DOKK / manpages / debian 13 / dpdk-doc / rte_security_capability.3.en
rte_security_capability(3) Library Functions Manual rte_security_capability(3)

rte_security_capability

#include <rte_security.h>


enum rte_security_session_action_type action
enum rte_security_session_protocol protocol
const struct rte_cryptodev_capabilities * crypto_capabilities
uint32_t ol_flags

Security capability definition

Definition at line 1247 of file rte_security.h.

enum rte_security_session_action_type action

Security action type

Definition at line 1248 of file rte_security.h.

enum rte_security_session_protocol protocol

Security protocol

Definition at line 1250 of file rte_security.h.

enum rte_security_ipsec_sa_protocol proto

IPsec SA protocol

Definition at line 1254 of file rte_security.h.

enum rte_security_ipsec_sa_mode mode

IPsec SA mode

Definition at line 1256 of file rte_security.h.

enum rte_security_ipsec_sa_direction direction

IPsec SA direction

Definition at line 1258 of file rte_security.h.

IPsec SA supported options

Definition at line 1260 of file rte_security.h.

IPsec Anti Replay Window Size. A '0' value indicates that Anti Replay is not supported.

Definition at line 1262 of file rte_security.h.

struct { ... } ipsec

IPsec capability

MTU supported for inline TX

Definition at line 1270 of file rte_security.h.

enum rte_security_macsec_alg alg

MACsec algorithm to be used

Definition at line 1272 of file rte_security.h.

Maximum number of secure channels supported

Definition at line 1274 of file rte_security.h.

Maximum number of SAs supported

Definition at line 1276 of file rte_security.h.

Maximum number of SAs supported

Definition at line 1278 of file rte_security.h.

MACsec anti replay window size

Definition at line 1280 of file rte_security.h.

Support Sectag insertion at relative offset

Definition at line 1282 of file rte_security.h.

Support Sectag insertion at fixed offset

Definition at line 1284 of file rte_security.h.

ICV includes source and destination MAC addresses

Definition at line 1286 of file rte_security.h.

Control port traffic is supported

Definition at line 1288 of file rte_security.h.

Do not strip SecTAG after processing

Definition at line 1290 of file rte_security.h.

Do not strip ICV from the packet after processing

Definition at line 1292 of file rte_security.h.

Support frame validation as per RTE_SECURITY_MACSEC_VALIDATE_*

Definition at line 1294 of file rte_security.h.

support re-keying on SA expiry

Definition at line 1296 of file rte_security.h.

support anti replay

Definition at line 1298 of file rte_security.h.

Reserved bitfields for future capabilities

Definition at line 1300 of file rte_security.h.

struct { ... } macsec

MACsec capability

enum rte_security_pdcp_domain domain

PDCP mode of operation: Control or data

Definition at line 1304 of file rte_security.h.

Capability flags, see RTE_SECURITY_PDCP_*

Definition at line 1306 of file rte_security.h.

struct { ... } pdcp

PDCP capability

enum rte_security_docsis_direction direction

DOCSIS direction

Definition at line 1311 of file rte_security.h.

struct { ... } docsis

DOCSIS capability

enum rte_security_tls_version ver

TLS record version.

Definition at line 1316 of file rte_security.h.

enum rte_security_tls_sess_type type

TLS record session type.

Definition at line 1318 of file rte_security.h.

Maximum anti replay window size supported for DTLS 1.2 record read operation. Value of 0 means anti replay check is not supported.

Definition at line 1320 of file rte_security.h.

struct { ... } tls_record

TLS record capability

Corresponding crypto capabilities for security capability

Definition at line 1328 of file rte_security.h.

Device offload flags

Definition at line 1331 of file rte_security.h.

Generated automatically by Doxygen for DPDK from the source code.

Version 24.11.3 DPDK