[dpdk-dev] [PATCH v10 0/9] new features for ipsec and security libraries

Radu Nicolau radu.nicolau at intel.com
Thu Oct 14 18:03:20 CEST 2021

Previous message (by thread): [dpdk-dev] [PATCH] net: add support for UDP segmentation case
Next message (by thread): [dpdk-dev] [PATCH v10 1/9] security: add ESN field to ipsec_xform
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Add support for:
NAT-T/UDP encapsulation
AES_CCM, CHACHA20_POLY1305 and AES_GMAC
SA telemetry
ESN with initial SQN value

Signed-off-by: Declan Doherty <declan.doherty at intel.com>
Signed-off-by: Radu Nicolau <radu.nicolau at intel.com>
Signed-off-by: Abhijit Sinha <abhijit.sinha at intel.com>
Signed-off-by: Daniel Martin Buckley <daniel.m.buckley at intel.com>

Radu Nicolau (9):
  security: add ESN field to ipsec_xform
  ipsec: add support for AEAD algorithms
  security: add UDP params for IPsec NAT-T
  ipsec: add support for NAT-T
  mbuf: add IPsec ESP tunnel type
  ipsec: add support for SA telemetry
  ipsec: add support for initial SQN value
  doc: remove unneeded ipsec new field deprecation
  doc: remove unneeded security deprecation

 doc/guides/prog_guide/ipsec_lib.rst    |  12 +-
 doc/guides/rel_notes/deprecation.rst   |  11 --
 doc/guides/rel_notes/release_21_11.rst |  16 ++
 lib/ipsec/crypto.h                     | 137 ++++++++++++++
 lib/ipsec/esp_inb.c                    |  84 ++++++++-
 lib/ipsec/esp_outb.c                   |  91 ++++++++-
 lib/ipsec/ipsec_telemetry.c            | 244 +++++++++++++++++++++++++
 lib/ipsec/meson.build                  |   6 +-
 lib/ipsec/rte_ipsec.h                  |  23 +++
 lib/ipsec/rte_ipsec_sa.h               |   9 +-
 lib/ipsec/sa.c                         | 120 ++++++++++--
 lib/ipsec/sa.h                         |  15 ++
 lib/ipsec/version.map                  |   9 +
 lib/mbuf/rte_mbuf_core.h               |   1 +
 lib/security/rte_security.h            |  15 ++
 15 files changed, 745 insertions(+), 48 deletions(-)
 create mode 100644 lib/ipsec/ipsec_telemetry.c

-- 

v2: fixed lib/ipsec/version.map updates to show correct version
v3: fixed build error and corrected misspelled email address
v4: add doxygen comments for the IPsec telemetry APIs
    update inline comments refering to the wrong RFC
v5: update commit messages after feedback
    update the UDP encapsulation patch to actually use the configured ports
v6: fix initial SQN value
v7: reworked the patches after feedback
v8: updated library doc, release notes and removed deprecation notices
v9: reworked telemetry, tso and esn patches
v10: removed TSO patch, addressed feedback

2.25.1

Previous message (by thread): [dpdk-dev] [PATCH] net: add support for UDP segmentation case
Next message (by thread): [dpdk-dev] [PATCH v10 1/9] security: add ESN field to ipsec_xform
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the dev mailing list