test/security: add ESN and anti-replay for inline IPsec

[dpdk.git] / app / test / test_cryptodev_security_ipsec.h

diff --git a/app/test/test_cryptodev_security_ipsec.h b/app/test/test_cryptodev_security_ipsec.h
index a15c1d3..0d9b5b6 100644 (file)
--- a/app/test/test_cryptodev_security_ipsec.h
+++ b/app/test/test_cryptodev_security_ipsec.h
@@ -40,6 +40,11 @@ struct ipsec_test_data {
        struct rte_security_ipsec_xform ipsec_xform;
 
        bool aead;
+
+       bool aes_gmac;
+
+       bool auth_only;
+
        /* Antireplay packet */
        bool ar_packet;
 
@@ -87,6 +92,8 @@ struct ipsec_test_flags {
        bool antireplay;
        enum df_flags df;
        enum dscp_flags dscp;
+       bool dec_ttl_or_hop_limit;
+       bool ah;
 };
 
 struct crypto_param {
@@ -181,6 +188,13 @@ static const struct crypto_param auth_list[] = {
                .key_length = 16,
                .digest_length = 12,
        },
+       {
+               .type = RTE_CRYPTO_SYM_XFORM_AUTH,
+               .alg.auth =  RTE_CRYPTO_AUTH_AES_GMAC,
+               .key_length = 16,
+               .digest_length = 16,
+               .iv_length = 12,
+       },
 };
 
 struct crypto_param_comb {
@@ -197,8 +211,12 @@ extern struct crypto_param_comb alg_list[RTE_DIM(aead_list) +
                                         (RTE_DIM(cipher_list) *
                                          RTE_DIM(auth_list))];
 
+extern struct crypto_param_comb ah_alg_list[2 * (RTE_DIM(auth_list) - 1)];
+
 void test_ipsec_alg_list_populate(void);
 
+void test_ipsec_ah_alg_list_populate(void);
+
 int test_ipsec_sec_caps_verify(struct rte_security_ipsec_xform *ipsec_xform,
                               const struct rte_security_capability *sec_cap,
                               bool silent);