2 * Copyright (c) 2015 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vlib/vlib.h>
17 #include <vnet/vnet.h>
18 #include <vnet/pg/pg.h>
19 #include <vppinfra/error.h>
20 #include <vppinfra/random.h>
21 #include <vnet/udp/udp.h>
22 #include <vnet/ipsec/ipsec.h>
23 #include <vnet/ipsec/ikev2.h>
24 #include <vnet/ipsec/ikev2_priv.h>
25 #include <openssl/sha.h>
27 ikev2_main_t ikev2_main;
29 static int ikev2_delete_tunnel_interface (vnet_main_t * vnm,
31 ikev2_child_sa_t * child);
33 #define ikev2_set_state(sa, v) do { \
35 clib_warning("sa state changed to " #v); \
45 format_ikev2_trace (u8 * s, va_list * args)
47 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
48 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
49 ikev2_trace_t *t = va_arg (*args, ikev2_trace_t *);
51 s = format (s, "ikev2: sw_if_index %d, next index %d",
52 t->sw_if_index, t->next_index);
56 static vlib_node_registration_t ikev2_node;
58 #define foreach_ikev2_error \
59 _(PROCESSED, "IKEv2 packets processed") \
60 _(IKE_SA_INIT_RETRANSMIT, "IKE_SA_INIT retransmit ") \
61 _(IKE_SA_INIT_IGNORE, "IKE_SA_INIT ignore (IKE SA already auth)") \
62 _(IKE_REQ_RETRANSMIT, "IKE request retransmit") \
63 _(IKE_REQ_IGNORE, "IKE request ignore (old msgid)") \
64 _(NOT_IKEV2, "Non IKEv2 packets received")
68 #define _(sym,str) IKEV2_ERROR_##sym,
74 static char *ikev2_error_strings[] = {
75 #define _(sym,string) string,
82 IKEV2_NEXT_IP4_LOOKUP,
83 IKEV2_NEXT_ERROR_DROP,
87 static ikev2_sa_transform_t *
88 ikev2_find_transform_data (ikev2_sa_transform_t * t)
90 ikev2_main_t *km = &ikev2_main;
91 ikev2_sa_transform_t *td;
93 vec_foreach (td, km->supported_transforms)
95 if (td->type != t->type)
98 if (td->transform_id != t->transform_id)
101 if (td->type == IKEV2_TRANSFORM_TYPE_ENCR)
103 if (vec_len (t->attrs) != 4 || t->attrs[0] != 0x80
104 || t->attrs[1] != 14)
107 if (((t->attrs[2] << 8 | t->attrs[3]) / 8) != td->key_len)
115 static ikev2_sa_proposal_t *
116 ikev2_select_proposal (ikev2_sa_proposal_t * proposals,
117 ikev2_protocol_id_t prot_id)
119 ikev2_sa_proposal_t *rv = 0;
120 ikev2_sa_proposal_t *proposal;
121 ikev2_sa_transform_t *transform, *new_t;
122 u8 mandatory_bitmap, optional_bitmap;
124 if (prot_id == IKEV2_PROTOCOL_IKE)
126 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_ENCR) |
127 (1 << IKEV2_TRANSFORM_TYPE_PRF) |
128 (1 << IKEV2_TRANSFORM_TYPE_INTEG) | (1 << IKEV2_TRANSFORM_TYPE_DH);
129 optional_bitmap = mandatory_bitmap;
131 else if (prot_id == IKEV2_PROTOCOL_ESP)
133 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_ENCR) |
134 (1 << IKEV2_TRANSFORM_TYPE_ESN);
135 optional_bitmap = mandatory_bitmap |
136 (1 << IKEV2_TRANSFORM_TYPE_INTEG) | (1 << IKEV2_TRANSFORM_TYPE_DH);
138 else if (prot_id == IKEV2_PROTOCOL_AH)
140 mandatory_bitmap = (1 << IKEV2_TRANSFORM_TYPE_INTEG) |
141 (1 << IKEV2_TRANSFORM_TYPE_ESN);
142 optional_bitmap = mandatory_bitmap | (1 << IKEV2_TRANSFORM_TYPE_DH);
147 vec_add2 (rv, proposal, 1);
149 vec_foreach (proposal, proposals)
152 if (proposal->protocol_id != prot_id)
155 vec_foreach (transform, proposal->transforms)
157 if ((1 << transform->type) & bitmap)
160 if (ikev2_find_transform_data (transform))
162 bitmap |= 1 << transform->type;
163 vec_add2 (rv->transforms, new_t, 1);
164 clib_memcpy (new_t, transform, sizeof (*new_t));
165 new_t->attrs = vec_dup (transform->attrs);
169 clib_warning ("bitmap is %x mandatory is %x optional is %x",
170 bitmap, mandatory_bitmap, optional_bitmap);
172 if ((bitmap & mandatory_bitmap) == mandatory_bitmap &&
173 (bitmap & ~optional_bitmap) == 0)
175 rv->proposal_num = proposal->proposal_num;
176 rv->protocol_id = proposal->protocol_id;
177 RAND_bytes ((u8 *) & rv->spi, sizeof (rv->spi));
182 vec_free (rv->transforms);
191 ikev2_sa_transform_t *
192 ikev2_sa_get_td_for_type (ikev2_sa_proposal_t * p,
193 ikev2_transform_type_t type)
195 ikev2_sa_transform_t *t;
200 vec_foreach (t, p->transforms)
203 return ikev2_find_transform_data (t);
209 ikev2_sa_get_child (ikev2_sa_t * sa, u32 spi, ikev2_protocol_id_t prot_id,
213 vec_foreach (c, sa->childs)
215 ikev2_sa_proposal_t *proposal =
216 by_initiator ? &c->i_proposals[0] : &c->r_proposals[0];
217 if (proposal && proposal->spi == spi && proposal->protocol_id == prot_id)
225 ikev2_sa_free_proposal_vector (ikev2_sa_proposal_t ** v)
227 ikev2_sa_proposal_t *p;
228 ikev2_sa_transform_t *t;
235 vec_foreach (t, p->transforms)
239 vec_free (p->transforms);
245 ikev2_sa_free_all_child_sa (ikev2_child_sa_t ** childs)
248 vec_foreach (c, *childs)
250 ikev2_sa_free_proposal_vector (&c->r_proposals);
251 ikev2_sa_free_proposal_vector (&c->i_proposals);
262 ikev2_sa_del_child_sa (ikev2_sa_t * sa, ikev2_child_sa_t * child)
264 ikev2_sa_free_proposal_vector (&child->r_proposals);
265 ikev2_sa_free_proposal_vector (&child->i_proposals);
266 vec_free (child->sk_ai);
267 vec_free (child->sk_ar);
268 vec_free (child->sk_ei);
269 vec_free (child->sk_er);
271 vec_del1 (sa->childs, child - sa->childs);
275 ikev2_sa_free_all_vec (ikev2_sa_t * sa)
277 vec_free (sa->i_nonce);
278 vec_free (sa->i_dh_data);
279 vec_free (sa->dh_shared_key);
280 vec_free (sa->dh_private_key);
282 ikev2_sa_free_proposal_vector (&sa->r_proposals);
283 ikev2_sa_free_proposal_vector (&sa->i_proposals);
286 vec_free (sa->sk_ai);
287 vec_free (sa->sk_ar);
288 vec_free (sa->sk_ei);
289 vec_free (sa->sk_er);
290 vec_free (sa->sk_pi);
291 vec_free (sa->sk_pr);
293 vec_free (sa->i_id.data);
294 vec_free (sa->i_auth.data);
295 vec_free (sa->r_id.data);
296 vec_free (sa->r_auth.data);
298 EVP_PKEY_free (sa->r_auth.key);
302 ikev2_sa_free_all_child_sa (&sa->childs);
306 ikev2_delete_sa (ikev2_sa_t * sa)
308 ikev2_main_t *km = &ikev2_main;
309 u32 thread_index = vlib_get_thread_index ();
312 ikev2_sa_free_all_vec (sa);
314 p = hash_get (km->per_thread_data[thread_index].sa_by_rspi, sa->rspi);
317 hash_unset (km->per_thread_data[thread_index].sa_by_rspi, sa->rspi);
318 pool_put (km->per_thread_data[thread_index].sas, sa);
323 ikev2_generate_sa_init_data (ikev2_sa_t * sa)
325 ikev2_sa_transform_t *t = 0, *t2;
326 ikev2_main_t *km = &ikev2_main;
328 if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
333 /* check if received DH group is on our list of supported groups */
334 vec_foreach (t2, km->supported_transforms)
336 if (t2->type == IKEV2_TRANSFORM_TYPE_DH && sa->dh_group == t2->dh_type)
345 clib_warning ("unknown dh data group %u (data len %u)", sa->dh_group,
346 vec_len (sa->i_dh_data));
347 sa->dh_group = IKEV2_TRANSFORM_DH_TYPE_NONE;
351 if (sa->is_initiator)
354 RAND_bytes ((u8 *) & sa->ispi, 8);
357 sa->i_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
358 RAND_bytes ((u8 *) sa->i_nonce, IKEV2_NONCE_SIZE);
363 RAND_bytes ((u8 *) & sa->rspi, 8);
366 sa->r_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
367 RAND_bytes ((u8 *) sa->r_nonce, IKEV2_NONCE_SIZE);
370 /* generate dh keys */
371 ikev2_generate_dh (sa, t);
376 ikev2_complete_sa_data (ikev2_sa_t * sa, ikev2_sa_t * sai)
378 ikev2_sa_transform_t *t = 0, *t2;
379 ikev2_main_t *km = &ikev2_main;
382 /*move some data to the new SA */
383 #define _(A) ({void* __tmp__ = (A); (A) = 0; __tmp__;})
384 sa->i_nonce = _(sai->i_nonce);
385 sa->i_dh_data = _(sai->i_dh_data);
386 sa->dh_private_key = _(sai->dh_private_key);
387 sa->iaddr.as_u32 = sai->iaddr.as_u32;
388 sa->raddr.as_u32 = sai->raddr.as_u32;
389 sa->is_initiator = sai->is_initiator;
390 sa->profile = sai->profile;
391 sa->i_id.type = sai->i_id.type;
392 sa->i_id.data = _(sai->i_id.data);
393 sa->i_auth.method = sai->i_auth.method;
394 sa->i_auth.hex = sai->i_auth.hex;
395 sa->i_auth.data = _(sai->i_auth.data);
396 sa->i_auth.key = _(sai->i_auth.key);
397 sa->last_sa_init_req_packet_data = _(sai->last_sa_init_req_packet_data);
398 sa->childs = _(sai->childs);
402 if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
407 /* check if received DH group is on our list of supported groups */
408 vec_foreach (t2, km->supported_transforms)
410 if (t2->type == IKEV2_TRANSFORM_TYPE_DH && sa->dh_group == t2->dh_type)
419 clib_warning ("unknown dh data group %u (data len %u)", sa->dh_group,
420 vec_len (sa->i_dh_data));
421 sa->dh_group = IKEV2_TRANSFORM_DH_TYPE_NONE;
426 /* generate dh keys */
427 ikev2_complete_dh (sa, t);
432 ikev2_calc_keys (ikev2_sa_t * sa)
435 /* calculate SKEYSEED = prf(Ni | Nr, g^ir) */
438 ikev2_sa_transform_t *tr_encr, *tr_prf, *tr_integ;
440 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
442 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
444 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
446 vec_append (s, sa->i_nonce);
447 vec_append (s, sa->r_nonce);
448 skeyseed = ikev2_calc_prf (tr_prf, s, sa->dh_shared_key);
450 /* Calculate S = Ni | Nr | SPIi | SPIr */
452 vec_add2 (s, tmp, 2 * sizeof (*spi));
454 spi[0] = clib_host_to_net_u64 (sa->ispi);
455 spi[1] = clib_host_to_net_u64 (sa->rspi);
457 /* calculate PRFplus */
459 int len = tr_prf->key_trunc + /* SK_d */
460 tr_integ->key_len * 2 + /* SK_ai, SK_ar */
461 tr_encr->key_len * 2 + /* SK_ei, SK_er */
462 tr_prf->key_len * 2; /* SK_pi, SK_pr */
464 keymat = ikev2_calc_prfplus (tr_prf, skeyseed, s, len);
471 sa->sk_d = vec_new (u8, tr_prf->key_trunc);
472 clib_memcpy (sa->sk_d, keymat + pos, tr_prf->key_trunc);
473 pos += tr_prf->key_trunc;
476 sa->sk_ai = vec_new (u8, tr_integ->key_len);
477 clib_memcpy (sa->sk_ai, keymat + pos, tr_integ->key_len);
478 pos += tr_integ->key_len;
481 sa->sk_ar = vec_new (u8, tr_integ->key_len);
482 clib_memcpy (sa->sk_ar, keymat + pos, tr_integ->key_len);
483 pos += tr_integ->key_len;
486 sa->sk_ei = vec_new (u8, tr_encr->key_len);
487 clib_memcpy (sa->sk_ei, keymat + pos, tr_encr->key_len);
488 pos += tr_encr->key_len;
491 sa->sk_er = vec_new (u8, tr_encr->key_len);
492 clib_memcpy (sa->sk_er, keymat + pos, tr_encr->key_len);
493 pos += tr_encr->key_len;
496 sa->sk_pi = vec_new (u8, tr_prf->key_len);
497 clib_memcpy (sa->sk_pi, keymat + pos, tr_prf->key_len);
498 pos += tr_prf->key_len;
501 sa->sk_pr = vec_new (u8, tr_prf->key_len);
502 clib_memcpy (sa->sk_pr, keymat + pos, tr_prf->key_len);
503 pos += tr_prf->key_len;
509 ikev2_calc_child_keys (ikev2_sa_t * sa, ikev2_child_sa_t * child)
512 ikev2_sa_transform_t *tr_prf, *ctr_encr, *ctr_integ;
514 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
516 ikev2_sa_get_td_for_type (child->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
518 ikev2_sa_get_td_for_type (child->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
520 vec_append (s, sa->i_nonce);
521 vec_append (s, sa->r_nonce);
522 /* calculate PRFplus */
524 int len = ctr_encr->key_len * 2 + ctr_integ->key_len * 2;
526 keymat = ikev2_calc_prfplus (tr_prf, sa->sk_d, s, len);
531 child->sk_ei = vec_new (u8, ctr_encr->key_len);
532 clib_memcpy (child->sk_ei, keymat + pos, ctr_encr->key_len);
533 pos += ctr_encr->key_len;
536 child->sk_ai = vec_new (u8, ctr_integ->key_len);
537 clib_memcpy (child->sk_ai, keymat + pos, ctr_integ->key_len);
538 pos += ctr_integ->key_len;
541 child->sk_er = vec_new (u8, ctr_encr->key_len);
542 clib_memcpy (child->sk_er, keymat + pos, ctr_encr->key_len);
543 pos += ctr_encr->key_len;
546 child->sk_ar = vec_new (u8, ctr_integ->key_len);
547 clib_memcpy (child->sk_ar, keymat + pos, ctr_integ->key_len);
548 pos += ctr_integ->key_len;
556 ikev2_process_sa_init_req (vlib_main_t * vm, ikev2_sa_t * sa,
560 u32 len = clib_net_to_host_u32 (ike->length);
561 u8 payload = ike->nextpayload;
563 clib_warning ("ispi %lx rspi %lx nextpayload %x version %x "
564 "exchange %x flags %x msgid %x length %u",
565 clib_net_to_host_u64 (ike->ispi),
566 clib_net_to_host_u64 (ike->rspi),
567 payload, ike->version,
568 ike->exchange, ike->flags,
569 clib_net_to_host_u32 (ike->msgid), len);
571 sa->ispi = clib_net_to_host_u64 (ike->ispi);
573 /* store whole IKE payload - needed for PSK auth */
574 vec_free (sa->last_sa_init_req_packet_data);
575 vec_add (sa->last_sa_init_req_packet_data, ike, len);
577 while (p < len && payload != IKEV2_PAYLOAD_NONE)
579 ike_payload_header_t *ikep = (ike_payload_header_t *) & ike->payload[p];
580 u32 plen = clib_net_to_host_u16 (ikep->length);
582 if (plen < sizeof (ike_payload_header_t))
585 if (payload == IKEV2_PAYLOAD_SA)
587 ikev2_sa_free_proposal_vector (&sa->i_proposals);
588 sa->i_proposals = ikev2_parse_sa_payload (ikep);
590 else if (payload == IKEV2_PAYLOAD_KE)
592 ike_ke_payload_header_t *ke = (ike_ke_payload_header_t *) ikep;
593 sa->dh_group = clib_net_to_host_u16 (ke->dh_group);
594 vec_free (sa->i_dh_data);
595 vec_add (sa->i_dh_data, ke->payload, plen - sizeof (*ke));
597 else if (payload == IKEV2_PAYLOAD_NONCE)
599 vec_free (sa->i_nonce);
600 vec_add (sa->i_nonce, ikep->payload, plen - sizeof (*ikep));
602 else if (payload == IKEV2_PAYLOAD_NOTIFY)
604 ikev2_notify_t *n = ikev2_parse_notify_payload (ikep);
607 else if (payload == IKEV2_PAYLOAD_VENDOR)
609 ikev2_parse_vendor_payload (ikep);
613 clib_warning ("unknown payload %u flags %x length %u", payload,
615 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
617 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
618 sa->unsupported_cp = payload;
623 payload = ikep->nextpayload;
627 ikev2_set_state (sa, IKEV2_STATE_SA_INIT);
631 ikev2_process_sa_init_resp (vlib_main_t * vm, ikev2_sa_t * sa,
635 u32 len = clib_net_to_host_u32 (ike->length);
636 u8 payload = ike->nextpayload;
638 clib_warning ("ispi %lx rspi %lx nextpayload %x version %x "
639 "exchange %x flags %x msgid %x length %u",
640 clib_net_to_host_u64 (ike->ispi),
641 clib_net_to_host_u64 (ike->rspi),
642 payload, ike->version,
643 ike->exchange, ike->flags,
644 clib_net_to_host_u32 (ike->msgid), len);
646 sa->ispi = clib_net_to_host_u64 (ike->ispi);
647 sa->rspi = clib_net_to_host_u64 (ike->rspi);
649 /* store whole IKE payload - needed for PSK auth */
650 vec_free (sa->last_sa_init_res_packet_data);
651 vec_add (sa->last_sa_init_res_packet_data, ike, len);
653 while (p < len && payload != IKEV2_PAYLOAD_NONE)
655 ike_payload_header_t *ikep = (ike_payload_header_t *) & ike->payload[p];
656 u32 plen = clib_net_to_host_u16 (ikep->length);
658 if (plen < sizeof (ike_payload_header_t))
661 if (payload == IKEV2_PAYLOAD_SA)
663 ikev2_sa_free_proposal_vector (&sa->r_proposals);
664 sa->r_proposals = ikev2_parse_sa_payload (ikep);
667 ikev2_set_state (sa, IKEV2_STATE_SA_INIT);
669 clib_host_to_net_u32 (clib_net_to_host_u32 (ike->msgid) + 1);
672 else if (payload == IKEV2_PAYLOAD_KE)
674 ike_ke_payload_header_t *ke = (ike_ke_payload_header_t *) ikep;
675 sa->dh_group = clib_net_to_host_u16 (ke->dh_group);
676 vec_free (sa->r_dh_data);
677 vec_add (sa->r_dh_data, ke->payload, plen - sizeof (*ke));
679 else if (payload == IKEV2_PAYLOAD_NONCE)
681 vec_free (sa->r_nonce);
682 vec_add (sa->r_nonce, ikep->payload, plen - sizeof (*ikep));
684 else if (payload == IKEV2_PAYLOAD_NOTIFY)
686 ikev2_notify_t *n = ikev2_parse_notify_payload (ikep);
689 else if (payload == IKEV2_PAYLOAD_VENDOR)
691 ikev2_parse_vendor_payload (ikep);
695 clib_warning ("unknown payload %u flags %x length %u", payload,
697 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
699 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
700 sa->unsupported_cp = payload;
705 payload = ikep->nextpayload;
711 ikev2_decrypt_sk_payload (ikev2_sa_t * sa, ike_header_t * ike, u8 * payload)
716 u32 len = clib_net_to_host_u32 (ike->length);
717 ike_payload_header_t *ikep = 0;
719 ikev2_sa_transform_t *tr_integ;
721 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
724 *payload != IKEV2_PAYLOAD_NONE && last_payload != IKEV2_PAYLOAD_SK)
726 ikep = (ike_payload_header_t *) & ike->payload[p];
727 plen = clib_net_to_host_u16 (ikep->length);
729 if (plen < sizeof (*ikep))
732 if (*payload == IKEV2_PAYLOAD_SK)
734 clib_warning ("received IKEv2 payload SK, len %u", plen - 4);
735 last_payload = *payload;
739 clib_warning ("unknown payload %u flags %x length %u", payload,
741 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
743 sa->unsupported_cp = *payload;
748 *payload = ikep->nextpayload;
752 if (last_payload != IKEV2_PAYLOAD_SK)
754 clib_warning ("Last payload must be SK");
759 ikev2_calc_integr (tr_integ, sa->is_initiator ? sa->sk_ar : sa->sk_ai,
760 (u8 *) ike, len - tr_integ->key_trunc);
762 plen = plen - sizeof (*ikep) - tr_integ->key_trunc;
764 if (memcmp (hmac, &ikep->payload[plen], tr_integ->key_trunc))
766 clib_warning ("message integrity check failed");
772 return ikev2_decrypt_data (sa, ikep->payload, plen);
776 ikev2_initial_contact_cleanup (ikev2_sa_t * sa)
778 ikev2_main_t *km = &ikev2_main;
782 u32 thread_index = vlib_get_thread_index ();
784 if (!sa->initial_contact)
787 /* find old IKE SAs with the same authenticated identity */
789 pool_foreach (tmp, km->per_thread_data[thread_index].sas, ({
790 if (tmp->i_id.type != sa->i_id.type ||
791 vec_len(tmp->i_id.data) != vec_len(sa->i_id.data) ||
792 memcmp(sa->i_id.data, tmp->i_id.data, vec_len(sa->i_id.data)))
795 if (sa->rspi != tmp->rspi)
796 vec_add1(delete, tmp - km->per_thread_data[thread_index].sas);
800 for (i = 0; i < vec_len (delete); i++)
803 pool_elt_at_index (km->per_thread_data[thread_index].sas, delete[i]);
805 tmp->childs) ikev2_delete_tunnel_interface (km->vnet_main,
807 ikev2_delete_sa (tmp);
811 sa->initial_contact = 0;
815 ikev2_process_auth_req (vlib_main_t * vm, ikev2_sa_t * sa, ike_header_t * ike)
817 ikev2_child_sa_t *first_child_sa;
819 u32 len = clib_net_to_host_u32 (ike->length);
820 u8 payload = ike->nextpayload;
823 ike_payload_header_t *ikep;
826 clib_warning ("ispi %lx rspi %lx nextpayload %x version %x "
827 "exchange %x flags %x msgid %x length %u",
828 clib_net_to_host_u64 (ike->ispi),
829 clib_net_to_host_u64 (ike->rspi),
830 payload, ike->version,
831 ike->exchange, ike->flags,
832 clib_net_to_host_u32 (ike->msgid), len);
834 ikev2_calc_keys (sa);
836 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload);
840 if (sa->unsupported_cp)
841 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
842 goto cleanup_and_exit;
845 /* select or create 1st child SA */
846 if (sa->is_initiator)
848 first_child_sa = &sa->childs[0];
852 ikev2_sa_free_all_child_sa (&sa->childs);
853 vec_add2 (sa->childs, first_child_sa, 1);
857 /* process encrypted payload */
859 while (p < vec_len (plaintext) && payload != IKEV2_PAYLOAD_NONE)
861 ikep = (ike_payload_header_t *) & plaintext[p];
862 plen = clib_net_to_host_u16 (ikep->length);
864 if (plen < sizeof (ike_payload_header_t))
865 goto cleanup_and_exit;
867 if (payload == IKEV2_PAYLOAD_SA) /* 33 */
869 clib_warning ("received payload SA, len %u", plen - sizeof (*ikep));
870 if (sa->is_initiator)
872 ikev2_sa_free_proposal_vector (&first_child_sa->r_proposals);
873 first_child_sa->r_proposals = ikev2_parse_sa_payload (ikep);
877 ikev2_sa_free_proposal_vector (&first_child_sa->i_proposals);
878 first_child_sa->i_proposals = ikev2_parse_sa_payload (ikep);
881 else if (payload == IKEV2_PAYLOAD_IDI) /* 35 */
883 ike_id_payload_header_t *id = (ike_id_payload_header_t *) ikep;
885 sa->i_id.type = id->id_type;
886 vec_free (sa->i_id.data);
887 vec_add (sa->i_id.data, id->payload, plen - sizeof (*id));
889 clib_warning ("received payload IDi, len %u id_type %u",
890 plen - sizeof (*id), id->id_type);
892 else if (payload == IKEV2_PAYLOAD_IDR) /* 36 */
894 ike_id_payload_header_t *id = (ike_id_payload_header_t *) ikep;
896 sa->r_id.type = id->id_type;
897 vec_free (sa->r_id.data);
898 vec_add (sa->r_id.data, id->payload, plen - sizeof (*id));
900 clib_warning ("received payload IDr len %u id_type %u",
901 plen - sizeof (*id), id->id_type);
903 else if (payload == IKEV2_PAYLOAD_AUTH) /* 39 */
905 ike_auth_payload_header_t *a = (ike_auth_payload_header_t *) ikep;
907 if (sa->is_initiator)
909 sa->r_auth.method = a->auth_method;
910 vec_free (sa->r_auth.data);
911 vec_add (sa->r_auth.data, a->payload, plen - sizeof (*a));
915 sa->i_auth.method = a->auth_method;
916 vec_free (sa->i_auth.data);
917 vec_add (sa->i_auth.data, a->payload, plen - sizeof (*a));
920 clib_warning ("received payload AUTH, len %u auth_type %u",
921 plen - sizeof (*a), a->auth_method);
923 else if (payload == IKEV2_PAYLOAD_NOTIFY) /* 41 */
925 ikev2_notify_t *n = ikev2_parse_notify_payload (ikep);
926 if (n->msg_type == IKEV2_NOTIFY_MSG_INITIAL_CONTACT)
928 sa->initial_contact = 1;
932 else if (payload == IKEV2_PAYLOAD_VENDOR) /* 43 */
934 ikev2_parse_vendor_payload (ikep);
936 else if (payload == IKEV2_PAYLOAD_TSI) /* 44 */
938 clib_warning ("received payload TSi, len %u",
939 plen - sizeof (*ikep));
941 vec_free (first_child_sa->tsi);
942 first_child_sa->tsi = ikev2_parse_ts_payload (ikep);
944 else if (payload == IKEV2_PAYLOAD_TSR) /* 45 */
946 clib_warning ("received payload TSr, len %u",
947 plen - sizeof (*ikep));
949 vec_free (first_child_sa->tsr);
950 first_child_sa->tsr = ikev2_parse_ts_payload (ikep);
954 clib_warning ("unknown payload %u flags %x length %u data %u",
955 payload, ikep->flags, plen - 4,
956 format_hex_bytes, ikep->payload, plen - 4);
958 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
960 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
961 sa->unsupported_cp = payload;
966 payload = ikep->nextpayload;
971 vec_free (plaintext);
975 ikev2_process_informational_req (vlib_main_t * vm, ikev2_sa_t * sa,
979 u32 len = clib_net_to_host_u32 (ike->length);
980 u8 payload = ike->nextpayload;
983 ike_payload_header_t *ikep;
986 clib_warning ("ispi %lx rspi %lx nextpayload %x version %x "
987 "exchange %x flags %x msgid %x length %u",
988 clib_net_to_host_u64 (ike->ispi),
989 clib_net_to_host_u64 (ike->rspi),
990 payload, ike->version,
991 ike->exchange, ike->flags,
992 clib_net_to_host_u32 (ike->msgid), len);
994 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload);
997 goto cleanup_and_exit;
999 /* process encrypted payload */
1001 while (p < vec_len (plaintext) && payload != IKEV2_PAYLOAD_NONE)
1003 ikep = (ike_payload_header_t *) & plaintext[p];
1004 plen = clib_net_to_host_u16 (ikep->length);
1006 if (plen < sizeof (ike_payload_header_t))
1007 goto cleanup_and_exit;
1009 if (payload == IKEV2_PAYLOAD_NOTIFY) /* 41 */
1011 ikev2_notify_t *n = ikev2_parse_notify_payload (ikep);
1012 if (n->msg_type == IKEV2_NOTIFY_MSG_AUTHENTICATION_FAILED)
1013 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1016 else if (payload == IKEV2_PAYLOAD_DELETE) /* 42 */
1018 sa->del = ikev2_parse_delete_payload (ikep);
1020 else if (payload == IKEV2_PAYLOAD_VENDOR) /* 43 */
1022 ikev2_parse_vendor_payload (ikep);
1026 clib_warning ("unknown payload %u flags %x length %u data %u",
1027 payload, ikep->flags, plen - 4,
1028 format_hex_bytes, ikep->payload, plen - 4);
1030 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1032 sa->unsupported_cp = payload;
1037 payload = ikep->nextpayload;
1042 vec_free (plaintext);
1046 ikev2_process_create_child_sa_req (vlib_main_t * vm, ikev2_sa_t * sa,
1050 u32 len = clib_net_to_host_u32 (ike->length);
1051 u8 payload = ike->nextpayload;
1054 u8 nonce[IKEV2_NONCE_SIZE];
1056 ike_payload_header_t *ikep;
1058 ikev2_notify_t *n = 0;
1059 ikev2_ts_t *tsi = 0;
1060 ikev2_ts_t *tsr = 0;
1061 ikev2_sa_proposal_t *proposal = 0;
1062 ikev2_child_sa_t *child_sa;
1064 clib_warning ("ispi %lx rspi %lx nextpayload %x version %x "
1065 "exchange %x flags %x msgid %x length %u",
1066 clib_net_to_host_u64 (ike->ispi),
1067 clib_net_to_host_u64 (ike->rspi),
1068 payload, ike->version,
1069 ike->exchange, ike->flags,
1070 clib_net_to_host_u32 (ike->msgid), len);
1072 plaintext = ikev2_decrypt_sk_payload (sa, ike, &payload);
1075 goto cleanup_and_exit;
1077 /* process encrypted payload */
1079 while (p < vec_len (plaintext) && payload != IKEV2_PAYLOAD_NONE)
1081 ikep = (ike_payload_header_t *) & plaintext[p];
1082 plen = clib_net_to_host_u16 (ikep->length);
1084 if (plen < sizeof (ike_payload_header_t))
1085 goto cleanup_and_exit;
1087 else if (payload == IKEV2_PAYLOAD_SA)
1089 proposal = ikev2_parse_sa_payload (ikep);
1091 else if (payload == IKEV2_PAYLOAD_NOTIFY)
1093 n = ikev2_parse_notify_payload (ikep);
1094 if (n->msg_type == IKEV2_NOTIFY_MSG_REKEY_SA)
1099 else if (payload == IKEV2_PAYLOAD_DELETE)
1101 sa->del = ikev2_parse_delete_payload (ikep);
1103 else if (payload == IKEV2_PAYLOAD_VENDOR)
1105 ikev2_parse_vendor_payload (ikep);
1107 else if (payload == IKEV2_PAYLOAD_NONCE)
1109 clib_memcpy (nonce, ikep->payload, plen - sizeof (*ikep));
1111 else if (payload == IKEV2_PAYLOAD_TSI)
1113 tsi = ikev2_parse_ts_payload (ikep);
1115 else if (payload == IKEV2_PAYLOAD_TSR)
1117 tsr = ikev2_parse_ts_payload (ikep);
1121 clib_warning ("unknown payload %u flags %x length %u data %u",
1122 payload, ikep->flags, plen - 4,
1123 format_hex_bytes, ikep->payload, plen - 4);
1125 if (ikep->flags & IKEV2_PAYLOAD_FLAG_CRITICAL)
1127 sa->unsupported_cp = payload;
1132 payload = ikep->nextpayload;
1136 if (sa->is_initiator && proposal->protocol_id == IKEV2_PROTOCOL_ESP)
1138 ikev2_rekey_t *rekey = &sa->rekey[0];
1139 rekey->protocol_id = proposal->protocol_id;
1141 ikev2_select_proposal (proposal, IKEV2_PROTOCOL_ESP);
1142 rekey->i_proposal->spi = rekey->spi;
1143 rekey->r_proposal = proposal;
1147 vec_free (sa->r_nonce);
1148 vec_add (sa->r_nonce, nonce, IKEV2_NONCE_SIZE);
1149 child_sa = ikev2_sa_get_child (sa, rekey->ispi, IKEV2_PROTOCOL_ESP, 1);
1152 child_sa->rekey_retries = 0;
1157 ikev2_rekey_t *rekey;
1158 child_sa = ikev2_sa_get_child (sa, n->spi, n->protocol_id, 1);
1161 clib_warning ("child SA spi %lx not found", n->spi);
1162 goto cleanup_and_exit;
1164 vec_add2 (sa->rekey, rekey, 1);
1165 rekey->protocol_id = n->protocol_id;
1166 rekey->spi = n->spi;
1167 rekey->i_proposal = proposal;
1169 ikev2_select_proposal (proposal, IKEV2_PROTOCOL_ESP);
1173 vec_free (sa->i_nonce);
1174 vec_add (sa->i_nonce, nonce, IKEV2_NONCE_SIZE);
1175 /* generate new Nr */
1176 vec_free (sa->r_nonce);
1177 sa->r_nonce = vec_new (u8, IKEV2_NONCE_SIZE);
1178 RAND_bytes ((u8 *) sa->r_nonce, IKEV2_NONCE_SIZE);
1182 vec_free (plaintext);
1187 ikev2_sa_generate_authmsg (ikev2_sa_t * sa, int is_responder)
1195 ikev2_sa_transform_t *tr_prf;
1198 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1204 nonce = sa->i_nonce;
1205 packet_data = sa->last_sa_init_res_packet_data;
1211 nonce = sa->r_nonce;
1212 packet_data = sa->last_sa_init_req_packet_data;
1215 data = vec_new (u8, 4);
1217 vec_append (data, id->data);
1219 u8 *id_hash = ikev2_calc_prf (tr_prf, key, data);
1220 vec_append (authmsg, packet_data);
1221 vec_append (authmsg, nonce);
1222 vec_append (authmsg, id_hash);
1230 ikev2_ts_cmp (ikev2_ts_t * ts1, ikev2_ts_t * ts2)
1232 if (ts1->ts_type == ts2->ts_type && ts1->protocol_id == ts2->protocol_id &&
1233 ts1->start_port == ts2->start_port && ts1->end_port == ts2->end_port &&
1234 ts1->start_addr.as_u32 == ts2->start_addr.as_u32 &&
1235 ts1->end_addr.as_u32 == ts2->end_addr.as_u32)
1242 ikev2_sa_match_ts (ikev2_sa_t * sa)
1244 ikev2_main_t *km = &ikev2_main;
1246 ikev2_ts_t *ts, *p_tsi, *p_tsr, *tsi = 0, *tsr = 0;
1250 pool_foreach (p, km->profiles, ({
1252 if (sa->is_initiator)
1266 if (p->rem_id.type != id->type ||
1267 vec_len(p->rem_id.data) != vec_len(id->data) ||
1268 memcmp(p->rem_id.data, id->data, vec_len(p->rem_id.data)))
1271 vec_foreach(ts, sa->childs[0].tsi)
1273 if (ikev2_ts_cmp(p_tsi, ts))
1280 vec_foreach(ts, sa->childs[0].tsr)
1282 if (ikev2_ts_cmp(p_tsr, ts))
1295 vec_free (sa->childs[0].tsi);
1296 vec_free (sa->childs[0].tsr);
1297 sa->childs[0].tsi = tsi;
1298 sa->childs[0].tsr = tsr;
1304 ikev2_set_state (sa, IKEV2_STATE_TS_UNACCEPTABLE);
1309 ikev2_sa_auth (ikev2_sa_t * sa)
1311 ikev2_main_t *km = &ikev2_main;
1312 ikev2_profile_t *p, *sel_p = 0;
1313 u8 *authmsg, *key_pad, *psk = 0, *auth = 0;
1314 ikev2_sa_transform_t *tr_prf;
1317 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1319 /* only shared key and rsa signature */
1320 if (!(sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC ||
1321 sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG))
1323 clib_warning ("unsupported authentication method %u",
1325 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1329 key_pad = format (0, "%s", IKEV2_KEY_PAD);
1330 authmsg = ikev2_sa_generate_authmsg (sa, sa->is_initiator);
1333 ikev2_auth_t *sa_auth;
1335 if (sa->is_initiator)
1338 sa_auth = &sa->r_auth;
1343 sa_auth = &sa->i_auth;
1347 pool_foreach (p, km->profiles, ({
1350 if (p->rem_id.type != sa_id->type ||
1351 vec_len(p->rem_id.data) != vec_len(sa_id->data) ||
1352 memcmp(p->rem_id.data, sa_id->data, vec_len(p->rem_id.data)))
1355 if (sa_auth->method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1357 if (!p->auth.data ||
1358 p->auth.method != IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1361 psk = ikev2_calc_prf(tr_prf, p->auth.data, key_pad);
1362 auth = ikev2_calc_prf(tr_prf, psk, authmsg);
1364 if (!memcmp(auth, sa_auth->data, vec_len(sa_auth->data)))
1366 ikev2_set_state(sa, IKEV2_STATE_AUTHENTICATED);
1373 else if (sa_auth->method == IKEV2_AUTH_METHOD_RSA_SIG)
1375 if (p->auth.method != IKEV2_AUTH_METHOD_RSA_SIG)
1378 if (ikev2_verify_sign(p->auth.key, sa_auth->data, authmsg) == 1)
1380 ikev2_set_state(sa, IKEV2_STATE_AUTHENTICATED);
1393 if (sa->state == IKEV2_STATE_AUTHENTICATED)
1395 if (!sa->is_initiator)
1397 vec_free (sa->r_id.data);
1398 sa->r_id.data = vec_dup (sel_p->loc_id.data);
1399 sa->r_id.type = sel_p->loc_id.type;
1401 /* generate our auth data */
1402 authmsg = ikev2_sa_generate_authmsg (sa, 1);
1403 if (sel_p->auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1405 sa->r_auth.data = ikev2_calc_prf (tr_prf, psk, authmsg);
1406 sa->r_auth.method = IKEV2_AUTH_METHOD_SHARED_KEY_MIC;
1408 else if (sel_p->auth.method == IKEV2_AUTH_METHOD_RSA_SIG)
1410 sa->r_auth.data = ikev2_calc_sign (km->pkey, authmsg);
1411 sa->r_auth.method = IKEV2_AUTH_METHOD_RSA_SIG;
1415 /* select transforms for 1st child sa */
1416 ikev2_sa_free_proposal_vector (&sa->childs[0].r_proposals);
1417 sa->childs[0].r_proposals =
1418 ikev2_select_proposal (sa->childs[0].i_proposals,
1419 IKEV2_PROTOCOL_ESP);
1424 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1432 ikev2_sa_auth_init (ikev2_sa_t * sa)
1434 ikev2_main_t *km = &ikev2_main;
1435 u8 *authmsg, *key_pad, *psk = 0, *auth = 0;
1436 ikev2_sa_transform_t *tr_prf;
1439 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_PRF);
1441 /* only shared key and rsa signature */
1442 if (!(sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC ||
1443 sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG))
1445 clib_warning ("unsupported authentication method %u",
1447 ikev2_set_state (sa, IKEV2_STATE_AUTH_FAILED);
1451 key_pad = format (0, "%s", IKEV2_KEY_PAD);
1452 authmsg = ikev2_sa_generate_authmsg (sa, 0);
1453 psk = ikev2_calc_prf (tr_prf, sa->i_auth.data, key_pad);
1454 auth = ikev2_calc_prf (tr_prf, psk, authmsg);
1457 if (sa->i_auth.method == IKEV2_AUTH_METHOD_SHARED_KEY_MIC)
1459 sa->i_auth.data = ikev2_calc_prf (tr_prf, psk, authmsg);
1460 sa->i_auth.method = IKEV2_AUTH_METHOD_SHARED_KEY_MIC;
1462 else if (sa->i_auth.method == IKEV2_AUTH_METHOD_RSA_SIG)
1464 sa->i_auth.data = ikev2_calc_sign (km->pkey, authmsg);
1465 sa->i_auth.method = IKEV2_AUTH_METHOD_RSA_SIG;
1476 ikev2_create_tunnel_interface (vnet_main_t * vnm, ikev2_sa_t * sa,
1477 ikev2_child_sa_t * child)
1479 ipsec_add_del_tunnel_args_t a;
1480 ikev2_sa_transform_t *tr;
1481 ikev2_sa_proposal_t *proposals;
1484 if (!child->r_proposals)
1486 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1490 memset (&a, 0, sizeof (a));
1492 if (sa->is_initiator)
1494 a.local_ip.as_u32 = sa->iaddr.as_u32;
1495 a.remote_ip.as_u32 = sa->raddr.as_u32;
1496 proposals = child->i_proposals;
1497 a.local_spi = child->r_proposals[0].spi;
1498 a.remote_spi = child->i_proposals[0].spi;
1502 a.local_ip.as_u32 = sa->raddr.as_u32;
1503 a.remote_ip.as_u32 = sa->iaddr.as_u32;
1504 proposals = child->r_proposals;
1505 a.local_spi = child->i_proposals[0].spi;
1506 a.remote_spi = child->r_proposals[0].spi;
1510 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_ESN);
1512 a.esn = tr->esn_type;
1516 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_ENCR);
1519 if (tr->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_CBC && tr->key_len)
1521 switch (tr->key_len)
1524 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_128;
1527 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_192;
1530 encr_type = IPSEC_CRYPTO_ALG_AES_CBC_256;
1533 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1540 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1546 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1550 tr = ikev2_sa_get_td_for_type (proposals, IKEV2_TRANSFORM_TYPE_INTEG);
1553 if (tr->integ_type != IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA1_96)
1555 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1561 ikev2_set_state (sa, IKEV2_STATE_NO_PROPOSAL_CHOSEN);
1565 ikev2_calc_child_keys (sa, child);
1567 u8 *loc_ckey, *rem_ckey, *loc_ikey, *rem_ikey;
1568 if (sa->is_initiator)
1570 loc_ikey = child->sk_ai;
1571 rem_ikey = child->sk_ar;
1572 loc_ckey = child->sk_ei;
1573 rem_ckey = child->sk_er;
1577 loc_ikey = child->sk_ar;
1578 rem_ikey = child->sk_ai;
1579 loc_ckey = child->sk_er;
1580 rem_ckey = child->sk_ei;
1583 a.integ_alg = IPSEC_INTEG_ALG_SHA1_96;
1584 a.local_integ_key_len = vec_len (loc_ikey);
1585 clib_memcpy (a.local_integ_key, loc_ikey, a.local_integ_key_len);
1586 a.remote_integ_key_len = vec_len (rem_ikey);
1587 clib_memcpy (a.remote_integ_key, rem_ikey, a.remote_integ_key_len);
1589 a.crypto_alg = encr_type;
1590 a.local_crypto_key_len = vec_len (loc_ckey);
1591 clib_memcpy (a.local_crypto_key, loc_ckey, a.local_crypto_key_len);
1592 a.remote_crypto_key_len = vec_len (rem_ckey);
1593 clib_memcpy (a.remote_crypto_key, rem_ckey, a.remote_crypto_key_len);
1595 if (sa->profile && sa->profile->lifetime)
1597 child->time_to_expiration = vlib_time_now (vnm->vlib_main)
1598 + sa->profile->lifetime;
1599 if (sa->profile->lifetime_jitter)
1601 // This is not much better than rand(3), which Coverity warns
1602 // is unsuitable for security applications; random_u32 is
1603 // however fast. If this perturbance to the expiration time
1604 // needs to use a better RNG then we may need to use something
1605 // like /dev/urandom which has significant overhead.
1606 u32 rnd = (u32) (vlib_time_now (vnm->vlib_main) * 1e6);
1607 rnd = random_u32 (&rnd);
1609 child->time_to_expiration +=
1610 1 + (rnd % sa->profile->lifetime_jitter);
1614 ipsec_add_del_tunnel_if (&a);
1620 ikev2_delete_tunnel_interface (vnet_main_t * vnm, ikev2_sa_t * sa,
1621 ikev2_child_sa_t * child)
1623 ipsec_add_del_tunnel_args_t a;
1625 if (sa->is_initiator)
1627 if (!vec_len (child->i_proposals))
1631 a.local_ip.as_u32 = sa->iaddr.as_u32;
1632 a.remote_ip.as_u32 = sa->raddr.as_u32;
1633 a.local_spi = child->r_proposals[0].spi;
1634 a.remote_spi = child->i_proposals[0].spi;
1638 if (!vec_len (child->r_proposals))
1642 a.local_ip.as_u32 = sa->raddr.as_u32;
1643 a.remote_ip.as_u32 = sa->iaddr.as_u32;
1644 a.local_spi = child->i_proposals[0].spi;
1645 a.remote_spi = child->r_proposals[0].spi;
1648 ipsec_add_del_tunnel_if (&a);
1653 ikev2_generate_message (ikev2_sa_t * sa, ike_header_t * ike, void *user)
1656 ike_payload_header_t *ph;
1660 ikev2_sa_transform_t *tr_encr, *tr_integ;
1662 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_ENCR);
1664 ikev2_sa_get_td_for_type (sa->r_proposals, IKEV2_TRANSFORM_TYPE_INTEG);
1666 ikev2_payload_chain_t *chain = 0;
1667 ikev2_payload_new_chain (chain);
1669 if (ike->exchange == IKEV2_EXCHANGE_SA_INIT)
1671 if (sa->r_proposals == 0)
1673 ikev2_payload_add_notify (chain,
1674 IKEV2_NOTIFY_MSG_NO_PROPOSAL_CHOSEN, 0);
1675 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1677 else if (sa->dh_group == IKEV2_TRANSFORM_DH_TYPE_NONE)
1679 u8 *data = vec_new (u8, 2);
1680 ikev2_sa_transform_t *tr_dh;
1682 ikev2_sa_get_td_for_type (sa->r_proposals,
1683 IKEV2_TRANSFORM_TYPE_DH);
1684 ASSERT (tr_dh && tr_dh->dh_type);
1686 data[0] = (tr_dh->dh_type >> 8) & 0xff;
1687 data[1] = (tr_dh->dh_type) & 0xff;
1689 ikev2_payload_add_notify (chain,
1690 IKEV2_NOTIFY_MSG_INVALID_KE_PAYLOAD,
1693 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1695 else if (sa->state == IKEV2_STATE_NOTIFY_AND_DELETE)
1697 u8 *data = vec_new (u8, 1);
1699 data[0] = sa->unsupported_cp;
1700 ikev2_payload_add_notify (chain,
1701 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
1707 ike->rspi = clib_host_to_net_u64 (sa->rspi);
1708 ikev2_payload_add_sa (chain, sa->r_proposals);
1709 ikev2_payload_add_ke (chain, sa->dh_group, sa->r_dh_data);
1710 ikev2_payload_add_nonce (chain, sa->r_nonce);
1713 else if (ike->exchange == IKEV2_EXCHANGE_IKE_AUTH)
1715 if (sa->state == IKEV2_STATE_AUTHENTICATED)
1717 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
1718 ikev2_payload_add_auth (chain, &sa->r_auth);
1719 ikev2_payload_add_sa (chain, sa->childs[0].r_proposals);
1720 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
1721 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
1723 else if (sa->state == IKEV2_STATE_AUTH_FAILED)
1725 ikev2_payload_add_notify (chain,
1726 IKEV2_NOTIFY_MSG_AUTHENTICATION_FAILED,
1728 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1730 else if (sa->state == IKEV2_STATE_TS_UNACCEPTABLE)
1732 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_TS_UNACCEPTABLE,
1734 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
1735 ikev2_payload_add_auth (chain, &sa->r_auth);
1737 else if (sa->state == IKEV2_STATE_NO_PROPOSAL_CHOSEN)
1739 ikev2_payload_add_notify (chain,
1740 IKEV2_NOTIFY_MSG_NO_PROPOSAL_CHOSEN, 0);
1741 ikev2_payload_add_id (chain, &sa->r_id, IKEV2_PAYLOAD_IDR);
1742 ikev2_payload_add_auth (chain, &sa->r_auth);
1743 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
1744 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
1746 else if (sa->state == IKEV2_STATE_NOTIFY_AND_DELETE)
1748 u8 *data = vec_new (u8, 1);
1750 data[0] = sa->unsupported_cp;
1751 ikev2_payload_add_notify (chain,
1752 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
1756 else if (sa->state == IKEV2_STATE_SA_INIT)
1758 ikev2_payload_add_id (chain, &sa->i_id, IKEV2_PAYLOAD_IDI);
1759 ikev2_payload_add_auth (chain, &sa->i_auth);
1760 ikev2_payload_add_sa (chain, sa->childs[0].i_proposals);
1761 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
1762 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
1766 ikev2_set_state (sa, IKEV2_STATE_DELETED);
1770 else if (ike->exchange == IKEV2_EXCHANGE_INFORMATIONAL)
1772 /* if pending delete */
1775 if (sa->del[0].protocol_id == IKEV2_PROTOCOL_IKE)
1777 if (sa->is_initiator)
1778 ikev2_payload_add_delete (chain, sa->del);
1780 /* The response to a request that deletes the IKE SA is an empty
1781 INFORMATIONAL response. */
1782 ikev2_set_state (sa, IKEV2_STATE_NOTIFY_AND_DELETE);
1784 /* The response to a request that deletes ESP or AH SAs will contain
1785 delete payloads for the paired SAs going in the other direction. */
1788 ikev2_payload_add_delete (chain, sa->del);
1793 /* received N(AUTHENTICATION_FAILED) */
1794 else if (sa->state == IKEV2_STATE_AUTH_FAILED)
1796 ikev2_set_state (sa, IKEV2_STATE_DELETED);
1799 /* received unsupported critical payload */
1800 else if (sa->unsupported_cp)
1802 u8 *data = vec_new (u8, 1);
1804 data[0] = sa->unsupported_cp;
1805 ikev2_payload_add_notify (chain,
1806 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
1809 sa->unsupported_cp = 0;
1811 /* else send empty response */
1813 else if (ike->exchange == IKEV2_EXCHANGE_CREATE_CHILD_SA)
1815 if (sa->is_initiator)
1818 ikev2_sa_proposal_t *proposals = (ikev2_sa_proposal_t *) user;
1819 ikev2_notify_t notify;
1820 u8 *data = vec_new (u8, 4);
1821 memset (¬ify, 0, sizeof (notify));
1822 notify.protocol_id = IKEV2_PROTOCOL_ESP;
1823 notify.spi = sa->childs[0].i_proposals->spi;
1824 *(u32 *) data = clib_host_to_net_u32 (notify.spi);
1826 ikev2_payload_add_sa (chain, proposals);
1827 ikev2_payload_add_nonce (chain, sa->i_nonce);
1828 ikev2_payload_add_ts (chain, sa->childs[0].tsi, IKEV2_PAYLOAD_TSI);
1829 ikev2_payload_add_ts (chain, sa->childs[0].tsr, IKEV2_PAYLOAD_TSR);
1830 ikev2_payload_add_notify_2 (chain, IKEV2_NOTIFY_MSG_REKEY_SA, data,
1839 ikev2_payload_add_sa (chain, sa->rekey[0].r_proposal);
1840 ikev2_payload_add_nonce (chain, sa->r_nonce);
1841 ikev2_payload_add_ts (chain, sa->rekey[0].tsi,
1843 ikev2_payload_add_ts (chain, sa->rekey[0].tsr,
1845 vec_del1 (sa->rekey, 0);
1847 else if (sa->unsupported_cp)
1849 u8 *data = vec_new (u8, 1);
1851 data[0] = sa->unsupported_cp;
1852 ikev2_payload_add_notify (chain,
1853 IKEV2_NOTIFY_MSG_UNSUPPORTED_CRITICAL_PAYLOAD,
1856 sa->unsupported_cp = 0;
1860 ikev2_payload_add_notify (chain,
1861 IKEV2_NOTIFY_MSG_NO_ADDITIONAL_SAS,
1868 ike->version = IKE_VERSION_2;
1869 ike->nextpayload = IKEV2_PAYLOAD_SK;
1870 tlen = sizeof (*ike);
1871 if (sa->is_initiator)
1873 ike->flags = IKEV2_HDR_FLAG_INITIATOR;
1874 sa->last_init_msg_id = clib_net_to_host_u32 (ike->msgid);
1878 ike->flags = IKEV2_HDR_FLAG_RESPONSE;
1882 if (ike->exchange == IKEV2_EXCHANGE_SA_INIT)
1884 tlen += vec_len (chain->data);
1885 ike->nextpayload = chain->first_payload_type;
1886 ike->length = clib_host_to_net_u32 (tlen);
1887 clib_memcpy (ike->payload, chain->data, vec_len (chain->data));
1889 /* store whole IKE payload - needed for PSK auth */
1890 vec_free (sa->last_sa_init_res_packet_data);
1891 vec_add (sa->last_sa_init_res_packet_data, ike, tlen);
1896 ikev2_payload_chain_add_padding (chain, tr_encr->block_size);
1899 plen = sizeof (*ph);
1900 ph = (ike_payload_header_t *) & ike->payload[0];
1901 ph->nextpayload = chain->first_payload_type;
1903 int enc_len = ikev2_encrypt_data (sa, chain->data, ph->payload);
1906 /* add space for hmac */
1907 plen += tr_integ->key_trunc;
1910 /* payload and total length */
1911 ph->length = clib_host_to_net_u16 (plen);
1912 ike->length = clib_host_to_net_u32 (tlen);
1914 /* calc integrity data for whole packet except hash itself */
1916 ikev2_calc_integr (tr_integ, sa->is_initiator ? sa->sk_ai : sa->sk_ar,
1917 (u8 *) ike, tlen - tr_integ->key_trunc);
1919 clib_memcpy (ike->payload + tlen - tr_integ->key_trunc - sizeof (*ike),
1920 integ, tr_integ->key_trunc);
1922 /* store whole IKE payload - needed for retransmit */
1923 vec_free (sa->last_res_packet_data);
1924 vec_add (sa->last_res_packet_data, ike, tlen);
1928 ikev2_payload_destroy_chain (chain);
1934 ikev2_retransmit_sa_init (ike_header_t * ike,
1935 ip4_address_t iaddr, ip4_address_t raddr)
1937 ikev2_main_t *km = &ikev2_main;
1939 u32 thread_index = vlib_get_thread_index ();
1942 pool_foreach (sa, km->per_thread_data[thread_index].sas, ({
1943 if (sa->ispi == clib_net_to_host_u64(ike->ispi) &&
1944 sa->iaddr.as_u32 == iaddr.as_u32 &&
1945 sa->raddr.as_u32 == raddr.as_u32)
1948 u32 len = clib_net_to_host_u32(ike->length);
1949 u8 payload = ike->nextpayload;
1951 while (p < len && payload!= IKEV2_PAYLOAD_NONE) {
1952 ike_payload_header_t * ikep = (ike_payload_header_t *) &ike->payload[p];
1953 u32 plen = clib_net_to_host_u16(ikep->length);
1955 if (plen < sizeof(ike_payload_header_t))
1958 if (payload == IKEV2_PAYLOAD_NONCE)
1960 if (!memcmp(sa->i_nonce, ikep->payload, plen - sizeof(*ikep)))
1962 /* req is retransmit */
1963 if (sa->state == IKEV2_STATE_SA_INIT)
1966 tmp = (ike_header_t*)sa->last_sa_init_res_packet_data;
1967 ike->ispi = tmp->ispi;
1968 ike->rspi = tmp->rspi;
1969 ike->nextpayload = tmp->nextpayload;
1970 ike->version = tmp->version;
1971 ike->exchange = tmp->exchange;
1972 ike->flags = tmp->flags;
1973 ike->msgid = tmp->msgid;
1974 ike->length = tmp->length;
1975 clib_memcpy(ike->payload, tmp->payload,
1976 clib_net_to_host_u32(tmp->length) - sizeof(*ike));
1977 clib_warning("IKE_SA_INIT retransmit from %U to %U",
1978 format_ip4_address, &raddr,
1979 format_ip4_address, &iaddr);
1982 /* else ignore req */
1985 clib_warning("IKE_SA_INIT ignore from %U to %U",
1986 format_ip4_address, &raddr,
1987 format_ip4_address, &iaddr);
1992 payload = ikep->nextpayload;
1999 /* req is not retransmit */
2004 ikev2_retransmit_resp (ikev2_sa_t * sa, ike_header_t * ike)
2006 u32 msg_id = clib_net_to_host_u32 (ike->msgid);
2009 if (msg_id > sa->last_msg_id)
2011 sa->last_msg_id = msg_id;
2014 /* retransmitted req */
2015 else if (msg_id == sa->last_msg_id)
2018 tmp = (ike_header_t *) sa->last_res_packet_data;
2019 ike->ispi = tmp->ispi;
2020 ike->rspi = tmp->rspi;
2021 ike->nextpayload = tmp->nextpayload;
2022 ike->version = tmp->version;
2023 ike->exchange = tmp->exchange;
2024 ike->flags = tmp->flags;
2025 ike->msgid = tmp->msgid;
2026 ike->length = tmp->length;
2027 clib_memcpy (ike->payload, tmp->payload,
2028 clib_net_to_host_u32 (tmp->length) - sizeof (*ike));
2029 clib_warning ("IKE msgid %u retransmit from %U to %U",
2031 format_ip4_address, &sa->raddr,
2032 format_ip4_address, &sa->iaddr);
2035 /* old req ignore */
2038 clib_warning ("IKE msgid %u req ignore from %U to %U",
2040 format_ip4_address, &sa->raddr,
2041 format_ip4_address, &sa->iaddr);
2047 ikev2_node_fn (vlib_main_t * vm,
2048 vlib_node_runtime_t * node, vlib_frame_t * frame)
2050 u32 n_left_from, *from, *to_next;
2051 ikev2_next_t next_index;
2052 ikev2_main_t *km = &ikev2_main;
2053 u32 thread_index = vlib_get_thread_index ();
2055 from = vlib_frame_vector_args (frame);
2056 n_left_from = frame->n_vectors;
2057 next_index = node->cached_next_index;
2059 while (n_left_from > 0)
2063 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
2065 while (n_left_from > 0 && n_left_to_next > 0)
2069 u32 next0 = IKEV2_NEXT_ERROR_DROP;
2074 ikev2_sa_t *sa0 = 0;
2075 ikev2_sa_t sa; /* temporary store for SA */
2079 /* speculatively enqueue b0 to the current next frame */
2085 n_left_to_next -= 1;
2087 b0 = vlib_get_buffer (vm, bi0);
2088 ike0 = vlib_buffer_get_current (b0);
2089 vlib_buffer_advance (b0, -sizeof (*udp0));
2090 udp0 = vlib_buffer_get_current (b0);
2091 vlib_buffer_advance (b0, -sizeof (*ip40));
2092 ip40 = vlib_buffer_get_current (b0);
2094 if (ike0->version != IKE_VERSION_2)
2096 vlib_node_increment_counter (vm, ikev2_node.index,
2097 IKEV2_ERROR_NOT_IKEV2, 1);
2101 if (ike0->exchange == IKEV2_EXCHANGE_SA_INIT)
2104 memset (sa0, 0, sizeof (*sa0));
2106 if (ike0->flags & IKEV2_HDR_FLAG_INITIATOR)
2108 if (ike0->rspi == 0)
2110 sa0->raddr.as_u32 = ip40->dst_address.as_u32;
2111 sa0->iaddr.as_u32 = ip40->src_address.as_u32;
2113 r = ikev2_retransmit_sa_init (ike0, sa0->iaddr,
2117 vlib_node_increment_counter (vm, ikev2_node.index,
2118 IKEV2_ERROR_IKE_SA_INIT_RETRANSMIT,
2120 len = clib_net_to_host_u32 (ike0->length);
2125 vlib_node_increment_counter (vm, ikev2_node.index,
2126 IKEV2_ERROR_IKE_SA_INIT_IGNORE,
2131 ikev2_process_sa_init_req (vm, sa0, ike0);
2133 if (sa0->state == IKEV2_STATE_SA_INIT)
2135 ikev2_sa_free_proposal_vector (&sa0->r_proposals);
2137 ikev2_select_proposal (sa0->i_proposals,
2138 IKEV2_PROTOCOL_IKE);
2139 ikev2_generate_sa_init_data (sa0);
2142 if (sa0->state == IKEV2_STATE_SA_INIT
2143 || sa0->state == IKEV2_STATE_NOTIFY_AND_DELETE)
2145 len = ikev2_generate_message (sa0, ike0, 0);
2148 if (sa0->state == IKEV2_STATE_SA_INIT)
2150 /* add SA to the pool */
2151 pool_get (km->per_thread_data[thread_index].sas,
2153 clib_memcpy (sa0, &sa, sizeof (*sa0));
2155 per_thread_data[thread_index].sa_by_rspi,
2158 km->per_thread_data[thread_index].sas);
2162 ikev2_sa_free_all_vec (sa0);
2168 ikev2_process_sa_init_resp (vm, sa0, ike0);
2170 if (sa0->state == IKEV2_STATE_SA_INIT)
2172 ike0->exchange = IKEV2_EXCHANGE_IKE_AUTH;
2173 uword *p = hash_get (km->sa_by_ispi, ike0->ispi);
2177 pool_elt_at_index (km->sais, p[0]);
2179 ikev2_complete_sa_data (sa0, sai);
2180 ikev2_calc_keys (sa0);
2181 ikev2_sa_auth_init (sa0);
2182 len = ikev2_generate_message (sa0, ike0, 0);
2186 if (sa0->state == IKEV2_STATE_SA_INIT)
2188 /* add SA to the pool */
2189 pool_get (km->per_thread_data[thread_index].sas, sa0);
2190 clib_memcpy (sa0, &sa, sizeof (*sa0));
2191 hash_set (km->per_thread_data[thread_index].sa_by_rspi,
2193 sa0 - km->per_thread_data[thread_index].sas);
2197 ikev2_sa_free_all_vec (sa0);
2201 else if (ike0->exchange == IKEV2_EXCHANGE_IKE_AUTH)
2204 p = hash_get (km->per_thread_data[thread_index].sa_by_rspi,
2205 clib_net_to_host_u64 (ike0->rspi));
2209 pool_elt_at_index (km->per_thread_data[thread_index].sas,
2212 r = ikev2_retransmit_resp (sa0, ike0);
2215 vlib_node_increment_counter (vm, ikev2_node.index,
2216 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
2218 len = clib_net_to_host_u32 (ike0->length);
2223 vlib_node_increment_counter (vm, ikev2_node.index,
2224 IKEV2_ERROR_IKE_REQ_IGNORE,
2229 ikev2_process_auth_req (vm, sa0, ike0);
2230 ikev2_sa_auth (sa0);
2231 if (sa0->state == IKEV2_STATE_AUTHENTICATED)
2233 ikev2_initial_contact_cleanup (sa0);
2234 ikev2_sa_match_ts (sa0);
2235 if (sa0->state != IKEV2_STATE_TS_UNACCEPTABLE)
2236 ikev2_create_tunnel_interface (km->vnet_main, sa0,
2240 if (sa0->is_initiator)
2242 uword *p = hash_get (km->sa_by_ispi, ike0->ispi);
2246 pool_elt_at_index (km->sais, p[0]);
2247 hash_unset (km->sa_by_ispi, sai->ispi);
2248 ikev2_sa_free_all_vec (sai);
2249 pool_put (km->sais, sai);
2254 len = ikev2_generate_message (sa0, ike0, 0);
2258 else if (ike0->exchange == IKEV2_EXCHANGE_INFORMATIONAL)
2261 p = hash_get (km->per_thread_data[thread_index].sa_by_rspi,
2262 clib_net_to_host_u64 (ike0->rspi));
2266 pool_elt_at_index (km->per_thread_data[thread_index].sas,
2269 r = ikev2_retransmit_resp (sa0, ike0);
2272 vlib_node_increment_counter (vm, ikev2_node.index,
2273 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
2275 len = clib_net_to_host_u32 (ike0->length);
2280 vlib_node_increment_counter (vm, ikev2_node.index,
2281 IKEV2_ERROR_IKE_REQ_IGNORE,
2286 ikev2_process_informational_req (vm, sa0, ike0);
2289 if (sa0->del[0].protocol_id != IKEV2_PROTOCOL_IKE)
2291 ikev2_delete_t *d, *tmp, *resp = 0;
2292 vec_foreach (d, sa0->del)
2294 ikev2_child_sa_t *ch_sa;
2295 ch_sa = ikev2_sa_get_child (sa0, d->spi,
2297 !sa0->is_initiator);
2300 ikev2_delete_tunnel_interface (km->vnet_main,
2302 if (!sa0->is_initiator)
2304 vec_add2 (resp, tmp, 1);
2305 tmp->protocol_id = d->protocol_id;
2306 tmp->spi = ch_sa->r_proposals[0].spi;
2308 ikev2_sa_del_child_sa (sa0, ch_sa);
2311 if (!sa0->is_initiator)
2313 vec_free (sa0->del);
2318 if (!sa0->is_initiator)
2320 len = ikev2_generate_message (sa0, ike0, 0);
2324 else if (ike0->exchange == IKEV2_EXCHANGE_CREATE_CHILD_SA)
2327 p = hash_get (km->per_thread_data[thread_index].sa_by_rspi,
2328 clib_net_to_host_u64 (ike0->rspi));
2332 pool_elt_at_index (km->per_thread_data[thread_index].sas,
2335 r = ikev2_retransmit_resp (sa0, ike0);
2338 vlib_node_increment_counter (vm, ikev2_node.index,
2339 IKEV2_ERROR_IKE_REQ_RETRANSMIT,
2341 len = clib_net_to_host_u32 (ike0->length);
2346 vlib_node_increment_counter (vm, ikev2_node.index,
2347 IKEV2_ERROR_IKE_REQ_IGNORE,
2352 ikev2_process_create_child_sa_req (vm, sa0, ike0);
2355 if (sa0->rekey[0].protocol_id != IKEV2_PROTOCOL_IKE)
2357 ikev2_child_sa_t *child;
2358 vec_add2 (sa0->childs, child, 1);
2359 child->r_proposals = sa0->rekey[0].r_proposal;
2360 child->i_proposals = sa0->rekey[0].i_proposal;
2361 child->tsi = sa0->rekey[0].tsi;
2362 child->tsr = sa0->rekey[0].tsr;
2363 ikev2_create_tunnel_interface (km->vnet_main, sa0,
2366 if (sa0->is_initiator)
2368 vec_del1 (sa0->rekey, 0);
2372 len = ikev2_generate_message (sa0, ike0, 0);
2379 clib_warning ("IKEv2 exchange %u packet received from %U to %U",
2381 format_ip4_address, ip40->src_address.as_u8,
2382 format_ip4_address, ip40->dst_address.as_u8);
2386 /* if we are sending packet back, rewrite headers */
2389 next0 = IKEV2_NEXT_IP4_LOOKUP;
2390 if (sa0->is_initiator)
2392 ip40->dst_address.as_u32 = sa0->raddr.as_u32;
2393 ip40->src_address.as_u32 = sa0->iaddr.as_u32;
2397 ip40->dst_address.as_u32 = sa0->iaddr.as_u32;
2398 ip40->src_address.as_u32 = sa0->raddr.as_u32;
2401 clib_host_to_net_u16 (len + sizeof (udp_header_t));
2403 b0->current_length =
2404 len + sizeof (ip4_header_t) + sizeof (udp_header_t);
2405 ip40->length = clib_host_to_net_u16 (b0->current_length);
2406 ip40->checksum = ip4_header_checksum (ip40);
2409 if (sa0 && (sa0->state == IKEV2_STATE_DELETED ||
2410 sa0->state == IKEV2_STATE_NOTIFY_AND_DELETE))
2412 ikev2_child_sa_t *c;
2414 vec_foreach (c, sa0->childs)
2415 ikev2_delete_tunnel_interface (km->vnet_main, sa0, c);
2417 ikev2_delete_sa (sa0);
2419 sw_if_index0 = vnet_buffer (b0)->sw_if_index[VLIB_RX];
2421 if (PREDICT_FALSE ((node->flags & VLIB_NODE_FLAG_TRACE)
2422 && (b0->flags & VLIB_BUFFER_IS_TRACED)))
2424 ikev2_trace_t *t = vlib_add_trace (vm, node, b0, sizeof (*t));
2425 t->sw_if_index = sw_if_index0;
2426 t->next_index = next0;
2429 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
2430 n_left_to_next, bi0, next0);
2433 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
2436 vlib_node_increment_counter (vm, ikev2_node.index,
2437 IKEV2_ERROR_PROCESSED, frame->n_vectors);
2438 return frame->n_vectors;
2442 VLIB_REGISTER_NODE (ikev2_node,static) = {
2443 .function = ikev2_node_fn,
2445 .vector_size = sizeof (u32),
2446 .format_trace = format_ikev2_trace,
2447 .type = VLIB_NODE_TYPE_INTERNAL,
2449 .n_errors = ARRAY_LEN(ikev2_error_strings),
2450 .error_strings = ikev2_error_strings,
2452 .n_next_nodes = IKEV2_N_NEXT,
2455 [IKEV2_NEXT_IP4_LOOKUP] = "ip4-lookup",
2456 [IKEV2_NEXT_ERROR_DROP] = "error-drop",
2462 static clib_error_t *
2463 ikev2_set_initiator_proposals (vlib_main_t * vm, ikev2_sa_t * sa,
2464 ikev2_transforms_set * ts,
2465 ikev2_sa_proposal_t ** proposals, int is_ike)
2468 ikev2_main_t *km = &ikev2_main;
2469 ikev2_sa_proposal_t *proposal;
2470 vec_add2 (*proposals, proposal, 1);
2471 ikev2_sa_transform_t *td;
2476 vec_foreach (td, km->supported_transforms)
2478 if (td->type == IKEV2_TRANSFORM_TYPE_ENCR
2479 && td->encr_type == IKEV2_TRANSFORM_ENCR_TYPE_AES_CBC
2480 && td->key_len == ts->crypto_key_size / 8)
2483 attr[0] = clib_host_to_net_u16 (14 | (1 << 15));
2484 attr[1] = clib_host_to_net_u16 (td->key_len << 3);
2485 vec_add (td->attrs, (u8 *) attr, 4);
2486 vec_add1 (proposal->transforms, *td);
2495 r = clib_error_return (0, "Unsupported algorithm");
2501 vec_foreach (td, km->supported_transforms)
2503 if (td->type == IKEV2_TRANSFORM_TYPE_INTEG
2504 && td->integ_type == IKEV2_TRANSFORM_INTEG_TYPE_AUTH_HMAC_SHA1_96)
2506 vec_add1 (proposal->transforms, *td);
2513 r = clib_error_return (0, "Unsupported algorithm");
2521 vec_foreach (td, km->supported_transforms)
2523 if (td->type == IKEV2_TRANSFORM_TYPE_PRF
2524 && td->prf_type == IKEV2_TRANSFORM_PRF_TYPE_PRF_HMAC_SHA1)
2526 vec_add1 (proposal->transforms, *td);
2533 r = clib_error_return (0, "Unsupported algorithm");
2540 vec_foreach (td, km->supported_transforms)
2542 if (td->type == IKEV2_TRANSFORM_TYPE_DH && td->dh_type == ts->dh_type)
2544 vec_add1 (proposal->transforms, *td);
2547 sa->dh_group = td->dh_type;
2555 r = clib_error_return (0, "Unsupported algorithm");
2562 vec_foreach (td, km->supported_transforms)
2564 if (td->type == IKEV2_TRANSFORM_TYPE_ESN)
2566 vec_add1 (proposal->transforms, *td);
2573 r = clib_error_return (0, "Unsupported algorithm");
2582 static ikev2_profile_t *
2583 ikev2_profile_index_by_name (u8 * name)
2585 ikev2_main_t *km = &ikev2_main;
2588 p = mhash_get (&km->profile_index_by_name, name);
2592 return pool_elt_at_index (km->profiles, p[0]);
2597 ikev2_send_ike (vlib_main_t * vm, ip4_address_t * src, ip4_address_t * dst,
2606 b0 = vlib_get_buffer (vm, bi0);
2607 vlib_buffer_advance (b0, -sizeof (udp_header_t));
2608 udp0 = vlib_buffer_get_current (b0);
2609 vlib_buffer_advance (b0, -sizeof (ip4_header_t));
2610 ip40 = vlib_buffer_get_current (b0);
2613 ip40->ip_version_and_header_length = 0x45;
2615 ip40->fragment_id = 0;
2616 ip40->flags_and_fragment_offset = 0;
2618 ip40->protocol = IP_PROTOCOL_UDP;
2619 ip40->dst_address.as_u32 = dst->as_u32;
2620 ip40->src_address.as_u32 = src->as_u32;
2621 udp0->dst_port = clib_host_to_net_u16 (500);
2622 udp0->src_port = clib_host_to_net_u16 (500);
2623 udp0->length = clib_host_to_net_u16 (len + sizeof (udp_header_t));
2625 b0->current_length = len + sizeof (ip4_header_t) + sizeof (udp_header_t);
2626 ip40->length = clib_host_to_net_u16 (b0->current_length);
2627 ip40->checksum = ip4_header_checksum (ip40);
2630 /* send the request */
2631 f = vlib_get_frame_to_node (vm, ip4_lookup_node.index);
2632 to_next = vlib_frame_vector_args (f);
2635 vlib_put_frame_to_node (vm, ip4_lookup_node.index, f);
2640 ikev2_get_new_ike_header_buff (vlib_main_t * vm, ike_header_t ** ike)
2643 if (vlib_buffer_alloc (vm, &bi0, 1) != 1)
2648 vlib_buffer_t *b0 = vlib_get_buffer (vm, bi0);
2649 *ike = vlib_buffer_get_current (b0);
2654 ikev2_set_local_key (vlib_main_t * vm, u8 * file)
2656 ikev2_main_t *km = &ikev2_main;
2658 km->pkey = ikev2_load_key_file (file);
2659 if (km->pkey == NULL)
2660 return clib_error_return (0, "load key '%s' failed", file);
2666 ikev2_add_del_profile (vlib_main_t * vm, u8 * name, int is_add)
2668 ikev2_main_t *km = &ikev2_main;
2673 if (ikev2_profile_index_by_name (name))
2674 return clib_error_return (0, "policy %v already exists", name);
2676 pool_get (km->profiles, p);
2677 memset (p, 0, sizeof (*p));
2678 p->name = vec_dup (name);
2679 p->responder.sw_if_index = ~0;
2680 uword index = p - km->profiles;
2681 mhash_set_mem (&km->profile_index_by_name, name, &index, 0);
2685 p = ikev2_profile_index_by_name (name);
2687 return clib_error_return (0, "policy %v does not exists", name);
2690 pool_put (km->profiles, p);
2691 mhash_unset (&km->profile_index_by_name, name, 0);
2697 ikev2_set_profile_auth (vlib_main_t * vm, u8 * name, u8 auth_method,
2698 u8 * auth_data, u8 data_hex_format)
2703 p = ikev2_profile_index_by_name (name);
2707 r = clib_error_return (0, "unknown profile %v", name);
2710 vec_free (p->auth.data);
2711 p->auth.method = auth_method;
2712 p->auth.data = vec_dup (auth_data);
2713 p->auth.hex = data_hex_format;
2715 if (auth_method == IKEV2_AUTH_METHOD_RSA_SIG)
2717 vec_add1 (p->auth.data, 0);
2719 EVP_PKEY_free (p->auth.key);
2720 p->auth.key = ikev2_load_cert_file (auth_data);
2721 if (p->auth.key == NULL)
2722 return clib_error_return (0, "load cert '%s' failed", auth_data);
2729 ikev2_set_profile_id (vlib_main_t * vm, u8 * name, u8 id_type, u8 * data,
2735 if (id_type > IKEV2_ID_TYPE_ID_RFC822_ADDR
2736 && id_type < IKEV2_ID_TYPE_ID_KEY_ID)
2738 r = clib_error_return (0, "unsupported identity type %U",
2739 format_ikev2_id_type, id_type);
2743 p = ikev2_profile_index_by_name (name);
2747 r = clib_error_return (0, "unknown profile %v", name);
2753 vec_free (p->loc_id.data);
2754 p->loc_id.type = id_type;
2755 p->loc_id.data = vec_dup (data);
2759 vec_free (p->rem_id.data);
2760 p->rem_id.type = id_type;
2761 p->rem_id.data = vec_dup (data);
2768 ikev2_set_profile_ts (vlib_main_t * vm, u8 * name, u8 protocol_id,
2769 u16 start_port, u16 end_port, ip4_address_t start_addr,
2770 ip4_address_t end_addr, int is_local)
2775 p = ikev2_profile_index_by_name (name);
2779 r = clib_error_return (0, "unknown profile %v", name);
2785 p->loc_ts.start_addr.as_u32 = start_addr.as_u32;
2786 p->loc_ts.end_addr.as_u32 = end_addr.as_u32;
2787 p->loc_ts.start_port = start_port;
2788 p->loc_ts.end_port = end_port;
2789 p->loc_ts.protocol_id = protocol_id;
2790 p->loc_ts.ts_type = 7;
2794 p->rem_ts.start_addr.as_u32 = start_addr.as_u32;
2795 p->rem_ts.end_addr.as_u32 = end_addr.as_u32;
2796 p->rem_ts.start_port = start_port;
2797 p->rem_ts.end_port = end_port;
2798 p->rem_ts.protocol_id = protocol_id;
2799 p->rem_ts.ts_type = 7;
2807 ikev2_set_profile_responder (vlib_main_t * vm, u8 * name,
2808 u32 sw_if_index, ip4_address_t ip4)
2813 p = ikev2_profile_index_by_name (name);
2817 r = clib_error_return (0, "unknown profile %v", name);
2821 p->responder.sw_if_index = sw_if_index;
2822 p->responder.ip4 = ip4;
2828 ikev2_set_profile_ike_transforms (vlib_main_t * vm, u8 * name,
2829 ikev2_transform_encr_type_t crypto_alg,
2830 ikev2_transform_integ_type_t integ_alg,
2831 ikev2_transform_dh_type_t dh_type,
2832 u32 crypto_key_size)
2837 p = ikev2_profile_index_by_name (name);
2841 r = clib_error_return (0, "unknown profile %v", name);
2845 p->ike_ts.crypto_alg = crypto_alg;
2846 p->ike_ts.integ_alg = integ_alg;
2847 p->ike_ts.dh_type = dh_type;
2848 p->ike_ts.crypto_key_size = crypto_key_size;
2853 ikev2_set_profile_esp_transforms (vlib_main_t * vm, u8 * name,
2854 ikev2_transform_encr_type_t crypto_alg,
2855 ikev2_transform_integ_type_t integ_alg,
2856 ikev2_transform_dh_type_t dh_type,
2857 u32 crypto_key_size)
2862 p = ikev2_profile_index_by_name (name);
2866 r = clib_error_return (0, "unknown profile %v", name);
2870 p->esp_ts.crypto_alg = crypto_alg;
2871 p->esp_ts.integ_alg = integ_alg;
2872 p->esp_ts.dh_type = dh_type;
2873 p->esp_ts.crypto_key_size = crypto_key_size;
2878 ikev2_set_profile_sa_lifetime (vlib_main_t * vm, u8 * name,
2879 u64 lifetime, u32 jitter, u32 handover,
2885 p = ikev2_profile_index_by_name (name);
2889 r = clib_error_return (0, "unknown profile %v", name);
2893 p->lifetime = lifetime;
2894 p->lifetime_jitter = jitter;
2895 p->handover = handover;
2896 p->lifetime_maxdata = maxdata;
2901 ikev2_initiate_sa_init (vlib_main_t * vm, u8 * name)
2905 ip4_main_t *im = &ip4_main;
2906 ikev2_main_t *km = &ikev2_main;
2908 p = ikev2_profile_index_by_name (name);
2912 r = clib_error_return (0, "unknown profile %v", name);
2916 if (p->responder.sw_if_index == ~0 || p->responder.ip4.data_u32 == 0)
2918 r = clib_error_return (0, "responder not set for profile %v", name);
2923 /* Create the Initiator Request */
2927 ip_lookup_main_t *lm = &im->lookup_main;
2929 int len = sizeof (ike_header_t);
2931 /* Get own iface IP */
2933 lm->if_address_pool_index_by_sw_if_index[p->responder.sw_if_index];
2934 ip_interface_address_t *if_add =
2935 pool_elt_at_index (lm->if_address_pool, if_add_index0);
2936 ip4_address_t *if_ip = ip_interface_address_get_address (lm, if_add);
2938 bi0 = ikev2_get_new_ike_header_buff (vm, &ike0);
2940 /* Prepare the SA and the IKE payload */
2942 memset (&sa, 0, sizeof (ikev2_sa_t));
2943 ikev2_payload_chain_t *chain = 0;
2944 ikev2_payload_new_chain (chain);
2946 /* Build the IKE proposal payload */
2947 ikev2_sa_proposal_t *proposals = 0;
2948 ikev2_set_initiator_proposals (vm, &sa, &p->ike_ts, &proposals, 1);
2949 proposals[0].proposal_num = 1;
2950 proposals[0].protocol_id = IKEV2_PROTOCOL_IKE;
2952 /* Add and then cleanup proposal data */
2953 ikev2_payload_add_sa (chain, proposals);
2954 ikev2_sa_free_proposal_vector (&proposals);
2956 sa.is_initiator = 1;
2958 sa.state = IKEV2_STATE_SA_INIT;
2959 ikev2_generate_sa_init_data (&sa);
2960 ikev2_payload_add_ke (chain, sa.dh_group, sa.i_dh_data);
2961 ikev2_payload_add_nonce (chain, sa.i_nonce);
2963 /* Build the child SA proposal */
2964 vec_resize (sa.childs, 1);
2965 ikev2_set_initiator_proposals (vm, &sa, &p->esp_ts,
2966 &sa.childs[0].i_proposals, 0);
2967 sa.childs[0].i_proposals[0].proposal_num = 1;
2968 sa.childs[0].i_proposals[0].protocol_id = IKEV2_PROTOCOL_ESP;
2969 RAND_bytes ((u8 *) & sa.childs[0].i_proposals[0].spi,
2970 sizeof (sa.childs[0].i_proposals[0].spi));
2974 /* Add NAT detection notification messages (mandatory) */
2975 u8 nat_detection_source[8 + 8 + 4 + 2];
2976 u8 *nat_detection_sha1 = vec_new (u8, 20);
2978 u64 tmpspi = clib_host_to_net_u64 (sa.ispi);
2979 clib_memcpy (&nat_detection_source[0], &tmpspi, sizeof (tmpspi));
2980 tmpspi = clib_host_to_net_u64 (sa.rspi);
2981 clib_memcpy (&nat_detection_source[8], &tmpspi, sizeof (tmpspi));
2982 u16 tmpport = clib_host_to_net_u16 (500);
2983 clib_memcpy (&nat_detection_source[8 + 8 + 4], &tmpport,
2985 u32 tmpip = clib_host_to_net_u32 (if_ip->as_u32);
2986 clib_memcpy (&nat_detection_source[8 + 8], &tmpip, sizeof (tmpip));
2987 SHA1 (nat_detection_source, sizeof (nat_detection_source),
2988 nat_detection_sha1);
2989 ikev2_payload_add_notify (chain, IKEV2_NOTIFY_MSG_NAT_DETECTION_SOURCE_IP,
2990 nat_detection_sha1);
2991 tmpip = clib_host_to_net_u32 (p->responder.ip4.as_u32);
2992 clib_memcpy (&nat_detection_source[8 + 8], &tmpip, sizeof (tmpip));
2993 SHA1 (nat_detection_source, sizeof (nat_detection_source),
2994 nat_detection_sha1);
2995 ikev2_payload_add_notify (chain,
2996 IKEV2_NOTIFY_MSG_NAT_DETECTION_DESTINATION_IP,
2997 nat_detection_sha1);
2998 vec_free (nat_detection_sha1);
3000 u8 *sig_hash_algo = vec_new (u8, 8);
3001 u64 tmpsig = clib_host_to_net_u64 (0x0001000200030004);
3002 clib_memcpy (sig_hash_algo, &tmpsig, sizeof (tmpsig));
3003 ikev2_payload_add_notify (chain,
3004 IKEV2_NOTIFY_MSG_SIGNATURE_HASH_ALGORITHMS,
3006 vec_free (sig_hash_algo);
3009 /* Buffer update and bolierplate */
3010 len += vec_len (chain->data);
3011 ike0->nextpayload = chain->first_payload_type;
3012 ike0->length = clib_host_to_net_u32 (len);
3013 clib_memcpy (ike0->payload, chain->data, vec_len (chain->data));
3014 ikev2_payload_destroy_chain (chain);
3016 ike0->version = IKE_VERSION_2;
3017 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
3018 ike0->exchange = IKEV2_EXCHANGE_SA_INIT;
3019 ike0->ispi = sa.ispi;
3021 /* store whole IKE payload - needed for PSK auth */
3022 vec_free (sa.last_sa_init_req_packet_data);
3023 vec_add (sa.last_sa_init_req_packet_data, ike0, len);
3025 /* add data to the SA then add it to the pool */
3026 sa.iaddr.as_u32 = if_ip->as_u32;
3027 sa.raddr.as_u32 = p->responder.ip4.as_u32;
3028 sa.i_id.type = p->loc_id.type;
3029 sa.i_id.data = vec_dup (p->loc_id.data);
3030 sa.i_auth.method = p->auth.method;
3031 sa.i_auth.hex = p->auth.hex;
3032 sa.i_auth.data = vec_dup (p->auth.data);
3033 sa.i_auth.key = vec_dup (p->auth.key);
3034 vec_add (sa.childs[0].tsi, &p->loc_ts, 1);
3035 vec_add (sa.childs[0].tsr, &p->rem_ts, 1);
3037 /* add SA to the pool */
3038 ikev2_sa_t *sa0 = 0;
3039 pool_get (km->sais, sa0);
3040 clib_memcpy (sa0, &sa, sizeof (*sa0));
3041 hash_set (km->sa_by_ispi, sa0->ispi, sa0 - km->sais);
3043 ikev2_send_ike (vm, if_ip, &p->responder.ip4, bi0, len);
3051 ikev2_delete_child_sa_internal (vlib_main_t * vm, ikev2_sa_t * sa,
3052 ikev2_child_sa_t * csa)
3054 /* Create the Initiator notification for child SA removal */
3055 ikev2_main_t *km = &ikev2_main;
3060 bi0 = ikev2_get_new_ike_header_buff (vm, &ike0);
3063 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
3064 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
3065 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
3066 vec_resize (sa->del, 1);
3067 sa->del->protocol_id = IKEV2_PROTOCOL_ESP;
3068 sa->del->spi = csa->i_proposals->spi;
3069 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id + 1);
3070 sa->last_init_msg_id = clib_net_to_host_u32 (ike0->msgid);
3071 len = ikev2_generate_message (sa, ike0, 0);
3073 ikev2_send_ike (vm, &sa->iaddr, &sa->raddr, bi0, len);
3075 /* delete local child SA */
3076 ikev2_delete_tunnel_interface (km->vnet_main, sa, csa);
3077 ikev2_sa_del_child_sa (sa, csa);
3081 ikev2_initiate_delete_child_sa (vlib_main_t * vm, u32 ispi)
3084 ikev2_main_t *km = &ikev2_main;
3085 ikev2_main_per_thread_data_t *tkm;
3086 ikev2_sa_t *fsa = 0;
3087 ikev2_child_sa_t *fchild = 0;
3089 /* Search for the child SA */
3090 vec_foreach (tkm, km->per_thread_data)
3096 pool_foreach (sa, tkm->sas, ({
3097 fchild = ikev2_sa_get_child(sa, ispi, IKEV2_PROTOCOL_ESP, 1);
3107 if (!fchild || !fsa)
3109 r = clib_error_return (0, "Child SA not found");
3114 ikev2_delete_child_sa_internal (vm, fsa, fchild);
3121 ikev2_initiate_delete_ike_sa (vlib_main_t * vm, u64 ispi)
3124 ikev2_main_t *km = &ikev2_main;
3125 ikev2_main_per_thread_data_t *tkm;
3126 ikev2_sa_t *fsa = 0;
3127 ikev2_main_per_thread_data_t *ftkm = 0;
3129 /* Search for the IKE SA */
3130 vec_foreach (tkm, km->per_thread_data)
3136 pool_foreach (sa, tkm->sas, ({
3137 if (sa->ispi == ispi)
3149 r = clib_error_return (0, "IKE SA not found");
3154 /* Create the Initiator notification for IKE SA removal */
3160 bi0 = ikev2_get_new_ike_header_buff (vm, &ike0);
3163 ike0->exchange = IKEV2_EXCHANGE_INFORMATIONAL;
3164 ike0->ispi = clib_host_to_net_u64 (fsa->ispi);
3165 ike0->rspi = clib_host_to_net_u64 (fsa->rspi);
3166 vec_resize (fsa->del, 1);
3167 fsa->del->protocol_id = IKEV2_PROTOCOL_IKE;
3168 fsa->del->spi = ispi;
3169 ike0->msgid = clib_host_to_net_u32 (fsa->last_init_msg_id + 1);
3170 fsa->last_init_msg_id = clib_net_to_host_u32 (ike0->msgid);
3171 len = ikev2_generate_message (fsa, ike0, 0);
3173 ikev2_send_ike (vm, &fsa->iaddr, &fsa->raddr, bi0, len);
3177 /* delete local SA */
3178 ikev2_child_sa_t *c;
3179 vec_foreach (c, fsa->childs)
3181 ikev2_delete_tunnel_interface (km->vnet_main, fsa, c);
3182 ikev2_sa_del_child_sa (fsa, c);
3184 ikev2_sa_free_all_vec (fsa);
3185 uword *p = hash_get (ftkm->sa_by_rspi, fsa->rspi);
3188 hash_unset (ftkm->sa_by_rspi, fsa->rspi);
3189 pool_put (ftkm->sas, fsa);
3197 ikev2_rekey_child_sa_internal (vlib_main_t * vm, ikev2_sa_t * sa,
3198 ikev2_child_sa_t * csa)
3200 /* Create the Initiator request for create child SA */
3206 bi0 = ikev2_get_new_ike_header_buff (vm, &ike0);
3209 ike0->version = IKE_VERSION_2;
3210 ike0->flags = IKEV2_HDR_FLAG_INITIATOR;
3211 ike0->exchange = IKEV2_EXCHANGE_CREATE_CHILD_SA;
3212 ike0->ispi = clib_host_to_net_u64 (sa->ispi);
3213 ike0->rspi = clib_host_to_net_u64 (sa->rspi);
3214 ike0->msgid = clib_host_to_net_u32 (sa->last_init_msg_id + 1);
3215 sa->last_init_msg_id = clib_net_to_host_u32 (ike0->msgid);
3217 ikev2_rekey_t *rekey;
3218 vec_add2 (sa->rekey, rekey, 1);
3219 ikev2_sa_proposal_t *proposals = vec_dup (csa->i_proposals);
3222 RAND_bytes ((u8 *) & proposals[0].spi, sizeof (proposals[0].spi));
3223 rekey->spi = proposals[0].spi;
3224 rekey->ispi = csa->i_proposals->spi;
3225 len = ikev2_generate_message (sa, ike0, proposals);
3226 ikev2_send_ike (vm, &sa->iaddr, &sa->raddr, bi0, len);
3227 vec_free (proposals);
3231 ikev2_initiate_rekey_child_sa (vlib_main_t * vm, u32 ispi)
3234 ikev2_main_t *km = &ikev2_main;
3235 ikev2_main_per_thread_data_t *tkm;
3236 ikev2_sa_t *fsa = 0;
3237 ikev2_child_sa_t *fchild = 0;
3239 /* Search for the child SA */
3240 vec_foreach (tkm, km->per_thread_data)
3246 pool_foreach (sa, tkm->sas, ({
3247 fchild = ikev2_sa_get_child(sa, ispi, IKEV2_PROTOCOL_ESP, 1);
3257 if (!fchild || !fsa)
3259 r = clib_error_return (0, "Child SA not found");
3264 ikev2_rekey_child_sa_internal (vm, fsa, fchild);
3271 ikev2_init (vlib_main_t * vm)
3273 ikev2_main_t *km = &ikev2_main;
3274 clib_error_t *error;
3275 vlib_thread_main_t *tm = vlib_get_thread_main ();
3278 memset (km, 0, sizeof (ikev2_main_t));
3279 km->vnet_main = vnet_get_main ();
3282 ikev2_crypto_init (km);
3284 mhash_init_vec_string (&km->profile_index_by_name, sizeof (uword));
3286 vec_validate (km->per_thread_data, tm->n_vlib_mains - 1);
3287 for (thread_id = 0; thread_id < tm->n_vlib_mains - 1; thread_id++)
3289 km->per_thread_data[thread_id].sa_by_rspi =
3290 hash_create (0, sizeof (uword));
3293 km->sa_by_ispi = hash_create (0, sizeof (uword));
3296 if ((error = vlib_call_init_function (vm, ikev2_cli_init)))
3299 udp_register_dst_port (vm, 500, ikev2_node.index, 1);
3306 ikev2_mngr_process_child_sa (ikev2_sa_t * sa, ikev2_child_sa_t * csa)
3308 ikev2_main_t *km = &ikev2_main;
3309 vlib_main_t *vm = km->vlib_main;
3310 f64 now = vlib_time_now (vm);
3313 if (sa->is_initiator && sa->profile && csa->time_to_expiration
3314 && now > csa->time_to_expiration)
3316 if (!csa->is_expired || csa->rekey_retries > 0)
3318 ikev2_rekey_child_sa_internal (vm, sa, csa);
3319 csa->time_to_expiration = now + sa->profile->handover;
3320 csa->is_expired = 1;
3321 if (csa->rekey_retries == 0)
3323 csa->rekey_retries = 5;
3325 else if (csa->rekey_retries > 0)
3327 csa->rekey_retries--;
3328 clib_warning ("Rekeing Child SA 0x%x, retries left %d",
3329 csa->i_proposals->spi, csa->rekey_retries);
3330 if (csa->rekey_retries == 0)
3332 csa->rekey_retries = -1;
3339 csa->time_to_expiration = 0;
3340 ikev2_delete_child_sa_internal (vm, sa, csa);
3349 ikev2_mngr_process_ipsec_sa (ipsec_sa_t * ipsec_sa)
3351 ikev2_main_t *km = &ikev2_main;
3352 vlib_main_t *vm = km->vlib_main;
3353 ikev2_main_per_thread_data_t *tkm;
3354 ikev2_sa_t *fsa = 0;
3355 ikev2_child_sa_t *fchild = 0;
3356 f64 now = vlib_time_now (vm);
3358 /* Search for the SA and child SA */
3359 vec_foreach (tkm, km->per_thread_data)
3365 pool_foreach (sa, tkm->sas, ({
3366 fchild = ikev2_sa_get_child(sa, ipsec_sa->spi, IKEV2_PROTOCOL_ESP, 1);
3376 if (fchild && fsa && fsa->profile && fsa->profile->lifetime_maxdata)
3378 if (!fchild->is_expired
3379 && ipsec_sa->total_data_size > fsa->profile->lifetime_maxdata)
3381 fchild->time_to_expiration = now;
3386 static vlib_node_registration_t ikev2_mngr_process_node;
3389 ikev2_mngr_process_fn (vlib_main_t * vm, vlib_node_runtime_t * rt,
3392 ikev2_main_t *km = &ikev2_main;
3393 ipsec_main_t *im = &ipsec_main;
3398 vlib_process_wait_for_event_or_clock (vm, 1);
3399 vlib_process_get_events (vm, NULL);
3401 /* process ike child sas */
3402 ikev2_main_per_thread_data_t *tkm;
3403 vec_foreach (tkm, km->per_thread_data)
3407 pool_foreach (sa, tkm->sas, ({
3408 ikev2_child_sa_t *c;
3409 vec_foreach (c, sa->childs)
3411 req_sent |= ikev2_mngr_process_child_sa(sa, c);
3417 /* process ipsec sas */
3420 pool_foreach (sa, im->sad, ({
3421 ikev2_mngr_process_ipsec_sa(sa);
3427 vlib_process_wait_for_event_or_clock (vm, 5);
3428 vlib_process_get_events (vm, NULL);
3437 VLIB_REGISTER_NODE (ikev2_mngr_process_node, static) = {
3438 .function = ikev2_mngr_process_fn,
3439 .type = VLIB_NODE_TYPE_PROCESS,
3441 "ikev2-manager-process",
3447 * fd.io coding-style-patch-verification: ON
3450 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob