2 * Copyright (c) 2015 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vlib/vlib.h>
17 #include <vlib/unix/plugin.h>
18 #include <vlibmemory/api.h>
19 #include <vpp/app/version.h>
20 #include <vnet/vnet.h>
21 #include <vppinfra/error.h>
22 #include <vppinfra/random.h>
23 #include <vnet/udp/udp.h>
24 #include <vnet/ipsec/ipsec.h>
25 #include <vnet/ipsec/ipsec_tun.h>
26 #include <vnet/ipip/ipip.h>
27 #include <plugins/ikev2/ikev2.h>
28 #include <plugins/ikev2/ikev2_priv.h>
29 #include <openssl/sha.h>
30 #include <vnet/ipsec/ipsec_punt.h>
32 #define IKEV2_LIVENESS_RETRIES 3
33 #define IKEV2_LIVENESS_PERIOD_CHECK 30
35 ikev2_main_t ikev2_main;
37 static int ikev2_delete_tunnel_interface (vnet_main_t * vnm,
39 ikev2_child_sa_t * child);
41 #define ikev2_set_state(sa, v, ...) do { \
43 ikev2_elog_sa_state("ispi %lx SA state changed to " #v __VA_ARGS__, sa->ispi); \
53 format_ikev2_trace (u8 * s, va_list * args)
55 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
56 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
57 ikev2_trace_t *t = va_arg (*args, ikev2_trace_t *);
59 s = format (s, "ikev2: sw_if_index %d, next index %d",
60 t->sw_if_index, t->next_index);
64 #define IKEV2_GENERATE_SA_INIT_OK_str ""
65 #define IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR \
66 "no DH group configured for IKE proposals!"
67 #define IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR \
68 "DH group not supported!"
72 IKEV2_GENERATE_SA_INIT_OK,
73 IKEV2_GENERATE_SA_INIT_ERR_NO_DH,
74 IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH,
75 } ikev2_generate_sa_error_t;
78 format_ikev2_gen_sa_error (u8 * s, va_list * args)
80 ikev2_generate_sa_error_t e = va_arg (*args, ikev2_generate_sa_error_t);
83 case IKEV2_GENERATE_SA_INIT_OK:
85 case IKEV2_GENERATE_SA_INIT_ERR_NO_DH:
86 s = format (s, IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR);
88 case IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH:
89 s = format (s, IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR);
95 #define foreach_ikev2_error \
96 _(PROCESSED, "IKEv2 packets processed") \
97 _(IKE_SA_INIT_RETRANSMIT, "IKE_SA_INIT retransmit ") \
98 _(IKE_SA_INIT_IGNORE, "IKE_SA_INIT ignore (IKE SA already auth)") \
99 _(IKE_REQ_RETRANSMIT, "IKE request retransmit") \
100 _(IKE_REQ_IGNORE, "IKE request ignore (old msgid)") \
101 _(NOT_IKEV2, "Non IKEv2 packets received") \
102 _(BAD_LENGTH, "Bad packet length") \
103 _(MALFORMED_PACKET, "Malformed packet") \
104 _(NO_BUFF_SPACE, "No buffer space")
108 #define _(sym,str) IKEV2_ERROR_##sym,
114 static char *ikev2_error_strings[] = {
115 #define _(sym,string) string,
122 IKEV2_NEXT_IP4_LOOKUP,
123 IKEV2_NEXT_IP4_ERROR_DROP,
129 IKEV2_NEXT_IP6_LOOKUP,
130 IKEV2_NEXT_IP6_ERROR_DROP,
134 typedef u32 ikev2_non_esp_marker;
136 static_always_inline u16
137 ikev2_get_port (ikev2_sa_t * sa)
139 return ikev2_natt_active (sa) ? IKEV2_PORT_NATT : IKEV2_PORT;
142 static_always_inline int
143 ikev2_insert_non_esp_marker (ike_header_t * ike, int len)
145 memmove ((u8 *) ike + sizeof (ikev2_non_esp_marker), ike, len);
146 clib_memset (ike, 0, sizeof (ikev2_non_esp_marker));
147 return len + sizeof (ikev2_non_esp_marker);
150 static ikev2_sa_transform_t *
151 ikev2_find_transform_data (ikev2_sa_transform_t * t)
153 ikev2_main_t *km = &ikev2_main;
154 ikev2_sa_transform_t *td;
156 vec_foreach (td, km->supported_transforms)
158 if (td->type != t->type)
161 if (td->transform_id != t->transform_id)
164 if (td->type == IKEV2_TRANSFORM_TYPE_ENCR)
166 if (vec_len (t->attrs) != 4 || t->attrs[0] != 0x80
167 || t->attrs[1] != 14)
170 if (((t->attrs[2] << 8 | t->attrs[3]) / 8) != td->key_len)
178 static ikev2_sa_proposal_t *
179 ikev2_select_proposal (ikev2_sa_proposal_t * proposals,
180 ikev2_protocol_id_t prot_id)
182 ikev2_sa_proposal_t *rv = 0;
183 ikev2_sa_proposal_t *proposal;
184 ikev2_sa_transform_t *transform, *new_t;
185 u8 mandatory_bitmap, optional_bitmap;
187 if (prot_id == IKEV2_PROTOCOL_IKE)
189 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_ENCR) |
190 (1 << IKEV2_TRANSFORM_TYPE_PRF) | (1 << IKEV2_TRANSFORM_TYPE_DH);
191 optional_bitmap = mandatory_bitmap | (1 << IKEV2_TRANSFORM_TYPE_INTEG);
193 else if (prot_id == IKEV2_PROTOCOL_ESP)
195 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_ENCR) |
196 (1 << IKEV2_TRANSFORM_TYPE_ESN);
197 optional_bitmap = mandatory_bitmap |
198 (1 << IKEV2_TRANSFORM_TYPE_INTEG) | (1 << IKEV2_TRANSFORM_TYPE_DH);
200 else if (prot_id == IKEV2_PROTOCOL_AH)
202 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_INTEG) |
203 (1 << IKEV2_TRANSFORM_TYPE_ESN);
204 optional_bitmap = mandatory_bitmap | (1 << IKEV2_TRANSFORM_TYPE_DH);
209 vec_add2 (rv, proposal, 1);
211 vec_foreach (proposal, proposals)
214 if (proposal->protocol_id != prot_id)
217 vec_foreach (transform, proposal->transforms)
219 if ((1 << transform->type) & bitmap)
222 if (ikev2_find_transform_data (transform))
224 bitmap |= 1 << transform->type;
225 vec_add2 (rv->transforms, new_t, 1);
226 clib_memcpy_fast (new_t, transform, sizeof (*new_t));
227 new_t->attrs = vec_dup (transform->attrs);
231 if ((bitmap & mandatory_bitmap) == mandatory_bitmap &&
232 (bitmap & ~optional_bitmap) == 0)
234 rv->proposal_num = proposal->proposal_num;
235 rv->protocol_id = proposal->protocol_id;
236 RAND_bytes ((u8 *) & rv->spi, sizeof (rv->spi));
241 vec_free (rv->transforms);
250 ikev2_sa_transform_t *
251 ikev2_sa_get_td_for_type (ikev2_sa_proposal_t * p,
252 ikev2_transform_type_t type)
254 ikev2_sa_transform_t *t;
259 vec_foreach (t, p->transforms)
262 return ikev2_find_transform_data (t);
268 ikev2_sa_get_child (ikev2_sa_t * sa, u32 spi, ikev2_protocol_id_t prot_id,
272 vec_foreach (c, sa->childs)
274 ikev2_sa_proposal_t *proposal =
275 by_initiator ? &c->i_proposals[0] : &c->r_proposals[0];
276 if (proposal && proposal->spi == spi && proposal->protocol_id == prot_id)
284 ikev2_sa_free_proposal_vector (ikev2_sa_proposal_t ** v)
286 ikev2_sa_proposal_t *p;
287 ikev2_sa_transform_t *t;
294 vec_foreach (t, p->transforms)
298 vec_free (p->transforms);
304 ikev2_sa_free_child_sa (ikev2_child_sa_t * c)
306 ikev2_sa_free_proposal_vector (&c->r_proposals);
307 ikev2_sa_free_proposal_vector (&c->i_proposals);
317 ikev2_sa_free_all_child_sa (ikev2_child_sa_t ** childs)
320 vec_foreach (c, *childs) ikev2_sa_free_child_sa (c);
326 ikev2_sa_del_child_sa (ikev2_sa_t * sa, ikev2_child_sa_t * child)
328 ikev2_sa_free_child_sa (child);
329 vec_del1 (sa->childs, child - sa->childs);
333 ikev2_sa_free_all_vec (ikev2_sa_t * sa)
335 vec_free (sa->i_nonce);
336 vec_free (sa->r_nonce);
338 vec_free (sa->dh_shared_key);
339 vec_free (sa->dh_private_key);
340 vec_free (sa->i_dh_data);
341 vec_free (sa->r_dh_data);
343 ikev2_sa_free_proposal_vector (&sa->r_proposals);
344 ikev2_sa_free_proposal_vector (&sa->i_proposals);
347 vec_free (sa->sk_ai);
348 vec_free (sa->sk_ar);
349 vec_free (sa->sk_ei);
350 vec_free (sa->sk_er);
351 vec_free (sa->sk_pi);
352 vec_free (sa->sk_pr);
354 vec_free (sa->i_id.data);
355 vec_free (sa->r_id.data);
357 vec_free (sa->i_auth.data);
359 EVP_PKEY_free (sa->i_auth.key);
360 vec_free (sa->r_auth.data);
362 EVP_PKEY_free (sa->r_auth.key);
366 vec_free (sa->rekey);
368 vec_free (sa->last_sa_init_req_packet_data);
369 vec_free (sa->last_sa_init_res_packet_data);
371 vec_free (sa->last_res_packet_data);
373 ikev2_sa_free_all_child_sa (&sa->childs);
377 ikev2_delete_sa (ikev2_main_per_thread_data_t * ptd, ikev2_sa_t * sa)
381 ikev2_sa_free_all_vec (sa);
383 p = hash_get (ptd->sa_by_rspi, sa->rspi);
386 hash_unset (ptd->sa_by_rspi, sa->rspi);
387 pool_put (ptd->sas, sa);
391 static ikev2_generate_sa_error_t
392 ikev2_generate_sa_init_data (ikev2_sa_t * sa)
394 ikev2_sa_transform_t *t = 0, *t2;
395 ikev2_main_t *km = &ikev2_main;
397 if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
398 return IKEV2_GENERATE_SA_INIT_ERR_NO_DH;
400 /* check if received DH group is on our list of supported groups */
401 vec_foreach (t2, km->supported_transforms)
403 if (t2->type == IKEV2_TRANSFORM_TYPE_DH && sa->dh_group == t2->dh_type)
412 sa->dh_group = IKEV2_TRANSFORM_DH_TYPE_NONE;
413 return IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH;
416 if (sa->is_initiator)
419 RAND_bytes ((u8 *) & sa->ispi, 8);
422 sa->i_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
423 RAND_bytes ((u8 *) sa->i_nonce, IKEV2_NONCE_SIZE);
428 RAND_bytes ((u8 *) & sa->rspi, 8);
431 sa->r_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
432 RAND_bytes ((u8 *) sa->r_nonce, IKEV2_NONCE_SIZE);
435 /* generate dh keys */
436 ikev2_generate_dh (sa, t);
438 return IKEV2_GENERATE_SA_INIT_OK;
442 ikev2_complete_sa_data (ikev2_sa_t * sa, ikev2_sa_t * sai)
444 ikev2_sa_transform_t *t = 0, *t2;
445 ikev2_main_t *km = &ikev2_main;
447 /*move some data to the new SA */
448 #define _(A) ({void* __tmp__ = (A); (A) = 0; __tmp__;})
449 sa->i_nonce = _(sai->i_nonce);
450 sa->i_dh_data = _(sai->i_dh_data);
451 sa->dh_private_key = _(sai->dh_private_key);
452 ip_address_copy (&sa->iaddr, &sai->iaddr);
453 ip_address_copy (&sa->raddr, &sai->raddr);
454 sa->is_initiator = sai->is_initiator;
455 sa->i_id.type = sai->i_id.type;
456 sa->r_id.type = sai->r_id.type;
457 sa->profile_index = sai->profile_index;
458 sa->tun_itf = sai->tun_itf;
459 sa->is_tun_itf_set = sai->is_tun_itf_set;
460 if (sai->natt_state == IKEV2_NATT_DISABLED)
461 sa->natt_state = IKEV2_NATT_DISABLED;
462 sa->i_id.data = _(sai->i_id.data);
463 sa->r_id.data = _(sai->r_id.data);
464 sa->i_auth.method = sai->i_auth.method;
465 sa->i_auth.hex = sai->i_auth.hex;
466 sa->i_auth.data = _(sai->i_auth.data);
467 sa->i_auth.key = _(sai->i_auth.key);
468 sa->last_sa_init_req_packet_data = _(sai->last_sa_init_req_packet_data);
469 sa->last_init_msg_id = sai->last_init_msg_id;
470 sa->childs = _(sai->childs);
471 sa->udp_encap = sai->udp_encap;
472 sa->ipsec_over_udp_port = sai->ipsec_over_udp_port;
473 sa->dst_port = sai->dst_port;
474 sa->sw_if_index = sai->sw_if_index;
478 if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
483 /* check if received DH group is on our list of supported groups */
484 vec_foreach (t2, km->supported_transforms)
486 if (t2->type == IKEV2_TRANSFORM_TYPE_DH && sa->dh_group == t2->dh_type)
495 sa->dh_group = IKEV2_TRANSFORM_DH_TYPE_NONE;
500 /* generate dh keys */
501 ikev2_complete_dh (sa, t);
506 ikev2_calc_keys (ikev2_sa_t * sa)
509 /* calculate SKEYSEED = prf(Ni | Nr, g^ir) */
512 u16 integ_key_len = 0, salt_len = 0;
513 ikev2_sa_transform_t *tr_encr, *tr_prf, *tr_integ;
515 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
517 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
519 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
522 integ_key_len = tr_integ->key_len;
524 salt_len = sizeof (u32);
526 vec_append (s, sa->i_nonce);
527 vec_append (s, sa->r_nonce);
528 skeyseed = ikev2_calc_prf (tr_prf, s, sa->dh_shared_key);
530 /* Calculate S = Ni | Nr | SPIi | SPIr */
532 vec_add2 (s, tmp, 2 * sizeof (*spi));
534 spi[0] = clib_host_to_net_u64 (sa->ispi);
535 spi[1] = clib_host_to_net_u64 (sa->rspi);
537 /* calculate PRFplus */
539 int len = tr_prf->key_trunc + /* SK_d */
540 integ_key_len * 2 + /* SK_ai, SK_ar */
541 tr_encr->key_len * 2 + /* SK_ei, SK_er */
542 tr_prf->key_len * 2 + /* SK_pi, SK_pr */
545 keymat = ikev2_calc_prfplus (tr_prf, skeyseed, s, len);
552 sa->sk_d = vec_new (u8, tr_prf->key_trunc);
553 clib_memcpy_fast (sa->sk_d, keymat + pos, tr_prf->key_trunc);
554 pos += tr_prf->key_trunc;
559 sa->sk_ai = vec_new (u8, integ_key_len);
560 clib_memcpy_fast (sa->sk_ai, keymat + pos, integ_key_len);
561 pos += integ_key_len;
564 sa->sk_ar = vec_new (u8, integ_key_len);
565 clib_memcpy_fast (sa->sk_ar, keymat + pos, integ_key_len);
566 pos += integ_key_len;
570 sa->sk_ei = vec_new (u8, tr_encr->key_len + salt_len);
571 clib_memcpy_fast (sa->sk_ei, keymat + pos, tr_encr->key_len + salt_len);
572 pos += tr_encr->key_len + salt_len;
575 sa->sk_er = vec_new (u8, tr_encr->key_len + salt_len);
576 clib_memcpy_fast (sa->sk_er, keymat + pos, tr_encr->key_len + salt_len);
577 pos += tr_encr->key_len + salt_len;
580 sa->sk_pi = vec_new (u8, tr_prf->key_len);
581 clib_memcpy_fast (sa->sk_pi, keymat + pos, tr_prf->key_len);
582 pos += tr_prf->key_len;
585 sa->sk_pr = vec_new (u8, tr_prf->key_len);
586 clib_memcpy_fast (sa->sk_pr, keymat + pos, tr_prf->key_len);
587 pos += tr_prf->key_len;
590 sa->keys_generated = 1;
594 ikev2_calc_child_keys (ikev2_sa_t * sa, ikev2_child_sa_t * child)
597 u16 integ_key_len = 0;
600 ikev2_sa_transform_t *tr_prf, *ctr_encr, *ctr_integ;
602 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
604 ikev2_sa_get_td_for_type (child->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
606 ikev2_sa_get_td_for_type (child->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
609 integ_key_len = ctr_integ->key_len;
611 salt_len = sizeof (u32);
613 vec_append (s, sa->i_nonce);
614 vec_append (s, sa->r_nonce);
615 /* calculate PRFplus */
617 int len = ctr_encr->key_len * 2 + integ_key_len * 2 + salt_len * 2;
619 keymat = ikev2_calc_prfplus (tr_prf, sa->sk_d, s, len);
624 child->sk_ei = vec_new (u8, ctr_encr->key_len);
625 clib_memcpy_fast (child->sk_ei, keymat + pos, ctr_encr->key_len);
626 pos += ctr_encr->key_len;
631 child->sk_ai = vec_new (u8, ctr_integ->key_len);
632 clib_memcpy_fast (child->sk_ai, keymat + pos, ctr_integ->key_len);
633 pos += ctr_integ->key_len;
637 clib_memcpy (&child->salt_ei, keymat + pos, salt_len);
642 child->sk_er = vec_new (u8, ctr_encr->key_len);
643 clib_memcpy_fast (child->sk_er, keymat + pos, ctr_encr->key_len);
644 pos += ctr_encr->key_len;
649 child->sk_ar = vec_new (u8, integ_key_len);
650 clib_memcpy_fast (child->sk_ar, keymat + pos, integ_key_len);
651 pos += integ_key_len;
655 clib_memcpy (&child->salt_er, keymat + pos, salt_len);
664 static_always_inline u8 *
665 ikev2_compute_nat_sha1 (u64 ispi, u64 rspi, ip_address_t * ia, u16 port)
667 const u32 max_buf_size =
668 sizeof (ispi) + sizeof (rspi) + sizeof (ip6_address_t) + sizeof (u16);
669 u8 buf[max_buf_size];
670 u8 *res = vec_new (u8, 20);
672 clib_memcpy_fast (&buf[0], &ispi, sizeof (ispi));
673 clib_memcpy_fast (&buf[8], &rspi, sizeof (rspi));
674 clib_memcpy_fast (&buf[8 + 8], ip_addr_bytes (ia), ip_address_size (ia));
675 clib_memcpy_fast (&buf[8 + 8 + ip_address_size (ia)], &port, sizeof (port));
676 SHA1 (buf, 2 * sizeof (ispi) + sizeof (port) + ip_address_size (ia), res);
681 ikev2_parse_ke_payload (const void *p, u32 rlen, ikev2_sa_t * sa,
684 const ike_ke_payload_header_t *ke = p;
685 u16 plen = clib_net_to_host_u16 (ke->length);
686 ASSERT (plen >= sizeof (*ke) && plen <= rlen);
687 if (sizeof (*ke) > rlen)
690 sa->dh_group = clib_net_to_host_u16 (ke->dh_group);
691 vec_reset_length (ke_data[0]);
692 vec_add (ke_data[0], ke->payload, plen - sizeof (*ke));
697 ikev2_parse_nonce_payload (const void *p, u32 rlen, u8 * nonce)
699 const ike_payload_header_t *ikep = p;
700 u16 plen = clib_net_to_host_u16 (ikep->length);
