2 * Copyright (c) 2020 Doc.ai and/or its affiliates.
3 * Copyright (c) 2020 Cisco and/or its affiliates.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at:
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
17 #include <vlib/vlib.h>
18 #include <vnet/vnet.h>
19 #include <vppinfra/error.h>
20 #include <wireguard/wireguard.h>
22 #include <wireguard/wireguard_send.h>
23 #include <wireguard/wireguard_if.h>
25 #define foreach_wg_input_error \
26 _ (NONE, "No error") \
27 _ (HANDSHAKE_MAC, "Invalid MAC handshake") \
28 _ (HANDSHAKE_RATELIMITED, "Handshake ratelimited") \
29 _ (PEER, "Peer error") \
30 _ (INTERFACE, "Interface error") \
31 _ (DECRYPTION, "Failed during decryption") \
32 _ (KEEPALIVE_SEND, "Failed while sending Keepalive") \
33 _ (HANDSHAKE_SEND, "Failed while sending Handshake") \
34 _ (HANDSHAKE_RECEIVE, "Failed while receiving Handshake") \
35 _ (COOKIE_DECRYPTION, "Failed during Cookie decryption") \
36 _ (COOKIE_SEND, "Failed during sending Cookie") \
37 _ (TOO_BIG, "Packet too big") \
38 _ (UNDEFINED, "Undefined error") \
39 _ (CRYPTO_ENGINE_ERROR, "crypto engine error (packet dropped)")
43 #define _(sym,str) WG_INPUT_ERROR_##sym,
44 foreach_wg_input_error
49 static char *wg_input_error_strings[] = {
50 #define _(sym,string) string,
51 foreach_wg_input_error
67 } wg_input_post_trace_t;
70 format_wg_message_type (u8 * s, va_list * args)
72 message_type_t type = va_arg (*args, message_type_t);
76 #define _(v,a) case MESSAGE_##v: return (format (s, "%s", a));
77 foreach_wg_message_type
80 return (format (s, "unknown"));
83 /* packet trace format function */
85 format_wg_input_trace (u8 * s, va_list * args)
87 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
88 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
90 wg_input_trace_t *t = va_arg (*args, wg_input_trace_t *);
92 s = format (s, "Wireguard input: \n");
93 s = format (s, " Type: %U\n", format_wg_message_type, t->type);
94 s = format (s, " Peer: %d\n", t->peer);
95 s = format (s, " Length: %d\n", t->current_length);
96 s = format (s, " Keepalive: %s", t->is_keepalive ? "true" : "false");
101 /* post-node packet trace format function */
103 format_wg_input_post_trace (u8 *s, va_list *args)
105 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
106 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
108 wg_input_post_trace_t *t = va_arg (*args, wg_input_post_trace_t *);
110 s = format (s, "WG input post: \n");
111 s = format (s, " peer: %u\n", t->peer);
112 s = format (s, " next: %u\n", t->next);
119 WG_INPUT_NEXT_HANDOFF_HANDSHAKE,
120 WG_INPUT_NEXT_HANDOFF_DATA,
121 WG_INPUT_NEXT_IP4_INPUT,
122 WG_INPUT_NEXT_IP6_INPUT,
129 /* set_peer_address (wg_peer_t * peer, ip4_address_t ip4, u16 udp_port) */
133 /* ip46_address_set_ip4 (&peer->dst.addr, &ip4); */
134 /* peer->dst.port = udp_port; */
139 is_ip4_header (u8 *data)
141 return (data[0] >> 4) == 0x4;
144 static wg_input_error_t
145 wg_handshake_process (vlib_main_t *vm, wg_main_t *wmp, vlib_buffer_t *b,
146 u32 node_idx, u8 is_ip4)
148 ASSERT (vm->thread_index == 0);
150 enum cookie_mac_state mac_state;
151 bool packet_needs_cookie;
155 wg_peer_t *peer = NULL;
157 void *current_b_data = vlib_buffer_get_current (b);
159 ip46_address_t src_ip;
163 current_b_data - sizeof (udp_header_t) - sizeof (ip4_header_t);
164 ip46_address_set_ip4 (&src_ip, &iph4->src_address);
169 current_b_data - sizeof (udp_header_t) - sizeof (ip6_header_t);
170 ip46_address_set_ip6 (&src_ip, &iph6->src_address);
173 udp_header_t *uhd = current_b_data - sizeof (udp_header_t);
174 u16 udp_src_port = clib_host_to_net_u16 (uhd->src_port);;
175 u16 udp_dst_port = clib_host_to_net_u16 (uhd->dst_port);;
177 message_header_t *header = current_b_data;
179 if (PREDICT_FALSE (header->type == MESSAGE_HANDSHAKE_COOKIE))
181 message_handshake_cookie_t *packet =
182 (message_handshake_cookie_t *) current_b_data;
184 wg_index_table_lookup (&wmp->index_table, packet->receiver_index);
186 peer = wg_peer_get (*entry);
188 return WG_INPUT_ERROR_PEER;
190 if (!cookie_maker_consume_payload (
191 vm, &peer->cookie_maker, packet->nonce, packet->encrypted_cookie))
192 return WG_INPUT_ERROR_COOKIE_DECRYPTION;
194 return WG_INPUT_ERROR_NONE;
197 u32 len = (header->type == MESSAGE_HANDSHAKE_INITIATION ?
