|
MoonGen
|
|
MoonGen
|
IPsec (ESP/AH) offloading. More...
Go to the source code of this file.
Functions | |
| function mod | enable (port) |
| Enable the Hardware Crypto Engine. More... | |
| function mod | disable (port) |
| Disable the Hardware Crypto Engine. More... | |
| function mod | tx_set_key (port, idx, key, salt) |
| Write AES 128 bit Key and Salt into the Hardware TX SA table. More... | |
| function mod | tx_get_key (port, idx) |
| Read AES 128 bit Key and Salt from the Hardware TX SA table. More... | |
| function mod | rx_set_key (port, idx, key, salt, ip_ver, proto, decrypt) |
| Write AES 128 bit Key and Salt into the Hardware RX SA table. More... | |
| function mod | rx_get_key (port, idx) |
| Read AES 128 bit Key and Salt from the Hardware RX SA table. More... | |
| function mod | rx_set_ip (port, idx, ip_addr) |
| Write IP-Address into the Hardware RX IP table. More... | |
| function mod | rx_get_ip (port, idx, is_ipv4) |
| Read IP-Address from the Hardware RX IP table. More... | |
| function mod | rx_set_spi (port, idx, spi, ip_idx) |
| Write SPI into the Hardware RX SPI table This table functions as 'glue' between the received packet (SPI), IP and KEY table. More... | |
| function mod | rx_get_spi (port, idx) |
| Read SPI from the Hardware RX SPI table. More... | |
| function mod | calc_extra_pad (payload_len) |
| Calculate the length of extra padding needed, in order to achive a 4 byte alignment. More... | |
| function mod | get_extra_pad (buf) |
| Calculate the length of extra padding included in this packet for 4 byte alignment. More... | |
| function mod | add_esp_trailer (buf, payload_len, next_hdr) |
| Calculate a ESP Trailer and the corresponding Padding and append to the packet payload. More... | |
| function mod | esp_vpn_decapsulate (buf, len, eth_mem) |
| Decapsulate a hw-decrypted ESP packet. More... | |
| function mod | esp_vpn_encapsulate (buf, len, esp_mem) |
| Encapsulate an IP packet into a new IP header and ESP header and trailer. More... | |
| function mod add_esp_trailer | ( | buf | , |
| payload_len | , | ||
| next_hdr | |||
| ) |
Calculate a ESP Trailer and the corresponding Padding and append to the packet payload.
Only relevant for ESP/Ecryption mode
| buf | rte_mbuf to add esp trailer to |
| payload_len | real payload length in bytes |
| next_hdr | type of encapsulated packet |
| function mod calc_extra_pad | ( | payload_len | ) |
Calculate the length of extra padding needed, in order to achive a 4 byte alignment.
| payload_len | The lenght of the original IP packet |
| function mod disable | ( | port | ) |
Disable the Hardware Crypto Engine.
This function should be called after using the other IPSec functions
| port | The port/interface to use |
| function mod enable | ( | port | ) |
Enable the Hardware Crypto Engine.
This function must be called before using any other IPSec functions
| port | The port/interface to use |
| function mod esp_vpn_decapsulate | ( | buf | , |
| len | , | ||
| eth_mem | |||
| ) |
Decapsulate a hw-decrypted ESP packet.
| buf | The rte_mbuf containing the hw-decrypted ESP packet |
| len | Length of the hw-decrypted IP/ESP packet |
| eth_mem | memoryPool to allocate new ethernet packets from |
| function mod esp_vpn_encapsulate | ( | buf | , |
| len | , | ||
| esp_mem | |||
| ) |
Encapsulate an IP packet into a new IP header and ESP header and trailer.
| buf | The rte_mbuf containing the original IP packet |
| len | Length of the original IP packet |
| esp_mem | memoryPool to allocate new esp packets from |
| function mod get_extra_pad | ( | buf | ) |
Calculate the length of extra padding included in this packet for 4 byte alignment.
| buf | The rte_mbuf containing the hw-decrypted ESP packet |
| function mod rx_get_ip | ( | port | , |
| idx | , | ||
| is_ipv4 | |||
| ) |
Read IP-Address from the Hardware RX IP table.
| port | The port/interface to use |
| idx | Index into the RX IP table (0-127) |
| is_ipv4 | IP Version expected (true/false) |
| function mod rx_get_key | ( | port | , |
| idx | |||
| ) |
Read AES 128 bit Key and Salt from the Hardware RX SA table.
| port | The port/interface to use |
| idx | Index into the RX SA table (0-1023) |
| function mod rx_get_spi | ( | port | , |
| idx | |||
| ) |
Read SPI from the Hardware RX SPI table.
| port | The port/interface to use |
| idx | Index into the RX SPI table (0-1023) |
| function mod rx_set_ip | ( | port | , |
| idx | , | ||
| ip_addr | |||
| ) |
Write IP-Address into the Hardware RX IP table.
| port | The port/interface to use |
| idx | Index into the RX IP table (0-127). |
| ip_addr | IP(v4/v6)-Address to set (as string) |
| function mod rx_set_key | ( | port | , |
| idx | , | ||
| key | , | ||
| salt | , | ||
| ip_ver | , | ||
| proto | , | ||
| decrypt | |||
| ) |
Write AES 128 bit Key and Salt into the Hardware RX SA table.
| port | the port/interface to use |
| idx | Index into SA RX table (0-1023) |
| key | 128 bit AES key (as hex string) |
| salt | 32 bit AES salt (as hex string) |
| ip_ver | IP Version for which this SA is valid (4 or 6) |
| proto | IPSec protocol type to use ("esp" or "ah") |
| decrypt | ESP mode (1=ESP decrypt and authenticate, 0=ESP authenticate only) |
| function mod rx_set_spi | ( | port | , |
| idx | , | ||
| spi | , | ||
| ip_idx | |||
| ) |
Write SPI into the Hardware RX SPI table This table functions as 'glue' between the received packet (SPI), IP and KEY table.
| port | The port/interface to use |
| idx | Index into the RX SPI table (0-1023). This must match the idx of the corresponding KEY table entry. |
| spi | SPI to write (0-0xFFFFFFFF) |
| ip_idx | Reference to the IP table. This must match the idx of the corresponding IP table entry. |
| function mod tx_get_key | ( | port | , |
| idx | |||
| ) |
Read AES 128 bit Key and Salt from the Hardware TX SA table.
| port | The port/interface to use |
| idx | Index into the TX SA table (0-1023) |
| function mod tx_set_key | ( | port | , |
| idx | , | ||
| key | , | ||
| salt | |||
| ) |
Write AES 128 bit Key and Salt into the Hardware TX SA table.
| port | The port/interface to use idx Index into TX SA table (0-1023) |
| key | 128 bit AES key (as hex string) |
| salt | 32 bit AES salt (as hex string) |
1.8.6 
