cmm/src/keytrack.h - vendor/mindspeed/drivers - Git at Google

 /*
  *
  *  Copyright (C) 2007 Mindspeed Technologies, Inc.
  *
  * This program is free software; you can redistribute it and/or modify
  * it under the terms of the GNU General Public License as published by
  * the Free Software Foundation; either version 2 of the License, or
  * (at your option) any later version.
  *
  * This program is distributed in the hope that it will be useful,
  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  * GNU General Public License for more details.
  *
  * You should have received a copy of the GNU General Public License
  * along with this program; if not, write to the Free Software
  * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
  */
 #ifndef __KEYTRACK_H__
 #define __KEYTRACK_H__

 #include "list.h"
 #include "conntrack.h"


 #define MAX_SA_BUNDLE 4
 #define FLOW_HASH_TABLE_SIZE	CONNTRACK_HASH_TABLE_SIZE	// uses HASH_CT macros for keys

 struct flowi_common {
 	int	flowic_oif;
 	int	flowic_iif;
 	__u32	flowic_mark;
 	__u8	flowic_tos;
 	__u8	flowic_scope;
 	__u8	flowic_proto;
 	__u8	flowic_flags;
 	#define FLOWI_FLAG_ANYSRC		0x01
 	#define FLOWI_FLAG_PRECOW_METRICS	0x02
 	#define FLOWI_FLAG_CAN_SLEEP		0x04
 	__u32	flowic_secid;
 };

 union flowi_uli {
 	struct {
 		__be16	dport;
 		__be16	sport;
 	} ports;

 	struct {
 		__u8	type;
 		__u8	code;
 	} icmpt;

 	struct {
 		__le16	dport;
 		__le16	sport;
 	} dnports;

 	__be32		spi;
 	__be32		gre_key;

 	struct {
 		__u8	type;
 	} mht;
 };

 struct flowi4 {
 	struct flowi_common	__fl_common;
 	#define flowi4_oif		__fl_common.flowic_oif
 	#define flowi4_iif		__fl_common.flowic_iif
 	#define flowi4_mark		__fl_common.flowic_mark
 	#define flowi4_tos		__fl_common.flowic_tos
 	#define flowi4_scope		__fl_common.flowic_scope
 	#define flowi4_proto		__fl_common.flowic_proto
 	#define flowi4_flags		__fl_common.flowic_flags
 	#define flowi4_secid		__fl_common.flowic_secid
 	__be32			daddr;
 	__be32			saddr;
 	union flowi_uli		uli;
 	#define fl4_sport		uli.ports.sport
 	#define fl4_dport		uli.ports.dport
 	#define fl4_icmp_type		uli.icmpt.type
 	#define fl4_icmp_code		uli.icmpt.code
 	#define fl4_ipsec_spi		uli.spi
 	#define fl4_mh_type		uli.mht.type
 	#define fl4_gre_key		uli.gre_key
 };

 struct flowi6 {
 	struct flowi_common	__fl_common;
 	#define flowi6_oif		__fl_common.flowic_oif
 	#define flowi6_iif		__fl_common.flowic_iif
 	#define flowi6_mark		__fl_common.flowic_mark
 	#define flowi6_tos		__fl_common.flowic_tos
 	#define flowi6_scope		__fl_common.flowic_scope
 	#define flowi6_proto		__fl_common.flowic_proto
 	#define flowi6_flags		__fl_common.flowic_flags
 	#define flowi6_secid		__fl_common.flowic_secid
 	struct in6_addr		daddr;
 	struct in6_addr		saddr;
 	__be32			flowlabel;
 	union flowi_uli		uli;
 	#define fl6_sport		uli.ports.sport
 	#define fl6_dport		uli.ports.dport
 	#define fl6_icmp_type		uli.icmpt.type
 	#define fl6_icmp_code		uli.icmpt.code
 	#define fl6_ipsec_spi		uli.spi
 	#define fl6_mh_type		uli.mht.type
 	#define fl6_gre_key		uli.gre_key
 };

 struct flowidn {
 	struct flowi_common	__fl_common;
 	#define flowidn_oif		__fl_common.flowic_oif
 	#define flowidn_iif		__fl_common.flowic_iif
 	#define flowidn_mark		__fl_common.flowic_mark
 	#define flowidn_scope		__fl_common.flowic_scope
 	#define flowidn_proto		__fl_common.flowic_proto
 	#define flowidn_flags		__fl_common.flowic_flags
 	__le16			daddr;
 	__le16			saddr;
 	union flowi_uli		uli;
 	#define fld_sport		uli.ports.sport
 	#define fld_dport		uli.ports.dport
 };

 struct flowi {
 	union {
 		struct flowi_common	__fl_common;
 		struct flowi4		ip4;
 		struct flowi6		ip6;
 		struct flowidn		dn;
 	} u;
 	#define flowi_oif	u.__fl_common.flowic_oif
 	#define flowi_iif	u.__fl_common.flowic_iif
 	#define flowi_mark	u.__fl_common.flowic_mark
 	#define flowi_tos	u.__fl_common.flowic_tos
 	#define flowi_scope	u.__fl_common.flowic_scope
 	#define flowi_proto	u.__fl_common.flowic_proto
 	#define flowi_flags	u.__fl_common.flowic_flags
 	#define flowi_secid	u.__fl_common.flowic_secid
 };


 struct FlowEntry
 {
 	struct list_head list;
 	struct flowi  fl;
 	unsigned char sa_nr;
 	unsigned short family;
 	unsigned short dir;
 	int flags;
 	unsigned short sa_handle[MAX_SA_BUNDLE];
 	unsigned int ref_count;
 };

 typedef struct netkey_sa_update_cmd{
 	unsigned short sagd;
 	unsigned short rsvd;
 	unsigned long long bytes;
 	unsigned long long packets;
 }netkey_sa_update_cmd_t;

 #define SAQUERY_UNKNOWN_CMD	0
 #define SAQUERY_ENABLE_CMD	1
 #define SAQUERY_TIMER_CMD	2

 #define NETKEY_CMD_SA_INFO_UPDATE	0x0a0c

 extern pthread_mutex_t flowMutex;
 extern struct  list_head flow_table[FLOW_HASH_TABLE_SIZE];

 int cmmKeyCatch(unsigned short fcode, unsigned short len, unsigned short *payload);
 int cmmKeyEnginetoIPSec(FCI_CLIENT *fci_handle, unsigned short fcode, unsigned short len, unsigned short *payload);
 int cmmIPSectoKeyEngine(FCI_CLIENT *fci_handle, unsigned short fcode, unsigned short len, unsigned short *payload);
 int cmmFlowKeyEngineRemove(FCI_CLIENT *fci_handle, struct FlowEntry *fentry);

 struct FlowEntry *__cmmFlowFind(int family, const unsigned int *Saddr, const unsigned int *Daddr, unsigned short Sport, unsigned short Dport, unsigned char proto);
 void __cmmFlowRemove(struct FlowEntry *flow);
 struct FlowEntry *__cmmFlowAdd(int family, struct flowi *fl, unsigned char sa_nr, unsigned short *sa_handle, unsigned short dir);
 struct FlowEntry *__cmmFlowGet(int family, const unsigned int *Saddr, const unsigned int *Daddr, unsigned short Sport, unsigned short Dport, unsigned char proto);
 void __cmmFlowPut(struct FlowEntry *flow);

 int cmmDPDSaQuerySetProcess(char ** keywords, int tabStart, daemon_handle_t daemon_handle);
 int cmmSaQueryTimerShow(struct cli_def * cli, char *command, char *argv[], int argc);
 int cmmDPDSAQUERYProcessClientCmd(u_int8_t *cmd_buf, u_int16_t *res_buf, u_int16_t *res_len);
 #endif
	/*
	*
	* Copyright (C) 2007 Mindspeed Technologies, Inc.
	*
	* This program is free software; you can redistribute it and/or modify
	* it under the terms of the GNU General Public License as published by
	* the Free Software Foundation; either version 2 of the License, or
	* (at your option) any later version.
	*
	* This program is distributed in the hope that it will be useful,
	* but WITHOUT ANY WARRANTY; without even the implied warranty of
	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
	* GNU General Public License for more details.
	*
	* You should have received a copy of the GNU General Public License
	* along with this program; if not, write to the Free Software
	* Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
	*/
	#ifndef __KEYTRACK_H__
	#define __KEYTRACK_H__

	#include "list.h"
	#include "conntrack.h"


	#define MAX_SA_BUNDLE 4
	#define FLOW_HASH_TABLE_SIZE CONNTRACK_HASH_TABLE_SIZE // uses HASH_CT macros for keys

	struct flowi_common {
	int flowic_oif;
	int flowic_iif;
	__u32 flowic_mark;
	__u8 flowic_tos;
	__u8 flowic_scope;
	__u8 flowic_proto;
	__u8 flowic_flags;
	#define FLOWI_FLAG_ANYSRC 0x01
	#define FLOWI_FLAG_PRECOW_METRICS 0x02
	#define FLOWI_FLAG_CAN_SLEEP 0x04
	__u32 flowic_secid;
	};

	union flowi_uli {
	struct {
	__be16 dport;
	__be16 sport;
	} ports;

	struct {
	__u8 type;
	__u8 code;
	} icmpt;

	struct {
	__le16 dport;
	__le16 sport;
	} dnports;

	__be32 spi;
	__be32 gre_key;

	struct {
	__u8 type;
	} mht;
	};

	struct flowi4 {
	struct flowi_common __fl_common;
	#define flowi4_oif __fl_common.flowic_oif
	#define flowi4_iif __fl_common.flowic_iif
	#define flowi4_mark __fl_common.flowic_mark
	#define flowi4_tos __fl_common.flowic_tos
	#define flowi4_scope __fl_common.flowic_scope
	#define flowi4_proto __fl_common.flowic_proto
	#define flowi4_flags __fl_common.flowic_flags
	#define flowi4_secid __fl_common.flowic_secid
	__be32 daddr;
	__be32 saddr;
	union flowi_uli uli;
	#define fl4_sport uli.ports.sport
	#define fl4_dport uli.ports.dport
	#define fl4_icmp_type uli.icmpt.type
	#define fl4_icmp_code uli.icmpt.code
	#define fl4_ipsec_spi uli.spi
	#define fl4_mh_type uli.mht.type
	#define fl4_gre_key uli.gre_key
	};

	struct flowi6 {
	struct flowi_common __fl_common;
	#define flowi6_oif __fl_common.flowic_oif
	#define flowi6_iif __fl_common.flowic_iif
	#define flowi6_mark __fl_common.flowic_mark
	#define flowi6_tos __fl_common.flowic_tos
	#define flowi6_scope __fl_common.flowic_scope
	#define flowi6_proto __fl_common.flowic_proto
	#define flowi6_flags __fl_common.flowic_flags
	#define flowi6_secid __fl_common.flowic_secid
	struct in6_addr daddr;
	struct in6_addr saddr;
	__be32 flowlabel;
	union flowi_uli uli;
	#define fl6_sport uli.ports.sport
	#define fl6_dport uli.ports.dport
	#define fl6_icmp_type uli.icmpt.type
	#define fl6_icmp_code uli.icmpt.code
	#define fl6_ipsec_spi uli.spi
	#define fl6_mh_type uli.mht.type
	#define fl6_gre_key uli.gre_key
	};

	struct flowidn {
	struct flowi_common __fl_common;
	#define flowidn_oif __fl_common.flowic_oif
	#define flowidn_iif __fl_common.flowic_iif
	#define flowidn_mark __fl_common.flowic_mark
	#define flowidn_scope __fl_common.flowic_scope
	#define flowidn_proto __fl_common.flowic_proto
	#define flowidn_flags __fl_common.flowic_flags
	__le16 daddr;
	__le16 saddr;
	union flowi_uli uli;
	#define fld_sport uli.ports.sport
	#define fld_dport uli.ports.dport
	};

	struct flowi {
	union {
	struct flowi_common __fl_common;
	struct flowi4 ip4;
	struct flowi6 ip6;
	struct flowidn dn;
	} u;
	#define flowi_oif u.__fl_common.flowic_oif
	#define flowi_iif u.__fl_common.flowic_iif
	#define flowi_mark u.__fl_common.flowic_mark
	#define flowi_tos u.__fl_common.flowic_tos
	#define flowi_scope u.__fl_common.flowic_scope
	#define flowi_proto u.__fl_common.flowic_proto
	#define flowi_flags u.__fl_common.flowic_flags
	#define flowi_secid u.__fl_common.flowic_secid
	};


	struct FlowEntry
	{
	struct list_head list;
	struct flowi fl;
	unsigned char sa_nr;
	unsigned short family;
	unsigned short dir;
	int flags;
	unsigned short sa_handle[MAX_SA_BUNDLE];
	unsigned int ref_count;
	};

	typedef struct netkey_sa_update_cmd{
	unsigned short sagd;
	unsigned short rsvd;
	unsigned long long bytes;
	unsigned long long packets;
	}netkey_sa_update_cmd_t;

	#define SAQUERY_UNKNOWN_CMD 0
	#define SAQUERY_ENABLE_CMD 1
	#define SAQUERY_TIMER_CMD 2

	#define NETKEY_CMD_SA_INFO_UPDATE 0x0a0c

	extern pthread_mutex_t flowMutex;
	extern struct list_head flow_table[FLOW_HASH_TABLE_SIZE];

	int cmmKeyCatch(unsigned short fcode, unsigned short len, unsigned short *payload);
	int cmmKeyEnginetoIPSec(FCI_CLIENT fci_handle, unsigned short fcode, unsigned short len, unsigned short payload);
	int cmmIPSectoKeyEngine(FCI_CLIENT fci_handle, unsigned short fcode, unsigned short len, unsigned short payload);
	int cmmFlowKeyEngineRemove(FCI_CLIENT fci_handle, struct FlowEntry fentry);

	struct FlowEntry __cmmFlowFind(int family, const unsigned int Saddr, const unsigned int *Daddr, unsigned short Sport, unsigned short Dport, unsigned char proto);
	void __cmmFlowRemove(struct FlowEntry *flow);
	struct FlowEntry __cmmFlowAdd(int family, struct flowi fl, unsigned char sa_nr, unsigned short *sa_handle, unsigned short dir);
	struct FlowEntry __cmmFlowGet(int family, const unsigned int Saddr, const unsigned int *Daddr, unsigned short Sport, unsigned short Dport, unsigned char proto);
	void __cmmFlowPut(struct FlowEntry *flow);

	int cmmDPDSaQuerySetProcess(char ** keywords, int tabStart, daemon_handle_t daemon_handle);
	int cmmSaQueryTimerShow(struct cli_def * cli, char command, char argv[], int argc);
	int cmmDPDSAQUERYProcessClientCmd(u_int8_t cmd_buf, u_int16_t res_buf, u_int16_t *res_len);
	#endif