On 12/03/2013 11:43 PM, Nikos Mavrogiannopoulos wrote:
On Mon, 2013-12-02 at 16:33 +0100, Karl Hiramoto wrote:
Hi all,
I'm using openssl 1.0.1e and OpenVPN 2.3.2
I'm using the cryptodev-linux/extras/eng_cryptodev.c with openssl
[...]
Mon Dec 2 14:56:26 2013 us=282785 test1/10.64.1.3:64764 PID_ERR large
diff [1693821396] [SSL-0]
[EEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEE]
0:1693821542 0:146 t=1385996186[0] r=[-2,64,15,1693821517,1]
sl=[0,64,64,272]
Mon Dec 2 14:56:26 2013 us=282785 test1/10.64.1.3:64764
Authenticate/Decrypt packet error: bad packet ID (may be a replay):
[ #146 ] -- see the man page entry for --no-replay and --replay-window
for more info or silence this warning with --mute-replay-warnings
Hello after compiling openssl with the new eng_cryptodev.c, did make
check succeeded? Did you try with openssl's default eng_cryptodev.c? Any
difference in behavior?
The only tests that fail are these:
/tests # ./cipher-aead-srtp
ioctl(CIOCAUTHCRYPT): Invalid argument
In the kernel dmesg there is:
[ 2667.160000] cryptodev: cipher-aead-srt[804] (cryptodev_open:486):
Cryptodev handle initialised, 16 elements in queue
[ 2667.170000] cryptodev: cipher-aead-srt[804]
(crypto_create_session:278): got alignmask 15
[ 2667.180000] cryptodev: cipher-aead-srt[804]
(crypto_create_session:282): preallocating for 32 user pages
[ 2667.190000] cra_flag = 0xe86 = 0
[ 2667.190000] hash cra_flag = 0xc09 = 0
[ 2667.200000] cryptodev: cipher-aead-srt[804] (adjust_sg_array:93):
reallocating from 32 to 32 pages
[ 2667.210000] request size is not exact amount of AES blocks
[ 2667.210000] cryptodev: cipher-aead-srt[804] (srtp_auth_n_crypt:467):
cryptodev_cipher_encrypt: -22
[ 2667.220000] cryptodev: cipher-aead-srt[804] (crypto_auth_run:729):
error in __crypto_auth_run_zc()
[ 2667.230000] cryptodev: cipher-aead-srt[804] (cryptodev_ioctl:883):
Error in crypto_auth_run
/tests # ./cipher-gcm
ioctl(CIOCGSESSION): Invalid argument
I'm not using GCM cipher so this is not important to me.
I think the issue might be the memory alignment, the HW wants 16 byte
alignment.
I do echo 9 > /proc/sys/ioctl/cryptodev_verbosity
and start to see messages liks:
[ 1102.870000] cryptodev: openvpn[693] (get_userbuf:157): careful -
destination address 267d3f is not 16 byte aligned
[ 1103.880000] cryptodev: openvpn[693] (get_userbuf:152): careful -
source address 2665fb is not 16 byte aligned
[ 1103.890000] cryptodev: openvpn[693] (get_userbuf:157): careful -
destination address 267d3f is not 16 byte aligned
[ 1104.700000] cryptodev: openvpn[693] (get_userbuf:152): careful -
source address 266dbb is not 16 byte aligned
[ 1104.890000] cryptodev: openvpn[693] (get_userbuf:152): careful -
source address 2665fb is not 16 byte aligned
Thanks,
karl
_______________________________________________
Cryptodev-linux-devel mailing list
Cryptodev-linux-devel@gna.org
https://mail.gna.org/listinfo/cryptodev-linux-devel
