# **Crypto Device Drivers** Release 20.02.1 # CONTENTS | 1 | • 1 | to Device Supported Functionality Matrices | |---|------|--------------------------------------------| | | 1.1 | Supported Feature Flags | | | 1.2 | Supported Cipher Algorithms | | | 1.3 | Supported Authentication Algorithms | | | 1.4 | Supported AEAD Algorithms | | | 1.5 | Supported Asymmetric Algorithms | | 2 | AESI | N-NI Multi Buffer Crypto Poll Mode Driver | | | 2.1 | Features | | | 2.2 | Limitations | | | 2.3 | Installation | | | 2.4 | Initialization | | | 2.5 | Extra notes | | 3 | AFS. | NI GCM Crypto Poll Mode Driver | | J | 3.1 | Features | | | 3.2 | Limitations | | | 3.3 | Installation | | | 3.4 | Initialization | | | | | | 4 | | Iv8 Crypto Poll Mode Driver | | | 4.1 | Features | | | 4.2 | Installation | | | 4.3 | Initialization | | | 4.4 | Limitations | | 5 | NXP | CAAM JOB RING (caam_jr) | | | 5.1 | Architecture | | | 5.2 | Implementation | | | 5.3 | Features | | | 5.4 | Supported DPAA SoCs | | | 5.5 | Limitations | | | 5.6 | Prerequisites | | | 5.7 | Pre-Installation Configuration | | | 5.8 | Installations | | | 5.9 | Enabling logs | | 6 | AMD | CCP Poll Mode Driver | | | 6.1 | Features | | | 6.2 | Installation | | | | | | | 6.3<br>6.4 | Initialization | | |----|--------------------------------------------------------------------------------------------------------------------------------------------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------| | 7 | NXP | DPAA2 CAAM (DPAA2_SEC) | 23 | | | 7.1 | Architecture | 23 | | | 7.2 | Implementation | | | | 7.3 | Features | | | | 7.4 | Supported DPAA2 SoCs | | | | 7.5 | Whitelisting & Blacklisting | | | | 7.6 | Limitations | | | | 7.7 | | | | | | Prerequisites | | | | 7.8 | Pre-Installation Configuration | | | | 7.9 | Installations | | | | 7.10 | Enabling logs | 26 | | 8 | NXP | DPAA CAAM (DPAA_SEC) | 27 | | | 8.1 | Architecture | 27 | | | 8.2 | Implementation | 27 | | | 8.3 | Features | 27 | | | 8.4 | Supported DPAA SoCs | 28 | | | 8.5 | Whitelisting & Blacklisting | | | | 8.6 | Limitations | 28 | | | 8.7 | Prerequisites | | | | 8.8 | Pre-Installation Configuration | | | | 8.9 | Installations | | | | | | | | | 8.10 | Enabling logs | 25 | | | | | | | | | JMI Crypto Poll Mode Driver | 30 | | | 9.1 | Features | 30 | | | | Features | 30<br>30 | | | 9.1 | Features | 30<br>30 | | | 9.1<br>9.2 | Features | 30<br>30<br>30 | | | 9.1<br>9.2<br>9.3 | Features | 30<br>30<br>30 | | | 9.1<br>9.2<br>9.3<br>9.4<br>9.5 | Features | 30<br>30<br>31<br>31 | | | 9.1<br>9.2<br>9.3<br>9.4<br>9.5 | Features Limitations Installation Initialization Extra notes on KASUMI F9 IM OCTEON TX Crypto Poll Mode Driver | 30<br>30<br>31<br>31<br>33 | | | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Caviu</b> | Features Limitations Installation Initialization Extra notes on KASUMI F9 IMPOCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms | 30<br>30<br>31<br>31<br>33<br>33 | | | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Caviu</b><br>10.1<br>10.2 | Features | 30<br>30<br>31<br>31<br>33<br>33<br>34 | | | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Caviu</b><br>10.1<br>10.2<br>10.3 | Features Limitations Installation Initialization Extra notes on KASUMI F9 IMMOCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags | 30<br>30<br>31<br>31<br>33<br>33<br>34<br>34 | | | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Cavit</b><br>10.1<br>10.2<br>10.3<br>10.4 | Features Limitations Installation Initialization Extra notes on KASUMI F9 IMMOCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>34 | | | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Caviu</b><br>10.1<br>10.2<br>10.3<br>10.4 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>34<br>35 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Cavio</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>34<br>35<br>35 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Cavio</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>34<br>35<br>35 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Caviu</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6<br><b>Marv</b><br>11.1 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver Features | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>35<br>35<br>36 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Cavio</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6<br><b>Marv</b><br>11.1<br>11.2 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver Features Installation | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>34<br>35<br>35<br>36<br>36<br>37 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Cavio</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6<br><b>Marv</b><br>11.1<br>11.2<br>11.3 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver Features Installation Initialization | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>35<br>35<br>36<br>37 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Cavio</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6<br><b>Marv</b><br>11.1<br>11.2 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver Features Installation Initialization | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>34<br>35<br>35<br>36<br>36<br>37 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Cavio</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6<br><b>Marv</b><br>11.1<br>11.2<br>11.3 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver Features Installation Initialization | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>35<br>35<br>36<br>37 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Caviu</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6<br><b>Marv</b><br>11.1<br>11.2<br>11.3<br>11.4 | Features Limitations Installation Initialization Extra notes on KASUMI F9 Im OCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver Features Installation Initialization Debugging Options | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>34<br>35<br>35<br>36<br>37<br>37<br>38 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Caviu</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6<br><b>Marv</b><br>11.1<br>11.2<br>11.3<br>11.4 | Features Limitations Installation Initialization Extra notes on KASUMI F9 IMMOCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver Features Installation Initialization Debugging Options Testing Testing | 30<br>30<br>31<br>31<br>31<br>33<br>34<br>34<br>35<br>35<br>36<br>37<br>37<br>38<br>38 | | 10 | 9.1<br>9.2<br>9.3<br>9.4<br>9.5<br><b>Cavio</b><br>10.1<br>10.2<br>10.3<br>10.4<br>10.5<br>10.6<br><b>Marv</b><br>11.1<br>11.2<br>11.3<br>11.4<br>11.5 | Features Limitations Installation Initialization Extra notes on KASUMI F9 IMMOCTEON TX Crypto Poll Mode Driver Supported Symmetric Crypto Algorithms Supported Asymmetric Crypto Algorithms Config flags Compilation Execution Testing ell OCTEON TX2 Crypto Poll Mode Driver Features Installation Initialization Debugging Options Testing SSL Crypto Poll Mode Driver | 30<br>30<br>31<br>31<br>33<br>34<br>34<br>35<br>35<br>36<br>37<br>38<br>38<br>38 | | | | Initialization | | |-----------|--------|-------------------------------------------------|----| | 13 | MVS | AM Crypto Poll Mode Driver | 2 | | | | Features | -2 | | | | Limitations | | | | | Installation | | | | | Initialization | | | 14 | Marv | vell NITROX Crypto Poll Mode Driver 4 | 5 | | | | Features | .5 | | | 14.2 | Limitations | .5 | | | 14.3 | Installation | .5 | | | 14.4 | Initialization | 6 | | 15 | Null | Crypto Poll Mode Driver 4 | 7 | | | 15.1 | Features | .7 | | | 15.2 | Limitations | .7 | | | 15.3 | Installation | .7 | | | 15.4 | Initialization | 8 | | 16 | Cryp | todev Scheduler Poll Mode Driver Library 4 | 9 | | | 16.1 | Limitations | .9 | | | 16.2 | Installation | 0 | | | 16.3 | Initialization | 0 | | | 16.4 | Cryptodev Scheduler Modes Overview | 0 | | <b>17</b> | SNO | W 3G Crypto Poll Mode Driver 5 | 3 | | | 17.1 | Features | 3 | | | 17.2 | Limitations | 3 | | | 17.3 | Installation | 3 | | | 17.4 | Initialization | 4 | | | | (R) QuickAssist (QAT) Crypto Poll Mode Driver 5 | | | | 18.1 | Symmetric Crypto Service on QAT | 5 | | | 18.2 | Asymmetric Crypto Service on QAT | 7 | | | 18.3 | Building PMDs on QAT | 8 | | 19 | Virtio | o Crypto Poll Mode Driver 6 | | | | 19.1 | Features | | | | 19.2 | Limitations | 7 | | | 19.3 | Virtio crypto PMD Rx/Tx Callbacks | 7 | | | 19.4 | Installation | 8 | | | 19.5 | Tests | 8 | | 20 | ZUC | Crypto Poll Mode Driver 6 | 9 | | | 20.1 | Features | 9 | | | 20.2 | Limitations | 9 | | | 20.3 | Installation | 9 | | | 20.4 | Initialization | 0 | **CHAPTER** **ONE** # **CRYPTO DEVICE SUPPORTED FUNCTIONALITY MATRICES** # 1.1 Supported Feature Flags Table 1.1: Features availability in crypto drivers | CPU Y Y AVX2 | | | | | Ta | ible . | 1.1: F | eature | s ava | ılabıl | ity in | cryp | to dri | vers | | | | | | |------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------|-----------------------------|-------------------|-------------|------------------|--------|-----------------------------|---------------------------------|-----------------------|------------------|--------------------|--------|----------------------------|-------------------------|------------------|---|------------------|------------|---| | Sym- Y | | e<br>s<br>ni<br>-<br>g<br>c | e<br>s<br>ni<br>m | r<br>m<br>v | c<br>a<br>a<br>m | C<br>C | d<br>p<br>a<br>a<br>2<br>-s | d<br>p<br>a<br>a<br>-<br>s<br>e | k<br>a<br>s<br>u<br>m | m<br>v<br>s<br>a | n<br>i t<br>r<br>o | n<br>u | 0<br>c<br>t<br>e<br>o<br>n | o<br>ct<br>e<br>o<br>nt | p<br>e<br>n<br>s | а | n<br>o<br>w<br>3 | i r<br>t i | u | | Asymmetric crypto | met-<br>ric | Y | Y | Y | Y | Y | С | | Y | Y | Y | Y | | Y | Y | Y | Y | Y | Y | | op- era- tion chain- ing HW | Asym<br>met-<br>ric | - | | | | | | | | | | | Y | Y | Y | | | | | | HW Ac- cel- er- ated Pro- to- col of- fload CPU Y Y SSE CPU Y Y AVX2 Y AVX2 Y Y AVX2 Y Y AVX Y Y Y Y Y Y Y Y Y Y | op-<br>era-<br>tion<br>chain- | | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | Y | | to- col of- fload CPU Y Y SSE CPU Y 1-AVXSupported Feature Flags CPU Y Y AVX2 | HW<br>Ac-<br>cel-<br>er-<br>ated | | | | | Y | | | | Y | Y | | Y | Y | | Y | | | | | CPU Y Y Y AVXSupported Feature Flags CPU Y Y AVX2 | to-<br>col<br>of-<br>fload | Y | Y | | Y | | Y | Y | | | | | | | | | | | | | | CPU<br>1.AVX<br>CPU<br>AVX2 | Y | | Feat | ure I | Flags | <b>3</b> | | | | | | | | | | | | 2 | #### Note: - "In Place SGL" feature flag stands for "In place Scatter-gather list", which means that an input buffer can consist of multiple segments, being the operation in-place (input address = output address). - "OOP SGL In SGL Out" feature flag stands for "Out-of-place Scatter-gather list Input, Scatter-gather list Output", which means pmd supports different scatter-gather styled input and output buffers (i.e. both can consists of multiple segments). - "OOP SGL In LB Out" feature flag stands for "Out-of-place Scatter-gather list Input, Linear Buffers Output", which means PMD supports input from scatter-gathered styled buffers, outputting linear buffers (i.e. single segment). - "OOP LB In SGL Out" feature flag stands for "Out-of-place Linear Buffers Input, Scatter-gather list Output", which means PMD supports input from linear buffer, outputting scatter-gathered styled buffers. - "OOP LB In LB Out" feature flag stands for "Out-of-place Linear Buffers Input, Linear Buffers Output", which means that Out-of-place operation is supported, with linear input and output buffers. - "RSA PRIV OP KEY EXP" feature flag means PMD support RSA private key operation (Sign and Decrypt) using exponent key type only. - "RSA PRIV OP KEY QT" feature flag means PMD support RSA private key operation (Sign and Decrypt) using quintuple (crt) type key only. - "Digest encrypted" feature flag means PMD support hash-cipher cases, where generated digest is appended to and encrypted with the data. # 1.2 Supported Cipher Algorithms Table 1.2: Cipher algorithms in crypto drivers | | | | | | | 1.2: | Cipiic | 'i uig | | | or J P | | ••• | | | | | | |------------------|------|------------|-----|----------|------|------|--------|--------|------|------------|--------|-----|------------|-----|-----|---|-----|---| | Ci- | а | а | а | С | С | d | d | k | m | n | n | 0 | 0 | 0 | q | S | ٧ | Z | | pher | e s | е | r | а | С | р | р | а | V | i t | u | c t | c t | р | а | n | ir | u | | al- | n i | s | m | а | р | a | a | s | s | r | 11 | е | е | e | t | 0 | ti | С | | go- | | ni | V | m | ۲ | a | a | u | a | 0 | | 0 | 0 | n | ` | w | 0 | | | | g c | | 8 | ''' | | 2 | ۱ | m | m | | | n | n t | s | | 3 | | | | 11(1111 | l | _ | 0 | _<br>j r | | | _ | 1 | 1111 | Х | | | | | | | | | | | m | m | | J r | | _ s | S | i | | | | t x | X | S | | g | | | | | | b | | | | ес | е | | | | | | 2 | I | | | | | | | | | | | | | С | | | | | | | | | | | | | NUL | L | | | | | | | | Y | | Y | Y | Y | | Y | | | | | AES | | Y | Y | Y | Y | Y | Y | | Y | Y | | Y | Y | Y | Y | | Y | | | CBC | l | | | | | | | | | | | | | | | | | | | (128) | l | | | | | | | | | | | | | | | | | | | AES | | Y | | Y | Y | Y | Y | | Y | Y | | Y | Y | Y | Y | | Y | | | CBC | l | 1 | | • | 1 | 1 | 1 | | 1 | 1 | | 1 | 1 | 1 | 1 | | 1 | | | | | | | | | | | | | | | | | | | | | | | (192) | | <b>3</b> 7 | | 3.7 | * 7 | 3.7 | *7 | | 3.7 | <b>3</b> 7 | | * 7 | <b>3</b> 7 | 3.7 | 3.7 | | 3.7 | | | AES | l | Y | | Y | Y | Y | Y | | Y | Y | | Y | Y | Y | Y | | Y | | | CBC | | | | | | | | | | | | | | | | | | | | (256) | | | | | | | | | | | | | | | | | | | | AES | | | | | Y | | | | Y | | | | | | | | | | | ECB | | | | | | | | | | | | | | | | | | | | (128) | ) | | | | | | | | | | | | | | | | | | | AES | | | | | Y | | | | Y | | | | | | | | | | | ECB | | | | | | | | | | | | | | | | | | | | (192) | | | | | | | | | | | | | | | | | | | | AES | | | | | Y | | | | Y | | | | | | | | | | | ECB | | | | | 1 | | | | 1 | | | | | | | | | | | (256) | l | | | | | | | | | | | | | | | | | | | | | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | AES | | I | | I | 1 | 1 | I | | I | | | 1 | 1 | ı | 1 | | | | | CTR | l | | | | | | | | | | | | | | | | | | | (128) | | | | | | | | | | | | | | | | | | | | AES | | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | CTR | | | | | | | | | | | | | | | | | | | | (192) | | | | | | | | | | | | | | | | | | | | AES | l | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | CTR | | | | | | | | | | | | | | | | | | | | (256) | ) | | | | | | | | | | | | | | | | | | | AES | | | | | | | | | | | | Y | Y | | Y | | | | | XTS | | | | | | | | | | | | | | | | | | | | (128) | l | | | | | | | | | | | | | | | | | | | AES | | | | | | | | | | | | | | | | | | | | XTS | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | (192) | | | | | | | | | | | | 37 | 37 | | 37 | | | | | AES | | | | | | | | | | | | Y | Y | | Y | | | | | XTS | | | | | | | | | | | | | | | | | | | | (256) | | | | | | | | | | | | | | | | | | | | AES | | Y | | | | | | | | | | | | | Y | | | | | DOC | l | | | | | | | | | | | | | | | | | | | 12<br>SIS<br>BPI | Sunn | orted | Cin | her / | Masi | ithm | | | | | | | | | | | | 5 | | | | | Sib | | | | | | | | | | | | | | | | | 3DE | l | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | CBC | | | | | | | | | | | | | | | | | | | # 1.3 Supported Authentication Algorithms Table 1.3: Authentication algorithms in crypto drivers | Au- | а | а | a | С | С | d | d | k | m | n | n | 0 | 0 | 0 | q | S | V | Z | |--------|----------|------|-------|-------|------|-------|------------|-----|----|-----|---|----|-----|----|-----|---|----|----------| | then- | е | е | r | а | С | р | р | а | V | it | u | С | c t | р | а | n | ir | u | | tica- | s | S | m | а | р | а | а | s | s | r | Ш | t | е | е | t | 0 | ti | С | | tion | ni | n i | V | m | | а | а | u | а | 0 | | е | 0 | n | | W | 0 | | | al- | _ | _ | 8 | _ | | 2 | _ | m | m | Х | | 0 | n t | s | | 3 | | | | go- | g | m | | j r | | _ | S | i | | | | n | X | s | | g | | | | rithm | C | b | | | | s | е | | | | | t | 2 | ı | | | | | | | m | | | | | е | С | | | | | х | | | | | | | | | | | | | | С | | | | | | | | | | | | | | NULI | | | | | | | | | Y | | Y | Y | Y | | Y | | | | | MD5 | <u> </u> | | | | | | | | Y | | - | Y | Y | Y | | | | | | MD5 | | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | HMA | | 1 | | 1 | 1 | 1 | 1 | | 1 | | | 1 | 1 | 1 | 1 | | | | | SHA1 | | Y | | | Y | | | | Y | | | Y | Y | Y | | | | | | SHA1 | | Y | Y | Y | Y | Y | Y | | Y | Y | | Y | Y | Y | Y | | Y | | | HMA | | 1 | 1 | 1 | 1 | 1 | I | | 1 | I | | I | 1 | 1 | 1 | | 1 | | | | | Y | | | V | | | | V | | | Y | Y | Y | | | | | | SHA2 | | | | 37 | Y | 3.7 | 37 | | Y | 37 | | 1 | | | 37 | | | | | SHA2 | | Y | | Y | Y | Y | Y | | Y | Y | | Y | Y | Y | Y | | | | | HMAG | | 3.7 | | | 3.7 | | | | 37 | | | 37 | 3.7 | 37 | | | | | | SHA2 | | Y | 3.7 | 3.7 | Y | 3.7 | <b>X</b> 7 | | Y | 3.7 | | Y | Y | Y | 3.7 | | | | | SHA2 | | Y | Y | Y | Y | Y | Y | | Y | Y | | Y | Y | Y | Y | | | | | HMA | | | | | | | | | | | | | | | | | | | | SHA3 | | Y | | | Y | | | | Y | | | Y | Y | Y | | | | | | SHA3 | | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | HMA | | | | | | | | | | | | | | | | | | | | SHA5 | | Y | | | Y | | | | Y | | | Y | Y | Y | | | | | | SHA5 | | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | HMA | C | | | | | | | | | | | | | | | | | | | AES | | Y | | | | | | | | | | | | | Y | | | | | XCBC | I | | | | | | | | | | | | | | | | | | | MAC | | | | | | | | | | | | | | | | | | | | AES | Y | Y | | | | | | | Y | | | Y | Y | Y | Y | | | | | GMA | | | | | | | | | | | | | | | | | | | | SNOV | V3G | | | | | Y | Y | | | | | Y | Y | | Y | Y | | | | UIA2 | | | | | | | | | | | | | | | | | | | | KA- | | | | | | | | Y | | | | Y | Y | | Y | | | | | SUMI | | | | | | | | | | | | | | | | | | | | F9 | | | | | | | | | | | | | | | | | | | | ZUC | | | | | | Y | Y | | | | | Y | Y | | Y | | | Y | | EIA3 | | | | | | | | | | | | | | | | | | | | AES | | Y | | | Y | | | | | | | | | | Y | | | | | CMAG | ¢ | | | | | | | | | | | | | | | | | | | (128) | | | | | | | | | | | | | | | | | | | | AES | | | | | Y | | | | | | | | | | | | | | | CMAG | ¢ | | | | | | | | | | | | | | | | | | | (192) | | | | | | | | | | | | | | | | | | | | AES | | | | | Y | | | | | | | | | | | | | | | 1.3. S | บุทก | rted | Διιth | entic | atio | n Alc | orith | ıms | | | | | | | | | | 7 | | (230) | | | | | | | | | | | | | | | | L | | <u> </u> | | SHA3 | | | | | Y | | | | | | | | | | | | | | | SHA3 | _224 | | | | Y | | | | | | | | | | | | | | # 1.4 Supported AEAD Algorithms Table 1.4: AEAD algorithms in crypto drivers | AEA | Da | а | а | С | С | d | d | k | m | n | n | 0 | 0 | 0 | q | s | V | Z | |-------|-----|----|---|-----|---|-----|---|---|---|----|---|-----|-----|---|---|---|----|---| | al- | e s | е | r | а | С | р | р | а | v | it | u | c t | c t | р | a | n | ir | u | | go- | ni | s | m | а | р | a | a | s | s | r | Ш | е | е | e | t | О | ti | С | | rithn | h | ni | V | m | - | а | а | u | а | 0 | | 0 | 0 | n | | w | 0 | | | | gс | _ | 8 | _ | | 2 | _ | m | m | х | | n | n t | s | | 3 | | | | | m | m | | j r | | _ s | s | i | | | | t x | Х | s | | g | | | | | | b | | | | ес | е | | | | | | 2 | 1 | | | | | | | | | | | | | С | | | | | | | | | | | | | AES | | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | GCM | | | | | | | | | | | | | | | | | | | | (128) | | | | | | | | | | | | | | | | | | | | AES | | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | GCM | | | | | | | | | | | | | | | | | | | | (192 | | | | | | | | | | | | | | | | | | | | AES | 1 | Y | | Y | Y | Y | Y | | Y | | | Y | Y | Y | Y | | | | | GCM | | | | | | | | | | | | | | | | | | | | (256) | | | | | | | | | | | | | | | | | | | | AES | 1 | Y | | | | | | | | | | | | Y | Y | | | | | CCM | | | | | | | | | | | | | | | | | | | | (128) | | | | | | | | | | | | | | | | | | | | AES | 1 | | | | | | | | | | | | | Y | Y | | | | | CCM | | | | | | | | | | | | | | | | | | | | (192 | | | | | | | | | | | | | | | | | | | | AES | 1 | | | | | | | | | | | | | Y | Y | | | | | CCM | | | | | | | | | | | | | | | | | | | | (256) | ) | | | | | | | | | | | | | | | | | | # 1.5 Supported Asymmetric Algorithms Table 1.5: Asymmetric algorithms in crypto drivers | Asym | ı-a | а | а | С | С | d | d | k | m | n | n | 0 | 0 | 0 | q | S | V | Z | |--------|-----|----|---|-----|---|---|---|---|---|----|----|-----|-----|---|---|---|----|---| | met- | е | е | r | а | С | р | р | а | v | it | u | ct | c t | р | a | n | ir | u | | ric | s | s | m | а | р | а | а | s | s | r | 11 | е | е | е | t | 0 | ti | С | | al- | n i | ni | v | m | - | а | а | u | а | 0 | | 0 | 0 | n | | w | 0 | | | go- | _ | _ | 8 | _ | | 2 | _ | m | m | х | | n | n t | s | | 3 | | | | rithm | g | m | | j r | | _ | s | i | | | | t x | х | s | | g | | | | | С | b | | | | S | е | | | | | | 2 | I | | | | | | | m | | | | | е | С | | | | | | | | | | | | | | | | | | | С | | | | | | | | | | | | | | RSA | | | | | | | | | | | | Y | Y | Y | Y | | | | | DSA | | | | | | | | | | | | | | Y | | | | | | Mod- | | | | | | | | | | | | Y | Y | Y | Y | | | | | ular | | | | | | | | | | | | | | | | | | | | Ex- | | | | | | | | | | | | | | | | | | | | po- | | | | | | | | | | | | | | | | | | | | nen- | | | | | | | | | | | | | | | | | | | | tia- | | | | | | | | | | | | | | | | | | | | tion | | | | | | | | | | | | | | | | | | | | Mod- | | | | | | | | | | | | | | Y | Y | | | | | ular | | | | | | | | | | | | | | | | | | | | In- | | | | | | | | | | | | | | | | | | | | ver- | | | | | | | | | | | | | | | | | | | | sion | | | | | | | | | | | | | | | | | | | | Diffie | | | | | | | | | | | | | | Y | | | | | | hellm | | | | | | | | | | | | 3.7 | 3.7 | | | | | | | ECDS | | | | | | | | | | | | Y | Y | | | | | | | ECPN | 1 | | | | | | | | | | | Y | Y | | | | | | ### **AESN-NI MULTI BUFFER CRYPTO POLL MODE DRIVER** The AESNI MB PMD (**librte\_pmd\_aesni\_mb**) provides poll mode crypto driver support for utilizing Intel multi buffer library, see the white paper Fast Multi-buffer IPsec Implementations on Intel® Architecture Processors. The AES-NI MB PMD has current only been tested on Fedora 21 64-bit with gcc. ### 2.1 Features AESNI MB PMD has support for: #### Cipher algorithms: - RTE\_CRYPTO\_CIPHER\_AES128\_CBC - RTE\_CRYPTO\_CIPHER\_AES192\_CBC - RTE\_CRYPTO\_CIPHER\_AES256\_CBC - RTE\_CRYPTO\_CIPHER\_AES128\_CTR - RTE\_CRYPTO\_CIPHER\_AES192\_CTR - RTE\_CRYPTO\_CIPHER\_AES256\_CTR - RTE\_CRYPTO\_CIPHER\_AES\_DOCSISBPI - RTE\_CRYPTO\_CIPHER\_DES\_CBC - RTE\_CRYPTO\_CIPHER\_3DES\_CBC - RTE\_CRYPTO\_CIPHER\_DES\_DOCSISBPI # Hash algorithms: - RTE\_CRYPTO\_HASH\_MD5\_HMAC - RTE\_CRYPTO\_HASH\_SHA1\_HMAC - RTE\_CRYPTO\_HASH\_SHA224\_HMAC - RTE\_CRYPTO\_HASH\_SHA256\_HMAC - RTE\_CRYPTO\_HASH\_SHA384\_HMAC - RTE\_CRYPTO\_HASH\_SHA512\_HMAC - RTE\_CRYPTO\_HASH\_AES\_XCBC\_HMAC - RTE\_CRYPTO\_HASH\_AES\_CMAC - RTE\_CRYPTO\_HASH\_AES\_GMAC - RTE\_CRYPTO\_HASH\_SHA1 - RTE\_CRYPTO\_HASH\_SHA224 - RTE\_CRYPTO\_HASH\_SHA256 - RTE\_CRYPTO\_HASH\_SHA384 - RTE\_CRYPTO\_HASH\_SHA512 ### **AEAD** algorithms: - RTE\_CRYPTO\_AEAD\_AES\_CCM - RTE\_CRYPTO\_AEAD\_AES\_GCM ## 2.2 Limitations • Chained mbufs are not supported. ### 2.3 Installation To build DPDK with the AESNI\_MB\_PMD the user is required to download the multi-buffer library from here and compile it on their user system before building DPDK. The latest version of the library supported by this PMD is v0.53, which can be downloaded from https://github.com/01org/intel-ipsec-mb/archive/v0.53.zip. ``` make make install ``` **Note:** Compilation of the Multi-Buffer library is broken when GCC < 5.0, if library <= v0.53. If a lower GCC version than 5.0, the workaround proposed by the following link should be used: https://github.com/intel/intel-ipsec-mb/issues/40. As a reference, the following table shows a mapping between the past DPDK versions and the Multi-Buffer library version supported by them: Table 2.1: DPDK and Multi-Buffer library version compatibility | DPDK version | Multi-buffer library version | |---------------|------------------------------| | 2.2 - 16.11 | 0.43 - 0.44 | | 17.02 | 0.44 | | 17.05 - 17.08 | 0.45 - 0.48 | | 17.11 | 0.47 - 0.48 | | 18.02 | 0.48 | | 18.05 - 19.02 | 0.49 - 0.52 | | 19.05 - 19.08 | 0.52 | | 19.11+ | 0.52 - 0.53 | 2.2. Limitations #### 2.4 Initialization In order to enable this virtual crypto PMD, user must: - Build the multi buffer library (explained in Installation section). - Set CONFIG\_RTE\_LIBRTE\_PMD\_AESNI\_MB=y in config/common\_base. To use the PMD in an application, user must: - Call rte\_vdev\_init("crypto\_aesni\_mb") within the application. - Use -vdev="crypto\_aesni\_mb" in the EAL options, which will call rte\_vdev\_init() internally. The following parameters (all optional) can be provided in the previous two calls: - socket\_id: Specify the socket where the memory for the device is going to be allocated (by default, socket\_id will be the socket where the core that is creating the PMD is running on). - max\_nb\_queue\_pairs: Specify the maximum number of queue pairs in the device (8 by default). - max\_nb\_sessions: Specify the maximum number of sessions that can be created (2048 by default). #### Example: ``` ./l2fwd-crypto -l 1 -n 4 --vdev="crypto_aesni_mb,socket_id=0,max_nb_sessions=128" \ -- -p 1 --cdev SW --chain CIPHER_HASH --cipher_algo "aes-cbc" --auth_algo "shal-hmac" ``` ### 2.5 Extra notes For AES Counter mode (AES-CTR), the library supports two different sizes for Initialization Vector (IV): - 12 bytes: used mainly for IPsec, as it requires 12 bytes from the user, which internally are appended the counter block (4 bytes), which is set to 1 for the first block (no padding required from the user) - 16 bytes: when passing 16 bytes, the library will take them and use the last 4 bytes as the initial counter block for the first block. 