa = 0;
4483 ikev2_main_per_thread_data_t *ftkm = 0;
4485 /* Search for the IKE SA */
4486 vec_foreach (tkm, km->per_thread_data)
4492 pool_foreach (sa, tkm->sas) {
4493 if (sa->ispi == ispi)
4505 r = clib_error_return (0, "IKE SA not found");
4509 ikev2_initiate_delete_ike_sa_internal (vm, ftkm, fsa, 1);
4514 ikev2_rekey_child_sa_internal (vlib_main_t * vm, ikev2_sa_t * sa,
4515 ikev2_child_sa_t * csa)
4517 /* Create the Initiator request for create child SA */
4523 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4526 ikev2_log_error ("buffer alloc failure");
4530 ike0 = vlib_buffer_get_current (b0);
4531 ike0->version = IKE_VERSION_2;
4532 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
4533 ike0->exchange = IKEV2_EXCHANGE_CREATE_CHILD_SA;
4534 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4535 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4536 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
4537 sa->last_init_msg_id += 1;
4539 ikev2_rekey_t *rekey;
4540 vec_reset_length (sa->rekey);
4541 vec_add2 (sa->rekey, rekey, 1);
4542 ikev2_sa_proposal_t *proposals = vec_dup (csa->i_proposals);
4545 RAND_bytes ((u8 *) & proposals[0].spi, sizeof (proposals[0].spi));
4546 rekey->spi = proposals[0].spi;
4547 rekey->ispi = csa->i_proposals->spi;
4548 len = ikev2_generate_message (b0, sa, ike0, proposals, 0, 0);
4552 if (ikev2_natt_active (sa))
4553 len = ikev2_insert_non_esp_marker (ike0, len);
4554 ikev2_send_ike (vm, &sa->iaddr, &sa->raddr, bi0, len,
4555 ikev2_get_port (sa), ikev2_get_port (sa), sa->sw_if_index);
4556 vec_free (proposals);
4560 ikev2_initiate_rekey_child_sa (vlib_main_t * vm, u32 ispi)
4563 ikev2_main_t *km = &ikev2_main;
4564 ikev2_main_per_thread_data_t *tkm;
4565 ikev2_sa_t *fsa = 0;
4566 ikev2_child_sa_t *fchild = 0;
4568 /* Search for the child SA */
4569 vec_foreach (tkm, km->per_thread_data)
4575 pool_foreach (sa, tkm->sas) {
4576 fchild = ikev2_sa_get_child(sa, ispi, IKEV2_PROTOCOL_ESP, 1);
4586 if (!fchild || !fsa)
4588 r = clib_error_return (0, "Child SA not found");
4593 ikev2_rekey_child_sa_internal (vm, fsa, fchild);
4600 ikev2_sa_sw_if_match (ikev2_sa_t * sa, u32 sw_if_index)
4602 return (sa->sw_if_index == sw_if_index) && sa->is_initiator;
4606 ikev2_sa_del (ikev2_profile_t * p, u32 sw_if_index)
4608 u64 *ispi, *ispi_vec = 0;
4609 ikev2_sa_t *sa, **sap, **sa_vec = 0;
4610 ikev2_main_t *km = &ikev2_main;
4611 ikev2_main_per_thread_data_t *tkm;
4612 p->responder.sw_if_index = ~0;
4614 vec_foreach (tkm, km->per_thread_data)
4617 pool_foreach (sa, tkm->sas) {
4618 if (ikev2_sa_sw_if_match (sa, sw_if_index))
4619 vec_add1 (sa_vec, sa);
4623 vec_foreach (sap, sa_vec)
4625 ikev2_initiate_delete_ike_sa_internal (km->vlib_main, tkm, *sap, 0);
4627 vec_reset_length (sa_vec);
4632 pool_foreach (sa, km->sais) {
4633 if (ikev2_sa_sw_if_match (sa, sw_if_index))
4634 vec_add1 (ispi_vec, sa->ispi);
4638 vec_foreach (ispi, ispi_vec)
4640 ikev2_del_sa_init_from_main (ispi);
4643 vec_free (ispi_vec);
4646 static clib_error_t *
4647 ikev2_sw_interface_add_del (vnet_main_t * vnm, u32 sw_if_index, u32 is_add)
4649 ikev2_main_t *km = &ikev2_main;
4656 pool_foreach (p, km->profiles) {
4657 if (p->responder.sw_if_index == sw_if_index)
4658 ikev2_sa_del (p, sw_if_index);
4665 VNET_SW_INTERFACE_ADD_DEL_FUNCTION (ikev2_sw_interface_add_del);
4668 ikev2_init (vlib_main_t * vm)
