Home
last modified time | relevance | path

Searched refs:xfrm (Results 1 – 25 of 45) sorted by relevance

12

/Linux-v4.19/drivers/net/ethernet/mellanox/mlx5/core/accel/
Dipsec.c58 struct mlx5_accel_esp_xfrm *xfrm, in mlx5_accel_esp_create_hw_context() argument
63 return mlx5_fpga_ipsec_create_sa_ctx(mdev, xfrm, saddr, daddr, in mlx5_accel_esp_create_hw_context()
87 struct mlx5_accel_esp_xfrm *xfrm; in mlx5_accel_esp_create_xfrm() local
89 xfrm = mlx5_fpga_esp_create_xfrm(mdev, attrs, flags); in mlx5_accel_esp_create_xfrm()
90 if (IS_ERR(xfrm)) in mlx5_accel_esp_create_xfrm()
91 return xfrm; in mlx5_accel_esp_create_xfrm()
93 xfrm->mdev = mdev; in mlx5_accel_esp_create_xfrm()
94 return xfrm; in mlx5_accel_esp_create_xfrm()
98 void mlx5_accel_esp_destroy_xfrm(struct mlx5_accel_esp_xfrm *xfrm) in mlx5_accel_esp_destroy_xfrm() argument
100 mlx5_fpga_esp_destroy_xfrm(xfrm); in mlx5_accel_esp_destroy_xfrm()
[all …]
Dipsec.h50 struct mlx5_accel_esp_xfrm *xfrm,
65 struct mlx5_accel_esp_xfrm *xfrm, in mlx5_accel_esp_create_hw_context() argument
/Linux-v4.19/net/xfrm/
Dxfrm_sysctl.c9 net->xfrm.sysctl_aevent_etime = XFRM_AE_ETIME; in __xfrm_sysctl_init()
10 net->xfrm.sysctl_aevent_rseqth = XFRM_AE_SEQT_SIZE; in __xfrm_sysctl_init()
11 net->xfrm.sysctl_larval_drop = 1; in __xfrm_sysctl_init()
12 net->xfrm.sysctl_acq_expires = 30; in __xfrm_sysctl_init()
53 table[0].data = &net->xfrm.sysctl_aevent_etime; in xfrm_sysctl_init()
54 table[1].data = &net->xfrm.sysctl_aevent_rseqth; in xfrm_sysctl_init()
55 table[2].data = &net->xfrm.sysctl_larval_drop; in xfrm_sysctl_init()
56 table[3].data = &net->xfrm.sysctl_acq_expires; in xfrm_sysctl_init()
62 net->xfrm.sysctl_hdr = register_net_sysctl(net, "net/core", table); in xfrm_sysctl_init()
63 if (!net->xfrm.sysctl_hdr) in xfrm_sysctl_init()
[all …]
Dxfrm_policy.c330 return __idx_hash(index, net->xfrm.policy_idx_hmask); in idx_hash()
340 *dbits = net->xfrm.policy_bydst[dir].dbits4; in __get_hash_thresh()
341 *sbits = net->xfrm.policy_bydst[dir].sbits4; in __get_hash_thresh()
345 *dbits = net->xfrm.policy_bydst[dir].dbits6; in __get_hash_thresh()
346 *sbits = net->xfrm.policy_bydst[dir].sbits6; in __get_hash_thresh()
359 unsigned int hmask = net->xfrm.policy_bydst[dir].hmask; in policy_hash_bysel()
368 return &net->xfrm.policy_inexact[dir]; in policy_hash_bysel()
370 return rcu_dereference_check(net->xfrm.policy_bydst[dir].table, in policy_hash_bysel()
371 lockdep_is_held(&net->xfrm.xfrm_policy_lock)) + hash; in policy_hash_bysel()
379 unsigned int hmask = net->xfrm.policy_bydst[dir].hmask; in policy_hash_direct()
[all …]
Dxfrm_state.c32 rcu_dereference_protected((table), lockdep_is_held(&(net)->xfrm.xfrm_state_lock))
61 return __xfrm_dst_hash(daddr, saddr, reqid, family, net->xfrm.state_hmask); in xfrm_dst_hash()
