API Reference Manual  1.45.0
api/spec/ipsec_types.h
Go to the documentation of this file.
1 /* SPDX-License-Identifier: BSD-3-Clause
2  * Copyright (c) 2016-2018 Linaro Limited
3  * Copyright (c) 2022 Nokia
4  */
5 
12 #ifndef ODP_API_SPEC_IPSEC_TYPES_H_
13 #define ODP_API_SPEC_IPSEC_TYPES_H_
14 #include <odp/visibility_begin.h>
15 
16 #ifdef __cplusplus
17 extern "C" {
18 #endif
19 
20 #include <odp/api/classification.h>
21 #include <odp/api/crypto_types.h>
22 #include <odp/api/packet_io_types.h>
23 #include <odp/api/protocols.h>
24 #include <odp/api/std_types.h>
25 #include <odp/api/traffic_mngr.h>
26 
44 typedef enum odp_ipsec_op_mode_t {
50  ODP_IPSEC_OP_MODE_SYNC = 0,
51 
57  ODP_IPSEC_OP_MODE_ASYNC,
58 
68  ODP_IPSEC_OP_MODE_INLINE,
69 
71  ODP_IPSEC_OP_MODE_DISABLED
72 
73 } odp_ipsec_op_mode_t;
74 
78 typedef enum odp_ipsec_test_sa_operation_t {
85  ODP_IPSEC_TEST_SA_UPDATE_SEQ_NUM = 0,
86 
93  ODP_IPSEC_TEST_SA_UPDATE_ANTIREPLAY_WINDOW_TOP
94 
95 } odp_ipsec_test_sa_operation_t;
96 
100 typedef union odp_ipsec_test_sa_param_t {
105  uint64_t seq_num;
106 
111  uint64_t antireplay_window_top;
112 
113 } odp_ipsec_test_sa_param_t;
114 
118 typedef struct odp_ipsec_inbound_config_t {
124  odp_queue_t default_queue;
125 
128  struct {
130  uint32_t min_spi;
131 
134  uint32_t max_spi;
135 
142  odp_bool_t spi_overlap;
143 
144  } lookup;
145 
168  odp_proto_layer_t retain_outer;
169 
183  odp_proto_layer_t parse_level;
184 
190  odp_proto_chksums_t chksums;
191 
201  odp_reass_config_t reassembly;
202 
206  odp_bool_t reass_async;
207 
211  odp_bool_t reass_inline;
212 
213 } odp_ipsec_inbound_config_t;
214 
218 typedef struct odp_ipsec_outbound_config_t {
227  union {
229  struct {
232  uint32_t inner_ipv4 : 1;
233 
236  uint32_t inner_udp : 1;
237 
240  uint32_t inner_tcp : 1;
241 
244  uint32_t inner_sctp : 1;
245 
246  } chksum;
247 
252  uint32_t all_chksum;
253  };
254 
255 } odp_ipsec_outbound_config_t;
256 
260 typedef struct odp_ipsec_test_capability_t {
262  struct {
267  odp_bool_t seq_num;
268 
273  odp_bool_t antireplay_window_top;
274 
275  } sa_operations;
276 
277 } odp_ipsec_test_capability_t;
278 
282 typedef struct odp_ipsec_capability_t {
284  uint32_t max_num_sa;
285 
287  odp_support_t op_mode_sync;
288 
292  odp_support_t op_mode_async;
293 
298  odp_support_t op_mode_inline_in;
299 
304  odp_support_t op_mode_inline_out;
305 
307  odp_support_t proto_ah;
308 
310  odp_support_t frag_after;
311 
313  odp_support_t frag_before;
314 
319  odp_support_t pipeline_cls;
320 
325  odp_support_t retain_header;
326 
330  odp_proto_chksums_t chksums_in;
331 
336  uint32_t max_cls_cos;
337 
347  odp_bool_t queue_type_sched;
348 
358  odp_bool_t queue_type_plain;
359 
362  uint32_t max_queues;
363 
365  odp_pktin_vector_capability_t vector;
366 
368  uint32_t max_antireplay_ws;
369 
371  odp_crypto_cipher_algos_t ciphers;
372 
374  odp_crypto_auth_algos_t auths;
375 
383  odp_support_t inline_ipsec_tm;
384 
389  odp_ipsec_test_capability_t test;
390 
392  odp_reass_capability_t reassembly;
393 
395  odp_bool_t reass_async;
396 
398  odp_bool_t reass_inline;
399 
400 } odp_ipsec_capability_t;
401 
405 typedef struct odp_ipsec_cipher_capability_t {
407  uint32_t key_len;
408 
409 } odp_ipsec_cipher_capability_t;
410 
414 typedef struct odp_ipsec_auth_capability_t {
416  uint32_t key_len;
417 
419  uint32_t icv_len;
420 } odp_ipsec_auth_capability_t;
421 
425 typedef struct odp_ipsec_config_t {
431  odp_ipsec_op_mode_t inbound_mode;
432 
438  odp_ipsec_op_mode_t outbound_mode;
439 
442  uint32_t max_num_sa;
443 
445  odp_ipsec_inbound_config_t inbound;
446 
448  odp_ipsec_outbound_config_t outbound;
449 
456  odp_bool_t stats_en;
457 
466  odp_pktin_vector_config_t vector;
467 
468 } odp_ipsec_config_t;
469 
473 typedef enum odp_ipsec_dir_t {
475  ODP_IPSEC_DIR_INBOUND = 0,
476 
478  ODP_IPSEC_DIR_OUTBOUND
479 
480 } odp_ipsec_dir_t;
481 
485 typedef enum odp_ipsec_mode_t {
487  ODP_IPSEC_MODE_TUNNEL = 0,
488 
490  ODP_IPSEC_MODE_TRANSPORT
491 
492 } odp_ipsec_mode_t;
493 
497 typedef enum odp_ipsec_protocol_t {
499  ODP_IPSEC_ESP = 0,
500 
502  ODP_IPSEC_AH
503 
504 } odp_ipsec_protocol_t;
505 
509 typedef enum odp_ipsec_tunnel_type_t {
511  ODP_IPSEC_TUNNEL_IPV4 = 0,
512 
514  ODP_IPSEC_TUNNEL_IPV6
515 
516 } odp_ipsec_tunnel_type_t;
517 
521 typedef struct odp_ipsec_crypto_param_t {
533  odp_cipher_alg_t cipher_alg;
534 
536  odp_crypto_key_t cipher_key;
537 
548  odp_crypto_key_t cipher_key_extra;
549 
567  odp_auth_alg_t auth_alg;
568 
570  odp_crypto_key_t auth_key;
571 
579  odp_crypto_key_t auth_key_extra;
580 
610  uint32_t icv_len;
611 
612 } odp_ipsec_crypto_param_t;
613 
615 typedef struct odp_ipsec_ipv4_param_t {
617  void *src_addr;
618 
620  void *dst_addr;
621 
623  uint8_t dscp;
624 
626  uint8_t df;
627 
629  uint8_t ttl;
630 
631 } odp_ipsec_ipv4_param_t;
632 
634 typedef struct odp_ipsec_ipv6_param_t {
636  void *src_addr;
637 
639  void *dst_addr;
640 
642  uint32_t flabel;
643 
645  uint8_t dscp;
646 
648  uint8_t hlimit;
649 
650 } odp_ipsec_ipv6_param_t;
651 
660 typedef struct odp_ipsec_tunnel_param_t {
662  odp_ipsec_tunnel_type_t type;
663 
665  struct {
667  odp_ipsec_ipv4_param_t ipv4;
668 
670  odp_ipsec_ipv6_param_t ipv6;
671  };
672 } odp_ipsec_tunnel_param_t;
673 
677 typedef struct odp_ipsec_sa_opt_t {
683  uint32_t esn : 1;
684 
691  uint32_t udp_encap : 1;
692 
701  uint32_t copy_dscp : 1;
702 
709  uint32_t copy_flabel : 1;
710 
717  uint32_t copy_df : 1;
718 
726  uint32_t dec_ttl : 1;
727 
728 } odp_ipsec_sa_opt_t;
729 
742 typedef struct odp_ipsec_lifetime_t {
744  struct {
746  uint64_t bytes;
747 
749  uint64_t packets;
750  } soft_limit;
751 
753  struct {
755  uint64_t bytes;
756 
758  uint64_t packets;
759  } hard_limit;
760 } odp_ipsec_lifetime_t;
761 
769 typedef enum odp_ipsec_frag_mode_t {
771  ODP_IPSEC_FRAG_DISABLED = 0,
772 
774  ODP_IPSEC_FRAG_BEFORE,
775 
777  ODP_IPSEC_FRAG_AFTER,
778 
781  ODP_IPSEC_FRAG_CHECK
782 } odp_ipsec_frag_mode_t;
783 
793 typedef enum odp_ipsec_lookup_mode_t {
795  ODP_IPSEC_LOOKUP_DISABLED = 0,
796 
798  ODP_IPSEC_LOOKUP_SPI,
799 
803  ODP_IPSEC_LOOKUP_DSTADDR_SPI
804 
805 } odp_ipsec_lookup_mode_t;
806 
810 typedef enum odp_ipsec_pipeline_t {
812  ODP_IPSEC_PIPELINE_NONE = 0,
813 
818  ODP_IPSEC_PIPELINE_CLS
819 
820 } odp_ipsec_pipeline_t;
821 
825 typedef enum odp_ipsec_ip_version_t {
827  ODP_IPSEC_IPV4 = 4,
828 
830  ODP_IPSEC_IPV6 = 6
831 
832 } odp_ipsec_ip_version_t;
833 
837 typedef struct odp_ipsec_sa_param_t {
839  odp_ipsec_dir_t dir;
840 
842  odp_ipsec_protocol_t proto;
843 
845  odp_ipsec_mode_t mode;
846 
848  odp_ipsec_crypto_param_t crypto;
849 
851  odp_ipsec_sa_opt_t opt;
852 
854  odp_ipsec_lifetime_t lifetime;
855 
857  uint32_t spi;
858 
865  odp_queue_t dest_queue;
866 
873  void *context;
874 
881  uint32_t context_len;
882 
884  struct {
886  struct {
890  odp_ipsec_lookup_mode_t lookup_mode;
891 
895  struct {
897  odp_ipsec_ip_version_t ip_version;
898 
901  void *dst_addr;
902 
903  } lookup_param;
904 
908  uint32_t antireplay_ws;
909 
917  odp_ipsec_pipeline_t pipeline;
918 
930  odp_cos_t dest_cos;
931 
956  odp_bool_t reassembly_en;
957 
958  } inbound;
959 
961  struct {
963  odp_ipsec_tunnel_param_t tunnel;
964 
968  odp_ipsec_frag_mode_t frag_mode;
969 
976  uint32_t mtu;
977 
978  } outbound;
979  };
980 
981 } odp_ipsec_sa_param_t;
982 
986 typedef struct odp_ipsec_stats_t {
988  uint64_t success;
989 
991  uint64_t proto_err;
992 
994  uint64_t auth_err;
995 
997  uint64_t antireplay_err;
998 
1000  uint64_t alg_err;
1001 
1003  uint64_t mtu_err;
1004 
1006  uint64_t hard_exp_bytes_err;
1007 
1009  uint64_t hard_exp_pkts_err;
1010 
1018  uint64_t success_bytes;
1019 } odp_ipsec_stats_t;
1020 
1024 typedef struct odp_ipsec_sa_info_t {
1033  odp_ipsec_sa_param_t param;
1034 
1036  union {
1038  struct {
1040  struct {
1043  uint8_t dst_addr[ODP_IPV6_ADDR_SIZE];
1044  } lookup_param;
1045 
1052  uint32_t antireplay_ws;
1053 
1062  uint64_t antireplay_window_top;
1063  } inbound;
1064 
1066  struct {
1074  uint64_t seq_num;
1075 
1077  union {
1079  struct {
1081  uint8_t src_addr[ODP_IPV4_ADDR_SIZE];
1083  uint8_t dst_addr[ODP_IPV4_ADDR_SIZE];
1084  } ipv4;
1085 
1087  struct {
1089  uint8_t src_addr[ODP_IPV6_ADDR_SIZE];
1091  uint8_t dst_addr[ODP_IPV6_ADDR_SIZE];
1092  } ipv6;
1093  } tunnel;
1094  } outbound;
1095  };
1096 } odp_ipsec_sa_info_t;
1097 
1099 #define ODP_IPSEC_OK 0
1100 
1102 typedef struct odp_ipsec_error_t {
1104  union {
1106  struct {
1109  uint32_t proto : 1;
1110 
1112  uint32_t sa_lookup : 1;
1113 
1115  uint32_t auth : 1;
1116 
1118  uint32_t antireplay : 1;
1119 
1121  uint32_t alg : 1;
1122 
1124  uint32_t mtu : 1;
1125 
1127  uint32_t hard_exp_bytes : 1;
1128 
1130  uint32_t hard_exp_packets : 1;
1131  };
1132 
1139  uint32_t all;
1140  };
1141 
1142 } odp_ipsec_error_t;
1143 
1145 typedef struct odp_ipsec_warn_t {
1147  union {
1149  struct {
1151  uint32_t soft_exp_bytes : 1;
1152 
1154  uint32_t soft_exp_packets : 1;
1155  };
1156 
1161  uint32_t all;
1162  };
1163 
1164 } odp_ipsec_warn_t;
1165 
1167 typedef struct odp_ipsec_op_status_t {
1169  union {
1171  struct {
1173  odp_ipsec_error_t error;
1174 
1176  odp_ipsec_warn_t warn;
1177  };
1178 
1182  uint64_t all;
1183 
1184  };
1185 
1186 } odp_ipsec_op_status_t;
1187 
1189 typedef struct odp_ipsec_op_flag_t {
1191  union {
1193  struct {
1195  uint32_t inline_mode : 1;
1196 
1197  };
1198 
1203  uint32_t all;
1204  };
1205 
1206 } odp_ipsec_op_flag_t;
1207 
1213 typedef struct odp_ipsec_out_opt_t {
1215  union {
1218  struct {
1220  uint32_t frag_mode: 1;
1221 
1223  uint32_t tfc_pad: 1;
1224 
1233  uint32_t tfc_dummy: 1;
1234 
1236  uint32_t ip_param: 1;
1237 
1238  } flag;
1239 
1244  uint32_t all_flags;
1245  };
1246 
1248  odp_ipsec_frag_mode_t frag_mode;
1249 
1257  uint32_t tfc_pad_len;
1258 
1260  union {
1263  odp_ipsec_ipv4_param_t ipv4;
1264 
1267  odp_ipsec_ipv6_param_t ipv6;
1268  };
1269 
1270 } odp_ipsec_out_opt_t;
1271 
1275 typedef struct odp_ipsec_out_param_t {
1285  int num_sa;
1286 
1294  int num_opt;
1295 
1297  const odp_ipsec_sa_t *sa;
1298 
1303  const odp_ipsec_out_opt_t *opt;
1304 
1305 } odp_ipsec_out_param_t;
1306 
1310 typedef struct odp_ipsec_in_param_t {
1325  int num_sa;
1326 
1331  const odp_ipsec_sa_t *sa;
1332 
1333 } odp_ipsec_in_param_t;
1334 
1338 typedef struct odp_ipsec_out_inline_param_t {
1351  odp_pktio_t pktio;
1352 
1360  odp_tm_queue_t tm_queue;
1361 
1367  struct {
1377  const uint8_t *ptr;
1378 
1380  uint32_t len;
1381  } outer_hdr;
1382 
1383 } odp_ipsec_out_inline_param_t;
1384 
1388 typedef struct odp_ipsec_packet_result_t {
1392  odp_ipsec_op_status_t status;
1393 
1395  odp_ipsec_op_flag_t flag;
1396 
1404  odp_ipsec_sa_t sa;
1405 
1410  struct {
1418  uint8_t *ptr;
1419 
1421  uint32_t len;
1422  } outer_hdr;
1423 
1433  uint32_t orig_ip_len;
1434 
1435 } odp_ipsec_packet_result_t;
1436 
1440 typedef enum odp_ipsec_status_id_t {
1448  ODP_IPSEC_STATUS_SA_DISABLE = 0,
1449 
1460  ODP_IPSEC_STATUS_WARN
1461 
1462 } odp_ipsec_status_id_t;
1463 
1467 typedef struct odp_ipsec_status_t {
1469  odp_ipsec_status_id_t id;
1470 
1472  odp_ipsec_sa_t sa;
1473 
1479  int result;
1480 
1482  odp_ipsec_warn_t warn;
1483 
1484 } odp_ipsec_status_t;
1485 
1490 #ifdef __cplusplus
1491 }
1492 #endif
1493 
1494 #include <odp/visibility_end.h>
1495 #endif
classification.h
ODP classification descriptor.
crypto_types.h
ODP crypto.
packet_io_types.h
ODP Packet IO.
std_types.h
Standard C language types and definitions for ODP.
traffic_mngr.h
ODP Traffic manager.
odp_cipher_alg_t
odp_cipher_alg_t
Crypto API cipher algorithm.
Definition: api/spec/crypto_types.h:60
odp_auth_alg_t
odp_auth_alg_t
Crypto API authentication algorithm.
Definition: api/spec/crypto_types.h:207
odp_ipsec_test_sa_operation_t
odp_ipsec_test_sa_operation_t
IPSEC TEST SA operation.
Definition: api/spec/ipsec_types.h:78
odp_ipsec_op_status_t
struct odp_ipsec_op_status_t odp_ipsec_op_status_t
IPSEC operation status.
odp_ipsec_outbound_config_t
struct odp_ipsec_outbound_config_t odp_ipsec_outbound_config_t
Configuration options for IPSEC outbound processing.
odp_ipsec_sa_param_t
struct odp_ipsec_sa_param_t odp_ipsec_sa_param_t
IPSEC Security Association (SA) parameters.
odp_ipsec_out_inline_param_t
struct odp_ipsec_out_inline_param_t odp_ipsec_out_inline_param_t
Outbound inline IPSEC operation parameters.
odp_ipsec_test_sa_param_t
union odp_ipsec_test_sa_param_t odp_ipsec_test_sa_param_t
IPSEC TEST SA parameter.
odp_ipsec_status_t
struct odp_ipsec_status_t odp_ipsec_status_t
IPSEC status content.
odp_ipsec_ipv6_param_t
struct odp_ipsec_ipv6_param_t odp_ipsec_ipv6_param_t
IPv6 header parameters.
odp_ipsec_in_param_t
struct odp_ipsec_in_param_t odp_ipsec_in_param_t
IPSEC inbound operation parameters.
odp_ipsec_tunnel_param_t
struct odp_ipsec_tunnel_param_t odp_ipsec_tunnel_param_t
IPSEC tunnel parameters.
odp_ipsec_capability_t
struct odp_ipsec_capability_t odp_ipsec_capability_t
IPSEC capability.
odp_ipsec_out_opt_t
struct odp_ipsec_out_opt_t odp_ipsec_out_opt_t
IPSEC outbound operation options.
odp_ipsec_op_mode_t
odp_ipsec_op_mode_t
IPSEC operation mode.
Definition: api/spec/ipsec_types.h:44
odp_ipsec_lookup_mode_t
odp_ipsec_lookup_mode_t
Packet lookup mode.
Definition: api/spec/ipsec_types.h:793
odp_ipsec_status_id_t
odp_ipsec_status_id_t
IPSEC status ID.
Definition: api/spec/ipsec_types.h:1440
odp_ipsec_auth_capability_t
struct odp_ipsec_auth_capability_t odp_ipsec_auth_capability_t
Authentication algorithm capabilities.
odp_ipsec_pipeline_t
odp_ipsec_pipeline_t
IPSEC pipeline configuration.
Definition: api/spec/ipsec_types.h:810
odp_ipsec_config_t
struct odp_ipsec_config_t odp_ipsec_config_t
IPSEC configuration options.
odp_ipsec_inbound_config_t
struct odp_ipsec_inbound_config_t odp_ipsec_inbound_config_t
Configuration options for IPSEC inbound processing.
odp_ipsec_frag_mode_t
odp_ipsec_frag_mode_t
Fragmentation mode.
Definition: api/spec/ipsec_types.h:769
odp_ipsec_warn_t
struct odp_ipsec_warn_t odp_ipsec_warn_t
IPSEC warnings.
odp_ipsec_op_flag_t
struct odp_ipsec_op_flag_t odp_ipsec_op_flag_t
IPSEC operation flags.
odp_ipsec_lifetime_t
struct odp_ipsec_lifetime_t odp_ipsec_lifetime_t
IPSEC SA lifetime limits.
odp_ipsec_sa_opt_t
struct odp_ipsec_sa_opt_t odp_ipsec_sa_opt_t
IPSEC SA option flags.
odp_ipsec_ipv4_param_t
struct odp_ipsec_ipv4_param_t odp_ipsec_ipv4_param_t
IPv4 header parameters.
odp_ipsec_protocol_t
odp_ipsec_protocol_t
IPSEC protocol.
Definition: api/spec/ipsec_types.h:497
odp_ipsec_stats_t
struct odp_ipsec_stats_t odp_ipsec_stats_t
IPSEC stats content.
odp_ipsec_packet_result_t
struct odp_ipsec_packet_result_t odp_ipsec_packet_result_t
IPSEC operation result for a packet.
odp_ipsec_ip_version_t
odp_ipsec_ip_version_t
IPSEC header type.
Definition: api/spec/ipsec_types.h:825
odp_ipsec_tunnel_type_t
odp_ipsec_tunnel_type_t
IPSEC tunnel type.
Definition: api/spec/ipsec_types.h:509
odp_ipsec_test_capability_t
struct odp_ipsec_test_capability_t odp_ipsec_test_capability_t
IPSEC TEST capability.
odp_ipsec_sa_info_t
struct odp_ipsec_sa_info_t odp_ipsec_sa_info_t
IPSEC SA information.
odp_ipsec_mode_t
odp_ipsec_mode_t
IPSEC protocol mode.
Definition: api/spec/ipsec_types.h:485
odp_ipsec_dir_t
odp_ipsec_dir_t
IPSEC SA direction.
Definition: api/spec/ipsec_types.h:473
odp_ipsec_cipher_capability_t
struct odp_ipsec_cipher_capability_t odp_ipsec_cipher_capability_t
Cipher algorithm capabilities.
odp_ipsec_crypto_param_t
struct odp_ipsec_crypto_param_t odp_ipsec_crypto_param_t
IPSEC crypto parameters.
odp_ipsec_error_t
struct odp_ipsec_error_t odp_ipsec_error_t
IPSEC errors.
odp_ipsec_out_param_t
struct odp_ipsec_out_param_t odp_ipsec_out_param_t
IPSEC outbound operation parameters.
ODP_IPSEC_TEST_SA_UPDATE_ANTIREPLAY_WINDOW_TOP
@ ODP_IPSEC_TEST_SA_UPDATE_ANTIREPLAY_WINDOW_TOP
Update highest authenticated sequence number.
Definition: api/spec/ipsec_types.h:93
ODP_IPSEC_TEST_SA_UPDATE_SEQ_NUM
@ ODP_IPSEC_TEST_SA_UPDATE_SEQ_NUM
Update next sequence number.
Definition: api/spec/ipsec_types.h:85
ODP_IPSEC_OP_MODE_INLINE
@ ODP_IPSEC_OP_MODE_INLINE
Inline IPSEC operation.
Definition: api/spec/ipsec_types.h:68
ODP_IPSEC_OP_MODE_SYNC
@ ODP_IPSEC_OP_MODE_SYNC
Synchronous IPSEC operation.
Definition: api/spec/ipsec_types.h:50
ODP_IPSEC_OP_MODE_ASYNC
@ ODP_IPSEC_OP_MODE_ASYNC
Asynchronous IPSEC operation.
Definition: api/spec/ipsec_types.h:57
ODP_IPSEC_OP_MODE_DISABLED
@ ODP_IPSEC_OP_MODE_DISABLED
IPSEC is disabled in inbound / outbound direction.
Definition: api/spec/ipsec_types.h:71
ODP_IPSEC_LOOKUP_SPI
@ ODP_IPSEC_LOOKUP_SPI
Inbound SA lookup is enabled.
Definition: api/spec/ipsec_types.h:798
ODP_IPSEC_LOOKUP_DISABLED
@ ODP_IPSEC_LOOKUP_DISABLED
Inbound SA lookup is disabled for the SA.
Definition: api/spec/ipsec_types.h:795
ODP_IPSEC_LOOKUP_DSTADDR_SPI
@ ODP_IPSEC_LOOKUP_DSTADDR_SPI
Inbound SA lookup is enabled.
Definition: api/spec/ipsec_types.h:803
ODP_IPSEC_STATUS_SA_DISABLE
@ ODP_IPSEC_STATUS_SA_DISABLE
Response to SA disable command.
Definition: api/spec/ipsec_types.h:1448
ODP_IPSEC_STATUS_WARN
@ ODP_IPSEC_STATUS_WARN
Warning from inline IPSEC processing.
Definition: api/spec/ipsec_types.h:1460
ODP_IPSEC_PIPELINE_CLS
@ ODP_IPSEC_PIPELINE_CLS
Send resulting packets to the classifier.
Definition: api/spec/ipsec_types.h:818
ODP_IPSEC_PIPELINE_NONE
@ ODP_IPSEC_PIPELINE_NONE
Do not pipeline.
Definition: api/spec/ipsec_types.h:812
ODP_IPSEC_FRAG_AFTER
@ ODP_IPSEC_FRAG_AFTER
Fragment IP packet after IPSEC operation.
Definition: api/spec/ipsec_types.h:777
ODP_IPSEC_FRAG_BEFORE
@ ODP_IPSEC_FRAG_BEFORE
Fragment IP packet before IPSEC operation.
Definition: api/spec/ipsec_types.h:774
ODP_IPSEC_FRAG_DISABLED
@ ODP_IPSEC_FRAG_DISABLED
Do not fragment IP packets.
Definition: api/spec/ipsec_types.h:771
ODP_IPSEC_FRAG_CHECK
@ ODP_IPSEC_FRAG_CHECK
Only check if IP fragmentation is needed, do not fragment packets.
Definition: api/spec/ipsec_types.h:781
ODP_IPSEC_AH
@ ODP_IPSEC_AH
AH protocol.
Definition: api/spec/ipsec_types.h:502
ODP_IPSEC_ESP
@ ODP_IPSEC_ESP
ESP protocol.
Definition: api/spec/ipsec_types.h:499
ODP_IPSEC_IPV4
@ ODP_IPSEC_IPV4
Header is IPv4.
Definition: api/spec/ipsec_types.h:827
ODP_IPSEC_IPV6
@ ODP_IPSEC_IPV6
Header is IPv6.
Definition: api/spec/ipsec_types.h:830
ODP_IPSEC_TUNNEL_IPV4
@ ODP_IPSEC_TUNNEL_IPV4
Outer header is IPv4.
Definition: api/spec/ipsec_types.h:511
ODP_IPSEC_TUNNEL_IPV6
@ ODP_IPSEC_TUNNEL_IPV6
Outer header is IPv6.
Definition: api/spec/ipsec_types.h:514
ODP_IPSEC_MODE_TRANSPORT
@ ODP_IPSEC_MODE_TRANSPORT
IPSEC transport mode.
Definition: api/spec/ipsec_types.h:490
ODP_IPSEC_MODE_TUNNEL
@ ODP_IPSEC_MODE_TUNNEL
IPSEC tunnel mode.
Definition: api/spec/ipsec_types.h:487
ODP_IPSEC_DIR_OUTBOUND
@ ODP_IPSEC_DIR_OUTBOUND
Outbound IPSEC SA.
Definition: api/spec/ipsec_types.h:478
ODP_IPSEC_DIR_INBOUND
@ ODP_IPSEC_DIR_INBOUND
Inbound IPSEC SA.
Definition: api/spec/ipsec_types.h:475
odp_proto_layer_t
odp_proto_layer_t
Protocol layer.
Definition: api/spec/packet_types.h:233
ODP_IPV6_ADDR_SIZE
#define ODP_IPV6_ADDR_SIZE
IPv6 address size.
Definition: spec/protocols.h:29
ODP_IPV4_ADDR_SIZE
#define ODP_IPV4_ADDR_SIZE
IPv4 address size.
Definition: spec/protocols.h:26
odp_bool_t
int odp_bool_t
Use odp boolean type to have it well-defined and known size, regardless which compiler is used as thi...
Definition: api/abi-default/std_types.h:25
odp_support_t
odp_support_t
ODP support.
Definition: api/spec/std_types.h:103
odp_tm_queue_t
odp_tm_handle_t odp_tm_queue_t
Each odp_tm_queue_t value is an opaque ODP handle representing a specific tm_queue within a specific ...
Definition: api/abi-default/traffic_mngr.h:108
protocols.h
ODP protocols.
_odp_abi_cos_t
Definition: api/abi-default/classification.h:13
_odp_abi_ipsec_sa_t
Definition: api/abi-default/ipsec_types.h:16
_odp_abi_pktio_t
Definition: api/abi-default/packet_io_types.h:22
_odp_abi_queue_t
Definition: api/abi-default/queue_types.h:14
odp_crypto_key
Crypto API key structure.
Definition: api/spec/crypto_types.h:681
odp_ipsec_auth_capability_t
Authentication algorithm capabilities.
Definition: api/spec/ipsec_types.h:414
odp_ipsec_auth_capability_t::icv_len
uint32_t icv_len
ICV length in bytes.
Definition: api/spec/ipsec_types.h:419
odp_ipsec_auth_capability_t::key_len
uint32_t key_len
Key length in bytes.
Definition: api/spec/ipsec_types.h:416
odp_ipsec_capability_t
IPSEC capability.
Definition: api/spec/ipsec_types.h:282
odp_ipsec_capability_t::reassembly
odp_reass_capability_t reassembly
Post-IPsec reassembly capability.
Definition: api/spec/ipsec_types.h:392
odp_ipsec_capability_t::reass_inline
odp_bool_t reass_inline
Support of reassembly after inline inbound IPsec processing.
Definition: api/spec/ipsec_types.h:398
odp_ipsec_capability_t::max_cls_cos
uint32_t max_cls_cos
Maximum number of different destination CoSes in classification pipelining.
Definition: api/spec/ipsec_types.h:336
odp_ipsec_capability_t::ciphers
odp_crypto_cipher_algos_t ciphers
Supported cipher algorithms.
Definition: api/spec/ipsec_types.h:371
odp_ipsec_capability_t::frag_after
odp_support_t frag_after
Fragment after IPsec support.
Definition: api/spec/ipsec_types.h:310
odp_ipsec_capability_t::inline_ipsec_tm
odp_support_t inline_ipsec_tm
Support of traffic manager (TM) after inline outbound IPSEC processing.
Definition: api/spec/ipsec_types.h:383
odp_ipsec_capability_t::vector
odp_pktin_vector_capability_t vector
Support for returning completion packets as vectors.
Definition: api/spec/ipsec_types.h:365
odp_ipsec_capability_t::queue_type_sched
odp_bool_t queue_type_sched
Scheduled queue support.
Definition: api/spec/ipsec_types.h:347
odp_ipsec_capability_t::op_mode_sync
odp_support_t op_mode_sync
Synchronous IPSEC operation mode (ODP_IPSEC_OP_MODE_SYNC) support.
Definition: api/spec/ipsec_types.h:287
odp_ipsec_capability_t::frag_before
odp_support_t frag_before
Fragment before IPsec support.
Definition: api/spec/ipsec_types.h:313
odp_ipsec_capability_t::op_mode_inline_in
odp_support_t op_mode_inline_in
Inline inbound IPSEC operation mode (ODP_IPSEC_OP_MODE_INLINE) support.
Definition: api/spec/ipsec_types.h:298
odp_ipsec_capability_t::op_mode_inline_out
odp_support_t op_mode_inline_out
Inline outgoing IPSEC operation mode (ODP_IPSEC_OP_MODE_INLINE) support.
Definition: api/spec/ipsec_types.h:304
odp_ipsec_capability_t::pipeline_cls
odp_support_t pipeline_cls
Support of pipelined classification (ODP_IPSEC_PIPELINE_CLS) of resulting inbound packets.
Definition: api/spec/ipsec_types.h:319
odp_ipsec_capability_t::max_antireplay_ws
uint32_t max_antireplay_ws
Maximum anti-replay window size.
Definition: api/spec/ipsec_types.h:368
odp_ipsec_capability_t::max_num_sa
uint32_t max_num_sa
Maximum number of IPSEC SAs.
Definition: api/spec/ipsec_types.h:284
odp_ipsec_capability_t::chksums_in
odp_proto_chksums_t chksums_in
Inner packet checksum check offload support in inbound direction.
Definition: api/spec/ipsec_types.h:330
odp_ipsec_capability_t::op_mode_async
odp_support_t op_mode_async
Asynchronous IPSEC operation mode (ODP_IPSEC_OP_MODE_ASYNC) support.
Definition: api/spec/ipsec_types.h:292
odp_ipsec_capability_t::auths
odp_crypto_auth_algos_t auths
Supported authentication algorithms.
Definition: api/spec/ipsec_types.h:374
odp_ipsec_capability_t::max_queues
uint32_t max_queues
Maximum number of different destination queues.
Definition: api/spec/ipsec_types.h:362
odp_ipsec_capability_t::retain_header
odp_support_t retain_header
Support of retaining outer headers (retain_outer) in inbound inline processed packets.
Definition: api/spec/ipsec_types.h:325
odp_ipsec_capability_t::queue_type_plain
odp_bool_t queue_type_plain
Plain queue support.
Definition: api/spec/ipsec_types.h:358
odp_ipsec_capability_t::reass_async
odp_bool_t reass_async
Support of reassembly after inbound processing in odp_ipsec_in_enq()
Definition: api/spec/ipsec_types.h:395
odp_ipsec_capability_t::test
odp_ipsec_test_capability_t test
IPSEC TEST capabilities.
Definition: api/spec/ipsec_types.h:389
odp_ipsec_capability_t::proto_ah
odp_support_t proto_ah
IP Authenticated Header (ODP_IPSEC_AH) support.
Definition: api/spec/ipsec_types.h:307
odp_ipsec_cipher_capability_t
Cipher algorithm capabilities.
Definition: api/spec/ipsec_types.h:405
odp_ipsec_cipher_capability_t::key_len
uint32_t key_len
Key length in bytes.
Definition: api/spec/ipsec_types.h:407
odp_ipsec_config_t
IPSEC configuration options.
Definition: api/spec/ipsec_types.h:425
odp_ipsec_config_t::vector
odp_pktin_vector_config_t vector
Packet vector configuration for async and inline operations.
Definition: api/spec/ipsec_types.h:466
odp_ipsec_config_t::outbound_mode
odp_ipsec_op_mode_t outbound_mode
Outbound IPSEC operation mode.
Definition: api/spec/ipsec_types.h:438
odp_ipsec_config_t::inbound
odp_ipsec_inbound_config_t inbound
IPSEC inbound processing configuration.
Definition: api/spec/ipsec_types.h:445
odp_ipsec_config_t::stats_en
odp_bool_t stats_en
Enable stats collection.
Definition: api/spec/ipsec_types.h:456
odp_ipsec_config_t::max_num_sa
uint32_t max_num_sa
Maximum number of IPSEC SAs that application will use simultaneously.
Definition: api/spec/ipsec_types.h:442
odp_ipsec_config_t::outbound
odp_ipsec_outbound_config_t outbound
IPSEC outbound processing configuration.
Definition: api/spec/ipsec_types.h:448
odp_ipsec_config_t::inbound_mode
odp_ipsec_op_mode_t inbound_mode
Inbound IPSEC operation mode.
Definition: api/spec/ipsec_types.h:431
odp_ipsec_crypto_param_t
IPSEC crypto parameters.
Definition: api/spec/ipsec_types.h:521
odp_ipsec_crypto_param_t::icv_len
uint32_t icv_len
Length of integrity check value (ICV) in bytes.
Definition: api/spec/ipsec_types.h:610
odp_ipsec_crypto_param_t::auth_key
odp_crypto_key_t auth_key
Authentication key.
Definition: api/spec/ipsec_types.h:570
odp_ipsec_crypto_param_t::auth_key_extra
odp_crypto_key_t auth_key_extra
Extra keying material for authentication algorithm.
Definition: api/spec/ipsec_types.h:579
odp_ipsec_crypto_param_t::auth_alg
odp_auth_alg_t auth_alg
Authentication algorithm.
Definition: api/spec/ipsec_types.h:567
odp_ipsec_crypto_param_t::cipher_key_extra
odp_crypto_key_t cipher_key_extra
Extra keying material for cipher algorithm.
Definition: api/spec/ipsec_types.h:548
odp_ipsec_crypto_param_t::cipher_alg
odp_cipher_alg_t cipher_alg
Cipher algorithm.
Definition: api/spec/ipsec_types.h:533
odp_ipsec_crypto_param_t::cipher_key
odp_crypto_key_t cipher_key
Cipher key.
Definition: api/spec/ipsec_types.h:536
odp_ipsec_error_t
IPSEC errors.
Definition: api/spec/ipsec_types.h:1102
odp_ipsec_error_t::sa_lookup
uint32_t sa_lookup
SA lookup failed.
Definition: api/spec/ipsec_types.h:1112
odp_ipsec_error_t::antireplay
uint32_t antireplay
Anti-replay check failed.
Definition: api/spec/ipsec_types.h:1118
odp_ipsec_error_t::auth
uint32_t auth
Authentication failed.
Definition: api/spec/ipsec_types.h:1115
odp_ipsec_error_t::alg
uint32_t alg
Other algorithm error.
Definition: api/spec/ipsec_types.h:1121
odp_ipsec_error_t::hard_exp_bytes
uint32_t hard_exp_bytes
Hard lifetime expired: bytes.
Definition: api/spec/ipsec_types.h:1127
odp_ipsec_error_t::mtu
uint32_t mtu
Packet does not fit into the given MTU size.
Definition: api/spec/ipsec_types.h:1124
odp_ipsec_error_t::hard_exp_packets
uint32_t hard_exp_packets
Hard lifetime expired: packets.
Definition: api/spec/ipsec_types.h:1130
odp_ipsec_error_t::all
uint32_t all
All error bits.
Definition: api/spec/ipsec_types.h:1139
odp_ipsec_error_t::proto
uint32_t proto
Protocol error.
Definition: api/spec/ipsec_types.h:1109
odp_ipsec_in_param_t
IPSEC inbound operation parameters.
Definition: api/spec/ipsec_types.h:1310
odp_ipsec_in_param_t::num_sa
int num_sa
Number of SAs.
Definition: api/spec/ipsec_types.h:1325
odp_ipsec_in_param_t::sa
const odp_ipsec_sa_t * sa
Pointer to an array of IPSEC SAs.
Definition: api/spec/ipsec_types.h:1331
odp_ipsec_inbound_config_t
Configuration options for IPSEC inbound processing.
Definition: api/spec/ipsec_types.h:118
odp_ipsec_inbound_config_t::spi_overlap
odp_bool_t spi_overlap
Select if SPI values for SA lookup are unique or may contain the same SPI value multiple times.
Definition: api/spec/ipsec_types.h:142
odp_ipsec_inbound_config_t::max_spi
uint32_t max_spi
Maximum SPI value for SA lookup.
Definition: api/spec/ipsec_types.h:134
odp_ipsec_inbound_config_t::reassembly
odp_reass_config_t reassembly
Post-IPsec reassembly configuration.
Definition: api/spec/ipsec_types.h:201
odp_ipsec_inbound_config_t::reass_async
odp_bool_t reass_async
Attempt reassembly after inbound IPsec processing in odp_ipsec_in_enq().
Definition: api/spec/ipsec_types.h:206
odp_ipsec_inbound_config_t::default_queue
odp_queue_t default_queue
Default destination queue for IPSEC events.
Definition: api/spec/ipsec_types.h:124
odp_ipsec_inbound_config_t::min_spi
uint32_t min_spi
Minimum SPI value for SA lookup.
Definition: api/spec/ipsec_types.h:130
odp_ipsec_inbound_config_t::parse_level
odp_proto_layer_t parse_level
Parse packet headers after IPSEC transformation.
Definition: api/spec/ipsec_types.h:183
odp_ipsec_inbound_config_t::retain_outer
odp_proto_layer_t retain_outer
Retain outer headers.
Definition: api/spec/ipsec_types.h:168
odp_ipsec_inbound_config_t::reass_inline
odp_bool_t reass_inline
Attempt reassembly after inline inbound IPsec processing.
Definition: api/spec/ipsec_types.h:211
odp_ipsec_inbound_config_t::chksums
odp_proto_chksums_t chksums
Flags to control IPSEC payload data checks up to the selected parse level.
Definition: api/spec/ipsec_types.h:190
odp_ipsec_inbound_config_t::lookup
struct odp_ipsec_inbound_config_t::@38 lookup
Constraints for SPI values used with inbound SA lookup.
odp_ipsec_ipv4_param_t
IPv4 header parameters.
Definition: api/spec/ipsec_types.h:615
odp_ipsec_ipv4_param_t::ttl
uint8_t ttl
IPv4 Time To Live.
Definition: api/spec/ipsec_types.h:629
odp_ipsec_ipv4_param_t::df
uint8_t df
IPv4 Don't Fragment bit.
Definition: api/spec/ipsec_types.h:626
odp_ipsec_ipv4_param_t::src_addr
void * src_addr
IPv4 source address (NETWORK ENDIAN)
Definition: api/spec/ipsec_types.h:617
odp_ipsec_ipv4_param_t::dscp
uint8_t dscp
IPv4 Differentiated Services Code Point.
Definition: api/spec/ipsec_types.h:623
odp_ipsec_ipv4_param_t::dst_addr
void * dst_addr
IPv4 destination address (NETWORK ENDIAN)
Definition: api/spec/ipsec_types.h:620
odp_ipsec_ipv6_param_t
IPv6 header parameters.
Definition: api/spec/ipsec_types.h:634
odp_ipsec_ipv6_param_t::hlimit
uint8_t hlimit
IPv6 hop limit.
Definition: api/spec/ipsec_types.h:648
odp_ipsec_ipv6_param_t::dscp
uint8_t dscp
IPv6 Differentiated Services Code Point.
Definition: api/spec/ipsec_types.h:645
odp_ipsec_ipv6_param_t::src_addr
void * src_addr
IPv6 source address (NETWORK ENDIAN)
Definition: api/spec/ipsec_types.h:636
odp_ipsec_ipv6_param_t::dst_addr
void * dst_addr
IPv6 destination address (NETWORK ENDIAN)
Definition: api/spec/ipsec_types.h:639
odp_ipsec_ipv6_param_t::flabel
uint32_t flabel
IPv6 flow label.
Definition: api/spec/ipsec_types.h:642
odp_ipsec_lifetime_t
IPSEC SA lifetime limits.
Definition: api/spec/ipsec_types.h:742
odp_ipsec_lifetime_t::bytes
uint64_t bytes
Limit in bytes.
Definition: api/spec/ipsec_types.h:746
odp_ipsec_lifetime_t::hard_limit
struct odp_ipsec_lifetime_t::@46 hard_limit
Hard expiry limits for the session.
odp_ipsec_lifetime_t::soft_limit
struct odp_ipsec_lifetime_t::@45 soft_limit
Soft expiry limits for the session.
odp_ipsec_lifetime_t::packets
uint64_t packets
Limit in packet.
Definition: api/spec/ipsec_types.h:749
odp_ipsec_op_flag_t
IPSEC operation flags.
Definition: api/spec/ipsec_types.h:1189
odp_ipsec_op_flag_t::all
uint32_t all
All flag bits.
Definition: api/spec/ipsec_types.h:1203
odp_ipsec_op_flag_t::inline_mode
uint32_t inline_mode
Packet was processed in inline mode.
Definition: api/spec/ipsec_types.h:1195
odp_ipsec_op_status_t
IPSEC operation status.
Definition: api/spec/ipsec_types.h:1167
odp_ipsec_op_status_t::error
odp_ipsec_error_t error
IPSEC errors.
Definition: api/spec/ipsec_types.h:1173
odp_ipsec_op_status_t::all
uint64_t all
All status bits.
Definition: api/spec/ipsec_types.h:1182
odp_ipsec_op_status_t::warn
odp_ipsec_warn_t warn
IPSEC warnings.
Definition: api/spec/ipsec_types.h:1176
odp_ipsec_out_inline_param_t
Outbound inline IPSEC operation parameters.
Definition: api/spec/ipsec_types.h:1338
odp_ipsec_out_inline_param_t::pktio
odp_pktio_t pktio
Packet output interface for inline outbound operation without TM.
Definition: api/spec/ipsec_types.h:1351
odp_ipsec_out_inline_param_t::tm_queue
odp_tm_queue_t tm_queue
TM queue for inline outbound operation.
Definition: api/spec/ipsec_types.h:1360
odp_ipsec_out_inline_param_t::len
uint32_t len
Outer header length in bytes.
Definition: api/spec/ipsec_types.h:1380
odp_ipsec_out_inline_param_t::ptr
const uint8_t * ptr
Points to first byte of outer headers to be copied in front of the outgoing IPSEC packet.
Definition: api/spec/ipsec_types.h:1377
odp_ipsec_out_inline_param_t::outer_hdr
struct odp_ipsec_out_inline_param_t::@81 outer_hdr
Outer headers for inline output operation.
odp_ipsec_out_opt_t
IPSEC outbound operation options.
Definition: api/spec/ipsec_types.h:1213
odp_ipsec_out_opt_t::frag_mode
odp_ipsec_frag_mode_t frag_mode
Fragmentation mode.
Definition: api/spec/ipsec_types.h:1248
odp_ipsec_out_opt_t::all_flags
uint32_t all_flags
All flag bits.
Definition: api/spec/ipsec_types.h:1244
odp_ipsec_out_opt_t::tfc_pad_len
uint32_t tfc_pad_len
TFC padding length.
Definition: api/spec/ipsec_types.h:1257
odp_ipsec_out_opt_t::ipv6
odp_ipsec_ipv6_param_t ipv6
Override IPv6 parameters in outer header creation.
Definition: api/spec/ipsec_types.h:1267
odp_ipsec_out_opt_t::ipv4
odp_ipsec_ipv4_param_t ipv4
Override IPv4 parameters in outer header creation.
Definition: api/spec/ipsec_types.h:1263
odp_ipsec_out_opt_t::tfc_pad
uint32_t tfc_pad
Use TFC padding length option.
Definition: api/spec/ipsec_types.h:1223
odp_ipsec_out_opt_t::ip_param
uint32_t ip_param
Use IP parameters option.
Definition: api/spec/ipsec_types.h:1236
odp_ipsec_out_opt_t::flag
struct odp_ipsec_out_opt_t::@76::@80 flag
Option flags.
odp_ipsec_out_opt_t::frag_mode
uint32_t frag_mode
Use fragmentation mode option.
Definition: api/spec/ipsec_types.h:1220
odp_ipsec_out_opt_t::tfc_dummy
uint32_t tfc_dummy
Tunnel mode TFC dummy packet.
Definition: api/spec/ipsec_types.h:1233
odp_ipsec_out_param_t
IPSEC outbound operation parameters.
Definition: api/spec/ipsec_types.h:1275
odp_ipsec_out_param_t::num_opt
int num_opt
Number of outbound operation options.
Definition: api/spec/ipsec_types.h:1294
odp_ipsec_out_param_t::sa
const odp_ipsec_sa_t * sa
Pointer to an array of IPSEC SAs.
Definition: api/spec/ipsec_types.h:1297
odp_ipsec_out_param_t::num_sa
int num_sa
Number of SAs.
Definition: api/spec/ipsec_types.h:1285
odp_ipsec_out_param_t::opt
const odp_ipsec_out_opt_t * opt
Pointer to an array of outbound operation options.
Definition: api/spec/ipsec_types.h:1303
odp_ipsec_outbound_config_t
Configuration options for IPSEC outbound processing.
Definition: api/spec/ipsec_types.h:218
odp_ipsec_outbound_config_t::chksum
struct odp_ipsec_outbound_config_t::@39::@41 chksum
Mapping for individual bits.
odp_ipsec_outbound_config_t::inner_sctp
uint32_t inner_sctp
Insert SCTP header checksum on the payload packet before IPSEC transformation.
Definition: api/spec/ipsec_types.h:244
odp_ipsec_outbound_config_t::inner_ipv4
uint32_t inner_ipv4
Insert IPv4 header checksum on the payload packet before IPSEC transformation.
Definition: api/spec/ipsec_types.h:232
odp_ipsec_outbound_config_t::inner_tcp
uint32_t inner_tcp
Insert TCP header checksum on the payload packet before IPSEC transformation.
Definition: api/spec/ipsec_types.h:240
odp_ipsec_outbound_config_t::all_chksum
uint32_t all_chksum
All bits of the bit field structure.
Definition: api/spec/ipsec_types.h:252
odp_ipsec_outbound_config_t::inner_udp
uint32_t inner_udp
Insert UDP header checksum on the payload packet before IPSEC transformation.
Definition: api/spec/ipsec_types.h:236
odp_ipsec_packet_result_t
IPSEC operation result for a packet.
Definition: api/spec/ipsec_types.h:1388
odp_ipsec_packet_result_t::len
uint32_t len
Outer header length in bytes.
Definition: api/spec/ipsec_types.h:1421
odp_ipsec_packet_result_t::orig_ip_len
uint32_t orig_ip_len
Total IP length of the original ESP or AH packet before IPsec decapsulation.
Definition: api/spec/ipsec_types.h:1433
odp_ipsec_packet_result_t::ptr
uint8_t * ptr
Points to the first byte of retained outer headers.
Definition: api/spec/ipsec_types.h:1418
odp_ipsec_packet_result_t::status
odp_ipsec_op_status_t status
IPSEC operation status.
Definition: api/spec/ipsec_types.h:1392
odp_ipsec_packet_result_t::outer_hdr
struct odp_ipsec_packet_result_t::@82 outer_hdr
Packet outer header status before inbound inline processing.
odp_ipsec_packet_result_t::sa
odp_ipsec_sa_t sa
IPSEC SA that was used to create the packet.
Definition: api/spec/ipsec_types.h:1404
odp_ipsec_packet_result_t::flag
odp_ipsec_op_flag_t flag
IPSEC operation flags.
Definition: api/spec/ipsec_types.h:1395
odp_ipsec_sa_info_t
IPSEC SA information.
Definition: api/spec/ipsec_types.h:1024
odp_ipsec_sa_info_t::param
odp_ipsec_sa_param_t param
IPsec SA parameters.
Definition: api/spec/ipsec_types.h:1033
odp_ipsec_sa_info_t::seq_num
uint64_t seq_num
Sequence number.
Definition: api/spec/ipsec_types.h:1074
odp_ipsec_sa_info_t::tunnel
union odp_ipsec_sa_info_t::@52::@55::@57 tunnel
Tunnel IP address.
odp_ipsec_sa_info_t::src_addr
uint8_t src_addr[ODP_IPV4_ADDR_SIZE]
IPv4 source address.
Definition: api/spec/ipsec_types.h:1081
odp_ipsec_sa_info_t::dst_addr
uint8_t dst_addr[ODP_IPV6_ADDR_SIZE]
IP destination address (NETWORK ENDIAN) to be matched in addition to SPI value.
Definition: api/spec/ipsec_types.h:1043
odp_ipsec_sa_info_t::ipv6
struct odp_ipsec_sa_info_t::@52::@55::@57::@59 ipv6
IPv6.
odp_ipsec_sa_info_t::antireplay_window_top
uint64_t antireplay_window_top
Antireplay window top.
Definition: api/spec/ipsec_types.h:1062
odp_ipsec_sa_info_t::lookup_param
struct odp_ipsec_sa_info_t::@52::@54::@56 lookup_param
Additional SA lookup parameters.
odp_ipsec_sa_info_t::inbound
struct odp_ipsec_sa_info_t::@52::@54 inbound
Inbound specific parameters.
odp_ipsec_sa_info_t::ipv4
struct odp_ipsec_sa_info_t::@52::@55::@57::@58 ipv4
IPv4.
odp_ipsec_sa_info_t::antireplay_ws
uint32_t antireplay_ws
Antireplay window size.
Definition: api/spec/ipsec_types.h:1052
odp_ipsec_sa_info_t::outbound
struct odp_ipsec_sa_info_t::@52::@55 outbound
Outbound specific parameters.
odp_ipsec_sa_opt_t
IPSEC SA option flags.
Definition: api/spec/ipsec_types.h:677
odp_ipsec_sa_opt_t::copy_dscp
uint32_t copy_dscp
Copy DSCP bits.
Definition: api/spec/ipsec_types.h:701
odp_ipsec_sa_opt_t::dec_ttl
uint32_t dec_ttl
Decrement inner packet Time To Live (TTL) field.
Definition: api/spec/ipsec_types.h:726
odp_ipsec_sa_opt_t::copy_flabel
uint32_t copy_flabel
Copy IPv6 Flow Label.
Definition: api/spec/ipsec_types.h:709
odp_ipsec_sa_opt_t::udp_encap
uint32_t udp_encap
UDP encapsulation.
Definition: api/spec/ipsec_types.h:691
odp_ipsec_sa_opt_t::copy_df
uint32_t copy_df
Copy IPv4 Don't Fragment bit.
Definition: api/spec/ipsec_types.h:717
odp_ipsec_sa_opt_t::esn
uint32_t esn
Extended Sequence Numbers (ESN)
Definition: api/spec/ipsec_types.h:683
odp_ipsec_sa_param_t
IPSEC Security Association (SA) parameters.
Definition: api/spec/ipsec_types.h:837
odp_ipsec_sa_param_t::spi
uint32_t spi
SPI value.
Definition: api/spec/ipsec_types.h:857
odp_ipsec_sa_param_t::frag_mode
odp_ipsec_frag_mode_t frag_mode
Fragmentation mode The default value is ODP_IPSEC_FRAG_DISABLED.
Definition: api/spec/ipsec_types.h:968
odp_ipsec_sa_param_t::crypto
odp_ipsec_crypto_param_t crypto
Parameters for crypto and authentication algorithms.
Definition: api/spec/ipsec_types.h:848
odp_ipsec_sa_param_t::dest_queue
odp_queue_t dest_queue
Destination queue for IPSEC events.
Definition: api/spec/ipsec_types.h:865
odp_ipsec_sa_param_t::mode
odp_ipsec_mode_t mode
IPSEC protocol mode: transport or tunnel.
Definition: api/spec/ipsec_types.h:845
odp_ipsec_sa_param_t::opt
odp_ipsec_sa_opt_t opt
Various SA option flags.
Definition: api/spec/ipsec_types.h:851
odp_ipsec_sa_param_t::inbound
struct odp_ipsec_sa_param_t::@47::@49 inbound
Inbound specific parameters.
odp_ipsec_sa_param_t::ip_version
odp_ipsec_ip_version_t ip_version
Select IP version.
Definition: api/spec/ipsec_types.h:897
odp_ipsec_sa_param_t::reassembly_en
odp_bool_t reassembly_en
Enable reassembly of IPsec tunneled fragments.
Definition: api/spec/ipsec_types.h:956
odp_ipsec_sa_param_t::pipeline
odp_ipsec_pipeline_t pipeline
Select pipelined destination for resulting events.
Definition: api/spec/ipsec_types.h:917
odp_ipsec_sa_param_t::dir
odp_ipsec_dir_t dir
IPSEC SA direction: inbound or outbound.
Definition: api/spec/ipsec_types.h:839
odp_ipsec_sa_param_t::tunnel
odp_ipsec_tunnel_param_t tunnel
Parameters for tunnel mode.
Definition: api/spec/ipsec_types.h:963
odp_ipsec_sa_param_t::antireplay_ws
uint32_t antireplay_ws
Minimum anti-replay window size.
Definition: api/spec/ipsec_types.h:908
odp_ipsec_sa_param_t::outbound
struct odp_ipsec_sa_param_t::@47::@50 outbound
Outbound specific parameters.
odp_ipsec_sa_param_t::mtu
uint32_t mtu
MTU for outbound IP fragmentation offload.
Definition: api/spec/ipsec_types.h:976
odp_ipsec_sa_param_t::lifetime
odp_ipsec_lifetime_t lifetime
SA lifetime parameters.
Definition: api/spec/ipsec_types.h:854
odp_ipsec_sa_param_t::context
void * context
User defined SA context pointer.
Definition: api/spec/ipsec_types.h:873
odp_ipsec_sa_param_t::lookup_param
struct odp_ipsec_sa_param_t::@47::@49::@51 lookup_param
Additional SA lookup parameters.
odp_ipsec_sa_param_t::context_len
uint32_t context_len
Context data length.
Definition: api/spec/ipsec_types.h:881
odp_ipsec_sa_param_t::proto
odp_ipsec_protocol_t proto
IPSEC protocol: ESP or AH.
Definition: api/spec/ipsec_types.h:842
odp_ipsec_sa_param_t::dest_cos
odp_cos_t dest_cos
Classifier destination CoS for resulting packets.
Definition: api/spec/ipsec_types.h:930
odp_ipsec_sa_param_t::lookup_mode
odp_ipsec_lookup_mode_t lookup_mode
SA lookup mode The default value is ODP_IPSEC_LOOKUP_DISABLED.
Definition: api/spec/ipsec_types.h:890
odp_ipsec_sa_param_t::dst_addr
void * dst_addr
IP destination address (NETWORK ENDIAN) to be matched in addition to SPI value.
Definition: api/spec/ipsec_types.h:901
odp_ipsec_stats_t
IPSEC stats content.
Definition: api/spec/ipsec_types.h:986
odp_ipsec_stats_t::hard_exp_pkts_err
uint64_t hard_exp_pkts_err
Number of packets with hard lifetime(packets) expired.
Definition: api/spec/ipsec_types.h:1009
odp_ipsec_stats_t::auth_err
uint64_t auth_err
Number of packets with authentication errors.
Definition: api/spec/ipsec_types.h:994
odp_ipsec_stats_t::proto_err
uint64_t proto_err
Number of packets with protocol errors.
Definition: api/spec/ipsec_types.h:991
odp_ipsec_stats_t::mtu_err
uint64_t mtu_err
Number of packets with MTU errors.
Definition: api/spec/ipsec_types.h:1003
odp_ipsec_stats_t::antireplay_err
uint64_t antireplay_err
Number of packets with antireplay check failures.
Definition: api/spec/ipsec_types.h:997
odp_ipsec_stats_t::success_bytes
uint64_t success_bytes
Total bytes of packet data processed by IPsec SA in success cases.
Definition: api/spec/ipsec_types.h:1018
odp_ipsec_stats_t::alg_err
uint64_t alg_err
Number of packets with algorithm errors.
Definition: api/spec/ipsec_types.h:1000
odp_ipsec_stats_t::hard_exp_bytes_err
uint64_t hard_exp_bytes_err
Number of packets with hard lifetime(bytes) expired.
Definition: api/spec/ipsec_types.h:1006
odp_ipsec_stats_t::success
uint64_t success
Number of packets processed successfully.
Definition: api/spec/ipsec_types.h:988
odp_ipsec_status_t
IPSEC status content.
Definition: api/spec/ipsec_types.h:1467
odp_ipsec_status_t::result
int result
Result of the operation.
Definition: api/spec/ipsec_types.h:1479
odp_ipsec_status_t::warn
odp_ipsec_warn_t warn
Warnings of an ODP_IPSEC_STATUS_WARN status event.
Definition: api/spec/ipsec_types.h:1482
odp_ipsec_status_t::sa
odp_ipsec_sa_t sa
IPSEC SA that was target of the operation.
Definition: api/spec/ipsec_types.h:1472
odp_ipsec_status_t::id
odp_ipsec_status_id_t id
IPSEC status ID.
Definition: api/spec/ipsec_types.h:1469
odp_ipsec_test_capability_t
IPSEC TEST capability.
Definition: api/spec/ipsec_types.h:260
odp_ipsec_test_capability_t::antireplay_window_top
odp_bool_t antireplay_window_top
Highest authenticated sequence number.
Definition: api/spec/ipsec_types.h:273
odp_ipsec_test_capability_t::sa_operations
struct odp_ipsec_test_capability_t::@42 sa_operations
Parameters supported for sa_update.
odp_ipsec_test_capability_t::seq_num
odp_bool_t seq_num
Next sequence number value.
Definition: api/spec/ipsec_types.h:267
odp_ipsec_tunnel_param_t
IPSEC tunnel parameters.
Definition: api/spec/ipsec_types.h:660
odp_ipsec_tunnel_param_t::ipv6
odp_ipsec_ipv6_param_t ipv6
IPv6 header parameters.
Definition: api/spec/ipsec_types.h:670
odp_ipsec_tunnel_param_t::type
odp_ipsec_tunnel_type_t type
Tunnel type: IPv4 or IPv6.
Definition: api/spec/ipsec_types.h:662
odp_ipsec_tunnel_param_t::ipv4
odp_ipsec_ipv4_param_t ipv4
IPv4 header parameters.
Definition: api/spec/ipsec_types.h:667
odp_ipsec_warn_t
IPSEC warnings.
Definition: api/spec/ipsec_types.h:1145
odp_ipsec_warn_t::all
uint32_t all
All warning bits.
Definition: api/spec/ipsec_types.h:1161
odp_ipsec_warn_t::soft_exp_bytes
uint32_t soft_exp_bytes
Soft lifetime expired: bytes.
Definition: api/spec/ipsec_types.h:1151
odp_ipsec_warn_t::soft_exp_packets
uint32_t soft_exp_packets
Soft lifetime expired: packets.
Definition: api/spec/ipsec_types.h:1154
odp_pktin_vector_capability_t
Packet input vector capabilities.
Definition: api/spec/packet_io_types.h:896
odp_pktin_vector_config_t
Packet input vector configuration.
Definition: api/spec/packet_io_types.h:183
odp_reass_capability_t
Reassembly capabilities.
Definition: spec/reassembly.h:30
odp_reass_config_t
Fragment reassembly configuration.
Definition: spec/reassembly.h:90
odp_crypto_auth_algos_t
Authentication algorithms in a bit field structure.
Definition: api/spec/crypto_types.h:552
odp_crypto_cipher_algos_t
Cipher algorithms in a bit field structure.
Definition: api/spec/crypto_types.h:468
odp_ipsec_test_sa_param_t
IPSEC TEST SA parameter.
Definition: api/spec/ipsec_types.h:100
odp_ipsec_test_sa_param_t::antireplay_window_top
uint64_t antireplay_window_top
Highest authenticated sequence number.
Definition: api/spec/ipsec_types.h:111
odp_ipsec_test_sa_param_t::seq_num
uint64_t seq_num
Next sequence number.
Definition: api/spec/ipsec_types.h:105
odp_proto_chksums_t
Flags to control packet data checksum checking.
Definition: api/spec/packet_types.h:305