[COMMIT] branch api-next updated. v1.12.0.0-164-g362035d - git-lng-odp

15 Dec 2016

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "".
The branch, api-next has been updated
       via  362035d60fda8a566636aa5ba58250a8fae9169b (commit)
       via  eba96af88d36a5cf132c15e0adafb19f92706510 (commit)
       via  c628e7cbed766a5467fb1ee1fc3113b42e738d08 (commit)
       via  f1a8dab157c3288d93287a8d6a49f50c84d10342 (commit)
       via  a05fb250afe4bf6c82d39f28239b08fb7e405b96 (commit)
       via  c52864e0956c3f57a059af8c90f7ff2b8fb10e6c (commit)
       via  9f084f0c90509a354452ef75325c507224c7cd93 (commit)
       via  b6de862e041b500ade8a94917429f196173d5d90 (commit)
       via  87b505031e709ac218eece691bb2e98b2987702a (commit)
       via  8acf38df013c6d89e5a2dc3f84fb928e97d27752 (commit)
      from  dd23be24475a4b96a3f33ea91224fd0fe2c0f083 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit 362035d60fda8a566636aa5ba58250a8fae9169b
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:28:53 2016 +0200
example: ipsec: use op_param_t instead of op_params_t
Type name odp_crypto_op_params_t is deprecated.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org

diff --git a/example/ipsec/odp_ipsec.c b/example/ipsec/odp_ipsec.c
index 6a9a9fe..c51922a 100644
--- a/example/ipsec/odp_ipsec.c
+++ b/example/ipsec/odp_ipsec.c
@@ -148,7 +148,7 @@ typedef struct {
    uint32_t dst_ip;         /**< SA dest IP address */
/* Output only */
-	odp_crypto_op_params_t params;  /**< Parameters for crypto call */
+	odp_crypto_op_param_t params;   /**< Parameters for crypto call */
    uint32_t *ah_seq;               /**< AH sequence number location */
    uint32_t *esp_seq;              /**< ESP sequence number location */
    uint16_t *tun_hdr_id;           /**< Tunnel header ID > */
@@ -644,7 +644,7 @@ pkt_disposition_e do_ipsec_in_classify(odp_packet_t pkt,
    odph_ahhdr_t *ah = NULL;
    odph_esphdr_t *esp = NULL;
    ipsec_cache_entry_t *entry;
-	odp_crypto_op_params_t params;
+	odp_crypto_op_param_t params;
    odp_bool_t posted = 0;
/* Default to skip IPsec */
@@ -823,7 +823,7 @@ pkt_disposition_e do_ipsec_out_classify(odp_packet_t pkt,
    uint16_t ip_data_len = ipv4_data_len(ip);
    uint8_t *ip_data = ipv4_data_p(ip);
    ipsec_cache_entry_t *entry;
-	odp_crypto_op_params_t params;
+	odp_crypto_op_param_t params;
    int hdr_len = 0;
    int trl_len = 0;
    odph_ahhdr_t *ah = NULL;
commit eba96af88d36a5cf132c15e0adafb19f92706510
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:05:30 2016 +0200
validation: crypto: use algorithm capability
Use new algorithm enumerations and capability functions.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/test/common_plat/validation/api/crypto/odp_crypto_test_inp.c b/test/common_plat/validation/api/crypto/odp_crypto_test_inp.c
index 55fc6aa..de9d6e4 100644
--- a/test/common_plat/validation/api/crypto/odp_crypto_test_inp.c
+++ b/test/common_plat/validation/api/crypto/odp_crypto_test_inp.c
@@ -11,6 +11,8 @@
 #include "odp_crypto_test_inp.h"
 #include "crypto.h"
+#define MAX_ALG_CAPA 32
+
 struct suite_context_s {
    odp_crypto_op_mode_t pref_mode;
    odp_pool_t pool;
@@ -42,8 +44,7 @@ static void alg_test(odp_crypto_op_t op,
    	     const uint8_t *ciphertext,
    	     unsigned int ciphertext_len,
    	     const uint8_t *digest,
-		     unsigned int digest_len
-		     )
+		     uint32_t digest_len)
 {
    odp_crypto_session_t session;
    odp_crypto_capability_t capability;
@@ -57,6 +58,10 @@ static void alg_test(odp_crypto_op_t op,
    odp_crypto_op_param_t op_params;
    uint8_t *data_addr;
    int data_off;
+	odp_crypto_cipher_capability_t cipher_capa[MAX_ALG_CAPA];
+	odp_crypto_auth_capability_t   auth_capa[MAX_ALG_CAPA];
+	int num, i;
+	int found;
rc = odp_crypto_capability(&capability);
    CU_ASSERT(!rc);
@@ -65,36 +70,36 @@ static void alg_test(odp_crypto_op_t op,
    	if (cipher_alg == ODP_CIPHER_ALG_3DES_CBC &&
    	    !(capability.hw_ciphers.bit.trides_cbc))
    		rc = -1;
-		if (cipher_alg == ODP_CIPHER_ALG_AES128_CBC &&
-		    !(capability.hw_ciphers.bit.aes128_cbc))
+		if (cipher_alg == ODP_CIPHER_ALG_AES_CBC &&
+		    !(capability.hw_ciphers.bit.aes_cbc))
    		rc = -1;
-		if (cipher_alg == ODP_CIPHER_ALG_AES128_GCM &&
-		    !(capability.hw_ciphers.bit.aes128_gcm))
+		if (cipher_alg == ODP_CIPHER_ALG_AES_GCM &&
+		    !(capability.hw_ciphers.bit.aes_gcm))
    		rc = -1;
    } else {
    	if (cipher_alg == ODP_CIPHER_ALG_3DES_CBC &&
    	    !(capability.ciphers.bit.trides_cbc))
    		rc = -1;
-		if (cipher_alg == ODP_CIPHER_ALG_AES128_CBC &&
-		    !(capability.ciphers.bit.aes128_cbc))
+		if (cipher_alg == ODP_CIPHER_ALG_AES_CBC &&
+		    !(capability.ciphers.bit.aes_cbc))
    		rc = -1;
-		if (cipher_alg == ODP_CIPHER_ALG_AES128_GCM &&
-		    !(capability.ciphers.bit.aes128_gcm))
+		if (cipher_alg == ODP_CIPHER_ALG_AES_GCM &&
+		    !(capability.ciphers.bit.aes_gcm))
    		rc = -1;
    }
CU_ASSERT(!rc);
if (capability.hw_auths.all_bits) {
-		if (auth_alg == ODP_AUTH_ALG_AES128_GCM &&
-		    !(capability.hw_auths.bit.aes128_gcm))
+		if (auth_alg == ODP_AUTH_ALG_AES_GCM &&
+		    !(capability.hw_auths.bit.aes_gcm))
    		rc = -1;
    	if (auth_alg == ODP_AUTH_ALG_NULL &&
    	    !(capability.hw_auths.bit.null))
    		rc = -1;
    } else {
-		if (auth_alg == ODP_AUTH_ALG_AES128_GCM &&
-		    !(capability.auths.bit.aes128_gcm))
+		if (auth_alg == ODP_AUTH_ALG_AES_GCM &&
+		    !(capability.auths.bit.aes_gcm))
    		rc = -1;
    	if (auth_alg == ODP_AUTH_ALG_NULL &&
    	    !(capability.auths.bit.null))
@@ -103,6 +108,59 @@ static void alg_test(odp_crypto_op_t op,
CU_ASSERT(!rc);
+	num = odp_crypto_cipher_capability(cipher_alg, cipher_capa,
+					   MAX_ALG_CAPA);
+
+	if (cipher_alg != ODP_CIPHER_ALG_NULL) {
+		CU_ASSERT(num > 0);
+		found = 0;
+	} else {
+		CU_ASSERT(num == 0);
+		found = 1;
+	}
+
+	CU_ASSERT(num <= MAX_ALG_CAPA);
+
+	if (num > MAX_ALG_CAPA)
+		num = MAX_ALG_CAPA;
+
+	/* Search for the test case */
+	for (i = 0; i < num; i++) {
+		if (cipher_capa[i].key_len == cipher_key.length &&
+		    cipher_capa[i].iv_len  == ses_iv.length) {
+			found = 1;
+			break;
+		}
+	}
+
+	CU_ASSERT(found);
+
+	num = odp_crypto_auth_capability(auth_alg, auth_capa, MAX_ALG_CAPA);
+
+	if (auth_alg != ODP_AUTH_ALG_NULL) {
+		CU_ASSERT(num > 0);
+		found = 0;
+	} else {
+		CU_ASSERT(num == 0);
+		found = 1;
+	}
+
+	CU_ASSERT(num <= MAX_ALG_CAPA);
+
+	if (num > MAX_ALG_CAPA)
+		num = MAX_ALG_CAPA;
+
+	/* Search for the test case */
+	for (i = 0; i < num; i++) {
+		if (auth_capa[i].digest_len == digest_len &&
+		    auth_capa[i].key_len    == auth_key.length) {
+			found = 1;
+			break;
+		}
+	}
+
+	CU_ASSERT(found);
+
    /* Create a crypto session */
    odp_crypto_session_param_init(&ses_params);
    ses_params.op = op;
@@ -345,11 +403,11 @@ void crypto_test_enc_alg_aes128_gcm(void)
    	iv.length = sizeof(aes128_gcm_reference_iv[i]);
alg_test(ODP_CRYPTO_OP_ENCODE,
-			 ODP_CIPHER_ALG_AES128_GCM,
+			 ODP_CIPHER_ALG_AES_GCM,
    		 iv,
    		 NULL,
    		 cipher_key,
-			 ODP_AUTH_ALG_AES128_GCM,
+			 ODP_AUTH_ALG_AES_GCM,
    		 auth_key,
    		 &aes128_gcm_cipher_range[i],
    		 &aes128_gcm_auth_range[i],
@@ -381,11 +439,11 @@ void crypto_test_enc_alg_aes128_gcm_ovr_iv(void)
    	cipher_key.length = sizeof(aes128_gcm_reference_key[i]);
alg_test(ODP_CRYPTO_OP_ENCODE,
-			 ODP_CIPHER_ALG_AES128_GCM,
+			 ODP_CIPHER_ALG_AES_GCM,
    		 iv,
    		 aes128_gcm_reference_iv[i],
    		 cipher_key,
-			 ODP_AUTH_ALG_AES128_GCM,
+			 ODP_AUTH_ALG_AES_GCM,
    		 auth_key,
    		 &aes128_gcm_cipher_range[i],
    		 &aes128_gcm_auth_range[i],
@@ -420,11 +478,11 @@ void crypto_test_dec_alg_aes128_gcm(void)
    	iv.length = sizeof(aes128_gcm_reference_iv[i]);
alg_test(ODP_CRYPTO_OP_DECODE,
-			 ODP_CIPHER_ALG_AES128_GCM,
+			 ODP_CIPHER_ALG_AES_GCM,
    		 iv,
    		 NULL,
    		 cipher_key,
-			 ODP_AUTH_ALG_AES128_GCM,
+			 ODP_AUTH_ALG_AES_GCM,
    		 auth_key,
    		 &aes128_gcm_cipher_range[i],
    		 &aes128_gcm_auth_range[i],
@@ -457,11 +515,11 @@ void crypto_test_dec_alg_aes128_gcm_ovr_iv(void)
    	cipher_key.length = sizeof(aes128_gcm_reference_key[i]);
alg_test(ODP_CRYPTO_OP_DECODE,
-			 ODP_CIPHER_ALG_AES128_GCM,
+			 ODP_CIPHER_ALG_AES_GCM,
    		 iv,
    		 aes128_gcm_reference_iv[i],
    		 cipher_key,
-			 ODP_AUTH_ALG_AES128_GCM,
+			 ODP_AUTH_ALG_AES_GCM,
    		 auth_key,
    		 &aes128_gcm_cipher_range[i],
    		 &aes128_gcm_auth_range[i],
@@ -495,7 +553,7 @@ void crypto_test_enc_alg_aes128_cbc(void)
    	iv.length = sizeof(aes128_cbc_reference_iv[i]);
alg_test(ODP_CRYPTO_OP_ENCODE,
-			 ODP_CIPHER_ALG_AES128_CBC,
+			 ODP_CIPHER_ALG_AES_CBC,
    		 iv,
    		 NULL,
    		 cipher_key,
@@ -526,7 +584,7 @@ void crypto_test_enc_alg_aes128_cbc_ovr_iv(void)
    	cipher_key.length = sizeof(aes128_cbc_reference_key[i]);
alg_test(ODP_CRYPTO_OP_ENCODE,
-			 ODP_CIPHER_ALG_AES128_CBC,
+			 ODP_CIPHER_ALG_AES_CBC,
    		 iv,
    		 aes128_cbc_reference_iv[i],
    		 cipher_key,
@@ -561,7 +619,7 @@ void crypto_test_dec_alg_aes128_cbc(void)
    	iv.length = sizeof(aes128_cbc_reference_iv[i]);
alg_test(ODP_CRYPTO_OP_DECODE,
-			 ODP_CIPHER_ALG_AES128_CBC,
+			 ODP_CIPHER_ALG_AES_CBC,
    		 iv,
    		 NULL,
    		 cipher_key,
@@ -594,7 +652,7 @@ void crypto_test_dec_alg_aes128_cbc_ovr_iv(void)
    	cipher_key.length = sizeof(aes128_cbc_reference_key[i]);
alg_test(ODP_CRYPTO_OP_DECODE,
-			 ODP_CIPHER_ALG_AES128_CBC,
+			 ODP_CIPHER_ALG_AES_CBC,
    		 iv,
    		 aes128_cbc_reference_iv[i],
    		 cipher_key,
@@ -634,7 +692,7 @@ void crypto_test_alg_hmac_md5(void)
    		 iv,
    		 iv.data,
    		 cipher_key,
-			 ODP_AUTH_ALG_MD5_96,
+			 ODP_AUTH_ALG_MD5_HMAC,
    		 auth_key,
    		 NULL, NULL,
    		 hmac_md5_reference_plaintext[i],
@@ -672,7 +730,7 @@ void crypto_test_alg_hmac_sha256(void)
    		 iv,
    		 iv.data,
    		 cipher_key,
-			 ODP_AUTH_ALG_SHA256_128,
+			 ODP_AUTH_ALG_SHA256_HMAC,
    		 auth_key,
    		 NULL, NULL,
    		 hmac_sha256_reference_plaintext[i],
commit c628e7cbed766a5467fb1ee1fc3113b42e738d08
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:05:29 2016 +0200
test: crypto: use odp_crypto_session_param_init
Use session param init function instead of memset() to zero.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/example/ipsec/odp_ipsec_cache.c b/example/ipsec/odp_ipsec_cache.c
index 2bd44cf..b2a91c2 100644
--- a/example/ipsec/odp_ipsec_cache.c
+++ b/example/ipsec/odp_ipsec_cache.c
@@ -44,7 +44,7 @@ int create_ipsec_cache_entry(sa_db_entry_t *cipher_sa,
    		     odp_queue_t completionq,
    		     odp_pool_t out_pool)
 {
-	odp_crypto_session_params_t params;
+	odp_crypto_session_param_t params;
    ipsec_cache_entry_t *entry;
    odp_crypto_ses_create_err_t ses_create_rc;
    odp_crypto_session_t session;
@@ -60,6 +60,8 @@ int create_ipsec_cache_entry(sa_db_entry_t *cipher_sa,
        (cipher_sa->mode != auth_sa->mode))
    	return -1;
+	odp_crypto_session_param_init(&params);
+
    /* Setup parameters and call crypto library to create session */
    params.op = (in) ? ODP_CRYPTO_OP_DECODE : ODP_CRYPTO_OP_ENCODE;
    params.auth_cipher_text = TRUE;
diff --git a/test/common_plat/performance/odp_crypto.c b/test/common_plat/performance/odp_crypto.c
index 39df78b..9936288 100644
--- a/test/common_plat/performance/odp_crypto.c
+++ b/test/common_plat/performance/odp_crypto.c
@@ -49,7 +49,7 @@ static uint8_t test_key24[24] = { 0x01, 0x02, 0x03, 0x04, 0x05,
  */
 typedef struct {
    const char *name;		      /**< Algorithm name */
-	odp_crypto_session_params_t session;  /**< Prefilled crypto session params */
+	odp_crypto_session_param_t session;   /**< Prefilled crypto session params */
    unsigned int hash_adjust;	      /**< Size of hash */
 } crypto_alg_config_t;
@@ -420,12 +420,13 @@ create_session_from_config(odp_crypto_session_t *session,
    		   crypto_alg_config_t *config,
    		   crypto_args_t *cargs)
 {
-	odp_crypto_session_params_t params;
+	odp_crypto_session_param_t params;
    odp_crypto_ses_create_err_t ses_create_rc;
    odp_pool_t pkt_pool;
    odp_queue_t out_queue;
-	memcpy(&params, &config->session, sizeof(odp_crypto_session_params_t));
+	odp_crypto_session_param_init(&params);
+	memcpy(&params, &config->session, sizeof(odp_crypto_session_param_t));
    params.op = ODP_CRYPTO_OP_ENCODE;
    params.pref_mode   = ODP_CRYPTO_SYNC;
@@ -468,7 +469,7 @@ run_measure_one(crypto_args_t *cargs,
    	unsigned int payload_length,
    	crypto_run_result_t *result)
 {
-	odp_crypto_op_params_t params;
+	odp_crypto_op_param_t params;
odp_pool_t pkt_pool;
    odp_queue_t out_queue;
diff --git a/test/common_plat/validation/api/crypto/odp_crypto_test_inp.c b/test/common_plat/validation/api/crypto/odp_crypto_test_inp.c
index 4ac4a07..55fc6aa 100644
--- a/test/common_plat/validation/api/crypto/odp_crypto_test_inp.c
+++ b/test/common_plat/validation/api/crypto/odp_crypto_test_inp.c
@@ -53,8 +53,8 @@ static void alg_test(odp_crypto_op_t op,
    odp_event_t event;
    odp_crypto_compl_t compl_event;
    odp_crypto_op_result_t result;
-	odp_crypto_session_params_t ses_params;
-	odp_crypto_op_params_t op_params;
+	odp_crypto_session_param_t ses_params;
+	odp_crypto_op_param_t op_params;
    uint8_t *data_addr;
    int data_off;
@@ -104,7 +104,7 @@ static void alg_test(odp_crypto_op_t op,
    CU_ASSERT(!rc);
/* Create a crypto session */
-	memset(&ses_params, 0, sizeof(ses_params));
+	odp_crypto_session_param_init(&ses_params);
    ses_params.op = op;
    ses_params.auth_cipher_text = false;
    ses_params.pref_mode = suite_context.pref_mode;
commit f1a8dab157c3288d93287a8d6a49f50c84d10342
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:05:28 2016 +0200
api: crypto: documentation clean up
Moved documentation of struct fields over each field. Removed
    references to buffers as crypto API works only with packets.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/include/odp/api/spec/crypto.h b/include/odp/api/spec/crypto.h
index 0fb6d05..9855bf9 100644
--- a/include/odp/api/spec/crypto.h
+++ b/include/odp/api/spec/crypto.h
@@ -198,117 +198,166 @@ typedef union odp_crypto_auth_algos_t {
  * Crypto API key structure
  */
 typedef struct odp_crypto_key {
-	uint8_t *data;       /**< Key data */
-	uint32_t length;     /**< Key length in bytes */
+	/** Key data */
+	uint8_t *data;
+
+	/** Key length in bytes */
+	uint32_t length;
+
 } odp_crypto_key_t;
/**
  * Crypto API IV structure
  */
 typedef struct odp_crypto_iv {
-	uint8_t *data;      /**< IV data */
-	uint32_t length;    /**< IV length in bytes */
+	/** IV data */
+	uint8_t *data;
+
+	/** IV length in bytes */
+	uint32_t length;
+
 } odp_crypto_iv_t;
/**
  * Crypto API data range specifier
  */
 typedef struct odp_crypto_data_range {
-	uint32_t offset;  /**< Offset from beginning of buffer (chain) */
-	uint32_t length;  /**< Length of data to operate on */
+	/** Offset from beginning of packet */
+	uint32_t offset;
+
+	/** Length of data to operate on */
+	uint32_t length;
+
 } odp_crypto_data_range_t;
/**
  * Crypto API session creation parameters
  */
 typedef struct odp_crypto_session_param_t {
-	odp_crypto_op_t op;                /**< Encode versus decode */
-	odp_bool_t auth_cipher_text;       /**< Authenticate/cipher ordering */
-	odp_crypto_op_mode_t pref_mode;    /**< Preferred sync vs async */
-	odp_cipher_alg_t cipher_alg;       /**< Cipher algorithm */
-	odp_crypto_key_t cipher_key;       /**< Cipher key */
-	odp_crypto_iv_t  iv;               /**< Cipher Initialization Vector (IV) */
-	odp_auth_alg_t auth_alg;           /**< Authentication algorithm */
-	odp_crypto_key_t auth_key;         /**< Authentication key */
-	odp_queue_t compl_queue;           /**< Async mode completion event queue */
-	odp_pool_t output_pool;            /**< Output buffer pool */
+	/** Encode vs. decode operation */
+	odp_crypto_op_t op;
+
+	/** Authenticate cipher vs. plain text
+	 *
+	 *  Controls ordering of authentication and cipher operations,
+	 *  and is relative to the operation (encode vs decode). When encoding,
+	 *  TRUE indicates the authentication operation should be performed
+	 *  after the cipher operation else before. When decoding, TRUE
+	 *  indicates the reverse order of operation.
+	 *
+	 *  true:  Authenticate cipher text
+	 *  false: Authenticate plain text
+	 */
+	odp_bool_t auth_cipher_text;
+
+	/** Preferred sync vs. async */
+	odp_crypto_op_mode_t pref_mode;
+
+	/** Cipher algorithm
+	 *
+	 *  Use odp_crypto_capability() for supported algorithms.
+	 */
+	odp_cipher_alg_t cipher_alg;
+
+	/** Cipher key
+	 *
+	 * Use odp_crypto_cipher_capa() for supported key and IV lengths.
+	 */
+	odp_crypto_key_t cipher_key;
+
+	/** Cipher Initialization Vector (IV) */
+	odp_crypto_iv_t iv;
+
+	/** Authentication algorithm
+	 *
+	 *  Use odp_crypto_capability() for supported algorithms.
+	 */
+	odp_auth_alg_t auth_alg;
+
+	/** Authentication key
+	 *
+	 *  Use odp_crypto_auth_capa() for supported digest and key lengths.
+	 */
+	odp_crypto_key_t auth_key;
+
+	/** Async mode completion event queue
+	 *
+	 *  When odp_crypto_operation() is asynchronous, the completion queue is
+	 *  used to return the completion status of the operation to the
+	 *  application.
+	 */
+	odp_queue_t compl_queue;
+
+	/** Output pool
+	 *
+	 *  When the output packet is not specified during the call to
+	 *  odp_crypto_operation(), the output packet will be allocated
+	 *  from this pool.
+	 */
+	odp_pool_t output_pool;
+
 } odp_crypto_session_param_t;
/** @deprecated  Use odp_crypto_session_param_t instead */
 typedef odp_crypto_session_param_t odp_crypto_session_params_t;
/**
- * @var odp_crypto_session_params_t::auth_cipher_text
- *
- *   Controls ordering of authentication and cipher operations,
- *   and is relative to the operation (encode vs decode).
- *   When encoding, @c TRUE indicates the authentication operation
- *   should be performed @b after the cipher operation else before.
- *   When decoding, @c TRUE indicates the reverse order of operation.
- *
- * @var odp_crypto_session_params_t::compl_queue
- *
- *   When the API operates asynchronously, the completion queue is
- *   used to return the completion status of the operation to the
- *   application.
- *
- * @var odp_crypto_session_params_t::output_pool
- *
- *   When the output packet is not specified during the call to
- *   odp_crypto_operation, the output packet buffer will be allocated
- *   from this pool.
- */
-
-/**
  * Crypto API per packet operation parameters
  */
 typedef struct odp_crypto_op_param_t {
-	odp_crypto_session_t session;   /**< Session handle from creation */
-	void *ctx;                      /**< User context */
-	odp_packet_t pkt;               /**< Input packet buffer */
-	odp_packet_t out_pkt;           /**< Output packet buffer */
-	uint8_t *override_iv_ptr;       /**< Override session IV pointer */
-	uint32_t hash_result_offset;    /**< Offset from start of packet buffer for hash result */
-	odp_crypto_data_range_t cipher_range;   /**< Data range to apply cipher */
-	odp_crypto_data_range_t auth_range;     /**< Data range to authenticate */
+	/** Session handle from creation */
+	odp_crypto_session_t session;
+
+	/** User context */
+	void *ctx;
+
+	/** Input packet
+	 *
+	 *  Specifies the input packet for the crypto operation. When the
+	 *  'out_pkt' variable is set to ODP_PACKET_INVALID (indicating a new
+	 *  packet should be allocated for the resulting packet).
+	 */
+	odp_packet_t pkt;
+
+	/** Output packet
+	 *
+	 *  Both "in place" (the original packet 'pkt' is modified) and
+	 *  "copy" (the packet is replicated to a new packet which contains
+	 *  the modified data) modes are supported. The "in place" mode of
+	 *  operation is indicated by setting 'out_pkt' equal to 'pkt'.
+	 *  For the copy mode of operation, setting 'out_pkt' to a valid packet
+	 *  value indicates the caller wishes to specify the destination packet.
+	 *  Setting 'out_pkt' to ODP_PACKET_INVALID indicates the caller wishes
+	 *  the destination packet be allocated from the output pool specified
+	 *  during session creation.
+	 */
+	odp_packet_t out_pkt;
+
+	/** Override session IV pointer */
+	uint8_t *override_iv_ptr;
+
+	/** Offset from start of packet for hash result
+	 *
+	 *  Specifies the offset where the hash result is to be stored. In case
+	 *  of decode sessions, input hash values will be read from this offset,
+	 *  and overwritten with hash results. If this offset lies within
+	 *  specified 'auth_range', implementation will mute this field before
+	 *  calculating the hash result.
+	 */
+	uint32_t hash_result_offset;
+
+	/** Data range to apply cipher */
+	odp_crypto_data_range_t cipher_range;
+
+	/** Data range to authenticate */
+	odp_crypto_data_range_t auth_range;
+
 } odp_crypto_op_param_t;
/** @deprecated  Use odp_crypto_op_param_t instead */
 typedef odp_crypto_op_param_t odp_crypto_op_params_t;
/**
- * @var odp_crypto_op_params_t::pkt
- *   Specifies the input packet buffer for the crypto operation.  When the
- *   @c out_pkt variable is set to @c ODP_PACKET_INVALID (indicating a new
- *   buffer should be allocated for the resulting packet), the #define TBD
- *   indicates whether the implementation will free the input packet buffer
- *   or if it becomes the responsibility of the caller.
- *
- * @var odp_crypto_op_params_t::out_pkt
- *
- *   The API supports both "in place" (the original packet "pkt" is
- *   modified) and "copy" (the packet is replicated to a new buffer
- *   which contains the modified data).
- *
- *   The "in place" mode of operation is indicated by setting @c out_pkt
- *   equal to @c pkt.  For the copy mode of operation, setting @c out_pkt
- *   to a valid packet buffer value indicates the caller wishes to specify
- *   the destination buffer.  Setting @c out_pkt to @c ODP_PACKET_INVALID
- *   indicates the caller wishes the destination packet buffer be allocated
- *   from the output pool specified during session creation.
- *
- * @var odp_crypto_op_params_t::hash_result_offset
- *
- *   Specifies the offset where the hash result is to be stored. In case of
- *   decode sessions, input hash values will be read from this offset, and
- *   overwritten with hash results. If this offset lies within specified
- *   auth_range, implementation will mute this field before calculating the hash
- *   result.
- *
- *   @sa odp_crypto_session_params_t::output_pool.
- */
-
-/**
  * Crypto API session creation return code
  */
 typedef enum {
@@ -346,7 +395,7 @@ typedef enum {
    ODP_CRYPTO_HW_ERR_NONE,
    /** Error detected during DMA of data */
    ODP_CRYPTO_HW_ERR_DMA,
-	/** Operation failed due to buffer pool depletion */
+	/** Operation failed due to pool depletion */
    ODP_CRYPTO_HW_ERR_BP_DEPLETED,
 } odp_crypto_hw_err_t;
@@ -354,19 +403,33 @@ typedef enum {
  * Cryto API per packet operation completion status
  */
 typedef struct odp_crypto_compl_status {
-	odp_crypto_alg_err_t alg_err;  /**< Algorithm specific return code */
-	odp_crypto_hw_err_t  hw_err;   /**< Hardware specific return code */
+	/** Algorithm specific return code */
+	odp_crypto_alg_err_t alg_err;
+
+	/** Hardware specific return code */
+	odp_crypto_hw_err_t  hw_err;
+
 } odp_crypto_compl_status_t;
/**
  * Crypto API operation result
  */
 typedef struct odp_crypto_op_result {
-	odp_bool_t  ok;                  /**< Request completed successfully */
-	void *ctx;                       /**< User context from request */
-	odp_packet_t pkt;                /**< Output packet */
-	odp_crypto_compl_status_t cipher_status; /**< Cipher status */
-	odp_crypto_compl_status_t auth_status;   /**< Authentication status */
+	/** Request completed successfully */
+	odp_bool_t  ok;
+
+	/** User context from request */
+	void *ctx;
+
+	/** Output packet */
+	odp_packet_t pkt;
+
+	/** Cipher status */
+	odp_crypto_compl_status_t cipher_status;
+
+	/** Authentication status */
+	odp_crypto_compl_status_t auth_status;
+
 } odp_crypto_op_result_t;
/**
commit a05fb250afe4bf6c82d39f28239b08fb7e405b96
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:05:27 2016 +0200
api: crypto: added session param init
Added session parameter init function which should be
    used to initialize the structure before calling
    odp_crypto_session_create().
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/include/odp/api/spec/crypto.h b/include/odp/api/spec/crypto.h
index 4b94824..0fb6d05 100644
--- a/include/odp/api/spec/crypto.h
+++ b/include/odp/api/spec/crypto.h
@@ -479,7 +479,11 @@ int odp_crypto_auth_capability(odp_auth_alg_t auth,
    		       odp_crypto_auth_capability_t capa[], int num);
/**
- * Crypto session creation (synchronous)
+ * Crypto session creation
+ *
+ * Create a crypto session according to the session parameters. Use
+ * odp_crypto_session_param_init() to initialize parameters into their
+ * default values.
  *
  * @param param             Session parameters
  * @param session           Created session else ODP_CRYPTO_SESSION_INVALID
@@ -589,6 +593,16 @@ uint64_t odp_crypto_session_to_u64(odp_crypto_session_t hdl);
 uint64_t odp_crypto_compl_to_u64(odp_crypto_compl_t hdl);
/**
+ * Initialize crypto session parameters
+ *
+ * Initialize an odp_crypto_session_param_t to its default values for
+ * all fields.
+ *
+ * @param param   Pointer to odp_crypto_session_param_t to be initialized
+ */
+void odp_crypto_session_param_init(odp_crypto_session_param_t *param);
+
+/**
  * @}
  */
diff --git a/platform/linux-generic/odp_crypto.c b/platform/linux-generic/odp_crypto.c
index fd121c8..6b7d60e 100644
--- a/platform/linux-generic/odp_crypto.c
+++ b/platform/linux-generic/odp_crypto.c
@@ -1042,3 +1042,8 @@ odp_crypto_compl_free(odp_crypto_compl_t completion_event)
    	odp_buffer_from_event((odp_event_t)completion_event),
    	ODP_EVENT_PACKET);
 }
+
+void odp_crypto_session_param_init(odp_crypto_session_param_t *param)
+{
+	memset(param, 0, sizeof(odp_crypto_session_param_t));
+}
commit c52864e0956c3f57a059af8c90f7ff2b8fb10e6c
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:05:26 2016 +0200
linux-gen: crypto: add support to new enumerations
Added support for new algorithm enumerations and algorithm
    capability functions.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/platform/linux-generic/include/odp_crypto_internal.h b/platform/linux-generic/include/odp_crypto_internal.h
index 7b4eb61..c7b893a 100644
--- a/platform/linux-generic/include/odp_crypto_internal.h
+++ b/platform/linux-generic/include/odp_crypto_internal.h
@@ -14,6 +14,7 @@ extern "C" {
 #include <openssl/des.h>
 #include <openssl/aes.h>
+#define MAX_IV_LEN      64
 #define OP_RESULT_MAGIC 0x91919191
/** Forward declaration of session structure */
@@ -31,16 +32,16 @@ odp_crypto_alg_err_t (*crypto_func_t)(odp_crypto_op_param_t *param,
  */
 struct odp_crypto_generic_session {
    struct odp_crypto_generic_session *next;
-	odp_crypto_op_t op;
+
+	/* Session creation parameters */
+	odp_crypto_session_param_t p;
+
    odp_bool_t do_cipher_first;
-	odp_queue_t compl_queue;
-	odp_pool_t output_pool;
+
    struct {
-		odp_cipher_alg_t   alg;
-		struct {
-			uint8_t *data;
-			size_t   len;
-		} iv;
+		/* Copy of session IV data */
+		uint8_t iv_data[MAX_IV_LEN];
+
    	union {
    		struct {
    			DES_key_schedule ks1;
@@ -56,8 +57,8 @@ struct odp_crypto_generic_session {
    	} data;
    	crypto_func_t func;
    } cipher;
+
    struct {
-		odp_auth_alg_t  alg;
    	union {
    		struct {
    			uint8_t  key[16];
diff --git a/platform/linux-generic/odp_crypto.c b/platform/linux-generic/odp_crypto.c
index 44b8e06..fd121c8 100644
--- a/platform/linux-generic/odp_crypto.c
+++ b/platform/linux-generic/odp_crypto.c
@@ -249,8 +249,8 @@ odp_crypto_alg_err_t aes_encrypt(odp_crypto_op_param_t *param,
if (param->override_iv_ptr)
    	iv_ptr = param->override_iv_ptr;
-	else if (session->cipher.iv.data)
-		iv_ptr = session->cipher.iv.data;
+	else if (session->p.iv.data)
+		iv_ptr = session->cipher.iv_data;
    else
    	return ODP_CRYPTO_ALG_ERR_IV_INVALID;
@@ -281,8 +281,8 @@ odp_crypto_alg_err_t aes_decrypt(odp_crypto_op_param_t *param,
if (param->override_iv_ptr)
    	iv_ptr = param->override_iv_ptr;
-	else if (session->cipher.iv.data)
-		iv_ptr = session->cipher.iv.data;
+	else if (session->p.iv.data)
+		iv_ptr = session->cipher.iv_data;
    else
    	return ODP_CRYPTO_ALG_ERR_IV_INVALID;
@@ -302,22 +302,20 @@ odp_crypto_alg_err_t aes_decrypt(odp_crypto_op_param_t *param,
    return ODP_CRYPTO_ALG_ERR_NONE;
 }
-static
-int process_aes_param(odp_crypto_generic_session_t *session,
-		      odp_crypto_session_param_t *param)
+static int process_aes_param(odp_crypto_generic_session_t *session)
 {
    /* Verify IV len is either 0 or 16 */
-	if (!((0 == param->iv.length) || (16 == param->iv.length)))
+	if (!((0 == session->p.iv.length) || (16 == session->p.iv.length)))
    	return -1;
/* Set function */
-	if (ODP_CRYPTO_OP_ENCODE == param->op) {
+	if (ODP_CRYPTO_OP_ENCODE == session->p.op) {
    	session->cipher.func = aes_encrypt;
-		AES_set_encrypt_key(param->cipher_key.data, 128,
+		AES_set_encrypt_key(session->p.cipher_key.data, 128,
    			    &session->cipher.data.aes.key);
    } else {
    	session->cipher.func = aes_decrypt;
-		AES_set_decrypt_key(param->cipher_key.data, 128,
+		AES_set_decrypt_key(session->p.cipher_key.data, 128,
    			    &session->cipher.data.aes.key);
    }
@@ -340,8 +338,8 @@ odp_crypto_alg_err_t aes_gcm_encrypt(odp_crypto_op_param_t *param,
if (param->override_iv_ptr)
    	iv_ptr = param->override_iv_ptr;
-	else if (session->cipher.iv.data)
-		iv_ptr = session->cipher.iv.data;
+	else if (session->p.iv.data)
+		iv_ptr = session->cipher.iv_data;
    else
    	return ODP_CRYPTO_ALG_ERR_IV_INVALID;
@@ -405,8 +403,8 @@ odp_crypto_alg_err_t aes_gcm_decrypt(odp_crypto_op_param_t *param,
if (param->override_iv_ptr)
    	iv_ptr = param->override_iv_ptr;
-	else if (session->cipher.iv.data)
-		iv_ptr = session->cipher.iv.data;
+	else if (session->p.iv.data)
+		iv_ptr = session->cipher.iv_data;
    else
    	return ODP_CRYPTO_ALG_ERR_IV_INVALID;
@@ -455,19 +453,17 @@ odp_crypto_alg_err_t aes_gcm_decrypt(odp_crypto_op_param_t *param,
    return ODP_CRYPTO_ALG_ERR_NONE;
 }
-static
-int process_aes_gcm_param(odp_crypto_generic_session_t *session,
-			  odp_crypto_session_param_t *param)
+static int process_aes_gcm_param(odp_crypto_generic_session_t *session)
 {
    /* Verify Key len is 16 */
-	if (param->cipher_key.length != 16)
+	if (session->p.cipher_key.length != 16)
    	return -1;
/* Set function */
    EVP_CIPHER_CTX *ctx =
    	session->cipher.data.aes_gcm.ctx = EVP_CIPHER_CTX_new();
-	if (ODP_CRYPTO_OP_ENCODE == param->op) {
+	if (ODP_CRYPTO_OP_ENCODE == session->p.op) {
    	session->cipher.func = aes_gcm_encrypt;
    	EVP_EncryptInit_ex(ctx, EVP_aes_128_gcm(), NULL, NULL, NULL);
    } else {
@@ -476,13 +472,13 @@ int process_aes_gcm_param(odp_crypto_generic_session_t *session,
    }
EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_SET_IVLEN,
-			    param->iv.length, NULL);
-	if (ODP_CRYPTO_OP_ENCODE == param->op) {
+			    session->p.iv.length, NULL);
+	if (ODP_CRYPTO_OP_ENCODE == session->p.op) {
    	EVP_EncryptInit_ex(ctx, NULL, NULL,
-				   param->cipher_key.data, NULL);
+				   session->p.cipher_key.data, NULL);
    } else {
    	EVP_DecryptInit_ex(ctx, NULL, NULL,
-				   param->cipher_key.data, NULL);
+				   session->p.cipher_key.data, NULL);
    }
return 0;
@@ -499,8 +495,8 @@ odp_crypto_alg_err_t des_encrypt(odp_crypto_op_param_t *param,
if (param->override_iv_ptr)
    	iv_ptr = param->override_iv_ptr;
-	else if (session->cipher.iv.data)
-		iv_ptr = session->cipher.iv.data;
+	else if (session->p.iv.data)
+		iv_ptr = session->cipher.iv_data;
    else
    	return ODP_CRYPTO_ALG_ERR_IV_INVALID;
@@ -537,8 +533,8 @@ odp_crypto_alg_err_t des_decrypt(odp_crypto_op_param_t *param,
if (param->override_iv_ptr)
    	iv_ptr = param->override_iv_ptr;
-	else if (session->cipher.iv.data)
-		iv_ptr = session->cipher.iv.data;
+	else if (session->p.iv.data)
+		iv_ptr = session->cipher.iv_data;
    else
    	return ODP_CRYPTO_ALG_ERR_IV_INVALID;
@@ -565,38 +561,34 @@ odp_crypto_alg_err_t des_decrypt(odp_crypto_op_param_t *param,
    return ODP_CRYPTO_ALG_ERR_NONE;
 }
-static
-int process_des_param(odp_crypto_generic_session_t *session,
-		      odp_crypto_session_param_t *param)
+static int process_des_param(odp_crypto_generic_session_t *session)
 {
    /* Verify IV len is either 0 or 8 */
-	if (!((0 == param->iv.length) || (8 == param->iv.length)))
+	if (!((0 == session->p.iv.length) || (8 == session->p.iv.length)))
    	return -1;
/* Set function */
-	if (ODP_CRYPTO_OP_ENCODE == param->op)
+	if (ODP_CRYPTO_OP_ENCODE == session->p.op)
    	session->cipher.func = des_encrypt;
    else
    	session->cipher.func = des_decrypt;
/* Convert keys */
-	DES_set_key((DES_cblock *)&param->cipher_key.data[0],
+	DES_set_key((DES_cblock *)&session->p.cipher_key.data[0],
    	    &session->cipher.data.des.ks1);
-	DES_set_key((DES_cblock *)&param->cipher_key.data[8],
+	DES_set_key((DES_cblock *)&session->p.cipher_key.data[8],
    	    &session->cipher.data.des.ks2);
-	DES_set_key((DES_cblock *)&param->cipher_key.data[16],
+	DES_set_key((DES_cblock *)&session->p.cipher_key.data[16],
    	    &session->cipher.data.des.ks3);
return 0;
 }
-static
-int process_md5_param(odp_crypto_generic_session_t *session,
-		      odp_crypto_session_param_t *param,
-		      uint32_t bits)
+static int process_md5_param(odp_crypto_generic_session_t *session,
+			     uint32_t bits)
 {
    /* Set function */
-	if (ODP_CRYPTO_OP_ENCODE == param->op)
+	if (ODP_CRYPTO_OP_ENCODE == session->p.op)
    	session->auth.func = md5_gen;
    else
    	session->auth.func = md5_check;
@@ -605,18 +597,16 @@ int process_md5_param(odp_crypto_generic_session_t *session,
    session->auth.data.md5.bytes = bits / 8;
/* Convert keys */
-	memcpy(session->auth.data.md5.key, param->auth_key.data, 16);
+	memcpy(session->auth.data.md5.key, session->p.auth_key.data, 16);
return 0;
 }
-static
-int process_sha256_param(odp_crypto_generic_session_t *session,
-			 odp_crypto_session_param_t *param,
-			 uint32_t bits)
+static int process_sha256_param(odp_crypto_generic_session_t *session,
+				uint32_t bits)
 {
    /* Set function */
-	if (ODP_CRYPTO_OP_ENCODE == param->op)
+	if (ODP_CRYPTO_OP_ENCODE == session->p.op)
    	session->auth.func = sha256_gen;
    else
    	session->auth.func = sha256_check;
@@ -625,7 +615,7 @@ int process_sha256_param(odp_crypto_generic_session_t *session,
    session->auth.data.sha256.bytes = bits / 8;
/* Convert keys */
-	memcpy(session->auth.data.sha256.key, param->auth_key.data, 32);
+	memcpy(session->auth.data.sha256.key, session->p.auth_key.data, 32);
return 0;
 }
@@ -638,16 +628,23 @@ int odp_crypto_capability(odp_crypto_capability_t *capa)
    /* Initialize crypto capability structure */
    memset(capa, 0, sizeof(odp_crypto_capability_t));
-	capa->ciphers.bit.null = 1;
-	capa->ciphers.bit.des = 1;
-	capa->ciphers.bit.trides_cbc  = 1;
-	capa->ciphers.bit.aes128_cbc  = 1;
-	capa->ciphers.bit.aes128_gcm  = 1;
+	capa->ciphers.bit.null       = 1;
+	capa->ciphers.bit.des        = 1;
+	capa->ciphers.bit.trides_cbc = 1;
+	capa->ciphers.bit.aes_cbc    = 1;
+	capa->ciphers.bit.aes_gcm    = 1;
+
+	capa->auths.bit.null         = 1;
+	capa->auths.bit.md5_hmac     = 1;
+	capa->auths.bit.sha256_hmac  = 1;
+	capa->auths.bit.aes_gcm      = 1;
-	capa->auths.bit.null = 1;
-	capa->auths.bit.md5_96 = 1;
-	capa->auths.bit.sha256_128 = 1;
-	capa->auths.bit.aes128_gcm  = 1;
+	/* Deprecated */
+	capa->ciphers.bit.aes128_cbc = 1;
+	capa->ciphers.bit.aes128_gcm = 1;
+	capa->auths.bit.md5_96       = 1;
+	capa->auths.bit.sha256_128   = 1;
+	capa->auths.bit.aes128_gcm   = 1;
capa->max_sessions = MAX_SESSIONS;
@@ -749,21 +746,26 @@ odp_crypto_session_create(odp_crypto_session_param_t *param,
    	return -1;
    }
+	/* Copy parameters */
+	session->p = *param;
+
+	/* Copy IV data */
+	if (session->p.iv.data) {
+		if (session->p.iv.length > MAX_IV_LEN) {
+			ODP_DBG("Maximum IV length exceeded\n");
+			return -1;
+		}
+
+		memcpy(session->cipher.iv_data, session->p.iv.data,
+		       session->p.iv.length);
+	}
+
    /* Derive order */
    if (ODP_CRYPTO_OP_ENCODE == param->op)
    	session->do_cipher_first =  param->auth_cipher_text;
    else
    	session->do_cipher_first = !param->auth_cipher_text;
-	/* Copy stuff over */
-	session->op = param->op;
-	session->compl_queue = param->compl_queue;
-	session->cipher.alg  = param->cipher_alg;
-	session->cipher.iv.data = param->iv.data;
-	session->cipher.iv.len  = param->iv.length;
-	session->auth.alg  = param->auth_alg;
-	session->output_pool = param->output_pool;
-
    /* Process based on cipher */
    switch (param->cipher_alg) {
    case ODP_CIPHER_ALG_NULL:
@@ -772,19 +774,23 @@ odp_crypto_session_create(odp_crypto_session_param_t *param,
    	break;
    case ODP_CIPHER_ALG_DES:
    case ODP_CIPHER_ALG_3DES_CBC:
-		rc = process_des_param(session, param);
+		rc = process_des_param(session);
    	break;
+	case ODP_CIPHER_ALG_AES_CBC:
+	     /* deprecated */
    case ODP_CIPHER_ALG_AES128_CBC:
-		rc = process_aes_param(session, param);
+		rc = process_aes_param(session);
    	break;
+	case ODP_CIPHER_ALG_AES_GCM:
+	     /* deprecated */
    case ODP_CIPHER_ALG_AES128_GCM:
    	/* AES-GCM requires to do both auth and
    	 * cipher at the same time */
-		if (param->auth_alg != ODP_AUTH_ALG_AES128_GCM) {
+		if (param->auth_alg == ODP_AUTH_ALG_AES_GCM ||
+		    param->auth_alg == ODP_AUTH_ALG_AES128_GCM)
+			rc = process_aes_gcm_param(session);
+		else
    		rc = -1;
-			break;
-		}
-		rc = process_aes_gcm_param(session, param);
    	break;
    default:
    	rc = -1;
@@ -802,21 +808,28 @@ odp_crypto_session_create(odp_crypto_session_param_t *param,
    	session->auth.func = null_crypto_routine;
    	rc = 0;
    	break;
+	case ODP_AUTH_ALG_MD5_HMAC:
+	     /* deprecated */
    case ODP_AUTH_ALG_MD5_96:
-		rc = process_md5_param(session, param, 96);
+		rc = process_md5_param(session, 96);
    	break;
+	case ODP_AUTH_ALG_SHA256_HMAC:
+	     /* deprecated */
    case ODP_AUTH_ALG_SHA256_128:
-		rc = process_sha256_param(session, param, 128);
+		rc = process_sha256_param(session, 128);
    	break;
+	case ODP_AUTH_ALG_AES_GCM:
+	     /* deprecated */
    case ODP_AUTH_ALG_AES128_GCM:
    	/* AES-GCM requires to do both auth and
    	 * cipher at the same time */
-		if (param->cipher_alg != ODP_CIPHER_ALG_AES128_GCM) {
+		if (param->cipher_alg == ODP_CIPHER_ALG_AES_GCM ||
+		    param->cipher_alg == ODP_CIPHER_ALG_AES128_GCM) {
+			session->auth.func = null_crypto_routine;
+			rc = 0;
+		} else {
    		rc = -1;
-			break;
    	}
-		session->auth.func = null_crypto_routine;
-		rc = 0;
    	break;
    default:
    	rc = -1;
@@ -838,7 +851,8 @@ int odp_crypto_session_destroy(odp_crypto_session_t session)
    odp_crypto_generic_session_t *generic;
generic = (odp_crypto_generic_session_t *)(intptr_t)session;
-	if (generic->cipher.alg == ODP_CIPHER_ALG_AES128_GCM)
+	if (generic->p.cipher_alg == ODP_CIPHER_ALG_AES128_GCM ||
+	    generic->p.cipher_alg == ODP_CIPHER_ALG_AES_GCM)
    	EVP_CIPHER_CTX_free(generic->cipher.data.aes_gcm.ctx);
    memset(generic, 0, sizeof(*generic));
    free_session(generic);
@@ -859,8 +873,8 @@ odp_crypto_operation(odp_crypto_op_param_t *param,
/* Resolve output buffer */
    if (ODP_PACKET_INVALID == param->out_pkt &&
-	    ODP_POOL_INVALID != session->output_pool)
-		param->out_pkt = odp_packet_alloc(session->output_pool,
+	    ODP_POOL_INVALID != session->p.output_pool)
+		param->out_pkt = odp_packet_alloc(session->p.output_pool,
    			odp_packet_len(param->pkt));
if (odp_unlikely(ODP_PACKET_INVALID == param->out_pkt)) {
@@ -900,7 +914,7 @@ odp_crypto_operation(odp_crypto_op_param_t *param,
    	(rc_auth == ODP_CRYPTO_ALG_ERR_NONE);
/* If specified during creation post event to completion queue */
-	if (ODP_QUEUE_INVALID != session->compl_queue) {
+	if (ODP_QUEUE_INVALID != session->p.compl_queue) {
    	odp_event_t completion_event;
    	odp_crypto_generic_op_result_t *op_result;
@@ -913,7 +927,7 @@ odp_crypto_operation(odp_crypto_op_param_t *param,
    	op_result = get_op_result_from_event(completion_event);
    	op_result->magic = OP_RESULT_MAGIC;
    	op_result->result = local_result;
-		if (odp_queue_enq(session->compl_queue, completion_event)) {
+		if (odp_queue_enq(session->p.compl_queue, completion_event)) {
    		odp_event_free(completion_event);
    		return -1;
    	}
commit 9f084f0c90509a354452ef75325c507224c7cd93
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:25:58 2016 +0200
linux-gen: crypto: add algo capability functions
Implemented cipher and authentication algorithm capability
    functions.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/platform/linux-generic/odp_crypto.c b/platform/linux-generic/odp_crypto.c
index 70d3a97..44b8e06 100644
--- a/platform/linux-generic/odp_crypto.c
+++ b/platform/linux-generic/odp_crypto.c
@@ -27,6 +27,37 @@
#define MAX_SESSIONS 32
+/*
+ * Cipher algorithm capabilities
+ *
+ * Keep sorted: first by key length, then by IV length
+ */
+static const odp_crypto_cipher_capability_t cipher_capa_des[] = {
+{.key_len = 24, .iv_len = 8} };
+
+static const odp_crypto_cipher_capability_t cipher_capa_trides_cbc[] = {
+{.key_len = 24, .iv_len = 8} };
+
+static const odp_crypto_cipher_capability_t cipher_capa_aes_cbc[] = {
+{.key_len = 16, .iv_len = 16} };
+
+static const odp_crypto_cipher_capability_t cipher_capa_aes_gcm[] = {
+{.key_len = 16, .iv_len = 12} };
+
+/*
+ * Authentication algorithm capabilities
+ *
+ * Keep sorted: first by digest length, then by key length
+ */
+static const odp_crypto_auth_capability_t auth_capa_md5_hmac[] = {
+{.digest_len = 12, .key_len = 16, .aad_len = {.min = 0, .max = 0, .inc = 0} } };
+
+static const odp_crypto_auth_capability_t auth_capa_sha256_hmac[] = {
+{.digest_len = 16, .key_len = 32, .aad_len = {.min = 0, .max = 0, .inc = 0} } };
+
+static const odp_crypto_auth_capability_t auth_capa_aes_gcm[] = {
+{.digest_len = 16, .key_len = 0, .aad_len = {.min = 8, .max = 12, .inc = 4} } };
+
 typedef struct odp_crypto_global_s odp_crypto_global_t;
struct odp_crypto_global_s {
@@ -623,6 +654,83 @@ int odp_crypto_capability(odp_crypto_capability_t *capa)
    return 0;
 }
+int odp_crypto_cipher_capability(odp_cipher_alg_t cipher,
+				 odp_crypto_cipher_capability_t dst[],
+				 int num_copy)
+{
+	const odp_crypto_cipher_capability_t *src;
+	int num;
+	int size = sizeof(odp_crypto_cipher_capability_t);
+
+	switch (cipher) {
+	case ODP_CIPHER_ALG_NULL:
+		src = NULL;
+		num = 0;
+		break;
+	case ODP_CIPHER_ALG_DES:
+		src = cipher_capa_des;
+		num = sizeof(cipher_capa_des) / size;
+		break;
+	case ODP_CIPHER_ALG_3DES_CBC:
+		src = cipher_capa_trides_cbc;
+		num = sizeof(cipher_capa_trides_cbc) / size;
+		break;
+	case ODP_CIPHER_ALG_AES_CBC:
+		src = cipher_capa_aes_cbc;
+		num = sizeof(cipher_capa_aes_cbc) / size;
+		break;
+	case ODP_CIPHER_ALG_AES_GCM:
+		src = cipher_capa_aes_gcm;
+		num = sizeof(cipher_capa_aes_gcm) / size;
+		break;
+	default:
+		return -1;
+	}
+
+	if (num < num_copy)
+		num_copy = num;
+
+	memcpy(dst, src, num_copy * size);
+
+	return num;
+}
+
+int odp_crypto_auth_capability(odp_auth_alg_t auth,
+			       odp_crypto_auth_capability_t dst[], int num_copy)
+{
+	const odp_crypto_auth_capability_t *src;
+	int num;
+	int size = sizeof(odp_crypto_auth_capability_t);
+
+	switch (auth) {
+	case ODP_AUTH_ALG_NULL:
+		src = NULL;
+		num = 0;
+		break;
+	case ODP_AUTH_ALG_MD5_HMAC:
+		src = auth_capa_md5_hmac;
+		num = sizeof(auth_capa_md5_hmac) / size;
+		break;
+	case ODP_AUTH_ALG_SHA256_HMAC:
+		src = auth_capa_sha256_hmac;
+		num = sizeof(auth_capa_sha256_hmac) / size;
+		break;
+	case ODP_AUTH_ALG_AES_GCM:
+		src = auth_capa_aes_gcm;
+		num = sizeof(auth_capa_aes_gcm) / size;
+		break;
+	default:
+		return -1;
+	}
+
+	if (num < num_copy)
+		num_copy = num;
+
+	memcpy(dst, src, num_copy * size);
+
+	return num;
+}
+
 int
 odp_crypto_session_create(odp_crypto_session_param_t *param,
    		  odp_crypto_session_t *session_out,
commit b6de862e041b500ade8a94917429f196173d5d90
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:05:24 2016 +0200
api: crypto: decouple key length from algorithm enumeration
Enumerations for cipher and authentication algorithms grow
    fast if key and digest lengths are included into the enum.
    Decoupled lengths from algorithm names, only exception is
    SHA-2 family of authentication algorithms which has established
    naming convention with digest lengths (SHA-224, SHA-256, ...).
    Old enumerations are still functional but deprecated.
Algotrithm level capability functions provide a flexible way to
    handle all possible key/digest/iv length combinations.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/include/odp/api/spec/crypto.h b/include/odp/api/spec/crypto.h
index f24f527..4b94824 100644
--- a/include/odp/api/spec/crypto.h
+++ b/include/odp/api/spec/crypto.h
@@ -65,14 +65,28 @@ typedef enum {
 typedef enum {
    /** No cipher algorithm specified */
    ODP_CIPHER_ALG_NULL,
+
    /** DES */
    ODP_CIPHER_ALG_DES,
+
    /** Triple DES with cipher block chaining */
    ODP_CIPHER_ALG_3DES_CBC,
-	/** AES128 with cipher block chaining */
+
+	/** AES with cipher block chaining */
+	ODP_CIPHER_ALG_AES_CBC,
+
+	/** AES in Galois/Counter Mode
+	 *
+	 *  @note Must be paired with cipher ODP_AUTH_ALG_AES_GCM
+	 */
+	ODP_CIPHER_ALG_AES_GCM,
+
+	/** @deprecated  Use ODP_CIPHER_ALG_AES_CBC instead */
    ODP_CIPHER_ALG_AES128_CBC,
-	/** AES128 in Galois/Counter Mode */
-	ODP_CIPHER_ALG_AES128_GCM,
+
+	/** @deprecated  Use ODP_CIPHER_ALG_AES_GCM instead */
+	ODP_CIPHER_ALG_AES128_GCM
+
 } odp_cipher_alg_t;
/**
@@ -81,12 +95,33 @@ typedef enum {
 typedef enum {
     /** No authentication algorithm specified */
    ODP_AUTH_ALG_NULL,
-	/** HMAC-MD5 with 96 bit key */
+
+	/** HMAC-MD5
+	 *
+	 * MD5 algorithm in HMAC mode
+	 */
+	ODP_AUTH_ALG_MD5_HMAC,
+
+	/** HMAC-SHA-256
+	 *
+	 *  SHA-256 algorithm in HMAC mode
+	 */
+	ODP_AUTH_ALG_SHA256_HMAC,
+
+	/** AES in Galois/Counter Mode
+	 *
+	 *  @note Must be paired with cipher ODP_CIPHER_ALG_AES_GCM
+	 */
+	ODP_AUTH_ALG_AES_GCM,
+
+	/** @deprecated  Use ODP_AUTH_ALG_MD5_HMAC instead */
    ODP_AUTH_ALG_MD5_96,
-	/** SHA256 with 128 bit key */
+
+	/** @deprecated  Use ODP_AUTH_ALG_SHA256_HMAC instead */
    ODP_AUTH_ALG_SHA256_128,
-	/** AES128 in Galois/Counter Mode */
-	ODP_AUTH_ALG_AES128_GCM,
+
+	/** @deprecated  Use ODP_AUTH_ALG_AES_GCM instead */
+	ODP_AUTH_ALG_AES128_GCM
 } odp_auth_alg_t;
/**
@@ -96,19 +131,25 @@ typedef union odp_crypto_cipher_algos_t {
    /** Cipher algorithms */
    struct {
    	/** ODP_CIPHER_ALG_NULL */
-		uint32_t null       : 1;
+		uint32_t null        : 1;
/** ODP_CIPHER_ALG_DES */
-		uint32_t des        : 1;
+		uint32_t des         : 1;
/** ODP_CIPHER_ALG_3DES_CBC */
-		uint32_t trides_cbc : 1;
+		uint32_t trides_cbc  : 1;
+
+		/** ODP_CIPHER_ALG_AES_CBC */
+		uint32_t aes_cbc     : 1;
-		/** ODP_CIPHER_ALG_AES128_CBC */
-		uint32_t aes128_cbc : 1;
+		/** ODP_CIPHER_ALG_AES_GCM */
+		uint32_t aes_gcm     : 1;
-		/** ODP_CIPHER_ALG_AES128_GCM */
-		uint32_t aes128_gcm : 1;
+		/** @deprecated  Use aes_cbc instead */
+		uint32_t aes128_cbc  : 1;
+
+		/** @deprecated  Use aes_gcm instead */
+		uint32_t aes128_gcm  : 1;
    } bit;
/** All bits of the bit field structure
@@ -125,16 +166,25 @@ typedef union odp_crypto_auth_algos_t {
    /** Authentication algorithms */
    struct {
    	/** ODP_AUTH_ALG_NULL */
-		uint32_t null       : 1;
+		uint32_t null        : 1;
+
+		/** ODP_AUTH_ALG_MD5_HMAC */
+		uint32_t md5_hmac    : 1;
+
+		/** ODP_AUTH_ALG_SHA256_HMAC */
+		uint32_t sha256_hmac : 1;
-		/** ODP_AUTH_ALG_MD5_96 */
-		uint32_t md5_96     : 1;
+		/** ODP_AUTH_ALG_AES_GCM */
+		uint32_t aes_gcm     : 1;
-		/** ODP_AUTH_ALG_SHA256_128 */
-		uint32_t sha256_128 : 1;
+		/** @deprecated  Use md5_hmac instead */
+		uint32_t md5_96      : 1;
-		/** ODP_AUTH_ALG_AES128_GCM */
-		uint32_t aes128_gcm : 1;
+		/** @deprecated  Use sha256_hmac instead */
+		uint32_t sha256_128  : 1;
+
+		/** @deprecated  Use aes_gcm instead */
+		uint32_t aes128_gcm  : 1;
    } bit;
/** All bits of the bit field structure
@@ -341,6 +391,43 @@ typedef struct odp_crypto_capability_t {
 } odp_crypto_capability_t;
/**
+ * Cipher algorithm capabilities
+ */
+typedef struct odp_crypto_cipher_capability_t {
+	/** Key length in bytes */
+	uint32_t key_len;
+
+	/** IV length in bytes */
+	uint32_t iv_len;
+
+} odp_crypto_cipher_capability_t;
+
+/**
+ * Authentication algorithm capabilities
+ */
+typedef struct odp_crypto_auth_capability_t {
+	/** Digest length in bytes */
+	uint32_t digest_len;
+
+	/** Key length in bytes */
+	uint32_t key_len;
+
+	/** Additional Authenticated Data (AAD) lengths */
+	struct {
+		/** Minimum AAD length in bytes */
+		uint32_t min;
+
+		/** Maximum AAD length in bytes */
+		uint32_t max;
+
+		/** Increment of supported lengths between min and max
+		 *  (in bytes) */
+		uint32_t inc;
+	} aad_len;
+
+} odp_crypto_auth_capability_t;
+
+/**
  * Query crypto capabilities
  *
  * Outputs crypto capabilities on success.
@@ -353,6 +440,45 @@ typedef struct odp_crypto_capability_t {
 int odp_crypto_capability(odp_crypto_capability_t *capa);
/**
+ * Query supported cipher algorithm capabilities
+ *
+ * Outputs all supported configuration options for the algorithm. Output is
+ * sorted (from the smallest to the largest) first by key length, then by IV
+ * length.
+ *
+ * @param      cipher       Cipher algorithm
+ * @param[out] capa         Array of capability structures for output
+ * @param      num          Maximum number of capability structures to output
+ *
+ * @return Number of capability structures for the algorithm. If this is larger
+ *         than 'num', only 'num' first structures were output and application
+ *         may call the function again with a larger value of 'num'.
+ * @retval <0 on failure
+ */
+int odp_crypto_cipher_capability(odp_cipher_alg_t cipher,
+				 odp_crypto_cipher_capability_t capa[],
+				 int num);
+
+/**
+ * Query supported authentication algorithm capabilities
+ *
+ * Outputs all supported configuration options for the algorithm. Output is
+ * sorted (from the smallest to the largest) first by digest length, then by key
+ * length.
+ *
+ * @param      auth         Authentication algorithm
+ * @param[out] capa         Array of capability structures for output
+ * @param      num          Maximum number of capability structures to output
+ *
+ * @return Number of capability structures for the algorithm. If this is larger
+ *         than 'num', only 'num' first structures were output and application
+ *         may call the function again with a larger value of 'num'.
+ * @retval <0 on failure
+ */
+int odp_crypto_auth_capability(odp_auth_alg_t auth,
+			       odp_crypto_auth_capability_t capa[], int num);
+
+/**
  * Crypto session creation (synchronous)
  *
  * @param param             Session parameters
commit 87b505031e709ac218eece691bb2e98b2987702a
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:05:23 2016 +0200
linux-gen: crypto: rename params to param
Use new _param_t type names instead of _params_t.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/platform/linux-generic/include/odp_crypto_internal.h b/platform/linux-generic/include/odp_crypto_internal.h
index 7b104af..7b4eb61 100644
--- a/platform/linux-generic/include/odp_crypto_internal.h
+++ b/platform/linux-generic/include/odp_crypto_internal.h
@@ -23,7 +23,7 @@ typedef struct odp_crypto_generic_session odp_crypto_generic_session_t;
  * Algorithm handler function prototype
  */
 typedef
-odp_crypto_alg_err_t (*crypto_func_t)(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t (*crypto_func_t)(odp_crypto_op_param_t *param,
    			      odp_crypto_generic_session_t *session);
/**
diff --git a/platform/linux-generic/odp_crypto.c b/platform/linux-generic/odp_crypto.c
index 7e686ff..70d3a97 100644
--- a/platform/linux-generic/odp_crypto.c
+++ b/platform/linux-generic/odp_crypto.c
@@ -69,24 +69,24 @@ void free_session(odp_crypto_generic_session_t *session)
 }
static odp_crypto_alg_err_t
-null_crypto_routine(odp_crypto_op_params_t *params ODP_UNUSED,
+null_crypto_routine(odp_crypto_op_param_t *param ODP_UNUSED,
    	    odp_crypto_generic_session_t *session ODP_UNUSED)
 {
    return ODP_CRYPTO_ALG_ERR_NONE;
 }
static
-odp_crypto_alg_err_t md5_gen(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t md5_gen(odp_crypto_op_param_t *param,
    		     odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
+	uint8_t *data  = odp_packet_data(param->out_pkt);
    uint8_t *icv   = data;
-	uint32_t len   = params->auth_range.length;
+	uint32_t len   = param->auth_range.length;
    uint8_t  hash[EVP_MAX_MD_SIZE];
/* Adjust pointer for beginning of area to auth */
-	data += params->auth_range.offset;
-	icv  += params->hash_result_offset;
+	data += param->auth_range.offset;
+	icv  += param->hash_result_offset;
/* Hash it */
    HMAC(EVP_md5(),
@@ -104,19 +104,19 @@ odp_crypto_alg_err_t md5_gen(odp_crypto_op_params_t *params,
 }
static
-odp_crypto_alg_err_t md5_check(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t md5_check(odp_crypto_op_param_t *param,
    		       odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
+	uint8_t *data  = odp_packet_data(param->out_pkt);
    uint8_t *icv   = data;
-	uint32_t len   = params->auth_range.length;
+	uint32_t len   = param->auth_range.length;
    uint32_t bytes = session->auth.data.md5.bytes;
    uint8_t  hash_in[EVP_MAX_MD_SIZE];
    uint8_t  hash_out[EVP_MAX_MD_SIZE];
/* Adjust pointer for beginning of area to auth */
-	data += params->auth_range.offset;
-	icv  += params->hash_result_offset;
+	data += param->auth_range.offset;
+	icv  += param->hash_result_offset;
/* Copy current value out and clear it before authentication */
    memset(hash_in, 0, sizeof(hash_in));
@@ -142,17 +142,17 @@ odp_crypto_alg_err_t md5_check(odp_crypto_op_params_t *params,
 }
static
-odp_crypto_alg_err_t sha256_gen(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t sha256_gen(odp_crypto_op_param_t *param,
    			odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
+	uint8_t *data  = odp_packet_data(param->out_pkt);
    uint8_t *icv   = data;
-	uint32_t len   = params->auth_range.length;
+	uint32_t len   = param->auth_range.length;
    uint8_t  hash[EVP_MAX_MD_SIZE];
/* Adjust pointer for beginning of area to auth */
-	data += params->auth_range.offset;
-	icv  += params->hash_result_offset;
+	data += param->auth_range.offset;
+	icv  += param->hash_result_offset;
/* Hash it */
    HMAC(EVP_sha256(),
@@ -170,19 +170,19 @@ odp_crypto_alg_err_t sha256_gen(odp_crypto_op_params_t *params,
 }
static
-odp_crypto_alg_err_t sha256_check(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t sha256_check(odp_crypto_op_param_t *param,
    			  odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
+	uint8_t *data  = odp_packet_data(param->out_pkt);
    uint8_t *icv   = data;
-	uint32_t len   = params->auth_range.length;
+	uint32_t len   = param->auth_range.length;
    uint32_t bytes = session->auth.data.sha256.bytes;
    uint8_t  hash_in[EVP_MAX_MD_SIZE];
    uint8_t  hash_out[EVP_MAX_MD_SIZE];
/* Adjust pointer for beginning of area to auth */
-	data += params->auth_range.offset;
-	icv  += params->hash_result_offset;
+	data += param->auth_range.offset;
+	icv  += param->hash_result_offset;
/* Copy current value out and clear it before authentication */
    memset(hash_in, 0, sizeof(hash_in));
@@ -208,16 +208,16 @@ odp_crypto_alg_err_t sha256_check(odp_crypto_op_params_t *params,
 }
static
-odp_crypto_alg_err_t aes_encrypt(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t aes_encrypt(odp_crypto_op_param_t *param,
    			 odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
-	uint32_t len   = params->cipher_range.length;
+	uint8_t *data  = odp_packet_data(param->out_pkt);
+	uint32_t len   = param->cipher_range.length;
    unsigned char iv_enc[AES_BLOCK_SIZE];
    void *iv_ptr;
-	if (params->override_iv_ptr)
-		iv_ptr = params->override_iv_ptr;
+	if (param->override_iv_ptr)
+		iv_ptr = param->override_iv_ptr;
    else if (session->cipher.iv.data)
    	iv_ptr = session->cipher.iv.data;
    else
@@ -231,7 +231,7 @@ odp_crypto_alg_err_t aes_encrypt(odp_crypto_op_params_t *params,
    memcpy(iv_enc, iv_ptr, AES_BLOCK_SIZE);
/* Adjust pointer for beginning of area to cipher */
-	data += params->cipher_range.offset;
+	data += param->cipher_range.offset;
    /* Encrypt it */
    AES_cbc_encrypt(data, data, len, &session->cipher.data.aes.key,
    		iv_enc, AES_ENCRYPT);
@@ -240,16 +240,16 @@ odp_crypto_alg_err_t aes_encrypt(odp_crypto_op_params_t *params,
 }
static
-odp_crypto_alg_err_t aes_decrypt(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t aes_decrypt(odp_crypto_op_param_t *param,
    			 odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
-	uint32_t len   = params->cipher_range.length;
+	uint8_t *data  = odp_packet_data(param->out_pkt);
+	uint32_t len   = param->cipher_range.length;
    unsigned char iv_enc[AES_BLOCK_SIZE];
    void *iv_ptr;
-	if (params->override_iv_ptr)
-		iv_ptr = params->override_iv_ptr;
+	if (param->override_iv_ptr)
+		iv_ptr = param->override_iv_ptr;
    else if (session->cipher.iv.data)
    	iv_ptr = session->cipher.iv.data;
    else
@@ -263,7 +263,7 @@ odp_crypto_alg_err_t aes_decrypt(odp_crypto_op_params_t *params,
    memcpy(iv_enc, iv_ptr, AES_BLOCK_SIZE);
/* Adjust pointer for beginning of area to cipher */
-	data += params->cipher_range.offset;
+	data += param->cipher_range.offset;
    /* Encrypt it */
    AES_cbc_encrypt(data, data, len, &session->cipher.data.aes.key,
    		iv_enc, AES_DECRYPT);
@@ -272,21 +272,21 @@ odp_crypto_alg_err_t aes_decrypt(odp_crypto_op_params_t *params,
 }
static
-int process_aes_params(odp_crypto_generic_session_t *session,
-		       odp_crypto_session_params_t *params)
+int process_aes_param(odp_crypto_generic_session_t *session,
+		      odp_crypto_session_param_t *param)
 {
    /* Verify IV len is either 0 or 16 */
-	if (!((0 == params->iv.length) || (16 == params->iv.length)))
+	if (!((0 == param->iv.length) || (16 == param->iv.length)))
    	return -1;
/* Set function */
-	if (ODP_CRYPTO_OP_ENCODE == params->op) {
+	if (ODP_CRYPTO_OP_ENCODE == param->op) {
    	session->cipher.func = aes_encrypt;
-		AES_set_encrypt_key(params->cipher_key.data, 128,
+		AES_set_encrypt_key(param->cipher_key.data, 128,
    			    &session->cipher.data.aes.key);
    } else {
    	session->cipher.func = aes_decrypt;
-		AES_set_decrypt_key(params->cipher_key.data, 128,
+		AES_set_decrypt_key(param->cipher_key.data, 128,
    			    &session->cipher.data.aes.key);
    }
@@ -294,30 +294,30 @@ int process_aes_params(odp_crypto_generic_session_t *session,
 }
static
-odp_crypto_alg_err_t aes_gcm_encrypt(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t aes_gcm_encrypt(odp_crypto_op_param_t *param,
    			     odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
-	uint32_t plain_len   = params->cipher_range.length;
-	uint8_t *aad_head = data + params->auth_range.offset;
-	uint8_t *aad_tail = data + params->cipher_range.offset +
-		params->cipher_range.length;
-	uint32_t auth_len = params->auth_range.length;
