From: Dmitry Eremin-Solenikov <dmitry.ereminsoleni...@linaro.org>

GMAC auth algorithm requires IV to work. Instead of hacking the
ODP_CIPHER_ALG_NULL iv to include value for ODP_AUTH_ALG_GMAC, provide
separate iv (in auth capability, session params and operation params).

Signed-off-by: Dmitry Eremin-Solenikov <dmitry.ereminsoleni...@linaro.org>
---
/** Email created from pull request 352 (lumag:crypto_gmac_iv)
 ** https://github.com/Linaro/odp/pull/352
 ** Patch: https://github.com/Linaro/odp/pull/352.patch
 ** Base sha: 12fd3a9224a856271934986a1bad981843915d68
 ** Merge commit sha: ceb7bff0f74da9fec7efa8d45d3078c2485ca305
 **/
 include/odp/api/spec/crypto.h | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/include/odp/api/spec/crypto.h b/include/odp/api/spec/crypto.h
index 293c15c6e..45cd9c37e 100644
--- a/include/odp/api/spec/crypto.h
+++ b/include/odp/api/spec/crypto.h
@@ -327,6 +327,9 @@ typedef struct odp_crypto_session_param_t {
         */
        odp_crypto_key_t auth_key;
 
+       /** Authentication Initialization Vector (IV) */
+       odp_crypto_iv_t auth_iv;
+
        /** Authentication digest length in bytes
         *
         *  Use odp_crypto_auth_capability() for supported digest lengths.
@@ -397,6 +400,9 @@ typedef struct odp_crypto_op_param_t {
        /** Override session IV pointer */
        uint8_t *override_iv_ptr;
 
+       /** Override session authentication IV pointer */
+       uint8_t *override_auth_iv_ptr;
+
        /** Offset from start of packet for hash result
         *
         *  Specifies the offset where the hash result is to be stored. In case
@@ -437,6 +443,9 @@ typedef struct odp_crypto_packet_op_param_t {
        /** Override session IV pointer */
        uint8_t *override_iv_ptr;
 
+       /** Override session authentication IV pointer */
+       uint8_t *override_auth_iv_ptr;
+
        /** Offset from start of packet for hash result
         *
         *  Specifies the offset where the hash result is to be stored. In case
@@ -606,6 +615,9 @@ typedef struct odp_crypto_auth_capability_t {
        /** Key length in bytes */
        uint32_t key_len;
 
+       /** IV length in bytes */
+       uint32_t iv_len;
+
        /** Additional Authenticated Data (AAD) lengths */
        struct {
                /** Minimum AAD length in bytes */

Reply via email to