Home
last modified time | relevance | path

Searched refs:xfrm (Results 1 – 25 of 55) sorted by relevance

123

/linux/net/xfrm/
A Dxfrm_sysctl.c9 net->xfrm.sysctl_aevent_etime = XFRM_AE_ETIME; in __xfrm_sysctl_init()
10 net->xfrm.sysctl_aevent_rseqth = XFRM_AE_SEQT_SIZE; in __xfrm_sysctl_init()
11 net->xfrm.sysctl_larval_drop = 1; in __xfrm_sysctl_init()
12 net->xfrm.sysctl_acq_expires = 30; in __xfrm_sysctl_init()
53 table[0].data = &net->xfrm.sysctl_aevent_etime; in xfrm_sysctl_init()
54 table[1].data = &net->xfrm.sysctl_aevent_rseqth; in xfrm_sysctl_init()
55 table[2].data = &net->xfrm.sysctl_larval_drop; in xfrm_sysctl_init()
56 table[3].data = &net->xfrm.sysctl_acq_expires; in xfrm_sysctl_init()
64 if (!net->xfrm.sysctl_hdr) in xfrm_sysctl_init()
78 table = net->xfrm.sysctl_hdr->ctl_table_arg; in xfrm_sysctl_fini()
[all …]
A Dxfrm_policy.c2517 xfrm[nx++] = x; in xfrm_tmpl_resolve_one()
2717 if (xfrm[i]->props.smark.v || xfrm[i]->props.smark.m) in xfrm_bundle_create()
2732 dst1->xfrm = xfrm[i]; in xfrm_bundle_create()
2783 xfrm_state_put(xfrm[i]); in xfrm_bundle_create()
3280 if (dst && dst->xfrm && in xfrm_lookup_with_ifid()
3644 if (dst2->xfrm) { in xfrm_out_fwd_icmp()
3874 if (dst && !dst->xfrm) in __xfrm_route_forward()
4010 } while (dst->xfrm); in xfrm_bundle_ok()
4049 while (dst->xfrm) { in xfrm_get_dst_nexthop()
4050 const struct xfrm_state *xfrm = dst->xfrm; in xfrm_get_dst_nexthop() local
[all …]
A Dxfrm_state.c193 ohashmask = net->xfrm.state_hmask; in xfrm_hash_resize()
754 net->xfrm.state_num--; in __xfrm_state_delete()
1149 net->xfrm.state_num > net->xfrm.state_hmask) in xfrm_hash_grow_check()
1378 net->xfrm.state_num++; in xfrm_state_find()
1511 net->xfrm.state_num++; in __xfrm_state_insert()
1625 net->xfrm.state_num++; in __find_acq_core()
2980 if (!net->xfrm.state_bydst) in xfrm_state_init()
2983 if (!net->xfrm.state_bysrc) in xfrm_state_init()
2986 if (!net->xfrm.state_byspi) in xfrm_state_init()
2989 if (!net->xfrm.state_byseq) in xfrm_state_init()
[all …]
A Dxfrm_nat_keepalive.c196 net = container_of(work, struct net, xfrm.nat_keepalive_work.work); in nat_keepalive_work()
201 schedule_delayed_work(&net->xfrm.nat_keepalive_work, in nat_keepalive_work()
243 schedule_delayed_work(&net->xfrm.nat_keepalive_work, 0); in xfrm_nat_keepalive_state_updated()
248 INIT_DELAYED_WORK(&net->xfrm.nat_keepalive_work, nat_keepalive_work); in xfrm_nat_keepalive_net_init()
254 cancel_delayed_work_sync(&net->xfrm.nat_keepalive_work); in xfrm_nat_keepalive_net_fini()
A Dxfrm_user.c1507 spt4.lbits = net->xfrm.policy_hthresh.lbits4; in build_spdinfo()
1508 spt4.rbits = net->xfrm.policy_hthresh.rbits4; in build_spdinfo()
1509 spt6.lbits = net->xfrm.policy_hthresh.lbits6; in build_spdinfo()
1510 spt6.rbits = net->xfrm.policy_hthresh.rbits6; in build_spdinfo()
1566 write_seqlock(&net->xfrm.policy_hthresh.lock); in xfrm_set_spdinfo()
2471 err = nlmsg_unicast(net->xfrm.nlsk, resp_skb, in xfrm_get_policy()
3342 mutex_lock(&net->xfrm.xfrm_cfg_mutex); in xfrm_netlink_rcv()
3344 mutex_unlock(&net->xfrm.xfrm_cfg_mutex); in xfrm_netlink_rcv()
4020 rcu_assign_pointer(net->xfrm.nlsk, nlsk); in xfrm_user_net_init()
