FD.io VPP
v18.04-17-g3a0d853
Vector Packet Processing
|
IPsec security association database response. More...
Data Fields | |
u32 | context |
u32 | sa_id |
u32 | sw_if_index |
u32 | spi |
u8 | protocol |
u8 | crypto_alg |
u8 | crypto_key_len |
u8 | crypto_key [128] |
u8 | integ_alg |
u8 | integ_key_len |
u8 | integ_key [128] |
u8 | use_esn |
u8 | use_anti_replay |
u8 | is_tunnel |
u8 | is_tunnel_ip6 |
u8 | tunnel_src_addr [16] |
u8 | tunnel_dst_addr [16] |
u32 | salt |
u64 | seq_outbound |
u64 | last_seq_inbound |
u64 | replay_window |
u64 | total_data_size |
IPsec security association database response.
context | - sender context which was passed in the request |
sa_id | - SA ID, policy-based SAs >=0, tunnel interface SAs = 0 |
sw_if_index | - sw_if_index of tunnel interface, policy-based SAs = ~0 |
spi | - security parameter index |
protocol | - IPsec protocol (value from ipsec_protocol_t) |
crypto_alg | - crypto algorithm (value from ipsec_crypto_alg_t) |
crypto_key_len | - length of crypto_key in bytes |
crypto_key | - crypto keying material |
integ_alg | - integrity algorithm (value from ipsec_integ_alg_t) |
integ_key_len | - length of integ_key in bytes |
integ_key | - integrity keying material |
use_esn | - using extended sequence numbers when non-zero |
use_anti_replay | - using anti-replay window when non-zero |
is_tunnel | - IPsec tunnel mode when non-zero, else transport mode |
is_tunnel_ipv6 | - If using tunnel mode, endpoints are IPv6 |
tunnel_src_addr | - Tunnel source address if using tunnel mode |
tunnel_dst_addr | - Tunnel destination address is using tunnel mode |
salt | - 4 byte salt |
seq | - current sequence number for outbound |
seq_hi | - high 32 bits of ESN for outbound |
last_seq | - highest sequence number received inbound |
last_seq_hi | - high 32 bits of highest ESN received inbound |
replay_window | - bit map of seq nums received relative to last_seq if using anti-replay |
total_data_size | - total bytes sent or received |