xref: /dpdk/drivers/crypto/openssl/rte_openssl_pmd_ops.c (revision e8f9c5c8d82f0995efbff50a370ae90f41449adb)
15566a3e3SBruce Richardson /* SPDX-License-Identifier: BSD-3-Clause
25566a3e3SBruce Richardson  * Copyright(c) 2016-2017 Intel Corporation
38a9867a6SSlawomir Mrozowicz  */
48a9867a6SSlawomir Mrozowicz 
58a9867a6SSlawomir Mrozowicz #include <string.h>
68a9867a6SSlawomir Mrozowicz 
78a9867a6SSlawomir Mrozowicz #include <rte_common.h>
88a9867a6SSlawomir Mrozowicz #include <rte_malloc.h>
9af668035SAkhil Goyal #include <cryptodev_pmd.h>
108a9867a6SSlawomir Mrozowicz 
11b28f28aeSDharmik Thakkar #include "openssl_pmd_private.h"
123e9d6bd4SSunila Sahu #include "compat.h"
13d7bd42f6SKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
14d7bd42f6SKai Ji #include <openssl/provider.h>
15d7bd42f6SKai Ji #include <openssl/core_names.h>
16d7bd42f6SKai Ji #include <openssl/param_build.h>
17d7bd42f6SKai Ji #endif
188a9867a6SSlawomir Mrozowicz 
198a9867a6SSlawomir Mrozowicz static const struct rte_cryptodev_capabilities openssl_pmd_capabilities[] = {
208a9867a6SSlawomir Mrozowicz 	{	/* MD5 HMAC */
218a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
228a9867a6SSlawomir Mrozowicz 		{.sym = {
238a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
248a9867a6SSlawomir Mrozowicz 			{.auth = {
258a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_MD5_HMAC,
268a9867a6SSlawomir Mrozowicz 				.block_size = 64,
278a9867a6SSlawomir Mrozowicz 				.key_size = {
28e5e7bc71SPablo de Lara 					.min = 1,
298a9867a6SSlawomir Mrozowicz 					.max = 64,
30e5e7bc71SPablo de Lara 					.increment = 1
318a9867a6SSlawomir Mrozowicz 				},
328a9867a6SSlawomir Mrozowicz 				.digest_size = {
33c3d22a65SDmitry Eremin-Solenikov 					.min = 1,
348a9867a6SSlawomir Mrozowicz 					.max = 16,
35c3d22a65SDmitry Eremin-Solenikov 					.increment = 1
368a9867a6SSlawomir Mrozowicz 				},
37acf86169SPablo de Lara 				.iv_size = { 0 }
388a9867a6SSlawomir Mrozowicz 			}, }
398a9867a6SSlawomir Mrozowicz 		}, }
408a9867a6SSlawomir Mrozowicz 	},
418a9867a6SSlawomir Mrozowicz 	{	/* MD5 */
428a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
438a9867a6SSlawomir Mrozowicz 		{.sym = {
448a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
458a9867a6SSlawomir Mrozowicz 			{.auth = {
468a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_MD5,
478a9867a6SSlawomir Mrozowicz 				.block_size = 64,
488a9867a6SSlawomir Mrozowicz 				.key_size = {
498a9867a6SSlawomir Mrozowicz 					.min = 0,
508a9867a6SSlawomir Mrozowicz 					.max = 0,
518a9867a6SSlawomir Mrozowicz 					.increment = 0
528a9867a6SSlawomir Mrozowicz 				},
538a9867a6SSlawomir Mrozowicz 				.digest_size = {
548a9867a6SSlawomir Mrozowicz 					.min = 16,
558a9867a6SSlawomir Mrozowicz 					.max = 16,
568a9867a6SSlawomir Mrozowicz 					.increment = 0
578a9867a6SSlawomir Mrozowicz 				},
58acf86169SPablo de Lara 				.iv_size = { 0 }
598a9867a6SSlawomir Mrozowicz 			}, }
608a9867a6SSlawomir Mrozowicz 		}, }
618a9867a6SSlawomir Mrozowicz 	},
628a9867a6SSlawomir Mrozowicz 	{	/* SHA1 HMAC */
638a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
648a9867a6SSlawomir Mrozowicz 		{.sym = {
658a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
668a9867a6SSlawomir Mrozowicz 			{.auth = {
678a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA1_HMAC,
688a9867a6SSlawomir Mrozowicz 				.block_size = 64,
698a9867a6SSlawomir Mrozowicz 				.key_size = {
70e5e7bc71SPablo de Lara 					.min = 1,
718a9867a6SSlawomir Mrozowicz 					.max = 64,
72e5e7bc71SPablo de Lara 					.increment = 1
738a9867a6SSlawomir Mrozowicz 				},
748a9867a6SSlawomir Mrozowicz 				.digest_size = {
75c3d22a65SDmitry Eremin-Solenikov 					.min = 1,
768a9867a6SSlawomir Mrozowicz 					.max = 20,
77c3d22a65SDmitry Eremin-Solenikov 					.increment = 1
788a9867a6SSlawomir Mrozowicz 				},
79acf86169SPablo de Lara 				.iv_size = { 0 }
808a9867a6SSlawomir Mrozowicz 			}, }
818a9867a6SSlawomir Mrozowicz 		}, }
828a9867a6SSlawomir Mrozowicz 	},
838a9867a6SSlawomir Mrozowicz 	{	/* SHA1 */
848a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
858a9867a6SSlawomir Mrozowicz 		{.sym = {
868a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
878a9867a6SSlawomir Mrozowicz 			{.auth = {
888a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA1,
898a9867a6SSlawomir Mrozowicz 				.block_size = 64,
908a9867a6SSlawomir Mrozowicz 				.key_size = {
918a9867a6SSlawomir Mrozowicz 					.min = 0,
928a9867a6SSlawomir Mrozowicz 					.max = 0,
938a9867a6SSlawomir Mrozowicz 					.increment = 0
948a9867a6SSlawomir Mrozowicz 				},
958a9867a6SSlawomir Mrozowicz 				.digest_size = {
968a9867a6SSlawomir Mrozowicz 					.min = 20,
978a9867a6SSlawomir Mrozowicz 					.max = 20,
988a9867a6SSlawomir Mrozowicz 					.increment = 0
998a9867a6SSlawomir Mrozowicz 				},
100acf86169SPablo de Lara 				.iv_size = { 0 }
1018a9867a6SSlawomir Mrozowicz 			}, }
1028a9867a6SSlawomir Mrozowicz 		}, }
1038a9867a6SSlawomir Mrozowicz 	},
1048a9867a6SSlawomir Mrozowicz 	{	/* SHA224 HMAC */
1058a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
1068a9867a6SSlawomir Mrozowicz 		{.sym = {
1078a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
1088a9867a6SSlawomir Mrozowicz 			{.auth = {
1098a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA224_HMAC,
1108a9867a6SSlawomir Mrozowicz 				.block_size = 64,
1118a9867a6SSlawomir Mrozowicz 				.key_size = {
112e5e7bc71SPablo de Lara 					.min = 1,
1138a9867a6SSlawomir Mrozowicz 					.max = 64,
114e5e7bc71SPablo de Lara 					.increment = 1
1158a9867a6SSlawomir Mrozowicz 				},
1168a9867a6SSlawomir Mrozowicz 				.digest_size = {
117c3d22a65SDmitry Eremin-Solenikov 					.min = 1,
1188a9867a6SSlawomir Mrozowicz 					.max = 28,
119c3d22a65SDmitry Eremin-Solenikov 					.increment = 1
1208a9867a6SSlawomir Mrozowicz 				},
121acf86169SPablo de Lara 				.iv_size = { 0 }
1228a9867a6SSlawomir Mrozowicz 			}, }
1238a9867a6SSlawomir Mrozowicz 		}, }
1248a9867a6SSlawomir Mrozowicz 	},
1258a9867a6SSlawomir Mrozowicz 	{	/* SHA224 */
1268a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
1278a9867a6SSlawomir Mrozowicz 		{.sym = {
1288a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
1298a9867a6SSlawomir Mrozowicz 			{.auth = {
1308a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA224,
1318a9867a6SSlawomir Mrozowicz 				.block_size = 64,
1328a9867a6SSlawomir Mrozowicz 				.key_size = {
1338a9867a6SSlawomir Mrozowicz 					.min = 0,
1348a9867a6SSlawomir Mrozowicz 					.max = 0,
1358a9867a6SSlawomir Mrozowicz 					.increment = 0
1368a9867a6SSlawomir Mrozowicz 				},
1378a9867a6SSlawomir Mrozowicz 				.digest_size = {
138c3d22a65SDmitry Eremin-Solenikov 					.min = 1,
1398a9867a6SSlawomir Mrozowicz 					.max = 28,
140c3d22a65SDmitry Eremin-Solenikov 					.increment = 1
1418a9867a6SSlawomir Mrozowicz 				},
142acf86169SPablo de Lara 				.iv_size = { 0 }
1438a9867a6SSlawomir Mrozowicz 			}, }
1448a9867a6SSlawomir Mrozowicz 		}, }
1458a9867a6SSlawomir Mrozowicz 	},
1468a9867a6SSlawomir Mrozowicz 	{	/* SHA256 HMAC */
1478a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
1488a9867a6SSlawomir Mrozowicz 		{.sym = {
1498a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
1508a9867a6SSlawomir Mrozowicz 			{.auth = {
1518a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA256_HMAC,
1528a9867a6SSlawomir Mrozowicz 				.block_size = 64,
1538a9867a6SSlawomir Mrozowicz 				.key_size = {
154e5e7bc71SPablo de Lara 					.min = 1,
1558a9867a6SSlawomir Mrozowicz 					.max = 64,
156e5e7bc71SPablo de Lara 					.increment = 1
1578a9867a6SSlawomir Mrozowicz 				},
1588a9867a6SSlawomir Mrozowicz 				.digest_size = {
159c3d22a65SDmitry Eremin-Solenikov 					.min = 1,
1608a9867a6SSlawomir Mrozowicz 					.max = 32,
161c3d22a65SDmitry Eremin-Solenikov 					.increment = 1
1628a9867a6SSlawomir Mrozowicz 				},
163acf86169SPablo de Lara 				.iv_size = { 0 }
1648a9867a6SSlawomir Mrozowicz 			}, }
1658a9867a6SSlawomir Mrozowicz 		}, }
1668a9867a6SSlawomir Mrozowicz 	},
1678a9867a6SSlawomir Mrozowicz 	{	/* SHA256 */
1688a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
1698a9867a6SSlawomir Mrozowicz 		{.sym = {
1708a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
1718a9867a6SSlawomir Mrozowicz 			{.auth = {
1728a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA256,
1738a9867a6SSlawomir Mrozowicz 				.block_size = 64,
1748a9867a6SSlawomir Mrozowicz 				.key_size = {
1758a9867a6SSlawomir Mrozowicz 					.min = 0,
1768a9867a6SSlawomir Mrozowicz 					.max = 0,
1778a9867a6SSlawomir Mrozowicz 					.increment = 0
1788a9867a6SSlawomir Mrozowicz 				},
1798a9867a6SSlawomir Mrozowicz 				.digest_size = {
1808a9867a6SSlawomir Mrozowicz 					.min = 32,
1818a9867a6SSlawomir Mrozowicz 					.max = 32,
1828a9867a6SSlawomir Mrozowicz 					.increment = 0
1838a9867a6SSlawomir Mrozowicz 				},
184acf86169SPablo de Lara 				.iv_size = { 0 }
1858a9867a6SSlawomir Mrozowicz 			}, }
1868a9867a6SSlawomir Mrozowicz 		}, }
1878a9867a6SSlawomir Mrozowicz 	},
1888a9867a6SSlawomir Mrozowicz 	{	/* SHA384 HMAC */
1898a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
1908a9867a6SSlawomir Mrozowicz 		{.sym = {
1918a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
1928a9867a6SSlawomir Mrozowicz 			{.auth = {
1938a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA384_HMAC,
1948a9867a6SSlawomir Mrozowicz 				.block_size = 128,
1958a9867a6SSlawomir Mrozowicz 				.key_size = {
196e5e7bc71SPablo de Lara 					.min = 1,
1978a9867a6SSlawomir Mrozowicz 					.max = 128,
198e5e7bc71SPablo de Lara 					.increment = 1
1998a9867a6SSlawomir Mrozowicz 				},
2008a9867a6SSlawomir Mrozowicz 				.digest_size = {
201c3d22a65SDmitry Eremin-Solenikov 					.min = 1,
2028a9867a6SSlawomir Mrozowicz 					.max = 48,
203c3d22a65SDmitry Eremin-Solenikov 					.increment = 1
2048a9867a6SSlawomir Mrozowicz 				},
205acf86169SPablo de Lara 				.iv_size = { 0 }
2068a9867a6SSlawomir Mrozowicz 			}, }
2078a9867a6SSlawomir Mrozowicz 		}, }
2088a9867a6SSlawomir Mrozowicz 	},
2098a9867a6SSlawomir Mrozowicz 	{	/* SHA384 */
2108a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
2118a9867a6SSlawomir Mrozowicz 		{.sym = {
2128a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
2138a9867a6SSlawomir Mrozowicz 			{.auth = {
2148a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA384,
2158a9867a6SSlawomir Mrozowicz 				.block_size = 128,
2168a9867a6SSlawomir Mrozowicz 				.key_size = {
2178a9867a6SSlawomir Mrozowicz 					.min = 0,
2188a9867a6SSlawomir Mrozowicz 					.max = 0,
2198a9867a6SSlawomir Mrozowicz 					.increment = 0
2208a9867a6SSlawomir Mrozowicz 				},
2218a9867a6SSlawomir Mrozowicz 				.digest_size = {
2228a9867a6SSlawomir Mrozowicz 					.min = 48,
2238a9867a6SSlawomir Mrozowicz 					.max = 48,
2248a9867a6SSlawomir Mrozowicz 					.increment = 0
2258a9867a6SSlawomir Mrozowicz 				},
226acf86169SPablo de Lara 				.iv_size = { 0 }
2278a9867a6SSlawomir Mrozowicz 			}, }
2288a9867a6SSlawomir Mrozowicz 		}, }
2298a9867a6SSlawomir Mrozowicz 	},
2308a9867a6SSlawomir Mrozowicz 	{	/* SHA512 HMAC */
2318a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
2328a9867a6SSlawomir Mrozowicz 		{.sym = {
2338a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
2348a9867a6SSlawomir Mrozowicz 			{.auth = {
2358a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA512_HMAC,
2368a9867a6SSlawomir Mrozowicz 				.block_size = 128,
2378a9867a6SSlawomir Mrozowicz 				.key_size = {
238e5e7bc71SPablo de Lara 					.min = 1,
2398a9867a6SSlawomir Mrozowicz 					.max = 128,
240e5e7bc71SPablo de Lara 					.increment = 1
2418a9867a6SSlawomir Mrozowicz 				},
2428a9867a6SSlawomir Mrozowicz 				.digest_size = {
243c3d22a65SDmitry Eremin-Solenikov 					.min = 1,
2448a9867a6SSlawomir Mrozowicz 					.max = 64,
245c3d22a65SDmitry Eremin-Solenikov 					.increment = 1
2468a9867a6SSlawomir Mrozowicz 				},
247acf86169SPablo de Lara 				.iv_size = { 0 }
2488a9867a6SSlawomir Mrozowicz 			}, }
2498a9867a6SSlawomir Mrozowicz 		}, }
2508a9867a6SSlawomir Mrozowicz 	},
2518a9867a6SSlawomir Mrozowicz 	{	/* SHA512  */
2528a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
2538a9867a6SSlawomir Mrozowicz 		{.sym = {
2548a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
2558a9867a6SSlawomir Mrozowicz 			{.auth = {
2568a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_SHA512,
2578a9867a6SSlawomir Mrozowicz 				.block_size = 128,
2588a9867a6SSlawomir Mrozowicz 				.key_size = {
2598a9867a6SSlawomir Mrozowicz 					.min = 0,
2608a9867a6SSlawomir Mrozowicz 					.max = 0,
2618a9867a6SSlawomir Mrozowicz 					.increment = 0
2628a9867a6SSlawomir Mrozowicz 				},
2638a9867a6SSlawomir Mrozowicz 				.digest_size = {
2648a9867a6SSlawomir Mrozowicz 					.min = 64,
2658a9867a6SSlawomir Mrozowicz 					.max = 64,
2668a9867a6SSlawomir Mrozowicz 					.increment = 0
2678a9867a6SSlawomir Mrozowicz 				},
268acf86169SPablo de Lara 				.iv_size = { 0 }
2698a9867a6SSlawomir Mrozowicz 			}, }
2708a9867a6SSlawomir Mrozowicz 		}, }
2718a9867a6SSlawomir Mrozowicz 	},
2728a9867a6SSlawomir Mrozowicz 	{	/* AES CBC */
2738a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
2748a9867a6SSlawomir Mrozowicz 		{.sym = {
2758a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
2768a9867a6SSlawomir Mrozowicz 			{.cipher = {
2778a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_CIPHER_AES_CBC,
2788a9867a6SSlawomir Mrozowicz 				.block_size = 16,
2798a9867a6SSlawomir Mrozowicz 				.key_size = {
2808a9867a6SSlawomir Mrozowicz 					.min = 16,
2818a9867a6SSlawomir Mrozowicz 					.max = 32,
2828a9867a6SSlawomir Mrozowicz 					.increment = 8
2838a9867a6SSlawomir Mrozowicz 				},
2848a9867a6SSlawomir Mrozowicz 				.iv_size = {
2858a9867a6SSlawomir Mrozowicz 					.min = 16,
2868a9867a6SSlawomir Mrozowicz 					.max = 16,
2878a9867a6SSlawomir Mrozowicz 					.increment = 0
2888a9867a6SSlawomir Mrozowicz 				}
2898a9867a6SSlawomir Mrozowicz 			}, }
2908a9867a6SSlawomir Mrozowicz 		}, }
2918a9867a6SSlawomir Mrozowicz 	},
2928a9867a6SSlawomir Mrozowicz 	{	/* AES CTR */
2938a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
2948a9867a6SSlawomir Mrozowicz 		{.sym = {
2958a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
2968a9867a6SSlawomir Mrozowicz 			{.cipher = {
2978a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_CIPHER_AES_CTR,
2988a9867a6SSlawomir Mrozowicz 				.block_size = 16,
2998a9867a6SSlawomir Mrozowicz 				.key_size = {
3008a9867a6SSlawomir Mrozowicz 					.min = 16,
3018a9867a6SSlawomir Mrozowicz 					.max = 32,
3028a9867a6SSlawomir Mrozowicz 					.increment = 8
3038a9867a6SSlawomir Mrozowicz 				},
3048a9867a6SSlawomir Mrozowicz 				.iv_size = {
3058a9867a6SSlawomir Mrozowicz 					.min = 16,
3068a9867a6SSlawomir Mrozowicz 					.max = 16,
3078a9867a6SSlawomir Mrozowicz 					.increment = 0
3088a9867a6SSlawomir Mrozowicz 				}
3098a9867a6SSlawomir Mrozowicz 			}, }
3108a9867a6SSlawomir Mrozowicz 		}, }
3118a9867a6SSlawomir Mrozowicz 	},
312b79e4c00SPablo de Lara 	{	/* AES GCM */
3138a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
3148a9867a6SSlawomir Mrozowicz 		{.sym = {
315b79e4c00SPablo de Lara 			.xform_type = RTE_CRYPTO_SYM_XFORM_AEAD,
316b79e4c00SPablo de Lara 			{.aead = {
317b79e4c00SPablo de Lara 				.algo = RTE_CRYPTO_AEAD_AES_GCM,
3188a9867a6SSlawomir Mrozowicz 				.block_size = 16,
3198a9867a6SSlawomir Mrozowicz 				.key_size = {
3208a9867a6SSlawomir Mrozowicz 					.min = 16,
3218a9867a6SSlawomir Mrozowicz 					.max = 32,
3228a9867a6SSlawomir Mrozowicz 					.increment = 8
3238a9867a6SSlawomir Mrozowicz 				},
3248a9867a6SSlawomir Mrozowicz 				.digest_size = {
3258a9867a6SSlawomir Mrozowicz 					.min = 16,
3268a9867a6SSlawomir Mrozowicz 					.max = 16,
3278a9867a6SSlawomir Mrozowicz 					.increment = 0
3288a9867a6SSlawomir Mrozowicz 				},
3298a9867a6SSlawomir Mrozowicz 				.aad_size = {
3300625598aSArek Kusztal 					.min = 0,
3310625598aSArek Kusztal 					.max = 65535,
3320625598aSArek Kusztal 					.increment = 1
333acf86169SPablo de Lara 				},
3348a9867a6SSlawomir Mrozowicz 				.iv_size = {
3358a9867a6SSlawomir Mrozowicz 					.min = 12,
3368a9867a6SSlawomir Mrozowicz 					.max = 16,
3378a9867a6SSlawomir Mrozowicz 					.increment = 4
338b79e4c00SPablo de Lara 				},
3398a9867a6SSlawomir Mrozowicz 			}, }
3408a9867a6SSlawomir Mrozowicz 		}, }
3418a9867a6SSlawomir Mrozowicz 	},
3421a4998dcSPablo de Lara 	{	/* AES CCM */
3431a4998dcSPablo de Lara 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
3441a4998dcSPablo de Lara 		{.sym = {
3451a4998dcSPablo de Lara 			.xform_type = RTE_CRYPTO_SYM_XFORM_AEAD,
3461a4998dcSPablo de Lara 			{.aead = {
3471a4998dcSPablo de Lara 				.algo = RTE_CRYPTO_AEAD_AES_CCM,
3481a4998dcSPablo de Lara 				.block_size = 16,
3491a4998dcSPablo de Lara 				.key_size = {
3501a4998dcSPablo de Lara 					.min = 16,
3511a4998dcSPablo de Lara 					.max = 32,
3521a4998dcSPablo de Lara 					.increment = 8
3531a4998dcSPablo de Lara 				},
3541a4998dcSPablo de Lara 				.digest_size = {
3551a4998dcSPablo de Lara 					.min = 4,
3561a4998dcSPablo de Lara 					.max = 16,
3571a4998dcSPablo de Lara 					.increment = 2
3581a4998dcSPablo de Lara 				},
3591a4998dcSPablo de Lara 				.aad_size = {
3601a4998dcSPablo de Lara 					.min = 0,
3611a4998dcSPablo de Lara 					.max = 65535,
3621a4998dcSPablo de Lara 					.increment = 1
3631a4998dcSPablo de Lara 				},
3641a4998dcSPablo de Lara 				.iv_size = {
3651a4998dcSPablo de Lara 					.min = 7,
3661a4998dcSPablo de Lara 					.max = 13,
3671a4998dcSPablo de Lara 					.increment = 1
3681a4998dcSPablo de Lara 				},
3691a4998dcSPablo de Lara 			}, }
3701a4998dcSPablo de Lara 		}, }
3711a4998dcSPablo de Lara 	},
3728a9867a6SSlawomir Mrozowicz 	{	/* AES GMAC (AUTH) */
3738a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
3748a9867a6SSlawomir Mrozowicz 		{.sym = {
3758a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
3768a9867a6SSlawomir Mrozowicz 			{.auth = {
3778a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_AUTH_AES_GMAC,
3788a9867a6SSlawomir Mrozowicz 				.block_size = 16,
3798a9867a6SSlawomir Mrozowicz 				.key_size = {
3808a9867a6SSlawomir Mrozowicz 					.min = 16,
3818a9867a6SSlawomir Mrozowicz 					.max = 32,
3828a9867a6SSlawomir Mrozowicz 					.increment = 8
3838a9867a6SSlawomir Mrozowicz 				},
3848a9867a6SSlawomir Mrozowicz 				.digest_size = {
3858a9867a6SSlawomir Mrozowicz 					.min = 16,
3868a9867a6SSlawomir Mrozowicz 					.max = 16,
3878a9867a6SSlawomir Mrozowicz 					.increment = 0
3888a9867a6SSlawomir Mrozowicz 				},
389e32e4fa8SPablo de Lara 				.iv_size = {
390e32e4fa8SPablo de Lara 					.min = 12,
391e32e4fa8SPablo de Lara 					.max = 16,
3928a9867a6SSlawomir Mrozowicz 					.increment = 4
393e32e4fa8SPablo de Lara 				}
3948a9867a6SSlawomir Mrozowicz 			}, }
3958a9867a6SSlawomir Mrozowicz 		}, }
3968a9867a6SSlawomir Mrozowicz 	},
3972b9c693fSAshwin Sekhar T K 	{	/* AES CMAC (AUTH) */
3982b9c693fSAshwin Sekhar T K 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
3992b9c693fSAshwin Sekhar T K 		{.sym = {
4002b9c693fSAshwin Sekhar T K 			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
4012b9c693fSAshwin Sekhar T K 			{.auth = {
4022b9c693fSAshwin Sekhar T K 				.algo = RTE_CRYPTO_AUTH_AES_CMAC,
4032b9c693fSAshwin Sekhar T K 				.block_size = 16,
4042b9c693fSAshwin Sekhar T K 				.key_size = {
4052b9c693fSAshwin Sekhar T K 					.min = 16,
4062b9c693fSAshwin Sekhar T K 					.max = 32,
4072b9c693fSAshwin Sekhar T K 					.increment = 8
4082b9c693fSAshwin Sekhar T K 				},
4092b9c693fSAshwin Sekhar T K 				.digest_size = {
4102b9c693fSAshwin Sekhar T K 					.min = 4,
4112b9c693fSAshwin Sekhar T K 					.max = 16,
4122b9c693fSAshwin Sekhar T K 					.increment = 4
4132b9c693fSAshwin Sekhar T K 				},
4142b9c693fSAshwin Sekhar T K 			}, }
4152b9c693fSAshwin Sekhar T K 		}, }
4162b9c693fSAshwin Sekhar T K 	},
4178a9867a6SSlawomir Mrozowicz 	{	/* 3DES CBC */
4188a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
4198a9867a6SSlawomir Mrozowicz 		{.sym = {
4208a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
4218a9867a6SSlawomir Mrozowicz 			{.cipher = {
4228a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_CIPHER_3DES_CBC,
4238a9867a6SSlawomir Mrozowicz 				.block_size = 8,
4248a9867a6SSlawomir Mrozowicz 				.key_size = {
4259607e37eSMarko Kovacevic 					.min = 8,
4268a9867a6SSlawomir Mrozowicz 					.max = 24,
4278a9867a6SSlawomir Mrozowicz 					.increment = 8
4288a9867a6SSlawomir Mrozowicz 				},
4298a9867a6SSlawomir Mrozowicz 				.iv_size = {
4308a9867a6SSlawomir Mrozowicz 					.min = 8,
4318a9867a6SSlawomir Mrozowicz 					.max = 8,
4328a9867a6SSlawomir Mrozowicz 					.increment = 0
4338a9867a6SSlawomir Mrozowicz 				}
4348a9867a6SSlawomir Mrozowicz 			}, }
4358a9867a6SSlawomir Mrozowicz 		}, }
4368a9867a6SSlawomir Mrozowicz 	},
4378a9867a6SSlawomir Mrozowicz 	{	/* 3DES CTR */
4388a9867a6SSlawomir Mrozowicz 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
4398a9867a6SSlawomir Mrozowicz 		{.sym = {
4408a9867a6SSlawomir Mrozowicz 			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
4418a9867a6SSlawomir Mrozowicz 			{.cipher = {
4428a9867a6SSlawomir Mrozowicz 				.algo = RTE_CRYPTO_CIPHER_3DES_CTR,
4438a9867a6SSlawomir Mrozowicz 				.block_size = 8,
4448a9867a6SSlawomir Mrozowicz 				.key_size = {
4458a9867a6SSlawomir Mrozowicz 					.min = 16,
4468a9867a6SSlawomir Mrozowicz 					.max = 24,
4478a9867a6SSlawomir Mrozowicz 					.increment = 8
4488a9867a6SSlawomir Mrozowicz 				},
4498a9867a6SSlawomir Mrozowicz 				.iv_size = {
4508a9867a6SSlawomir Mrozowicz 					.min = 8,
4518a9867a6SSlawomir Mrozowicz 					.max = 8,
4528a9867a6SSlawomir Mrozowicz 					.increment = 0
4538a9867a6SSlawomir Mrozowicz 				}
4548a9867a6SSlawomir Mrozowicz 			}, }
4558a9867a6SSlawomir Mrozowicz 		}, }
4568a9867a6SSlawomir Mrozowicz 	},
457c1734807SPablo de Lara 	{	/* DES CBC */
458c1734807SPablo de Lara 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
459c1734807SPablo de Lara 		{.sym = {
460c1734807SPablo de Lara 			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
461c1734807SPablo de Lara 			{.cipher = {
462c1734807SPablo de Lara 				.algo = RTE_CRYPTO_CIPHER_DES_CBC,
463c1734807SPablo de Lara 				.block_size = 8,
464c1734807SPablo de Lara 				.key_size = {
465c1734807SPablo de Lara 					.min = 8,
466c1734807SPablo de Lara 					.max = 8,
467c1734807SPablo de Lara 					.increment = 0
468c1734807SPablo de Lara 				},
469c1734807SPablo de Lara 				.iv_size = {
470c1734807SPablo de Lara 					.min = 8,
471c1734807SPablo de Lara 					.max = 8,
472c1734807SPablo de Lara 					.increment = 0
473c1734807SPablo de Lara 				}
474c1734807SPablo de Lara 			}, }
475c1734807SPablo de Lara 		}, }
476c1734807SPablo de Lara 	},
4771dee7bc7SPablo de Lara 	{	/* DES DOCSIS BPI */
4781dee7bc7SPablo de Lara 		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
4791dee7bc7SPablo de Lara 		{.sym = {
4801dee7bc7SPablo de Lara 			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
4811dee7bc7SPablo de Lara 			{.cipher = {
4821dee7bc7SPablo de Lara 				.algo = RTE_CRYPTO_CIPHER_DES_DOCSISBPI,
4831dee7bc7SPablo de Lara 				.block_size = 8,
4841dee7bc7SPablo de Lara 				.key_size = {
4851dee7bc7SPablo de Lara 					.min = 8,
4861dee7bc7SPablo de Lara 					.max = 8,
4871dee7bc7SPablo de Lara 					.increment = 0
4881dee7bc7SPablo de Lara 				},
4891dee7bc7SPablo de Lara 				.iv_size = {
4901dee7bc7SPablo de Lara 					.min = 8,
4911dee7bc7SPablo de Lara 					.max = 8,
4921dee7bc7SPablo de Lara 					.increment = 0
4931dee7bc7SPablo de Lara 				}
4941dee7bc7SPablo de Lara 			}, }
4951dee7bc7SPablo de Lara 		}, }
4961dee7bc7SPablo de Lara 	},
4973e9d6bd4SSunila Sahu 	{	/* RSA */
4983e9d6bd4SSunila Sahu 		.op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC,
4993e9d6bd4SSunila Sahu 		{.asym = {
5003e9d6bd4SSunila Sahu 			.xform_capa = {
5013e9d6bd4SSunila Sahu 				.xform_type = RTE_CRYPTO_ASYM_XFORM_RSA,
5023e9d6bd4SSunila Sahu 				.op_types = ((1 << RTE_CRYPTO_ASYM_OP_SIGN) |
5033e9d6bd4SSunila Sahu 					(1 << RTE_CRYPTO_ASYM_OP_VERIFY) |
5043e9d6bd4SSunila Sahu 					(1 << RTE_CRYPTO_ASYM_OP_ENCRYPT) |
5053e9d6bd4SSunila Sahu 					(1 << RTE_CRYPTO_ASYM_OP_DECRYPT)),
5063e9d6bd4SSunila Sahu 				{
5073e9d6bd4SSunila Sahu 				.modlen = {
5083e9d6bd4SSunila Sahu 				/* min length is based on openssl rsa keygen */
5093e9d6bd4SSunila Sahu 				.min = 30,
5103e9d6bd4SSunila Sahu 				/* value 0 symbolizes no limit on max length */
5113e9d6bd4SSunila Sahu 				.max = 0,
5123e9d6bd4SSunila Sahu 				.increment = 1
5133e9d6bd4SSunila Sahu 				}, }
5143e9d6bd4SSunila Sahu 			}
5153e9d6bd4SSunila Sahu 		},
5163e9d6bd4SSunila Sahu 		}
5173e9d6bd4SSunila Sahu 	},
5183e9d6bd4SSunila Sahu 	{	/* modexp */
5193e9d6bd4SSunila Sahu 		.op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC,
5203e9d6bd4SSunila Sahu 		{.asym = {
5213e9d6bd4SSunila Sahu 			.xform_capa = {
5223e9d6bd4SSunila Sahu 				.xform_type = RTE_CRYPTO_ASYM_XFORM_MODEX,
5233e9d6bd4SSunila Sahu 				.op_types = 0,
5243e9d6bd4SSunila Sahu 				{
5253e9d6bd4SSunila Sahu 				.modlen = {
5263e9d6bd4SSunila Sahu 				/* value 0 symbolizes no limit on min length */
5273e9d6bd4SSunila Sahu 				.min = 0,
5283e9d6bd4SSunila Sahu 				/* value 0 symbolizes no limit on max length */
5293e9d6bd4SSunila Sahu 				.max = 0,
5303e9d6bd4SSunila Sahu 				.increment = 1
5313e9d6bd4SSunila Sahu 				}, }
5323e9d6bd4SSunila Sahu 			}
5333e9d6bd4SSunila Sahu 		},
5343e9d6bd4SSunila Sahu 		}
5353e9d6bd4SSunila Sahu 	},
5363e9d6bd4SSunila Sahu 	{	/* modinv */
5373e9d6bd4SSunila Sahu 		.op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC,
5383e9d6bd4SSunila Sahu 		{.asym = {
5393e9d6bd4SSunila Sahu 			.xform_capa = {
5403e9d6bd4SSunila Sahu 				.xform_type = RTE_CRYPTO_ASYM_XFORM_MODINV,
5413e9d6bd4SSunila Sahu 				.op_types = 0,
5423e9d6bd4SSunila Sahu 				{
5433e9d6bd4SSunila Sahu 				.modlen = {
5443e9d6bd4SSunila Sahu 				/* value 0 symbolizes no limit on min length */
5453e9d6bd4SSunila Sahu 				.min = 0,
5463e9d6bd4SSunila Sahu 				/* value 0 symbolizes no limit on max length */
5473e9d6bd4SSunila Sahu 				.max = 0,
5483e9d6bd4SSunila Sahu 				.increment = 1
5493e9d6bd4SSunila Sahu 				}, }
5503e9d6bd4SSunila Sahu 			}
5513e9d6bd4SSunila Sahu 		},
5523e9d6bd4SSunila Sahu 		}
5533e9d6bd4SSunila Sahu 	},
554ac42813aSSunila Sahu 	{	/* dh */
555ac42813aSSunila Sahu 		.op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC,
556ac42813aSSunila Sahu 		{.asym = {
557ac42813aSSunila Sahu 			.xform_capa = {
558ac42813aSSunila Sahu 				.xform_type = RTE_CRYPTO_ASYM_XFORM_DH,
559ac42813aSSunila Sahu 				.op_types =
5605fa1fb29SArek Kusztal 				((1<<RTE_CRYPTO_ASYM_KE_PRIV_KEY_GENERATE) |
5615fa1fb29SArek Kusztal 				(1 << RTE_CRYPTO_ASYM_KE_PUB_KEY_GENERATE |
562ac42813aSSunila Sahu 				(1 <<
5635fa1fb29SArek Kusztal 				RTE_CRYPTO_ASYM_KE_SHARED_SECRET_COMPUTE))),
564ac42813aSSunila Sahu 				{
565ac42813aSSunila Sahu 				.modlen = {
566ac42813aSSunila Sahu 				/* value 0 symbolizes no limit on min length */
567ac42813aSSunila Sahu 				.min = 0,
568ac42813aSSunila Sahu 				/* value 0 symbolizes no limit on max length */
569ac42813aSSunila Sahu 				.max = 0,
570ac42813aSSunila Sahu 				.increment = 1
571ac42813aSSunila Sahu 				}, }
572ac42813aSSunila Sahu 			}
573ac42813aSSunila Sahu 		},
574ac42813aSSunila Sahu 		}
575ac42813aSSunila Sahu 	},
576ac42813aSSunila Sahu 	{	/* dsa */
577ac42813aSSunila Sahu 		.op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC,
578ac42813aSSunila Sahu 		{.asym = {
579ac42813aSSunila Sahu 			.xform_capa = {
580ac42813aSSunila Sahu 				.xform_type = RTE_CRYPTO_ASYM_XFORM_DSA,
581ac42813aSSunila Sahu 				.op_types =
582ac42813aSSunila Sahu 				((1<<RTE_CRYPTO_ASYM_OP_SIGN) |
583ac42813aSSunila Sahu 				(1 << RTE_CRYPTO_ASYM_OP_VERIFY)),
584ac42813aSSunila Sahu 				{
585ac42813aSSunila Sahu 				.modlen = {
586ac42813aSSunila Sahu 				/* value 0 symbolizes no limit on min length */
587ac42813aSSunila Sahu 				.min = 0,
588ac42813aSSunila Sahu 				/* value 0 symbolizes no limit on max length */
589ac42813aSSunila Sahu 				.max = 0,
590ac42813aSSunila Sahu 				.increment = 1
591ac42813aSSunila Sahu 				}, }
592ac42813aSSunila Sahu 			}
593ac42813aSSunila Sahu 		},
594ac42813aSSunila Sahu 		}
595ac42813aSSunila Sahu 	},
596*e8f9c5c8SGowrishankar Muthukrishnan 	{	/* SM2 */
597*e8f9c5c8SGowrishankar Muthukrishnan 		.op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC,
598*e8f9c5c8SGowrishankar Muthukrishnan 		{.asym = {
599*e8f9c5c8SGowrishankar Muthukrishnan 			.xform_capa = {
600*e8f9c5c8SGowrishankar Muthukrishnan 				.xform_type = RTE_CRYPTO_ASYM_XFORM_SM2,
601*e8f9c5c8SGowrishankar Muthukrishnan 				.op_types =
602*e8f9c5c8SGowrishankar Muthukrishnan 				((1<<RTE_CRYPTO_ASYM_OP_SIGN) |
603*e8f9c5c8SGowrishankar Muthukrishnan 				 (1 << RTE_CRYPTO_ASYM_OP_VERIFY) |
604*e8f9c5c8SGowrishankar Muthukrishnan 				 (1 << RTE_CRYPTO_ASYM_OP_ENCRYPT) |
605*e8f9c5c8SGowrishankar Muthukrishnan 				 (1 << RTE_CRYPTO_ASYM_OP_DECRYPT)),
606*e8f9c5c8SGowrishankar Muthukrishnan 			}
607*e8f9c5c8SGowrishankar Muthukrishnan 		}
608*e8f9c5c8SGowrishankar Muthukrishnan 		}
609*e8f9c5c8SGowrishankar Muthukrishnan 	},
6108a9867a6SSlawomir Mrozowicz 
6118a9867a6SSlawomir Mrozowicz 	RTE_CRYPTODEV_END_OF_CAPABILITIES_LIST()
6128a9867a6SSlawomir Mrozowicz };
6138a9867a6SSlawomir Mrozowicz 
6148a9867a6SSlawomir Mrozowicz 
6158a9867a6SSlawomir Mrozowicz /** Configure device */
6168a9867a6SSlawomir Mrozowicz static int
61760e686c2SFan Zhang openssl_pmd_config(__rte_unused struct rte_cryptodev *dev,
61860e686c2SFan Zhang 		__rte_unused struct rte_cryptodev_config *config)
6198a9867a6SSlawomir Mrozowicz {
6208a9867a6SSlawomir Mrozowicz 	return 0;
6218a9867a6SSlawomir Mrozowicz }
6228a9867a6SSlawomir Mrozowicz 
6238a9867a6SSlawomir Mrozowicz /** Start device */
6248a9867a6SSlawomir Mrozowicz static int
6258a9867a6SSlawomir Mrozowicz openssl_pmd_start(__rte_unused struct rte_cryptodev *dev)
6268a9867a6SSlawomir Mrozowicz {
6278a9867a6SSlawomir Mrozowicz 	return 0;
6288a9867a6SSlawomir Mrozowicz }
6298a9867a6SSlawomir Mrozowicz 
6308a9867a6SSlawomir Mrozowicz /** Stop device */
6318a9867a6SSlawomir Mrozowicz static void
6328a9867a6SSlawomir Mrozowicz openssl_pmd_stop(__rte_unused struct rte_cryptodev *dev)
6338a9867a6SSlawomir Mrozowicz {
6348a9867a6SSlawomir Mrozowicz }
6358a9867a6SSlawomir Mrozowicz 
6368a9867a6SSlawomir Mrozowicz /** Close device */
6378a9867a6SSlawomir Mrozowicz static int
6388a9867a6SSlawomir Mrozowicz openssl_pmd_close(__rte_unused struct rte_cryptodev *dev)
6398a9867a6SSlawomir Mrozowicz {
6408a9867a6SSlawomir Mrozowicz 	return 0;
6418a9867a6SSlawomir Mrozowicz }
6428a9867a6SSlawomir Mrozowicz 
6438a9867a6SSlawomir Mrozowicz 
6448a9867a6SSlawomir Mrozowicz /** Get device statistics */
6458a9867a6SSlawomir Mrozowicz static void
6468a9867a6SSlawomir Mrozowicz openssl_pmd_stats_get(struct rte_cryptodev *dev,
6478a9867a6SSlawomir Mrozowicz 		struct rte_cryptodev_stats *stats)
6488a9867a6SSlawomir Mrozowicz {
6498a9867a6SSlawomir Mrozowicz 	int qp_id;
6508a9867a6SSlawomir Mrozowicz 
6518a9867a6SSlawomir Mrozowicz 	for (qp_id = 0; qp_id < dev->data->nb_queue_pairs; qp_id++) {
6528a9867a6SSlawomir Mrozowicz 		struct openssl_qp *qp = dev->data->queue_pairs[qp_id];
6538a9867a6SSlawomir Mrozowicz 
6548a9867a6SSlawomir Mrozowicz 		stats->enqueued_count += qp->stats.enqueued_count;
6558a9867a6SSlawomir Mrozowicz 		stats->dequeued_count += qp->stats.dequeued_count;
6568a9867a6SSlawomir Mrozowicz 
6578a9867a6SSlawomir Mrozowicz 		stats->enqueue_err_count += qp->stats.enqueue_err_count;
6588a9867a6SSlawomir Mrozowicz 		stats->dequeue_err_count += qp->stats.dequeue_err_count;
6598a9867a6SSlawomir Mrozowicz 	}
6608a9867a6SSlawomir Mrozowicz }
6618a9867a6SSlawomir Mrozowicz 
6628a9867a6SSlawomir Mrozowicz /** Reset device statistics */
6638a9867a6SSlawomir Mrozowicz static void
6648a9867a6SSlawomir Mrozowicz openssl_pmd_stats_reset(struct rte_cryptodev *dev)
6658a9867a6SSlawomir Mrozowicz {
6668a9867a6SSlawomir Mrozowicz 	int qp_id;
6678a9867a6SSlawomir Mrozowicz 
6688a9867a6SSlawomir Mrozowicz 	for (qp_id = 0; qp_id < dev->data->nb_queue_pairs; qp_id++) {
6698a9867a6SSlawomir Mrozowicz 		struct openssl_qp *qp = dev->data->queue_pairs[qp_id];
6708a9867a6SSlawomir Mrozowicz 
6718a9867a6SSlawomir Mrozowicz 		memset(&qp->stats, 0, sizeof(qp->stats));
6728a9867a6SSlawomir Mrozowicz 	}
6738a9867a6SSlawomir Mrozowicz }
6748a9867a6SSlawomir Mrozowicz 
6758a9867a6SSlawomir Mrozowicz 
6768a9867a6SSlawomir Mrozowicz /** Get device info */
6778a9867a6SSlawomir Mrozowicz static void
6788a9867a6SSlawomir Mrozowicz openssl_pmd_info_get(struct rte_cryptodev *dev,
6798a9867a6SSlawomir Mrozowicz 		struct rte_cryptodev_info *dev_info)
6808a9867a6SSlawomir Mrozowicz {
6818a9867a6SSlawomir Mrozowicz 	struct openssl_private *internals = dev->data->dev_private;
6828a9867a6SSlawomir Mrozowicz 
6838a9867a6SSlawomir Mrozowicz 	if (dev_info != NULL) {
6847a364faeSSlawomir Mrozowicz 		dev_info->driver_id = dev->driver_id;
6858a9867a6SSlawomir Mrozowicz 		dev_info->feature_flags = dev->feature_flags;
6868a9867a6SSlawomir Mrozowicz 		dev_info->capabilities = openssl_pmd_capabilities;
6878a9867a6SSlawomir Mrozowicz 		dev_info->max_nb_queue_pairs = internals->max_nb_qpairs;
688e1fc5b76SPablo de Lara 		/* No limit of number of sessions */
689e1fc5b76SPablo de Lara 		dev_info->sym.max_nb_sessions = 0;
6908a9867a6SSlawomir Mrozowicz 	}
6918a9867a6SSlawomir Mrozowicz }
6928a9867a6SSlawomir Mrozowicz 
6938a9867a6SSlawomir Mrozowicz /** Release queue pair */
6948a9867a6SSlawomir Mrozowicz static int
6958a9867a6SSlawomir Mrozowicz openssl_pmd_qp_release(struct rte_cryptodev *dev, uint16_t qp_id)
6968a9867a6SSlawomir Mrozowicz {
6978a9867a6SSlawomir Mrozowicz 	if (dev->data->queue_pairs[qp_id] != NULL) {
698a4d69a51SFan Zhang 		struct openssl_qp *qp = dev->data->queue_pairs[qp_id];
699a4d69a51SFan Zhang 
700a4d69a51SFan Zhang 		rte_ring_free(qp->processed_ops);
701a4d69a51SFan Zhang 
7028a9867a6SSlawomir Mrozowicz 		rte_free(dev->data->queue_pairs[qp_id]);
7038a9867a6SSlawomir Mrozowicz 		dev->data->queue_pairs[qp_id] = NULL;
7048a9867a6SSlawomir Mrozowicz 	}
7058a9867a6SSlawomir Mrozowicz 	return 0;
7068a9867a6SSlawomir Mrozowicz }
7078a9867a6SSlawomir Mrozowicz 
7088a9867a6SSlawomir Mrozowicz /** set a unique name for the queue pair based on it's name, dev_id and qp_id */
7098a9867a6SSlawomir Mrozowicz static int
7108a9867a6SSlawomir Mrozowicz openssl_pmd_qp_set_unique_name(struct rte_cryptodev *dev,
7118a9867a6SSlawomir Mrozowicz 		struct openssl_qp *qp)
7128a9867a6SSlawomir Mrozowicz {
7138a9867a6SSlawomir Mrozowicz 	unsigned int n = snprintf(qp->name, sizeof(qp->name),
7148a9867a6SSlawomir Mrozowicz 			"openssl_pmd_%u_qp_%u",
7158a9867a6SSlawomir Mrozowicz 			dev->data->dev_id, qp->id);
7168a9867a6SSlawomir Mrozowicz 
7176ab25e63STomasz Duszynski 	if (n >= sizeof(qp->name))
7188a9867a6SSlawomir Mrozowicz 		return -1;
7198a9867a6SSlawomir Mrozowicz 
7208a9867a6SSlawomir Mrozowicz 	return 0;
7218a9867a6SSlawomir Mrozowicz }
7228a9867a6SSlawomir Mrozowicz 
7238a9867a6SSlawomir Mrozowicz 
7248a9867a6SSlawomir Mrozowicz /** Create a ring to place processed operations on */
7258a9867a6SSlawomir Mrozowicz static struct rte_ring *
7268a9867a6SSlawomir Mrozowicz openssl_pmd_qp_create_processed_ops_ring(struct openssl_qp *qp,
7278a9867a6SSlawomir Mrozowicz 		unsigned int ring_size, int socket_id)
7288a9867a6SSlawomir Mrozowicz {
7298a9867a6SSlawomir Mrozowicz 	struct rte_ring *r;
7308a9867a6SSlawomir Mrozowicz 
7318a9867a6SSlawomir Mrozowicz 	r = rte_ring_lookup(qp->name);
7328a9867a6SSlawomir Mrozowicz 	if (r) {
733636e7392SBruce Richardson 		if (rte_ring_get_size(r) >= ring_size) {
734094b2386SNaga Suresh Somarowthu 			OPENSSL_LOG(INFO,
7358a9867a6SSlawomir Mrozowicz 					"Reusing existing ring %s for processed ops",
7368a9867a6SSlawomir Mrozowicz 				 qp->name);
7378a9867a6SSlawomir Mrozowicz 			return r;
7388a9867a6SSlawomir Mrozowicz 		}
7398a9867a6SSlawomir Mrozowicz 
740094b2386SNaga Suresh Somarowthu 		OPENSSL_LOG(ERR,
7418a9867a6SSlawomir Mrozowicz 				"Unable to reuse existing ring %s for processed ops",
7428a9867a6SSlawomir Mrozowicz 			 qp->name);
7438a9867a6SSlawomir Mrozowicz 		return NULL;
7448a9867a6SSlawomir Mrozowicz 	}
7458a9867a6SSlawomir Mrozowicz 
7468a9867a6SSlawomir Mrozowicz 	return rte_ring_create(qp->name, ring_size, socket_id,
7478a9867a6SSlawomir Mrozowicz 			RING_F_SP_ENQ | RING_F_SC_DEQ);
7488a9867a6SSlawomir Mrozowicz }
7498a9867a6SSlawomir Mrozowicz 
7508a9867a6SSlawomir Mrozowicz 
7518a9867a6SSlawomir Mrozowicz /** Setup a queue pair */
7528a9867a6SSlawomir Mrozowicz static int
7538a9867a6SSlawomir Mrozowicz openssl_pmd_qp_setup(struct rte_cryptodev *dev, uint16_t qp_id,
7548a9867a6SSlawomir Mrozowicz 		const struct rte_cryptodev_qp_conf *qp_conf,
755725d2a7fSFan Zhang 		int socket_id)
7568a9867a6SSlawomir Mrozowicz {
7578a9867a6SSlawomir Mrozowicz 	struct openssl_qp *qp = NULL;
7588a9867a6SSlawomir Mrozowicz 
7598a9867a6SSlawomir Mrozowicz 	/* Free memory prior to re-allocation if needed. */
7608a9867a6SSlawomir Mrozowicz 	if (dev->data->queue_pairs[qp_id] != NULL)
7618a9867a6SSlawomir Mrozowicz 		openssl_pmd_qp_release(dev, qp_id);
7628a9867a6SSlawomir Mrozowicz 
7638a9867a6SSlawomir Mrozowicz 	/* Allocate the queue pair data structure. */
7648a9867a6SSlawomir Mrozowicz 	qp = rte_zmalloc_socket("OPENSSL PMD Queue Pair", sizeof(*qp),
7658a9867a6SSlawomir Mrozowicz 					RTE_CACHE_LINE_SIZE, socket_id);
7668a9867a6SSlawomir Mrozowicz 	if (qp == NULL)
7678a9867a6SSlawomir Mrozowicz 		return -ENOMEM;
7688a9867a6SSlawomir Mrozowicz 
7698a9867a6SSlawomir Mrozowicz 	qp->id = qp_id;
7708a9867a6SSlawomir Mrozowicz 	dev->data->queue_pairs[qp_id] = qp;
7718a9867a6SSlawomir Mrozowicz 
7728a9867a6SSlawomir Mrozowicz 	if (openssl_pmd_qp_set_unique_name(dev, qp))
7738a9867a6SSlawomir Mrozowicz 		goto qp_setup_cleanup;
7748a9867a6SSlawomir Mrozowicz 
7758a9867a6SSlawomir Mrozowicz 	qp->processed_ops = openssl_pmd_qp_create_processed_ops_ring(qp,
7768a9867a6SSlawomir Mrozowicz 			qp_conf->nb_descriptors, socket_id);
7778a9867a6SSlawomir Mrozowicz 	if (qp->processed_ops == NULL)
7788a9867a6SSlawomir Mrozowicz 		goto qp_setup_cleanup;
7798a9867a6SSlawomir Mrozowicz 
780725d2a7fSFan Zhang 	qp->sess_mp = qp_conf->mp_session;
7818a9867a6SSlawomir Mrozowicz 
7828a9867a6SSlawomir Mrozowicz 	memset(&qp->stats, 0, sizeof(qp->stats));
7838a9867a6SSlawomir Mrozowicz 
7848a9867a6SSlawomir Mrozowicz 	return 0;
7858a9867a6SSlawomir Mrozowicz 
7868a9867a6SSlawomir Mrozowicz qp_setup_cleanup:
7878a9867a6SSlawomir Mrozowicz 	rte_free(qp);
7888a9867a6SSlawomir Mrozowicz 
7898a9867a6SSlawomir Mrozowicz 	return -1;
7908a9867a6SSlawomir Mrozowicz }
7918a9867a6SSlawomir Mrozowicz 
7923e9d6bd4SSunila Sahu /** Returns the size of the symmetric session structure */
7938a9867a6SSlawomir Mrozowicz static unsigned
794012c5076SPablo de Lara openssl_pmd_sym_session_get_size(struct rte_cryptodev *dev __rte_unused)
7958a9867a6SSlawomir Mrozowicz {
7968a9867a6SSlawomir Mrozowicz 	return sizeof(struct openssl_session);
7978a9867a6SSlawomir Mrozowicz }
7988a9867a6SSlawomir Mrozowicz 
7993e9d6bd4SSunila Sahu /** Returns the size of the asymmetric session structure */
8003e9d6bd4SSunila Sahu static unsigned
8013e9d6bd4SSunila Sahu openssl_pmd_asym_session_get_size(struct rte_cryptodev *dev __rte_unused)
8023e9d6bd4SSunila Sahu {
8033e9d6bd4SSunila Sahu 	return sizeof(struct openssl_asym_session);
8043e9d6bd4SSunila Sahu }
8053e9d6bd4SSunila Sahu 
8068a9867a6SSlawomir Mrozowicz /** Configure the session from a crypto xform chain */
807b3bbd9e5SSlawomir Mrozowicz static int
808012c5076SPablo de Lara openssl_pmd_sym_session_configure(struct rte_cryptodev *dev __rte_unused,
809b3bbd9e5SSlawomir Mrozowicz 		struct rte_crypto_sym_xform *xform,
810bdce2564SAkhil Goyal 		struct rte_cryptodev_sym_session *sess)
8118a9867a6SSlawomir Mrozowicz {
8122a440d6aSAkhil Goyal 	void *sess_private_data = CRYPTODEV_GET_SYM_SESS_PRIV(sess);
81327391b53SPablo de Lara 	int ret;
814b3bbd9e5SSlawomir Mrozowicz 
8158a9867a6SSlawomir Mrozowicz 	if (unlikely(sess == NULL)) {
816094b2386SNaga Suresh Somarowthu 		OPENSSL_LOG(ERR, "invalid session struct");
81727391b53SPablo de Lara 		return -EINVAL;
818b3bbd9e5SSlawomir Mrozowicz 	}
819b3bbd9e5SSlawomir Mrozowicz 
82027391b53SPablo de Lara 	ret = openssl_set_session_parameters(sess_private_data, xform);
82127391b53SPablo de Lara 	if (ret != 0) {
822094b2386SNaga Suresh Somarowthu 		OPENSSL_LOG(ERR, "failed configure session parameters");
823b3bbd9e5SSlawomir Mrozowicz 
824b3bbd9e5SSlawomir Mrozowicz 		/* Return session to mempool */
82527391b53SPablo de Lara 		return ret;
8268a9867a6SSlawomir Mrozowicz 	}
8278a9867a6SSlawomir Mrozowicz 
828b3bbd9e5SSlawomir Mrozowicz 	return 0;
8298a9867a6SSlawomir Mrozowicz }
8308a9867a6SSlawomir Mrozowicz 
8313e9d6bd4SSunila Sahu static int openssl_set_asym_session_parameters(
8323e9d6bd4SSunila Sahu 		struct openssl_asym_session *asym_session,
8333e9d6bd4SSunila Sahu 		struct rte_crypto_asym_xform *xform)
8343e9d6bd4SSunila Sahu {
8354c7ae22fSKai Ji 	int ret = -1;
8363e9d6bd4SSunila Sahu 
837ac42813aSSunila Sahu 	if ((xform->xform_type != RTE_CRYPTO_ASYM_XFORM_DH) &&
838ac42813aSSunila Sahu 		(xform->next != NULL)) {
8393e9d6bd4SSunila Sahu 		OPENSSL_LOG(ERR, "chained xfrms are not supported on %s",
8407e1e1277SAkhil Goyal 			rte_cryptodev_asym_get_xform_string(xform->xform_type));
8414c7ae22fSKai Ji 		return ret;
8423e9d6bd4SSunila Sahu 	}
8433e9d6bd4SSunila Sahu 
8443e9d6bd4SSunila Sahu 	switch (xform->xform_type) {
8453e9d6bd4SSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_RSA:
8463e9d6bd4SSunila Sahu 	{
8473e9d6bd4SSunila Sahu 		BIGNUM *n = NULL;
8483e9d6bd4SSunila Sahu 		BIGNUM *e = NULL;
8493e9d6bd4SSunila Sahu 		BIGNUM *d = NULL;
8503e9d6bd4SSunila Sahu 		BIGNUM *p = NULL, *q = NULL, *dmp1 = NULL;
8513e9d6bd4SSunila Sahu 		BIGNUM *iqmp = NULL, *dmq1 = NULL;
8523e9d6bd4SSunila Sahu 
8533e9d6bd4SSunila Sahu 		/* copy xfrm data into rsa struct */
8543e9d6bd4SSunila Sahu 		n = BN_bin2bn((const unsigned char *)xform->rsa.n.data,
8553e9d6bd4SSunila Sahu 				xform->rsa.n.length, n);
8563e9d6bd4SSunila Sahu 		e = BN_bin2bn((const unsigned char *)xform->rsa.e.data,
8573e9d6bd4SSunila Sahu 				xform->rsa.e.length, e);
8583e9d6bd4SSunila Sahu 
8593e9d6bd4SSunila Sahu 		if (!n || !e)
8603e9d6bd4SSunila Sahu 			goto err_rsa;
8613e9d6bd4SSunila Sahu 
862d7bd42f6SKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
863d7bd42f6SKai Ji 		OSSL_PARAM_BLD * param_bld = OSSL_PARAM_BLD_new();
864d7bd42f6SKai Ji 		if (!param_bld) {
865d7bd42f6SKai Ji 			OPENSSL_LOG(ERR, "failed to allocate resources\n");
866d7bd42f6SKai Ji 			goto err_rsa;
867d7bd42f6SKai Ji 		}
868d7bd42f6SKai Ji 
869d7bd42f6SKai Ji 		if (!OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_RSA_N, n)
870d7bd42f6SKai Ji 			|| !OSSL_PARAM_BLD_push_BN(param_bld,
871d7bd42f6SKai Ji 					OSSL_PKEY_PARAM_RSA_E, e)) {
872d7bd42f6SKai Ji 			OSSL_PARAM_BLD_free(param_bld);
873d7bd42f6SKai Ji 			OPENSSL_LOG(ERR, "failed to allocate resources\n");
874d7bd42f6SKai Ji 			goto err_rsa;
875d7bd42f6SKai Ji 		}
876d7bd42f6SKai Ji 
877d7bd42f6SKai Ji 		if (xform->rsa.key_type == RTE_RSA_KEY_TYPE_EXP) {
878d7bd42f6SKai Ji 			d = BN_bin2bn(
879d7bd42f6SKai Ji 			(const unsigned char *)xform->rsa.d.data,
880d7bd42f6SKai Ji 			xform->rsa.d.length,
881d7bd42f6SKai Ji 			d);
882d7bd42f6SKai Ji 			if (!d) {
883d7bd42f6SKai Ji 				OSSL_PARAM_BLD_free(param_bld);
884d7bd42f6SKai Ji 				goto err_rsa;
885d7bd42f6SKai Ji 			}
886d7bd42f6SKai Ji 		} else {
887d7bd42f6SKai Ji 			p = BN_bin2bn((const unsigned char *)
888d7bd42f6SKai Ji 					xform->rsa.qt.p.data,
889d7bd42f6SKai Ji 					xform->rsa.qt.p.length,
890d7bd42f6SKai Ji 					p);
891d7bd42f6SKai Ji 			q = BN_bin2bn((const unsigned char *)
892d7bd42f6SKai Ji 					xform->rsa.qt.q.data,
893d7bd42f6SKai Ji 					xform->rsa.qt.q.length,
894d7bd42f6SKai Ji 					q);
895d7bd42f6SKai Ji 			dmp1 = BN_bin2bn((const unsigned char *)
896d7bd42f6SKai Ji 					xform->rsa.qt.dP.data,
897d7bd42f6SKai Ji 					xform->rsa.qt.dP.length,
898d7bd42f6SKai Ji 					dmp1);
899d7bd42f6SKai Ji 			dmq1 = BN_bin2bn((const unsigned char *)
900d7bd42f6SKai Ji 					xform->rsa.qt.dQ.data,
901d7bd42f6SKai Ji 					xform->rsa.qt.dQ.length,
902d7bd42f6SKai Ji 					dmq1);
903d7bd42f6SKai Ji 			iqmp = BN_bin2bn((const unsigned char *)
904d7bd42f6SKai Ji 					xform->rsa.qt.qInv.data,
905d7bd42f6SKai Ji 					xform->rsa.qt.qInv.length,
906d7bd42f6SKai Ji 					iqmp);
907d7bd42f6SKai Ji 
908d7bd42f6SKai Ji 			if (!p || !q || !dmp1 || !dmq1 || !iqmp) {
909d7bd42f6SKai Ji 				OSSL_PARAM_BLD_free(param_bld);
910d7bd42f6SKai Ji 				goto err_rsa;
911d7bd42f6SKai Ji 			}
912d7bd42f6SKai Ji 
913d7bd42f6SKai Ji 			if (!OSSL_PARAM_BLD_push_BN(param_bld,
914d7bd42f6SKai Ji 							OSSL_PKEY_PARAM_RSA_FACTOR1, p)
915d7bd42f6SKai Ji 				|| !OSSL_PARAM_BLD_push_BN(param_bld,
916d7bd42f6SKai Ji 							OSSL_PKEY_PARAM_RSA_FACTOR2, q)
917d7bd42f6SKai Ji 				|| !OSSL_PARAM_BLD_push_BN(param_bld,
918d7bd42f6SKai Ji 							OSSL_PKEY_PARAM_RSA_EXPONENT1, dmp1)
919d7bd42f6SKai Ji 				|| !OSSL_PARAM_BLD_push_BN(param_bld,
920d7bd42f6SKai Ji 							OSSL_PKEY_PARAM_RSA_EXPONENT2, dmq1)
921d7bd42f6SKai Ji 				|| !OSSL_PARAM_BLD_push_BN(param_bld,
922d7bd42f6SKai Ji 							OSSL_PKEY_PARAM_RSA_COEFFICIENT1, iqmp)) {
923d7bd42f6SKai Ji 				OSSL_PARAM_BLD_free(param_bld);
924d7bd42f6SKai Ji 				goto err_rsa;
925d7bd42f6SKai Ji 			}
926d7bd42f6SKai Ji 		}
927d7bd42f6SKai Ji 
928d7bd42f6SKai Ji 		if (!OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_RSA_N, n)
929d7bd42f6SKai Ji 			|| !OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_RSA_E, e)
930d7bd42f6SKai Ji 			|| !OSSL_PARAM_BLD_push_BN(param_bld,
931d7bd42f6SKai Ji 						OSSL_PKEY_PARAM_RSA_D, d)) {
932d7bd42f6SKai Ji 			OSSL_PARAM_BLD_free(param_bld);
933d7bd42f6SKai Ji 			goto err_rsa;
934d7bd42f6SKai Ji 		}
935d7bd42f6SKai Ji 
936d7bd42f6SKai Ji 		EVP_PKEY_CTX *key_ctx = EVP_PKEY_CTX_new_from_name(NULL, "RSA", NULL);
937d7bd42f6SKai Ji 		EVP_PKEY *pkey = NULL;
938d7bd42f6SKai Ji 		EVP_PKEY_CTX *rsa_ctx = NULL;
939d7bd42f6SKai Ji 		OSSL_PARAM *params = NULL;
940d7bd42f6SKai Ji 
941d7bd42f6SKai Ji 		params = OSSL_PARAM_BLD_to_param(param_bld);
942d7bd42f6SKai Ji 		if (!params) {
943d7bd42f6SKai Ji 			OSSL_PARAM_BLD_free(param_bld);
944d7bd42f6SKai Ji 			goto err_rsa;
945d7bd42f6SKai Ji 		}
946d7bd42f6SKai Ji 
947d7bd42f6SKai Ji 		if (key_ctx == NULL
948d7bd42f6SKai Ji 			|| EVP_PKEY_fromdata_init(key_ctx) <= 0
949d7bd42f6SKai Ji 			|| EVP_PKEY_fromdata(key_ctx, &pkey,
950d7bd42f6SKai Ji 				EVP_PKEY_KEYPAIR, params) <= 0) {
951d7bd42f6SKai Ji 			OSSL_PARAM_free(params);
952d7bd42f6SKai Ji 			goto err_rsa;
953d7bd42f6SKai Ji 		}
954d7bd42f6SKai Ji 
955d7bd42f6SKai Ji 		rsa_ctx = EVP_PKEY_CTX_new(pkey, NULL);
956d7bd42f6SKai Ji 		asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_RSA;
957d7bd42f6SKai Ji 		asym_session->u.r.ctx = rsa_ctx;
958d7bd42f6SKai Ji 		EVP_PKEY_CTX_free(key_ctx);
959d7bd42f6SKai Ji 		OSSL_PARAM_free(params);
960d7bd42f6SKai Ji 		break;
961d7bd42f6SKai Ji #else
9623e9d6bd4SSunila Sahu 		RSA *rsa = RSA_new();
9633e9d6bd4SSunila Sahu 		if (rsa == NULL)
9643e9d6bd4SSunila Sahu 			goto err_rsa;
9653e9d6bd4SSunila Sahu 
9663e9d6bd4SSunila Sahu 		if (xform->rsa.key_type == RTE_RSA_KEY_TYPE_EXP) {
9673e9d6bd4SSunila Sahu 			d = BN_bin2bn(
9683e9d6bd4SSunila Sahu 			(const unsigned char *)xform->rsa.d.data,
9693e9d6bd4SSunila Sahu 			xform->rsa.d.length,
9703e9d6bd4SSunila Sahu 			d);
9713e9d6bd4SSunila Sahu 			if (!d) {
9723e9d6bd4SSunila Sahu 				RSA_free(rsa);
9733e9d6bd4SSunila Sahu 				goto err_rsa;
9743e9d6bd4SSunila Sahu 			}
9753e9d6bd4SSunila Sahu 		} else {
9763e9d6bd4SSunila Sahu 			p = BN_bin2bn((const unsigned char *)
9773e9d6bd4SSunila Sahu 					xform->rsa.qt.p.data,
9783e9d6bd4SSunila Sahu 					xform->rsa.qt.p.length,
9793e9d6bd4SSunila Sahu 					p);
9803e9d6bd4SSunila Sahu 			q = BN_bin2bn((const unsigned char *)
9813e9d6bd4SSunila Sahu 					xform->rsa.qt.q.data,
9823e9d6bd4SSunila Sahu 					xform->rsa.qt.q.length,
9833e9d6bd4SSunila Sahu 					q);
9843e9d6bd4SSunila Sahu 			dmp1 = BN_bin2bn((const unsigned char *)
9853e9d6bd4SSunila Sahu 					xform->rsa.qt.dP.data,
9863e9d6bd4SSunila Sahu 					xform->rsa.qt.dP.length,
9873e9d6bd4SSunila Sahu 					dmp1);
9883e9d6bd4SSunila Sahu 			dmq1 = BN_bin2bn((const unsigned char *)
9893e9d6bd4SSunila Sahu 					xform->rsa.qt.dQ.data,
9903e9d6bd4SSunila Sahu 					xform->rsa.qt.dQ.length,
9913e9d6bd4SSunila Sahu 					dmq1);
9923e9d6bd4SSunila Sahu 			iqmp = BN_bin2bn((const unsigned char *)
9933e9d6bd4SSunila Sahu 					xform->rsa.qt.qInv.data,
9943e9d6bd4SSunila Sahu 					xform->rsa.qt.qInv.length,
9953e9d6bd4SSunila Sahu 					iqmp);
9963e9d6bd4SSunila Sahu 
9973e9d6bd4SSunila Sahu 			if (!p || !q || !dmp1 || !dmq1 || !iqmp) {
9983e9d6bd4SSunila Sahu 				RSA_free(rsa);
9993e9d6bd4SSunila Sahu 				goto err_rsa;
10003e9d6bd4SSunila Sahu 			}
10010b5284adSAshish Gupta 			ret = set_rsa_params(rsa, p, q);
10023e9d6bd4SSunila Sahu 			if (ret) {
10033e9d6bd4SSunila Sahu 				OPENSSL_LOG(ERR,
10043e9d6bd4SSunila Sahu 					"failed to set rsa params\n");
10053e9d6bd4SSunila Sahu 				RSA_free(rsa);
10063e9d6bd4SSunila Sahu 				goto err_rsa;
10073e9d6bd4SSunila Sahu 			}
10080b5284adSAshish Gupta 			ret = set_rsa_crt_params(rsa, dmp1, dmq1, iqmp);
10093e9d6bd4SSunila Sahu 			if (ret) {
10103e9d6bd4SSunila Sahu 				OPENSSL_LOG(ERR,
10113e9d6bd4SSunila Sahu 					"failed to set crt params\n");
10123e9d6bd4SSunila Sahu 				RSA_free(rsa);
10133e9d6bd4SSunila Sahu 				/*
10143e9d6bd4SSunila Sahu 				 * set already populated params to NULL
10153e9d6bd4SSunila Sahu 				 * as its freed by call to RSA_free
10163e9d6bd4SSunila Sahu 				 */
10173e9d6bd4SSunila Sahu 				p = q = NULL;
10183e9d6bd4SSunila Sahu 				goto err_rsa;
10193e9d6bd4SSunila Sahu 			}
10203e9d6bd4SSunila Sahu 		}
10213e9d6bd4SSunila Sahu 
10220b5284adSAshish Gupta 		ret = set_rsa_keys(rsa, n, e, d);
10233e9d6bd4SSunila Sahu 		if (ret) {
10243e9d6bd4SSunila Sahu 			OPENSSL_LOG(ERR, "Failed to load rsa keys\n");
10253e9d6bd4SSunila Sahu 			RSA_free(rsa);
10264c7ae22fSKai Ji 			return ret;
10273e9d6bd4SSunila Sahu 		}
10283e9d6bd4SSunila Sahu 		asym_session->u.r.rsa = rsa;
10293e9d6bd4SSunila Sahu 		asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_RSA;
10303e9d6bd4SSunila Sahu 		break;
1031d7bd42f6SKai Ji #endif
10323e9d6bd4SSunila Sahu err_rsa:
103377411bd6SArek Kusztal 		BN_clear_free(n);
103477411bd6SArek Kusztal 		BN_clear_free(e);
103577411bd6SArek Kusztal 		BN_clear_free(d);
103677411bd6SArek Kusztal 		BN_clear_free(p);
103777411bd6SArek Kusztal 		BN_clear_free(q);
103877411bd6SArek Kusztal 		BN_clear_free(dmp1);
103977411bd6SArek Kusztal 		BN_clear_free(dmq1);
104077411bd6SArek Kusztal 		BN_clear_free(iqmp);
10413e9d6bd4SSunila Sahu 
10423e9d6bd4SSunila Sahu 		return -1;
10433e9d6bd4SSunila Sahu 	}
10443e9d6bd4SSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_MODEX:
10453e9d6bd4SSunila Sahu 	{
10463e9d6bd4SSunila Sahu 		struct rte_crypto_modex_xform *xfrm = &(xform->modex);
10473e9d6bd4SSunila Sahu 
10483e9d6bd4SSunila Sahu 		BN_CTX *ctx = BN_CTX_new();
10493e9d6bd4SSunila Sahu 		if (ctx == NULL) {
10503e9d6bd4SSunila Sahu 			OPENSSL_LOG(ERR,
10513e9d6bd4SSunila Sahu 				" failed to allocate resources\n");
10524c7ae22fSKai Ji 			return ret;
10533e9d6bd4SSunila Sahu 		}
10543e9d6bd4SSunila Sahu 		BN_CTX_start(ctx);
10553e9d6bd4SSunila Sahu 		BIGNUM *mod = BN_CTX_get(ctx);
10563e9d6bd4SSunila Sahu 		BIGNUM *exp = BN_CTX_get(ctx);
10573e9d6bd4SSunila Sahu 		if (mod == NULL || exp == NULL) {
10583e9d6bd4SSunila Sahu 			BN_CTX_end(ctx);
10593e9d6bd4SSunila Sahu 			BN_CTX_free(ctx);
10604c7ae22fSKai Ji 			return ret;
10613e9d6bd4SSunila Sahu 		}
10623e9d6bd4SSunila Sahu 
10633e9d6bd4SSunila Sahu 		mod = BN_bin2bn((const unsigned char *)
10643e9d6bd4SSunila Sahu 				xfrm->modulus.data,
10653e9d6bd4SSunila Sahu 				xfrm->modulus.length, mod);
10663e9d6bd4SSunila Sahu 		exp = BN_bin2bn((const unsigned char *)
10673e9d6bd4SSunila Sahu 				xfrm->exponent.data,
10683e9d6bd4SSunila Sahu 				xfrm->exponent.length, exp);
10693e9d6bd4SSunila Sahu 		asym_session->u.e.ctx = ctx;
10703e9d6bd4SSunila Sahu 		asym_session->u.e.mod = mod;
10713e9d6bd4SSunila Sahu 		asym_session->u.e.exp = exp;
10723e9d6bd4SSunila Sahu 		asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_MODEX;
10733e9d6bd4SSunila Sahu 		break;
10743e9d6bd4SSunila Sahu 	}
10753e9d6bd4SSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_MODINV:
10763e9d6bd4SSunila Sahu 	{
10773e9d6bd4SSunila Sahu 		struct rte_crypto_modinv_xform *xfrm = &(xform->modinv);
10783e9d6bd4SSunila Sahu 
10793e9d6bd4SSunila Sahu 		BN_CTX *ctx = BN_CTX_new();
10803e9d6bd4SSunila Sahu 		if (ctx == NULL) {
10813e9d6bd4SSunila Sahu 			OPENSSL_LOG(ERR,
10823e9d6bd4SSunila Sahu 				" failed to allocate resources\n");
10834c7ae22fSKai Ji 			return ret;
10843e9d6bd4SSunila Sahu 		}
10853e9d6bd4SSunila Sahu 		BN_CTX_start(ctx);
10863e9d6bd4SSunila Sahu 		BIGNUM *mod = BN_CTX_get(ctx);
10873e9d6bd4SSunila Sahu 		if (mod == NULL) {
10883e9d6bd4SSunila Sahu 			BN_CTX_end(ctx);
10893e9d6bd4SSunila Sahu 			BN_CTX_free(ctx);
10904c7ae22fSKai Ji 			return ret;
10913e9d6bd4SSunila Sahu 		}
10923e9d6bd4SSunila Sahu 
10933e9d6bd4SSunila Sahu 		mod = BN_bin2bn((const unsigned char *)
10943e9d6bd4SSunila Sahu 				xfrm->modulus.data,
10953e9d6bd4SSunila Sahu 				xfrm->modulus.length,
10963e9d6bd4SSunila Sahu 				mod);
10973e9d6bd4SSunila Sahu 		asym_session->u.m.ctx = ctx;
10983e9d6bd4SSunila Sahu 		asym_session->u.m.modulus = mod;
10993e9d6bd4SSunila Sahu 		asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_MODINV;
11003e9d6bd4SSunila Sahu 		break;
11013e9d6bd4SSunila Sahu 	}
1102ac42813aSSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_DH:
1103ac42813aSSunila Sahu 	{
1104ac42813aSSunila Sahu 		BIGNUM *p = NULL;
1105ac42813aSSunila Sahu 		BIGNUM *g = NULL;
1106ac42813aSSunila Sahu 
1107ac42813aSSunila Sahu 		p = BN_bin2bn((const unsigned char *)
1108ac42813aSSunila Sahu 				xform->dh.p.data,
1109ac42813aSSunila Sahu 				xform->dh.p.length,
1110ac42813aSSunila Sahu 				p);
1111ac42813aSSunila Sahu 		g = BN_bin2bn((const unsigned char *)
1112ac42813aSSunila Sahu 				xform->dh.g.data,
1113ac42813aSSunila Sahu 				xform->dh.g.length,
1114ac42813aSSunila Sahu 				g);
1115ac42813aSSunila Sahu 		if (!p || !g)
1116ac42813aSSunila Sahu 			goto err_dh;
1117ac42813aSSunila Sahu 
1118c794b40cSKai Ji 		DH *dh = NULL;
1119c794b40cSKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
1120c794b40cSKai Ji 		OSSL_PARAM_BLD *param_bld = NULL;
1121c794b40cSKai Ji 		param_bld = OSSL_PARAM_BLD_new();
1122c794b40cSKai Ji 		if (!param_bld) {
1123c794b40cSKai Ji 			OPENSSL_LOG(ERR, "failed to allocate resources\n");
1124c794b40cSKai Ji 			goto err_dh;
1125c794b40cSKai Ji 		}
1126c794b40cSKai Ji 		if ((!OSSL_PARAM_BLD_push_utf8_string(param_bld,
1127c794b40cSKai Ji 					"group", "ffdhe2048", 0))
1128c794b40cSKai Ji 			|| (!OSSL_PARAM_BLD_push_BN(param_bld,
1129c794b40cSKai Ji 					OSSL_PKEY_PARAM_FFC_P, p))
1130c794b40cSKai Ji 			|| (!OSSL_PARAM_BLD_push_BN(param_bld,
1131c794b40cSKai Ji 					OSSL_PKEY_PARAM_FFC_G, g))) {
1132c794b40cSKai Ji 			OSSL_PARAM_BLD_free(param_bld);
1133c794b40cSKai Ji 			goto err_dh;
1134c794b40cSKai Ji 		}
1135c794b40cSKai Ji 
1136c794b40cSKai Ji 		OSSL_PARAM_BLD *param_bld_peer = NULL;
1137c794b40cSKai Ji 		param_bld_peer = OSSL_PARAM_BLD_new();
1138c794b40cSKai Ji 		if (!param_bld_peer) {
1139c794b40cSKai Ji 			OPENSSL_LOG(ERR, "failed to allocate resources\n");
1140c794b40cSKai Ji 			OSSL_PARAM_BLD_free(param_bld);
1141c794b40cSKai Ji 			goto err_dh;
1142c794b40cSKai Ji 		}
1143c794b40cSKai Ji 		if ((!OSSL_PARAM_BLD_push_utf8_string(param_bld_peer,
1144c794b40cSKai Ji 					"group", "ffdhe2048", 0))
1145c794b40cSKai Ji 			|| (!OSSL_PARAM_BLD_push_BN(param_bld_peer,
1146c794b40cSKai Ji 					OSSL_PKEY_PARAM_FFC_P, p))
1147c794b40cSKai Ji 			|| (!OSSL_PARAM_BLD_push_BN(param_bld_peer,
1148c794b40cSKai Ji 					OSSL_PKEY_PARAM_FFC_G, g))) {
1149c794b40cSKai Ji 			OSSL_PARAM_BLD_free(param_bld);
1150c794b40cSKai Ji 			OSSL_PARAM_BLD_free(param_bld_peer);
1151c794b40cSKai Ji 			goto err_dh;
1152c794b40cSKai Ji 		}
1153c794b40cSKai Ji 
1154c794b40cSKai Ji 		asym_session->u.dh.param_bld = param_bld;
1155c794b40cSKai Ji 		asym_session->u.dh.param_bld_peer = param_bld_peer;
1156c794b40cSKai Ji #else
1157c794b40cSKai Ji 		dh = DH_new();
1158ac42813aSSunila Sahu 		if (dh == NULL) {
1159ac42813aSSunila Sahu 			OPENSSL_LOG(ERR,
1160ac42813aSSunila Sahu 				"failed to allocate resources\n");
1161ac42813aSSunila Sahu 			goto err_dh;
1162ac42813aSSunila Sahu 		}
11630b5284adSAshish Gupta 		ret = set_dh_params(dh, p, g);
1164ac42813aSSunila Sahu 		if (ret) {
1165ac42813aSSunila Sahu 			DH_free(dh);
1166ac42813aSSunila Sahu 			goto err_dh;
1167ac42813aSSunila Sahu 		}
1168c794b40cSKai Ji #endif
1169ac42813aSSunila Sahu 		asym_session->u.dh.dh_key = dh;
1170ac42813aSSunila Sahu 		asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_DH;
1171ac42813aSSunila Sahu 		break;
1172ac42813aSSunila Sahu 
1173ac42813aSSunila Sahu err_dh:
1174ac42813aSSunila Sahu 		OPENSSL_LOG(ERR, " failed to set dh params\n");
1175ac42813aSSunila Sahu 		BN_free(p);
1176ac42813aSSunila Sahu 		BN_free(g);
1177ac42813aSSunila Sahu 		return -1;
1178ac42813aSSunila Sahu 	}
1179ac42813aSSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_DSA:
1180ac42813aSSunila Sahu 	{
11814c7ae22fSKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
11824c7ae22fSKai Ji 		BIGNUM *p = NULL, *g = NULL;
11834c7ae22fSKai Ji 		BIGNUM *q = NULL, *priv_key = NULL;
11844c7ae22fSKai Ji 		BIGNUM *pub_key = BN_new();
11854c7ae22fSKai Ji 		BN_zero(pub_key);
11864c7ae22fSKai Ji 		OSSL_PARAM_BLD *param_bld = NULL;
11874c7ae22fSKai Ji 
11884c7ae22fSKai Ji 		p = BN_bin2bn((const unsigned char *)
11894c7ae22fSKai Ji 				xform->dsa.p.data,
11904c7ae22fSKai Ji 				xform->dsa.p.length,
11914c7ae22fSKai Ji 				p);
11924c7ae22fSKai Ji 
11934c7ae22fSKai Ji 		g = BN_bin2bn((const unsigned char *)
11944c7ae22fSKai Ji 				xform->dsa.g.data,
11954c7ae22fSKai Ji 				xform->dsa.g.length,
11964c7ae22fSKai Ji 				g);
11974c7ae22fSKai Ji 
11984c7ae22fSKai Ji 		q = BN_bin2bn((const unsigned char *)
11994c7ae22fSKai Ji 				xform->dsa.q.data,
12004c7ae22fSKai Ji 				xform->dsa.q.length,
12014c7ae22fSKai Ji 				q);
12024c7ae22fSKai Ji 		if (!p || !q || !g)
12034c7ae22fSKai Ji 			goto err_dsa;
12044c7ae22fSKai Ji 
12054c7ae22fSKai Ji 		priv_key = BN_bin2bn((const unsigned char *)
12064c7ae22fSKai Ji 				xform->dsa.x.data,
12074c7ae22fSKai Ji 				xform->dsa.x.length,
12084c7ae22fSKai Ji 				priv_key);
12094c7ae22fSKai Ji 		if (priv_key == NULL)
12104c7ae22fSKai Ji 			goto err_dsa;
12114c7ae22fSKai Ji 
12124c7ae22fSKai Ji 		param_bld = OSSL_PARAM_BLD_new();
12134c7ae22fSKai Ji 		if (!param_bld) {
12144c7ae22fSKai Ji 			OPENSSL_LOG(ERR, "failed to allocate resources\n");
12154c7ae22fSKai Ji 			goto err_dsa;
12164c7ae22fSKai Ji 		}
12174c7ae22fSKai Ji 
12184c7ae22fSKai Ji 		if (!OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_FFC_P, p)
12194c7ae22fSKai Ji 			|| !OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_FFC_G, g)
12204c7ae22fSKai Ji 			|| !OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_FFC_Q, q)
12214c7ae22fSKai Ji 			|| !OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_PRIV_KEY, priv_key)) {
12224c7ae22fSKai Ji 			OSSL_PARAM_BLD_free(param_bld);
12234c7ae22fSKai Ji 			OPENSSL_LOG(ERR, "failed to allocate resources\n");
12244c7ae22fSKai Ji 			goto err_dsa;
12254c7ae22fSKai Ji 		}
12264c7ae22fSKai Ji 		asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_DSA;
12274c7ae22fSKai Ji 		asym_session->u.s.param_bld = param_bld;
12284c7ae22fSKai Ji 
12294c7ae22fSKai Ji 		break;
12304c7ae22fSKai Ji #else
1231ac42813aSSunila Sahu 		BIGNUM *p = NULL, *g = NULL;
1232ac42813aSSunila Sahu 		BIGNUM *q = NULL, *priv_key = NULL;
1233ac42813aSSunila Sahu 		BIGNUM *pub_key = BN_new();
1234ac42813aSSunila Sahu 		BN_zero(pub_key);
1235ac42813aSSunila Sahu 
1236ac42813aSSunila Sahu 		p = BN_bin2bn((const unsigned char *)
1237ac42813aSSunila Sahu 				xform->dsa.p.data,
1238ac42813aSSunila Sahu 				xform->dsa.p.length,
1239ac42813aSSunila Sahu 				p);
1240ac42813aSSunila Sahu 
1241ac42813aSSunila Sahu 		g = BN_bin2bn((const unsigned char *)
1242ac42813aSSunila Sahu 				xform->dsa.g.data,
1243ac42813aSSunila Sahu 				xform->dsa.g.length,
1244ac42813aSSunila Sahu 				g);
1245ac42813aSSunila Sahu 
1246ac42813aSSunila Sahu 		q = BN_bin2bn((const unsigned char *)
1247ac42813aSSunila Sahu 				xform->dsa.q.data,
1248ac42813aSSunila Sahu 				xform->dsa.q.length,
1249ac42813aSSunila Sahu 				q);
1250ac42813aSSunila Sahu 		if (!p || !q || !g)
1251ac42813aSSunila Sahu 			goto err_dsa;
1252ac42813aSSunila Sahu 
1253ac42813aSSunila Sahu 		priv_key = BN_bin2bn((const unsigned char *)
1254ac42813aSSunila Sahu 				xform->dsa.x.data,
1255ac42813aSSunila Sahu 				xform->dsa.x.length,
1256ac42813aSSunila Sahu 				priv_key);
1257ac42813aSSunila Sahu 		if (priv_key == NULL)
1258ac42813aSSunila Sahu 			goto err_dsa;
1259ac42813aSSunila Sahu 
1260ac42813aSSunila Sahu 		DSA *dsa = DSA_new();
1261ac42813aSSunila Sahu 		if (dsa == NULL) {
1262ac42813aSSunila Sahu 			OPENSSL_LOG(ERR,
1263ac42813aSSunila Sahu 				" failed to allocate resources\n");
1264ac42813aSSunila Sahu 			goto err_dsa;
1265ac42813aSSunila Sahu 		}
1266ac42813aSSunila Sahu 
12670b5284adSAshish Gupta 		ret = set_dsa_params(dsa, p, q, g);
1268ac42813aSSunila Sahu 		if (ret) {
1269ac42813aSSunila Sahu 			DSA_free(dsa);
1270ac42813aSSunila Sahu 			OPENSSL_LOG(ERR, "Failed to dsa params\n");
1271ac42813aSSunila Sahu 			goto err_dsa;
1272ac42813aSSunila Sahu 		}
1273ac42813aSSunila Sahu 
1274ac42813aSSunila Sahu 		/*
1275ac42813aSSunila Sahu 		 * openssl 1.1.0 mandate that public key can't be
1276ac42813aSSunila Sahu 		 * NULL in very first call. so set a dummy pub key.
1277ac42813aSSunila Sahu 		 * to keep consistency, lets follow same approach for
1278ac42813aSSunila Sahu 		 * both versions
1279ac42813aSSunila Sahu 		 */
1280ac42813aSSunila Sahu 		/* just set dummy public for very 1st call */
12810b5284adSAshish Gupta 		ret = set_dsa_keys(dsa, pub_key, priv_key);
1282ac42813aSSunila Sahu 		if (ret) {
1283ac42813aSSunila Sahu 			DSA_free(dsa);
1284ac42813aSSunila Sahu 			OPENSSL_LOG(ERR, "Failed to set keys\n");
1285ac42813aSSunila Sahu 			return -1;
1286ac42813aSSunila Sahu 		}
1287ac42813aSSunila Sahu 		asym_session->u.s.dsa = dsa;
1288ac42813aSSunila Sahu 		asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_DSA;
1289ac42813aSSunila Sahu 		break;
12904c7ae22fSKai Ji #endif
1291ac42813aSSunila Sahu err_dsa:
1292ac42813aSSunila Sahu 		BN_free(p);
1293ac42813aSSunila Sahu 		BN_free(q);
1294ac42813aSSunila Sahu 		BN_free(g);
1295ac42813aSSunila Sahu 		BN_free(priv_key);
1296ac42813aSSunila Sahu 		BN_free(pub_key);
1297ac42813aSSunila Sahu 		return -1;
1298ac42813aSSunila Sahu 	}
12993b7d638fSGowrishankar Muthukrishnan 	case RTE_CRYPTO_ASYM_XFORM_SM2:
13003b7d638fSGowrishankar Muthukrishnan 	{
13013b7d638fSGowrishankar Muthukrishnan #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
130299218c39SGowrishankar Muthukrishnan #ifndef OPENSSL_NO_SM2
13033b7d638fSGowrishankar Muthukrishnan 		OSSL_PARAM_BLD *param_bld = NULL;
13043b7d638fSGowrishankar Muthukrishnan 		OSSL_PARAM *params = NULL;
13053b7d638fSGowrishankar Muthukrishnan 		int ret = -1;
13063b7d638fSGowrishankar Muthukrishnan 
13073b7d638fSGowrishankar Muthukrishnan 		if (xform->sm2.hash != RTE_CRYPTO_AUTH_SM3)
13083b7d638fSGowrishankar Muthukrishnan 			return -1;
13093b7d638fSGowrishankar Muthukrishnan 
13103b7d638fSGowrishankar Muthukrishnan 		param_bld = OSSL_PARAM_BLD_new();
13113b7d638fSGowrishankar Muthukrishnan 		if (!param_bld) {
13123b7d638fSGowrishankar Muthukrishnan 			OPENSSL_LOG(ERR, "failed to allocate params\n");
13133b7d638fSGowrishankar Muthukrishnan 			goto err_sm2;
13143b7d638fSGowrishankar Muthukrishnan 		}
13153b7d638fSGowrishankar Muthukrishnan 
13163b7d638fSGowrishankar Muthukrishnan 		ret = OSSL_PARAM_BLD_push_utf8_string(param_bld,
13173b7d638fSGowrishankar Muthukrishnan 				OSSL_ASYM_CIPHER_PARAM_DIGEST, "SM3", 0);
13183b7d638fSGowrishankar Muthukrishnan 		if (!ret) {
13193b7d638fSGowrishankar Muthukrishnan 			OPENSSL_LOG(ERR, "failed to push params\n");
13203b7d638fSGowrishankar Muthukrishnan 			goto err_sm2;
13213b7d638fSGowrishankar Muthukrishnan 		}
13223b7d638fSGowrishankar Muthukrishnan 
13233b7d638fSGowrishankar Muthukrishnan 		params = OSSL_PARAM_BLD_to_param(param_bld);
13243b7d638fSGowrishankar Muthukrishnan 		if (!params) {
13253b7d638fSGowrishankar Muthukrishnan 			OPENSSL_LOG(ERR, "failed to push params\n");
13263b7d638fSGowrishankar Muthukrishnan 			goto err_sm2;
13273b7d638fSGowrishankar Muthukrishnan 		}
13283b7d638fSGowrishankar Muthukrishnan 
13293b7d638fSGowrishankar Muthukrishnan 		asym_session->u.sm2.params = params;
13303b7d638fSGowrishankar Muthukrishnan 		OSSL_PARAM_BLD_free(param_bld);
13313b7d638fSGowrishankar Muthukrishnan 
13323b7d638fSGowrishankar Muthukrishnan 		asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_SM2;
13333b7d638fSGowrishankar Muthukrishnan 		break;
13343b7d638fSGowrishankar Muthukrishnan err_sm2:
13353b7d638fSGowrishankar Muthukrishnan 		if (param_bld)
13363b7d638fSGowrishankar Muthukrishnan 			OSSL_PARAM_BLD_free(param_bld);
13373b7d638fSGowrishankar Muthukrishnan 
13383b7d638fSGowrishankar Muthukrishnan 		if (asym_session->u.sm2.params)
13393b7d638fSGowrishankar Muthukrishnan 			OSSL_PARAM_free(asym_session->u.sm2.params);
13403b7d638fSGowrishankar Muthukrishnan 
13413b7d638fSGowrishankar Muthukrishnan 		return -1;
13426e892f5aSCiara Power #else
134399218c39SGowrishankar Muthukrishnan 		OPENSSL_LOG(WARNING, "SM2 unsupported in current OpenSSL Version");
134499218c39SGowrishankar Muthukrishnan 		return -ENOTSUP;
134599218c39SGowrishankar Muthukrishnan #endif
134699218c39SGowrishankar Muthukrishnan #else
13476e892f5aSCiara Power 		OPENSSL_LOG(WARNING, "SM2 unsupported for OpenSSL Version < 3.0");
13486e892f5aSCiara Power 		return -ENOTSUP;
13493b7d638fSGowrishankar Muthukrishnan #endif
13503b7d638fSGowrishankar Muthukrishnan 	}
13513e9d6bd4SSunila Sahu 	default:
13524c7ae22fSKai Ji 		return ret;
13533e9d6bd4SSunila Sahu 	}
13543e9d6bd4SSunila Sahu 
13553e9d6bd4SSunila Sahu 	return 0;
13563e9d6bd4SSunila Sahu }
13573e9d6bd4SSunila Sahu 
13583e9d6bd4SSunila Sahu /** Configure the session from a crypto xform chain */
13593e9d6bd4SSunila Sahu static int
13603e9d6bd4SSunila Sahu openssl_pmd_asym_session_configure(struct rte_cryptodev *dev __rte_unused,
13613e9d6bd4SSunila Sahu 		struct rte_crypto_asym_xform *xform,
13621f1e4b7cSCiara Power 		struct rte_cryptodev_asym_session *sess)
13633e9d6bd4SSunila Sahu {
13643e9d6bd4SSunila Sahu 	void *asym_sess_private_data;
13653e9d6bd4SSunila Sahu 	int ret;
13663e9d6bd4SSunila Sahu 
13673e9d6bd4SSunila Sahu 	if (unlikely(sess == NULL)) {
13683e9d6bd4SSunila Sahu 		OPENSSL_LOG(ERR, "invalid asymmetric session struct");
13693e9d6bd4SSunila Sahu 		return -EINVAL;
13703e9d6bd4SSunila Sahu 	}
13713e9d6bd4SSunila Sahu 
13721f1e4b7cSCiara Power 	asym_sess_private_data = sess->sess_private_data;
13733e9d6bd4SSunila Sahu 	ret = openssl_set_asym_session_parameters(asym_sess_private_data,
13743e9d6bd4SSunila Sahu 			xform);
13753e9d6bd4SSunila Sahu 	if (ret != 0) {
13763e9d6bd4SSunila Sahu 		OPENSSL_LOG(ERR, "failed configure session parameters");
13773e9d6bd4SSunila Sahu 		return ret;
13783e9d6bd4SSunila Sahu 	}
13793e9d6bd4SSunila Sahu 
13803e9d6bd4SSunila Sahu 	return 0;
13813e9d6bd4SSunila Sahu }
13828a9867a6SSlawomir Mrozowicz 
13838a9867a6SSlawomir Mrozowicz /** Clear the memory of session so it doesn't leave key material behind */
13848a9867a6SSlawomir Mrozowicz static void
1385bdce2564SAkhil Goyal openssl_pmd_sym_session_clear(struct rte_cryptodev *dev __rte_unused,
1386b3bbd9e5SSlawomir Mrozowicz 		struct rte_cryptodev_sym_session *sess)
13878a9867a6SSlawomir Mrozowicz {
13882a440d6aSAkhil Goyal 	void *sess_priv = CRYPTODEV_GET_SYM_SESS_PRIV(sess);
1389b3bbd9e5SSlawomir Mrozowicz 
1390b3bbd9e5SSlawomir Mrozowicz 	/* Zero out the whole structure */
1391b3bbd9e5SSlawomir Mrozowicz 	openssl_reset_session(sess_priv);
13928a9867a6SSlawomir Mrozowicz }
13938a9867a6SSlawomir Mrozowicz 
13943e9d6bd4SSunila Sahu static void openssl_reset_asym_session(struct openssl_asym_session *sess)
13953e9d6bd4SSunila Sahu {
13963e9d6bd4SSunila Sahu 	switch (sess->xfrm_type) {
13973e9d6bd4SSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_RSA:
1398d7bd42f6SKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
1399d7bd42f6SKai Ji 		if (sess->u.r.ctx)
1400d7bd42f6SKai Ji 			EVP_PKEY_CTX_free(sess->u.r.ctx);
1401d7bd42f6SKai Ji #else
14023e9d6bd4SSunila Sahu 		if (sess->u.r.rsa)
14033e9d6bd4SSunila Sahu 			RSA_free(sess->u.r.rsa);
1404d7bd42f6SKai Ji #endif
14053e9d6bd4SSunila Sahu 		break;
14063e9d6bd4SSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_MODEX:
14073e9d6bd4SSunila Sahu 		if (sess->u.e.ctx) {
14083e9d6bd4SSunila Sahu 			BN_CTX_end(sess->u.e.ctx);
14093e9d6bd4SSunila Sahu 			BN_CTX_free(sess->u.e.ctx);
14103e9d6bd4SSunila Sahu 		}
14113e9d6bd4SSunila Sahu 		break;
14123e9d6bd4SSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_MODINV:
14133e9d6bd4SSunila Sahu 		if (sess->u.m.ctx) {
14143e9d6bd4SSunila Sahu 			BN_CTX_end(sess->u.m.ctx);
14153e9d6bd4SSunila Sahu 			BN_CTX_free(sess->u.m.ctx);
14163e9d6bd4SSunila Sahu 		}
14173e9d6bd4SSunila Sahu 		break;
1418ac42813aSSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_DH:
1419c794b40cSKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
1420c794b40cSKai Ji 		sess->u.dh.param_bld = NULL;
1421c794b40cSKai Ji 		sess->u.dh.param_bld_peer = NULL;
1422c794b40cSKai Ji #else
1423ac42813aSSunila Sahu 		if (sess->u.dh.dh_key)
1424ac42813aSSunila Sahu 			DH_free(sess->u.dh.dh_key);
1425c794b40cSKai Ji #endif
1426ac42813aSSunila Sahu 		break;
1427ac42813aSSunila Sahu 	case RTE_CRYPTO_ASYM_XFORM_DSA:
14284c7ae22fSKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
14294c7ae22fSKai Ji 		sess->u.s.param_bld = NULL;
14304c7ae22fSKai Ji #else
1431ac42813aSSunila Sahu 		if (sess->u.s.dsa)
1432ac42813aSSunila Sahu 			DSA_free(sess->u.s.dsa);
14334c7ae22fSKai Ji #endif
1434ac42813aSSunila Sahu 		break;
14353b7d638fSGowrishankar Muthukrishnan 	case RTE_CRYPTO_ASYM_XFORM_SM2:
14363b7d638fSGowrishankar Muthukrishnan #if (OPENSSL_VERSION_NUMBER >= 0x30000000L)
14373b7d638fSGowrishankar Muthukrishnan 		OSSL_PARAM_free(sess->u.sm2.params);
14383b7d638fSGowrishankar Muthukrishnan #endif
14393e9d6bd4SSunila Sahu 	default:
14403e9d6bd4SSunila Sahu 		break;
14413e9d6bd4SSunila Sahu 	}
14423e9d6bd4SSunila Sahu }
14433e9d6bd4SSunila Sahu 
14443e9d6bd4SSunila Sahu /** Clear the memory of asymmetric session
14453e9d6bd4SSunila Sahu  * so it doesn't leave key material behind
14463e9d6bd4SSunila Sahu  */
14473e9d6bd4SSunila Sahu static void
14481f1e4b7cSCiara Power openssl_pmd_asym_session_clear(struct rte_cryptodev *dev __rte_unused,
14493e9d6bd4SSunila Sahu 		struct rte_cryptodev_asym_session *sess)
14503e9d6bd4SSunila Sahu {
14511f1e4b7cSCiara Power 	void *sess_priv = sess->sess_private_data;
14523e9d6bd4SSunila Sahu 
14533e9d6bd4SSunila Sahu 	/* Zero out the whole structure */
14543e9d6bd4SSunila Sahu 	if (sess_priv) {
14553e9d6bd4SSunila Sahu 		openssl_reset_asym_session(sess_priv);
14563e9d6bd4SSunila Sahu 		memset(sess_priv, 0, sizeof(struct openssl_asym_session));
14573e9d6bd4SSunila Sahu 	}
14583e9d6bd4SSunila Sahu }
14593e9d6bd4SSunila Sahu 
14608a9867a6SSlawomir Mrozowicz struct rte_cryptodev_ops openssl_pmd_ops = {
14618a9867a6SSlawomir Mrozowicz 		.dev_configure		= openssl_pmd_config,
14628a9867a6SSlawomir Mrozowicz 		.dev_start		= openssl_pmd_start,
14638a9867a6SSlawomir Mrozowicz 		.dev_stop		= openssl_pmd_stop,
14648a9867a6SSlawomir Mrozowicz 		.dev_close		= openssl_pmd_close,
14658a9867a6SSlawomir Mrozowicz 
14668a9867a6SSlawomir Mrozowicz 		.stats_get		= openssl_pmd_stats_get,
14678a9867a6SSlawomir Mrozowicz 		.stats_reset		= openssl_pmd_stats_reset,
14688a9867a6SSlawomir Mrozowicz 
14698a9867a6SSlawomir Mrozowicz 		.dev_infos_get		= openssl_pmd_info_get,
14708a9867a6SSlawomir Mrozowicz 
14718a9867a6SSlawomir Mrozowicz 		.queue_pair_setup	= openssl_pmd_qp_setup,
14728a9867a6SSlawomir Mrozowicz 		.queue_pair_release	= openssl_pmd_qp_release,
14738a9867a6SSlawomir Mrozowicz 
1474012c5076SPablo de Lara 		.sym_session_get_size	= openssl_pmd_sym_session_get_size,
14753e9d6bd4SSunila Sahu 		.asym_session_get_size	= openssl_pmd_asym_session_get_size,
1476012c5076SPablo de Lara 		.sym_session_configure	= openssl_pmd_sym_session_configure,
14773e9d6bd4SSunila Sahu 		.asym_session_configure	= openssl_pmd_asym_session_configure,
14783e9d6bd4SSunila Sahu 		.sym_session_clear	= openssl_pmd_sym_session_clear,
14793e9d6bd4SSunila Sahu 		.asym_session_clear	= openssl_pmd_asym_session_clear
14808a9867a6SSlawomir Mrozowicz };
14818a9867a6SSlawomir Mrozowicz 
14828a9867a6SSlawomir Mrozowicz struct rte_cryptodev_ops *rte_openssl_pmd_ops = &openssl_pmd_ops;
1483