/* * Copyright (c) 2017 Cisco and/or its affiliates. * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at: * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include "vom/acl_list_cmds.hpp" namespace VOM { namespace ACL { namespace list_cmds { /* * Jumping through hoops to not expose the VAPI types publically */ static void to_vpp(const l2_rule& rule, vapi_type_macip_acl_rule& payload) { payload.is_permit = rule.action().value(); rule.src_ip().to_vpp(&payload.is_ipv6, payload.src_ip_addr, &payload.src_ip_prefix_len); rule.mac().to_bytes(payload.src_mac, 6); rule.mac_mask().to_bytes(payload.src_mac_mask, 6); } static void to_vpp(const l3_rule& rule, vapi_type_acl_rule& payload) { payload.is_permit = rule.action().value(); rule.src().to_vpp(&payload.is_ipv6, payload.src_ip_addr, &payload.src_ip_prefix_len); rule.dst().to_vpp(&payload.is_ipv6, payload.dst_ip_addr, &payload.dst_ip_prefix_len); payload.proto = rule.proto(); payload.srcport_or_icmptype_first = rule.srcport_or_icmptype_first(); payload.srcport_or_icmptype_last = rule.srcport_or_icmptype_last(); payload.dstport_or_icmpcode_first = rule.dstport_or_icmpcode_first(); payload.dstport_or_icmpcode_last = rule.dstport_or_icmpcode_last(); payload.tcp_flags_mask = rule.tcp_flags_mask(); payload.tcp_flags_value = rule.tcp_flags_value(); } template <> rc_t l3_update_cmd::issue(connection& con) { msg_t req(con.ctx(), m_rules.size(), std::ref(*this)); uint32_t ii = 0; auto& payload = req.get_request().get_payload(); payload.acl_index = m_hw_item.data().value(); payload.count = m_rules.size(); memset(payload.tag, 0, sizeof(payload.tag)); memcpy(payload.tag, m_key.c_str(), std::min(m_key.length(), sizeof(payload.tag))); auto it = m_rules.cbegin(); while (it != m_rules.cend()) { to_vpp(*it, payload.r[ii]); ++it; ++ii; } VAPI_CALL(req.execute()); wait(); if (m_hw_item.rc() == rc_t::OK) insert_acl(); return rc_t::OK; } template <> rc_t l3_delete_cmd::issue(connection& con) { msg_t req(con.ctx(), std::ref(*this)); auto& payload = req.get_request().get_payload(); payload.acl_index = m_hw_item.data().value(); VAPI_CALL(req.execute()); wait(); m_hw_item.set(rc_t::NOOP); remove_acl(); return rc_t::OK; } template <> rc_t l3_dump_cmd::issue(connection& con) { m_dump.reset(new msg_t(con.ctx(), std::ref(*this))); auto& payload = m_dump->get_request().get_payload(); payload.acl_index = ~0; VAPI_CALL(m_dump->execute()); wait(); return rc_t::OK; } template <> rc_t l2_update_cmd::issue(connection& con) { msg_t req(con.ctx(), m_rules.size(), std::ref(*this)); uint32_t ii = 0; auto& payload = req.get_request().get_payload(); // payload.acl_index = m_hw_item.data().value(); payload.count = m_rules.size(); memset(payload.tag, 0, sizeof(payload.tag)); memcpy(payload.tag, m_key.c_str(), std::min(m_key.length(), sizeof(payload.tag))); auto it = m_rules.cbegin(); while (it != m_rules.cend()) { to_vpp(*it, payload.r[ii]); ++it; ++ii; } VAPI_CALL(req.execute()); wait(); if (m_hw_item.rc() == rc_t::OK) insert_acl(); return rc_t::OK; } template <> rc_t l2_delete_cmd::issue(connection& con) { msg_t req(con.ctx(), std::ref(*this)); auto& payload = req.get_request().get_payload(); payload.acl_index = m_hw_item.data().value(); VAPI_CALL(req.execute()); wait(); m_hw_item.set(rc_t::NOOP); remove_acl(); return rc_t::OK; } template <> rc_t l2_dump_cmd::issue(connection& con) { m_dump.reset(new msg_t(con.ctx(), std::ref(*this))); auto& payload = m_dump->get_request().get_payload(); payload.acl_index = ~0; VAPI_CALL(m_dump->execute()); wait(); return rc_t::OK; } }; // namespace list_cmds }; // namespace ACL }; // namespace VOM /* * fd.io coding-style-patch-verification: ON * * Local Variables: * eval: (c-set-style "mozilla") * End: */