198 sizeof (message_handshake_initiation_t) :
199 sizeof (message_handshake_response_t));
201 message_macs_t *macs = (message_macs_t *)
202 ((u8 *) current_b_data + len - sizeof (*macs));
205 wg_ifs = wg_if_indexes_get_by_port (udp_dst_port);
207 return WG_INPUT_ERROR_INTERFACE;
209 vec_foreach (ii, wg_ifs)
211 wg_if = wg_if_get (*ii);
215 under_load = wg_if_is_under_load (vm, wg_if);
216 mac_state = cookie_checker_validate_macs (
217 vm, &wg_if->cookie_checker, macs, current_b_data, len, under_load,
218 &src_ip, udp_src_port);
219 if (mac_state == INVALID_MAC)
221 wg_if_dec_handshake_num (wg_if);
229 return WG_INPUT_ERROR_HANDSHAKE_MAC;
231 if ((under_load && mac_state == VALID_MAC_WITH_COOKIE)
232 || (!under_load && mac_state == VALID_MAC_BUT_NO_COOKIE))
233 packet_needs_cookie = false;
234 else if (under_load && mac_state == VALID_MAC_BUT_NO_COOKIE)
235 packet_needs_cookie = true;
236 else if (mac_state == VALID_MAC_WITH_COOKIE_BUT_RATELIMITED)
237 return WG_INPUT_ERROR_HANDSHAKE_RATELIMITED;
239 return WG_INPUT_ERROR_HANDSHAKE_MAC;
241 switch (header->type)
243 case MESSAGE_HANDSHAKE_INITIATION:
245 message_handshake_initiation_t *message = current_b_data;
247 if (packet_needs_cookie)
250 if (!wg_send_handshake_cookie (vm, message->sender_index,
251 &wg_if->cookie_checker, macs,
252 &ip_addr_46 (&wg_if->src_ip),
253 wg_if->port, &src_ip, udp_src_port))
254 return WG_INPUT_ERROR_COOKIE_SEND;
256 return WG_INPUT_ERROR_NONE;
260 if (noise_consume_initiation
261 (vm, noise_local_get (wg_if->local_idx), &rp,
262 message->sender_index, message->unencrypted_ephemeral,
263 message->encrypted_static, message->encrypted_timestamp))
265 peer = wg_peer_get (rp->r_peer_idx);
269 return WG_INPUT_ERROR_PEER;
272 // set_peer_address (peer, ip4_src, udp_src_port);
273 if (PREDICT_FALSE (!wg_send_handshake_response (vm, peer)))
275 vlib_node_increment_counter (vm, node_idx,
276 WG_INPUT_ERROR_HANDSHAKE_SEND, 1);
280 wg_peer_update_flags (rp->r_peer_idx, WG_PEER_ESTABLISHED, true);
284 case MESSAGE_HANDSHAKE_RESPONSE:
286 message_handshake_response_t *resp = current_b_data;
288 if (packet_needs_cookie)
290 if (!wg_send_handshake_cookie (vm, resp->sender_index,
291 &wg_if->cookie_checker, macs,
292 &ip_addr_46 (&wg_if->src_ip),
293 wg_if->port, &src_ip, udp_src_port))
294 return WG_INPUT_ERROR_COOKIE_SEND;
296 return WG_INPUT_ERROR_NONE;
299 index_t peeri = INDEX_INVALID;
301 wg_index_table_lookup (&wmp->index_table, resp->receiver_index);
303 if (PREDICT_TRUE (entry != NULL))
306 peer = wg_peer_get (peeri);
307 if (wg_peer_is_dead (peer))
308 return WG_INPUT_ERROR_PEER;
311 return WG_INPUT_ERROR_PEER;
313 if (!noise_consume_response
314 (vm, &peer->remote, resp->sender_index,
315 resp->receiver_index, resp->unencrypted_ephemeral,
316 resp->encrypted_nothing))
318 return WG_INPUT_ERROR_PEER;
321 // set_peer_address (peer, ip4_src, udp_src_port);
322 if (noise_remote_begin_session (vm, &peer->remote))
325 wg_timers_session_derived (peer);
326 wg_timers_handshake_complete (peer);
327 if (PREDICT_FALSE (!wg_send_keepalive (vm, peer)))
329 vlib_node_increment_counter (vm, node_idx,
330 WG_INPUT_ERROR_KEEPALIVE_SEND, 1);
334 wg_peer_update_flags (peeri, WG_PEER_ESTABLISHED, true);
340 return WG_INPUT_ERROR_HANDSHAKE_RECEIVE;
343 wg_timers_any_authenticated_packet_received (peer);
344 wg_timers_any_authenticated_packet_traversal (peer);
345 return WG_INPUT_ERROR_NONE;
348 static_always_inline int
349 wg_input_post_process (vlib_main_t *vm, vlib_buffer_t *b, u16 *next,
350 wg_peer_t *peer, message_data_t *data,
353 next[0] = WG_INPUT_NEXT_PUNT;
355 noise_keypair_t *kp =
356 wg_get_active_keypair (&peer->remote, data->receiver_index);
358 if (!noise_counter_recv (&kp->kp_ctr, data->counter))
363 u16 encr_len = b->current_length - sizeof (message_data_t);
364 u16 decr_len = encr_len - NOISE_AUTHTAG_LEN;
366 vlib_buffer_advance (b, sizeof (message_data_t));
367 b->current_length = decr_len;
368 vnet_buffer_offload_flags_clear (b, VNET_BUFFER_OFFLOAD_F_UDP_CKSUM);
370 /* Keepalive packet has zero length */
373 *is_keepalive = true;
377 wg_timers_data_received (peer);
379 ip46_address_t src_ip;
380 u8 is_ip4_inner = is_ip4_header (vlib_buffer_get_current (b));
383 ip46_address_set_ip4 (
384 &src_ip, &((ip4_header_t *) vlib_buffer_get_current (b))->src_address);
388 ip46_address_set_ip6 (
389 &src_ip, &((ip6_header_t *) vlib_buffer_get_current (b))->src_address);
392 const fib_prefix_t *allowed_ip;
393 bool allowed = false;
396 * we could make this into an ACL, but the expectation
397 * is that there aren't many allowed IPs and thus a linear
398 * walk is faster than an ACL
400 vec_foreach (allowed_ip, peer->allowed_ips)
402 if (fib_prefix_is_cover_addr_46 (allowed_ip, &src_ip))
410 vnet_buffer (b)->sw_if_index[VLIB_RX] = peer->wg_sw_if_index;
412 is_ip4_inner ? WG_INPUT_NEXT_IP4_INPUT : WG_INPUT_NEXT_IP6_INPUT;
418 static_always_inline void
419 wg_input_process_ops (vlib_main_t *vm, vlib_node_runtime_t *node,
420 vnet_crypto_op_t *ops, vlib_buffer_t *b[], u16 *nexts,
423 u32 n_fail, n_ops = vec_len (ops);
424 vnet_crypto_op_t *op = ops;
429 n_fail = n_ops - vnet_crypto_process_ops (vm, op, n_ops);
433 ASSERT (op - ops < n_ops);
435 if (op->status != VNET_CRYPTO_OP_STATUS_COMPLETED)
437 u32 bi = op->user_data;
438 b[bi]->error = node->errors[WG_INPUT_ERROR_DECRYPTION];
439 nexts[bi] = drop_next;
447 wg_prepare_sync_dec_op (vlib_main_t *vm, vnet_crypto_op_t **crypto_ops,
448 u8 *src, u32 src_len, u8 *dst, u8 *aad, u32 aad_len,
449 vnet_crypto_key_index_t key_index, u32 bi, u8 *iv)
451 vnet_crypto_op_t _op, *op = &_op;
454 vec_add2_aligned (crypto_ops[0], op, 1, CLIB_CACHE_LINE_BYTES);
455 vnet_crypto_op_init (op, VNET_CRYPTO_OP_CHACHA20_POLY1305_DEC);
457 op->tag_len = NOISE_AUTHTAG_LEN;
458 op->tag = src + src_len;
459 op->src = !src ? src_ : src;
462 op->key_index = key_index;
464 op->aad_len = aad_len;
467 op->flags |= VNET_CRYPTO_OP_FLAG_HMAC_CHECK;
470 static_always_inline void
471 wg_input_add_to_frame (vlib_main_t *vm, vnet_crypto_async_frame_t *f,
472 u32 key_index, u32 crypto_len, i16 crypto_start_offset,
473 u32 buffer_index, u16 next_node, u8 *iv, u8 *tag,
476 vnet_crypto_async_frame_elt_t *fe;
479 ASSERT (f->n_elts < VNET_CRYPTO_FRAME_SIZE);
482 fe = &f->elts[index];
484 fe->key_index = key_index;
485 fe->crypto_total_length = crypto_len;
486 fe->crypto_start_offset = crypto_start_offset;
490 f->buffer_indices[index] = buffer_index;
491 f->next_node_index[index] = next_node;
494 static_always_inline enum noise_state_crypt
495 wg_input_process (vlib_main_t *vm, wg_per_thread_data_t *ptd,
496 vnet_crypto_op_t **crypto_ops,
497 vnet_crypto_async_frame_t **async_frame, vlib_buffer_t *b,
498 u32 buf_idx, noise_remote_t *r, uint32_t r_idx,
499 uint64_t nonce, uint8_t *src, size_t srclen, uint8_t *dst,
500 u32 from_idx, u8 *iv, f64 time, u8 is_async,
504 enum noise_state_crypt ret = SC_FAILED;
506 if ((kp = wg_get_active_keypair (r, r_idx)) == NULL)
511 /* We confirm that our values are within our tolerances. These values
512 * are the same as the encrypt routine.
514 * kp_ctr isn't locked here, we're happy to accept a racy read. */
515 if (wg_birthdate_has_expired_opt (kp->kp_birthdate, REJECT_AFTER_TIME,
517 kp->kp_ctr.c_recv >= REJECT_AFTER_MESSAGES)
520 /* Decrypt, then validate the counter. We don't want to validate the
521 * counter before decrypting as we do not know the message is authentic
522 * prior to decryption. */
524 clib_memset (iv, 0, 4);
525 clib_memcpy (iv + 4, &nonce, sizeof (nonce));
529 if (NULL == *async_frame ||
530 vnet_crypto_async_frame_is_full (*async_frame))
532 *async_frame = vnet_crypto_async_get_frame (
533 vm, VNET_CRYPTO_OP_CHACHA20_POLY1305_TAG16_AAD0_DEC);
534 /* Save the frame to the list we'll submit at the end */
535 vec_add1 (ptd->async_frames, *async_frame);
538 wg_input_add_to_frame (vm, *async_frame, kp->kp_recv_index, srclen,
539 src - b->data, buf_idx, async_next_node, iv,
540 src + srclen, VNET_CRYPTO_OP_FLAG_HMAC_CHECK);
544 wg_prepare_sync_dec_op (vm, crypto_ops, src, srclen, dst, NULL, 0,
545 kp->kp_recv_index, from_idx, iv);
548 /* If we've received the handshake confirming data packet then move the
549 * next keypair into current. If we do slide the next keypair in, then
550 * we skip the REKEY_AFTER_TIME_RECV check. This is safe to do as a
551 * data packet can't confirm a session that we are an INITIATOR of. */
554 clib_rwlock_writer_lock (&r->r_keypair_lock);
555 if (kp == r->r_next && kp->kp_local_index == r_idx)
557 noise_remote_keypair_free (vm, r, &r->r_previous);
558 r->r_previous = r->r_current;
559 r->r_current = r->r_next;
563 clib_rwlock_writer_unlock (&r->r_keypair_lock);
566 clib_rwlock_writer_unlock (&r->r_keypair_lock);
569 /* Similar to when we encrypt, we want to notify the caller when we
570 * are approaching our tolerances. We notify if:
571 * - we're the initiator and the current keypair is older than
572 * REKEY_AFTER_TIME_RECV seconds. */
573 ret = SC_KEEP_KEY_FRESH;
575 if (kp != NULL && kp->kp_valid && kp->kp_is_initiator &&
576 wg_birthdate_has_expired_opt (kp->kp_birthdate, REKEY_AFTER_TIME_RECV,
