ligang/vpp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ipsec: ipsec-tun protect

Browse Source 
please consult the new tunnel proposal at:
  https://wiki.fd.io/view/VPP/IPSec

Type: feature

Change-Id: I52857fc92ae068b85f59be08bdbea1bd5932e291
Signed-off-by: Neale Ranns <nranns@cisco.com>
This commit is contained in:
Neale Ranns
2019-02-07 07:26:12 -08:00
committed by Damjan Marion
parent 097fa66b98
commit c87b66c862
47 changed files with 2447 additions and 2125 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
test/test_ipsec_esp.py
View File

@ -3,7 +3,7 @@ import unittest
from scapy.layers.ipsec import ESP
from scapy.layers.inet import UDP
from framework import VppTestRunner
from framework import VppTestRunner, is_skip_aarch64_set, is_platform_aarch64
from template_ipsec import IpsecTra46Tests, IpsecTun46Tests, TemplateIpsec, \
IpsecTcpTests, IpsecTun4Tests, IpsecTra4Tests, config_tra_params, \
IPsecIPv4Params, IPsecIPv6Params, \
@ -14,6 +14,8 @@ from vpp_ip_route import VppIpRoute, VppRoutePath
from vpp_ip import DpoProto
from vpp_papi import VppEnum
NUM_PKTS = 67
class ConfigIpsecESP(TemplateIpsec):
encryption_type = ESP
@ -350,6 +352,8 @@ class TestIpsecEspUdp(TemplateIpsecEspUdp, IpsecTra4Tests):
pass
@unittest.skipIf(is_skip_aarch64_set and is_platform_aarch64,
"test doesn't work on aarch64")
class TestIpsecEspAll(ConfigIpsecESP,
IpsecTra4, IpsecTra6,
IpsecTun4, IpsecTun6):
@ -470,10 +474,12 @@ class TestIpsecEspAll(ConfigIpsecESP,
# An exhautsive 4o6, 6o4 is not necessary
# for each algo
#
self.verify_tra_basic6(count=17)
self.verify_tra_basic4(count=17)
self.verify_tun_66(self.params[socket.AF_INET6], 17)
self.verify_tun_44(self.params[socket.AF_INET], 17)
self.verify_tra_basic6(count=NUM_PKTS)
self.verify_tra_basic4(count=NUM_PKTS)
self.verify_tun_66(self.params[socket.AF_INET6],
count=NUM_PKTS)
self.verify_tun_44(self.params[socket.AF_INET],
count=NUM_PKTS)
#
# remove the SPDs, SAs, etc