gerrit.fd Code Review - vpp.git/commit

author	Neale Ranns <nranns@cisco.com>
	Wed, 6 Feb 2019 09:41:05 +0000 (01:41 -0800)
committer	Florin Coras <florin.coras@gmail.com>
	Thu, 7 Feb 2019 19:13:32 +0000 (19:13 +0000)
commit	8d7c502002636da1cb7c71a87757f328e7c2c4fd
tree	1005d63dcb3a24f7bb2ad2d3224bfcb062909666	tree \| snapshot
parent	3d0ef26a0285b9baa486c91b2e6609125a2bc651	commit \| diff

IPSEC: no second lookup after tunnel encap

in the same maaner as with other tunnel tyeps we use
the FIB to cache and track the destination used to reach
the tunnel endpoint. Post encap we can then ship the packet
straight to this adjacency and thus elide the costly second
lookup.

- SA add and del function so they can be used both directly
from the API and for tunnels.
- API change for the SA dump to use the SA type
- ipsec_key_t type for convenience (copying, [un]formating)
- no matching tunnel counters in ipsec-if-input

Change-Id: I9d144a59667f7bf96442f4ca66bef5c1d3c7f1ea
Signed-off-by: Neale Ranns <nranns@cisco.com>

18 files changed:

src/plugins/dpdk/ipsec/ipsec.c		diff \| blob \| history
src/vat/api_format.c		diff \| blob \| history
src/vnet/fib/fib_node.h		diff \| blob \| history
src/vnet/ipsec/ah_decrypt.c		diff \| blob \| history
src/vnet/ipsec/ah_encrypt.c		diff \| blob \| history
src/vnet/ipsec/esp_decrypt.c		diff \| blob \| history
src/vnet/ipsec/esp_encrypt.c		diff \| blob \| history
src/vnet/ipsec/ikev2.c		diff \| blob \| history
src/vnet/ipsec/ipsec.api		diff \| blob \| history
src/vnet/ipsec/ipsec_api.c		diff \| blob \| history
src/vnet/ipsec/ipsec_cli.c		diff \| blob \| history
src/vnet/ipsec/ipsec_format.c		diff \| blob \| history
src/vnet/ipsec/ipsec_if.c		diff \| blob \| history
src/vnet/ipsec/ipsec_if.h		diff \| blob \| history
src/vnet/ipsec/ipsec_if_in.c		diff \| blob \| history
src/vnet/ipsec/ipsec_sa.c		diff \| blob \| history
src/vnet/ipsec/ipsec_sa.h		diff \| blob \| history
test/vpp_ipsec.py		diff \| blob \| history

Vector Packet Processing

RSS Atom