archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
4.9 GiB
Tree: 5c6fe3db62
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '5c6fe3db62'
${ noResults }
windows-server-2003/net/tcpip/driver/ipsec/sys/encap-hw.c

398 lines
9.6 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  4. Copyright (c) 2001 Microsoft Corporation
  7. Module Name:
  9. encap-hw.c
  11. Abstract:
  13. This module contains all the IPSec routines for UDP ESP encapsulation
  14. SA and parsing entry offload.
  16. Author:
  18. AbhisheV
  20. Environment:
  22. Kernel Level
  24. Revision History:
  27. --*/
  30. #include "precomp.h"
  33. VOID
  34. IPSecFillHwAddEncapSa(
  35. PSA_TABLE_ENTRY pSwSa,
  36. PPARSER_IFENTRY pParserIfEntry,
  37. PUCHAR pucBuffer,
  38. ULONG uBufLen
  39. )
  40. /*++
  42. Routine Description:
  44. Fills in the hardware add encapsulation sa buffer from the passed in
  45. software encapsulation sa.
  47. Arguments:
  49. pSwSa - Pointer to the software encapsulation sa structure.
  51. pParserIfEntry - Pointer to the parser interface entry.
  53. pucBuffer - Pointer to the hardware add encapsulation sa buffer.
  55. uBufLen - Length of the buffer.
  57. Return Value:
  59. None - VOID.
  61. --*/
  62. {
  63. POFFLOAD_IPSEC_ADD_UDPESP_SA pHwSa = (POFFLOAD_IPSEC_ADD_UDPESP_SA) pucBuffer;
  64. POFFLOAD_SECURITY_ASSOCIATION pHwSaInfo = NULL;
  65. LONG lIndex = 0;
  66. ULONG uOffset = 0;
  69. pHwSa->SrcAddr = pSwSa->SA_SRC_ADDR;
  70. pHwSa->SrcMask = pSwSa->SA_SRC_MASK;
  72. pHwSa->DstAddr = pSwSa->SA_DEST_ADDR;
  73. pHwSa->DstMask = pSwSa->SA_DEST_MASK;
  75. pHwSa->Protocol = pSwSa->SA_PROTO;
  77. pHwSa->SrcPort = SA_SRC_PORT(pSwSa);
  78. pHwSa->DstPort = SA_DEST_PORT(pSwSa);
  80. pHwSa->SrcTunnelAddr = 0;
  81. pHwSa->DstTunnelAddr = 0;
  82. if (pSwSa->sa_Flags & FLAGS_SA_TUNNEL) {
  83. pHwSa->SrcTunnelAddr = pSwSa->sa_SrcTunnelAddr;
  84. pHwSa->DstTunnelAddr = pSwSa->sa_TunnelAddr;
  85. }
  87. pHwSa->Flags = 0;
  88. if (pSwSa->sa_Flags & FLAGS_SA_OUTBOUND) {
  89. pHwSa->Flags |= OFFLOAD_OUTBOUND_SA;
  90. }
  91. else {
  92. pHwSa->Flags |= OFFLOAD_INBOUND_SA;
  93. }
  95. pHwSa->NumSAs = (SHORT) pSwSa->sa_NumOps;
  97. ASSERT(OFFLOAD_MAX_SAS >= pSwSa->sa_NumOps);
  99. pHwSa->KeyLen = 0;
  101. for (lIndex = 0; lIndex < pSwSa->sa_NumOps; lIndex++) {
  103. pHwSaInfo = &pHwSa->SecAssoc[lIndex];
  105. pHwSaInfo->Operation = pSwSa->sa_Operation[lIndex];
  106. pHwSaInfo->SPI = pSwSa->sa_OtherSPIs[lIndex];
  108. pHwSaInfo->EXT_INT_ALGO = pSwSa->INT_ALGO(lIndex);
  109. pHwSaInfo->EXT_INT_KEYLEN = pSwSa->INT_KEYLEN(lIndex);
  110. pHwSaInfo->EXT_INT_ROUNDS = pSwSa->INT_ROUNDS(lIndex);
  112. pHwSaInfo->EXT_CONF_ALGO = pSwSa->CONF_ALGO(lIndex);
  113. pHwSaInfo->EXT_CONF_KEYLEN = pSwSa->CONF_KEYLEN(lIndex);
  114. pHwSaInfo->EXT_CONF_ROUNDS = pSwSa->CONF_ROUNDS(lIndex);
  116. ASSERT(
  117. (uBufLen >= (sizeof(OFFLOAD_IPSEC_ADD_UDPESP_SA) +
  118. pHwSa->KeyLen +
  119. pSwSa->INT_KEYLEN(lIndex) +
  120. pSwSa->CONF_KEYLEN(lIndex)))
  121. );
  123. RtlCopyMemory(
  124. pHwSa->KeyMat + uOffset,
  125. pSwSa->CONF_KEY(lIndex),
  126. pSwSa->CONF_KEYLEN(lIndex)
  127. );
  129. RtlCopyMemory(
  130. pHwSa->KeyMat + uOffset + pSwSa->CONF_KEYLEN(lIndex),
  131. pSwSa->INT_KEY(lIndex),
  132. pSwSa->INT_KEYLEN(lIndex)
  133. );
  135. uOffset += pSwSa->INT_KEYLEN(lIndex) + pSwSa->CONF_KEYLEN(lIndex);
  136. pHwSa->KeyLen += uOffset;
  138. }
  140. pHwSa->OffloadHandle = NULL;
  142. if (NULL != pParserIfEntry) {
  144. ASSERT (!(pSwSa->sa_Flags & FLAGS_SA_OUTBOUND));
  146. pHwSa->EncapTypeEntry.UdpEncapType = pParserIfEntry->UdpEncapType;
  147. pHwSa->EncapTypeEntry.DstEncapPort = pParserIfEntry->usDstEncapPort;
  148. pHwSa->EncapTypeEntryOffldHandle = pParserIfEntry->hParserIfOffload;
  150. } else {
  152. ASSERT (pSwSa->sa_Flags & FLAGS_SA_OUTBOUND);
  154. if (SA_UDP_ENCAP_TYPE_IKE == pSwSa->sa_EncapType) {
  155. pHwSa->EncapTypeEntry.UdpEncapType = OFFLOAD_IPSEC_UDPESP_ENCAPTYPE_IKE;
  156. } else if (SA_UDP_ENCAP_TYPE_OTHER == pSwSa->sa_EncapType) {
  157. pHwSa->EncapTypeEntry.UdpEncapType = OFFLOAD_IPSEC_UDPESP_ENCAPTYPE_OTHER;
  158. } else {
  159. ASSERT (0);
  160. }
  162. pHwSa->EncapTypeEntry.DstEncapPort = pSwSa->sa_EncapContext.wSrcEncapPort;
  163. pHwSa->EncapTypeEntryOffldHandle = NULL;
  165. }
  167. return;
  168. }
  171. PPARSER_IFENTRY
  172. FindParserIfEntry (
  173. PPARSER_IFENTRY pParserIfEntry,
  174. PSA_TABLE_ENTRY pSa,
  175. Interface * pInterface
  176. )
  177. {
  178. ASSERT (!(pSa->sa_Flags & FLAGS_SA_OUTBOUND));
  180. while (NULL != pParserIfEntry) {
  182. if ( SA_UDP_ENCAP_TYPE_IKE == pSa->sa_EncapType ) {
  184. if (pParserIfEntry->UdpEncapType == OFFLOAD_IPSEC_UDPESP_ENCAPTYPE_IKE &&
  185. pParserIfEntry->usDstEncapPort == pSa->sa_EncapContext.wDesEncapPort &&
  186. pParserIfEntry->hInterface == pInterface) {
  187. break;
  188. }
  190. } else if (SA_UDP_ENCAP_TYPE_OTHER == pSa->sa_EncapType ) {
  192. if (pParserIfEntry->UdpEncapType == OFFLOAD_IPSEC_UDPESP_ENCAPTYPE_OTHER &&
  193. pParserIfEntry->usDstEncapPort == pSa->sa_EncapContext.wDesEncapPort &&
  194. pParserIfEntry->hInterface == pInterface) {
  195. break;
  196. }
  198. } else {
  199. ASSERT (0);
  200. }
  202. pParserIfEntry = pParserIfEntry->pNext;
  203. }
  205. return pParserIfEntry;
  206. }
  209. NTSTATUS
  210. CreateParserIfEntry(
  211. PSA_TABLE_ENTRY pSa,
  212. Interface * pInterface,
  213. PPARSER_IFENTRY * ppParserIfEntry
  214. )
  215. {
  216. PPARSER_IFENTRY pParserIfEntry = NULL;
  217. NTSTATUS ntStatus = STATUS_SUCCESS;
  219. pParserIfEntry = IPSecAllocateMemory(sizeof(PARSER_IFENTRY), IPSEC_TAG_PARSER);
  220. if (NULL == pParserIfEntry) {
  221. ntStatus = STATUS_INSUFFICIENT_RESOURCES;
  222. BAIL_ON_NTSTATUS_ERROR(ntStatus);
  223. }
  225. RtlZeroMemory (pParserIfEntry, sizeof(PARSER_IFENTRY));
  227. ASSERT (!(pSa->sa_Flags & FLAGS_SA_OUTBOUND));
  229. if (SA_UDP_ENCAP_TYPE_IKE == pSa->sa_EncapType ) {
  230. pParserIfEntry->UdpEncapType = OFFLOAD_IPSEC_UDPESP_ENCAPTYPE_IKE;
  231. } else if (SA_UDP_ENCAP_TYPE_OTHER == pSa->sa_EncapType ) {
  232. pParserIfEntry->UdpEncapType = OFFLOAD_IPSEC_UDPESP_ENCAPTYPE_OTHER;
  233. } else {
  234. ASSERT (0);
  235. }
  237. pParserIfEntry->usDstEncapPort = pSa->sa_EncapContext.wDesEncapPort;
  238. pParserIfEntry->hInterface = pInterface;
  239. pParserIfEntry->hParserIfOffload = NULL;
  240. pParserIfEntry->uRefCnt = 1;
  242. *ppParserIfEntry = pParserIfEntry;
  243. return ntStatus;
  245. error:
  247. *ppParserIfEntry = NULL;
  248. return ntStatus;
  249. }
  252. NTSTATUS
  253. GetParserEntry(
  254. PSA_TABLE_ENTRY pSa,
  255. Interface * pInterface,
  256. PPARSER_IFENTRY * ppParserIfEntry
  257. )
  258. {
  259. NTSTATUS ntStatus = STATUS_SUCCESS;
  260. PPARSER_IFENTRY pParserIfEntry = NULL;
  262. pParserIfEntry = FindParserIfEntry(
  263. gpParserIfEntry,
  264. pSa,
  265. pInterface
  266. );
  267. if (NULL == pParserIfEntry) {
  268. ntStatus = CreateParserIfEntry(pSa, pInterface, &pParserIfEntry);
  269. BAIL_ON_NTSTATUS_ERROR(ntStatus);
  271. pParserIfEntry->pNext = gpParserIfEntry;
  272. gpParserIfEntry = pParserIfEntry;
  273. }
  275. IPSEC_INCREMENT(pParserIfEntry->uRefCnt);
  276. *ppParserIfEntry = pParserIfEntry;
  277. return (ntStatus);
  279. error:
  281. *ppParserIfEntry = NULL;
  282. return (ntStatus);
  283. }
  286. VOID
  287. RemoveParserEntry (
  288. PPARSER_IFENTRY pParserIfEntry
  289. )
  290. {
  291. PPARSER_IFENTRY * ppTemp = NULL;
  293. ppTemp = &gpParserIfEntry;
  295. while (*ppTemp) {
  297. if (*ppTemp == pParserIfEntry) {
  298. break;
  299. }
  300. ppTemp = &((*ppTemp)->pNext);
  301. }
  303. if (*ppTemp) {
  304. *ppTemp = pParserIfEntry->pNext;
  305. } else {
  306. ASSERT (0);
  307. }
  309. return;
  310. }
  313. VOID
  314. DerefParserEntry(
  315. PPARSER_IFENTRY pParserIfEntry
  316. )
  317. {
  318. if (1 == IPSEC_DECREMENT(pParserIfEntry->uRefCnt)) {
  319. RemoveParserEntry (pParserIfEntry);
  320. IPSecFreeMemory (pParserIfEntry);
  321. }
  322. }
  325. HANDLE
  326. UploadParserEntryAndGetHandle(
  327. PSA_TABLE_ENTRY pSa,
  328. Interface * pInterface
  329. )
  330. {
  331. PPARSER_IFENTRY pParserIfEntry = NULL;
  332. HANDLE hOffloadHandle = NULL;
  334. pParserIfEntry = FindParserIfEntry(
  335. gpParserIfEntry,
  336. pSa,
  337. pInterface
  338. );
  339. if (NULL != pParserIfEntry) {
  340. if (IPSEC_GET_VALUE(pParserIfEntry->uRefCnt) == 2) {
  341. hOffloadHandle = pParserIfEntry->hParserIfOffload;
  342. }
  343. DerefParserEntry (pParserIfEntry);
  344. }
  346. return hOffloadHandle;
  347. }
  350. VOID
  351. FlushParserEntriesForInterface(
  352. Interface * pInterface
  353. )
  354. {
  355. PPARSER_IFENTRY pParserIfEntry = gpParserIfEntry;
  356. PPARSER_IFENTRY pPrevParserIfEntry = NULL;
  357. PPARSER_IFENTRY pTemp = NULL;
  359. while (NULL != pParserIfEntry) {
  361. if (pParserIfEntry->hInterface == pInterface) {
  362. pTemp = pParserIfEntry;
  363. pParserIfEntry = pParserIfEntry->pNext;
  365. if (NULL != pPrevParserIfEntry) {
  366. pPrevParserIfEntry->pNext = pParserIfEntry;
  367. } else {
  368. gpParserIfEntry = pParserIfEntry;
  369. }
  370. IPSecFreeMemory (pTemp);
  371. } else {
  373. pPrevParserIfEntry = pParserIfEntry;
  374. pParserIfEntry = pParserIfEntry->pNext;
  375. }
  376. }
  378. return;
  379. }
  382. VOID
  383. FlushAllParserEntries(
  384. )
  385. {
  386. PPARSER_IFENTRY pParserIfEntry = gpParserIfEntry;
  387. PPARSER_IFENTRY pTemp = NULL;
  389. while (NULL != pParserIfEntry) {
  390. pTemp = pParserIfEntry;
  391. pParserIfEntry = pParserIfEntry->pNext;
  392. IPSecFreeMemory (pTemp);
  393. }
  395. gpParserIfEntry = NULL;
  396. return;
  397. }