summaryrefslogtreecommitdiffstats
path: root/src/vnet/lawful-intercept/lawful_intercept.h
blob: e39fa0d0752ee8d4df0bf7f671bfe54460b1684a (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56

/*
 * Copyright (c) 2015 Cisco and/or its affiliates.
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at:
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

#ifndef __lawful_intercept_h__
#define __lawful_intercept_h__

#include <vnet/vnet.h>
#include <vnet/ip/ip.h>

typedef struct
{
  /* LI collector info */
  ip4_address_t *src_addrs;
  ip4_address_t *collectors;
  u16 *ports;

  /* Hit node index */
  u32 hit_node_index;

  /* convenience */
  vlib_main_t *vlib_main;
  vnet_main_t *vnet_main;
} li_main_t;

extern li_main_t li_main;

/* *INDENT-OFF* */
typedef CLIB_PACKED(struct {
  ip4_header_t ip4;
  udp_header_t udp;
}) ip4_udp_header_t;
/* *INDENT-ON* */

extern vlib_node_registration_t li_hit_node;

#endif /* __lawful_intercept_h__ */

/*
 * fd.io coding-style-patch-verification: ON
 *
 * Local Variables:
 * eval: (c-set-style "gnu")
 * End:
 */
y not use this file except in compliance with the License. * You may obtain a copy of the License at: * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include <vnet/adj/adj_delegate.h> #include <vnet/adj/adj_midchain.h> #include <vnet/fib/fib_table.h> #include <vnet/fib/fib_entry_track.h> /** * Midchain stacker delegate */ typedef struct adj_midchain_delegate_t_ { /** * the Fib Entry we are stacked on */ fib_node_index_t amd_fei; /** * The sibling entry on the FIB entry */ u32 amd_sibling; } adj_midchain_delegate_t; /** * Pool of delegates */ static adj_midchain_delegate_t *amd_pool; static inline const adj_midchain_delegate_t* adj_midchain_from_const_base (const adj_delegate_t *ad) { if (NULL != ad) { return (pool_elt_at_index(amd_pool, ad->ad_index)); } return (NULL); } static void adj_midchain_delegate_restack_i (adj_index_t ai, adj_midchain_delegate_t *amd) { if (vnet_sw_interface_is_admin_up (vnet_get_main (), adj_get_sw_if_index(ai)) && (FIB_NODE_INDEX_INVALID != amd->amd_fei)) { const fib_prefix_t *pfx; pfx = fib_entry_get_prefix(amd->amd_fei); adj_nbr_midchain_stack_on_fib_entry ( ai, amd->amd_fei, fib_forw_chain_type_from_fib_proto(pfx->fp_proto)); } else { adj_nbr_midchain_unstack (ai); } } void adj_midchain_delegate_restack (adj_index_t ai) { adj_midchain_delegate_t *amd; ip_adjacency_t *adj; adj_delegate_t *ad; /* * if there's a delegate already use that */ adj = adj_get(ai); ad = adj_delegate_get(adj, ADJ_DELEGATE_MIDCHAIN); if (NULL != ad) { amd = pool_elt_at_index(amd_pool, ad->ad_index); adj_midchain_delegate_restack_i(ai, amd); } /* * else * nothing to stack */ } void adj_midchain_delegate_stack (adj_index_t ai, u32 fib_index, const fib_prefix_t *pfx) { adj_midchain_delegate_t *amd; ip_adjacency_t *adj; adj_delegate_t *ad; /* * if there's a delegate already use that */ adj = adj_get(ai); ad = adj_delegate_get(adj, ADJ_DELEGATE_MIDCHAIN); if (NULL != ad) { amd = pool_elt_at_index(amd_pool, ad->ad_index); } else { pool_get(amd_pool, amd); amd->amd_fei = FIB_NODE_INDEX_INVALID; adj_delegate_add(adj, ADJ_DELEGATE_MIDCHAIN, amd - amd_pool); amd->amd_fei = fib_entry_track(fib_index, pfx, FIB_NODE_TYPE_ADJ, ai, &amd->amd_sibling); } adj_midchain_delegate_restack_i(ai, amd); } void adj_midchain_delegate_unstack (adj_index_t ai) { adj_nbr_midchain_unstack(ai); } static void adj_midchain_delegate_adj_deleted (adj_delegate_t *ad) { adj_midchain_delegate_t *amd; amd = pool_elt_at_index(amd_pool, ad->ad_index); fib_entry_untrack(amd->amd_fei, amd->amd_sibling); pool_put(amd_pool, amd); } /** * Print a delegate that represents MIDCHAIN tracking */ static u8 * adj_midchain_delegate_fmt (const adj_delegate_t *aed, u8 *s) { const adj_midchain_delegate_t *amd = adj_midchain_from_const_base(aed); s = format(s, "MIDCHAIN:[fib-entry:%d]", amd->amd_fei); return (s); } const static adj_delegate_vft_t adj_delegate_vft = { .adv_format = adj_midchain_delegate_fmt, .adv_adj_deleted = adj_midchain_delegate_adj_deleted, }; static clib_error_t * adj_midchain_delegate_module_init (vlib_main_t * vm) { clib_error_t * error = NULL; adj_delegate_register_type (ADJ_DELEGATE_MIDCHAIN, &adj_delegate_vft); return (error); } VLIB_INIT_FUNCTION (adj_midchain_delegate_module_init);