From 8d9a222507b291113e18e6bc46f3196a51fd181d Mon Sep 17 00:00:00 2001 From: Fan Zhang Date: Tue, 5 Mar 2019 14:40:41 +0000 Subject: [PATCH] examples/ipsec-secgw: fix AES-CTR block size This patch fixes the incorrect block size for AES-CTR in legacy mode. Originally, wrong block size will cause esp_inbound() drop AES-CTR encrypted packets if the payload sizes not equal to multiple times of 16. Fixes: 4470c22de2e1 ("examples/ipsec-secgw: add AES-CTR") Cc: stable@dpdk.org Signed-off-by: Fan Zhang Acked-by: Konstantin Ananyev Acked-by: Akhil Goyal --- examples/ipsec-secgw/sa.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/examples/ipsec-secgw/sa.c b/examples/ipsec-secgw/sa.c index 414fcd26cf..93e3620bcd 100644 --- a/examples/ipsec-secgw/sa.c +++ b/examples/ipsec-secgw/sa.c @@ -80,7 +80,7 @@ const struct supported_cipher_algo cipher_algos[] = { .keyword = "aes-128-ctr", .algo = RTE_CRYPTO_CIPHER_AES_CTR, .iv_len = 8, - .block_size = 16, /* XXX AESNI MB limition, should be 4 */ + .block_size = 4, .key_len = 20 }, { -- 2.20.1