+	uint8_t *data  = odp_packet_data(param->out_pkt);
+	uint32_t plain_len   = param->cipher_range.length;
+	uint8_t *aad_head = data + param->auth_range.offset;
+	uint8_t *aad_tail = data + param->cipher_range.offset +
+		param->cipher_range.length;
+	uint32_t auth_len = param->auth_range.length;
    unsigned char iv_enc[AES_BLOCK_SIZE];
    void *iv_ptr;
-	uint8_t *tag = data + params->hash_result_offset;
+	uint8_t *tag = data + param->hash_result_offset;
-	if (params->override_iv_ptr)
-		iv_ptr = params->override_iv_ptr;
+	if (param->override_iv_ptr)
+		iv_ptr = param->override_iv_ptr;
    else if (session->cipher.iv.data)
    	iv_ptr = session->cipher.iv.data;
    else
    	return ODP_CRYPTO_ALG_ERR_IV_INVALID;
/* All cipher data must be part of the authentication */
-	if (params->auth_range.offset > params->cipher_range.offset ||
-	    params->auth_range.offset + auth_len <
-	    params->cipher_range.offset + plain_len)
+	if (param->auth_range.offset > param->cipher_range.offset ||
+	    param->auth_range.offset + auth_len <
+	    param->cipher_range.offset + plain_len)
    	return ODP_CRYPTO_ALG_ERR_DATA_SIZE;
/*
@@ -328,7 +328,7 @@ odp_crypto_alg_err_t aes_gcm_encrypt(odp_crypto_op_params_t *params,
    memcpy(iv_enc, iv_ptr, AES_BLOCK_SIZE);
/* Adjust pointer for beginning of area to cipher/auth */
-	uint8_t *plaindata = data + params->cipher_range.offset;
+	uint8_t *plaindata = data + param->cipher_range.offset;
/* Encrypt it */
    EVP_CIPHER_CTX *ctx = session->cipher.data.aes_gcm.ctx;
@@ -359,30 +359,30 @@ odp_crypto_alg_err_t aes_gcm_encrypt(odp_crypto_op_params_t *params,
 }
static
-odp_crypto_alg_err_t aes_gcm_decrypt(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t aes_gcm_decrypt(odp_crypto_op_param_t *param,
    			     odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
-	uint32_t cipher_len   = params->cipher_range.length;
-	uint8_t *aad_head = data + params->auth_range.offset;
-	uint8_t *aad_tail = data + params->cipher_range.offset +
-		params->cipher_range.length;
-	uint32_t auth_len = params->auth_range.length;
+	uint8_t *data  = odp_packet_data(param->out_pkt);
+	uint32_t cipher_len   = param->cipher_range.length;
+	uint8_t *aad_head = data + param->auth_range.offset;
+	uint8_t *aad_tail = data + param->cipher_range.offset +
+		param->cipher_range.length;
+	uint32_t auth_len = param->auth_range.length;
    unsigned char iv_enc[AES_BLOCK_SIZE];
    void *iv_ptr;
-	uint8_t *tag   = data + params->hash_result_offset;
+	uint8_t *tag   = data + param->hash_result_offset;
-	if (params->override_iv_ptr)
-		iv_ptr = params->override_iv_ptr;
+	if (param->override_iv_ptr)
+		iv_ptr = param->override_iv_ptr;
    else if (session->cipher.iv.data)
    	iv_ptr = session->cipher.iv.data;
    else
    	return ODP_CRYPTO_ALG_ERR_IV_INVALID;
/* All cipher data must be part of the authentication */
-	if (params->auth_range.offset > params->cipher_range.offset ||
-	    params->auth_range.offset + auth_len <
-	    params->cipher_range.offset + cipher_len)
+	if (param->auth_range.offset > param->cipher_range.offset ||
+	    param->auth_range.offset + auth_len <
+	    param->cipher_range.offset + cipher_len)
    	return ODP_CRYPTO_ALG_ERR_DATA_SIZE;
/*
@@ -393,7 +393,7 @@ odp_crypto_alg_err_t aes_gcm_decrypt(odp_crypto_op_params_t *params,
    memcpy(iv_enc, iv_ptr, AES_BLOCK_SIZE);
/* Adjust pointer for beginning of area to cipher/auth */
-	uint8_t *cipherdata = data + params->cipher_range.offset;
+	uint8_t *cipherdata = data + param->cipher_range.offset;
    /* Encrypt it */
    EVP_CIPHER_CTX *ctx = session->cipher.data.aes_gcm.ctx;
    int plain_len = 0;
@@ -425,18 +425,18 @@ odp_crypto_alg_err_t aes_gcm_decrypt(odp_crypto_op_params_t *params,
 }
static
-int process_aes_gcm_params(odp_crypto_generic_session_t *session,
-			   odp_crypto_session_params_t *params)
+int process_aes_gcm_param(odp_crypto_generic_session_t *session,
+			  odp_crypto_session_param_t *param)
 {
    /* Verify Key len is 16 */
-	if (params->cipher_key.length != 16)
+	if (param->cipher_key.length != 16)
    	return -1;
/* Set function */
    EVP_CIPHER_CTX *ctx =
    	session->cipher.data.aes_gcm.ctx = EVP_CIPHER_CTX_new();
-	if (ODP_CRYPTO_OP_ENCODE == params->op) {
+	if (ODP_CRYPTO_OP_ENCODE == param->op) {
    	session->cipher.func = aes_gcm_encrypt;
    	EVP_EncryptInit_ex(ctx, EVP_aes_128_gcm(), NULL, NULL, NULL);
    } else {
@@ -445,29 +445,29 @@ int process_aes_gcm_params(odp_crypto_generic_session_t *session,
    }
EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_SET_IVLEN,
-			    params->iv.length, NULL);
-	if (ODP_CRYPTO_OP_ENCODE == params->op) {
+			    param->iv.length, NULL);
+	if (ODP_CRYPTO_OP_ENCODE == param->op) {
    	EVP_EncryptInit_ex(ctx, NULL, NULL,
-				   params->cipher_key.data, NULL);
+				   param->cipher_key.data, NULL);
    } else {
    	EVP_DecryptInit_ex(ctx, NULL, NULL,
-				   params->cipher_key.data, NULL);
+				   param->cipher_key.data, NULL);
    }
return 0;
 }
static
-odp_crypto_alg_err_t des_encrypt(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t des_encrypt(odp_crypto_op_param_t *param,
    			 odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
-	uint32_t len   = params->cipher_range.length;
+	uint8_t *data  = odp_packet_data(param->out_pkt);
+	uint32_t len   = param->cipher_range.length;
    DES_cblock iv;
    void *iv_ptr;
-	if (params->override_iv_ptr)
-		iv_ptr = params->override_iv_ptr;
+	if (param->override_iv_ptr)
+		iv_ptr = param->override_iv_ptr;
    else if (session->cipher.iv.data)
    	iv_ptr = session->cipher.iv.data;
    else
@@ -481,7 +481,7 @@ odp_crypto_alg_err_t des_encrypt(odp_crypto_op_params_t *params,
    memcpy(iv, iv_ptr, sizeof(iv));
/* Adjust pointer for beginning of area to cipher */
-	data += params->cipher_range.offset;
+	data += param->cipher_range.offset;
    /* Encrypt it */
    DES_ede3_cbc_encrypt(data,
    		     data,
@@ -496,16 +496,16 @@ odp_crypto_alg_err_t des_encrypt(odp_crypto_op_params_t *params,
 }
static
-odp_crypto_alg_err_t des_decrypt(odp_crypto_op_params_t *params,
+odp_crypto_alg_err_t des_decrypt(odp_crypto_op_param_t *param,
    			 odp_crypto_generic_session_t *session)
 {
-	uint8_t *data  = odp_packet_data(params->out_pkt);
-	uint32_t len   = params->cipher_range.length;
+	uint8_t *data  = odp_packet_data(param->out_pkt);
+	uint32_t len   = param->cipher_range.length;
    DES_cblock iv;
    void *iv_ptr;
-	if (params->override_iv_ptr)
-		iv_ptr = params->override_iv_ptr;
+	if (param->override_iv_ptr)
+		iv_ptr = param->override_iv_ptr;
    else if (session->cipher.iv.data)
    	iv_ptr = session->cipher.iv.data;
    else
@@ -519,7 +519,7 @@ odp_crypto_alg_err_t des_decrypt(odp_crypto_op_params_t *params,
    memcpy(iv, iv_ptr, sizeof(iv));
/* Adjust pointer for beginning of area to cipher */
-	data += params->cipher_range.offset;
+	data += param->cipher_range.offset;
/* Decrypt it */
    DES_ede3_cbc_encrypt(data,
@@ -535,37 +535,37 @@ odp_crypto_alg_err_t des_decrypt(odp_crypto_op_params_t *params,
 }
static
-int process_des_params(odp_crypto_generic_session_t *session,
-		       odp_crypto_session_params_t *params)
+int process_des_param(odp_crypto_generic_session_t *session,
+		      odp_crypto_session_param_t *param)
 {
    /* Verify IV len is either 0 or 8 */
-	if (!((0 == params->iv.length) || (8 == params->iv.length)))
+	if (!((0 == param->iv.length) || (8 == param->iv.length)))
    	return -1;
/* Set function */
-	if (ODP_CRYPTO_OP_ENCODE == params->op)
+	if (ODP_CRYPTO_OP_ENCODE == param->op)
    	session->cipher.func = des_encrypt;
    else
    	session->cipher.func = des_decrypt;
/* Convert keys */
-	DES_set_key((DES_cblock *)&params->cipher_key.data[0],
+	DES_set_key((DES_cblock *)&param->cipher_key.data[0],
    	    &session->cipher.data.des.ks1);
-	DES_set_key((DES_cblock *)&params->cipher_key.data[8],
+	DES_set_key((DES_cblock *)&param->cipher_key.data[8],
    	    &session->cipher.data.des.ks2);
-	DES_set_key((DES_cblock *)&params->cipher_key.data[16],
+	DES_set_key((DES_cblock *)&param->cipher_key.data[16],
    	    &session->cipher.data.des.ks3);
return 0;
 }
static
-int process_md5_params(odp_crypto_generic_session_t *session,
-		       odp_crypto_session_params_t *params,
-		       uint32_t bits)
+int process_md5_param(odp_crypto_generic_session_t *session,
+		      odp_crypto_session_param_t *param,
+		      uint32_t bits)
 {
    /* Set function */
-	if (ODP_CRYPTO_OP_ENCODE == params->op)
+	if (ODP_CRYPTO_OP_ENCODE == param->op)
    	session->auth.func = md5_gen;
    else
    	session->auth.func = md5_check;
@@ -574,18 +574,18 @@ int process_md5_params(odp_crypto_generic_session_t *session,
    session->auth.data.md5.bytes = bits / 8;
/* Convert keys */
-	memcpy(session->auth.data.md5.key, params->auth_key.data, 16);
+	memcpy(session->auth.data.md5.key, param->auth_key.data, 16);
return 0;
 }
static
-int process_sha256_params(odp_crypto_generic_session_t *session,
-			  odp_crypto_session_params_t *params,
-			  uint32_t bits)
+int process_sha256_param(odp_crypto_generic_session_t *session,
+			 odp_crypto_session_param_t *param,
+			 uint32_t bits)
 {
    /* Set function */
-	if (ODP_CRYPTO_OP_ENCODE == params->op)
+	if (ODP_CRYPTO_OP_ENCODE == param->op)
    	session->auth.func = sha256_gen;
    else
    	session->auth.func = sha256_check;
@@ -594,7 +594,7 @@ int process_sha256_params(odp_crypto_generic_session_t *session,
    session->auth.data.sha256.bytes = bits / 8;
/* Convert keys */
-	memcpy(session->auth.data.sha256.key, params->auth_key.data, 32);
+	memcpy(session->auth.data.sha256.key, param->auth_key.data, 32);
return 0;
 }
@@ -624,7 +624,7 @@ int odp_crypto_capability(odp_crypto_capability_t *capa)
 }
int
-odp_crypto_session_create(odp_crypto_session_params_t *params,
+odp_crypto_session_create(odp_crypto_session_param_t *param,
    		  odp_crypto_session_t *session_out,
    		  odp_crypto_ses_create_err_t *status)
 {
@@ -642,41 +642,41 @@ odp_crypto_session_create(odp_crypto_session_params_t *params,
    }
/* Derive order */
-	if (ODP_CRYPTO_OP_ENCODE == params->op)
-		session->do_cipher_first =  params->auth_cipher_text;
