Skip to content

[iproute2]: Fix the output error of SSCI#10767

Merged
Pterosaur merged 1 commit intosonic-net:masterfrom
Pterosaur:fix_iproute2_xpn_show
May 7, 2022
Merged

[iproute2]: Fix the output error of SSCI#10767
Pterosaur merged 1 commit intosonic-net:masterfrom
Pterosaur:fix_iproute2_xpn_show

Conversation

@Pterosaur
Copy link
Copy Markdown
Contributor

@Pterosaur Pterosaur commented May 6, 2022

Signed-off-by: Ze Gan ganze718@gmail.com

Why I did it

The SSCI is wrong in the output of MACsec so that the virtual SAI cannot parse the output corretly.
The wrong output:

142: macsec_eth1: protect on validate strict sc off sa off encrypt on send_sci on end_station off scb off replay off
    cipher suite: GCM-AES-XPN-256, using ICV length 16
    TXSC: 5254008f4f1c0001 on SA 0
        0: PN 103, state on, key 12cbc4b64e26c9a1ba14d810da20d16e
 SSCI 33554432,    RXSC: 525400edac5b0001, state on
        0: PN 107, state on, key 12cbc4b64e26c9a1ba14d810da20d16e
    offload: off

Expected

142: macsec_eth1: protect on validate strict sc off sa off encrypt on send_sci on end_station off scb off replay off
    cipher suite: GCM-AES-XPN-256, using ICV length 16
    TXSC: 5254008f4f1c0001 on SA 0
        0: PN 252, state on, SSCI 33554432, key 12cbc4b64e26c9a1ba14d810da20d16e
    RXSC: 525400edac5b0001, state on
        0: PN 264, state on, key 12cbc4b64e26c9a1ba14d810da20d16e

How I did it

Move SSCI before the key so that SSCI will not be the front of SC information.

How to verify it

Check Azp

Which release branch to backport (provide reason below if selected)

  • 201811
  • 201911
  • 202006
  • 202012
  • 202106
  • 202111

Description for the changelog

Link to config_db schema for YANG module changes

A picture of a cute animal (not mandatory but encouraged)

@Pterosaur
Fix format error of SSCI
ccb0e21 
Signed-off-by: Ze Gan <ganze718@gmail.com>
@Pterosaur Pterosaur requested a review from lguohan as a code owner May 6, 2022 05:56
@Pterosaur Pterosaur mentioned this pull request May 6, 2022
Merged
5 tasks
@Pterosaur Pterosaur merged commit 71a515e into sonic-net:master May 7, 2022
liushilongbuaa pushed a commit to liushilongbuaa/sonic-buildimage that referenced this pull request Jun 20, 2022
@Pterosaur @liushilongbuaa
[iproute2]: Fix format error of SSCI (sonic-net#10767)
fdbf2c6 
Signed-off-by: Ze Gan <ganze718@gmail.com>

#### Why I did it
The SSCI is wrong in the output of MACsec so that the virtual SAI cannot parse the output corretly.
The wrong output:
```
142: macsec_eth1: protect on validate strict sc off sa off encrypt on send_sci on end_station off scb off replay off
    cipher suite: GCM-AES-XPN-256, using ICV length 16
    TXSC: 5254008f4f1c0001 on SA 0
        0: PN 103, state on, key 12cbc4b64e26c9a1ba14d810da20d16e
 SSCI 33554432,    RXSC: 525400edac5b0001, state on
        0: PN 107, state on, key 12cbc4b64e26c9a1ba14d810da20d16e
    offload: off
```
Expected
```
142: macsec_eth1: protect on validate strict sc off sa off encrypt on send_sci on end_station off scb off replay off
    cipher suite: GCM-AES-XPN-256, using ICV length 16
    TXSC: 5254008f4f1c0001 on SA 0
        0: PN 252, state on, SSCI 33554432, key 12cbc4b64e26c9a1ba14d810da20d16e
    RXSC: 525400edac5b0001, state on
        0: PN 264, state on, key 12cbc4b64e26c9a1ba14d810da20d16e
```
#### How I did it
Move SSCI before the key so that SSCI will not be the front of SC information.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jimmyzhai jimmyzhai jimmyzhai approved these changes

@lguohan lguohan Awaiting requested review from lguohan

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Pterosaur @jimmyzhai