701 ASSERT (plen >= sizeof (*ikep) && plen <= rlen);
702 clib_memcpy_fast (nonce, ikep->payload, plen - sizeof (*ikep));
707 ikev2_check_payload_length (const ike_payload_header_t * ikep, int rlen,
710 if (sizeof (*ikep) > rlen)
712 *plen = clib_net_to_host_u16 (ikep->length);
713 if (*plen < sizeof (*ikep) || *plen > rlen)
719 ikev2_process_sa_init_req (vlib_main_t *vm, ikev2_sa_t *sa, ike_header_t *ike,
720 udp_header_t *udp, u32 len, u32 sw_if_index)
722 u8 nonce[IKEV2_NONCE_SIZE];
724 u8 payload = ike->nextpayload;
725 ike_payload_header_t *ikep;
728 ikev2_elog_exchange ("ispi %lx rspi %lx IKE_INIT request received "
729 "from ", clib_net_to_host_u64 (ike->ispi),
730 clib_net_to_host_u64 (ike->rspi),
731 ip_addr_v4 (&sa->iaddr).as_u32,
732 ip_addr_version (&sa->iaddr) == AF_IP4);
734 sa->ispi = clib_net_to_host_u64 (ike->ispi);
735 sa->sw_if_index = sw_if_index;
737 /* store whole IKE payload - needed for PSK auth */
738 vec_reset_length (sa->last_sa_init_req_packet_data);
739 vec_add (sa->last_sa_init_req_packet_data, ike, len);
741 if (len < sizeof (*ike))
744 len -= sizeof (*ike);
745 while (p < len && payload != IKEV2_PAYLOAD_NONE)
747 ikep = (ike_payload_header_t *) & ike->payload[p];
748 int current_length = len - p;
749 if (!ikev2_check_payload_length (ikep, current_length, &plen))
752 if (payload == IKEV2_PAYLOAD_SA)
754 ikev2_sa_free_proposal_vector (&sa->i_proposals);
755 sa->i_proposals = ikev2_parse_sa_payload (ikep, current_length);
757 else if (payload == IKEV2_PAYLOAD_KE)
759 if (!ikev2_parse_ke_payload (ikep, current_length, sa,
763 else if (payload == IKEV2_PAYLOAD_NONCE)
765 vec_reset_length (sa->i_nonce);
766 if (ikev2_parse_nonce_payload (ikep, current_length, nonce))
767 vec_add (sa->i_nonce, nonce, plen - sizeof (*ikep));
769 else if (payload == IKEV2_PAYLOAD_NOTIFY)
772 ikev2_parse_notify_payload (ikep, current_length);
773 if (n->msg_type == IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP)
775 u8 *src_sha = ikev2_compute_nat_sha1 (ike->ispi, 0, &sa->iaddr,
777 if (clib_memcmp (src_sha, n->data, vec_len (src_sha)))
779 if (sa->natt_state == IKEV2_NATT_ENABLED)
780 sa->natt_state = IKEV2_NATT_ACTIVE;
781 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx initiator"
782 " behind NAT", sa->ispi);
786 else if (n->msg_type ==
787 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP)
789 u8 *dst_sha = ikev2_compute_nat_sha1 (ike->ispi, 0, &sa->raddr,
791 if (clib_memcmp (dst_sha, n->data, vec_len (dst_sha)))
793 if (sa->natt_state == IKEV2_NATT_ENABLED)
794 sa->natt_state = IKEV2_NATT_ACTIVE;
795 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx responder"
796 " (self) behind NAT", sa->ispi);
802 else if (payload == IKEV2_PAYLOAD_VENDOR)
804 ikev2_parse_vendor_payload (ikep);
808 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
810 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
812 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
813 sa->unsupported_cp = payload;
818 payload = ikep->nextpayload;
822 ikev2_set_state (sa, IKEV2_STATE_SA_INIT);
827 ikev2_process_sa_init_resp (vlib_main_t * vm,
828 ikev2_sa_t * sa, ike_header_t * ike,
829 udp_header_t * udp, u32 len)
831 u8 nonce[IKEV2_NONCE_SIZE];
833 u8 payload = ike->nextpayload;
834 ike_payload_header_t *ikep;
837 sa->ispi = clib_net_to_host_u64 (ike->ispi);
838 sa->rspi = clib_net_to_host_u64 (ike->rspi);
840 ikev2_elog_exchange ("ispi %lx rspi %lx IKE_INIT response received "
841 "from ", sa->ispi, sa->rspi,
842 ip_addr_v4 (&sa->raddr).as_u32,
843 ip_addr_version (&sa->raddr) == AF_IP4);
845 /* store whole IKE payload - needed for PSK auth */
846 vec_reset_length (sa->last_sa_init_res_packet_data);
847 vec_add (sa->last_sa_init_res_packet_data, ike, len);
849 if (sizeof (*ike) > len)
852 len -= sizeof (*ike);
853 while (p < len && payload != IKEV2_PAYLOAD_NONE)
855 int current_length = len - p;
856 ikep = (ike_payload_header_t *) & ike->payload[p];
857 if (!ikev2_check_payload_length (ikep, current_length, &plen))
860 if (payload == IKEV2_PAYLOAD_SA)
862 ikev2_sa_free_proposal_vector (&sa->r_proposals);
863 sa->r_proposals = ikev2_parse_sa_payload (ikep, current_length);
866 ikev2_set_state (sa, IKEV2_STATE_SA_INIT);
868 clib_host_to_net_u32 (clib_net_to_host_u32 (ike->msgid) + 1);
871 else if (payload == IKEV2_PAYLOAD_KE)
873 if (!ikev2_parse_ke_payload (ikep, current_length, sa,
877 else if (payload == IKEV2_PAYLOAD_NONCE)
879 vec_reset_length (sa->r_nonce);
880 if (ikev2_parse_nonce_payload (ikep, current_length, nonce))
881 vec_add (sa->r_nonce, nonce, plen - sizeof (*ikep));
883 else if (payload == IKEV2_PAYLOAD_NOTIFY)
886 ikev2_parse_notify_payload (ikep, current_length);
887 if (n->msg_type == IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP)
889 u8 *src_sha = ikev2_compute_nat_sha1 (ike->ispi, ike->rspi,
892 if (clib_memcmp (src_sha, n->data, vec_len (src_sha)))
894 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx responder"
895 " behind NAT, unsupported", sa->ispi);
899 else if (n->msg_type ==
900 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP)
902 u8 *dst_sha = ikev2_compute_nat_sha1 (ike->ispi, ike->rspi,
905 if (clib_memcmp (dst_sha, n->data, vec_len (dst_sha)))
907 if (sa->natt_state == IKEV2_NATT_ENABLED)
908 sa->natt_state = IKEV2_NATT_ACTIVE;
909 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx initiator"
910 " (self) behind NAT", sa->ispi);
916 else if (payload == IKEV2_PAYLOAD_VENDOR)
918 ikev2_parse_vendor_payload (ikep);
922 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
924 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
926 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
927 sa->unsupported_cp = payload;
932 payload = ikep->nextpayload;
938 ikev2_decrypt_sk_payload (ikev2_sa_t * sa, ike_header_t * ike,
939 u8 * payload, u32 rlen, u32 * out_len)
941 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
943 u8 last_payload = 0, *hmac = 0, *plaintext = 0;
944 ike_payload_header_t *ikep = 0;
947 ikev2_sa_transform_t *tr_integ;
948 ikev2_sa_transform_t *tr_encr;
950 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
952 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
953 int is_aead = tr_encr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16;
955 if (((!sa->sk_ar || !sa->sk_ai) && !is_aead) || (!sa->sk_ei || !sa->sk_er))
958 if (rlen <= sizeof (*ike))
961 int len = rlen - sizeof (*ike);
963 *payload != IKEV2_PAYLOAD_NONE && last_payload != IKEV2_PAYLOAD_SK)
965 ikep = (ike_payload_header_t *) & ike->payload[p];
966 int current_length = len - p;
967 if (!ikev2_check_payload_length (ikep, current_length, &plen))
970 if (*payload == IKEV2_PAYLOAD_SK)
972 last_payload = *payload;
976 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
978 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
980 sa->unsupported_cp = *payload;
985 *payload = ikep->nextpayload;
989 if (last_payload != IKEV2_PAYLOAD_SK)
991 ikev2_elog_error ("Last payload must be SK");
997 if (plen < sizeof (*ikep) + IKEV2_GCM_ICV_SIZE)
1000 plen -= sizeof (*ikep) + IKEV2_GCM_ICV_SIZE;
1001 u8 *aad = (u8 *) ike;
1002 u32 aad_len = ikep->payload - aad;
1003 u8 *tag = ikep->payload + plen;
1005 int rc = ikev2_decrypt_aead_data (ptd, sa, tr_encr, ikep->payload,
1006 plen, aad, aad_len, tag, &dlen);
1010 plaintext = ikep->payload + IKEV2_GCM_IV_SIZE;
1015 if (rlen < tr_integ->key_trunc)
1019 ikev2_calc_integr (tr_integ, sa->is_initiator ? sa->sk_ar : sa->sk_ai,
1020 (u8 *) ike, rlen - tr_integ->key_trunc);
1022 if (plen < sizeof (*ikep) + tr_integ->key_trunc)
1025 plen = plen - sizeof (*ikep) - tr_integ->key_trunc;
1027 if (clib_memcmp (hmac, &ikep->payload[plen], tr_integ->key_trunc))
1029 ikev2_elog_error ("message integrity check failed");
1035 int rc = ikev2_decrypt_data (ptd, sa, tr_encr, ikep->payload, plen,
1040 plaintext = ikep->payload + tr_encr->block_size;
1047 static_always_inline int
1048 ikev2_is_id_equal (ikev2_id_t * i1, ikev2_id_t * i2)
1050 if (i1->type != i2->type)
1053 if (vec_len (i1->data) != vec_len (i2->data))
1056 if (clib_memcmp (i1->data, i2->data, vec_len (i1->data)))
1063 ikev2_initial_contact_cleanup_internal (ikev2_main_per_thread_data_t * ptd,
1066 ikev2_main_t *km = &ikev2_main;
1069 ikev2_child_sa_t *c;
1071 /* find old IKE SAs with the same authenticated identity */
1073 pool_foreach (tmp, ptd->sas) {
1074 if (!ikev2_is_id_equal (&tmp->i_id, &sa->i_id)
1075 || !ikev2_is_id_equal(&tmp->r_id, &sa->r_id))
1078 if (sa->rspi != tmp->rspi)
1079 vec_add1(delete, tmp - ptd->sas);
1083 for (i = 0; i < vec_len (delete); i++)
1085 tmp = pool_elt_at_index (ptd->sas, delete[i]);
1086 vec_foreach (c, tmp->childs)
1088 ikev2_delete_tunnel_interface (km->vnet_main, tmp, c);
1090 ikev2_delete_sa (ptd, tmp);
1094 sa->initial_contact = 0;
1098 ikev2_initial_contact_cleanup (ikev2_main_per_thread_data_t * ptd,
1101 ikev2_main_t *km = &ikev2_main;
1103 if (!sa->initial_contact)
1108 ikev2_initial_contact_cleanup_internal (ptd, sa);
1112 vec_foreach (ptd, km->per_thread_data)
1113 ikev2_initial_contact_cleanup_internal (ptd, sa);
1115 sa->initial_contact = 0;
1119 ikev2_parse_id_payload (const void *p, u16 rlen, ikev2_id_t * sa_id)
1121 const ike_id_payload_header_t *id = p;
1122 u16 plen = clib_net_to_host_u16 (id->length);
1123 if (plen < sizeof (*id) || plen > rlen)
1126 sa_id->type = id->id_type;
1127 vec_reset_length (sa_id->data);
1128 vec_add (sa_id->data, id->payload, plen - sizeof (*id));
1134 ikev2_parse_auth_payload (const void *p, u32 rlen, ikev2_auth_t * a)
1136 const ike_auth_payload_header_t *ah = p;
1137 u16 plen = clib_net_to_host_u16 (ah->length);
1139 a->method = ah->auth_method;
1140 vec_reset_length (a->data);
1141 vec_add (a->data, ah->payload, plen - sizeof (*ah));
1146 ikev2_process_auth_req (vlib_main_t * vm, ikev2_sa_t * sa,
1147 ike_header_t * ike, u32 len)
1150 ikev2_child_sa_t *first_child_sa;
1151 u8 payload = ike->nextpayload;
1153 ike_payload_header_t *ikep;
1157 ikev2_elog_exchange ("ispi %lx rspi %lx EXCHANGE_IKE_AUTH received "
1158 "from ", clib_host_to_net_u64 (ike->ispi),
1159 clib_host_to_net_u64 (ike->rspi),
1161 ip_addr_v4 (&sa->raddr).as_u32 :
1162 ip_addr_v4 (&sa->iaddr).as_u32,
1163 ip_addr_version (&sa->raddr) == AF_IP4);
1165 ikev2_calc_keys (sa);
1167 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1171 if (sa->unsupported_cp)
1173 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1179 /* select or create 1st child SA */
1180 if (sa->is_initiator)
1182 first_child_sa = &sa->childs[0];
1186 ikev2_sa_free_all_child_sa (&sa->childs);
1187 vec_add2 (sa->childs, first_child_sa, 1);
1191 /* process encrypted payload */
1192 while (p < dlen && payload != IKEV2_PAYLOAD_NONE)
1194 ikep = (ike_payload_header_t *) & plaintext[p];
1195 int current_length = dlen - p;
1196 if (!ikev2_check_payload_length (ikep, current_length, &plen))
1199 if (payload == IKEV2_PAYLOAD_SA) /* 33 */
1201 if (sa->is_initiator)
1203 ikev2_sa_free_proposal_vector (&first_child_sa->r_proposals);
1204 first_child_sa->r_proposals = ikev2_parse_sa_payload (ikep,
1209 ikev2_sa_free_proposal_vector (&first_child_sa->i_proposals);
1210 first_child_sa->i_proposals = ikev2_parse_sa_payload (ikep,
1214 else if (payload == IKEV2_PAYLOAD_IDI) /* 35 */
1216 if (!ikev2_parse_id_payload (ikep, current_length, &sa->i_id))
1219 else if (payload == IKEV2_PAYLOAD_IDR) /* 36 */
1221 if (!ikev2_parse_id_payload (ikep, current_length, &sa->r_id))
1224 else if (payload == IKEV2_PAYLOAD_AUTH) /* 39 */
1226 if (sa->is_initiator)
1228 if (!ikev2_parse_auth_payload (ikep, current_length,
1234 if (!ikev2_parse_auth_payload (ikep, current_length,
1239 else if (payload == IKEV2_PAYLOAD_NOTIFY) /* 41 */
1242 ikev2_parse_notify_payload (ikep, current_length);
1243 if (n->msg_type == IKEV2_NOTIFY_MSG_INITIAL_CONTACT)
1245 sa->initial_contact = 1;
1249 else if (payload == IKEV2_PAYLOAD_VENDOR) /* 43 */
1251 ikev2_parse_vendor_payload (ikep);
1253 else if (payload == IKEV2_PAYLOAD_TSI) /* 44 */
1255 vec_free (first_child_sa->tsi);
1256 first_child_sa->tsi = ikev2_parse_ts_payload (ikep, current_length);
1258 else if (payload == IKEV2_PAYLOAD_TSR) /* 45 */
1260 vec_free (first_child_sa->tsr);
1261 first_child_sa->tsr = ikev2_parse_ts_payload (ikep, current_length);
1265 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1268 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1270 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1271 sa->unsupported_cp = payload;
1276 payload = ikep->nextpayload;
1283 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": malformed IKE_AUTH");
1288 ikev2_process_informational_req (vlib_main_t * vm,
1289 ikev2_sa_t * sa, ike_header_t * ike, u32 len)
1292 u8 payload = ike->nextpayload;
1294 ike_payload_header_t *ikep;
1296 ikev2_notify_t *n = 0;
1298 sa->liveness_retries = 0;
1299 ikev2_elog_exchange ("ispi %lx rspi %lx INFORMATIONAL received "
1300 "from ", clib_host_to_net_u64 (ike->ispi),
1301 clib_host_to_net_u64 (ike->rspi),
1302 ip_addr_v4 (&sa->iaddr).as_u32,
1303 ip_addr_version (&sa->iaddr) == AF_IP4);
1305 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1310 /* process encrypted payload */
1312 while (p < dlen && payload != IKEV2_PAYLOAD_NONE)
1314 u32 current_length = dlen - p;
1315 if (p + sizeof (*ikep) > dlen)
1318 ikep = (ike_payload_header_t *) & plaintext[p];
1319 u16 plen = clib_net_to_host_u16 (ikep->length);
1321 if (plen < sizeof (*ikep) || plen > current_length)
1324 if (payload == IKEV2_PAYLOAD_NOTIFY) /* 41 */
1326 n = ikev2_parse_notify_payload (ikep, current_length);
1329 if (n->msg_type == IKEV2_NOTIFY_MSG_AUTHENTICATION_FAILED)
1330 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1333 else if (payload == IKEV2_PAYLOAD_DELETE) /* 42 */
1335 sa->del = ikev2_parse_delete_payload (ikep, current_length);
1337 else if (payload == IKEV2_PAYLOAD_VENDOR) /* 43 */
1339 ikev2_parse_vendor_payload (ikep);
1343 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1345 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1347 sa->unsupported_cp = payload;
1351 payload = ikep->nextpayload;
1358 ikev2_process_create_child_sa_req (vlib_main_t * vm,
1359 ikev2_sa_t * sa, ike_header_t * ike,
1363 u8 payload = ike->nextpayload;
1366 u8 nonce[IKEV2_NONCE_SIZE];
1368 ike_payload_header_t *ikep;
1369 ikev2_notify_t *n = 0;
1370 ikev2_ts_t *tsi = 0;
1371 ikev2_ts_t *tsr = 0;
1372 ikev2_sa_proposal_t *proposal = 0;
1373 ikev2_child_sa_t *child_sa;
1377 ikev2_elog_exchange ("ispi %lx rspi %lx CREATE_CHILD_SA received "
1378 "from ", clib_host_to_net_u64 (ike->ispi),
1379 clib_host_to_net_u64 (ike->rspi),
1380 ip_addr_v4 (&sa->raddr).as_u32,
1381 ip_addr_version (&sa->raddr) == AF_IP4);
1383 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1386 goto cleanup_and_exit;
1388 /* process encrypted payload */
1390 while (payload != IKEV2_PAYLOAD_NONE)
1392 ikep = (ike_payload_header_t *) & plaintext[p];
1393 int current_length = dlen - p;
1394 if (!ikev2_check_payload_length (ikep, current_length, &plen))
1395 goto cleanup_and_exit;
1397 if (payload == IKEV2_PAYLOAD_SA)
1399 proposal = ikev2_parse_sa_payload (ikep, current_length);
1401 else if (payload == IKEV2_PAYLOAD_NOTIFY)
1403 n = ikev2_parse_notify_payload (ikep, current_length);
1404 if (n->msg_type == IKEV2_NOTIFY_MSG_REKEY_SA)
1409 else if (payload == IKEV2_PAYLOAD_DELETE)
1411 sa->del = ikev2_parse_delete_payload (ikep, current_length);
1413 else if (payload == IKEV2_PAYLOAD_VENDOR)
1415 ikev2_parse_vendor_payload (ikep);
1417 else if (payload == IKEV2_PAYLOAD_NONCE)
1419 ikev2_parse_nonce_payload (ikep, current_length, nonce);
1421 else if (payload == IKEV2_PAYLOAD_TSI)
1423 tsi = ikev2_parse_ts_payload (ikep, current_length);
1425 else if (payload == IKEV2_PAYLOAD_TSR)
1427 tsr = ikev2_parse_ts_payload (ikep, current_length);
1431 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1433 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1435 sa->unsupported_cp = payload;
1436 goto cleanup_and_exit;
1439 payload = ikep->nextpayload;
1443 if (sa->is_initiator && proposal
1444 && proposal->protocol_id == IKEV2_PROTOCOL_ESP)
1446 ikev2_rekey_t *rekey = sa->rekey;
1447 if (vec_len (rekey) == 0)
1448 goto cleanup_and_exit;
1449 rekey->protocol_id = proposal->protocol_id;
1451 ikev2_select_proposal (proposal, IKEV2_PROTOCOL_ESP);
1452 rekey->i_proposal->spi = rekey->spi;
1453 rekey->r_proposal = proposal;
1457 vec_reset_length (sa->r_nonce);
1458 vec_add (sa->r_nonce, nonce, IKEV2_NONCE_SIZE);
1459 child_sa = ikev2_sa_get_child (sa, rekey->ispi, IKEV2_PROTOCOL_ESP, 1);
1462 child_sa->rekey_retries = 0;
1467 ikev2_rekey_t *rekey;
1468 child_sa = ikev2_sa_get_child (sa, n->spi, n->protocol_id, 1);
1471 ikev2_elog_uint (IKEV2_LOG_ERROR, "child SA spi %lx not found",
1473 goto cleanup_and_exit;
1475 vec_add2 (sa->rekey, rekey, 1);
1476 rekey->protocol_id = n->protocol_id;
1477 rekey->spi = n->spi;
1478 rekey->i_proposal = proposal;
1480 ikev2_select_proposal (proposal, IKEV2_PROTOCOL_ESP);
1484 vec_reset_length (sa->i_nonce);
1485 vec_add (sa->i_nonce, nonce, IKEV2_NONCE_SIZE);
1486 /* generate new Nr */
1487 vec_validate (sa->r_nonce, IKEV2_NONCE_SIZE - 1);
1488 RAND_bytes ((u8 *) sa->r_nonce, IKEV2_NONCE_SIZE);
1491 goto cleanup_and_exit;
1497 vec_free (proposal);
1504 ikev2_sa_generate_authmsg (ikev2_sa_t * sa, int is_responder)
1512 ikev2_sa_transform_t *tr_prf;
1515 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1521 nonce = sa->i_nonce;
1522 packet_data = sa->last_sa_init_res_packet_data;
1528 nonce = sa->r_nonce;
1529 packet_data = sa->last_sa_init_req_packet_data;
1532 data = vec_new (u8, 4);
1534 vec_append (data, id->data);
1536 u8 *id_hash = ikev2_calc_prf (tr_prf, key, data);
1537 vec_append (authmsg, packet_data);
1538 vec_append (authmsg, nonce);
1539 vec_append (authmsg, id_hash);
1547 ikev2_ts_cmp (ikev2_ts_t * ts1, ikev2_ts_t * ts2)
1549 if (ts1->ts_type == ts2->ts_type && ts1->protocol_id == ts2->protocol_id &&
1550 ts1->start_port == ts2->start_port && ts1->end_port == ts2->end_port &&
1551 !ip_address_cmp (&ts1->start_addr, &ts2->start_addr) &&
1552 !ip_address_cmp (&ts1->end_addr, &ts2->end_addr))
1559 ikev2_sa_match_ts (ikev2_sa_t * sa)
1561 ikev2_main_t *km = &ikev2_main;
1563 ikev2_ts_t *ts, *p_tsi, *p_tsr, *tsi = 0, *tsr = 0;
1564 ikev2_id_t *id_rem, *id_loc;
1567 pool_foreach (p, km->profiles) {
1569 if (sa->is_initiator)
1585 if (!ikev2_is_id_equal (&p->rem_id, id_rem)
1586 || !ikev2_is_id_equal (&p->loc_id, id_loc))
1589 sa->profile_index = p - km->profiles;
1591 vec_foreach(ts, sa->childs[0].tsi)
1593 if (ikev2_ts_cmp(p_tsi, ts))
1595 vec_add1 (tsi, ts[0]);
1600 vec_foreach(ts, sa->childs[0].tsr)
1602 if (ikev2_ts_cmp(p_tsr, ts))
1604 vec_add1 (tsr, ts[0]);
1615 vec_free (sa->childs[0].tsi);
1616 vec_free (sa->childs[0].tsr);
1617 sa->childs[0].tsi = tsi;
1618 sa->childs[0].tsr = tsr;
1624 ikev2_set_state (sa, IKEV2_STATE_TS_UNACCEPTABLE);
1629 ikev2_sa_auth (ikev2_sa_t * sa)
1631 ikev2_main_t *km = &ikev2_main;
1632 ikev2_profile_t *p, *sel_p = 0;
1633 u8 *authmsg, *key_pad, *psk = 0, *auth = 0;
1634 ikev2_sa_transform_t *tr_prf;
1637 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1639 /* only shared key and rsa signature */
1640 if (!(sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC ||
1641 sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG))
1643 ikev2_elog_uint (IKEV2_LOG_ERROR,
1644 "unsupported authentication method %u",
1646 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1650 key_pad = format (0, "%s", IKEV2_KEY_PAD);
1651 authmsg = ikev2_sa_generate_authmsg (sa, sa->is_initiator);
1653 ikev2_id_t *id_rem, *id_loc;
1654 ikev2_auth_t *sa_auth;
1656 if (sa->is_initiator)
1660 sa_auth = &sa->r_auth;
1666 sa_auth = &sa->i_auth;
1670 pool_foreach (p, km->profiles) {
1673 if (!ikev2_is_id_equal (&p->rem_id, id_rem)
1674 || !ikev2_is_id_equal (&p->loc_id, id_loc))
1677 if (sa_auth->method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1679 if (!p->auth.data ||
1680 p->auth.method != IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1683 psk = ikev2_calc_prf(tr_prf, p->auth.data, key_pad);
1684 auth = ikev2_calc_prf(tr_prf, psk, authmsg);
1686 if (!clib_memcmp(auth, sa_auth->data, vec_len(sa_auth->data)))
1688 ikev2_set_state(sa, IKEV2_STATE_AUTHENTICATED);
1695 else if (sa_auth->method == IKEV2_AUTH_METHOD_RSA_SIG)
1697 if (p->auth.method != IKEV2_AUTH_METHOD_RSA_SIG)
1700 if (ikev2_verify_sign(p->auth.key, sa_auth->data, authmsg) == 1)
1702 ikev2_set_state(sa, IKEV2_STATE_AUTHENTICATED);
1715 sa->udp_encap = sel_p->udp_encap;
1716 sa->ipsec_over_udp_port = sel_p->ipsec_over_udp_port;
1720 if (sa->state == IKEV2_STATE_AUTHENTICATED)
1722 if (!sa->is_initiator)
1724 vec_free (sa->r_id.data);
1725 sa->r_id.data = vec_dup (sel_p->loc_id.data);
1726 sa->r_id.type = sel_p->loc_id.type;
1727 sa->i_id.data = vec_dup (sel_p->rem_id.data);
1728 sa->i_id.type = sel_p->rem_id.type;
1730 /* generate our auth data */
1731 authmsg = ikev2_sa_generate_authmsg (sa, 1);
1732 if (sel_p->auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1734 vec_free (sa->r_auth.data);
1735 sa->r_auth.data = ikev2_calc_prf (tr_prf, psk, authmsg);
1736 sa->r_auth.method = IKEV2_AUTH_METHOD_SHARED_KEY_MIC;
1738 else if (sel_p->auth.method == IKEV2_AUTH_METHOD_RSA_SIG)
1740 vec_free (sa->r_auth.data);
1741 sa->r_auth.data = ikev2_calc_sign (km->pkey, authmsg);
1742 sa->r_auth.method = IKEV2_AUTH_METHOD_RSA_SIG;
1746 /* select transforms for 1st child sa */
1747 ikev2_sa_free_proposal_vector (&sa->childs[0].r_proposals);
1748 sa->childs[0].r_proposals =
1749 ikev2_select_proposal (sa->childs[0].i_proposals,
1750 IKEV2_PROTOCOL_ESP);
1752 if (~0 != sel_p->tun_itf)
1754 sa->is_tun_itf_set = 1;
1755 sa->tun_itf = sel_p->tun_itf;
1761 ikev2_elog_uint (IKEV2_LOG_ERROR, "authentication failed, no matching "
1762 "profile found! ispi %lx", sa->ispi);
1763 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1771 ikev2_sa_auth_init (ikev2_sa_t * sa)
1773 ikev2_main_t *km = &ikev2_main;
1774 u8 *authmsg, *key_pad, *psk = 0;
1775 ikev2_sa_transform_t *tr_prf;
1778 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1780 /* only shared key and rsa signature */
1781 if (!(sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC ||
1782 sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG))
1784 ikev2_elog_uint (IKEV2_LOG_ERROR,
1785 "unsupported authentication method %u",
1787 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1791 key_pad = format (0, "%s", IKEV2_KEY_PAD);
1792 authmsg = ikev2_sa_generate_authmsg (sa, 0);
1793 psk = ikev2_calc_prf (tr_prf, sa->i_auth.data, key_pad);
1795 if (sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1797 vec_free (sa->i_auth.data);
1798 sa->i_auth.data = ikev2_calc_prf (tr_prf, psk, authmsg);
1799 sa->i_auth.method = IKEV2_AUTH_METHOD_SHARED_KEY_MIC;
1801 else if (sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG)
1803 vec_free (sa->i_auth.data);
1804 sa->i_auth.data = ikev2_calc_sign (km->pkey, authmsg);
1805 sa->i_auth.method = IKEV2_AUTH_METHOD_RSA_SIG;
1814 ikev2_mk_local_sa_id (u32 sai, u32 ci, u32 ti)
1816 return (0x80000000 | (ti << 24) | (sai << 12) | ci);
1820 ikev2_mk_remote_sa_id (u32 sai, u32 ci, u32 ti)
1822 return (0xc0000000 | (ti << 24) | (sai << 12) | ci);
1832 ipsec_sa_flags_t flags;
1835 ipsec_crypto_alg_t encr_type;
1836 ipsec_integ_alg_t integ_type;
1837 ip46_address_t local_ip;
1838 ip46_address_t remote_ip;
1839 ipsec_key_t loc_ckey, rem_ckey, loc_ikey, rem_ikey;
1841 u32 old_remote_sa_id;
1842 u16 ipsec_over_udp_port;
1845 } ikev2_add_ipsec_tunnel_args_t;
1848 ikev2_add_tunnel_from_main (ikev2_add_ipsec_tunnel_args_t * a)
1850 ikev2_main_t *km = &ikev2_main;
1854 if (~0 == a->sw_if_index)
1856 /* no tunnel associated with the SA/profile - create a new one */
1857 rv = ipip_add_tunnel (IPIP_TRANSPORT_IP4, ~0,
1858 &a->local_ip, &a->remote_ip, 0,
1859 TUNNEL_ENCAP_DECAP_FLAG_NONE, IP_DSCP_CS0,
1860 TUNNEL_MODE_P2P, &sw_if_index);
1862 if (rv == VNET_API_ERROR_IF_ALREADY_EXISTS)
1864 if (hash_get (km->sw_if_indices, sw_if_index))
1865 /* interface is managed by IKE; proceed with updating SAs */
1868 hash_set1 (km->sw_if_indices, sw_if_index);
1872 sw_if_index = a->sw_if_index;
1873 vnet_sw_interface_admin_up (vnet_get_main (), sw_if_index);
1878 ikev2_elog_uint (IKEV2_LOG_ERROR,
1879 "installing ipip tunnel failed! local spi: %x",
1885 vec_add1 (sas_in, a->remote_sa_id);
1888 ipsec_tun_protect_del (sw_if_index, NULL);
1890 /* replace local SA immediately */
1891 ipsec_sa_unlock_id (a->local_sa_id);
1893 /* keep the old sa */
1894 vec_add1 (sas_in, a->old_remote_sa_id);
1897 rv = ipsec_sa_add_and_lock (a->local_sa_id,
1899 IPSEC_PROTOCOL_ESP, a->encr_type,
1900 &a->loc_ckey, a->integ_type, &a->loc_ikey,
1901 a->flags, 0, a->salt_local, &a->local_ip,
1902 &a->remote_ip, TUNNEL_ENCAP_DECAP_FLAG_NONE,
1903 IP_DSCP_CS0, NULL, a->src_port, a->dst_port);
1907 rv = ipsec_sa_add_and_lock (a->remote_sa_id, a->remote_spi,
1908 IPSEC_PROTOCOL_ESP, a->encr_type, &a->rem_ckey,
1909 a->integ_type, &a->rem_ikey,
1910 (a->flags | IPSEC_SA_FLAG_IS_INBOUND), 0,
1911 a->salt_remote, &a->remote_ip,
1912 &a->local_ip, TUNNEL_ENCAP_DECAP_FLAG_NONE,
1914 a->ipsec_over_udp_port, a->ipsec_over_udp_port);
1918 rv = ipsec_tun_protect_update (sw_if_index, NULL, a->local_sa_id, sas_in);
1925 ipsec_sa_unlock_id (a->remote_sa_id);
1927 ipsec_sa_unlock_id (a->local_sa_id);
1933 ikev2_create_tunnel_interface (vlib_main_t * vm,
1935 ikev2_child_sa_t * child, u32 sa_index,
1936 u32 child_index, u8 is_rekey)
1938 u32 thread_index = vlib_get_thread_index ();
1939 ikev2_main_t *km = &ikev2_main;
1940 ipsec_crypto_alg_t encr_type;
1941 ipsec_integ_alg_t integ_type;
1942 ikev2_profile_t *p = 0;
1943 ikev2_sa_transform_t *tr;
1944 ikev2_sa_proposal_t *proposals;
1946 ikev2_add_ipsec_tunnel_args_t a;
1948 clib_memset (&a, 0, sizeof (a));
1950 if (!child->r_proposals)
1952 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1956 if (sa->is_initiator)
1958 ip_address_to_46 (&sa->iaddr, &a.local_ip);
1959 ip_address_to_46 (&sa->raddr, &a.remote_ip);
1960 proposals = child->r_proposals;
1961 a.local_spi = child->r_proposals[0].spi;
1962 a.remote_spi = child->i_proposals[0].spi;
1966 ip_address_to_46 (&sa->raddr, &a.local_ip);
1967 ip_address_to_46 (&sa->iaddr, &a.remote_ip);
1968 proposals = child->i_proposals;
1969 a.local_spi = child->i_proposals[0].spi;
1970 a.remote_spi = child->r_proposals[0].spi;
1973 a.flags = IPSEC_SA_FLAG_USE_ANTI_REPLAY;
1976 a.flags |= IPSEC_SA_FLAG_IS_TUNNEL;
1977 a.flags |= IPSEC_SA_FLAG_UDP_ENCAP;
1979 if (ikev2_natt_active (sa))
1980 a.flags |= IPSEC_SA_FLAG_UDP_ENCAP;
1981 a.is_rekey = is_rekey;
1983 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_ESN);
1984 if (tr && tr->esn_type)
1985 a.flags |= IPSEC_SA_FLAG_USE_ESN;
1987 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_ENCR);
1990 if (tr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_CBC && tr->key_len)
1992 switch (tr->key_len)
1995 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_128;
1998 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_192;
2001 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_256;
2004 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2009 else if (tr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16
2012 switch (tr->key_len)
2015 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_128;
2018 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_192;
2021 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_256;
2024 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2032 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2038 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2041 a.encr_type = encr_type;
2045 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_INTEG);
2048 switch (tr->integ_type)
2050 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_256_128:
2051 integ_type = IPSEC_INTEG_ALG_SHA_256_128;
2053 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_384_192:
2054 integ_type = IPSEC_INTEG_ALG_SHA_384_192;
2056 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_512_256:
2057 integ_type = IPSEC_INTEG_ALG_SHA_512_256;
2059 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA1_96:
2060 integ_type = IPSEC_INTEG_ALG_SHA1_96;
2063 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2069 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2075 integ_type = IPSEC_INTEG_ALG_NONE;
2078 a.integ_type = integ_type;
2079 ikev2_calc_child_keys (sa, child);
2081 if (sa->is_initiator)
2083 ipsec_mk_key (&a.loc_ikey, child->sk_ai, vec_len (child->sk_ai));
2084 ipsec_mk_key (&a.rem_ikey, child->sk_ar, vec_len (child->sk_ar));
2085 ipsec_mk_key (&a.loc_ckey, child->sk_ei, vec_len (child->sk_ei));
2086 ipsec_mk_key (&a.rem_ckey, child->sk_er, vec_len (child->sk_er));
2089 a.salt_remote = child->salt_er;
2090 a.salt_local = child->salt_ei;
2092 a.dst_port = a.src_port = sa->ipsec_over_udp_port;
2096 ipsec_mk_key (&a.loc_ikey, child->sk_ar, vec_len (child->sk_ar));
2097 ipsec_mk_key (&a.rem_ikey, child->sk_ai, vec_len (child->sk_ai));
2098 ipsec_mk_key (&a.loc_ckey, child->sk_er, vec_len (child->sk_er));
2099 ipsec_mk_key (&a.rem_ckey, child->sk_ei, vec_len (child->sk_ei));
2102 a.salt_remote = child->salt_ei;
2103 a.salt_local = child->salt_er;
2106 ikev2_natt_active (sa) ? sa->dst_port : sa->ipsec_over_udp_port;
2107 a.src_port = sa->ipsec_over_udp_port;
2110 if (sa->is_initiator && sa->profile_index != ~0)
2111 p = pool_elt_at_index (km->profiles, sa->profile_index);
2113 if (p && p->lifetime)
2115 child->time_to_expiration = vlib_time_now (vm) + p->lifetime;
2116 if (p->lifetime_jitter)
2118 // This is not much better than rand(3), which Coverity warns
2119 // is unsuitable for security applications; random_u32 is
2120 // however fast. If this perturbance to the expiration time
2121 // needs to use a better RNG then we may need to use something
2122 // like /dev/urandom which has significant overhead.
