2 * Copyright (c) 2015 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vlib/vlib.h>
17 #include <vlib/unix/plugin.h>
18 #include <vlibmemory/api.h>
19 #include <vpp/app/version.h>
20 #include <vnet/vnet.h>
21 #include <vppinfra/error.h>
22 #include <vppinfra/random.h>
23 #include <vnet/udp/udp.h>
24 #include <vnet/ipsec/ipsec.h>
25 #include <vnet/ipsec/ipsec_tun.h>
26 #include <vnet/ipip/ipip.h>
27 #include <plugins/ikev2/ikev2.h>
28 #include <plugins/ikev2/ikev2_priv.h>
29 #include <openssl/sha.h>
30 #include <vnet/ipsec/ipsec_punt.h>
31 #include <plugins/ikev2/ikev2.api_enum.h>
33 #define IKEV2_LIVENESS_RETRIES 3
34 #define IKEV2_LIVENESS_PERIOD_CHECK 30
36 ikev2_main_t ikev2_main;
38 static int ikev2_delete_tunnel_interface (vnet_main_t * vnm,
40 ikev2_child_sa_t * child);
42 #define ikev2_set_state(sa, v, ...) do { \
44 ikev2_elog_sa_state("ispi %lx SA state changed to " #v __VA_ARGS__, sa->ispi); \
54 format_ikev2_trace (u8 * s, va_list * args)
56 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
57 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
58 ikev2_trace_t *t = va_arg (*args, ikev2_trace_t *);
60 s = format (s, "ikev2: sw_if_index %d, next index %d",
61 t->sw_if_index, t->next_index);
65 #define IKEV2_GENERATE_SA_INIT_OK_str ""
66 #define IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR \
67 "no DH group configured for IKE proposals!"
68 #define IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR \
69 "DH group not supported!"
73 IKEV2_GENERATE_SA_INIT_OK,
74 IKEV2_GENERATE_SA_INIT_ERR_NO_DH,
75 IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH,
76 } ikev2_generate_sa_error_t;
79 format_ikev2_gen_sa_error (u8 * s, va_list * args)
81 ikev2_generate_sa_error_t e = va_arg (*args, ikev2_generate_sa_error_t);
84 case IKEV2_GENERATE_SA_INIT_OK:
86 case IKEV2_GENERATE_SA_INIT_ERR_NO_DH:
87 s = format (s, IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR);
89 case IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH:
90 s = format (s, IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR);
98 IKEV2_NEXT_IP4_LOOKUP,
99 IKEV2_NEXT_IP4_ERROR_DROP,
105 IKEV2_NEXT_IP6_LOOKUP,
106 IKEV2_NEXT_IP6_ERROR_DROP,
110 typedef u32 ikev2_non_esp_marker;
112 static_always_inline u16
113 ikev2_get_port (ikev2_sa_t * sa)
115 return ikev2_natt_active (sa) ? IKEV2_PORT_NATT : IKEV2_PORT;
118 static_always_inline int
119 ikev2_insert_non_esp_marker (ike_header_t * ike, int len)
121 memmove ((u8 *) ike + sizeof (ikev2_non_esp_marker), ike, len);
122 clib_memset (ike, 0, sizeof (ikev2_non_esp_marker));
123 return len + sizeof (ikev2_non_esp_marker);
126 static ikev2_sa_transform_t *
127 ikev2_find_transform_data (ikev2_sa_transform_t * t)
129 ikev2_main_t *km = &ikev2_main;
130 ikev2_sa_transform_t *td;
132 vec_foreach (td, km->supported_transforms)
134 if (td->type != t->type)
137 if (td->transform_id != t->transform_id)
140 if (td->type == IKEV2_TRANSFORM_TYPE_ENCR)
142 if (vec_len (t->attrs) != 4 || t->attrs[0] != 0x80
143 || t->attrs[1] != 14)
146 if (((t->attrs[2] << 8 | t->attrs[3]) / 8) != td->key_len)
154 static ikev2_sa_proposal_t *
155 ikev2_select_proposal (ikev2_sa_proposal_t * proposals,
156 ikev2_protocol_id_t prot_id)
158 ikev2_sa_proposal_t *rv = 0;
159 ikev2_sa_proposal_t *proposal;
160 ikev2_sa_transform_t *transform, *new_t;
161 u8 mandatory_bitmap, optional_bitmap;
163 if (prot_id == IKEV2_PROTOCOL_IKE)
165 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_ENCR) |
166 (1 << IKEV2_TRANSFORM_TYPE_PRF) | (1 << IKEV2_TRANSFORM_TYPE_DH);
167 optional_bitmap = mandatory_bitmap | (1 << IKEV2_TRANSFORM_TYPE_INTEG);
169 else if (prot_id == IKEV2_PROTOCOL_ESP)
171 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_ENCR) |
172 (1 << IKEV2_TRANSFORM_TYPE_ESN);
173 optional_bitmap = mandatory_bitmap |
174 (1 << IKEV2_TRANSFORM_TYPE_INTEG) | (1 << IKEV2_TRANSFORM_TYPE_DH);
176 else if (prot_id == IKEV2_PROTOCOL_AH)
178 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_INTEG) |
179 (1 << IKEV2_TRANSFORM_TYPE_ESN);
180 optional_bitmap = mandatory_bitmap | (1 << IKEV2_TRANSFORM_TYPE_DH);
185 vec_add2 (rv, proposal, 1);
187 vec_foreach (proposal, proposals)
190 if (proposal->protocol_id != prot_id)
193 vec_foreach (transform, proposal->transforms)
195 if ((1 << transform->type) & bitmap)
198 if (ikev2_find_transform_data (transform))
200 bitmap |= 1 << transform->type;
201 vec_add2 (rv->transforms, new_t, 1);
202 clib_memcpy_fast (new_t, transform, sizeof (*new_t));
203 new_t->attrs = vec_dup (transform->attrs);
207 if ((bitmap & mandatory_bitmap) == mandatory_bitmap &&
208 (bitmap & ~optional_bitmap) == 0)
210 rv->proposal_num = proposal->proposal_num;
211 rv->protocol_id = proposal->protocol_id;
212 RAND_bytes ((u8 *) & rv->spi, sizeof (rv->spi));
217 vec_free (rv->transforms);
226 ikev2_sa_transform_t *
227 ikev2_sa_get_td_for_type (ikev2_sa_proposal_t * p,
228 ikev2_transform_type_t type)
230 ikev2_sa_transform_t *t;
235 vec_foreach (t, p->transforms)
238 return ikev2_find_transform_data (t);
244 ikev2_sa_get_child (ikev2_sa_t * sa, u32 spi, ikev2_protocol_id_t prot_id,
248 vec_foreach (c, sa->childs)
250 ikev2_sa_proposal_t *proposal =
251 by_initiator ? &c->i_proposals[0] : &c->r_proposals[0];
252 if (proposal && proposal->spi == spi && proposal->protocol_id == prot_id)
260 ikev2_sa_free_proposal_vector (ikev2_sa_proposal_t ** v)
262 ikev2_sa_proposal_t *p;
263 ikev2_sa_transform_t *t;
270 vec_foreach (t, p->transforms)
274 vec_free (p->transforms);
280 ikev2_sa_free_child_sa (ikev2_child_sa_t * c)
282 ikev2_sa_free_proposal_vector (&c->r_proposals);
283 ikev2_sa_free_proposal_vector (&c->i_proposals);
293 ikev2_sa_free_all_child_sa (ikev2_child_sa_t ** childs)
296 vec_foreach (c, *childs) ikev2_sa_free_child_sa (c);
302 ikev2_sa_del_child_sa (ikev2_sa_t * sa, ikev2_child_sa_t * child)
304 ikev2_sa_free_child_sa (child);
305 vec_del1 (sa->childs, child - sa->childs);
309 ikev2_sa_free_all_vec (ikev2_sa_t * sa)
311 vec_free (sa->i_nonce);
312 vec_free (sa->r_nonce);
314 vec_free (sa->dh_shared_key);
315 vec_free (sa->dh_private_key);
316 vec_free (sa->i_dh_data);
317 vec_free (sa->r_dh_data);
319 ikev2_sa_free_proposal_vector (&sa->r_proposals);
320 ikev2_sa_free_proposal_vector (&sa->i_proposals);
323 vec_free (sa->sk_ai);
324 vec_free (sa->sk_ar);
325 vec_free (sa->sk_ei);
326 vec_free (sa->sk_er);
327 vec_free (sa->sk_pi);
328 vec_free (sa->sk_pr);
330 vec_free (sa->i_id.data);
331 vec_free (sa->r_id.data);
333 vec_free (sa->i_auth.data);
335 EVP_PKEY_free (sa->i_auth.key);
336 vec_free (sa->r_auth.data);
338 EVP_PKEY_free (sa->r_auth.key);
342 vec_free (sa->rekey);
344 vec_free (sa->last_sa_init_req_packet_data);
345 vec_free (sa->last_sa_init_res_packet_data);
347 vec_free (sa->last_res_packet_data);
349 ikev2_sa_free_all_child_sa (&sa->childs);
353 ikev2_delete_sa (ikev2_main_per_thread_data_t * ptd, ikev2_sa_t * sa)
357 ikev2_sa_free_all_vec (sa);
359 p = hash_get (ptd->sa_by_rspi, sa->rspi);
362 hash_unset (ptd->sa_by_rspi, sa->rspi);
363 pool_put (ptd->sas, sa);
367 static ikev2_generate_sa_error_t
368 ikev2_generate_sa_init_data (ikev2_sa_t * sa)
370 ikev2_sa_transform_t *t = 0, *t2;
371 ikev2_main_t *km = &ikev2_main;
373 if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
374 return IKEV2_GENERATE_SA_INIT_ERR_NO_DH;
376 /* check if received DH group is on our list of supported groups */
377 vec_foreach (t2, km->supported_transforms)
379 if (t2->type == IKEV2_TRANSFORM_TYPE_DH && sa->dh_group == t2->dh_type)
388 sa->dh_group = IKEV2_TRANSFORM_DH_TYPE_NONE;
389 return IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH;
392 if (sa->is_initiator)
395 RAND_bytes ((u8 *) & sa->ispi, 8);
398 sa->i_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
399 RAND_bytes ((u8 *) sa->i_nonce, IKEV2_NONCE_SIZE);
404 RAND_bytes ((u8 *) & sa->rspi, 8);
407 sa->r_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
408 RAND_bytes ((u8 *) sa->r_nonce, IKEV2_NONCE_SIZE);
411 /* generate dh keys */
412 ikev2_generate_dh (sa, t);
414 return IKEV2_GENERATE_SA_INIT_OK;
418 ikev2_complete_sa_data (ikev2_sa_t * sa, ikev2_sa_t * sai)
420 ikev2_sa_transform_t *t = 0, *t2;
421 ikev2_main_t *km = &ikev2_main;
423 /*move some data to the new SA */
424 #define _(A) ({void* __tmp__ = (A); (A) = 0; __tmp__;})
425 sa->i_nonce = _(sai->i_nonce);
426 sa->i_dh_data = _(sai->i_dh_data);
427 sa->dh_private_key = _(sai->dh_private_key);
428 ip_address_copy (&sa->iaddr, &sai->iaddr);
429 ip_address_copy (&sa->raddr, &sai->raddr);
430 sa->is_initiator = sai->is_initiator;
431 sa->i_id.type = sai->i_id.type;
432 sa->r_id.type = sai->r_id.type;
433 sa->profile_index = sai->profile_index;
434 sa->tun_itf = sai->tun_itf;
435 sa->is_tun_itf_set = sai->is_tun_itf_set;
436 if (sai->natt_state == IKEV2_NATT_DISABLED)
437 sa->natt_state = IKEV2_NATT_DISABLED;
438 sa->i_id.data = _(sai->i_id.data);
439 sa->r_id.data = _(sai->r_id.data);
440 sa->i_auth.method = sai->i_auth.method;
441 sa->i_auth.hex = sai->i_auth.hex;
442 sa->i_auth.data = _(sai->i_auth.data);
443 sa->i_auth.key = _(sai->i_auth.key);
444 sa->last_sa_init_req_packet_data = _(sai->last_sa_init_req_packet_data);
445 sa->last_init_msg_id = sai->last_init_msg_id;
446 sa->childs = _(sai->childs);
447 sa->udp_encap = sai->udp_encap;
448 sa->ipsec_over_udp_port = sai->ipsec_over_udp_port;
449 sa->dst_port = sai->dst_port;
450 sa->sw_if_index = sai->sw_if_index;
454 if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
459 /* check if received DH group is on our list of supported groups */
460 vec_foreach (t2, km->supported_transforms)
462 if (t2->type == IKEV2_TRANSFORM_TYPE_DH && sa->dh_group == t2->dh_type)
471 sa->dh_group = IKEV2_TRANSFORM_DH_TYPE_NONE;
476 /* generate dh keys */
477 ikev2_complete_dh (sa, t);
482 ikev2_calc_keys (ikev2_sa_t * sa)
485 /* calculate SKEYSEED = prf(Ni | Nr, g^ir) */
488 u16 integ_key_len = 0, salt_len = 0;
489 ikev2_sa_transform_t *tr_encr, *tr_prf, *tr_integ;
491 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
493 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
495 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
498 integ_key_len = tr_integ->key_len;
500 salt_len = sizeof (u32);
502 vec_append (s, sa->i_nonce);
503 vec_append (s, sa->r_nonce);
504 skeyseed = ikev2_calc_prf (tr_prf, s, sa->dh_shared_key);
506 /* Calculate S = Ni | Nr | SPIi | SPIr */
508 vec_add2 (s, tmp, 2 * sizeof (*spi));
510 spi[0] = clib_host_to_net_u64 (sa->ispi);
511 spi[1] = clib_host_to_net_u64 (sa->rspi);
513 /* calculate PRFplus */
515 int len = tr_prf->key_trunc + /* SK_d */
516 integ_key_len * 2 + /* SK_ai, SK_ar */
517 tr_encr->key_len * 2 + /* SK_ei, SK_er */
518 tr_prf->key_len * 2 + /* SK_pi, SK_pr */
521 keymat = ikev2_calc_prfplus (tr_prf, skeyseed, s, len);
528 sa->sk_d = vec_new (u8, tr_prf->key_trunc);
529 clib_memcpy_fast (sa->sk_d, keymat + pos, tr_prf->key_trunc);
530 pos += tr_prf->key_trunc;
535 sa->sk_ai = vec_new (u8, integ_key_len);
536 clib_memcpy_fast (sa->sk_ai, keymat + pos, integ_key_len);
537 pos += integ_key_len;
540 sa->sk_ar = vec_new (u8, integ_key_len);
541 clib_memcpy_fast (sa->sk_ar, keymat + pos, integ_key_len);
542 pos += integ_key_len;
546 sa->sk_ei = vec_new (u8, tr_encr->key_len + salt_len);
547 clib_memcpy_fast (sa->sk_ei, keymat + pos, tr_encr->key_len + salt_len);
548 pos += tr_encr->key_len + salt_len;
551 sa->sk_er = vec_new (u8, tr_encr->key_len + salt_len);
552 clib_memcpy_fast (sa->sk_er, keymat + pos, tr_encr->key_len + salt_len);
553 pos += tr_encr->key_len + salt_len;
556 sa->sk_pi = vec_new (u8, tr_prf->key_len);
557 clib_memcpy_fast (sa->sk_pi, keymat + pos, tr_prf->key_len);
558 pos += tr_prf->key_len;
561 sa->sk_pr = vec_new (u8, tr_prf->key_len);
562 clib_memcpy_fast (sa->sk_pr, keymat + pos, tr_prf->key_len);
563 pos += tr_prf->key_len;
566 sa->keys_generated = 1;
570 ikev2_calc_child_keys (ikev2_sa_t * sa, ikev2_child_sa_t * child)
573 u16 integ_key_len = 0;
576 ikev2_sa_transform_t *tr_prf, *ctr_encr, *ctr_integ;
578 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
580 ikev2_sa_get_td_for_type (child->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
582 ikev2_sa_get_td_for_type (child->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
585 integ_key_len = ctr_integ->key_len;
587 salt_len = sizeof (u32);
589 vec_append (s, sa->i_nonce);
590 vec_append (s, sa->r_nonce);
591 /* calculate PRFplus */
593 int len = ctr_encr->key_len * 2 + integ_key_len * 2 + salt_len * 2;
595 keymat = ikev2_calc_prfplus (tr_prf, sa->sk_d, s, len);
600 child->sk_ei = vec_new (u8, ctr_encr->key_len);
601 clib_memcpy_fast (child->sk_ei, keymat + pos, ctr_encr->key_len);
602 pos += ctr_encr->key_len;
607 child->sk_ai = vec_new (u8, ctr_integ->key_len);
608 clib_memcpy_fast (child->sk_ai, keymat + pos, ctr_integ->key_len);
609 pos += ctr_integ->key_len;
613 clib_memcpy (&child->salt_ei, keymat + pos, salt_len);
618 child->sk_er = vec_new (u8, ctr_encr->key_len);
619 clib_memcpy_fast (child->sk_er, keymat + pos, ctr_encr->key_len);
620 pos += ctr_encr->key_len;
625 child->sk_ar = vec_new (u8, integ_key_len);
626 clib_memcpy_fast (child->sk_ar, keymat + pos, integ_key_len);
627 pos += integ_key_len;
631 clib_memcpy (&child->salt_er, keymat + pos, salt_len);
640 static_always_inline u8 *
641 ikev2_compute_nat_sha1 (u64 ispi, u64 rspi, ip_address_t * ia, u16 port)
643 const u32 max_buf_size =
644 sizeof (ispi) + sizeof (rspi) + sizeof (ip6_address_t) + sizeof (u16);
645 u8 buf[max_buf_size];
646 u8 *res = vec_new (u8, 20);
648 clib_memcpy_fast (&buf[0], &ispi, sizeof (ispi));
649 clib_memcpy_fast (&buf[8], &rspi, sizeof (rspi));
650 clib_memcpy_fast (&buf[8 + 8], ip_addr_bytes (ia), ip_address_size (ia));
651 clib_memcpy_fast (&buf[8 + 8 + ip_address_size (ia)], &port, sizeof (port));
652 SHA1 (buf, 2 * sizeof (ispi) + sizeof (port) + ip_address_size (ia), res);
657 ikev2_parse_ke_payload (const void *p, u32 rlen, ikev2_sa_t * sa,
660 const ike_ke_payload_header_t *ke = p;
661 u16 plen = clib_net_to_host_u16 (ke->length);
662 ASSERT (plen >= sizeof (*ke) && plen <= rlen);
663 if (sizeof (*ke) > rlen)
666 sa->dh_group = clib_net_to_host_u16 (ke->dh_group);
667 vec_reset_length (ke_data[0]);
668 vec_add (ke_data[0], ke->payload, plen - sizeof (*ke));
673 ikev2_parse_nonce_payload (const void *p, u32 rlen, u8 * nonce)
675 const ike_payload_header_t *ikep = p;
676 u16 plen = clib_net_to_host_u16 (ikep->length);
677 ASSERT (plen >= sizeof (*ikep) && plen <= rlen);
678 clib_memcpy_fast (nonce, ikep->payload, plen - sizeof (*ikep));
683 ikev2_check_payload_length (const ike_payload_header_t * ikep, int rlen,
686 if (sizeof (*ikep) > rlen)
688 *plen = clib_net_to_host_u16 (ikep->length);
689 if (*plen < sizeof (*ikep) || *plen > rlen)
695 ikev2_process_sa_init_req (vlib_main_t *vm, ikev2_sa_t *sa, ike_header_t *ike,
696 udp_header_t *udp, u32 len, u32 sw_if_index)
698 u8 nonce[IKEV2_NONCE_SIZE];
700 u8 payload = ike->nextpayload;
701 ike_payload_header_t *ikep;
704 ikev2_elog_exchange ("ispi %lx rspi %lx IKE_INIT request received "
705 "from ", clib_net_to_host_u64 (ike->ispi),
706 clib_net_to_host_u64 (ike->rspi),
707 ip_addr_v4 (&sa->iaddr).as_u32,
708 ip_addr_version (&sa->iaddr) == AF_IP4);
710 sa->ispi = clib_net_to_host_u64 (ike->ispi);
711 sa->sw_if_index = sw_if_index;
713 /* store whole IKE payload - needed for PSK auth */
714 vec_reset_length (sa->last_sa_init_req_packet_data);
715 vec_add (sa->last_sa_init_req_packet_data, ike, len);
717 if (len < sizeof (*ike))
720 len -= sizeof (*ike);
721 while (p < len && payload != IKEV2_PAYLOAD_NONE)
723 ikep = (ike_payload_header_t *) & ike->payload[p];
724 int current_length = len - p;
725 if (!ikev2_check_payload_length (ikep, current_length, &plen))
728 if (payload == IKEV2_PAYLOAD_SA)
730 ikev2_sa_free_proposal_vector (&sa->i_proposals);
731 sa->i_proposals = ikev2_parse_sa_payload (ikep, current_length);
733 else if (payload == IKEV2_PAYLOAD_KE)
735 if (!ikev2_parse_ke_payload (ikep, current_length, sa,
739 else if (payload == IKEV2_PAYLOAD_NONCE)
741 vec_reset_length (sa->i_nonce);
742 if (ikev2_parse_nonce_payload (ikep, current_length, nonce))
743 vec_add (sa->i_nonce, nonce, plen - sizeof (*ikep));
745 else if (payload == IKEV2_PAYLOAD_NOTIFY)
748 ikev2_parse_notify_payload (ikep, current_length);
749 if (n->msg_type == IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP)
751 u8 *src_sha = ikev2_compute_nat_sha1 (ike->ispi, 0, &sa->iaddr,
753 if (clib_memcmp (src_sha, n->data, vec_len (src_sha)))
755 if (sa->natt_state == IKEV2_NATT_ENABLED)
756 sa->natt_state = IKEV2_NATT_ACTIVE;
757 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx initiator"
758 " behind NAT", sa->ispi);
762 else if (n->msg_type ==
763 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP)
765 u8 *dst_sha = ikev2_compute_nat_sha1 (ike->ispi, 0, &sa->raddr,
767 if (clib_memcmp (dst_sha, n->data, vec_len (dst_sha)))
769 if (sa->natt_state == IKEV2_NATT_ENABLED)
770 sa->natt_state = IKEV2_NATT_ACTIVE;
771 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx responder"
772 " (self) behind NAT", sa->ispi);
778 else if (payload == IKEV2_PAYLOAD_VENDOR)
780 ikev2_parse_vendor_payload (ikep);
784 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
786 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
788 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
789 sa->unsupported_cp = payload;
794 payload = ikep->nextpayload;
798 ikev2_set_state (sa, IKEV2_STATE_SA_INIT);
803 ikev2_process_sa_init_resp (vlib_main_t * vm,
804 ikev2_sa_t * sa, ike_header_t * ike,
805 udp_header_t * udp, u32 len)
807 u8 nonce[IKEV2_NONCE_SIZE];
809 u8 payload = ike->nextpayload;
810 ike_payload_header_t *ikep;
813 sa->ispi = clib_net_to_host_u64 (ike->ispi);
814 sa->rspi = clib_net_to_host_u64 (ike->rspi);
816 ikev2_elog_exchange ("ispi %lx rspi %lx IKE_INIT response received "
817 "from ", sa->ispi, sa->rspi,
818 ip_addr_v4 (&sa->raddr).as_u32,
819 ip_addr_version (&sa->raddr) == AF_IP4);
821 /* store whole IKE payload - needed for PSK auth */
822 vec_reset_length (sa->last_sa_init_res_packet_data);
823 vec_add (sa->last_sa_init_res_packet_data, ike, len);
825 if (sizeof (*ike) > len)
828 len -= sizeof (*ike);
829 while (p < len && payload != IKEV2_PAYLOAD_NONE)
831 int current_length = len - p;
832 ikep = (ike_payload_header_t *) & ike->payload[p];
833 if (!ikev2_check_payload_length (ikep, current_length, &plen))
836 if (payload == IKEV2_PAYLOAD_SA)
838 ikev2_sa_free_proposal_vector (&sa->r_proposals);
839 sa->r_proposals = ikev2_parse_sa_payload (ikep, current_length);
842 ikev2_set_state (sa, IKEV2_STATE_SA_INIT);
844 clib_host_to_net_u32 (clib_net_to_host_u32 (ike->msgid) + 1);
847 else if (payload == IKEV2_PAYLOAD_KE)
849 if (!ikev2_parse_ke_payload (ikep, current_length, sa,
853 else if (payload == IKEV2_PAYLOAD_NONCE)
855 vec_reset_length (sa->r_nonce);
856 if (ikev2_parse_nonce_payload (ikep, current_length, nonce))
857 vec_add (sa->r_nonce, nonce, plen - sizeof (*ikep));
859 else if (payload == IKEV2_PAYLOAD_NOTIFY)
862 ikev2_parse_notify_payload (ikep, current_length);
863 if (n->msg_type == IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP)
865 u8 *src_sha = ikev2_compute_nat_sha1 (ike->ispi, ike->rspi,
868 if (clib_memcmp (src_sha, n->data, vec_len (src_sha)))
870 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx responder"
871 " behind NAT, unsupported", sa->ispi);
875 else if (n->msg_type ==
876 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP)
878 u8 *dst_sha = ikev2_compute_nat_sha1 (ike->ispi, ike->rspi,
881 if (clib_memcmp (dst_sha, n->data, vec_len (dst_sha)))
883 if (sa->natt_state == IKEV2_NATT_ENABLED)
884 sa->natt_state = IKEV2_NATT_ACTIVE;
885 ikev2_elog_uint (IKEV2_LOG_DEBUG, "ispi %lx initiator"
886 " (self) behind NAT", sa->ispi);
892 else if (payload == IKEV2_PAYLOAD_VENDOR)
894 ikev2_parse_vendor_payload (ikep);
898 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
900 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
902 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
903 sa->unsupported_cp = payload;
908 payload = ikep->nextpayload;
914 ikev2_decrypt_sk_payload (ikev2_sa_t * sa, ike_header_t * ike,
915 u8 * payload, u32 rlen, u32 * out_len)
917 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
919 u8 last_payload = 0, *hmac = 0, *plaintext = 0;
920 ike_payload_header_t *ikep = 0;
923 ikev2_sa_transform_t *tr_integ;
924 ikev2_sa_transform_t *tr_encr;
926 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
928 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
929 int is_aead = tr_encr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16;
931 if (((!sa->sk_ar || !sa->sk_ai) && !is_aead) || (!sa->sk_ei || !sa->sk_er))
934 if (rlen <= sizeof (*ike))
937 int len = rlen - sizeof (*ike);
939 *payload != IKEV2_PAYLOAD_NONE && last_payload != IKEV2_PAYLOAD_SK)
941 ikep = (ike_payload_header_t *) & ike->payload[p];
942 int current_length = len - p;
943 if (!ikev2_check_payload_length (ikep, current_length, &plen))
946 if (*payload == IKEV2_PAYLOAD_SK)
948 last_payload = *payload;
952 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
954 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
956 sa->unsupported_cp = *payload;
961 *payload = ikep->nextpayload;
965 if (last_payload != IKEV2_PAYLOAD_SK)
967 ikev2_elog_error ("Last payload must be SK");
973 if (plen < sizeof (*ikep) + IKEV2_GCM_ICV_SIZE)
976 plen -= sizeof (*ikep) + IKEV2_GCM_ICV_SIZE;
977 u8 *aad = (u8 *) ike;
978 u32 aad_len = ikep->payload - aad;
979 u8 *tag = ikep->payload + plen;
981 int rc = ikev2_decrypt_aead_data (ptd, sa, tr_encr, ikep->payload,
982 plen, aad, aad_len, tag, &dlen);
986 plaintext = ikep->payload + IKEV2_GCM_IV_SIZE;
991 if (rlen < tr_integ->key_trunc)
995 ikev2_calc_integr (tr_integ, sa->is_initiator ? sa->sk_ar : sa->sk_ai,
996 (u8 *) ike, rlen - tr_integ->key_trunc);
998 if (plen < sizeof (*ikep) + tr_integ->key_trunc)
1001 plen = plen - sizeof (*ikep) - tr_integ->key_trunc;
1003 if (clib_memcmp (hmac, &ikep->payload[plen], tr_integ->key_trunc))
1005 ikev2_elog_error ("message integrity check failed");
1011 int rc = ikev2_decrypt_data (ptd, sa, tr_encr, ikep->payload, plen,
1016 plaintext = ikep->payload + tr_encr->block_size;
1023 static_always_inline int
1024 ikev2_is_id_equal (ikev2_id_t * i1, ikev2_id_t * i2)
1026 if (i1->type != i2->type)
1029 if (vec_len (i1->data) != vec_len (i2->data))
1032 if (clib_memcmp (i1->data, i2->data, vec_len (i1->data)))
1039 ikev2_initial_contact_cleanup_internal (ikev2_main_per_thread_data_t * ptd,
1042 ikev2_main_t *km = &ikev2_main;
1045 ikev2_child_sa_t *c;
1047 /* find old IKE SAs with the same authenticated identity */
1049 pool_foreach (tmp, ptd->sas) {
1050 if (!ikev2_is_id_equal (&tmp->i_id, &sa->i_id)
1051 || !ikev2_is_id_equal(&tmp->r_id, &sa->r_id))
1054 if (sa->rspi != tmp->rspi)
1055 vec_add1(delete, tmp - ptd->sas);
1059 for (i = 0; i < vec_len (delete); i++)
1061 tmp = pool_elt_at_index (ptd->sas, delete[i]);
1062 vec_foreach (c, tmp->childs)
1064 ikev2_delete_tunnel_interface (km->vnet_main, tmp, c);
1066 ikev2_delete_sa (ptd, tmp);
1070 sa->initial_contact = 0;
1074 ikev2_initial_contact_cleanup (ikev2_main_per_thread_data_t * ptd,
1077 ikev2_main_t *km = &ikev2_main;
1079 if (!sa->initial_contact)
1084 ikev2_initial_contact_cleanup_internal (ptd, sa);
1088 vec_foreach (ptd, km->per_thread_data)
1089 ikev2_initial_contact_cleanup_internal (ptd, sa);
1091 sa->initial_contact = 0;
1095 ikev2_parse_id_payload (const void *p, u16 rlen, ikev2_id_t * sa_id)
1097 const ike_id_payload_header_t *id = p;
1098 u16 plen = clib_net_to_host_u16 (id->length);
1099 if (plen < sizeof (*id) || plen > rlen)
1102 sa_id->type = id->id_type;
1103 vec_reset_length (sa_id->data);
1104 vec_add (sa_id->data, id->payload, plen - sizeof (*id));
1110 ikev2_parse_auth_payload (const void *p, u32 rlen, ikev2_auth_t * a)
1112 const ike_auth_payload_header_t *ah = p;
1113 u16 plen = clib_net_to_host_u16 (ah->length);
1115 a->method = ah->auth_method;
1116 vec_reset_length (a->data);
1117 vec_add (a->data, ah->payload, plen - sizeof (*ah));
1122 ikev2_process_auth_req (vlib_main_t * vm, ikev2_sa_t * sa,
1123 ike_header_t * ike, u32 len)
1126 ikev2_child_sa_t *first_child_sa;
1127 u8 payload = ike->nextpayload;
1129 ike_payload_header_t *ikep;
1133 ikev2_elog_exchange ("ispi %lx rspi %lx EXCHANGE_IKE_AUTH received "
1134 "from ", clib_host_to_net_u64 (ike->ispi),
1135 clib_host_to_net_u64 (ike->rspi),
1137 ip_addr_v4 (&sa->raddr).as_u32 :
1138 ip_addr_v4 (&sa->iaddr).as_u32,
1139 ip_addr_version (&sa->raddr) == AF_IP4);
1141 ikev2_calc_keys (sa);
1143 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1147 if (sa->unsupported_cp)
1149 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1155 /* select or create 1st child SA */
1156 if (sa->is_initiator)
1158 first_child_sa = &sa->childs[0];
1162 ikev2_sa_free_all_child_sa (&sa->childs);
1163 vec_add2 (sa->childs, first_child_sa, 1);
1167 /* process encrypted payload */
1168 while (p < dlen && payload != IKEV2_PAYLOAD_NONE)
1170 ikep = (ike_payload_header_t *) & plaintext[p];
1171 int current_length = dlen - p;
1172 if (!ikev2_check_payload_length (ikep, current_length, &plen))
1175 if (payload == IKEV2_PAYLOAD_SA) /* 33 */
1177 if (sa->is_initiator)
1179 ikev2_sa_free_proposal_vector (&first_child_sa->r_proposals);
1180 first_child_sa->r_proposals = ikev2_parse_sa_payload (ikep,
1185 ikev2_sa_free_proposal_vector (&first_child_sa->i_proposals);
1186 first_child_sa->i_proposals = ikev2_parse_sa_payload (ikep,
1190 else if (payload == IKEV2_PAYLOAD_IDI) /* 35 */
1192 if (!ikev2_parse_id_payload (ikep, current_length, &sa->i_id))
1195 else if (payload == IKEV2_PAYLOAD_IDR) /* 36 */
1197 if (!ikev2_parse_id_payload (ikep, current_length, &sa->r_id))
1200 else if (payload == IKEV2_PAYLOAD_AUTH) /* 39 */
1202 if (sa->is_initiator)
1204 if (!ikev2_parse_auth_payload (ikep, current_length,
1210 if (!ikev2_parse_auth_payload (ikep, current_length,
1215 else if (payload == IKEV2_PAYLOAD_NOTIFY) /* 41 */
1218 ikev2_parse_notify_payload (ikep, current_length);
1219 if (n->msg_type == IKEV2_NOTIFY_MSG_INITIAL_CONTACT)
1221 sa->initial_contact = 1;
1225 else if (payload == IKEV2_PAYLOAD_VENDOR) /* 43 */
1227 ikev2_parse_vendor_payload (ikep);
1229 else if (payload == IKEV2_PAYLOAD_TSI) /* 44 */
1231 vec_free (first_child_sa->tsi);
1232 first_child_sa->tsi = ikev2_parse_ts_payload (ikep, current_length);
1234 else if (payload == IKEV2_PAYLOAD_TSR) /* 45 */
1236 vec_free (first_child_sa->tsr);
1237 first_child_sa->tsr = ikev2_parse_ts_payload (ikep, current_length);
1241 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1244 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1246 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1247 sa->unsupported_cp = payload;
1252 payload = ikep->nextpayload;
1259 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": malformed IKE_AUTH");
1264 ikev2_process_informational_req (vlib_main_t * vm,
1265 ikev2_sa_t * sa, ike_header_t * ike, u32 len)
1268 u8 payload = ike->nextpayload;
1270 ike_payload_header_t *ikep;
1272 ikev2_notify_t *n = 0;
1274 sa->liveness_retries = 0;
1275 ikev2_elog_exchange ("ispi %lx rspi %lx INFORMATIONAL received "
1276 "from ", clib_host_to_net_u64 (ike->ispi),
1277 clib_host_to_net_u64 (ike->rspi),
1278 ip_addr_v4 (&sa->iaddr).as_u32,
1279 ip_addr_version (&sa->iaddr) == AF_IP4);
1281 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1286 /* process encrypted payload */
1288 while (p < dlen && payload != IKEV2_PAYLOAD_NONE)
1290 u32 current_length = dlen - p;
1291 if (p + sizeof (*ikep) > dlen)
1294 ikep = (ike_payload_header_t *) & plaintext[p];
1295 u16 plen = clib_net_to_host_u16 (ikep->length);
1297 if (plen < sizeof (*ikep) || plen > current_length)
1300 if (payload == IKEV2_PAYLOAD_NOTIFY) /* 41 */
1302 n = ikev2_parse_notify_payload (ikep, current_length);
1305 if (n->msg_type == IKEV2_NOTIFY_MSG_AUTHENTICATION_FAILED)
1306 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1309 else if (payload == IKEV2_PAYLOAD_DELETE) /* 42 */
1311 sa->del = ikev2_parse_delete_payload (ikep, current_length);
1313 else if (payload == IKEV2_PAYLOAD_VENDOR) /* 43 */
1315 ikev2_parse_vendor_payload (ikep);
1319 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1321 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1323 sa->unsupported_cp = payload;
1327 payload = ikep->nextpayload;
1334 ikev2_process_create_child_sa_req (vlib_main_t * vm,
1335 ikev2_sa_t * sa, ike_header_t * ike,
1339 u8 payload = ike->nextpayload;
1342 u8 nonce[IKEV2_NONCE_SIZE];
1344 ike_payload_header_t *ikep;
1345 ikev2_notify_t *n = 0;
1346 ikev2_ts_t *tsi = 0;
1347 ikev2_ts_t *tsr = 0;
1348 ikev2_sa_proposal_t *proposal = 0;
1349 ikev2_child_sa_t *child_sa;
1353 ikev2_elog_exchange ("ispi %lx rspi %lx CREATE_CHILD_SA received "
1354 "from ", clib_host_to_net_u64 (ike->ispi),
1355 clib_host_to_net_u64 (ike->rspi),
1356 ip_addr_v4 (&sa->raddr).as_u32,
1357 ip_addr_version (&sa->raddr) == AF_IP4);
1359 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload, len, &dlen);
1362 goto cleanup_and_exit;
1364 /* process encrypted payload */
1366 while (payload != IKEV2_PAYLOAD_NONE)
1368 ikep = (ike_payload_header_t *) & plaintext[p];
1369 int current_length = dlen - p;
1370 if (!ikev2_check_payload_length (ikep, current_length, &plen))
1371 goto cleanup_and_exit;
1373 if (payload == IKEV2_PAYLOAD_SA)
1375 proposal = ikev2_parse_sa_payload (ikep, current_length);
1377 else if (payload == IKEV2_PAYLOAD_NOTIFY)
1379 n = ikev2_parse_notify_payload (ikep, current_length);
1380 if (n->msg_type == IKEV2_NOTIFY_MSG_REKEY_SA)