4026 RCU_INIT_POINTER(net->xfrm.nlsk, NULL); in xfrm_user_net_pre_exit()
[all …]
A Dxfrm_output.c493 struct xfrm_state *x = dst->xfrm; in xfrm_output_one()
571 x = dst->xfrm; in xfrm_output_one()
586 struct net *net = xs_net(skb_dst(skb)->xfrm); in xfrm_output_resume()
595 if (!skb_dst(skb)->xfrm) in xfrm_output_resume()
706 struct xfrm_state *x = skb_dst(skb)->xfrm; in xfrm_output()
/linux/tools/testing/selftests/net/
A Dxfrm_policy.sh122 ip -net $ns xfrm policy get src $lnet dst $rnet dir out > /dev/null
129 ip -net $ns xfrm policy get src $rnet dst $lnet dir fwd > /dev/null
273 ip -net ${ns[1]} xfrm policy set hthresh6 0 28 || break
276 ip -net ${ns[1]} xfrm policy set hthresh6 0 28 || break
297 ip -net $ns xfrm policy flush
310 ip -net $ns xfrm policy flush
324 ip -net $ns xfrm policy flush
455 ip -net $n xfrm policy set hthresh4 28 24 hthresh6 126 125
462 ip -net ${ns[3]} xfrm policy flush
468 ip -net ${ns[3]} xfrm policy set hthresh4 16 16
[all …]
A Dl2tp.sh228 run_cmd $host_1 ip xfrm policy add \
232 run_cmd $host_1 ip xfrm policy add \
236 run_cmd $host_2 ip xfrm policy add \
240 run_cmd $host_2 ip xfrm policy add \
244 ip -netns $host_1 xfrm state add \
249 ip -netns $host_1 xfrm state add \
254 ip -netns $host_2 xfrm state add \
259 ip -netns $host_2 xfrm state add \
306 run_cmd $host_1 ip xfrm state flush
307 run_cmd $host_1 ip xfrm policy flush
[all …]
A Dvrf-xfrm-tests.sh197 ip -netns ${ns} xfrm ${x} flush
198 ip -6 -netns ${ns} xfrm ${x} flush
216 ip -netns $host1 xfrm policy add \
221 ip -netns $host2 xfrm policy add \
226 ip -netns $host1 xfrm policy add \
231 ip -netns $host2 xfrm policy add \
237 ip -6 -netns $host1 xfrm policy add \
242 ip -6 -netns $host2 xfrm policy add \
247 ip -6 -netns $host1 xfrm policy add \
252 ip -6 -netns $host2 xfrm policy add \
[all …]
A Dxfrm_policy_add_speed.sh28 ip netns exec "$ns" ip xfrm policy flush
40 echo xfrm policy add src 10.$s.$j.0/30 dst 10.$d.$j.$a/$pfx dir $dir action block
45 echo xfrm policy add src 10.$s.$j.$a/30 dst 10.$d.$j.0/$pfx dir $dir action block
70 have=$(ip netns exec "$ns" ip xfrm policy show | grep "action block" | wc -l)
/linux/net/netfilter/
A Dnft_xfrm.c182 for (i = 0; dst && dst->xfrm; in nft_xfrm_get_eval_out()
187 nft_xfrm_state_get_key(priv, regs, dst->xfrm); in nft_xfrm_get_eval_out()
265 const struct nft_xfrm *xfrm; in nft_xfrm_reduce() local
272 xfrm = nft_expr_priv(track->regs[priv->dreg].selector); in nft_xfrm_reduce()
273 if (priv->key != xfrm->key || in nft_xfrm_reduce()
274 priv->dreg != xfrm->dreg || in nft_xfrm_reduce()
275 priv->dir != xfrm->dir || in nft_xfrm_reduce()
276 priv->spnum != xfrm->spnum) { in nft_xfrm_reduce()
A Dxt_policy.c90 if (dst->xfrm == NULL) in match_policy_out()
93 for (i = 0; dst && dst->xfrm; in match_policy_out()
100 if (match_xfrm_state(dst->xfrm, e, family)) { in match_policy_out()
/linux/net/ipv6/
A Dxfrm6_policy.c148 } while (xdst->u.dst.xfrm); in xfrm6_dst_ifdown()
189 .data = &init_net.xfrm.xfrm6_dst_ops.gc_thresh,
207 table[0].data = &net->xfrm.xfrm6_dst_ops.gc_thresh; in xfrm6_net_sysctl_init()
252 memcpy(&net->xfrm.xfrm6_dst_ops, &xfrm6_dst_ops_template, in xfrm6_net_init()
254 ret = dst_entries_init(&net->xfrm.xfrm6_dst_ops); in xfrm6_net_init()
