[dpdk-dev] [PATCH v5 4/8] examples/cryptodev_fips_validate: add TDES parser and enablement for test types

Akhil Goyal akhil.goyal at nxp.com
Wed Oct 24 14:31:29 CEST 2018


better to be uniform with the name
TDES or 3DES


On 10/17/2018 6:19 PM, Marko Kovacevic wrote:
> Added enablement for TDES parser, to allow the
> application to parser the TDES request files and to validate all
> test types supported.
>
> Signed-off-by: Marko Kovacevic <marko.kovacevic at intel.com>
> Signed-off-by: Fan Zhang <roy.fan.zhang at intel.com>
> Acked-by: Arek Kusztal <arkadiuszx.kusztal at intel.com>
> ---
>   examples/cryptodev_fips_validate/Makefile          |   1 +
>   .../cryptodev_fips_parse_3des.c                    | 259 +++++++++++++++++++++
>   .../cryptodev_fips_parse_aes.c                     |   2 +
>   .../cryptodev_fips_parse_validate.c                |   5 +
>   .../cryptodev_fips_validate.h                      |  21 ++
>   examples/cryptodev_fips_validate/main.c            | 175 ++++++++++++++
>   examples/cryptodev_fips_validate/meson.build       |   1 +
>   7 files changed, 464 insertions(+)
>   create mode 100644 examples/cryptodev_fips_validate/cryptodev_fips_parse_3des.c
>
> diff --git a/examples/cryptodev_fips_validate/Makefile b/examples/cryptodev_fips_validate/Makefile
> index c85c76c..2ddf326 100644
> --- a/examples/cryptodev_fips_validate/Makefile
> +++ b/examples/cryptodev_fips_validate/Makefile
> @@ -7,6 +7,7 @@ APP = fips_validation
>   # all source are stored in SRCS-y
>   SRCS-y := cryptodev_fips_parse_aes.c
>   SRCS-y += cryptodev_fips_parse_hmac.c
> +SRCS-y += cryptodev_fips_parse_3des.c
>   SRCS-y += cryptodev_fips_parse_validate.c
>   SRCS-y += main.c
>   
> diff --git a/examples/cryptodev_fips_validate/cryptodev_fips_parse_3des.c b/examples/cryptodev_fips_validate/cryptodev_fips_parse_3des.c
> new file mode 100644
> index 0000000..82e9132
> --- /dev/null
> +++ b/examples/cryptodev_fips_validate/cryptodev_fips_parse_3des.c
> @@ -0,0 +1,259 @@
> +/* SPDX-License-Identifier: BSD-3-Clause
> + * Copyright(c) 2018 Intel Corporation
> + */
> +
> +#include <string.h>
> +#include <stdio.h>
> +
> +#include <rte_malloc.h>
> +#include <rte_cryptodev.h>
> +
> +#include "cryptodev_fips_validate.h"
> +
> +#define NEW_LINE_STR	"#"
> +#define TEST_TYPE_KEY	" for CBC"
> +#define TEST_CBCI_KEY	" for CBCI"
> +
> +#define ENC_STR		"[ENCRYPT]"
> +#define DEC_STR		"[DECRYPT]"
> +
> +#define COUNT_STR	"COUNT = "
> +#define KEY1_STR	"KEY1 = "
> +#define KEY2_STR	"KEY2 = "
> +#define KEY3_STR	"KEY3 = "
> +
> +#define KEYS_STR	"KEYs = "
> +#define IV_STR		"IV = "
> +#define PT_STR		"PLAINTEXT = "
> +#define CT_STR		"CIPHERTEXT = "
> +#define NK_STR		"NumKeys = "
> +
> +#define SET_STR		" = "
> +
> +#define PLAIN_TEXT	0
> +#define CIPHER_TEXT	1
> +#define KEY_TEXT	2
> +#define IV_TEXT		3
> +
> +#define DEVICE_STR	"# Config Info for : "
> +
> +struct {
> +	uint32_t type;
> +	const char *desc;
> +} test_types[] = {
> +		{TDES_INVERSE_PERMUTATION, "INVERSE PERMUTATION"},
> +		{TDES_PERMUTATION, "PERMUTATION OPERATION"},
> +		{TDES_SUBSTITUTION_TABLE, "SUBSTITUTION TABLE"},
> +		{TDES_VARIABLE_KEY, "VARIABLE KEY"},
> +		{TDES_VARIABLE_TEXT, "VARIABLE PLAINTEXT/CIPHERTEXT"},
> +		{TDES_VARIABLE_TEXT, "KAT"},
> +		{TDES_MCT, "Monte Carlo (Modes) Test"},
> +		{TDES_MMT, "Multi block Message Test"},
> +};
> +
> +static int
> +writeback_tdes_hex_str(const char *key, char *dst, struct fips_val *val);
> +
> +static int
> +parse_3des_uint8_hex_str(const char *key, char *src, struct fips_val *val);
> +
> +static int
> +parse_tdes_interim(const char *key,
> +		__attribute__((__unused__)) char *text,
> +		struct fips_val *val);
> +
> +struct fips_test_callback tdes_tests_vectors[] = {
> +		{KEYS_STR, parse_3des_uint8_hex_str, &vec.cipher_auth.key},
> +		{KEY1_STR, parse_3des_uint8_hex_str, &vec.cipher_auth.key},
> +		{KEY2_STR, parse_3des_uint8_hex_str, &vec.cipher_auth.key},
> +		{KEY3_STR, parse_3des_uint8_hex_str, &vec.cipher_auth.key},
> +		{IV_STR, parse_uint8_hex_str, &vec.iv},
> +		{PT_STR, parse_uint8_hex_str, &vec.pt},
> +		{CT_STR, parse_uint8_hex_str, &vec.ct},
> +		{NULL, NULL, NULL} /**< end pointer */
> +};
> +
> +struct fips_test_callback tdes_tests_interim_vectors[] = {
> +		{ENC_STR, parse_tdes_interim, NULL},
> +		{DEC_STR, parse_tdes_interim, NULL},
> +		{NULL, NULL, NULL} /**< end pointer */
> +};
> +
> +struct fips_test_callback tdes_writeback_callbacks[] = {
> +		/** First element is used to pass COUNT string */
> +		{COUNT_STR, NULL, NULL},
> +		{IV_STR, writeback_hex_str, &vec.iv},
> +		{KEY1_STR, writeback_tdes_hex_str, &vec.cipher_auth.key},
> +		{KEY2_STR, writeback_tdes_hex_str, &vec.cipher_auth.key},
> +		{KEY3_STR, writeback_tdes_hex_str, &vec.cipher_auth.key},
> +		{KEYS_STR, writeback_tdes_hex_str, &vec.cipher_auth.key},
> +		{PT_STR, writeback_hex_str, &vec.pt},
> +		{CT_STR, writeback_hex_str, &vec.ct},
> +		{NULL, NULL, NULL} /**< end pointer */
> +};
> +
> +static int
> +parse_tdes_interim(const char *key,
> +		__attribute__((__unused__)) char *text,
> +		__attribute__((__unused__)) struct fips_val *val)
> +{
> +	if (strstr(key, ENC_STR))
> +		info.op = FIPS_TEST_ENC_AUTH_GEN;
> +	else if (strstr(key, DEC_STR))
> +		info.op = FIPS_TEST_DEC_AUTH_VERIF;
> +	else if (strstr(NK_STR, "NumKeys = 1"))
> +		info.interim_info.tdes_data.nb_keys = 1;
> +	else if (strstr(NK_STR, "NumKeys = 2"))
> +		info.interim_info.tdes_data.nb_keys = 2;
> +	else if (strstr(NK_STR, "NumKeys = 3"))
> +		info.interim_info.tdes_data.nb_keys = 3;
> +	else
> +		return -EINVAL;
> +
> +	return 0;
> +}
> +
> +static int
> +parse_3des_uint8_hex_str(const char *key, char *src, struct fips_val *val)
> +{
> +	uint8_t tmp_key[24] = {0};
> +	uint32_t len, i;
> +
> +	src += strlen(key);
> +
> +	len = strlen(src) / 2;
> +
> +	if (val->val) {
> +		memcpy(tmp_key, val->val, val->len);
> +		rte_free(val->val);
> +	}
> +
> +	val->val = rte_zmalloc(NULL, 24, 0);
> +	if (!val->val)
> +		return -1;
> +
> +	memcpy(val->val, tmp_key, 24);
> +
> +	if (strstr(key, KEYS_STR)) {
> +		for (i = 0; i < len; i++) {
> +			char byte[3] = {src[i * 2], src[i * 2 + 1], '\0'};
> +
> +			if (parser_read_uint8_hex(&val->val[i], byte) < 0)
> +				return -EINVAL;
memory leak for val->val
> +		}
> +
> +		memcpy(val->val + 8, val->val, 8);
> +		memcpy(val->val + 16, val->val, 8);
> +
> +	} else if (strstr(key, KEY1_STR)) {
> +		for (i = 0; i < len; i++) {
> +			char byte[3] = {src[i * 2], src[i * 2 + 1], '\0'};
> +
> +			if (parser_read_uint8_hex(&val->val[i], byte) < 0)
> +				return -EINVAL;
> +		}
> +
> +		if (info.interim_info.tdes_data.nb_keys == 2)
> +			memcpy(val->val + 16, val->val, 8);
> +
> +	} else if (strstr(key, KEY2_STR)) {
> +		for (i = 0; i < len; i++) {
> +			char byte[3] = {src[i * 2], src[i * 2 + 1], '\0'};
> +
> +			if (parser_read_uint8_hex(&val->val[i + 8], byte) < 0)
> +				return -EINVAL;
> +		}
> +
> +	} else if (strstr(key, KEY3_STR)) {
> +		for (i = 0; i < len; i++) {
> +			char byte[3] = {src[i * 2], src[i * 2 + 1], '\0'};
> +
> +			if (parser_read_uint8_hex(&val->val[i + 16], byte) < 0)
> +				return -EINVAL;
> +		}
> +	} else
> +		return -EINVAL;
> +
> +	val->len = 24;
> +
> +	return 0;
> +}
> +
>



More information about the dev mailing list