3 from scapy.layers.ipsec import ESP
4 from scapy.layers.inet import UDP
6 from parameterized import parameterized
7 from framework import VppTestRunner
8 from template_ipsec import IpsecTra46Tests, IpsecTun46Tests, TemplateIpsec, \
9 IpsecTcpTests, IpsecTun4Tests, IpsecTra4Tests, config_tra_params, \
10 config_tun_params, IPsecIPv4Params, IPsecIPv6Params, \
11 IpsecTra4, IpsecTun4, IpsecTra6, IpsecTun6, \
12 IpsecTun6HandoffTests, IpsecTun4HandoffTests, \
14 from vpp_ipsec import VppIpsecSpd, VppIpsecSpdEntry, VppIpsecSA,\
16 from vpp_ip_route import VppIpRoute, VppRoutePath
17 from vpp_ip import DpoProto
18 from vpp_papi import VppEnum
21 engines_supporting_chain_bufs = ["openssl"]
24 class ConfigIpsecESP(TemplateIpsec):
26 tra4_encrypt_node_name = "esp4-encrypt"
27 tra4_decrypt_node_name = "esp4-decrypt"
28 tra6_encrypt_node_name = "esp6-encrypt"
29 tra6_decrypt_node_name = "esp6-decrypt"
30 tun4_encrypt_node_name = "esp4-encrypt"
31 tun4_decrypt_node_name = "esp4-decrypt"
32 tun6_encrypt_node_name = "esp6-encrypt"
33 tun6_decrypt_node_name = "esp6-decrypt"
37 super(ConfigIpsecESP, cls).setUpClass()
40 def tearDownClass(cls):
41 super(ConfigIpsecESP, cls).tearDownClass()
44 super(ConfigIpsecESP, self).setUp()
47 super(ConfigIpsecESP, self).tearDown()
49 def config_network(self, params):
51 self.tun_if = self.pg0
52 self.tra_if = self.pg2
53 self.logger.info(self.vapi.ppcli("show int addr"))
55 self.tra_spd = VppIpsecSpd(self, self.tra_spd_id)
56 self.tra_spd.add_vpp_config()
57 self.net_objs.append(self.tra_spd)
58 self.tun_spd = VppIpsecSpd(self, self.tun_spd_id)
59 self.tun_spd.add_vpp_config()
60 self.net_objs.append(self.tun_spd)
62 b = VppIpsecSpdItfBinding(self, self.tun_spd,
65 self.net_objs.append(b)
67 b = VppIpsecSpdItfBinding(self, self.tra_spd,
70 self.net_objs.append(b)
73 self.config_esp_tra(p)
74 config_tra_params(p, self.encryption_type)
76 self.config_esp_tun(p)
77 config_tun_params(p, self.encryption_type, self.tun_if)
80 d = DpoProto.DPO_PROTO_IP6 if p.is_ipv6 else DpoProto.DPO_PROTO_IP4
81 r = VppIpRoute(self, p.remote_tun_if_host, p.addr_len,
82 [VppRoutePath(self.tun_if.remote_addr[p.addr_type],
86 self.net_objs.append(r)
88 self.logger.info(self.vapi.ppcli("show ipsec all"))
90 def unconfig_network(self):
91 for o in reversed(self.net_objs):
95 def config_esp_tun(self, params):
96 addr_type = params.addr_type
97 scapy_tun_sa_id = params.scapy_tun_sa_id
98 scapy_tun_spi = params.scapy_tun_spi
99 vpp_tun_sa_id = params.vpp_tun_sa_id
100 vpp_tun_spi = params.vpp_tun_spi
101 auth_algo_vpp_id = params.auth_algo_vpp_id
102 auth_key = params.auth_key
103 crypt_algo_vpp_id = params.crypt_algo_vpp_id
104 crypt_key = params.crypt_key
105 remote_tun_if_host = params.remote_tun_if_host
106 addr_any = params.addr_any
107 addr_bcast = params.addr_bcast
108 e = VppEnum.vl_api_ipsec_spd_action_t
113 params.tun_sa_in = VppIpsecSA(self, scapy_tun_sa_id, scapy_tun_spi,
114 auth_algo_vpp_id, auth_key,
115 crypt_algo_vpp_id, crypt_key,
116 self.vpp_esp_protocol,
117 self.tun_if.local_addr[addr_type],
118 self.tun_if.remote_addr[addr_type],
121 params.tun_sa_out = VppIpsecSA(self, vpp_tun_sa_id, vpp_tun_spi,
122 auth_algo_vpp_id, auth_key,
123 crypt_algo_vpp_id, crypt_key,
124 self.vpp_esp_protocol,
125 self.tun_if.remote_addr[addr_type],
126 self.tun_if.local_addr[addr_type],
129 objs.append(params.tun_sa_in)
130 objs.append(params.tun_sa_out)
132 params.spd_policy_in_any = VppIpsecSpdEntry(self, self.tun_spd,
134 addr_any, addr_bcast,
135 addr_any, addr_bcast,
137 params.spd_policy_out_any = VppIpsecSpdEntry(self, self.tun_spd,
139 addr_any, addr_bcast,
140 addr_any, addr_bcast,
143 objs.append(params.spd_policy_out_any)
144 objs.append(params.spd_policy_in_any)
146 objs.append(VppIpsecSpdEntry(self, self.tun_spd, vpp_tun_sa_id,
147 remote_tun_if_host, remote_tun_if_host,
148 self.pg1.remote_addr[addr_type],
149 self.pg1.remote_addr[addr_type],
152 policy=e.IPSEC_API_SPD_ACTION_PROTECT,
154 objs.append(VppIpsecSpdEntry(self, self.tun_spd, scapy_tun_sa_id,
155 self.pg1.remote_addr[addr_type],
156 self.pg1.remote_addr[addr_type],
157 remote_tun_if_host, remote_tun_if_host,
159 policy=e.IPSEC_API_SPD_ACTION_PROTECT,
161 objs.append(VppIpsecSpdEntry(self, self.tun_spd, vpp_tun_sa_id,
162 remote_tun_if_host, remote_tun_if_host,
163 self.pg0.local_addr[addr_type],
164 self.pg0.local_addr[addr_type],
167 policy=e.IPSEC_API_SPD_ACTION_PROTECT,
169 objs.append(VppIpsecSpdEntry(self, self.tun_spd, scapy_tun_sa_id,
170 self.pg0.local_addr[addr_type],
171 self.pg0.local_addr[addr_type],
172 remote_tun_if_host, remote_tun_if_host,
174 policy=e.IPSEC_API_SPD_ACTION_PROTECT,
178 self.net_objs = self.net_objs + objs
180 def config_esp_tra(self, params):
181 addr_type = params.addr_type
182 scapy_tra_sa_id = params.scapy_tra_sa_id
183 scapy_tra_spi = params.scapy_tra_spi
184 vpp_tra_sa_id = params.vpp_tra_sa_id
185 vpp_tra_spi = params.vpp_tra_spi
186 auth_algo_vpp_id = params.auth_algo_vpp_id
187 auth_key = params.auth_key
188 crypt_algo_vpp_id = params.crypt_algo_vpp_id
189 crypt_key = params.crypt_key
190 addr_any = params.addr_any
191 addr_bcast = params.addr_bcast
192 flags = (VppEnum.vl_api_ipsec_sad_flags_t.
193 IPSEC_API_SAD_FLAG_USE_ANTI_REPLAY)
194 e = VppEnum.vl_api_ipsec_spd_action_t
195 flags = params.flags | flags
199 params.tra_sa_in = VppIpsecSA(self, scapy_tra_sa_id, scapy_tra_spi,
200 auth_algo_vpp_id, auth_key,
201 crypt_algo_vpp_id, crypt_key,
202 self.vpp_esp_protocol,
205 params.tra_sa_out = VppIpsecSA(self, vpp_tra_sa_id, vpp_tra_spi,
206 auth_algo_vpp_id, auth_key,
207 crypt_algo_vpp_id, crypt_key,
208 self.vpp_esp_protocol,
211 objs.append(params.tra_sa_in)
212 objs.append(params.tra_sa_out)
214 objs.append(VppIpsecSpdEntry(self, self.tra_spd, vpp_tra_sa_id,
215 addr_any, addr_bcast,
216 addr_any, addr_bcast,
218 objs.append(VppIpsecSpdEntry(self, self.tra_spd, vpp_tra_sa_id,
219 addr_any, addr_bcast,
220 addr_any, addr_bcast,
223 objs.append(VppIpsecSpdEntry(self, self.tra_spd, vpp_tra_sa_id,
224 self.tra_if.local_addr[addr_type],
225 self.tra_if.local_addr[addr_type],
226 self.tra_if.remote_addr[addr_type],
227 self.tra_if.remote_addr[addr_type],
229 policy=e.IPSEC_API_SPD_ACTION_PROTECT,
231 objs.append(VppIpsecSpdEntry(self, self.tra_spd, scapy_tra_sa_id,
232 self.tra_if.local_addr[addr_type],
233 self.tra_if.local_addr[addr_type],
234 self.tra_if.remote_addr[addr_type],
235 self.tra_if.remote_addr[addr_type],
236 0, policy=e.IPSEC_API_SPD_ACTION_PROTECT,
240 self.net_objs = self.net_objs + objs
243 class TemplateIpsecEsp(ConfigIpsecESP):
245 Basic test for ipsec esp sanity - tunnel and transport modes.
247 Below 4 cases are covered as part of this test
248 1) ipsec esp v4 transport basic test - IPv4 Transport mode
249 scenario using HMAC-SHA1-96 integrity algo
250 2) ipsec esp v4 transport burst test
251 Above test for 257 pkts
252 3) ipsec esp 4o4 tunnel basic test - IPv4 Tunnel mode
253 scenario using HMAC-SHA1-96 integrity algo
254 4) ipsec esp 4o4 tunnel burst test
255 Above test for 257 pkts
260 |pg2| <-------> |VPP|
265 --- encrypt --- plain ---
266 |pg0| <------- |VPP| <------ |pg1|
269 --- decrypt --- plain ---
270 |pg0| -------> |VPP| ------> |pg1|
276 super(TemplateIpsecEsp, cls).setUpClass()
279 def tearDownClass(cls):
280 super(TemplateIpsecEsp, cls).tearDownClass()
283 super(TemplateIpsecEsp, self).setUp()
284 self.config_network(self.params.values())
287 self.unconfig_network()
288 super(TemplateIpsecEsp, self).tearDown()
291 class TestIpsecEsp1(TemplateIpsecEsp, IpsecTra46Tests,
292 IpsecTun46Tests, IpsecTra6ExtTests):
293 """ Ipsec ESP - TUN & TRA tests """
297 class TestIpsecEsp2(TemplateIpsecEsp, IpsecTcpTests):
298 """ Ipsec ESP - TCP tests """
302 class TestIpsecEspHandoff(TemplateIpsecEsp,
303 IpsecTun6HandoffTests,
304 IpsecTun4HandoffTests):
305 """ Ipsec ESP - handoff tests """
309 class TemplateIpsecEspUdp(ConfigIpsecESP):
316 super(TemplateIpsecEspUdp, cls).setUpClass()
319 def tearDownClass(cls):
320 super(TemplateIpsecEspUdp, cls).tearDownClass()
323 super(TemplateIpsecEspUdp, self).setUp()
325 self.tun_if = self.pg0
326 self.tra_if = self.pg2
327 self.logger.info(self.vapi.ppcli("show int addr"))
330 p.flags = (VppEnum.vl_api_ipsec_sad_flags_t.
331 IPSEC_API_SAD_FLAG_UDP_ENCAP)
332 p.nat_header = UDP(sport=5454, dport=4500)
334 self.tra_spd = VppIpsecSpd(self, self.tra_spd_id)
335 self.tra_spd.add_vpp_config()
336 VppIpsecSpdItfBinding(self, self.tra_spd,
337 self.tra_if).add_vpp_config()
339 self.config_esp_tra(p)
340 config_tra_params(p, self.encryption_type)
342 self.tun_spd = VppIpsecSpd(self, self.tun_spd_id)
343 self.tun_spd.add_vpp_config()
344 VppIpsecSpdItfBinding(self, self.tun_spd,
345 self.tun_if).add_vpp_config()
347 self.config_esp_tun(p)
348 self.logger.info(self.vapi.ppcli("show ipsec all"))
350 d = DpoProto.DPO_PROTO_IP4
351 VppIpRoute(self, p.remote_tun_if_host, p.addr_len,
352 [VppRoutePath(self.tun_if.remote_addr[p.addr_type],
354 proto=d)]).add_vpp_config()
357 super(TemplateIpsecEspUdp, self).tearDown()
359 def show_commands_at_teardown(self):
360 self.logger.info(self.vapi.cli("show hardware"))
363 class TestIpsecEspUdp(TemplateIpsecEspUdp, IpsecTra4Tests):
364 """ Ipsec NAT-T ESP UDP tests """
368 class MyParameters():
370 self.engines = ["ia32", "ipsecmb", "openssl"]
371 flag_esn = VppEnum.vl_api_ipsec_sad_flags_t.IPSEC_API_SAD_FLAG_USE_ESN
372 self.flags = [0, flag_esn]
373 # foreach crypto algorithm
375 'AES-GCM-128/NONE': {
376 'vpp-crypto': (VppEnum.vl_api_ipsec_crypto_alg_t.
377 IPSEC_API_CRYPTO_ALG_AES_GCM_128),
378 'vpp-integ': (VppEnum.vl_api_ipsec_integ_alg_t.
379 IPSEC_API_INTEG_ALG_NONE),
380 'scapy-crypto': "AES-GCM",
381 'scapy-integ': "NULL",
382 'key': b"JPjyOWBeVEQiMe7h",
384 'AES-GCM-192/NONE': {
385 'vpp-crypto': (VppEnum.vl_api_ipsec_crypto_alg_t.
386 IPSEC_API_CRYPTO_ALG_AES_GCM_192),
387 'vpp-integ': (VppEnum.vl_api_ipsec_integ_alg_t.
388 IPSEC_API_INTEG_ALG_NONE),
389 'scapy-crypto': "AES-GCM",
390 'scapy-integ': "NULL",
391 'key': b"JPjyOWBeVEQiMe7h01234567",
393 'AES-GCM-256/NONE': {
394 'vpp-crypto': (VppEnum.vl_api_ipsec_crypto_alg_t.
395 IPSEC_API_CRYPTO_ALG_AES_GCM_256),
396 'vpp-integ': (VppEnum.vl_api_ipsec_integ_alg_t.
397 IPSEC_API_INTEG_ALG_NONE),
398 'scapy-crypto': "AES-GCM",
399 'scapy-integ': "NULL",
400 'key': b"JPjyOWBeVEQiMe7h0123456787654321",
402 'AES-CBC-128/MD5-96': {
403 'vpp-crypto': (VppEnum.vl_api_ipsec_crypto_alg_t.
404 IPSEC_API_CRYPTO_ALG_AES_CBC_128),
405 'vpp-integ': (VppEnum.vl_api_ipsec_integ_alg_t.
406 IPSEC_API_INTEG_ALG_MD5_96),
407 'scapy-crypto': "AES-CBC",
408 'scapy-integ': "HMAC-MD5-96",
410 'key': b"JPjyOWBeVEQiMe7h"},
411 'AES-CBC-192/SHA1-96': {
412 'vpp-crypto': (VppEnum.vl_api_ipsec_crypto_alg_t.
413 IPSEC_API_CRYPTO_ALG_AES_CBC_192),
414 'vpp-integ': (VppEnum.vl_api_ipsec_integ_alg_t.
415 IPSEC_API_INTEG_ALG_SHA1_96),
416 'scapy-crypto': "AES-CBC",
417 'scapy-integ': "HMAC-SHA1-96",
419 'key': b"JPjyOWBeVEQiMe7hJPjyOWBe"},
420 'AES-CBC-256/SHA1-96': {
421 'vpp-crypto': (VppEnum.vl_api_ipsec_crypto_alg_t.
422 IPSEC_API_CRYPTO_ALG_AES_CBC_256),
423 'vpp-integ': (VppEnum.vl_api_ipsec_integ_alg_t.
424 IPSEC_API_INTEG_ALG_SHA1_96),
425 'scapy-crypto': "AES-CBC",
426 'scapy-integ': "HMAC-SHA1-96",
428 'key': b"JPjyOWBeVEQiMe7hJPjyOWBeVEQiMe7h"},
429 '3DES-CBC/SHA1-96': {
430 'vpp-crypto': (VppEnum.vl_api_ipsec_crypto_alg_t.
431 IPSEC_API_CRYPTO_ALG_3DES_CBC),
432 'vpp-integ': (VppEnum.vl_api_ipsec_integ_alg_t.
433 IPSEC_API_INTEG_ALG_SHA1_96),
434 'scapy-crypto': "3DES",
435 'scapy-integ': "HMAC-SHA1-96",
437 'key': b"JPjyOWBeVEQiMe7h00112233"},
439 'vpp-crypto': (VppEnum.vl_api_ipsec_crypto_alg_t.
440 IPSEC_API_CRYPTO_ALG_NONE),
441 'vpp-integ': (VppEnum.vl_api_ipsec_integ_alg_t.
442 IPSEC_API_INTEG_ALG_SHA1_96),
443 'scapy-crypto': "NULL",
444 'scapy-integ': "HMAC-SHA1-96",
446 'key': b"JPjyOWBeVEQiMe7h00112233"}}
449 class RunTestIpsecEspAll(ConfigIpsecESP,
450 IpsecTra4, IpsecTra6,
451 IpsecTun4, IpsecTun6):
452 """ Ipsec ESP all Algos """
455 super(RunTestIpsecEspAll, self).setUp()
456 test_args = str.split(self.__doc__, " ")
458 params = MyParameters()
459 self.engine = test_args[0]
460 self.flag = params.flags[0]
461 if test_args[1] == 'ESN':
462 self.flag = params.flags[1]
464 self.algo = params.algos[test_args[2]]
467 super(RunTestIpsecEspAll, self).tearDown()
470 self.run_a_test(self.engine, self.flag, self.algo)
472 def run_a_test(self, engine, flag, algo, payload_size=None):
473 self.vapi.cli("set crypto handler all %s" % engine)
475 self.ipv4_params = IPsecIPv4Params()
476 self.ipv6_params = IPsecIPv6Params()
478 self.params = {self.ipv4_params.addr_type:
480 self.ipv6_params.addr_type:
483 for _, p in self.params.items():
484 p.auth_algo_vpp_id = algo['vpp-integ']
485 p.crypt_algo_vpp_id = algo['vpp-crypto']
486 p.crypt_algo = algo['scapy-crypto']
487 p.auth_algo = algo['scapy-integ']
488 p.crypt_key = algo['key']
489 p.salt = algo['salt']
490 p.flags = p.flags | flag
492 self.reporter.send_keep_alive(self)
495 # configure the SPDs. SAs, etc
497 self.config_network(self.params.values())
501 # An exhautsive 4o6, 6o4 is not necessary
504 self.verify_tra_basic6(count=NUM_PKTS)
505 self.verify_tra_basic4(count=NUM_PKTS)
506 self.verify_tun_66(self.params[socket.AF_INET6],
508 self.verify_tun_44(self.params[socket.AF_INET],
512 4010, # ICV ends up splitted accross 2 buffers in esp_decrypt
513 # for transport4; transport6 takes normal path
515 4020, # same as above but tra4 and tra6 are switched
517 if self.engine in engines_supporting_chain_bufs:
518 for sz in LARGE_PKT_SZ:
519 self.verify_tra_basic4(count=NUM_PKTS, payload_size=sz)
520 self.verify_tra_basic6(count=NUM_PKTS, payload_size=sz)
521 self.verify_tun_66(self.params[socket.AF_INET6],
522 count=NUM_PKTS, payload_size=sz)
523 self.verify_tun_44(self.params[socket.AF_INET],
524 count=NUM_PKTS, payload_size=sz)
527 # remove the SPDs, SAs, etc
529 self.unconfig_network()
532 # reconfigure the network and SA to run the
535 self.config_network(self.params.values())
536 self.verify_tra_anti_replay()
537 self.unconfig_network()
540 # To generate test classes, do:
541 # grep '# GEN' test_ipsec_esp.py | sed -e 's/# GEN //g' | bash
543 # GEN for ENG in ia32 ipsecmb openssl; do \
544 # GEN for FLG in noESN ESN; do for ALG in AES-GCM-128/NONE \
545 # GEN AES-GCM-192/NONE AES-GCM-256/NONE AES-CBC-128/MD5-96 \
546 # GEN AES-CBC-192/SHA1-96 AES-CBC-256/SHA1-96 \
547 # GEN 3DES-CBC/SHA1-96 NONE/SHA1-96; do \
548 # GEN echo -e "\n\nclass Test_${ENG}_${FLG}_${ALG}(RunTestIpsecEspAll):" |
549 # GEN sed -e 's/-/_/g' -e 's#/#_#g' ; \
550 # GEN echo ' """'$ENG $FLG $ALG IPSec test'"""' ;
551 # GEN echo " def test_ipsec(self):";
552 # GEN echo " self.run_test()";
553 # GEN done; done; done
556 class Test_ia32_noESN_AES_GCM_128_NONE(RunTestIpsecEspAll):
557 """ia32 noESN AES-GCM-128/NONE IPSec test"""
558 def test_ipsec(self):
562 class Test_ia32_noESN_AES_GCM_192_NONE(RunTestIpsecEspAll):
563 """ia32 noESN AES-GCM-192/NONE IPSec test"""
564 def test_ipsec(self):
568 class Test_ia32_noESN_AES_GCM_256_NONE(RunTestIpsecEspAll):
569 """ia32 noESN AES-GCM-256/NONE IPSec test"""
570 def test_ipsec(self):
574 class Test_ia32_noESN_AES_CBC_128_MD5_96(RunTestIpsecEspAll):
575 """ia32 noESN AES-CBC-128/MD5-96 IPSec test"""
576 def test_ipsec(self):
580 class Test_ia32_noESN_AES_CBC_192_SHA1_96(RunTestIpsecEspAll):
581 """ia32 noESN AES-CBC-192/SHA1-96 IPSec test"""
582 def test_ipsec(self):
586 class Test_ia32_noESN_AES_CBC_256_SHA1_96(RunTestIpsecEspAll):
587 """ia32 noESN AES-CBC-256/SHA1-96 IPSec test"""
588 def test_ipsec(self):
592 class Test_ia32_noESN_3DES_CBC_SHA1_96(RunTestIpsecEspAll):
593 """ia32 noESN 3DES-CBC/SHA1-96 IPSec test"""
594 def test_ipsec(self):
598 class Test_ia32_noESN_NONE_SHA1_96(RunTestIpsecEspAll):
599 """ia32 noESN NONE/SHA1-96 IPSec test"""
600 def test_ipsec(self):
604 class Test_ia32_ESN_AES_GCM_128_NONE(RunTestIpsecEspAll):
605 """ia32 ESN AES-GCM-128/NONE IPSec test"""
606 def test_ipsec(self):
610 class Test_ia32_ESN_AES_GCM_192_NONE(RunTestIpsecEspAll):
611 """ia32 ESN AES-GCM-192/NONE IPSec test"""
612 def test_ipsec(self):
616 class Test_ia32_ESN_AES_GCM_256_NONE(RunTestIpsecEspAll):
617 """ia32 ESN AES-GCM-256/NONE IPSec test"""
618 def test_ipsec(self):
622 class Test_ia32_ESN_AES_CBC_128_MD5_96(RunTestIpsecEspAll):
623 """ia32 ESN AES-CBC-128/MD5-96 IPSec test"""
624 def test_ipsec(self):
628 class Test_ia32_ESN_AES_CBC_192_SHA1_96(RunTestIpsecEspAll):
629 """ia32 ESN AES-CBC-192/SHA1-96 IPSec test"""
630 def test_ipsec(self):
634 class Test_ia32_ESN_AES_CBC_256_SHA1_96(RunTestIpsecEspAll):
635 """ia32 ESN AES-CBC-256/SHA1-96 IPSec test"""
636 def test_ipsec(self):
640 class Test_ia32_ESN_3DES_CBC_SHA1_96(RunTestIpsecEspAll):
641 """ia32 ESN 3DES-CBC/SHA1-96 IPSec test"""
642 def test_ipsec(self):
646 class Test_ia32_ESN_NONE_SHA1_96(RunTestIpsecEspAll):
647 """ia32 ESN NONE/SHA1-96 IPSec test"""
648 def test_ipsec(self):
652 class Test_ipsecmb_noESN_AES_GCM_128_NONE(RunTestIpsecEspAll):
653 """ipsecmb noESN AES-GCM-128/NONE IPSec test"""
654 def test_ipsec(self):
658 class Test_ipsecmb_noESN_AES_GCM_192_NONE(RunTestIpsecEspAll):
659 """ipsecmb noESN AES-GCM-192/NONE IPSec test"""
660 def test_ipsec(self):
664 class Test_ipsecmb_noESN_AES_GCM_256_NONE(RunTestIpsecEspAll):
665 """ipsecmb noESN AES-GCM-256/NONE IPSec test"""
666 def test_ipsec(self):
670 class Test_ipsecmb_noESN_AES_CBC_128_MD5_96(RunTestIpsecEspAll):
671 """ipsecmb noESN AES-CBC-128/MD5-96 IPSec test"""
672 def test_ipsec(self):
676 class Test_ipsecmb_noESN_AES_CBC_192_SHA1_96(RunTestIpsecEspAll):
677 """ipsecmb noESN AES-CBC-192/SHA1-96 IPSec test"""
678 def test_ipsec(self):
682 class Test_ipsecmb_noESN_AES_CBC_256_SHA1_96(RunTestIpsecEspAll):
683 """ipsecmb noESN AES-CBC-256/SHA1-96 IPSec test"""
684 def test_ipsec(self):
688 class Test_ipsecmb_noESN_3DES_CBC_SHA1_96(RunTestIpsecEspAll):
689 """ipsecmb noESN 3DES-CBC/SHA1-96 IPSec test"""
690 def test_ipsec(self):
694 class Test_ipsecmb_noESN_NONE_SHA1_96(RunTestIpsecEspAll):
695 """ipsecmb noESN NONE/SHA1-96 IPSec test"""
696 def test_ipsec(self):
700 class Test_ipsecmb_ESN_AES_GCM_128_NONE(RunTestIpsecEspAll):
701 """ipsecmb ESN AES-GCM-128/NONE IPSec test"""
702 def test_ipsec(self):
706 class Test_ipsecmb_ESN_AES_GCM_192_NONE(RunTestIpsecEspAll):
707 """ipsecmb ESN AES-GCM-192/NONE IPSec test"""
708 def test_ipsec(self):
712 class Test_ipsecmb_ESN_AES_GCM_256_NONE(RunTestIpsecEspAll):
713 """ipsecmb ESN AES-GCM-256/NONE IPSec test"""
714 def test_ipsec(self):
718 class Test_ipsecmb_ESN_AES_CBC_128_MD5_96(RunTestIpsecEspAll):
719 """ipsecmb ESN AES-CBC-128/MD5-96 IPSec test"""
720 def test_ipsec(self):
724 class Test_ipsecmb_ESN_AES_CBC_192_SHA1_96(RunTestIpsecEspAll):
725 """ipsecmb ESN AES-CBC-192/SHA1-96 IPSec test"""
726 def test_ipsec(self):
730 class Test_ipsecmb_ESN_AES_CBC_256_SHA1_96(RunTestIpsecEspAll):
731 """ipsecmb ESN AES-CBC-256/SHA1-96 IPSec test"""
732 def test_ipsec(self):
736 class Test_ipsecmb_ESN_3DES_CBC_SHA1_96(RunTestIpsecEspAll):
737 """ipsecmb ESN 3DES-CBC/SHA1-96 IPSec test"""
738 def test_ipsec(self):
742 class Test_ipsecmb_ESN_NONE_SHA1_96(RunTestIpsecEspAll):
743 """ipsecmb ESN NONE/SHA1-96 IPSec test"""
744 def test_ipsec(self):
748 class Test_openssl_noESN_AES_GCM_128_NONE(RunTestIpsecEspAll):
749 """openssl noESN AES-GCM-128/NONE IPSec test"""
750 def test_ipsec(self):
754 class Test_openssl_noESN_AES_GCM_192_NONE(RunTestIpsecEspAll):
755 """openssl noESN AES-GCM-192/NONE IPSec test"""
756 def test_ipsec(self):
760 class Test_openssl_noESN_AES_GCM_256_NONE(RunTestIpsecEspAll):
761 """openssl noESN AES-GCM-256/NONE IPSec test"""
762 def test_ipsec(self):
766 class Test_openssl_noESN_AES_CBC_128_MD5_96(RunTestIpsecEspAll):
767 """openssl noESN AES-CBC-128/MD5-96 IPSec test"""
768 def test_ipsec(self):
772 class Test_openssl_noESN_AES_CBC_192_SHA1_96(RunTestIpsecEspAll):
773 """openssl noESN AES-CBC-192/SHA1-96 IPSec test"""
774 def test_ipsec(self):
778 class Test_openssl_noESN_AES_CBC_256_SHA1_96(RunTestIpsecEspAll):
779 """openssl noESN AES-CBC-256/SHA1-96 IPSec test"""
780 def test_ipsec(self):
784 class Test_openssl_noESN_3DES_CBC_SHA1_96(RunTestIpsecEspAll):
785 """openssl noESN 3DES-CBC/SHA1-96 IPSec test"""
786 def test_ipsec(self):
790 class Test_openssl_noESN_NONE_SHA1_96(RunTestIpsecEspAll):
791 """openssl noESN NONE/SHA1-96 IPSec test"""
792 def test_ipsec(self):
796 class Test_openssl_ESN_AES_GCM_128_NONE(RunTestIpsecEspAll):
797 """openssl ESN AES-GCM-128/NONE IPSec test"""
798 def test_ipsec(self):
802 class Test_openssl_ESN_AES_GCM_192_NONE(RunTestIpsecEspAll):
803 """openssl ESN AES-GCM-192/NONE IPSec test"""
804 def test_ipsec(self):
808 class Test_openssl_ESN_AES_GCM_256_NONE(RunTestIpsecEspAll):
809 """openssl ESN AES-GCM-256/NONE IPSec test"""
810 def test_ipsec(self):
814 class Test_openssl_ESN_AES_CBC_128_MD5_96(RunTestIpsecEspAll):
815 """openssl ESN AES-CBC-128/MD5-96 IPSec test"""
816 def test_ipsec(self):
820 class Test_openssl_ESN_AES_CBC_192_SHA1_96(RunTestIpsecEspAll):
821 """openssl ESN AES-CBC-192/SHA1-96 IPSec test"""
822 def test_ipsec(self):
826 class Test_openssl_ESN_AES_CBC_256_SHA1_96(RunTestIpsecEspAll):
827 """openssl ESN AES-CBC-256/SHA1-96 IPSec test"""
828 def test_ipsec(self):
832 class Test_openssl_ESN_3DES_CBC_SHA1_96(RunTestIpsecEspAll):
833 """openssl ESN 3DES-CBC/SHA1-96 IPSec test"""
834 def test_ipsec(self):
838 class Test_openssl_ESN_NONE_SHA1_96(RunTestIpsecEspAll):
839 """openssl ESN NONE/SHA1-96 IPSec test"""
840 def test_ipsec(self):
844 if __name__ == '__main__':
845 unittest.main(testRunner=VppTestRunner)
Code Review / vpp.git / blob