d/numam-dpdk
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
8716c0ec06
numam-dpdk/drivers/crypto/ipsec_mb/pmd_aesni_mb_priv.h

1009 lines
20 KiB
C
Raw Normal View History

crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
/* SPDX-License-Identifier: BSD-3-Clause
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
* Copyright(c) 2015-2021 Intel Corporation
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
*/
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
#ifndef _PMD_AESNI_MB_PRIV_H_
#define _PMD_AESNI_MB_PRIV_H_
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
#if defined(RTE_LIB_SECURITY)
#define AESNI_MB_DOCSIS_SEC_ENABLED 1
#include <rte_security.h>
#include <rte_security_driver.h>
crypto/aesni_mb: support DOCSIS protocol Add support to the AESNI-MB PMD for the DOCSIS protocol, through the rte_security API. This, therefore, includes adding support for the rte_security API to this PMD. Signed-off-by: David Coyle <david.coyle@intel.com> Signed-off-by: Mairtin o Loingsigh <mairtin.oloingsigh@intel.com> Acked-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-07-03 12:39:29 +00:00
#include <rte_ether.h>
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
#endif
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
#include "ipsec_mb_private.h"
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
#define AES_CCM_DIGEST_MIN_LEN 4
#define AES_CCM_DIGEST_MAX_LEN 16
#define HMAC_MAX_BLOCK_SIZE 128
#define HMAC_IPAD_VALUE (0x36)
#define HMAC_OPAD_VALUE (0x5C)
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
static const struct rte_cryptodev_capabilities aesni_mb_capabilities[] = {
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
{ /* MD5 HMAC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_MD5_HMAC,
.block_size = 64,
.key_size = {
.min = 1,
.max = 64,
.increment = 1
},
.digest_size = {
.min = 1,
.max = 16,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
{ /* SHA1 HMAC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA1_HMAC,
.block_size = 64,
.key_size = {
.min = 1,
.max = 65535,
.increment = 1
},
.digest_size = {
.min = 1,
.max = 20,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: support plain SHA This patch adds the plain SHA1, SHA224, SHA256, SHA384, and SHA512 algorithms support to AESNI-MB PMD. The cryptodev unit test and documentation are updated accordingly. Signed-off-by: Damian Nowak <damianx.nowak@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Fiona Trahe <fiona.trahe@intel.com>
2018-12-20 12:22:15 +00:00
{ /* SHA1 */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA1,
.block_size = 64,
.key_size = {
.min = 0,
.max = 0,
.increment = 0
},
.digest_size = {
.min = 1,
.max = 20,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
{ /* SHA224 HMAC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA224_HMAC,
.block_size = 64,
.key_size = {
.min = 1,
.max = 65535,
.increment = 1
},
.digest_size = {
.min = 1,
.max = 28,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: support plain SHA This patch adds the plain SHA1, SHA224, SHA256, SHA384, and SHA512 algorithms support to AESNI-MB PMD. The cryptodev unit test and documentation are updated accordingly. Signed-off-by: Damian Nowak <damianx.nowak@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Fiona Trahe <fiona.trahe@intel.com>
2018-12-20 12:22:15 +00:00
{ /* SHA224 */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA224,
.block_size = 64,
.key_size = {
.min = 0,
.max = 0,
.increment = 0
},
.digest_size = {
.min = 1,
.max = 28,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
{ /* SHA256 HMAC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA256_HMAC,
.block_size = 64,
.key_size = {
.min = 1,
.max = 65535,
.increment = 1
},
.digest_size = {
.min = 1,
.max = 32,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: support plain SHA This patch adds the plain SHA1, SHA224, SHA256, SHA384, and SHA512 algorithms support to AESNI-MB PMD. The cryptodev unit test and documentation are updated accordingly. Signed-off-by: Damian Nowak <damianx.nowak@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Fiona Trahe <fiona.trahe@intel.com>
2018-12-20 12:22:15 +00:00
{ /* SHA256 */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA256,
.block_size = 64,
.key_size = {
.min = 0,
.max = 0,
.increment = 0
},
.digest_size = {
.min = 1,
.max = 32,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
{ /* SHA384 HMAC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA384_HMAC,
.block_size = 128,
.key_size = {
.min = 1,
.max = 65535,
.increment = 1
},
.digest_size = {
.min = 1,
.max = 48,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: support plain SHA This patch adds the plain SHA1, SHA224, SHA256, SHA384, and SHA512 algorithms support to AESNI-MB PMD. The cryptodev unit test and documentation are updated accordingly. Signed-off-by: Damian Nowak <damianx.nowak@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Fiona Trahe <fiona.trahe@intel.com>
2018-12-20 12:22:15 +00:00
{ /* SHA384 */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA384,
.block_size = 128,
.key_size = {
.min = 0,
.max = 0,
.increment = 0
},
.digest_size = {
.min = 1,
.max = 48,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
{ /* SHA512 HMAC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA512_HMAC,
.block_size = 128,
.key_size = {
.min = 1,
.max = 65535,
.increment = 1
},
.digest_size = {
.min = 1,
.max = 64,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: support plain SHA This patch adds the plain SHA1, SHA224, SHA256, SHA384, and SHA512 algorithms support to AESNI-MB PMD. The cryptodev unit test and documentation are updated accordingly. Signed-off-by: Damian Nowak <damianx.nowak@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Fiona Trahe <fiona.trahe@intel.com>
2018-12-20 12:22:15 +00:00
{ /* SHA512 */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SHA512,
.block_size = 128,
.key_size = {
.min = 0,
.max = 0,
.increment = 0
},
.digest_size = {
.min = 1,
.max = 64,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
{ /* AES XCBC HMAC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_AES_XCBC_MAC,
.block_size = 16,
.key_size = {
.min = 16,
.max = 16,
.increment = 0
},
.digest_size = {
.min = 12,
.max = 12,
.increment = 0
},
.iv_size = { 0 }
}, }
}, }
},
crypto/ipsec_mb: support null auth/cipher for aesni_mb Add NULL cipher and auth support to AESNI-MB PMD type. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Declan Doherty <declan.doherty@intel.com> Signed-off-by: Radu Nicolau <radu.nicolau@intel.com>
2022-02-21 13:39:46 +00:00
{ /* NULL (AUTH) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_NULL,
.block_size = 1,
.key_size = {
.min = 0,
.max = 0,
.increment = 0
},
.digest_size = {
.min = 0,
.max = 0,
.increment = 0
},
.iv_size = { 0 }
}, },
}, },
},
{ /* NULL (CIPHER) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_NULL,
.block_size = 1,
.key_size = {
.min = 0,
.max = 0,
.increment = 0
},
.iv_size = { 0 }
}, },
}, }
},
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
{ /* AES CBC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_AES_CBC,
.block_size = 16,
.key_size = {
.min = 16,
.max = 32,
.increment = 8
},
.iv_size = {
.min = 16,
.max = 16,
.increment = 0
}
}, }
}, }
},
{ /* AES CTR */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_AES_CTR,
.block_size = 16,
.key_size = {
.min = 16,
.max = 32,
.increment = 8
},
.iv_size = {
.min = 12,
.max = 16,
.increment = 4
}
}, }
}, }
},
{ /* AES DOCSIS BPI */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_AES_DOCSISBPI,
.block_size = 16,
.key_size = {
.min = 16,
crypto/aesni_mb: support DOCSIS AES-256 This patch adds support for DOCSIS AES-256 when using AESNI-MB Signed-off-by: Mairtin o Loingsigh <mairtin.oloingsigh@intel.com> Acked-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-04-15 11:51:35 +00:00
.max = 32,
.increment = 16
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
},
.iv_size = {
.min = 16,
.max = 16,
.increment = 0
}
}, }
}, }
},
{ /* DES CBC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_DES_CBC,
.block_size = 8,
.key_size = {
.min = 8,
.max = 8,
.increment = 0
},
.iv_size = {
.min = 8,
.max = 8,
.increment = 0
}
}, }
}, }
},
{ /* 3DES CBC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_3DES_CBC,
.block_size = 8,
.key_size = {
.min = 8,
.max = 24,
.increment = 8
},
.iv_size = {
.min = 8,
.max = 8,
.increment = 0
}
}, }
}, }
},
{ /* DES DOCSIS BPI */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_DES_DOCSISBPI,
.block_size = 8,
.key_size = {
.min = 8,
.max = 8,
.increment = 0
},
.iv_size = {
.min = 8,
.max = 8,
.increment = 0
}
}, }
}, }
},
{ /* AES CCM */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AEAD,
{.aead = {
.algo = RTE_CRYPTO_AEAD_AES_CCM,
.block_size = 16,
.key_size = {
.min = 16,
crypto/aesni_mb: support AES-CCM-256 This patch adds support for AES-CCM-256 when using AESNI-MB Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-10-09 12:18:59 +00:00
.max = 32,
.increment = 16
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
},
.digest_size = {
.min = 4,
.max = 16,
.increment = 2
},
.aad_size = {
.min = 0,
.max = 46,
.increment = 1
},
.iv_size = {
.min = 7,
.max = 13,
.increment = 1
},
}, }
}, }
},
{ /* AES CMAC */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_AES_CMAC,
.block_size = 16,
.key_size = {
.min = 16,
.max = 16,
.increment = 0
},
.digest_size = {
.min = 1,
.max = 16,
.increment = 1
},
.iv_size = { 0 }
}, }
}, }
},
{ /* AES GCM */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AEAD,
{.aead = {
.algo = RTE_CRYPTO_AEAD_AES_GCM,
.block_size = 16,
.key_size = {
.min = 16,
.max = 32,
.increment = 8
},
.digest_size = {
crypto/aesni_mb: fix GCM digest size check GCM digest sizes should be between 1 and 16 bytes. Fixes: 7b2d4706c90e ("crypto/aesni_mb: support newer library version only") Cc: stable@dpdk.org Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-10-09 12:05:20 +00:00
.min = 1,
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
.max = 16,
crypto/aesni_mb: fix GCM digest size check GCM digest sizes should be between 1 and 16 bytes. Fixes: 7b2d4706c90e ("crypto/aesni_mb: support newer library version only") Cc: stable@dpdk.org Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-10-09 12:05:20 +00:00
.increment = 1
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
},
.aad_size = {
.min = 0,
.max = 65535,
.increment = 1
},
.iv_size = {
.min = 12,
.max = 12,
.increment = 0
}
}, }
}, }
},