2.4. Initialization 12 **CHAPTER** THREE ### **AES-NI GCM CRYPTO POLL MODE DRIVER** The AES-NI GCM PMD (**librte\_pmd\_aesni\_gcm**) provides poll mode crypto driver support for utilizing Intel multi buffer library (see AES-NI Multi-buffer PMD documentation to learn more about it, including installation). The AES-NI GCM PMD supports synchronous mode of operation with rte\_cryptodev\_sym\_cpu\_crypto\_process function call for both AES-GCM and GMAC, however GMAC support is limited to one segment per operation. Please refer to rte\_crypto programmer's guide for more detail. # 3.1 Features AESNI GCM PMD has support for: Authentication algorithms: • RTE\_CRYPTO\_AUTH\_AES\_GMAC **AEAD** algorithms: • RTE\_CRYPTO\_AEAD\_AES\_GCM ### 3.2 Limitations - In out-of-place operations, chained destination mbufs are not supported. - Chained mbufs are only supported by RTE\_CRYPTO\_AEAD\_AES\_GCM algorithm, not RTE\_CRYPTO\_AUTH\_AES\_GMAC. - Cipher only is not supported. ### 3.3 Installation To build DPDK with the AESNI\_GCM\_PMD the user is required to download the multi-buffer library from here and compile it on their user system before building DPDK. The latest version of the library supported by this PMD is v0.53, which can be downloaded in https://github.com/01org/intel-ipsec-mb/archive/v0.53.zip. make make install **Note:** Compilation of the Multi-Buffer library is broken when GCC < 5.0, if library <= v0.53. If a lower GCC version than 5.0, the workaround proposed by the following link should be used: https://github.com/intel/intel-ipsec-mb/issues/40. As a reference, the following table shows a mapping between the past DPDK versions and the external crypto libraries supported by them: Table 3.1: DPDK and external crypto library version compatibility | DPDK version | Crypto library version | |---------------|----------------------------------| | 16.04 - 16.11 | Multi-buffer library 0.43 - 0.44 | | 17.02 - 17.05 | ISA-L Crypto v2.18 | | 17.08 - 18.02 | Multi-buffer library 0.46 - 0.48 | | 18.05 - 19.02 | Multi-buffer library 0.49 - 0.52 | | 19.05+ | Multi-buffer library 0.52 - 0.53 | ## 3.4 Initialization In order to enable this virtual crypto PMD, user must: - Build the multi buffer library (explained in Installation section). - Set CONFIG\_RTE\_LIBRTE\_PMD\_AESNI\_GCM=y in config/common\_base. To use the PMD in an application, user must: - Call rte\_vdev\_init("crypto\_aesni\_gcm") within the application. - Use -vdev="crypto\_aesni\_gcm" in the EAL options, which will call rte\_vdev\_init() internally. The following parameters (all optional) can be provided in the previous two calls: - socket\_id: Specify the socket where the memory for the device is going to be allocated (by default, socket\_id will be the socket where the core that is creating the PMD is running on). - max\_nb\_queue\_pairs: Specify the maximum number of queue pairs in the device (8 by default). - max\_nb\_sessions: Specify the maximum number of sessions that can be created (2048 by default). #### Example: ``` ./l2fwd-crypto -l 1 -n 4 --vdev="crypto_aesni_gcm,socket_id=0,max_nb_sessions=128" \ -- -p 1 --cdev SW --chain AEAD --aead_algo "aes-gcm" ``` 3.4. Initialization 14 # **ARMV8 CRYPTO POLL MODE DRIVER** This code provides the initial implementation of the ARMv8 crypto PMD. The driver uses ARMv8 cryptographic extensions to process chained crypto operations in an optimized way. The core functionality is provided by a low-level library, written in the assembly code. # 4.1 Features ARMv8 Crypto PMD has support for the following algorithm pairs: Supported cipher algorithms: • RTE\_CRYPTO\_CIPHER\_AES\_CBC Supported authentication algorithms: - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC ### 4.2 Installation In order to enable this virtual crypto PMD, user must: - Download AArch64 crypto library source code from here - Export the environmental variable ARMV8\_CRYPTO\_LIB\_PATH with the path to AArch64cryptolib library. - Build the library by invoking: ``` make -C $ARMV8_CRYPTO_LIB_PATH/ ``` Set CONFIG\_RTE\_LIBRTE\_PMD\_ARMV8\_CRYPTO=y in config/defconfig\_arm64-armv8a-linux-gcc The corresponding device can be created only if the following features are supported by the CPU: - RTE\_CPUFLAG\_AES - RTE\_CPUFLAG\_SHA1 - RTE\_CPUFLAG\_SHA2 - RTE\_CPUFLAG\_NEON # 4.3 Initialization User can use app/test application to check how to use this PMD and to verify crypto processing. Test name is cryptodev\_sw\_armv8\_autotest. # 4.4 Limitations - Maximum number of sessions is 2048. - Only chained operations are supported. - AES-128-CBC is the only supported cipher variant. - Cipher input data has to be a multiple of 16 bytes. - Digest input data has to be a multiple of 8 bytes. 4.3. Initialization # NXP CAAM JOB RING (CAAM\_JR) The caam\_jr PMD provides poll mode crypto driver support for NXP SEC 4.x+ (CAAM) hardware accelerator. More information is available at: NXP Cryptographic Acceleration Technology. # 5.1 Architecture SEC is the SOC's security engine, which serves as NXP's latest cryptographic acceleration and offloading hardware. It combines functions previously implemented in separate modules to create a modular and scalable acceleration and assurance engine. It also implements block encryption algorithms, stream cipher algorithms, hashing algorithms, public key algorithms, run-time integrity checking, and a hardware random number generator. SEC performs higher-level cryptographic operations than previous NXP cryptographic accelerators. This provides significant improvement to system level performance. SEC HW accelerator above 4.x+ version are also known as CAAM. caam\_jr PMD is one of DPAA drivers which uses uio interface to interact with Linux kernel for configure and destroy the device instance (ring). # 5.2 Implementation SEC provides platform assurance by working with SecMon, which is a companion logic block that tracks the security state of the SOC. SEC is programmed by means of descriptors (not to be confused with frame descriptors (FDs)) that indicate the operations to be performed and link to the message and associated data. SEC incorporates two DMA engines to fetch the descriptors, read the message data, and write the results of the operations. The DMA engine provides a scatter/gather capability so that SEC can read and write data scattered in memory. SEC may be configured by means of software for dynamic changes in byte ordering. The default configuration for this version of SEC is little-endian mode. Note that one physical Job Ring represent one caam\_ir device. #### 5.3 Features The CAAM JR PMD has support for: Cipher algorithms: • RTE CRYPTO CIPHER 3DES CBC - RTE\_CRYPTO\_CIPHER\_AES128\_CBC - RTE\_CRYPTO\_CIPHER\_AES192\_CBC - RTE\_CRYPTO\_CIPHER\_AES256\_CBC - RTE\_CRYPTO\_CIPHER\_AES128\_CTR - RTE\_CRYPTO\_CIPHER\_AES192\_CTR - RTE\_CRYPTO\_CIPHER\_AES256\_CTR #### Hash algorithms: - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC - RTE\_CRYPTO\_AUTH\_SHA512\_HMAC - RTE CRYPTO AUTH MD5 HMAC #### **AEAD** algorithms: • RTE\_CRYPTO\_AEAD\_AES\_GCM # 5.4 Supported DPAA SoCs - LS1046A/LS1026A - LS1043A/LS1023A - LS1028A - LS1012A # 5.5 Limitations - Hash followed by Cipher mode is not supported - Only supports the session-oriented API implementation (session-less APIs are not supported). # 5.6 Prerequisites caam\_jr driver has following dependencies are not part of DPDK and must be installed separately: #### NXP Linux SDK NXP Linux software development kit (SDK) includes support for the family of QorIQ® ARM-Architecture-based system on chip (SoC) processors and corresponding boards. It includes the Linux board support packages (BSPs) for NXP SoCs, a fully operational tool chain, kernel and board specific modules. SDK and related information can be obtained from: NXP QorIQ SDK. Currently supported by DPDK: - NXP SDK 18.09+. - Supported architectures: arm64 LE. - Follow the DPDK Getting Started Guide for Linux to setup the basic DPDK environment. # 5.7 Pre-Installation Configuration # 5.7.1 Config File Options The following options can be modified in the config file to enable caam\_jr PMD. Please note that enabling debugging options may affect system performance. - CONFIG\_RTE\_LIBRTE\_PMD\_CAAM\_JR (default n) By default it is only enabled in common\_linux config. Toggle compilation of the librte\_pmd\_caam\_jr driver. - CONFIG\_RTE\_LIBRTE\_PMD\_CAAM\_JR\_BE (default n) By default it is disabled. It can be used when the underlying hardware supports the CAAM in BE mode. LS1043A, LS1046A and LS1012A support CAAM in BE mode. LS1028A supports CAAM in LE mode. #### 5.8 Installations To compile the caam\_jr PMD for Linux arm64 gcc target, run the following make command: ``` cd <DPDK-source-directory> make config T=arm64-armv8a-linux-gcc install ``` # 5.9 Enabling logs For enabling logs, use the following EAL parameter: ``` ./your_crypto_application <EAL args> --log-level=pmd.crypto.caam,<level> ``` #### AMD CCP POLL MODE DRIVER This code provides the initial implementation of the ccp poll mode driver. The CCP poll mode driver library (librte\_pmd\_ccp) implements support for AMD's cryptographic co-processor (CCP). The CCP PMD is a virtual crypto poll mode driver which schedules crypto operations to one or more available CCP hardware engines on the platform. The CCP PMD provides poll mode crypto driver support for the following hardware accelerator devices: ``` AMD Cryptographic Co-processor (0x1456) AMD Cryptographic Co-processor (0x1468) ``` ## 6.1 Features #### CCP crypto PMD has support for: #### Cipher algorithms: - RTE\_CRYPTO\_CIPHER\_AES\_CBC - RTE\_CRYPTO\_CIPHER\_AES\_ECB - RTE\_CRYPTO\_CIPHER\_AES\_CTR - RTE\_CRYPTO\_CIPHER\_3DES\_CBC #### Hash algorithms: - RTE\_CRYPTO\_AUTH\_SHA1 - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224 - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256 - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE\_CRYPTO\_AUTH\_SHA384 - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC - RTE\_CRYPTO\_AUTH\_SHA512 - RTE\_CRYPTO\_AUTH\_SHA512\_HMAC - RTE\_CRYPTO\_AUTH\_MD5\_HMAC - RTE\_CRYPTO\_AUTH\_AES\_CMAC - RTE\_CRYPTO\_AUTH\_SHA3\_224 - RTE\_CRYPTO\_AUTH\_SHA3\_224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA3\_256 - RTE\_CRYPTO\_AUTH\_SHA3\_256\_HMAC - RTE CRYPTO AUTH SHA3 384 - RTE\_CRYPTO\_AUTH\_SHA3\_384\_HMAC - RTE\_CRYPTO\_AUTH\_SHA3\_512 - RTE\_CRYPTO\_AUTH\_SHA3\_512\_HMAC #### AEAD algorithms: • RTE\_CRYPTO\_AEAD\_AES\_GCM ### 6.2 Installation To compile ccp PMD, it has to be enabled in the config/common\_base file and openssl packages have to be installed in the build environment. ``` • CONFIG RTE LIBRTE PMD CCP=y ``` For Ubuntu 16.04 LTS use below to install openssl in the build system: ``` sudo apt-get install openssl ``` This code was verified on Ubuntu 16.04. #### 6.3 Initialization Bind the CCP devices to DPDK UIO driver module before running the CCP PMD stack. e.g. for the 0x1456 device: ``` cd to the top-level DPDK directory modprobe uio insmod ./build/kmod/igb_uio.ko echo "1022 1456" > /sys/bus/pci/drivers/igb_uio/new_id ``` Another way to bind the CCP devices to DPDK UIO driver is by using the dpdk-devbind.py script. The following command assumes BFD as 0000:09:00.2: ``` cd to the top-level DPDK directory ./usertools/dpdk-devbind.py -b igb_uio 0000:09:00.2 ``` In order to enable the ccp crypto PMD, user must set CONFIG\_RTE\_LIBRTE\_PMD\_CCP=y in config/common\_base. To use the PMD in an application, user must: - Call rte\_vdev\_init("crypto\_ccp") within the application. - Use -vdev="crypto\_ccp" in the EAL options, which will call rte\_vdev\_init() internally. The following parameters (all optional) can be provided in the previous two calls: 6.2. Installation 21 - socket\_id: Specify the socket where the memory for the device is going to be allocated. (by default, socket\_id will be the socket where the core that is creating the PMD is running on). - max\_nb\_queue\_pairs: Specify the maximum number of queue pairs in the device. - max\_nb\_sessions: Specify the maximum number of sessions that can be created (2048 by default). - ccp\_auth\_opt: Specify authentication operations to perform on CPU using openssl APIs. To validate ccp pmd, 12fwd-crypto example can be used with following command: The CCP PMD also supports computing authentication over CPU with cipher offloaded to CCP. To enable this feature, pass an additional argument as ccp\_auth\_opt=1 to -vdev parameters as following: ### 6.4 Limitations - Chained mbufs are not supported. - MD5\_HMAC is supported only for CPU based authentication. 