DPDK 25.03.0-rc0
|
Go to the source code of this file.
Data Structures | |
struct | rte_ipsec_state |
struct | rte_ipsec_sa_pkt_func |
struct | rte_ipsec_session |
Functions | |
int | rte_ipsec_session_prepare (struct rte_ipsec_session *ss) |
static uint16_t | rte_ipsec_pkt_crypto_prepare (const struct rte_ipsec_session *ss, struct rte_mbuf *mb[], struct rte_crypto_op *cop[], uint16_t num) |
static __rte_experimental uint16_t | rte_ipsec_pkt_crypto_prepare_stateless (const struct rte_ipsec_session *ss, struct rte_mbuf *mb[], struct rte_crypto_op *cop[], uint16_t num, struct rte_ipsec_state *state) |
static __rte_experimental uint16_t | rte_ipsec_pkt_cpu_prepare_stateless (const struct rte_ipsec_session *ss, struct rte_mbuf *mb[], uint16_t num, struct rte_ipsec_state *state) |
static uint16_t | rte_ipsec_pkt_process (const struct rte_ipsec_session *ss, struct rte_mbuf *mb[], uint16_t num) |
int | rte_ipsec_telemetry_sa_add (const struct rte_ipsec_sa *sa) |
void | rte_ipsec_telemetry_sa_del (const struct rte_ipsec_sa *sa) |
RTE IPsec support.
librte_ipsec provides a framework for data-path IPsec protocol processing (ESP/AH).
Definition in file rte_ipsec.h.
int rte_ipsec_session_prepare | ( | struct rte_ipsec_session * | ss | ) |
Checks that inside given rte_ipsec_session crypto/security fields are filled correctly and setups function pointers based on these values. Expects that all fields except IPsec processing function pointers (pkt_func) will be filled correctly by caller.
ss | Pointer to the rte_ipsec_session object |
|
inlinestatic |
For input mbufs and given IPsec session prepare crypto ops that can be enqueued into the cryptodev associated with given session. expects that for each input packet:
ss | Pointer to the rte_ipsec_session object the packets belong to. |
mb | The address of an array of num pointers to rte_mbuf structures which contain the input packets. |
cop | The address of an array of num pointers to the output rte_crypto_op structures. |
num | The maximum number of packets to process. |
Definition at line 138 of file rte_ipsec.h.
|
inlinestatic |
Same as rte_ipsec_pkt_crypto_prepare, but processing is done based on IPsec state provided by the 'state' parameter. Internal IPsec state won't be updated when this API is called.
For input mbufs and given IPsec session prepare crypto ops that can be enqueued into the cryptodev associated with given session. expects that for each input packet:
ss | Pointer to the rte_ipsec_session object the packets belong to. |
mb | The address of an array of num pointers to rte_mbuf structures which contain the input packets. |
cop | The address of an array of num pointers to the output rte_crypto_op structures. |
num | The maximum number of packets to process. |
state | The IPsec state to be used for processing current batch of packets. |
Definition at line 180 of file rte_ipsec.h.
|
inlinestatic |
Same as rte_ipsec_pkt_crypto_prepare_stateless, but processing is done in synchronous mode.
ss | Pointer to the rte_ipsec_session object the packets belong to. |
mb | The address of an array of num pointers to rte_mbuf structures which contain the input packets. |
num | The maximum number of packets to process. |
state | The IPsec state to be used for processing current batch of packets. |
Definition at line 205 of file rte_ipsec.h.
|
inlinestatic |
Finalise processing of packets after crypto-dev finished with them or process packets that are subjects to inline IPsec offload. Expects that for each input packet:
ss | Pointer to the rte_ipsec_session object the packets belong to. |
mb | The address of an array of num pointers to rte_mbuf structures which contain the input packets. |
num | The maximum number of packets to process. |
Definition at line 235 of file rte_ipsec.h.
int rte_ipsec_telemetry_sa_add | ( | const struct rte_ipsec_sa * | sa | ) |
Enable per SA telemetry for a specific SA. Note that this function is not thread safe
sa | Pointer to the rte_ipsec_sa object that will have telemetry enabled. |
void rte_ipsec_telemetry_sa_del | ( | const struct rte_ipsec_sa * | sa | ) |
Disable per SA telemetry for a specific SA. Note that this function is not thread safe
sa | Pointer to the rte_ipsec_sa object that will have telemetry disabled. |