+	if (ODP_CRYPTO_OP_ENCODE == param->op)
+		session->do_cipher_first =  param->auth_cipher_text;
    else
-		session->do_cipher_first = !params->auth_cipher_text;
+		session->do_cipher_first = !param->auth_cipher_text;
/* Copy stuff over */
-	session->op = params->op;
-	session->compl_queue = params->compl_queue;
-	session->cipher.alg  = params->cipher_alg;
-	session->cipher.iv.data = params->iv.data;
-	session->cipher.iv.len  = params->iv.length;
-	session->auth.alg  = params->auth_alg;
-	session->output_pool = params->output_pool;
+	session->op = param->op;
+	session->compl_queue = param->compl_queue;
+	session->cipher.alg  = param->cipher_alg;
+	session->cipher.iv.data = param->iv.data;
+	session->cipher.iv.len  = param->iv.length;
+	session->auth.alg  = param->auth_alg;
+	session->output_pool = param->output_pool;
/* Process based on cipher */
-	switch (params->cipher_alg) {
+	switch (param->cipher_alg) {
    case ODP_CIPHER_ALG_NULL:
    	session->cipher.func = null_crypto_routine;
    	rc = 0;
    	break;
    case ODP_CIPHER_ALG_DES:
    case ODP_CIPHER_ALG_3DES_CBC:
-		rc = process_des_params(session, params);
+		rc = process_des_param(session, param);
    	break;
    case ODP_CIPHER_ALG_AES128_CBC:
-		rc = process_aes_params(session, params);
+		rc = process_aes_param(session, param);
    	break;
    case ODP_CIPHER_ALG_AES128_GCM:
    	/* AES-GCM requires to do both auth and
    	 * cipher at the same time */
-		if (params->auth_alg != ODP_AUTH_ALG_AES128_GCM) {
+		if (param->auth_alg != ODP_AUTH_ALG_AES128_GCM) {
    		rc = -1;
    		break;
    	}
-		rc = process_aes_gcm_params(session, params);
+		rc = process_aes_gcm_param(session, param);
    	break;
    default:
    	rc = -1;
@@ -689,21 +689,21 @@ odp_crypto_session_create(odp_crypto_session_params_t *params,
    }
/* Process based on auth */
-	switch (params->auth_alg) {
+	switch (param->auth_alg) {
    case ODP_AUTH_ALG_NULL:
    	session->auth.func = null_crypto_routine;
    	rc = 0;
    	break;
    case ODP_AUTH_ALG_MD5_96:
-		rc = process_md5_params(session, params, 96);
+		rc = process_md5_param(session, param, 96);
    	break;
    case ODP_AUTH_ALG_SHA256_128:
-		rc = process_sha256_params(session, params, 128);
+		rc = process_sha256_param(session, param, 128);
    	break;
    case ODP_AUTH_ALG_AES128_GCM:
    	/* AES-GCM requires to do both auth and
    	 * cipher at the same time */
-		if (params->cipher_alg != ODP_CIPHER_ALG_AES128_GCM) {
+		if (param->cipher_alg != ODP_CIPHER_ALG_AES128_GCM) {
    		rc = -1;
    		break;
    	}
@@ -738,7 +738,7 @@ int odp_crypto_session_destroy(odp_crypto_session_t session)
 }
int
-odp_crypto_operation(odp_crypto_op_params_t *params,
+odp_crypto_operation(odp_crypto_op_param_t *param,
    	     odp_bool_t *posted,
    	     odp_crypto_op_result_t *result)
 {
@@ -747,42 +747,42 @@ odp_crypto_operation(odp_crypto_op_params_t *params,
    odp_crypto_generic_session_t *session;
    odp_crypto_op_result_t local_result;
-	session = (odp_crypto_generic_session_t *)(intptr_t)params->session;
+	session = (odp_crypto_generic_session_t *)(intptr_t)param->session;
/* Resolve output buffer */
-	if (ODP_PACKET_INVALID == params->out_pkt &&
+	if (ODP_PACKET_INVALID == param->out_pkt &&
        ODP_POOL_INVALID != session->output_pool)
-		params->out_pkt = odp_packet_alloc(session->output_pool,
-				odp_packet_len(params->pkt));
+		param->out_pkt = odp_packet_alloc(session->output_pool,
+				odp_packet_len(param->pkt));
-	if (odp_unlikely(ODP_PACKET_INVALID == params->out_pkt)) {
+	if (odp_unlikely(ODP_PACKET_INVALID == param->out_pkt)) {
    	ODP_DBG("Alloc failed.\n");
    	return -1;
    }
-	if (params->pkt != params->out_pkt) {
-		(void)odp_packet_copy_from_pkt(params->out_pkt,
+	if (param->pkt != param->out_pkt) {
+		(void)odp_packet_copy_from_pkt(param->out_pkt,
    				       0,
-					       params->pkt,
+					       param->pkt,
    				       0,
-					       odp_packet_len(params->pkt));
-		_odp_packet_copy_md_to_packet(params->pkt, params->out_pkt);
-		odp_packet_free(params->pkt);
-		params->pkt = ODP_PACKET_INVALID;
+					       odp_packet_len(param->pkt));
+		_odp_packet_copy_md_to_packet(param->pkt, param->out_pkt);
+		odp_packet_free(param->pkt);
+		param->pkt = ODP_PACKET_INVALID;
    }
/* Invoke the functions */
    if (session->do_cipher_first) {
-		rc_cipher = session->cipher.func(params, session);
-		rc_auth = session->auth.func(params, session);
+		rc_cipher = session->cipher.func(param, session);
+		rc_auth = session->auth.func(param, session);
    } else {
-		rc_auth = session->auth.func(params, session);
-		rc_cipher = session->cipher.func(params, session);
+		rc_auth = session->auth.func(param, session);
+		rc_cipher = session->cipher.func(param, session);
    }
/* Fill in result */
-	local_result.ctx = params->ctx;
-	local_result.pkt = params->out_pkt;
+	local_result.ctx = param->ctx;
+	local_result.pkt = param->out_pkt;
    local_result.cipher_status.alg_err = rc_cipher;
    local_result.cipher_status.hw_err = ODP_CRYPTO_HW_ERR_NONE;
    local_result.auth_status.alg_err = rc_auth;
@@ -797,7 +797,7 @@ odp_crypto_operation(odp_crypto_op_params_t *params,
    	odp_crypto_generic_op_result_t *op_result;
/* Linux generic will always use packet for completion event */
-		completion_event = odp_packet_to_event(params->out_pkt);
+		completion_event = odp_packet_to_event(param->out_pkt);
    	_odp_buffer_event_type_set(
    		odp_buffer_from_event(completion_event),
    		ODP_EVENT_CRYPTO_COMPL);
commit 8acf38df013c6d89e5a2dc3f84fb928e97d27752
Author: Petri Savolainen petri.savolainen@nokia.com
Date:   Thu Dec 8 16:25:32 2016 +0200
api: crypto: rename _params_t to _param_t
The common naming convention for parameter types is _param_t
    (without 's'). Old type names remain for backwards compatibility,
    but are deprecated.
Signed-off-by: Petri Savolainen petri.savolainen@nokia.com
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Balasubramanian Manoharan bala.manoharan@linaro.org
    Reviewed-by: Nikhil Agarwal nikhil.agarwal@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/include/odp/api/spec/crypto.h b/include/odp/api/spec/crypto.h
index 0cb8814..f24f527 100644
--- a/include/odp/api/spec/crypto.h
+++ b/include/odp/api/spec/crypto.h
@@ -171,7 +171,7 @@ typedef struct odp_crypto_data_range {
 /**
  * Crypto API session creation parameters
  */
-typedef struct odp_crypto_session_params {
+typedef struct odp_crypto_session_param_t {
    odp_crypto_op_t op;                /**< Encode versus decode */
    odp_bool_t auth_cipher_text;       /**< Authenticate/cipher ordering */
    odp_crypto_op_mode_t pref_mode;    /**< Preferred sync vs async */
@@ -182,7 +182,10 @@ typedef struct odp_crypto_session_params {
    odp_crypto_key_t auth_key;         /**< Authentication key */
    odp_queue_t compl_queue;           /**< Async mode completion event queue */
    odp_pool_t output_pool;            /**< Output buffer pool */
-} odp_crypto_session_params_t;
+} odp_crypto_session_param_t;
+
+/** @deprecated  Use odp_crypto_session_param_t instead */
+typedef odp_crypto_session_param_t odp_crypto_session_params_t;
/**
  * @var odp_crypto_session_params_t::auth_cipher_text
@@ -209,7 +212,7 @@ typedef struct odp_crypto_session_params {
 /**
  * Crypto API per packet operation parameters
  */
-typedef struct odp_crypto_op_params {
+typedef struct odp_crypto_op_param_t {
    odp_crypto_session_t session;   /**< Session handle from creation */
    void *ctx;                      /**< User context */
    odp_packet_t pkt;               /**< Input packet buffer */
@@ -218,7 +221,10 @@ typedef struct odp_crypto_op_params {
    uint32_t hash_result_offset;    /**< Offset from start of packet buffer for hash result */
    odp_crypto_data_range_t cipher_range;   /**< Data range to apply cipher */
    odp_crypto_data_range_t auth_range;     /**< Data range to authenticate */
-} odp_crypto_op_params_t;
+} odp_crypto_op_param_t;
+
+/** @deprecated  Use odp_crypto_op_param_t instead */
+typedef odp_crypto_op_param_t odp_crypto_op_params_t;
/**
  * @var odp_crypto_op_params_t::pkt
@@ -349,14 +355,14 @@ int odp_crypto_capability(odp_crypto_capability_t *capa);
 /**
  * Crypto session creation (synchronous)
  *
- * @param params            Session parameters
+ * @param param             Session parameters
  * @param session           Created session else ODP_CRYPTO_SESSION_INVALID
  * @param status            Failure code if unsuccessful
  *
  * @retval 0 on success
  * @retval <0 on failure
  */
-int odp_crypto_session_create(odp_crypto_session_params_t *params,
+int odp_crypto_session_create(odp_crypto_session_param_t *param,
    		      odp_crypto_session_t *session,
    		      odp_crypto_ses_create_err_t *status);
@@ -410,14 +416,14 @@ void odp_crypto_compl_free(odp_crypto_compl_t completion_event);
  * If "posted" returns TRUE the result will be delivered via the completion
  * queue specified when the session was created.
  *
- * @param params            Operation parameters
+ * @param param             Operation parameters
  * @param posted            Pointer to return posted, TRUE for async operation
  * @param result            Results of operation (when posted returns FALSE)
  *
  * @retval 0 on success
  * @retval <0 on failure
  */
-int odp_crypto_operation(odp_crypto_op_params_t *params,
+int odp_crypto_operation(odp_crypto_op_param_t *param,
    		 odp_bool_t *posted,
    		 odp_crypto_op_result_t *result);
-----------------------------------------------------------------------
Summary of changes:
 example/ipsec/odp_ipsec.c                          |   6 +-
 example/ipsec/odp_ipsec_cache.c                    |   4 +-
 include/odp/api/spec/crypto.h                      | 441 ++++++++++++++-----
 .../linux-generic/include/odp_crypto_internal.h    |  21 +-
 platform/linux-generic/odp_crypto.c                | 489 +++++++++++++--------
 test/common_plat/performance/odp_crypto.c          |   9 +-
 .../validation/api/crypto/odp_crypto_test_inp.c    | 120 +++--
 7 files changed, 744 insertions(+), 346 deletions(-)
hooks/post-receive
-- 


    