[COMMIT] branch api-next updated. v1.16.0.0-597-gf052591a - git-lng-odp

15 Nov 2017

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "".
The branch, api-next has been updated
       via  f052591a39aa7c08d4868face4e6be17696ee946 (commit)
       via  b8ca2afddff13fb79dabc9b04748dde24afb53e5 (commit)
       via  b571aebe37d22c2ec1642b51a05aedcb73f83247 (commit)
       via  34b945c77b9d88ce3b984d2703e9a69883b565c9 (commit)
       via  c4c795f20e7b726b820481a1130847a30f55aab8 (commit)
       via  871e5ba93165c5f46a339989018549fffc483299 (commit)
       via  12a572044af7311bc900ec8819b6221aca6f90a4 (commit)
       via  a975690536d3e78bd7d6aa8a27a22f58a0c7d4ea (commit)
       via  718b5ce6e5871dafab4e198f0429bd2047a0eee7 (commit)
       via  a3c129506c5a08c50af4722148c698ad6b575011 (commit)
      from  ba93e355ddf151215aa18b59cbfca08fe175fe65 (commit)
Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.
- Log -----------------------------------------------------------------
commit f052591a39aa7c08d4868face4e6be17696ee946
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Mon Nov 13 16:38:15 2017 +0300
linux-gen: drop unnecessary odp_crypto_internal include
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org

diff --git a/platform/linux-generic/include/odp_packet_internal.h b/platform/linux-generic/include/odp_packet_internal.h
index e62854b1..1ebe4690 100644
--- a/platform/linux-generic/include/odp_packet_internal.h
+++ b/platform/linux-generic/include/odp_packet_internal.h
@@ -25,7 +25,6 @@ extern "C" {
 #include <odp/api/packet.h>
 #include <odp/api/packet_io.h>
 #include <odp/api/crypto.h>
-#include <odp_crypto_internal.h>
 #include <odp_ipsec_internal.h>
 #include <odp/api/plat/packet_types.h>
 #include <odp_queue_if.h>
diff --git a/platform/linux-generic/odp_ipsec.c b/platform/linux-generic/odp_ipsec.c
index d54ec328..0ebc6534 100644
--- a/platform/linux-generic/odp_ipsec.c
+++ b/platform/linux-generic/odp_ipsec.c
@@ -264,7 +264,7 @@ static ipsec_sa_t *ipsec_in_single(odp_packet_t pkt,
    unsigned stats_length;
    uint16_t ipsec_offset;   /**< Offset of IPsec header from
    			      buffer start */
-	uint8_t	iv[MAX_IV_LEN];  /**< ESP IV storage */
+	uint8_t	iv[IPSEC_MAX_IV_LEN];  /**< ESP IV storage */
    ipsec_aad_t aad;         /**< AAD, note ESN is not fully supported */
    unsigned hdr_len;        /**< Length of IPsec headers */
    unsigned trl_len;        /**< Length of IPsec trailers */
@@ -628,7 +628,7 @@ static ipsec_sa_t *ipsec_out_single(odp_packet_t pkt,
    int rc;
    uint16_t ipsec_offset;   /**< Offset of IPsec header from
    			      buffer start */
-	uint8_t	iv[MAX_IV_LEN];  /**< ESP IV storage */
+	uint8_t	iv[IPSEC_MAX_IV_LEN];  /**< ESP IV storage */
    ipsec_aad_t aad;         /**< AAD, note ESN is not fully supported */
    unsigned hdr_len;        /**< Length of IPsec headers */
    unsigned trl_len;        /**< Length of IPsec trailers */
commit b8ca2afddff13fb79dabc9b04748dde24afb53e5
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Mon Nov 13 16:36:53 2017 +0300
linux-gen: crypto: drop duplicate authentication field
session->auth.bytes duplicates session->p.auth_digest_len, so let's drop
    first field.
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/platform/linux-generic/include/odp_crypto_internal.h b/platform/linux-generic/include/odp_crypto_internal.h
index 21174daa..32178d9d 100644
--- a/platform/linux-generic/include/odp_crypto_internal.h
+++ b/platform/linux-generic/include/odp_crypto_internal.h
@@ -50,7 +50,6 @@ struct odp_crypto_generic_session {
    struct {
    	uint8_t  key[EVP_MAX_KEY_LENGTH];
    	uint32_t key_length;
-		uint32_t bytes;
    	union {
    		const EVP_MD *evp_md;
    		const EVP_CIPHER *evp_cipher;
diff --git a/platform/linux-generic/odp_crypto.c b/platform/linux-generic/odp_crypto.c
index 1cc2d701..6d0ad709 100644
--- a/platform/linux-generic/odp_crypto.c
+++ b/platform/linux-generic/odp_crypto.c
@@ -207,7 +207,7 @@ odp_crypto_alg_err_t auth_gen(odp_packet_t pkt,
    /* Copy to the output location */
    odp_packet_copy_from_mem(pkt,
    			 param->hash_result_offset,
-				 session->auth.bytes,
+				 session->p.auth_digest_len,
    			 hash);
return ODP_CRYPTO_ALG_ERR_NONE;
@@ -218,7 +218,7 @@ odp_crypto_alg_err_t auth_check(odp_packet_t pkt,
    			const odp_crypto_packet_op_param_t *param,
    			odp_crypto_generic_session_t *session)
 {
-	uint32_t bytes = session->auth.bytes;
+	uint32_t bytes = session->p.auth_digest_len;
    uint8_t  hash_in[EVP_MAX_MD_SIZE];
    uint8_t  hash_out[EVP_MAX_MD_SIZE];
@@ -703,8 +703,7 @@ static int process_auth_param(odp_crypto_generic_session_t *session,
    session->auth.evp_md = evp_md;
/* Number of valid bytes */
-	session->auth.bytes = session->p.auth_digest_len;
-	if (session->auth.bytes < (unsigned)EVP_MD_size(evp_md) / 2)
+	if (session->p.auth_digest_len < (unsigned)EVP_MD_size(evp_md) / 2)
    	return -1;
/* Convert keys */
commit b571aebe37d22c2ec1642b51a05aedcb73f83247
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Mon Nov 13 16:33:32 2017 +0300
validation: api: add AES-GMAC-AH testcases
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/test/validation/api/ipsec/ipsec.c b/test/validation/api/ipsec/ipsec.c
index 5a267200..7b39c2c5 100644
--- a/test/validation/api/ipsec/ipsec.c
+++ b/test/validation/api/ipsec/ipsec.c
@@ -301,6 +301,12 @@ int ipsec_check_esp_aes_gcm_256(void)
    			ODP_AUTH_ALG_AES_GCM, 0);
 }
+int ipsec_check_ah_aes_gmac_128(void)
+{
+	return  ipsec_check_esp(ODP_CIPHER_ALG_NULL, 0,
+				ODP_AUTH_ALG_AES_GMAC, 128);
+}
+
 int ipsec_check_esp_null_aes_gmac_128(void)
 {
    return  ipsec_check_esp(ODP_CIPHER_ALG_NULL, 0,
diff --git a/test/validation/api/ipsec/ipsec.h b/test/validation/api/ipsec/ipsec.h
index 16608fe0..9a24dd38 100644
--- a/test/validation/api/ipsec/ipsec.h
+++ b/test/validation/api/ipsec/ipsec.h
@@ -87,6 +87,7 @@ int ipsec_check_esp_aes_cbc_128_sha256(void);
 int ipsec_check_esp_aes_ctr_128_null(void);
 int ipsec_check_esp_aes_gcm_128(void);
 int ipsec_check_esp_aes_gcm_256(void);
+int ipsec_check_ah_aes_gmac_128(void);
 int ipsec_check_esp_null_aes_gmac_128(void);
#endif
diff --git a/test/validation/api/ipsec/ipsec_test_in.c b/test/validation/api/ipsec/ipsec_test_in.c
index 0f7148d7..294e4a5d 100644
--- a/test/validation/api/ipsec/ipsec_test_in.c
+++ b/test/validation/api/ipsec/ipsec_test_in.c
@@ -1009,6 +1009,36 @@ static void test_in_mcgrew_gcm_15_esp(void)
    ipsec_sa_destroy(sa);
 }
+static void test_in_ah_aes_gmac_128(void)
+{
+	odp_ipsec_sa_param_t param;
+	odp_ipsec_sa_t sa;
+
+	ipsec_sa_param_fill(&param,
+			    true, true, 123, NULL,
+			    ODP_CIPHER_ALG_NULL, NULL,
+			    ODP_AUTH_ALG_AES_GMAC, &key_a5_128,
+			    &key_mcgrew_gcm_salt_2);
+
+	sa = odp_ipsec_sa_create(&param);
+
+	CU_ASSERT_NOT_EQUAL_FATAL(ODP_IPSEC_SA_INVALID, sa);
+
+	ipsec_test_part test = {
+		.pkt_in = &pkt_icmp_0_ah_aes_gmac_128_1,
+		.out_pkt = 1,
+		.out = {
+			{ .status.warn.all = 0,
+			  .status.error.all = 0,
+			  .pkt_out = &pkt_icmp_0 },
+		},
+	};
+
+	ipsec_check_in_one(&test, sa);
+
+	ipsec_sa_destroy(sa);
+}
+
 static void test_in_esp_null_aes_gmac_128(void)
 {
    odp_ipsec_sa_param_t param;
@@ -1110,6 +1140,8 @@ odp_testinfo_t ipsec_in_suite[] = {
    			  ipsec_check_ah_sha256),
    ODP_TEST_INFO_CONDITIONAL(test_in_esp_null_sha256_bad1,
    			  ipsec_check_esp_null_sha256),
+	ODP_TEST_INFO_CONDITIONAL(test_in_ah_aes_gmac_128,
+				  ipsec_check_ah_aes_gmac_128),
    ODP_TEST_INFO_CONDITIONAL(test_in_esp_null_aes_gmac_128,
    			  ipsec_check_esp_null_aes_gmac_128),
    ODP_TEST_INFO_NULL,
diff --git a/test/validation/api/ipsec/ipsec_test_out.c b/test/validation/api/ipsec/ipsec_test_out.c
index a498b663..7d4ea4a7 100644
--- a/test/validation/api/ipsec/ipsec_test_out.c
+++ b/test/validation/api/ipsec/ipsec_test_out.c
@@ -361,6 +361,36 @@ static void test_out_esp_aes_gcm128(void)
    ipsec_sa_destroy(sa);
 }
+static void test_out_ah_aes_gmac_128(void)
+{
+	odp_ipsec_sa_param_t param;
+	odp_ipsec_sa_t sa;
+
+	ipsec_sa_param_fill(&param,
+			    false, true, 123, NULL,
+			    ODP_CIPHER_ALG_NULL, NULL,
+			    ODP_AUTH_ALG_AES_GMAC, &key_a5_128,
+			    &key_mcgrew_gcm_salt_2);
+
+	sa = odp_ipsec_sa_create(&param);
+
+	CU_ASSERT_NOT_EQUAL_FATAL(ODP_IPSEC_SA_INVALID, sa);
+
+	ipsec_test_part test = {
+		.pkt_in = &pkt_icmp_0,
+		.out_pkt = 1,
+		.out = {
+			{ .status.warn.all = 0,
+			  .status.error.all = 0,
+			  .pkt_out = &pkt_icmp_0_ah_aes_gmac_128_1 },
+		},
+	};
+
+	ipsec_check_out_one(&test, sa);
+
+	ipsec_sa_destroy(sa);
+}
+
 static void test_out_esp_null_aes_gmac_128(void)
 {
    odp_ipsec_sa_param_t param;
@@ -418,6 +448,8 @@ odp_testinfo_t ipsec_out_suite[] = {
    			  ipsec_check_esp_aes_ctr_128_null),
    ODP_TEST_INFO_CONDITIONAL(test_out_esp_aes_gcm128,
    			  ipsec_check_esp_aes_gcm_128),
+	ODP_TEST_INFO_CONDITIONAL(test_out_ah_aes_gmac_128,
+				  ipsec_check_ah_aes_gmac_128),
    ODP_TEST_INFO_CONDITIONAL(test_out_esp_null_aes_gmac_128,
    			  ipsec_check_esp_null_aes_gmac_128),
    ODP_TEST_INFO_NULL,
diff --git a/test/validation/api/ipsec/test_vectors.h b/test/validation/api/ipsec/test_vectors.h
index 09823e63..7fb7d5a8 100644
--- a/test/validation/api/ipsec/test_vectors.h
+++ b/test/validation/api/ipsec/test_vectors.h
@@ -625,6 +625,46 @@ static const ODP_UNUSED ipsec_test_packet pkt_icmp_0_esp_aes_ctr_null_1 = {
    },
 };
+static const ODP_UNUSED ipsec_test_packet pkt_icmp_0_ah_aes_gmac_128_1 = {
+	.len = 178,
+	.l2_offset = 0,
+	.l3_offset = 14,
+	.l4_offset = 34,
+	.data = {
+		/* ETH */
+		0xf1, 0xf1, 0xf1, 0xf1, 0xf1, 0xf1,
+		0xf2, 0xf2, 0xf2, 0xf2, 0xf2, 0xf2, 0x08, 0x00,
+
+		/* IP */
+		0x45, 0x00, 0x00, 0xa4, 0x00, 0x00, 0x00, 0x00,
+		0x40, 0x33, 0xab, 0xd1, 0xc0, 0xa8, 0x6f, 0x02,
+		0xc0, 0xa8, 0xde, 0x02,
+
+		/* AH */
+		0x01, 0x07, 0x00, 0x00, 0x00, 0x00, 0x00, 0x7b,
+		0x00, 0x00, 0x00, 0x01,
+		0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+		0xd6, 0x0e, 0xcc, 0x22, 0x31, 0x79, 0x59, 0x72,
+		0x68, 0xc9, 0x58, 0xfb, 0x8b, 0xb0, 0xbb, 0xd5,
+
+		/* ICMP */
+		0x08, 0x00, 0xfb, 0x37, 0x12, 0x34, 0x00, 0x00,
+		0xba, 0xbe, 0x01, 0x23, 0x45, 0x67, 0xca, 0xfe,
+		0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
+		0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
+		0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17,
+		0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f,
+		0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27,
+		0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f,
+		0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37,
+		0x38, 0x39, 0x3a, 0x3b, 0x3c, 0x3d, 0x3e, 0x3f,
+		0x40, 0x41, 0x42, 0x43, 0x44, 0x45, 0x46, 0x47,
+		0x48, 0x49, 0x4a, 0x4b, 0x4c, 0x4d, 0x4e, 0x4f,
+		0x50, 0x51, 0x52, 0x53, 0x54, 0x55, 0x56, 0x57,
+		0x58, 0x59, 0x5a, 0x5b,
+	},
+};
+
 static const ODP_UNUSED ipsec_test_packet pkt_icmp_0_esp_null_aes_gmac_128_1 = {
    .len = 178,
    .l2_offset = 0,
commit 34b945c77b9d88ce3b984d2703e9a69883b565c9
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Mon Nov 13 16:30:44 2017 +0300
linux-gen: ipsec: implement AES-GMAC-AH
Implement AES-GMAC authentication support for AH.