69 return __xfrm_src_hash(daddr, saddr, family, net->xfrm.state_hmask); in xfrm_src_hash()
76 return __xfrm_spi_hash(daddr, spi, proto, family, net->xfrm.state_hmask); in xfrm_spi_hash()
117 struct net *net = container_of(work, struct net, xfrm.state_hash_work); in xfrm_hash_resize()
123 nsize = xfrm_hash_new_size(net->xfrm.state_hmask); in xfrm_hash_resize()
139 spin_lock_bh(&net->xfrm.xfrm_state_lock); in xfrm_hash_resize()
143 odst = xfrm_state_deref_prot(net->xfrm.state_bydst, net); in xfrm_hash_resize()
144 for (i = net->xfrm.state_hmask; i >= 0; i--) in xfrm_hash_resize()
147 osrc = xfrm_state_deref_prot(net->xfrm.state_bysrc, net); in xfrm_hash_resize()
[all …]
Dxfrm_output.c56 struct xfrm_state *x = dst->xfrm; in xfrm_output_one()
132 x = dst->xfrm; in xfrm_output_one()
147 struct net *net = xs_net(skb_dst(skb)->xfrm); in xfrm_output_resume()
156 if (!skb_dst(skb)->xfrm) in xfrm_output_resume()
213 struct xfrm_state *x = skb_dst(skb)->xfrm; in xfrm_output()
Dxfrm_user.c622 x->replay_maxdiff = net->xfrm.sysctl_aevent_rseqth; in xfrm_state_construct()
624 x->replay_maxage = (net->xfrm.sysctl_aevent_etime*HZ)/XFRM_AE_ETH_M; in xfrm_state_construct()
1064 struct sock *nlsk = rcu_dereference(net->xfrm.nlsk); in xfrm_nlmsg_multicast()
1112 lseq = read_seqbegin(&net->xfrm.policy_hthresh.lock); in build_spdinfo()
1114 spt4.lbits = net->xfrm.policy_hthresh.lbits4; in build_spdinfo()
1115 spt4.rbits = net->xfrm.policy_hthresh.rbits4; in build_spdinfo()
1116 spt6.lbits = net->xfrm.policy_hthresh.lbits6; in build_spdinfo()
1117 spt6.rbits = net->xfrm.policy_hthresh.rbits6; in build_spdinfo()
1118 } while (read_seqretry(&net->xfrm.policy_hthresh.lock, lseq)); in build_spdinfo()
1164 write_seqlock(&net->xfrm.policy_hthresh.lock); in xfrm_set_spdinfo()
[all …]
/Linux-v4.19/drivers/net/ethernet/mellanox/mlx5/core/fpga/
Dipsec.h62 void mlx5_fpga_esp_destroy_xfrm(struct mlx5_accel_esp_xfrm *xfrm);
63 int mlx5_fpga_esp_modify_xfrm(struct mlx5_accel_esp_xfrm *xfrm,
123 static inline void mlx5_fpga_esp_destroy_xfrm(struct mlx5_accel_esp_xfrm *xfrm) in mlx5_fpga_esp_destroy_xfrm() argument
128 mlx5_fpga_esp_modify_xfrm(struct mlx5_accel_esp_xfrm *xfrm, in mlx5_fpga_esp_modify_xfrm() argument
Dipsec.c1446 void mlx5_fpga_esp_destroy_xfrm(struct mlx5_accel_esp_xfrm *xfrm) in mlx5_fpga_esp_destroy_xfrm() argument
1449 container_of(xfrm, struct mlx5_fpga_esp_xfrm, in mlx5_fpga_esp_destroy_xfrm()
1455 int mlx5_fpga_esp_modify_xfrm(struct mlx5_accel_esp_xfrm *xfrm, in mlx5_fpga_esp_modify_xfrm() argument
1458 struct mlx5_core_dev *mdev = xfrm->mdev; in mlx5_fpga_esp_modify_xfrm()
1466 if (!memcmp(&xfrm->attrs, attrs, sizeof(xfrm->attrs))) in mlx5_fpga_esp_modify_xfrm()
1479 fpga_xfrm = container_of(xfrm, struct mlx5_fpga_esp_xfrm, accel_xfrm); in mlx5_fpga_esp_modify_xfrm()
1494 mlx5_fpga_ipsec_build_hw_xfrm(xfrm->mdev, attrs, in mlx5_fpga_esp_modify_xfrm()
1523 memcpy(&xfrm->attrs, attrs, sizeof(xfrm->attrs)); in mlx5_fpga_esp_modify_xfrm()
/Linux-v4.19/include/linux/mlx5/
Daccel.h125 void mlx5_accel_esp_destroy_xfrm(struct mlx5_accel_esp_xfrm *xfrm);
126 int mlx5_accel_esp_modify_xfrm(struct mlx5_accel_esp_xfrm *xfrm,
138 mlx5_accel_esp_destroy_xfrm(struct mlx5_accel_esp_xfrm *xfrm) {} in mlx5_accel_esp_destroy_xfrm() argument
140 mlx5_accel_esp_modify_xfrm(struct mlx5_accel_esp_xfrm *xfrm, in mlx5_accel_esp_modify_xfrm() argument
/Linux-v4.19/tools/testing/selftests/net/
Dpmtu.sh151 …${ns_a} ip -${proto} xfrm state add src ${veth_a_addr} dst ${veth_b_addr} spi 0x1000 proto esp aea…
152 …${ns_a} ip -${proto} xfrm state add src ${veth_b_addr} dst ${veth_a_addr} spi 0x1001 proto esp aea…
153 …${ns_a} ip -${proto} xfrm policy add dir out mark 10 tmpl src ${veth_a_addr} dst ${veth_b_addr} pr…
154 …${ns_a} ip -${proto} xfrm policy add dir in mark 10 tmpl src ${veth_b_addr} dst ${veth_a_addr} pro…
156 …${ns_b} ip -${proto} xfrm state add src ${veth_a_addr} dst ${veth_b_addr} spi 0x1000 proto esp aea…
157 …${ns_b} ip -${proto} xfrm state add src ${veth_b_addr} dst ${veth_a_addr} spi 0x1001 proto esp aea…
158 …${ns_b} ip -${proto} xfrm policy add dir out mark 10 tmpl src ${veth_b_addr} dst ${veth_a_addr} pr…
159 …${ns_b} ip -${proto} xfrm policy add dir in mark 10 tmpl src ${veth_a_addr} dst ${veth_b_addr} pro…
/Linux-v4.19/net/ipv6/
Dxfrm6_policy.c272 } while (xdst->u.dst.xfrm); in xfrm6_dst_ifdown()
316 .data = &init_net.xfrm.xfrm6_dst_ops.gc_thresh,
335 table[0].data = &net->xfrm.xfrm6_dst_ops.gc_thresh; in xfrm6_net_sysctl_init()
379 memcpy(&net->xfrm.xfrm6_dst_ops, &xfrm6_dst_ops_template, in xfrm6_net_init()
381 ret = dst_entries_init(&net->xfrm.xfrm6_dst_ops); in xfrm6_net_init()
387 dst_entries_destroy(&net->xfrm.xfrm6_dst_ops); in xfrm6_net_init()
395 dst_entries_destroy(&net->xfrm.xfrm6_dst_ops); in xfrm6_net_exit()
Dxfrm6_output.c142 struct xfrm_state *x = skb_dst(skb)->xfrm; in __xfrm6_output_finish()
150 struct xfrm_state *x = dst->xfrm; in __xfrm6_output()
/Linux-v4.19/drivers/net/ethernet/mellanox/mlx5/core/en_accel/
Dipsec.c325 sa_entry->xfrm = in mlx5e_xfrm_add_state()
328 if (IS_ERR(sa_entry->xfrm)) { in mlx5e_xfrm_add_state()
329 err = PTR_ERR(sa_entry->xfrm); in mlx5e_xfrm_add_state()
345 sa_entry->xfrm, in mlx5e_xfrm_add_state()
357 mlx5_accel_esp_destroy_xfrm(sa_entry->xfrm); in mlx5e_xfrm_add_state()
390 mlx5_accel_esp_destroy_xfrm(sa_entry->xfrm); in mlx5e_xfrm_free_state()
472 ret = mlx5_accel_esp_modify_xfrm(sa_entry->xfrm, in _update_xfrm_state()
Dipsec.h101 struct mlx5_accel_esp_xfrm *xfrm; member
/Linux-v4.19/net/ipv4/
Dxfrm4_policy.c285 .data = &init_net.xfrm.xfrm4_dst_ops.gc_thresh,
304 table[0].data = &net->xfrm.xfrm4_dst_ops.gc_thresh; in xfrm4_net_sysctl_init()
348 memcpy(&net->xfrm.xfrm4_dst_ops, &xfrm4_dst_ops_template, in xfrm4_net_init()
350 ret = dst_entries_init(&net->xfrm.xfrm4_dst_ops); in xfrm4_net_init()
356 dst_entries_destroy(&net->xfrm.xfrm4_dst_ops); in xfrm4_net_init()
364 dst_entries_destroy(&net->xfrm.xfrm4_dst_ops); in xfrm4_net_exit()
Dxfrm4_output.c89 struct xfrm_state *x = skb_dst(skb)->xfrm; in __xfrm4_output()
/Linux-v4.19/tools/testing/selftests/bpf/
Dtest_tunnel.sh565 ip xfrm state add src 172.16.1.100 dst 172.16.1.200 proto esp \
569 ip xfrm policy add src 10.1.1.100/32 dst 10.1.1.200/32 dir out \
574 ip xfrm state add src 172.16.1.200 dst 172.16.1.100 proto esp \
578 ip xfrm policy add src 10.1.1.200/32 dst 10.1.1.100/32 dir in \
590 ip xfrm state add src 172.16.1.100 dst 172.16.1.200 proto esp \
593 ip xfrm policy add src 10.1.1.100/32 dst 10.1.1.200/32 dir in \
597 ip xfrm state add src 172.16.1.200 dst 172.16.1.100 proto esp \
600 ip xfrm policy add src 10.1.1.200/32 dst 10.1.1.100/32 dir out \
658 ip xfrm policy delete dir out src 10.1.1.200/32 dst 10.1.1.100/32 2> /dev/null
659 ip xfrm policy delete dir in src 10.1.1.100/32 dst 10.1.1.200/32 2> /dev/null
[all …]
/Linux-v4.19/net/netfilter/
Dxt_policy.c93 if (dst->xfrm == NULL) in match_policy_out()
96 for (i = 0; dst && dst->xfrm; in match_policy_out()
103 if (match_xfrm_state(dst->xfrm, e, family)) { in match_policy_out()
/Linux-v4.19/Documentation/networking/
Dsecid.txt5 matching labeled xfrm(s).
/Linux-v4.19/security/selinux/
DMakefile13 selinux-$(CONFIG_SECURITY_NETWORK_XFRM) += xfrm.o
Dxfrm.c222 x = dst->xfrm; in selinux_xfrm_skb_sid_egress()
463 struct xfrm_state *x = iter->xfrm; in selinux_xfrm_postroute_last()
/Linux-v4.19/include/net/
Dxfrm.h1012 if (dst->xfrm) { in xfrm_dst_path()
1024 if (dst->xfrm) { in xfrm_dst_child()
1042 if (likely(xdst->u.dst.xfrm)) in xfrm_dst_destroy()
1043 xfrm_state_put(xdst->u.dst.xfrm); in xfrm_dst_destroy()
1194 return (!net->xfrm.policy_count[dir] && !skb->sp) || in __xfrm_policy_check2()
1248 return !net->xfrm.policy_count[XFRM_POLICY_OUT] || in xfrm_route_forward()
1806 nlsk = rcu_dereference(net->xfrm.nlsk); in xfrm_aevent_is_on()
1819 nlsk = rcu_dereference(net->xfrm.nlsk); in xfrm_acquire_is_on()
1943 struct xfrm_state *x = dst->xfrm; in xfrm_dst_offload_ok()
1950 if (!x->xso.offload_handle && !xdst->child->xfrm) in xfrm_dst_offload_ok()
[all …]
/Linux-v4.19/net/core/
Ddst.c74 dst->xfrm = NULL; in dst_init()
122 if (dst->xfrm) { in dst_destroy()
/Linux-v4.19/net/
DMakefile20 obj-$(CONFIG_XFRM) += xfrm/

12