[ceph.git] / ceph / src / spdk / dpdk / examples / ipsec-secgw / test / tun_aesgcm_defs.sh

#! /bin/bash
# SPDX-License-Identifier: BSD-3-Clause

. ${DIR}/tun_aesgcm_common_defs.sh

SGW_CMD_XPRM="${DPDK_VARS} ${DPDK_MODE} ${SGW_CMD_XPRM}"

config_remote_xfrm_44()
{
	ssh ${REMOTE_HOST} ip xfrm policy flush
	ssh ${REMOTE_HOST} ip xfrm state flush

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
dir out ptype main action allow \
tmpl src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
proto esp mode tunnel reqid 1

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
dir in ptype main action allow \
tmpl src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
proto esp mode tunnel reqid 2

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
proto esp spi 7 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
aead "rfc4106\(gcm\(aes\)\)" \
0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
proto esp spi 7 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
aead "rfc4106\(gcm\(aes\)\)" \
0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128

	ssh ${REMOTE_HOST} ip xfrm policy list
	ssh ${REMOTE_HOST} ip xfrm state list
}

config_remote_xfrm_46()
{
	ssh ${REMOTE_HOST} ip xfrm policy flush
	ssh ${REMOTE_HOST} ip xfrm state flush

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
dir out ptype main action allow \
tmpl src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
proto esp mode tunnel reqid 1

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
dir in ptype main action allow \
tmpl src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
proto esp mode tunnel reqid 2

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
proto esp spi 6 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
aead "rfc4106\(gcm\(aes\)\)" \
0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 \
sel src ${REMOTE_IPV4} dst ${LOCAL_IPV4}

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
proto esp spi 6 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
aead "rfc4106\(gcm\(aes\)\)" \
0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 \
sel src ${LOCAL_IPV4} dst ${REMOTE_IPV4}

	ssh ${REMOTE_HOST} ip xfrm policy list
	ssh ${REMOTE_HOST} ip xfrm state list
}

config_remote_xfrm_64()
{
	ssh ${REMOTE_HOST} ip xfrm policy flush
	ssh ${REMOTE_HOST} ip xfrm state flush

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
dir out ptype main action allow \
tmpl src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
proto esp mode tunnel reqid 1

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
dir in ptype main action allow \
tmpl src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
proto esp mode tunnel reqid 2

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
proto esp spi 8 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
aead "rfc4106\(gcm\(aes\)\)" \
0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 \
sel src ${REMOTE_IPV6} dst ${LOCAL_IPV6}

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
proto esp spi 8 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
aead "rfc4106\(gcm\(aes\)\)" \
0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 \
sel src ${LOCAL_IPV6} dst ${REMOTE_IPV6}

	ssh ${REMOTE_HOST} ip xfrm policy list
	ssh ${REMOTE_HOST} ip xfrm state list
}

config_remote_xfrm_66()
{
	ssh ${REMOTE_HOST} ip xfrm policy flush
	ssh ${REMOTE_HOST} ip xfrm state flush

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
dir out ptype main action allow \
tmpl src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
proto esp mode tunnel reqid 3

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
dir in ptype main action allow \
tmpl src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
proto esp mode tunnel reqid 4

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
proto esp spi 9 reqid 3 mode tunnel replay-window 64 ${XFRM_ESN} \
aead "rfc4106\(gcm\(aes\)\)" \
0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
proto esp spi 9 reqid 4 mode tunnel replay-window 64 ${XFRM_ESN} \
aead "rfc4106\(gcm\(aes\)\)" \
0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128

	ssh ${REMOTE_HOST} ip xfrm policy list
	ssh ${REMOTE_HOST} ip xfrm state list
}
Commit	Line	Data
9f95a23c	1	#! /bin/bash
f67539c2	2	# SPDX-License-Identifier: BSD-3-Clause
9f95a23c TL	3
	4	. ${DIR}/tun_aesgcm_common_defs.sh
	5
f67539c2	6	SGW_CMD_XPRM="${DPDK_VARS} ${DPDK_MODE} ${SGW_CMD_XPRM}"
9f95a23c	7
f67539c2	8	config_remote_xfrm_44()
9f95a23c TL	9	{
	10	ssh ${REMOTE_HOST} ip xfrm policy flush
	11	ssh ${REMOTE_HOST} ip xfrm state flush
	12
	13	ssh ${REMOTE_HOST} ip xfrm policy add \
	14	src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
	15	dir out ptype main action allow \
	16	tmpl src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
	17	proto esp mode tunnel reqid 1
	18
	19	ssh ${REMOTE_HOST} ip xfrm policy add \
	20	src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
	21	dir in ptype main action allow \
	22	tmpl src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
	23	proto esp mode tunnel reqid 2
	24
	25	ssh ${REMOTE_HOST} ip xfrm state add \
	26	src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
f67539c2	27	proto esp spi 7 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
9f95a23c TL	28	aead "rfc4106\(gcm\(aes\)\)" \
	29	0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128
	30
	31	ssh ${REMOTE_HOST} ip xfrm state add \
	32	src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
f67539c2	33	proto esp spi 7 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
9f95a23c TL	34	aead "rfc4106\(gcm\(aes\)\)" \
	35	0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128
	36
	37	ssh ${REMOTE_HOST} ip xfrm policy list
	38	ssh ${REMOTE_HOST} ip xfrm state list
f67539c2 TL	39	}
	40
	41	config_remote_xfrm_46()
	42	{
	43	ssh ${REMOTE_HOST} ip xfrm policy flush
	44	ssh ${REMOTE_HOST} ip xfrm state flush
	45
	46	ssh ${REMOTE_HOST} ip xfrm policy add \
	47	src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
	48	dir out ptype main action allow \
	49	tmpl src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
	50	proto esp mode tunnel reqid 1
	51
	52	ssh ${REMOTE_HOST} ip xfrm policy add \
	53	src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
	54	dir in ptype main action allow \
	55	tmpl src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
	56	proto esp mode tunnel reqid 2
	57
	58	ssh ${REMOTE_HOST} ip xfrm state add \
	59	src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
	60	proto esp spi 6 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
	61	aead "rfc4106\(gcm\(aes\)\)" \
	62	0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 \
	63	sel src ${REMOTE_IPV4} dst ${LOCAL_IPV4}
	64
	65	ssh ${REMOTE_HOST} ip xfrm state add \
	66	src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
	67	proto esp spi 6 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
	68	aead "rfc4106\(gcm\(aes\)\)" \
	69	0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 \
	70	sel src ${LOCAL_IPV4} dst ${REMOTE_IPV4}
	71
	72	ssh ${REMOTE_HOST} ip xfrm policy list
	73	ssh ${REMOTE_HOST} ip xfrm state list
	74	}
9f95a23c	75
f67539c2 TL	76	config_remote_xfrm_64()
	77	{
	78	ssh ${REMOTE_HOST} ip xfrm policy flush
	79	ssh ${REMOTE_HOST} ip xfrm state flush
	80
	81	ssh ${REMOTE_HOST} ip xfrm policy add \
	82	src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
	83	dir out ptype main action allow \
	84	tmpl src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
	85	proto esp mode tunnel reqid 1
	86
	87	ssh ${REMOTE_HOST} ip xfrm policy add \
	88	src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
	89	dir in ptype main action allow \
	90	tmpl src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
	91	proto esp mode tunnel reqid 2
	92
	93	ssh ${REMOTE_HOST} ip xfrm state add \
	94	src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
	95	proto esp spi 8 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
	96	aead "rfc4106\(gcm\(aes\)\)" \
	97	0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 \
	98	sel src ${REMOTE_IPV6} dst ${LOCAL_IPV6}
	99
	100	ssh ${REMOTE_HOST} ip xfrm state add \
	101	src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
	102	proto esp spi 8 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
	103	aead "rfc4106\(gcm\(aes\)\)" \
	104	0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 \
	105	sel src ${LOCAL_IPV6} dst ${REMOTE_IPV6}
	106
	107	ssh ${REMOTE_HOST} ip xfrm policy list
	108	ssh ${REMOTE_HOST} ip xfrm state list
9f95a23c TL	109	}
9f95a23c TL	110
f67539c2	111	config_remote_xfrm_66()
9f95a23c	112	{
f67539c2 TL	113	ssh ${REMOTE_HOST} ip xfrm policy flush
f67539c2 TL	114	ssh ${REMOTE_HOST} ip xfrm state flush
9f95a23c TL	115
	116	ssh ${REMOTE_HOST} ip xfrm policy add \
	117	src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
	118	dir out ptype main action allow \
	119	tmpl src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
	120	proto esp mode tunnel reqid 3
	121
	122	ssh ${REMOTE_HOST} ip xfrm policy add \
	123	src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
	124	dir in ptype main action allow \
	125	tmpl src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
	126	proto esp mode tunnel reqid 4
	127
	128	ssh ${REMOTE_HOST} ip xfrm state add \
	129	src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
f67539c2	130	proto esp spi 9 reqid 3 mode tunnel replay-window 64 ${XFRM_ESN} \
9f95a23c TL	131	aead "rfc4106\(gcm\(aes\)\)" \
	132	0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128
	133
	134	ssh ${REMOTE_HOST} ip xfrm state add \
	135	src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
f67539c2	136	proto esp spi 9 reqid 4 mode tunnel replay-window 64 ${XFRM_ESN} \
9f95a23c TL	137	aead "rfc4106\(gcm\(aes\)\)" \
	138	0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128
	139
	140	ssh ${REMOTE_HOST} ip xfrm policy list
	141	ssh ${REMOTE_HOST} ip xfrm state list
9f95a23c	142	}