6.4. Limitations 22 # NXP DPAA2 CAAM (DPAA2\_SEC) The DPAA2\_SEC PMD provides poll mode crypto driver support for NXP DPAA2 CAAM hardware accelerator. ### 7.1 Architecture SEC is the SOC's security engine, which serves as NXP's latest cryptographic acceleration and offloading hardware. It combines functions previously implemented in separate modules to create a modular and scalable acceleration and assurance engine. It also implements block encryption algorithms, stream cipher algorithms, hashing algorithms, public key algorithms, run-time integrity checking, and a hardware random number generator. SEC performs higher-level cryptographic operations than previous NXP cryptographic accelerators. This provides significant improvement to system level performance. DPAA2\_SEC is one of the hardware resource in DPAA2 Architecture. More information on DPAA2 Architecture is described in dpaa2\_overview. DPAA2\_SEC PMD is one of DPAA2 drivers which interacts with Management Complex (MC) portal to access the hardware object - DPSECI. The MC provides access to create, discover, connect, configure and destroy dpseci objects in DPAA2\_SEC PMD. DPAA2\_SEC PMD also uses some of the other hardware resources like buffer pools, queues, queue portals to store and to enqueue/dequeue data to the hardware SEC. DPSECI objects are detected by PMD using a resource container called DPRC (like in dpaa2\_overview). #### For example: # 7.2 Implementation SEC provides platform assurance by working with SecMon, which is a companion logic block that tracks the security state of the SOC. SEC is programmed by means of descriptors (not to be confused with frame descriptors (FDs)) that indicate the operations to be performed and link to the message and associated data. SEC incorporates two DMA engines to fetch the descriptors, read the message data, and write the results of the operations. The DMA engine provides a scatter/gather capability so that SEC can read and write data scattered in memory. SEC may be configured by means of software for dynamic changes in byte ordering. The default configuration for this version of SEC is little-endian mode. A block diagram similar to dpaa2 NIC is shown below to show where DPAA2\_SEC fits in the DPAA2 Bus model # 7.3 Features The DPAA2\_SEC PMD has support for: #### Cipher algorithms: - RTE\_CRYPTO\_CIPHER\_3DES\_CBC - RTE\_CRYPTO\_CIPHER\_AES128\_CBC - RTE\_CRYPTO\_CIPHER\_AES192\_CBC - RTE\_CRYPTO\_CIPHER\_AES256\_CBC - RTE\_CRYPTO\_CIPHER\_AES128\_CTR - RTE\_CRYPTO\_CIPHER\_AES192\_CTR - RTE\_CRYPTO\_CIPHER\_AES256\_CTR ### Hash algorithms: - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC 7.3. Features 24 - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC - RTE\_CRYPTO\_AUTH\_SHA512\_HMAC - RTE\_CRYPTO\_AUTH\_MD5\_HMAC #### AEAD algorithms: • RTE\_CRYPTO\_AEAD\_AES\_GCM # 7.4 Supported DPAA2 SoCs - LS2160A - LS2084A/LS2044A - LS2088A/LS2048A - LS1088A/LS1048A # 7.5 Whitelisting & Blacklisting For blacklisting a DPAA2 SEC device, following commands can be used. ``` <dpdk app> <EAL args> -b "fslmc:dpseci.x" -- ... ``` Where x is the device object id as configured in resource container. ### 7.6 Limitations - · Hash followed by Cipher mode is not supported - Only supports the session-oriented API implementation (session-less APIs are not supported). # 7.7 Prerequisites DPAA2\_SEC driver has similar pre-requisites as described in dpaa2\_overview. The following dependencies are not part of DPDK and must be installed separately: See ../platform/dpaa2 for setup information Currently supported by DPDK: - NXP SDK 19.09+. - MC Firmware version 10.18.0 and higher. - Supported architectures: arm64 LE. - Follow the DPDK Getting Started Guide for Linux to setup the basic DPDK environment. # 7.8 Pre-Installation Configuration # 7.8.1 Config File Options Basic DPAA2 config file options are described in dpaa2\_overview. In addition to those, the following options can be modified in the config file to enable DPAA2\_SEC PMD. Please note that enabling debugging options may affect system performance. • CONFIG\_RTE\_LIBRTE\_PMD\_DPAA2\_SEC (default n) By default it is only enabled in defconfig\_arm64-dpaa-\* config. Toggle compilation of the librte\_pmd\_dpaa2\_sec driver. ### 7.9 Installations To compile the DPAA2\_SEC PMD for Linux arm64 gcc target, run the following make command: ``` cd <DPDK-source-directory> make config T=arm64-dpaa-linux-gcc install ``` # 7.10 Enabling logs For enabling logs, use the following EAL parameter: ``` ./your_crypto_application <EAL args> --log-level=pmd.crypto.dpaa2:<level> ``` Using crypto.dpaa2 as log matching criteria, all Crypto PMD logs can be enabled which are lower than logging level. # NXP DPAA CAAM (DPAA\_SEC) The DPAA\_SEC PMD provides poll mode crypto driver support for NXP DPAA CAAM hardware accelerator. ### 8.1 Architecture SEC is the SOC's security engine, which serves as NXP's latest cryptographic acceleration and offloading hardware. It combines functions previously implemented in separate modules to create a modular and scalable acceleration and assurance engine. It also implements block encryption algorithms, stream cipher algorithms, hashing algorithms, public key algorithms, run-time integrity checking, and a hardware random number generator. SEC performs higher-level cryptographic operations than previous NXP cryptographic accelerators. This provides significant improvement to system level performance. DPAA\_SEC is one of the hardware resource in DPAA Architecture. More information on DPAA Architecture is described in dpaa\_overview. DPAA\_SEC PMD is one of DPAA drivers which interacts with QBMAN to create, configure and destroy the device instance using queue pair with CAAM portal. DPAA\_SEC PMD also uses some of the other hardware resources like buffer pools, queues, queue portals to store and to enqueue/dequeue data to the hardware SEC. # 8.2 Implementation SEC provides platform assurance by working with SecMon, which is a companion logic block that tracks the security state of the SOC. SEC is programmed by means of descriptors (not to be confused with frame descriptors (FDs)) that indicate the operations to be performed and link to the message and associated data. SEC incorporates two DMA engines to fetch the descriptors, read the message data, and write the results of the operations. The DMA engine provides a scatter/gather capability so that SEC can read and write data scattered in memory. SEC may be configured by means of software for dynamic changes in byte ordering. The default configuration for this version of SEC is little-endian mode. #### 8.3 Features The DPAA PMD has support for: Cipher algorithms: • RTE\_CRYPTO\_CIPHER\_3DES\_CBC - RTE\_CRYPTO\_CIPHER\_AES128\_CBC - RTE\_CRYPTO\_CIPHER\_AES192\_CBC - RTE\_CRYPTO\_CIPHER\_AES256\_CBC - RTE\_CRYPTO\_CIPHER\_AES128\_CTR - RTE\_CRYPTO\_CIPHER\_AES192\_CTR - RTE\_CRYPTO\_CIPHER\_AES256\_CTR - RTE\_CRYPTO\_CIPHER\_SNOW3G\_UEA2 - RTE\_CRYPTO\_CIPHER\_ZUC\_EEA3 #### Hash algorithms: - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC - RTE\_CRYPTO\_AUTH\_SHA512\_HMAC - RTE\_CRYPTO\_AUTH\_SNOW3G\_UIA2 - RTE\_CRYPTO\_AUTH\_MD5\_HMAC - RTE\_CRYPTO\_AUTH\_ZUC\_EIA3 #### AEAD algorithms: • RTE\_CRYPTO\_AEAD\_AES\_GCM # 8.4 Supported DPAA SoCs - LS1046A/LS1026A - LS1043A/LS1023A # 8.5 Whitelisting & Blacklisting For blacklisting a DPAA device, following commands can be used. ``` <dpdk app> <EAL args> -b "dpaa:dpaa_sec-X" -- ... e.g. "dpaa:dpaa_sec-1" or to disable all 4 SEC devices -b "dpaa:dpaa_sec-1" -b "dpaa:dpaa_sec-2" -b "dpaa:dpaa_sec-3" -b "dpaa:dpaa_sec-4" ``` # 8.6 Limitations - · Hash followed by Cipher mode is not supported - Only supports the session-oriented API implementation (session-less APIs are not supported). 29 # 8.7 Prerequisites DPAA\_SEC driver has similar pre-requisites as described in dpaa\_overview. See ../platform/dpaa for setup information • Follow the DPDK Getting Started Guide for Linux to setup the basic DPDK environment. # 8.8 Pre-Installation Configuration # 8.8.1 Config File Options Basic DPAA config file options are described in dpaa\_overview. In addition to those, the following options can be modified in the config file to enable DPAA\_SEC PMD. Please note that enabling debugging options may affect system performance. • CONFIG\_RTE\_LIBRTE\_PMD\_DPAA\_SEC (default n) By default it is only enabled in defconfig\_arm64-dpaa-\* config. Toggle compilation of the librte\_pmd\_dpaa\_sec driver. # 8.9 Installations To compile the DPAA\_SEC PMD for Linux arm64 gcc target, run the following make command: ``` cd <DPDK-source-directory> make config T=arm64-dpaa-linux-gcc install ``` # 8.10 Enabling logs For enabling logs, use the following EAL parameter: ``` ./your_crypto_application <EAL args> --log-level=pmd.crypto.dpaa:<level> ``` Using pmd.crypto.dpaa as log matching criteria, all Crypto PMD logs can be enabled which are lower than logging level. 8.7. Prerequisites **CHAPTER** NINE # **KASUMI CRYPTO POLL MODE DRIVER** The KASUMI PMD (**librte\_pmd\_kasumi**) provides poll mode crypto driver support for utilizing Intel IPSec Multi-buffer library which implements F8 and F9 functions for KASUMI UEA1 cipher and UIA1 hash algorithms. ### 9.1 Features KASUMI PMD has support for: Cipher algorithm: • RTE\_CRYPTO\_CIPHER\_KASUMI\_F8 Authentication algorithm: • RTE\_CRYPTO\_AUTH\_KASUMI\_F9 # 9.2 Limitations - · Chained mbufs are not supported. - KASUMI(F9) supported only if hash offset and length field is byte-aligned. - In-place bit-level operations for KASUMI(F8) are not supported (if length and/or offset of data to be ciphered is not byte-aligned). ### 9.3 Installation To build DPDK with the KASUMI\_PMD the user is required to download the multi-buffer library from here and compile it on their user system before building DPDK. The latest version of the library supported by this PMD is v0.53, which can be downloaded from https://github.com/01org/intel-ipsec-mb/archive/v0.53.zip. After downloading the library, the user needs to unpack and compile it on their system before building DPDK: ``` make make install ``` **Note:** Compilation of the Multi-Buffer library is broken when GCC < 5.0, if library <= v0.53. If a lower GCC version than 5.0, the workaround proposed by the following link should be used: https://github.com/intel/intel-ipsec-mb/issues/40. As a reference, the following table shows a mapping between the past DPDK versions and the external crypto libraries supported by them: Table 9.1: DPDK and external crypto library version compatibility | DPDK version | Crypto library version | |---------------|---------------------------| | 16.11 - 19.11 | LibSSO KASUMI | | 20.02+ | Multi-buffer library 0.53 | ### 9.4 Initialization In order to enable this virtual crypto PMD, user must: - Build the multi buffer library (explained in Installation section). - Build DPDK as follows: ``` make config T=x86_64-native-linux-gcc sed -i 's,\(CONFIG_RTE_LIBRTE_PMD_KASUMI\)=n,\1=y,' build/.config make ``` To use the PMD in an application, user must: - Call rte\_vdev\_init("crypto\_kasumi") within the application. - Use -vdev="crypto\_kasumi" in the EAL options, which will call rte\_vdev\_init() internally. The following parameters (all optional) can be provided in the previous two calls: - socket\_id: Specify the socket where the memory for the device is going to be allocated (by default, socket\_id will be the socket where the core that is creating the PMD is running on). - max nb queue pairs: Specify the maximum number of queue pairs in the device (8 by default). - max\_nb\_sessions: Specify the maximum number of sessions that can be created (2048 by default). #### Example: ``` ./12fwd-crypto -l 1 -n 4 --vdev="crypto_kasumi,socket_id=0,max_nb_sessions=128" \ -- -p 1 --cdev SW --chain CIPHER_ONLY --cipher_algo "kasumi-f8" ``` #### 9.5 Extra notes on KASUMI F9 When using KASUMI F9 authentication algorithm, the input buffer must be constructed according to the 3GPP KASUMI specifications (section 4.4, page 13): http://cryptome.org/3gpp/35201-900.pdf. Input buffer has to have COUNT (4 bytes), FRESH (4 bytes), MESSAGE and DIRECTION (1 bit) concatenated. After the DIRECTION bit, a single '1' bit is appended, followed by between 0 and 7 '0' bits, so that the total length of the buffer is multiple of 8 bits. Note that the actual message can be any length, specified in bits. 9.4. Initialization 31 Once this buffer is passed this way, when creating the crypto operation, length of data to authenticate (op.sym.auth.data.length) must be the length of all the items described above, including the padding at the end. Also, offset of data to authenticate (op.sym.auth.data.offset) must be such that points at the start of the COUNT bytes. #### CAVIUM OCTEON TX CRYPTO POLL MODE DRIVER The OCTEON TX crypto poll mode driver provides support for offloading cryptographic operations to cryptographic accelerator units on **OCTEON TX** <sup>®</sup> family of processors (CN8XXX). The OCTEON TX crypto poll mode driver enqueues the crypto request to this accelerator and dequeues the response once the operation is completed. ## 10.1 Supported Symmetric Crypto Algorithms ## 10.1.1 Cipher Algorithms - RTE\_CRYPTO\_CIPHER\_NULL - RTE\_CRYPTO\_CIPHER\_3DES\_CBC - RTE\_CRYPTO\_CIPHER\_3DES\_ECB - RTE\_CRYPTO\_CIPHER\_AES\_CBC - RTE\_CRYPTO\_CIPHER\_AES\_CTR - RTE\_CRYPTO\_CIPHER\_AES\_XTS - RTE\_CRYPTO\_CIPHER\_DES\_CBC - RTE\_CRYPTO\_CIPHER\_KASUMI\_F8 - RTE\_CRYPTO\_CIPHER\_SNOW3G\_UEA2 - RTE\_CRYPTO\_CIPHER\_ZUC\_EEA3 ## 10.1.2 Hash Algorithms - RTE\_CRYPTO\_AUTH\_NULL - RTE\_CRYPTO\_AUTH\_AES\_GMAC - RTE\_CRYPTO\_AUTH\_KASUMI\_F9 - RTE\_CRYPTO\_AUTH\_MD5 - RTE\_CRYPTO\_AUTH\_MD5\_HMAC - RTE\_CRYPTO\_AUTH\_SHA1 - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224 - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256 - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE CRYPTO AUTH SHA384 - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC - RTE\_CRYPTO\_AUTH\_SHA512 - RTE\_CRYPTO\_AUTH\_SHA512\_HMAC - RTE\_CRYPTO\_AUTH\_SNOW3G\_UIA2 - RTE\_CRYPTO\_AUTH\_ZUC\_EIA3 ## 10.1.3 AEAD Algorithms • RTE\_CRYPTO\_AEAD\_AES\_GCM ## 10.2 Supported Asymmetric Crypto Algorithms - RTE\_CRYPTO\_ASYM\_XFORM\_RSA - RTE\_CRYPTO\_ASYM\_XFORM\_MODEX # 10.3 Config flags For compiling the OCTEON TX crypto poll mode driver, please check if the CON-FIG\_RTE\_LIBRTE\_PMD\_OCTEONTX\_CRYPTO setting is set to *y* in config/common\_base file. • CONFIG\_RTE\_LIBRTE\_PMD\_OCTEONTX\_CRYPTO=y # 10.4 Compilation The OCTEON TX crypto poll mode driver can be compiled either natively on **OCTEON TX** <sup>®</sup> board or cross-compiled on an x86 based platform. Refer ../platform/octeontx for details about setting up the platform and building DPDK applications. **Note:** OCTEON TX crypto PF driver needs microcode to be available at /lib/firmware/ directory. Refer SDK documents for further information. SDK and related information can be obtained from: Cavium support site. ## 10.5 Execution The number of crypto VFs to be enabled can be controlled by setting sysfs entry, *sriov\_numvfs*, for the corresponding PF driver. ``` echo <num_vfs> > /sys/bus/pci/devices/<dev_bus_id>/sriov_numvfs ``` The device bus ID, *dev\_bus\_id*, to be used in the above step can be found out by using dpdk-devbind.py script. The OCTEON TX crypto PF device need to be identified and the corresponding device number can be used to tune various PF properties. Once the required VFs are enabled, dpdk-devbind.py script can be used to identify the VFs. To be accessible from DPDK, VFs need to be bound to vfio-pci driver: ``` cd <dpdk directory> ./usertools/dpdk-devbind.py -u <vf device no> ./usertools/dpdk-devbind.py -b vfio-pci <vf device no> ``` Appropriate huge page need to be setup in order to run the DPDK example applications. ``` echo 8 > /sys/kernel/mm/hugepages/hugepages-524288kB/nr_hugepages mkdir /mnt/huge mount -t hugetlbfs nodev /mnt/huge ``` Example applications can now be executed with crypto operations offloaded to OCTEON TX crypto PMD. ``` ./build/ipsec-secgw --log-level=8 -c 0xff -- -P -p 0x3 -u 0x2 --config "(1,0,0),(0,0,0)" -f ep1.cfg ``` ## 10.6 Testing The symmetric crypto operations on OCTEON TX crypto PMD may be verified by running the test application: ``` ./test RTE>>cryptodev_octeontx_autotest ``` The asymmetric crypto operations on OCTEON TX crypto PMD may be verified by running the test application: ``` ./test RTE>>cryptodev_octeontx_asym_autotest ``` 10.5. Execution 35 #### MARVELL OCTEON TX2 CRYPTO POLL MODE DRIVER The OCTEON TX2 crypto poll mode driver provides support for offloading cryptographic operations to cryptographic accelerator units on the **OCTEON TX2** <sup>®</sup> family of processors (CN9XXX). More information about OCTEON TX2 SoCs may be obtained from https://www.marvell.com ## 11.1 Features The OCTEON TX2 crypto PMD has support for: ## 11.1.1 Symmetric Crypto Algorithms #### Cipher algorithms: - RTE\_CRYPTO\_CIPHER\_NULL - RTE\_CRYPTO\_CIPHER\_3DES\_CBC - RTE\_CRYPTO\_CIPHER\_3DES\_ECB - RTE\_CRYPTO\_CIPHER\_AES\_CBC - RTE\_CRYPTO\_CIPHER\_AES\_CTR - RTE\_CRYPTO\_CIPHER\_AES\_XTS - RTE\_CRYPTO\_CIPHER\_DES\_CBC - RTE\_CRYPTO\_CIPHER\_KASUMI\_F8 - RTE\_CRYPTO\_CIPHER\_SNOW3G\_UEA2 - RTE\_CRYPTO\_CIPHER\_ZUC\_EEA3 ## Hash algorithms: - RTE\_CRYPTO\_AUTH\_NULL - RTE\_CRYPTO\_AUTH\_AES\_GMAC - RTE\_CRYPTO\_AUTH\_KASUMI\_F9 - RTE\_CRYPTO\_AUTH\_MD5 - RTE\_CRYPTO\_AUTH\_MD5\_HMAC - RTE\_CRYPTO\_AUTH\_SHA1 - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224 - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256 - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE\_CRYPTO\_AUTH\_SHA384 - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC - RTE\_CRYPTO\_AUTH\_SHA512 - RTE\_CRYPTO\_AUTH\_SHA512\_HMAC - RTE\_CRYPTO\_AUTH\_SNOW3G\_UIA2 - RTE\_CRYPTO\_AUTH\_ZUC\_EIA3 #### **AEAD** algorithms: • RTE\_CRYPTO\_AEAD\_AES\_GCM ## 11.1.2 Asymmetric Crypto Algorithms - RTE\_CRYPTO\_ASYM\_XFORM\_RSA - RTE\_CRYPTO\_ASYM\_XFORM\_MODEX #### 11.2 Installation The OCTEON TX2 crypto PMD may be compiled natively on an OCTEON TX2 platform or cross-compiled on an x86 platform. Enable OCTEON TX2 crypto PMD in your config file: • CONFIG\_RTE\_LIBRTE\_PMD\_OCTEONTX2\_CRYPTO=y Refer to ../platform/octeontx2 for instructions to build your DPDK application. **Note:** The OCTEON TX2 crypto PMD uses services from the kernel mode OCTEON TX2 crypto PF driver in linux. This driver is included in the OCTEON TX SDK. ## 11.3 Initialization List the CPT PF devices available on your OCTEON TX2 platform: ``` lspci -d:a0fd ``` a0fd is the CPT PF device id. You should see output similar to: ``` 0002:10:00.0 Class 1080: Device 177d:a0fd ``` Set sriov\_numvfs on the CPT PF device, to create a VF: 11.2. Installation 37 ``` echo 1 > /sys/bus/pci/drivers/octeontx2-cpt/0002:10:00.0/sriov_numvfs ``` #### Bind the CPT VF device to the vfio\_pci driver: ``` echo '177d a0fe' > /sys/bus/pci/drivers/vfio-pci/new_id echo 0002:10:00.1 > /sys/bus/pci/devices/0002:10:00.1/driver/unbind echo 0002:10:00.1 > /sys/bus/pci/drivers/vfio-pci/bind ``` #### Another way to bind the VF would be to use the dpdk-devbind.py script: ``` cd <dpdk directory> ./usertools/dpdk-devbind.py -u 0002:10:00.1 ./usertools/dpdk-devbind.py -b vfio-pci 0002:10.00.1 ``` #### **Note:** Ensure that sufficient huge pages are available for your application: ``` echo 8 > /sys/kernel/mm/hugepages/hugepages-524288kB/nr_hugepages ``` Refer to linux\_gsg\_hugepages for more details. ## 11.4 Debugging Options Table 11.1: OCTEON TX2 crypto PMD debug options | # | Component | EAL log command | |---|-----------|-------------------------------------| | 1 | CPT | -log-level='pmd.crypto.octeontx2,8' | ## 11.5 Testing The symmetric crypto operations on OCTEON TX2 crypto PMD may be verified by running the test application: ``` ./test RTE>>cryptodev_octeontx2_autotest ``` The asymmetric crypto operations on OCTEON TX2 crypto PMD may be verified by running the test application: ``` ./test RTE>>cryptodev_octeontx2_asym_autotest ``` #### **OPENSSL CRYPTO POLL MODE DRIVER** This code provides the initial implementation of the openssl poll mode driver. All cryptography operations are using Openssl library crypto API. Each algorithm uses EVP interface from openssl API - which is recommended by Openssl maintainers. For more details about openssl library please visit openssl webpage: https://www.openssl.org/ ## 12.1 Features #### OpenSSL PMD has support for: #### Supported cipher algorithms: - RTE\_CRYPTO\_CIPHER\_3DES\_CBC - RTE\_CRYPTO\_CIPHER\_AES\_CBC - RTE\_CRYPTO\_CIPHER\_AES\_CTR - RTE\_CRYPTO\_CIPHER\_3DES\_CTR - RTE\_CRYPTO\_CIPHER\_DES\_DOCSISBPI ## Supported authentication algorithms: - RTE\_CRYPTO\_AUTH\_AES\_GMAC - RTE\_CRYPTO\_AUTH\_MD5 - RTE\_CRYPTO\_AUTH\_SHA1 - RTE CRYPTO AUTH SHA224 - RTE\_CRYPTO\_AUTH\_SHA256 - RTE\_CRYPTO\_AUTH\_SHA384 - RTE\_CRYPTO\_AUTH\_SHA512 - RTE\_CRYPTO\_AUTH\_MD5\_HMAC - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC • RTE\_CRYPTO\_AUTH\_SHA512\_HMAC Supported AEAD algorithms: - RTE\_CRYPTO\_AEAD\_AES\_GCM - RTE CRYPTO AEAD AES CCM Supported Asymmetric Crypto algorithms: - RTE\_CRYPTO\_ASYM\_XFORM\_RSA - RTE\_CRYPTO\_ASYM\_XFORM\_DSA - RTE\_CRYPTO\_ASYM\_XFORM\_DH - RTE\_CRYPTO\_ASYM\_XFORM\_MODINV - RTE\_CRYPTO\_ASYM\_XFORM\_MODEX ## 12.2 Installation To compile openssl PMD, it has to be enabled in the config/common\_base file and appropriate openssl packages have to be installed in the build environment. The newest openssl library version is supported: • 1.0.2h-fips 3 May 2016. Older versions that were also verified: - 1.0.1f 6 Jan 2014 - 1.0.1 14 Mar 2012 For Ubuntu 14.04 LTS these packages have to be installed in the build system: ``` sudo apt-get install openssl sudo apt-get install libc6-dev-i386 # for i686-native-linux-gcc target ``` This code was also verified on Fedora 24. This code has NOT been verified on FreeBSD yet. #### 12.3 Initialization User can use app/test application to check how to use this pmd and to verify crypto processing. Test name is cryptodev\_openssl\_autotest. For asymmetric crypto operations testing, run cryptodev\_openssl\_asym\_autotest. To verify real traffic 12fwd-crypto example can be used with this command: 12.2. Installation 40 # 12.4 Limitations - Maximum number of sessions is 2048. - Chained mbufs are supported only for source mbuf (destination must be contiguous). - Hash only is not supported for GCM and GMAC. - Cipher only is not supported for GCM and GMAC. 12.4. Limitations 41 #### MVSAM CRYPTO POLL MODE DRIVER The MVSAM CRYPTO PMD (**librte\_crypto\_mvsam\_pmd**) provides poll mode crypto driver support by utilizing MUSDK library, which provides cryptographic operations acceleration by using Security Acceleration Engine (EIP197) directly from user-space with minimum overhead and high performance. Detailed information about SoCs that use MVSAM crypto driver can be obtained here: - https://www.marvell.com/embedded-processors/armada-70xx/ - https://www.marvell.com/embedded-processors/armada-80xx/ - https://www.marvell.com/embedded-processors/armada-3700/ #### 13.1 Features #### MVSAM CRYPTO PMD has support for: #### Cipher algorithms: - RTE\_CRYPTO\_CIPHER\_NULL - RTE\_CRYPTO\_CIPHER\_AES\_CBC - RTE\_CRYPTO\_CIPHER\_AES\_CTR - RTE\_CRYPTO\_CIPHER\_AES\_ECB - RTE\_CRYPTO\_CIPHER\_3DES\_CBC - RTE\_CRYPTO\_CIPHER\_3DES\_CTR - RTE CRYPTO CIPHER 3DES ECB #### Hash algorithms: - RTE\_CRYPTO\_AUTH\_NULL - RTE\_CRYPTO\_AUTH\_MD5 - RTE\_CRYPTO\_AUTH\_MD5\_HMAC - RTE\_CRYPTO\_AUTH\_SHA1 - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224 - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256 - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE\_CRYPTO\_AUTH\_SHA384 - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC - RTE CRYPTO AUTH SHA512 - RTE\_CRYPTO\_AUTH\_SHA512\_HMAC - RTE\_CRYPTO\_AUTH\_AES\_GMAC ## **AEAD** algorithms: • RTE\_CRYPTO\_AEAD\_AES\_GCM For supported feature flags please consult Crypto Device Supported Functionality Matrices. ## 13.2 Limitations • Hardware only supports scenarios where ICV (digest buffer) is placed just after the authenticated data. Other placement will result in error. #### 13.3 Installation MVSAM CRYPTO PMD driver compilation is disabled by default due to external dependencies. Currently there are two driver specific compilation options in config/common\_base available: ``` • CONFIG RTE LIBRTE PMD MVSAM CRYPTO (default: n) ``` Toggle compilation of the librte\_pmd\_mvsam driver. MVSAM CRYPTO PMD requires MUSDK built with EIP197 support thus following extra option must be passed to the library configuration script: ``` --enable-sam [--enable-sam-statistics] [--enable-sam-debug] ``` For instructions how to build required kernel modules please refer to *doc/musdk\_get\_started.txt*. ## 13.4 Initialization After successfully building MVSAM CRYPTO PMD, the following modules need to be loaded: ``` insmod musdk_cma.ko insmod crypto_safexcel.ko rings=0,0 insmod mv_sam_uio.ko ``` The following parameters (all optional) are exported by the driver: - max\_nb\_queue\_pairs: maximum number of queue pairs in the device (default: 8 A8K, 4 A7K/A3K). - max\_nb\_sessions: maximum number of sessions that can be created (default: 2048). - socket\_id: socket on which to allocate the device resources on. 13.2. Limitations 43 #### 12fwd-crypto example application can be used to verify MVSAM CRYPTO PMD operation: ``` ./l2fwd-crypto --vdev=eth_mvpp2,iface=eth0 --vdev=crypto_mvsam -- \ --cipher_op ENCRYPT --cipher_algo aes-cbc \ --cipher_key 00:01:02:03:04:05:06:07:08:09:0a:0b:0c:0d:0e:0f \ --auth_op GENERATE --auth_algo shal-hmac \ --auth_key 10:11:12:13:14:15:16:17:18:19:1a:1b:1c:1d:1e:1f ``` 13.4. Initialization 44 **CHAPTER** ## **FOURTEEN** ## MARVELL NITROX CRYPTO POLL MODE DRIVER The Nitrox crypto poll mode driver provides support for offloading cryptographic operations to the NITROX V security processor. Detailed information about the NITROX V security processor can be obtained here: • https://www.marvell.com/security-solutions/nitrox-security-processors/nitrox-v/ ## 14.1 Features Nitrox crypto PMD has support for: Cipher algorithms: • RTE\_CRYPTO\_CIPHER\_AES\_CBC Hash algorithms: - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC ## 14.2 Limitations - AES\_CBC Cipher Only combination is not supported. - Session-less APIs are not supported. ## 14.3 Installation For compiling the Nitrox crypto PMD, please check if the CONFIG\_RTE\_LIBRTE\_PMD\_NITROX setting is set to *y* in config/common\_base file. • CONFIG\_RTE\_LIBRTE\_PMD\_NITROX=y ## 14.4 Initialization Nitrox crypto PMD depend on Nitrox kernel PF driver being installed on the platform. Nitrox PF driver is required to create VF devices which will be used by the PMD. Each VF device can enable one cryptodev PMD. Nitrox kernel PF driver is available as part of CNN55XX-Driver SDK. The SDK and it's installation instructions can be obtained from: Marvell Technical Documentation Portal. 14.4. Initialization 46 #### **NULL CRYPTO POLL MODE DRIVER** The Null Crypto PMD (**librte\_pmd\_null\_crypto**) provides a crypto poll mode driver which provides a minimal implementation for a software crypto device. As a null device it does not modify the data in the mbuf on which the crypto operation is to operate and it only has support for a single cipher and authentication algorithm. When a burst of mbufs is submitted to a Null Crypto PMD for processing then each mbuf in the burst will be enqueued in an internal buffer for collection on a dequeue call as long as the mbuf has a valid rte\_mbuf\_offload operation with a valid rte\_cryptodev\_session or rte\_crypto\_xform chain of operations. ## 15.1 Features #### Modes: - RTE\_CRYPTO\_XFORM\_CIPHER ONLY - RTE\_CRYPTO\_XFORM\_AUTH ONLY - RTE\_CRYPTO\_XFORM\_CIPHER THEN RTE\_CRYPTO\_XFORM\_AUTH - RTE\_CRYPTO\_XFORM\_AUTH THEN RTE\_CRYPTO\_XFORM\_CIPHER ## Cipher algorithms: • RTE\_CRYPTO\_CIPHER\_NULL Authentication algorithms: • RTE\_CRYPTO\_AUTH\_NULL ## 15.2 Limitations Only in-place is currently supported (destination address is the same as source address). ## 15.3 Installation The Null Crypto PMD is enabled and built by default in both the Linux and FreeBSD builds. ## 15.4 Initialization To use the PMD in an application, user must: - Call rte\_vdev\_init("crypto\_null") within the application. - Use -vdev="crypto\_null" in the EAL options, which will call rte\_vdev\_init() internally. The following parameters (all optional) can be provided in the previous two calls: - socket\_id: Specify the socket where the memory for the device is going to be allocated (by default, socket\_id will be the socket where the core that is creating the PMD is running on). - max\_nb\_queue\_pairs: Specify the maximum number of queue pairs in the device (8 by default). - max\_nb\_sessions: Specify the maximum number of sessions that can be created (2048 by default). #### Example: ``` ./l2fwd-crypto -l 1 -n 4 --vdev="crypto_null,socket_id=0,max_nb_sessions=128" \ -- -p 1 --cdev SW --chain CIPHER_ONLY --cipher_algo "null" ``` 15.4. Initialization 48 #### CRYPTODEV SCHEDULER POLL MODE DRIVER LIBRARY Scheduler PMD is a software crypto PMD, which has the capabilities of attaching hardware and/or software cryptodevs, and distributes ingress crypto ops among them in a certain manner. Fig. 16.1: Cryptodev Scheduler Overview The Cryptodev Scheduler PMD library (**librte\_pmd\_crypto\_scheduler**) acts as a software crypto PMD and shares the same API provided by librte\_cryptodev. The PMD supports attaching multiple crypto PMDs, software or hardware, as slaves, and distributes the crypto workload to them with certain behavior. The behaviors are categorizes as different "modes". Basically, a scheduling mode defines certain actions for scheduling crypto ops to its slaves. The librte\_pmd\_crypto\_scheduler library exports a C API which provides an API for attaching/detaching slaves, set/get scheduling modes, and enable/disable crypto ops reordering. ## 16.1 Limitations - Sessionless crypto operation is not supported - OOP crypto operation is not supported when the crypto op reordering feature is enabled. ## 16.2 Installation To build DPDK with CRYTPO\_SCHEDULER\_PMD the user is required to set CON-FIG\_RTE\_LIBRTE\_PMD\_CRYPTO\_SCHEDULER=y in config/common\_base, and recompile DPDK ## 16.3 Initialization To use the PMD in an application, user must: - Call rte\_vdev\_init("crypto\_scheduler") within the application. - Use -vdev="crypto\_scheduler" in the EAL options, which will call rte\_vdev\_init() internally. The following parameters (all optional) can be provided in the previous two calls: - socket\_id: Specify the socket where the memory for the device is going to be allocated (by default, socket\_id will be the socket where the core that is creating the PMD is running on). - max\_nb\_sessions: Specify the maximum number of sessions that can be created. This value may be overwritten internally if there are too many devices are attached. - slave: If a cryptodev has been initialized with specific name, it can be attached to the scheduler using this parameter, simply filling the name here. Multiple cryptodevs can be attached initially by presenting this parameter multiple times. - mode: Specify the scheduling mode of the PMD. The supported scheduling mode parameter values are specified in the "Cryptodev Scheduler Modes Overview" section. - mode\_param: Specify the mode-specific parameter. Some scheduling modes may be initialized with specific parameters other than the default ones, such as the threshold packet size of packetsize-distr mode. This parameter fulfills the purpose. - ordering: Specify the status of the crypto operations ordering feature. The value of this parameter can be "enable" or "disable". This feature is disabled by default. ## Example: ``` ... --vdev "crypto_aesni_mb0,name=aesni_mb_1" --vdev "crypto_aesni_mb1,name=aesni_mb_2" --vdev ``` #### Note: - The scheduler cryptodev cannot be started unless the scheduling mode is set and at least one slave is attached. Also, to configure the scheduler in the run-time, like attach/detach slave(s), change scheduling mode, or enable/disable crypto op ordering, one should stop the scheduler first, otherwise an error will be returned. - The crypto op reordering feature requires using the userdata field of every mbuf to be processed to store temporary data. By the end of processing, the field is set to pointing to NULL, any previously stored value of this field will be lost. # 16.4 Cryptodev Scheduler Modes Overview Currently the Crypto Scheduler PMD library supports following modes of operation: 16.2. Installation 50 #### • CDEV\_SCHED\_MODE\_ROUNDROBIN: Initialization mode parameter: round-robin Round-robin mode, which distributes the enqueued burst of crypto ops among its slaves in a round-robin manner. This mode may help to fill the throughput gap between the physical core and the existing cryptodevs to increase the overall performance. ## • CDEV\_SCHED\_MODE\_PKT\_SIZE\_DISTR: Initialization mode parameter: packet-size-distr Packet-size based distribution mode, which works with 2 slaves, the primary slave and the secondary slave, and distributes the enqueued crypto operations to them based on their data lengths. A crypto operation will be distributed to the primary slave if its data length is equal to or bigger than the designated threshold, otherwise it will be handled by the secondary slave. A typical usecase in this mode is with the QAT cryptodev as the primary and a software cryptodev as the secondary slave. This may help applications to process additional crypto workload than what the QAT cryptodev can handle on its own, by making use of the available CPU cycles to deal with smaller crypto workloads. The threshold is set to 128 bytes by default. It can be updated by calling function **rte\_cryptodev\_scheduler\_option\_set**. The parameter of **option\_type** must be **CDEV\_SCHED\_OPTION\_THRESHOLD** and **option** should point to a rte\_cryptodev\_scheduler\_threshold\_option structure filled with appropriate threshold value. Please NOTE this threshold has be a power-of-2 unsigned integer. It is possible to use **mode\_param** initialization parameter to achieve the same purpose. For example: ... -vdev "crypto\_scheduler,mode=packet-size-distr,mode\_param=threshold:512" ... The above parameter will overwrite the threshold value to 512. #### CDEV\_SCHED\_MODE\_FAILOVER: Initialization mode parameter: fail-over Fail-over mode, which works with 2 slaves, the primary slave and the secondary slave. In this mode, the scheduler will enqueue the incoming crypto operation burst to the primary slave. When one or more crypto operations fail to be enqueued, then they will be enqueued to the secondary slave. #### • CDEV\_SCHED\_MODE\_MULTICORE: Initialization mode parameter: multi-core Multi-core mode, which distributes the workload with several (up to eight) worker cores. The enqueued bursts are distributed among the worker cores in a round-robin manner. If scheduler cannot enqueue entire burst to the same worker, it will enqueue the remaining operations to the next available worker. For pure small packet size (64 bytes) traffic however the multi-core mode is not an optimal solution, as it doesn't give significant per-core performance improvement. For mixed traffic (IMIX) the optimal number of worker cores is around 2-3. For large packets (1.5 kbytes) scheduler shows linear scaling in performance up to eight cores. Each worker uses its own slave cryptodev. Only software cryptodevs are supported. Only the same type of cryptodevs should be used concurrently. The multi-core mode uses one extra parameter: • corelist: Semicolon-separated list of logical cores to be used as workers. The number of worker cores should be equal to the number of slave cryptodevs. These cores should be present in EAL core list parameter and should not be used by the application or any other process. **Example:** ... -vdev "crypto\_aesni\_mb1,name=aesni\_mb\_1" - vdev "crypto\_aesni\_mb\_pmd2,name=aesni\_mb\_2" -vdev "crypto\_scheduler,slave=aesni\_mb\_1,slave=aesni\_mb\_2,mode=multi-core,corelist=23;24" ... **CHAPTER** **SEVENTEEN** #### SNOW 3G CRYPTO POLL MODE DRIVER The SNOW3G PMD (**librte\_snow3g\_zuc**) provides poll mode crypto driver support for utilizing Intel IPSec Multi-buffer library which implements F8 and F8 functions for SNOW 3G UEA2 cipher and UIA2 hash algorithms. ## 17.1 Features SNOW 3G PMD has support for: Cipher algorithm: • RTE\_CRYPTO\_CIPHER\_SNOW3G\_UEA2 Authentication algorithm: • RTE\_CRYPTO\_AUTH\_SNOW3G\_UIA2 ## 17.2 Limitations - · Chained mbufs are not supported. - SNOW 3G (UIA2) supported only if hash offset field is byte-aligned. - In-place bit-level operations for SNOW 3G (UEA2) are not supported (if length and/or offset of data to be ciphered is not byte-aligned). #### 17.3 Installation To build DPDK with the SNOW3G\_PMD the user is required to download the multi-buffer library from here and compile it on their user system before building DPDK. The latest version of the library supported by this PMD is v0.53, which can be downloaded from https://github.com/01org/intel-ipsec-mb/archive/v0.53.zip. After downloading the library, the user needs to unpack and compile it on their system before building DPDK: ``` make make install ``` **Note:** Compilation of the Multi-Buffer library is broken when GCC < 5.0, if library <= v0.53. If a lower GCC version than 5.0, the workaround proposed by the following link should be used: https://github.com/intel/intel-ipsec-mb/issues/40. As a reference, the following table shows a mapping between the past DPDK versions and the external crypto libraries supported by them: Table 17.1: DPDK and external crypto library version compatibility | DPDK version | Crypto library version | |---------------|---------------------------| | 16.04 - 19.11 | LibSSO SNOW3G | | 20.02+ | Multi-buffer library 0.53 | ## 17.4 Initialization In order to enable this virtual crypto PMD, user must: - Build the multi buffer library (explained in Installation section). - Build DPDK as follows: ``` make config T=x86_64-native-linux-gcc sed -i 's,\(CONFIG_RTE_LIBRTE_PMD_SNOW3G\)=n,\1=y,' build/.config make ``` To use the PMD in an application, user must: - Call rte\_vdev\_init("crypto\_snow3g") within the application. - Use -vdev="crypto\_snow3g" in the EAL options, which will call rte\_vdev\_init() internally. The following parameters (all optional) can be provided in the previous two calls: - socket\_id: Specify the socket where the memory for the device is going to be allocated (by default, socket\_id will be the socket where the core that is creating the PMD is running on). - max nb queue pairs: Specify the maximum number of queue pairs in the device (8 by default). - max\_nb\_sessions: Specify the maximum number of sessions that can be created (2048 by default). #### Example: ``` ./l2fwd-crypto -l 1 -n 4 --vdev="crypto_snow3g,socket_id=0,max_nb_sessions=128" \ -- -p 1 --cdev SW --chain CIPHER_ONLY --cipher_algo "snow3g-uea2" ``` 17.4. Initialization 54 ## INTEL(R) QUICKASSIST (QAT) CRYPTO POLL MODE DRIVER QAT documentation consists of three parts: - Details of the symmetric and asymmetric crypto services below. - Details of the compression service in the compressdev drivers section. - Details of building the common QAT infrastructure and the PMDs to support the above services. See *Building PMDs on QAT* below. ## 18.1 Symmetric Crypto Service on QAT The QAT symmetric crypto PMD (hereafter referred to as *QAT SYM [PMD]*) provides poll mode crypto driver support for the following hardware accelerator devices: - Intel QuickAssist Technology DH895xCC - Intel QuickAssist Technology C62x - Intel QuickAssist Technology C3xxx - Intel QuickAssist Technology D15xx - Intel QuickAssist Technology C4xxx #### 18.1.1 Features The QAT SYM PMD has support for: #### Cipher algorithms: - RTE\_CRYPTO\_CIPHER\_3DES\_CBC - RTE\_CRYPTO\_CIPHER\_3DES\_CTR - RTE\_CRYPTO\_CIPHER\_AES128\_CBC - RTE\_CRYPTO\_CIPHER\_AES192\_CBC - RTE\_CRYPTO\_CIPHER\_AES256\_CBC - RTE\_CRYPTO\_CIPHER\_AES128\_CTR - RTE\_CRYPTO\_CIPHER\_AES192\_CTR - RTE\_CRYPTO\_CIPHER\_AES256\_CTR - RTE\_CRYPTO\_CIPHER\_AES\_XTS - RTE\_CRYPTO\_CIPHER\_SNOW3G\_UEA2 - RTE\_CRYPTO\_CIPHER\_NULL - RTE\_CRYPTO\_CIPHER\_KASUMI\_F8 - RTE\_CRYPTO\_CIPHER\_DES\_CBC - RTE\_CRYPTO\_CIPHER\_AES\_DOCSISBPI - RTE\_CRYPTO\_CIPHER\_DES\_DOCSISBPI - RTE\_CRYPTO\_CIPHER\_ZUC\_EEA3 ## Hash algorithms: - RTE\_CRYPTO\_AUTH\_SHA1\_HMAC - RTE\_CRYPTO\_AUTH\_SHA224\_HMAC - RTE\_CRYPTO\_AUTH\_SHA256\_HMAC - RTE\_CRYPTO\_AUTH\_SHA384\_HMAC - RTE\_CRYPTO\_AUTH\_SHA512\_HMAC - RTE\_CRYPTO\_AUTH\_AES\_XCBC\_MAC - RTE\_CRYPTO\_AUTH\_SNOW3G\_UIA2 - RTE\_CRYPTO\_AUTH\_MD5\_HMAC - RTE\_CRYPTO\_AUTH\_NULL - RTE\_CRYPTO\_AUTH\_KASUMI\_F9 - RTE\_CRYPTO\_AUTH\_AES\_GMAC - RTE CRYPTO AUTH ZUC EIA3 - RTE\_CRYPTO\_AUTH\_AES\_CMAC ## Supported AEAD algorithms: - RTE\_CRYPTO\_AEAD\_AES\_GCM - RTE\_CRYPTO\_AEAD\_AES\_CCM #### 18.1.2 Supported Chains All the usual chains are supported and also some mixed chains: Table 18.1: Supported hash-cipher chains for wireless digest-encrypted cases | Cipher algorithm | NULL AUTH | SNOW3G UIA2 | ZUC EIA3 | AES CMAC | |------------------|-----------|-------------|----------|----------| | NULL CIPHER | Y | 3 | 3 | Y | | SNOW3G UEA2 | 3 | Y | 3 | 3 | | ZUC EEA3 | 3 | 3 | 2&3 | 3 | | AES CTR | Y | 3 | 3 | Y | • The combinations marked as "Y" are supported on all QAT hardware versions. - The combinations marked as "2&3" are supported on GEN2/GEN3 QAT hardware only. - The combinations marked as "3" are supported on GEN3 QAT hardware only. #### 18.1.3 Limitations - Only supports the session-oriented API implementation (session-less APIs are not supported). - SNOW 3G (UEA2), KASUMI (F8) and ZUC (EEA3) supported only if cipher length and offset fields are byte-multiple. - SNOW 3G (UIA2) and ZUC (EIA3) supported only if hash length and offset fields are byte-multiple. - No BSD support as BSD QAT kernel driver not available. - ZUC EEA3/EIA3 is not supported by dh895xcc devices - Maximum additional authenticated data (AAD) for GCM is 240 bytes long and must be passed to the device in a buffer rounded up to the nearest block-size multiple (x16) and padded with zeros. - Queue-pairs are thread-safe on Intel CPUs but Queues are not (that is, within a single queue-pair all enqueues to the TX queue must be done from one thread and all dequeues from the RX queue must be done from one thread, but enqueues and dequeues may be done in different threads.) - A GCM limitation exists, but only in the case where there are multiple generations of QAT devices on a single platform. To optimise performance, the GCM crypto session should be initialised for the device generation to which the ops will be enqueued. Specifically if a GCM session is initialised on a GEN2 device, but then attached to an op enqueued to a GEN3 device, it will work but cannot take advantage of hardware optimisations in the GEN3 device. And if a GCM session is initialised on a GEN3 device, then attached to an op sent to a GEN1/GEN2 device, it will not be enqueued to the device and will be marked as failed. The simplest way to mitigate this is to use the bdf whitelist to avoid mixing devices of different generations in the same process if planning to use for GCM. #### 18.1.4 Extra notes on KASUMI F9 When using KASUMI F9 authentication algorithm, the input buffer must be constructed according to the 3GPP KASUMI specification (section 4.4, page 13). The input buffer has to have COUNT (4 bytes), FRESH (4 bytes), MESSAGE and DIRECTION (1 bit) concatenated. After the DIRECTION bit, a single '1' bit is appended, followed by between 0 and 7 '0' bits, so that the total length of the buffer is multiple of 8 bits. Note that the actual message can be any length, specified in bits. Once this buffer is passed this way, when creating the crypto operation, length of data to authenticate "op.sym.auth.data.length" must be the length of all the items described above, including the padding at the end. Also, offset of data to authenticate "op.sym.auth.data.offset" must be such that points at the start of the COUNT bytes. # 18.2 Asymmetric Crypto Service on QAT The QAT asymmetric crypto PMD (hereafter referred to as *QAT ASYM [PMD]*) provides poll mode crypto driver support for the following hardware accelerator devices: • Intel QuickAssist Technology DH895xCC - Intel QuickAssist Technology C62x - Intel QuickAssist Technology C3xxx - Intel QuickAssist Technology D15xx - Intel QuickAssist Technology C4xxx #### The QAT ASYM PMD has support for: - RTE\_CRYPTO\_ASYM\_XFORM\_MODEX - RTE\_CRYPTO\_ASYM\_XFORM\_MODINV #### 18.2.1 Limitations - Big integers longer than 4096 bits are not supported. - Queue-pairs are thread-safe on Intel CPUs but Queues are not (that is, within a single queue-pair all enqueues to the TX queue must be done from one thread and all dequeues from the RX queue must be done from one thread, but enqueues and dequeues may be done in different threads.) - RSA-2560, RSA-3584 are not supported ## 18.3 Building PMDs on QAT A QAT device can host multiple acceleration services: - · symmetric cryptography - data compression - · asymmetric cryptography These services are provided to DPDK applications via PMDs which register to implement the corresponding cryptodev and compressdev APIs. The PMDs use common QAT driver code which manages the QAT PCI device. They also depend on a QAT kernel driver being installed on the platform, see *Dependency on the QAT kernel driver* below. #### 18.3.1 Configuring and Building the DPDK QAT PMDs Further information on configuring, building and installing DPDK is described here. Quick instructions for QAT cryptodev PMD are as follows: ``` cd to the top-level DPDK directory make defconfig sed -i 's,\(CONFIG_RTE_LIBRTE_PMD_QAT_SYM\)=n,\1=y,' build/.config or/and sed -i 's,\(CONFIG_RTE_LIBRTE_PMD_QAT_ASYM\)=n,\1=y,' build/.config make ``` #### Quick instructions for QAT compressdev PMD are as follows: ``` \operatorname{cd} to the top-level DPDK directory make defconfig \operatorname{make} ``` ## 18.3.2 Build Configuration These are the build configuration options affecting QAT, and their default values: ``` CONFIG_RTE_LIBRTE_PMD_QAT=y CONFIG_RTE_LIBRTE_PMD_QAT_SYM=n CONFIG_RTE_LIBRTE_PMD_QAT_ASYM=n CONFIG_RTE_PMD_QAT_MAX_PCI_DEVICES=48 CONFIG_RTE_PMD_QAT_COMP_IM_BUFFER_SIZE=65536 ``` CONFIG\_RTE\_LIBRTE\_PMD\_QAT must be enabled for any QAT PMD to be built. Both QAT SYM PMD and QAT ASYM PMD have an external dependency on libcrypto, so are not built by default. CONFIG\_RTE\_LIBRTE\_PMD\_QAT\_SYM/ASYM should be enabled to build them. The QAT compressdev PMD has no external dependencies, so needs no configuration options and is built by default. The number of VFs per PF varies - see table below. If multiple QAT packages are installed on a platform then CONFIG\_RTE\_PMD\_QAT\_MAX\_PCI\_DEVICES should be adjusted to the number of VFs which the QAT common code will need to handle. Note: There QAT-specific) are separate config items (not for max cryp-CONFIG\_RTE\_CRYPTO\_MAX\_DEVS todevs and max compressdevs CON-FIG\_RTE\_COMPRESS\_MAX\_DEVS, if necessary these should be adjusted to handle the total of QAT and other devices which the process will use. In particular for crypto, where each QAT VF may expose two crypto devices, sym and asym, it may happen that the number of devices will be bigger than MAX\_DEVS and the process will show an error during PMD initialisation. To avoid this problem CONFIG\_RTE\_CRYPTO\_MAX\_DEVS may be increased or -w, pci-whitelist domain:bus:devid:func option may be used. QAT compression PMD needs intermediate buffers to support Deflate compression with Dynamic Huffman encoding. CONFIG\_RTE\_PMD\_QAT\_COMP\_IM\_BUFFER\_SIZE specifies the size of a single buffer, the PMD will allocate a multiple of these, plus some extra space for associated meta-data. For GEN2 devices, 20 buffers are allocated while for GEN1 devices, 12 buffers are allocated, plus 1472 bytes overhead. **Note:** If the compressed output of a Deflate operation using Dynamic Huffman Encoding is too big to fit in an intermediate buffer, then the operation will fall back to fixed compression rather than failing the operation. To avoid this less performant case, applications should configure the intermediate buffer size to be larger than the expected input data size (compressed output size is usually unknown, so the only option is to make larger than the input size). ## 18.3.3 Running QAT PMD with minimum threshold for burst size If only a small number or packets can be enqueued. Each enqueue causes an expensive MMIO write. These MMIO write occurrences can be optimised by setting any of the following parameters: - qat\_sym\_enq\_threshold - qat\_asym\_enq\_threshold - qat\_comp\_enq\_threshold When any of these parameters is set rte\_cryptodev\_enqueue\_burst function will return 0 (thereby avoiding an MMIO) if the device is congested and number of packets possible to enqueue is smaller. To use this feature the user must set the parameter on process start as a device additional parameter: ``` -w 03:01.1, qat_sym_enq_threshold=32, qat_comp_enq_threshold=16 ``` All parameters can be used with the same device regardless of order. Parameters are separated by comma. When the same parameter is used more than once first occurrence of the parameter is used. Maximum threshold that can be set is 32. ## 18.3.4 Device and driver naming - The qat cryptodev symmetric crypto driver name is "crypto\_qat". - The qat cryptodev asymmetric crypto driver name is "crypto\_qat\_asym". The "rte\_cryptodev\_devices\_get()" returns the devices exposed by either of these drivers. - Each qat sym crypto device has a unique name, in format "<pci bdf>\_<service>", e.g. "0000:41:01.0\_qat\_sym". - Each qat asym crypto device has a unique name, in format "<pci bdf>\_<service>", e.g. "0000:41:01.0\_qat\_asym". This name can be passed to "rte\_cryptodev\_get\_dev\_id()" to get the device\_id. **Note:** The cryptodev driver name is passed to the dpdk-test-crypto-perf tool in the "-devtype" parameter. The qat crypto device name is in the format of the slave parameter passed to the crypto scheduler. - The qat compressdev driver name is "compress\_qat". The rte\_compressdev\_devices\_get() returns the devices exposed by this driver. - Each qat compression device has a unique name, in format <pci bdf>\_<service>, e.g. "0000:41:01.0\_qat\_comp". This name can be passed to rte\_compressdev\_get\_dev\_id() to get the device id. ## 18.3.5 Dependency on the QAT kernel driver To use QAT an SRIOV-enabled QAT kernel driver is required. The VF devices created and initialised by this driver will be used by the QAT PMDs. Instructions for installation are below, but first an explanation of the relationships between the PF/VF devices and the PMDs visible to DPDK applications. Each QuickAssist PF device exposes a number of VF devices. Each VF device can enable one symmetric cryptodev PMD and/or one compressdev PMD. These QAT PMDs share the same underlying device and pci-mgmt code, but are enumerated independently on their respective APIs and appear as independent devices to applications. **Note:** Each VF can only be used by one DPDK process. It is not possible to share the same VF across multiple processes, even if these processes are using different acceleration services. Conversely one DPDK process can use one or more QAT VFs and can expose both cryptodev and compressdev instances on each of those VFs. #### 18.3.6 Available kernel drivers Kernel drivers for each device for each service are listed in the following table. (Scroll right to see the full table) | S | Α | С | Gen | Device | Driver/ver | Kernel | Pci | PF | #PFs | VF | VFs/PF | |-----|-----|-----|-----|---------|-------------|------------------|----------|------|------|------|--------| | | | | | | | Module | Driver | Did | | Did | | | Yes | No | No | 1 | DH895xC | Ginux/4.4+ | qat_dh895xc | cdh895xc | 435 | 1 | 443 | 32 | | Yes | Yes | No | " | " | 01.org/4.2. | 0 <del>1</del> " | " | " | " | " | " | | Yes | Yes | Yes | " | " | 01.org/4.3. | 0 <del>1</del> " | " | " | " | " | " | | Yes | No | No | 2 | C62x | linux/4.5+ | qat_c62x | с6хх | 37c8 | 3 | 37c9 | 16 | | Yes | Yes | Yes | " | " | 01.org/4.2. | 04 | " | " | " | " | " | | Yes | No | No | 2 | C3xxx | linux/4.5+ | qat_c3xxx | c3xxx | 19e2 | 1 | 19e3 | 16 | | Yes | Yes | Yes | " | " | 01.org/4.2. | 04 | " | " | " | " | " | | Yes | No | No | 2 | D15xx | p | qat_d15xx | d15xx | 6f54 | 1 | 6f55 | 16 | | Yes | No | No | 3 | C4xxx | p | qat_c4xxx | c4xxx | 18a0 | 1 | 18a1 | 128 | Table 18.2: QAT device generations, devices and drivers The first 3 columns indicate the service: - S = Symmetric crypto service (via cryptodev API) - A = Asymmetric crypto service (via cryptodev API) - C = Compression service (via compressdev API) The Driver column indicates either the Linux kernel version in which support for this device was introduced or a driver available on Intel's 01.org website. There are both linux in-tree and 01.org kernel drivers available for some devices. p = release pending. If you are running on a kernel which includes a driver for your device, see *Installation using kernel.org* driver below. Otherwise see *Installation using 01.org QAT driver*. #### 18.3.7 Installation using kernel.org driver The examples below are based on the C62x device, if you have a different device use the corresponding values in the above table. In BIOS ensure that SRIOV is enabled and either: - · Disable VT-d or - Enable VT-d and set "intel\_iommu=on iommu=pt" in the grub file. Check that the QAT driver is loaded on your system, by executing: ``` lsmod | grep qa ``` You should see the kernel module for your device listed, e.g.: ``` qat_c62x 5626 0 intel_qat 82336 1 qat_c62x ``` Next, you need to expose the Virtual Functions (VFs) using the sysfs file system. First find the BDFs (Bus-Device-Function) of the physical functions (PFs) of your device, e.g.: ``` lspci -d:37c8 ``` You should see output similar to: ``` 1a:00.0 Co-processor: Intel Corporation Device 37c8 3d:00.0 Co-processor: Intel Corporation Device 37c8 3f:00.0 Co-processor: Intel Corporation Device 37c8 ``` Enable the VFs for each PF by echoing the number of VFs per PF to the pci driver: ``` echo 16 > /sys/bus/pci/drivers/c6xx/0000:1a:00.0/sriov_numvfs echo 16 > /sys/bus/pci/drivers/c6xx/0000:3d:00.0/sriov_numvfs echo 16 > /sys/bus/pci/drivers/c6xx/0000:3f:00.0/sriov_numvfs ``` Check that the VFs are available for use. For example lspci -d:37c9 should list 48 VF devices available for a C62x device. To complete the installation follow the instructions in *Binding the available VFs to the DPDK UIO driver*. **Note:** If the QAT kernel modules are not loaded and you see an error like Failed to load MMP firmware qat\_895xcc\_mmp.bin in kernel logs, this may be as a result of not using a distribution, but just updating the kernel directly. Download firmware from the kernel firmware repo. Copy qat binaries to /lib/firmware: ``` cp qat_895xcc.bin /lib/firmware cp qat_895xcc_mmp.bin /lib/firmware ``` Change to your linux source root directory and start the gat kernel modules: ``` insmod ./drivers/crypto/qat/qat_common/intel_qat.ko insmod ./drivers/crypto/qat/qat_dh895xcc/qat_dh895xcc.ko ``` **Note:** If you see the following warning in /var/log/messages it can be ignored: IOMMU should be enabled for SR-IOV to work correctly. ## 18.3.8 Installation using 01.org QAT driver Download the latest QuickAssist Technology Driver from 01.org. Consult the *Getting Started Guide* at the same URL for further information. The steps below assume you are: - Building on a platform with one C62x device. - Using package qat1.7.1.4.2.0-000xx.tar.gz. - On Fedora26 kernel 4.11.11-300.fc26.x86\_64. In the BIOS ensure that SRIOV is enabled and VT-d is disabled. Uninstall any existing QAT driver, for example by running: • ./installer.sh uninstall in the directory where originally installed. Build and install the SRIOV-enabled QAT driver: ``` mkdir /QAT cd /QAT # Copy the package to this location and unpack tar zxof qat1.7.1.4.2.0-000xx.tar.gz ./configure --enable-icp-sriov=host make install ``` You can use cat /sys/kernel/debug/qat<your device type and bdf>/version/fw to confirm the driver is correctly installed and is using firmware version 4.2.0. You can use lspci -d:37c9 to confirm the presence of the 16 VF devices available per C62x PF. Confirm the driver is correctly installed and is using firmware version 4.2.0: ``` cat /sys/kernel/debug/qat<your device type and bdf>/version/fw ``` Confirm the presence of 48 VF devices - 16 per PF: ``` lspci -d:37c9 ``` To complete the installation - follow instructions in Binding the available VFs to the DPDK UIO driver. **Note:** If using a later kernel and the build fails with an error relating to strict\_stroul not being available apply the following patch: ``` /QAT/QAT1.6/quickassist/utilities/downloader/Target_CoreLibs/uclo/include/linux/uclo_platform. + #if LINUX_VERSION_CODE >= KERNEL_VERSION(3,18,5) + #define STR_TO_64(str, base, num, endPtr) {endPtr=NULL; if (kstrtoul((str), (base), (num))) r + #else #if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,38) #define STR_TO_64(str, base, num, endPtr) {endPtr=NULL; if (strict_strtoull((str), (base), (num #if LINUX_VERSION_CODE >= KERNEL_VERSION(2,6,25) #define STR_TO_64(str, base, num, endPtr) {endPtr=NULL; strict_strtoll((str), (base), (num));} #else #define STR_TO_64(str, base, num, endPtr) do { if (str[0] == '-') *(num) = -(simple_strtoull((str+1), &(endPtr), (base))); *(num) = simple_strtoull((str), &(endPtr), (base)); } while(0) + #endif #endif #endif ``` **Note:** If the build fails due to missing header files you may need to do following: ``` sudo yum install zlib-devel sudo yum install openssl-devel sudo yum install libudev-devel ``` **Note:** If the build or install fails due to mismatching kernel sources you may need to do the following: ``` sudo yum install kernel-headers-`uname -r` sudo yum install kernel-src-`uname -r` sudo yum install kernel-devel-`uname -r` ``` ## 18.3.9 Binding the available VFs to the DPDK UIO driver Unbind the VFs from the stock driver so they can be bound to the uio driver. ## For an Intel(R) QuickAssist Technology DH895xCC device The unbind command below assumes BDFs of 03:01.00-03:04.07, if your VFs are different adjust the unbind command below: ``` for device in $(seq 1 4); do \ for fn in $(seq 0 7); do \ echo -n 0000:03:0${device}.${fn} > \ /sys/bus/pci/devices/0000\:03\:0${device}.${fn}/driver/unbind; \ done; \ done ``` ## For an Intel(R) QuickAssist Technology C62x device The unbind command below assumes BDFs of 1a:01.00-1a:02.07, 3d:01.00-3d:02.07 and 3f:01.00-3f:02.07, if your VFs are different adjust the unbind command below: ``` for device in $(seq 1 2); do \ for fn in $(seq 0 7); do \ echo -n 0000:1a:0${device}.${fn} > \ /sys/bus/pci/devices/0000\:1a\:0${device}.${fn}/driver/unbind; \ echo -n 0000:3d:0${device}.${fn} > \ /sys/bus/pci/devices/0000\:3d\:0${device}.${fn}/driver/unbind; \ echo -n 0000:3f:0${device}.${fn} > \ /sys/bus/pci/devices/0000\:3f\:0${device}.${fn}/driver/unbind; \ done; \ done ``` ## For Intel(R) QuickAssist Technology C3xxx or D15xx device The unbind command below assumes BDFs of 01:01.00-01:02.07, if your VFs are different adjust the unbind command below: ``` for device in $(seq 1 2); do \ for fn in $(seq 0 7); do \ echo -n 0000:01:0${device}.${fn} > \ /sys/bus/pci/devices/0000\:01\:0${device}.${fn}/driver/unbind; \ done; \ done ``` #### Bind to the DPDK uio driver Install the DPDK igb\_uio driver, bind the VF PCI Device id to it and use lspci to confirm the VF devices are now in use by igb\_uio kernel driver, e.g. for the C62x device: ``` cd to the top-level DPDK directory modprobe uio insmod ./build/kmod/igb_uio.ko echo "8086 37c9" > /sys/bus/pci/drivers/igb_uio/new_id lspci -vvd:37c9 ``` Another way to bind the VFs to the DPDK UIO driver is by using the dpdk-devbind.py script: ``` cd to the top-level DPDK directory ./usertools/dpdk-devbind.py -b igb_uio 0000:03:01.1 ``` ## 18.3.10 **Testing** QAT SYM crypto PMD can be tested by running the test application: ``` make defconfig make -j cd ./build/app ./test -l1 -n1 -w <your qat bdf> RTE>>cryptodev_qat_autotest ``` QAT ASYM crypto PMD can be tested by running the test application: ``` make defconfig make -j cd ./build/app ./test -l1 -n1 -w <your qat bdf> RTE>>cryptodev_qat_asym_autotest ``` QAT compression PMD can be tested by running the test application: ``` make defconfig sed -i 's,\(CONFIG_RTE_COMPRESSDEV_TEST\)=n,\1=y,' build/.config make -j cd ./build/app ./test -l1 -n1 -w <your qat bdf> RTE>>compressdev_autotest ``` ## 18.3.11 Debugging There are 2 sets of trace available via the dynamic logging feature: - pmd.qat\_dp exposes trace on the data-path. - pmd.qat\_general exposes all other trace. pmd.qat exposes both sets of traces. They can be enabled using the log-level option (where 8=maximum log level) on the process cmdline, e.g. using any of the following: ``` --log-level="pmd.qat_general,8" --log-level="pmd.qat_dp,8" --log-level="pmd.qat,8" ``` **Note:** The global RTE\_LOG\_DP\_LEVEL overrides data-path trace so must be set to RTE\_LOG\_DEBUG to see all the trace. This variable is in config/rte\_config.h for meson build and config/common\_base for gnu make. Also the dynamic global log level overrides both sets of trace, so e.g. no QAT trace would display in this case: --log-level="7" --log-level="pmd.qat\_general,8" #### VIRTIO CRYPTO POLL MODE DRIVER The virtio crypto PMD provides poll mode driver support for the virtio crypto device. #### 19.1 Features The virtio crypto PMD has support for: Cipher algorithms: • RTE\_CRYPTO\_CIPHER\_AES\_CBC Hash algorithms: • RTE\_CRYPTO\_AUTH\_SHA1\_HMAC ## 19.2 Limitations - Only supports the session-oriented API implementation (session-less APIs are not supported). - Only supports modern mode since virtio crypto conforms to virtio-1.0. - Only has two types of queues: data queue and control queue. These two queues only support indirect buffers to communication with the virtio backend. - Only supports AES\_CBC cipher only algorithm and AES\_CBC with HMAC\_SHA1 chaining algorithm since the vhost crypto backend only these algorithms are supported. - Does not support Link State interrupt. - Does not support runtime configuration. # 19.3 Virtio crypto PMD Rx/Tx Callbacks Rx callbacks: • virtio\_crypto\_pkt\_rx\_burst Tx callbacks: • virtio\_crypto\_pkt\_tx\_burst ## 19.4 Installation Quick instructions are as follows: Firstly run DPDK vhost crypto sample as a server side and build QEMU with vhost crypto enabled. QEMU can then be started using the following parameters: ``` qemu-system-x86_64 \ [...] \ -chardev socket,id=charcrypto0,path=/path/to/your/socket \ -object cryptodev-vhost-user,id=cryptodev0,chardev=charcrypto0 \ -device virtio-crypto-pci,id=crypto0,cryptodev=cryptodev0 [...] ``` Secondly bind the uio\_generic driver for the virtio-crypto device. For example, 0000:00:04.0 is the domain, bus, device and function number of the virtio-crypto device: ``` modprobe uio_pci_generic echo -n 0000:00:04.0 > /sys/bus/pci/drivers/virtio-pci/unbind echo "laf4 1054" > /sys/bus/pci/drivers/uio_pci_generic/new_id ``` Finally the front-end virtio crypto PMD driver can be installed: ``` cd to the top-level DPDK directory sed -i 's,\(CONFIG_RTE_LIBRTE_PMD_VIRTIO_CRYPTO\)=n,\l=y,' config/common_base make config T=x86_64-native-linux-gcc make install T=x86_64-native-linux-gcc ``` ## 19.5 Tests The unit test cases can be tested as below: ``` reserve enough huge pages cd to the top-level DPDK directory export RTE_TARGET=x86_64-native-linux-gcc export RTE_SDK=`pwd` cd to app/test type the command "make" to compile run the tests with "./test" type the command "cryptodev_virtio_autotest" to test ``` #### The performance can be tested as below: ``` reserve enough huge pages cd to the top-level DPDK directory export RTE_TARGET=x86_64-native-linux-gcc export RTE_SDK=`pwd` cd to app/test-crypto-perf type the command "make" to compile run the tests with the following command: ./dpdk-test-crypto-perf -1 0,1 -- --devtype crypto_virtio \ --ptest throughput --optype cipher-then-auth --cipher-algo aes-cbc \ --cipher-op encrypt --cipher-key-sz 16 --auth-algo shal-hmac \ --auth-op generate --auth-key-sz 64 --digest-sz 12 \ --total-ops 100000000 --burst-sz 64 --buffer-sz 2048 ``` 19.4. Installation 68 **CHAPTER** **TWENTY** #### **ZUC CRYPTO POLL MODE DRIVER** The ZUC PMD (**librte\_pmd\_zuc**) provides poll mode crypto driver support for utilizing Intel IPSec Multi-buffer library which implements F8 and F9 functions for ZUC EEA3 cipher and EIA3 hash algorithms. ## 20.1 Features ZUC PMD has support for: Cipher algorithm: • RTE\_CRYPTO\_CIPHER\_ZUC\_EEA3 Authentication algorithm: • RTE\_CRYPTO\_AUTH\_ZUC\_EIA3 ## 20.2 Limitations - · Chained mbufs are not supported. - ZUC (EIA3) supported only if hash offset field is byte-aligned. - ZUC (EEA3) supported only if cipher length, cipher offset fields are byte-aligned. ## 20.3 Installation To build DPDK with the ZUC\_PMD the user is required to download the multi-buffer library from here and compile it on their user system before building DPDK. The latest version of the library supported by this PMD is v0.53, which can be downloaded from https://github.com/01org/intel-ipsec-mb/archive/v0.53.zip. After downloading the library, the user needs to unpack and compile it on their system before building DPDK: ``` make make install ``` **Note:** Compilation of the Multi-Buffer library is broken when GCC < 5.0, if library <= v0.53. If a lower GCC version than 5.0, the workaround proposed by the following link should be used: https://github.com/intel/intel-ipsec-mb/issues/40. As a reference, the following table shows a mapping between the past DPDK versions and the external crypto libraries supported by them: Table 20.1: DPDK and external crypto library version compatibility | DPDK version | Crypto library version | |---------------|---------------------------| | 16.11 - 19.11 | LibSSO ZUC | | 20.02+ | Multi-buffer library 0.53 | ## 20.4 Initialization In order to enable this virtual crypto PMD, user must: - Build the multi buffer library (explained in Installation section). - Build DPDK as follows: ``` make config T=x86\_64-native-linux-gcc sed -i 's,\(CONFIG_RTE_LIBRTE_PMD_ZUC\)=n,\1=y,' build/.config make ``` To use the PMD in an application, user must: - Call rte\_vdev\_init("crypto\_zuc") within the application. - Use -vdev="crypto\_zuc" in the EAL options, which will call rte\_vdev\_init() internally. The following parameters (all optional) can be provided in the previous two calls: - socket\_id: Specify the socket where the memory for the device is going to be allocated (by default, socket\_id will be the socket where the core that is creating the PMD is running on). - max nb queue pairs: Specify the maximum number of queue pairs in the device (8 by default). - max\_nb\_sessions: Specify the maximum number of sessions that can be created (2048 by default). #### Example: ``` ./12fwd-crypto -l 1 -n 4 --vdev="crypto_zuc,socket_id=0,max_nb_sessions=128" \ -- -p 1 --cdev SW --chain CIPHER_ONLY --cipher_algo "zuc-eea3" ``` 20.4. Initialization 70