From: Akhil Goyal <gakhil@marvell.com>
To: <dev@dpdk.org>
Cc: <thomas@monjalon.net>, <olivier.matz@6wind.com>,
<orika@nvidia.com>, <david.marchand@redhat.com>,
<hemant.agrawal@nxp.com>, <vattunuru@marvell.com>,
<ferruh.yigit@amd.com>, <andrew.rybchenko@oktetlabs.ru>,
<jerinj@marvell.com>, <adwivedi@marvell.com>,
Akhil Goyal <gakhil@marvell.com>
Subject: [PATCH v3 07/13] test/security: add MACsec negative cases
Date: Thu, 8 Jun 2023 12:24:52 +0530 [thread overview]
Message-ID: <20230608065458.333670-8-gakhil@marvell.com> (raw)
In-Reply-To: <20230608065458.333670-1-gakhil@marvell.com>
Added MACsec negative test cases to verify
pkt drop, untagged rx, bad tag rx, sa not in use,
out packets untagged, pkts too long.
Signed-off-by: Akhil Goyal <gakhil@marvell.com>
---
app/test/test_security_inline_macsec.c | 346 +++++++++++++
.../test_security_inline_macsec_vectors.h | 475 ++++++++++++++++++
2 files changed, 821 insertions(+)
diff --git a/app/test/test_security_inline_macsec.c b/app/test/test_security_inline_macsec.c
index 854ead75a0..2a06f31f37 100644
--- a/app/test/test_security_inline_macsec.c
+++ b/app/test/test_security_inline_macsec.c
@@ -660,6 +660,103 @@ mcs_stats_dump(struct rte_security_ctx *ctx, enum mcs_op op,
}
}
+static int
+mcs_stats_check(struct rte_security_ctx *ctx, enum mcs_op op,
+ const struct mcs_test_opts *opts,
+ const struct mcs_test_vector *td,
+ void *rx_sess, void *tx_sess,
+ uint8_t rx_sc_id, uint8_t tx_sc_id,
+ uint16_t rx_sa_id[], uint16_t tx_sa_id[])
+{
+ struct rte_security_stats sess_stats = {0};
+ struct rte_security_macsec_secy_stats *secy_stat;
+ struct rte_security_macsec_sc_stats sc_stat = {0};
+ struct rte_security_macsec_sa_stats sa_stat = {0};
+ int i;
+
+ if (op == MCS_DECAP || op == MCS_ENCAP_DECAP ||
+ op == MCS_VERIFY_ONLY || op == MCS_AUTH_VERIFY) {
+ rte_security_session_stats_get(ctx, rx_sess, &sess_stats);
+ secy_stat = &sess_stats.macsec;
+
+ if ((opts->check_untagged_rx && secy_stat->pkt_notag_cnt != 1) ||
+ (opts->check_untagged_rx && secy_stat->pkt_untaged_cnt != 1))
+ return TEST_FAILED;
+
+ if (opts->check_bad_tag_cnt && secy_stat->pkt_badtag_cnt != 1)
+ return TEST_FAILED;
+
+ if (opts->check_sa_not_in_use && secy_stat->pkt_nosaerror_cnt != 1)
+ return TEST_FAILED;
+
+ if (opts->check_decap_stats && secy_stat->octet_decrypted_cnt !=
+ (uint16_t)(td->plain_pkt.len - 2 * RTE_ETHER_ADDR_LEN))
+ return TEST_FAILED;
+
+ if (opts->check_verify_only_stats && secy_stat->octet_validated_cnt !=
+ (uint16_t)(td->plain_pkt.len - 2 * RTE_ETHER_ADDR_LEN))
+ return TEST_FAILED;
+
+ rte_security_macsec_sc_stats_get(ctx, rx_sc_id,
+ RTE_SECURITY_MACSEC_DIR_RX, &sc_stat);
+
+ if ((opts->check_decap_stats || opts->check_verify_only_stats) &&
+ sc_stat.pkt_ok_cnt != 1)
+ return TEST_FAILED;
+
+ if (opts->check_pkts_invalid_stats && sc_stat.pkt_notvalid_cnt != 1)
+ return TEST_FAILED;
+
+ if (opts->check_pkts_unchecked_stats && sc_stat.pkt_unchecked_cnt != 1)
+ return TEST_FAILED;
+
+ for (i = 0; i < RTE_SECURITY_MACSEC_NUM_AN; i++) {
+ memset(&sa_stat, 0, sizeof(struct rte_security_macsec_sa_stats));
+ rte_security_macsec_sa_stats_get(ctx, rx_sa_id[i],
+ RTE_SECURITY_MACSEC_DIR_RX, &sa_stat);
+
+ }
+ }
+
+ if (op == MCS_ENCAP || op == MCS_ENCAP_DECAP ||
+ op == MCS_AUTH_ONLY || op == MCS_AUTH_VERIFY) {
+ memset(&sess_stats, 0, sizeof(struct rte_security_stats));
+ rte_security_session_stats_get(ctx, tx_sess, &sess_stats);
+ secy_stat = &sess_stats.macsec;
+
+ if (opts->check_out_pkts_untagged && secy_stat->pkt_untagged_cnt != 1)
+ return TEST_FAILED;
+
+ if (opts->check_out_pkts_toolong && secy_stat->pkt_toolong_cnt != 1)
+ return TEST_FAILED;
+
+ if (opts->check_encap_stats && secy_stat->octet_encrypted_cnt !=
+ (uint16_t)(td->plain_pkt.len - 2 * RTE_ETHER_ADDR_LEN))
+ return TEST_FAILED;
+
+ if (opts->check_auth_only_stats && secy_stat->octet_protected_cnt !=
+ (uint16_t)(td->plain_pkt.len - 2 * RTE_ETHER_ADDR_LEN))
+ return TEST_FAILED;
+
+
+ memset(&sc_stat, 0, sizeof(struct rte_security_macsec_sc_stats));
+ rte_security_macsec_sc_stats_get(ctx, tx_sc_id, RTE_SECURITY_MACSEC_DIR_TX,
+ &sc_stat);
+
+ if (opts->check_encap_stats && sc_stat.pkt_encrypt_cnt != 1)
+ return TEST_FAILED;
+
+ if (opts->check_auth_only_stats && sc_stat.pkt_protected_cnt != 1)
+ return TEST_FAILED;
+
+ memset(&sa_stat, 0, sizeof(struct rte_security_macsec_sa_stats));
+ rte_security_macsec_sa_stats_get(ctx, tx_sa_id[0],
+ RTE_SECURITY_MACSEC_DIR_TX, &sa_stat);
+ }
+
+ return 0;
+}
+
static int
test_macsec(const struct mcs_test_vector *td[], enum mcs_op op, const struct mcs_test_opts *opts)
{
@@ -833,12 +930,23 @@ test_macsec(const struct mcs_test_vector *td[], enum mcs_op op, const struct mcs
rx_pkts_burst[i] = NULL;
}
out:
+ if (opts->check_out_pkts_toolong == 1 ||
+ opts->check_sa_not_in_use == 1 ||
+ opts->check_bad_tag_cnt == 1)
+ ret = TEST_SUCCESS;
+
for (i = 0; i < opts->nb_td; i++) {
if (opts->dump_all_stats) {
mcs_stats_dump(ctx, op,
rx_sess[i], tx_sess[i],
rx_sc_id[i], tx_sc_id[i],
rx_sa_id[i], tx_sa_id[i]);
+ } else {
+ if (ret == TEST_SUCCESS)
+ ret = mcs_stats_check(ctx, op, opts, td[i],
+ rx_sess[i], tx_sess[i],
+ rx_sc_id[i], tx_sc_id[i],
+ rx_sa_id[i], tx_sa_id[i]);
}
}
@@ -1182,6 +1290,220 @@ test_inline_macsec_with_vlan(const void *data __rte_unused)
return all_err;
}
+static int
+test_inline_macsec_pkt_drop(const void *data __rte_unused)
+{
+ const struct mcs_test_vector *cur_td;
+ struct mcs_test_opts opts = {0};
+ int err, all_err = 0;
+ int i, size;
+
+ opts.val_frames = RTE_SECURITY_MACSEC_VALIDATE_STRICT;
+ opts.encrypt = true;
+ opts.protect_frames = true;
+ opts.sa_in_use = 1;
+ opts.nb_td = 1;
+ opts.sectag_insert_mode = 1;
+ opts.mtu = RTE_ETHER_MTU;
+
+ size = (sizeof(list_mcs_err_cipher_vectors) / sizeof((list_mcs_err_cipher_vectors)[0]));
+
+ for (i = 0; i < size; i++) {
+ cur_td = &list_mcs_err_cipher_vectors[i];
+ err = test_macsec(&cur_td, MCS_DECAP, &opts);
+ if (err) {
+ printf("\nPacket drop case %d passed", cur_td->test_idx);
+ err = 0;
+ } else {
+ printf("\nPacket drop case %d failed", cur_td->test_idx);
+ err = -1;
+ }
+ all_err += err;
+ }
+ printf("\n%s: Success: %d, Failure: %d\n", __func__, size + all_err, -all_err);
+
+ return all_err;
+}
+
+static int
+test_inline_macsec_untagged_rx(const void *data __rte_unused)
+{
+ const struct mcs_test_vector *cur_td;
+ struct mcs_test_opts opts = {0};
+ int err, all_err = 0;
+ int i, size;
+
+ opts.val_frames = RTE_SECURITY_MACSEC_VALIDATE_STRICT;
+ opts.sa_in_use = 1;
+ opts.nb_td = 1;
+ opts.sectag_insert_mode = 1;
+ opts.mtu = RTE_ETHER_MTU;
+ opts.check_untagged_rx = 1;
+
+ size = (sizeof(list_mcs_untagged_cipher_vectors) /
+ sizeof((list_mcs_untagged_cipher_vectors)[0]));
+
+ for (i = 0; i < size; i++) {
+ cur_td = &list_mcs_untagged_cipher_vectors[i];
+ err = test_macsec(&cur_td, MCS_DECAP, &opts);
+ if (err)
+ err = 0;
+ else
+ err = -1;
+
+ all_err += err;
+ }
+
+ opts.val_frames = RTE_SECURITY_MACSEC_VALIDATE_NO_DISCARD;
+ for (i = 0; i < size; i++) {
+ cur_td = &list_mcs_untagged_cipher_vectors[i];
+ err = test_macsec(&cur_td, MCS_DECAP, &opts);
+ if (err)
+ err = 0;
+ else
+ err = -1;
+
+ all_err += err;
+ }
+ printf("\n%s: Success: %d, Failure: %d\n", __func__, size + all_err, -all_err);
+
+ return all_err;
+}
+
+static int
+test_inline_macsec_bad_tag_rx(const void *data __rte_unused)
+{
+ const struct mcs_test_vector *cur_td;
+ struct mcs_test_opts opts = {0};
+ int err, all_err = 0;
+ int i, size;
+
+ opts.val_frames = RTE_SECURITY_MACSEC_VALIDATE_STRICT;
+ opts.protect_frames = true;
+ opts.sa_in_use = 1;
+ opts.nb_td = 1;
+ opts.sectag_insert_mode = 1;
+ opts.mtu = RTE_ETHER_MTU;
+ opts.check_bad_tag_cnt = 1;
+
+ size = (sizeof(list_mcs_bad_tag_vectors) / sizeof((list_mcs_bad_tag_vectors)[0]));
+
+ for (i = 0; i < size; i++) {
+ cur_td = &list_mcs_bad_tag_vectors[i];
+ err = test_macsec(&cur_td, MCS_DECAP, &opts);
+ if (err)
+ err = -1;
+ else
+ err = 0;
+
+ all_err += err;
+ }
+
+ printf("\n%s: Success: %d, Failure: %d\n", __func__, size + all_err, -all_err);
+
+ return all_err;
+}
+
+static int
+test_inline_macsec_sa_not_in_use(const void *data __rte_unused)
+{
+ const struct mcs_test_vector *cur_td;
+ struct mcs_test_opts opts = {0};
+ int err, all_err = 0;
+ int i, size;
+
+ opts.val_frames = RTE_SECURITY_MACSEC_VALIDATE_STRICT;
+ opts.protect_frames = true;
+ opts.sa_in_use = 0;
+ opts.nb_td = 1;
+ opts.sectag_insert_mode = 1;
+ opts.mtu = RTE_ETHER_MTU;
+ opts.check_sa_not_in_use = 1;
+
+ size = (sizeof(list_mcs_cipher_vectors) / sizeof((list_mcs_cipher_vectors)[0]));
+
+ for (i = 0; i < size; i++) {
+ cur_td = &list_mcs_cipher_vectors[i];
+ err = test_macsec(&cur_td, MCS_DECAP, &opts);
+ if (err)
+ err = -1;
+ else
+ err = 0;
+
+ all_err += err;
+ }
+
+ printf("\n%s: Success: %d, Failure: %d\n", __func__, size + all_err, -all_err);
+
+ return all_err;
+}
+
+static int
+test_inline_macsec_out_pkts_untagged(const void *data __rte_unused)
+{
+ const struct mcs_test_vector *cur_td;
+ struct mcs_test_opts opts = {0};
+ int err, all_err = 0;
+ int i, size;
+
+ opts.val_frames = RTE_SECURITY_MACSEC_VALIDATE_STRICT;
+ opts.encrypt = false;
+ opts.protect_frames = false;
+ opts.sa_in_use = 1;
+ opts.nb_td = 1;
+ opts.sectag_insert_mode = 1;
+ opts.mtu = RTE_ETHER_MTU;
+ opts.check_out_pkts_untagged = 1;
+
+ size = (sizeof(list_mcs_cipher_vectors) / sizeof((list_mcs_cipher_vectors)[0]));
+ for (i = 0; i < size; i++) {
+ cur_td = &list_mcs_cipher_vectors[i];
+ err = test_macsec(&cur_td, MCS_ENCAP, &opts);
+ if (err)
+ err = -1;
+ else
+ err = 0;
+
+ all_err += err;
+ }
+
+ printf("\n%s: Success: %d, Failure: %d\n", __func__, size + all_err, -all_err);
+ return all_err;
+}
+
+static int
+test_inline_macsec_out_pkts_toolong(const void *data __rte_unused)
+{
+ const struct mcs_test_vector *cur_td;
+ struct mcs_test_opts opts = {0};
+ int err, all_err = 0;
+ int i, size;
+
+ opts.val_frames = RTE_SECURITY_MACSEC_VALIDATE_NO_DISCARD;
+ opts.encrypt = true;
+ opts.protect_frames = true;
+ opts.sa_in_use = 1;
+ opts.nb_td = 1;
+ opts.sectag_insert_mode = 1;
+ opts.mtu = 50;
+ opts.check_out_pkts_toolong = 1;
+
+ size = (sizeof(list_mcs_cipher_vectors) / sizeof((list_mcs_cipher_vectors)[0]));
+ for (i = 0; i < size; i++) {
+ cur_td = &list_mcs_cipher_vectors[i];
+ err = test_macsec(&cur_td, MCS_ENCAP, &opts);
+ if (err)
+ err = -1;
+ else
+ err = 0;
+
+ all_err += err;
+ }
+
+ printf("\n%s: Success: %d, Failure: %d\n", __func__, size + all_err, -all_err);
+ return all_err;
+}
+
static int
ut_setup_inline_macsec(void)
{
@@ -1359,6 +1681,30 @@ static struct unit_test_suite inline_macsec_testsuite = {
"MACsec Encap and decap with VLAN",
ut_setup_inline_macsec, ut_teardown_inline_macsec,
test_inline_macsec_with_vlan),
+ TEST_CASE_NAMED_ST(
+ "MACsec packet drop",
+ ut_setup_inline_macsec, ut_teardown_inline_macsec,
+ test_inline_macsec_pkt_drop),
+ TEST_CASE_NAMED_ST(
+ "MACsec untagged Rx",
+ ut_setup_inline_macsec, ut_teardown_inline_macsec,
+ test_inline_macsec_untagged_rx),
+ TEST_CASE_NAMED_ST(
+ "MACsec bad tag Rx",
+ ut_setup_inline_macsec, ut_teardown_inline_macsec,
+ test_inline_macsec_bad_tag_rx),
+ TEST_CASE_NAMED_ST(
+ "MACsec SA not in use",
+ ut_setup_inline_macsec, ut_teardown_inline_macsec,
+ test_inline_macsec_sa_not_in_use),
+ TEST_CASE_NAMED_ST(
+ "MACsec out pkts untagged",
+ ut_setup_inline_macsec, ut_teardown_inline_macsec,
+ test_inline_macsec_out_pkts_untagged),
+ TEST_CASE_NAMED_ST(
+ "MACsec out pkts too long",
+ ut_setup_inline_macsec, ut_teardown_inline_macsec,
+ test_inline_macsec_out_pkts_toolong),
TEST_CASES_END() /**< NULL terminate unit test array */
},
diff --git a/app/test/test_security_inline_macsec_vectors.h b/app/test/test_security_inline_macsec_vectors.h
index 4bcb82783c..2b200c1d89 100644
--- a/app/test/test_security_inline_macsec_vectors.h
+++ b/app/test/test_security_inline_macsec_vectors.h
@@ -2077,6 +2077,481 @@ static const struct mcs_test_vector list_mcs_integrity_vectors[] = {
},
};
+static const struct mcs_test_vector list_mcs_err_cipher_vectors[] = {
+/* gcm_128_64B_cipher */
+{
+ .test_idx = 0,
+ .alg = RTE_SECURITY_MACSEC_ALG_GCM_128,
+ .ssci = 0x0,
+ .salt = {0},
+ .sa_key = {
+ .data = {
+ 0x07, 0x1B, 0x11, 0x3B, 0x0C, 0xA7, 0x43, 0xFE,
+ 0xCC, 0xCF, 0x3D, 0x05, 0x1F, 0x73, 0x73, 0x82
+ },
+ .len = 16,
+ },
+ .plain_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* User Data */
+ 0x08, 0x00, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14,
+ 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C,
+ 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24,
+ 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C,
+ 0x2D, 0x2E, 0x2F, 0x30, 0x31, 0x32, 0x33, 0x34,
+ 0x35, 0x36, 0x37, 0x38, 0x39, 0x40, 0x41, 0x42,
+ 0x43, 0x44, 0x45, 0x46,
+ },
+ .len = 64,
+ },
+ .secure_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* MACsec EtherType */
+ 0x88, 0xE5,
+ /* TCI and AN */
+ 0x2C,
+ /* SL */
+ 0x0,
+ /* PN */
+ 0x0, 0x0, 0x0, 0x2,
+ /* SCI */
+ 0xFE, 0x2F, 0xCD, 0x14, 0x24, 0x1B, 0x88, 0x2C,
+ /* Secure Data */
+ 0x38, 0x38, 0x97, 0x44, 0xA2, 0x6D, 0x71, 0x3D,
+ 0x14, 0x27, 0xC7, 0x3E, 0x02, 0x96, 0x81, 0xAD,
+ 0x47, 0x82, 0x2A, 0xCF, 0x19, 0x79, 0x12, 0x49,
+ 0x0F, 0x93, 0x5A, 0x32, 0x43, 0x79, 0xEF, 0x9D,
+ 0x70, 0xF8, 0xA9, 0xBE, 0x3D, 0x00, 0x5D, 0x22,
+ 0xDA, 0x87, 0x3D, 0xC1, 0xBE, 0x1B, 0x13, 0xD9,
+ 0x99, 0xDB, 0xF1, 0xC8,
+ /* ICV */
+ 0x4B, 0xC4, 0xF8, 0xC6, 0x09, 0x78, 0xB9, 0xBB,
+ 0x5D, 0xC0, 0x04, 0xF3, 0x20, 0x7D, 0x14, 0x87,
+ },
+ .len = 96,
+ }
+}
+};
+
+static const struct mcs_test_vector list_mcs_untagged_cipher_vectors[] = {
+{
+ .test_idx = 0,
+ .alg = RTE_SECURITY_MACSEC_ALG_GCM_128,
+ .ssci = 0x0,
+ .salt = {0},
+ .sa_key = {
+ .data = {
+ 0x07, 0x1B, 0x11, 0x3B, 0x0C, 0xA7, 0x43, 0xFE,
+ 0xCC, 0xCF, 0x3D, 0x05, 0x1F, 0x73, 0x73, 0x82
+ },
+ .len = 16,
+ },
+ .plain_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* User Data */
+ 0x08, 0x00, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14,
+ 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C,
+ 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24,
+ 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C,
+ 0x2D, 0x2E, 0x2F, 0x30, 0x31, 0x32, 0x33, 0x34,
+ 0x35, 0x36, 0x37, 0x38, 0x39, 0x40, 0x41, 0x42,
+ 0x43, 0x44, 0x45, 0x46,
+ },
+ .len = 64,
+ },
+ .secure_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* Wrong MACsec EtherType */
+ 0x88, 0xD7,
+ /* TCI and AN */
+ 0x2C,
+ /* SL */
+ 0x0,
+ /* PN */
+ 0x0, 0x0, 0x0, 0x2,
+ /* SCI */
+ 0xFE, 0x2F, 0xCD, 0x14, 0x24, 0x1B, 0x88, 0x2C,
+ /* Secure Data */
+ 0x39, 0x38, 0x97, 0x44, 0xA2, 0x6D, 0x71, 0x3D,
+ 0x14, 0x27, 0xC7, 0x3E, 0x02, 0x96, 0x81, 0xAD,
+ 0x47, 0x82, 0x2A, 0xCF, 0x19, 0x79, 0x12, 0x49,
+ 0x0F, 0x93, 0x5A, 0x32, 0x43, 0x79, 0xEF, 0x9D,
+ 0x70, 0xF8, 0xA9, 0xBE, 0x3D, 0x00, 0x5D, 0x22,
+ 0xDA, 0x87, 0x3D, 0xC1, 0xBE, 0x1B, 0x13, 0xD9,
+ 0x99, 0xDB, 0xF1, 0xC8,
+ /* ICV */
+ 0x4B, 0xC4, 0xF8, 0xC6, 0x09, 0x78, 0xB9, 0xBB,
+ 0x5D, 0xC0, 0x04, 0xF3, 0x20, 0x7D, 0x14, 0x87,
+ },
+ .len = 96,
+ },
+},
+};
+
+static const struct mcs_test_vector list_mcs_bad_tag_vectors[] = {
+{
+ .test_idx = 0,
+ .alg = RTE_SECURITY_MACSEC_ALG_GCM_128,
+ .ssci = 0x0,
+ .salt = {0},
+ .sa_key = {
+ .data = {
+ 0x07, 0x1B, 0x11, 0x3B, 0x0C, 0xA7, 0x43, 0xFE,
+ 0xCC, 0xCF, 0x3D, 0x05, 0x1F, 0x73, 0x73, 0x82
+ },
+ .len = 16,
+ },
+ .plain_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* User Data */
+ 0x08, 0x00, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14,
+ 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C,
+ 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24,
+ 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C,
+ 0x2D, 0x2E, 0x2F, 0x30, 0x31, 0x32, 0x33, 0x34,
+ 0x35, 0x36, 0x37, 0x38, 0x39, 0x40, 0x41, 0x42,
+ 0x43, 0x44, 0x45, 0x46,
+ },
+ .len = 64,
+ },
+ .secure_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* MACsec EtherType */
+ 0x88, 0xE5,
+ /* TCI{V = 1} and AN */
+ 0xAC,
+ /* SL */
+ 0x0,
+ /* PN */
+ 0x0, 0x0, 0x0, 0x2,
+ /* SCI */
+ 0xFE, 0x2F, 0xCD, 0x14, 0x24, 0x1B, 0x88, 0x2C,
+ /* Secure Data */
+ 0x39, 0x38, 0x97, 0x44, 0xA2, 0x6D, 0x71, 0x3D,
+ 0x14, 0x27, 0xC7, 0x3E, 0x02, 0x96, 0x81, 0xAD,
+ 0x47, 0x82, 0x2A, 0xCF, 0x19, 0x79, 0x12, 0x49,
+ 0x0F, 0x93, 0x5A, 0x32, 0x43, 0x79, 0xEF, 0x9D,
+ 0x70, 0xF8, 0xA9, 0xBE, 0x3D, 0x00, 0x5D, 0x22,
+ 0xDA, 0x87, 0x3D, 0xC1, 0xBE, 0x1B, 0x13, 0xD9,
+ 0x99, 0xDB, 0xF1, 0xC8,
+ /* ICV */
+ 0x4B, 0xC4, 0xF8, 0xC6, 0x09, 0x78, 0xB9, 0xBB,
+ 0x5D, 0xC0, 0x04, 0xF3, 0x20, 0x7D, 0x14, 0x87,
+ },
+ .len = 96,
+ },
+},
+{
+ .test_idx = 1,
+ .alg = RTE_SECURITY_MACSEC_ALG_GCM_128,
+ .ssci = 0x0,
+ .salt = {0},
+ .sa_key = {
+ .data = {
+ 0x07, 0x1B, 0x11, 0x3B, 0x0C, 0xA7, 0x43, 0xFE,
+ 0xCC, 0xCF, 0x3D, 0x05, 0x1F, 0x73, 0x73, 0x82
+ },
+ .len = 16,
+ },
+ .plain_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* User Data */
+ 0x08, 0x00, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14,
+ 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C,
+ 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24,
+ 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C,
+ 0x2D, 0x2E, 0x2F, 0x30, 0x31, 0x32, 0x33, 0x34,
+ 0x35, 0x36, 0x37, 0x38, 0x39, 0x40, 0x41, 0x42,
+ 0x43, 0x44, 0x45, 0x46,
+ },
+ .len = 64,
+ },
+ .secure_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* MACsec EtherType */
+ 0x88, 0xE5,
+ /* TCI{E,C = 2'b01} and AN */
+ 0x24,
+ /* SL */
+ 0x0,
+ /* PN */
+ 0x0, 0x0, 0x0, 0x2,
+ /* SCI */
+ 0xFE, 0x2F, 0xCD, 0x14, 0x24, 0x1B, 0x88, 0x2C,
+ /* Secure Data */
+ 0x39, 0x38, 0x97, 0x44, 0xA2, 0x6D, 0x71, 0x3D,
+ 0x14, 0x27, 0xC7, 0x3E, 0x02, 0x96, 0x81, 0xAD,
+ 0x47, 0x82, 0x2A, 0xCF, 0x19, 0x79, 0x12, 0x49,
+ 0x0F, 0x93, 0x5A, 0x32, 0x43, 0x79, 0xEF, 0x9D,
+ 0x70, 0xF8, 0xA9, 0xBE, 0x3D, 0x00, 0x5D, 0x22,
+ 0xDA, 0x87, 0x3D, 0xC1, 0xBE, 0x1B, 0x13, 0xD9,
+ 0x99, 0xDB, 0xF1, 0xC8,
+ /* ICV */
+ 0x4B, 0xC4, 0xF8, 0xC6, 0x09, 0x78, 0xB9, 0xBB,
+ 0x5D, 0xC0, 0x04, 0xF3, 0x20, 0x7D, 0x14, 0x87,
+ },
+ .len = 96,
+ },
+},
+{
+ .test_idx = 2,
+ .alg = RTE_SECURITY_MACSEC_ALG_GCM_128,
+ .ssci = 0x0,
+ .salt = {0},
+ .sa_key = {
+ .data = {
+ 0x07, 0x1B, 0x11, 0x3B, 0x0C, 0xA7, 0x43, 0xFE,
+ 0xCC, 0xCF, 0x3D, 0x05, 0x1F, 0x73, 0x73, 0x82
+ },
+ .len = 16,
+ },
+ .plain_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* User Data */
+ 0x08, 0x00, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14,
+ 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C,
+ 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24,
+ 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C,
+ 0x2D, 0x2E, 0x2F, 0x30, 0x31, 0x32, 0x33, 0x34,
+ 0x35, 0x36, 0x37, 0x38, 0x39, 0x40, 0x41, 0x42,
+ 0x43, 0x44, 0x45, 0x46,
+ },
+ .len = 64,
+ },
+ .secure_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* MACsec EtherType */
+ 0x88, 0xE5,
+ /* TCI{ES = 1 && SC = 1} and AN */
+ 0x6C,
+ /* SL */
+ 0x0,
+ /* PN */
+ 0x0, 0x0, 0x0, 0x2,
+ /* SCI */
+ 0xFE, 0x2F, 0xCD, 0x14, 0x24, 0x1B, 0x88, 0x2C,
+ /* Secure Data */
+ 0x39, 0x38, 0x97, 0x44, 0xA2, 0x6D, 0x71, 0x3D,
+ 0x14, 0x27, 0xC7, 0x3E, 0x02, 0x96, 0x81, 0xAD,
+ 0x47, 0x82, 0x2A, 0xCF, 0x19, 0x79, 0x12, 0x49,
+ 0x0F, 0x93, 0x5A, 0x32, 0x43, 0x79, 0xEF, 0x9D,
+ 0x70, 0xF8, 0xA9, 0xBE, 0x3D, 0x00, 0x5D, 0x22,
+ 0xDA, 0x87, 0x3D, 0xC1, 0xBE, 0x1B, 0x13, 0xD9,
+ 0x99, 0xDB, 0xF1, 0xC8,
+ /* ICV */
+ 0x4B, 0xC4, 0xF8, 0xC6, 0x09, 0x78, 0xB9, 0xBB,
+ 0x5D, 0xC0, 0x04, 0xF3, 0x20, 0x7D, 0x14, 0x87,
+ },
+ .len = 96,
+ },
+},
+{
+ .test_idx = 3,
+ .alg = RTE_SECURITY_MACSEC_ALG_GCM_128,
+ .ssci = 0x0,
+ .salt = {0},
+ .sa_key = {
+ .data = {
+ 0x07, 0x1B, 0x11, 0x3B, 0x0C, 0xA7, 0x43, 0xFE,
+ 0xCC, 0xCF, 0x3D, 0x05, 0x1F, 0x73, 0x73, 0x82
+ },
+ .len = 16,
+ },
+ .plain_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* User Data */
+ 0x08, 0x00, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14,
+ 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C,
+ 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24,
+ 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C,
+ 0x2D, 0x2E, 0x2F, 0x30, 0x31, 0x32, 0x33, 0x34,
+ 0x35, 0x36, 0x37, 0x38, 0x39, 0x40, 0x41, 0x42,
+ 0x43, 0x44, 0x45, 0x46,
+ },
+ .len = 64,
+ },
+ .secure_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* MACsec EtherType */
+ 0x88, 0xE5,
+ /* TCI{SCB = 1 && SC = 1} and AN */
+ 0x3C,
+ /* SL */
+ 0x0,
+ /* PN */
+ 0x0, 0x0, 0x0, 0x2,
+ /* SCI */
+ 0xFE, 0x2F, 0xCD, 0x14, 0x24, 0x1B, 0x88, 0x2C,
+ /* Secure Data */
+ 0x39, 0x38, 0x97, 0x44, 0xA2, 0x6D, 0x71, 0x3D,
+ 0x14, 0x27, 0xC7, 0x3E, 0x02, 0x96, 0x81, 0xAD,
+ 0x47, 0x82, 0x2A, 0xCF, 0x19, 0x79, 0x12, 0x49,
+ 0x0F, 0x93, 0x5A, 0x32, 0x43, 0x79, 0xEF, 0x9D,
+ 0x70, 0xF8, 0xA9, 0xBE, 0x3D, 0x00, 0x5D, 0x22,
+ 0xDA, 0x87, 0x3D, 0xC1, 0xBE, 0x1B, 0x13, 0xD9,
+ 0x99, 0xDB, 0xF1, 0xC8,
+ /* ICV */
+ 0x4B, 0xC4, 0xF8, 0xC6, 0x09, 0x78, 0xB9, 0xBB,
+ 0x5D, 0xC0, 0x04, 0xF3, 0x20, 0x7D, 0x14, 0x87,
+ },
+ .len = 96,
+ },
+},
+{
+ .test_idx = 4,
+ .alg = RTE_SECURITY_MACSEC_ALG_GCM_128,
+ .xpn = 0x0, /* Most significant 32 bits */
+ .ssci = 0x0,
+ .salt = {0},
+ .sa_key = {
+ .data = {
+ 0x07, 0x1B, 0x11, 0x3B, 0x0C, 0xA7, 0x43, 0xFE,
+ 0xCC, 0xCF, 0x3D, 0x05, 0x1F, 0x73, 0x73, 0x82
+ },
+ .len = 16,
+ },
+ .plain_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* User Data */
+ 0x08, 0x00, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14,
+ 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C,
+ 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24,
+ 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C,
+ 0x2D, 0x2E, 0x2F, 0x30, 0x31, 0x32, 0x33, 0x34,
+ 0x35, 0x36, 0x37, 0x38, 0x39, 0x40, 0x41, 0x42,
+ 0x43, 0x44, 0x45, 0x46,
+ },
+ .len = 64,
+ },
+ .secure_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* MACsec EtherType */
+ 0x88, 0xE5,
+ /* TCI and AN */
+ 0x2C,
+ /* SL */
+ 0x0,
+ /* PN = 0 */
+ 0x0, 0x0, 0x0, 0x0,
+ /* SCI */
+ 0xFE, 0x2F, 0xCD, 0x14, 0x24, 0x1B, 0x88, 0x2C,
+ /* Secure Data */
+ 0x39, 0x38, 0x97, 0x44, 0xA2, 0x6D, 0x71, 0x3D,
+ 0x14, 0x27, 0xC7, 0x3E, 0x02, 0x96, 0x81, 0xAD,
+ 0x47, 0x82, 0x2A, 0xCF, 0x19, 0x79, 0x12, 0x49,
+ 0x0F, 0x93, 0x5A, 0x32, 0x43, 0x79, 0xEF, 0x9D,
+ 0x70, 0xF8, 0xA9, 0xBE, 0x3D, 0x00, 0x5D, 0x22,
+ 0xDA, 0x87, 0x3D, 0xC1, 0xBE, 0x1B, 0x13, 0xD9,
+ 0x99, 0xDB, 0xF1, 0xC8,
+ /* ICV */
+ 0x4B, 0xC4, 0xF8, 0xC6, 0x09, 0x78, 0xB9, 0xBB,
+ 0x5D, 0xC0, 0x04, 0xF3, 0x20, 0x7D, 0x14, 0x87,
+ },
+ .len = 96,
+ },
+},
+{
+ .test_idx = 5,
+ .alg = RTE_SECURITY_MACSEC_ALG_GCM_128,
+ .ssci = 0x0,
+ .salt = {0},
+ .sa_key = {
+ .data = {
+ 0x07, 0x1B, 0x11, 0x3B, 0x0C, 0xA7, 0x43, 0xFE,
+ 0xCC, 0xCF, 0x3D, 0x05, 0x1F, 0x73, 0x73, 0x82
+ },
+ .len = 16,
+ },
+ .plain_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* User Data */
+ 0x08, 0x00, 0x0F, 0x10, 0x11, 0x12, 0x13, 0x14,
+ 0x15, 0x16, 0x17, 0x18, 0x19, 0x1A, 0x1B, 0x1C,
+ 0x1D, 0x1E, 0x1F, 0x20, 0x21, 0x22, 0x23, 0x24,
+ 0x25, 0x26, 0x27, 0x28, 0x29, 0x2A, 0x2B, 0x2C,
+ 0x2D, 0x2E, 0x2F, 0x30, 0x31, 0x32, 0x33, 0x34,
+ 0x35, 0x36, 0x37, 0x38, 0x39, 0x40, 0x41, 0x42,
+ 0x43, 0x44, 0x45, 0x46,
+ },
+ .len = 64,
+ },
+ .secure_pkt = {
+ .data = {/* MAC DA */
+ 0xE2, 0x01, 0x06, 0xD7, 0xCD, 0x0D,
+ /* MAC SA */
+ 0xF0, 0x76, 0x1E, 0x8D, 0xCD, 0x3D,
+ /* MACsec EtherType */
+ 0x88, 0xE5,
+ /* TCI and AN */
+ 0x2C,
+ /* SL */
+ 0x80,
+ /* PN = 0 */
+ 0x0, 0x0, 0x0, 0x2,
+ /* SCI */
+ 0xFE, 0x2F, 0xCD, 0x14, 0x24, 0x1B, 0x88, 0x2C,
+ /* Secure Data */
+ 0x39, 0x38, 0x97, 0x44, 0xA2, 0x6D, 0x71, 0x3D,
+ 0x14, 0x27, 0xC7, 0x3E, 0x02, 0x96, 0x81, 0xAD,
+ 0x47, 0x82, 0x2A, 0xCF, 0x19, 0x79, 0x12, 0x49,
+ 0x0F, 0x93, 0x5A, 0x32, 0x43, 0x79, 0xEF, 0x9D,
+ 0x70, 0xF8, 0xA9, 0xBE, 0x3D, 0x00, 0x5D, 0x22,
+ 0xDA, 0x87, 0x3D, 0xC1, 0xBE, 0x1B, 0x13, 0xD9,
+ 0x99, 0xDB, 0xF1, 0xC8,
+ /* ICV */
+ 0x4B, 0xC4, 0xF8, 0xC6, 0x09, 0x78, 0xB9, 0xBB,
+ 0x5D, 0xC0, 0x04, 0xF3, 0x20, 0x7D, 0x14, 0x87,
+ },
+ .len = 96,
+ },
+},
+};
+
#define MCS_MULTI_FLOW_TD_KEY_SZ 16
#define MCS_MULTI_FLOW_TD_PLAIN_DATA_SZ 42
#define MCS_MULTI_FLOW_TD_SECURE_DATA_SZ 66
--
2.25.1
next prev parent reply other threads:[~2023-06-08 6:56 UTC|newest]
Thread overview: 166+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-08-14 18:46 [PATCH 0/3] security: support MACsec Akhil Goyal
2022-08-14 18:46 ` [PATCH 1/3] net: add MACsec header Akhil Goyal
2022-09-22 15:29 ` Akhil Goyal
2022-09-26 12:51 ` Olivier Matz
2022-09-26 13:41 ` [EXT] " Akhil Goyal
2022-09-27 8:36 ` Akhil Goyal
2022-08-14 18:46 ` [PATCH 2/3] security: support MACsec Akhil Goyal
2022-09-22 15:37 ` Akhil Goyal
2022-08-14 18:46 ` [PATCH 3/3] ethdev: add MACsec flow item Akhil Goyal
2022-08-15 12:49 ` Ori Kam
2022-09-28 12:22 ` [PATCH v2 0/3] security: support MACsec Akhil Goyal
2022-09-28 12:22 ` [PATCH v2 1/3] net: add MACsec header Akhil Goyal
2022-09-28 13:04 ` Olivier Matz
2022-09-28 13:44 ` Thomas Monjalon
2022-09-28 14:23 ` Ori Kam
2022-09-28 12:22 ` [PATCH v2 2/3] ethdev: add MACsec flow item Akhil Goyal
2022-09-28 12:22 ` [PATCH v2 3/3] security: support MACsec Akhil Goyal
2022-09-28 12:45 ` [PATCH 0/5] Support and test inline MACsec for cnxk Akhil Goyal
2022-09-28 12:45 ` [PATCH 1/5] common/cnxk: add ROC APIs for MACsec Akhil Goyal
2022-09-28 12:45 ` [PATCH 2/5] common/cnxk: derive hash key " Akhil Goyal
2022-09-28 12:45 ` [PATCH 3/5] net/cnxk: support MACsec Akhil Goyal
2022-09-28 12:45 ` [PATCH 4/5] test/security: add inline MACsec cases Akhil Goyal
2023-05-23 19:49 ` [PATCH 00/13] Add MACsec unit test cases Akhil Goyal
2023-05-23 19:49 ` [PATCH 01/13] security: add direction in SA/SC configuration Akhil Goyal
2023-05-23 19:49 ` [PATCH 02/13] security: add MACsec packet number threshold Akhil Goyal
2023-05-23 21:29 ` Stephen Hemminger
2023-05-24 7:12 ` [EXT] " Akhil Goyal
2023-05-24 8:09 ` Akhil Goyal
2023-05-23 19:49 ` [PATCH 03/13] test/security: add inline MACsec cases Akhil Goyal
2023-05-23 19:49 ` [PATCH 04/13] test/security: add MACsec integrity cases Akhil Goyal
2023-05-23 19:49 ` [PATCH 05/13] test/security: verify multi flow MACsec Akhil Goyal
2023-05-23 19:49 ` [PATCH 06/13] test/security: add MACsec VLAN cases Akhil Goyal
2023-05-23 19:49 ` [PATCH 07/13] test/security: add MACsec negative cases Akhil Goyal
2023-05-23 19:49 ` [PATCH 08/13] test/security: verify MACsec stats Akhil Goyal
2023-05-23 19:49 ` [PATCH 09/13] test/security: verify MACsec interrupts Akhil Goyal
2023-05-23 19:49 ` [PATCH 10/13] test/security: verify MACsec Tx HW rekey Akhil Goyal
2023-05-23 19:49 ` [PATCH 11/13] test/security: verify MACsec Rx rekey Akhil Goyal
2023-05-23 19:49 ` [PATCH 12/13] test/security: verify MACsec anti replay Akhil Goyal
2023-05-23 19:49 ` [PATCH 13/13] test/security: remove no MACsec support case Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 00/13] Add MACsec unit test cases Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 01/13] security: add direction in SA/SC configuration Akhil Goyal
2023-06-07 15:21 ` Akhil Goyal
2023-06-07 19:49 ` David Marchand
2023-06-08 6:58 ` [EXT] " Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 02/13] security: add MACsec packet number threshold Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 03/13] test/security: add inline MACsec cases Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 04/13] test/security: add MACsec integrity cases Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 05/13] test/security: verify multi flow MACsec Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 06/13] test/security: add MACsec VLAN cases Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 07/13] test/security: add MACsec negative cases Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 08/13] test/security: verify MACsec stats Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 09/13] test/security: verify MACsec interrupts Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 10/13] test/security: verify MACsec Tx HW rekey Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 11/13] test/security: verify MACsec Rx rekey Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 12/13] test/security: verify MACsec anti replay Akhil Goyal
2023-06-07 15:19 ` [PATCH v2 13/13] test/security: remove no MACsec support case Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 00/13] Add MACsec unit test cases Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 01/13] security: add direction in SA/SC configuration Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 02/13] security: add MACsec packet number threshold Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 03/13] test/security: add inline MACsec cases Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 04/13] test/security: add MACsec integrity cases Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 05/13] test/security: verify multi flow MACsec Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 06/13] test/security: add MACsec VLAN cases Akhil Goyal
2023-06-08 6:54 ` Akhil Goyal [this message]
2023-06-08 6:54 ` [PATCH v3 08/13] test/security: verify MACsec stats Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 09/13] test/security: verify MACsec interrupts Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 10/13] test/security: verify MACsec Tx HW rekey Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 11/13] test/security: verify MACsec Rx rekey Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 12/13] test/security: verify MACsec anti replay Akhil Goyal
2023-06-08 6:54 ` [PATCH v3 13/13] test/security: remove no MACsec support case Akhil Goyal
2023-06-08 17:19 ` [PATCH v3 00/13] Add MACsec unit test cases Akhil Goyal
2022-09-28 12:45 ` [PATCH 5/5] test/security: add more MACsec cases Akhil Goyal
2023-05-23 20:03 ` [PATCH 00/15] net/cnxk: add MACsec support Akhil Goyal
2023-05-23 20:03 ` [PATCH 01/15] common/cnxk: add ROC MACsec initialization Akhil Goyal
2023-05-26 9:29 ` Jerin Jacob
2023-05-23 20:03 ` [PATCH 02/15] common/cnxk: add MACsec SA configuration Akhil Goyal
2023-05-26 10:16 ` Jerin Jacob
2023-05-23 20:03 ` [PATCH 03/15] common/cnxk: add MACsec SC configuration APIs Akhil Goyal
2023-05-23 20:03 ` [PATCH 04/15] common/cnxk: add MACsec secy and flow configuration Akhil Goyal
2023-05-23 20:03 ` [PATCH 05/15] common/cnxk: add MACsec PN and LMAC mode configuration Akhil Goyal
2023-05-26 10:20 ` Jerin Jacob
2023-05-23 20:03 ` [PATCH 06/15] common/cnxk: add MACsec stats Akhil Goyal
2023-05-23 20:03 ` [PATCH 07/15] common/cnxk: add MACsec interrupt APIs Akhil Goyal
2023-05-23 20:03 ` [PATCH 08/15] common/cnxk: add MACsec port configuration Akhil Goyal
2023-05-23 20:03 ` [PATCH 09/15] common/cnxk: add MACsec control " Akhil Goyal
2023-05-26 10:23 ` Jerin Jacob
2023-05-23 20:03 ` [PATCH 10/15] common/cnxk: add MACsec FIPS mbox Akhil Goyal
2023-05-23 20:03 ` [PATCH 11/15] common/cnxk: derive hash key for MACsec Akhil Goyal
2023-05-23 20:03 ` [PATCH 12/15] net/cnxk: add MACsec initialization Akhil Goyal
2023-05-23 20:03 ` [PATCH 13/15] net/cnxk: create/destroy MACsec SC/SA Akhil Goyal
2023-05-23 20:04 ` [PATCH 14/15] net/cnxk: add MACsec session and flow configuration Akhil Goyal
2023-05-23 20:04 ` [PATCH 15/15] net/cnxk: add MACsec stats Akhil Goyal
2023-06-13 9:46 ` Jerin Jacob
2023-06-07 15:28 ` [PATCH v2 00/15] net/cnxk: add MACsec support Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 01/15] common/cnxk: add ROC MACsec initialization Akhil Goyal
2023-06-12 15:51 ` Jerin Jacob
2023-06-07 15:28 ` [PATCH v2 02/15] common/cnxk: add MACsec SA configuration Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 03/15] common/cnxk: add MACsec SC configuration APIs Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 04/15] common/cnxk: add MACsec secy and flow configuration Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 05/15] common/cnxk: add MACsec PN and LMAC mode configuration Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 06/15] common/cnxk: add MACsec stats Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 07/15] common/cnxk: add MACsec interrupt APIs Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 08/15] common/cnxk: add MACsec port configuration Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 09/15] common/cnxk: add MACsec control " Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 10/15] common/cnxk: add MACsec FIPS mbox Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 11/15] common/cnxk: derive hash key for MACsec Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 12/15] net/cnxk: add MACsec initialization Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 13/15] net/cnxk: create/destroy MACsec SC/SA Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 14/15] net/cnxk: add MACsec session and flow configuration Akhil Goyal
2023-06-07 15:28 ` [PATCH v2 15/15] net/cnxk: add MACsec stats Akhil Goyal
2023-06-13 7:15 ` [PATCH v3 00/15] net/cnxk: add MACsec support Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 01/15] common/cnxk: add ROC MACsec initialization Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 02/15] common/cnxk: add MACsec SA configuration Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 03/15] common/cnxk: add MACsec SC configuration APIs Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 04/15] common/cnxk: add MACsec secy and flow configuration Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 05/15] common/cnxk: add MACsec PN and LMAC mode configuration Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 06/15] common/cnxk: add MACsec stats Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 07/15] common/cnxk: add MACsec interrupt APIs Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 08/15] common/cnxk: add MACsec port configuration Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 09/15] common/cnxk: add MACsec control " Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 10/15] common/cnxk: add MACsec FIPS mbox Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 11/15] common/cnxk: derive hash key for MACsec Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 12/15] net/cnxk: add MACsec initialization Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 13/15] net/cnxk: create/destroy MACsec SC/SA Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 14/15] net/cnxk: add MACsec session and flow configuration Akhil Goyal
2023-06-13 7:16 ` [PATCH v3 15/15] net/cnxk: add MACsec stats Akhil Goyal
2023-06-13 10:19 ` [PATCH v4 00/15] net/cnxk: add MACsec support Akhil Goyal
2023-06-13 10:19 ` [PATCH v4 01/15] common/cnxk: add ROC MACsec initialization Akhil Goyal
2023-06-13 10:19 ` [PATCH v4 02/15] common/cnxk: add MACsec SA configuration Akhil Goyal
2023-06-13 10:19 ` [PATCH v4 03/15] common/cnxk: add MACsec SC configuration APIs Akhil Goyal
2023-06-13 10:19 ` [PATCH v4 04/15] common/cnxk: add MACsec secy and flow configuration Akhil Goyal
2023-06-13 10:19 ` [PATCH v4 05/15] common/cnxk: add MACsec PN and LMAC mode configuration Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 06/15] common/cnxk: add MACsec stats Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 07/15] common/cnxk: add MACsec interrupt APIs Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 08/15] common/cnxk: add MACsec port configuration Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 09/15] common/cnxk: add MACsec control " Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 10/15] common/cnxk: add MACsec FIPS mbox Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 11/15] common/cnxk: derive hash key for MACsec Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 12/15] net/cnxk: add MACsec initialization Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 13/15] net/cnxk: create/destroy MACsec SC/SA Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 14/15] net/cnxk: add MACsec session and flow configuration Akhil Goyal
2023-06-13 10:20 ` [PATCH v4 15/15] net/cnxk: add MACsec stats Akhil Goyal
2023-06-13 15:26 ` Jerin Jacob
2023-06-14 13:08 ` [PATCH v5 00/15] net/cnxk: add MACsec support Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 01/15] common/cnxk: add ROC MACsec initialization Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 02/15] common/cnxk: add MACsec SA configuration Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 03/15] common/cnxk: add MACsec SC configuration APIs Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 04/15] common/cnxk: add MACsec secy and flow configuration Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 05/15] common/cnxk: add MACsec PN and LMAC mode configuration Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 06/15] common/cnxk: add MACsec stats Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 07/15] common/cnxk: add MACsec interrupt APIs Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 08/15] common/cnxk: add MACsec port configuration Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 09/15] common/cnxk: add MACsec control " Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 10/15] common/cnxk: add MACsec FIPS mbox Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 11/15] common/cnxk: derive hash key for MACsec Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 12/15] net/cnxk: add MACsec initialization Akhil Goyal
2023-06-14 13:08 ` [PATCH v5 13/15] net/cnxk: create/destroy MACsec SC/SA Akhil Goyal
2023-06-14 13:09 ` [PATCH v5 14/15] net/cnxk: add MACsec session and flow configuration Akhil Goyal
2023-06-14 13:09 ` [PATCH v5 15/15] net/cnxk: add MACsec stats Akhil Goyal
2023-06-15 7:03 ` Jerin Jacob
2022-09-28 12:52 ` [PATCH v2 0/3] security: support MACsec Akhil Goyal
2022-09-28 18:24 ` [PATCH v3 " Akhil Goyal
2022-09-28 18:24 ` [PATCH v3 1/3] net: add MACsec header Akhil Goyal
2022-09-28 18:24 ` [PATCH v3 2/3] ethdev: add MACsec flow item Akhil Goyal
2022-09-28 18:24 ` [PATCH v3 3/3] security: support MACsec Akhil Goyal
2022-09-28 20:04 ` [PATCH v3 0/3] " Thomas Monjalon
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20230608065458.333670-8-gakhil@marvell.com \
--to=gakhil@marvell.com \
--cc=adwivedi@marvell.com \
--cc=andrew.rybchenko@oktetlabs.ru \
--cc=david.marchand@redhat.com \
--cc=dev@dpdk.org \
--cc=ferruh.yigit@amd.com \
--cc=hemant.agrawal@nxp.com \
--cc=jerinj@marvell.com \
--cc=olivier.matz@6wind.com \
--cc=orika@nvidia.com \
--cc=thomas@monjalon.net \
--cc=vattunuru@marvell.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).