From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mails.dpdk.org (mails.dpdk.org [217.70.189.124]) by inbox.dpdk.org (Postfix) with ESMTP id 215AFA0C41; Thu, 16 Sep 2021 13:14:37 +0200 (CEST) Received: from [217.70.189.124] (localhost [127.0.0.1]) by mails.dpdk.org (Postfix) with ESMTP id A521C40151; Thu, 16 Sep 2021 13:14:36 +0200 (CEST) Received: from mga03.intel.com (mga03.intel.com [134.134.136.65]) by mails.dpdk.org (Postfix) with ESMTP id 601E64003F for ; Thu, 16 Sep 2021 13:14:34 +0200 (CEST) X-IronPort-AV: E=McAfee;i="6200,9189,10108"; a="222593915" X-IronPort-AV: E=Sophos;i="5.85,298,1624345200"; d="scan'208";a="222593915" Received: from fmsmga007.fm.intel.com ([10.253.24.52]) by orsmga103.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 16 Sep 2021 04:14:32 -0700 X-ExtLoop1: 1 X-IronPort-AV: E=Sophos;i="5.85,298,1624345200"; d="scan'208";a="471332272" Received: from fmsmsx605.amr.corp.intel.com ([10.18.126.85]) by fmsmga007.fm.intel.com with ESMTP; 16 Sep 2021 04:14:32 -0700 Received: from fmsmsx612.amr.corp.intel.com (10.18.126.92) by fmsmsx605.amr.corp.intel.com (10.18.126.85) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2242.12; Thu, 16 Sep 2021 04:14:32 -0700 Received: from fmsedg601.ED.cps.intel.com (10.1.192.135) by fmsmsx612.amr.corp.intel.com (10.18.126.92) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2242.12 via Frontend Transport; Thu, 16 Sep 2021 04:14:32 -0700 Received: from NAM12-BN8-obe.outbound.protection.outlook.com (104.47.55.175) by edgegateway.intel.com (192.55.55.70) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2242.12; Thu, 16 Sep 2021 04:14:31 -0700 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=mQ27Re5QBp8E0QRlwNHhPBeojJ9JbN68+r0BkaltjIEM1A0YUmZXJt8MBN1N/f/cxezlAzqPKq22bgcE+qGmYQHbAS155VImpi47CKUCHoLvoIirAy4GoTq7rKGcpbHQyugQaRdCjWOIM4cgpnQmYVfRHQKqYwxzmJwhBoNFHDfbZD8zhuQI9O73nJVmOPVG9h0EXRVyt5pZYwkKYugWLbGPQ3bjKTi2E9iW0Om5GLLKc41zxbtttmS8UciI9n5GBgmK1FfxbPXbfs6mz7jsla0EBUKujsNHAwGjtXLriuKoFBsxicAkir6qQIiO9XhQQqqTgTOyhw2ngs+mT4PnDg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=s7Fqc6fNS946yEz10u3+Pcbso5FwrDAJY1eIkhV4QVI=; b=bm6oQek+pd+qjRHf3r2lsFteKq066F4ISpMiTxCswrI//q1ZoIqTd2Fi/HxAxnDFxbodTVj+mp1e5AfNqtD888Vjm06j+1xB/puEm2aThGlnfs+IF1mkduQQ5L4A2xihJ9Gl/4jU/Yu9zRAwrklCmHCW5DIqvCoV9LV3z5l3Mzq2k4aUUYLfcZTbpmAUpfz2e/Qqni7s1drzACXdxgV/w2SjCCfzQnMe30YW4omuwX+VNAj8mPfcUK1c8v3nypvvEaDvdax16S/I7zujAXn7+BUALRBZ9Og2RJufoyEWOtzpamS/Hv1mZszm6jeyQ6aXD9fOF4D3h5cBOipCV1lALg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=intel.onmicrosoft.com; s=selector2-intel-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=s7Fqc6fNS946yEz10u3+Pcbso5FwrDAJY1eIkhV4QVI=; b=Yf9eqsTPjBfshgX+PBiImOtW72X80SKtmD3cLdHpCOjhY38nDUGpgc/5RX+tEOQSc+dUzJalx6zhoAnPB/ERg+IF5ZIFlcWbXRfihrbU77Z6OXgwMzbmk2CignvfRH67d16pwpBKkvphVsANKTWgSOXgTj++0gLNZHR+fTn8LzY= Received: from BY5PR11MB4482.namprd11.prod.outlook.com (2603:10b6:a03:1ca::33) by BYAPR11MB3335.namprd11.prod.outlook.com (2603:10b6:a03:1d::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4500.15; Thu, 16 Sep 2021 11:14:30 +0000 Received: from BY5PR11MB4482.namprd11.prod.outlook.com ([fe80::a850:4ae9:9444:7334]) by BY5PR11MB4482.namprd11.prod.outlook.com ([fe80::a850:4ae9:9444:7334%5]) with mapi id 15.20.4523.016; Thu, 16 Sep 2021 11:14:30 +0000 From: "Ananyev, Konstantin" To: Anoob Joseph , Akhil Goyal , "Doherty, Declan" , "Zhang, Roy Fan" CC: Jerin Jacob , Archana Muniganti , Tejasree Kondoj , "Hemant Agrawal" , "Nicolau, Radu" , "Power, Ciara" , Gagandeep Singh , "dev@dpdk.org" Thread-Topic: [PATCH v3 1/3] security: support user specified IV Thread-Index: AQHXpAP5VCZ9SV2oGkSUOWBirtoSGqumj9hQ Date: Thu, 16 Sep 2021 11:14:30 +0000 Message-ID: References: <1630940307-78-1-git-send-email-anoobj@marvell.com> <1631031463-211-1-git-send-email-anoobj@marvell.com> <1631031463-211-2-git-send-email-anoobj@marvell.com> In-Reply-To: <1631031463-211-2-git-send-email-anoobj@marvell.com> Accept-Language: en-GB, en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: dlp-product: dlpe-windows dlp-reaction: no-action dlp-version: 11.6.200.16 authentication-results: marvell.com; dkim=none (message not signed) header.d=none;marvell.com; dmarc=none action=none header.from=intel.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 872dc40c-4396-4f7b-8d8d-08d9790327b6 x-ms-traffictypediagnostic: BYAPR11MB3335: x-ms-exchange-transport-forked: True x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:8882; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4482.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(346002)(136003)(39860400002)(396003)(366004)(376002)(6506007)(8936002)(66556008)(66446008)(64756008)(66946007)(9686003)(2906002)(76116006)(15650500001)(83380400001)(316002)(186003)(66476007)(38070700005)(110136005)(86362001)(54906003)(4326008)(8676002)(7696005)(5660300002)(55016002)(55236004)(26005)(52536014)(478600001)(38100700002)(6636002)(71200400001)(122000001)(33656002); DIR:OUT; SFP:1102; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?dChKL//MiobvfV/ox1Bi8m8ko+lzSDi4EXW2Rxsejuy+HxYlVKhHslBLAye7?= =?us-ascii?Q?6yTDD59HUNcIj30RK8W3TBtsdE0x+zxhbXGcmMwm+MyA/k78WVtwpfUPecyf?= =?us-ascii?Q?eKdC+C0OUevDcVvTPtZaDMtHxcoFfWBfigD2hWNi+5EvMcYToRI+1gUdDkw/?= =?us-ascii?Q?73UzsuJch+lLEcywPe8RkiV8ocCuatwMbJT1sxuUl+7yDNQhirSNvud63ZkD?= =?us-ascii?Q?Uf8PkdISmyozwTPRkxWZIwIG/9wp452IC9CCCz1kKF9kGRUv7dcCfqPwq/iN?= =?us-ascii?Q?V4R+qW4uYmqzbgRUNjUEqpESyLwy0tbrjyPWRKzH4gqJu2xrCzOln9Nz1UcM?= =?us-ascii?Q?b05tfkuDWU0RaOw9T0vBYLvqzROjqnHhtAjTUYdXmTALLavmIvRTbbjKdQ8+?= =?us-ascii?Q?/oRtRE3Dd9+91zgJdl95t8E8RMejA3Si3lnmqwAsDeiC8z3bROdj1cUk0b22?= =?us-ascii?Q?a8HII0gsgLq8xZKnMMJzh8Owi7As6D24V65Hh5ffvwvFQoZE+XWPkxRSyy5i?= =?us-ascii?Q?6TT8YQstK5tXBuHpXCPrDZYhzJzH8xElKeYX3gXxZJMA0vLieTOxeuxRoTOq?= =?us-ascii?Q?Br3CI/mge4CqmMp9D66EZaJzZLphdZVBUTFSpaobDIo2fGsGSXtOyKQkb881?= =?us-ascii?Q?D5u+r/WADNpgp1zXQGeNkzkRRPUshBBl3oKo/aNrx9gsS2vF6MvoISAKqOQt?= =?us-ascii?Q?SXlnsiJXwj8i2EDUNs1XbYU2K4zLWS/1Zz4WyE5+Kix+T9JXj+TQsAe3Ix3e?= =?us-ascii?Q?tGPkm4LFkeRfmI8T25vrgz1WryhWuqOshfdFefBDj6bBU+OhToOVh4l+Vr6p?= =?us-ascii?Q?X0aifGAWnHECW7hBVWUy8hXehen7/2lGKuVtmI0b6QMUU+aMkqFG7/DT738o?= =?us-ascii?Q?+mzFom7IQkj4xwlCLGryb/SdLaOj7Ezu7sWOdwBqpupl+DvipqTmB2E4aBSV?= =?us-ascii?Q?3oEKXXKMPg0TaRrn/ORre8NL8qTFg9tpA0n0QfIiVRr5XnIGV+fGkxkCkniG?= =?us-ascii?Q?NIEt/WspEmG8Bg41nJwRK2lLT3ZwyR9dH7coF6FxFNRvS8xnW/ARCxI8vDxb?= =?us-ascii?Q?8veAOUEc4bm0NPBiFa0R1rdvmrvGe01YRIhlRrAQ0WwQftZA0VK7XOC9ouK6?= =?us-ascii?Q?NVXz+XunoJLtBIe7gyKB4WZF/B/X9Qqgjnh4gQoQO5EbUxF+mqg4uVLGsbIx?= =?us-ascii?Q?Y4LcdDEUliWGavShGu9nLFdejKYsrdtdlKmAYxpigsCV/F4vn8WpCiSwHvRo?= =?us-ascii?Q?7HbM1RjBwxJCOc+sKZrQrockLMPIQGl7sf4MsXjw3eCbXLS24aJ7EdWxOmG8?= =?us-ascii?Q?4pyoUlp+EQaLpR49TOHqmhpp?= Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4482.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 872dc40c-4396-4f7b-8d8d-08d9790327b6 X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Sep 2021 11:14:30.5275 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: IXFCDExm546+KcSmIdTVvFdHPx7gw6VEY/bLP39K0yPGf9K4UYtGJKJSUsSPXgcmen4yILpvY3rfpjs2F3i2n3JvcfVuaMinhsoEUNJQAow= X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3335 X-OriginatorOrg: intel.com Subject: Re: [dpdk-dev] [PATCH v3 1/3] security: support user specified IV X-BeenThere: dev@dpdk.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: DPDK patches and discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dev-bounces@dpdk.org Sender: "dev" >=20 > Enable user to provide IV to be used per security operation. This > would be used with lookaside protocol offload for comparing > against known vectors. >=20 > By default, PMD would generate IV internally and would be random. >=20 > Signed-off-by: Anoob Joseph > Acked-by: Akhil Goyal > --- > doc/guides/rel_notes/release_21_11.rst | 5 +++++ > lib/security/rte_security.h | 14 ++++++++++++++ > 2 files changed, 19 insertions(+) >=20 > diff --git a/doc/guides/rel_notes/release_21_11.rst b/doc/guides/rel_note= s/release_21_11.rst > index 411fa95..9b14c84 100644 > --- a/doc/guides/rel_notes/release_21_11.rst > +++ b/doc/guides/rel_notes/release_21_11.rst > @@ -118,6 +118,11 @@ ABI Changes > Also, make sure to start the actual text at the margin. > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D >=20 > +* security: add IPsec SA option to disable IV generation > + > + * Added IPsec SA option to disable IV generation to allow known vector > + tests as well as usage of application provided IV on supported PMDs. > + >=20 > Known Issues > ------------ > diff --git a/lib/security/rte_security.h b/lib/security/rte_security.h > index 88d31de..b4b6776 100644 > --- a/lib/security/rte_security.h > +++ b/lib/security/rte_security.h > @@ -181,6 +181,20 @@ struct rte_security_ipsec_sa_options { > * * 0: Disable per session security statistics collection for this SA. > */ > uint32_t stats : 1; > + > + /** Disable IV generation in PMD > + * > + * * 1: Disable IV generation in PMD. When disabled, IV provided in > + * rte_crypto_op will be used by the PMD. > + * > + * * 0: Enable IV generation in PMD. When enabled, PMD generated random > + * value would be used and application is not required to provide > + * IV. > + * > + * Note: For inline cases, IV generation would always need to be handle= d > + * by the PMD. > + */ > + uint32_t iv_gen_disable : 1; > }; >=20 > /** IPSec security association direction */ > -- Acked-by: Konstantin Ananyev > 2.7.4