d/numam-dpdk
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
releases
numam-dpdk/drivers/common/cnxk/roc_ie_on.h
Vidya Sagar Velumuri 729085b508 common/cnxk: generate MD5 ipad opad 
Add support to generate ipad and opad for MD5.
Skip the call to additional command WRITE_SA during SA creation.
Instead use the software defined function to generate opad and ipad.

Signed-off-by: Vidya Sagar Velumuri <vvelumuri@marvell.com>
2022-10-29 13:01:40 +02:00

345 lines
6.9 KiB
C
Raw Permalink Blame History

/* SPDX-License-Identifier: BSD-3-Clause
* Copyright(C) 2021 Marvell.
*/
#ifndef __ROC_IE_ON_H__
#define __ROC_IE_ON_H__
/* CN9K IPsec LA */
/* CN9K IPsec LA opcodes */
#define ROC_IE_ON_MAJOR_OP_PROCESS_OUTBOUND_IPSEC 0x23
#define ROC_IE_ON_MAJOR_OP_PROCESS_INBOUND_IPSEC 0x24
#define ROC_IE_ON_INB_MAX_CTX_LEN 34UL
#define ROC_IE_ON_INB_IKEV2_SINGLE_SA_SUPPORT (1 << 12)
#define ROC_IE_ON_OUTB_MAX_CTX_LEN 31UL
#define ROC_IE_ON_OUTB_IKEV2_SINGLE_SA_SUPPORT (1 << 9)
#define ROC_IE_ON_OUTB_PER_PKT_IV (1 << 11)
/* Ucode completion codes */
enum roc_ie_on_ucc_ipsec {
ROC_IE_ON_UCC_SUCCESS = 0,
ROC_IE_ON_AUTH_UNSUPPORTED = 0xB0,
ROC_IE_ON_ENCRYPT_UNSUPPORTED = 0xB1,
};
/* Helper macros */
#define ROC_IE_ON_INB_RPTR_HDR 16
#define ROC_IE_ON_MAX_IV_LEN 16
#define ROC_IE_ON_PER_PKT_IV BIT(43)
#define ROC_IE_ON_INPLACE_BIT BIT(6)
enum {
ROC_IE_ON_SA_ENC_NULL = 0,
ROC_IE_ON_SA_ENC_DES_CBC = 1,
ROC_IE_ON_SA_ENC_3DES_CBC = 2,
ROC_IE_ON_SA_ENC_AES_CBC = 3,
ROC_IE_ON_SA_ENC_AES_CTR = 4,
ROC_IE_ON_SA_ENC_AES_GCM = 5,
ROC_IE_ON_SA_ENC_AES_CCM = 6,
};
enum {
ROC_IE_ON_SA_AUTH_NULL = 0,
ROC_IE_ON_SA_AUTH_MD5 = 1,
ROC_IE_ON_SA_AUTH_SHA1 = 2,
ROC_IE_ON_SA_AUTH_SHA2_224 = 3,
ROC_IE_ON_SA_AUTH_SHA2_256 = 4,
ROC_IE_ON_SA_AUTH_SHA2_384 = 5,
ROC_IE_ON_SA_AUTH_SHA2_512 = 6,
ROC_IE_ON_SA_AUTH_AES_GMAC = 7,
ROC_IE_ON_SA_AUTH_AES_XCBC_128 = 8,
};
enum {
ROC_IE_ON_SA_FRAG_POST = 0,
ROC_IE_ON_SA_FRAG_PRE = 1,
};
enum {
ROC_IE_ON_SA_ENCAP_NONE = 0,
ROC_IE_ON_SA_ENCAP_UDP = 1,
};
enum {
ROC_IE_ON_IV_SRC_HW_GEN_DEFAULT = 0,
ROC_IE_ON_IV_SRC_FROM_DPTR = 1,
};
struct roc_ie_on_outb_hdr {
uint32_t ip_id;
uint32_t seq;
uint32_t esn;
uint32_t df_tos;
uint8_t iv[16];
};
struct roc_ie_on_inb_hdr {
uint32_t sa_index;
uint32_t seql;
uint32_t seqh;
uint32_t pad;
};
union roc_ie_on_bit_perfect_iv {
uint8_t aes_iv[16];
uint8_t des_iv[8];
struct {
uint8_t nonce[4];
uint8_t iv[8];
uint8_t counter[4];
} gcm;
};
struct roc_ie_on_traffic_selector {
uint16_t src_port[2];
uint16_t dst_port[2];
union {
struct {
uint32_t src_addr[2];
uint32_t dst_addr[2];
} ipv4;
struct {
uint8_t src_addr[32];
uint8_t dst_addr[32];
} ipv6;
};
};
struct roc_ie_on_ip_template {
union {
struct {
uint8_t ipv4_hdr[20];
uint16_t udp_src;
uint16_t udp_dst;
} ip4;
struct {
uint8_t ipv6_hdr[40];
uint16_t udp_src;
uint16_t udp_dst;
} ip6;
};
};
union roc_on_ipsec_outb_param1 {
uint16_t u16;
struct {
uint16_t l2hdr_len : 4;
uint16_t rsvd_4_6 : 3;
uint16_t gre_select : 1;
uint16_t dsiv : 1;
uint16_t ikev2 : 1;
uint16_t min_frag_size : 1;
uint16_t per_pkt_iv : 1;
uint16_t tfc_pad_enable : 1;
uint16_t tfc_dummy_pkt : 1;
uint16_t rfc_or_override_mode : 1;
uint16_t custom_hdr_or_p99 : 1;
} s;
};
union roc_on_ipsec_inb_param2 {
uint16_t u16;
struct {
uint16_t rsvd_0_10 : 11;
uint16_t gre_select : 1;
uint16_t ikev2 : 1;
uint16_t udp_cksum : 1;
uint16_t ctx_addr_sel : 1;
uint16_t custom_hdr_or_p99 : 1;
} s;
};
struct roc_ie_on_sa_ctl {
uint64_t spi : 32;
uint64_t exp_proto_inter_frag : 8;
uint64_t copy_df : 1;
uint64_t frag_type : 1;
uint64_t explicit_iv_en : 1;
uint64_t esn_en : 1;
uint64_t rsvd_45_44 : 2;
uint64_t encap_type : 2;
uint64_t enc_type : 3;
uint64_t rsvd_48 : 1;
uint64_t auth_type : 4;
uint64_t valid : 1;
uint64_t direction : 1;
uint64_t outer_ip_ver : 1;
uint64_t inner_ip_ver : 1;
uint64_t ipsec_mode : 1;
uint64_t ipsec_proto : 1;
uint64_t aes_key_len : 2;
};
struct roc_ie_on_common_sa {
/* w0 */
struct roc_ie_on_sa_ctl ctl;
/* w1-w4 */
uint8_t cipher_key[32];
/* w5-w6 */
union roc_ie_on_bit_perfect_iv iv;
/* w7 */
union {
uint64_t u64;
struct {
uint32_t th;
uint32_t tl;
};
} seq_t;
};
struct roc_ie_on_outb_sa {
/* w0 - w7 */
struct roc_ie_on_common_sa common_sa;
/* w8-w55 */
union {
struct {
struct roc_ie_on_ip_template template;
} aes_gcm;
struct {
uint8_t hmac_key[24];
uint8_t unused[24];
struct roc_ie_on_ip_template template;
} sha1;
struct {
uint8_t key[16];
uint8_t unused[32];
struct roc_ie_on_ip_template template;
} aes_xcbc;
struct {
uint8_t hmac_key[64];
uint8_t hmac_iv[64];
struct roc_ie_on_ip_template template;
} sha2;
};
};
struct roc_ie_on_inb_sa {
/* w0 - w7 */
struct roc_ie_on_common_sa common_sa;
/* w8 */
uint8_t udp_encap[8];
/* w9-w33 */
union {
struct {
uint8_t hmac_key[48];
struct roc_ie_on_traffic_selector selector;
} sha1_or_gcm;
struct {
uint8_t key[16];