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/platform/linux-generic/odp_ipsec.c b/platform/linux-generic/odp_ipsec.c
index 9533ca42..d54ec328 100644
--- a/platform/linux-generic/odp_ipsec.c
+++ b/platform/linux-generic/odp_ipsec.c
@@ -400,6 +400,16 @@ static ipsec_sa_t *ipsec_in_single(odp_packet_t pkt,
    		}
    	}
+		memcpy(iv, ipsec_sa->salt, ipsec_sa->salt_length);
+		if (odp_packet_copy_to_mem(pkt,
+					   ipsec_offset + _ODP_AHHDR_LEN,
+					   ipsec_sa->esp_iv_len,
+					   iv + ipsec_sa->salt_length) < 0) {
+			status->error.alg = 1;
+			goto err;
+		}
+		param.override_iv_ptr = iv;
+
    	hdr_len = (ah.ah_len + 2) * 4;
    	trl_len = 0;
@@ -425,7 +435,8 @@ static ipsec_sa_t *ipsec_in_single(odp_packet_t pkt,
param.auth_range.offset = ip_offset;
    	param.auth_range.length = odp_be_to_cpu_16(ip->tot_len);
-		param.hash_result_offset = ipsec_offset + _ODP_AHHDR_LEN;
+		param.hash_result_offset = ipsec_offset + _ODP_AHHDR_LEN +
+					ipsec_sa->esp_iv_len;
stats_length = param.auth_range.length;
    } else {
@@ -826,7 +837,8 @@ static ipsec_sa_t *ipsec_out_single(odp_packet_t pkt,
    } else if (ipsec_sa->proto == ODP_IPSEC_AH) {
    	_odp_ahhdr_t ah;
-		hdr_len = _ODP_AHHDR_LEN + ipsec_sa->icv_len;
+		hdr_len = _ODP_AHHDR_LEN + ipsec_sa->esp_iv_len +
+			ipsec_sa->icv_len;
    	trl_len = 0;
/* Save IPv4 stuff */
@@ -853,7 +865,7 @@ static ipsec_sa_t *ipsec_out_single(odp_packet_t pkt,
memset(&ah, 0, sizeof(ah));
    	ah.spi = odp_cpu_to_be_32(ipsec_sa->spi);
-		ah.ah_len = 1 + (ipsec_sa->icv_len / 4);
+		ah.ah_len = 1 + (ipsec_sa->esp_iv_len + ipsec_sa->icv_len) / 4;
    	ah.seq_no = odp_cpu_to_be_32(ipsec_seq_no(ipsec_sa));
    	ah.next_header = ip->proto;
    	ip->proto = _ODP_IPPROTO_AH;
@@ -864,11 +876,34 @@ static ipsec_sa_t *ipsec_out_single(odp_packet_t pkt,
    	param.aad.ptr = (uint8_t *)&aad;
    	param.aad.length = sizeof(aad);
+		/* For GMAC */
+		if (ipsec_sa->use_counter_iv) {
+			uint64_t ctr;
+
+			ODP_ASSERT(sizeof(ctr) == ipsec_sa->esp_iv_len);
+
+			ctr = odp_atomic_fetch_add_u64(&ipsec_sa->out.counter,
+						       1);
+			/* Check for overrun */
+			if (ctr == 0)
+				goto err;
+
+			memcpy(iv, ipsec_sa->salt, ipsec_sa->salt_length);
+			memcpy(iv + ipsec_sa->salt_length, &ctr,
+			       ipsec_sa->esp_iv_len);
+			param.override_iv_ptr = iv;
+		}
+
    	odp_packet_copy_from_mem(pkt,
    				 ipsec_offset, _ODP_AHHDR_LEN,
    				 &ah);
+		odp_packet_copy_from_mem(pkt,
+					 ipsec_offset + _ODP_AHHDR_LEN,
+					 ipsec_sa->esp_iv_len,
+					 iv + ipsec_sa->salt_length);
    	_odp_packet_set_data(pkt,
-				     ipsec_offset + _ODP_AHHDR_LEN,
+				     ipsec_offset + _ODP_AHHDR_LEN +
+				       ipsec_sa->esp_iv_len,
    			     0, ipsec_sa->icv_len);
ip->chksum = 0;
@@ -878,7 +913,8 @@ static ipsec_sa_t *ipsec_out_single(odp_packet_t pkt,
param.auth_range.offset = ip_offset;
    	param.auth_range.length = odp_be_to_cpu_16(ip->tot_len);
-		param.hash_result_offset = ipsec_offset + _ODP_AHHDR_LEN;
+		param.hash_result_offset = ipsec_offset + _ODP_AHHDR_LEN +
+					ipsec_sa->esp_iv_len;
stats_length = param.auth_range.length;
    } else {
commit c4c795f20e7b726b820481a1130847a30f55aab8
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Wed Nov 8 20:09:10 2017 +0300
validation: ipsec: support AES-GMAC-ESP validation
Add AES-GMAC-ESP testcase based on draft-mcgrew-gcm-test-01.
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/test/validation/api/ipsec/ipsec.c b/test/validation/api/ipsec/ipsec.c
index e6a22a1a..5a267200 100644
--- a/test/validation/api/ipsec/ipsec.c
+++ b/test/validation/api/ipsec/ipsec.c
@@ -208,6 +208,10 @@ int ipsec_check(odp_bool_t ah,
    	if (!capa.auths.bit.aes_gcm)
    		return ODP_TEST_INACTIVE;
    	break;
+	case ODP_AUTH_ALG_AES_GMAC:
+		if (!capa.auths.bit.aes_gmac)
+			return ODP_TEST_INACTIVE;
+		break;
    default:
    	fprintf(stderr, "Unsupported authentication algorithm\n");
    	return ODP_TEST_INACTIVE;
@@ -297,6 +301,12 @@ int ipsec_check_esp_aes_gcm_256(void)
    			ODP_AUTH_ALG_AES_GCM, 0);
 }
+int ipsec_check_esp_null_aes_gmac_128(void)
+{
+	return  ipsec_check_esp(ODP_CIPHER_ALG_NULL, 0,
+				ODP_AUTH_ALG_AES_GMAC, 128);
+}
+
 void ipsec_sa_param_fill(odp_ipsec_sa_param_t *param,
    		 odp_bool_t in,
    		 odp_bool_t ah,
diff --git a/test/validation/api/ipsec/ipsec.h b/test/validation/api/ipsec/ipsec.h
index 3d4e5bcd..16608fe0 100644
--- a/test/validation/api/ipsec/ipsec.h
+++ b/test/validation/api/ipsec/ipsec.h
@@ -87,5 +87,6 @@ int ipsec_check_esp_aes_cbc_128_sha256(void);
 int ipsec_check_esp_aes_ctr_128_null(void);
 int ipsec_check_esp_aes_gcm_128(void);
 int ipsec_check_esp_aes_gcm_256(void);
+int ipsec_check_esp_null_aes_gmac_128(void);
#endif
diff --git a/test/validation/api/ipsec/ipsec_test_in.c b/test/validation/api/ipsec/ipsec_test_in.c
index 8c883262..0f7148d7 100644
--- a/test/validation/api/ipsec/ipsec_test_in.c
+++ b/test/validation/api/ipsec/ipsec_test_in.c
@@ -978,6 +978,67 @@ static void test_in_mcgrew_gcm_12_esp(void)
    ipsec_sa_destroy(sa);
 }
+static void test_in_mcgrew_gcm_15_esp(void)
+{
+	odp_ipsec_tunnel_param_t tunnel = {};
+	odp_ipsec_sa_param_t param;
+	odp_ipsec_sa_t sa;
+
+	ipsec_sa_param_fill(&param,
+			    true, false, 0x00004321, &tunnel,
+			    ODP_CIPHER_ALG_NULL, NULL,
+			    ODP_AUTH_ALG_AES_GMAC, &key_mcgrew_gcm_15,
+			    &key_mcgrew_gcm_salt_15);
+
+	sa = odp_ipsec_sa_create(&param);
+
+	CU_ASSERT_NOT_EQUAL_FATAL(ODP_IPSEC_SA_INVALID, sa);
+
+	ipsec_test_part test = {
+		.pkt_in = &pkt_mcgrew_gcm_test_15_esp,
+		.out_pkt = 1,
+		.out = {
+			{ .status.warn.all = 0,
+			  .status.error.all = 0,
+			  .pkt_out = &pkt_mcgrew_gcm_test_15},
+		},
+	};
+
+	ipsec_check_in_one(&test, sa);
+
+	ipsec_sa_destroy(sa);
+}
+
+static void test_in_esp_null_aes_gmac_128(void)
+{
+	odp_ipsec_sa_param_t param;
+	odp_ipsec_sa_t sa;
+
+	ipsec_sa_param_fill(&param,
+			    true, false, 123, NULL,
+			    ODP_CIPHER_ALG_NULL, NULL,
+			    ODP_AUTH_ALG_AES_GMAC, &key_a5_128,
+			    &key_mcgrew_gcm_salt_2);
+
+	sa = odp_ipsec_sa_create(&param);
+
+	CU_ASSERT_NOT_EQUAL_FATAL(ODP_IPSEC_SA_INVALID, sa);
+
+	ipsec_test_part test = {
+		.pkt_in = &pkt_icmp_0_esp_null_aes_gmac_128_1,
+		.out_pkt = 1,
+		.out = {
+			{ .status.warn.all = 0,
+			  .status.error.all = 0,
+			  .pkt_out = &pkt_icmp_0 },
+		},
+	};
+
+	ipsec_check_in_one(&test, sa);
+
+	ipsec_sa_destroy(sa);
+}
+
 static void ipsec_test_capability(void)
 {
    odp_ipsec_capability_t capa;
@@ -1005,6 +1066,8 @@ odp_testinfo_t ipsec_in_suite[] = {
    			  ipsec_check_esp_aes_gcm_128),
    ODP_TEST_INFO_CONDITIONAL(test_in_mcgrew_gcm_12_esp,
    			  ipsec_check_esp_aes_gcm_128),
+	ODP_TEST_INFO_CONDITIONAL(test_in_mcgrew_gcm_15_esp,
+				  ipsec_check_esp_null_aes_gmac_128),
    ODP_TEST_INFO_CONDITIONAL(test_in_ah_sha256,
    			  ipsec_check_ah_sha256),
    ODP_TEST_INFO_CONDITIONAL(test_in_ah_sha256_tun,
@@ -1047,5 +1110,7 @@ odp_testinfo_t ipsec_in_suite[] = {
    			  ipsec_check_ah_sha256),
    ODP_TEST_INFO_CONDITIONAL(test_in_esp_null_sha256_bad1,
    			  ipsec_check_esp_null_sha256),
+	ODP_TEST_INFO_CONDITIONAL(test_in_esp_null_aes_gmac_128,
+				  ipsec_check_esp_null_aes_gmac_128),
    ODP_TEST_INFO_NULL,
 };
diff --git a/test/validation/api/ipsec/ipsec_test_out.c b/test/validation/api/ipsec/ipsec_test_out.c
index b543271b..a498b663 100644
--- a/test/validation/api/ipsec/ipsec_test_out.c
+++ b/test/validation/api/ipsec/ipsec_test_out.c
@@ -361,6 +361,36 @@ static void test_out_esp_aes_gcm128(void)
    ipsec_sa_destroy(sa);
 }
+static void test_out_esp_null_aes_gmac_128(void)
+{
+	odp_ipsec_sa_param_t param;
+	odp_ipsec_sa_t sa;
+
+	ipsec_sa_param_fill(&param,
+			    false, false, 123, NULL,
+			    ODP_CIPHER_ALG_NULL, NULL,
+			    ODP_AUTH_ALG_AES_GMAC, &key_a5_128,
+			    &key_mcgrew_gcm_salt_2);
+
+	sa = odp_ipsec_sa_create(&param);
+
+	CU_ASSERT_NOT_EQUAL_FATAL(ODP_IPSEC_SA_INVALID, sa);
+
+	ipsec_test_part test = {
+		.pkt_in = &pkt_icmp_0,
+		.out_pkt = 1,
+		.out = {
+			{ .status.warn.all = 0,
+			  .status.error.all = 0,
+			  .pkt_out = &pkt_icmp_0_esp_null_aes_gmac_128_1 },
+		},
+	};
+
+	ipsec_check_out_one(&test, sa);
+
+	ipsec_sa_destroy(sa);
+}
+
 static void ipsec_test_capability(void)
 {
    odp_ipsec_capability_t capa;
@@ -388,5 +418,7 @@ odp_testinfo_t ipsec_out_suite[] = {
    			  ipsec_check_esp_aes_ctr_128_null),
    ODP_TEST_INFO_CONDITIONAL(test_out_esp_aes_gcm128,
    			  ipsec_check_esp_aes_gcm_128),
+	ODP_TEST_INFO_CONDITIONAL(test_out_esp_null_aes_gmac_128,
+				  ipsec_check_esp_null_aes_gmac_128),
    ODP_TEST_INFO_NULL,
 };
diff --git a/test/validation/api/ipsec/test_vectors.h b/test/validation/api/ipsec/test_vectors.h
index fbf7d366..09823e63 100644
--- a/test/validation/api/ipsec/test_vectors.h
+++ b/test/validation/api/ipsec/test_vectors.h
@@ -45,6 +45,9 @@ KEY(key_mcgrew_gcm_salt_4, 0x00, 0x00, 0x00, 0x00);
 KEY(key_mcgrew_gcm_12, 0x7d, 0x77, 0x3d, 0x00, 0xc1, 0x44, 0xc5, 0x25,
    	       0xac, 0x61, 0x9d, 0x18, 0xc8, 0x4a, 0x3f, 0x47);
 KEY(key_mcgrew_gcm_salt_12, 0xd9, 0x66, 0x42, 0x67);
+KEY(key_mcgrew_gcm_15, 0x4c, 0x80, 0xcd, 0xef, 0xbb, 0x5d, 0x10, 0xda,
+		       0x90, 0x6a, 0xc7, 0x3c, 0x36, 0x13, 0xa6, 0x34);
+KEY(key_mcgrew_gcm_salt_15, 0x22, 0x43, 0x3c, 0x64);
static const ODP_UNUSED ipsec_test_packet pkt_icmp_0 = {
    .len = 142,
@@ -622,6 +625,52 @@ static const ODP_UNUSED ipsec_test_packet pkt_icmp_0_esp_aes_ctr_null_1 = {
    },
 };
+static const ODP_UNUSED ipsec_test_packet pkt_icmp_0_esp_null_aes_gmac_128_1 = {
+	.len = 178,
+	.l2_offset = 0,
+	.l3_offset = 14,
+	.l4_offset = 34,
+	.data = {
+		/* ETH */
+		0xf1, 0xf1, 0xf1, 0xf1, 0xf1, 0xf1,
+		0xf2, 0xf2, 0xf2, 0xf2, 0xf2, 0xf2, 0x08, 0x00,
+
+		/* IP */
+		0x45, 0x00, 0x00, 0xa4, 0x00, 0x00, 0x00, 0x00,
+		0x40, 0x32, 0xab, 0xd2, 0xc0, 0xa8, 0x6f, 0x02,
+		0xc0, 0xa8, 0xde, 0x02,
+
+		/* ESP */
+		0x00, 0x00, 0x00, 0x7b, 0x00, 0x00, 0x00, 0x01,
+
+		/* IV */
+		0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+
+		/* ICMP */
+		0x08, 0x00, 0xfb, 0x37, 0x12, 0x34, 0x00, 0x00,
+		0xba, 0xbe, 0x01, 0x23, 0x45, 0x67, 0xca, 0xfe,
+		0x00, 0x01, 0x02, 0x03, 0x04, 0x05, 0x06, 0x07,
+		0x08, 0x09, 0x0a, 0x0b, 0x0c, 0x0d, 0x0e, 0x0f,
+		0x10, 0x11, 0x12, 0x13, 0x14, 0x15, 0x16, 0x17,
+		0x18, 0x19, 0x1a, 0x1b, 0x1c, 0x1d, 0x1e, 0x1f,
+		0x20, 0x21, 0x22, 0x23, 0x24, 0x25, 0x26, 0x27,
+		0x28, 0x29, 0x2a, 0x2b, 0x2c, 0x2d, 0x2e, 0x2f,
+		0x30, 0x31, 0x32, 0x33, 0x34, 0x35, 0x36, 0x37,
+		0x38, 0x39, 0x3a, 0x3b, 0x3c, 0x3d, 0x3e, 0x3f,
+		0x40, 0x41, 0x42, 0x43, 0x44, 0x45, 0x46, 0x47,
+		0x48, 0x49, 0x4a, 0x4b, 0x4c, 0x4d, 0x4e, 0x4f,
+		0x50, 0x51, 0x52, 0x53, 0x54, 0x55, 0x56, 0x57,
+		0x58, 0x59, 0x5a, 0x5b,
+
+		/* ESP TRL */
+		0x01, 0x02, 0x02, 0x01,
+
+		/* ICV */
+		0x16, 0x0e, 0xa6, 0x8f, 0xb3, 0xa6, 0x8c, 0x74,
+		0x19, 0x59, 0x72, 0x80, 0x91, 0x98, 0x77, 0x5e,
+	},
+};
+
 static const ODP_UNUSED ipsec_test_packet pkt_rfc3602_5 = {
    .len = 98,
    .l2_offset = 0,
@@ -1088,4 +1137,61 @@ static const ipsec_test_packet pkt_mcgrew_gcm_test_12_esp = {
    },
 };
+static const ipsec_test_packet pkt_mcgrew_gcm_test_15 = {
+	.len = 62,
+	.l2_offset = 0,
+	.l3_offset = 14,
+	.l4_offset = 34,
+	.data = {
+		/* ETH - not a part of RFC, added for simplicity */
+		0xf1, 0xf1, 0xf1, 0xf1, 0xf1, 0xf1,
+		0xf2, 0xf2, 0xf2, 0xf2, 0xf2, 0xf2, 0x08, 0x00,
+
+		/* IP */
+		0x45, 0x00, 0x00, 0x30, 0xda, 0x3a, 0x00, 0x00,
+		0x80, 0x01, 0xdf, 0x3b, 0xc0, 0xa8, 0x00, 0x05,
+		0xc0, 0xa8, 0x00, 0x01,
+
+		/* ICMP */
+		0x08, 0x00, 0xc6, 0xcd, 0x02, 0x00, 0x07, 0x00,
+		0x61, 0x62, 0x63, 0x64, 0x65, 0x66, 0x67, 0x68,
+		0x69, 0x6a, 0x6b, 0x6c, 0x6d, 0x6e, 0x6f, 0x70,
+		0x71, 0x72, 0x73, 0x74,
+	},
+};
+
+static const ipsec_test_packet pkt_mcgrew_gcm_test_15_esp = {
+	.len = 118,
+	.l2_offset = 0,
+	.l3_offset = 14,
+	.l4_offset = 34,
+	.data = {
+		/* ETH - not a part of RFC, added for simplicity */
+		0xf1, 0xf1, 0xf1, 0xf1, 0xf1, 0xf1,
+		0xf2, 0xf2, 0xf2, 0xf2, 0xf2, 0xf2, 0x08, 0x00,
+
+		/* IP - not a part of RFC, added for simplicity */
+		0x45, 0x00, 0x00, 0x68, 0x69, 0x8f, 0x00, 0x00,
+		0x80, 0x32, 0x4d, 0xb2, 0xc0, 0xa8, 0x01, 0x02,
+		0xc0, 0xa8, 0x01, 0x01,
+
+		/* ESP */
+		0x00, 0x00, 0x43, 0x21, 0x00, 0x00, 0x00, 0x07,
+
+		/* IV */
+		0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+
+		/* IP */
+		0x45, 0x00, 0x00, 0x30, 0xda, 0x3a, 0x00, 0x00,
+		0x80, 0x01, 0xdf, 0x3b, 0xc0, 0xa8, 0x00, 0x05,
+		0xc0, 0xa8, 0x00, 0x01, 0x08, 0x00, 0xc6, 0xcd,
+		0x02, 0x00, 0x07, 0x00, 0x61, 0x62, 0x63, 0x64,
+		0x65, 0x66, 0x67, 0x68, 0x69, 0x6a, 0x6b, 0x6c,
+		0x6d, 0x6e, 0x6f, 0x70, 0x71, 0x72, 0x73, 0x74,
+		0x01, 0x02, 0x02, 0x01, 0xf2, 0xa9, 0xa8, 0x36,
+		0xe1, 0x55, 0x10, 0x6a, 0xa8, 0xdc, 0xd6, 0x18,
+		0xe4, 0x09, 0x9a, 0xaa,
+	},
+};
+
 #endif
commit 871e5ba93165c5f46a339989018549fffc483299
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Wed Nov 8 20:08:12 2017 +0300
validation: ipsec: check authentication key length is supported
Add check through auth capabilities, verifying that key length is
    supported.
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/test/validation/api/ipsec/ipsec.c b/test/validation/api/ipsec/ipsec.c
index 277d393a..e6a22a1a 100644
--- a/test/validation/api/ipsec/ipsec.c
+++ b/test/validation/api/ipsec/ipsec.c
@@ -122,13 +122,14 @@ static void pktio_stop(odp_pktio_t pktio)
 int ipsec_check(odp_bool_t ah,
    	odp_cipher_alg_t cipher,
    	uint32_t cipher_bits,
-		odp_auth_alg_t auth)
+		odp_auth_alg_t auth,
+		uint32_t auth_bits)
 {
    odp_ipsec_capability_t capa;
    odp_crypto_cipher_capability_t cipher_capa[MAX_ALG_CAPA];
    odp_crypto_auth_capability_t   auth_capa[MAX_ALG_CAPA];
    int i, num;
-	odp_bool_t found = false;
+	odp_bool_t found;
if (odp_ipsec_capability(&capa) < 0)
    	return ODP_TEST_INACTIVE;
@@ -219,6 +220,7 @@ int ipsec_check(odp_bool_t ah,
    }
/* Search for the test case */
+	found = false;
    for (i = 0; i < num; i++) {
    	if (cipher_capa[i].key_len == cipher_bits / 8) {
    		found = 1;
@@ -237,48 +239,62 @@ int ipsec_check(odp_bool_t ah,
    	return ODP_TEST_INACTIVE;
    }
+	/* Search for the test case */
+	found = false;
+	for (i = 0; i < num; i++) {
+		if (auth_capa[i].key_len == auth_bits / 8) {
+			found = 1;
+			break;
+		}
+	}
+
+	if (!found) {
+		fprintf(stderr, "Unsupported auth key length\n");
+		return ODP_TEST_INACTIVE;
+	}
+
    return ODP_TEST_ACTIVE;
 }
int ipsec_check_ah_sha256(void)
 {
-	return ipsec_check_ah(ODP_AUTH_ALG_SHA256_HMAC);
+	return ipsec_check_ah(ODP_AUTH_ALG_SHA256_HMAC, 256);
 }
int ipsec_check_esp_null_sha256(void)
 {
    return  ipsec_check_esp(ODP_CIPHER_ALG_NULL, 0,
-				ODP_AUTH_ALG_SHA256_HMAC);
+				ODP_AUTH_ALG_SHA256_HMAC, 256);
 }
int ipsec_check_esp_aes_cbc_128_null(void)
 {
    return  ipsec_check_esp(ODP_CIPHER_ALG_AES_CBC, 128,
-				ODP_AUTH_ALG_NULL);
+				ODP_AUTH_ALG_NULL, 0);
 }
int ipsec_check_esp_aes_cbc_128_sha256(void)
 {
    return  ipsec_check_esp(ODP_CIPHER_ALG_AES_CBC, 128,
-				ODP_AUTH_ALG_SHA256_HMAC);
+				ODP_AUTH_ALG_SHA256_HMAC, 256);
 }
int ipsec_check_esp_aes_ctr_128_null(void)
 {
    return  ipsec_check_esp(ODP_CIPHER_ALG_AES_CTR, 128,
-				ODP_AUTH_ALG_NULL);
+				ODP_AUTH_ALG_NULL, 0);
 }
int ipsec_check_esp_aes_gcm_128(void)
 {
    return  ipsec_check_esp(ODP_CIPHER_ALG_AES_GCM, 128,
-				ODP_AUTH_ALG_AES_GCM);
+				ODP_AUTH_ALG_AES_GCM, 0);
 }
int ipsec_check_esp_aes_gcm_256(void)
 {
    return  ipsec_check_esp(ODP_CIPHER_ALG_AES_GCM, 256,
-				ODP_AUTH_ALG_AES_GCM);
+				ODP_AUTH_ALG_AES_GCM, 0);
 }
void ipsec_sa_param_fill(odp_ipsec_sa_param_t *param,
diff --git a/test/validation/api/ipsec/ipsec.h b/test/validation/api/ipsec/ipsec.h
index d4506367..3d4e5bcd 100644
--- a/test/validation/api/ipsec/ipsec.h
+++ b/test/validation/api/ipsec/ipsec.h
@@ -74,11 +74,12 @@ void ipsec_check_out_in_one(const ipsec_test_part *part,
 int ipsec_check(odp_bool_t ah,
    	odp_cipher_alg_t cipher,
    	uint32_t cipher_bits,
-		odp_auth_alg_t auth);
-#define ipsec_check_ah(auth) \
-	ipsec_check(true, ODP_CIPHER_ALG_NULL, 0, auth)
-#define ipsec_check_esp(cipher, cipher_bits, auth) \
-	ipsec_check(false, cipher, cipher_bits, auth)
+		odp_auth_alg_t auth,
+		uint32_t auth_bits);
+#define ipsec_check_ah(auth, auth_bits) \
+	ipsec_check(true, ODP_CIPHER_ALG_NULL, 0, auth, auth_bits)
+#define ipsec_check_esp(cipher, cipher_bits, auth, auth_bits) \
+	ipsec_check(false, cipher, cipher_bits, auth, auth_bits)
 int ipsec_check_ah_sha256(void);
 int ipsec_check_esp_null_sha256(void);
 int ipsec_check_esp_aes_cbc_128_null(void);
commit 12a572044af7311bc900ec8819b6221aca6f90a4
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Wed Nov 8 20:09:56 2017 +0300
linux-gen: ipsec: add support for AES-GMAC-ESP
Implement AES-GMAC-ESP support.
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/platform/linux-generic/odp_ipsec_sad.c b/platform/linux-generic/odp_ipsec_sad.c
index 8eaa4f90..f1fde5e6 100644
--- a/platform/linux-generic/odp_ipsec_sad.c
+++ b/platform/linux-generic/odp_ipsec_sad.c
@@ -267,38 +267,6 @@ odp_ipsec_sa_t odp_ipsec_sa_create(const odp_ipsec_sa_param_t *param)
    crypto_param.auth_alg = param->crypto.auth_alg;
    crypto_param.auth_key = param->crypto.auth_key;
-	switch (crypto_param.auth_alg) {
-	case ODP_AUTH_ALG_NULL:
-		ipsec_sa->icv_len = 0;
-		break;
-#if ODP_DEPRECATED_API
-	case ODP_AUTH_ALG_MD5_96:
-#endif
-	case ODP_AUTH_ALG_MD5_HMAC:
-		ipsec_sa->icv_len = 12;
-		break;
-	case ODP_AUTH_ALG_SHA1_HMAC:
-		ipsec_sa->icv_len = 12;
-		break;
-#if ODP_DEPRECATED_API
-	case ODP_AUTH_ALG_SHA256_128:
-#endif
-	case ODP_AUTH_ALG_SHA256_HMAC:
-		ipsec_sa->icv_len = 16;
-		break;
-	case ODP_AUTH_ALG_SHA512_HMAC:
-		ipsec_sa->icv_len = 32;
-		break;
-#if ODP_DEPRECATED_API
-	case ODP_AUTH_ALG_AES128_GCM:
-#endif
-	case ODP_AUTH_ALG_AES_GCM:
-		ipsec_sa->icv_len = 16;
-		break;
-	default:
-		goto error;
-	}
-
    switch (crypto_param.cipher_alg) {
    case ODP_CIPHER_ALG_NULL:
    	ipsec_sa->esp_iv_len = 0;
@@ -339,6 +307,47 @@ odp_ipsec_sa_t odp_ipsec_sa_create(const odp_ipsec_sa_param_t *param)
    	goto error;
    }
+	switch (crypto_param.auth_alg) {
+	case ODP_AUTH_ALG_NULL:
+		ipsec_sa->icv_len = 0;
+		break;
+#if ODP_DEPRECATED_API
+	case ODP_AUTH_ALG_MD5_96:
+#endif
+	case ODP_AUTH_ALG_MD5_HMAC:
+		ipsec_sa->icv_len = 12;
+		break;
+	case ODP_AUTH_ALG_SHA1_HMAC:
+		ipsec_sa->icv_len = 12;
+		break;
+#if ODP_DEPRECATED_API
+	case ODP_AUTH_ALG_SHA256_128:
+#endif
+	case ODP_AUTH_ALG_SHA256_HMAC:
+		ipsec_sa->icv_len = 16;
+		break;
+	case ODP_AUTH_ALG_SHA512_HMAC:
+		ipsec_sa->icv_len = 32;
+		break;
+#if ODP_DEPRECATED_API
+	case ODP_AUTH_ALG_AES128_GCM:
+#endif
+	case ODP_AUTH_ALG_AES_GCM:
+		ipsec_sa->icv_len = 16;
+		break;
+	case ODP_AUTH_ALG_AES_GMAC:
+		if (ODP_CIPHER_ALG_NULL != crypto_param.cipher_alg)
+			return ODP_IPSEC_SA_INVALID;
+		ipsec_sa->use_counter_iv = 1;
+		ipsec_sa->esp_iv_len = 8;
+		ipsec_sa->esp_block_len = 16;
+		ipsec_sa->icv_len = 16;
+		crypto_param.iv.length = 12;
+		break;
+	default:
+		goto error;
+	}
+
    if (1 == ipsec_sa->use_counter_iv &&
        ODP_IPSEC_DIR_OUTBOUND == param->dir)
    	odp_atomic_init_u64(&ipsec_sa->out.counter, 1);
commit a975690536d3e78bd7d6aa8a27a22f58a0c7d4ea
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Wed Nov 8 20:06:50 2017 +0300
linux-gen: crypto: add AES-GMAC implementation
Implement AES-GMAC on top of OpenSSL AES-GCM with all text going into
    AAD part.
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/platform/linux-generic/include/odp_crypto_internal.h b/platform/linux-generic/include/odp_crypto_internal.h
index 12d1720b..21174daa 100644
--- a/platform/linux-generic/include/odp_crypto_internal.h
+++ b/platform/linux-generic/include/odp_crypto_internal.h
@@ -51,7 +51,10 @@ struct odp_crypto_generic_session {
    	uint8_t  key[EVP_MAX_KEY_LENGTH];
    	uint32_t key_length;
    	uint32_t bytes;
-		const EVP_MD *evp_md;
+		union {
+			const EVP_MD *evp_md;
+			const EVP_CIPHER *evp_cipher;
+		};
    	crypto_func_t func;
    } auth;
 };
diff --git a/platform/linux-generic/odp_crypto.c b/platform/linux-generic/odp_crypto.c
index f34863bf..1cc2d701 100644
--- a/platform/linux-generic/odp_crypto.c
+++ b/platform/linux-generic/odp_crypto.c
@@ -37,7 +37,9 @@
  * Keep sorted: first by key length, then by IV length
  */
 static const odp_crypto_cipher_capability_t cipher_capa_null[] = {
-{.key_len = 0, .iv_len = 0} };
+{.key_len = 0, .iv_len = 0},
+/* Special case for GMAC */
+{.key_len = 0, .iv_len = 12} };
static const odp_crypto_cipher_capability_t cipher_capa_trides_cbc[] = {
 {.key_len = 24, .iv_len = 8} };
@@ -84,6 +86,9 @@ static const odp_crypto_auth_capability_t auth_capa_sha512_hmac[] = {
 static const odp_crypto_auth_capability_t auth_capa_aes_gcm[] = {
 {.digest_len = 16, .key_len = 0, .aad_len = {.min = 8, .max = 12, .inc = 4} } };
+static const odp_crypto_auth_capability_t auth_capa_aes_gmac[] = {
+{.digest_len = 16, .key_len = 16, .aad_len = {.min = 0, .max = 0, .inc = 0} } };
+
 typedef struct odp_crypto_global_s odp_crypto_global_t;
struct odp_crypto_global_s {
@@ -235,6 +240,33 @@ odp_crypto_alg_err_t auth_check(odp_packet_t pkt,
    return ODP_CRYPTO_ALG_ERR_NONE;
 }
+static
+int internal_aad(EVP_CIPHER_CTX *ctx,
+		 odp_packet_t pkt,
+		 const odp_crypto_packet_op_param_t *param)
+{
+	uint32_t offset = param->auth_range.offset;
+	uint32_t len   = param->auth_range.length;
+	int dummy_len;
+	int ret;
+
+	ODP_ASSERT(offset + len <= odp_packet_len(pkt));
+
+	while (len > 0) {
+		uint32_t seglen = 0; /* GCC */
+		void *mapaddr = odp_packet_offset(pkt, offset, &seglen, NULL);
+		uint32_t maclen = len > seglen ? seglen : len;
+
+		EVP_EncryptUpdate(ctx, NULL, &dummy_len, mapaddr, maclen);
+		offset  += maclen;
+		len     -= maclen;
+	}
+
+	ret = EVP_EncryptFinal_ex(ctx, NULL, &dummy_len);
+
+	return ret;
+}
+
 static
 int internal_encrypt(EVP_CIPHER_CTX *ctx,
    	     odp_packet_t pkt,
@@ -556,6 +588,108 @@ static int process_aes_gcm_param(odp_crypto_generic_session_t *session,
    return 0;
 }
+static
+odp_crypto_alg_err_t aes_gmac_gen(odp_packet_t pkt,
+				  const odp_crypto_packet_op_param_t *param,
+				  odp_crypto_generic_session_t *session)
+{
+	EVP_CIPHER_CTX *ctx;
+	void *iv_ptr;
+	uint8_t block[EVP_MAX_MD_SIZE];
+	int ret;
+
+	if (param->override_iv_ptr)
+		iv_ptr = param->override_iv_ptr;
+	else if (session->p.iv.data)
+		iv_ptr = session->cipher.iv_data;
+	else
+		return ODP_CRYPTO_ALG_ERR_IV_INVALID;
+
+	/* Encrypt it */
+	ctx = EVP_CIPHER_CTX_new();
+	EVP_EncryptInit_ex(ctx, session->auth.evp_cipher, NULL,
+			   session->auth.key, NULL);
+	EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_SET_IVLEN,
+			    session->p.iv.length, NULL);
+	EVP_EncryptInit_ex(ctx, NULL, NULL, NULL, iv_ptr);
+	EVP_CIPHER_CTX_set_padding(ctx, 0);
+
+	ret = internal_aad(ctx, pkt, param);
+
+	EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_GET_TAG,
+			    session->p.auth_digest_len, block);
+	odp_packet_copy_from_mem(pkt, param->hash_result_offset,
+				 session->p.auth_digest_len, block);
+
+	EVP_CIPHER_CTX_free(ctx);
+
+	return ret <= 0 ? ODP_CRYPTO_ALG_ERR_DATA_SIZE :
+			  ODP_CRYPTO_ALG_ERR_NONE;
+}
+
+static
+odp_crypto_alg_err_t aes_gmac_check(odp_packet_t pkt,
+				    const odp_crypto_packet_op_param_t *param,
+				    odp_crypto_generic_session_t *session)
+{
+	EVP_CIPHER_CTX *ctx;
+	void *iv_ptr;
+	uint8_t block[EVP_MAX_MD_SIZE];
+	int ret;
+
+	if (param->override_iv_ptr)
+		iv_ptr = param->override_iv_ptr;
+	else if (session->p.iv.data)
+		iv_ptr = session->cipher.iv_data;
+	else
+		return ODP_CRYPTO_ALG_ERR_IV_INVALID;
+
+	/* Decrypt it */
+	ctx = EVP_CIPHER_CTX_new();
+	EVP_DecryptInit_ex(ctx, session->auth.evp_cipher, NULL,
+			   session->auth.key, NULL);
+	EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_SET_IVLEN,
+			    session->p.iv.length, NULL);
+	EVP_DecryptInit_ex(ctx, NULL, NULL, NULL, iv_ptr);
+	EVP_CIPHER_CTX_set_padding(ctx, 0);
+
+	odp_packet_copy_to_mem(pkt, param->hash_result_offset,
+			       session->p.auth_digest_len, block);
+	EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_SET_TAG,
+			    session->p.auth_digest_len, block);
+	_odp_packet_set_data(pkt, param->hash_result_offset,
+			     0, session->p.auth_digest_len);
+
+	ret = internal_aad(ctx, pkt, param);
+
+	EVP_CIPHER_CTX_free(ctx);
+
+	return ret <= 0 ? ODP_CRYPTO_ALG_ERR_ICV_CHECK :
+			  ODP_CRYPTO_ALG_ERR_NONE;
+}
+
+static int process_aes_gmac_param(odp_crypto_generic_session_t *session,
+				  const EVP_CIPHER *cipher)
+{
+	/* Verify Key len is valid */
+	if ((uint32_t)EVP_CIPHER_key_length(cipher) !=
+	    session->p.auth_key.length)
+		return -1;
+
+	memcpy(session->auth.key, session->p.auth_key.data,
+	       session->p.auth_key.length);
+
+	session->auth.evp_cipher = cipher;
+
+	/* Set function */
+	if (ODP_CRYPTO_OP_ENCODE == session->p.op)
+		session->auth.func = aes_gmac_gen;
+	else
+		session->auth.func = aes_gmac_check;
+
+	return 0;
+}
+
 static int process_auth_param(odp_crypto_generic_session_t *session,
    		      uint32_t key_length,
    		      const EVP_MD *evp_md)
@@ -601,6 +735,7 @@ int odp_crypto_capability(odp_crypto_capability_t *capa)
    capa->auths.bit.sha256_hmac  = 1;
    capa->auths.bit.sha512_hmac  = 1;
    capa->auths.bit.aes_gcm      = 1;
+	capa->auths.bit.aes_gmac     = 1;
#if ODP_DEPRECATED_API
    capa->ciphers.bit.aes128_cbc = 1;
@@ -688,6 +823,10 @@ int odp_crypto_auth_capability(odp_auth_alg_t auth,
    	src = auth_capa_aes_gcm;
    	num = sizeof(auth_capa_aes_gcm) / size;
    	break;
+	case ODP_AUTH_ALG_AES_GMAC:
+		src = auth_capa_aes_gmac;
+		num = sizeof(auth_capa_aes_gmac) / size;
+		break;
    default:
    	return -1;
    }
@@ -859,6 +998,16 @@ odp_crypto_session_create(odp_crypto_session_param_t *param,
    		rc = -1;
    	}
    	break;
+	case ODP_AUTH_ALG_AES_GMAC:
+		if (param->auth_key.length == 16)
+			rc = process_aes_gmac_param(session, EVP_aes_128_gcm());
+		else if (param->auth_key.length == 24)
+			rc = process_aes_gmac_param(session, EVP_aes_192_gcm());
+		else if (param->auth_key.length == 32)
+			rc = process_aes_gmac_param(session, EVP_aes_256_gcm());
+		else
+			rc = -1;
+		break;
    default:
    	rc = -1;
    }
commit 718b5ce6e5871dafab4e198f0429bd2047a0eee7
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Wed Nov 8 20:04:17 2017 +0300
validation: crypto: add AES-GMAC testcase
Add AES-GMAC test vector based on draft-mcgrew-gcm-test-01.
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/test/validation/api/crypto/crypto.h b/test/validation/api/crypto/crypto.h
index ba1058f3..078a1909 100644
--- a/test/validation/api/crypto/crypto.h
+++ b/test/validation/api/crypto/crypto.h
@@ -36,6 +36,8 @@ void crypto_test_gen_alg_hmac_sha256(void);
 void crypto_test_check_alg_hmac_sha256(void);
 void crypto_test_gen_alg_hmac_sha512(void);
 void crypto_test_check_alg_hmac_sha512(void);
+void crypto_test_gen_alg_aes_gmac(void);
+void crypto_test_check_alg_aes_gmac(void);
/* test arrays: */
 extern odp_testinfo_t crypto_suite[];
diff --git a/test/validation/api/crypto/odp_crypto_test_inp.c b/test/validation/api/crypto/odp_crypto_test_inp.c
index 1f7523de..fdc0db8e 100644
--- a/test/validation/api/crypto/odp_crypto_test_inp.c
+++ b/test/validation/api/crypto/odp_crypto_test_inp.c
@@ -50,6 +50,8 @@ static const char *auth_alg_name(odp_auth_alg_t auth)
    	return "ODP_AUTH_ALG_SHA512_HMAC";
    case ODP_AUTH_ALG_AES_GCM:
    	return "ODP_AUTH_ALG_AES_GCM";
+	case ODP_AUTH_ALG_AES_GMAC:
+		return "ODP_AUTH_ALG_AES_GMAC";
    default:
    	return "Unknown";
    }
@@ -344,6 +346,9 @@ static void alg_test(odp_crypto_op_t op,
    if (auth_alg == ODP_AUTH_ALG_AES_GCM &&
        !(capa.auths.bit.aes_gcm))
    	rc = -1;
+	if (auth_alg == ODP_AUTH_ALG_AES_GMAC &&
+	    !(capa.auths.bit.aes_gmac))
+		rc = -1;
    if (auth_alg == ODP_AUTH_ALG_MD5_HMAC &&
        !(capa.auths.bit.md5_hmac))
    	rc = -1;
@@ -588,6 +593,10 @@ static int check_alg_support(odp_cipher_alg_t cipher, odp_auth_alg_t auth)
    	if (!capability.auths.bit.aes_gcm)
    		return ODP_TEST_INACTIVE;
    	break;
+	case ODP_AUTH_ALG_AES_GMAC:
+		if (!capability.auths.bit.aes_gmac)
+			return ODP_TEST_INACTIVE;
+		break;
    default:
    	fprintf(stderr, "Unsupported authentication algorithm\n");
    	return ODP_TEST_INACTIVE;
@@ -1114,6 +1123,39 @@ void crypto_test_check_alg_hmac_sha512(void)
    		 false);
 }
+static int check_alg_aes_gmac(void)
+{
+	return check_alg_support(ODP_CIPHER_ALG_NULL, ODP_AUTH_ALG_AES_GMAC);
+}
+
+void crypto_test_gen_alg_aes_gmac(void)
+{
+	unsigned int test_vec_num = (sizeof(aes_gmac_reference) /
+				     sizeof(aes_gmac_reference[0]));
+	unsigned int i;
+
+	for (i = 0; i < test_vec_num; i++)
+		alg_test(ODP_CRYPTO_OP_ENCODE,
+			 ODP_CIPHER_ALG_NULL,
+			 ODP_AUTH_ALG_AES_GMAC,
+			 &aes_gmac_reference[i],
+			 false);
+}
+
+void crypto_test_check_alg_aes_gmac(void)
+{
+	unsigned int test_vec_num = (sizeof(aes_gmac_reference) /
+				     sizeof(aes_gmac_reference[0]));
+	unsigned int i;
+
+	for (i = 0; i < test_vec_num; i++)
+		alg_test(ODP_CRYPTO_OP_DECODE,
+			 ODP_CIPHER_ALG_NULL,
+			 ODP_AUTH_ALG_AES_GMAC,
+			 &aes_gmac_reference[i],
+			 false);
+}
+
 int crypto_suite_sync_init(void)
 {
    suite_context.pool = odp_pool_lookup("packet_pool");
@@ -1219,6 +1261,10 @@ odp_testinfo_t crypto_suite[] = {
    			  check_alg_hmac_sha512),
    ODP_TEST_INFO_CONDITIONAL(crypto_test_check_alg_hmac_sha512,
    			  check_alg_hmac_sha512),
+	ODP_TEST_INFO_CONDITIONAL(crypto_test_gen_alg_aes_gmac,
+				  check_alg_aes_gmac),
+	ODP_TEST_INFO_CONDITIONAL(crypto_test_check_alg_aes_gmac,
+				  check_alg_aes_gmac),
    ODP_TEST_INFO_NULL,
 };
diff --git a/test/validation/api/crypto/test_vectors.h b/test/validation/api/crypto/test_vectors.h
index 63103227..f2ce9eb2 100644
--- a/test/validation/api/crypto/test_vectors.h
+++ b/test/validation/api/crypto/test_vectors.h
@@ -442,6 +442,39 @@ static crypto_test_reference_t aes_gcm_reference[] = {
    }
 };
+static crypto_test_reference_t aes_gmac_reference[] = {
+	{
+		.auth_key_length = AES128_GCM_KEY_LEN,
+		.auth_key = { 0x4c, 0x80, 0xcd, 0xef, 0xbb, 0x5d, 0x10, 0xda,
+			      0x90, 0x6a, 0xc7, 0x3c, 0x36, 0x13, 0xa6, 0x34},
+		.iv_length = AES_GCM_IV_LEN,
+		.iv = { 0x22, 0x43, 0x3c, 0x64, 0x00, 0x00, 0x00, 0x00,
+			0x00, 0x00, 0x00, 0x00 },
+		.length = 68,
+		.plaintext = { 0x00, 0x00, 0x43, 0x21, 0x00, 0x00, 0x00, 0x07,
+			       0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+			       0x45, 0x00, 0x00, 0x30, 0xda, 0x3a, 0x00, 0x00,
+			       0x80, 0x01, 0xdf, 0x3b, 0xc0, 0xa8, 0x00, 0x05,
+			       0xc0, 0xa8, 0x00, 0x01, 0x08, 0x00, 0xc6, 0xcd,
+			       0x02, 0x00, 0x07, 0x00, 0x61, 0x62, 0x63, 0x64,
+			       0x65, 0x66, 0x67, 0x68, 0x69, 0x6a, 0x6b, 0x6c,
+			       0x6d, 0x6e, 0x6f, 0x70, 0x71, 0x72, 0x73, 0x74,
+			       0x01, 0x02, 0x02, 0x01 },
+		.ciphertext = { 0x00, 0x00, 0x43, 0x21, 0x00, 0x00, 0x00, 0x07,
+				0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+				0x45, 0x00, 0x00, 0x30, 0xda, 0x3a, 0x00, 0x00,
+				0x80, 0x01, 0xdf, 0x3b, 0xc0, 0xa8, 0x00, 0x05,
+				0xc0, 0xa8, 0x00, 0x01, 0x08, 0x00, 0xc6, 0xcd,
+				0x02, 0x00, 0x07, 0x00, 0x61, 0x62, 0x63, 0x64,
+				0x65, 0x66, 0x67, 0x68, 0x69, 0x6a, 0x6b, 0x6c,
+				0x6d, 0x6e, 0x6f, 0x70, 0x71, 0x72, 0x73, 0x74,
+				0x01, 0x02, 0x02, 0x01 },
+		.digest_length = AES_GCM_DIGEST_LEN,
+		.digest = { 0xf2, 0xa9, 0xa8, 0x36, 0xe1, 0x55, 0x10, 0x6a,
+			    0xa8, 0xdc, 0xd6, 0x18, 0xe4, 0x09, 0x9a, 0xaa }
+	},
+};
+
 static crypto_test_reference_t hmac_md5_reference[] = {
    {
    	.auth_key_length = HMAC_MD5_KEY_LEN,
commit a3c129506c5a08c50af4722148c698ad6b575011
Author: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
Date:   Wed Nov 8 20:02:59 2017 +0300
api: crypto: add AES-GMAC declarations
Add AES-GMAC declarations to support RFC4543.
Signed-off-by: Dmitry Eremin-Solenikov dmitry.ereminsolenikov@linaro.org
    Reviewed-by: Bill Fischofer bill.fischofer@linaro.org
    Reviewed-by: Petri Savolainen petri.savolainen@linaro.org
    Signed-off-by: Maxim Uvarov maxim.uvarov@linaro.org
diff --git a/include/odp/api/spec/crypto.h b/include/odp/api/spec/crypto.h
index ed1fd678..6a4304d8 100644
--- a/include/odp/api/spec/crypto.h
+++ b/include/odp/api/spec/crypto.h
@@ -134,6 +134,20 @@ typedef enum {
     */
    ODP_AUTH_ALG_AES_GCM,
+	/** AES in Galois/Counter MAC Mode
+	 *
+	 * NIST and RFC specifications of GCM/GMAC refer to all data to be
+	 * authenticated as AAD. In constrast to that, ODP API specifies the
+	 * bulk of authenticated data to be located in packet payload for all
+	 * authentication algorithms, including GMAC. Thus for GMAC application
+	 * should also pass all data to be authenticated as packet data. AAD is
+	 * not used for GMAC. GMAC IV should be passed via session IV or
+	 * per-packet IV override.
+	 *
+	 * @note Must be paired with cipher ODP_CIPHER_ALG_NULL
+	 */
+	ODP_AUTH_ALG_AES_GMAC,
+
    /** @deprecated  Use ODP_AUTH_ALG_MD5_HMAC instead */
    ODP_DEPRECATE(ODP_AUTH_ALG_MD5_96),
@@ -208,6 +222,9 @@ typedef union odp_crypto_auth_algos_t {
    	/** ODP_AUTH_ALG_AES_GCM */
    	uint32_t aes_gcm     : 1;
+		/** ODP_AUTH_ALG_AES_GMAC*/
+		uint32_t aes_gmac    : 1;
+
    	/** @deprecated  Use md5_hmac instead */
    	uint32_t ODP_DEPRECATE(md5_96)     : 1;
-----------------------------------------------------------------------
Summary of changes:
 include/odp/api/spec/crypto.h                      |  17 +++
 .../linux-generic/include/odp_crypto_internal.h    |   6 +-
 .../linux-generic/include/odp_packet_internal.h    |   1 -
 platform/linux-generic/odp_crypto.c                | 158 ++++++++++++++++++++-
 platform/linux-generic/odp_ipsec.c                 |  50 ++++++-
 platform/linux-generic/odp_ipsec_sad.c             |  73 +++++-----
 test/validation/api/crypto/crypto.h                |   2 +
 test/validation/api/crypto/odp_crypto_test_inp.c   |  46 ++++++
 test/validation/api/crypto/test_vectors.h          |  33 +++++
 test/validation/api/ipsec/ipsec.c                  |  50 +++++--
 test/validation/api/ipsec/ipsec.h                  |  13 +-
 test/validation/api/ipsec/ipsec_test_in.c          |  97 +++++++++++++
 test/validation/api/ipsec/ipsec_test_out.c         |  64 +++++++++
 test/validation/api/ipsec/test_vectors.h           | 146 +++++++++++++++++++
 14 files changed, 695 insertions(+), 61 deletions(-)
hooks/post-receive
-- 


    