1385 else if (payload == IKEV2_PAYLOAD_DELETE)
1387 sa->del = ikev2_parse_delete_payload (ikep, current_length);
1389 else if (payload == IKEV2_PAYLOAD_VENDOR)
1391 ikev2_parse_vendor_payload (ikep);
1393 else if (payload == IKEV2_PAYLOAD_NONCE)
1395 ikev2_parse_nonce_payload (ikep, current_length, nonce);
1397 else if (payload == IKEV2_PAYLOAD_TSI)
1399 tsi = ikev2_parse_ts_payload (ikep, current_length);
1401 else if (payload == IKEV2_PAYLOAD_TSR)
1403 tsr = ikev2_parse_ts_payload (ikep, current_length);
1407 ikev2_elog_uint (IKEV2_LOG_ERROR, "Unknown payload! type=%d",
1409 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1411 sa->unsupported_cp = payload;
1412 goto cleanup_and_exit;
1415 payload = ikep->nextpayload;
1419 if (sa->is_initiator && proposal
1420 && proposal->protocol_id == IKEV2_PROTOCOL_ESP)
1422 ikev2_rekey_t *rekey = sa->rekey;
1423 if (vec_len (rekey) == 0)
1424 goto cleanup_and_exit;
1425 rekey->protocol_id = proposal->protocol_id;
1427 ikev2_select_proposal (proposal, IKEV2_PROTOCOL_ESP);
1428 rekey->i_proposal->spi = rekey->spi;
1429 rekey->r_proposal = proposal;
1433 vec_reset_length (sa->r_nonce);
1434 vec_add (sa->r_nonce, nonce, IKEV2_NONCE_SIZE);
1435 child_sa = ikev2_sa_get_child (sa, rekey->ispi, IKEV2_PROTOCOL_ESP, 1);
1438 child_sa->rekey_retries = 0;
1443 ikev2_rekey_t *rekey;
1444 child_sa = ikev2_sa_get_child (sa, n->spi, n->protocol_id, 1);
1447 ikev2_elog_uint (IKEV2_LOG_ERROR, "child SA spi %lx not found",
1449 goto cleanup_and_exit;
1451 vec_add2 (sa->rekey, rekey, 1);
1452 rekey->protocol_id = n->protocol_id;
1453 rekey->spi = n->spi;
1454 rekey->i_proposal = proposal;
1456 ikev2_select_proposal (proposal, IKEV2_PROTOCOL_ESP);
1460 vec_reset_length (sa->i_nonce);
1461 vec_add (sa->i_nonce, nonce, IKEV2_NONCE_SIZE);
1462 /* generate new Nr */
1463 vec_validate (sa->r_nonce, IKEV2_NONCE_SIZE - 1);
1464 RAND_bytes ((u8 *) sa->r_nonce, IKEV2_NONCE_SIZE);
1467 goto cleanup_and_exit;
1473 vec_free (proposal);
1480 ikev2_sa_generate_authmsg (ikev2_sa_t * sa, int is_responder)
1488 ikev2_sa_transform_t *tr_prf;
1491 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1497 nonce = sa->i_nonce;
1498 packet_data = sa->last_sa_init_res_packet_data;
1504 nonce = sa->r_nonce;
1505 packet_data = sa->last_sa_init_req_packet_data;
1508 data = vec_new (u8, 4);
1510 vec_append (data, id->data);
1512 u8 *id_hash = ikev2_calc_prf (tr_prf, key, data);
1513 vec_append (authmsg, packet_data);
1514 vec_append (authmsg, nonce);
1515 vec_append (authmsg, id_hash);
1523 ikev2_ts_cmp (ikev2_ts_t * ts1, ikev2_ts_t * ts2)
1525 if (ts1->ts_type == ts2->ts_type && ts1->protocol_id == ts2->protocol_id &&
1526 ts1->start_port == ts2->start_port && ts1->end_port == ts2->end_port &&
1527 !ip_address_cmp (&ts1->start_addr, &ts2->start_addr) &&
1528 !ip_address_cmp (&ts1->end_addr, &ts2->end_addr))
1535 ikev2_sa_match_ts (ikev2_sa_t * sa)
1537 ikev2_main_t *km = &ikev2_main;
1539 ikev2_ts_t *ts, *p_tsi, *p_tsr, *tsi = 0, *tsr = 0;
1540 ikev2_id_t *id_rem, *id_loc;
1543 pool_foreach (p, km->profiles) {
1545 if (sa->is_initiator)
1561 if (!ikev2_is_id_equal (&p->rem_id, id_rem)
1562 || !ikev2_is_id_equal (&p->loc_id, id_loc))
1565 sa->profile_index = p - km->profiles;
1567 vec_foreach(ts, sa->childs[0].tsi)
1569 if (ikev2_ts_cmp(p_tsi, ts))
1571 vec_add1 (tsi, ts[0]);
1576 vec_foreach(ts, sa->childs[0].tsr)
1578 if (ikev2_ts_cmp(p_tsr, ts))
1580 vec_add1 (tsr, ts[0]);
1591 vec_free (sa->childs[0].tsi);
1592 vec_free (sa->childs[0].tsr);
1593 sa->childs[0].tsi = tsi;
1594 sa->childs[0].tsr = tsr;
1600 ikev2_set_state (sa, IKEV2_STATE_TS_UNACCEPTABLE);
1605 ikev2_sa_auth (ikev2_sa_t * sa)
1607 ikev2_main_t *km = &ikev2_main;
1608 ikev2_profile_t *p, *sel_p = 0;
1609 u8 *authmsg, *key_pad, *psk = 0, *auth = 0;
1610 ikev2_sa_transform_t *tr_prf;
1613 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1615 /* only shared key and rsa signature */
1616 if (!(sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC ||
1617 sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG))
1619 ikev2_elog_uint (IKEV2_LOG_ERROR,
1620 "unsupported authentication method %u",
1622 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1626 key_pad = format (0, "%s", IKEV2_KEY_PAD);
1627 authmsg = ikev2_sa_generate_authmsg (sa, sa->is_initiator);
1629 ikev2_id_t *id_rem, *id_loc;
1630 ikev2_auth_t *sa_auth;
1632 if (sa->is_initiator)
1636 sa_auth = &sa->r_auth;
1642 sa_auth = &sa->i_auth;
1646 pool_foreach (p, km->profiles) {
1649 if (!ikev2_is_id_equal (&p->rem_id, id_rem)
1650 || !ikev2_is_id_equal (&p->loc_id, id_loc))
1653 if (sa_auth->method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1655 if (!p->auth.data ||
1656 p->auth.method != IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1659 psk = ikev2_calc_prf(tr_prf, p->auth.data, key_pad);
1660 auth = ikev2_calc_prf(tr_prf, psk, authmsg);
1662 if (!clib_memcmp(auth, sa_auth->data, vec_len(sa_auth->data)))
1664 ikev2_set_state(sa, IKEV2_STATE_AUTHENTICATED);
1671 ikev2_elog_uint (IKEV2_LOG_ERROR, "shared key mismatch! ispi %lx",
1675 else if (sa_auth->method == IKEV2_AUTH_METHOD_RSA_SIG)
1677 if (p->auth.method != IKEV2_AUTH_METHOD_RSA_SIG)
1680 if (ikev2_verify_sign(p->auth.key, sa_auth->data, authmsg) == 1)
1682 ikev2_set_state(sa, IKEV2_STATE_AUTHENTICATED);
1688 ikev2_elog_uint (IKEV2_LOG_ERROR,
1689 "cert verification failed! ispi %lx", sa->ispi);
1700 sa->udp_encap = sel_p->udp_encap;
1701 sa->ipsec_over_udp_port = sel_p->ipsec_over_udp_port;
1705 if (sa->state == IKEV2_STATE_AUTHENTICATED)
1707 if (!sa->is_initiator)
1709 vec_free (sa->r_id.data);
1710 sa->r_id.data = vec_dup (sel_p->loc_id.data);
1711 sa->r_id.type = sel_p->loc_id.type;
1712 sa->i_id.data = vec_dup (sel_p->rem_id.data);
1713 sa->i_id.type = sel_p->rem_id.type;
1715 /* generate our auth data */
1716 authmsg = ikev2_sa_generate_authmsg (sa, 1);
1717 if (sel_p->auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1719 vec_free (sa->r_auth.data);
1720 sa->r_auth.data = ikev2_calc_prf (tr_prf, psk, authmsg);
1721 sa->r_auth.method = IKEV2_AUTH_METHOD_SHARED_KEY_MIC;
1723 else if (sel_p->auth.method == IKEV2_AUTH_METHOD_RSA_SIG)
1725 vec_free (sa->r_auth.data);
1726 sa->r_auth.data = ikev2_calc_sign (km->pkey, authmsg);
1727 sa->r_auth.method = IKEV2_AUTH_METHOD_RSA_SIG;
1731 /* select transforms for 1st child sa */
1732 ikev2_sa_free_proposal_vector (&sa->childs[0].r_proposals);
1733 sa->childs[0].r_proposals =
1734 ikev2_select_proposal (sa->childs[0].i_proposals,
1735 IKEV2_PROTOCOL_ESP);
1737 if (~0 != sel_p->tun_itf)
1739 sa->is_tun_itf_set = 1;
1740 sa->tun_itf = sel_p->tun_itf;
1746 ikev2_elog_uint (IKEV2_LOG_ERROR, "authentication failed, no matching "
1747 "profile found! ispi %lx", sa->ispi);
1748 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1756 ikev2_sa_auth_init (ikev2_sa_t * sa)
1758 ikev2_main_t *km = &ikev2_main;
1759 u8 *authmsg, *key_pad, *psk = 0;
1760 ikev2_sa_transform_t *tr_prf;
1763 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1765 /* only shared key and rsa signature */
1766 if (!(sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC ||
1767 sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG))
1769 ikev2_elog_uint (IKEV2_LOG_ERROR,
1770 "unsupported authentication method %u",
1772 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1776 key_pad = format (0, "%s", IKEV2_KEY_PAD);
1777 authmsg = ikev2_sa_generate_authmsg (sa, 0);
1778 psk = ikev2_calc_prf (tr_prf, sa->i_auth.data, key_pad);
1780 if (sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1782 vec_free (sa->i_auth.data);
1783 sa->i_auth.data = ikev2_calc_prf (tr_prf, psk, authmsg);
1784 sa->i_auth.method = IKEV2_AUTH_METHOD_SHARED_KEY_MIC;
1786 else if (sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG)
1788 vec_free (sa->i_auth.data);
1789 sa->i_auth.data = ikev2_calc_sign (km->pkey, authmsg);
1790 sa->i_auth.method = IKEV2_AUTH_METHOD_RSA_SIG;
1799 ikev2_mk_local_sa_id (u32 sai, u32 ci, u32 ti)
1801 return (0x80000000 | (ti << 24) | (sai << 12) | ci);
1805 ikev2_mk_remote_sa_id (u32 sai, u32 ci, u32 ti)
1807 return (0xc0000000 | (ti << 24) | (sai << 12) | ci);
1817 ipsec_sa_flags_t flags;
1820 ipsec_crypto_alg_t encr_type;
1821 ipsec_integ_alg_t integ_type;
1822 ip46_address_t local_ip;
1823 ip46_address_t remote_ip;
1824 ipsec_key_t loc_ckey, rem_ckey, loc_ikey, rem_ikey;
1826 u32 old_remote_sa_id;
1827 u16 ipsec_over_udp_port;
1830 } ikev2_add_ipsec_tunnel_args_t;
1833 ikev2_add_tunnel_from_main (ikev2_add_ipsec_tunnel_args_t * a)
1835 ikev2_main_t *km = &ikev2_main;
1839 if (~0 == a->sw_if_index)
1841 /* no tunnel associated with the SA/profile - create a new one */
1842 rv = ipip_add_tunnel (IPIP_TRANSPORT_IP4, ~0,
1843 &a->local_ip, &a->remote_ip, 0,
1844 TUNNEL_ENCAP_DECAP_FLAG_NONE, IP_DSCP_CS0,
1845 TUNNEL_MODE_P2P, &sw_if_index);
1847 if (rv == VNET_API_ERROR_IF_ALREADY_EXISTS)
1849 if (hash_get (km->sw_if_indices, sw_if_index))
1850 /* interface is managed by IKE; proceed with updating SAs */
1853 hash_set1 (km->sw_if_indices, sw_if_index);
1857 sw_if_index = a->sw_if_index;
1858 vnet_sw_interface_admin_up (vnet_get_main (), sw_if_index);
1863 ikev2_elog_uint (IKEV2_LOG_ERROR,
1864 "installing ipip tunnel failed! local spi: %x",
1870 vec_add1 (sas_in, a->remote_sa_id);
1873 ipsec_tun_protect_del (sw_if_index, NULL);
1875 /* replace local SA immediately */
1876 ipsec_sa_unlock_id (a->local_sa_id);
1878 /* keep the old sa */
1879 vec_add1 (sas_in, a->old_remote_sa_id);
1882 rv = ipsec_sa_add_and_lock (a->local_sa_id,
1884 IPSEC_PROTOCOL_ESP, a->encr_type,
1885 &a->loc_ckey, a->integ_type, &a->loc_ikey,
1886 a->flags, 0, a->salt_local, &a->local_ip,
1887 &a->remote_ip, TUNNEL_ENCAP_DECAP_FLAG_NONE,
1888 IP_DSCP_CS0, NULL, a->src_port, a->dst_port);
1892 rv = ipsec_sa_add_and_lock (a->remote_sa_id, a->remote_spi,
1893 IPSEC_PROTOCOL_ESP, a->encr_type, &a->rem_ckey,
1894 a->integ_type, &a->rem_ikey,
1895 (a->flags | IPSEC_SA_FLAG_IS_INBOUND), 0,
1896 a->salt_remote, &a->remote_ip,
1897 &a->local_ip, TUNNEL_ENCAP_DECAP_FLAG_NONE,
1899 a->ipsec_over_udp_port, a->ipsec_over_udp_port);
1903 rv = ipsec_tun_protect_update (sw_if_index, NULL, a->local_sa_id, sas_in);
1910 ipsec_sa_unlock_id (a->remote_sa_id);
1912 ipsec_sa_unlock_id (a->local_sa_id);
1918 ikev2_create_tunnel_interface (vlib_main_t * vm,
1920 ikev2_child_sa_t * child, u32 sa_index,
1921 u32 child_index, u8 is_rekey)
1923 u32 thread_index = vlib_get_thread_index ();
1924 ikev2_main_t *km = &ikev2_main;
1925 ipsec_crypto_alg_t encr_type;
1926 ipsec_integ_alg_t integ_type;
1927 ikev2_profile_t *p = 0;
1928 ikev2_sa_transform_t *tr;
1929 ikev2_sa_proposal_t *proposals;
1931 ikev2_add_ipsec_tunnel_args_t a;
1933 clib_memset (&a, 0, sizeof (a));
1935 if (!child->r_proposals)
1937 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1941 if (sa->is_initiator)
1943 ip_address_to_46 (&sa->iaddr, &a.local_ip);
1944 ip_address_to_46 (&sa->raddr, &a.remote_ip);
1945 proposals = child->r_proposals;
1946 a.local_spi = child->r_proposals[0].spi;
1947 a.remote_spi = child->i_proposals[0].spi;
1951 ip_address_to_46 (&sa->raddr, &a.local_ip);
1952 ip_address_to_46 (&sa->iaddr, &a.remote_ip);
1953 proposals = child->i_proposals;
1954 a.local_spi = child->i_proposals[0].spi;
1955 a.remote_spi = child->r_proposals[0].spi;
1958 a.flags = IPSEC_SA_FLAG_USE_ANTI_REPLAY;
1961 a.flags |= IPSEC_SA_FLAG_IS_TUNNEL;
1962 a.flags |= IPSEC_SA_FLAG_UDP_ENCAP;
1964 if (ikev2_natt_active (sa))
1965 a.flags |= IPSEC_SA_FLAG_UDP_ENCAP;
1966 a.is_rekey = is_rekey;
1968 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_ESN);
1969 if (tr && tr->esn_type)
1970 a.flags |= IPSEC_SA_FLAG_USE_ESN;
1972 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_ENCR);
1975 if (tr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_CBC && tr->key_len)
1977 switch (tr->key_len)
1980 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_128;
1983 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_192;
1986 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_256;
1989 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1994 else if (tr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16
1997 switch (tr->key_len)
2000 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_128;
2003 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_192;
2006 encr_type = IPSEC_CRYPTO_ALG_AES_GCM_256;
2009 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2017 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2023 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2026 a.encr_type = encr_type;
2030 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_INTEG);
2033 switch (tr->integ_type)
2035 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_256_128:
2036 integ_type = IPSEC_INTEG_ALG_SHA_256_128;
2038 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_384_192:
2039 integ_type = IPSEC_INTEG_ALG_SHA_384_192;
2041 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA2_512_256:
2042 integ_type = IPSEC_INTEG_ALG_SHA_512_256;
2044 case IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA1_96:
2045 integ_type = IPSEC_INTEG_ALG_SHA1_96;
2048 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2054 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
2060 integ_type = IPSEC_INTEG_ALG_NONE;
2063 a.integ_type = integ_type;
2064 ikev2_calc_child_keys (sa, child);
2066 if (sa->is_initiator)
2068 ipsec_mk_key (&a.loc_ikey, child->sk_ai, vec_len (child->sk_ai));
2069 ipsec_mk_key (&a.rem_ikey, child->sk_ar, vec_len (child->sk_ar));
2070 ipsec_mk_key (&a.loc_ckey, child->sk_ei, vec_len (child->sk_ei));
2071 ipsec_mk_key (&a.rem_ckey, child->sk_er, vec_len (child->sk_er));
2074 a.salt_remote = child->salt_er;
2075 a.salt_local = child->salt_ei;
2077 a.dst_port = a.src_port = sa->ipsec_over_udp_port;
2081 ipsec_mk_key (&a.loc_ikey, child->sk_ar, vec_len (child->sk_ar));
2082 ipsec_mk_key (&a.rem_ikey, child->sk_ai, vec_len (child->sk_ai));
2083 ipsec_mk_key (&a.loc_ckey, child->sk_er, vec_len (child->sk_er));
2084 ipsec_mk_key (&a.rem_ckey, child->sk_ei, vec_len (child->sk_ei));
2087 a.salt_remote = child->salt_ei;
2088 a.salt_local = child->salt_er;
2091 ikev2_natt_active (sa) ? sa->dst_port : sa->ipsec_over_udp_port;
2092 a.src_port = sa->ipsec_over_udp_port;
2095 if (sa->is_initiator && sa->profile_index != ~0)
2096 p = pool_elt_at_index (km->profiles, sa->profile_index);
2098 if (p && p->lifetime)
2100 child->time_to_expiration = vlib_time_now (vm) + p->lifetime;
2101 if (p->lifetime_jitter)
2103 // This is not much better than rand(3), which Coverity warns
2104 // is unsuitable for security applications; random_u32 is
2105 // however fast. If this perturbance to the expiration time
2106 // needs to use a better RNG then we may need to use something
2107 // like /dev/urandom which has significant overhead.
2108 u32 rnd = (u32) (vlib_time_now (vm) * 1e6);
2109 rnd = random_u32 (&rnd);
2111 child->time_to_expiration += 1 + (rnd % p->lifetime_jitter);
2115 if (thread_index & 0xffffffc0)
2116 ikev2_elog_error ("error: thread index exceeds max range 0x3f!");
2118 if (child_index & 0xfffff000 || sa_index & 0xfffff000)
2119 ikev2_elog_error ("error: sa/child index exceeds max range 0xfff!");
2121 child->local_sa_id =
2123 ikev2_mk_local_sa_id (sa_index, child_index, thread_index);
2125 u32 remote_sa_id = ikev2_mk_remote_sa_id (sa_index, child_index,
2130 /* create a new remote SA ID to keep the old SA for a bit longer
2131 * so the peer has some time to swap their SAs */
2133 /* use most significat bit of child index part in id */
2135 if (sa->current_remote_id_mask)
2137 sa->old_remote_id = a.old_remote_sa_id = remote_sa_id | mask;
2138 sa->current_remote_id_mask = 0;
2142 sa->old_remote_id = a.old_remote_sa_id = remote_sa_id;
2143 sa->current_remote_id_mask = mask;
2144 remote_sa_id |= mask;
2146 sa->old_id_expiration = 3.0;
2147 sa->old_remote_id_present = 1;
2150 child->remote_sa_id = a.remote_sa_id = remote_sa_id;
2152 a.sw_if_index = (sa->is_tun_itf_set ? sa->tun_itf : ~0);
2153 a.ipsec_over_udp_port = sa->ipsec_over_udp_port;
2155 vl_api_rpc_call_main_thread (ikev2_add_tunnel_from_main,
2156 (u8 *) & a, sizeof (a));
2162 ip46_address_t local_ip;
2163 ip46_address_t remote_ip;
2167 } ikev2_del_ipsec_tunnel_args_t;
2169 static_always_inline u32
2170 ikev2_flip_alternate_sa_bit (u32 id)
2179 ikev2_del_tunnel_from_main (ikev2_del_ipsec_tunnel_args_t * a)
2181 ikev2_main_t *km = &ikev2_main;
2182 ipip_tunnel_t *ipip = NULL;
2185 if (~0 == a->sw_if_index)
2188 ipip_tunnel_key_t key = {
2190 .dst = a->remote_ip,
2191 .transport = IPIP_TRANSPORT_IP4,
2196 ipip = ipip_tunnel_db_find (&key);
2200 sw_if_index = ipip->sw_if_index;
2201 hash_unset (km->sw_if_indices, ipip->sw_if_index);
2208 sw_if_index = a->sw_if_index;
2209 vnet_sw_interface_admin_down (vnet_get_main (), sw_if_index);
2212 if (~0 != sw_if_index)
2213 ipsec_tun_protect_del (sw_if_index, NULL);
2215 ipsec_sa_unlock_id (a->remote_sa_id);
2216 ipsec_sa_unlock_id (a->local_sa_id);
2217 ipsec_sa_unlock_id (ikev2_flip_alternate_sa_bit (a->remote_sa_id));
2220 ipip_del_tunnel (ipip->sw_if_index);
2224 ikev2_delete_tunnel_interface (vnet_main_t * vnm, ikev2_sa_t * sa,
2225 ikev2_child_sa_t * child)
2227 ikev2_del_ipsec_tunnel_args_t a;
2229 clib_memset (&a, 0, sizeof (a));
2231 if (sa->is_initiator)
2233 ip_address_to_46 (&sa->iaddr, &a.local_ip);
2234 ip_address_to_46 (&sa->raddr, &a.remote_ip);
2238 ip_address_to_46 (&sa->raddr, &a.local_ip);
2239 ip_address_to_46 (&sa->iaddr, &a.remote_ip);
2242 a.remote_sa_id = child->remote_sa_id;
2243 a.local_sa_id = child->local_sa_id;
2244 a.sw_if_index = (sa->is_tun_itf_set ? sa->tun_itf : ~0);
2246 vl_api_rpc_call_main_thread (ikev2_del_tunnel_from_main, (u8 *) & a,
2252 ikev2_generate_message (vlib_buffer_t *b, ikev2_sa_t *sa, ike_header_t *ike,
2253 void *user, udp_header_t *udp, ikev2_stats_t *stats)
2255 ikev2_main_t *km = &ikev2_main;
2256 u16 buffer_data_size = vlib_buffer_get_default_data_size (km->vlib_main);
2258 ike_payload_header_t *ph;
2262 ikev2_sa_transform_t *tr_encr, *tr_integ;
2264 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
2266 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
2268 ikev2_payload_chain_t *chain = 0;
2269 ikev2_payload_new_chain (chain);
2271 if (ike->exchange == IKEV2_EXCHANGE_SA_INIT)
2273 if (sa->r_proposals == 0)
2275 ikev2_payload_add_notify (chain,
2276 IKEV2_NOTIFY_MSG_NO_PROPOSAL_CHOSEN, 0);
2277 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2279 else if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
2281 u8 *data = vec_new (u8, 2);
2282 ikev2_sa_transform_t *tr_dh;
2284 ikev2_sa_get_td_for_type (sa->r_proposals,
2285 IKEV2_TRANSFORM_TYPE_DH);
2286 ASSERT (tr_dh && tr_dh->dh_type);
2288 data[0] = (tr_dh->dh_type >> 8) & 0xff;
2289 data[1] = (tr_dh->dh_type) & 0xff;
2291 ikev2_payload_add_notify (chain,
2292 IKEV2_NOTIFY_MSG_INVALID_KE_PAYLOAD,
2295 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2297 else if (sa->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2299 u8 *data = vec_new (u8, 1);
2301 data[0] = sa->unsupported_cp;
2302 ikev2_payload_add_notify (chain,
2303 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2311 ike->rspi = clib_host_to_net_u64 (sa->rspi);
2312 ikev2_payload_add_sa (chain, sa->r_proposals);
2313 ikev2_payload_add_ke (chain, sa->dh_group, sa->r_dh_data);
2314 ikev2_payload_add_nonce (chain, sa->r_nonce);
2316 u8 *nat_detection_sha1 =
2317 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
2318 clib_host_to_net_u64 (sa->rspi),
2319 &sa->raddr, udp->dst_port);
2320 ikev2_payload_add_notify (chain,
2321 IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP,
2322 nat_detection_sha1);
2323 vec_free (nat_detection_sha1);
2324 nat_detection_sha1 =
2325 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
2326 clib_host_to_net_u64 (sa->rspi),
2327 &sa->iaddr, udp->src_port);
2328 ikev2_payload_add_notify (chain,
2329 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP,
2330 nat_detection_sha1);
2331 vec_free (nat_detection_sha1);
2334 else if (ike->exchange == IKEV2_EXCHANGE_IKE_AUTH)
2336 if (sa->state == IKEV2_STATE_AUTHENTICATED)
2338 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2339 ikev2_payload_add_id (chain, &sa->i_id, IKEV2_PAYLOAD_IDI);
2340 ikev2_payload_add_auth (chain, &sa->r_auth);
2341 ikev2_payload_add_sa (chain, sa->childs[0].r_proposals);
2342 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2343 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2345 else if (sa->state == IKEV2_STATE_AUTH_FAILED)
2347 ikev2_payload_add_notify (chain,
2348 IKEV2_NOTIFY_MSG_AUTHENTICATION_FAILED,
2350 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2352 else if (sa->state == IKEV2_STATE_TS_UNACCEPTABLE)
2354 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_TS_UNACCEPTABLE,
2356 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2357 ikev2_payload_add_auth (chain, &sa->r_auth);
2359 else if (sa->state == IKEV2_STATE_NO_PROPOSAL_CHOSEN)
2361 ikev2_payload_add_notify (chain,
2362 IKEV2_NOTIFY_MSG_NO_PROPOSAL_CHOSEN, 0);
2363 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2364 ikev2_payload_add_auth (chain, &sa->r_auth);
2365 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2366 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2368 else if (sa->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2370 u8 *data = vec_new (u8, 1);
2372 data[0] = sa->unsupported_cp;
2373 ikev2_payload_add_notify (chain,
2374 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2378 else if (sa->state == IKEV2_STATE_SA_INIT)
2380 ikev2_payload_add_id (chain, &sa->i_id, IKEV2_PAYLOAD_IDI);
2381 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
2382 ikev2_payload_add_auth (chain, &sa->i_auth);
2383 ikev2_payload_add_sa (chain, sa->childs[0].i_proposals);
2384 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2385 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2386 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_INITIAL_CONTACT,
2391 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": unexpected IKE_AUTH");
2395 else if (ike->exchange == IKEV2_EXCHANGE_INFORMATIONAL)
2397 /* if pending delete */
2400 if (sa->del[0].protocol_id == IKEV2_PROTOCOL_IKE)
2402 if (ike_hdr_is_request (ike))
2403 ikev2_payload_add_delete (chain, sa->del);
2405 /* The response to a request that deletes the IKE SA is an empty
2406 INFORMATIONAL response. */
2407 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
2409 /* The response to a request that deletes ESP or AH SAs will contain
2410 delete payloads for the paired SAs going in the other direction. */
2413 ikev2_payload_add_delete (chain, sa->del);
2418 /* received N(AUTHENTICATION_FAILED) */
2419 else if (sa->state == IKEV2_STATE_AUTH_FAILED)
2421 ikev2_set_state (sa, IKEV2_STATE_DELETED, ": auth failed");
2424 /* received unsupported critical payload */
2425 else if (sa->unsupported_cp)
2427 u8 *data = vec_new (u8, 1);
2429 data[0] = sa->unsupported_cp;
2430 ikev2_payload_add_notify (chain,
2431 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2434 sa->unsupported_cp = 0;
2437 /* else send empty response */
2439 if (ike_hdr_is_response (ike))
2441 ASSERT (stats != 0);
2442 stats->n_keepalives++;
2443 sa->stats.n_keepalives++;
2447 else if (ike->exchange == IKEV2_EXCHANGE_CREATE_CHILD_SA)
2449 if (sa->is_initiator)
2452 ikev2_sa_proposal_t *proposals = (ikev2_sa_proposal_t *) user;
2453 ikev2_notify_t notify;
2454 u8 *data = vec_new (u8, 4);
2455 clib_memset (¬ify, 0, sizeof (notify));
2456 notify.protocol_id = IKEV2_PROTOCOL_ESP;
2457 notify.spi = sa->childs[0].i_proposals->spi;
2458 *(u32 *) data = clib_host_to_net_u32 (notify.spi);
2460 ikev2_payload_add_sa (chain, proposals);
2461 ikev2_payload_add_nonce (chain, sa->i_nonce);
2462 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
2463 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
2464 ikev2_payload_add_notify_2 (chain, IKEV2_NOTIFY_MSG_REKEY_SA, data,
2471 if (vec_len (sa->rekey) > 0)
2473 ikev2_payload_add_sa (chain, sa->rekey[0].r_proposal);
2474 ikev2_payload_add_nonce (chain, sa->r_nonce);
2475 ikev2_payload_add_ts (chain, sa->rekey[0].tsi,
2477 ikev2_payload_add_ts (chain, sa->rekey[0].tsr,
2479 vec_del1 (sa->rekey, 0);
2481 else if (sa->unsupported_cp)
2483 u8 *data = vec_new (u8, 1);
2485 data[0] = sa->unsupported_cp;
2486 ikev2_payload_add_notify (chain,
2487 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
2490 sa->unsupported_cp = 0;
2494 ikev2_payload_add_notify (chain,
2495 IKEV2_NOTIFY_MSG_NO_ADDITIONAL_SAS,
2502 ike->version = IKE_VERSION_2;
2503 ike->nextpayload = IKEV2_PAYLOAD_SK;
2504 tlen = sizeof (*ike);
2506 if (sa->is_initiator)
2507 ike->flags |= IKEV2_HDR_FLAG_INITIATOR;
2509 if (ike->exchange == IKEV2_EXCHANGE_SA_INIT)
2511 tlen += vec_len (chain->data);
2512 ike->nextpayload = chain->first_payload_type;
2513 ike->length = clib_host_to_net_u32 (tlen);
2515 if (tlen + b->current_length + b->current_data > buffer_data_size)
2521 clib_memcpy_fast (ike->payload, chain->data, vec_len (chain->data));
2523 /* store whole IKE payload - needed for PSK auth */
2524 vec_reset_length (sa->last_sa_init_res_packet_data);
2525 vec_add (sa->last_sa_init_res_packet_data, ike, tlen);
2529 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2530 ikev2_payload_chain_add_padding (chain, tr_encr->block_size);
2533 plen = sizeof (*ph);
2534 ph = (ike_payload_header_t *) & ike->payload[0];
2535 ph->nextpayload = chain->first_payload_type;
2538 tr_encr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_GCM_16;
2539 int iv_len = is_aead ? IKEV2_GCM_IV_SIZE : tr_encr->block_size;
2540 plen += vec_len (chain->data) + iv_len;
2542 /* add space for hmac/tag */
2544 plen += tr_integ->key_trunc;
2546 plen += IKEV2_GCM_ICV_SIZE;
2549 if (tlen + b->current_length + b->current_data > buffer_data_size)
2555 /* payload and total length */
2556 ph->length = clib_host_to_net_u16 (plen);
2557 ike->length = clib_host_to_net_u32 (tlen);
2561 if (!ikev2_encrypt_aead_data (ptd, sa, tr_encr, chain->data,
2562 ph->payload, (u8 *) ike,
2563 sizeof (*ike) + sizeof (*ph),
2564 ph->payload + plen - sizeof (*ph) -
2565 IKEV2_GCM_ICV_SIZE))
2573 if (!ikev2_encrypt_data
2574 (ptd, sa, tr_encr, chain->data, ph->payload))
2580 ikev2_calc_integr (tr_integ,
2581 sa->is_initiator ? sa->sk_ai : sa->sk_ar,
2582 (u8 *) ike, tlen - tr_integ->key_trunc);
2583 clib_memcpy_fast (ike->payload + tlen - tr_integ->key_trunc -
2584 sizeof (*ike), integ, tr_integ->key_trunc);
2587 /* store whole IKE payload - needed for retransmit */
2588 vec_reset_length (sa->last_res_packet_data);
2589 vec_add (sa->last_res_packet_data, ike, tlen);
2593 ikev2_payload_destroy_chain (chain);
2599 ikev2_retransmit_sa_init_one (ikev2_sa_t * sa, ike_header_t * ike,
2600 ip_address_t iaddr, ip_address_t raddr,
2605 u8 payload = ike->nextpayload;
2607 if (sa->ispi != clib_net_to_host_u64 (ike->ispi) ||
2608 ip_address_cmp (&sa->iaddr, &iaddr) ||
2609 ip_address_cmp (&sa->raddr, &raddr))
2614 while (p < rlen && payload != IKEV2_PAYLOAD_NONE)
2616 ike_payload_header_t *ikep = (ike_payload_header_t *) & ike->payload[p];
2617 u32 plen = clib_net_to_host_u16 (ikep->length);
2619 if (plen < sizeof (ike_payload_header_t))
2622 if (payload == IKEV2_PAYLOAD_NONCE &&
2623 !clib_memcmp (sa->i_nonce, ikep->payload, plen - sizeof (*ikep)))
2625 /* req is retransmit */
2626 if (sa->state == IKEV2_STATE_SA_INIT)
2628 sa->stats.n_init_retransmit++;
2629 tmp = (ike_header_t *) sa->last_sa_init_res_packet_data;
2630 u32 slen = clib_net_to_host_u32 (tmp->length);
2631 ike->ispi = tmp->ispi;
2632 ike->rspi = tmp->rspi;
2633 ike->nextpayload = tmp->nextpayload;
2634 ike->version = tmp->version;
2635 ike->exchange = tmp->exchange;
2636 ike->flags = tmp->flags;
2637 ike->msgid = tmp->msgid;
2638 ike->length = tmp->length;
2639 clib_memcpy_fast (ike->payload, tmp->payload,
2640 slen - sizeof (*ike));
2641 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG,