uint8_t unused[32];
struct roc_ie_on_traffic_selector selector;
} aes_xcbc;
struct {
uint8_t hmac_key[64];
uint8_t hmac_iv[64];
struct roc_ie_on_traffic_selector selector;
} sha2;
};
};
/* CN9K IPsec FP */
/* CN9K IPsec FP opcodes */
#define ROC_IE_ONF_MAJOR_OP_PROCESS_OUTBOUND_IPSEC 0x25UL
#define ROC_IE_ONF_MAJOR_OP_PROCESS_INBOUND_IPSEC 0x26UL
/* Ucode completion codes */
#define ROC_IE_ON_UCC_SUCCESS 0
#define ROC_IE_ON_UCC_ENC_TYPE_ERR 0xB1
#define ROC_IE_ON_UCC_IP_VER_ERR 0xB2
#define ROC_IE_ON_UCC_PROTO_ERR 0xB3
#define ROC_IE_ON_UCC_CTX_INVALID 0xB4
#define ROC_IE_ON_UCC_CTX_DIR_MISMATCH 0xB5
#define ROC_IE_ON_UCC_IP_PAYLOAD_TYPE_ERR 0xB6
#define ROC_IE_ON_UCC_CTX_FLAG_MISMATCH 0xB7
#define ROC_IE_ON_UCC_SPI_MISMATCH 0xBE
#define ROC_IE_ON_UCC_IP_CHKSUM_ERR 0xBF
#define ROC_IE_ON_UCC_AUTH_ERR 0xC3
#define ROC_IE_ON_UCC_PADDING_INVALID 0xC4
#define ROC_IE_ON_UCC_SA_MISMATCH 0xCC
#define ROC_IE_ON_UCC_L2_HDR_INFO_ERR 0xCF
#define ROC_IE_ON_UCC_L2_HDR_LEN_ERR 0xE0
struct roc_ie_onf_sa_ctl {
uint32_t spi;
uint64_t exp_proto_inter_frag : 8;
uint64_t rsvd_41_40 : 2;
/* Disable SPI, SEQ data in RPTR for Inbound inline */
uint64_t spi_seq_dis : 1;
uint64_t esn_en : 1;
uint64_t rsvd_44_45 : 2;
uint64_t encap_type : 2;
uint64_t enc_type : 3;
uint64_t rsvd_48 : 1;
uint64_t auth_type : 4;
uint64_t valid : 1;
uint64_t direction : 1;
uint64_t outer_ip_ver : 1;
uint64_t inner_ip_ver : 1;
uint64_t ipsec_mode : 1;
uint64_t ipsec_proto : 1;
uint64_t aes_key_len : 2;
};
struct roc_onf_ipsec_outb_sa {
/* w0 */
struct roc_ie_onf_sa_ctl ctl;
/* w1 */
uint8_t nonce[4];
uint16_t udp_src;
uint16_t udp_dst;
/* w2 */
uint32_t ip_src;
uint32_t ip_dst;
/* w3-w6 */
uint8_t cipher_key[32];
/* w7-w12 */
uint8_t hmac_key[48];
};
struct roc_onf_ipsec_inb_sa {
/* w0 */
struct roc_ie_onf_sa_ctl ctl;
/* w1 */
uint8_t nonce[4]; /* Only for AES-GCM */
uint32_t unused;
/* w2 */
uint32_t esn_hi;
uint32_t esn_low;
/* w3-w6 */
uint8_t cipher_key[32];
/* w7-w12 */
uint8_t hmac_key[48];
};
#define ROC_ONF_IPSEC_INB_MAX_L2_SZ 32UL
#define ROC_ONF_IPSEC_OUTB_MAX_L2_SZ 30UL
#define ROC_ONF_IPSEC_OUTB_MAX_L2_INFO_SZ (ROC_ONF_IPSEC_OUTB_MAX_L2_SZ + 2)
#define ROC_ONF_IPSEC_INB_RES_OFF 80
#define ROC_ONF_IPSEC_INB_SPI_SEQ_SZ 16
struct roc_onf_ipsec_outb_hdr {
uint32_t ip_id;
uint32_t seq;
uint8_t iv[16];
};
#endif /* __ROC_IE_ON_H__ */
Reference in New Issue View Git Blame Copy Permalink