586 wg_input_inline (vlib_main_t *vm, vlib_node_runtime_t *node,
587 vlib_frame_t *frame, u8 is_ip4, u16 async_next_node)
589 vnet_main_t *vnm = vnet_get_main ();
590 vnet_interface_main_t *im = &vnm->interface_main;
591 wg_main_t *wmp = &wg_main;
592 wg_per_thread_data_t *ptd =
593 vec_elt_at_index (wmp->per_thread_data, vm->thread_index);
594 u32 *from = vlib_frame_vector_args (frame);
595 u32 n_left_from = frame->n_vectors;
597 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b = bufs;
598 u32 thread_index = vm->thread_index;
599 vnet_crypto_op_t **crypto_ops = &ptd->crypto_ops;
600 const u16 drop_next = WG_INPUT_NEXT_PUNT;
601 message_type_t header_type;
602 vlib_buffer_t *data_bufs[VLIB_FRAME_SIZE];
603 u32 data_bi[VLIB_FRAME_SIZE]; /* buffer index for data */
604 u32 other_bi[VLIB_FRAME_SIZE]; /* buffer index for drop or handoff */
605 u16 other_nexts[VLIB_FRAME_SIZE], *other_next = other_nexts, n_other = 0;
606 u16 data_nexts[VLIB_FRAME_SIZE], *data_next = data_nexts, n_data = 0;
608 const u8 is_async = wg_op_mode_is_set_ASYNC ();
609 vnet_crypto_async_frame_t *async_frame = NULL;
611 vlib_get_buffers (vm, from, bufs, n_left_from);
612 vec_reset_length (ptd->crypto_ops);
613 vec_reset_length (ptd->async_frames);
615 f64 time = clib_time_now (&vm->clib_time) + vm->time_offset;
617 wg_peer_t *peer = NULL;
618 u32 *last_peer_time_idx = NULL;
619 u32 last_rec_idx = ~0;
621 bool is_keepalive = false;
622 u32 *peer_idx = NULL;
624 while (n_left_from > 0)
629 vlib_prefetch_buffer_header (b[2], LOAD);
630 p = vlib_buffer_get_current (b[1]);
631 CLIB_PREFETCH (p, CLIB_CACHE_LINE_BYTES, LOAD);
632 CLIB_PREFETCH (vlib_buffer_get_tail (b[1]), CLIB_CACHE_LINE_BYTES,
636 other_next[n_other] = WG_INPUT_NEXT_PUNT;
637 data_nexts[n_data] = WG_INPUT_N_NEXT;
640 ((message_header_t *) vlib_buffer_get_current (b[0]))->type;
642 if (PREDICT_TRUE (header_type == MESSAGE_DATA))
644 message_data_t *data = vlib_buffer_get_current (b[0]);
645 u8 *iv_data = b[0]->pre_data;
646 u32 buf_idx = from[b - bufs];
647 peer_idx = wg_index_table_lookup (&wmp->index_table,
648 data->receiver_index);
650 if (data->receiver_index != last_rec_idx)
652 peer_idx = wg_index_table_lookup (&wmp->index_table,
653 data->receiver_index);
654 if (PREDICT_TRUE (peer_idx != NULL))
656 peer = wg_peer_get (*peer_idx);
658 last_rec_idx = data->receiver_index;
661 if (PREDICT_FALSE (!peer_idx))
663 other_next[n_other] = WG_INPUT_NEXT_ERROR;
664 b[0]->error = node->errors[WG_INPUT_ERROR_PEER];
665 other_bi[n_other] = buf_idx;
670 if (PREDICT_FALSE (~0 == peer->input_thread_index))
672 /* this is the first packet to use this peer, claim the peer
675 clib_atomic_cmp_and_swap (&peer->input_thread_index, ~0,
676 wg_peer_assign_thread (thread_index));
679 if (PREDICT_TRUE (thread_index != peer->input_thread_index))
681 other_next[n_other] = WG_INPUT_NEXT_HANDOFF_DATA;
682 other_bi[n_other] = buf_idx;
687 u16 encr_len = b[0]->current_length - sizeof (message_data_t);
688 u16 decr_len = encr_len - NOISE_AUTHTAG_LEN;
689 if (PREDICT_FALSE (decr_len >= WG_DEFAULT_DATA_SIZE))
691 b[0]->error = node->errors[WG_INPUT_ERROR_TOO_BIG];
692 other_bi[n_other] = buf_idx;
697 enum noise_state_crypt state_cr = wg_input_process (
698 vm, ptd, crypto_ops, &async_frame, b[0], buf_idx, &peer->remote,
699 data->receiver_index, data->counter, data->encrypted_data,
700 decr_len, data->encrypted_data, n_data, iv_data, time, is_async,
703 if (PREDICT_FALSE (state_cr == SC_FAILED))
705 wg_peer_update_flags (*peer_idx, WG_PEER_ESTABLISHED, false);
706 other_next[n_other] = WG_INPUT_NEXT_ERROR;
707 b[0]->error = node->errors[WG_INPUT_ERROR_DECRYPTION];
708 other_bi[n_other] = buf_idx;
714 data_bufs[n_data] = b[0];
715 data_bi[n_data] = buf_idx;
723 if (PREDICT_FALSE (state_cr == SC_CONN_RESET))
725 wg_timers_handshake_complete (peer);
728 else if (PREDICT_FALSE (state_cr == SC_KEEP_KEY_FRESH))
730 wg_send_handshake_from_mt (*peer_idx, false);
733 else if (PREDICT_TRUE (state_cr == SC_OK))
740 /* Handshake packets should be processed in main thread */
741 if (thread_index != 0)
743 other_next[n_other] = WG_INPUT_NEXT_HANDOFF_HANDSHAKE;
744 other_bi[n_other] = from[b - bufs];
749 wg_input_error_t ret =
750 wg_handshake_process (vm, wmp, b[0], node->node_index, is_ip4);
751 if (ret != WG_INPUT_ERROR_NONE)
753 other_next[n_other] = WG_INPUT_NEXT_ERROR;
754 b[0]->error = node->errors[ret];
755 other_bi[n_other] = from[b - bufs];
760 other_bi[n_other] = from[b - bufs];
766 if (PREDICT_FALSE ((node->flags & VLIB_NODE_FLAG_TRACE) &&
767 (b[0]->flags & VLIB_BUFFER_IS_TRACED)))
769 wg_input_trace_t *t = vlib_add_trace (vm, node, b[0], sizeof (*t));
770 t->type = header_type;
771 t->current_length = b[0]->current_length;
772 t->is_keepalive = is_keepalive;
773 t->peer = peer_idx ? *peer_idx : INDEX_INVALID;
781 /* decrypt packets */
782 wg_input_process_ops (vm, node, ptd->crypto_ops, data_bufs, data_nexts,
785 /* process after decryption */
787 n_left_from = n_data;
789 last_peer_time_idx = NULL;
791 while (n_left_from > 0)
793 bool is_keepalive = false;
794 u32 *peer_idx = NULL;
796 if (PREDICT_FALSE (data_next[0] == WG_INPUT_NEXT_PUNT))
803 vlib_prefetch_buffer_header (b[2], LOAD);
804 p = vlib_buffer_get_current (b[1]);
805 CLIB_PREFETCH (p, CLIB_CACHE_LINE_BYTES, LOAD);
806 CLIB_PREFETCH (vlib_buffer_get_tail (b[1]), CLIB_CACHE_LINE_BYTES,
810 message_data_t *data = vlib_buffer_get_current (b[0]);
812 if (data->receiver_index != last_rec_idx)
815 wg_index_table_lookup (&wmp->index_table, data->receiver_index);
816 peer = wg_peer_get (*peer_idx);
817 last_rec_idx = data->receiver_index;
820 if (PREDICT_FALSE (wg_input_post_process (vm, b[0], data_next, peer,
821 data, &is_keepalive) < 0))
824 if (PREDICT_FALSE (peer_idx && (last_peer_time_idx != peer_idx)))
826 wg_timers_any_authenticated_packet_received_opt (peer, time);
827 wg_timers_any_authenticated_packet_traversal (peer);
828 last_peer_time_idx = peer_idx;
831 vlib_increment_combined_counter (im->combined_sw_if_counters +
832 VNET_INTERFACE_COUNTER_RX,
833 vm->thread_index, peer->wg_sw_if_index,
834 1 /* packets */, b[0]->current_length);
