[dpdk-dev] [PATCH] examples/ipsec-secgw: fix SHA256-HMAC digest length

Akhil Goyal akhil.goyal at nxp.com
Wed Nov 6 10:53:22 CET 2019


From: Vakul Garg <vakul.garg at nxp.com>

As per RFC4868, SHA-256 should use 128 bits of ICV.
Fixes: b5350285ce6e ("examples/ipsec-secgw: support SHA256 HMAC")
Cc: stable at dpdk.org

Signed-off-by: Vakul Garg <vakul.garg at nxp.com>
Acked-by: Akhil Goyal <akhil.goyal at nxp.com>
---
 examples/ipsec-secgw/sa.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/examples/ipsec-secgw/sa.c b/examples/ipsec-secgw/sa.c
index 4cb90857c..d0ae8ac9a 100644
--- a/examples/ipsec-secgw/sa.c
+++ b/examples/ipsec-secgw/sa.c
@@ -115,7 +115,7 @@ const struct supported_auth_algo auth_algos[] = {
 	{
 		.keyword = "sha256-hmac",
 		.algo = RTE_CRYPTO_AUTH_SHA256_HMAC,
-		.digest_len = 12,
+		.digest_len = 16,
 		.key_len = 32
 	}
 };
-- 
2.17.1



More information about the dev mailing list