bdce2564db
As per current design, rte_cryptodev_sym_session_create() and rte_cryptodev_sym_session_init() use separate mempool objects for a single session. And structure rte_cryptodev_sym_session is not directly used by the application, it may cause ABI breakage if the structure is modified in future. To address these two issues, the rte_cryptodev_sym_session_create will take one mempool object that the session and session private data are virtually/physically contiguous, and initializes both fields. The API rte_cryptodev_sym_session_init is removed. rte_cryptodev_sym_session_create will now return an opaque session pointer which will be used by the app and other APIs. In data path, opaque session pointer is attached to rte_crypto_op and the PMD can call an internal library API to get the session private data pointer based on the driver id. Note: currently single session may be used by different device drivers, given it is initialized by them. After the change the session created by one device driver cannot be used or reinitialized by another driver. Signed-off-by: Akhil Goyal <gakhil@marvell.com> Signed-off-by: Fan Zhang <roy.fan.zhang@intel.com> Signed-off-by: Ruifeng Wang <ruifeng.wang@arm.com> Acked-by: Kai Ji <kai.ji@intel.com> Tested-by: Gagandeep Singh <g.singh@nxp.com> Tested-by: David Coyle <david.coyle@intel.com> Tested-by: Kevin O'Sullivan <kevin.osullivan@intel.com>
188 lines
5.3 KiB
C
188 lines
5.3 KiB
C
/* SPDX-License-Identifier: BSD-3-Clause
|
|
* Copyright(c) 2017 Cavium, Inc
|
|
*/
|
|
|
|
#ifndef _ARMV8_PMD_PRIVATE_H_
|
|
#define _ARMV8_PMD_PRIVATE_H_
|
|
|
|
#include "AArch64cryptolib.h"
|
|
|
|
#define CRYPTODEV_NAME_ARMV8_PMD crypto_armv8
|
|
/**< ARMv8 Crypto PMD device name */
|
|
|
|
extern int crypto_armv8_log_type;
|
|
|
|
#define ARMV8_CRYPTO_LOG_ERR(fmt, args...) \
|
|
rte_log(RTE_LOG_ERR, crypto_armv8_log_type, \
|
|
"[%s] %s() line %u: " fmt "\n", \
|
|
RTE_STR(CRYPTODEV_NAME_ARMV8_PMD), \
|
|
__func__, __LINE__, ## args)
|
|
|
|
#define ARMV8_CRYPTO_LOG_INFO(fmt, args...) \
|
|
rte_log(RTE_LOG_INFO, crypto_armv8_log_type, \
|
|
"[%s] %s() line %u: " fmt "\n", \
|
|
RTE_STR(CRYPTODEV_NAME_ARMV8_PMD), \
|
|
__func__, __LINE__, ## args)
|
|
|
|
#define ARMV8_CRYPTO_LOG_DBG(fmt, args...) \
|
|
rte_log(RTE_LOG_DEBUG, crypto_armv8_log_type, \
|
|
"[%s] %s() line %u: " fmt "\n", \
|
|
RTE_STR(CRYPTODEV_NAME_ARMV8_PMD), \
|
|
__func__, __LINE__, ## args)
|
|
|
|
#define NBBY 8 /* Number of bits in a byte */
|
|
#define BYTE_LENGTH(x) ((x) / NBBY) /* Number of bytes in x (round down) */
|
|
|
|
/* Maximum length for digest (SHA-256 needs 32 bytes) */
|
|
#define DIGEST_LENGTH_MAX 32
|
|
|
|
/** ARMv8 operation order mode enumerator */
|
|
enum armv8_crypto_chain_order {
|
|
ARMV8_CRYPTO_CHAIN_CIPHER_AUTH,
|
|
ARMV8_CRYPTO_CHAIN_AUTH_CIPHER,
|
|
ARMV8_CRYPTO_CHAIN_NOT_SUPPORTED,
|
|
ARMV8_CRYPTO_CHAIN_LIST_END = ARMV8_CRYPTO_CHAIN_NOT_SUPPORTED
|
|
};
|
|
|
|
/** ARMv8 cipher operation enumerator */
|
|
enum armv8_crypto_cipher_operation {
|
|
ARMV8_CRYPTO_CIPHER_OP_ENCRYPT = RTE_CRYPTO_CIPHER_OP_ENCRYPT,
|
|
ARMV8_CRYPTO_CIPHER_OP_DECRYPT = RTE_CRYPTO_CIPHER_OP_DECRYPT,
|
|
ARMV8_CRYPTO_CIPHER_OP_NOT_SUPPORTED,
|
|
ARMV8_CRYPTO_CIPHER_OP_LIST_END = ARMV8_CRYPTO_CIPHER_OP_NOT_SUPPORTED
|
|
};
|
|
|
|
enum armv8_crypto_cipher_keylen {
|
|
ARMV8_CRYPTO_CIPHER_KEYLEN_128,
|
|
ARMV8_CRYPTO_CIPHER_KEYLEN_192,
|
|
ARMV8_CRYPTO_CIPHER_KEYLEN_256,
|
|
ARMV8_CRYPTO_CIPHER_KEYLEN_NOT_SUPPORTED,
|
|
ARMV8_CRYPTO_CIPHER_KEYLEN_LIST_END =
|
|
ARMV8_CRYPTO_CIPHER_KEYLEN_NOT_SUPPORTED
|
|
};
|
|
|
|
/** ARMv8 auth mode enumerator */
|
|
enum armv8_crypto_auth_mode {
|
|
ARMV8_CRYPTO_AUTH_AS_AUTH,
|
|
ARMV8_CRYPTO_AUTH_AS_HMAC,
|
|
ARMV8_CRYPTO_AUTH_AS_CIPHER,
|
|
ARMV8_CRYPTO_AUTH_NOT_SUPPORTED,
|
|
ARMV8_CRYPTO_AUTH_LIST_END = ARMV8_CRYPTO_AUTH_NOT_SUPPORTED
|
|
};
|
|
|
|
#define CRYPTO_CIPHER_KEYLEN_MAX ARMV8_CRYPTO_CIPHER_KEYLEN_LIST_END
|
|
#define CRYPTO_CIPHER_MAX (RTE_CRYPTO_CIPHER_AES_ECB + 1)
|
|
#define CRYPTO_AUTH_MAX (RTE_CRYPTO_AUTH_SHA512_HMAC + 1)
|
|
|
|
#define HMAC_IPAD_VALUE (0x36)
|
|
#define HMAC_OPAD_VALUE (0x5C)
|
|
|
|
#define SHA256_AUTH_KEY_LENGTH (BYTE_LENGTH(256))
|
|
#define SHA256_BLOCK_SIZE (BYTE_LENGTH(512))
|
|
|
|
#define SHA1_AUTH_KEY_LENGTH (BYTE_LENGTH(160))
|
|
#define SHA1_BLOCK_SIZE (BYTE_LENGTH(512))
|
|
|
|
#define SHA_AUTH_KEY_MAX SHA256_AUTH_KEY_LENGTH
|
|
#define SHA_BLOCK_MAX SHA256_BLOCK_SIZE
|
|
|
|
typedef int (*crypto_func_t)(uint8_t *, uint8_t *, uint64_t,
|
|
uint8_t *, uint8_t *, uint64_t,
|
|
armv8_cipher_digest_t *);
|
|
|
|
typedef void (*crypto_key_sched_t)(uint8_t *, const uint8_t *);
|
|
|
|
/** private data structure for each ARMv8 crypto device */
|
|
struct armv8_crypto_private {
|
|
unsigned int max_nb_qpairs;
|
|
/**< Max number of queue pairs */
|
|
};
|
|
|
|
/** ARMv8 crypto queue pair */
|
|
struct armv8_crypto_qp {
|
|
uint16_t id;
|
|
/**< Queue Pair Identifier */
|
|
struct rte_ring *processed_ops;
|
|
/**< Ring for placing process packets */
|
|
struct rte_mempool *sess_mp;
|
|
/**< Session Mempool */
|
|
struct rte_cryptodev_stats stats;
|
|
/**< Queue pair statistics */
|
|
char name[RTE_CRYPTODEV_NAME_MAX_LEN];
|
|
/**< Unique Queue Pair Name */
|
|
uint8_t temp_digest[DIGEST_LENGTH_MAX];
|
|
/**< Buffer used to store the digest generated
|
|
* by the driver when verifying a digest provided
|
|
* by the user (using authentication verify operation)
|
|
*/
|
|
} __rte_cache_aligned;
|
|
|
|
/** ARMv8 crypto private session structure */
|
|
struct armv8_crypto_session {
|
|
enum armv8_crypto_chain_order chain_order;
|
|
/**< chain order mode */
|
|
crypto_func_t crypto_func;
|
|
/**< cryptographic function to use for this session */
|
|
|
|
/** Cipher Parameters */
|
|
struct {
|
|
enum rte_crypto_cipher_operation direction;
|
|
/**< cipher operation direction */
|
|
enum rte_crypto_cipher_algorithm algo;
|
|
/**< cipher algorithm */
|
|
struct {
|
|
uint16_t length;
|
|
uint16_t offset;
|
|
} iv;
|
|
/**< IV parameters */
|
|
|
|
struct {
|
|
uint8_t data[256];
|
|
/**< key data */
|
|
size_t length;
|
|
/**< key length in bytes */
|
|
} key;
|
|
|
|
crypto_key_sched_t key_sched;
|
|
/**< Key schedule function */
|
|
} cipher;
|
|
|
|
/** Authentication Parameters */
|
|
struct {
|
|
enum rte_crypto_auth_operation operation;
|
|
/**< auth operation generate or verify */
|
|
enum armv8_crypto_auth_mode mode;
|
|
/**< auth operation mode */
|
|
|
|
union {
|
|
struct {
|
|
/* Add data if needed */
|
|
} auth;
|
|
|
|
struct {
|
|
uint8_t i_key_pad[SHA_BLOCK_MAX]
|
|
__rte_cache_aligned;
|
|
/**< inner pad (max supported block length) */
|
|
uint8_t o_key_pad[SHA_BLOCK_MAX]
|
|
__rte_cache_aligned;
|
|
/**< outer pad (max supported block length) */
|
|
uint8_t key[SHA_BLOCK_MAX];
|
|
/**< HMAC key (max supported block length)*/
|
|
} hmac;
|
|
};
|
|
uint16_t digest_length;
|
|
/* Digest length */
|
|
} auth;
|
|
|
|
} __rte_cache_aligned;
|
|
|
|
/** Set and validate ARMv8 crypto session parameters */
|
|
extern int armv8_crypto_set_session_parameters(
|
|
struct armv8_crypto_session *sess,
|
|
const struct rte_crypto_sym_xform *xform);
|
|
|
|
/** device specific operations function pointer structure */
|
|
extern struct rte_cryptodev_ops *rte_armv8_crypto_pmd_ops;
|
|
|
|
#endif /* _ARMV8_PMD_PRIVATE_H_ */
|