15566a3e3SBruce Richardson /* SPDX-License-Identifier: BSD-3-Clause 25566a3e3SBruce Richardson * Copyright(c) 2016-2017 Intel Corporation 38a9867a6SSlawomir Mrozowicz */ 48a9867a6SSlawomir Mrozowicz 58a9867a6SSlawomir Mrozowicz #include <string.h> 68a9867a6SSlawomir Mrozowicz 78a9867a6SSlawomir Mrozowicz #include <rte_common.h> 88a9867a6SSlawomir Mrozowicz #include <rte_malloc.h> 9af668035SAkhil Goyal #include <cryptodev_pmd.h> 108a9867a6SSlawomir Mrozowicz 11b28f28aeSDharmik Thakkar #include "openssl_pmd_private.h" 123e9d6bd4SSunila Sahu #include "compat.h" 13d7bd42f6SKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 14d7bd42f6SKai Ji #include <openssl/provider.h> 15d7bd42f6SKai Ji #include <openssl/core_names.h> 16d7bd42f6SKai Ji #include <openssl/param_build.h> 17d7bd42f6SKai Ji #endif 188a9867a6SSlawomir Mrozowicz 198a9867a6SSlawomir Mrozowicz static const struct rte_cryptodev_capabilities openssl_pmd_capabilities[] = { 208a9867a6SSlawomir Mrozowicz { /* MD5 HMAC */ 218a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 228a9867a6SSlawomir Mrozowicz {.sym = { 238a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 248a9867a6SSlawomir Mrozowicz {.auth = { 258a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_MD5_HMAC, 268a9867a6SSlawomir Mrozowicz .block_size = 64, 278a9867a6SSlawomir Mrozowicz .key_size = { 28e5e7bc71SPablo de Lara .min = 1, 298a9867a6SSlawomir Mrozowicz .max = 64, 30e5e7bc71SPablo de Lara .increment = 1 318a9867a6SSlawomir Mrozowicz }, 328a9867a6SSlawomir Mrozowicz .digest_size = { 33c3d22a65SDmitry Eremin-Solenikov .min = 1, 348a9867a6SSlawomir Mrozowicz .max = 16, 35c3d22a65SDmitry Eremin-Solenikov .increment = 1 368a9867a6SSlawomir Mrozowicz }, 37acf86169SPablo de Lara .iv_size = { 0 } 388a9867a6SSlawomir Mrozowicz }, } 398a9867a6SSlawomir Mrozowicz }, } 408a9867a6SSlawomir Mrozowicz }, 418a9867a6SSlawomir Mrozowicz { /* MD5 */ 428a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 438a9867a6SSlawomir Mrozowicz {.sym = { 448a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 458a9867a6SSlawomir Mrozowicz {.auth = { 468a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_MD5, 478a9867a6SSlawomir Mrozowicz .block_size = 64, 488a9867a6SSlawomir Mrozowicz .key_size = { 498a9867a6SSlawomir Mrozowicz .min = 0, 508a9867a6SSlawomir Mrozowicz .max = 0, 518a9867a6SSlawomir Mrozowicz .increment = 0 528a9867a6SSlawomir Mrozowicz }, 538a9867a6SSlawomir Mrozowicz .digest_size = { 548a9867a6SSlawomir Mrozowicz .min = 16, 558a9867a6SSlawomir Mrozowicz .max = 16, 568a9867a6SSlawomir Mrozowicz .increment = 0 578a9867a6SSlawomir Mrozowicz }, 58acf86169SPablo de Lara .iv_size = { 0 } 598a9867a6SSlawomir Mrozowicz }, } 608a9867a6SSlawomir Mrozowicz }, } 618a9867a6SSlawomir Mrozowicz }, 628a9867a6SSlawomir Mrozowicz { /* SHA1 HMAC */ 638a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 648a9867a6SSlawomir Mrozowicz {.sym = { 658a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 668a9867a6SSlawomir Mrozowicz {.auth = { 678a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA1_HMAC, 688a9867a6SSlawomir Mrozowicz .block_size = 64, 698a9867a6SSlawomir Mrozowicz .key_size = { 70e5e7bc71SPablo de Lara .min = 1, 718a9867a6SSlawomir Mrozowicz .max = 64, 72e5e7bc71SPablo de Lara .increment = 1 738a9867a6SSlawomir Mrozowicz }, 748a9867a6SSlawomir Mrozowicz .digest_size = { 75c3d22a65SDmitry Eremin-Solenikov .min = 1, 768a9867a6SSlawomir Mrozowicz .max = 20, 77c3d22a65SDmitry Eremin-Solenikov .increment = 1 788a9867a6SSlawomir Mrozowicz }, 79acf86169SPablo de Lara .iv_size = { 0 } 808a9867a6SSlawomir Mrozowicz }, } 818a9867a6SSlawomir Mrozowicz }, } 828a9867a6SSlawomir Mrozowicz }, 838a9867a6SSlawomir Mrozowicz { /* SHA1 */ 848a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 858a9867a6SSlawomir Mrozowicz {.sym = { 868a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 878a9867a6SSlawomir Mrozowicz {.auth = { 888a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA1, 898a9867a6SSlawomir Mrozowicz .block_size = 64, 908a9867a6SSlawomir Mrozowicz .key_size = { 918a9867a6SSlawomir Mrozowicz .min = 0, 928a9867a6SSlawomir Mrozowicz .max = 0, 938a9867a6SSlawomir Mrozowicz .increment = 0 948a9867a6SSlawomir Mrozowicz }, 958a9867a6SSlawomir Mrozowicz .digest_size = { 968a9867a6SSlawomir Mrozowicz .min = 20, 978a9867a6SSlawomir Mrozowicz .max = 20, 988a9867a6SSlawomir Mrozowicz .increment = 0 998a9867a6SSlawomir Mrozowicz }, 100acf86169SPablo de Lara .iv_size = { 0 } 1018a9867a6SSlawomir Mrozowicz }, } 1028a9867a6SSlawomir Mrozowicz }, } 1038a9867a6SSlawomir Mrozowicz }, 1048a9867a6SSlawomir Mrozowicz { /* SHA224 HMAC */ 1058a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 1068a9867a6SSlawomir Mrozowicz {.sym = { 1078a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 1088a9867a6SSlawomir Mrozowicz {.auth = { 1098a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA224_HMAC, 1108a9867a6SSlawomir Mrozowicz .block_size = 64, 1118a9867a6SSlawomir Mrozowicz .key_size = { 112e5e7bc71SPablo de Lara .min = 1, 1138a9867a6SSlawomir Mrozowicz .max = 64, 114e5e7bc71SPablo de Lara .increment = 1 1158a9867a6SSlawomir Mrozowicz }, 1168a9867a6SSlawomir Mrozowicz .digest_size = { 117c3d22a65SDmitry Eremin-Solenikov .min = 1, 1188a9867a6SSlawomir Mrozowicz .max = 28, 119c3d22a65SDmitry Eremin-Solenikov .increment = 1 1208a9867a6SSlawomir Mrozowicz }, 121acf86169SPablo de Lara .iv_size = { 0 } 1228a9867a6SSlawomir Mrozowicz }, } 1238a9867a6SSlawomir Mrozowicz }, } 1248a9867a6SSlawomir Mrozowicz }, 1258a9867a6SSlawomir Mrozowicz { /* SHA224 */ 1268a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 1278a9867a6SSlawomir Mrozowicz {.sym = { 1288a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 1298a9867a6SSlawomir Mrozowicz {.auth = { 1308a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA224, 1318a9867a6SSlawomir Mrozowicz .block_size = 64, 1328a9867a6SSlawomir Mrozowicz .key_size = { 1338a9867a6SSlawomir Mrozowicz .min = 0, 1348a9867a6SSlawomir Mrozowicz .max = 0, 1358a9867a6SSlawomir Mrozowicz .increment = 0 1368a9867a6SSlawomir Mrozowicz }, 1378a9867a6SSlawomir Mrozowicz .digest_size = { 138c3d22a65SDmitry Eremin-Solenikov .min = 1, 1398a9867a6SSlawomir Mrozowicz .max = 28, 140c3d22a65SDmitry Eremin-Solenikov .increment = 1 1418a9867a6SSlawomir Mrozowicz }, 142acf86169SPablo de Lara .iv_size = { 0 } 1438a9867a6SSlawomir Mrozowicz }, } 1448a9867a6SSlawomir Mrozowicz }, } 1458a9867a6SSlawomir Mrozowicz }, 1468a9867a6SSlawomir Mrozowicz { /* SHA256 HMAC */ 1478a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 1488a9867a6SSlawomir Mrozowicz {.sym = { 1498a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 1508a9867a6SSlawomir Mrozowicz {.auth = { 1518a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA256_HMAC, 1528a9867a6SSlawomir Mrozowicz .block_size = 64, 1538a9867a6SSlawomir Mrozowicz .key_size = { 154e5e7bc71SPablo de Lara .min = 1, 1558a9867a6SSlawomir Mrozowicz .max = 64, 156e5e7bc71SPablo de Lara .increment = 1 1578a9867a6SSlawomir Mrozowicz }, 1588a9867a6SSlawomir Mrozowicz .digest_size = { 159c3d22a65SDmitry Eremin-Solenikov .min = 1, 1608a9867a6SSlawomir Mrozowicz .max = 32, 161c3d22a65SDmitry Eremin-Solenikov .increment = 1 1628a9867a6SSlawomir Mrozowicz }, 163acf86169SPablo de Lara .iv_size = { 0 } 1648a9867a6SSlawomir Mrozowicz }, } 1658a9867a6SSlawomir Mrozowicz }, } 1668a9867a6SSlawomir Mrozowicz }, 1678a9867a6SSlawomir Mrozowicz { /* SHA256 */ 1688a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 1698a9867a6SSlawomir Mrozowicz {.sym = { 1708a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 1718a9867a6SSlawomir Mrozowicz {.auth = { 1728a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA256, 1738a9867a6SSlawomir Mrozowicz .block_size = 64, 1748a9867a6SSlawomir Mrozowicz .key_size = { 1758a9867a6SSlawomir Mrozowicz .min = 0, 1768a9867a6SSlawomir Mrozowicz .max = 0, 1778a9867a6SSlawomir Mrozowicz .increment = 0 1788a9867a6SSlawomir Mrozowicz }, 1798a9867a6SSlawomir Mrozowicz .digest_size = { 1808a9867a6SSlawomir Mrozowicz .min = 32, 1818a9867a6SSlawomir Mrozowicz .max = 32, 1828a9867a6SSlawomir Mrozowicz .increment = 0 1838a9867a6SSlawomir Mrozowicz }, 184acf86169SPablo de Lara .iv_size = { 0 } 1858a9867a6SSlawomir Mrozowicz }, } 1868a9867a6SSlawomir Mrozowicz }, } 1878a9867a6SSlawomir Mrozowicz }, 1888a9867a6SSlawomir Mrozowicz { /* SHA384 HMAC */ 1898a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 1908a9867a6SSlawomir Mrozowicz {.sym = { 1918a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 1928a9867a6SSlawomir Mrozowicz {.auth = { 1938a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA384_HMAC, 1948a9867a6SSlawomir Mrozowicz .block_size = 128, 1958a9867a6SSlawomir Mrozowicz .key_size = { 196e5e7bc71SPablo de Lara .min = 1, 1978a9867a6SSlawomir Mrozowicz .max = 128, 198e5e7bc71SPablo de Lara .increment = 1 1998a9867a6SSlawomir Mrozowicz }, 2008a9867a6SSlawomir Mrozowicz .digest_size = { 201c3d22a65SDmitry Eremin-Solenikov .min = 1, 2028a9867a6SSlawomir Mrozowicz .max = 48, 203c3d22a65SDmitry Eremin-Solenikov .increment = 1 2048a9867a6SSlawomir Mrozowicz }, 205acf86169SPablo de Lara .iv_size = { 0 } 2068a9867a6SSlawomir Mrozowicz }, } 2078a9867a6SSlawomir Mrozowicz }, } 2088a9867a6SSlawomir Mrozowicz }, 2098a9867a6SSlawomir Mrozowicz { /* SHA384 */ 2108a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 2118a9867a6SSlawomir Mrozowicz {.sym = { 2128a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 2138a9867a6SSlawomir Mrozowicz {.auth = { 2148a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA384, 2158a9867a6SSlawomir Mrozowicz .block_size = 128, 2168a9867a6SSlawomir Mrozowicz .key_size = { 2178a9867a6SSlawomir Mrozowicz .min = 0, 2188a9867a6SSlawomir Mrozowicz .max = 0, 2198a9867a6SSlawomir Mrozowicz .increment = 0 2208a9867a6SSlawomir Mrozowicz }, 2218a9867a6SSlawomir Mrozowicz .digest_size = { 2228a9867a6SSlawomir Mrozowicz .min = 48, 2238a9867a6SSlawomir Mrozowicz .max = 48, 2248a9867a6SSlawomir Mrozowicz .increment = 0 2258a9867a6SSlawomir Mrozowicz }, 226acf86169SPablo de Lara .iv_size = { 0 } 2278a9867a6SSlawomir Mrozowicz }, } 2288a9867a6SSlawomir Mrozowicz }, } 2298a9867a6SSlawomir Mrozowicz }, 2308a9867a6SSlawomir Mrozowicz { /* SHA512 HMAC */ 2318a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 2328a9867a6SSlawomir Mrozowicz {.sym = { 2338a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 2348a9867a6SSlawomir Mrozowicz {.auth = { 2358a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA512_HMAC, 2368a9867a6SSlawomir Mrozowicz .block_size = 128, 2378a9867a6SSlawomir Mrozowicz .key_size = { 238e5e7bc71SPablo de Lara .min = 1, 2398a9867a6SSlawomir Mrozowicz .max = 128, 240e5e7bc71SPablo de Lara .increment = 1 2418a9867a6SSlawomir Mrozowicz }, 2428a9867a6SSlawomir Mrozowicz .digest_size = { 243c3d22a65SDmitry Eremin-Solenikov .min = 1, 2448a9867a6SSlawomir Mrozowicz .max = 64, 245c3d22a65SDmitry Eremin-Solenikov .increment = 1 2468a9867a6SSlawomir Mrozowicz }, 247acf86169SPablo de Lara .iv_size = { 0 } 2488a9867a6SSlawomir Mrozowicz }, } 2498a9867a6SSlawomir Mrozowicz }, } 2508a9867a6SSlawomir Mrozowicz }, 2518a9867a6SSlawomir Mrozowicz { /* SHA512 */ 2528a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 2538a9867a6SSlawomir Mrozowicz {.sym = { 2548a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 2558a9867a6SSlawomir Mrozowicz {.auth = { 2568a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_SHA512, 2578a9867a6SSlawomir Mrozowicz .block_size = 128, 2588a9867a6SSlawomir Mrozowicz .key_size = { 2598a9867a6SSlawomir Mrozowicz .min = 0, 2608a9867a6SSlawomir Mrozowicz .max = 0, 2618a9867a6SSlawomir Mrozowicz .increment = 0 2628a9867a6SSlawomir Mrozowicz }, 2638a9867a6SSlawomir Mrozowicz .digest_size = { 2648a9867a6SSlawomir Mrozowicz .min = 64, 2658a9867a6SSlawomir Mrozowicz .max = 64, 2668a9867a6SSlawomir Mrozowicz .increment = 0 2678a9867a6SSlawomir Mrozowicz }, 268acf86169SPablo de Lara .iv_size = { 0 } 2698a9867a6SSlawomir Mrozowicz }, } 2708a9867a6SSlawomir Mrozowicz }, } 2718a9867a6SSlawomir Mrozowicz }, 2728a9867a6SSlawomir Mrozowicz { /* AES CBC */ 2738a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 2748a9867a6SSlawomir Mrozowicz {.sym = { 2758a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER, 2768a9867a6SSlawomir Mrozowicz {.cipher = { 2778a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_CIPHER_AES_CBC, 2788a9867a6SSlawomir Mrozowicz .block_size = 16, 2798a9867a6SSlawomir Mrozowicz .key_size = { 2808a9867a6SSlawomir Mrozowicz .min = 16, 2818a9867a6SSlawomir Mrozowicz .max = 32, 2828a9867a6SSlawomir Mrozowicz .increment = 8 2838a9867a6SSlawomir Mrozowicz }, 2848a9867a6SSlawomir Mrozowicz .iv_size = { 2858a9867a6SSlawomir Mrozowicz .min = 16, 2868a9867a6SSlawomir Mrozowicz .max = 16, 2878a9867a6SSlawomir Mrozowicz .increment = 0 2888a9867a6SSlawomir Mrozowicz } 2898a9867a6SSlawomir Mrozowicz }, } 2908a9867a6SSlawomir Mrozowicz }, } 2918a9867a6SSlawomir Mrozowicz }, 2928a9867a6SSlawomir Mrozowicz { /* AES CTR */ 2938a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 2948a9867a6SSlawomir Mrozowicz {.sym = { 2958a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER, 2968a9867a6SSlawomir Mrozowicz {.cipher = { 2978a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_CIPHER_AES_CTR, 2988a9867a6SSlawomir Mrozowicz .block_size = 16, 2998a9867a6SSlawomir Mrozowicz .key_size = { 3008a9867a6SSlawomir Mrozowicz .min = 16, 3018a9867a6SSlawomir Mrozowicz .max = 32, 3028a9867a6SSlawomir Mrozowicz .increment = 8 3038a9867a6SSlawomir Mrozowicz }, 3048a9867a6SSlawomir Mrozowicz .iv_size = { 3058a9867a6SSlawomir Mrozowicz .min = 16, 3068a9867a6SSlawomir Mrozowicz .max = 16, 3078a9867a6SSlawomir Mrozowicz .increment = 0 3088a9867a6SSlawomir Mrozowicz } 3098a9867a6SSlawomir Mrozowicz }, } 3108a9867a6SSlawomir Mrozowicz }, } 3118a9867a6SSlawomir Mrozowicz }, 312b79e4c00SPablo de Lara { /* AES GCM */ 3138a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 3148a9867a6SSlawomir Mrozowicz {.sym = { 315b79e4c00SPablo de Lara .xform_type = RTE_CRYPTO_SYM_XFORM_AEAD, 316b79e4c00SPablo de Lara {.aead = { 317b79e4c00SPablo de Lara .algo = RTE_CRYPTO_AEAD_AES_GCM, 3188a9867a6SSlawomir Mrozowicz .block_size = 16, 3198a9867a6SSlawomir Mrozowicz .key_size = { 3208a9867a6SSlawomir Mrozowicz .min = 16, 3218a9867a6SSlawomir Mrozowicz .max = 32, 3228a9867a6SSlawomir Mrozowicz .increment = 8 3238a9867a6SSlawomir Mrozowicz }, 3248a9867a6SSlawomir Mrozowicz .digest_size = { 3258a9867a6SSlawomir Mrozowicz .min = 16, 3268a9867a6SSlawomir Mrozowicz .max = 16, 3278a9867a6SSlawomir Mrozowicz .increment = 0 3288a9867a6SSlawomir Mrozowicz }, 3298a9867a6SSlawomir Mrozowicz .aad_size = { 3300625598aSArek Kusztal .min = 0, 3310625598aSArek Kusztal .max = 65535, 3320625598aSArek Kusztal .increment = 1 333acf86169SPablo de Lara }, 3348a9867a6SSlawomir Mrozowicz .iv_size = { 3358a9867a6SSlawomir Mrozowicz .min = 12, 3368a9867a6SSlawomir Mrozowicz .max = 16, 3378a9867a6SSlawomir Mrozowicz .increment = 4 338b79e4c00SPablo de Lara }, 3398a9867a6SSlawomir Mrozowicz }, } 3408a9867a6SSlawomir Mrozowicz }, } 3418a9867a6SSlawomir Mrozowicz }, 3421a4998dcSPablo de Lara { /* AES CCM */ 3431a4998dcSPablo de Lara .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 3441a4998dcSPablo de Lara {.sym = { 3451a4998dcSPablo de Lara .xform_type = RTE_CRYPTO_SYM_XFORM_AEAD, 3461a4998dcSPablo de Lara {.aead = { 3471a4998dcSPablo de Lara .algo = RTE_CRYPTO_AEAD_AES_CCM, 3481a4998dcSPablo de Lara .block_size = 16, 3491a4998dcSPablo de Lara .key_size = { 3501a4998dcSPablo de Lara .min = 16, 3511a4998dcSPablo de Lara .max = 32, 3521a4998dcSPablo de Lara .increment = 8 3531a4998dcSPablo de Lara }, 3541a4998dcSPablo de Lara .digest_size = { 3551a4998dcSPablo de Lara .min = 4, 3561a4998dcSPablo de Lara .max = 16, 3571a4998dcSPablo de Lara .increment = 2 3581a4998dcSPablo de Lara }, 3591a4998dcSPablo de Lara .aad_size = { 3601a4998dcSPablo de Lara .min = 0, 3611a4998dcSPablo de Lara .max = 65535, 3621a4998dcSPablo de Lara .increment = 1 3631a4998dcSPablo de Lara }, 3641a4998dcSPablo de Lara .iv_size = { 3651a4998dcSPablo de Lara .min = 7, 3661a4998dcSPablo de Lara .max = 13, 3671a4998dcSPablo de Lara .increment = 1 3681a4998dcSPablo de Lara }, 3691a4998dcSPablo de Lara }, } 3701a4998dcSPablo de Lara }, } 3711a4998dcSPablo de Lara }, 3728a9867a6SSlawomir Mrozowicz { /* AES GMAC (AUTH) */ 3738a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 3748a9867a6SSlawomir Mrozowicz {.sym = { 3758a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 3768a9867a6SSlawomir Mrozowicz {.auth = { 3778a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_AUTH_AES_GMAC, 3788a9867a6SSlawomir Mrozowicz .block_size = 16, 3798a9867a6SSlawomir Mrozowicz .key_size = { 3808a9867a6SSlawomir Mrozowicz .min = 16, 3818a9867a6SSlawomir Mrozowicz .max = 32, 3828a9867a6SSlawomir Mrozowicz .increment = 8 3838a9867a6SSlawomir Mrozowicz }, 3848a9867a6SSlawomir Mrozowicz .digest_size = { 3858a9867a6SSlawomir Mrozowicz .min = 16, 3868a9867a6SSlawomir Mrozowicz .max = 16, 3878a9867a6SSlawomir Mrozowicz .increment = 0 3888a9867a6SSlawomir Mrozowicz }, 389e32e4fa8SPablo de Lara .iv_size = { 390e32e4fa8SPablo de Lara .min = 12, 391e32e4fa8SPablo de Lara .max = 16, 3928a9867a6SSlawomir Mrozowicz .increment = 4 393e32e4fa8SPablo de Lara } 3948a9867a6SSlawomir Mrozowicz }, } 3958a9867a6SSlawomir Mrozowicz }, } 3968a9867a6SSlawomir Mrozowicz }, 3972b9c693fSAshwin Sekhar T K { /* AES CMAC (AUTH) */ 3982b9c693fSAshwin Sekhar T K .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 3992b9c693fSAshwin Sekhar T K {.sym = { 4002b9c693fSAshwin Sekhar T K .xform_type = RTE_CRYPTO_SYM_XFORM_AUTH, 4012b9c693fSAshwin Sekhar T K {.auth = { 4022b9c693fSAshwin Sekhar T K .algo = RTE_CRYPTO_AUTH_AES_CMAC, 4032b9c693fSAshwin Sekhar T K .block_size = 16, 4042b9c693fSAshwin Sekhar T K .key_size = { 4052b9c693fSAshwin Sekhar T K .min = 16, 4062b9c693fSAshwin Sekhar T K .max = 32, 4072b9c693fSAshwin Sekhar T K .increment = 8 4082b9c693fSAshwin Sekhar T K }, 4092b9c693fSAshwin Sekhar T K .digest_size = { 4102b9c693fSAshwin Sekhar T K .min = 4, 4112b9c693fSAshwin Sekhar T K .max = 16, 4122b9c693fSAshwin Sekhar T K .increment = 4 4132b9c693fSAshwin Sekhar T K }, 4142b9c693fSAshwin Sekhar T K }, } 4152b9c693fSAshwin Sekhar T K }, } 4162b9c693fSAshwin Sekhar T K }, 4178a9867a6SSlawomir Mrozowicz { /* 3DES CBC */ 4188a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 4198a9867a6SSlawomir Mrozowicz {.sym = { 4208a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER, 4218a9867a6SSlawomir Mrozowicz {.cipher = { 4228a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_CIPHER_3DES_CBC, 4238a9867a6SSlawomir Mrozowicz .block_size = 8, 4248a9867a6SSlawomir Mrozowicz .key_size = { 4259607e37eSMarko Kovacevic .min = 8, 4268a9867a6SSlawomir Mrozowicz .max = 24, 4278a9867a6SSlawomir Mrozowicz .increment = 8 4288a9867a6SSlawomir Mrozowicz }, 4298a9867a6SSlawomir Mrozowicz .iv_size = { 4308a9867a6SSlawomir Mrozowicz .min = 8, 4318a9867a6SSlawomir Mrozowicz .max = 8, 4328a9867a6SSlawomir Mrozowicz .increment = 0 4338a9867a6SSlawomir Mrozowicz } 4348a9867a6SSlawomir Mrozowicz }, } 4358a9867a6SSlawomir Mrozowicz }, } 4368a9867a6SSlawomir Mrozowicz }, 4378a9867a6SSlawomir Mrozowicz { /* 3DES CTR */ 4388a9867a6SSlawomir Mrozowicz .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 4398a9867a6SSlawomir Mrozowicz {.sym = { 4408a9867a6SSlawomir Mrozowicz .xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER, 4418a9867a6SSlawomir Mrozowicz {.cipher = { 4428a9867a6SSlawomir Mrozowicz .algo = RTE_CRYPTO_CIPHER_3DES_CTR, 4438a9867a6SSlawomir Mrozowicz .block_size = 8, 4448a9867a6SSlawomir Mrozowicz .key_size = { 4458a9867a6SSlawomir Mrozowicz .min = 16, 4468a9867a6SSlawomir Mrozowicz .max = 24, 4478a9867a6SSlawomir Mrozowicz .increment = 8 4488a9867a6SSlawomir Mrozowicz }, 4498a9867a6SSlawomir Mrozowicz .iv_size = { 4508a9867a6SSlawomir Mrozowicz .min = 8, 4518a9867a6SSlawomir Mrozowicz .max = 8, 4528a9867a6SSlawomir Mrozowicz .increment = 0 4538a9867a6SSlawomir Mrozowicz } 4548a9867a6SSlawomir Mrozowicz }, } 4558a9867a6SSlawomir Mrozowicz }, } 4568a9867a6SSlawomir Mrozowicz }, 457c1734807SPablo de Lara { /* DES CBC */ 458c1734807SPablo de Lara .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 459c1734807SPablo de Lara {.sym = { 460c1734807SPablo de Lara .xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER, 461c1734807SPablo de Lara {.cipher = { 462c1734807SPablo de Lara .algo = RTE_CRYPTO_CIPHER_DES_CBC, 463c1734807SPablo de Lara .block_size = 8, 464c1734807SPablo de Lara .key_size = { 465c1734807SPablo de Lara .min = 8, 466c1734807SPablo de Lara .max = 8, 467c1734807SPablo de Lara .increment = 0 468c1734807SPablo de Lara }, 469c1734807SPablo de Lara .iv_size = { 470c1734807SPablo de Lara .min = 8, 471c1734807SPablo de Lara .max = 8, 472c1734807SPablo de Lara .increment = 0 473c1734807SPablo de Lara } 474c1734807SPablo de Lara }, } 475c1734807SPablo de Lara }, } 476c1734807SPablo de Lara }, 4771dee7bc7SPablo de Lara { /* DES DOCSIS BPI */ 4781dee7bc7SPablo de Lara .op = RTE_CRYPTO_OP_TYPE_SYMMETRIC, 4791dee7bc7SPablo de Lara {.sym = { 4801dee7bc7SPablo de Lara .xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER, 4811dee7bc7SPablo de Lara {.cipher = { 4821dee7bc7SPablo de Lara .algo = RTE_CRYPTO_CIPHER_DES_DOCSISBPI, 4831dee7bc7SPablo de Lara .block_size = 8, 4841dee7bc7SPablo de Lara .key_size = { 4851dee7bc7SPablo de Lara .min = 8, 4861dee7bc7SPablo de Lara .max = 8, 4871dee7bc7SPablo de Lara .increment = 0 4881dee7bc7SPablo de Lara }, 4891dee7bc7SPablo de Lara .iv_size = { 4901dee7bc7SPablo de Lara .min = 8, 4911dee7bc7SPablo de Lara .max = 8, 4921dee7bc7SPablo de Lara .increment = 0 4931dee7bc7SPablo de Lara } 4941dee7bc7SPablo de Lara }, } 4951dee7bc7SPablo de Lara }, } 4961dee7bc7SPablo de Lara }, 4973e9d6bd4SSunila Sahu { /* RSA */ 4983e9d6bd4SSunila Sahu .op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC, 4993e9d6bd4SSunila Sahu {.asym = { 5003e9d6bd4SSunila Sahu .xform_capa = { 5013e9d6bd4SSunila Sahu .xform_type = RTE_CRYPTO_ASYM_XFORM_RSA, 5023e9d6bd4SSunila Sahu .op_types = ((1 << RTE_CRYPTO_ASYM_OP_SIGN) | 5033e9d6bd4SSunila Sahu (1 << RTE_CRYPTO_ASYM_OP_VERIFY) | 5043e9d6bd4SSunila Sahu (1 << RTE_CRYPTO_ASYM_OP_ENCRYPT) | 5053e9d6bd4SSunila Sahu (1 << RTE_CRYPTO_ASYM_OP_DECRYPT)), 5063e9d6bd4SSunila Sahu { 5073e9d6bd4SSunila Sahu .modlen = { 5083e9d6bd4SSunila Sahu /* min length is based on openssl rsa keygen */ 5093e9d6bd4SSunila Sahu .min = 30, 5103e9d6bd4SSunila Sahu /* value 0 symbolizes no limit on max length */ 5113e9d6bd4SSunila Sahu .max = 0, 5123e9d6bd4SSunila Sahu .increment = 1 5133e9d6bd4SSunila Sahu }, } 5143e9d6bd4SSunila Sahu } 5153e9d6bd4SSunila Sahu }, 5163e9d6bd4SSunila Sahu } 5173e9d6bd4SSunila Sahu }, 5183e9d6bd4SSunila Sahu { /* modexp */ 5193e9d6bd4SSunila Sahu .op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC, 5203e9d6bd4SSunila Sahu {.asym = { 5213e9d6bd4SSunila Sahu .xform_capa = { 5223e9d6bd4SSunila Sahu .xform_type = RTE_CRYPTO_ASYM_XFORM_MODEX, 5233e9d6bd4SSunila Sahu .op_types = 0, 5243e9d6bd4SSunila Sahu { 5253e9d6bd4SSunila Sahu .modlen = { 5263e9d6bd4SSunila Sahu /* value 0 symbolizes no limit on min length */ 5273e9d6bd4SSunila Sahu .min = 0, 5283e9d6bd4SSunila Sahu /* value 0 symbolizes no limit on max length */ 5293e9d6bd4SSunila Sahu .max = 0, 5303e9d6bd4SSunila Sahu .increment = 1 5313e9d6bd4SSunila Sahu }, } 5323e9d6bd4SSunila Sahu } 5333e9d6bd4SSunila Sahu }, 5343e9d6bd4SSunila Sahu } 5353e9d6bd4SSunila Sahu }, 5363e9d6bd4SSunila Sahu { /* modinv */ 5373e9d6bd4SSunila Sahu .op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC, 5383e9d6bd4SSunila Sahu {.asym = { 5393e9d6bd4SSunila Sahu .xform_capa = { 5403e9d6bd4SSunila Sahu .xform_type = RTE_CRYPTO_ASYM_XFORM_MODINV, 5413e9d6bd4SSunila Sahu .op_types = 0, 5423e9d6bd4SSunila Sahu { 5433e9d6bd4SSunila Sahu .modlen = { 5443e9d6bd4SSunila Sahu /* value 0 symbolizes no limit on min length */ 5453e9d6bd4SSunila Sahu .min = 0, 5463e9d6bd4SSunila Sahu /* value 0 symbolizes no limit on max length */ 5473e9d6bd4SSunila Sahu .max = 0, 5483e9d6bd4SSunila Sahu .increment = 1 5493e9d6bd4SSunila Sahu }, } 5503e9d6bd4SSunila Sahu } 5513e9d6bd4SSunila Sahu }, 5523e9d6bd4SSunila Sahu } 5533e9d6bd4SSunila Sahu }, 554ac42813aSSunila Sahu { /* dh */ 555ac42813aSSunila Sahu .op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC, 556ac42813aSSunila Sahu {.asym = { 557ac42813aSSunila Sahu .xform_capa = { 558ac42813aSSunila Sahu .xform_type = RTE_CRYPTO_ASYM_XFORM_DH, 559ac42813aSSunila Sahu .op_types = 5605fa1fb29SArek Kusztal ((1<<RTE_CRYPTO_ASYM_KE_PRIV_KEY_GENERATE) | 5615fa1fb29SArek Kusztal (1 << RTE_CRYPTO_ASYM_KE_PUB_KEY_GENERATE | 562ac42813aSSunila Sahu (1 << 5635fa1fb29SArek Kusztal RTE_CRYPTO_ASYM_KE_SHARED_SECRET_COMPUTE))), 564ac42813aSSunila Sahu { 565ac42813aSSunila Sahu .modlen = { 566ac42813aSSunila Sahu /* value 0 symbolizes no limit on min length */ 567ac42813aSSunila Sahu .min = 0, 568ac42813aSSunila Sahu /* value 0 symbolizes no limit on max length */ 569ac42813aSSunila Sahu .max = 0, 570ac42813aSSunila Sahu .increment = 1 571ac42813aSSunila Sahu }, } 572ac42813aSSunila Sahu } 573ac42813aSSunila Sahu }, 574ac42813aSSunila Sahu } 575ac42813aSSunila Sahu }, 576ac42813aSSunila Sahu { /* dsa */ 577ac42813aSSunila Sahu .op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC, 578ac42813aSSunila Sahu {.asym = { 579ac42813aSSunila Sahu .xform_capa = { 580ac42813aSSunila Sahu .xform_type = RTE_CRYPTO_ASYM_XFORM_DSA, 581ac42813aSSunila Sahu .op_types = 582ac42813aSSunila Sahu ((1<<RTE_CRYPTO_ASYM_OP_SIGN) | 583ac42813aSSunila Sahu (1 << RTE_CRYPTO_ASYM_OP_VERIFY)), 584ac42813aSSunila Sahu { 585ac42813aSSunila Sahu .modlen = { 586ac42813aSSunila Sahu /* value 0 symbolizes no limit on min length */ 587ac42813aSSunila Sahu .min = 0, 588ac42813aSSunila Sahu /* value 0 symbolizes no limit on max length */ 589ac42813aSSunila Sahu .max = 0, 590ac42813aSSunila Sahu .increment = 1 591ac42813aSSunila Sahu }, } 592ac42813aSSunila Sahu } 593ac42813aSSunila Sahu }, 594ac42813aSSunila Sahu } 595ac42813aSSunila Sahu }, 596*e8f9c5c8SGowrishankar Muthukrishnan { /* SM2 */ 597*e8f9c5c8SGowrishankar Muthukrishnan .op = RTE_CRYPTO_OP_TYPE_ASYMMETRIC, 598*e8f9c5c8SGowrishankar Muthukrishnan {.asym = { 599*e8f9c5c8SGowrishankar Muthukrishnan .xform_capa = { 600*e8f9c5c8SGowrishankar Muthukrishnan .xform_type = RTE_CRYPTO_ASYM_XFORM_SM2, 601*e8f9c5c8SGowrishankar Muthukrishnan .op_types = 602*e8f9c5c8SGowrishankar Muthukrishnan ((1<<RTE_CRYPTO_ASYM_OP_SIGN) | 603*e8f9c5c8SGowrishankar Muthukrishnan (1 << RTE_CRYPTO_ASYM_OP_VERIFY) | 604*e8f9c5c8SGowrishankar Muthukrishnan (1 << RTE_CRYPTO_ASYM_OP_ENCRYPT) | 605*e8f9c5c8SGowrishankar Muthukrishnan (1 << RTE_CRYPTO_ASYM_OP_DECRYPT)), 606*e8f9c5c8SGowrishankar Muthukrishnan } 607*e8f9c5c8SGowrishankar Muthukrishnan } 608*e8f9c5c8SGowrishankar Muthukrishnan } 609*e8f9c5c8SGowrishankar Muthukrishnan }, 6108a9867a6SSlawomir Mrozowicz 6118a9867a6SSlawomir Mrozowicz RTE_CRYPTODEV_END_OF_CAPABILITIES_LIST() 6128a9867a6SSlawomir Mrozowicz }; 6138a9867a6SSlawomir Mrozowicz 6148a9867a6SSlawomir Mrozowicz 6158a9867a6SSlawomir Mrozowicz /** Configure device */ 6168a9867a6SSlawomir Mrozowicz static int 61760e686c2SFan Zhang openssl_pmd_config(__rte_unused struct rte_cryptodev *dev, 61860e686c2SFan Zhang __rte_unused struct rte_cryptodev_config *config) 6198a9867a6SSlawomir Mrozowicz { 6208a9867a6SSlawomir Mrozowicz return 0; 6218a9867a6SSlawomir Mrozowicz } 6228a9867a6SSlawomir Mrozowicz 6238a9867a6SSlawomir Mrozowicz /** Start device */ 6248a9867a6SSlawomir Mrozowicz static int 6258a9867a6SSlawomir Mrozowicz openssl_pmd_start(__rte_unused struct rte_cryptodev *dev) 6268a9867a6SSlawomir Mrozowicz { 6278a9867a6SSlawomir Mrozowicz return 0; 6288a9867a6SSlawomir Mrozowicz } 6298a9867a6SSlawomir Mrozowicz 6308a9867a6SSlawomir Mrozowicz /** Stop device */ 6318a9867a6SSlawomir Mrozowicz static void 6328a9867a6SSlawomir Mrozowicz openssl_pmd_stop(__rte_unused struct rte_cryptodev *dev) 6338a9867a6SSlawomir Mrozowicz { 6348a9867a6SSlawomir Mrozowicz } 6358a9867a6SSlawomir Mrozowicz 6368a9867a6SSlawomir Mrozowicz /** Close device */ 6378a9867a6SSlawomir Mrozowicz static int 6388a9867a6SSlawomir Mrozowicz openssl_pmd_close(__rte_unused struct rte_cryptodev *dev) 6398a9867a6SSlawomir Mrozowicz { 6408a9867a6SSlawomir Mrozowicz return 0; 6418a9867a6SSlawomir Mrozowicz } 6428a9867a6SSlawomir Mrozowicz 6438a9867a6SSlawomir Mrozowicz 6448a9867a6SSlawomir Mrozowicz /** Get device statistics */ 6458a9867a6SSlawomir Mrozowicz static void 6468a9867a6SSlawomir Mrozowicz openssl_pmd_stats_get(struct rte_cryptodev *dev, 6478a9867a6SSlawomir Mrozowicz struct rte_cryptodev_stats *stats) 6488a9867a6SSlawomir Mrozowicz { 6498a9867a6SSlawomir Mrozowicz int qp_id; 6508a9867a6SSlawomir Mrozowicz 6518a9867a6SSlawomir Mrozowicz for (qp_id = 0; qp_id < dev->data->nb_queue_pairs; qp_id++) { 6528a9867a6SSlawomir Mrozowicz struct openssl_qp *qp = dev->data->queue_pairs[qp_id]; 6538a9867a6SSlawomir Mrozowicz 6548a9867a6SSlawomir Mrozowicz stats->enqueued_count += qp->stats.enqueued_count; 6558a9867a6SSlawomir Mrozowicz stats->dequeued_count += qp->stats.dequeued_count; 6568a9867a6SSlawomir Mrozowicz 6578a9867a6SSlawomir Mrozowicz stats->enqueue_err_count += qp->stats.enqueue_err_count; 6588a9867a6SSlawomir Mrozowicz stats->dequeue_err_count += qp->stats.dequeue_err_count; 6598a9867a6SSlawomir Mrozowicz } 6608a9867a6SSlawomir Mrozowicz } 6618a9867a6SSlawomir Mrozowicz 6628a9867a6SSlawomir Mrozowicz /** Reset device statistics */ 6638a9867a6SSlawomir Mrozowicz static void 6648a9867a6SSlawomir Mrozowicz openssl_pmd_stats_reset(struct rte_cryptodev *dev) 6658a9867a6SSlawomir Mrozowicz { 6668a9867a6SSlawomir Mrozowicz int qp_id; 6678a9867a6SSlawomir Mrozowicz 6688a9867a6SSlawomir Mrozowicz for (qp_id = 0; qp_id < dev->data->nb_queue_pairs; qp_id++) { 6698a9867a6SSlawomir Mrozowicz struct openssl_qp *qp = dev->data->queue_pairs[qp_id]; 6708a9867a6SSlawomir Mrozowicz 6718a9867a6SSlawomir Mrozowicz memset(&qp->stats, 0, sizeof(qp->stats)); 6728a9867a6SSlawomir Mrozowicz } 6738a9867a6SSlawomir Mrozowicz } 6748a9867a6SSlawomir Mrozowicz 6758a9867a6SSlawomir Mrozowicz 6768a9867a6SSlawomir Mrozowicz /** Get device info */ 6778a9867a6SSlawomir Mrozowicz static void 6788a9867a6SSlawomir Mrozowicz openssl_pmd_info_get(struct rte_cryptodev *dev, 6798a9867a6SSlawomir Mrozowicz struct rte_cryptodev_info *dev_info) 6808a9867a6SSlawomir Mrozowicz { 6818a9867a6SSlawomir Mrozowicz struct openssl_private *internals = dev->data->dev_private; 6828a9867a6SSlawomir Mrozowicz 6838a9867a6SSlawomir Mrozowicz if (dev_info != NULL) { 6847a364faeSSlawomir Mrozowicz dev_info->driver_id = dev->driver_id; 6858a9867a6SSlawomir Mrozowicz dev_info->feature_flags = dev->feature_flags; 6868a9867a6SSlawomir Mrozowicz dev_info->capabilities = openssl_pmd_capabilities; 6878a9867a6SSlawomir Mrozowicz dev_info->max_nb_queue_pairs = internals->max_nb_qpairs; 688e1fc5b76SPablo de Lara /* No limit of number of sessions */ 689e1fc5b76SPablo de Lara dev_info->sym.max_nb_sessions = 0; 6908a9867a6SSlawomir Mrozowicz } 6918a9867a6SSlawomir Mrozowicz } 6928a9867a6SSlawomir Mrozowicz 6938a9867a6SSlawomir Mrozowicz /** Release queue pair */ 6948a9867a6SSlawomir Mrozowicz static int 6958a9867a6SSlawomir Mrozowicz openssl_pmd_qp_release(struct rte_cryptodev *dev, uint16_t qp_id) 6968a9867a6SSlawomir Mrozowicz { 6978a9867a6SSlawomir Mrozowicz if (dev->data->queue_pairs[qp_id] != NULL) { 698a4d69a51SFan Zhang struct openssl_qp *qp = dev->data->queue_pairs[qp_id]; 699a4d69a51SFan Zhang 700a4d69a51SFan Zhang rte_ring_free(qp->processed_ops); 701a4d69a51SFan Zhang 7028a9867a6SSlawomir Mrozowicz rte_free(dev->data->queue_pairs[qp_id]); 7038a9867a6SSlawomir Mrozowicz dev->data->queue_pairs[qp_id] = NULL; 7048a9867a6SSlawomir Mrozowicz } 7058a9867a6SSlawomir Mrozowicz return 0; 7068a9867a6SSlawomir Mrozowicz } 7078a9867a6SSlawomir Mrozowicz 7088a9867a6SSlawomir Mrozowicz /** set a unique name for the queue pair based on it's name, dev_id and qp_id */ 7098a9867a6SSlawomir Mrozowicz static int 7108a9867a6SSlawomir Mrozowicz openssl_pmd_qp_set_unique_name(struct rte_cryptodev *dev, 7118a9867a6SSlawomir Mrozowicz struct openssl_qp *qp) 7128a9867a6SSlawomir Mrozowicz { 7138a9867a6SSlawomir Mrozowicz unsigned int n = snprintf(qp->name, sizeof(qp->name), 7148a9867a6SSlawomir Mrozowicz "openssl_pmd_%u_qp_%u", 7158a9867a6SSlawomir Mrozowicz dev->data->dev_id, qp->id); 7168a9867a6SSlawomir Mrozowicz 7176ab25e63STomasz Duszynski if (n >= sizeof(qp->name)) 7188a9867a6SSlawomir Mrozowicz return -1; 7198a9867a6SSlawomir Mrozowicz 7208a9867a6SSlawomir Mrozowicz return 0; 7218a9867a6SSlawomir Mrozowicz } 7228a9867a6SSlawomir Mrozowicz 7238a9867a6SSlawomir Mrozowicz 7248a9867a6SSlawomir Mrozowicz /** Create a ring to place processed operations on */ 7258a9867a6SSlawomir Mrozowicz static struct rte_ring * 7268a9867a6SSlawomir Mrozowicz openssl_pmd_qp_create_processed_ops_ring(struct openssl_qp *qp, 7278a9867a6SSlawomir Mrozowicz unsigned int ring_size, int socket_id) 7288a9867a6SSlawomir Mrozowicz { 7298a9867a6SSlawomir Mrozowicz struct rte_ring *r; 7308a9867a6SSlawomir Mrozowicz 7318a9867a6SSlawomir Mrozowicz r = rte_ring_lookup(qp->name); 7328a9867a6SSlawomir Mrozowicz if (r) { 733636e7392SBruce Richardson if (rte_ring_get_size(r) >= ring_size) { 734094b2386SNaga Suresh Somarowthu OPENSSL_LOG(INFO, 7358a9867a6SSlawomir Mrozowicz "Reusing existing ring %s for processed ops", 7368a9867a6SSlawomir Mrozowicz qp->name); 7378a9867a6SSlawomir Mrozowicz return r; 7388a9867a6SSlawomir Mrozowicz } 7398a9867a6SSlawomir Mrozowicz 740094b2386SNaga Suresh Somarowthu OPENSSL_LOG(ERR, 7418a9867a6SSlawomir Mrozowicz "Unable to reuse existing ring %s for processed ops", 7428a9867a6SSlawomir Mrozowicz qp->name); 7438a9867a6SSlawomir Mrozowicz return NULL; 7448a9867a6SSlawomir Mrozowicz } 7458a9867a6SSlawomir Mrozowicz 7468a9867a6SSlawomir Mrozowicz return rte_ring_create(qp->name, ring_size, socket_id, 7478a9867a6SSlawomir Mrozowicz RING_F_SP_ENQ | RING_F_SC_DEQ); 7488a9867a6SSlawomir Mrozowicz } 7498a9867a6SSlawomir Mrozowicz 7508a9867a6SSlawomir Mrozowicz 7518a9867a6SSlawomir Mrozowicz /** Setup a queue pair */ 7528a9867a6SSlawomir Mrozowicz static int 7538a9867a6SSlawomir Mrozowicz openssl_pmd_qp_setup(struct rte_cryptodev *dev, uint16_t qp_id, 7548a9867a6SSlawomir Mrozowicz const struct rte_cryptodev_qp_conf *qp_conf, 755725d2a7fSFan Zhang int socket_id) 7568a9867a6SSlawomir Mrozowicz { 7578a9867a6SSlawomir Mrozowicz struct openssl_qp *qp = NULL; 7588a9867a6SSlawomir Mrozowicz 7598a9867a6SSlawomir Mrozowicz /* Free memory prior to re-allocation if needed. */ 7608a9867a6SSlawomir Mrozowicz if (dev->data->queue_pairs[qp_id] != NULL) 7618a9867a6SSlawomir Mrozowicz openssl_pmd_qp_release(dev, qp_id); 7628a9867a6SSlawomir Mrozowicz 7638a9867a6SSlawomir Mrozowicz /* Allocate the queue pair data structure. */ 7648a9867a6SSlawomir Mrozowicz qp = rte_zmalloc_socket("OPENSSL PMD Queue Pair", sizeof(*qp), 7658a9867a6SSlawomir Mrozowicz RTE_CACHE_LINE_SIZE, socket_id); 7668a9867a6SSlawomir Mrozowicz if (qp == NULL) 7678a9867a6SSlawomir Mrozowicz return -ENOMEM; 7688a9867a6SSlawomir Mrozowicz 7698a9867a6SSlawomir Mrozowicz qp->id = qp_id; 7708a9867a6SSlawomir Mrozowicz dev->data->queue_pairs[qp_id] = qp; 7718a9867a6SSlawomir Mrozowicz 7728a9867a6SSlawomir Mrozowicz if (openssl_pmd_qp_set_unique_name(dev, qp)) 7738a9867a6SSlawomir Mrozowicz goto qp_setup_cleanup; 7748a9867a6SSlawomir Mrozowicz 7758a9867a6SSlawomir Mrozowicz qp->processed_ops = openssl_pmd_qp_create_processed_ops_ring(qp, 7768a9867a6SSlawomir Mrozowicz qp_conf->nb_descriptors, socket_id); 7778a9867a6SSlawomir Mrozowicz if (qp->processed_ops == NULL) 7788a9867a6SSlawomir Mrozowicz goto qp_setup_cleanup; 7798a9867a6SSlawomir Mrozowicz 780725d2a7fSFan Zhang qp->sess_mp = qp_conf->mp_session; 7818a9867a6SSlawomir Mrozowicz 7828a9867a6SSlawomir Mrozowicz memset(&qp->stats, 0, sizeof(qp->stats)); 7838a9867a6SSlawomir Mrozowicz 7848a9867a6SSlawomir Mrozowicz return 0; 7858a9867a6SSlawomir Mrozowicz 7868a9867a6SSlawomir Mrozowicz qp_setup_cleanup: 7878a9867a6SSlawomir Mrozowicz rte_free(qp); 7888a9867a6SSlawomir Mrozowicz 7898a9867a6SSlawomir Mrozowicz return -1; 7908a9867a6SSlawomir Mrozowicz } 7918a9867a6SSlawomir Mrozowicz 7923e9d6bd4SSunila Sahu /** Returns the size of the symmetric session structure */ 7938a9867a6SSlawomir Mrozowicz static unsigned 794012c5076SPablo de Lara openssl_pmd_sym_session_get_size(struct rte_cryptodev *dev __rte_unused) 7958a9867a6SSlawomir Mrozowicz { 7968a9867a6SSlawomir Mrozowicz return sizeof(struct openssl_session); 7978a9867a6SSlawomir Mrozowicz } 7988a9867a6SSlawomir Mrozowicz 7993e9d6bd4SSunila Sahu /** Returns the size of the asymmetric session structure */ 8003e9d6bd4SSunila Sahu static unsigned 8013e9d6bd4SSunila Sahu openssl_pmd_asym_session_get_size(struct rte_cryptodev *dev __rte_unused) 8023e9d6bd4SSunila Sahu { 8033e9d6bd4SSunila Sahu return sizeof(struct openssl_asym_session); 8043e9d6bd4SSunila Sahu } 8053e9d6bd4SSunila Sahu 8068a9867a6SSlawomir Mrozowicz /** Configure the session from a crypto xform chain */ 807b3bbd9e5SSlawomir Mrozowicz static int 808012c5076SPablo de Lara openssl_pmd_sym_session_configure(struct rte_cryptodev *dev __rte_unused, 809b3bbd9e5SSlawomir Mrozowicz struct rte_crypto_sym_xform *xform, 810bdce2564SAkhil Goyal struct rte_cryptodev_sym_session *sess) 8118a9867a6SSlawomir Mrozowicz { 8122a440d6aSAkhil Goyal void *sess_private_data = CRYPTODEV_GET_SYM_SESS_PRIV(sess); 81327391b53SPablo de Lara int ret; 814b3bbd9e5SSlawomir Mrozowicz 8158a9867a6SSlawomir Mrozowicz if (unlikely(sess == NULL)) { 816094b2386SNaga Suresh Somarowthu OPENSSL_LOG(ERR, "invalid session struct"); 81727391b53SPablo de Lara return -EINVAL; 818b3bbd9e5SSlawomir Mrozowicz } 819b3bbd9e5SSlawomir Mrozowicz 82027391b53SPablo de Lara ret = openssl_set_session_parameters(sess_private_data, xform); 82127391b53SPablo de Lara if (ret != 0) { 822094b2386SNaga Suresh Somarowthu OPENSSL_LOG(ERR, "failed configure session parameters"); 823b3bbd9e5SSlawomir Mrozowicz 824b3bbd9e5SSlawomir Mrozowicz /* Return session to mempool */ 82527391b53SPablo de Lara return ret; 8268a9867a6SSlawomir Mrozowicz } 8278a9867a6SSlawomir Mrozowicz 828b3bbd9e5SSlawomir Mrozowicz return 0; 8298a9867a6SSlawomir Mrozowicz } 8308a9867a6SSlawomir Mrozowicz 8313e9d6bd4SSunila Sahu static int openssl_set_asym_session_parameters( 8323e9d6bd4SSunila Sahu struct openssl_asym_session *asym_session, 8333e9d6bd4SSunila Sahu struct rte_crypto_asym_xform *xform) 8343e9d6bd4SSunila Sahu { 8354c7ae22fSKai Ji int ret = -1; 8363e9d6bd4SSunila Sahu 837ac42813aSSunila Sahu if ((xform->xform_type != RTE_CRYPTO_ASYM_XFORM_DH) && 838ac42813aSSunila Sahu (xform->next != NULL)) { 8393e9d6bd4SSunila Sahu OPENSSL_LOG(ERR, "chained xfrms are not supported on %s", 8407e1e1277SAkhil Goyal rte_cryptodev_asym_get_xform_string(xform->xform_type)); 8414c7ae22fSKai Ji return ret; 8423e9d6bd4SSunila Sahu } 8433e9d6bd4SSunila Sahu 8443e9d6bd4SSunila Sahu switch (xform->xform_type) { 8453e9d6bd4SSunila Sahu case RTE_CRYPTO_ASYM_XFORM_RSA: 8463e9d6bd4SSunila Sahu { 8473e9d6bd4SSunila Sahu BIGNUM *n = NULL; 8483e9d6bd4SSunila Sahu BIGNUM *e = NULL; 8493e9d6bd4SSunila Sahu BIGNUM *d = NULL; 8503e9d6bd4SSunila Sahu BIGNUM *p = NULL, *q = NULL, *dmp1 = NULL; 8513e9d6bd4SSunila Sahu BIGNUM *iqmp = NULL, *dmq1 = NULL; 8523e9d6bd4SSunila Sahu 8533e9d6bd4SSunila Sahu /* copy xfrm data into rsa struct */ 8543e9d6bd4SSunila Sahu n = BN_bin2bn((const unsigned char *)xform->rsa.n.data, 8553e9d6bd4SSunila Sahu xform->rsa.n.length, n); 8563e9d6bd4SSunila Sahu e = BN_bin2bn((const unsigned char *)xform->rsa.e.data, 8573e9d6bd4SSunila Sahu xform->rsa.e.length, e); 8583e9d6bd4SSunila Sahu 8593e9d6bd4SSunila Sahu if (!n || !e) 8603e9d6bd4SSunila Sahu goto err_rsa; 8613e9d6bd4SSunila Sahu 862d7bd42f6SKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 863d7bd42f6SKai Ji OSSL_PARAM_BLD * param_bld = OSSL_PARAM_BLD_new(); 864d7bd42f6SKai Ji if (!param_bld) { 865d7bd42f6SKai Ji OPENSSL_LOG(ERR, "failed to allocate resources\n"); 866d7bd42f6SKai Ji goto err_rsa; 867d7bd42f6SKai Ji } 868d7bd42f6SKai Ji 869d7bd42f6SKai Ji if (!OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_RSA_N, n) 870d7bd42f6SKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, 871d7bd42f6SKai Ji OSSL_PKEY_PARAM_RSA_E, e)) { 872d7bd42f6SKai Ji OSSL_PARAM_BLD_free(param_bld); 873d7bd42f6SKai Ji OPENSSL_LOG(ERR, "failed to allocate resources\n"); 874d7bd42f6SKai Ji goto err_rsa; 875d7bd42f6SKai Ji } 876d7bd42f6SKai Ji 877d7bd42f6SKai Ji if (xform->rsa.key_type == RTE_RSA_KEY_TYPE_EXP) { 878d7bd42f6SKai Ji d = BN_bin2bn( 879d7bd42f6SKai Ji (const unsigned char *)xform->rsa.d.data, 880d7bd42f6SKai Ji xform->rsa.d.length, 881d7bd42f6SKai Ji d); 882d7bd42f6SKai Ji if (!d) { 883d7bd42f6SKai Ji OSSL_PARAM_BLD_free(param_bld); 884d7bd42f6SKai Ji goto err_rsa; 885d7bd42f6SKai Ji } 886d7bd42f6SKai Ji } else { 887d7bd42f6SKai Ji p = BN_bin2bn((const unsigned char *) 888d7bd42f6SKai Ji xform->rsa.qt.p.data, 889d7bd42f6SKai Ji xform->rsa.qt.p.length, 890d7bd42f6SKai Ji p); 891d7bd42f6SKai Ji q = BN_bin2bn((const unsigned char *) 892d7bd42f6SKai Ji xform->rsa.qt.q.data, 893d7bd42f6SKai Ji xform->rsa.qt.q.length, 894d7bd42f6SKai Ji q); 895d7bd42f6SKai Ji dmp1 = BN_bin2bn((const unsigned char *) 896d7bd42f6SKai Ji xform->rsa.qt.dP.data, 897d7bd42f6SKai Ji xform->rsa.qt.dP.length, 898d7bd42f6SKai Ji dmp1); 899d7bd42f6SKai Ji dmq1 = BN_bin2bn((const unsigned char *) 900d7bd42f6SKai Ji xform->rsa.qt.dQ.data, 901d7bd42f6SKai Ji xform->rsa.qt.dQ.length, 902d7bd42f6SKai Ji dmq1); 903d7bd42f6SKai Ji iqmp = BN_bin2bn((const unsigned char *) 904d7bd42f6SKai Ji xform->rsa.qt.qInv.data, 905d7bd42f6SKai Ji xform->rsa.qt.qInv.length, 906d7bd42f6SKai Ji iqmp); 907d7bd42f6SKai Ji 908d7bd42f6SKai Ji if (!p || !q || !dmp1 || !dmq1 || !iqmp) { 909d7bd42f6SKai Ji OSSL_PARAM_BLD_free(param_bld); 910d7bd42f6SKai Ji goto err_rsa; 911d7bd42f6SKai Ji } 912d7bd42f6SKai Ji 913d7bd42f6SKai Ji if (!OSSL_PARAM_BLD_push_BN(param_bld, 914d7bd42f6SKai Ji OSSL_PKEY_PARAM_RSA_FACTOR1, p) 915d7bd42f6SKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, 916d7bd42f6SKai Ji OSSL_PKEY_PARAM_RSA_FACTOR2, q) 917d7bd42f6SKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, 918d7bd42f6SKai Ji OSSL_PKEY_PARAM_RSA_EXPONENT1, dmp1) 919d7bd42f6SKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, 920d7bd42f6SKai Ji OSSL_PKEY_PARAM_RSA_EXPONENT2, dmq1) 921d7bd42f6SKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, 922d7bd42f6SKai Ji OSSL_PKEY_PARAM_RSA_COEFFICIENT1, iqmp)) { 923d7bd42f6SKai Ji OSSL_PARAM_BLD_free(param_bld); 924d7bd42f6SKai Ji goto err_rsa; 925d7bd42f6SKai Ji } 926d7bd42f6SKai Ji } 927d7bd42f6SKai Ji 928d7bd42f6SKai Ji if (!OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_RSA_N, n) 929d7bd42f6SKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_RSA_E, e) 930d7bd42f6SKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, 931d7bd42f6SKai Ji OSSL_PKEY_PARAM_RSA_D, d)) { 932d7bd42f6SKai Ji OSSL_PARAM_BLD_free(param_bld); 933d7bd42f6SKai Ji goto err_rsa; 934d7bd42f6SKai Ji } 935d7bd42f6SKai Ji 936d7bd42f6SKai Ji EVP_PKEY_CTX *key_ctx = EVP_PKEY_CTX_new_from_name(NULL, "RSA", NULL); 937d7bd42f6SKai Ji EVP_PKEY *pkey = NULL; 938d7bd42f6SKai Ji EVP_PKEY_CTX *rsa_ctx = NULL; 939d7bd42f6SKai Ji OSSL_PARAM *params = NULL; 940d7bd42f6SKai Ji 941d7bd42f6SKai Ji params = OSSL_PARAM_BLD_to_param(param_bld); 942d7bd42f6SKai Ji if (!params) { 943d7bd42f6SKai Ji OSSL_PARAM_BLD_free(param_bld); 944d7bd42f6SKai Ji goto err_rsa; 945d7bd42f6SKai Ji } 946d7bd42f6SKai Ji 947d7bd42f6SKai Ji if (key_ctx == NULL 948d7bd42f6SKai Ji || EVP_PKEY_fromdata_init(key_ctx) <= 0 949d7bd42f6SKai Ji || EVP_PKEY_fromdata(key_ctx, &pkey, 950d7bd42f6SKai Ji EVP_PKEY_KEYPAIR, params) <= 0) { 951d7bd42f6SKai Ji OSSL_PARAM_free(params); 952d7bd42f6SKai Ji goto err_rsa; 953d7bd42f6SKai Ji } 954d7bd42f6SKai Ji 955d7bd42f6SKai Ji rsa_ctx = EVP_PKEY_CTX_new(pkey, NULL); 956d7bd42f6SKai Ji asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_RSA; 957d7bd42f6SKai Ji asym_session->u.r.ctx = rsa_ctx; 958d7bd42f6SKai Ji EVP_PKEY_CTX_free(key_ctx); 959d7bd42f6SKai Ji OSSL_PARAM_free(params); 960d7bd42f6SKai Ji break; 961d7bd42f6SKai Ji #else 9623e9d6bd4SSunila Sahu RSA *rsa = RSA_new(); 9633e9d6bd4SSunila Sahu if (rsa == NULL) 9643e9d6bd4SSunila Sahu goto err_rsa; 9653e9d6bd4SSunila Sahu 9663e9d6bd4SSunila Sahu if (xform->rsa.key_type == RTE_RSA_KEY_TYPE_EXP) { 9673e9d6bd4SSunila Sahu d = BN_bin2bn( 9683e9d6bd4SSunila Sahu (const unsigned char *)xform->rsa.d.data, 9693e9d6bd4SSunila Sahu xform->rsa.d.length, 9703e9d6bd4SSunila Sahu d); 9713e9d6bd4SSunila Sahu if (!d) { 9723e9d6bd4SSunila Sahu RSA_free(rsa); 9733e9d6bd4SSunila Sahu goto err_rsa; 9743e9d6bd4SSunila Sahu } 9753e9d6bd4SSunila Sahu } else { 9763e9d6bd4SSunila Sahu p = BN_bin2bn((const unsigned char *) 9773e9d6bd4SSunila Sahu xform->rsa.qt.p.data, 9783e9d6bd4SSunila Sahu xform->rsa.qt.p.length, 9793e9d6bd4SSunila Sahu p); 9803e9d6bd4SSunila Sahu q = BN_bin2bn((const unsigned char *) 9813e9d6bd4SSunila Sahu xform->rsa.qt.q.data, 9823e9d6bd4SSunila Sahu xform->rsa.qt.q.length, 9833e9d6bd4SSunila Sahu q); 9843e9d6bd4SSunila Sahu dmp1 = BN_bin2bn((const unsigned char *) 9853e9d6bd4SSunila Sahu xform->rsa.qt.dP.data, 9863e9d6bd4SSunila Sahu xform->rsa.qt.dP.length, 9873e9d6bd4SSunila Sahu dmp1); 9883e9d6bd4SSunila Sahu dmq1 = BN_bin2bn((const unsigned char *) 9893e9d6bd4SSunila Sahu xform->rsa.qt.dQ.data, 9903e9d6bd4SSunila Sahu xform->rsa.qt.dQ.length, 9913e9d6bd4SSunila Sahu dmq1); 9923e9d6bd4SSunila Sahu iqmp = BN_bin2bn((const unsigned char *) 9933e9d6bd4SSunila Sahu xform->rsa.qt.qInv.data, 9943e9d6bd4SSunila Sahu xform->rsa.qt.qInv.length, 9953e9d6bd4SSunila Sahu iqmp); 9963e9d6bd4SSunila Sahu 9973e9d6bd4SSunila Sahu if (!p || !q || !dmp1 || !dmq1 || !iqmp) { 9983e9d6bd4SSunila Sahu RSA_free(rsa); 9993e9d6bd4SSunila Sahu goto err_rsa; 10003e9d6bd4SSunila Sahu } 10010b5284adSAshish Gupta ret = set_rsa_params(rsa, p, q); 10023e9d6bd4SSunila Sahu if (ret) { 10033e9d6bd4SSunila Sahu OPENSSL_LOG(ERR, 10043e9d6bd4SSunila Sahu "failed to set rsa params\n"); 10053e9d6bd4SSunila Sahu RSA_free(rsa); 10063e9d6bd4SSunila Sahu goto err_rsa; 10073e9d6bd4SSunila Sahu } 10080b5284adSAshish Gupta ret = set_rsa_crt_params(rsa, dmp1, dmq1, iqmp); 10093e9d6bd4SSunila Sahu if (ret) { 10103e9d6bd4SSunila Sahu OPENSSL_LOG(ERR, 10113e9d6bd4SSunila Sahu "failed to set crt params\n"); 10123e9d6bd4SSunila Sahu RSA_free(rsa); 10133e9d6bd4SSunila Sahu /* 10143e9d6bd4SSunila Sahu * set already populated params to NULL 10153e9d6bd4SSunila Sahu * as its freed by call to RSA_free 10163e9d6bd4SSunila Sahu */ 10173e9d6bd4SSunila Sahu p = q = NULL; 10183e9d6bd4SSunila Sahu goto err_rsa; 10193e9d6bd4SSunila Sahu } 10203e9d6bd4SSunila Sahu } 10213e9d6bd4SSunila Sahu 10220b5284adSAshish Gupta ret = set_rsa_keys(rsa, n, e, d); 10233e9d6bd4SSunila Sahu if (ret) { 10243e9d6bd4SSunila Sahu OPENSSL_LOG(ERR, "Failed to load rsa keys\n"); 10253e9d6bd4SSunila Sahu RSA_free(rsa); 10264c7ae22fSKai Ji return ret; 10273e9d6bd4SSunila Sahu } 10283e9d6bd4SSunila Sahu asym_session->u.r.rsa = rsa; 10293e9d6bd4SSunila Sahu asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_RSA; 10303e9d6bd4SSunila Sahu break; 1031d7bd42f6SKai Ji #endif 10323e9d6bd4SSunila Sahu err_rsa: 103377411bd6SArek Kusztal BN_clear_free(n); 103477411bd6SArek Kusztal BN_clear_free(e); 103577411bd6SArek Kusztal BN_clear_free(d); 103677411bd6SArek Kusztal BN_clear_free(p); 103777411bd6SArek Kusztal BN_clear_free(q); 103877411bd6SArek Kusztal BN_clear_free(dmp1); 103977411bd6SArek Kusztal BN_clear_free(dmq1); 104077411bd6SArek Kusztal BN_clear_free(iqmp); 10413e9d6bd4SSunila Sahu 10423e9d6bd4SSunila Sahu return -1; 10433e9d6bd4SSunila Sahu } 10443e9d6bd4SSunila Sahu case RTE_CRYPTO_ASYM_XFORM_MODEX: 10453e9d6bd4SSunila Sahu { 10463e9d6bd4SSunila Sahu struct rte_crypto_modex_xform *xfrm = &(xform->modex); 10473e9d6bd4SSunila Sahu 10483e9d6bd4SSunila Sahu BN_CTX *ctx = BN_CTX_new(); 10493e9d6bd4SSunila Sahu if (ctx == NULL) { 10503e9d6bd4SSunila Sahu OPENSSL_LOG(ERR, 10513e9d6bd4SSunila Sahu " failed to allocate resources\n"); 10524c7ae22fSKai Ji return ret; 10533e9d6bd4SSunila Sahu } 10543e9d6bd4SSunila Sahu BN_CTX_start(ctx); 10553e9d6bd4SSunila Sahu BIGNUM *mod = BN_CTX_get(ctx); 10563e9d6bd4SSunila Sahu BIGNUM *exp = BN_CTX_get(ctx); 10573e9d6bd4SSunila Sahu if (mod == NULL || exp == NULL) { 10583e9d6bd4SSunila Sahu BN_CTX_end(ctx); 10593e9d6bd4SSunila Sahu BN_CTX_free(ctx); 10604c7ae22fSKai Ji return ret; 10613e9d6bd4SSunila Sahu } 10623e9d6bd4SSunila Sahu 10633e9d6bd4SSunila Sahu mod = BN_bin2bn((const unsigned char *) 10643e9d6bd4SSunila Sahu xfrm->modulus.data, 10653e9d6bd4SSunila Sahu xfrm->modulus.length, mod); 10663e9d6bd4SSunila Sahu exp = BN_bin2bn((const unsigned char *) 10673e9d6bd4SSunila Sahu xfrm->exponent.data, 10683e9d6bd4SSunila Sahu xfrm->exponent.length, exp); 10693e9d6bd4SSunila Sahu asym_session->u.e.ctx = ctx; 10703e9d6bd4SSunila Sahu asym_session->u.e.mod = mod; 10713e9d6bd4SSunila Sahu asym_session->u.e.exp = exp; 10723e9d6bd4SSunila Sahu asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_MODEX; 10733e9d6bd4SSunila Sahu break; 10743e9d6bd4SSunila Sahu } 10753e9d6bd4SSunila Sahu case RTE_CRYPTO_ASYM_XFORM_MODINV: 10763e9d6bd4SSunila Sahu { 10773e9d6bd4SSunila Sahu struct rte_crypto_modinv_xform *xfrm = &(xform->modinv); 10783e9d6bd4SSunila Sahu 10793e9d6bd4SSunila Sahu BN_CTX *ctx = BN_CTX_new(); 10803e9d6bd4SSunila Sahu if (ctx == NULL) { 10813e9d6bd4SSunila Sahu OPENSSL_LOG(ERR, 10823e9d6bd4SSunila Sahu " failed to allocate resources\n"); 10834c7ae22fSKai Ji return ret; 10843e9d6bd4SSunila Sahu } 10853e9d6bd4SSunila Sahu BN_CTX_start(ctx); 10863e9d6bd4SSunila Sahu BIGNUM *mod = BN_CTX_get(ctx); 10873e9d6bd4SSunila Sahu if (mod == NULL) { 10883e9d6bd4SSunila Sahu BN_CTX_end(ctx); 10893e9d6bd4SSunila Sahu BN_CTX_free(ctx); 10904c7ae22fSKai Ji return ret; 10913e9d6bd4SSunila Sahu } 10923e9d6bd4SSunila Sahu 10933e9d6bd4SSunila Sahu mod = BN_bin2bn((const unsigned char *) 10943e9d6bd4SSunila Sahu xfrm->modulus.data, 10953e9d6bd4SSunila Sahu xfrm->modulus.length, 10963e9d6bd4SSunila Sahu mod); 10973e9d6bd4SSunila Sahu asym_session->u.m.ctx = ctx; 10983e9d6bd4SSunila Sahu asym_session->u.m.modulus = mod; 10993e9d6bd4SSunila Sahu asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_MODINV; 11003e9d6bd4SSunila Sahu break; 11013e9d6bd4SSunila Sahu } 1102ac42813aSSunila Sahu case RTE_CRYPTO_ASYM_XFORM_DH: 1103ac42813aSSunila Sahu { 1104ac42813aSSunila Sahu BIGNUM *p = NULL; 1105ac42813aSSunila Sahu BIGNUM *g = NULL; 1106ac42813aSSunila Sahu 1107ac42813aSSunila Sahu p = BN_bin2bn((const unsigned char *) 1108ac42813aSSunila Sahu xform->dh.p.data, 1109ac42813aSSunila Sahu xform->dh.p.length, 1110ac42813aSSunila Sahu p); 1111ac42813aSSunila Sahu g = BN_bin2bn((const unsigned char *) 1112ac42813aSSunila Sahu xform->dh.g.data, 1113ac42813aSSunila Sahu xform->dh.g.length, 1114ac42813aSSunila Sahu g); 1115ac42813aSSunila Sahu if (!p || !g) 1116ac42813aSSunila Sahu goto err_dh; 1117ac42813aSSunila Sahu 1118c794b40cSKai Ji DH *dh = NULL; 1119c794b40cSKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 1120c794b40cSKai Ji OSSL_PARAM_BLD *param_bld = NULL; 1121c794b40cSKai Ji param_bld = OSSL_PARAM_BLD_new(); 1122c794b40cSKai Ji if (!param_bld) { 1123c794b40cSKai Ji OPENSSL_LOG(ERR, "failed to allocate resources\n"); 1124c794b40cSKai Ji goto err_dh; 1125c794b40cSKai Ji } 1126c794b40cSKai Ji if ((!OSSL_PARAM_BLD_push_utf8_string(param_bld, 1127c794b40cSKai Ji "group", "ffdhe2048", 0)) 1128c794b40cSKai Ji || (!OSSL_PARAM_BLD_push_BN(param_bld, 1129c794b40cSKai Ji OSSL_PKEY_PARAM_FFC_P, p)) 1130c794b40cSKai Ji || (!OSSL_PARAM_BLD_push_BN(param_bld, 1131c794b40cSKai Ji OSSL_PKEY_PARAM_FFC_G, g))) { 1132c794b40cSKai Ji OSSL_PARAM_BLD_free(param_bld); 1133c794b40cSKai Ji goto err_dh; 1134c794b40cSKai Ji } 1135c794b40cSKai Ji 1136c794b40cSKai Ji OSSL_PARAM_BLD *param_bld_peer = NULL; 1137c794b40cSKai Ji param_bld_peer = OSSL_PARAM_BLD_new(); 1138c794b40cSKai Ji if (!param_bld_peer) { 1139c794b40cSKai Ji OPENSSL_LOG(ERR, "failed to allocate resources\n"); 1140c794b40cSKai Ji OSSL_PARAM_BLD_free(param_bld); 1141c794b40cSKai Ji goto err_dh; 1142c794b40cSKai Ji } 1143c794b40cSKai Ji if ((!OSSL_PARAM_BLD_push_utf8_string(param_bld_peer, 1144c794b40cSKai Ji "group", "ffdhe2048", 0)) 1145c794b40cSKai Ji || (!OSSL_PARAM_BLD_push_BN(param_bld_peer, 1146c794b40cSKai Ji OSSL_PKEY_PARAM_FFC_P, p)) 1147c794b40cSKai Ji || (!OSSL_PARAM_BLD_push_BN(param_bld_peer, 1148c794b40cSKai Ji OSSL_PKEY_PARAM_FFC_G, g))) { 1149c794b40cSKai Ji OSSL_PARAM_BLD_free(param_bld); 1150c794b40cSKai Ji OSSL_PARAM_BLD_free(param_bld_peer); 1151c794b40cSKai Ji goto err_dh; 1152c794b40cSKai Ji } 1153c794b40cSKai Ji 1154c794b40cSKai Ji asym_session->u.dh.param_bld = param_bld; 1155c794b40cSKai Ji asym_session->u.dh.param_bld_peer = param_bld_peer; 1156c794b40cSKai Ji #else 1157c794b40cSKai Ji dh = DH_new(); 1158ac42813aSSunila Sahu if (dh == NULL) { 1159ac42813aSSunila Sahu OPENSSL_LOG(ERR, 1160ac42813aSSunila Sahu "failed to allocate resources\n"); 1161ac42813aSSunila Sahu goto err_dh; 1162ac42813aSSunila Sahu } 11630b5284adSAshish Gupta ret = set_dh_params(dh, p, g); 1164ac42813aSSunila Sahu if (ret) { 1165ac42813aSSunila Sahu DH_free(dh); 1166ac42813aSSunila Sahu goto err_dh; 1167ac42813aSSunila Sahu } 1168c794b40cSKai Ji #endif 1169ac42813aSSunila Sahu asym_session->u.dh.dh_key = dh; 1170ac42813aSSunila Sahu asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_DH; 1171ac42813aSSunila Sahu break; 1172ac42813aSSunila Sahu 1173ac42813aSSunila Sahu err_dh: 1174ac42813aSSunila Sahu OPENSSL_LOG(ERR, " failed to set dh params\n"); 1175ac42813aSSunila Sahu BN_free(p); 1176ac42813aSSunila Sahu BN_free(g); 1177ac42813aSSunila Sahu return -1; 1178ac42813aSSunila Sahu } 1179ac42813aSSunila Sahu case RTE_CRYPTO_ASYM_XFORM_DSA: 1180ac42813aSSunila Sahu { 11814c7ae22fSKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 11824c7ae22fSKai Ji BIGNUM *p = NULL, *g = NULL; 11834c7ae22fSKai Ji BIGNUM *q = NULL, *priv_key = NULL; 11844c7ae22fSKai Ji BIGNUM *pub_key = BN_new(); 11854c7ae22fSKai Ji BN_zero(pub_key); 11864c7ae22fSKai Ji OSSL_PARAM_BLD *param_bld = NULL; 11874c7ae22fSKai Ji 11884c7ae22fSKai Ji p = BN_bin2bn((const unsigned char *) 11894c7ae22fSKai Ji xform->dsa.p.data, 11904c7ae22fSKai Ji xform->dsa.p.length, 11914c7ae22fSKai Ji p); 11924c7ae22fSKai Ji 11934c7ae22fSKai Ji g = BN_bin2bn((const unsigned char *) 11944c7ae22fSKai Ji xform->dsa.g.data, 11954c7ae22fSKai Ji xform->dsa.g.length, 11964c7ae22fSKai Ji g); 11974c7ae22fSKai Ji 11984c7ae22fSKai Ji q = BN_bin2bn((const unsigned char *) 11994c7ae22fSKai Ji xform->dsa.q.data, 12004c7ae22fSKai Ji xform->dsa.q.length, 12014c7ae22fSKai Ji q); 12024c7ae22fSKai Ji if (!p || !q || !g) 12034c7ae22fSKai Ji goto err_dsa; 12044c7ae22fSKai Ji 12054c7ae22fSKai Ji priv_key = BN_bin2bn((const unsigned char *) 12064c7ae22fSKai Ji xform->dsa.x.data, 12074c7ae22fSKai Ji xform->dsa.x.length, 12084c7ae22fSKai Ji priv_key); 12094c7ae22fSKai Ji if (priv_key == NULL) 12104c7ae22fSKai Ji goto err_dsa; 12114c7ae22fSKai Ji 12124c7ae22fSKai Ji param_bld = OSSL_PARAM_BLD_new(); 12134c7ae22fSKai Ji if (!param_bld) { 12144c7ae22fSKai Ji OPENSSL_LOG(ERR, "failed to allocate resources\n"); 12154c7ae22fSKai Ji goto err_dsa; 12164c7ae22fSKai Ji } 12174c7ae22fSKai Ji 12184c7ae22fSKai Ji if (!OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_FFC_P, p) 12194c7ae22fSKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_FFC_G, g) 12204c7ae22fSKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_FFC_Q, q) 12214c7ae22fSKai Ji || !OSSL_PARAM_BLD_push_BN(param_bld, OSSL_PKEY_PARAM_PRIV_KEY, priv_key)) { 12224c7ae22fSKai Ji OSSL_PARAM_BLD_free(param_bld); 12234c7ae22fSKai Ji OPENSSL_LOG(ERR, "failed to allocate resources\n"); 12244c7ae22fSKai Ji goto err_dsa; 12254c7ae22fSKai Ji } 12264c7ae22fSKai Ji asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_DSA; 12274c7ae22fSKai Ji asym_session->u.s.param_bld = param_bld; 12284c7ae22fSKai Ji 12294c7ae22fSKai Ji break; 12304c7ae22fSKai Ji #else 1231ac42813aSSunila Sahu BIGNUM *p = NULL, *g = NULL; 1232ac42813aSSunila Sahu BIGNUM *q = NULL, *priv_key = NULL; 1233ac42813aSSunila Sahu BIGNUM *pub_key = BN_new(); 1234ac42813aSSunila Sahu BN_zero(pub_key); 1235ac42813aSSunila Sahu 1236ac42813aSSunila Sahu p = BN_bin2bn((const unsigned char *) 1237ac42813aSSunila Sahu xform->dsa.p.data, 1238ac42813aSSunila Sahu xform->dsa.p.length, 1239ac42813aSSunila Sahu p); 1240ac42813aSSunila Sahu 1241ac42813aSSunila Sahu g = BN_bin2bn((const unsigned char *) 1242ac42813aSSunila Sahu xform->dsa.g.data, 1243ac42813aSSunila Sahu xform->dsa.g.length, 1244ac42813aSSunila Sahu g); 1245ac42813aSSunila Sahu 1246ac42813aSSunila Sahu q = BN_bin2bn((const unsigned char *) 1247ac42813aSSunila Sahu xform->dsa.q.data, 1248ac42813aSSunila Sahu xform->dsa.q.length, 1249ac42813aSSunila Sahu q); 1250ac42813aSSunila Sahu if (!p || !q || !g) 1251ac42813aSSunila Sahu goto err_dsa; 1252ac42813aSSunila Sahu 1253ac42813aSSunila Sahu priv_key = BN_bin2bn((const unsigned char *) 1254ac42813aSSunila Sahu xform->dsa.x.data, 1255ac42813aSSunila Sahu xform->dsa.x.length, 1256ac42813aSSunila Sahu priv_key); 1257ac42813aSSunila Sahu if (priv_key == NULL) 1258ac42813aSSunila Sahu goto err_dsa; 1259ac42813aSSunila Sahu 1260ac42813aSSunila Sahu DSA *dsa = DSA_new(); 1261ac42813aSSunila Sahu if (dsa == NULL) { 1262ac42813aSSunila Sahu OPENSSL_LOG(ERR, 1263ac42813aSSunila Sahu " failed to allocate resources\n"); 1264ac42813aSSunila Sahu goto err_dsa; 1265ac42813aSSunila Sahu } 1266ac42813aSSunila Sahu 12670b5284adSAshish Gupta ret = set_dsa_params(dsa, p, q, g); 1268ac42813aSSunila Sahu if (ret) { 1269ac42813aSSunila Sahu DSA_free(dsa); 1270ac42813aSSunila Sahu OPENSSL_LOG(ERR, "Failed to dsa params\n"); 1271ac42813aSSunila Sahu goto err_dsa; 1272ac42813aSSunila Sahu } 1273ac42813aSSunila Sahu 1274ac42813aSSunila Sahu /* 1275ac42813aSSunila Sahu * openssl 1.1.0 mandate that public key can't be 1276ac42813aSSunila Sahu * NULL in very first call. so set a dummy pub key. 1277ac42813aSSunila Sahu * to keep consistency, lets follow same approach for 1278ac42813aSSunila Sahu * both versions 1279ac42813aSSunila Sahu */ 1280ac42813aSSunila Sahu /* just set dummy public for very 1st call */ 12810b5284adSAshish Gupta ret = set_dsa_keys(dsa, pub_key, priv_key); 1282ac42813aSSunila Sahu if (ret) { 1283ac42813aSSunila Sahu DSA_free(dsa); 1284ac42813aSSunila Sahu OPENSSL_LOG(ERR, "Failed to set keys\n"); 1285ac42813aSSunila Sahu return -1; 1286ac42813aSSunila Sahu } 1287ac42813aSSunila Sahu asym_session->u.s.dsa = dsa; 1288ac42813aSSunila Sahu asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_DSA; 1289ac42813aSSunila Sahu break; 12904c7ae22fSKai Ji #endif 1291ac42813aSSunila Sahu err_dsa: 1292ac42813aSSunila Sahu BN_free(p); 1293ac42813aSSunila Sahu BN_free(q); 1294ac42813aSSunila Sahu BN_free(g); 1295ac42813aSSunila Sahu BN_free(priv_key); 1296ac42813aSSunila Sahu BN_free(pub_key); 1297ac42813aSSunila Sahu return -1; 1298ac42813aSSunila Sahu } 12993b7d638fSGowrishankar Muthukrishnan case RTE_CRYPTO_ASYM_XFORM_SM2: 13003b7d638fSGowrishankar Muthukrishnan { 13013b7d638fSGowrishankar Muthukrishnan #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 130299218c39SGowrishankar Muthukrishnan #ifndef OPENSSL_NO_SM2 13033b7d638fSGowrishankar Muthukrishnan OSSL_PARAM_BLD *param_bld = NULL; 13043b7d638fSGowrishankar Muthukrishnan OSSL_PARAM *params = NULL; 13053b7d638fSGowrishankar Muthukrishnan int ret = -1; 13063b7d638fSGowrishankar Muthukrishnan 13073b7d638fSGowrishankar Muthukrishnan if (xform->sm2.hash != RTE_CRYPTO_AUTH_SM3) 13083b7d638fSGowrishankar Muthukrishnan return -1; 13093b7d638fSGowrishankar Muthukrishnan 13103b7d638fSGowrishankar Muthukrishnan param_bld = OSSL_PARAM_BLD_new(); 13113b7d638fSGowrishankar Muthukrishnan if (!param_bld) { 13123b7d638fSGowrishankar Muthukrishnan OPENSSL_LOG(ERR, "failed to allocate params\n"); 13133b7d638fSGowrishankar Muthukrishnan goto err_sm2; 13143b7d638fSGowrishankar Muthukrishnan } 13153b7d638fSGowrishankar Muthukrishnan 13163b7d638fSGowrishankar Muthukrishnan ret = OSSL_PARAM_BLD_push_utf8_string(param_bld, 13173b7d638fSGowrishankar Muthukrishnan OSSL_ASYM_CIPHER_PARAM_DIGEST, "SM3", 0); 13183b7d638fSGowrishankar Muthukrishnan if (!ret) { 13193b7d638fSGowrishankar Muthukrishnan OPENSSL_LOG(ERR, "failed to push params\n"); 13203b7d638fSGowrishankar Muthukrishnan goto err_sm2; 13213b7d638fSGowrishankar Muthukrishnan } 13223b7d638fSGowrishankar Muthukrishnan 13233b7d638fSGowrishankar Muthukrishnan params = OSSL_PARAM_BLD_to_param(param_bld); 13243b7d638fSGowrishankar Muthukrishnan if (!params) { 13253b7d638fSGowrishankar Muthukrishnan OPENSSL_LOG(ERR, "failed to push params\n"); 13263b7d638fSGowrishankar Muthukrishnan goto err_sm2; 13273b7d638fSGowrishankar Muthukrishnan } 13283b7d638fSGowrishankar Muthukrishnan 13293b7d638fSGowrishankar Muthukrishnan asym_session->u.sm2.params = params; 13303b7d638fSGowrishankar Muthukrishnan OSSL_PARAM_BLD_free(param_bld); 13313b7d638fSGowrishankar Muthukrishnan 13323b7d638fSGowrishankar Muthukrishnan asym_session->xfrm_type = RTE_CRYPTO_ASYM_XFORM_SM2; 13333b7d638fSGowrishankar Muthukrishnan break; 13343b7d638fSGowrishankar Muthukrishnan err_sm2: 13353b7d638fSGowrishankar Muthukrishnan if (param_bld) 13363b7d638fSGowrishankar Muthukrishnan OSSL_PARAM_BLD_free(param_bld); 13373b7d638fSGowrishankar Muthukrishnan 13383b7d638fSGowrishankar Muthukrishnan if (asym_session->u.sm2.params) 13393b7d638fSGowrishankar Muthukrishnan OSSL_PARAM_free(asym_session->u.sm2.params); 13403b7d638fSGowrishankar Muthukrishnan 13413b7d638fSGowrishankar Muthukrishnan return -1; 13426e892f5aSCiara Power #else 134399218c39SGowrishankar Muthukrishnan OPENSSL_LOG(WARNING, "SM2 unsupported in current OpenSSL Version"); 134499218c39SGowrishankar Muthukrishnan return -ENOTSUP; 134599218c39SGowrishankar Muthukrishnan #endif 134699218c39SGowrishankar Muthukrishnan #else 13476e892f5aSCiara Power OPENSSL_LOG(WARNING, "SM2 unsupported for OpenSSL Version < 3.0"); 13486e892f5aSCiara Power return -ENOTSUP; 13493b7d638fSGowrishankar Muthukrishnan #endif 13503b7d638fSGowrishankar Muthukrishnan } 13513e9d6bd4SSunila Sahu default: 13524c7ae22fSKai Ji return ret; 13533e9d6bd4SSunila Sahu } 13543e9d6bd4SSunila Sahu 13553e9d6bd4SSunila Sahu return 0; 13563e9d6bd4SSunila Sahu } 13573e9d6bd4SSunila Sahu 13583e9d6bd4SSunila Sahu /** Configure the session from a crypto xform chain */ 13593e9d6bd4SSunila Sahu static int 13603e9d6bd4SSunila Sahu openssl_pmd_asym_session_configure(struct rte_cryptodev *dev __rte_unused, 13613e9d6bd4SSunila Sahu struct rte_crypto_asym_xform *xform, 13621f1e4b7cSCiara Power struct rte_cryptodev_asym_session *sess) 13633e9d6bd4SSunila Sahu { 13643e9d6bd4SSunila Sahu void *asym_sess_private_data; 13653e9d6bd4SSunila Sahu int ret; 13663e9d6bd4SSunila Sahu 13673e9d6bd4SSunila Sahu if (unlikely(sess == NULL)) { 13683e9d6bd4SSunila Sahu OPENSSL_LOG(ERR, "invalid asymmetric session struct"); 13693e9d6bd4SSunila Sahu return -EINVAL; 13703e9d6bd4SSunila Sahu } 13713e9d6bd4SSunila Sahu 13721f1e4b7cSCiara Power asym_sess_private_data = sess->sess_private_data; 13733e9d6bd4SSunila Sahu ret = openssl_set_asym_session_parameters(asym_sess_private_data, 13743e9d6bd4SSunila Sahu xform); 13753e9d6bd4SSunila Sahu if (ret != 0) { 13763e9d6bd4SSunila Sahu OPENSSL_LOG(ERR, "failed configure session parameters"); 13773e9d6bd4SSunila Sahu return ret; 13783e9d6bd4SSunila Sahu } 13793e9d6bd4SSunila Sahu 13803e9d6bd4SSunila Sahu return 0; 13813e9d6bd4SSunila Sahu } 13828a9867a6SSlawomir Mrozowicz 13838a9867a6SSlawomir Mrozowicz /** Clear the memory of session so it doesn't leave key material behind */ 13848a9867a6SSlawomir Mrozowicz static void 1385bdce2564SAkhil Goyal openssl_pmd_sym_session_clear(struct rte_cryptodev *dev __rte_unused, 1386b3bbd9e5SSlawomir Mrozowicz struct rte_cryptodev_sym_session *sess) 13878a9867a6SSlawomir Mrozowicz { 13882a440d6aSAkhil Goyal void *sess_priv = CRYPTODEV_GET_SYM_SESS_PRIV(sess); 1389b3bbd9e5SSlawomir Mrozowicz 1390b3bbd9e5SSlawomir Mrozowicz /* Zero out the whole structure */ 1391b3bbd9e5SSlawomir Mrozowicz openssl_reset_session(sess_priv); 13928a9867a6SSlawomir Mrozowicz } 13938a9867a6SSlawomir Mrozowicz 13943e9d6bd4SSunila Sahu static void openssl_reset_asym_session(struct openssl_asym_session *sess) 13953e9d6bd4SSunila Sahu { 13963e9d6bd4SSunila Sahu switch (sess->xfrm_type) { 13973e9d6bd4SSunila Sahu case RTE_CRYPTO_ASYM_XFORM_RSA: 1398d7bd42f6SKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 1399d7bd42f6SKai Ji if (sess->u.r.ctx) 1400d7bd42f6SKai Ji EVP_PKEY_CTX_free(sess->u.r.ctx); 1401d7bd42f6SKai Ji #else 14023e9d6bd4SSunila Sahu if (sess->u.r.rsa) 14033e9d6bd4SSunila Sahu RSA_free(sess->u.r.rsa); 1404d7bd42f6SKai Ji #endif 14053e9d6bd4SSunila Sahu break; 14063e9d6bd4SSunila Sahu case RTE_CRYPTO_ASYM_XFORM_MODEX: 14073e9d6bd4SSunila Sahu if (sess->u.e.ctx) { 14083e9d6bd4SSunila Sahu BN_CTX_end(sess->u.e.ctx); 14093e9d6bd4SSunila Sahu BN_CTX_free(sess->u.e.ctx); 14103e9d6bd4SSunila Sahu } 14113e9d6bd4SSunila Sahu break; 14123e9d6bd4SSunila Sahu case RTE_CRYPTO_ASYM_XFORM_MODINV: 14133e9d6bd4SSunila Sahu if (sess->u.m.ctx) { 14143e9d6bd4SSunila Sahu BN_CTX_end(sess->u.m.ctx); 14153e9d6bd4SSunila Sahu BN_CTX_free(sess->u.m.ctx); 14163e9d6bd4SSunila Sahu } 14173e9d6bd4SSunila Sahu break; 1418ac42813aSSunila Sahu case RTE_CRYPTO_ASYM_XFORM_DH: 1419c794b40cSKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 1420c794b40cSKai Ji sess->u.dh.param_bld = NULL; 1421c794b40cSKai Ji sess->u.dh.param_bld_peer = NULL; 1422c794b40cSKai Ji #else 1423ac42813aSSunila Sahu if (sess->u.dh.dh_key) 1424ac42813aSSunila Sahu DH_free(sess->u.dh.dh_key); 1425c794b40cSKai Ji #endif 1426ac42813aSSunila Sahu break; 1427ac42813aSSunila Sahu case RTE_CRYPTO_ASYM_XFORM_DSA: 14284c7ae22fSKai Ji #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 14294c7ae22fSKai Ji sess->u.s.param_bld = NULL; 14304c7ae22fSKai Ji #else 1431ac42813aSSunila Sahu if (sess->u.s.dsa) 1432ac42813aSSunila Sahu DSA_free(sess->u.s.dsa); 14334c7ae22fSKai Ji #endif 1434ac42813aSSunila Sahu break; 14353b7d638fSGowrishankar Muthukrishnan case RTE_CRYPTO_ASYM_XFORM_SM2: 14363b7d638fSGowrishankar Muthukrishnan #if (OPENSSL_VERSION_NUMBER >= 0x30000000L) 14373b7d638fSGowrishankar Muthukrishnan OSSL_PARAM_free(sess->u.sm2.params); 14383b7d638fSGowrishankar Muthukrishnan #endif 14393e9d6bd4SSunila Sahu default: 14403e9d6bd4SSunila Sahu break; 14413e9d6bd4SSunila Sahu } 14423e9d6bd4SSunila Sahu } 14433e9d6bd4SSunila Sahu 14443e9d6bd4SSunila Sahu /** Clear the memory of asymmetric session 14453e9d6bd4SSunila Sahu * so it doesn't leave key material behind 14463e9d6bd4SSunila Sahu */ 14473e9d6bd4SSunila Sahu static void 14481f1e4b7cSCiara Power openssl_pmd_asym_session_clear(struct rte_cryptodev *dev __rte_unused, 14493e9d6bd4SSunila Sahu struct rte_cryptodev_asym_session *sess) 14503e9d6bd4SSunila Sahu { 14511f1e4b7cSCiara Power void *sess_priv = sess->sess_private_data; 14523e9d6bd4SSunila Sahu 14533e9d6bd4SSunila Sahu /* Zero out the whole structure */ 14543e9d6bd4SSunila Sahu if (sess_priv) { 14553e9d6bd4SSunila Sahu openssl_reset_asym_session(sess_priv); 14563e9d6bd4SSunila Sahu memset(sess_priv, 0, sizeof(struct openssl_asym_session)); 14573e9d6bd4SSunila Sahu } 14583e9d6bd4SSunila Sahu } 14593e9d6bd4SSunila Sahu 14608a9867a6SSlawomir Mrozowicz struct rte_cryptodev_ops openssl_pmd_ops = { 14618a9867a6SSlawomir Mrozowicz .dev_configure = openssl_pmd_config, 14628a9867a6SSlawomir Mrozowicz .dev_start = openssl_pmd_start, 14638a9867a6SSlawomir Mrozowicz .dev_stop = openssl_pmd_stop, 14648a9867a6SSlawomir Mrozowicz .dev_close = openssl_pmd_close, 14658a9867a6SSlawomir Mrozowicz 14668a9867a6SSlawomir Mrozowicz .stats_get = openssl_pmd_stats_get, 14678a9867a6SSlawomir Mrozowicz .stats_reset = openssl_pmd_stats_reset, 14688a9867a6SSlawomir Mrozowicz 14698a9867a6SSlawomir Mrozowicz .dev_infos_get = openssl_pmd_info_get, 14708a9867a6SSlawomir Mrozowicz 14718a9867a6SSlawomir Mrozowicz .queue_pair_setup = openssl_pmd_qp_setup, 14728a9867a6SSlawomir Mrozowicz .queue_pair_release = openssl_pmd_qp_release, 14738a9867a6SSlawomir Mrozowicz 1474012c5076SPablo de Lara .sym_session_get_size = openssl_pmd_sym_session_get_size, 14753e9d6bd4SSunila Sahu .asym_session_get_size = openssl_pmd_asym_session_get_size, 1476012c5076SPablo de Lara .sym_session_configure = openssl_pmd_sym_session_configure, 14773e9d6bd4SSunila Sahu .asym_session_configure = openssl_pmd_asym_session_configure, 14783e9d6bd4SSunila Sahu .sym_session_clear = openssl_pmd_sym_session_clear, 14793e9d6bd4SSunila Sahu .asym_session_clear = openssl_pmd_asym_session_clear 14808a9867a6SSlawomir Mrozowicz }; 14818a9867a6SSlawomir Mrozowicz 14828a9867a6SSlawomir Mrozowicz struct rte_cryptodev_ops *rte_openssl_pmd_ops = &openssl_pmd_ops; 1483