From 5a2426386d31c90e833c639332a80a8b60bfed2f Mon Sep 17 00:00:00 2001 From: "Christian E. Hopps" Date: Fri, 27 Sep 2019 15:19:19 -0400 Subject: ipsec: allow null cipher with dpdk esp The NULL cipher is a (valid) non-AEAD choice for ESP encrypt path. Allow it. Type: fix Signed-off-by: Christian E. Hopps Change-Id: I6d8b66223a0ffb0952c2dd6fa898a8a2289fef7a --- src/plugins/dpdk/ipsec/esp_encrypt.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'src/plugins/dpdk/ipsec/esp_encrypt.c') diff --git a/src/plugins/dpdk/ipsec/esp_encrypt.c b/src/plugins/dpdk/ipsec/esp_encrypt.c index 4d57909fbed..1d29841c5d7 100644 --- a/src/plugins/dpdk/ipsec/esp_encrypt.c +++ b/src/plugins/dpdk/ipsec/esp_encrypt.c @@ -511,7 +511,8 @@ dpdk_esp_encrypt_inline (vlib_main_t * vm, u64 digest_paddr = mb0->buf_physaddr + digest - ((u8 *) mb0->buf_addr); - if (!is_aead && cipher_alg->alg == RTE_CRYPTO_CIPHER_AES_CBC) + if (!is_aead && (cipher_alg->alg == RTE_CRYPTO_CIPHER_AES_CBC || + cipher_alg->alg == RTE_CRYPTO_CIPHER_NULL)) { cipher_off = sizeof (esp_header_t); cipher_len = iv_size + pad_payload_len; -- cgit 1.2.3-korg