DPDK 22.11.1
Loading...
Searching...
No Matches
Data Fields
rte_security_capability Struct Reference

#include <rte_security.h>

Data Fields

enum rte_security_session_action_type action
 
enum rte_security_session_protocol protocol
 
const struct rte_cryptodev_capabilitiescrypto_capabilities
 
uint32_t ol_flags
 

Detailed Description

Security capability definition

Examples
examples/ipsec-secgw/ipsec.c.

Definition at line 1113 of file rte_security.h.

Field Documentation

◆ action

Security action type

Examples
examples/ipsec-secgw/ipsec.c.

Definition at line 1114 of file rte_security.h.

◆ protocol

Security protocol

Examples
examples/ipsec-secgw/ipsec.c.

Definition at line 1116 of file rte_security.h.

◆ proto

IPsec SA protocol

Definition at line 1121 of file rte_security.h.

◆ mode

IPsec SA mode

Examples
examples/ipsec-secgw/ipsec.c.

Definition at line 1123 of file rte_security.h.

◆ direction [1/2]

IPsec SA direction

Examples
examples/ipsec-secgw/ipsec.c.

Definition at line 1125 of file rte_security.h.

◆ options

IPsec SA supported options

Definition at line 1127 of file rte_security.h.

◆ replay_win_sz_max

uint32_t replay_win_sz_max

IPsec Anti Replay Window Size. A '0' value indicates that Anti Replay is not supported.

Definition at line 1129 of file rte_security.h.

◆ [struct]

struct { ... } ipsec

IPsec capability

Examples
examples/ipsec-secgw/ipsec.c.

◆ mtu

uint16_t mtu

MTU supported for inline TX

Definition at line 1137 of file rte_security.h.

◆ alg

MACsec algorithm to be used

Definition at line 1139 of file rte_security.h.

◆ max_nb_sc

uint16_t max_nb_sc

Maximum number of secure channels supported

Definition at line 1141 of file rte_security.h.

◆ max_nb_sa

uint16_t max_nb_sa

Maximum number of SAs supported

Definition at line 1143 of file rte_security.h.

◆ max_nb_sess

uint16_t max_nb_sess

Maximum number of SAs supported

Definition at line 1145 of file rte_security.h.

◆ replay_win_sz

uint32_t replay_win_sz

MACsec anti replay window size

Definition at line 1147 of file rte_security.h.

◆ relative_sectag_insert

uint16_t relative_sectag_insert

Support Sectag insertion at relative offset

Definition at line 1149 of file rte_security.h.

◆ fixed_sectag_insert

uint16_t fixed_sectag_insert

Support Sectag insertion at fixed offset

Definition at line 1151 of file rte_security.h.

◆ icv_include_da_sa

uint16_t icv_include_da_sa

ICV includes source and destination MAC addresses

Definition at line 1153 of file rte_security.h.

◆ ctrl_port_enable

uint16_t ctrl_port_enable

Control port traffic is supported

Definition at line 1155 of file rte_security.h.

◆ preserve_sectag

uint16_t preserve_sectag

Do not strip SecTAG after processing

Definition at line 1157 of file rte_security.h.

◆ preserve_icv

uint16_t preserve_icv

Do not strip ICV from the packet after processing

Definition at line 1159 of file rte_security.h.

◆ validate_frames

uint16_t validate_frames

Support frame validation as per RTE_SECURITY_MACSEC_VALIDATE_*

Definition at line 1161 of file rte_security.h.

◆ re_key

uint16_t re_key

support re-keying on SA expiry

Definition at line 1163 of file rte_security.h.

◆ anti_replay

uint16_t anti_replay

support anti replay

Definition at line 1165 of file rte_security.h.

◆ reserved

uint16_t reserved

Reserved bitfields for future capabilities

Definition at line 1167 of file rte_security.h.

◆ [struct]

struct { ... } macsec

MACsec capability

◆ domain

PDCP mode of operation: Control or data

Definition at line 1171 of file rte_security.h.

◆ capa_flags

uint32_t capa_flags

Capability flags, see RTE_SECURITY_PDCP_*

Definition at line 1173 of file rte_security.h.

◆ [struct]

struct { ... } pdcp

PDCP capability

◆ direction [2/2]

DOCSIS direction

Definition at line 1178 of file rte_security.h.

◆ [struct]

struct { ... } docsis

DOCSIS capability

◆ crypto_capabilities

const struct rte_cryptodev_capabilities* crypto_capabilities

Corresponding crypto capabilities for security capability

Definition at line 1184 of file rte_security.h.

◆ ol_flags

uint32_t ol_flags

Device offload flags

Examples
examples/ipsec-secgw/ipsec.c.

Definition at line 1187 of file rte_security.h.


The documentation for this struct was generated from the following file: