[PATCH] cryptodev: add dh verify option
Arek Kusztal
arkadiuszx.kusztal at intel.com
Thu Apr 7 18:38:01 CEST 2022
For some elliptic curves public point in DH exchange
needs to be checked, if lays on the curve.
Modular exponentiation needs certain checks as well, though
mathematically much easier.
This commit adds verify option to asym_op operations.
Signed-off-by: Arek Kusztal <arkadiuszx.kusztal at intel.com>
---
Depends-on: patch-109409 ("cryptodev: add elliptic curve diffie hellman")
lib/cryptodev/rte_crypto_asym.h | 2 ++
lib/cryptodev/rte_cryptodev.c | 1 +
2 files changed, 3 insertions(+)
diff --git a/lib/cryptodev/rte_crypto_asym.h b/lib/cryptodev/rte_crypto_asym.h
index e65222b802..5a581c77b2 100644
--- a/lib/cryptodev/rte_crypto_asym.h
+++ b/lib/cryptodev/rte_crypto_asym.h
@@ -117,6 +117,8 @@ enum rte_crypto_asym_op_type {
/**< DH Public Key generation operation */
RTE_CRYPTO_ASYM_OP_SHARED_SECRET_COMPUTE,
/**< DH Shared Secret compute operation */
+ RTE_CRYPTO_ASYM_OP_KEY_VERIFY,
+ /**< DH Public Key Verification */
RTE_CRYPTO_ASYM_OP_LIST_END
};
diff --git a/lib/cryptodev/rte_cryptodev.c b/lib/cryptodev/rte_cryptodev.c
index 3500a2d470..082780a5f0 100644
--- a/lib/cryptodev/rte_cryptodev.c
+++ b/lib/cryptodev/rte_cryptodev.c
@@ -181,6 +181,7 @@ const char *rte_crypto_asym_op_strings[] = {
[RTE_CRYPTO_ASYM_OP_PRIVATE_KEY_GENERATE] = "priv_key_generate",
[RTE_CRYPTO_ASYM_OP_PUBLIC_KEY_GENERATE] = "pub_key_generate",
[RTE_CRYPTO_ASYM_OP_SHARED_SECRET_COMPUTE] = "sharedsecret_compute",
+ [RTE_CRYPTO_ASYM_OP_KEY_VERIFY] = "dh_pubkey_verify",
};
/**
--
2.13.6
More information about the dev
mailing list