[API-NEXT,v8,1/10] api: crypto: add AES-GMAC declarations

Message ID	1510689611-17861-2-git-send-email-odpbot@yandex.ru
State	New
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: domain of lng-odp-bounces@lists.linaro.org designates 54.197.127.237 as permitted sender) client-ip=54.197.127.237; From: Github ODP bot <odpbot@yandex.ru> To: lng-odp@lists.linaro.org Date: Tue, 14 Nov 2017 23:00:02 +0300 Message-Id: <1510689611-17861-2-git-send-email-odpbot@yandex.ru> In-Reply-To: <1510689611-17861-1-git-send-email-odpbot@yandex.ru> References: <1510689611-17861-1-git-send-email-odpbot@yandex.ru> Github-pr-num: 288 Subject: [lng-odp] [PATCH API-NEXT v8 1/10] api: crypto: add AES-GMAC declarations Precedence: list Errors-To: lng-odp-bounces@lists.linaro.org Sender: "lng-odp" <lng-odp-bounces@lists.linaro.org>
Series	[API-NEXT,v8,1/10] api: crypto: add AES-GMAC declarations \| expand [API-NEXT,v8,1/10] api: crypto: add AES-GMAC declarations [API-NEXT,v8,2/10] validation: crypto: add AES-GMAC testcase [API-NEXT,v8,3/10] linux-gen: crypto: add AES-GMAC implementation [API-NEXT,v8,4/10] linux-gen: ipsec: add support for AES-GMAC-ESP [API-NEXT,v8,5/10] validation: ipsec: check authentication key length is supported [API-NEXT,v8,6/10] validation: ipsec: support AES-GMAC-ESP validation [API-NEXT,v8,7/10] linux-gen: ipsec: implement AES-GMAC-AH [API-NEXT,v8,8/10] validation: api: add AES-GMAC-AH testcases [API-NEXT,v8,9/10] linux-gen: crypto: drop duplicate authentication field [API-NEXT,v8,10/10] linux-gen: drop unnecessary odp_crypto_internal include

Message ID

1510689611-17861-2-git-send-email-odpbot@yandex.ru

State

New

Headers

Received-SPF: pass (google.com: domain of lng-odp-bounces@lists.linaro.org
	designates 54.197.127.237 as permitted sender)
	client-ip=54.197.127.237; 
From: Github ODP bot <odpbot@yandex.ru>
To: lng-odp@lists.linaro.org
Date: Tue, 14 Nov 2017 23:00:02 +0300
Message-Id: <1510689611-17861-2-git-send-email-odpbot@yandex.ru>
In-Reply-To: <1510689611-17861-1-git-send-email-odpbot@yandex.ru>
References: <1510689611-17861-1-git-send-email-odpbot@yandex.ru>
Github-pr-num: 288
Subject: [lng-odp] [PATCH API-NEXT v8 1/10] api: crypto: add AES-GMAC
	declarations
Precedence: list
Errors-To: lng-odp-bounces@lists.linaro.org
Sender: "lng-odp" <lng-odp-bounces@lists.linaro.org>

Series

[API-NEXT,v8,1/10] api: crypto: add AES-GMAC declarations | expand

Commit Message

Github ODP bot Nov. 14, 2017, 8 p.m. UTC

From: Dmitry Eremin-Solenikov <dmitry.ereminsolenikov@linaro.org>


Add AES-GMAC declarations to support RFC4543.

Signed-off-by: Dmitry Eremin-Solenikov <dmitry.ereminsolenikov@linaro.org>

---
/** Email created from pull request 288 (lumag:gmac)
 ** https://github.com/Linaro/odp/pull/288
 ** Patch: https://github.com/Linaro/odp/pull/288.patch
 ** Base sha: ba93e355ddf151215aa18b59cbfca08fe175fe65
 ** Merge commit sha: 8363c3a4073075d0f3dd68864b9a33819005aab4
 **/
 include/odp/api/spec/crypto.h | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/include/odp/api/spec/crypto.h b/include/odp/api/spec/crypto.h
index ed1fd6784..6a4304d8b 100644
--- a/include/odp/api/spec/crypto.h
+++ b/include/odp/api/spec/crypto.h
@@ -134,6 +134,20 @@  typedef enum {
 	 */
 	ODP_AUTH_ALG_AES_GCM,
 
+	/** AES in Galois/Counter MAC Mode
+	 *
+	 * NIST and RFC specifications of GCM/GMAC refer to all data to be
+	 * authenticated as AAD. In constrast to that, ODP API specifies the
+	 * bulk of authenticated data to be located in packet payload for all
+	 * authentication algorithms, including GMAC. Thus for GMAC application
+	 * should also pass all data to be authenticated as packet data. AAD is
+	 * not used for GMAC. GMAC IV should be passed via session IV or
+	 * per-packet IV override.
+	 *
+	 * @note Must be paired with cipher ODP_CIPHER_ALG_NULL
+	 */
+	ODP_AUTH_ALG_AES_GMAC,
+
 	/** @deprecated  Use ODP_AUTH_ALG_MD5_HMAC instead */
 	ODP_DEPRECATE(ODP_AUTH_ALG_MD5_96),
 
@@ -208,6 +222,9 @@  typedef union odp_crypto_auth_algos_t {
 		/** ODP_AUTH_ALG_AES_GCM */
 		uint32_t aes_gcm     : 1;
 
+		/** ODP_AUTH_ALG_AES_GMAC*/
+		uint32_t aes_gmac    : 1;
+
 		/** @deprecated  Use md5_hmac instead */
 		uint32_t ODP_DEPRECATE(md5_96)     : 1;