doxygen/latest/bgpsec_8h_source.html

/*

 * This file is part of RTRlib.

 *

 * This file is subject to the terms and conditions of the MIT license.

 * See the file LICENSE in the top level directory for more details.

 *

 * Website: http://rtrlib.realmv6.org/

 */


#ifndef RTR_BGPSEC_H

#define RTR_BGPSEC_H


#include "rtrlib/lib/ip.h"

#include "rtrlib/spki/spkitable.h"


#include <stdint.h>


#define BGPSEC_IPV4 1

#define BGPSEC_IPV6 2


enum rtr_bgpsec_algorithm_suites {

        RTR_BGPSEC_ALGORITHM_SUITE_1 = 1,

};


enum rtr_bgpsec_rtvals {

        RTR_BGPSEC_NOT_VALID = 2,

        RTR_BGPSEC_VALID = 1,

        RTR_BGPSEC_SUCCESS = 0,

        RTR_BGPSEC_ERROR = -1,

        RTR_BGPSEC_LOAD_PUB_KEY_ERROR = -2,

        RTR_BGPSEC_LOAD_PRIV_KEY_ERROR = -3,

        RTR_BGPSEC_ROUTER_KEY_NOT_FOUND = -4,

        RTR_BGPSEC_SIGNING_ERROR = -5,

        RTR_BGPSEC_UNSUPPORTED_ALGORITHM_SUITE = -6,

        RTR_BGPSEC_UNSUPPORTED_AFI = -7,

        RTR_BGPSEC_WRONG_SEGMENT_COUNT = -8,

        RTR_BGPSEC_INVALID_ARGUMENTS = -9,

};


struct rtr_secure_path_seg {

        struct rtr_secure_path_seg *next;

        uint8_t pcount;

        uint8_t flags;

        uint32_t asn;

};


struct rtr_signature_seg {

        struct rtr_signature_seg *next;

        uint8_t ski[SKI_SIZE];

        uint16_t sig_len;

        uint8_t *signature;

};


struct rtr_bgpsec_nlri {

        uint16_t afi;

        uint8_t safi;

        uint8_t nlri_len;

        uint8_t *nlri;

};


struct rtr_bgpsec {

        uint8_t alg;

        uint8_t safi;

        uint16_t afi;

        uint32_t my_as;

        uint32_t target_as;

        uint16_t sigs_len;

        uint8_t path_len;

        struct rtr_bgpsec_nlri *nlri;

        struct rtr_signature_seg *sigs;

        struct rtr_secure_path_seg *path;

};


#endif

/* @} */

rtr_bgpsec_algorithm_suites
rtr_bgpsec_algorithm_suites
All supported algorithm suites.
Definition bgpsec.h:31

rtr_secure_path_seg::flags
uint8_t flags
Definition bgpsec.h:77

rtr_bgpsec::nlri
struct rtr_bgpsec_nlri * nlri
Definition bgpsec.h:135

rtr_secure_path_seg::asn
uint32_t asn
Definition bgpsec.h:78

rtr_bgpsec::my_as
uint32_t my_as
Definition bgpsec.h:129

rtr_bgpsec_rtvals
rtr_bgpsec_rtvals
Status codes for various cases.
Definition bgpsec.h:39

rtr_bgpsec::safi
uint8_t safi
Definition bgpsec.h:127

rtr_bgpsec::path
struct rtr_secure_path_seg * path
Reference to the Secure Path Segments.
Definition bgpsec.h:139

rtr_bgpsec_nlri::safi
uint8_t safi
Definition bgpsec.h:107

rtr_signature_seg::ski
uint8_t ski[20]
Definition bgpsec.h:90

rtr_bgpsec_nlri::afi
uint16_t afi
Definition bgpsec.h:106

rtr_bgpsec::sigs
struct rtr_signature_seg * sigs
Reference to the Signature Segments.
Definition bgpsec.h:137

rtr_signature_seg::next
struct rtr_signature_seg * next
Definition bgpsec.h:89

rtr_secure_path_seg::next
struct rtr_secure_path_seg * next
Reference to the next Secure Path Segment (do not edit manually).
Definition bgpsec.h:75

rtr_bgpsec::afi
uint16_t afi
Definition bgpsec.h:128

rtr_bgpsec::sigs_len
uint16_t sigs_len
Count of Signature Segments (do not edit manually).
Definition bgpsec.h:132

rtr_bgpsec::target_as
uint32_t target_as
Definition bgpsec.h:130

rtr_bgpsec_nlri::nlri_len
uint8_t nlri_len
Definition bgpsec.h:108

rtr_bgpsec::alg
uint8_t alg
Definition bgpsec.h:126

rtr_secure_path_seg::pcount
uint8_t pcount
Definition bgpsec.h:76

rtr_signature_seg::sig_len
uint16_t sig_len
Definition bgpsec.h:91

rtr_bgpsec_nlri::nlri
uint8_t * nlri
Definition bgpsec.h:109

rtr_signature_seg::signature
uint8_t * signature
The signature of the segment.
Definition bgpsec.h:93

rtr_bgpsec::path_len
uint8_t path_len
Count of Secure Path Segments (do not edit manually).
Definition bgpsec.h:134

RTR_BGPSEC_ALGORITHM_SUITE_1
@ RTR_BGPSEC_ALGORITHM_SUITE_1
Algorithm suite 1.
Definition bgpsec.h:33

RTR_BGPSEC_WRONG_SEGMENT_COUNT
@ RTR_BGPSEC_WRONG_SEGMENT_COUNT
The count of signature and secure path segments are not equal.
Definition bgpsec.h:61

RTR_BGPSEC_SUCCESS
@ RTR_BGPSEC_SUCCESS
An operation was successful.
Definition bgpsec.h:45

RTR_BGPSEC_VALID
@ RTR_BGPSEC_VALID
All signatures are valid.
Definition bgpsec.h:43

RTR_BGPSEC_ROUTER_KEY_NOT_FOUND
@ RTR_BGPSEC_ROUTER_KEY_NOT_FOUND
The SKI for a router key was not found.
Definition bgpsec.h:53

RTR_BGPSEC_UNSUPPORTED_AFI
@ RTR_BGPSEC_UNSUPPORTED_AFI
The specified AFI is not supported by BGPsec.
Definition bgpsec.h:59

RTR_BGPSEC_ERROR
@ RTR_BGPSEC_ERROR
An operation was not successful.
Definition bgpsec.h:47

RTR_BGPSEC_INVALID_ARGUMENTS
@ RTR_BGPSEC_INVALID_ARGUMENTS
There is data missing for validation or signing.
Definition bgpsec.h:63

RTR_BGPSEC_UNSUPPORTED_ALGORITHM_SUITE
@ RTR_BGPSEC_UNSUPPORTED_ALGORITHM_SUITE
The specified algorithm suite is not supported by RTRlib.
Definition bgpsec.h:57

RTR_BGPSEC_LOAD_PRIV_KEY_ERROR
@ RTR_BGPSEC_LOAD_PRIV_KEY_ERROR
The private key could not be loaded.
Definition bgpsec.h:51

RTR_BGPSEC_SIGNING_ERROR
@ RTR_BGPSEC_SIGNING_ERROR
An error during signing occurred.
Definition bgpsec.h:55

RTR_BGPSEC_NOT_VALID
@ RTR_BGPSEC_NOT_VALID
At least one signature is not valid.
Definition bgpsec.h:41

RTR_BGPSEC_LOAD_PUB_KEY_ERROR
@ RTR_BGPSEC_LOAD_PUB_KEY_ERROR
The public key could not be loaded.
Definition bgpsec.h:49

SKI_SIZE
#define SKI_SIZE
Definition spkitable.h:26

ip.h

spkitable.h

rtr_bgpsec_nlri
This struct contains the Network Layer Reachability Information (NLRI).
Definition bgpsec.h:105

rtr_bgpsec
The data that is passed to the rtr_mgr_bgpsec_validate_as_path function.
Definition bgpsec.h:125

rtr_secure_path_seg
A single Secure Path Segment.
Definition bgpsec.h:73

rtr_signature_seg
A single Signature Segment.
Definition bgpsec.h:88