X-Git-Url: https://git.opendaylight.org/gerrit/gitweb?a=blobdiff_plain;f=vpnservice%2Faclservice%2Fimpl%2Fsrc%2Fmain%2Fjava%2Forg%2Fopendaylight%2Fnetvirt%2Faclservice%2Futils%2FAclConstants.java;h=5445714e7dcaf77241f8bc7c60da5bf79f5472ab;hb=8c081f46fd3e6c04367065e2264e8b5084911ff1;hp=c95c7a66997b5456bc1963b695597aff98892eb1;hpb=0de2b8213225d74f2312087906956bd90072b3c9;p=netvirt.git

diff --git a/vpnservice/aclservice/impl/src/main/java/org/opendaylight/netvirt/aclservice/utils/AclConstants.java b/vpnservice/aclservice/impl/src/main/java/org/opendaylight/netvirt/aclservice/utils/AclConstants.java
index c95c7a6699..5445714e7d 100644
--- a/vpnservice/aclservice/impl/src/main/java/org/opendaylight/netvirt/aclservice/utils/AclConstants.java
+++ b/vpnservice/aclservice/impl/src/main/java/org/opendaylight/netvirt/aclservice/utils/AclConstants.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2016 Ericsson India Global Services Pvt Ltd. and others. All rights reserved.
+ * Copyright (c) 2016, 2017 Ericsson India Global Services Pvt Ltd. and others. All rights reserved.
  *
  * This program and the accompanying materials are made available under the
  * terms of the Eclipse Public License v1.0 which accompanies this distribution,
@@ -9,10 +9,8 @@
 package org.opendaylight.netvirt.aclservice.utils;
 
 import java.math.BigInteger;
-import java.util.Collections;
-import java.util.HashMap;
-import java.util.Map;
-import org.opendaylight.ovsdb.utils.config.ConfigProperties;
+import java.util.ArrayList;
+import java.util.List;
 
 /**
  * The class to have ACL related constants.
@@ -38,33 +36,38 @@ public final class AclConstants {
     public static final Integer PROTO_VM_IP_MAC_MATCH_PRIORITY = 36001;
     public static final Integer CT_STATE_UNTRACKED_PRIORITY = 62030;
     public static final Integer CT_STATE_TRACKED_EXIST_PRIORITY = 62020;
+    public static final Integer CT_STATE_TRACKED_INVALID_PRIORITY = 62015;
     public static final Integer CT_STATE_TRACKED_NEW_PRIORITY = 62010;
-    public static final Integer CT_STATE_NEW_PRIORITY_DROP = 36007;
+    public static final Integer CT_STATE_TRACKED_NEW_DROP_PRIORITY = 50;
+    public static final Integer NO_PRIORITY = 50;
+
     public static final short DHCP_CLIENT_PORT_IPV4 = 68;
     public static final short DHCP_SERVER_PORT_IPV4 = 67;
     public static final short DHCP_CLIENT_PORT_IPV6 = 546;
     public static final short DHCP_SERVER_PORT_IPV6 = 547;
+
     public static final BigInteger COOKIE_ACL_BASE = new BigInteger("6900000", 16);
+    public static final BigInteger COOKIE_ACL_DROP_FLOW = new BigInteger("6900001", 16);
 
-    public static final int UNTRACKED_CT_STATE = 0x00;
-    public static final int TRACKED_CT_STATE = 0x20;
     public static final int TRACKED_EST_CT_STATE = 0x22;
     public static final int TRACKED_REL_CT_STATE = 0x24;
     public static final int TRACKED_NEW_CT_STATE = 0x21;
     public static final int TRACKED_INV_CT_STATE = 0x30;
 
-    public static final int UNTRACKED_CT_STATE_MASK = 0x20;
-    public static final int TRACKED_CT_STATE_MASK = 0x20;
     public static final int TRACKED_EST_CT_STATE_MASK = 0x37;
     public static final int TRACKED_REL_CT_STATE_MASK = 0x37;
     public static final int TRACKED_NEW_CT_STATE_MASK = 0x21;
     public static final int TRACKED_INV_CT_STATE_MASK = 0x30;
 
     public static final String IPV4_ALL_NETWORK = "0.0.0.0/0";
+    public static final String IPV6_ALL_NETWORK = "::/0";
     public static final long TCP_FLAG_SYN = 1 << 1;
     public static final long TCP_FLAG_ACK = 1 << 4;
     public static final long TCP_FLAG_SYN_ACK = TCP_FLAG_SYN + TCP_FLAG_ACK;
+    public static final int ALL_LAYER4_PORT = 65535;
+    public static final int ALL_LAYER4_PORT_MASK = 0x0000;
 
+    public static final Short IP_PROT_ICMPV6 = 58;
     public static final int ICMPV6_TYPE_MLD_QUERY = 130;
     public static final int ICMPV6_TYPE_RS = 133;
     public static final int ICMPV6_TYPE_RA = 134;
@@ -81,24 +84,49 @@ public final class AclConstants {
     public static final String SECURITY_GROUP_UDP_IDLE_TO_KEY = "security-group-udp-idle-timeout";
     public static final String SECURITY_GROUP_UDP_HARD_TO_KEY = "security-group-udp-hard-timeout";
 
-    public static final String LEARN_MATCH_REG_VALUE = "1";
+    public static final int LEARN_MATCH_REG_VALUE = 1;
+    public static final int LEARN_DELETE_LEARNED_FLAG_VALUE = 2;
+
+    public static final String ACL_FLOW_PRIORITY_POOL_NAME = "acl.flow.priorities.pool";
+    public static final long ACL_FLOW_PRIORITY_LOW_POOL_START = 1000L;
+    public static final long ACL_FLOW_PRIORITY_LOW_POOL_END = 30000L;
+    public static final long ACL_FLOW_PRIORITY_HIGH_POOL_START = 30001L;
+    public static final long ACL_FLOW_PRIORITY_HIGH_POOL_END = 60000L;
+    public static final long ACL_ID_METADATA_POOL_START = 1L;
+    public static final long ACL_ID_METADATA_POOL_END = 10000L;
+
+    public static final int SOURCE_LOWER_PORT_UNSPECIFIED = -1;
+    public static final int SOURCE_UPPER_PORT_UNSPECIFIED = -1;
+    public static final int DEST_LOWER_PORT_UNSPECIFIED = -1;
+    public static final int DEST_UPPER_PORT_UNSPECIFIED = -1;
+    public static final int DEST_LOWER_PORT_HTTP = 80;
+    public static final int DEST_LOWER_PORT_2 = 2;
+    public static final int DEST_UPPER_PORT_3 = 3;
+    public static final int DEST_UPPER_PORT_HTTP = 80;
+    public static final int SOURCE_REMOTE_IP_PREFIX_SPECIFIED = 1;
+    public static final int SOURCE_REMOTE_IP_PREFIX_UNSPECIFIED = -1;
+    public static final int DEST_REMOTE_IP_PREFIX_SPECIFIED = 1;
+    public static final int DEST_REMOTE_IP_PREFIX_UNSPECIFIED = -1;
+    public static final int INVALID_ACL_ID = -1;
+    public static final short EGRESS_ACL_DUMMY_TABLE = 239;
+    public static final int TRACKED_CT_STATE = 0x20;
+    public static final int TRACKED_CT_STATE_MASK = 0x20;
+
+    public static final String ACL_ID_POOL_NAME = "ACL-ID-POOL";
 
-    private AclConstants() {
+    enum PacketHandlingType {
+        PERMIT,
+        DENY
     }
 
-    private static Map<String, Object> globalConf = Collections.synchronizedMap(new HashMap<>());
-
-    public static String getGlobalConf(String key, String defaultValue) {
-        String ret = defaultValue;
-        String value = (String)globalConf.get(key);
-        if (value == null) {
-            String propertyStr = ConfigProperties.getProperty(AclConstants.class, key);
-            if (propertyStr != null) {
-                ret = propertyStr;
-            }
-            globalConf.put(key, ret);
-        }
-        return ret;
+    private AclConstants() {
     }
 
+    public static List<Integer> allowedIcmpv6NdList() {
+        List<Integer> icmpv6NdList = new ArrayList<>();
+        icmpv6NdList.add(ICMPV6_TYPE_RS);
+        icmpv6NdList.add(ICMPV6_TYPE_NS);
+        icmpv6NdList.add(ICMPV6_TYPE_NA);
+        return icmpv6NdList;
+    }
 }