837 if (PREDICT_FALSE ((node->flags & VLIB_NODE_FLAG_TRACE) &&
838 (b[0]->flags & VLIB_BUFFER_IS_TRACED)))
840 wg_input_trace_t *t = vlib_add_trace (vm, node, b[0], sizeof (*t));
841 t->type = header_type;
842 t->current_length = b[0]->current_length;
843 t->is_keepalive = is_keepalive;
844 t->peer = peer_idx ? *peer_idx : INDEX_INVALID;
854 /* submit all of the open frames */
855 vnet_crypto_async_frame_t **async_frame;
856 vec_foreach (async_frame, ptd->async_frames)
859 vnet_crypto_async_submit_open_frame (vm, *async_frame) < 0))
861 u32 n_drop = (*async_frame)->n_elts;
862 u32 *bi = (*async_frame)->buffer_indices;
866 other_bi[index] = bi[0];
867 vlib_buffer_t *b = vlib_get_buffer (vm, bi[0]);
868 other_nexts[index] = drop_next;
869 b->error = node->errors[WG_INPUT_ERROR_CRYPTO_ENGINE_ERROR];
873 n_other += (*async_frame)->n_elts;
875 vnet_crypto_async_reset_frame (*async_frame);
876 vnet_crypto_async_free_frame (vm, *async_frame);
881 /* enqueue other bufs */
883 vlib_buffer_enqueue_to_next (vm, node, other_bi, other_next, n_other);
885 /* enqueue data bufs */
887 vlib_buffer_enqueue_to_next (vm, node, data_bi, data_nexts, n_data);
889 return frame->n_vectors;
893 wg_input_post (vlib_main_t *vm, vlib_node_runtime_t *node, vlib_frame_t *frame)
895 vnet_main_t *vnm = vnet_get_main ();
896 vnet_interface_main_t *im = &vnm->interface_main;
897 wg_main_t *wmp = &wg_main;
898 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b = bufs;
899 u16 nexts[VLIB_FRAME_SIZE], *next = nexts;
900 u32 *from = vlib_frame_vector_args (frame);
901 u32 n_left = frame->n_vectors;
902 wg_peer_t *peer = NULL;
903 u32 *peer_idx = NULL;
904 u32 *last_peer_time_idx = NULL;
905 u32 last_rec_idx = ~0;
906 f64 time = clib_time_now (&vm->clib_time) + vm->time_offset;
908 vlib_get_buffers (vm, from, b, n_left);
912 vlib_prefetch_buffer_header (b[0], LOAD);
913 vlib_prefetch_buffer_header (b[1], LOAD);
921 vlib_prefetch_buffer_header (b[2], LOAD);
922 p = vlib_buffer_get_current (b[1]);
923 CLIB_PREFETCH (p, CLIB_CACHE_LINE_BYTES, LOAD);
926 bool is_keepalive = false;
927 message_data_t *data = vlib_buffer_get_current (b[0]);
929 if (data->receiver_index != last_rec_idx)
932 wg_index_table_lookup (&wmp->index_table, data->receiver_index);
934 peer = wg_peer_get (*peer_idx);
935 last_rec_idx = data->receiver_index;
938 if (PREDICT_TRUE (peer != NULL))
940 if (PREDICT_FALSE (wg_input_post_process (vm, b[0], next, peer, data,
946 next[0] = WG_INPUT_NEXT_PUNT;
950 if (PREDICT_FALSE (peer_idx && (last_peer_time_idx != peer_idx)))
952 wg_timers_any_authenticated_packet_received_opt (peer, time);
953 wg_timers_any_authenticated_packet_traversal (peer);
954 last_peer_time_idx = peer_idx;
957 vlib_increment_combined_counter (im->combined_sw_if_counters +
958 VNET_INTERFACE_COUNTER_RX,
959 vm->thread_index, peer->wg_sw_if_index,
960 1 /* packets */, b[0]->current_length);
963 if (PREDICT_FALSE ((node->flags & VLIB_NODE_FLAG_TRACE) &&
964 (b[0]->flags & VLIB_BUFFER_IS_TRACED)))
966 wg_input_post_trace_t *t =
967 vlib_add_trace (vm, node, b[0], sizeof (*t));
969 t->peer = peer_idx ? *peer_idx : INDEX_INVALID;
977 vlib_buffer_enqueue_to_next (vm, node, from, nexts, frame->n_vectors);
978 return frame->n_vectors;
981 VLIB_NODE_FN (wg4_input_node)
982 (vlib_main_t *vm, vlib_node_runtime_t *node, vlib_frame_t *frame)
984 return wg_input_inline (vm, node, frame, /* is_ip4 */ 1,
985 wg_decrypt_async_next.wg4_post_next);
988 VLIB_NODE_FN (wg6_input_node)
989 (vlib_main_t *vm, vlib_node_runtime_t *node, vlib_frame_t *frame)
991 return wg_input_inline (vm, node, frame, /* is_ip4 */ 0,
992 wg_decrypt_async_next.wg6_post_next);
995 VLIB_NODE_FN (wg4_input_post_node)
996 (vlib_main_t *vm, vlib_node_runtime_t *node, vlib_frame_t *from_frame)
998 return wg_input_post (vm, node, from_frame);
1001 VLIB_NODE_FN (wg6_input_post_node)
1002 (vlib_main_t *vm, vlib_node_runtime_t *node, vlib_frame_t *from_frame)
1004 return wg_input_post (vm, node, from_frame);
1008 VLIB_REGISTER_NODE (wg4_input_node) =
1010 .name = "wg4-input",
1011 .vector_size = sizeof (u32),
1012 .format_trace = format_wg_input_trace,
1013 .type = VLIB_NODE_TYPE_INTERNAL,
1014 .n_errors = ARRAY_LEN (wg_input_error_strings),
1015 .error_strings = wg_input_error_strings,
1016 .n_next_nodes = WG_INPUT_N_NEXT,
1017 /* edit / add dispositions here */
1019 [WG_INPUT_NEXT_HANDOFF_HANDSHAKE] = "wg4-handshake-handoff",
1020 [WG_INPUT_NEXT_HANDOFF_DATA] = "wg4-input-data-handoff",
1021 [WG_INPUT_NEXT_IP4_INPUT] = "ip4-input-no-checksum",
1022 [WG_INPUT_NEXT_IP6_INPUT] = "ip6-input",
1023 [WG_INPUT_NEXT_PUNT] = "error-punt",
1024 [WG_INPUT_NEXT_ERROR] = "error-drop",
1028 VLIB_REGISTER_NODE (wg6_input_node) =
1030 .name = "wg6-input",
1031 .vector_size = sizeof (u32),
1032 .format_trace = format_wg_input_trace,
1033 .type = VLIB_NODE_TYPE_INTERNAL,
1034 .n_errors = ARRAY_LEN (wg_input_error_strings),
1035 .error_strings = wg_input_error_strings,
1036 .n_next_nodes = WG_INPUT_N_NEXT,
1037 /* edit / add dispositions here */
1039 [WG_INPUT_NEXT_HANDOFF_HANDSHAKE] = "wg6-handshake-handoff",
1040 [WG_INPUT_NEXT_HANDOFF_DATA] = "wg6-input-data-handoff",
1041 [WG_INPUT_NEXT_IP4_INPUT] = "ip4-input-no-checksum",
1042 [WG_INPUT_NEXT_IP6_INPUT] = "ip6-input",
1043 [WG_INPUT_NEXT_PUNT] = "error-punt",
1044 [WG_INPUT_NEXT_ERROR] = "error-drop",
1048 VLIB_REGISTER_NODE (wg4_input_post_node) = {
1049 .name = "wg4-input-post-node",
1050 .vector_size = sizeof (u32),
1051 .format_trace = format_wg_input_post_trace,
1052 .type = VLIB_NODE_TYPE_INTERNAL,
1053 .sibling_of = "wg4-input",
1055 .n_errors = ARRAY_LEN (wg_input_error_strings),
1056 .error_strings = wg_input_error_strings,
1059 VLIB_REGISTER_NODE (wg6_input_post_node) = {
1060 .name = "wg6-input-post-node",
1061 .vector_size = sizeof (u32),
1062 .format_trace = format_wg_input_post_trace,
1063 .type = VLIB_NODE_TYPE_INTERNAL,
1064 .sibling_of = "wg6-input",
1066 .n_errors = ARRAY_LEN (wg_input_error_strings),
1067 .error_strings = wg_input_error_strings,
1073 * fd.io coding-style-patch-verification: ON
1076 * eval: (c-set-style "gnu")