From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <dts-bounces@dpdk.org>
Received: from dpdk.org (dpdk.org [92.243.14.124])
	by dpdk.space (Postfix) with ESMTP id E650FA00E6
	for <public@inbox.dpdk.org>; Mon, 15 Apr 2019 23:04:32 +0200 (CEST)
Received: from [92.243.14.124] (localhost [127.0.0.1])
	by dpdk.org (Postfix) with ESMTP id CD4CF1B3FD;
	Mon, 15 Apr 2019 23:04:32 +0200 (CEST)
Received: from mga07.intel.com (mga07.intel.com [134.134.136.100])
 by dpdk.org (Postfix) with ESMTP id 56E391B3EC
 for <dts@dpdk.org>; Mon, 15 Apr 2019 23:04:30 +0200 (CEST)
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from fmsmga004.fm.intel.com ([10.253.24.48])
 by orsmga105.jf.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384;
 15 Apr 2019 14:04:29 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.60,355,1549958400"; d="scan'208";a="162167514"
Received: from fmsmsx107.amr.corp.intel.com ([10.18.124.205])
 by fmsmga004.fm.intel.com with ESMTP; 15 Apr 2019 14:04:29 -0700
Received: from fmsmsx161.amr.corp.intel.com (10.18.125.9) by
 fmsmsx107.amr.corp.intel.com (10.18.124.205) with Microsoft SMTP Server (TLS)
 id 14.3.408.0; Mon, 15 Apr 2019 14:04:29 -0700
Received: from shsmsx151.ccr.corp.intel.com (10.239.6.50) by
 FMSMSX161.amr.corp.intel.com (10.18.125.9) with Microsoft SMTP Server (TLS)
 id 14.3.408.0; Mon, 15 Apr 2019 14:04:28 -0700
Received: from shsmsx101.ccr.corp.intel.com ([169.254.1.164]) by
 SHSMSX151.ccr.corp.intel.com ([169.254.3.39]) with mapi id 14.03.0415.000;
 Tue, 16 Apr 2019 05:04:26 +0800
From: "Tu, Lijuan" <lijuan.tu@intel.com>
To: "Xiao, QimaiX" <qimaix.xiao@intel.com>, "dts@dpdk.org" <dts@dpdk.org>
CC: "Xiao, QimaiX" <qimaix.xiao@intel.com>
Thread-Topic: [dts] [PATCH V1] update tests/TestSuite_inline_ipsec.py for
 dpdk_19.05
Thread-Index: AQHU8EwKj0iCJicsK0eUaScy0cSn0aY9u9Eg
Date: Mon, 15 Apr 2019 21:04:25 +0000
Message-ID: <8CE3E05A3F976642AAB0F4675D0AD20E0BA624F4@SHSMSX101.ccr.corp.intel.com>
References: <1554976474-19189-1-git-send-email-qimaix.xiao@intel.com>
In-Reply-To: <1554976474-19189-1-git-send-email-qimaix.xiao@intel.com>
Accept-Language: zh-CN, en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
dlp-product: dlpe-windows
dlp-version: 11.0.600.7
dlp-reaction: no-action
x-ctpclassification: CTP_NT
x-titus-metadata-40: eyJDYXRlZ29yeUxhYmVscyI6IiIsIk1ldGFkYXRhIjp7Im5zIjoiaHR0cDpcL1wvd3d3LnRpdHVzLmNvbVwvbnNcL0ludGVsMyIsImlkIjoiMGEwZDAzZWMtYWE3Zi00MjUzLTkwMGYtMGZjNzlkMWJhODg3IiwicHJvcHMiOlt7Im4iOiJDVFBDbGFzc2lmaWNhdGlvbiIsInZhbHMiOlt7InZhbHVlIjoiQ1RQX05UIn1dfV19LCJTdWJqZWN0TGFiZWxzIjpbXSwiVE1DVmVyc2lvbiI6IjE3LjEwLjE4MDQuNDkiLCJUcnVzdGVkTGFiZWxIYXNoIjoiS1A3SGJYOCs5UnVzWDB0RnBBRnVjZFM1YjBoNnA3OGZmaldaQUgrR3kyQjdjSllHQ1BxNTNraGQ3WEh2TDExdCJ9
x-originating-ip: [10.239.127.40]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Subject: Re: [dts] [PATCH V1] update tests/TestSuite_inline_ipsec.py
	for	dpdk_19.05
X-BeenThere: dts@dpdk.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: test suite reviews and discussions <dts.dpdk.org>
List-Unsubscribe: <https://mails.dpdk.org/options/dts>,
 <mailto:dts-request@dpdk.org?subject=unsubscribe>
List-Archive: <http://mails.dpdk.org/archives/dts/>
List-Post: <mailto:dts@dpdk.org>
List-Help: <mailto:dts-request@dpdk.org?subject=help>
List-Subscribe: <https://mails.dpdk.org/listinfo/dts>,
 <mailto:dts-request@dpdk.org?subject=subscribe>
Errors-To: dts-bounces@dpdk.org
Sender: "dts" <dts-bounces@dpdk.org>

I can't catch what's your key changes, and why you changed. I found a lot o=
f useless changes .
If you want to fix some code styles, don't mix them with functional change.

Could please write a couple of sentence to describe what you changed, and w=
hy you changed them, if it's because DPDK changed, please point DPDK commit=
 set.
Thanks

Thanks.

> -----Original Message-----
> From: dts [mailto:dts-bounces@dpdk.org] On Behalf Of xiao,qimai
> Sent: Thursday, April 11, 2019 2:55 AM
> To: dts@dpdk.org
> Cc: Xiao, QimaiX <qimaix.xiao@intel.com>
> Subject: [dts] [PATCH V1] update tests/TestSuite_inline_ipsec.py for
> dpdk_19.05
>=20
> update tests/TestSuite_inline_ipsec.py to test dpdk_19.05
>=20
> Signed-off-by: xiao,qimai <qimaix.xiao@intel.com>
> ---
>  tests/TestSuite_inline_ipsec.py | 96 ++++++++++++++++++++++-----------
>  1 file changed, 64 insertions(+), 32 deletions(-)
>=20
> diff --git a/tests/TestSuite_inline_ipsec.py b/tests/TestSuite_inline_ips=
ec.py
> index 1813c08..9dcb4f4 100644
> --- a/tests/TestSuite_inline_ipsec.py
> +++ b/tests/TestSuite_inline_ipsec.py
> @@ -28,21 +28,20 @@
>  # THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
> # (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF
> THE USE  # OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
> SUCH DAMAGE.
> -
> +# -*- coding:utf-8 -*-
>=20
>  """
>  DPDK Test suite.
>  Test inline_ipsec.
>  """
>=20
> -import utils
> -import string
> -import time
> +import random
>  import re
> -import threading
> +import time
> +
> +import utils
> +from scapy.all import ESP, IP, Ether, sendp, SecurityAssociation
>  from test_case import TestCase
> -import getopt
> -from scapy.all import *
>=20
>  ETHER_STANDARD_MTU =3D 1518
>  ETHER_JUMBO_FRAME_MTU =3D 9000
> @@ -51,14 +50,14 @@ ETHER_JUMBO_FRAME_MTU =3D 9000  class
> TestInlineIpsec(TestCase):
>      """
>      This suite depend PyCryptodome,it provide authenticated encryption
> modes(GCM)
> -    my environment:asn1crypto (0.22.0), pycryptodome (3.4.7),
> pycryptodomex (3.4.7),
> -    pycryptopp
> (0.6.0.1206569328141510525648634803928199668821045408958), scapy
> (2.3.3.dev623)
> +    my environment:cryptography (1.7.2), pycryptodome (3.4.7),
> pycryptodomex (3.4.7),
> +    pycryptopp
> + (0.6.0.1206569328141510525648634803928199668821045408958), scapy
> + (2.4.2)
>      """
> +
>      def set_up_all(self):
>          """
>          Run at the start of each test suite.
>          """
> -        self.verify(self.nic in ["niantic"], "%s NIC not support" % self=
.nic)
>          self.verify(self.drivername in ["vfio-pci"], "%s drivername not =
support" %
> self.drivername)
>          self.dut_ports =3D self.dut.get_ports(self.nic)
>          self.verify(len(self.dut_ports) >=3D 2, "Insufficient ports") @@=
 -86,7 +85,7
> @@ class TestInlineIpsec(TestCase):
>=20
>          self.path =3D "./examples/ipsec-secgw/build/ipsec-secgw"
>          # add print code in IPSEC app
> -        sedcmd =3D r"""sed -i -e '/process_pkts(qconf, pkts, nb_rx,
> portid);/i\\printf("[debug]receive %hhu packet in rxqueueid=3D%hhu\\n",nb=
_rx,
> queueid);' examples/ipsec-secgw/ipsec-secgw.c"""
> +        sedcmd =3D r"""sed -i -e '/process_pkts(qconf, pkts, nb_rx,
> portid);/i\\t\t\t\tprintf("[debug]receive %hhu packet in
> rxqueueid=3D%hhu\\n",nb_rx, queueid);' examples/ipsec-secgw/ipsec-
> secgw.c"""
>          self.dut.send_expect(sedcmd, "#", 60)
>=20
>          # build sample app
> @@ -158,14 +157,15 @@ class TestInlineIpsec(TestCase):
>=20
>      def set_cfg(self, filename, cfg):
>          """
> -        open file and write cfg, scp it to dut base directory
> +        open file and write cfg, scp it to dut base directory
>          """
>          for i in cfg:
>              with open(filename, 'w') as f:
>                  f.write(cfg)
>          self.dut.session.copy_file_to(filename, self.dut.base_dir)
>=20
> -    def send_encryption_package(self, intf, paysize=3D64, do_encrypt=3DF=
alse,
> send_spi=3D5, count=3D1, inner_dst=3D'192.168.105.10', sa_src=3D'172.16.1=
.5',
> sa_dst=3D'172.16.2.5'):
> +    def send_encryption_package(self, intf, paysize=3D64, do_encrypt=3DF=
alse,
> send_spi=3D5, count=3D1,
> +                                inner_dst=3D'192.168.105.10', sa_src=3D'=
172.16.1.5',
> sa_dst=3D'172.16.2.5'):
>          """
>          prepare a packet and send
>          """
> @@ -184,6 +184,8 @@ class TestInlineIpsec(TestCase):
>=20
>          if do_encrypt =3D=3D True:
>              print "send encrypt package"
> +            print("before encrypt, the package info is like below: ")
> +            p.show()
>              e =3D sa_gcm.encrypt(p)
>          else:
>              print "send normal package"
> @@ -196,42 +198,59 @@ class TestInlineIpsec(TestCase):
>              name=3D'send_encryption_package')
>          sendp(eth_e, iface=3Dintf, count=3Dcount)
>          self.tester.destroy_session(session_send)
> +        return payload, p.src, p.dst
>=20
> -        return payload
> -
> -    def Ipsec_Encryption(self, config, file_name, txItf, rxItf, paysize=
=3D32,
> jumboframe=3D1518, do_encrypt=3DFalse, verify=3DTrue, send_spi=3D5,
> receive_spi=3D1005, count=3D1, inner_dst=3D'192.168.105.10', sa_src=3D'17=
2.16.1.5',
> sa_dst=3D'172.16.2.5'):
> +    def Ipsec_Encryption(self, config, file_name, txItf, rxItf, paysize=
=3D32,
> jumboframe=3D1518, do_encrypt=3DFalse,
> +                         verify=3DTrue, send_spi=3D5, receive_spi=3D1005=
, count=3D1,
> inner_dst=3D'192.168.105.10',
> +                         sa_src=3D'172.16.1.5', sa_dst=3D'172.16.2.5'):
>          """
>          verify Ipsec receive package
>          """
> -        cmd =3D self.path + " -l 20,21 -w %s -w %s --vdev 'crypto_null' =
--log-level 8
> --socket-mem 1024,1 -- -p 0xf -P -u 0x2 -j %s --config=3D'%s' -f %s" % (
> +        cmd =3D self.path + " -l 20,21 -w %s -w %s --vdev 'crypto_null'
> + --log-level 8 --socket-mem 1024,1024 -- -p 0xf -P -u 0x2 -j %s
> + --config=3D'%s' -f %s" % (
>              self.portpci_0, self.portpci_1, jumboframe, config, file_nam=
e)
>          self.dut.send_expect(cmd, "IPSEC", 60)
>=20
>          session_receive =3D self.tester.create_session(
>              name=3D'receive_encryption_package')
> +
>          sa_gcm =3D r"sa_gcm=3DSecurityAssociation(ESP,spi=3D%s,crypt_alg=
o=3D'AES-
> GCM',crypt_key=3D'\x2b\x7e\x15\x16\x28\xae\xd2\xa6\xab\xf7\x15\x88\x09\x
> cf\x4f\x3d\xde\xad\xbe\xef',auth_algo=3D'NULL',auth_key=3DNone,tunnel_hea=
de
> r=3DIP(src=3D'172.16.1.5',dst=3D'172.16.2.5'))" % receive_spi
>=20
>          session_receive.send_expect("scapy", ">>>", 10)
>          session_receive.send_expect(
> -            "pkts=3Dsniff(iface=3D'%s',count=3D1,timeout=3D10)" % rxItf,=
 "", 30)
> -        send_package =3D self.send_encryption_package(
> -            txItf, paysize, do_encrypt, send_spi, count, inner_dst, sa_s=
rc, sa_dst)
> +            "pkts=3Dsniff(iface=3D'%s',count=3D1,timeout=3D45)" % rxItf,=
 "",
> + 10)
>=20
> -        time.sleep(10)
> -        out =3D session_receive.send_expect("pkts", "", 30)
>          if do_encrypt:
> +            send_package =3D self.send_encryption_package(
> +                txItf, paysize, do_encrypt, send_spi, count, inner_dst, =
sa_src,
> sa_dst)
> +            time.sleep(45)
> +            session_receive.send_expect("pkts", "", 30)
>              out =3D session_receive.send_expect("pkts[0]['IP'] ", ">>>",=
 10)
>          else:
> +            session_receive2 =3D
> self.tester.create_session(name=3D'receive_encryption_package2')
> +            session_receive2.send_expect("tcpdump -Xvvvi %s -c 1" % rxIt=
f, "", 30)
> +            send_package =3D self.send_encryption_package(txItf, paysize=
,
> do_encrypt, send_spi, count, inner_dst, sa_src,
> +                                                        sa_dst)
> +            time.sleep(45)
> +            rev =3D session_receive2.get_session_before()
> +            print(rev)
> +            p =3D re.compile(': ESP\(spi=3D0x\w+,seq=3D0x\w+\),')
> +            res =3D p.search(rev)
> +            self.verify(res, 'encrypt failed, tcpdump get %s' % rev)
> +            self.tester.destroy_session(session_receive2)
> +            session_receive.send_expect("pkts", "", 30)
>              session_receive.send_expect(sa_gcm, ">>>", 10)
> -            session_receive.send_expect(
> -                "results=3Dsa_gcm.decrypt(pkts[0]['IP'])", ">>>", 10)
> +            time.sleep(2)
> +
> + session_receive.send_expect("results=3Dsa_gcm.decrypt(pkts[0]['IP'])",
> + ">>>", 10)
>              out =3D session_receive.send_expect("results", ">>>", 10)
>=20
>          if verify:
> -            self.verify(send_package in out,
> +            print('received packet content is %s' % out)
> +            print('send pkt src ip is %s, dst ip is %s, payload is %s' %=
 (
> +            send_package[1], send_package[2], send_package[0]))
> +            self.verify(send_package[0] in out,
>                          "Unreceived package or get other package")
>          else:
> -            self.verify(send_package not in out,
> +            self.verify(send_package[0] not in out,
>                          "The function is not in effect")
>          session_receive.send_expect("quit()", "#", 10)
>          self.tester.destroy_session(session_receive)
> @@ -244,6 +263,7 @@ class TestInlineIpsec(TestCase):
>          paysize =3D random.randint(1, ETHER_STANDARD_MTU)
>          self.Ipsec_Encryption(config, '/root/dpdk/enc.cfg',
>                                self.txItf, self.rxItf, paysize)
> +        self.dut.send_expect("^C", "#", 5)
>=20
>      def test_Ipsec_Encryption_Jumboframe(self):
>          """
> @@ -253,6 +273,7 @@ class TestInlineIpsec(TestCase):
>          paysize =3D random.randint(ETHER_STANDARD_MTU,
> ETHER_JUMBO_FRAME_MTU)
>          self.Ipsec_Encryption(config, '/root/dpdk/enc.cfg',
>                                self.txItf, self.rxItf, paysize, ETHER_JUM=
BO_FRAME_MTU)
> +        self.dut.send_expect("^C", "#", 5)
>=20
>      def test_Ipsec_Encryption_Rss(self):
>          """
> @@ -264,6 +285,7 @@ class TestInlineIpsec(TestCase):
>          out =3D self.dut.get_session_output()
>          verifycode =3D "receive 1 packet in rxqueueid=3D1"
>          self.verify(verifycode in out, "rxqueueid error")
> +        self.dut.send_expect("^C", "#", 5)
>=20
>      def test_IPSec_Decryption(self):
>          """
> @@ -273,6 +295,7 @@ class TestInlineIpsec(TestCase):
>          paysize =3D random.randint(1, ETHER_STANDARD_MTU)
>          self.Ipsec_Encryption(config, '/root/dpdk/dec.cfg', self.rxItf,
>                                self.txItf, paysize, do_encrypt=3DTrue, co=
unt=3D2)
> +        self.dut.send_expect("^C", "#", 5)
>=20
>      def test_IPSec_Decryption_Jumboframe(self):
>          """
> @@ -282,6 +305,7 @@ class TestInlineIpsec(TestCase):
>          paysize =3D random.randint(ETHER_STANDARD_MTU,
> ETHER_JUMBO_FRAME_MTU)
>          self.Ipsec_Encryption(config, '/root/dpdk/dec.cfg', self.rxItf,
>                                self.txItf, paysize, ETHER_JUMBO_FRAME_MTU=
,
> do_encrypt=3DTrue, count=3D2)
> +        self.dut.send_expect("^C", "#", 5)
>=20
>      def test_Ipsec_Decryption_Rss(self):
>          """
> @@ -293,6 +317,7 @@ class TestInlineIpsec(TestCase):
>          out =3D self.dut.get_session_output()
>          verifycode =3D "receive 1 packet in rxqueueid=3D1"
>          self.verify(verifycode in out, "rxqueueid error")
> +        self.dut.send_expect("^C", "#", 5)
>=20
>      def test_Ipsec_Decryption_wrongkey(self):
>          """
> @@ -303,8 +328,10 @@ class TestInlineIpsec(TestCase):
>          self.Ipsec_Encryption(config, '/root/dpdk/dec_wrong_key.cfg', se=
lf.rxItf,
>                                self.txItf, paysize, do_encrypt=3DTrue, ve=
rify=3DFalse, count=3D2)
>          out =3D self.dut.get_session_output()
> -        verifycode =3D "IPSEC_ESP: failed crypto op"
> -        self.verify(verifycode in out, "Ipsec Decryption wrongkey failed=
")
> +        verifycode =3D "IPSEC_ESP: esp_inbound_post() failed crypto op"
> +        l =3D re.findall(verifycode, out)
> +        self.verify(len(l) =3D=3D 2, "Ipsec Decryption wrongkey failed")
> +        self.dut.send_expect("^C", "#", 5)
>=20
>      def test_Ipsec_Encryption_Decryption(self):
>          """
> @@ -328,7 +355,6 @@ class TestInlineIpsec(TestCase):
>          session_receive2.send_expect(sa_gcm, ">>>", 60)
>          session_receive2.send_expect(
>              "pkts=3Dsniff(iface=3D'%s',count=3D2,timeout=3D30)" % self.t=
xItf, "", 60)
> -
>          payload =3D "test for Ipsec Encryption Decryption simultaneously=
"
>          sa_gcm =3D SecurityAssociation(ESP, spi=3D5,
>                                       crypt_algo=3D'AES-GCM', @@ -336,24 =
+362,30 @@ class
> TestInlineIpsec(TestCase):
>                                       auth_algo=3D'NULL', auth_key=3DNone=
,
>                                       tunnel_header=3DIP(src=3D'172.16.1.=
5', dst=3D'172.16.2.5'))
>          sa_gcm.crypt_algo.icv_size =3D 16
> -
>          p =3D IP(src=3D'192.168.105.10', dst=3D'192.168.105.10')
>          p /=3D payload
>          p =3D IP(str(p))
> -
>          e1 =3D sa_gcm.encrypt(p)
>          e2 =3D p
>=20
>          eth_e1 =3D Ether() / e1
>          eth_e1.src =3D self.rx_src
>          eth_e1.dst =3D self.tx_dst
> +
>          eth_e2 =3D Ether() / e2
>          eth_e2.src =3D self.rx_src
>          eth_e2.dst =3D self.tx_dst
> -
> +        session_receive3 =3D
> self.tester.create_session('check_forward_encryption_package')
> +        session_receive3.send_expect("tcpdump -Xvvvi %s -c 1" % self.rxI=
tf, "",
> 30)
> +        time.sleep(2)
>          sendp(eth_e1, iface=3Dself.rxItf, count=3D2)
>          sendp(eth_e2, iface=3Dself.txItf, count=3D1)
>          time.sleep(30)
> +        rev =3D session_receive3.get_session_before()
> +        print(rev)
> +        p =3D re.compile(': ESP\(spi=3D0x\w+,seq=3D0x\w+\),')
> +        res =3D p.search(rev)
> +        self.verify(res, 'encrypt failed, tcpdump get %s' % rev)
>          session_receive.send_expect(
>              "results=3Dsa_gcm.decrypt(pkts[2]['IP'])", ">>>", 60)
>          out =3D session_receive.send_expect("results", ">>>", 60)
> --
> 2.19.1