2123 u32 rnd = (u32) (vlib_time_now (vm) * 1e6);
2124 rnd = random_u32 (&rnd);
2126 child->time_to_expiration += 1 + (rnd % p->lifetime_jitter);
2130 if (thread_index & 0xffffffc0)
2131 ikev2_elog_error ("error: thread index exceeds max range 0x3f!");
2133 if (child_index & 0xfffff000 || sa_index & 0xfffff000)
2134 ikev2_elog_error ("error: sa/child index exceeds max range 0xfff!");
2136 child->local_sa_id =
2138 ikev2_mk_local_sa_id (sa_index, child_index, thread_index);
2140 u32 remote_sa_id = ikev2_mk_remote_sa_id (sa_index, child_index,
2145 /* create a new remote SA ID to keep the old SA for a bit longer
2146 * so the peer has some time to swap their SAs */
2148 /* use most significat bit of child index part in id */
2150 if (sa->current_remote_id_mask)
2152 sa->old_remote_id = a.old_remote_sa_id = remote_sa_id | mask;
2153 sa->current_remote_id_mask = 0;
2157 sa->old_remote_id = a.old_remote_sa_id = remote_sa_id;
2158 sa->current_remote_id_mask = mask;
2159 remote_sa_id |= mask;
2161 sa->old_id_expiration = 3.0;
2162 sa->old_remote_id_present = 1;
2165 child->remote_sa_id = a.remote_sa_id = remote_sa_id;
2167 a.sw_if_index = (sa->is_tun_itf_set ? sa->tun_itf : ~0);
2168 a.ipsec_over_udp_port = sa->ipsec_over_udp_port;
2170 vl_api_rpc_call_main_thread (ikev2_add_tunnel_from_main,
2171 (u8 *) & a, sizeof (a));
2177 ip46_address_t local_ip;
2178 ip46_address_t remote_ip;
2182 } ikev2_del_ipsec_tunnel_args_t;
2184 static_always_inline u32
2185 ikev2_flip_alternate_sa_bit (u32 id)
2194 ikev2_del_tunnel_from_main (ikev2_del_ipsec_tunnel_args_t * a)
2196 ikev2_main_t *km = &ikev2_main;
2197 ipip_tunnel_t *ipip = NULL;
2200 if (~0 == a->sw_if_index)
2203 ipip_tunnel_key_t key = {
2205 .dst = a->remote_ip,
2206 .transport = IPIP_TRANSPORT_IP4,
2211 ipip = ipip_tunnel_db_find (&key);
2215 sw_if_index = ipip->sw_if_index;
2216 hash_unset (km->sw_if_indices, ipip->sw_if_index);
2223 sw_if_index = a->sw_if_index;
2224 vnet_sw_interface_admin_down (vnet_get_main (), sw_if_index);
2227 if (~0 != sw_if_index)
2228 ipsec_tun_protect_del (sw_if_index, NULL);
2230 ipsec_sa_unlock_id (a->remote_sa_id);
2231 ipsec_sa_unlock_id (a->local_sa_id);
2232 ipsec_sa_unlock_id (ikev2_flip_alternate_sa_bit (a->remote_sa_id));
2235 ipip_del_tunnel (ipip->sw_if_index);
2239 ikev2_delete_tunnel_interface (vnet_main_t * vnm, ikev2_sa_t * sa,
2240 ikev2_child_sa_t * child)
2242 ikev2_del_ipsec_tunnel_args_t a;
2244 clib_memset (&a, 0, sizeof (a));
2246 if (sa->is_initiator)
2248 ip_address_to_46 (&sa->iaddr, &a.local_ip);
2249 ip_address_to_46 (&sa->raddr, &a.remote_ip);
2253 ip_address_to_46 (&sa->raddr, &a.local_ip);
2254 ip_address_to_46 (&sa->iaddr, &a.remote_ip);
2257 a.remote_sa_id = child->remote_sa_id;
2258 a.local_sa_id = child->local_sa_id;
2259 a.sw_if_index = (sa->is_tun_itf_set ? sa->tun_itf : ~0);
2261 vl_api_rpc_call_main_thread (ikev2_del_tunnel_from_main, (u8 *) & a,
2267 ikev2_generate_message (vlib_buffer_t * b, ikev2_sa_t * sa,
2268 ike_header_t * ike, void *user, udp_header_t * udp)
2270 ikev2_main_t *km = &ikev2_main;
2271 u16 buffer_data_size = vlib_buffer_get_default_data_size (km->vlib_main);
2273 ike_payload_header_t *ph;
2277 ikev2_sa_transform_t *tr_encr, *tr_integ;
2279 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
2281 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
2283 ikev2_payload_chain_t *chain = 0;
2284 ikev2_payload_new_chain (chain);
2286 if (ike->exchange == IKEV2_EXCHANGE_SA_INIT)
2288 if (sa->r_proposals == 0)
2290 ikev2_payload_add_notify (chain,
2291 IKEV2_NOTIFY_MSG_NO_PROPOSAL_CHOSEN, 0);
2292 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2294 else if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
2296 u8 *data = vec_new (u8, 2);
2297 ikev2_sa_transform_t *tr_dh;
2299 ikev2_sa_get_td_for_type (sa->r_proposals,
2300 IKEV2_TRANSFORM_TYPE_DH);
2301 ASSERT (tr_dh && tr_dh->dh_type);
2303 data[0] = (tr_dh->dh_type >> 8) & 0xff;
2304 data[1] = (tr_dh->dh_type) & 0xff;
2306 ikev2_payload_add_notify (chain,
2307 IKEV2_NOTIFY_MSG_INVALID_KE_PAYLOAD,
2310 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2312 else if (sa->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2314 u8 *data = vec_new (u8, 1);
2316 data[0] = sa->unsupported_cp;
2317 ikev2_payload_add_notify (chain,
2318 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2326 ike->rspi = clib_host_to_net_u64 (sa->rspi);
2327 ikev2_payload_add_sa (chain, sa->r_proposals);
2328 ikev2_payload_add_ke (chain, sa->dh_group, sa->r_dh_data);
2329 ikev2_payload_add_nonce (chain, sa->r_nonce);
2331 u8 *nat_detection_sha1 =
2332 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
2333 clib_host_to_net_u64 (sa->rspi),
2334 &sa->raddr, udp->dst_port);
2335 ikev2_payload_add_notify (chain,
2336 IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP,
2337 nat_detection_sha1);
2338 vec_free (nat_detection_sha1);
2339 nat_detection_sha1 =
2340 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
2341 clib_host_to_net_u64 (sa->rspi),
2342 &sa->iaddr, udp->src_port);
2343 ikev2_payload_add_notify (chain,
2344 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP,
2345 nat_detection_sha1);
2346 vec_free (nat_detection_sha1);
2349 else if (ike->exchange == IKEV2_EXCHANGE_IKE_AUTH)
2351 if (sa->state == IKEV2_STATE_AUTHENTICATED)
2353 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2354 ikev2_payload_add_id (chain, &sa->i_id, IKEV2_PAYLOAD_IDI);
2355 ikev2_payload_add_auth (chain, &sa->r_auth);
2356 ikev2_payload_add_sa (chain, sa->childs[0].r_proposals);
2357 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2358 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2360 else if (sa->state == IKEV2_STATE_AUTH_FAILED)
2362 ikev2_payload_add_notify (chain,
2363 IKEV2_NOTIFY_MSG_AUTHENTICATION_FAILED,
2365 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2367 else if (sa->state == IKEV2_STATE_TS_UNACCEPTABLE)
2369 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_TS_UNACCEPTABLE,
2371 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2372 ikev2_payload_add_auth (chain, &sa->r_auth);
2374 else if (sa->state == IKEV2_STATE_NO_PROPOSAL_CHOSEN)
2376 ikev2_payload_add_notify (chain,
2377 IKEV2_NOTIFY_MSG_NO_PROPOSAL_CHOSEN, 0);
2378 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2379 ikev2_payload_add_auth (chain, &sa->r_auth);
2380 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2381 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2383 else if (sa->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2385 u8 *data = vec_new (u8, 1);
2387 data[0] = sa->unsupported_cp;
2388 ikev2_payload_add_notify (chain,
2389 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2393 else if (sa->state == IKEV2_STATE_SA_INIT)
2395 ikev2_payload_add_id (chain, &sa->i_id, IKEV2_PAYLOAD_IDI);
2396 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2397 ikev2_payload_add_auth (chain, &sa->i_auth);
2398 ikev2_payload_add_sa (chain, sa->childs[0].i_proposals);
2399 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2400 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2401 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_INITIAL_CONTACT,
2406 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": unexpected IKE_AUTH");
2410 else if (ike->exchange == IKEV2_EXCHANGE_INFORMATIONAL)
2412 /* if pending delete */
2415 if (sa->del[0].protocol_id == IKEV2_PROTOCOL_IKE)
2417 if (ike_hdr_is_request (ike))
2418 ikev2_payload_add_delete (chain, sa->del);
2420 /* The response to a request that deletes the IKE SA is an empty
2421 INFORMATIONAL response. */
2422 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2424 /* The response to a request that deletes ESP or AH SAs will contain
2425 delete payloads for the paired SAs going in the other direction. */
2428 ikev2_payload_add_delete (chain, sa->del);
2433 /* received N(AUTHENTICATION_FAILED) */
2434 else if (sa->state == IKEV2_STATE_AUTH_FAILED)
2436 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": auth failed");
2439 /* received unsupported critical payload */
2440 else if (sa->unsupported_cp)
2442 u8 *data = vec_new (u8, 1);
2444 data[0] = sa->unsupported_cp;
2445 ikev2_payload_add_notify (chain,
2446 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2449 sa->unsupported_cp = 0;
2451 /* else send empty response */
2453 else if (ike->exchange == IKEV2_EXCHANGE_CREATE_CHILD_SA)
2455 if (sa->is_initiator)
2458 ikev2_sa_proposal_t *proposals = (ikev2_sa_proposal_t *) user;
2459 ikev2_notify_t notify;
2460 u8 *data = vec_new (u8, 4);
2461 clib_memset (¬ify, 0, sizeof (notify));
2462 notify.protocol_id = IKEV2_PROTOCOL_ESP;
2463 notify.spi = sa->childs[0].i_proposals->spi;
2464 *(u32 *) data = clib_host_to_net_u32 (notify.spi);
2466 ikev2_payload_add_sa (chain, proposals);
2467 ikev2_payload_add_nonce (chain, sa->i_nonce);
2468 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2469 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2470 ikev2_payload_add_notify_2 (chain, IKEV2_NOTIFY_MSG_REKEY_SA, data,
2477 if (vec_len (sa->rekey) > 0)
2479 ikev2_payload_add_sa (chain, sa->rekey[0].r_proposal);
2480 ikev2_payload_add_nonce (chain, sa->r_nonce);
2481 ikev2_payload_add_ts (chain, sa->rekey[0].tsi,
2483 ikev2_payload_add_ts (chain, sa->rekey[0].tsr,
2485 vec_del1 (sa->rekey, 0);
2487 else if (sa->unsupported_cp)
2489 u8 *data = vec_new (u8, 1);
2491 data[0] = sa->unsupported_cp;
2492 ikev2_payload_add_notify (chain,
2493 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2496 sa->unsupported_cp = 0;
2500 ikev2_payload_add_notify (chain,
2501 IKEV2_NOTIFY_MSG_NO_ADDITIONAL_SAS,
2508 ike->version = IKE_VERSION_2;
2509 ike->nextpayload = IKEV2_PAYLOAD_SK;
2510 tlen = sizeof (*ike);
2512 if (sa->is_initiator)
2513 ike->flags |= IKEV2_HDR_FLAG_INITIATOR;
2515 if (ike->exchange == IKEV2_EXCHANGE_SA_INIT)
2517 tlen += vec_len (chain->data);
2518 ike->nextpayload = chain->first_payload_type;
2519 ike->length = clib_host_to_net_u32 (tlen);
2521 if (tlen + b->current_length + b->current_data > buffer_data_size)
2527 clib_memcpy_fast (ike->payload, chain->data, vec_len (chain->data));
2529 /* store whole IKE payload - needed for PSK auth */
2530 vec_reset_length (sa->last_sa_init_res_packet_data);
2531 vec_add (sa->last_sa_init_res_packet_data, ike, tlen);
2535 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2536 ikev2_payload_chain_add_padding (chain, tr_encr->block_size);
2539 plen = sizeof (*ph);
2540 ph = (ike_payload_header_t *) & ike->payload[0];
2541 ph->nextpayload = chain->first_payload_type;
2544 tr_encr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16;
2545 int iv_len = is_aead ? IKEV2_GCM_IV_SIZE : tr_encr->block_size;
2546 plen += vec_len (chain->data) + iv_len;
2548 /* add space for hmac/tag */
2550 plen += tr_integ->key_trunc;
2552 plen += IKEV2_GCM_ICV_SIZE;
2555 if (tlen + b->current_length + b->current_data > buffer_data_size)
2561 /* payload and total length */
2562 ph->length = clib_host_to_net_u16 (plen);
2563 ike->length = clib_host_to_net_u32 (tlen);
2567 if (!ikev2_encrypt_aead_data (ptd, sa, tr_encr, chain->data,
2568 ph->payload, (u8 *) ike,
2569 sizeof (*ike) + sizeof (*ph),
2570 ph->payload + plen - sizeof (*ph) -
2571 IKEV2_GCM_ICV_SIZE))
2579 if (!ikev2_encrypt_data
2580 (ptd, sa, tr_encr, chain->data, ph->payload))
2586 ikev2_calc_integr (tr_integ,
2587 sa->is_initiator ? sa->sk_ai : sa->sk_ar,
2588 (u8 *) ike, tlen - tr_integ->key_trunc);
2589 clib_memcpy_fast (ike->payload + tlen - tr_integ->key_trunc -
2590 sizeof (*ike), integ, tr_integ->key_trunc);
2593 /* store whole IKE payload - needed for retransmit */
2594 vec_reset_length (sa->last_res_packet_data);
2595 vec_add (sa->last_res_packet_data, ike, tlen);
2599 ikev2_payload_destroy_chain (chain);
2605 ikev2_retransmit_sa_init_one (ikev2_sa_t * sa, ike_header_t * ike,
2606 ip_address_t iaddr, ip_address_t raddr,
2611 u8 payload = ike->nextpayload;
2613 if (sa->ispi != clib_net_to_host_u64 (ike->ispi) ||
2614 ip_address_cmp (&sa->iaddr, &iaddr) ||
2615 ip_address_cmp (&sa->raddr, &raddr))
2620 while (p < rlen && payload != IKEV2_PAYLOAD_NONE)
2622 ike_payload_header_t *ikep = (ike_payload_header_t *) & ike->payload[p];
2623 u32 plen = clib_net_to_host_u16 (ikep->length);
2625 if (plen < sizeof (ike_payload_header_t))
2628 if (payload == IKEV2_PAYLOAD_NONCE &&
2629 !clib_memcmp (sa->i_nonce, ikep->payload, plen - sizeof (*ikep)))
2631 /* req is retransmit */
2632 if (sa->state == IKEV2_STATE_SA_INIT)
2634 tmp = (ike_header_t *) sa->last_sa_init_res_packet_data;
2635 u32 slen = clib_net_to_host_u32 (tmp->length);
2636 ike->ispi = tmp->ispi;
2637 ike->rspi = tmp->rspi;
2638 ike->nextpayload = tmp->nextpayload;
2639 ike->version = tmp->version;
2640 ike->exchange = tmp->exchange;
2641 ike->flags = tmp->flags;
2642 ike->msgid = tmp->msgid;
2643 ike->length = tmp->length;
2644 clib_memcpy_fast (ike->payload, tmp->payload,
2645 slen - sizeof (*ike));
2646 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG,
2647 "ispi %lx IKE_SA_INIT retransmit "
2648 "from %d.%d.%d.%d to %d.%d.%d.%d",
2650 ip_addr_v4 (&raddr).as_u32,
2651 ip_addr_v4 (&iaddr).as_u32);
2654 /* else ignore req */
2657 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG,
2658 "ispi %lx IKE_SA_INIT ignore "
2659 "from %d.%d.%d.%d to %d.%d.%d.%d",
2661 ip_addr_v4 (&raddr).as_u32,
2662 ip_addr_v4 (&iaddr).as_u32);
2666 payload = ikep->nextpayload;
2674 ikev2_retransmit_sa_init (ike_header_t * ike, ip_address_t iaddr,
2675 ip_address_t raddr, u32 rlen)
2679 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2682 pool_foreach (sa, ptd->sas) {
2683 res = ikev2_retransmit_sa_init_one (sa, ike, iaddr, raddr, rlen);
2689 /* req is not retransmit */
2694 ikev2_retransmit_resp (ikev2_sa_t * sa, ike_header_t * ike)
2696 if (ike_hdr_is_response (ike))
2699 u32 msg_id = clib_net_to_host_u32 (ike->msgid);
2702 if (msg_id > sa->last_msg_id)
2704 sa->last_msg_id = msg_id;
2708 /* retransmitted req */
2709 if (msg_id == sa->last_msg_id)
2711 ike_header_t *tmp = (ike_header_t *) sa->last_res_packet_data;
2712 u32 slen = clib_net_to_host_u32 (tmp->length);
2713 ike->ispi = tmp->ispi;
2714 ike->rspi = tmp->rspi;
2715 ike->nextpayload = tmp->nextpayload;
2716 ike->version = tmp->version;
2717 ike->exchange = tmp->exchange;
2718 ike->flags = tmp->flags;
2719 ike->msgid = tmp->msgid;
2720 ike->length = tmp->length;
2721 clib_memcpy_fast (ike->payload, tmp->payload, slen - sizeof (*ike));
2722 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG, "IKE retransmit msgid %d",
2723 msg_id, ip_addr_v4 (&sa->raddr).as_u32,
2724 ip_addr_v4 (&sa->iaddr).as_u32);
2728 /* old req ignore */
2729 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG, "IKE req ignore msgid %d",
2730 msg_id, ip_addr_v4 (&sa->raddr).as_u32,
2731 ip_addr_v4 (&sa->iaddr).as_u32);
2736 ikev2_init_sa (vlib_main_t * vm, ikev2_sa_t * sa)
2738 ikev2_main_t *km = &ikev2_main;
2739 sa->liveness_period_check = vlib_time_now (vm) + km->liveness_period;
2740 sa->profile_index = ~0;
2744 ikev2_del_sa_init_from_main (u64 * ispi)
2746 ikev2_main_t *km = &ikev2_main;
2747 uword *p = hash_get (km->sa_by_ispi, *ispi);
2750 ikev2_sa_t *sai = pool_elt_at_index (km->sais, p[0]);
2751 hash_unset (km->sa_by_ispi, sai->ispi);
2752 ikev2_sa_free_all_vec (sai);
2753 pool_put (km->sais, sai);
2758 ikev2_del_sa_init (u64 ispi)
2760 vl_api_rpc_call_main_thread (ikev2_del_sa_init_from_main, (u8 *) & ispi,
2764 static_always_inline void
2765 ikev2_rewrite_v6_addrs (ikev2_sa_t * sa, ip6_header_t * ih)
2767 if (sa->is_initiator)
2769 ip_address_copy_addr (&ih->dst_address, &sa->raddr);
2770 ip_address_copy_addr (&ih->src_address, &sa->iaddr);
2774 ip_address_copy_addr (&ih->dst_address, &sa->iaddr);
2775 ip_address_copy_addr (&ih->src_address, &sa->raddr);
2779 static_always_inline void
2780 ikev2_rewrite_v4_addrs (ikev2_sa_t * sa, ip4_header_t * ih)
2782 if (sa->is_initiator)
2784 ip_address_copy_addr (&ih->dst_address, &sa->raddr);
2785 ip_address_copy_addr (&ih->src_address, &sa->iaddr);
2789 ip_address_copy_addr (&ih->dst_address, &sa->iaddr);
2790 ip_address_copy_addr (&ih->src_address, &sa->raddr);
2794 static_always_inline void
2795 ikev2_set_ip_address (ikev2_sa_t * sa, const void *iaddr,
2796 const void *raddr, const int af)
2798 ip_address_set (&sa->raddr, raddr, af);
2799 ip_address_set (&sa->iaddr, iaddr, af);
2803 ikev2_elog_uint_peers_addr (u32 exchange, ip4_header_t * ip4,
2804 ip6_header_t * ip6, u8 is_ip4)
2809 src = ip4->src_address.as_u32;
2810 dst = ip4->dst_address.as_u32;
2814 src = ip6->src_address.as_u32[3];
2815 dst = ip6->dst_address.as_u32[3];
2817 ikev2_elog_uint_peers (IKEV2_LOG_WARNING, "IKEv2 exchange %d "
2818 "received from %d.%d.%d.%d to %d.%d.%d.%d",
2819 exchange, src, dst);
2823 ikev2_generate_sa_init_data_and_log (ikev2_sa_t * sa)
2825 ikev2_generate_sa_error_t rc = ikev2_generate_sa_init_data (sa);
2827 if (PREDICT_TRUE (rc == IKEV2_GENERATE_SA_INIT_OK))
2830 if (rc == IKEV2_GENERATE_SA_INIT_ERR_NO_DH)
2831 ikev2_elog_error (IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR);
2832 else if (rc == IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH)
2833 ikev2_elog_error (IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR);
2836 static_always_inline uword
2837 ikev2_node_internal (vlib_main_t *vm, vlib_node_runtime_t *node,
2838 vlib_frame_t *frame, u8 is_ip4, u8 natt)
2840 u32 n_left = frame->n_vectors, *from;
2841 ikev2_main_t *km = &ikev2_main;
2842 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b;
2843 u16 nexts[VLIB_FRAME_SIZE], *next = nexts;
2844 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2847 from = vlib_frame_vector_args (frame);
2848 vlib_get_buffers (vm, from, bufs, n_left);
2853 vlib_buffer_t *b0 = b[0];
2854 next[0] = is_ip4 ? IKEV2_NEXT_IP4_ERROR_DROP
2855 : IKEV2_NEXT_IP6_ERROR_DROP;
2856 ip4_header_t *ip40 = 0;
2857 ip6_header_t *ip60 = 0;
2860 ikev2_sa_t *sa0 = 0;
2861 ikev2_sa_t sa; /* temporary store for SA */
2868 u8 *ptr = vlib_buffer_get_current (b0);
2869 ip40 = (ip4_header_t *) ptr;
2870 ptr += sizeof (*ip40);
2871 udp0 = (udp_header_t *) ptr;
2872 ptr += sizeof (*udp0);
2873 ike0 = (ike_header_t *) ptr;
2874 ip_hdr_sz = sizeof (*ip40);
2878 u8 *ipx_hdr = b0->data + vnet_buffer (b0)->l3_hdr_offset;
2879 ike0 = vlib_buffer_get_current (b0);
2880 vlib_buffer_advance (b0, -sizeof (*udp0));
2881 udp0 = vlib_buffer_get_current (b0);
2885 ip40 = (ip4_header_t *) ipx_hdr;
2886 ip_hdr_sz = sizeof (*ip40);
2890 ip60 = (ip6_header_t *) ipx_hdr;
2891 ip_hdr_sz = sizeof (*ip60);
2893 vlib_buffer_advance (b0, -ip_hdr_sz);
2896 rlen = b0->current_length - ip_hdr_sz - sizeof (*udp0);
2898 /* check for non-esp marker */
2901 ASSERT (*((u32 *) ike0) == 0);
2903 (ike_header_t *) ((u8 *) ike0 + sizeof (ikev2_non_esp_marker));
2904 rlen -= sizeof (ikev2_non_esp_marker);
2907 if (clib_net_to_host_u32 (ike0->length) != rlen)
2909 vlib_node_increment_counter (vm, node->node_index,
2910 IKEV2_ERROR_BAD_LENGTH, 1);
2914 if (ike0->version != IKE_VERSION_2)
2916 vlib_node_increment_counter (vm, node->node_index,
2917 IKEV2_ERROR_NOT_IKEV2, 1);
2921 if (ike0->exchange == IKEV2_EXCHANGE_SA_INIT)
2924 clib_memset (sa0, 0, sizeof (*sa0));
2926 if (ike_hdr_is_initiator (ike0))
2928 if (ike0->rspi == 0)
2931 ikev2_set_ip_address (sa0, &ip40->src_address,
2932 &ip40->dst_address, AF_IP4);
2934 ikev2_set_ip_address (sa0, &ip60->src_address,
2935 &ip60->dst_address, AF_IP6);
2937 sa0->dst_port = clib_net_to_host_u16 (udp0->src_port);
2940 ikev2_retransmit_sa_init (ike0, sa0->iaddr,
2944 vlib_node_increment_counter (vm, node->node_index,
2947 IKEV2_ERROR_IKE_SA_INIT_IGNORE
2949 IKEV2_ERROR_IKE_SA_INIT_RETRANSMIT,
2954 res = ikev2_process_sa_init_req (
2955 vm, sa0, ike0, udp0, rlen,
2956 vnet_buffer (b0)->sw_if_index[VLIB_RX]);
2958 vlib_node_increment_counter (vm, node->node_index,
2959 IKEV2_ERROR_MALFORMED_PACKET,
2962 if (sa0->state == IKEV2_STATE_SA_INIT)
2964 ikev2_sa_free_proposal_vector (&sa0->r_proposals);
2966 ikev2_select_proposal (sa0->i_proposals,
2967 IKEV2_PROTOCOL_IKE);
2968 ikev2_generate_sa_init_data_and_log (sa0);
2971 if (sa0->state == IKEV2_STATE_SA_INIT
2972 || sa0->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2974 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
2975 slen = ikev2_generate_message (b0, sa0, ike0, 0, udp0);
2977 vlib_node_increment_counter (vm, node->node_index,
2978 IKEV2_ERROR_NO_BUFF_SPACE,
2982 if (sa0->state == IKEV2_STATE_SA_INIT)
2984 /* add SA to the pool */
2985 pool_get (ptd->sas, sa0);
2986 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
2987 ikev2_init_sa (vm, sa0);
2988 hash_set (ptd->sa_by_rspi, sa0->rspi, sa0 - ptd->sas);
2992 ikev2_sa_free_all_vec (sa0);
2996 else //received sa_init without initiator flag
2999 ikev2_set_ip_address (sa0, &ip40->dst_address,
3000 &ip40->src_address, AF_IP4);
3002 ikev2_set_ip_address (sa0, &ip60->dst_address,
3003 &ip60->src_address, AF_IP6);
3005 ikev2_process_sa_init_resp (vm, sa0, ike0, udp0, rlen);
3007 if (sa0->state == IKEV2_STATE_SA_INIT)
3010 ike0->exchange = IKEV2_EXCHANGE_IKE_AUTH;
3011 uword *p = hash_get (km->sa_by_ispi, sa0->ispi);
3014 ikev2_sa_t *sai = pool_elt_at_index (km->sais, p[0]);
3016 if (clib_atomic_bool_cmp_and_swap
3017 (&sai->init_response_received, 0, 1))
3019 ikev2_complete_sa_data (sa0, sai);
3020 ikev2_calc_keys (sa0);
3021 ikev2_sa_auth_init (sa0);
3022 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
3024 clib_net_to_host_u32 (sai->last_init_msg_id);
3025 sa0->last_init_msg_id = sai->last_init_msg_id + 1;
3027 ikev2_generate_message (b0, sa0, ike0, 0, udp0);
3029 vlib_node_increment_counter (vm,
3031 IKEV2_ERROR_NO_BUFF_SPACE,
3036 /* we've already processed sa-init response */
3037 sa0->state = IKEV2_STATE_UNKNOWN;
3042 if (sa0->state == IKEV2_STATE_SA_INIT)
3044 /* add SA to the pool */
3045 pool_get (ptd->sas, sa0);
3046 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
3047 hash_set (ptd->sa_by_rspi, sa0->rspi, sa0 - ptd->sas);
3051 ikev2_sa_free_all_vec (sa0);
3055 else if (ike0->exchange == IKEV2_EXCHANGE_IKE_AUTH)
3058 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3061 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3062 slen = ikev2_retransmit_resp (sa0, ike0);
3065 vlib_node_increment_counter (vm, node->node_index,
3068 IKEV2_ERROR_IKE_REQ_IGNORE
3070 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3075 sa0->dst_port = clib_net_to_host_u16 (udp0->src_port);
3076 res = ikev2_process_auth_req (vm, sa0, ike0, rlen);
3078 ikev2_sa_auth (sa0);
3080 vlib_node_increment_counter (vm, node->node_index,
3081 IKEV2_ERROR_MALFORMED_PACKET, 1);
3082 if (sa0->state == IKEV2_STATE_AUTHENTICATED)
3084 ikev2_initial_contact_cleanup (ptd, sa0);
3085 ikev2_sa_match_ts (sa0);
3086 if (sa0->state != IKEV2_STATE_TS_UNACCEPTABLE)
3087 ikev2_create_tunnel_interface (vm, sa0,
3092 if (sa0->is_initiator)
3094 ikev2_del_sa_init (sa0->ispi);
3098 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3099 slen = ikev2_generate_message (b0, sa0, ike0, 0, udp0);
3101 vlib_node_increment_counter (vm, node->node_index,
3102 IKEV2_ERROR_NO_BUFF_SPACE,
3107 else if (ike0->exchange == IKEV2_EXCHANGE_INFORMATIONAL)
3110 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3113 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3114 slen = ikev2_retransmit_resp (sa0, ike0);
3117 vlib_node_increment_counter (vm, node->node_index,
3120 IKEV2_ERROR_IKE_REQ_IGNORE
3122 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3127 res = ikev2_process_informational_req (vm, sa0, ike0, rlen);
3130 vlib_node_increment_counter (vm, node->node_index,
3131 IKEV2_ERROR_MALFORMED_PACKET,
3139 if (sa0->del[0].protocol_id != IKEV2_PROTOCOL_IKE)
3141 ikev2_delete_t *d, *tmp, *resp = 0;
3142 vec_foreach (d, sa0->del)
3144 ikev2_child_sa_t *ch_sa;
3145 ch_sa = ikev2_sa_get_child (sa0, d->spi,
3147 !sa0->is_initiator);
3150 ikev2_delete_tunnel_interface (km->vnet_main,
3152 if (!sa0->is_initiator)
3154 vec_add2 (resp, tmp, 1);
3155 tmp->protocol_id = d->protocol_id;
3156 tmp->spi = ch_sa->r_proposals[0].spi;
3158 ikev2_sa_del_child_sa (sa0, ch_sa);
3161 if (!sa0->is_initiator)
3163 vec_free (sa0->del);
3168 if (ike_hdr_is_request (ike0))
3170 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3171 slen = ikev2_generate_message (b0, sa0, ike0, 0, udp0);
3173 vlib_node_increment_counter (vm, node->node_index,
3174 IKEV2_ERROR_NO_BUFF_SPACE,
3179 else if (ike0->exchange == IKEV2_EXCHANGE_CREATE_CHILD_SA)
3182 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3185 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3186 slen = ikev2_retransmit_resp (sa0, ike0);
3189 vlib_node_increment_counter (vm, node->node_index,
3192 IKEV2_ERROR_IKE_REQ_IGNORE
3194 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3199 res = ikev2_process_create_child_sa_req (vm, sa0, ike0, rlen);
3202 vlib_node_increment_counter (vm, node->node_index,
3203 IKEV2_ERROR_MALFORMED_PACKET,
3211 if (sa0->rekey[0].protocol_id != IKEV2_PROTOCOL_IKE)
3214 ikev2_sa_free_all_child_sa (&sa0->childs);
3215 ikev2_child_sa_t *child;
3216 vec_add2 (sa0->childs, child, 1);
3217 clib_memset (child, 0, sizeof (*child));
3218 child->r_proposals = sa0->rekey[0].r_proposal;
3219 child->i_proposals = sa0->rekey[0].i_proposal;
3220 child->tsi = sa0->rekey[0].tsi;
3221 child->tsr = sa0->rekey[0].tsr;
3222 ikev2_create_tunnel_interface (vm, sa0, child, p[0],
3223 child - sa0->childs, 1);
3225 if (ike_hdr_is_response (ike0))
3227 vec_free (sa0->rekey);
3231 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3232 slen = ikev2_generate_message (b0, sa0, ike0, 0, udp0);
3234 vlib_node_increment_counter (vm, node->node_index,
3235 IKEV2_ERROR_NO_BUFF_SPACE,
3243 ikev2_elog_uint_peers_addr (ike0->exchange, ip40, ip60, is_ip4);
3247 /* if we are sending packet back, rewrite headers */
3248 if (slen && ~0 != slen)
3252 next[0] = IKEV2_NEXT_IP4_LOOKUP;
3253 ikev2_rewrite_v4_addrs (sa0, ip40);
3257 next[0] = IKEV2_NEXT_IP6_LOOKUP;
3258 ikev2_rewrite_v6_addrs (sa0, ip60);
3263 udp0->dst_port = udp0->src_port =
3264 clib_net_to_host_u16 (ikev2_get_port (sa0));
3266 if (udp0->dst_port == clib_net_to_host_u16 (IKEV2_PORT_NATT)
3267 && ikev2_natt_active (sa0))
3270 slen = ikev2_insert_non_esp_marker (ike0, slen);
3276 slen += sizeof (ikev2_non_esp_marker);
3278 u16 tp = udp0->dst_port;
3279 udp0->dst_port = udp0->src_port;
3280 udp0->src_port = tp;
3283 udp0->length = clib_host_to_net_u16 (slen + sizeof (udp_header_t));
3285 b0->current_length = slen + ip_hdr_sz + sizeof (udp_header_t);
3288 ip40->length = clib_host_to_net_u16 (b0->current_length);
3289 ip40->checksum = ip4_header_checksum (ip40);
3293 ip60->payload_length =
3294 clib_host_to_net_u16 (b0->current_length - sizeof (*ip60));
3298 if (sa0 && (sa0->state == IKEV2_STATE_DELETED ||
3299 sa0->state == IKEV2_STATE_NOTIFY_AND_DELETE))
3301 ikev2_child_sa_t *c;
3303 vec_foreach (c, sa0->childs)
3304 ikev2_delete_tunnel_interface (km->vnet_main, sa0, c);
3306 ikev2_delete_sa (ptd, sa0);
3308 if (PREDICT_FALSE ((node->flags & VLIB_NODE_FLAG_TRACE)
3309 && (b0->flags & VLIB_BUFFER_IS_TRACED)))
3312 ikev2_trace_t *t = vlib_add_trace (vm, node, b0, sizeof (*t));
3313 t->sw_if_index = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3314 t->next_index = next[0];
3321 vlib_node_increment_counter (vm, node->node_index,
3322 IKEV2_ERROR_PROCESSED, frame->n_vectors);
3323 vlib_buffer_enqueue_to_next (vm, node, from, nexts, frame->n_vectors);
3324 return frame->n_vectors;
3328 ikev2_ip4 (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_frame_t * frame)
3330 return ikev2_node_internal (vm, node, frame, 1 /* is_ip4 */, 0);
3334 ikev2_ip4_natt (vlib_main_t *vm, vlib_node_runtime_t *node,
3335 vlib_frame_t *frame)
3337 return ikev2_node_internal (vm, node, frame, 1 /* is_ip4 */, 1 /* natt */);
3341 ikev2_ip6 (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_frame_t * frame)
3343 return ikev2_node_internal (vm, node, frame, 0 /* is_ip4 */, 0);
3347 VLIB_REGISTER_NODE (ikev2_node_ip4,static) = {
3348 .function = ikev2_ip4,
3349 .name = "ikev2-ip4",
3350 .vector_size = sizeof (u32),
3351 .format_trace = format_ikev2_trace,
3352 .type = VLIB_NODE_TYPE_INTERNAL,
3354 .n_errors = ARRAY_LEN(ikev2_error_strings),
3355 .error_strings = ikev2_error_strings,
3357 .n_next_nodes = IKEV2_IP4_N_NEXT,
3359 [IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
3360 [IKEV2_NEXT_IP4_ERROR_DROP] = "error-drop",
3364 VLIB_REGISTER_NODE (ikev2_node_ip4_natt,static) = {
3365 .function = ikev2_ip4_natt,
3366 .name = "ikev2-ip4-natt",
3367 .vector_size = sizeof (u32),
3368 .format_trace = format_ikev2_trace,
3369 .type = VLIB_NODE_TYPE_INTERNAL,
3371 .n_errors = ARRAY_LEN(ikev2_error_strings),
3372 .error_strings = ikev2_error_strings,
3374 .n_next_nodes = IKEV2_IP4_N_NEXT,
3376 [IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
3377 [IKEV2_NEXT_IP4_ERROR_DROP] = "error-drop",
3381 VLIB_REGISTER_NODE (ikev2_node_ip6,static) = {
3382 .function = ikev2_ip6,
3383 .name = "ikev2-ip6",
3384 .vector_size = sizeof (u32),
3385 .format_trace = format_ikev2_trace,
3386 .type = VLIB_NODE_TYPE_INTERNAL,
3388 .n_errors = ARRAY_LEN(ikev2_error_strings),
3389 .error_strings = ikev2_error_strings,
3391 .n_next_nodes = IKEV2_IP6_N_NEXT,
3393 [IKEV2_NEXT_IP6_LOOKUP] = "ip6-lookup",
3394 [IKEV2_NEXT_IP6_ERROR_DROP] = "error-drop",
3399 // set ikev2 proposals when vpp is used as initiator
3400 static clib_error_t *
3401 ikev2_set_initiator_proposals (vlib_main_t * vm, ikev2_sa_t * sa,
3402 ikev2_transforms_set * ts,
3403 ikev2_sa_proposal_t ** proposals, int is_ike)
3406 ikev2_main_t *km = &ikev2_main;
3407 ikev2_sa_proposal_t *proposal;
3408 vec_add2 (*proposals, proposal, 1);
3409 ikev2_sa_transform_t *td;
3414 vec_foreach (td, km->supported_transforms)
3416 if (td->type == IKEV2_TRANSFORM_TYPE_ENCR
3417 && td->encr_type == ts->crypto_alg
3418 && td->key_len == ts->crypto_key_size / 8)
3421 attr[0] = clib_host_to_net_u16 (14 | (1 << 15));
3422 attr[1] = clib_host_to_net_u16 (td->key_len << 3);
3423 vec_add (td->attrs, (u8 *) attr, 4);
3424 vec_add1 (proposal->transforms, *td);
3433 r = clib_error_return (0, "Unsupported algorithm");
3437 if (IKEV2_TRANSFORM_INTEG_TYPE_NONE != ts->integ_alg)
3441 vec_foreach (td, km->supported_transforms)
3443 if (td->type == IKEV2_TRANSFORM_TYPE_INTEG
3444 && td->integ_type == ts->integ_alg)
3446 vec_add1 (proposal->transforms, *td);
3454 ("Didn't find any supported algorithm for IKEV2_TRANSFORM_TYPE_INTEG");
3455 r = clib_error_return (0, "Unsupported algorithm");
3464 vec_foreach (td, km->supported_transforms)
3466 if (td->type == IKEV2_TRANSFORM_TYPE_PRF
3467 && td->prf_type == IKEV2_TRANSFORM_PRF_TYPE_PRF_HMAC_SHA2_256)
3469 vec_add1 (proposal->transforms, *td);
3476 r = clib_error_return (0, "Unsupported algorithm");
3485 vec_foreach (td, km->supported_transforms)
3487 if (td->type == IKEV2_TRANSFORM_TYPE_DH && td->dh_type == ts->dh_type)
3489 vec_add1 (proposal->transforms, *td);
3492 sa->dh_group = td->dh_type;
3500 r = clib_error_return (0, "Unsupported algorithm");
3508 vec_foreach (td, km->supported_transforms)
3510 if (td->type == IKEV2_TRANSFORM_TYPE_ESN)
3512 vec_add1 (proposal->transforms, *td);
3518 r = clib_error_return (0, "Unsupported algorithm");
3527 static ikev2_profile_t *
3528 ikev2_profile_index_by_name (u8 * name)
3530 ikev2_main_t *km = &ikev2_main;
3533 p = mhash_get (&km->profile_index_by_name, name);
3537 return pool_elt_at_index (km->profiles, p[0]);
3542 ikev2_send_ike (vlib_main_t * vm, ip_address_t * src, ip_address_t * dst,
3543 u32 bi0, u32 len, u16 src_port, u16 dst_port, u32 sw_if_index)
3552 b0 = vlib_get_buffer (vm, bi0);
3553 vlib_buffer_advance (b0, -sizeof (udp_header_t));
3554 udp0 = vlib_buffer_get_current (b0);
3555 udp0->dst_port = clib_host_to_net_u16 (dst_port);
3556 udp0->src_port = clib_host_to_net_u16 (src_port);
3557 udp0->length = clib_host_to_net_u16 (len + sizeof (udp_header_t));
3560 if (ip_addr_version (dst) == AF_IP4)
3562 vlib_buffer_advance (b0, -sizeof (ip4_header_t));
3563 ip40 = vlib_buffer_get_current (b0);
3564 ip40->ip_version_and_header_length = 0x45;
3566 ip40->fragment_id = 0;
3567 ip40->flags_and_fragment_offset = 0;
3569 ip40->protocol = IP_PROTOCOL_UDP;
3570 ip40->dst_address.as_u32 = ip_addr_v4 (dst).as_u32;
3571 ip40->src_address.as_u32 = ip_addr_v4 (src).as_u32;
3572 b0->current_length =
3573 len + sizeof (ip4_header_t) + sizeof (udp_header_t);
3574 ip40->length = clib_host_to_net_u16 (b0->current_length);
3575 ip40->checksum = ip4_header_checksum (ip40);
3579 vlib_buffer_advance (b0, -sizeof (ip6_header_t));
3580 ip60 = vlib_buffer_get_current (b0);
3582 b0->current_length = len + sizeof (*ip60) + sizeof (udp_header_t);
3583 ip60->ip_version_traffic_class_and_flow_label =
3584 clib_host_to_net_u32 (0x6 << 28);
3585 ip60->payload_length =
3586 clib_host_to_net_u16 (b0->current_length - sizeof (*ip60));
3587 ip60->protocol = IP_PROTOCOL_UDP;
3588 ip60->hop_limit = 0xff;
3589 clib_memcpy_fast (ip60->src_address.as_u8, ip_addr_v6 (src).as_u8,
3590 sizeof (ip60->src_address));
3591 clib_memcpy_fast (ip60->dst_address.as_u8, ip_addr_v6 (dst).as_u8,
3592 sizeof (ip60->src_address));
3595 b0->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
3596 vnet_buffer (b0)->sw_if_index[VLIB_RX] = sw_if_index;
3597 vnet_buffer (b0)->sw_if_index[VLIB_TX] = ~0;
3599 u32 next_index = (ip_addr_version (dst) == AF_IP4) ?
3600 ip4_lookup_node.index : ip6_lookup_node.index;
3602 /* send the request */
3603 f = vlib_get_frame_to_node (vm, next_index);
3604 to_next = vlib_frame_vector_args (f);
3607 vlib_put_frame_to_node (vm, next_index, f);
3612 ikev2_get_new_ike_header_buff (vlib_main_t * vm, vlib_buffer_t ** b)
3615 if (vlib_buffer_alloc (vm, &bi0, 1) != 1)
3620 *b = vlib_get_buffer (vm, bi0);
3625 ikev2_set_local_key (vlib_main_t * vm, u8 * file)
3627 ikev2_main_t *km = &ikev2_main;
3630 EVP_PKEY_free (km->pkey);
3631 km->pkey = ikev2_load_key_file (file);
3632 if (km->pkey == NULL)
3633 return clib_error_return (0, "load key '%s' failed", file);
3638 static_always_inline vnet_api_error_t
3639 ikev2_register_udp_port (ikev2_profile_t * p, u16 port)
3641 ikev2_main_t *km = &ikev2_main;
3642 udp_dst_port_info_t *pi;
3644 uword *v = hash_get (km->udp_ports, port);
3645 pi = udp_get_dst_port_info (&udp_main, port, UDP_IP4);
3649 /* IKE already uses this port, only increment reference counter */
3656 return VNET_API_ERROR_UDP_PORT_TAKEN;
3658 udp_register_dst_port (km->vlib_main, port,
3659 ipsec4_tun_input_node.index, 1);
3660 hash_set (km->udp_ports, port, 1);
3662 p->ipsec_over_udp_port = port;
3666 static_always_inline void
3667 ikev2_unregister_udp_port (ikev2_profile_t * p)
3669 ikev2_main_t *km = &ikev2_main;
3672 if (p->ipsec_over_udp_port == IPSEC_UDP_PORT_NONE)
3675 v = hash_get (km->udp_ports, p->ipsec_over_udp_port);
3683 udp_unregister_dst_port (km->vlib_main, p->ipsec_over_udp_port, 1);
3684 hash_unset (km->udp_ports, p->ipsec_over_udp_port);
3687 p->ipsec_over_udp_port = IPSEC_UDP_PORT_NONE;
3691 ikev2_initiate_delete_ike_sa_internal (vlib_main_t * vm,
3692 ikev2_main_per_thread_data_t * tkm,
3693 ikev2_sa_t * sa, u8 send_notification)
3695 ikev2_main_t *km = &ikev2_main;
3696 ip_address_t *src, *dst;
3698 ikev2_child_sa_t *c;
3700 /* Create the Initiator notification for IKE SA removal */
3705 vec_resize (sa->del, 1);
3706 sa->del->protocol_id = IKEV2_PROTOCOL_IKE;
3707 sa->del->spi = sa->ispi;
3709 if (send_notification)
3711 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
3714 ikev2_log_error ("buffer alloc failure");
3718 ike0 = vlib_buffer_get_current (b0);
3719 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
3720 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
3721 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
3723 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
3724 sa->last_init_msg_id += 1;
3725 len = ikev2_generate_message (b0, sa, ike0, 0, 0);
3729 if (ikev2_natt_active (sa))
3730 len = ikev2_insert_non_esp_marker (ike0, len);
3732 if (sa->is_initiator)
3743 ikev2_send_ike (vm, src, dst, bi0, len,
3744 ikev2_get_port (sa), sa->dst_port, 0);
3748 /* delete local SA */
3749 vec_foreach (c, sa->childs)
3750 ikev2_delete_tunnel_interface (km->vnet_main, sa, c);
3752 u64 rspi = sa->rspi;
3753 ikev2_sa_free_all_vec (sa);
3754 uword *p = hash_get (tkm->sa_by_rspi, rspi);
3757 hash_unset (tkm->sa_by_rspi, rspi);
3758 pool_put (tkm->sas, sa);
3763 ikev2_cleanup_profile_sessions (ikev2_main_t * km, ikev2_profile_t * p)
3765 ikev2_main_per_thread_data_t *tkm;
3767 u32 pi = p - km->profiles;
3772 pool_foreach (sa, km->sais) {
3773 if (pi == sa->profile_index)
3774 vec_add1 (del_sai, sa - km->sais);
3778 vec_foreach (sai, del_sai)
3780 sa = pool_elt_at_index (km->sais, sai[0]);
3781 ikev2_sa_free_all_vec (sa);
3782 hash_unset (km->sa_by_ispi, sa->ispi);
3783 pool_put (km->sais, sa);
3785 vec_reset_length (del_sai);
3787 vec_foreach (tkm, km->per_thread_data)
3790 pool_foreach (sa, tkm->sas) {
3791 if (sa->profile_index != ~0 && pi == sa->profile_index)
3792 vec_add1 (del_sai, sa - tkm->sas);
3796 vec_foreach (sai, del_sai)
3798 sa = pool_elt_at_index (tkm->sas, sai[0]);
3799 ikev2_initiate_delete_ike_sa_internal (km->vlib_main, tkm, sa, 1);
3802 vec_reset_length (del_sai);
3809 ikev2_profile_free (ikev2_profile_t * p)
3813 vec_free (p->auth.data);
3815 EVP_PKEY_free (p->auth.key);
3817 vec_free (p->loc_id.data);
3818 vec_free (p->rem_id.data);
3822 ikev2_add_del_profile (vlib_main_t * vm, u8 * name, int is_add)
3824 ikev2_main_t *km = &ikev2_main;
3829 if (ikev2_profile_index_by_name (name))
3830 return clib_error_return (0, "policy %v already exists", name);
3832 pool_get (km->profiles, p);
3833 clib_memset (p, 0, sizeof (*p));
3834 p->name = vec_dup (name);
3835 p->ipsec_over_udp_port = IPSEC_UDP_PORT_NONE;
3836 p->responder.sw_if_index = ~0;
3838 uword index = p - km->profiles;
3839 mhash_set_mem (&km->profile_index_by_name, name, &index, 0);
3843 p = ikev2_profile_index_by_name (name);
3845 return clib_error_return (0, "policy %v does not exists", name);
3847 ikev2_unregister_udp_port (p);
3848 ikev2_cleanup_profile_sessions (km, p);
3850 ikev2_profile_free (p);
3851 pool_put (km->profiles, p);
3852 mhash_unset (&km->profile_index_by_name, name, 0);
3858 ikev2_set_profile_auth (vlib_main_t * vm, u8 * name, u8 auth_method,
3859 u8 * auth_data, u8 data_hex_format)
3864 p = ikev2_profile_index_by_name (name);
3868 r = clib_error_return (0, "unknown profile %v", name);
3873 EVP_PKEY_free (p->auth.key);
3874 vec_free (p->auth.data);
3876 p->auth.method = auth_method;
3877 p->auth.data = vec_dup (auth_data);
3878 p->auth.hex = data_hex_format;
3880 if (auth_method == IKEV2_AUTH_METHOD_RSA_SIG)
3882 vec_add1 (p->auth.data, 0);
3883 p->auth.key = ikev2_load_cert_file (p->auth.data);
3884 if (p->auth.key == NULL)
3885 return clib_error_return (0, "load cert '%s' failed", p->auth.data);