260 dst_entries_destroy(&net->xfrm.xfrm6_dst_ops); in xfrm6_net_init()
268 dst_entries_destroy(&net->xfrm.xfrm6_dst_ops); in xfrm6_net_exit()
/linux/net/ipv4/
A Dxfrm4_policy.c146 .data = &init_net.xfrm.xfrm4_dst_ops.gc_thresh,
164 table[0].data = &net->xfrm.xfrm4_dst_ops.gc_thresh; in xfrm4_net_sysctl_init()
209 memcpy(&net->xfrm.xfrm4_dst_ops, &xfrm4_dst_ops_template, in xfrm4_net_init()
211 ret = dst_entries_init(&net->xfrm.xfrm4_dst_ops); in xfrm4_net_init()
217 dst_entries_destroy(&net->xfrm.xfrm4_dst_ops); in xfrm4_net_init()
225 dst_entries_destroy(&net->xfrm.xfrm4_dst_ops); in xfrm4_net_exit()
A Dxfrm4_output.c20 struct xfrm_state *x = skb_dst(skb)->xfrm; in __xfrm4_output()
/linux/arch/x86/kvm/vmx/
A Dsgx.c148 u64 attributes, xfrm, size; in __handle_encls_ecreate() local
162 xfrm = contents->xfrm; in __handle_encls_ecreate()
183 (u32)xfrm & ~sgx_12_1->ecx || in __handle_encls_ecreate()
184 (u32)(xfrm >> 32) & ~sgx_12_1->edx || in __handle_encls_ecreate()
185 xfrm & ~(vcpu->arch.guest_supported_xcr0 | XFEATURE_MASK_FPSSE) || in __handle_encls_ecreate()
186 (xfrm & XFEATURE_MASK_FPSSE) != XFEATURE_MASK_FPSSE) { in __handle_encls_ecreate()
/linux/tools/testing/selftests/net/forwarding/
A Dip6_forward_instats_vrf.sh151 ip xfrm policy add dst 2001:1:2::2/128 dir fwd action block
154 ip xfrm policy del dst 2001:1:2::2/128 dir fwd
/linux/arch/x86/include/asm/
A Dsgx.h177 u64 xfrm; member
373 u64 xfrm; member
/linux/include/net/
A Dxfrm.h1014 if (dst->xfrm || (dst->flags & DST_XFRM_QUEUE)) { in xfrm_dst_path()
1026 if (dst->xfrm || (dst->flags & DST_XFRM_QUEUE)) { in xfrm_dst_child()
1044 if (likely(xdst->u.dst.xfrm)) in xfrm_dst_destroy()
1045 xfrm_state_put(xdst->u.dst.xfrm); in xfrm_dst_destroy()
1188 if (!net->xfrm.policy_count[dir] && !secpath_exists(skb)) in __xfrm_check_nopolicy()
1279 if (!net->xfrm.policy_count[XFRM_POLICY_OUT] && in xfrm_route_forward()
1882 nlsk = rcu_dereference(net->xfrm.nlsk); in xfrm_aevent_is_on()
1895 nlsk = rcu_dereference(net->xfrm.nlsk); in xfrm_acquire_is_on()
2001 struct xfrm_state *x = dst->xfrm; in xfrm_dst_offload_ok()
2008 if (!x->xso.offload_handle && !xdst->child->xfrm) in xfrm_dst_offload_ok()
[all …]
/linux/security/selinux/
A DMakefile22 selinux-$(CONFIG_SECURITY_NETWORK_XFRM) += xfrm.o
A Dxfrm.c214 x = dst->xfrm; in selinux_xfrm_skb_sid_egress()
454 struct xfrm_state *x = iter->xfrm; in selinux_xfrm_postroute_last()
/linux/Documentation/networking/
A Dsecid.rst11 matching labeled xfrm(s).
/linux/net/core/
A Ddst.c57 dst->xfrm = NULL; in dst_init()
106 if (dst->xfrm) { in dst_destroy()
/linux/tools/testing/selftests/net/netfilter/
A Dnft_flowtable.sh627 …ip -net "$ns" xfrm state add src "$remote" dst "$me" proto esp spi "$spi_in" enc aes "$KEY_AES" …
628 …ip -net "$ns" xfrm state add src "$me" dst "$remote" proto esp spi "$spi_out" enc aes "$KEY_AES" …
631 …ip -net "$ns" xfrm policy add src "$lnet" dst "$rnet" dir out tmpl src "$me" dst "$remote" proto e…
633 …ip -net "$ns" xfrm policy add src "$rnet" dst "$lnet" dir fwd tmpl src "$remote" dst "$me" proto e…
/linux/net/
A DMakefile19 obj-$(CONFIG_XFRM) += xfrm/

Completed in 53 milliseconds

123