crypto/aesni_mb: support AES-GMAC This patch adds the AES-GMAC authentication only support to AESNI-MB PMD, including the driver code, cryptodev unit test, and documentation updates. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 12:07:55 +00:00
{ /* AES GMAC (AUTH) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_AES_GMAC,
.block_size = 16,
.key_size = {
.min = 16,
.max = 32,
.increment = 8
},
.digest_size = {
crypto/aesni_mb: fix GCM digest size check GCM digest sizes should be between 1 and 16 bytes. Fixes: 7b2d4706c90e ("crypto/aesni_mb: support newer library version only") Cc: stable@dpdk.org Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-10-09 12:05:20 +00:00
.min = 1,
crypto/aesni_mb: support AES-GMAC This patch adds the AES-GMAC authentication only support to AESNI-MB PMD, including the driver code, cryptodev unit test, and documentation updates. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 12:07:55 +00:00
.max = 16,
crypto/aesni_mb: fix GCM digest size check GCM digest sizes should be between 1 and 16 bytes. Fixes: 7b2d4706c90e ("crypto/aesni_mb: support newer library version only") Cc: stable@dpdk.org Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-10-09 12:05:20 +00:00
.increment = 1
crypto/aesni_mb: support AES-GMAC This patch adds the AES-GMAC authentication only support to AESNI-MB PMD, including the driver code, cryptodev unit test, and documentation updates. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 12:07:55 +00:00
},
.iv_size = {
.min = 12,
.max = 12,
.increment = 0
}
}, }
}, }
},
crypto/aesni_mb: support AES-ECB This patch adds AES-ECB 128, 192 and 256 support to the aesni_mb PMD. AES-ECB 128, 192 and 256 test vectors added to cryptodev tests. Signed-off-by: Marcel Cornu <marcel.d.cornu@intel.com> Acked-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-09-11 15:49:26 +00:00
{ /* AES ECB */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_AES_ECB,
.block_size = 16,
.key_size = {
.min = 16,
.max = 32,
.increment = 8
},
.iv_size = { 0 }
}, }
}, }
},
crypto/aesni_mb: support ZUC-EEA3/EIA3 Add support for ZUC-EEA3/EIA3 algorithms through the intel-ipsec-mb job API, allowing the mix of these algorithms with others. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Akhil Goyal <akhil.goyal@nxp.com>
2020-10-09 11:29:52 +00:00
{ /* ZUC (EIA3) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_ZUC_EIA3,
.block_size = 16,
.key_size = {
.min = 16,
crypto/ipsec_mb: support ZUC-256 for aesni_mb Add support for ZUC-EEA3-256 and ZUC-EIA3-256. Only 4-byte tags supported for now. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:47 +00:00
.max = 32,
.increment = 16
crypto/aesni_mb: support ZUC-EEA3/EIA3 Add support for ZUC-EEA3/EIA3 algorithms through the intel-ipsec-mb job API, allowing the mix of these algorithms with others. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Akhil Goyal <akhil.goyal@nxp.com>
2020-10-09 11:29:52 +00:00
},
.digest_size = {
.min = 4,
.max = 4,
.increment = 0
},
.iv_size = {
.min = 16,
crypto/ipsec_mb: support ZUC-256 for aesni_mb Add support for ZUC-EEA3-256 and ZUC-EIA3-256. Only 4-byte tags supported for now. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:47 +00:00
.max = 25,
.increment = 9
crypto/aesni_mb: support ZUC-EEA3/EIA3 Add support for ZUC-EEA3/EIA3 algorithms through the intel-ipsec-mb job API, allowing the mix of these algorithms with others. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Akhil Goyal <akhil.goyal@nxp.com>
2020-10-09 11:29:52 +00:00
}
}, }
}, }
},
{ /* ZUC (EEA3) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_ZUC_EEA3,
.block_size = 16,
.key_size = {
.min = 16,
crypto/ipsec_mb: support ZUC-256 for aesni_mb Add support for ZUC-EEA3-256 and ZUC-EIA3-256. Only 4-byte tags supported for now. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:47 +00:00
.max = 32,
.increment = 16
crypto/aesni_mb: support ZUC-EEA3/EIA3 Add support for ZUC-EEA3/EIA3 algorithms through the intel-ipsec-mb job API, allowing the mix of these algorithms with others. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Akhil Goyal <akhil.goyal@nxp.com>
2020-10-09 11:29:52 +00:00
},
.iv_size = {
.min = 16,
crypto/ipsec_mb: support ZUC-256 for aesni_mb Add support for ZUC-EEA3-256 and ZUC-EIA3-256. Only 4-byte tags supported for now. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:47 +00:00
.max = 25,
.increment = 9
crypto/aesni_mb: support ZUC-EEA3/EIA3 Add support for ZUC-EEA3/EIA3 algorithms through the intel-ipsec-mb job API, allowing the mix of these algorithms with others. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Akhil Goyal <akhil.goyal@nxp.com>
2020-10-09 11:29:52 +00:00
},
}, }
}, }
},
crypto/aesni_mb: support SNOW3G-UEA2/UIA2 Add support for SNOW3G-UEA2/UIA2 algorithms through the intel-ipsec-mb job API, allowing the mix of these algorithms with others. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Akhil Goyal <akhil.goyal@nxp.com>
2020-10-09 11:29:53 +00:00
{ /* SNOW 3G (UIA2) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_SNOW3G_UIA2,
.block_size = 16,
.key_size = {
.min = 16,
.max = 16,
.increment = 0
},
.digest_size = {
.min = 4,
.max = 4,
.increment = 0
},
.iv_size = {
.min = 16,
.max = 16,
.increment = 0
}
}, }
}, }
},
{ /* SNOW 3G (UEA2) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_SNOW3G_UEA2,
.block_size = 16,
.key_size = {
.min = 16,
.max = 16,
.increment = 0
},
.iv_size = {
.min = 16,
.max = 16,
.increment = 0
}
}, }
}, }
},
crypto/aesni_mb: support KASUMI F8/F9 Add support for KASUMI-F8/F9 algorithms through the intel-ipsec-mb job API, allowing the mix of these algorithms with others. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Akhil Goyal <akhil.goyal@nxp.com>
2020-10-09 11:29:54 +00:00
{ /* KASUMI (F9) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
{.auth = {
.algo = RTE_CRYPTO_AUTH_KASUMI_F9,
.block_size = 8,
.key_size = {
.min = 16,
.max = 16,
.increment = 0
},
.digest_size = {
.min = 4,
.max = 4,
.increment = 0
},
.iv_size = { 0 }
}, }
}, }
},
{ /* KASUMI (F8) */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_KASUMI_F8,
.block_size = 8,
.key_size = {
.min = 16,
.max = 16,
.increment = 0
},
.iv_size = {
.min = 8,
.max = 8,
.increment = 0
}
}, }
}, }
},
crypto/aesni_mb: support Chacha20-Poly1305 Add support for Chacha20-Poly1305 AEAD algorithm. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-10-09 12:05:21 +00:00
{ /* CHACHA20-POLY1305 */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_AEAD,
{.aead = {
.algo = RTE_CRYPTO_AEAD_CHACHA20_POLY1305,
.block_size = 64,
.key_size = {
.min = 32,
.max = 32,
.increment = 0
},
.digest_size = {
.min = 16,
.max = 16,
.increment = 0
},
.aad_size = {
.min = 0,
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
.max = 1024,
crypto/aesni_mb: support Chacha20-Poly1305 Add support for Chacha20-Poly1305 AEAD algorithm. Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-10-09 12:05:21 +00:00
.increment = 1
},
.iv_size = {
.min = 12,
.max = 12,
.increment = 0
},
}, }
}, }
},
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
RTE_CRYPTODEV_END_OF_CAPABILITIES_LIST()
};
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
uint8_t pmd_driver_id_aesni_mb;
struct aesni_mb_qp_data {
uint8_t temp_digests[IMB_MAX_JOBS][DIGEST_LENGTH_MAX];
/* *< Buffers used to store the digest generated
* by the driver when verifying a digest provided
* by the user (using authentication verify operation)
*/
crypto/ipsec_mb: support ChaChaPoly SGL to aesni_mb Add SGL support for chacha20_poly1305 algorithm through JOB API. Supports IN-PLACE SGL, OOP SGL IN and LB OUT, and OOP SGL IN and SGL OUT. Feature flags not added, as the PMD does not support SGL for all other algorithms. Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2022-05-11 12:30:45 +00:00
union {
struct gcm_context_data gcm_sgl_ctx;
struct chacha20_poly1305_context_data chacha_sgl_ctx;
};
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
};
/* Maximum length for digest */
#define DIGEST_LENGTH_MAX 64
static const unsigned int auth_blocksize[] = {
[IMB_AUTH_NULL] = 0,
[IMB_AUTH_MD5] = 64,
[IMB_AUTH_HMAC_SHA_1] = 64,
[IMB_AUTH_HMAC_SHA_224] = 64,
[IMB_AUTH_HMAC_SHA_256] = 64,
[IMB_AUTH_HMAC_SHA_384] = 128,
[IMB_AUTH_HMAC_SHA_512] = 128,
[IMB_AUTH_AES_XCBC] = 16,
[IMB_AUTH_AES_CCM] = 16,
[IMB_AUTH_AES_CMAC] = 16,
[IMB_AUTH_AES_GMAC] = 16,
[IMB_AUTH_SHA_1] = 64,
[IMB_AUTH_SHA_224] = 64,
[IMB_AUTH_SHA_256] = 64,
[IMB_AUTH_SHA_384] = 128,
[IMB_AUTH_SHA_512] = 128,
[IMB_AUTH_ZUC_EIA3_BITLEN] = 16,
[IMB_AUTH_SNOW3G_UIA2_BITLEN] = 16,
[IMB_AUTH_KASUMI_UIA1] = 16
};
/**
* Get the blocksize in bytes for a specified authentication algorithm
*
* @Note: this function will not return a valid value for a non-valid
* authentication algorithm
*/
static inline unsigned int
get_auth_algo_blocksize(IMB_HASH_ALG algo)
{
return auth_blocksize[algo];
}
static const unsigned int auth_truncated_digest_byte_lengths[] = {
[IMB_AUTH_MD5] = 12,
[IMB_AUTH_HMAC_SHA_1] = 12,
[IMB_AUTH_HMAC_SHA_224] = 14,
[IMB_AUTH_HMAC_SHA_256] = 16,
[IMB_AUTH_HMAC_SHA_384] = 24,
[IMB_AUTH_HMAC_SHA_512] = 32,
[IMB_AUTH_AES_XCBC] = 12,
[IMB_AUTH_AES_CMAC] = 12,
[IMB_AUTH_AES_CCM] = 8,
[IMB_AUTH_NULL] = 0,
[IMB_AUTH_AES_GMAC] = 12,
[IMB_AUTH_SHA_1] = 20,
[IMB_AUTH_SHA_224] = 28,
[IMB_AUTH_SHA_256] = 32,
[IMB_AUTH_SHA_384] = 48,
[IMB_AUTH_SHA_512] = 64,
[IMB_AUTH_ZUC_EIA3_BITLEN] = 4,
[IMB_AUTH_SNOW3G_UIA2_BITLEN] = 4,
[IMB_AUTH_KASUMI_UIA1] = 4
};
/**
* Get the IPsec specified truncated length in bytes of the HMAC digest for a
* specified authentication algorithm
*
* @Note: this function will not return a valid value for a non-valid
* authentication algorithm
*/
static inline unsigned int
get_truncated_digest_byte_length(IMB_HASH_ALG algo)
{
return auth_truncated_digest_byte_lengths[algo];
}
static const unsigned int auth_digest_byte_lengths[] = {
[IMB_AUTH_MD5] = 16,
[IMB_AUTH_HMAC_SHA_1] = 20,
[IMB_AUTH_HMAC_SHA_224] = 28,
[IMB_AUTH_HMAC_SHA_256] = 32,
[IMB_AUTH_HMAC_SHA_384] = 48,
[IMB_AUTH_HMAC_SHA_512] = 64,
[IMB_AUTH_AES_XCBC] = 16,
[IMB_AUTH_AES_CMAC] = 16,
[IMB_AUTH_AES_CCM] = 16,
[IMB_AUTH_AES_GMAC] = 16,
[IMB_AUTH_NULL] = 0,
[IMB_AUTH_SHA_1] = 20,
[IMB_AUTH_SHA_224] = 28,
[IMB_AUTH_SHA_256] = 32,
[IMB_AUTH_SHA_384] = 48,
[IMB_AUTH_SHA_512] = 64,
[IMB_AUTH_ZUC_EIA3_BITLEN] = 4,
[IMB_AUTH_SNOW3G_UIA2_BITLEN] = 4,
[IMB_AUTH_KASUMI_UIA1] = 4
/**< Vector mode dependent pointer table of the multi-buffer APIs */
};
/**
* Get the full digest size in bytes for a specified authentication algorithm
* (if available in the Multi-buffer library)
*
* @Note: this function will not return a valid value for a non-valid
* authentication algorithm
*/
static inline unsigned int
get_digest_byte_length(IMB_HASH_ALG algo)
{
return auth_digest_byte_lengths[algo];
}
/** AES-NI multi-buffer private session structure */
struct aesni_mb_session {
IMB_CIPHER_MODE cipher_mode;
IMB_CIPHER_DIRECTION cipher_direction;
IMB_HASH_ALG hash_alg;
IMB_CHAIN_ORDER chain_order;
/* common job fields */
struct {
uint16_t length;
uint16_t offset;
} iv;
struct {
uint16_t length;
uint16_t offset;
} auth_iv;
/* *< IV parameters
*/
/* * Cipher Parameters
*/
struct {
/* * Cipher direction - encrypt / decrypt */
IMB_CIPHER_DIRECTION direction;
/* * Cipher mode - CBC / Counter */
IMB_CIPHER_MODE mode;
uint64_t key_length_in_bytes;
union {
struct {
uint32_t encode[60] __rte_aligned(16);
/* *< encode key */
uint32_t decode[60] __rte_aligned(16);
/* *< decode key */
} expanded_aes_keys;
/* *< Expanded AES keys - Allocating space to
* contain the maximum expanded key size which
* is 240 bytes for 256 bit AES, calculate by:
* ((key size (bytes)) *
* ((number of rounds) + 1))
*/
struct {
const void *ks_ptr[3];
uint64_t key[3][16];
} exp_3des_keys;
/* *< Expanded 3DES keys */
struct gcm_key_data gcm_key;
/* *< Expanded GCM key */
crypto/ipsec_mb: fix buffer overrun Memory for ZUC cipher/auth key in session had to be expanded to 32 bytes, instead of 16 bytes, when adding ZUC-256 support. However, impact is low as this memory is part of a union with bigger size than 32 bytes. Coverity issue: 374374 Coverity issue: 374379 Fixes: 8c835018de84 ("crypto/ipsec_mb: support ZUC-256 for aesni_mb") Cc: stable@dpdk.org Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Ciara Power <ciara.power@intel.com>
2022-01-20 17:04:55 +00:00
uint8_t zuc_cipher_key[32];
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
/* *< ZUC cipher key */
snow3g_key_schedule_t pKeySched_snow3g_cipher;
/* *< SNOW3G scheduled cipher key */
kasumi_key_sched_t pKeySched_kasumi_cipher;
/* *< KASUMI scheduled cipher key */
};
} cipher;
/* *< Authentication Parameters */
struct {
IMB_HASH_ALG algo; /* *< Authentication Algorithm */
enum rte_crypto_auth_operation operation;
/* *< auth operation generate or verify */
union {
struct {
uint8_t inner[128] __rte_aligned(16);
/* *< inner pad */
uint8_t outer[128] __rte_aligned(16);
/* *< outer pad */
} pads;
/* *< HMAC Authentication pads -
* allocating space for the maximum pad
* size supported which is 128 bytes for
* SHA512
*/
struct {
uint32_t k1_expanded[44] __rte_aligned(16);
/* *< k1 (expanded key). */
uint8_t k2[16] __rte_aligned(16);
/* *< k2. */
uint8_t k3[16] __rte_aligned(16);
/* *< k3. */
} xcbc;
struct {
uint32_t expkey[60] __rte_aligned(16);
/* *< k1 (expanded key). */
uint32_t skey1[4] __rte_aligned(16);
/* *< k2. */
uint32_t skey2[4] __rte_aligned(16);
/* *< k3. */
} cmac;
/* *< Expanded XCBC authentication keys */
crypto/ipsec_mb: fix buffer overrun Memory for ZUC cipher/auth key in session had to be expanded to 32 bytes, instead of 16 bytes, when adding ZUC-256 support. However, impact is low as this memory is part of a union with bigger size than 32 bytes. Coverity issue: 374374 Coverity issue: 374379 Fixes: 8c835018de84 ("crypto/ipsec_mb: support ZUC-256 for aesni_mb") Cc: stable@dpdk.org Signed-off-by: Pablo de Lara <pablo.de.lara.guarch@intel.com> Acked-by: Ciara Power <ciara.power@intel.com>
2022-01-20 17:04:55 +00:00
uint8_t zuc_auth_key[32];
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
/* *< ZUC authentication key */
snow3g_key_schedule_t pKeySched_snow3g_auth;
/* *< SNOW3G scheduled authentication key */
kasumi_key_sched_t pKeySched_kasumi_auth;
/* *< KASUMI scheduled authentication key */
};
/* * Generated digest size by the Multi-buffer library */
uint16_t gen_digest_len;
/* * Requested digest size from Cryptodev */
uint16_t req_digest_len;
} auth;
struct {
/* * AAD data length */
uint16_t aad_len;
} aead;
} __rte_cache_aligned;
typedef void (*hash_one_block_t)(const void *data, void *digest);
typedef void (*aes_keyexp_t)(const void *key, void *enc_exp_keys,
void *dec_exp_keys);
crypto/aesni_mb: support DOCSIS protocol Add support to the AESNI-MB PMD for the DOCSIS protocol, through the rte_security API. This, therefore, includes adding support for the rte_security API to this PMD. Signed-off-by: David Coyle <david.coyle@intel.com> Signed-off-by: Mairtin o Loingsigh <mairtin.oloingsigh@intel.com> Acked-by: Pablo de Lara <pablo.de.lara.guarch@intel.com>
2020-07-03 12:39:29 +00:00
#ifdef AESNI_MB_DOCSIS_SEC_ENABLED
static const struct rte_cryptodev_capabilities
aesni_mb_pmd_security_crypto_cap[] = {
{ /* AES DOCSIS BPI */
.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
{.sym = {
.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
{.cipher = {
.algo = RTE_CRYPTO_CIPHER_AES_DOCSISBPI,
.block_size = 16,
.key_size = {
.min = 16,
.max = 32,
.increment = 16
},
.iv_size = {
.min = 16,
.max = 16,
.increment = 0
}
}, }
}, }
},
RTE_CRYPTODEV_END_OF_CAPABILITIES_LIST()
};
static const struct rte_security_capability aesni_mb_pmd_security_cap[] = {
{ /* DOCSIS Uplink */
.action = RTE_SECURITY_ACTION_TYPE_LOOKASIDE_PROTOCOL,
.protocol = RTE_SECURITY_PROTOCOL_DOCSIS,
.docsis = {
.direction = RTE_SECURITY_DOCSIS_UPLINK
},
.crypto_capabilities = aesni_mb_pmd_security_crypto_cap
},
{ /* DOCSIS Downlink */
.action = RTE_SECURITY_ACTION_TYPE_LOOKASIDE_PROTOCOL,
.protocol = RTE_SECURITY_PROTOCOL_DOCSIS,
.docsis = {
.direction = RTE_SECURITY_DOCSIS_DOWNLINK
},
.crypto_capabilities = aesni_mb_pmd_security_crypto_cap
},
{
.action = RTE_SECURITY_ACTION_TYPE_NONE
}
};
#endif
crypto/aesni_mb: use architecture independent macros This patch duplicates the original rte_aesni_mb_pmd*.c files and replaces the function calls provided by intel-ipsec-mb library into architecture-independent macros. The build systems are updated to choose compiling either rte_aesni_mb_pmd*.c or rte_aesni_mb_pmd*_compat.c based on the installed intel-ipsec-mb version. For the intel-ipsec-mb older than 0.52.0 rte_aesni_mb_pmd*_compat.c will be compiled, otherwise rte_aesni_mb_pmd*.c will be compiled. Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Lukasz Krakowiak <lukaszx.krakowiak@intel.com> Acked-by: Damian Nowak <damianx.nowak@intel.com>
2018-12-20 11:56:44 +00:00
crypto/ipsec_mb: move aesni_mb PMD This patch removes the crypto/aesni_mb folder and gathers all aesni-mb PMD implementation specific details into a single file, pmd_aesni_mb.c in crypto/ipsec_mb. Now that intel-ipsec-mb v1.0 is the minimum supported version, old macros can be replaced with the newer macros supported by this version. Signed-off-by: Piotr Bronowski <piotrx.bronowski@intel.com> Signed-off-by: Ciara Power <ciara.power@intel.com> Acked-by: Ray Kinsella <mdr@ashroe.eu> Acked-by: Fan Zhang <roy.fan.zhang@intel.com> Acked-by: Akhil Goyal <gakhil@marvell.com>
2021-10-15 14:39:46 +00:00
#endif /* _PMD_AESNI_MB_PRIV_H_ */
Reference in New Issue Copy Permalink