4670 ikev2_main_t *km = &ikev2_main;
4671 vlib_thread_main_t *tm = vlib_get_thread_main ();
4674 clib_memset (km, 0, sizeof (ikev2_main_t));
4675 km->vnet_main = vnet_get_main ();
4678 km->liveness_period = IKEV2_LIVENESS_PERIOD_CHECK;
4679 km->liveness_max_retries = IKEV2_LIVENESS_RETRIES;
4680 ikev2_crypto_init (km);
4682 mhash_init_vec_string (&km->profile_index_by_name, sizeof (uword));
4684 vec_validate_aligned (km->per_thread_data, tm->n_vlib_mains - 1,
4685 CLIB_CACHE_LINE_BYTES);
4686 for (thread_id = 0; thread_id < tm->n_vlib_mains; thread_id++)
4688 ikev2_main_per_thread_data_t *ptd =
4689 vec_elt_at_index (km->per_thread_data, thread_id);
4691 ptd->sa_by_rspi = hash_create (0, sizeof (uword));
4693 #if OPENSSL_VERSION_NUMBER >= 0x10100000L
4694 ptd->evp_ctx = EVP_CIPHER_CTX_new ();
4695 ptd->hmac_ctx = HMAC_CTX_new ();
4697 EVP_CIPHER_CTX_init (&ptd->_evp_ctx);
4698 ptd->evp_ctx = &ptd->_evp_ctx;
4699 HMAC_CTX_init (&(ptd->_hmac_ctx));
4700 ptd->hmac_ctx = &ptd->_hmac_ctx;
4704 km->sa_by_ispi = hash_create (0, sizeof (uword));
4705 km->sw_if_indices = hash_create (0, 0);
4706 km->udp_ports = hash_create (0, sizeof (uword));
4708 udp_register_dst_port (vm, IKEV2_PORT, ikev2_node_ip4.index, 1);
4709 udp_register_dst_port (vm, IKEV2_PORT, ikev2_node_ip6.index, 0);
4710 udp_register_dst_port (vm, IKEV2_PORT_NATT, ikev2_node_ip4.index, 1);
4711 udp_register_dst_port (vm, IKEV2_PORT_NATT, ikev2_node_ip6.index, 0);
4713 vlib_punt_hdl_t punt_hdl = vlib_punt_client_register ("ikev2-ip4-natt");
4714 vlib_punt_register (punt_hdl, ipsec_punt_reason[IPSEC_PUNT_IP4_SPI_UDP_0],
4716 ikev2_cli_reference ();
4718 km->log_level = IKEV2_LOG_ERROR;
4719 km->log_class = vlib_log_register_class ("ikev2", 0);
4724 VLIB_INIT_FUNCTION (ikev2_init) =
4726 .runs_after = VLIB_INITS("ipsec_init", "ipsec_punt_init"),
4731 ikev2_mngr_process_child_sa (ikev2_sa_t * sa, ikev2_child_sa_t * csa,
4734 ikev2_main_t *km = &ikev2_main;
4735 ikev2_profile_t *p = 0;
4736 vlib_main_t *vm = km->vlib_main;
4737 f64 now = vlib_time_now (vm);
4740 if (sa->profile_index != ~0)
4741 p = pool_elt_at_index (km->profiles, sa->profile_index);
4743 if (sa->is_initiator && p && csa->time_to_expiration
4744 && now > csa->time_to_expiration)
4746 if (!csa->is_expired || csa->rekey_retries > 0)
4748 ikev2_rekey_child_sa_internal (vm, sa, csa);
4749 csa->time_to_expiration = now + p->handover;
4750 csa->is_expired = 1;
4751 if (csa->rekey_retries == 0)
4753 csa->rekey_retries = 5;
4755 else if (csa->rekey_retries > 0)
4757 csa->rekey_retries--;
4758 ikev2_log_debug ("Rekeying Child SA 0x%x, retries left %d",
4759 csa->i_proposals->spi, csa->rekey_retries);
4760 if (csa->rekey_retries == 0)
4762 csa->rekey_retries = -1;
4769 csa->time_to_expiration = 0;
4770 ikev2_delete_child_sa_internal (vm, sa, csa);
4778 ipip_tunnel_t *ipip = NULL;
4779 u32 sw_if_index = sa->is_tun_itf_set ? sa->tun_itf : ~0;
4780 if (~0 == sw_if_index)
4782 ip46_address_t local_ip;
4783 ip46_address_t remote_ip;
4784 if (sa->is_initiator)
4786 local_ip = to_ip46 (ip_addr_version (&sa->iaddr),
4787 ip_addr_bytes (&sa->iaddr));
4788 remote_ip = to_ip46 (ip_addr_version (&sa->raddr),
4789 ip_addr_bytes (&sa->raddr));
4793 local_ip = to_ip46 (ip_addr_version (&sa->raddr),
4794 ip_addr_bytes (&sa->raddr));
4795 remote_ip = to_ip46 (ip_addr_version (&sa->iaddr),
4796 ip_addr_bytes (&sa->iaddr));
4800 ipip_tunnel_key_t key = {
4803 .transport = IPIP_TRANSPORT_IP4,
4808 ipip = ipip_tunnel_db_find (&key);
4811 sw_if_index = ipip->sw_if_index;
4817 vec_add1 (sas_in, csa->remote_sa_id);
4818 vlib_worker_thread_barrier_sync (vm);
4819 int rv = ipsec_tun_protect_update (sw_if_index, NULL,
4820 csa->local_sa_id, sas_in);
4823 ipsec_sa_unlock_id (ikev2_flip_alternate_sa_bit (csa->remote_sa_id));
4824 vlib_worker_thread_barrier_release (vm);
4831 ikev2_set_log_level (ikev2_log_level_t log_level)
4833 ikev2_main_t *km = &ikev2_main;
4835 if (log_level >= IKEV2_LOG_MAX)
4837 ikev2_log_error ("unknown logging level %d", log_level);
4841 km->log_level = log_level;
4846 ikev2_set_liveness_params (u32 period, u32 max_retries)
4848 ikev2_main_t *km = &ikev2_main;
4850 if (period == 0 || max_retries == 0)
4851 return clib_error_return (0, "invalid args");
4853 km->liveness_period = period;
4854 km->liveness_max_retries = max_retries;
4859 ikev2_profile_natt_disable (u8 * name)
4861 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4863 return clib_error_return (0, "unknown profile %v", name);
4865 p->natt_disabled = 1;
4870 ikev2_mngr_process_ipsec_sa (ipsec_sa_t * ipsec_sa)
4872 ikev2_main_t *km = &ikev2_main;
4873 vlib_main_t *vm = km->vlib_main;
4874 ikev2_main_per_thread_data_t *tkm;
4875 ikev2_sa_t *fsa = 0;
4876 ikev2_profile_t *p = 0;
4877 ikev2_child_sa_t *fchild = 0;
4878 f64 now = vlib_time_now (vm);
4879 vlib_counter_t counts;
4881 /* Search for the SA and child SA */
4882 vec_foreach (tkm, km->per_thread_data)
4888 pool_foreach (sa, tkm->sas) {
4889 fchild = ikev2_sa_get_child(sa, ipsec_sa->spi, IKEV2_PROTOCOL_ESP, 1);
4898 vlib_get_combined_counter (&ipsec_sa_counters,
4899 ipsec_sa->stat_index, &counts);
4901 if (fsa && fsa->profile_index != ~0 && fsa->is_initiator)
4902 p = pool_elt_at_index (km->profiles, fsa->profile_index);
4904 if (fchild && p && p->lifetime_maxdata)
4906 if (!fchild->is_expired && counts.bytes > p->lifetime_maxdata)
4908 fchild->time_to_expiration = now;
4914 ikev2_process_pending_sa_init_one (ikev2_main_t * km, ikev2_sa_t * sa)
4920 if (ip_address_is_zero (&sa->iaddr))
4922 p = pool_elt_at_index (km->profiles, sa->profile_index);
4923 if (!ikev2_get_if_address (p->responder.sw_if_index,
4924 ip_addr_version (&p->responder.addr),
4928 /* update NAT detection payload */
4930 ikev2_find_ike_notify_payload
4931 ((ike_header_t *) sa->last_sa_init_req_packet_data,
4932 IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP);
4936 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
4937 clib_host_to_net_u64 (sa->rspi),
4939 clib_host_to_net_u16 (IKEV2_PORT));
4940 clib_memcpy_fast (np, nat_sha, vec_len (nat_sha));
4945 if (vlib_buffer_alloc (km->vlib_main, &bi0, 1) != 1)
4948 vlib_buffer_t *b = vlib_get_buffer (km->vlib_main, bi0);
4949 clib_memcpy_fast (vlib_buffer_get_current (b),
4950 sa->last_sa_init_req_packet_data,
4951 vec_len (sa->last_sa_init_req_packet_data));
4953 ikev2_send_ike (km->vlib_main, &sa->iaddr, &sa->raddr, bi0,
4954 vec_len (sa->last_sa_init_req_packet_data),
4955 ikev2_get_port (sa), IKEV2_PORT, sa->sw_if_index);
4959 ikev2_process_pending_sa_init (ikev2_main_t * km)
4966 hash_foreach (ispi, sai, km->sa_by_ispi,
4968 sa = pool_elt_at_index (km->sais, sai);
4969 if (sa->init_response_received)
4972 ikev2_process_pending_sa_init_one (km, sa);
4978 ikev2_send_informational_request (ikev2_sa_t * sa)
4980 ikev2_main_t *km = &ikev2_main;
4981 ip_address_t *src, *dst;
4988 bi0 = ikev2_get_new_ike_header_buff (km->vlib_main, &b0);
4991 ikev2_log_error ("buffer alloc failure");
4995 ike0 = vlib_buffer_get_current (b0);
4996 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
4997 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4998 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4999 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
5001 sa->last_init_msg_id += 1;
5002 len = ikev2_generate_message (b0, sa, ike0, 0, 0, 0);
5006 if (ikev2_natt_active (sa))
5007 len = ikev2_insert_non_esp_marker (ike0, len);
5009 if (sa->is_initiator)
5020 dp = sa->dst_port ? sa->dst_port : ikev2_get_port (sa);
5021 ikev2_send_ike (km->vlib_main, src, dst, bi0, len, ikev2_get_port (sa), dp,
5026 ikev2_disable_dpd (void)
5028 ikev2_main_t *km = &ikev2_main;
5029 km->dpd_disabled = 1;
5032 static_always_inline int
5033 ikev2_mngr_process_responder_sas (ikev2_sa_t * sa)
5035 ikev2_main_t *km = &ikev2_main;
5036 vlib_main_t *vm = km->vlib_main;
5038 if (!sa->keys_generated)
5041 if (sa->liveness_retries >= km->liveness_max_retries)
5044 f64 now = vlib_time_now (vm);
5046 if (sa->liveness_period_check < now)
5048 sa->liveness_retries++;
5049 sa->liveness_period_check = now + km->liveness_period;
5050 ikev2_send_informational_request (sa);
5056 ikev2_mngr_process_fn (vlib_main_t * vm, vlib_node_runtime_t * rt,
5059 ikev2_main_t *km = &ikev2_main;
5060 ipsec_main_t *im = &ipsec_main;
5062 ikev2_child_sa_t *c;
5067 vlib_process_wait_for_event_or_clock (vm, 2);
5068 vlib_process_get_events (vm, NULL);
5070 /* process ike child sas */
5071 ikev2_main_per_thread_data_t *tkm;
5072 vec_foreach (tkm, km->per_thread_data)
5075 u32 *to_be_deleted = 0;
5078 pool_foreach (sa, tkm->sas) {
5079 ikev2_child_sa_t *c;
5082 if (sa->state != IKEV2_STATE_AUTHENTICATED)
5085 if (sa->old_remote_id_present && 0 > sa->old_id_expiration)
5087 sa->old_remote_id_present = 0;
5091 sa->old_id_expiration -= 1;
5093 vec_foreach (c, sa->childs)
5094 ikev2_mngr_process_child_sa(sa, c, del_old_ids);
5096 if (!km->dpd_disabled && ikev2_mngr_process_responder_sas (sa))
5097 vec_add1 (to_be_deleted, sa - tkm->sas);
5101 vec_foreach (sai, to_be_deleted)
5103 sa = pool_elt_at_index (tkm->sas, sai[0]);
5104 u8 reinitiate = (sa->is_initiator && sa->profile_index != ~0);
5105 vec_foreach (c, sa->childs)
5107 ikev2_delete_tunnel_interface (km->vnet_main, sa, c);
5108 ikev2_sa_del_child_sa (sa, c);
5110 ikev2_sa_free_all_vec (sa);
5111 hash_unset (tkm->sa_by_rspi, sa->rspi);
5112 pool_put (tkm->sas, sa);
5116 p = pool_elt_at_index (km->profiles, sa->profile_index);
5119 clib_error_t *e = ikev2_initiate_sa_init (vm, p->name);
5122 ikev2_log_error ("%U", format_clib_error, e);
5123 clib_error_free (e);
5128 vec_free (to_be_deleted);
5131 /* process ipsec sas */
5134 pool_foreach (sa, im->sad) {
5135 ikev2_mngr_process_ipsec_sa(sa);
5139 ikev2_process_pending_sa_init (km);
5145 VLIB_REGISTER_NODE (ikev2_mngr_process_node, static) = {
5146 .function = ikev2_mngr_process_fn,
5147 .type = VLIB_NODE_TYPE_PROCESS,
5149 "ikev2-manager-process",
5152 VLIB_PLUGIN_REGISTER () = {
5153 .version = VPP_BUILD_VER,
5154 .description = "Internet Key Exchange (IKEv2) Protocol",
5159 * fd.io coding-style-patch-verification: ON
5162 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob