From: Shally Verma <shallyv@marvell.com>
To: Arek Kusztal <arkadiuszx.kusztal@intel.com>,
"dev@dpdk.org" <dev@dpdk.org>
Cc: "akhil.goyal@nxp.com" <akhil.goyal@nxp.com>,
"fiona.trahe@intel.com" <fiona.trahe@intel.com>,
"damianx.nowak@intel.com" <damianx.nowak@intel.com>,
Sunila Sahu <ssahu@marvell.com>, Ayuj Verma <ayverma@marvell.com>,
"Kanaka Durga Kotamarthy" <kkotamarthy@marvell.com>
Subject: Re: [dpdk-dev] [EXT] [PATCH v5 2/7] cryptodev: add cipher field to RSA op
Date: Fri, 19 Jul 2019 04:42:58 +0000 [thread overview]
Message-ID: <BN6PR1801MB2052CFEC225C8B257F642551ADCB0@BN6PR1801MB2052.namprd18.prod.outlook.com> (raw)
In-Reply-To: <20190718160943.10724-3-arkadiuszx.kusztal@intel.com>
> -----Original Message-----
> From: Arek Kusztal <arkadiuszx.kusztal@intel.com>
> Sent: Thursday, July 18, 2019 9:40 PM
> To: dev@dpdk.org
> Cc: akhil.goyal@nxp.com; fiona.trahe@intel.com; Shally Verma
> <shallyv@marvell.com>; damianx.nowak@intel.com; Arek Kusztal
> <arkadiuszx.kusztal@intel.com>
> Subject: [EXT] [PATCH v5 2/7] cryptodev: add cipher field to RSA op
>
> External Email
>
> ----------------------------------------------------------------------
> Asymmetric nature of RSA algorithm suggest to use additional field for
> output. In place operations still can be done by setting cipher and message
> pointers with the same memory address.
>
> Signed-off-by: Arek Kusztal <arkadiuszx.kusztal@intel.com>
> ---
> lib/librte_cryptodev/rte_crypto_asym.h | 43
> ++++++++++++++++++++++++++++------
> 1 file changed, 36 insertions(+), 7 deletions(-)
>
> diff --git a/lib/librte_cryptodev/rte_crypto_asym.h
> b/lib/librte_cryptodev/rte_crypto_asym.h
> index 02ec304..1d4ec80 100644
> --- a/lib/librte_cryptodev/rte_crypto_asym.h
> +++ b/lib/librte_cryptodev/rte_crypto_asym.h
> @@ -395,21 +395,50 @@ struct rte_crypto_rsa_op_param {
>
> rte_crypto_param message;
> /**<
> - * Pointer to data
> + * Pointer to input data
> * - to be encrypted for RSA public encrypt.
> - * - to be decrypted for RSA private decrypt.
> * - to be signed for RSA sign generation.
> * - to be authenticated for RSA sign verification.
> + *
> + * Pointer to output data
> + * - for RSA private decrypt.
> + * In this case the underlying array should have been
> + * allocated with enough memory to hold plaintext output
> + * (i.e. must be at least RSA key size). The message.length
> + * field should be 0 and will be overwritten by the PMD
> + * with the decrypted length.
> + *
> + * All data is in Octet-string network byte order format.
> + */
As per Fiona feedback in another email, for PMD it does not matter what output buffer length is set to. All matters if it should be allocated large enough as per description in spec.
Given that, there is no need to mention specifically, that length should be set to 0. App can leave it to anything as PMD don't care. It does not and should not check for any valid params here.
Ditto is my feedback on cipher.length description below. There is no need to mention, it should be set to 0 specifically
If we agree, this change can be taken as part of next patch set. Current one can still go on.
Thanks
Shally
> +
> + rte_crypto_param cipher;
> + /**<
> + * Pointer to input data
> + * - to be decrypted for RSA private decrypt.
> + *
> + * Pointer to output data
> + * - for RSA public encrypt.
> + * In this case the underlying array should have been allocated
> + * with enough memory to hold ciphertext output (i.e. must be
> + * at least RSA key size). The cipher.length field should
> + * be 0 and will be overwritten by the PMD with the encrypted
> length.
> + *
> + * All data is in Octet-string network byte order format.
> */
>
> rte_crypto_param sign;
> /**<
> - * Pointer to RSA signature data. If operation is RSA
> - * sign @ref RTE_CRYPTO_ASYM_OP_SIGN, buffer will be
> - * over-written with generated signature.
> + * Pointer to input data
> + * - to be verified for RSA public decrypt.
> + *
> + * Pointer to output data
> + * - for RSA private encrypt.
> + * In this case the underlying array should have been allocated
> + * with enough memory to hold signature output (i.e. must be
> + * at least RSA key size). The sign.length field should
> + * be 0 and will be overwritten by the PMD with the signature length.
> *
> - * Length of the signature data will be equal to the
> - * RSA modulus length.
> + * All data is in Octet-string network byte order format.
> */
>
> enum rte_crypto_rsa_padding_type pad;
> --
> 2.1.0
next prev parent reply other threads:[~2019-07-19 4:43 UTC|newest]
Thread overview: 14+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-07-18 16:09 [dpdk-dev] [PATCH v5 0/7] Rework API for RSA algorithm in asymmetric crypto Arek Kusztal
2019-07-18 16:09 ` [dpdk-dev] [PATCH v5 1/7] cryptodev: change RSA API comments about primes Arek Kusztal
2019-07-18 16:09 ` [dpdk-dev] [PATCH v5 2/7] cryptodev: add cipher field to RSA op Arek Kusztal
2019-07-19 4:42 ` Shally Verma [this message]
2019-07-19 5:10 ` [dpdk-dev] [EXT] " Kusztal, ArkadiuszX
2019-07-18 16:09 ` [dpdk-dev] [PATCH v5 3/7] crypto/openssl: add cipher field to openssl RSA implementation Arek Kusztal
2019-07-18 16:09 ` [dpdk-dev] [PATCH v5 4/7] test: add cipher field to RSA test Arek Kusztal
2019-07-18 16:09 ` [dpdk-dev] [PATCH v5 5/7] cryptodev: remove RSA PKCS1 BT0 padding Arek Kusztal
2019-07-18 16:09 ` [dpdk-dev] [PATCH v5 6/7] openssl: remove RSA PKCS1_5 " Arek Kusztal
2019-07-18 16:09 ` [dpdk-dev] [PATCH v5 7/7] test: remove RSA PKCS1_5 BT0 padding from test cases Arek Kusztal
2019-07-19 4:45 ` [dpdk-dev] [EXT] [PATCH v5 0/7] Rework API for RSA algorithm in asymmetric crypto Shally Verma
2019-07-19 12:51 ` Akhil Goyal
2019-07-19 16:23 ` Thomas Monjalon
2019-07-19 16:55 ` Kusztal, ArkadiuszX
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=BN6PR1801MB2052CFEC225C8B257F642551ADCB0@BN6PR1801MB2052.namprd18.prod.outlook.com \
--to=shallyv@marvell.com \
--cc=akhil.goyal@nxp.com \
--cc=arkadiuszx.kusztal@intel.com \
--cc=ayverma@marvell.com \
--cc=damianx.nowak@intel.com \
--cc=dev@dpdk.org \
--cc=fiona.trahe@intel.com \
--cc=kkotamarthy@marvell.com \
--cc=ssahu@marvell.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).