3892 ikev2_is_id_supported (u8 id_type)
3894 return (id_type == IKEV2_ID_TYPE_ID_IPV4_ADDR ||
3895 id_type == IKEV2_ID_TYPE_ID_IPV6_ADDR ||
3896 id_type == IKEV2_ID_TYPE_ID_RFC822_ADDR ||
3897 id_type == IKEV2_ID_TYPE_ID_FQDN);
3901 ikev2_set_profile_id (vlib_main_t * vm, u8 * name, u8 id_type, u8 * data,
3907 if (!ikev2_is_id_supported (id_type))
3909 r = clib_error_return (0, "unsupported identity type %U",
3910 format_ikev2_id_type, id_type);
3914 p = ikev2_profile_index_by_name (name);
3918 r = clib_error_return (0, "unknown profile %v", name);
3924 vec_free (p->loc_id.data);
3925 p->loc_id.type = id_type;
3926 p->loc_id.data = vec_dup (data);
3930 vec_free (p->rem_id.data);
3931 p->rem_id.type = id_type;
3932 p->rem_id.data = vec_dup (data);
3938 static_always_inline void
3939 ikev2_set_ts_type (ikev2_ts_t * ts, const ip_address_t * addr)
3941 if (ip_addr_version (addr) == AF_IP4)
3942 ts->ts_type = TS_IPV4_ADDR_RANGE;
3944 ts->ts_type = TS_IPV6_ADDR_RANGE;
3947 static_always_inline void
3948 ikev2_set_ts_addrs (ikev2_ts_t * ts, const ip_address_t * start,
3949 const ip_address_t * end)
3951 ip_address_copy (&ts->start_addr, start);
3952 ip_address_copy (&ts->end_addr, end);
3956 ikev2_set_profile_ts (vlib_main_t * vm, u8 * name, u8 protocol_id,
3957 u16 start_port, u16 end_port, ip_address_t start_addr,
3958 ip_address_t end_addr, int is_local)
3963 p = ikev2_profile_index_by_name (name);
3967 r = clib_error_return (0, "unknown profile %v", name);
3971 if (ip_addr_version (&start_addr) != ip_addr_version (&end_addr))
3972 return clib_error_return (0, "IP address version mismatch!");
3976 ikev2_set_ts_addrs (&p->loc_ts, &start_addr, &end_addr);
3977 p->loc_ts.start_port = start_port;
3978 p->loc_ts.end_port = end_port;
3979 p->loc_ts.protocol_id = protocol_id;
3980 ikev2_set_ts_type (&p->loc_ts, &start_addr);
3984 ikev2_set_ts_addrs (&p->rem_ts, &start_addr, &end_addr);
3985 p->rem_ts.start_port = start_port;
3986 p->rem_ts.end_port = end_port;
3987 p->rem_ts.protocol_id = protocol_id;
3988 ikev2_set_ts_type (&p->rem_ts, &start_addr);
3996 ikev2_set_profile_responder (vlib_main_t * vm, u8 * name,
3997 u32 sw_if_index, ip_address_t addr)
4002 p = ikev2_profile_index_by_name (name);
4006 r = clib_error_return (0, "unknown profile %v", name);
4010 p->responder.sw_if_index = sw_if_index;
4011 ip_address_copy (&p->responder.addr, &addr);
4017 ikev2_set_profile_ike_transforms (vlib_main_t * vm, u8 * name,
4018 ikev2_transform_encr_type_t crypto_alg,
4019 ikev2_transform_integ_type_t integ_alg,
4020 ikev2_transform_dh_type_t dh_type,
4021 u32 crypto_key_size)
4026 p = ikev2_profile_index_by_name (name);
4030 r = clib_error_return (0, "unknown profile %v", name);
4034 p->ike_ts.crypto_alg = crypto_alg;
4035 p->ike_ts.integ_alg = integ_alg;
4036 p->ike_ts.dh_type = dh_type;
4037 p->ike_ts.crypto_key_size = crypto_key_size;
4042 ikev2_set_profile_esp_transforms (vlib_main_t * vm, u8 * name,
4043 ikev2_transform_encr_type_t crypto_alg,
4044 ikev2_transform_integ_type_t integ_alg,
4045 u32 crypto_key_size)
4050 p = ikev2_profile_index_by_name (name);
4054 r = clib_error_return (0, "unknown profile %v", name);
4058 p->esp_ts.crypto_alg = crypto_alg;
4059 p->esp_ts.integ_alg = integ_alg;
4060 p->esp_ts.crypto_key_size = crypto_key_size;
4065 ikev2_set_profile_tunnel_interface (vlib_main_t * vm,
4066 u8 * name, u32 sw_if_index)
4071 p = ikev2_profile_index_by_name (name);
4075 r = clib_error_return (0, "unknown profile %v", name);
4079 p->tun_itf = sw_if_index;
4085 ikev2_set_profile_ipsec_udp_port (vlib_main_t * vm, u8 * name, u16 port,
4088 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4089 ikev2_main_t *km = &ikev2_main;
4090 vnet_api_error_t rv = 0;
4094 return VNET_API_ERROR_INVALID_VALUE;
4098 if (p->ipsec_over_udp_port != IPSEC_UDP_PORT_NONE)
4099 return VNET_API_ERROR_VALUE_EXIST;
4101 rv = ikev2_register_udp_port (p, port);
4105 v = hash_get (km->udp_ports, port);
4107 return VNET_API_ERROR_IKE_NO_PORT;
4109 if (p->ipsec_over_udp_port == IPSEC_UDP_PORT_NONE)
4110 return VNET_API_ERROR_INVALID_VALUE;
4112 ikev2_unregister_udp_port (p);
4118 ikev2_set_profile_udp_encap (vlib_main_t * vm, u8 * name)
4120 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4125 r = clib_error_return (0, "unknown profile %v", name);
4134 ikev2_set_profile_sa_lifetime (vlib_main_t * vm, u8 * name,
4135 u64 lifetime, u32 jitter, u32 handover,
4141 p = ikev2_profile_index_by_name (name);
4145 r = clib_error_return (0, "unknown profile %v", name);
4149 p->lifetime = lifetime;
4150 p->lifetime_jitter = jitter;
4151 p->handover = handover;
4152 p->lifetime_maxdata = maxdata;
4157 ikev2_get_if_address (u32 sw_if_index, ip_address_family_t af,
4158 ip_address_t * out_addr)
4160 ip4_address_t *if_ip4;
4161 ip6_address_t *if_ip6;
4165 if_ip4 = ip4_interface_first_address (&ip4_main, sw_if_index, 0);
4168 ip_address_set (out_addr, if_ip4, AF_IP4);
4174 if_ip6 = ip6_interface_first_address (&ip6_main, sw_if_index);
4177 ip_address_set (out_addr, if_ip6, AF_IP6);
4185 ikev2_initiate_sa_init (vlib_main_t * vm, u8 * name)
4189 ikev2_main_t *km = &ikev2_main;
4193 int len = sizeof (ike_header_t), valid_ip = 0;
4194 ip_address_t if_ip = ip_address_initializer;
4196 p = ikev2_profile_index_by_name (name);
4200 r = clib_error_return (0, "unknown profile %v", name);
4204 if (p->responder.sw_if_index == ~0
4205 || ip_address_is_zero (&p->responder.addr))
4207 r = clib_error_return (0, "responder not set for profile %v", name);
4211 if (ikev2_get_if_address (p->responder.sw_if_index,
4212 ip_addr_version (&p->responder.addr), &if_ip))
4217 /* Prepare the SA and the IKE payload */
4219 clib_memset (&sa, 0, sizeof (ikev2_sa_t));
4220 ikev2_payload_chain_t *chain = 0;
4221 ikev2_payload_new_chain (chain);
4223 /* Build the IKE proposal payload */
4224 ikev2_sa_proposal_t *proposals = 0;
4225 ikev2_set_initiator_proposals (vm, &sa, &p->ike_ts, &proposals, 1);
4226 proposals[0].proposal_num = 1;
4227 proposals[0].protocol_id = IKEV2_PROTOCOL_IKE;
4229 /* Add and then cleanup proposal data */
4230 ikev2_payload_add_sa (chain, proposals);
4231 ikev2_sa_free_proposal_vector (&proposals);
4233 sa.is_initiator = 1;
4234 sa.profile_index = p - km->profiles;
4235 sa.state = IKEV2_STATE_SA_INIT;
4236 sa.tun_itf = p->tun_itf;
4237 sa.udp_encap = p->udp_encap;
4238 if (p->natt_disabled)
4239 sa.natt_state = IKEV2_NATT_DISABLED;
4240 sa.ipsec_over_udp_port = p->ipsec_over_udp_port;
4241 sa.is_tun_itf_set = 1;
4242 sa.initial_contact = 1;
4243 sa.dst_port = IKEV2_PORT;
4245 ikev2_generate_sa_error_t rc = ikev2_generate_sa_init_data (&sa);
4246 if (rc != IKEV2_GENERATE_SA_INIT_OK)
4248 ikev2_sa_free_all_vec (&sa);
4249 ikev2_payload_destroy_chain (chain);
4250 return clib_error_return (0, "%U", format_ikev2_gen_sa_error, rc);
4253 ikev2_payload_add_ke (chain, sa.dh_group, sa.i_dh_data);
4254 ikev2_payload_add_nonce (chain, sa.i_nonce);
4256 /* Build the child SA proposal */
4257 vec_resize (sa.childs, 1);
4258 ikev2_set_initiator_proposals (vm, &sa, &p->esp_ts,
4259 &sa.childs[0].i_proposals, 0);
4260 sa.childs[0].i_proposals[0].proposal_num = 1;
4261 sa.childs[0].i_proposals[0].protocol_id = IKEV2_PROTOCOL_ESP;
4262 RAND_bytes ((u8 *) & sa.childs[0].i_proposals[0].spi,
4263 sizeof (sa.childs[0].i_proposals[0].spi));
4265 /* Add NAT detection notification messages (mandatory) */
4266 u8 *nat_detection_sha1 =
4267 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa.ispi),
4268 clib_host_to_net_u64 (sa.rspi),
4269 &if_ip, clib_host_to_net_u16 (IKEV2_PORT));
4271 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP,
4272 nat_detection_sha1);
4273 vec_free (nat_detection_sha1);
4274 nat_detection_sha1 =
4275 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa.ispi),
4276 clib_host_to_net_u64 (sa.rspi),
4278 clib_host_to_net_u16 (sa.dst_port));
4279 ikev2_payload_add_notify (chain,
4280 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP,
4281 nat_detection_sha1);
4282 vec_free (nat_detection_sha1);
4284 u8 *sig_hash_algo = vec_new (u8, 8);
4285 u64 tmpsig = clib_host_to_net_u64 (0x0001000200030004);
4286 clib_memcpy_fast (sig_hash_algo, &tmpsig, sizeof (tmpsig));
4287 ikev2_payload_add_notify (chain,
4288 IKEV2_NOTIFY_MSG_SIGNATURE_HASH_ALGORITHMS,
4290 vec_free (sig_hash_algo);
4292 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4295 ikev2_sa_free_all_vec (&sa);
4296 ikev2_payload_destroy_chain (chain);
4297 char *errmsg = "buffer alloc failure";
4298 ikev2_log_error (errmsg);
4299 return clib_error_return (0, errmsg);
4301 ike0 = vlib_buffer_get_current (b0);
4303 /* Buffer update and boilerplate */
4304 len += vec_len (chain->data);
4305 ike0->nextpayload = chain->first_payload_type;
4306 ike0->length = clib_host_to_net_u32 (len);
4307 clib_memcpy_fast (ike0->payload, chain->data, vec_len (chain->data));
4308 ikev2_payload_destroy_chain (chain);
4310 ike0->version = IKE_VERSION_2;
4311 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
4312 ike0->exchange = IKEV2_EXCHANGE_SA_INIT;
4313 ike0->ispi = clib_host_to_net_u64 (sa.ispi);
4316 sa.last_init_msg_id += 1;
4318 /* store whole IKE payload - needed for PSK auth */
4319 vec_reset_length (sa.last_sa_init_req_packet_data);
4320 vec_add (sa.last_sa_init_req_packet_data, ike0, len);
4322 /* add data to the SA then add it to the pool */
4323 ip_address_copy (&sa.iaddr, &if_ip);
4324 ip_address_copy (&sa.raddr, &p->responder.addr);
4325 sa.i_id.type = p->loc_id.type;
4326 sa.i_id.data = vec_dup (p->loc_id.data);
4327 sa.r_id.type = p->rem_id.type;
4328 sa.r_id.data = vec_dup (p->rem_id.data);
4329 sa.i_auth.method = p->auth.method;
4330 sa.i_auth.hex = p->auth.hex;
4331 sa.i_auth.data = vec_dup (p->auth.data);
4332 sa.sw_if_index = p->responder.sw_if_index;
4333 vec_add (sa.childs[0].tsi, &p->loc_ts, 1);
4334 vec_add (sa.childs[0].tsr, &p->rem_ts, 1);
4336 ikev2_initial_contact_cleanup (0, &sa);
4338 /* add SA to the pool */
4339 ikev2_sa_t *sa0 = 0;
4340 pool_get (km->sais, sa0);
4341 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
4342 hash_set (km->sa_by_ispi, sa0->ispi, sa0 - km->sais);
4346 ikev2_send_ike (vm, &if_ip, &p->responder.addr, bi0, len,
4347 IKEV2_PORT, sa.dst_port, sa.sw_if_index);
4350 ("ispi %lx rspi %lx IKEV2_EXCHANGE_SA_INIT sent to ",
4351 clib_host_to_net_u64 (sa0->ispi), 0,
4352 ip_addr_v4 (&p->responder.addr).as_u32,
4353 ip_addr_version (&p->responder.addr) == AF_IP4);
4358 clib_error_return (0, "interface %U does not have any IP address!",
4359 format_vnet_sw_if_index_name, vnet_get_main (),
4360 p->responder.sw_if_index);
4368 ikev2_delete_child_sa_internal (vlib_main_t * vm, ikev2_sa_t * sa,
4369 ikev2_child_sa_t * csa)
4371 /* Create the Initiator notification for child SA removal */
4372 ikev2_main_t *km = &ikev2_main;
4378 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4381 ikev2_log_error ("buffer alloc failure");
4385 ike0 = vlib_buffer_get_current (b0);
4386 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
4387 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4388 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4390 vec_resize (sa->del, 1);
4391 sa->del->protocol_id = IKEV2_PROTOCOL_ESP;
4392 sa->del->spi = csa->i_proposals->spi;
4393 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
4394 sa->last_init_msg_id += 1;
4395 len = ikev2_generate_message (b0, sa, ike0, 0, 0);
4399 if (ikev2_natt_active (sa))
4400 len = ikev2_insert_non_esp_marker (ike0, len);
4401 ikev2_send_ike (vm, &sa->iaddr, &sa->raddr, bi0, len,
4402 ikev2_get_port (sa), sa->dst_port, sa->sw_if_index);
4404 /* delete local child SA */
4405 ikev2_delete_tunnel_interface (km->vnet_main, sa, csa);
4406 ikev2_sa_del_child_sa (sa, csa);
4410 ikev2_initiate_delete_child_sa (vlib_main_t * vm, u32 ispi)
4413 ikev2_main_t *km = &ikev2_main;
4414 ikev2_main_per_thread_data_t *tkm;
4415 ikev2_sa_t *fsa = 0;
4416 ikev2_child_sa_t *fchild = 0;
4418 /* Search for the child SA */
4419 vec_foreach (tkm, km->per_thread_data)
4425 pool_foreach (sa, tkm->sas) {
4426 fchild = ikev2_sa_get_child(sa, ispi, IKEV2_PROTOCOL_ESP, 1);
4436 if (!fchild || !fsa)
4438 r = clib_error_return (0, "Child SA not found");
4443 ikev2_delete_child_sa_internal (vm, fsa, fchild);
4450 ikev2_initiate_delete_ike_sa (vlib_main_t * vm, u64 ispi)
4453 ikev2_main_t *km = &ikev2_main;
4454 ikev2_main_per_thread_data_t *tkm;
4455 ikev2_sa_t *fsa = 0;
4456 ikev2_main_per_thread_data_t *ftkm = 0;
4458 /* Search for the IKE SA */
4459 vec_foreach (tkm, km->per_thread_data)
4465 pool_foreach (sa, tkm->sas) {
4466 if (sa->ispi == ispi)
4478 r = clib_error_return (0, "IKE SA not found");
4482 ikev2_initiate_delete_ike_sa_internal (vm, ftkm, fsa, 1);
4487 ikev2_rekey_child_sa_internal (vlib_main_t * vm, ikev2_sa_t * sa,
4488 ikev2_child_sa_t * csa)
4490 /* Create the Initiator request for create child SA */
4496 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4499 ikev2_log_error ("buffer alloc failure");
4503 ike0 = vlib_buffer_get_current (b0);
4504 ike0->version = IKE_VERSION_2;
4505 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
4506 ike0->exchange = IKEV2_EXCHANGE_CREATE_CHILD_SA;
4507 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4508 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4509 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
4510 sa->last_init_msg_id += 1;
4512 ikev2_rekey_t *rekey;
4513 vec_reset_length (sa->rekey);
4514 vec_add2 (sa->rekey, rekey, 1);
4515 ikev2_sa_proposal_t *proposals = vec_dup (csa->i_proposals);
4518 RAND_bytes ((u8 *) & proposals[0].spi, sizeof (proposals[0].spi));
4519 rekey->spi = proposals[0].spi;
4520 rekey->ispi = csa->i_proposals->spi;
4521 len = ikev2_generate_message (b0, sa, ike0, proposals, 0);
4525 if (ikev2_natt_active (sa))
4526 len = ikev2_insert_non_esp_marker (ike0, len);
4527 ikev2_send_ike (vm, &sa->iaddr, &sa->raddr, bi0, len,
4528 ikev2_get_port (sa), ikev2_get_port (sa), sa->sw_if_index);
4529 vec_free (proposals);
4533 ikev2_initiate_rekey_child_sa (vlib_main_t * vm, u32 ispi)
4536 ikev2_main_t *km = &ikev2_main;
4537 ikev2_main_per_thread_data_t *tkm;
4538 ikev2_sa_t *fsa = 0;
4539 ikev2_child_sa_t *fchild = 0;
4541 /* Search for the child SA */
4542 vec_foreach (tkm, km->per_thread_data)
4548 pool_foreach (sa, tkm->sas) {
4549 fchild = ikev2_sa_get_child(sa, ispi, IKEV2_PROTOCOL_ESP, 1);
4559 if (!fchild || !fsa)
4561 r = clib_error_return (0, "Child SA not found");
4566 ikev2_rekey_child_sa_internal (vm, fsa, fchild);
4573 ikev2_sa_sw_if_match (ikev2_sa_t * sa, u32 sw_if_index)
4575 return (sa->sw_if_index == sw_if_index) && sa->is_initiator;
4579 ikev2_sa_del (ikev2_profile_t * p, u32 sw_if_index)
4581 u64 *ispi, *ispi_vec = 0;
4582 ikev2_sa_t *sa, **sap, **sa_vec = 0;
4583 ikev2_main_t *km = &ikev2_main;
4584 ikev2_main_per_thread_data_t *tkm;
4585 p->responder.sw_if_index = ~0;
4587 vec_foreach (tkm, km->per_thread_data)
4590 pool_foreach (sa, tkm->sas) {
4591 if (ikev2_sa_sw_if_match (sa, sw_if_index))
4592 vec_add1 (sa_vec, sa);
4596 vec_foreach (sap, sa_vec)
4598 ikev2_initiate_delete_ike_sa_internal (km->vlib_main, tkm, *sap, 0);
4600 vec_reset_length (sa_vec);
4605 pool_foreach (sa, km->sais) {
4606 if (ikev2_sa_sw_if_match (sa, sw_if_index))
4607 vec_add1 (ispi_vec, sa->ispi);
4611 vec_foreach (ispi, ispi_vec)
4613 ikev2_del_sa_init_from_main (ispi);
4616 vec_free (ispi_vec);
4619 static clib_error_t *
4620 ikev2_sw_interface_add_del (vnet_main_t * vnm, u32 sw_if_index, u32 is_add)
4622 ikev2_main_t *km = &ikev2_main;
4629 pool_foreach (p, km->profiles) {
4630 if (p->responder.sw_if_index == sw_if_index)
4631 ikev2_sa_del (p, sw_if_index);
4638 VNET_SW_INTERFACE_ADD_DEL_FUNCTION (ikev2_sw_interface_add_del);
4641 ikev2_init (vlib_main_t * vm)
4643 ikev2_main_t *km = &ikev2_main;
4644 vlib_thread_main_t *tm = vlib_get_thread_main ();
4647 clib_memset (km, 0, sizeof (ikev2_main_t));
4648 km->vnet_main = vnet_get_main ();
4651 km->liveness_period = IKEV2_LIVENESS_PERIOD_CHECK;
4652 km->liveness_max_retries = IKEV2_LIVENESS_RETRIES;
4653 ikev2_crypto_init (km);
4655 mhash_init_vec_string (&km->profile_index_by_name, sizeof (uword));
4657 vec_validate_aligned (km->per_thread_data, tm->n_vlib_mains - 1,
4658 CLIB_CACHE_LINE_BYTES);
4659 for (thread_id = 0; thread_id < tm->n_vlib_mains; thread_id++)
4661 ikev2_main_per_thread_data_t *ptd =
4662 vec_elt_at_index (km->per_thread_data, thread_id);
4664 ptd->sa_by_rspi = hash_create (0, sizeof (uword));
4666 #if OPENSSL_VERSION_NUMBER >= 0x10100000L
4667 ptd->evp_ctx = EVP_CIPHER_CTX_new ();
4668 ptd->hmac_ctx = HMAC_CTX_new ();
4670 EVP_CIPHER_CTX_init (&ptd->_evp_ctx);
4671 ptd->evp_ctx = &ptd->_evp_ctx;
4672 HMAC_CTX_init (&(ptd->_hmac_ctx));
4673 ptd->hmac_ctx = &ptd->_hmac_ctx;
4677 km->sa_by_ispi = hash_create (0, sizeof (uword));
4678 km->sw_if_indices = hash_create (0, 0);
4679 km->udp_ports = hash_create (0, sizeof (uword));
4681 udp_register_dst_port (vm, IKEV2_PORT, ikev2_node_ip4.index, 1);
4682 udp_register_dst_port (vm, IKEV2_PORT, ikev2_node_ip6.index, 0);
4683 udp_register_dst_port (vm, IKEV2_PORT_NATT, ikev2_node_ip4.index, 1);
4684 udp_register_dst_port (vm, IKEV2_PORT_NATT, ikev2_node_ip6.index, 0);
4686 vlib_punt_hdl_t punt_hdl = vlib_punt_client_register ("ikev2-ip4-natt");
4687 vlib_punt_register (punt_hdl, ipsec_punt_reason[IPSEC_PUNT_IP4_SPI_UDP_0],
4689 ikev2_cli_reference ();
4691 km->log_level = IKEV2_LOG_ERROR;
4692 km->log_class = vlib_log_register_class ("ikev2", 0);
4697 VLIB_INIT_FUNCTION (ikev2_init) =
4699 .runs_after = VLIB_INITS("ipsec_init", "ipsec_punt_init"),
4704 ikev2_mngr_process_child_sa (ikev2_sa_t * sa, ikev2_child_sa_t * csa,
4707 ikev2_main_t *km = &ikev2_main;
4708 ikev2_profile_t *p = 0;
4709 vlib_main_t *vm = km->vlib_main;
4710 f64 now = vlib_time_now (vm);
4713 if (sa->profile_index != ~0)
4714 p = pool_elt_at_index (km->profiles, sa->profile_index);
4716 if (sa->is_initiator && p && csa->time_to_expiration
4717 && now > csa->time_to_expiration)
4719 if (!csa->is_expired || csa->rekey_retries > 0)
4721 ikev2_rekey_child_sa_internal (vm, sa, csa);
4722 csa->time_to_expiration = now + p->handover;
4723 csa->is_expired = 1;
4724 if (csa->rekey_retries == 0)
4726 csa->rekey_retries = 5;
4728 else if (csa->rekey_retries > 0)
4730 csa->rekey_retries--;
4731 ikev2_log_debug ("Rekeying Child SA 0x%x, retries left %d",
4732 csa->i_proposals->spi, csa->rekey_retries);
4733 if (csa->rekey_retries == 0)
4735 csa->rekey_retries = -1;
4742 csa->time_to_expiration = 0;
4743 ikev2_delete_child_sa_internal (vm, sa, csa);
4751 ipip_tunnel_t *ipip = NULL;
4752 u32 sw_if_index = sa->is_tun_itf_set ? sa->tun_itf : ~0;
4753 if (~0 == sw_if_index)
4755 ip46_address_t local_ip;
4756 ip46_address_t remote_ip;
4757 if (sa->is_initiator)
4759 local_ip = to_ip46 (ip_addr_version (&sa->iaddr),
4760 ip_addr_bytes (&sa->iaddr));
4761 remote_ip = to_ip46 (ip_addr_version (&sa->raddr),
4762 ip_addr_bytes (&sa->raddr));
4766 local_ip = to_ip46 (ip_addr_version (&sa->raddr),
4767 ip_addr_bytes (&sa->raddr));
4768 remote_ip = to_ip46 (ip_addr_version (&sa->iaddr),
4769 ip_addr_bytes (&sa->iaddr));
4773 ipip_tunnel_key_t key = {
4776 .transport = IPIP_TRANSPORT_IP4,
4781 ipip = ipip_tunnel_db_find (&key);
4784 sw_if_index = ipip->sw_if_index;
4790 vec_add1 (sas_in, csa->remote_sa_id);
4791 vlib_worker_thread_barrier_sync (vm);
4792 int rv = ipsec_tun_protect_update (sw_if_index, NULL,
4793 csa->local_sa_id, sas_in);
4796 ipsec_sa_unlock_id (ikev2_flip_alternate_sa_bit (csa->remote_sa_id));
4797 vlib_worker_thread_barrier_release (vm);
4804 ikev2_set_log_level (ikev2_log_level_t log_level)
4806 ikev2_main_t *km = &ikev2_main;
4808 if (log_level >= IKEV2_LOG_MAX)
4810 ikev2_log_error ("unknown logging level %d", log_level);
4814 km->log_level = log_level;
4819 ikev2_set_liveness_params (u32 period, u32 max_retries)
4821 ikev2_main_t *km = &ikev2_main;
4823 if (period == 0 || max_retries == 0)
4824 return clib_error_return (0, "invalid args");
4826 km->liveness_period = period;
4827 km->liveness_max_retries = max_retries;
4832 ikev2_profile_natt_disable (u8 * name)
4834 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4836 return clib_error_return (0, "unknown profile %v", name);
4838 p->natt_disabled = 1;
4843 ikev2_mngr_process_ipsec_sa (ipsec_sa_t * ipsec_sa)
4845 ikev2_main_t *km = &ikev2_main;
4846 vlib_main_t *vm = km->vlib_main;
4847 ikev2_main_per_thread_data_t *tkm;
4848 ikev2_sa_t *fsa = 0;
4849 ikev2_profile_t *p = 0;
4850 ikev2_child_sa_t *fchild = 0;
4851 f64 now = vlib_time_now (vm);
4852 vlib_counter_t counts;
4854 /* Search for the SA and child SA */
4855 vec_foreach (tkm, km->per_thread_data)
4861 pool_foreach (sa, tkm->sas) {
4862 fchild = ikev2_sa_get_child(sa, ipsec_sa->spi, IKEV2_PROTOCOL_ESP, 1);
4871 vlib_get_combined_counter (&ipsec_sa_counters,
4872 ipsec_sa->stat_index, &counts);
4874 if (fsa && fsa->profile_index != ~0 && fsa->is_initiator)
4875 p = pool_elt_at_index (km->profiles, fsa->profile_index);
4877 if (fchild && p && p->lifetime_maxdata)
4879 if (!fchild->is_expired && counts.bytes > p->lifetime_maxdata)
4881 fchild->time_to_expiration = now;
4887 ikev2_process_pending_sa_init_one (ikev2_main_t * km, ikev2_sa_t * sa)
4893 if (ip_address_is_zero (&sa->iaddr))
4895 p = pool_elt_at_index (km->profiles, sa->profile_index);
4896 if (!ikev2_get_if_address (p->responder.sw_if_index,
4897 ip_addr_version (&p->responder.addr),
4901 /* update NAT detection payload */
4903 ikev2_find_ike_notify_payload
4904 ((ike_header_t *) sa->last_sa_init_req_packet_data,
4905 IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP);
4909 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
4910 clib_host_to_net_u64 (sa->rspi),
4912 clib_host_to_net_u16 (IKEV2_PORT));
4913 clib_memcpy_fast (np, nat_sha, vec_len (nat_sha));
4918 if (vlib_buffer_alloc (km->vlib_main, &bi0, 1) != 1)
4921 vlib_buffer_t *b = vlib_get_buffer (km->vlib_main, bi0);
4922 clib_memcpy_fast (vlib_buffer_get_current (b),
4923 sa->last_sa_init_req_packet_data,
4924 vec_len (sa->last_sa_init_req_packet_data));
4926 ikev2_send_ike (km->vlib_main, &sa->iaddr, &sa->raddr, bi0,
4927 vec_len (sa->last_sa_init_req_packet_data),
4928 ikev2_get_port (sa), IKEV2_PORT, sa->sw_if_index);
4932 ikev2_process_pending_sa_init (ikev2_main_t * km)
4939 hash_foreach (ispi, sai, km->sa_by_ispi,
4941 sa = pool_elt_at_index (km->sais, sai);
4942 if (sa->init_response_received)
4945 ikev2_process_pending_sa_init_one (km, sa);
4951 ikev2_send_informational_request (ikev2_sa_t * sa)
4953 ikev2_main_t *km = &ikev2_main;
4954 ip_address_t *src, *dst;
4961 bi0 = ikev2_get_new_ike_header_buff (km->vlib_main, &b0);
4964 ikev2_log_error ("buffer alloc failure");
4968 ike0 = vlib_buffer_get_current (b0);
4969 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
4970 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4971 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4972 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
4974 sa->last_init_msg_id += 1;
4975 len = ikev2_generate_message (b0, sa, ike0, 0, 0);
4979 if (ikev2_natt_active (sa))
4980 len = ikev2_insert_non_esp_marker (ike0, len);
4982 if (sa->is_initiator)
4993 dp = sa->dst_port ? sa->dst_port : ikev2_get_port (sa);
4994 ikev2_send_ike (km->vlib_main, src, dst, bi0, len, ikev2_get_port (sa), dp,
4999 ikev2_disable_dpd (void)
5001 ikev2_main_t *km = &ikev2_main;
5002 km->dpd_disabled = 1;
5005 static_always_inline int
5006 ikev2_mngr_process_responder_sas (ikev2_sa_t * sa)
5008 ikev2_main_t *km = &ikev2_main;
5009 vlib_main_t *vm = km->vlib_main;
5011 if (!sa->keys_generated)
5014 if (sa->liveness_retries >= km->liveness_max_retries)
5017 f64 now = vlib_time_now (vm);
5019 if (sa->liveness_period_check < now)
5021 sa->liveness_retries++;
5022 sa->liveness_period_check = now + km->liveness_period;
5023 ikev2_send_informational_request (sa);
5029 ikev2_mngr_process_fn (vlib_main_t * vm, vlib_node_runtime_t * rt,
5032 ikev2_main_t *km = &ikev2_main;
5033 ipsec_main_t *im = &ipsec_main;
5035 ikev2_child_sa_t *c;
5040 vlib_process_wait_for_event_or_clock (vm, 2);
5041 vlib_process_get_events (vm, NULL);
5043 /* process ike child sas */
5044 ikev2_main_per_thread_data_t *tkm;
5045 vec_foreach (tkm, km->per_thread_data)
5048 u32 *to_be_deleted = 0;
5051 pool_foreach (sa, tkm->sas) {
5052 ikev2_child_sa_t *c;
5055 if (sa->state != IKEV2_STATE_AUTHENTICATED)
5058 if (sa->old_remote_id_present && 0 > sa->old_id_expiration)
5060 sa->old_remote_id_present = 0;
5064 sa->old_id_expiration -= 1;
5066 vec_foreach (c, sa->childs)
5067 ikev2_mngr_process_child_sa(sa, c, del_old_ids);
5069 if (!km->dpd_disabled && ikev2_mngr_process_responder_sas (sa))
5070 vec_add1 (to_be_deleted, sa - tkm->sas);
5074 vec_foreach (sai, to_be_deleted)
5076 sa = pool_elt_at_index (tkm->sas, sai[0]);
5077 u8 reinitiate = (sa->is_initiator && sa->profile_index != ~0);
5078 vec_foreach (c, sa->childs)
5080 ikev2_delete_tunnel_interface (km->vnet_main, sa, c);
5081 ikev2_sa_del_child_sa (sa, c);
5083 ikev2_sa_free_all_vec (sa);
5084 hash_unset (tkm->sa_by_rspi, sa->rspi);
5085 pool_put (tkm->sas, sa);
5089 p = pool_elt_at_index (km->profiles, sa->profile_index);
5092 clib_error_t *e = ikev2_initiate_sa_init (vm, p->name);
5095 ikev2_log_error ("%U", format_clib_error, e);
5096 clib_error_free (e);
5101 vec_free (to_be_deleted);
5104 /* process ipsec sas */
5107 pool_foreach (sa, im->sad) {
5108 ikev2_mngr_process_ipsec_sa(sa);
5112 ikev2_process_pending_sa_init (km);
5118 VLIB_REGISTER_NODE (ikev2_mngr_process_node, static) = {
5119 .function = ikev2_mngr_process_fn,
5120 .type = VLIB_NODE_TYPE_PROCESS,
5122 "ikev2-manager-process",
5125 VLIB_PLUGIN_REGISTER () = {
5126 .version = VPP_BUILD_VER,
5127 .description = "Internet Key Exchange (IKEv2) Protocol",
5132 * fd.io coding-style-patch-verification: ON
5135 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob