2 * Copyright (c) 2016 Ericsson India Global Services Pvt Ltd. and others. All rights reserved.
4 * This program and the accompanying materials are made available under the
5 * terms of the Eclipse Public License v1.0 which accompanies this distribution,
6 * and is available at http://www.eclipse.org/legal/epl-v10.html
9 package org.opendaylight.netvirt.aclservice.utils;
11 import java.math.BigInteger;
12 import java.util.Collections;
13 import java.util.HashMap;
15 import org.opendaylight.ovsdb.utils.config.ConfigProperties;
18 * The class to have ACL related constants.
20 public final class AclConstants {
22 public static final short INGRESS_ACL_DEFAULT_FLOW_PRIORITY = 1;
23 public static final short EGRESS_ACL_DEFAULT_FLOW_PRIORITY = 11;
25 public static final Integer PROTO_IPV6_DROP_PRIORITY = 63020;
26 public static final Integer PROTO_IPV6_ALLOWED_PRIORITY = 63010;
27 public static final Integer PROTO_DHCP_SERVER_MATCH_PRIORITY = 63010;
28 public static final Integer PROTO_DHCP_CLIENT_TRAFFIC_MATCH_PRIORITY = 63010;
29 public static final Integer PROTO_ARP_TRAFFIC_MATCH_PRIORITY = 63010;
30 public static final Integer PROTO_MATCH_PRIORITY = 61010;
31 public static final Integer PREFIX_MATCH_PRIORITY = 61009;
32 public static final Integer PROTO_PREFIX_MATCH_PRIORITY = 61008;
33 public static final Integer PROTO_PORT_MATCH_PRIORITY = 61007;
34 public static final Integer PROTO_PORT_PREFIX_MATCH_PRIORITY = 61007;
35 public static final Integer PROTO_MATCH_SYN_ALLOW_PRIORITY = 61005;
36 public static final Integer PROTO_MATCH_SYN_ACK_ALLOW_PRIORITY = 61004;
37 public static final Integer PROTO_MATCH_SYN_DROP_PRIORITY = 61003;
38 public static final Integer PROTO_VM_IP_MAC_MATCH_PRIORITY = 36001;
39 public static final Integer CT_STATE_UNTRACKED_PRIORITY = 62030;
40 public static final Integer CT_STATE_TRACKED_EXIST_PRIORITY = 62020;
41 public static final Integer CT_STATE_TRACKED_NEW_PRIORITY = 62010;
42 public static final Integer CT_STATE_NEW_PRIORITY_DROP = 50;
43 public static final short DHCP_CLIENT_PORT_IPV4 = 68;
44 public static final short DHCP_SERVER_PORT_IPV4 = 67;
45 public static final short DHCP_CLIENT_PORT_IPV6 = 546;
46 public static final short DHCP_SERVER_PORT_IPV6 = 547;
47 public static final BigInteger COOKIE_ACL_BASE = new BigInteger("6900000", 16);
49 public static final int TRACKED_EST_CT_STATE = 0x22;
50 public static final int TRACKED_REL_CT_STATE = 0x24;
51 public static final int TRACKED_NEW_CT_STATE = 0x21;
52 public static final int TRACKED_INV_CT_STATE = 0x30;
54 public static final int TRACKED_EST_CT_STATE_MASK = 0x37;
55 public static final int TRACKED_REL_CT_STATE_MASK = 0x37;
56 public static final int TRACKED_NEW_CT_STATE_MASK = 0x21;
57 public static final int TRACKED_INV_CT_STATE_MASK = 0x30;
59 public static final String IPV4_ALL_NETWORK = "0.0.0.0/0";
60 public static final long TCP_FLAG_SYN = 1 << 1;
61 public static final long TCP_FLAG_ACK = 1 << 4;
62 public static final long TCP_FLAG_SYN_ACK = TCP_FLAG_SYN + TCP_FLAG_ACK;
63 public static final int ALL_LAYER4_PORT = 65535;
64 public static final int ALL_LAYER4_PORT_MASK = 0x0000;
66 public static final int ICMPV6_TYPE_MLD_QUERY = 130;
67 public static final int ICMPV6_TYPE_RS = 133;
68 public static final int ICMPV6_TYPE_RA = 134;
69 public static final int ICMPV6_TYPE_NS = 135;
70 public static final int ICMPV6_TYPE_NA = 136;
71 public static final int ICMPV6_TYPE_MLD2_REPORT = 143;
73 public static final BigInteger METADATA_MASK_LEARN_FLAG = new BigInteger("FFFFFFFFFFFFFFFE", 16);
75 public static final String SECURITY_GROUP_TCP_IDLE_TO_KEY = "security-group-tcp-idle-timeout";
76 public static final String SECURITY_GROUP_TCP_HARD_TO_KEY = "security-group-tcp-hard-timeout";
77 public static final String SECURITY_GROUP_TCP_FIN_IDLE_TO_KEY = "security-group-tcp-fin-idle-timeout";
78 public static final String SECURITY_GROUP_TCP_FIN_HARD_TO_KEY = "security-group-tcp-fin-hard-timeout";
79 public static final String SECURITY_GROUP_UDP_IDLE_TO_KEY = "security-group-udp-idle-timeout";
80 public static final String SECURITY_GROUP_UDP_HARD_TO_KEY = "security-group-udp-hard-timeout";
82 public static final String LEARN_MATCH_REG_VALUE = "1";
83 public static final String LEARN_DELETE_LEARNED_FLAG_VALUE = "2";
85 public static final String ACL_FLOW_PRIORITY_POOL_NAME = "acl.flow.priorities.pool";
86 public static final long ACL_FLOW_PRIORITY_POOL_START = 1000L;
87 public static final long ACL_FLOW_PRIORITY_POOL_END = 60000L;
89 private AclConstants() {
92 private static Map<String, Object> globalConf = Collections.synchronizedMap(new HashMap<>());
94 public static String getGlobalConf(String key, String defaultValue) {
95 String ret = defaultValue;
96 String value = (String)globalConf.get(key);
98 String propertyStr = ConfigProperties.getProperty(AclConstants.class, key);
99 if (propertyStr != null) {
102 globalConf.put(key, ret);