Skip to content

Commit

Permalink
Symmetric performance Optimization & memleak fixes.
Browse files Browse the repository at this point in the history 
- Optimize Chachapoly & AES-GCM performance with single Flatbuffer.
- Add tag or digest buffer to a separate pointer to take
  optimized path in firmware based on payload size.
- Chachapoly & SHA3 memory leak fix.
- Build warnings fix & sm4-cbc testapp fix.

Signed-off-by: Yogaraj Alamenda <[email protected]>
  • Loading branch information
@Yogaraj-Alamenda
Yogaraj-Alamenda committed Dec 14, 2022
1 parent 5b1eb72 commit ea2f554
Show file tree
Hide file tree
Showing 12 changed files with 274 additions and 325 deletions.
417 changes: 181 additions & 236 deletions qat_hw_chachapoly.c
View file

Large diffs are not rendered by default.

15 changes: 3 additions & 12 deletions qat_hw_chachapoly.h
View file
Original file line number Diff line number Diff line change
Expand Up @@ -69,13 +69,13 @@ typedef struct qat_chachapoly_ctx_t {
CpaCySymOpData *opd;
CpaBufferList pSrcBufferList;
CpaBufferList pDstBufferList;
CpaFlatBuffer src_buffer[2];
CpaFlatBuffer dst_buffer[2];
CpaFlatBuffer src_buffer;
CpaFlatBuffer dst_buffer;

unsigned char tag[QAT_POLY1305_BLOCK_SIZE];
unsigned char *tls_aad;
unsigned char cipher_key[QAT_CHACHA_KEY_SIZE];
unsigned char mac_key[QAT_CHACHA_BLK_SIZE];
unsigned char *mac_key;
unsigned char nonce[QAT_CHACHA20_POLY1305_MAX_IVLEN];
unsigned char derived_iv[QAT_CHACHA20_POLY1305_MAX_IVLEN];
unsigned int counter[QAT_CHACHA_CTR_SIZE/4];
Expand Down Expand Up @@ -207,15 +207,6 @@ const EVP_CIPHER *chachapoly_cipher_meth(int nid, int keylen);
x[a] += x[b], x[d] = ROTATE((x[d] ^ x[a]), 8), \
x[c] += x[d], x[b] = ROTATE((x[b] ^ x[c]), 7) )

# define FLATBUFF_ALLOC_AND_CHAIN(b1, b2, len) \
do { \
(b1).pData = qaeCryptoMemAlloc(len, __FILE__, __LINE__); \
(b2).pData = (b1).pData; \
(b1).dataLenInBytes = len; \
(b2).dataLenInBytes = len; \
} while(0)


# ifdef ENABLE_QAT_HW_CHACHAPOLY
# ifdef QAT_OPENSSL_PROVIDER
int qat_chacha20_poly1305_init(QAT_PROV_CIPHER_CTX *ctx,
Expand Down
4 changes: 3 additions & 1 deletion qat_hw_ciphers.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -181,6 +181,7 @@ static inline const EVP_CIPHER *qat_chained_cipher_sw_impl(int nid)
}
}

#ifdef QAT_OPENSSL_PROVIDER
static inline const char *qat_get_cipher_name_from_nid(int nid)
{
switch (nid) {
Expand All @@ -197,6 +198,7 @@ static inline const char *qat_get_cipher_name_from_nid(int nid)
return NULL;
}
}
#endif

static inline const EVP_CIPHER *get_cipher_from_nid(int nid)
{
Expand Down Expand Up @@ -1843,4 +1845,4 @@ CpaStatus qat_sym_perform_op(int inst_num,
}
while (status == CPA_STATUS_RETRY);
return status;
}
}
114 changes: 64 additions & 50 deletions qat_hw_gcm.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -221,7 +221,7 @@ static int qat_session_data_init(EVP_CIPHER_CTX *ctx,
qctx->session_data->hashSetupData.authModeSetupData.aadLenInBytes = 0;

/* Tag follows immediately after the region to hash */
qctx->session_data->digestIsAppended = CPA_TRUE;
qctx->session_data->digestIsAppended = CPA_FALSE;

/* digestVerify is not required to be set. For GCM authenticated
* encryption this value is understood to be CPA_FALSE during encryption and
Expand Down Expand Up @@ -527,7 +527,7 @@ int qat_aes_gcm_ctrl(EVP_CIPHER_CTX *ctx, int type, int arg, void *ptr)
case EVP_CTRL_GCM_SET_IV_FIXED:
DEBUG("EVP_CTRL_GCM_SET_IV_FIXED, ctx = %p, type = %d,"
" arg = %d, ptr = %p\n", (void*)ctx, type, arg, ptr);
if (NULL == qctx->next_iv || NULL == ptr) {
if (NULL == ptr) {
WARN("Memory pointer is not valid\n");
QATerr(QAT_F_QAT_AES_GCM_CTRL, QAT_R_INVALID_PTR);
return 0;
Expand Down Expand Up @@ -570,7 +570,7 @@ int qat_aes_gcm_ctrl(EVP_CIPHER_CTX *ctx, int type, int arg, void *ptr)
/* Called in TLS case before encryption */
DEBUG("EVP_CTRL_GCM_IV_GEN, ctx = %p, type = %d,"
" arg = %d, ptr = %p\n", (void*)ctx, type, arg, ptr);
if (NULL == qctx->iv || NULL == qctx->next_iv || NULL == ptr) {
if (NULL == qctx->iv || NULL == ptr) {
WARN("Memory pointer is not valid\n");
QATerr(QAT_F_QAT_AES_GCM_CTRL, QAT_R_IV_NULL_PTR_INVALID);
return 0;
Expand Down Expand Up @@ -607,7 +607,7 @@ int qat_aes_gcm_ctrl(EVP_CIPHER_CTX *ctx, int type, int arg, void *ptr)
QATerr(QAT_F_QAT_AES_GCM_CTRL, QAT_R_IV_NVALID);
return 0;
}
if (NULL == qctx->iv || NULL == qctx->next_iv || NULL == ptr) {
if (NULL == qctx->iv || NULL == ptr) {
WARN("Memory pointer is not valid\n");
QATerr(QAT_F_QAT_AES_GCM_CTRL, QAT_R_IV_INVALID);
return 0;
Expand Down Expand Up @@ -785,6 +785,10 @@ int qat_aes_gcm_cleanup(EVP_CIPHER_CTX *ctx)
qaeCryptoMemFree(qctx->cipher_key);
qctx->cipher_key = NULL;
}
if (qctx->OpData.pDigestResult) {
qaeCryptoMemFree(qctx->OpData.pDigestResult);
qctx->OpData.pDigestResult = NULL;
}
session_data->cipherSetupData.pCipherKey = NULL;
OPENSSL_clear_free(session_data, sizeof(CpaCySymSessionSetupData));
}
Expand Down Expand Up @@ -850,7 +854,7 @@ static int qat_aes_gcm_session_init(EVP_CIPHER_CTX *ctx)
CpaCySymSessionSetupData *sessionSetupData = NULL;
Cpa32U sessionCtxSize = 0;
CpaCySymSessionCtx pSessionCtx = NULL;
const unsigned int NUM_BUFFERS = 1;
int numBuffers = 1;

DEBUG("- Entering\n");

Expand Down Expand Up @@ -923,7 +927,7 @@ static int qat_aes_gcm_session_init(EVP_CIPHER_CTX *ctx)

/* Setup meta data for buffer lists */
if (cpaCyBufferListGetMetaSize(qat_instance_handles[qctx->inst_num],
NUM_BUFFERS,
numBuffers,
&(qctx->meta_size))
!= CPA_STATUS_SUCCESS) {
WARN("cpaCyBufferListGetBufferSize failed.\n");
Expand All @@ -932,12 +936,12 @@ static int qat_aes_gcm_session_init(EVP_CIPHER_CTX *ctx)
return 0;
}

qctx->srcBufferList.numBuffers = NUM_BUFFERS;
qctx->srcBufferList.pBuffers = qctx->srcFlatBuffer;
qctx->srcBufferList.numBuffers = numBuffers;
qctx->srcBufferList.pBuffers = &qctx->srcFlatBuffer;
qctx->srcBufferList.pUserData = NULL;

qctx->dstBufferList.numBuffers = NUM_BUFFERS;
qctx->dstBufferList.pBuffers = qctx->dstFlatBuffer;
qctx->dstBufferList.numBuffers = numBuffers;
qctx->dstBufferList.pBuffers = &qctx->dstFlatBuffer;
qctx->dstBufferList.pUserData = NULL;


Expand Down Expand Up @@ -984,6 +988,17 @@ static int qat_aes_gcm_session_init(EVP_CIPHER_CTX *ctx)
/* Following parameters are ignored in GCM */
qctx->OpData.messageLenToHashInBytes = 0;
qctx->OpData.hashStartSrcOffsetInBytes = 0;
qctx->OpData.pDigestResult = qaeCryptoMemAlloc(EVP_GCM_TLS_TAG_LEN, __FILE__, __LINE__);
if (qctx->OpData.pDigestResult == NULL) {
WARN("Unable to allocate memory for qctx->OpData.pDigestResult \n");
QATerr(QAT_F_QAT_AES_GCM_SESSION_INIT, QAT_R_KEY_MALLOC_FAILURE);
qaeCryptoMemFreeNonZero(qctx->srcBufferList.pPrivateMetaData);
qaeCryptoMemFreeNonZero(qctx->dstBufferList.pPrivateMetaData);
qctx->srcBufferList.pPrivateMetaData = NULL;
qctx->dstBufferList.pPrivateMetaData = NULL;
qaeCryptoMemFreeNonZero(pSessionCtx);
return 0;
}

qctx->is_session_init = 1;
return 1;
Expand Down Expand Up @@ -1127,26 +1142,27 @@ int qat_aes_gcm_tls_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,

/* Build request/response buffers */
/* Allocate the memory of the FlatBuffer and copy the payload */
qctx->srcFlatBuffer[0].pData = qaeCryptoMemAlloc(buffer_len, __FILE__, __LINE__);
if (NULL == qctx->srcFlatBuffer[0].pData) {
qctx->srcFlatBuffer.pData = qaeCryptoMemAlloc(buffer_len, __FILE__, __LINE__);
if (NULL == qctx->srcFlatBuffer.pData) {
WARN("src/dst buffer allocation.\n");
goto err;
}
qctx->dstFlatBuffer[0].pData = qctx->srcFlatBuffer[0].pData;
qctx->dstFlatBuffer.pData = qctx->srcFlatBuffer.pData;
if (!enc) {
/* Decryption: the tag is appended and must be copied to the buffer */
memcpy(qctx->srcFlatBuffer[0].pData, in, buffer_len);
memcpy(qctx->srcFlatBuffer.pData, in, message_len);
memcpy(qctx->OpData.pDigestResult, in + message_len, EVP_GCM_TLS_TAG_LEN);
qctx->tag_len = EVP_GCM_TLS_TAG_LEN;
} else {
/* Encryption: copy only the payload */
memcpy(qctx->srcFlatBuffer[0].pData, in, message_len);
memcpy(qctx->srcFlatBuffer.pData, in, message_len);
}

/* The operation is done in place in the buffers
* The variables in and out remain separate */
qctx->srcFlatBuffer[0].dataLenInBytes = buffer_len;
qctx->srcFlatBuffer.dataLenInBytes = message_len;
qctx->srcBufferList.pUserData = NULL;
qctx->dstFlatBuffer[0].dataLenInBytes = buffer_len;
qctx->dstFlatBuffer.dataLenInBytes = message_len;
qctx->dstBufferList.pUserData = NULL;

qctx->OpData.messageLenToCipherInBytes = message_len;
Expand Down Expand Up @@ -1180,9 +1196,9 @@ int qat_aes_gcm_tls_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
&(qctx->dstBufferList),
&(qctx->session_data->verifyDigest));
if (sts != CPA_STATUS_SUCCESS) {
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer[0].pData);
qctx->srcFlatBuffer[0].pData = NULL;
qctx->dstFlatBuffer[0].pData = NULL;
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer.pData);
qctx->srcFlatBuffer.pData = NULL;
qctx->dstFlatBuffer.pData = NULL;
qat_cleanup_op_done(&op_done);
WARN("cpaCySymPerformOp failed sts=%d.\n",sts);
QATerr(QAT_F_QAT_AES_GCM_TLS_CIPHER, ERR_R_INTERNAL_ERROR);
Expand Down Expand Up @@ -1253,10 +1269,12 @@ int qat_aes_gcm_tls_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,

qat_cleanup_op_done(&op_done);

memcpy(out, qctx->dstFlatBuffer[0].pData, message_len + EVP_GCM_TLS_TAG_LEN);
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer[0].pData);
qctx->srcFlatBuffer[0].pData = NULL;
qctx->dstFlatBuffer[0].pData = NULL;
memcpy(out, qctx->dstFlatBuffer.pData, message_len);
memcpy(out + message_len, qctx->OpData.pDigestResult, EVP_GCM_TLS_TAG_LEN);
DUMPL("pDigestResult", qctx->OpData.pDigestResult, EVP_GCM_TLS_TAG_LEN);
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer.pData);
qctx->srcFlatBuffer.pData = NULL;
qctx->dstFlatBuffer.pData = NULL;

err:
/* Don't reuse the IV */
Expand Down Expand Up @@ -1445,23 +1463,23 @@ int qat_aes_gcm_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
}
}

buffer_len = len + EVP_GCM_TLS_TAG_LEN;
buffer_len = len;
/* Build request/response buffers */
/* Allocate the memory of the FlatBuffer and copy the payload */
qctx->srcFlatBuffer[0].pData = qaeCryptoMemAlloc(buffer_len, __FILE__, __LINE__);
if (NULL == qctx->srcFlatBuffer[0].pData) {
qctx->srcFlatBuffer.pData = qaeCryptoMemAlloc(buffer_len, __FILE__, __LINE__);
if (NULL == qctx->srcFlatBuffer.pData) {
WARN("src/dst buffer allocation.\n");
QATerr(QAT_F_QAT_AES_GCM_CIPHER, ERR_R_INTERNAL_ERROR);
return RET_FAIL;
}
qctx->dstFlatBuffer[0].pData = qctx->srcFlatBuffer[0].pData;
memcpy(qctx->srcFlatBuffer[0].pData, in, len);
qctx->dstFlatBuffer.pData = qctx->srcFlatBuffer.pData;
memcpy(qctx->srcFlatBuffer.pData, in, len);

/* The operation is done in place in the buffers
* The variables in and out remain separate */
qctx->srcFlatBuffer[0].dataLenInBytes = buffer_len;
qctx->srcFlatBuffer.dataLenInBytes = buffer_len;
qctx->srcBufferList.pUserData = NULL;
qctx->dstFlatBuffer[0].dataLenInBytes = buffer_len;
qctx->dstFlatBuffer.dataLenInBytes = buffer_len;
qctx->dstBufferList.pUserData = NULL;

qctx->OpData.messageLenToCipherInBytes = len;
Expand All @@ -1478,23 +1496,21 @@ int qat_aes_gcm_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
if (NULL == EVP_CIPHER_CTX_buf_noconst(ctx)) {
#endif
WARN("Tag not set\n");
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer[0].pData);
qctx->srcFlatBuffer[0].pData = NULL;
qctx->dstFlatBuffer[0].pData = NULL;
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer.pData);
qctx->srcFlatBuffer.pData = NULL;
qctx->dstFlatBuffer.pData = NULL;
return RET_FAIL;
}
/* Copy EVP_GCM_TLS_TAG_LEN bytes from tag buffer
as the maximum tag length can only be
EVP_GCM_TLS_TAG_LEN */
#ifdef QAT_OPENSSL_PROVIDER
memcpy(qctx->dstFlatBuffer[0].pData + len,
qctx->buf,
memcpy(qctx->OpData.pDigestResult, qctx->buf,
EVP_GCM_TLS_TAG_LEN);
qctx->tag_len = EVP_GCM_TLS_TAG_LEN;
#else
memcpy(qctx->dstFlatBuffer[0].pData + len,
EVP_CIPHER_CTX_buf_noconst(ctx),
EVP_GCM_TLS_TAG_LEN);
memcpy(qctx->OpData.pDigestResult, EVP_CIPHER_CTX_buf_noconst(ctx),
EVP_GCM_TLS_TAG_LEN);
#endif
}

Expand Down Expand Up @@ -1528,9 +1544,9 @@ int qat_aes_gcm_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
&(qctx->dstBufferList),
&(qctx->session_data->verifyDigest));
if (sts != CPA_STATUS_SUCCESS) {
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer[0].pData);
qctx->srcFlatBuffer[0].pData = NULL;
qctx->dstFlatBuffer[0].pData = NULL;
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer.pData);
qctx->srcFlatBuffer.pData = NULL;
qctx->dstFlatBuffer.pData = NULL;
qat_cleanup_op_done(&op_done);
WARN("cpaCySymPerformOp failed sts=%d.\n",sts);
QATerr(QAT_F_QAT_AES_GCM_CIPHER, ERR_R_INTERNAL_ERROR);
Expand Down Expand Up @@ -1588,24 +1604,22 @@ int qat_aes_gcm_cipher(EVP_CIPHER_CTX *ctx, unsigned char *out,
if (enc) {
/* After encryption, copy the TAG from the buffer to the ctx */
#ifdef QAT_OPENSSL_PROVIDER
memcpy(qctx->buf,
qctx->dstFlatBuffer[0].pData + len,
memcpy(qctx->buf, qctx->OpData.pDigestResult,
EVP_GCM_TLS_TAG_LEN);
DUMPL("TAG calculated by QAT", qctx->buf, 16);
#else
memcpy(EVP_CIPHER_CTX_buf_noconst(ctx),
qctx->dstFlatBuffer[0].pData + len,
memcpy(EVP_CIPHER_CTX_buf_noconst(ctx), qctx->OpData.pDigestResult,
EVP_GCM_TLS_TAG_LEN);
DUMPL("TAG calculated by QAT",
EVP_CIPHER_CTX_buf_noconst(ctx), 16);
#endif
qctx->tag_len = EVP_GCM_TLS_TAG_LEN;
}

memcpy(out, qctx->dstFlatBuffer[0].pData, len);
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer[0].pData);
qctx->srcFlatBuffer[0].pData = NULL;
qctx->dstFlatBuffer[0].pData = NULL;
memcpy(out, qctx->dstFlatBuffer.pData, len);
qaeCryptoMemFreeNonZero(qctx->srcFlatBuffer.pData);
qctx->srcFlatBuffer.pData = NULL;
qctx->dstFlatBuffer.pData = NULL;
#ifdef QAT_OPENSSL_PROVIDER
*padlen = len;
return RET_SUCCESS;
Expand Down
4 changes: 2 additions & 2 deletions qat_hw_gcm.h
View file
Original file line number Diff line number Diff line change
Expand Up @@ -94,8 +94,8 @@ typedef struct qat_aes_gcm_ctx_t
*/
CpaBufferList srcBufferList;
CpaBufferList dstBufferList;
CpaFlatBuffer srcFlatBuffer[1];
CpaFlatBuffer dstFlatBuffer[1];
CpaFlatBuffer srcFlatBuffer;
CpaFlatBuffer dstFlatBuffer;

/* -- Crypto -- */

Expand Down
28 changes: 13 additions & 15 deletions qat_hw_sha3.c
View file
Original file line number Diff line number Diff line change
Expand Up @@ -385,6 +385,9 @@ static int qat_sha3_init(EVP_MD_CTX *ctx)
#else
sha3_ctx->md_size = EVP_MD_CTX_size(ctx);
#endif
sha3_ctx->context_params_set = 0;
sha3_ctx->session_init = 0;

if (!sha3_ctx->md_size) {
WARN("sha3_ctx md size is NULL\n");
return 0;
Expand All @@ -407,13 +410,6 @@ static int qat_sha3_init(EVP_MD_CTX *ctx)
#endif
#endif

#ifdef ENABLE_QAT_HW_SMALL_PKT_OFFLOAD
/* Initialize QAT session */
if (0 == qat_sha3_session_data_init(ctx, sha3_ctx)) {
WARN("qat_session_data_init failed.\n");
return 0;
}
#endif
return 1;
}

Expand Down Expand Up @@ -548,6 +544,7 @@ static int qat_sha3_cleanup(EVP_MD_CTX *ctx)
}
sha3_ctx->session_init = 0;
sha3_ctx->packet_size=0;
sha3_ctx->context_params_set = 0;
return ret_val;
}

Expand Down Expand Up @@ -815,14 +812,7 @@ static int qat_sha3_update(EVP_MD_CTX *ctx, const void *in, size_t len)
sha3_ctx->packet_size = len;
#ifndef QAT_OPENSSL_PROVIDER
# ifndef ENABLE_QAT_HW_SMALL_PKT_OFFLOAD
if (len >=
qat_pkt_threshold_table_get_threshold(EVP_MD_CTX_type(ctx))) {

if (0 == qat_sha3_session_data_init(ctx, sha3_ctx)) {
WARN("qat_session_data_init failed.\n");
return 0;
}
} else if (len <=
if (len <=
qat_pkt_threshold_table_get_threshold(EVP_MD_CTX_type(ctx))) {
KECCAK1600_CTX *k_ctx = EVP_MD_CTX_md_data(ctx);
memset(k_ctx->A, 0, sizeof(k_ctx->A));
Expand All @@ -835,6 +825,14 @@ static int qat_sha3_update(EVP_MD_CTX *ctx, const void *in, size_t len)
}
# endif
#endif
if (!sha3_ctx->context_params_set) {
if (0 == qat_sha3_session_data_init(ctx, sha3_ctx)) {
WARN("qat_session_data_init failed.\n");
QATerr(QAT_F_QAT_SHA3_UPDATE, ERR_R_INTERNAL_ERROR);
return 0;
}
}

if (sha3_ctx->context_params_set && !sha3_ctx->session_init) {
/* Set SHA3 opdata params and initialise session. */
if (!qat_sha3_setup_param(sha3_ctx)) {
Expand Down
Loading

0 comments on commit ea2f554

Please sign in to comment.