Patch Detail
get:
Show a patch.
patch:
Update a patch.
put:
Update a patch.
GET /api/patches/104909/?format=api
{ "id": 104909, "url": "http://patchwork.dpdk.org/api/patches/104909/?format=api", "web_url": "http://patchwork.dpdk.org/project/dpdk/patch/1638788880-650-2-git-send-email-anoobj@marvell.com/", "project": { "id": 1, "url": "http://patchwork.dpdk.org/api/projects/1/?format=api", "name": "DPDK", "link_name": "dpdk", "list_id": "dev.dpdk.org", "list_email": "dev@dpdk.org", "web_url": "http://core.dpdk.org", "scm_url": "git://dpdk.org/dpdk", "webscm_url": "http://git.dpdk.org/dpdk", "list_archive_url": "https://inbox.dpdk.org/dev", "list_archive_url_format": "https://inbox.dpdk.org/dev/{}", "commit_url_format": "" }, "msgid": "<1638788880-650-2-git-send-email-anoobj@marvell.com>", "list_archive_url": "https://inbox.dpdk.org/dev/1638788880-650-2-git-send-email-anoobj@marvell.com", "date": "2021-12-06T11:07:48", "name": "[v2,01/13] test/crypto: add IPsec aes-cbc known vectors", "commit_ref": null, "pull_url": null, "state": "accepted", "archived": true, "hash": "88e91e89f33339317ebd988fa59a79b063b0cf71", "submitter": { "id": 1205, "url": "http://patchwork.dpdk.org/api/people/1205/?format=api", "name": "Anoob Joseph", "email": "anoobj@marvell.com" }, "delegate": { "id": 6690, "url": "http://patchwork.dpdk.org/api/users/6690/?format=api", "username": "akhil", "first_name": "akhil", "last_name": "goyal", "email": "gakhil@marvell.com" }, "mbox": "http://patchwork.dpdk.org/project/dpdk/patch/1638788880-650-2-git-send-email-anoobj@marvell.com/mbox/", "series": [ { "id": 20868, "url": "http://patchwork.dpdk.org/api/series/20868/?format=api", "web_url": "http://patchwork.dpdk.org/project/dpdk/list/?series=20868", "date": "2021-12-06T11:07:47", "name": "Add new cases to lookaside IPsec tests", "version": 2, "mbox": "http://patchwork.dpdk.org/series/20868/mbox/" } ], "comments": "http://patchwork.dpdk.org/api/patches/104909/comments/", "check": "success", "checks": "http://patchwork.dpdk.org/api/patches/104909/checks/", "tags": {}, "related": [], "headers": { "Return-Path": "<dev-bounces@dpdk.org>", "X-Original-To": "patchwork@inbox.dpdk.org", "Delivered-To": "patchwork@inbox.dpdk.org", "Received": [ "from mails.dpdk.org (mails.dpdk.org [217.70.189.124])\n\tby inbox.dpdk.org (Postfix) with ESMTP id 37FF1A034F;\n\tMon, 6 Dec 2021 12:08:21 +0100 (CET)", "from [217.70.189.124] (localhost [127.0.0.1])\n\tby mails.dpdk.org (Postfix) with ESMTP id 6B75641169;\n\tMon, 6 Dec 2021 12:08:20 +0100 (CET)", "from mx0b-0016f401.pphosted.com (mx0b-0016f401.pphosted.com\n [67.231.156.173])\n by mails.dpdk.org (Postfix) with ESMTP id A4B5041168\n for <dev@dpdk.org>; Mon, 6 Dec 2021 12:08:18 +0100 (CET)", "from pps.filterd (m0045851.ppops.net [127.0.0.1])\n by mx0b-0016f401.pphosted.com (8.16.1.2/8.16.1.2) with ESMTP id\n 1B62JwkH001881;\n Mon, 6 Dec 2021 03:08:18 -0800", "from dc5-exch02.marvell.com ([199.233.59.182])\n by mx0b-0016f401.pphosted.com (PPS) with ESMTPS id 3cs9muhft0-1\n (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT);\n Mon, 06 Dec 2021 03:08:17 -0800", "from DC5-EXCH02.marvell.com (10.69.176.39) by DC5-EXCH02.marvell.com\n (10.69.176.39) with Microsoft SMTP Server (TLS) id 15.0.1497.18;\n Mon, 6 Dec 2021 03:08:15 -0800", "from maili.marvell.com (10.69.176.80) by DC5-EXCH02.marvell.com\n (10.69.176.39) with Microsoft SMTP Server id 15.0.1497.18 via Frontend\n Transport; Mon, 6 Dec 2021 03:08:15 -0800", "from HY-LT1002.marvell.com (HY-LT1002.marvell.com [10.28.176.218])\n by maili.marvell.com (Postfix) with ESMTP id 139D43F704A;\n Mon, 6 Dec 2021 03:08:11 -0800 (PST)" ], "DKIM-Signature": "v=1; a=rsa-sha256; c=relaxed/relaxed; d=marvell.com;\n h=from : to : cc :\n subject : date : message-id : in-reply-to : references : mime-version :\n content-transfer-encoding : content-type; s=pfpt0220;\n bh=XKRLXpr3TkbEZO5Fe3jGTVwKXftipNvtREFA9EcbboQ=;\n b=h7fm1aDfeyhVhk5b4DbLnqCzZtjMprilbOnG9v47PMm+QcSnUz506XAhVSDIWPxCFx8L\n czCx4I4ylDPFkuqvg2uAJv2B087cW0QbyKr18IYPmjvqhztn24ANjWD5w/oCcLEXCo1x\n loltvSFbkfINocwr9FEwtNbdvusqa2Yb0tcw0d0ThCxsRn0q8nS37CSlW5bwTt+CXiVy\n BGMHRf0DZPJg6JUMl5vHQieCg0NmSwym6aFpqmoi0BVlV/hGkTo1IppMQP14rRTQ7cGH\n 2pG9f7MxNj25N5K1hx+TVH99Z5JbuDseu9H0IqvcgeAKxg7HXhYGMUovVIOseajV0VJT LA==", "From": "Anoob Joseph <anoobj@marvell.com>", "To": "Akhil Goyal <gakhil@marvell.com>, Declan Doherty\n <declan.doherty@intel.com>, Fan Zhang <roy.fan.zhang@intel.com>, \"Pablo de\n Lara\" <pablo.de.lara.guarch@intel.com>", "CC": "Anoob Joseph <anoobj@marvell.com>, Jerin Jacob <jerinj@marvell.com>,\n Archana Muniganti <marchana@marvell.com>, Tejasree Kondoj\n <ktejasree@marvell.com>, Hemant Agrawal <hemant.agrawal@nxp.com>, \"Radu\n Nicolau\" <radu.nicolau@intel.com>,\n Ciara Power <ciara.power@intel.com>, Gagandeep Singh <g.singh@nxp.com>,\n <dev@dpdk.org>", "Subject": "[PATCH v2 01/13] test/crypto: add IPsec aes-cbc known vectors", "Date": "Mon, 6 Dec 2021 16:37:48 +0530", "Message-ID": "<1638788880-650-2-git-send-email-anoobj@marvell.com>", "X-Mailer": "git-send-email 2.7.4", "In-Reply-To": "<1638788880-650-1-git-send-email-anoobj@marvell.com>", "References": "<1638777528-553-1-git-send-email-anoobj@marvell.com>\n <1638788880-650-1-git-send-email-anoobj@marvell.com>", "MIME-Version": "1.0", "Content-Transfer-Encoding": "8bit", "Content-Type": "text/plain", "X-Proofpoint-GUID": "1ooo_ZpUwZ4f8T1Gpc9Qt3NunyApiKNw", "X-Proofpoint-ORIG-GUID": "1ooo_ZpUwZ4f8T1Gpc9Qt3NunyApiKNw", "X-Proofpoint-Virus-Version": "vendor=baseguard\n engine=ICAP:2.0.205,Aquarius:18.0.790,Hydra:6.0.425,FMLib:17.11.62.513\n definitions=2021-12-06_04,2021-12-06_01,2021-12-02_01", "X-BeenThere": "dev@dpdk.org", "X-Mailman-Version": "2.1.29", "Precedence": "list", "List-Id": "DPDK patches and discussions <dev.dpdk.org>", "List-Unsubscribe": "<https://mails.dpdk.org/options/dev>,\n <mailto:dev-request@dpdk.org?subject=unsubscribe>", "List-Archive": "<http://mails.dpdk.org/archives/dev/>", "List-Post": "<mailto:dev@dpdk.org>", "List-Help": "<mailto:dev-request@dpdk.org?subject=help>", "List-Subscribe": "<https://mails.dpdk.org/listinfo/dev>,\n <mailto:dev-request@dpdk.org?subject=subscribe>", "Errors-To": "dev-bounces@dpdk.org" }, "content": "Extend the framework to support chained operations and add\nAES-CBC 128 known vector tests.\n\nSigned-off-by: Anoob Joseph <anoobj@marvell.com>\n---\n app/test/test_cryptodev.c | 62 ++++++++++--\n app/test/test_cryptodev_security_ipsec.c | 51 ++++++++++\n app/test/test_cryptodev_security_ipsec.h | 8 ++\n .../test_cryptodev_security_ipsec_test_vectors.h | 110 +++++++++++++++++++++\n doc/guides/rel_notes/release_22_03.rst | 4 +\n 5 files changed, 226 insertions(+), 9 deletions(-)", "diff": "diff --git a/app/test/test_cryptodev.c b/app/test/test_cryptodev.c\nindex 10b48cd..6d94085 100644\n--- a/app/test/test_cryptodev.c\n+++ b/app/test/test_cryptodev.c\n@@ -9191,23 +9191,59 @@ test_ipsec_proto_process(const struct ipsec_test_data td[],\n \t\t\treturn TEST_SKIPPED;\n \t\t}\n \t} else {\n-\t\t/* Only AEAD supported now */\n-\t\treturn TEST_SKIPPED;\n+\t\tmemcpy(&ut_params->cipher_xform, &td[0].xform.chain.cipher,\n+\t\t sizeof(ut_params->cipher_xform));\n+\t\tmemcpy(&ut_params->auth_xform, &td[0].xform.chain.auth,\n+\t\t sizeof(ut_params->auth_xform));\n+\t\tut_params->cipher_xform.cipher.key.data = td[0].key.data;\n+\t\tut_params->cipher_xform.cipher.iv.offset = IV_OFFSET;\n+\t\tut_params->auth_xform.auth.key.data = td[0].key.data;\n+\n+\t\t/* Verify crypto capabilities */\n+\n+\t\tif (test_ipsec_crypto_caps_cipher_verify(\n+\t\t\t\tsec_cap,\n+\t\t\t\t&ut_params->cipher_xform) != 0) {\n+\t\t\tif (!silent)\n+\t\t\t\tRTE_LOG(INFO, USER1,\n+\t\t\t\t\t\"Cipher crypto capabilities not supported\\n\");\n+\t\t\treturn TEST_SKIPPED;\n+\t\t}\n+\n+\t\tif (test_ipsec_crypto_caps_auth_verify(\n+\t\t\t\tsec_cap,\n+\t\t\t\t&ut_params->auth_xform) != 0) {\n+\t\t\tif (!silent)\n+\t\t\t\tRTE_LOG(INFO, USER1,\n+\t\t\t\t\t\"Auth crypto capabilities not supported\\n\");\n+\t\t\treturn TEST_SKIPPED;\n+\t\t}\n \t}\n \n \tif (test_ipsec_sec_caps_verify(&ipsec_xform, sec_cap, silent) != 0)\n \t\treturn TEST_SKIPPED;\n \n-\tsalt_len = RTE_MIN(sizeof(ipsec_xform.salt), td[0].salt.len);\n-\tmemcpy(&ipsec_xform.salt, td[0].salt.data, salt_len);\n-\n \tstruct rte_security_session_conf sess_conf = {\n \t\t.action_type = ut_params->type,\n \t\t.protocol = RTE_SECURITY_PROTOCOL_IPSEC,\n-\t\t.ipsec = ipsec_xform,\n-\t\t.crypto_xform = &ut_params->aead_xform,\n \t};\n \n+\tif (td[0].aead) {\n+\t\tsalt_len = RTE_MIN(sizeof(ipsec_xform.salt), td[0].salt.len);\n+\t\tmemcpy(&ipsec_xform.salt, td[0].salt.data, salt_len);\n+\t\tsess_conf.ipsec = ipsec_xform;\n+\t\tsess_conf.crypto_xform = &ut_params->aead_xform;\n+\t} else {\n+\t\tsess_conf.ipsec = ipsec_xform;\n+\t\tif (dir == RTE_SECURITY_IPSEC_SA_DIR_EGRESS) {\n+\t\t\tsess_conf.crypto_xform = &ut_params->cipher_xform;\n+\t\t\tut_params->cipher_xform.next = &ut_params->auth_xform;\n+\t\t} else {\n+\t\t\tsess_conf.crypto_xform = &ut_params->auth_xform;\n+\t\t\tut_params->auth_xform.next = &ut_params->cipher_xform;\n+\t\t}\n+\t}\n+\n \t/* Create security session */\n \tut_params->sec_session = rte_security_session_create(ctx, &sess_conf,\n \t\t\t\t\tts_params->session_mpool,\n@@ -9316,14 +9352,18 @@ test_ipsec_proto_known_vec(const void *test_data)\n }\n \n static int\n-test_ipsec_proto_known_vec_inb(const void *td_outb)\n+test_ipsec_proto_known_vec_inb(const void *test_data)\n {\n+\tconst struct ipsec_test_data *td = test_data;\n \tstruct ipsec_test_flags flags;\n \tstruct ipsec_test_data td_inb;\n \n \tmemset(&flags, 0, sizeof(flags));\n \n-\ttest_ipsec_td_in_from_out(td_outb, &td_inb);\n+\tif (td->ipsec_xform.direction == RTE_SECURITY_IPSEC_SA_DIR_EGRESS)\n+\t\ttest_ipsec_td_in_from_out(td, &td_inb);\n+\telse\n+\t\tmemcpy(&td_inb, td, sizeof(td_inb));\n \n \treturn test_ipsec_proto_process(&td_inb, NULL, 1, false, &flags);\n }\n@@ -14394,6 +14434,10 @@ static struct unit_test_suite ipsec_proto_testsuite = {\n \t\t\t\"Inbound known vector (ESP tunnel mode IPv4 AES-GCM 256)\",\n \t\t\tut_setup_security, ut_teardown,\n \t\t\ttest_ipsec_proto_known_vec_inb, &pkt_aes_256_gcm),\n+\t\tTEST_CASE_NAMED_WITH_DATA(\n+\t\t\t\"Inbound known vector (ESP tunnel mode IPv4 AES-CBC 128)\",\n+\t\t\tut_setup_security, ut_teardown,\n+\t\t\ttest_ipsec_proto_known_vec_inb, &pkt_aes_128_cbc_null),\n \t\tTEST_CASE_NAMED_ST(\n \t\t\t\"Combined test alg list\",\n \t\t\tut_setup_security, ut_teardown,\ndiff --git a/app/test/test_cryptodev_security_ipsec.c b/app/test/test_cryptodev_security_ipsec.c\nindex 4708803..45960bf 100644\n--- a/app/test/test_cryptodev_security_ipsec.c\n+++ b/app/test/test_cryptodev_security_ipsec.c\n@@ -150,6 +150,57 @@ test_ipsec_crypto_caps_aead_verify(\n \treturn -ENOTSUP;\n }\n \n+int\n+test_ipsec_crypto_caps_cipher_verify(\n+\t\tconst struct rte_security_capability *sec_cap,\n+\t\tstruct rte_crypto_sym_xform *cipher)\n+{\n+\tconst struct rte_cryptodev_symmetric_capability *sym_cap;\n+\tconst struct rte_cryptodev_capabilities *cap;\n+\tint j = 0;\n+\n+\twhile ((cap = &sec_cap->crypto_capabilities[j++])->op !=\n+\t\t\tRTE_CRYPTO_OP_TYPE_UNDEFINED) {\n+\t\tif (cap->op == RTE_CRYPTO_OP_TYPE_SYMMETRIC &&\n+\t\t\t\tcap->sym.xform_type == cipher->type &&\n+\t\t\t\tcap->sym.cipher.algo == cipher->cipher.algo) {\n+\t\t\tsym_cap = &cap->sym;\n+\t\t\tif (rte_cryptodev_sym_capability_check_cipher(sym_cap,\n+\t\t\t\t\tcipher->cipher.key.length,\n+\t\t\t\t\tcipher->cipher.iv.length) == 0)\n+\t\t\t\treturn 0;\n+\t\t}\n+\t}\n+\n+\treturn -ENOTSUP;\n+}\n+\n+int\n+test_ipsec_crypto_caps_auth_verify(\n+\t\tconst struct rte_security_capability *sec_cap,\n+\t\tstruct rte_crypto_sym_xform *auth)\n+{\n+\tconst struct rte_cryptodev_symmetric_capability *sym_cap;\n+\tconst struct rte_cryptodev_capabilities *cap;\n+\tint j = 0;\n+\n+\twhile ((cap = &sec_cap->crypto_capabilities[j++])->op !=\n+\t\t\tRTE_CRYPTO_OP_TYPE_UNDEFINED) {\n+\t\tif (cap->op == RTE_CRYPTO_OP_TYPE_SYMMETRIC &&\n+\t\t\t\tcap->sym.xform_type == auth->type &&\n+\t\t\t\tcap->sym.auth.algo == auth->auth.algo) {\n+\t\t\tsym_cap = &cap->sym;\n+\t\t\tif (rte_cryptodev_sym_capability_check_auth(sym_cap,\n+\t\t\t\t\tauth->auth.key.length,\n+\t\t\t\t\tauth->auth.digest_length,\n+\t\t\t\t\tauth->auth.iv.length) == 0)\n+\t\t\t\treturn 0;\n+\t\t}\n+\t}\n+\n+\treturn -ENOTSUP;\n+}\n+\n void\n test_ipsec_td_in_from_out(const struct ipsec_test_data *td_out,\n \t\t\t struct ipsec_test_data *td_in)\ndiff --git a/app/test/test_cryptodev_security_ipsec.h b/app/test/test_cryptodev_security_ipsec.h\nindex 7628d0c..91c6cd4 100644\n--- a/app/test/test_cryptodev_security_ipsec.h\n+++ b/app/test/test_cryptodev_security_ipsec.h\n@@ -96,6 +96,14 @@ int test_ipsec_crypto_caps_aead_verify(\n \t\tconst struct rte_security_capability *sec_cap,\n \t\tstruct rte_crypto_sym_xform *aead);\n \n+int test_ipsec_crypto_caps_cipher_verify(\n+\t\tconst struct rte_security_capability *sec_cap,\n+\t\tstruct rte_crypto_sym_xform *cipher);\n+\n+int test_ipsec_crypto_caps_auth_verify(\n+\t\tconst struct rte_security_capability *sec_cap,\n+\t\tstruct rte_crypto_sym_xform *auth);\n+\n void test_ipsec_td_in_from_out(const struct ipsec_test_data *td_out,\n \t\t\t struct ipsec_test_data *td_in);\n \ndiff --git a/app/test/test_cryptodev_security_ipsec_test_vectors.h b/app/test/test_cryptodev_security_ipsec_test_vectors.h\nindex bb95d00..bf831e9 100644\n--- a/app/test/test_cryptodev_security_ipsec_test_vectors.h\n+++ b/app/test/test_cryptodev_security_ipsec_test_vectors.h\n@@ -324,4 +324,114 @@ struct ipsec_test_data pkt_aes_256_gcm = {\n \t},\n };\n \n+/* Known vectors for AES-CBC\n+ * https://datatracker.ietf.org/doc/html/rfc3602#section-4\n+ */\n+\n+struct ipsec_test_data pkt_aes_128_cbc_null = {\n+\t.key = {\n+\t\t.data = {\n+\t\t\t0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,\n+\t\t\t0x01, 0x23, 0x45, 0x67, 0x89, 0xab, 0xcd, 0xef,\n+\t\t},\n+\t},\n+\t.input_text = {\n+\t\t.data = {\n+\t\t\t/* IP - outer header */\n+\t\t\t0x45, 0x00, 0x00, 0x8c, 0x00, 0x02, 0x00, 0x00,\n+\t\t\t0x40, 0x32, 0x27, 0xbc, 0x00, 0x01, 0xa8, 0xc0,\n+\t\t\t0x01, 0x01, 0xa8, 0xc0,\n+\n+\t\t\t/* ESP */\n+\t\t\t0x00, 0x00, 0x87, 0x65,\t0x00, 0x00, 0x00, 0x02,\n+\n+\t\t\t/* IV */\n+\t\t\t0xf4, 0xe7, 0x65, 0x24,\t0x4f, 0x64, 0x07, 0xad,\n+\t\t\t0xf1, 0x3d, 0xc1, 0x38,\t0x0f, 0x67, 0x3f, 0x37,\n+\n+\t\t\t/* Data */\n+\t\t\t0x77, 0x3b, 0x52, 0x41,\t0xa4, 0xc4, 0x49, 0x22,\n+\t\t\t0x5e, 0x4f, 0x3c, 0xe5, 0xed, 0x61, 0x1b, 0x0c,\n+\t\t\t0x23, 0x7c, 0xa9, 0x6c, 0xf7, 0x4a, 0x93, 0x01,\n+\t\t\t0x3c, 0x1b, 0x0e, 0xa1, 0xa0, 0xcf, 0x70, 0xf8,\n+\t\t\t0xe4, 0xec, 0xae, 0xc7, 0x8a, 0xc5, 0x3a, 0xad,\n+\t\t\t0x7a, 0x0f, 0x02, 0x2b, 0x85, 0x92, 0x43, 0xc6,\n+\t\t\t0x47, 0x75, 0x2e, 0x94, 0xa8, 0x59, 0x35, 0x2b,\n+\t\t\t0x8a, 0x4d, 0x4d, 0x2d, 0xec, 0xd1, 0x36, 0xe5,\n+\t\t\t0xc1, 0x77, 0xf1, 0x32,\t0xad, 0x3f, 0xbf, 0xb2,\n+\t\t\t0x20, 0x1a, 0xc9, 0x90,\t0x4c, 0x74, 0xee, 0x0a,\n+\t\t\t0x10, 0x9e, 0x0c, 0xa1,\t0xe4, 0xdf, 0xe9, 0xd5,\n+\t\t\t0xa1, 0x00, 0xb8, 0x42,\t0xf1, 0xc2, 0x2f, 0x0d,\n+\t\t},\n+\t\t.len = 140,\n+\t},\n+\t.output_text = {\n+\t\t.data = {\n+\t\t\t/* IP */\n+\t\t\t0x45, 0x00, 0x00, 0x54, 0x09, 0x04, 0x00, 0x00,\n+\t\t\t0x40, 0x01, 0xf9, 0x88, 0xc0, 0xa8, 0x7b, 0x03,\n+\t\t\t0xc0, 0xa8, 0x7b, 0xc8,\n+\n+\t\t\t/* ICMP */\n+\t\t\t0x08, 0x00, 0x9f, 0x76,\t0xa9, 0x0a, 0x01, 0x00,\n+\t\t\t0xb4, 0x9c, 0x08, 0x3d,\t0x02, 0xa2, 0x04, 0x00,\n+\t\t\t0x08, 0x09, 0x0a, 0x0b,\t0x0c, 0x0d, 0x0e, 0x0f,\n+\t\t\t0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17,\n+\t\t\t0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f,\n+\t\t\t0x20, 0x21, 0x22, 0x23,\t0x24, 0x25, 0x26, 0x27,\n+\t\t\t0x28, 0x29, 0x2a, 0x2b,\t0x2c, 0x2d, 0x2e, 0x2f,\n+\t\t\t0x30, 0x31, 0x32, 0x33,\t0x34, 0x35, 0x36, 0x37,\n+\t\t\t0x01, 0x02, 0x03, 0x04,\t0x05, 0x06, 0x07, 0x08,\n+\t\t\t0x09, 0x0a, 0x0a, 0x04,\n+\t\t},\n+\t\t.len = 84,\n+\t},\n+\t.iv = {\n+\t\t.data = {\n+\t\t\t0xf4, 0xe7, 0x65, 0x24, 0x4f, 0x64, 0x07, 0xad,\n+\t\t\t0xf1, 0x3d, 0xc1, 0x38, 0x0f, 0x67, 0x3f, 0x37,\n+\t\t},\n+\t},\n+\n+\t.ipsec_xform = {\n+\t\t.spi = 0x8765,\n+\t\t.options.esn = 0,\n+\t\t.options.udp_encap = 0,\n+\t\t.options.copy_dscp = 0,\n+\t\t.options.copy_flabel = 0,\n+\t\t.options.copy_df = 0,\n+\t\t.options.dec_ttl = 0,\n+\t\t.options.ecn = 0,\n+\t\t.options.stats = 0,\n+\t\t.options.tunnel_hdr_verify = 0,\n+\t\t.direction = RTE_SECURITY_IPSEC_SA_DIR_INGRESS,\n+\t\t.proto = RTE_SECURITY_IPSEC_SA_PROTO_ESP,\n+\t\t.mode = RTE_SECURITY_IPSEC_SA_MODE_TUNNEL,\n+\t\t.tunnel.type = RTE_SECURITY_IPSEC_TUNNEL_IPV4,\n+\t\t.replay_win_sz = 0,\n+\t},\n+\n+\t.aead = false,\n+\n+\t.xform = {\n+\t\t.chain.cipher = {\n+\t\t\t.next = NULL,\n+\t\t\t.type = RTE_CRYPTO_SYM_XFORM_CIPHER,\n+\t\t\t.cipher = {\n+\t\t\t\t.op = RTE_CRYPTO_CIPHER_OP_DECRYPT,\n+\t\t\t\t.algo = RTE_CRYPTO_CIPHER_AES_CBC,\n+\t\t\t\t.key.length = 16,\n+\t\t\t\t.iv.length = 16,\n+\t\t\t},\n+\t\t},\n+\t\t.chain.auth = {\n+\t\t\t.next = NULL,\n+\t\t\t.type = RTE_CRYPTO_SYM_XFORM_AUTH,\n+\t\t\t.auth = {\n+\t\t\t\t.algo = RTE_CRYPTO_AUTH_NULL,\n+\t\t\t},\n+\t\t},\n+\t},\n+};\n+\n #endif /* TEST_CRYPTODEV_SECURITY_IPSEC_TEST_VECTORS_H_ */\ndiff --git a/doc/guides/rel_notes/release_22_03.rst b/doc/guides/rel_notes/release_22_03.rst\nindex 6d99d1e..9fccddc 100644\n--- a/doc/guides/rel_notes/release_22_03.rst\n+++ b/doc/guides/rel_notes/release_22_03.rst\n@@ -55,6 +55,10 @@ New Features\n Also, make sure to start the actual text at the margin.\n =======================================================\n \n+* **Updated lookaside protocol (IPsec) tests in dpdk-test.**\n+\n+ * Added AES-CBC 128 NULL auth known vector tests.\n+\n \n Removed Items\n -------------\n", "prefixes": [ "v2", "01/13" ] }