[API-NEXT,v1,1/2] api: ipsec: document TFC padding usage

Message ID	1512698406-27565-2-git-send-email-odpbot@yandex.ru
State	New
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: domain of lng-odp-bounces@lists.linaro.org designates 54.197.127.237 as permitted sender) client-ip=54.197.127.237; From: Github ODP bot <odpbot@yandex.ru> To: lng-odp@lists.linaro.org Date: Fri, 8 Dec 2017 05:00:05 +0300 Message-Id: <1512698406-27565-2-git-send-email-odpbot@yandex.ru> In-Reply-To: <1512698406-27565-1-git-send-email-odpbot@yandex.ru> References: <1512698406-27565-1-git-send-email-odpbot@yandex.ru> Github-pr-num: 329 Subject: [lng-odp] [PATCH API-NEXT v1 1/2] api: ipsec: document TFC padding usage Precedence: list Errors-To: lng-odp-bounces@lists.linaro.org Sender: "lng-odp" <lng-odp-bounces@lists.linaro.org>
Series	[API-NEXT,v1,1/2] api: ipsec: document TFC padding usage \| expand [API-NEXT,v1,1/2] api: ipsec: document TFC padding usage [API-NEXT,v1,2/2] api: ipsec: add event to document reception of dummy packet

Message ID

1512698406-27565-2-git-send-email-odpbot@yandex.ru

State

New

Headers

Received-SPF: pass (google.com: domain of lng-odp-bounces@lists.linaro.org
	designates 54.197.127.237 as permitted sender)
	client-ip=54.197.127.237; 
From: Github ODP bot <odpbot@yandex.ru>
To: lng-odp@lists.linaro.org
Date: Fri,  8 Dec 2017 05:00:05 +0300
Message-Id: <1512698406-27565-2-git-send-email-odpbot@yandex.ru>
In-Reply-To: <1512698406-27565-1-git-send-email-odpbot@yandex.ru>
References: <1512698406-27565-1-git-send-email-odpbot@yandex.ru>
Github-pr-num: 329
Subject: [lng-odp] [PATCH API-NEXT v1 1/2] api: ipsec: document TFC padding
	usage
Precedence: list
Errors-To: lng-odp-bounces@lists.linaro.org
Sender: "lng-odp" <lng-odp-bounces@lists.linaro.org>

Series

[API-NEXT,v1,1/2] api: ipsec: document TFC padding usage | expand

Commit Message

Github ODP bot Dec. 8, 2017, 2 a.m. UTC

From: Dmitry Eremin-Solenikov <dmitry.ereminsolenikov@linaro.org>


It is possible to include TFC padding into ESP-tunnel packets. Document
usage of such padding according to RFC.

Signed-off-by: Dmitry Eremin-Solenikov <dmitry.ereminsolenikov@linaro.org>

---
/** Email created from pull request 329 (lumag:ipsec-tfc)
 ** https://github.com/Linaro/odp/pull/329
 ** Patch: https://github.com/Linaro/odp/pull/329.patch
 ** Base sha: 0980001e33b4190133d478a0aa2e718fd1e3c164
 ** Merge commit sha: e21e3f5f12faf7775b8d0e993a95dd377130f4c7
 **/
 include/odp/api/spec/ipsec.h | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/include/odp/api/spec/ipsec.h b/include/odp/api/spec/ipsec.h
index d57815ed2..86803cecf 100644
--- a/include/odp/api/spec/ipsec.h
+++ b/include/odp/api/spec/ipsec.h
@@ -1228,6 +1228,10 @@  typedef struct odp_ipsec_status_t {
  * restored. The amount and content of packet data before the IP header is
  * undefined.
  *
+ * Additional TFC padding might be present after packet contents for ESP tunnel
+ * mode. Application should handle this padding using payload length from IPv4
+ * or IPv6 header.
+ *
  * Each successfully transformed packet has a valid value for these metadata
  * regardless of the inner packet parse configuration
  * (odp_ipsec_inbound_config_t):
@@ -1293,6 +1297,10 @@  int odp_ipsec_in(const odp_packet_t pkt_in[], int num_in,
  * with IPSEC, etc headers constructed according to the standards. The amount
  * and content of packet data before the IP header is undefined.
  *
+ * Additional TFC padding might be present after packet payload for ESP-tunnel
+ * mode. It will be included into encrypted packet. Receiver side will skip
+ * this padding automatically.
+ *
  * Each successfully transformed packet has a valid value for these metadata:
  * - L3 offset: Offset to the first byte of the (outmost) IP header
  *