首页 浏览 帮助
注册 登录
hungerzs
/
rancherOS
关注 1
点赞 0
派生 0
文件 工单管理 0 合并请求 0 Wiki
分支: master
分支列表 标签列表
rancherOS
/
vendor
/
github.com
/
vishvananda
/
netlink
/
nl
/
xfrm_linux.go

xfrm_linux.go 7.2 KB
永久链接 文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297 
  1. package nl
    2. 

  2. 

  3. import (
    4. 

  4. 	"bytes"
    5. 

  5. 	"net"
    6. 

  6. 	"unsafe"
    7. 

  7. )
    8. 

  8. 

  9. // Infinity for packet and byte counts
    10. 

  10. const (
    11. 

  11. 	XFRM_INF = ^uint64(0)
    12. 

  12. )
    13. 

  13. 

  14. type XfrmMsgType uint8
    15. 

  15. 

  16. type XfrmMsg interface {
    17. 

  17. 	Type() XfrmMsgType
    18. 

  18. }
    19. 

  19. 

  20. // Message Types
    21. 

  21. const (
    22. 

  22. 	XFRM_MSG_BASE        XfrmMsgType = 0x10
    23. 

  23. 	XFRM_MSG_NEWSA                   = 0x10
    24. 

  24. 	XFRM_MSG_DELSA                   = 0x11
    25. 

  25. 	XFRM_MSG_GETSA                   = 0x12
    26. 

  26. 	XFRM_MSG_NEWPOLICY               = 0x13
    27. 

  27. 	XFRM_MSG_DELPOLICY               = 0x14
    28. 

  28. 	XFRM_MSG_GETPOLICY               = 0x15
    29. 

  29. 	XFRM_MSG_ALLOCSPI                = 0x16
    30. 

  30. 	XFRM_MSG_ACQUIRE                 = 0x17
    31. 

  31. 	XFRM_MSG_EXPIRE                  = 0x18
    32. 

  32. 	XFRM_MSG_UPDPOLICY               = 0x19
    33. 

  33. 	XFRM_MSG_UPDSA                   = 0x1a
    34. 

  34. 	XFRM_MSG_POLEXPIRE               = 0x1b
    35. 

  35. 	XFRM_MSG_FLUSHSA                 = 0x1c
    36. 

  36. 	XFRM_MSG_FLUSHPOLICY             = 0x1d
    37. 

  37. 	XFRM_MSG_NEWAE                   = 0x1e
    38. 

  38. 	XFRM_MSG_GETAE                   = 0x1f
    39. 

  39. 	XFRM_MSG_REPORT                  = 0x20
    40. 

  40. 	XFRM_MSG_MIGRATE                 = 0x21
    41. 

  41. 	XFRM_MSG_NEWSADINFO              = 0x22
    42. 

  42. 	XFRM_MSG_GETSADINFO              = 0x23
    43. 

  43. 	XFRM_MSG_NEWSPDINFO              = 0x24
    44. 

  44. 	XFRM_MSG_GETSPDINFO              = 0x25
    45. 

  45. 	XFRM_MSG_MAPPING                 = 0x26
    46. 

  46. 	XFRM_MSG_MAX                     = 0x26
    47. 

  47. 	XFRM_NR_MSGTYPES                 = 0x17
    48. 

  48. )
    49. 

  49. 

  50. // Attribute types
    51. 

  51. const (
    52. 

  52. 	/* Netlink message attributes.  */
    53. 

  53. 	XFRMA_UNSPEC         = 0x00
    54. 

  54. 	XFRMA_ALG_AUTH       = 0x01 /* struct xfrm_algo */
    55. 

  55. 	XFRMA_ALG_CRYPT      = 0x02 /* struct xfrm_algo */
    56. 

  56. 	XFRMA_ALG_COMP       = 0x03 /* struct xfrm_algo */
    57. 

  57. 	XFRMA_ENCAP          = 0x04 /* struct xfrm_algo + struct xfrm_encap_tmpl */
    58. 

  58. 	XFRMA_TMPL           = 0x05 /* 1 or more struct xfrm_user_tmpl */
    59. 

  59. 	XFRMA_SA             = 0x06 /* struct xfrm_usersa_info  */
    60. 

  60. 	XFRMA_POLICY         = 0x07 /* struct xfrm_userpolicy_info */
    61. 

  61. 	XFRMA_SEC_CTX        = 0x08 /* struct xfrm_sec_ctx */
    62. 

  62. 	XFRMA_LTIME_VAL      = 0x09
    63. 

  63. 	XFRMA_REPLAY_VAL     = 0x0a
    64. 

  64. 	XFRMA_REPLAY_THRESH  = 0x0b
    65. 

  65. 	XFRMA_ETIMER_THRESH  = 0x0c
    66. 

  66. 	XFRMA_SRCADDR        = 0x0d /* xfrm_address_t */
    67. 

  67. 	XFRMA_COADDR         = 0x0e /* xfrm_address_t */
    68. 

  68. 	XFRMA_LASTUSED       = 0x0f /* unsigned long  */
    69. 

  69. 	XFRMA_POLICY_TYPE    = 0x10 /* struct xfrm_userpolicy_type */
    70. 

  70. 	XFRMA_MIGRATE        = 0x11
    71. 

  71. 	XFRMA_ALG_AEAD       = 0x12 /* struct xfrm_algo_aead */
    72. 

  72. 	XFRMA_KMADDRESS      = 0x13 /* struct xfrm_user_kmaddress */
    73. 

  73. 	XFRMA_ALG_AUTH_TRUNC = 0x14 /* struct xfrm_algo_auth */
    74. 

  74. 	XFRMA_MARK           = 0x15 /* struct xfrm_mark */
    75. 

  75. 	XFRMA_TFCPAD         = 0x16 /* __u32 */
    76. 

  76. 	XFRMA_REPLAY_ESN_VAL = 0x17 /* struct xfrm_replay_esn */
    77. 

  77. 	XFRMA_SA_EXTRA_FLAGS = 0x18 /* __u32 */
    78. 

  78. 	XFRMA_MAX            = 0x18
    79. 

  79. )
    80. 

  80. 

  81. const (
    82. 

  82. 	SizeofXfrmAddress     = 0x10
    83. 

  83. 	SizeofXfrmSelector    = 0x38
    84. 

  84. 	SizeofXfrmLifetimeCfg = 0x40
    85. 

  85. 	SizeofXfrmLifetimeCur = 0x20
    86. 

  86. 	SizeofXfrmId          = 0x18
    87. 

  87. 	SizeofXfrmMark        = 0x08
    88. 

  88. )
    89. 

  89. 

  90. // Netlink groups
    91. 

  91. const (
    92. 

  92. 	XFRMNLGRP_NONE    = 0x0
    93. 

  93. 	XFRMNLGRP_ACQUIRE = 0x1
    94. 

  94. 	XFRMNLGRP_EXPIRE  = 0x2
    95. 

  95. 	XFRMNLGRP_SA      = 0x3
    96. 

  96. 	XFRMNLGRP_POLICY  = 0x4
    97. 

  97. 	XFRMNLGRP_AEVENTS = 0x5
    98. 

  98. 	XFRMNLGRP_REPORT  = 0x6
    99. 

  99. 	XFRMNLGRP_MIGRATE = 0x7
    100. 

  100. 	XFRMNLGRP_MAPPING = 0x8
    101. 

  101. 	__XFRMNLGRP_MAX   = 0x9
    102. 

  102. )
    103. 

  103. 

  104. // typedef union {
    105. 

  105. //   __be32    a4;
    106. 

  106. //   __be32    a6[4];
    107. 

  107. // } xfrm_address_t;
    108. 

  108. 

  109. type XfrmAddress [SizeofXfrmAddress]byte
    110. 

  110. 

  111. func (x *XfrmAddress) ToIP() net.IP {
    112. 

  112. 	var empty = [12]byte{}
    113. 

  113. 	ip := make(net.IP, net.IPv6len)
    114. 

  114. 	if bytes.Equal(x[4:16], empty[:]) {
    115. 

  115. 		ip[10] = 0xff
    116. 

  116. 		ip[11] = 0xff
    117. 

  117. 		copy(ip[12:16], x[0:4])
    118. 

  118. 	} else {
    119. 

  119. 		copy(ip[:], x[:])
    120. 

  120. 	}
    121. 

  121. 	return ip
    122. 

  122. }
    123. 

  123. 

  124. func (x *XfrmAddress) ToIPNet(prefixlen uint8) *net.IPNet {
    125. 

  125. 	ip := x.ToIP()
    126. 

  126. 	if GetIPFamily(ip) == FAMILY_V4 {
    127. 

  127. 		return &net.IPNet{IP: ip, Mask: net.CIDRMask(int(prefixlen), 32)}
    128. 

  128. 	}
    129. 

  129. 	return &net.IPNet{IP: ip, Mask: net.CIDRMask(int(prefixlen), 128)}
    130. 

  130. }
    131. 

  131. 

  132. func (x *XfrmAddress) FromIP(ip net.IP) {
    133. 

  133. 	var empty = [16]byte{}
    134. 

  134. 	if len(ip) < net.IPv4len {
    135. 

  135. 		copy(x[4:16], empty[:])
    136. 

  136. 	} else if GetIPFamily(ip) == FAMILY_V4 {
    137. 

  137. 		copy(x[0:4], ip.To4()[0:4])
    138. 

  138. 		copy(x[4:16], empty[:12])
    139. 

  139. 	} else {
    140. 

  140. 		copy(x[0:16], ip.To16()[0:16])
    141. 

  141. 	}
    142. 

  142. }
    143. 

  143. 

  144. func DeserializeXfrmAddress(b []byte) *XfrmAddress {
    145. 

  145. 	return (*XfrmAddress)(unsafe.Pointer(&b[0:SizeofXfrmAddress][0]))
    146. 

  146. }
    147. 

  147. 

  148. func (x *XfrmAddress) Serialize() []byte {
    149. 

  149. 	return (*(*[SizeofXfrmAddress]byte)(unsafe.Pointer(x)))[:]
    150. 

  150. }
    151. 

  151. 

  152. // struct xfrm_selector {
    153. 

  153. //   xfrm_address_t  daddr;
    154. 

  154. //   xfrm_address_t  saddr;
    155. 

  155. //   __be16  dport;
    156. 

  156. //   __be16  dport_mask;
    157. 

  157. //   __be16  sport;
    158. 

  158. //   __be16  sport_mask;
    159. 

  159. //   __u16 family;
    160. 

  160. //   __u8  prefixlen_d;
    161. 

  161. //   __u8  prefixlen_s;
    162. 

  162. //   __u8  proto;
    163. 

  163. //   int ifindex;
    164. 

  164. //   __kernel_uid32_t  user;
    165. 

  165. // };
    166. 

  166. 

  167. type XfrmSelector struct {
    168. 

  168. 	Daddr      XfrmAddress
    169. 

  169. 	Saddr      XfrmAddress
    170. 

  170. 	Dport      uint16 // big endian
    171. 

  171. 	DportMask  uint16 // big endian
    172. 

  172. 	Sport      uint16 // big endian
    173. 

  173. 	SportMask  uint16 // big endian
    174. 

  174. 	Family     uint16
    175. 

  175. 	PrefixlenD uint8
    176. 

  176. 	PrefixlenS uint8
    177. 

  177. 	Proto      uint8
    178. 

  178. 	Pad        [3]byte
    179. 

  179. 	Ifindex    int32
    180. 

  180. 	User       uint32
    181. 

  181. }
    182. 

  182. 

  183. func (msg *XfrmSelector) Len() int {
    184. 

  184. 	return SizeofXfrmSelector
    185. 

  185. }
    186. 

  186. 

  187. func DeserializeXfrmSelector(b []byte) *XfrmSelector {
    188. 

  188. 	return (*XfrmSelector)(unsafe.Pointer(&b[0:SizeofXfrmSelector][0]))
    189. 

  189. }
    190. 

  190. 

  191. func (msg *XfrmSelector) Serialize() []byte {
    192. 

  192. 	return (*(*[SizeofXfrmSelector]byte)(unsafe.Pointer(msg)))[:]
    193. 

  193. }
    194. 

  194. 

  195. // struct xfrm_lifetime_cfg {
    196. 

  196. //   __u64 soft_byte_limit;
    197. 

  197. //   __u64 hard_byte_limit;
    198. 

  198. //   __u64 soft_packet_limit;
    199. 

  199. //   __u64 hard_packet_limit;
    200. 

  200. //   __u64 soft_add_expires_seconds;
    201. 

  201. //   __u64 hard_add_expires_seconds;
    202. 

  202. //   __u64 soft_use_expires_seconds;
    203. 

  203. //   __u64 hard_use_expires_seconds;
    204. 

  204. // };
    205. 

  205. //
    206. 

  206. 

  207. type XfrmLifetimeCfg struct {
    208. 

  208. 	SoftByteLimit         uint64
    209. 

  209. 	HardByteLimit         uint64
    210. 

  210. 	SoftPacketLimit       uint64
    211. 

  211. 	HardPacketLimit       uint64
    212. 

  212. 	SoftAddExpiresSeconds uint64
    213. 

  213. 	HardAddExpiresSeconds uint64
    214. 

  214. 	SoftUseExpiresSeconds uint64
    215. 

  215. 	HardUseExpiresSeconds uint64
    216. 

  216. }
    217. 

  217. 

  218. func (msg *XfrmLifetimeCfg) Len() int {
    219. 

  219. 	return SizeofXfrmLifetimeCfg
    220. 

  220. }
    221. 

  221. 

  222. func DeserializeXfrmLifetimeCfg(b []byte) *XfrmLifetimeCfg {
    223. 

  223. 	return (*XfrmLifetimeCfg)(unsafe.Pointer(&b[0:SizeofXfrmLifetimeCfg][0]))
    224. 

  224. }
    225. 

  225. 

  226. func (msg *XfrmLifetimeCfg) Serialize() []byte {
    227. 

  227. 	return (*(*[SizeofXfrmLifetimeCfg]byte)(unsafe.Pointer(msg)))[:]
    228. 

  228. }
    229. 

  229. 

  230. // struct xfrm_lifetime_cur {
    231. 

  231. //   __u64 bytes;
    232. 

  232. //   __u64 packets;
    233. 

  233. //   __u64 add_time;
    234. 

  234. //   __u64 use_time;
    235. 

  235. // };
    236. 

  236. 

  237. type XfrmLifetimeCur struct {
    238. 

  238. 	Bytes   uint64
    239. 

  239. 	Packets uint64
    240. 

  240. 	AddTime uint64
    241. 

  241. 	UseTime uint64
    242. 

  242. }
    243. 

  243. 

  244. func (msg *XfrmLifetimeCur) Len() int {
    245. 

  245. 	return SizeofXfrmLifetimeCur
    246. 

  246. }
    247. 

  247. 

  248. func DeserializeXfrmLifetimeCur(b []byte) *XfrmLifetimeCur {
    249. 

  249. 	return (*XfrmLifetimeCur)(unsafe.Pointer(&b[0:SizeofXfrmLifetimeCur][0]))
    250. 

  250. }
    251. 

  251. 

  252. func (msg *XfrmLifetimeCur) Serialize() []byte {
    253. 

  253. 	return (*(*[SizeofXfrmLifetimeCur]byte)(unsafe.Pointer(msg)))[:]
    254. 

  254. }
    255. 

  255. 

  256. // struct xfrm_id {
    257. 

  257. //   xfrm_address_t  daddr;
    258. 

  258. //   __be32    spi;
    259. 

  259. //   __u8    proto;
    260. 

  260. // };
    261. 

  261. 

  262. type XfrmId struct {
    263. 

  263. 	Daddr XfrmAddress
    264. 

  264. 	Spi   uint32 // big endian
    265. 

  265. 	Proto uint8
    266. 

  266. 	Pad   [3]byte
    267. 

  267. }
    268. 

  268. 

  269. func (msg *XfrmId) Len() int {
    270. 

  270. 	return SizeofXfrmId
    271. 

  271. }
    272. 

  272. 

  273. func DeserializeXfrmId(b []byte) *XfrmId {
    274. 

  274. 	return (*XfrmId)(unsafe.Pointer(&b[0:SizeofXfrmId][0]))
    275. 

  275. }
    276. 

  276. 

  277. func (msg *XfrmId) Serialize() []byte {
    278. 

  278. 	return (*(*[SizeofXfrmId]byte)(unsafe.Pointer(msg)))[:]
    279. 

  279. }
    280. 

  280. 

  281. type XfrmMark struct {
    282. 

  282. 	Value uint32
    283. 

  283. 	Mask  uint32
    284. 

  284. }
    285. 

  285. 

  286. func (msg *XfrmMark) Len() int {
    287. 

  287. 	return SizeofXfrmMark
    288. 

  288. }
    289. 

  289. 

  290. func DeserializeXfrmMark(b []byte) *XfrmMark {
    291. 

  291. 	return (*XfrmMark)(unsafe.Pointer(&b[0:SizeofXfrmMark][0]))
    292. 

  292. }
    293. 

  293. 

  294. func (msg *XfrmMark) Serialize() []byte {
    295. 

  295. 	return (*(*[SizeofXfrmMark]byte)(unsafe.Pointer(msg)))[:]
    296. 

  296. }
    297. 

  297.