2642 "ispi %lx IKE_SA_INIT retransmit "
2643 "from %d.%d.%d.%d to %d.%d.%d.%d",
2645 ip_addr_v4 (&raddr).as_u32,
2646 ip_addr_v4 (&iaddr).as_u32);
2649 /* else ignore req */
2652 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG,
2653 "ispi %lx IKE_SA_INIT ignore "
2654 "from %d.%d.%d.%d to %d.%d.%d.%d",
2656 ip_addr_v4 (&raddr).as_u32,
2657 ip_addr_v4 (&iaddr).as_u32);
2661 payload = ikep->nextpayload;
2669 ikev2_retransmit_sa_init (ike_header_t * ike, ip_address_t iaddr,
2670 ip_address_t raddr, u32 rlen)
2674 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2677 pool_foreach (sa, ptd->sas) {
2678 res = ikev2_retransmit_sa_init_one (sa, ike, iaddr, raddr, rlen);
2684 /* req is not retransmit */
2689 ikev2_retransmit_resp (ikev2_sa_t * sa, ike_header_t * ike)
2691 if (ike_hdr_is_response (ike))
2694 u32 msg_id = clib_net_to_host_u32 (ike->msgid);
2697 if (msg_id > sa->last_msg_id)
2699 sa->last_msg_id = msg_id;
2703 /* retransmitted req */
2704 if (msg_id == sa->last_msg_id)
2706 sa->stats.n_retransmit++;
2707 ike_header_t *tmp = (ike_header_t *) sa->last_res_packet_data;
2708 u32 slen = clib_net_to_host_u32 (tmp->length);
2709 ike->ispi = tmp->ispi;
2710 ike->rspi = tmp->rspi;
2711 ike->nextpayload = tmp->nextpayload;
2712 ike->version = tmp->version;
2713 ike->exchange = tmp->exchange;
2714 ike->flags = tmp->flags;
2715 ike->msgid = tmp->msgid;
2716 ike->length = tmp->length;
2717 clib_memcpy_fast (ike->payload, tmp->payload, slen - sizeof (*ike));
2718 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG, "IKE retransmit msgid %d",
2719 msg_id, ip_addr_v4 (&sa->raddr).as_u32,
2720 ip_addr_v4 (&sa->iaddr).as_u32);
2724 /* old req ignore */
2725 ikev2_elog_uint_peers (IKEV2_LOG_DEBUG, "IKE req ignore msgid %d",
2726 msg_id, ip_addr_v4 (&sa->raddr).as_u32,
2727 ip_addr_v4 (&sa->iaddr).as_u32);
2732 ikev2_init_sa (vlib_main_t * vm, ikev2_sa_t * sa)
2734 ikev2_main_t *km = &ikev2_main;
2735 sa->liveness_period_check = vlib_time_now (vm) + km->liveness_period;
2736 sa->profile_index = ~0;
2740 ikev2_del_sa_init_from_main (u64 * ispi)
2742 ikev2_main_t *km = &ikev2_main;
2743 uword *p = hash_get (km->sa_by_ispi, *ispi);
2746 ikev2_sa_t *sai = pool_elt_at_index (km->sais, p[0]);
2747 hash_unset (km->sa_by_ispi, sai->ispi);
2748 ikev2_sa_free_all_vec (sai);
2749 pool_put (km->sais, sai);
2754 ikev2_del_sa_init (u64 ispi)
2756 vl_api_rpc_call_main_thread (ikev2_del_sa_init_from_main, (u8 *) & ispi,
2760 static_always_inline void
2761 ikev2_rewrite_v6_addrs (ikev2_sa_t * sa, ip6_header_t * ih)
2763 if (sa->is_initiator)
2765 ip_address_copy_addr (&ih->dst_address, &sa->raddr);
2766 ip_address_copy_addr (&ih->src_address, &sa->iaddr);
2770 ip_address_copy_addr (&ih->dst_address, &sa->iaddr);
2771 ip_address_copy_addr (&ih->src_address, &sa->raddr);
2775 static_always_inline void
2776 ikev2_rewrite_v4_addrs (ikev2_sa_t * sa, ip4_header_t * ih)
2778 if (sa->is_initiator)
2780 ip_address_copy_addr (&ih->dst_address, &sa->raddr);
2781 ip_address_copy_addr (&ih->src_address, &sa->iaddr);
2785 ip_address_copy_addr (&ih->dst_address, &sa->iaddr);
2786 ip_address_copy_addr (&ih->src_address, &sa->raddr);
2790 static_always_inline void
2791 ikev2_set_ip_address (ikev2_sa_t *sa, const void *iaddr, const void *raddr,
2792 const ip_address_family_t af)
2794 ip_address_set (&sa->raddr, raddr, af);
2795 ip_address_set (&sa->iaddr, iaddr, af);
2799 ikev2_elog_uint_peers_addr (u32 exchange, ip4_header_t * ip4,
2800 ip6_header_t * ip6, u8 is_ip4)
2805 src = ip4->src_address.as_u32;
2806 dst = ip4->dst_address.as_u32;
2810 src = ip6->src_address.as_u32[3];
2811 dst = ip6->dst_address.as_u32[3];
2813 ikev2_elog_uint_peers (IKEV2_LOG_WARNING, "IKEv2 exchange %d "
2814 "received from %d.%d.%d.%d to %d.%d.%d.%d",
2815 exchange, src, dst);
2819 ikev2_generate_sa_init_data_and_log (ikev2_sa_t * sa)
2821 ikev2_generate_sa_error_t rc = ikev2_generate_sa_init_data (sa);
2823 if (PREDICT_TRUE (rc == IKEV2_GENERATE_SA_INIT_OK))
2826 if (rc == IKEV2_GENERATE_SA_INIT_ERR_NO_DH)
2827 ikev2_elog_error (IKEV2_GENERATE_SA_INIT_OK_ERR_NO_DH_STR);
2828 else if (rc == IKEV2_GENERATE_SA_INIT_ERR_UNSUPPORTED_DH)
2829 ikev2_elog_error (IKEV2_GENERATE_SA_INIT_OK_ERR_UNSUPP_STR);
2833 ikev2_update_stats (vlib_main_t *vm, u32 node_index, ikev2_stats_t *s)
2835 vlib_node_increment_counter (vm, node_index, IKEV2_ERROR_KEEPALIVE,
2837 vlib_node_increment_counter (vm, node_index, IKEV2_ERROR_REKEY_REQ,
2839 vlib_node_increment_counter (vm, node_index, IKEV2_ERROR_INIT_SA_REQ,
2841 vlib_node_increment_counter (vm, node_index, IKEV2_ERROR_IKE_AUTH_REQ,
2845 static_always_inline uword
2846 ikev2_node_internal (vlib_main_t *vm, vlib_node_runtime_t *node,
2847 vlib_frame_t *frame, u8 is_ip4, u8 natt)
2849 u32 n_left = frame->n_vectors, *from;
2850 ikev2_main_t *km = &ikev2_main;
2851 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b;
2852 u16 nexts[VLIB_FRAME_SIZE], *next = nexts;
2853 ikev2_main_per_thread_data_t *ptd = ikev2_get_per_thread_data ();
2854 ikev2_stats_t _stats, *stats = &_stats;
2857 clib_memset_u16 (stats, 0, sizeof (stats[0]) / sizeof (u16));
2858 from = vlib_frame_vector_args (frame);
2859 vlib_get_buffers (vm, from, bufs, n_left);
2864 vlib_buffer_t *b0 = b[0];
2865 next[0] = is_ip4 ? IKEV2_NEXT_IP4_ERROR_DROP
2866 : IKEV2_NEXT_IP6_ERROR_DROP;
2867 ip4_header_t *ip40 = 0;
2868 ip6_header_t *ip60 = 0;
2871 ikev2_sa_t *sa0 = 0;
2872 ikev2_sa_t sa; /* temporary store for SA */
2879 u8 *ptr = vlib_buffer_get_current (b0);
2880 ip40 = (ip4_header_t *) ptr;
2881 ptr += sizeof (*ip40);
2882 udp0 = (udp_header_t *) ptr;
2883 ptr += sizeof (*udp0);
2884 ike0 = (ike_header_t *) ptr;
2885 ip_hdr_sz = sizeof (*ip40);
2889 u8 *ipx_hdr = b0->data + vnet_buffer (b0)->l3_hdr_offset;
2890 ike0 = vlib_buffer_get_current (b0);
2891 vlib_buffer_advance (b0, -sizeof (*udp0));
2892 udp0 = vlib_buffer_get_current (b0);
2896 ip40 = (ip4_header_t *) ipx_hdr;
2897 ip_hdr_sz = sizeof (*ip40);
2901 ip60 = (ip6_header_t *) ipx_hdr;
2902 ip_hdr_sz = sizeof (*ip60);
2904 vlib_buffer_advance (b0, -ip_hdr_sz);
2907 rlen = b0->current_length - ip_hdr_sz - sizeof (*udp0);
2909 /* check for non-esp marker */
2912 ASSERT (*((u32 *) ike0) == 0);
2914 (ike_header_t *) ((u8 *) ike0 + sizeof (ikev2_non_esp_marker));
2915 rlen -= sizeof (ikev2_non_esp_marker);
2918 if (clib_net_to_host_u32 (ike0->length) != rlen)
2920 vlib_node_increment_counter (vm, node->node_index,
2921 IKEV2_ERROR_BAD_LENGTH, 1);
2925 if (ike0->version != IKE_VERSION_2)
2927 vlib_node_increment_counter (vm, node->node_index,
2928 IKEV2_ERROR_NOT_IKEV2, 1);
2932 if (ike0->exchange == IKEV2_EXCHANGE_SA_INIT)
2935 clib_memset (sa0, 0, sizeof (*sa0));
2937 if (ike_hdr_is_initiator (ike0))
2939 sa0->stats.n_sa_init_req++;
2940 stats->n_sa_init_req++;
2941 if (ike0->rspi == 0)
2944 ikev2_set_ip_address (sa0, &ip40->src_address,
2945 &ip40->dst_address, AF_IP4);
2947 ikev2_set_ip_address (sa0, &ip60->src_address,
2948 &ip60->dst_address, AF_IP6);
2950 sa0->dst_port = clib_net_to_host_u16 (udp0->src_port);
2953 ikev2_retransmit_sa_init (ike0, sa0->iaddr,
2957 vlib_node_increment_counter (vm, node->node_index,
2960 IKEV2_ERROR_IKE_SA_INIT_IGNORE
2962 IKEV2_ERROR_IKE_SA_INIT_RETRANSMIT,
2967 res = ikev2_process_sa_init_req (
2968 vm, sa0, ike0, udp0, rlen,
2969 vnet_buffer (b0)->sw_if_index[VLIB_RX]);
2971 vlib_node_increment_counter (vm, node->node_index,
2972 IKEV2_ERROR_MALFORMED_PACKET,
2975 if (sa0->state == IKEV2_STATE_SA_INIT)
2977 ikev2_sa_free_proposal_vector (&sa0->r_proposals);
2979 ikev2_select_proposal (sa0->i_proposals,
2980 IKEV2_PROTOCOL_IKE);
2981 ikev2_generate_sa_init_data_and_log (sa0);
2984 if (sa0->state == IKEV2_STATE_SA_INIT
2985 || sa0->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2987 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
2989 ikev2_generate_message (b0, sa0, ike0, 0, udp0, stats);
2991 vlib_node_increment_counter (vm, node->node_index,
2992 IKEV2_ERROR_NO_BUFF_SPACE,
2996 if (sa0->state == IKEV2_STATE_SA_INIT)
2998 /* add SA to the pool */
2999 pool_get (ptd->sas, sa0);
3000 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
3001 ikev2_init_sa (vm, sa0);
3002 hash_set (ptd->sa_by_rspi, sa0->rspi, sa0 - ptd->sas);
3006 ikev2_sa_free_all_vec (sa0);
3010 else //received sa_init without initiator flag
3013 ikev2_set_ip_address (sa0, &ip40->dst_address,
3014 &ip40->src_address, AF_IP4);
3016 ikev2_set_ip_address (sa0, &ip60->dst_address,
3017 &ip60->src_address, AF_IP6);
3019 ikev2_process_sa_init_resp (vm, sa0, ike0, udp0, rlen);
3021 if (sa0->state == IKEV2_STATE_SA_INIT)
3024 ike0->exchange = IKEV2_EXCHANGE_IKE_AUTH;
3025 uword *p = hash_get (km->sa_by_ispi, sa0->ispi);
3028 ikev2_sa_t *sai = pool_elt_at_index (km->sais, p[0]);
3030 if (clib_atomic_bool_cmp_and_swap
3031 (&sai->init_response_received, 0, 1))
3033 ikev2_complete_sa_data (sa0, sai);
3034 ikev2_calc_keys (sa0);
3035 ikev2_sa_auth_init (sa0);
3036 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
3038 clib_net_to_host_u32 (sai->last_init_msg_id);
3039 sa0->last_init_msg_id = sai->last_init_msg_id + 1;
3040 slen = ikev2_generate_message (b0, sa0, ike0, 0,
3043 vlib_node_increment_counter (vm,
3045 IKEV2_ERROR_NO_BUFF_SPACE,
3050 /* we've already processed sa-init response */
3051 sa0->state = IKEV2_STATE_UNKNOWN;
3056 if (sa0->state == IKEV2_STATE_SA_INIT)
3058 /* add SA to the pool */
3059 pool_get (ptd->sas, sa0);
3060 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
3061 hash_set (ptd->sa_by_rspi, sa0->rspi, sa0 - ptd->sas);
3065 ikev2_sa_free_all_vec (sa0);
3069 else if (ike0->exchange == IKEV2_EXCHANGE_IKE_AUTH)
3072 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3075 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3076 slen = ikev2_retransmit_resp (sa0, ike0);
3079 vlib_node_increment_counter (vm, node->node_index,
3082 IKEV2_ERROR_IKE_REQ_IGNORE
3084 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3089 sa0->dst_port = clib_net_to_host_u16 (udp0->src_port);
3090 res = ikev2_process_auth_req (vm, sa0, ike0, rlen);
3092 ikev2_sa_auth (sa0);
3094 vlib_node_increment_counter (vm, node->node_index,
3095 IKEV2_ERROR_MALFORMED_PACKET, 1);
3096 if (sa0->state == IKEV2_STATE_AUTHENTICATED)
3098 ikev2_initial_contact_cleanup (ptd, sa0);
3099 ikev2_sa_match_ts (sa0);
3100 if (sa0->state != IKEV2_STATE_TS_UNACCEPTABLE)
3101 ikev2_create_tunnel_interface (vm, sa0,
3106 if (sa0->is_initiator)
3108 ikev2_del_sa_init (sa0->ispi);
3112 sa0->stats.n_sa_auth_req++;
3113 stats->n_sa_auth_req++;
3114 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3115 sa0->last_init_msg_id = 1;
3117 ikev2_generate_message (b0, sa0, ike0, 0, udp0, stats);
3119 vlib_node_increment_counter (vm, node->node_index,
3120 IKEV2_ERROR_NO_BUFF_SPACE,
3125 else if (ike0->exchange == IKEV2_EXCHANGE_INFORMATIONAL)
3128 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3131 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3132 slen = ikev2_retransmit_resp (sa0, ike0);
3135 vlib_node_increment_counter (vm, node->node_index,
3138 IKEV2_ERROR_IKE_REQ_IGNORE
3140 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3145 res = ikev2_process_informational_req (vm, sa0, ike0, rlen);
3148 vlib_node_increment_counter (vm, node->node_index,
3149 IKEV2_ERROR_MALFORMED_PACKET,
3157 if (sa0->del[0].protocol_id != IKEV2_PROTOCOL_IKE)
3159 ikev2_delete_t *d, *tmp, *resp = 0;
3160 vec_foreach (d, sa0->del)
3162 ikev2_child_sa_t *ch_sa;
3163 ch_sa = ikev2_sa_get_child (sa0, d->spi,
3165 !sa0->is_initiator);
3168 ikev2_delete_tunnel_interface (km->vnet_main,
3170 if (!sa0->is_initiator)
3172 vec_add2 (resp, tmp, 1);
3173 tmp->protocol_id = d->protocol_id;
3174 tmp->spi = ch_sa->r_proposals[0].spi;
3176 ikev2_sa_del_child_sa (sa0, ch_sa);
3179 if (!sa0->is_initiator)
3181 vec_free (sa0->del);
3186 if (ike_hdr_is_request (ike0))
3188 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3190 ikev2_generate_message (b0, sa0, ike0, 0, udp0, stats);
3192 vlib_node_increment_counter (vm, node->node_index,
3193 IKEV2_ERROR_NO_BUFF_SPACE,
3198 else if (ike0->exchange == IKEV2_EXCHANGE_CREATE_CHILD_SA)
3201 p = hash_get (ptd->sa_by_rspi, clib_net_to_host_u64 (ike0->rspi));
3204 sa0 = pool_elt_at_index (ptd->sas, p[0]);
3205 slen = ikev2_retransmit_resp (sa0, ike0);
3208 vlib_node_increment_counter (vm, node->node_index,
3211 IKEV2_ERROR_IKE_REQ_IGNORE
3213 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
3218 res = ikev2_process_create_child_sa_req (vm, sa0, ike0, rlen);
3221 vlib_node_increment_counter (vm, node->node_index,
3222 IKEV2_ERROR_MALFORMED_PACKET,
3230 if (sa0->rekey[0].protocol_id != IKEV2_PROTOCOL_IKE)
3233 ikev2_sa_free_all_child_sa (&sa0->childs);
3234 ikev2_child_sa_t *child;
3235 vec_add2 (sa0->childs, child, 1);
3236 clib_memset (child, 0, sizeof (*child));
3237 child->r_proposals = sa0->rekey[0].r_proposal;
3238 child->i_proposals = sa0->rekey[0].i_proposal;
3239 child->tsi = sa0->rekey[0].tsi;
3240 child->tsr = sa0->rekey[0].tsr;
3241 ikev2_create_tunnel_interface (vm, sa0, child, p[0],
3242 child - sa0->childs, 1);
3244 if (ike_hdr_is_response (ike0))
3246 vec_free (sa0->rekey);
3250 stats->n_rekey_req++;
3251 sa0->stats.n_rekey_req++;
3252 ike0->flags = IKEV2_HDR_FLAG_RESPONSE;
3254 ikev2_generate_message (b0, sa0, ike0, 0, udp0, stats);
3256 vlib_node_increment_counter (vm, node->node_index,
3257 IKEV2_ERROR_NO_BUFF_SPACE,
3265 ikev2_elog_uint_peers_addr (ike0->exchange, ip40, ip60, is_ip4);
3269 /* if we are sending packet back, rewrite headers */
3270 if (slen && ~0 != slen)
3274 next[0] = IKEV2_NEXT_IP4_LOOKUP;
3275 ikev2_rewrite_v4_addrs (sa0, ip40);
3279 next[0] = IKEV2_NEXT_IP6_LOOKUP;
3280 ikev2_rewrite_v6_addrs (sa0, ip60);
3285 udp0->dst_port = udp0->src_port =
3286 clib_net_to_host_u16 (ikev2_get_port (sa0));
3288 if (udp0->dst_port == clib_net_to_host_u16 (IKEV2_PORT_NATT)
3289 && ikev2_natt_active (sa0))
3292 slen = ikev2_insert_non_esp_marker (ike0, slen);
3298 slen += sizeof (ikev2_non_esp_marker);
3300 u16 tp = udp0->dst_port;
3301 udp0->dst_port = udp0->src_port;
3302 udp0->src_port = tp;
3305 udp0->length = clib_host_to_net_u16 (slen + sizeof (udp_header_t));
3307 b0->current_length = slen + ip_hdr_sz + sizeof (udp_header_t);
3310 ip40->length = clib_host_to_net_u16 (b0->current_length);
3311 ip40->checksum = ip4_header_checksum (ip40);
3315 ip60->payload_length =
3316 clib_host_to_net_u16 (b0->current_length - sizeof (*ip60));
3320 if (sa0 && (sa0->state == IKEV2_STATE_DELETED ||
3321 sa0->state == IKEV2_STATE_NOTIFY_AND_DELETE))
3323 ikev2_child_sa_t *c;
3325 vec_foreach (c, sa0->childs)
3326 ikev2_delete_tunnel_interface (km->vnet_main, sa0, c);
3328 ikev2_delete_sa (ptd, sa0);
3330 if (PREDICT_FALSE ((node->flags & VLIB_NODE_FLAG_TRACE)
3331 && (b0->flags & VLIB_BUFFER_IS_TRACED)))
3334 ikev2_trace_t *t = vlib_add_trace (vm, node, b0, sizeof (*t));
3335 t->sw_if_index = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3336 t->next_index = next[0];
3343 ikev2_update_stats (vm, node->node_index, stats);
3344 vlib_node_increment_counter (vm, node->node_index,
3345 IKEV2_ERROR_PROCESSED, frame->n_vectors);
3346 vlib_buffer_enqueue_to_next (vm, node, from, nexts, frame->n_vectors);
3347 return frame->n_vectors;
3351 ikev2_ip4 (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_frame_t * frame)
3353 return ikev2_node_internal (vm, node, frame, 1 /* is_ip4 */, 0);
3357 ikev2_ip4_natt (vlib_main_t *vm, vlib_node_runtime_t *node,
3358 vlib_frame_t *frame)
3360 return ikev2_node_internal (vm, node, frame, 1 /* is_ip4 */, 1 /* natt */);
3364 ikev2_ip6 (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_frame_t * frame)
3366 return ikev2_node_internal (vm, node, frame, 0 /* is_ip4 */, 0);
3370 VLIB_REGISTER_NODE (ikev2_node_ip4,static) = {
3371 .function = ikev2_ip4,
3372 .name = "ikev2-ip4",
3373 .vector_size = sizeof (u32),
3374 .format_trace = format_ikev2_trace,
3375 .type = VLIB_NODE_TYPE_INTERNAL,
3377 .n_errors = IKEV2_N_ERROR,
3378 .error_counters = ikev2_error_counters,
3380 .n_next_nodes = IKEV2_IP4_N_NEXT,
3382 [IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
3383 [IKEV2_NEXT_IP4_ERROR_DROP] = "error-drop",
3387 VLIB_REGISTER_NODE (ikev2_node_ip4_natt,static) = {
3388 .function = ikev2_ip4_natt,
3389 .name = "ikev2-ip4-natt",
3390 .vector_size = sizeof (u32),
3391 .format_trace = format_ikev2_trace,
3392 .type = VLIB_NODE_TYPE_INTERNAL,
3394 .n_errors = IKEV2_N_ERROR,
3395 .error_counters = ikev2_error_counters,
3397 .n_next_nodes = IKEV2_IP4_N_NEXT,
3399 [IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
3400 [IKEV2_NEXT_IP4_ERROR_DROP] = "error-drop",
3404 VLIB_REGISTER_NODE (ikev2_node_ip6,static) = {
3405 .function = ikev2_ip6,
3406 .name = "ikev2-ip6",
3407 .vector_size = sizeof (u32),
3408 .format_trace = format_ikev2_trace,
3409 .type = VLIB_NODE_TYPE_INTERNAL,
3411 .n_errors = IKEV2_N_ERROR,
3412 .error_counters = ikev2_error_counters,
3414 .n_next_nodes = IKEV2_IP6_N_NEXT,
3416 [IKEV2_NEXT_IP6_LOOKUP] = "ip6-lookup",
3417 [IKEV2_NEXT_IP6_ERROR_DROP] = "error-drop",
3422 // set ikev2 proposals when vpp is used as initiator
3423 static clib_error_t *
3424 ikev2_set_initiator_proposals (vlib_main_t * vm, ikev2_sa_t * sa,
3425 ikev2_transforms_set * ts,
3426 ikev2_sa_proposal_t ** proposals, int is_ike)
3429 ikev2_main_t *km = &ikev2_main;
3430 ikev2_sa_proposal_t *proposal;
3431 vec_add2 (*proposals, proposal, 1);
3432 ikev2_sa_transform_t *td;
3437 vec_foreach (td, km->supported_transforms)
3439 if (td->type == IKEV2_TRANSFORM_TYPE_ENCR
3440 && td->encr_type == ts->crypto_alg
3441 && td->key_len == ts->crypto_key_size / 8)
3444 attr[0] = clib_host_to_net_u16 (14 | (1 << 15));
3445 attr[1] = clib_host_to_net_u16 (td->key_len << 3);
3446 vec_add (td->attrs, (u8 *) attr, 4);
3447 vec_add1 (proposal->transforms, *td);
3456 r = clib_error_return (0, "Unsupported algorithm");
3460 if (IKEV2_TRANSFORM_INTEG_TYPE_NONE != ts->integ_alg)
3464 vec_foreach (td, km->supported_transforms)
3466 if (td->type == IKEV2_TRANSFORM_TYPE_INTEG
3467 && td->integ_type == ts->integ_alg)
3469 vec_add1 (proposal->transforms, *td);
3477 ("Didn't find any supported algorithm for IKEV2_TRANSFORM_TYPE_INTEG");
3478 r = clib_error_return (0, "Unsupported algorithm");
3487 vec_foreach (td, km->supported_transforms)
3489 if (td->type == IKEV2_TRANSFORM_TYPE_PRF
3490 && td->prf_type == IKEV2_TRANSFORM_PRF_TYPE_PRF_HMAC_SHA2_256)
3492 vec_add1 (proposal->transforms, *td);
3499 r = clib_error_return (0, "Unsupported algorithm");
3508 vec_foreach (td, km->supported_transforms)
3510 if (td->type == IKEV2_TRANSFORM_TYPE_DH && td->dh_type == ts->dh_type)
3512 vec_add1 (proposal->transforms, *td);
3515 sa->dh_group = td->dh_type;
3523 r = clib_error_return (0, "Unsupported algorithm");
3531 vec_foreach (td, km->supported_transforms)
3533 if (td->type == IKEV2_TRANSFORM_TYPE_ESN)
3535 vec_add1 (proposal->transforms, *td);
3541 r = clib_error_return (0, "Unsupported algorithm");
3550 static ikev2_profile_t *
3551 ikev2_profile_index_by_name (u8 * name)
3553 ikev2_main_t *km = &ikev2_main;
3556 p = mhash_get (&km->profile_index_by_name, name);
3560 return pool_elt_at_index (km->profiles, p[0]);
3565 ikev2_send_ike (vlib_main_t * vm, ip_address_t * src, ip_address_t * dst,
3566 u32 bi0, u32 len, u16 src_port, u16 dst_port, u32 sw_if_index)
3575 b0 = vlib_get_buffer (vm, bi0);
3576 vlib_buffer_advance (b0, -sizeof (udp_header_t));
3577 udp0 = vlib_buffer_get_current (b0);
3578 udp0->dst_port = clib_host_to_net_u16 (dst_port);
3579 udp0->src_port = clib_host_to_net_u16 (src_port);
3580 udp0->length = clib_host_to_net_u16 (len + sizeof (udp_header_t));
3583 if (ip_addr_version (dst) == AF_IP4)
3585 vlib_buffer_advance (b0, -sizeof (ip4_header_t));
3586 ip40 = vlib_buffer_get_current (b0);
3587 ip40->ip_version_and_header_length = 0x45;
3589 ip40->fragment_id = 0;
3590 ip40->flags_and_fragment_offset = 0;
3592 ip40->protocol = IP_PROTOCOL_UDP;
3593 ip40->dst_address.as_u32 = ip_addr_v4 (dst).as_u32;
3594 ip40->src_address.as_u32 = ip_addr_v4 (src).as_u32;
3595 b0->current_length =
3596 len + sizeof (ip4_header_t) + sizeof (udp_header_t);
3597 ip40->length = clib_host_to_net_u16 (b0->current_length);
3598 ip40->checksum = ip4_header_checksum (ip40);
3602 vlib_buffer_advance (b0, -sizeof (ip6_header_t));
3603 ip60 = vlib_buffer_get_current (b0);
3605 b0->current_length = len + sizeof (*ip60) + sizeof (udp_header_t);
3606 ip60->ip_version_traffic_class_and_flow_label =
3607 clib_host_to_net_u32 (0x6 << 28);
3608 ip60->payload_length =
3609 clib_host_to_net_u16 (b0->current_length - sizeof (*ip60));
3610 ip60->protocol = IP_PROTOCOL_UDP;
3611 ip60->hop_limit = 0xff;
3612 clib_memcpy_fast (ip60->src_address.as_u8, ip_addr_v6 (src).as_u8,
3613 sizeof (ip60->src_address));
3614 clib_memcpy_fast (ip60->dst_address.as_u8, ip_addr_v6 (dst).as_u8,
3615 sizeof (ip60->src_address));
3618 b0->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
3619 vnet_buffer (b0)->sw_if_index[VLIB_RX] = sw_if_index;
3620 vnet_buffer (b0)->sw_if_index[VLIB_TX] = ~0;
3622 u32 next_index = (ip_addr_version (dst) == AF_IP4) ?
3623 ip4_lookup_node.index : ip6_lookup_node.index;
3625 /* send the request */
3626 f = vlib_get_frame_to_node (vm, next_index);
3627 to_next = vlib_frame_vector_args (f);
3630 vlib_put_frame_to_node (vm, next_index, f);
3635 ikev2_get_new_ike_header_buff (vlib_main_t * vm, vlib_buffer_t ** b)
3638 if (vlib_buffer_alloc (vm, &bi0, 1) != 1)
3643 *b = vlib_get_buffer (vm, bi0);
3648 ikev2_set_local_key (vlib_main_t * vm, u8 * file)
3650 ikev2_main_t *km = &ikev2_main;
3653 EVP_PKEY_free (km->pkey);
3654 km->pkey = ikev2_load_key_file (file);
3655 if (km->pkey == NULL)
3656 return clib_error_return (0, "load key '%s' failed", file);
3661 static_always_inline vnet_api_error_t
3662 ikev2_register_udp_port (ikev2_profile_t * p, u16 port)
3664 ikev2_main_t *km = &ikev2_main;
3665 udp_dst_port_info_t *pi;
3667 uword *v = hash_get (km->udp_ports, port);
3668 pi = udp_get_dst_port_info (&udp_main, port, UDP_IP4);
3672 /* IKE already uses this port, only increment reference counter */
3679 return VNET_API_ERROR_UDP_PORT_TAKEN;
3681 udp_register_dst_port (km->vlib_main, port,
3682 ipsec4_tun_input_node.index, 1);
3683 hash_set (km->udp_ports, port, 1);
3685 p->ipsec_over_udp_port = port;
3689 static_always_inline void
3690 ikev2_unregister_udp_port (ikev2_profile_t * p)
3692 ikev2_main_t *km = &ikev2_main;
3695 if (p->ipsec_over_udp_port == IPSEC_UDP_PORT_NONE)
3698 v = hash_get (km->udp_ports, p->ipsec_over_udp_port);
3706 udp_unregister_dst_port (km->vlib_main, p->ipsec_over_udp_port, 1);
3707 hash_unset (km->udp_ports, p->ipsec_over_udp_port);
3710 p->ipsec_over_udp_port = IPSEC_UDP_PORT_NONE;
3714 ikev2_initiate_delete_ike_sa_internal (vlib_main_t * vm,
3715 ikev2_main_per_thread_data_t * tkm,
3716 ikev2_sa_t * sa, u8 send_notification)
3718 ikev2_main_t *km = &ikev2_main;
3719 ip_address_t *src, *dst;
3721 ikev2_child_sa_t *c;
3723 /* Create the Initiator notification for IKE SA removal */
3728 vec_resize (sa->del, 1);
3729 sa->del->protocol_id = IKEV2_PROTOCOL_IKE;
3730 sa->del->spi = sa->ispi;
3732 if (send_notification)
3734 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
3737 ikev2_log_error ("buffer alloc failure");
3741 ike0 = vlib_buffer_get_current (b0);
3742 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
3743 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
3744 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
3746 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
3747 sa->last_init_msg_id += 1;
3748 len = ikev2_generate_message (b0, sa, ike0, 0, 0, 0);
3752 if (ikev2_natt_active (sa))
3753 len = ikev2_insert_non_esp_marker (ike0, len);
3755 if (sa->is_initiator)
3766 ikev2_send_ike (vm, src, dst, bi0, len,
3767 ikev2_get_port (sa), sa->dst_port, 0);
3771 /* delete local SA */
3772 vec_foreach (c, sa->childs)
3773 ikev2_delete_tunnel_interface (km->vnet_main, sa, c);
3775 u64 rspi = sa->rspi;
3776 ikev2_sa_free_all_vec (sa);
3777 uword *p = hash_get (tkm->sa_by_rspi, rspi);
3780 hash_unset (tkm->sa_by_rspi, rspi);
3781 pool_put (tkm->sas, sa);
3786 ikev2_cleanup_profile_sessions (ikev2_main_t * km, ikev2_profile_t * p)
3788 ikev2_main_per_thread_data_t *tkm;
3790 u32 pi = p - km->profiles;
3795 pool_foreach (sa, km->sais) {
3796 if (pi == sa->profile_index)
3797 vec_add1 (del_sai, sa - km->sais);
3801 vec_foreach (sai, del_sai)
3803 sa = pool_elt_at_index (km->sais, sai[0]);
3804 ikev2_sa_free_all_vec (sa);
3805 hash_unset (km->sa_by_ispi, sa->ispi);
3806 pool_put (km->sais, sa);
3808 vec_reset_length (del_sai);
3810 vec_foreach (tkm, km->per_thread_data)
3813 pool_foreach (sa, tkm->sas) {
3814 if (sa->profile_index != ~0 && pi == sa->profile_index)
3815 vec_add1 (del_sai, sa - tkm->sas);
3819 vec_foreach (sai, del_sai)
3821 sa = pool_elt_at_index (tkm->sas, sai[0]);
3822 ikev2_initiate_delete_ike_sa_internal (km->vlib_main, tkm, sa, 1);
3825 vec_reset_length (del_sai);
3832 ikev2_profile_free (ikev2_profile_t * p)
3836 vec_free (p->auth.data);
3838 EVP_PKEY_free (p->auth.key);
3840 vec_free (p->loc_id.data);
3841 vec_free (p->rem_id.data);
3845 ikev2_add_del_profile (vlib_main_t * vm, u8 * name, int is_add)
3847 ikev2_main_t *km = &ikev2_main;
3852 if (ikev2_profile_index_by_name (name))
3853 return clib_error_return (0, "policy %v already exists", name);
3855 pool_get (km->profiles, p);
3856 clib_memset (p, 0, sizeof (*p));
3857 p->name = vec_dup (name);
3858 p->ipsec_over_udp_port = IPSEC_UDP_PORT_NONE;
3859 p->responder.sw_if_index = ~0;
3861 uword index = p - km->profiles;
3862 mhash_set_mem (&km->profile_index_by_name, name, &index, 0);
3866 p = ikev2_profile_index_by_name (name);
3868 return clib_error_return (0, "policy %v does not exists", name);
3870 ikev2_unregister_udp_port (p);
3871 ikev2_cleanup_profile_sessions (km, p);
3873 ikev2_profile_free (p);
3874 pool_put (km->profiles, p);
3875 mhash_unset (&km->profile_index_by_name, name, 0);
3881 ikev2_set_profile_auth (vlib_main_t * vm, u8 * name, u8 auth_method,
3882 u8 * auth_data, u8 data_hex_format)
3887 p = ikev2_profile_index_by_name (name);
3891 r = clib_error_return (0, "unknown profile %v", name);
3896 EVP_PKEY_free (p->auth.key);
3897 vec_free (p->auth.data);
3899 p->auth.method = auth_method;
3900 p->auth.data = vec_dup (auth_data);
3901 p->auth.hex = data_hex_format;
3903 if (auth_method == IKEV2_AUTH_METHOD_RSA_SIG)
3905 vec_add1 (p->auth.data, 0);
3906 p->auth.key = ikev2_load_cert_file (p->auth.data);
3907 if (p->auth.key == NULL)
3908 return clib_error_return (0, "load cert '%s' failed", p->auth.data);
3915 ikev2_is_id_supported (u8 id_type)
3917 return (id_type == IKEV2_ID_TYPE_ID_IPV4_ADDR ||
3918 id_type == IKEV2_ID_TYPE_ID_IPV6_ADDR ||
3919 id_type == IKEV2_ID_TYPE_ID_RFC822_ADDR ||
3920 id_type == IKEV2_ID_TYPE_ID_FQDN);
3924 ikev2_set_profile_id (vlib_main_t * vm, u8 * name, u8 id_type, u8 * data,
3930 if (!ikev2_is_id_supported (id_type))
3932 r = clib_error_return (0, "unsupported identity type %U",
3933 format_ikev2_id_type, id_type);
3937 p = ikev2_profile_index_by_name (name);
3941 r = clib_error_return (0, "unknown profile %v", name);
3947 vec_free (p->loc_id.data);
3948 p->loc_id.type = id_type;
3949 p->loc_id.data = vec_dup (data);
3953 vec_free (p->rem_id.data);
3954 p->rem_id.type = id_type;
3955 p->rem_id.data = vec_dup (data);
3961 static_always_inline void
3962 ikev2_set_ts_type (ikev2_ts_t * ts, const ip_address_t * addr)
3964 if (ip_addr_version (addr) == AF_IP4)
3965 ts->ts_type = TS_IPV4_ADDR_RANGE;
3967 ts->ts_type = TS_IPV6_ADDR_RANGE;
3970 static_always_inline void
3971 ikev2_set_ts_addrs (ikev2_ts_t * ts, const ip_address_t * start,
3972 const ip_address_t * end)
3974 ip_address_copy (&ts->start_addr, start);
3975 ip_address_copy (&ts->end_addr, end);
3979 ikev2_set_profile_ts (vlib_main_t * vm, u8 * name, u8 protocol_id,
3980 u16 start_port, u16 end_port, ip_address_t start_addr,
3981 ip_address_t end_addr, int is_local)
3986 p = ikev2_profile_index_by_name (name);
3990 r = clib_error_return (0, "unknown profile %v", name);
3994 if (ip_addr_version (&start_addr) != ip_addr_version (&end_addr))
3995 return clib_error_return (0, "IP address version mismatch!");
3999 ikev2_set_ts_addrs (&p->loc_ts, &start_addr, &end_addr);
4000 p->loc_ts.start_port = start_port;
4001 p->loc_ts.end_port = end_port;
4002 p->loc_ts.protocol_id = protocol_id;
4003 ikev2_set_ts_type (&p->loc_ts, &start_addr);
4007 ikev2_set_ts_addrs (&p->rem_ts, &start_addr, &end_addr);
4008 p->rem_ts.start_port = start_port;
4009 p->rem_ts.end_port = end_port;
4010 p->rem_ts.protocol_id = protocol_id;
4011 ikev2_set_ts_type (&p->rem_ts, &start_addr);
4019 ikev2_set_profile_responder (vlib_main_t * vm, u8 * name,
4020 u32 sw_if_index, ip_address_t addr)
4025 p = ikev2_profile_index_by_name (name);
4029 r = clib_error_return (0, "unknown profile %v", name);
4033 p->responder.sw_if_index = sw_if_index;
4034 ip_address_copy (&p->responder.addr, &addr);
4040 ikev2_set_profile_ike_transforms (vlib_main_t * vm, u8 * name,
4041 ikev2_transform_encr_type_t crypto_alg,
4042 ikev2_transform_integ_type_t integ_alg,
4043 ikev2_transform_dh_type_t dh_type,
4044 u32 crypto_key_size)
4049 p = ikev2_profile_index_by_name (name);
4053 r = clib_error_return (0, "unknown profile %v", name);
4057 p->ike_ts.crypto_alg = crypto_alg;
4058 p->ike_ts.integ_alg = integ_alg;
4059 p->ike_ts.dh_type = dh_type;
4060 p->ike_ts.crypto_key_size = crypto_key_size;
4065 ikev2_set_profile_esp_transforms (vlib_main_t * vm, u8 * name,
4066 ikev2_transform_encr_type_t crypto_alg,
4067 ikev2_transform_integ_type_t integ_alg,
4068 u32 crypto_key_size)
4073 p = ikev2_profile_index_by_name (name);
4077 r = clib_error_return (0, "unknown profile %v", name);
4081 p->esp_ts.crypto_alg = crypto_alg;
4082 p->esp_ts.integ_alg = integ_alg;
4083 p->esp_ts.crypto_key_size = crypto_key_size;
4088 ikev2_set_profile_tunnel_interface (vlib_main_t * vm,
4089 u8 * name, u32 sw_if_index)
4094 p = ikev2_profile_index_by_name (name);
4098 r = clib_error_return (0, "unknown profile %v", name);
4102 p->tun_itf = sw_if_index;
4108 ikev2_set_profile_ipsec_udp_port (vlib_main_t * vm, u8 * name, u16 port,
4111 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4112 ikev2_main_t *km = &ikev2_main;
4113 vnet_api_error_t rv = 0;
4117 return VNET_API_ERROR_INVALID_VALUE;
4121 if (p->ipsec_over_udp_port != IPSEC_UDP_PORT_NONE)
4122 return VNET_API_ERROR_VALUE_EXIST;
4124 rv = ikev2_register_udp_port (p, port);
4128 v = hash_get (km->udp_ports, port);
4130 return VNET_API_ERROR_IKE_NO_PORT;
4132 if (p->ipsec_over_udp_port == IPSEC_UDP_PORT_NONE)
4133 return VNET_API_ERROR_INVALID_VALUE;
4135 ikev2_unregister_udp_port (p);
4141 ikev2_set_profile_udp_encap (vlib_main_t * vm, u8 * name)
4143 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4148 r = clib_error_return (0, "unknown profile %v", name);
4157 ikev2_set_profile_sa_lifetime (vlib_main_t * vm, u8 * name,
4158 u64 lifetime, u32 jitter, u32 handover,
4164 p = ikev2_profile_index_by_name (name);
4168 r = clib_error_return (0, "unknown profile %v", name);
4172 p->lifetime = lifetime;
4173 p->lifetime_jitter = jitter;
4174 p->handover = handover;
4175 p->lifetime_maxdata = maxdata;
4180 ikev2_get_if_address (u32 sw_if_index, ip_address_family_t af,
4181 ip_address_t * out_addr)
4183 ip4_address_t *if_ip4;
4184 ip6_address_t *if_ip6;
4188 if_ip4 = ip4_interface_first_address (&ip4_main, sw_if_index, 0);
4191 ip_address_set (out_addr, if_ip4, AF_IP4);
4197 if_ip6 = ip6_interface_first_address (&ip6_main, sw_if_index);
4200 ip_address_set (out_addr, if_ip6, AF_IP6);
4208 ikev2_initiate_sa_init (vlib_main_t * vm, u8 * name)
4212 ikev2_main_t *km = &ikev2_main;
4216 int len = sizeof (ike_header_t), valid_ip = 0;
4217 ip_address_t if_ip = ip_address_initializer;
4219 p = ikev2_profile_index_by_name (name);
4223 r = clib_error_return (0, "unknown profile %v", name);
4227 if (p->responder.sw_if_index == ~0
4228 || ip_address_is_zero (&p->responder.addr))
4230 r = clib_error_return (0, "responder not set for profile %v", name);
4234 if (ikev2_get_if_address (p->responder.sw_if_index,
4235 ip_addr_version (&p->responder.addr), &if_ip))
4240 /* Prepare the SA and the IKE payload */
4242 clib_memset (&sa, 0, sizeof (ikev2_sa_t));
4243 ikev2_payload_chain_t *chain = 0;
4244 ikev2_payload_new_chain (chain);
4246 /* Build the IKE proposal payload */
4247 ikev2_sa_proposal_t *proposals = 0;
4248 ikev2_set_initiator_proposals (vm, &sa, &p->ike_ts, &proposals, 1);
4249 proposals[0].proposal_num = 1;
4250 proposals[0].protocol_id = IKEV2_PROTOCOL_IKE;
4252 /* Add and then cleanup proposal data */
4253 ikev2_payload_add_sa (chain, proposals);
4254 ikev2_sa_free_proposal_vector (&proposals);
4256 sa.is_initiator = 1;
4257 sa.profile_index = p - km->profiles;
4258 sa.state = IKEV2_STATE_SA_INIT;
4259 sa.tun_itf = p->tun_itf;
4260 sa.udp_encap = p->udp_encap;
4261 if (p->natt_disabled)
4262 sa.natt_state = IKEV2_NATT_DISABLED;
4263 sa.ipsec_over_udp_port = p->ipsec_over_udp_port;
4264 sa.is_tun_itf_set = 1;
4265 sa.initial_contact = 1;
4266 sa.dst_port = IKEV2_PORT;
4268 ikev2_generate_sa_error_t rc = ikev2_generate_sa_init_data (&sa);
4269 if (rc != IKEV2_GENERATE_SA_INIT_OK)
4271 ikev2_sa_free_all_vec (&sa);
4272 ikev2_payload_destroy_chain (chain);
4273 return clib_error_return (0, "%U", format_ikev2_gen_sa_error, rc);
4276 ikev2_payload_add_ke (chain, sa.dh_group, sa.i_dh_data);
4277 ikev2_payload_add_nonce (chain, sa.i_nonce);
4279 /* Build the child SA proposal */
4280 vec_resize (sa.childs, 1);
4281 ikev2_set_initiator_proposals (vm, &sa, &p->esp_ts,
4282 &sa.childs[0].i_proposals, 0);
4283 sa.childs[0].i_proposals[0].proposal_num = 1;
4284 sa.childs[0].i_proposals[0].protocol_id = IKEV2_PROTOCOL_ESP;
4285 RAND_bytes ((u8 *) & sa.childs[0].i_proposals[0].spi,
4286 sizeof (sa.childs[0].i_proposals[0].spi));
4288 /* Add NAT detection notification messages (mandatory) */
4289 u8 *nat_detection_sha1 =
4290 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa.ispi),
4291 clib_host_to_net_u64 (sa.rspi),
4292 &if_ip, clib_host_to_net_u16 (IKEV2_PORT));
4294 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP,
4295 nat_detection_sha1);
4296 vec_free (nat_detection_sha1);
4297 nat_detection_sha1 =
4298 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa.ispi),
4299 clib_host_to_net_u64 (sa.rspi),
4301 clib_host_to_net_u16 (sa.dst_port));
4302 ikev2_payload_add_notify (chain,
4303 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP,
4304 nat_detection_sha1);
4305 vec_free (nat_detection_sha1);
4307 u8 *sig_hash_algo = vec_new (u8, 8);
4308 u64 tmpsig = clib_host_to_net_u64 (0x0001000200030004);
4309 clib_memcpy_fast (sig_hash_algo, &tmpsig, sizeof (tmpsig));
4310 ikev2_payload_add_notify (chain,
4311 IKEV2_NOTIFY_MSG_SIGNATURE_HASH_ALGORITHMS,
4313 vec_free (sig_hash_algo);
4315 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4318 ikev2_sa_free_all_vec (&sa);
4319 ikev2_payload_destroy_chain (chain);
4320 char *errmsg = "buffer alloc failure";
4321 ikev2_log_error (errmsg);
4322 return clib_error_return (0, errmsg);
4324 ike0 = vlib_buffer_get_current (b0);
4326 /* Buffer update and boilerplate */
4327 len += vec_len (chain->data);
4328 ike0->nextpayload = chain->first_payload_type;
4329 ike0->length = clib_host_to_net_u32 (len);
4330 clib_memcpy_fast (ike0->payload, chain->data, vec_len (chain->data));
4331 ikev2_payload_destroy_chain (chain);
4333 ike0->version = IKE_VERSION_2;
4334 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
4335 ike0->exchange = IKEV2_EXCHANGE_SA_INIT;
4336 ike0->ispi = clib_host_to_net_u64 (sa.ispi);
4339 sa.last_init_msg_id += 1;
4341 /* store whole IKE payload - needed for PSK auth */
4342 vec_reset_length (sa.last_sa_init_req_packet_data);
4343 vec_add (sa.last_sa_init_req_packet_data, ike0, len);
4345 /* add data to the SA then add it to the pool */
4346 ip_address_copy (&sa.iaddr, &if_ip);
4347 ip_address_copy (&sa.raddr, &p->responder.addr);
4348 sa.i_id.type = p->loc_id.type;
4349 sa.i_id.data = vec_dup (p->loc_id.data);
4350 sa.r_id.type = p->rem_id.type;
4351 sa.r_id.data = vec_dup (p->rem_id.data);
4352 sa.i_auth.method = p->auth.method;
4353 sa.i_auth.hex = p->auth.hex;
4354 sa.i_auth.data = vec_dup (p->auth.data);
4355 sa.sw_if_index = p->responder.sw_if_index;
4356 vec_add (sa.childs[0].tsi, &p->loc_ts, 1);
4357 vec_add (sa.childs[0].tsr, &p->rem_ts, 1);
4359 ikev2_initial_contact_cleanup (0, &sa);
4361 /* add SA to the pool */
4362 ikev2_sa_t *sa0 = 0;
4363 pool_get (km->sais, sa0);
4364 clib_memcpy_fast (sa0, &sa, sizeof (*sa0));
4365 hash_set (km->sa_by_ispi, sa0->ispi, sa0 - km->sais);
4369 ikev2_send_ike (vm, &if_ip, &p->responder.addr, bi0, len,
4370 IKEV2_PORT, sa.dst_port, sa.sw_if_index);
4373 ("ispi %lx rspi %lx IKEV2_EXCHANGE_SA_INIT sent to ",
4374 clib_host_to_net_u64 (sa0->ispi), 0,
4375 ip_addr_v4 (&p->responder.addr).as_u32,
4376 ip_addr_version (&p->responder.addr) == AF_IP4);
4381 clib_error_return (0, "interface %U does not have any IP address!",
4382 format_vnet_sw_if_index_name, vnet_get_main (),
4383 p->responder.sw_if_index);
4391 ikev2_delete_child_sa_internal (vlib_main_t * vm, ikev2_sa_t * sa,
4392 ikev2_child_sa_t * csa)
4394 /* Create the Initiator notification for child SA removal */
4395 ikev2_main_t *km = &ikev2_main;
4401 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4404 ikev2_log_error ("buffer alloc failure");
4408 ike0 = vlib_buffer_get_current (b0);
4409 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
4410 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4411 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4413 vec_resize (sa->del, 1);
4414 sa->del->protocol_id = IKEV2_PROTOCOL_ESP;
4415 sa->del->spi = csa->i_proposals->spi;
4416 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
4417 sa->last_init_msg_id += 1;
4418 len = ikev2_generate_message (b0, sa, ike0, 0, 0, 0);
4422 if (ikev2_natt_active (sa))
4423 len = ikev2_insert_non_esp_marker (ike0, len);
4424 ikev2_send_ike (vm, &sa->iaddr, &sa->raddr, bi0, len,
4425 ikev2_get_port (sa), sa->dst_port, sa->sw_if_index);
4427 /* delete local child SA */
4428 ikev2_delete_tunnel_interface (km->vnet_main, sa, csa);
4429 ikev2_sa_del_child_sa (sa, csa);
4433 ikev2_initiate_delete_child_sa (vlib_main_t * vm, u32 ispi)
4436 ikev2_main_t *km = &ikev2_main;
4437 ikev2_main_per_thread_data_t *tkm;
4438 ikev2_sa_t *fsa = 0;
4439 ikev2_child_sa_t *fchild = 0;
4441 /* Search for the child SA */
4442 vec_foreach (tkm, km->per_thread_data)
4448 pool_foreach (sa, tkm->sas) {
4449 fchild = ikev2_sa_get_child(sa, ispi, IKEV2_PROTOCOL_ESP, 1);
4459 if (!fchild || !fsa)
4461 r = clib_error_return (0, "Child SA not found");
4466 ikev2_delete_child_sa_internal (vm, fsa, fchild);
4473 ikev2_initiate_delete_ike_sa (vlib_main_t * vm, u64 ispi)
4476 ikev2_main_t *km = &ikev2_main;
4477 ikev2_main_per_thread_data_t *tkm;
4478 ikev2_sa_t *fsa = 0;
4479 ikev2_main_per_thread_data_t *ftkm = 0;
4481 /* Search for the IKE SA */
4482 vec_foreach (tkm, km->per_thread_data)
4488 pool_foreach (sa, tkm->sas) {
4489 if (sa->ispi == ispi)
4501 r = clib_error_return (0, "IKE SA not found");
4505 ikev2_initiate_delete_ike_sa_internal (vm, ftkm, fsa, 1);
4510 ikev2_rekey_child_sa_internal (vlib_main_t * vm, ikev2_sa_t * sa,
4511 ikev2_child_sa_t * csa)
4513 /* Create the Initiator request for create child SA */
4519 bi0 = ikev2_get_new_ike_header_buff (vm, &b0);
4522 ikev2_log_error ("buffer alloc failure");
4526 ike0 = vlib_buffer_get_current (b0);
4527 ike0->version = IKE_VERSION_2;
4528 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
4529 ike0->exchange = IKEV2_EXCHANGE_CREATE_CHILD_SA;
4530 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4531 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4532 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
4533 sa->last_init_msg_id += 1;
4535 ikev2_rekey_t *rekey;
4536 vec_reset_length (sa->rekey);
4537 vec_add2 (sa->rekey, rekey, 1);
4538 ikev2_sa_proposal_t *proposals = vec_dup (csa->i_proposals);
4541 RAND_bytes ((u8 *) & proposals[0].spi, sizeof (proposals[0].spi));
4542 rekey->spi = proposals[0].spi;
4543 rekey->ispi = csa->i_proposals->spi;
4544 len = ikev2_generate_message (b0, sa, ike0, proposals, 0, 0);
4548 if (ikev2_natt_active (sa))
4549 len = ikev2_insert_non_esp_marker (ike0, len);
4550 ikev2_send_ike (vm, &sa->iaddr, &sa->raddr, bi0, len,
4551 ikev2_get_port (sa), ikev2_get_port (sa), sa->sw_if_index);
4552 vec_free (proposals);
4556 ikev2_initiate_rekey_child_sa (vlib_main_t * vm, u32 ispi)
4559 ikev2_main_t *km = &ikev2_main;
4560 ikev2_main_per_thread_data_t *tkm;
4561 ikev2_sa_t *fsa = 0;
4562 ikev2_child_sa_t *fchild = 0;
4564 /* Search for the child SA */
4565 vec_foreach (tkm, km->per_thread_data)
4571 pool_foreach (sa, tkm->sas) {
4572 fchild = ikev2_sa_get_child(sa, ispi, IKEV2_PROTOCOL_ESP, 1);
4582 if (!fchild || !fsa)
4584 r = clib_error_return (0, "Child SA not found");
4589 ikev2_rekey_child_sa_internal (vm, fsa, fchild);
4596 ikev2_sa_sw_if_match (ikev2_sa_t * sa, u32 sw_if_index)
4598 return (sa->sw_if_index == sw_if_index) && sa->is_initiator;
4602 ikev2_sa_del (ikev2_profile_t * p, u32 sw_if_index)
4604 u64 *ispi, *ispi_vec = 0;
4605 ikev2_sa_t *sa, **sap, **sa_vec = 0;
4606 ikev2_main_t *km = &ikev2_main;
4607 ikev2_main_per_thread_data_t *tkm;
4608 p->responder.sw_if_index = ~0;
4610 vec_foreach (tkm, km->per_thread_data)
4613 pool_foreach (sa, tkm->sas) {
4614 if (ikev2_sa_sw_if_match (sa, sw_if_index))
4615 vec_add1 (sa_vec, sa);
4619 vec_foreach (sap, sa_vec)
4621 ikev2_initiate_delete_ike_sa_internal (km->vlib_main, tkm, *sap, 0);
4623 vec_reset_length (sa_vec);
4628 pool_foreach (sa, km->sais) {
4629 if (ikev2_sa_sw_if_match (sa, sw_if_index))
4630 vec_add1 (ispi_vec, sa->ispi);
4634 vec_foreach (ispi, ispi_vec)
4636 ikev2_del_sa_init_from_main (ispi);
4639 vec_free (ispi_vec);
4642 static clib_error_t *
4643 ikev2_sw_interface_add_del (vnet_main_t * vnm, u32 sw_if_index, u32 is_add)
4645 ikev2_main_t *km = &ikev2_main;
4652 pool_foreach (p, km->profiles) {
4653 if (p->responder.sw_if_index == sw_if_index)
4654 ikev2_sa_del (p, sw_if_index);
4661 VNET_SW_INTERFACE_ADD_DEL_FUNCTION (ikev2_sw_interface_add_del);
4664 ikev2_init (vlib_main_t * vm)
4666 ikev2_main_t *km = &ikev2_main;
4667 vlib_thread_main_t *tm = vlib_get_thread_main ();
4670 clib_memset (km, 0, sizeof (ikev2_main_t));
4671 km->vnet_main = vnet_get_main ();
4674 km->liveness_period = IKEV2_LIVENESS_PERIOD_CHECK;
4675 km->liveness_max_retries = IKEV2_LIVENESS_RETRIES;
4676 ikev2_crypto_init (km);
4678 mhash_init_vec_string (&km->profile_index_by_name, sizeof (uword));
4680 vec_validate_aligned (km->per_thread_data, tm->n_vlib_mains - 1,
4681 CLIB_CACHE_LINE_BYTES);
4682 for (thread_id = 0; thread_id < tm->n_vlib_mains; thread_id++)
4684 ikev2_main_per_thread_data_t *ptd =
4685 vec_elt_at_index (km->per_thread_data, thread_id);
4687 ptd->sa_by_rspi = hash_create (0, sizeof (uword));
4689 #if OPENSSL_VERSION_NUMBER >= 0x10100000L
4690 ptd->evp_ctx = EVP_CIPHER_CTX_new ();
4691 ptd->hmac_ctx = HMAC_CTX_new ();
4693 EVP_CIPHER_CTX_init (&ptd->_evp_ctx);
4694 ptd->evp_ctx = &ptd->_evp_ctx;
4695 HMAC_CTX_init (&(ptd->_hmac_ctx));
4696 ptd->hmac_ctx = &ptd->_hmac_ctx;
4700 km->sa_by_ispi = hash_create (0, sizeof (uword));
4701 km->sw_if_indices = hash_create (0, 0);
4702 km->udp_ports = hash_create (0, sizeof (uword));
4704 udp_register_dst_port (vm, IKEV2_PORT, ikev2_node_ip4.index, 1);
4705 udp_register_dst_port (vm, IKEV2_PORT, ikev2_node_ip6.index, 0);
4706 udp_register_dst_port (vm, IKEV2_PORT_NATT, ikev2_node_ip4.index, 1);
4707 udp_register_dst_port (vm, IKEV2_PORT_NATT, ikev2_node_ip6.index, 0);
4709 vlib_punt_hdl_t punt_hdl = vlib_punt_client_register ("ikev2-ip4-natt");
4710 vlib_punt_register (punt_hdl, ipsec_punt_reason[IPSEC_PUNT_IP4_SPI_UDP_0],
4712 ikev2_cli_reference ();
4714 km->log_level = IKEV2_LOG_ERROR;
4715 km->log_class = vlib_log_register_class ("ikev2", 0);
4720 VLIB_INIT_FUNCTION (ikev2_init) =
4722 .runs_after = VLIB_INITS("ipsec_init", "ipsec_punt_init"),
4727 ikev2_mngr_process_child_sa (ikev2_sa_t * sa, ikev2_child_sa_t * csa,
4730 ikev2_main_t *km = &ikev2_main;
4731 ikev2_profile_t *p = 0;
4732 vlib_main_t *vm = km->vlib_main;
4733 f64 now = vlib_time_now (vm);
4736 if (sa->profile_index != ~0)
4737 p = pool_elt_at_index (km->profiles, sa->profile_index);
4739 if (sa->is_initiator && p && csa->time_to_expiration
4740 && now > csa->time_to_expiration)
4742 if (!csa->is_expired || csa->rekey_retries > 0)
4744 ikev2_rekey_child_sa_internal (vm, sa, csa);
4745 csa->time_to_expiration = now + p->handover;
4746 csa->is_expired = 1;
4747 if (csa->rekey_retries == 0)
4749 csa->rekey_retries = 5;
4751 else if (csa->rekey_retries > 0)
4753 csa->rekey_retries--;
4754 ikev2_log_debug ("Rekeying Child SA 0x%x, retries left %d",
4755 csa->i_proposals->spi, csa->rekey_retries);
4756 if (csa->rekey_retries == 0)
4758 csa->rekey_retries = -1;
4765 csa->time_to_expiration = 0;
4766 ikev2_delete_child_sa_internal (vm, sa, csa);
4774 ipip_tunnel_t *ipip = NULL;
4775 u32 sw_if_index = sa->is_tun_itf_set ? sa->tun_itf : ~0;
4776 if (~0 == sw_if_index)
4778 ip46_address_t local_ip;
4779 ip46_address_t remote_ip;
4780 if (sa->is_initiator)
4782 local_ip = to_ip46 (ip_addr_version (&sa->iaddr),
4783 ip_addr_bytes (&sa->iaddr));
4784 remote_ip = to_ip46 (ip_addr_version (&sa->raddr),
4785 ip_addr_bytes (&sa->raddr));
4789 local_ip = to_ip46 (ip_addr_version (&sa->raddr),
4790 ip_addr_bytes (&sa->raddr));
4791 remote_ip = to_ip46 (ip_addr_version (&sa->iaddr),
4792 ip_addr_bytes (&sa->iaddr));
4796 ipip_tunnel_key_t key = {
4799 .transport = IPIP_TRANSPORT_IP4,
4804 ipip = ipip_tunnel_db_find (&key);
4807 sw_if_index = ipip->sw_if_index;
4813 vec_add1 (sas_in, csa->remote_sa_id);
4814 vlib_worker_thread_barrier_sync (vm);
4815 int rv = ipsec_tun_protect_update (sw_if_index, NULL,
4816 csa->local_sa_id, sas_in);
4819 ipsec_sa_unlock_id (ikev2_flip_alternate_sa_bit (csa->remote_sa_id));
4820 vlib_worker_thread_barrier_release (vm);
4827 ikev2_set_log_level (ikev2_log_level_t log_level)
4829 ikev2_main_t *km = &ikev2_main;
4831 if (log_level >= IKEV2_LOG_MAX)
4833 ikev2_log_error ("unknown logging level %d", log_level);
4837 km->log_level = log_level;
4842 ikev2_set_liveness_params (u32 period, u32 max_retries)
4844 ikev2_main_t *km = &ikev2_main;
4846 if (period == 0 || max_retries == 0)
4847 return clib_error_return (0, "invalid args");
4849 km->liveness_period = period;
4850 km->liveness_max_retries = max_retries;
4855 ikev2_profile_natt_disable (u8 * name)
4857 ikev2_profile_t *p = ikev2_profile_index_by_name (name);
4859 return clib_error_return (0, "unknown profile %v", name);
4861 p->natt_disabled = 1;
4866 ikev2_mngr_process_ipsec_sa (ipsec_sa_t * ipsec_sa)
4868 ikev2_main_t *km = &ikev2_main;
4869 vlib_main_t *vm = km->vlib_main;
4870 ikev2_main_per_thread_data_t *tkm;
4871 ikev2_sa_t *fsa = 0;
4872 ikev2_profile_t *p = 0;
4873 ikev2_child_sa_t *fchild = 0;
4874 f64 now = vlib_time_now (vm);
4875 vlib_counter_t counts;
4877 /* Search for the SA and child SA */
4878 vec_foreach (tkm, km->per_thread_data)
4884 pool_foreach (sa, tkm->sas) {
4885 fchild = ikev2_sa_get_child(sa, ipsec_sa->spi, IKEV2_PROTOCOL_ESP, 1);
4894 vlib_get_combined_counter (&ipsec_sa_counters,
4895 ipsec_sa->stat_index, &counts);
4897 if (fsa && fsa->profile_index != ~0 && fsa->is_initiator)
4898 p = pool_elt_at_index (km->profiles, fsa->profile_index);
4900 if (fchild && p && p->lifetime_maxdata)
4902 if (!fchild->is_expired && counts.bytes > p->lifetime_maxdata)
4904 fchild->time_to_expiration = now;
4910 ikev2_process_pending_sa_init_one (ikev2_main_t * km, ikev2_sa_t * sa)
4916 if (ip_address_is_zero (&sa->iaddr))
4918 p = pool_elt_at_index (km->profiles, sa->profile_index);
4919 if (!ikev2_get_if_address (p->responder.sw_if_index,
4920 ip_addr_version (&p->responder.addr),
4924 /* update NAT detection payload */
4926 ikev2_find_ike_notify_payload
4927 ((ike_header_t *) sa->last_sa_init_req_packet_data,
4928 IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP);
4932 ikev2_compute_nat_sha1 (clib_host_to_net_u64 (sa->ispi),
4933 clib_host_to_net_u64 (sa->rspi),
4935 clib_host_to_net_u16 (IKEV2_PORT));
4936 clib_memcpy_fast (np, nat_sha, vec_len (nat_sha));
4941 if (vlib_buffer_alloc (km->vlib_main, &bi0, 1) != 1)
4944 vlib_buffer_t *b = vlib_get_buffer (km->vlib_main, bi0);
4945 clib_memcpy_fast (vlib_buffer_get_current (b),
4946 sa->last_sa_init_req_packet_data,
4947 vec_len (sa->last_sa_init_req_packet_data));
4949 ikev2_send_ike (km->vlib_main, &sa->iaddr, &sa->raddr, bi0,
4950 vec_len (sa->last_sa_init_req_packet_data),
4951 ikev2_get_port (sa), IKEV2_PORT, sa->sw_if_index);
4955 ikev2_process_pending_sa_init (ikev2_main_t * km)
4962 hash_foreach (ispi, sai, km->sa_by_ispi,
4964 sa = pool_elt_at_index (km->sais, sai);
4965 if (sa->init_response_received)
4968 ikev2_process_pending_sa_init_one (km, sa);
4974 ikev2_send_informational_request (ikev2_sa_t * sa)
4976 ikev2_main_t *km = &ikev2_main;
4977 ip_address_t *src, *dst;
4984 bi0 = ikev2_get_new_ike_header_buff (km->vlib_main, &b0);
4987 ikev2_log_error ("buffer alloc failure");
4991 ike0 = vlib_buffer_get_current (b0);
4992 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
4993 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
4994 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
4995 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id);
4997 sa->last_init_msg_id += 1;
4998 len = ikev2_generate_message (b0, sa, ike0, 0, 0, 0);
5002 if (ikev2_natt_active (sa))
5003 len = ikev2_insert_non_esp_marker (ike0, len);
5005 if (sa->is_initiator)
5016 dp = sa->dst_port ? sa->dst_port : ikev2_get_port (sa);
5017 ikev2_send_ike (km->vlib_main, src, dst, bi0, len, ikev2_get_port (sa), dp,
5022 ikev2_disable_dpd (void)
5024 ikev2_main_t *km = &ikev2_main;
5025 km->dpd_disabled = 1;
5028 static_always_inline int
5029 ikev2_mngr_process_responder_sas (ikev2_sa_t * sa)
5031 ikev2_main_t *km = &ikev2_main;
5032 vlib_main_t *vm = km->vlib_main;
5034 if (!sa->keys_generated)
5037 if (sa->liveness_retries >= km->liveness_max_retries)
5040 f64 now = vlib_time_now (vm);
5042 if (sa->liveness_period_check < now)
5044 sa->liveness_retries++;
5045 sa->liveness_period_check = now + km->liveness_period;
5046 ikev2_send_informational_request (sa);
5052 ikev2_mngr_process_fn (vlib_main_t * vm, vlib_node_runtime_t * rt,
5055 ikev2_main_t *km = &ikev2_main;
5056 ipsec_main_t *im = &ipsec_main;
5058 ikev2_child_sa_t *c;
5063 vlib_process_wait_for_event_or_clock (vm, 2);
5064 vlib_process_get_events (vm, NULL);
5066 /* process ike child sas */
5067 ikev2_main_per_thread_data_t *tkm;
5068 vec_foreach (tkm, km->per_thread_data)
5071 u32 *to_be_deleted = 0;
5074 pool_foreach (sa, tkm->sas) {
5075 ikev2_child_sa_t *c;
5078 if (sa->state != IKEV2_STATE_AUTHENTICATED)
5081 if (sa->old_remote_id_present && 0 > sa->old_id_expiration)
5083 sa->old_remote_id_present = 0;
5087 sa->old_id_expiration -= 1;
5089 vec_foreach (c, sa->childs)
5090 ikev2_mngr_process_child_sa(sa, c, del_old_ids);
5092 if (!km->dpd_disabled && ikev2_mngr_process_responder_sas (sa))
5093 vec_add1 (to_be_deleted, sa - tkm->sas);
5097 vec_foreach (sai, to_be_deleted)
5099 sa = pool_elt_at_index (tkm->sas, sai[0]);
5100 u8 reinitiate = (sa->is_initiator && sa->profile_index != ~0);
5101 vec_foreach (c, sa->childs)
5103 ikev2_delete_tunnel_interface (km->vnet_main, sa, c);
5104 ikev2_sa_del_child_sa (sa, c);
5106 ikev2_sa_free_all_vec (sa);
5107 hash_unset (tkm->sa_by_rspi, sa->rspi);
5108 pool_put (tkm->sas, sa);
5112 p = pool_elt_at_index (km->profiles, sa->profile_index);
5115 clib_error_t *e = ikev2_initiate_sa_init (vm, p->name);
5118 ikev2_log_error ("%U", format_clib_error, e);
5119 clib_error_free (e);
5124 vec_free (to_be_deleted);
5127 /* process ipsec sas */
5130 pool_foreach (sa, im->sad) {
5131 ikev2_mngr_process_ipsec_sa(sa);
5135 ikev2_process_pending_sa_init (km);
5141 VLIB_REGISTER_NODE (ikev2_mngr_process_node, static) = {
5142 .function = ikev2_mngr_process_fn,
5143 .type = VLIB_NODE_TYPE_PROCESS,
5145 "ikev2-manager-process",
5148 VLIB_PLUGIN_REGISTER () = {
5149 .version = VPP_BUILD_VER,
5150 .description = "Internet Key Exchange (IKEv2) Protocol",
5155 * fd.io coding-style-patch-verification: ON
5158 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob