4 * Copyright(c) 2015-2016 Intel Corporation. All rights reserved.
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
11 * * Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * * Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in
15 * the documentation and/or other materials provided with the
17 * * Neither the name of Intel Corporation nor the names of its
18 * contributors may be used to endorse or promote products derived
19 * from this software without specific prior written permission.
21 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
22 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
23 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
24 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
25 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
26 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
27 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
28 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
29 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
30 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
31 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
40 #include <sys/queue.h>
43 #include <rte_common.h>
45 #include <rte_debug.h>
46 #include <rte_memory.h>
47 #include <rte_memzone.h>
48 #include <rte_tailq.h>
49 #include <rte_ether.h>
50 #include <rte_malloc.h>
51 #include <rte_launch.h>
53 #include <rte_per_lcore.h>
54 #include <rte_lcore.h>
55 #include <rte_atomic.h>
56 #include <rte_branch_prediction.h>
58 #include <rte_mempool.h>
60 #include <rte_string_fns.h>
61 #include <rte_spinlock.h>
62 #include <rte_hexdump.h>
66 #include "qat_crypto.h"
67 #include "adf_transport_access_macros.h"
70 static inline uint32_t
71 adf_modulo(uint32_t data, uint32_t shift);
74 qat_write_hw_desc_entry(struct rte_crypto_op *op, uint8_t *out_msg);
76 void qat_crypto_sym_clear_session(struct rte_cryptodev *dev,
79 struct qat_session *sess = session;
80 phys_addr_t cd_paddr = sess->cd_paddr;
82 PMD_INIT_FUNC_TRACE();
84 memset(sess, 0, qat_crypto_sym_get_session_private_size(dev));
86 sess->cd_paddr = cd_paddr;
91 qat_get_cmd_id(const struct rte_crypto_sym_xform *xform)
93 if (xform->next == NULL)
97 if (xform->type == RTE_CRYPTO_SYM_XFORM_CIPHER && xform->next == NULL)
98 return -1; /* return ICP_QAT_FW_LA_CMD_CIPHER; */
100 /* Authentication Only */
101 if (xform->type == RTE_CRYPTO_SYM_XFORM_AUTH && xform->next == NULL)
102 return -1; /* return ICP_QAT_FW_LA_CMD_AUTH; */
104 /* Cipher then Authenticate */
105 if (xform->type == RTE_CRYPTO_SYM_XFORM_CIPHER &&
106 xform->next->type == RTE_CRYPTO_SYM_XFORM_AUTH)
107 return ICP_QAT_FW_LA_CMD_CIPHER_HASH;
109 /* Authenticate then Cipher */
110 if (xform->type == RTE_CRYPTO_SYM_XFORM_AUTH &&
111 xform->next->type == RTE_CRYPTO_SYM_XFORM_CIPHER)
112 return ICP_QAT_FW_LA_CMD_HASH_CIPHER;
117 static struct rte_crypto_auth_xform *
118 qat_get_auth_xform(struct rte_crypto_sym_xform *xform)
121 if (xform->type == RTE_CRYPTO_SYM_XFORM_AUTH)
130 static struct rte_crypto_cipher_xform *
131 qat_get_cipher_xform(struct rte_crypto_sym_xform *xform)
134 if (xform->type == RTE_CRYPTO_SYM_XFORM_CIPHER)
135 return &xform->cipher;
145 qat_crypto_sym_configure_session(struct rte_cryptodev *dev,
146 struct rte_crypto_sym_xform *xform, void *session_private)
148 struct qat_pmd_private *internals = dev->data->dev_private;
150 struct qat_session *session = session_private;
152 struct rte_crypto_auth_xform *auth_xform = NULL;
153 struct rte_crypto_cipher_xform *cipher_xform = NULL;
157 PMD_INIT_FUNC_TRACE();
159 /* Get requested QAT command id */
160 qat_cmd_id = qat_get_cmd_id(xform);
161 if (qat_cmd_id < 0 || qat_cmd_id >= ICP_QAT_FW_LA_CMD_DELIMITER) {
162 PMD_DRV_LOG(ERR, "Unsupported xform chain requested");
165 session->qat_cmd = (enum icp_qat_fw_la_cmd_id)qat_cmd_id;
167 /* Get cipher xform from crypto xform chain */
168 cipher_xform = qat_get_cipher_xform(xform);
170 switch (cipher_xform->algo) {
171 case RTE_CRYPTO_CIPHER_AES_CBC:
172 if (qat_alg_validate_aes_key(cipher_xform->key.length,
173 &session->qat_cipher_alg) != 0) {
174 PMD_DRV_LOG(ERR, "Invalid AES cipher key size");
177 session->qat_mode = ICP_QAT_HW_CIPHER_CBC_MODE;
179 case RTE_CRYPTO_CIPHER_AES_GCM:
180 if (qat_alg_validate_aes_key(cipher_xform->key.length,
181 &session->qat_cipher_alg) != 0) {
182 PMD_DRV_LOG(ERR, "Invalid AES cipher key size");
185 session->qat_mode = ICP_QAT_HW_CIPHER_CTR_MODE;
187 case RTE_CRYPTO_CIPHER_NULL:
188 case RTE_CRYPTO_CIPHER_3DES_ECB:
189 case RTE_CRYPTO_CIPHER_3DES_CBC:
190 case RTE_CRYPTO_CIPHER_AES_ECB:
191 case RTE_CRYPTO_CIPHER_AES_CTR:
192 case RTE_CRYPTO_CIPHER_AES_CCM:
193 case RTE_CRYPTO_CIPHER_KASUMI_F8:
194 PMD_DRV_LOG(ERR, "Crypto: Unsupported Cipher alg %u",
198 PMD_DRV_LOG(ERR, "Crypto: Undefined Cipher specified %u\n",
203 if (cipher_xform->op == RTE_CRYPTO_CIPHER_OP_ENCRYPT)
204 session->qat_dir = ICP_QAT_HW_CIPHER_ENCRYPT;
206 session->qat_dir = ICP_QAT_HW_CIPHER_DECRYPT;
209 /* Get authentication xform from Crypto xform chain */
210 auth_xform = qat_get_auth_xform(xform);
212 switch (auth_xform->algo) {
213 case RTE_CRYPTO_AUTH_SHA1_HMAC:
214 session->qat_hash_alg = ICP_QAT_HW_AUTH_ALGO_SHA1;
216 case RTE_CRYPTO_AUTH_SHA256_HMAC:
217 session->qat_hash_alg = ICP_QAT_HW_AUTH_ALGO_SHA256;
219 case RTE_CRYPTO_AUTH_SHA512_HMAC:
220 session->qat_hash_alg = ICP_QAT_HW_AUTH_ALGO_SHA512;
222 case RTE_CRYPTO_AUTH_AES_XCBC_MAC:
223 session->qat_hash_alg = ICP_QAT_HW_AUTH_ALGO_AES_XCBC_MAC;
225 case RTE_CRYPTO_AUTH_AES_GCM:
226 case RTE_CRYPTO_AUTH_AES_GMAC:
227 session->qat_hash_alg = ICP_QAT_HW_AUTH_ALGO_GALOIS_128;
229 case RTE_CRYPTO_AUTH_NULL:
230 case RTE_CRYPTO_AUTH_SHA1:
231 case RTE_CRYPTO_AUTH_SHA256:
232 case RTE_CRYPTO_AUTH_SHA512:
233 case RTE_CRYPTO_AUTH_SHA224:
234 case RTE_CRYPTO_AUTH_SHA224_HMAC:
235 case RTE_CRYPTO_AUTH_SHA384:
236 case RTE_CRYPTO_AUTH_SHA384_HMAC:
237 case RTE_CRYPTO_AUTH_MD5:
238 case RTE_CRYPTO_AUTH_MD5_HMAC:
239 case RTE_CRYPTO_AUTH_AES_CCM:
240 case RTE_CRYPTO_AUTH_KASUMI_F9:
241 case RTE_CRYPTO_AUTH_SNOW3G_UIA2:
242 case RTE_CRYPTO_AUTH_AES_CMAC:
243 case RTE_CRYPTO_AUTH_AES_CBC_MAC:
244 case RTE_CRYPTO_AUTH_ZUC_EIA3:
245 PMD_DRV_LOG(ERR, "Crypto: Unsupported hash alg %u",
249 PMD_DRV_LOG(ERR, "Crypto: Undefined Hash algo %u specified",
254 if (qat_alg_aead_session_create_content_desc(session,
255 cipher_xform->key.data,
256 cipher_xform->key.length,
257 auth_xform->key.data,
258 auth_xform->key.length,
259 auth_xform->add_auth_data_length,
260 auth_xform->digest_length))
263 return (struct rte_crypto_sym_session *)session;
266 rte_mempool_put(internals->sess_mp, session);
270 unsigned qat_crypto_sym_get_session_private_size(
271 struct rte_cryptodev *dev __rte_unused)
273 return RTE_ALIGN_CEIL(sizeof(struct qat_session), 8);
278 qat_pmd_enqueue_op_burst(void *qp, struct rte_crypto_op **ops,
281 register struct qat_queue *queue;
282 struct qat_qp *tmp_qp = (struct qat_qp *)qp;
283 register uint32_t nb_ops_sent = 0;
284 register struct rte_crypto_op **cur_op = ops;
286 uint16_t nb_ops_possible = nb_ops;
287 register uint8_t *base_addr;
288 register uint32_t tail;
291 /* read params used a lot in main loop into registers */
292 queue = &(tmp_qp->tx_q);
293 base_addr = (uint8_t *)queue->base_addr;
296 /* Find how many can actually fit on the ring */
297 overflow = rte_atomic16_add_return(&tmp_qp->inflights16, nb_ops)
298 - queue->max_inflights;
300 rte_atomic16_sub(&tmp_qp->inflights16, overflow);
301 nb_ops_possible = nb_ops - overflow;
302 if (nb_ops_possible == 0)
306 while (nb_ops_sent != nb_ops_possible) {
307 ret = qat_write_hw_desc_entry(*cur_op, base_addr + tail);
309 tmp_qp->stats.enqueue_err_count++;
310 if (nb_ops_sent == 0)
315 tail = adf_modulo(tail + queue->msg_size, queue->modulo);
320 WRITE_CSR_RING_TAIL(tmp_qp->mmap_bar_addr, queue->hw_bundle_number,
321 queue->hw_queue_number, tail);
323 tmp_qp->stats.enqueued_count += nb_ops_sent;
328 qat_pmd_dequeue_op_burst(void *qp, struct rte_crypto_op **ops,
331 struct qat_queue *queue;
332 struct qat_qp *tmp_qp = (struct qat_qp *)qp;
333 uint32_t msg_counter = 0;
334 struct rte_crypto_op *rx_op;
335 struct icp_qat_fw_comn_resp *resp_msg;
337 queue = &(tmp_qp->rx_q);
338 resp_msg = (struct icp_qat_fw_comn_resp *)
339 ((uint8_t *)queue->base_addr + queue->head);
341 while (*(uint32_t *)resp_msg != ADF_RING_EMPTY_SIG &&
342 msg_counter != nb_ops) {
343 rx_op = (struct rte_crypto_op *)(uintptr_t)
344 (resp_msg->opaque_data);
346 #ifdef RTE_LIBRTE_PMD_QAT_DEBUG_RX
347 rte_hexdump(stdout, "qat_response:", (uint8_t *)resp_msg,
348 sizeof(struct icp_qat_fw_comn_resp));
350 if (ICP_QAT_FW_COMN_STATUS_FLAG_OK !=
351 ICP_QAT_FW_COMN_RESP_CRYPTO_STAT_GET(
352 resp_msg->comn_hdr.comn_status)) {
353 rx_op->status = RTE_CRYPTO_OP_STATUS_AUTH_FAILED;
355 rx_op->status = RTE_CRYPTO_OP_STATUS_SUCCESS;
357 *(uint32_t *)resp_msg = ADF_RING_EMPTY_SIG;
358 queue->head = adf_modulo(queue->head +
360 ADF_RING_SIZE_MODULO(queue->queue_size));
361 resp_msg = (struct icp_qat_fw_comn_resp *)
362 ((uint8_t *)queue->base_addr +
368 if (msg_counter > 0) {
369 WRITE_CSR_RING_HEAD(tmp_qp->mmap_bar_addr,
370 queue->hw_bundle_number,
371 queue->hw_queue_number, queue->head);
372 rte_atomic16_sub(&tmp_qp->inflights16, msg_counter);
373 tmp_qp->stats.dequeued_count += msg_counter;
379 qat_write_hw_desc_entry(struct rte_crypto_op *op, uint8_t *out_msg)
381 struct qat_session *ctx;
382 struct icp_qat_fw_la_cipher_req_params *cipher_param;
383 struct icp_qat_fw_la_auth_req_params *auth_param;
384 register struct icp_qat_fw_la_bulk_req *qat_req;
386 #ifdef RTE_LIBRTE_PMD_QAT_DEBUG_TX
387 if (unlikely(op->type != RTE_CRYPTO_OP_TYPE_SYMMETRIC)) {
388 PMD_DRV_LOG(ERR, "QAT PMD only supports symmetric crypto "
389 "operation requests, op (%p) is not a "
390 "symmetric operation.", op);
394 if (unlikely(op->sym->type == RTE_CRYPTO_SYM_OP_SESSIONLESS)) {
395 PMD_DRV_LOG(ERR, "QAT PMD only supports session oriented"
396 " requests, op (%p) is sessionless.", op);
400 if (unlikely(op->sym->session->type != RTE_CRYPTODEV_QAT_SYM_PMD)) {
401 PMD_DRV_LOG(ERR, "Session was not created for this device");
405 ctx = (struct qat_session *)op->sym->session->_private;
406 qat_req = (struct icp_qat_fw_la_bulk_req *)out_msg;
407 *qat_req = ctx->fw_req;
408 qat_req->comn_mid.opaque_data = (uint64_t)(uintptr_t)op;
411 * The following code assumes:
412 * - single entry buffer.
415 qat_req->comn_mid.dst_length =
416 qat_req->comn_mid.src_length =
417 rte_pktmbuf_data_len(op->sym->m_src);
418 qat_req->comn_mid.dest_data_addr =
419 qat_req->comn_mid.src_data_addr =
420 rte_pktmbuf_mtophys(op->sym->m_src);
421 cipher_param = (void *)&qat_req->serv_specif_rqpars;
422 auth_param = (void *)((uint8_t *)cipher_param + sizeof(*cipher_param));
424 cipher_param->cipher_length = op->sym->cipher.data.length;
425 cipher_param->cipher_offset = op->sym->cipher.data.offset;
426 if (op->sym->cipher.iv.length && (op->sym->cipher.iv.length <=
427 sizeof(cipher_param->u.cipher_IV_array))) {
428 rte_memcpy(cipher_param->u.cipher_IV_array,
429 op->sym->cipher.iv.data,
430 op->sym->cipher.iv.length);
432 ICP_QAT_FW_LA_CIPH_IV_FLD_FLAG_SET(
433 qat_req->comn_hdr.serv_specif_flags,
434 ICP_QAT_FW_CIPH_IV_64BIT_PTR);
435 cipher_param->u.s.cipher_IV_ptr = op->sym->cipher.iv.phys_addr;
437 if (op->sym->auth.digest.phys_addr) {
438 ICP_QAT_FW_LA_DIGEST_IN_BUFFER_SET(
439 qat_req->comn_hdr.serv_specif_flags,
440 ICP_QAT_FW_LA_NO_DIGEST_IN_BUFFER);
441 auth_param->auth_res_addr = op->sym->auth.digest.phys_addr;
443 auth_param->auth_off = op->sym->auth.data.offset;
444 auth_param->auth_len = op->sym->auth.data.length;
446 auth_param->u1.aad_adr = op->sym->auth.aad.phys_addr;
447 /* (GCM) aad length(240 max) will be at this location after precompute */
448 if (ctx->qat_hash_alg == ICP_QAT_HW_AUTH_ALGO_GALOIS_128 ||
449 ctx->qat_hash_alg == ICP_QAT_HW_AUTH_ALGO_GALOIS_64) {
450 auth_param->u2.aad_sz =
451 ALIGN_POW2_ROUNDUP(ctx->cd.hash.sha.state1[
452 ICP_QAT_HW_GALOIS_128_STATE1_SZ +
453 ICP_QAT_HW_GALOIS_H_SZ + 3], 16);
455 auth_param->hash_state_sz = (auth_param->u2.aad_sz) >> 3;
458 #ifdef RTE_LIBRTE_PMD_QAT_DEBUG_TX
459 rte_hexdump(stdout, "qat_req:", qat_req,
460 sizeof(struct icp_qat_fw_la_bulk_req));
461 rte_hexdump(stdout, "src_data:",
462 rte_pktmbuf_mtod(op->sym->m_src, uint8_t*),
463 rte_pktmbuf_data_len(op->sym->m_src));
464 rte_hexdump(stdout, "iv:", op->sym->cipher.iv.data,
465 op->sym->cipher.iv.length);
466 rte_hexdump(stdout, "digest:", op->sym->auth.digest.data,
467 op->sym->auth.digest.length);
468 rte_hexdump(stdout, "aad:", op->sym->auth.aad.data,
469 op->sym->auth.aad.length);
474 static inline uint32_t adf_modulo(uint32_t data, uint32_t shift)
476 uint32_t div = data >> shift;
477 uint32_t mult = div << shift;
482 void qat_crypto_sym_session_init(struct rte_mempool *mp, void *priv_sess)
484 struct qat_session *s = priv_sess;
486 PMD_INIT_FUNC_TRACE();
487 s->cd_paddr = rte_mempool_virt2phy(mp, &s->cd);
490 int qat_dev_config(__rte_unused struct rte_cryptodev *dev)
492 PMD_INIT_FUNC_TRACE();
496 int qat_dev_start(__rte_unused struct rte_cryptodev *dev)
498 PMD_INIT_FUNC_TRACE();
502 void qat_dev_stop(__rte_unused struct rte_cryptodev *dev)
504 PMD_INIT_FUNC_TRACE();
507 int qat_dev_close(struct rte_cryptodev *dev)
511 PMD_INIT_FUNC_TRACE();
513 for (i = 0; i < dev->data->nb_queue_pairs; i++) {
514 ret = qat_crypto_sym_qp_release(dev, i);
522 void qat_dev_info_get(__rte_unused struct rte_cryptodev *dev,
523 struct rte_cryptodev_info *info)
525 struct qat_pmd_private *internals = dev->data->dev_private;
527 PMD_INIT_FUNC_TRACE();
529 info->max_nb_queue_pairs =
530 ADF_NUM_SYM_QPS_PER_BUNDLE *
531 ADF_NUM_BUNDLES_PER_DEV;
533 info->sym.max_nb_sessions = internals->max_nb_sessions;
534 info->dev_type = RTE_CRYPTODEV_QAT_SYM_PMD;
538 void qat_crypto_sym_stats_get(struct rte_cryptodev *dev,
539 struct rte_cryptodev_stats *stats)
542 struct qat_qp **qp = (struct qat_qp **)(dev->data->queue_pairs);
544 PMD_INIT_FUNC_TRACE();
546 PMD_DRV_LOG(ERR, "invalid stats ptr NULL");
549 for (i = 0; i < dev->data->nb_queue_pairs; i++) {
551 PMD_DRV_LOG(DEBUG, "Uninitialised queue pair");
555 stats->enqueued_count += qp[i]->stats.enqueued_count;
556 stats->dequeued_count += qp[i]->stats.enqueued_count;
557 stats->enqueue_err_count += qp[i]->stats.enqueue_err_count;
558 stats->dequeue_err_count += qp[i]->stats.enqueue_err_count;
562 void qat_crypto_sym_stats_reset(struct rte_cryptodev *dev)
565 struct qat_qp **qp = (struct qat_qp **)(dev->data->queue_pairs);
567 PMD_INIT_FUNC_TRACE();
568 for (i = 0; i < dev->data->nb_queue_pairs; i++)
569 memset(&(qp[i]->stats), 0, sizeof(qp[i]->stats));
570 PMD_DRV_LOG(DEBUG, "QAT crypto: stats cleared");