From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <akhil.goyal@nxp.com>
Received: from EUR01-HE1-obe.outbound.protection.outlook.com
 (mail-he1eur01on0041.outbound.protection.outlook.com [104.47.0.41])
 by dpdk.org (Postfix) with ESMTP id 68CE31B1E9
 for <dev@dpdk.org>; Fri,  5 Oct 2018 15:38:38 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nxp.com; s=selector1; 
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=nxJKib4s6GqqK1tI21jGlddPNho0Yzow9naHG2+bxig=;
 b=Ec0S7caSUTuTZXS/xNS0Inl3s40bekMc7tizFR/S2HXy4lGOqN1z5wvT270BNvaMVfn6H0Co/XI3BjgslbcK70tSV7zTqJzucPfmfAvndL2jJdHJ/LxCojfNEQFxFUi6+Mei2L9idMS5t1N+oLXUpAzu10cssiVT3l6Znc3mTvs=
Authentication-Results: spf=none (sender IP is )
 smtp.mailfrom=akhil.goyal@nxp.com; 
Received: from GDB1.ap.freescale.net (14.143.30.134) by
 DB7PR04MB4891.eurprd04.prod.outlook.com (2603:10a6:10:18::22) with Microsoft
 SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.1207.23; Fri, 5 Oct 2018 13:38:26 +0000
From: akhil.goyal@nxp.com
To: dev@dpdk.org
Cc: pablo.de.lara.guarch@intel.com, radu.nicolau@intel.com,
 jerin.jacob@caviumnetworks.com, narayanaprasad.athreya@caviumnetworks.com,
 Shally.Verma@caviumnetworks.com, Anoob.Joseph@caviumnetworks.com,
 Vidya.Velumuri@caviumnetworks.com, hemant.agrawal@nxp.com,
 Akhil Goyal <akhil.goyal@nxp.com>
Date: Fri,  5 Oct 2018 19:03:44 +0530
Message-Id: <20181005133344.6115-4-akhil.goyal@nxp.com>
X-Mailer: git-send-email 2.17.1
In-Reply-To: <20181005133344.6115-1-akhil.goyal@nxp.com>
References: <20180828130105.30779-1-akhil.goyal@nxp.com>
 <20181005133344.6115-1-akhil.goyal@nxp.com>
MIME-Version: 1.0
Content-Type: text/plain
X-Originating-IP: [14.143.30.134]
X-ClientProxiedBy: TYAPR01CA0145.jpnprd01.prod.outlook.com
 (2603:1096:404:7e::13) To DB7PR04MB4891.eurprd04.prod.outlook.com
 (2603:10a6:10:18::22)
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 4a230e3f-b908-4436-9035-08d62ac7d6d6
X-MS-Office365-Filtering-HT: Tenant
X-Microsoft-Antispam: BCL:0; PCL:0;
 RULEID:(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(4618075)(2017052603328)(7153060)(7193020);
 SRVR:DB7PR04MB4891; 
X-Microsoft-Exchange-Diagnostics: 1; DB7PR04MB4891;
 3:B3KSz6KGqHAJwBQpUIozDB92qJcZLfdOUZqEUT3sV/boVFwCc29z7FhMBOh7rBdVYmQ9ZhOpAjaXaLS5XMPqjVyZ8gu2wTO/l4FInI33UZ9sUOnLHpGayirFlPyMsDVq3aobpkgvkoH8Ifc7/QraDYtN8AFq6CntSIWu6/FHG2n//dHQn33CnAG49by5QLRT+Vh+2mXJpuCGhPbbRERXhaU4SVz09BSy54khXRI+JKqRipjJtlzAuKfOns5sjKTr;
 25:svJWlk0HpGfSlthWEiRpGo3YXB1MvGJn9bnFiT8LDFzpSiMe96Huo3sm1qsjCzFX+v/TZPlIZJDViw+DbRSfK7u4NbVNnmUHqje1RKvLZfmdq1m2BuR7vo4h7Vi4PP77/ajcLKJ+KFVasywfa07s3LcdtxjmSnLCOn+Cn6D2R3WHSQUcE5vVI1eFht88+6UrrJEbwlt/ss+Rs8e2P+t2J2+DZleDjDr4Wvq4Z2d+Onl4SMNSa1IIc05+GIEdiQQQ5/VQ3HoJv3SkDs0Lf+0YEFlfbnvPqgdG+DkcRKxBdgN76Nn190vgSe7dO7R07viXH1LBg5+2f6fFFqRJbUx2XQ==;
 31:m0225rPwFa5cVQEYHB8VhIeuC7Fcnc2pAC8FnGg+wFqwkv69/6gIaSHE/SIqBeyH3SAlG6dPHlCVAbuD4PB1znwyXFMZw5yXU/Zotnp/h27ozTeLvhWKgwB8mppj8RVsG8qkK9nrgpPkCkQiIWnbaY/Uac3PHyCFqYRCcsgOUnWbOIaNPFrp9fRt26BJgzZDVAMWfzBJ8V9gkThQNgFWCavoK5J+VJmvtbJYkTDUEaY=
X-MS-TrafficTypeDiagnostic: DB7PR04MB4891:
X-Microsoft-Exchange-Diagnostics: 1; DB7PR04MB4891;
 20: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;
 4:UwCzzMq2cp8aYfw5sECJxVJ0OdLZ63AzfHi+wiDGHYc46atPlMyxAHxqktq0DYh22/7y69pqEuM6cUJ/1IWj5J7YINH9DzP1AIVAMN03qWYZDl08EXLpnzLFMMx6aC9/HBZgBuoRZKpNQSEhpA5T58TXJBsU1YQ9NeBZabQMU93aZTDxAeLf96If2pVIXX3ehVzziC3/fmVUayK4UG12pGDa2eGs45OeZlzhkWX0jlX4jdxMuTDDNQnNR3zWJD+1+TXbauUqGWMmMHWQofJ9xvT8eXZZIk1+8BdqcS5updELwXNoAedxUP5z/CdXQomEQ/kcuPs+ZM7sgiU2qrvi1uE6AwEi2RyPde3EM210Egp+SHLBsgl25WvOVK20tunS
X-Microsoft-Antispam-PRVS: <DB7PR04MB4891E5747195984920442A71E6EB0@DB7PR04MB4891.eurprd04.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(185117386973197)(269456686620040)(163750095850); 
X-MS-Exchange-SenderADCheck: 1
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0;
 RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(3002001)(3231355)(944501410)(52105095)(93006095)(93001095)(10201501046)(6055026)(149066)(150057)(6041310)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(20161123564045)(20161123558120)(201708071742011)(7699051);
 SRVR:DB7PR04MB4891; BCL:0; PCL:0; RULEID:; SRVR:DB7PR04MB4891; 
X-Forefront-PRVS: 0816F1D86E
X-Forefront-Antispam-Report: SFV:NSPM;
 SFS:(10009020)(346002)(39860400002)(366004)(376002)(136003)(396003)(189003)(199004)(1076002)(386003)(6506007)(316002)(33896004)(97736004)(3846002)(16586007)(36756003)(7736002)(6116002)(51416003)(76176011)(305945005)(2906002)(52116002)(48376002)(50466002)(478600001)(2351001)(66066001)(47776003)(2361001)(106356001)(86362001)(55236004)(956004)(6486002)(9686003)(105586002)(6512007)(81156014)(81166006)(5009440100003)(8676002)(5660300001)(50226002)(6666003)(6916009)(486006)(25786009)(446003)(53936002)(476003)(2616005)(11346002)(8936002)(85782001)(4744004)(186003)(26005)(68736007)(4326008)(16526019)(14444005)(110426005)(85772001);
 DIR:OUT; SFP:1101; SCL:1; SRVR:DB7PR04MB4891; H:GDB1.ap.freescale.net; FPR:;
 SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1; 
Received-SPF: None (protection.outlook.com: nxp.com does not designate
 permitted sender hosts)
X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; DB7PR04MB4891;
 23:UAhJWBDxCj0Vyh0kNoBwgTTCPv4sW2EwlIRtmXbN4?=
 =?us-ascii?Q?HjAKwBRRmkXy+jsGkfEUkQ7iCuwFMrT8vAj3gmsdziqsrPVe+odKW3X2cSBv?=
 =?us-ascii?Q?OKvqcu8iQD14RkNfQHmE+gI6s81LC65fW7r4DQCia/EMERFxsygDN1cB1IfL?=
 =?us-ascii?Q?B9jS6A5IVyQNSVcLwq2M3RMRHT5a6gYyh9YP/efSML2Xs6saWJsBxjp1GY4g?=
 =?us-ascii?Q?neFno9mD2J1V5Bxa106LkNK6DYQKZAK4Befr9n6D7Ial5ssAP/TvFuIZ5Om0?=
 =?us-ascii?Q?/XUv9J6VHqsMpxsS/saILw+BtFEW9iLunNbLuZ49HbfXnpg/PYjQYrvcN+ls?=
 =?us-ascii?Q?njJwEJSuH6YFv89k8BIj+iJIBSR3TKHvEH4XNy8GQtrmPV1+NIw/FFjEpO6s?=
 =?us-ascii?Q?cWEXR9AWd3kom0DvazvCHUcCfBewDhkFJEK69k2Tv6IE/0DWy4S5sDekyIcr?=
 =?us-ascii?Q?S9SFtrBLlhRE5GJ/U27msGrGwzlgKA/cA96cIokv1zvScypCvfpXLCu2gO62?=
 =?us-ascii?Q?9l5ZAQIuRc2m2CQqtWXIEoUK4XKUOwxdWl5u/oHjJ4vkgjZE4ORU+rqg9t9c?=
 =?us-ascii?Q?/Nsh1315K/x9ly5w1ICobJ3Uaa0dOy4PvGalTxQh5iEUIUsINqAIuOTMQUiq?=
 =?us-ascii?Q?BLouzXNISRzqoef3zPLYvypoMHCADujRMbIjYF0vjv9O1gGMRyKf3I22aKO4?=
 =?us-ascii?Q?6HaVO9icpt00BN0jJzGaDPTQU1yJIFWCtIMCJRvmVci3b/RjDZ+mArQh51K9?=
 =?us-ascii?Q?GYrentUgs9snfv/5haCTa6h4SEr7qnv9BV/jpv1hiiPvDErRqZt+bnZqeN1x?=
 =?us-ascii?Q?drJBW4T2Ueu53+PfN1gYnpl8Z4McwXY3xGFPYa6HHLPaNJvtqqWGv85FDUsy?=
 =?us-ascii?Q?UH43heXV0Gn1YdP7pupFt0ZHxD6sUtMI7Nzj3htHxJuU1NdBmJmuMPrDJTcI?=
 =?us-ascii?Q?YTiAUHV0h4zrdgkTxPVAOdFZhnYRTifSvo8ICvH0k2UYk2fkq5aSR122EQCz?=
 =?us-ascii?Q?skZjOZSQT60+LKnSgcdpkre1NeQ2kFhazvRiPkMl/MmN7x0hgtTgdfTaxL01?=
 =?us-ascii?Q?MS4YcApdVM25JDOXxAQu/twx0hhcc6VHx60F9TCBmb+HdCtVZySt6/j1WU45?=
 =?us-ascii?Q?HB0cQBA6Yi7mwK8EtR8NK7co+qv7MBwD+2IsAlxfkXjnSoZHNZKs3yTWdAvu?=
 =?us-ascii?Q?UNZz8R4JvYuIYZZpjW6Gfi8eqoFSaDhOQ7D7letYQ5vUiaDtczwCYi//OuU7?=
 =?us-ascii?Q?8BAXuC5/lj+caaEpFNFrIcrcIqfwQPUmQnG8shyBQ9/E2GYoLg26e0HhgBaX?=
 =?us-ascii?Q?RqizWlx8kmJLs+b58WNkNI2PQanbmvrold0tN2YhaaVuSAnGbC9jkCWn2R2R?=
 =?us-ascii?Q?FbRgyT4p1lu1A6aB5ekotZx7gLCZgpUgR0czsc3MFe98mnI2fuSUmoBXTBQw?=
 =?us-ascii?Q?uEKq99ujQ=3D=3D?=
X-Microsoft-Antispam-Message-Info: HJK4nA7HI4QRofZG/1BOeFYCslc0nO4rygJgRnuMDPDSaW9uL8Ydbwqg2f+QwGYvCTFKLeZMCmGxO0DfccWSFsfLgSS7M/a5PtGuofS2ZPXxmMiO6axoBooew7Fri9xFRMB27QOBaFvwoZwRiE4IDF1hLLNrvd83be9/ZP7PDBBc8F/o97150/Vt4gCSe4s2DsqFpx5dZaMKPjjv5Vkp40IQ4k5TsbUsMB9vCpGTkjalMNOMg8VD/bij4ByU6/kd0uC723ghbkzmLIKZxfx9Adh+zCr4JSv6+4bkoAzCjWM+BbgxE2HYyMrEWFuaPrcwWCnpVG6vrqj+Gexz7/LKnhjMA+YwdBl8N2T/eLb1cCA=
X-Microsoft-Exchange-Diagnostics: 1; DB7PR04MB4891;
 6:Q+Oct2r2hUpirEX+MeELZOmL4nFHvlLmxCn6kYDjhN9RPpZwe9GLxt7EaFPttn7jVR1cvaFiwepODSsskPlMMeDM2biBh83++qoJMXSxmhwJGsMsvvZP71tLE0+6bPWhUV/sWhH2zUi27BPFfdd60j/4oqM0vz9xvDY3Qwj3iTDEdhXGcIDXmdR7M6OGr1XJG/cffIHskjzPfDN6+eUHB8ib1xQVX4192Z++e3vqcO1Z3syzR+qEfjmpudT+j19u5aVUEZpQpyrt28tavLwggNZf+Gw2f7s1ZZBF6Jzp3LStM8QPOcQ6ARG6ReHbhL7CAxxlI9z2ao9ETvkWaDZzNB1QbAHP/cn2eGFNBbD17BXYuT0+YcXkddD7F2d+Xv4dPf4LwypDseB/QyqqkA0WE8DocOrF4CXA7FFhlBuT4SxHZMBOySG4PSTQkKc/M7vxHuUWs3RZMVReBqXqjy3ZbQ==;
 5:SLTvODUnEtyeV7N6I1PrTWWqrSOCi4ANbGsNUDEvE5ShxtYSmz7EA3Z4UANDCCcsDavwBEA6kKwbiduQ0Oohp4H3a8/IRXojTBqxxo2E2xJDp5QvU6LaGAFBNCHr3bl0sSAndn9OoZyhUVBpVQYk5fcTy7T1bWtmWjFO3vnPmKA=;
 7:N6oqj7gCNig7EFaK5cIG14zQwSi+l+nKhSrTwZkdGtg14VLG/XpZnN4biX+mlgn7XTnOd4CeF9kzqN6eLMU0iyZ0QAwPpJUVXKx/QFSV1ZHJhTCIvNaz6u3m75c+ColjUQxE90UH//8hN2j4oFTgv4Lgl82i/tE5je8JON0cWGquhoZ9XcPRX36CBFzgVpMbkBDxPeLdsWWHvDusdmRiuL08z5Q+B6ssgme1ShxXrH+8KzhPkthxsxhTuDaTJBHg
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: nxp.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 05 Oct 2018 13:38:26.5637 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 4a230e3f-b908-4436-9035-08d62ac7d6d6
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 686ea1d3-bc2b-4c6f-a92c-d99c5c301635
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB7PR04MB4891
Subject: [dpdk-dev] [PATCH v2 3/3] crypto/dpaa2_sec: support pdcp offload
X-BeenThere: dev@dpdk.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DPDK patches and discussions <dev.dpdk.org>
List-Unsubscribe: <https://mails.dpdk.org/options/dev>,
 <mailto:dev-request@dpdk.org?subject=unsubscribe>
List-Archive: <http://mails.dpdk.org/archives/dev/>
List-Post: <mailto:dev@dpdk.org>
List-Help: <mailto:dev-request@dpdk.org?subject=help>
List-Subscribe: <https://mails.dpdk.org/listinfo/dev>,
 <mailto:dev-request@dpdk.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Oct 2018 13:38:38 -0000

From: Akhil Goyal <akhil.goyal@nxp.com>

PDCP session configuration for lookaside protocol offload
and data path is added.

Signed-off-by: Hemant Agrawal <hemant.agrawal@nxp.com>
Signed-off-by: Akhil Goyal <akhil.goyal@nxp.com>
---
 drivers/crypto/dpaa2_sec/dpaa2_sec_dpseci.c | 233 ++++++++++++++++++++
 drivers/crypto/dpaa2_sec/dpaa2_sec_priv.h   | 172 +++++++++++++++
 2 files changed, 405 insertions(+)

diff --git a/drivers/crypto/dpaa2_sec/dpaa2_sec_dpseci.c b/drivers/crypto/dpaa2_sec/dpaa2_sec_dpseci.c
index 265a8e41a..d263c9388 100644
--- a/drivers/crypto/dpaa2_sec/dpaa2_sec_dpseci.c
+++ b/drivers/crypto/dpaa2_sec/dpaa2_sec_dpseci.c
@@ -35,6 +35,7 @@ typedef uint64_t	dma_addr_t;
 
 /* RTA header files */
 #include <hw/desc/ipsec.h>
+#include <hw/desc/pdcp.h>
 #include <hw/desc/algo.h>
 
 /* Minimum job descriptor consists of a oneword job descriptor HEADER and
@@ -74,6 +75,9 @@ build_proto_compound_fd(dpaa2_sec_session *sess,
 	struct rte_mbuf *dst_mbuf = sym_op->m_dst;
 	int retval;
 
+	if (!dst_mbuf)
+		dst_mbuf = src_mbuf;
+
 	/* Save the shared descriptor */
 	flc = &priv->flc_desc[0].flc;
 
@@ -1188,6 +1192,9 @@ build_sec_fd(struct rte_crypto_op *op,
 		case DPAA2_SEC_IPSEC:
 			ret = build_proto_fd(sess, op, fd, bpid);
 			break;
+		case DPAA2_SEC_PDCP:
+			ret = build_proto_compound_fd(sess, op, fd, bpid);
+			break;
 		case DPAA2_SEC_HASH_CIPHER:
 		default:
 			DPAA2_SEC_ERR("error: Unsupported session");
@@ -2541,6 +2548,228 @@ dpaa2_sec_set_ipsec_session(struct rte_cryptodev *dev,
 	return ret;
 }
 
+static int
+dpaa2_sec_set_pdcp_session(struct rte_cryptodev *dev,
+			   struct rte_security_session_conf *conf,
+			   void *sess)
+{
+	struct rte_security_pdcp_xform *pdcp_xform = &conf->pdcp;
+	struct rte_crypto_sym_xform *xform = conf->crypto_xform;
+	struct rte_crypto_auth_xform *auth_xform = NULL;
+	struct rte_crypto_cipher_xform *cipher_xform;
+	dpaa2_sec_session *session = (dpaa2_sec_session *)sess;
+	struct ctxt_priv *priv;
+	struct dpaa2_sec_dev_private *dev_priv = dev->data->dev_private;
+	struct alginfo authdata, cipherdata;
+	int bufsize = -1;
+	struct sec_flow_context *flc;
+
+	PMD_INIT_FUNC_TRACE();
+
+	memset(session, 0, sizeof(dpaa2_sec_session));
+
+	priv = (struct ctxt_priv *)rte_zmalloc(NULL,
+				sizeof(struct ctxt_priv) +
+				sizeof(struct sec_flc_desc),
+				RTE_CACHE_LINE_SIZE);
+
+	if (priv == NULL) {
+		DPAA2_SEC_ERR("No memory for priv CTXT");
+		return -ENOMEM;
+	}
+
+	priv->fle_pool = dev_priv->fle_pool;
+	flc = &priv->flc_desc[0].flc;
+
+	/* find xfrm types */
+	if (xform->type == RTE_CRYPTO_SYM_XFORM_CIPHER && xform->next == NULL) {
+		cipher_xform = &xform->cipher;
+	} else if (xform->type == RTE_CRYPTO_SYM_XFORM_CIPHER &&
+		   xform->next->type == RTE_CRYPTO_SYM_XFORM_AUTH) {
+		session->ext_params.aead_ctxt.auth_cipher_text = true;
+		cipher_xform = &xform->cipher;
+		auth_xform = &xform->next->auth;
+	} else if (xform->type == RTE_CRYPTO_SYM_XFORM_AUTH &&
+		   xform->next->type == RTE_CRYPTO_SYM_XFORM_CIPHER) {
+		session->ext_params.aead_ctxt.auth_cipher_text = false;
+		cipher_xform = &xform->next->cipher;
+		auth_xform = &xform->auth;
+	} else {
+		DPAA2_SEC_ERR("Invalid crypto type");
+		return -EINVAL;
+	}
+
+	session->ctxt_type = DPAA2_SEC_PDCP;
+	if (cipher_xform) {
+		session->cipher_key.data = rte_zmalloc(NULL,
+					       cipher_xform->key.length,
+					       RTE_CACHE_LINE_SIZE);
+		if (session->cipher_key.data == NULL &&
+				cipher_xform->key.length > 0) {
+			DPAA2_SEC_ERR("No Memory for cipher key");
+			rte_free(priv);
+			return -ENOMEM;
+		}
+		session->cipher_key.length = cipher_xform->key.length;
+		memcpy(session->cipher_key.data, cipher_xform->key.data,
+			cipher_xform->key.length);
+		session->dir = (cipher_xform->op == RTE_CRYPTO_CIPHER_OP_ENCRYPT) ?
+					DIR_ENC : DIR_DEC;
+		session->cipher_alg = cipher_xform->algo;
+	} else {
+		session->cipher_key.data = NULL;
+		session->cipher_key.length = 0;
+		session->cipher_alg = RTE_CRYPTO_CIPHER_NULL;
+		session->dir = DIR_ENC;
+	}
+
+	cipherdata.key = (size_t)session->cipher_key.data;
+	cipherdata.keylen = session->cipher_key.length;
+	cipherdata.key_enc_flags = 0;
+	cipherdata.key_type = RTA_DATA_IMM;
+
+	switch (session->cipher_alg) {
+	case RTE_CRYPTO_CIPHER_SNOW3G_UEA2:
+		cipherdata.algtype = PDCP_CIPHER_TYPE_SNOW;
+		break;
+	case RTE_CRYPTO_CIPHER_ZUC_EEA3:
+		cipherdata.algtype = PDCP_CIPHER_TYPE_ZUC;
+		break;
+	case RTE_CRYPTO_CIPHER_AES_CTR:
+		cipherdata.algtype = PDCP_CIPHER_TYPE_AES;
+		break;
+	case RTE_CRYPTO_CIPHER_NULL:
+		cipherdata.algtype = PDCP_CIPHER_TYPE_NULL;
+		break;
+	default:
+		DPAA2_SEC_ERR("Crypto: Undefined Cipher specified %u",
+			      session->cipher_alg);
+		goto out;
+	}
+
+	/* Auth is only applicable for control mode operation. */
+	if (pdcp_xform->domain == RTE_SECURITY_PDCP_MODE_CONTROL) {
+		if (pdcp_xform->sn_size != RTE_SECURITY_PDCP_SN_SIZE_5) {
+			DPAA2_SEC_ERR(
+				"PDCP Seq Num size should be 5 bits for cmode");
+			goto out;
+		}
+		if (auth_xform) {
+			session->auth_key.data = rte_zmalloc(NULL,
+							auth_xform->key.length,
+							RTE_CACHE_LINE_SIZE);
+			if (session->auth_key.data == NULL &&
+					auth_xform->key.length > 0) {
+				DPAA2_SEC_ERR("No Memory for auth key");
+				rte_free(session->cipher_key.data);
+				rte_free(priv);
+				return -ENOMEM;
+			}
+			session->auth_key.length = auth_xform->key.length;
+			memcpy(session->auth_key.data, auth_xform->key.data,
+					auth_xform->key.length);
+			session->auth_alg = auth_xform->algo;
+		} else {
+			session->auth_key.data = NULL;
+			session->auth_key.length = 0;
+			session->auth_alg = RTE_CRYPTO_AUTH_NULL;
+		}
+		authdata.key = (size_t)session->auth_key.data;
+		authdata.keylen = session->auth_key.length;
+		authdata.key_enc_flags = 0;
+		authdata.key_type = RTA_DATA_IMM;
+
+		switch (session->auth_alg) {
+		case RTE_CRYPTO_AUTH_SNOW3G_UIA2:
+			authdata.algtype = PDCP_AUTH_TYPE_SNOW;
+			break;
+		case RTE_CRYPTO_AUTH_ZUC_EIA3:
+			authdata.algtype = PDCP_AUTH_TYPE_ZUC;
+			break;
+		case RTE_CRYPTO_AUTH_AES_CMAC:
+			authdata.algtype = PDCP_AUTH_TYPE_AES;
+			break;
+		case RTE_CRYPTO_AUTH_NULL:
+			authdata.algtype = PDCP_AUTH_TYPE_NULL;
+			break;
+		default:
+			DPAA2_SEC_ERR("Crypto: Unsupported auth alg %u",
+				      session->auth_alg);
+			goto out;
+		}
+
+		if (session->dir == DIR_ENC)
+			bufsize = cnstr_shdsc_pdcp_c_plane_encap(
+					priv->flc_desc[0].desc, 1, 0,
+					pdcp_xform->hfn,
+					pdcp_xform->bearer,
+					pdcp_xform->pkt_dir,
+					pdcp_xform->hfn_threshold,
+					&cipherdata, &authdata,
+					0);
+		else if (session->dir == DIR_DEC)
+			bufsize = cnstr_shdsc_pdcp_c_plane_decap(
+					priv->flc_desc[0].desc, 1, 0,
+					pdcp_xform->hfn,
+					pdcp_xform->bearer,
+					pdcp_xform->pkt_dir,
+					pdcp_xform->hfn_threshold,
+					&cipherdata, &authdata,
+					0);
+	} else {
+		if (session->dir == DIR_ENC)
+			bufsize = cnstr_shdsc_pdcp_u_plane_encap(
+					priv->flc_desc[0].desc, 1, 0,
+					pdcp_xform->sn_size,
+					pdcp_xform->hfn,
+					pdcp_xform->bearer,
+					pdcp_xform->pkt_dir,
+					pdcp_xform->hfn_threshold,
+					&cipherdata, 0);
+		else if (session->dir == DIR_DEC)
+			bufsize = cnstr_shdsc_pdcp_u_plane_decap(
+					priv->flc_desc[0].desc, 1, 0,
+					pdcp_xform->sn_size,
+					pdcp_xform->hfn,
+					pdcp_xform->bearer,
+					pdcp_xform->pkt_dir,
+					pdcp_xform->hfn_threshold,
+					&cipherdata, 0);
+	}
+
+	if (bufsize < 0) {
+		DPAA2_SEC_ERR("Crypto: Invalid buffer length");
+		goto out;
+	}
+
+	/* Enable the stashing control bit */
+	DPAA2_SET_FLC_RSC(flc);
+	flc->word2_rflc_31_0 = lower_32_bits(
+			(size_t)&(((struct dpaa2_sec_qp *)
+			dev->data->queue_pairs[0])->rx_vq) | 0x14);
+	flc->word3_rflc_63_32 = upper_32_bits(
+			(size_t)&(((struct dpaa2_sec_qp *)
+			dev->data->queue_pairs[0])->rx_vq));
+
+	flc->word1_sdl = (uint8_t)bufsize;
+
+	/* Set EWS bit i.e. enable write-safe */
+	DPAA2_SET_FLC_EWS(flc);
+	/* Set BS = 1 i.e reuse input buffers as output buffers */
+	DPAA2_SET_FLC_REUSE_BS(flc);
+	/* Set FF = 10; reuse input buffers if they provide sufficient space */
+	DPAA2_SET_FLC_REUSE_FF(flc);
+
+	session->ctxt = priv;
+
+	return 0;
+out:
+	rte_free(session->auth_key.data);
+	rte_free(session->cipher_key.data);
+	rte_free(priv);
+	return -1;
+}
+
 static int
 dpaa2_sec_security_session_create(void *dev,
 				  struct rte_security_session_conf *conf,
@@ -2563,6 +2792,10 @@ dpaa2_sec_security_session_create(void *dev,
 		break;
 	case RTE_SECURITY_PROTOCOL_MACSEC:
 		return -ENOTSUP;
+	case RTE_SECURITY_PROTOCOL_PDCP:
+		ret = dpaa2_sec_set_pdcp_session(cdev, conf,
+				sess_private_data);
+		break;
 	default:
 		return -EINVAL;
 	}
diff --git a/drivers/crypto/dpaa2_sec/dpaa2_sec_priv.h b/drivers/crypto/dpaa2_sec/dpaa2_sec_priv.h
index d015be1e9..907374346 100644
--- a/drivers/crypto/dpaa2_sec/dpaa2_sec_priv.h
+++ b/drivers/crypto/dpaa2_sec/dpaa2_sec_priv.h
@@ -390,6 +390,162 @@ static const struct rte_cryptodev_capabilities dpaa2_sec_capabilities[] = {
 	RTE_CRYPTODEV_END_OF_CAPABILITIES_LIST()
 };
 
+static const struct rte_cryptodev_capabilities dpaa2_pdcp_capabilities[] = {
+	{	/* SNOW 3G (UIA2) */
+		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
+		{.sym = {
+			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
+			{.auth = {
+				.algo = RTE_CRYPTO_AUTH_SNOW3G_UIA2,
+				.block_size = 16,
+				.key_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				},
+				.digest_size = {
+					.min = 4,
+					.max = 4,
+					.increment = 0
+				},
+				.iv_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				}
+			}, }
+		}, }
+	},
+	{	/* SNOW 3G (UEA2) */
+		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
+		{.sym = {
+			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
+			{.cipher = {
+				.algo = RTE_CRYPTO_CIPHER_SNOW3G_UEA2,
+				.block_size = 16,
+				.key_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				},
+				.iv_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				}
+			}, }
+		}, }
+	},
+	{	/* AES CTR */
+		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
+		{.sym = {
+			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
+			{.cipher = {
+				.algo = RTE_CRYPTO_CIPHER_AES_CTR,
+				.block_size = 16,
+				.key_size = {
+					.min = 16,
+					.max = 32,
+					.increment = 8
+				},
+				.iv_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				}
+			}, }
+		}, }
+	},
+	{	/* NULL (AUTH) */
+		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
+		{.sym = {
+			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
+			{.auth = {
+				.algo = RTE_CRYPTO_AUTH_NULL,
+				.block_size = 1,
+				.key_size = {
+					.min = 0,
+					.max = 0,
+					.increment = 0
+				},
+				.digest_size = {
+					.min = 0,
+					.max = 0,
+					.increment = 0
+				},
+				.iv_size = { 0 }
+			}, },
+		}, },
+	},
+	{	/* NULL (CIPHER) */
+		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
+		{.sym = {
+			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
+			{.cipher = {
+				.algo = RTE_CRYPTO_CIPHER_NULL,
+				.block_size = 1,
+				.key_size = {
+					.min = 0,
+					.max = 0,
+					.increment = 0
+				},
+				.iv_size = {
+					.min = 0,
+					.max = 0,
+					.increment = 0
+				}
+			}, },
+		}, }
+	},
+	{	/* ZUC (EEA3) */
+		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
+		{.sym = {
+			.xform_type = RTE_CRYPTO_SYM_XFORM_CIPHER,
+			{.cipher = {
+				.algo = RTE_CRYPTO_CIPHER_ZUC_EEA3,
+				.block_size = 16,
+				.key_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				},
+				.iv_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				}
+			}, }
+		}, }
+	},
+	{	/* ZUC (EIA3) */
+		.op = RTE_CRYPTO_OP_TYPE_SYMMETRIC,
+		{.sym = {
+			.xform_type = RTE_CRYPTO_SYM_XFORM_AUTH,
+			{.auth = {
+				.algo = RTE_CRYPTO_AUTH_ZUC_EIA3,
+				.block_size = 16,
+				.key_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				},
+				.digest_size = {
+					.min = 4,
+					.max = 4,
+					.increment = 0
+				},
+				.iv_size = {
+					.min = 16,
+					.max = 16,
+					.increment = 0
+				}
+			}, }
+		}, }
+	},
+
+	RTE_CRYPTODEV_END_OF_CAPABILITIES_LIST()
+};
+
 static const struct rte_security_capability dpaa2_sec_security_cap[] = {
 	{ /* IPsec Lookaside Protocol offload ESP Transport Egress */
 		.action = RTE_SECURITY_ACTION_TYPE_LOOKASIDE_PROTOCOL,
@@ -413,6 +569,22 @@ static const struct rte_security_capability dpaa2_sec_security_cap[] = {
 		},
 		.crypto_capabilities = dpaa2_sec_capabilities
 	},
+	{ /* PDCP Lookaside Protocol offload Data */
+		.action = RTE_SECURITY_ACTION_TYPE_LOOKASIDE_PROTOCOL,
+		.protocol = RTE_SECURITY_PROTOCOL_PDCP,
+		.pdcp = {
+			.domain = RTE_SECURITY_PDCP_MODE_DATA,
+		},
+		.crypto_capabilities = dpaa2_pdcp_capabilities
+	},
+	{ /* PDCP Lookaside Protocol offload Control */
+		.action = RTE_SECURITY_ACTION_TYPE_LOOKASIDE_PROTOCOL,
+		.protocol = RTE_SECURITY_PROTOCOL_PDCP,
+		.pdcp = {
+			.domain = RTE_SECURITY_PDCP_MODE_CONTROL,
+		},
+		.crypto_capabilities = dpaa2_pdcp_capabilities
+	},
 	{
 		.action = RTE_SECURITY_ACTION_TYPE_NONE
 	}
-- 
2.17.1