From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mails.dpdk.org (mails.dpdk.org [217.70.189.124]) by inbox.dpdk.org (Postfix) with ESMTP id 34E86A034F; Wed, 11 Aug 2021 11:47:43 +0200 (CEST) Received: from [217.70.189.124] (localhost [127.0.0.1]) by mails.dpdk.org (Postfix) with ESMTP id 19E61411CE; Wed, 11 Aug 2021 11:47:43 +0200 (CEST) Received: from mx0b-0016f401.pphosted.com (mx0a-0016f401.pphosted.com [67.231.148.174]) by mails.dpdk.org (Postfix) with ESMTP id 5555440040 for ; Wed, 11 Aug 2021 11:47:42 +0200 (CEST) Received: from pps.filterd (m0045849.ppops.net [127.0.0.1]) by mx0a-0016f401.pphosted.com (8.16.0.43/8.16.0.43) with SMTP id 17B9epx6021955; Wed, 11 Aug 2021 02:47:41 -0700 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=marvell.com; h=from : to : cc : subject : date : message-id : in-reply-to : references : mime-version : content-transfer-encoding : content-type; s=pfpt0220; bh=1Is9fNS7ZVFNoblRg9SNIb3eizDqc26X0pvL0bO2QA4=; b=kI2CXY8THrc4A5VRE8ScD5WGHcBx6KlQRLAmkenpWk2rUIMaOAHjod29UXm9h0/L9dag w7G19OecTSW+1HtpSY5K/FThRe9YcUxwq+9GweJ/3+alN5B87fQ24fXc/06UH+ykUBAV k78md4n2HyeJIzjHLwK8vloHV/95quQz29qtJomepY5VNZF8dpQTDFUsm1ZFnejMbR5u VWuy0hUWCBaeSJdUC2YWlYvV9SV73iKFl8Vobux/j+TSYw1VKlFMTKsgipgZyCcE3kuF zRs+4/DORc/rBUcKEloVovE6nwFzfUmcXHExfld2z+lFCjuGWccID066xbWlqSyrZkb1 Nw== Received: from dc5-exch02.marvell.com ([199.233.59.182]) by mx0a-0016f401.pphosted.com with ESMTP id 3ac6qth2h8-5 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Wed, 11 Aug 2021 02:47:41 -0700 Received: from DC5-EXCH01.marvell.com (10.69.176.38) by DC5-EXCH02.marvell.com (10.69.176.39) with Microsoft SMTP Server (TLS) id 15.0.1497.18; Wed, 11 Aug 2021 02:47:03 -0700 Received: from maili.marvell.com (10.69.176.80) by DC5-EXCH01.marvell.com (10.69.176.38) with Microsoft SMTP Server id 15.0.1497.18 via Frontend Transport; Wed, 11 Aug 2021 02:47:03 -0700 Received: from HY-LT1002.marvell.com (unknown [10.193.70.144]) by maili.marvell.com (Postfix) with ESMTP id E58F23F70BD; Wed, 11 Aug 2021 02:46:58 -0700 (PDT) From: Anoob Joseph To: Akhil Goyal , Declan Doherty , Fan Zhang , "Konstantin Ananyev" CC: Anoob Joseph , Jerin Jacob , Archana Muniganti , Tejasree Kondoj , Hemant Agrawal , "Radu Nicolau" , Ciara Power , Date: Wed, 11 Aug 2021 15:15:33 +0530 Message-ID: <1628675138-17300-1-git-send-email-anoobj@marvell.com> X-Mailer: git-send-email 2.7.4 In-Reply-To: <1627555402-4789-1-git-send-email-anoobj@marvell.com> References: <1627555402-4789-1-git-send-email-anoobj@marvell.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain X-Proofpoint-ORIG-GUID: CkTK2wUuJjTQUbbCPkApzrO_t8nF4_rQ X-Proofpoint-GUID: CkTK2wUuJjTQUbbCPkApzrO_t8nF4_rQ X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-08-11_03:2021-08-10, 2021-08-11 signatures=0 Subject: [dpdk-dev] [PATCH v2 0/4] Add lookaside IPsec tests X-BeenThere: dev@dpdk.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: DPDK patches and discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dev-bounces@dpdk.org Sender: "dev" Add lookaside IPsec functional tests. Known vector tests and combined mode framework is added. Known vectors are outbound vectors based on https://datatracker.ietf.org/doc/html/draft-mcgrew-gcm-test-01 The vectors are updated to have sequence number as 1 & L4 checksum computed correctly. And they have following properties, 1. ESP 2. Tunnel mode 3. IPv4 4. IPv4 tunnel Known vector tests for inbound operation would generate test vectors by reversing outbound known vectors. The input_text would become encrypted packet and output_text would be the plain packet. Tests would then validate the operation by comparing against plain packet. Combined mode tests are used to test all IPsec features against all ciphers supported by the PMD. The framework is introduced to avoid testing with any specific algo, thereby making it mandatory to be supported. Also, testing with all supported combinations will help with increasing coverage as well. Three test cases use combined mode, 1. Display algo coverage and basic in + out tests 2. Negative test for ICV corruption 3. IV generation IV generation test case compares IV generated for a batch of packets and returns failure if IV is repeated. Upcoming additions, 1. AES-CBC-SHA1-HMAC known vectors & combined mode 2. IPv6 3. UDP encapsulation 4. Transport 5. Mixed mode (IPv4-in-IPv6 etc, all combinations) Tested with following PMDs 1. crypto_octeontx2 2. crypto_cn10k Changes in v2 - Dropped outbound known vector tests as lookaside protocol would require IV generated by PMD. The tests would be introduced with spec change to allow user to specify IV. - Added IV generation tests - Minor fixes in combined mode tests to handle multiple packets Anoob Joseph (2): test/crypto: add lookaside IPsec tests test/crypto: add combined mode tests Tejasree Kondoj (2): test/crypto: add lookaside IPsec ICV corrupt test case test/crypto: add IV gen tests app/test/meson.build | 1 + app/test/test.h | 6 + app/test/test_cryptodev.c | 331 ++++++++++++++++++ app/test/test_cryptodev_security_ipsec.c | 373 +++++++++++++++++++++ app/test/test_cryptodev_security_ipsec.h | 118 +++++++ .../test_cryptodev_security_ipsec_test_vectors.h | 321 ++++++++++++++++++ 6 files changed, 1150 insertions(+) create mode 100644 app/test/test_cryptodev_security_ipsec.c create mode 100644 app/test/test_cryptodev_security_ipsec.h create mode 100644 app/test/test_cryptodev_security_ipsec_test_vectors.h -- 2.7.4