2 *------------------------------------------------------------------
3 * Copyright (c) 2019 Cisco and/or its affiliates.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at:
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 *------------------------------------------------------------------
18 #include <vlib/vlib.h>
19 #include <vnet/plugin/plugin.h>
20 #include <vnet/crypto/crypto.h>
21 #include <crypto_ia32/crypto_ia32.h>
22 #include <crypto_ia32/aesni.h>
24 crypto_ia32_main_t crypto_ia32_main;
27 crypto_ia32_key_handler (vlib_main_t * vm, vnet_crypto_key_op_t kop,
28 vnet_crypto_key_index_t idx)
30 vnet_crypto_key_t *key = vnet_crypto_get_key (idx);
31 crypto_ia32_main_t *cm = &crypto_ia32_main;
36 case VNET_CRYPTO_ALG_AES_128_CBC:
37 case VNET_CRYPTO_ALG_AES_192_CBC:
38 case VNET_CRYPTO_ALG_AES_256_CBC:
44 if (kop == VNET_CRYPTO_KEY_OP_DEL)
46 if (idx >= vec_len (cm->key_data))
49 if (cm->key_data[idx] == 0)
52 clib_memset_u8 (cm->key_data[idx], 0,
53 clib_mem_size (cm->key_data[idx]));
54 clib_mem_free (cm->key_data[idx]);
55 cm->key_data[idx] = 0;
59 vec_validate_aligned (cm->key_data, idx, CLIB_CACHE_LINE_BYTES);
61 if (kop == VNET_CRYPTO_KEY_OP_MODIFY && cm->key_data[idx])
63 clib_memset_u8 (cm->key_data[idx], 0,
64 clib_mem_size (cm->key_data[idx]));
65 clib_mem_free (cm->key_data[idx]);
68 kd = cm->key_data[idx] = clib_mem_alloc_aligned (sizeof (aesni_key_data_t),
69 CLIB_CACHE_LINE_BYTES);
74 case VNET_CRYPTO_ALG_AES_128_CBC:
75 aes_key_expand (kd->encrypt_key, key->data, AESNI_KEY_128);
76 aes_key_expand (kd->decrypt_key, key->data, AESNI_KEY_128);
77 aes_key_enc_to_dec (kd->decrypt_key, AESNI_KEY_128);
79 case VNET_CRYPTO_ALG_AES_192_CBC:
80 aes_key_expand (kd->encrypt_key, key->data, AESNI_KEY_192);
81 aes_key_expand (kd->decrypt_key, key->data, AESNI_KEY_192);
82 aes_key_enc_to_dec (kd->decrypt_key, AESNI_KEY_192);
84 case VNET_CRYPTO_ALG_AES_256_CBC:
85 aes_key_expand (kd->encrypt_key, key->data, AESNI_KEY_256);
86 aes_key_expand (kd->decrypt_key, key->data, AESNI_KEY_256);
87 aes_key_enc_to_dec (kd->decrypt_key, AESNI_KEY_256);
96 crypto_ia32_init (vlib_main_t * vm)
98 crypto_ia32_main_t *cm = &crypto_ia32_main;
99 vlib_thread_main_t *tm = vlib_get_thread_main ();
102 if ((error = vlib_call_init_function (vm, vnet_crypto_init)))
105 vec_validate_aligned (cm->per_thread_data, tm->n_vlib_mains - 1,
106 CLIB_CACHE_LINE_BYTES);
108 cm->crypto_engine_index =
109 vnet_crypto_register_engine (vm, "ia32", 100,
110 "Intel IA32 ISA Optimized Crypto");
112 if (clib_cpu_supports_x86_aes () &&
113 (error = crypto_ia32_aesni_cbc_init (vm)))
116 vnet_crypto_register_key_handler (vm, cm->crypto_engine_index,
117 crypto_ia32_key_handler);
122 vec_free (cm->per_thread_data);
127 VLIB_INIT_FUNCTION (crypto_ia32_init);
129 #include <vpp/app/version.h>
132 VLIB_PLUGIN_REGISTER () = {
133 .version = VPP_BUILD_VER,
134 .description = "Intel IA32 Software Crypto Engine",
139 * fd.io coding-style-patch-verification: ON
142 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob