From nobody Wed Feb 11 05:13:36 2026
Delivered-To: importer@patchew.org
Authentication-Results: mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of gnu.org designates 209.51.188.17 as
 permitted sender)
  smtp.mailfrom=qemu-devel-bounces+importer=patchew.org@nongnu.org;
	dmarc=fail(p=none dis=none)  header.from=bytedance.com
ARC-Seal: i=1; a=rsa-sha256; t=1667376211; cv=none;
	d=zohomail.com; s=zohoarc;
	b=XGR6pima2nNgctS5s5/sYf/pnx0oQuDK5lPtokKJ0b1GOjsPDDXghAkisAD4ECoFry3EmmRokJrYBAIFdq6r74LGDVOtQo8Jes08fklvahN3pzVskhd3t6/z1mZKIjDmW3gSxZRdY3OOw9/87Il3R56QHyNvqkV4Ip7nEEet40I=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com;
 s=zohoarc;
	t=1667376211;
 h=Content-Transfer-Encoding:Cc:Date:From:In-Reply-To:List-Subscribe:List-Post:List-Id:List-Archive:List-Help:List-Unsubscribe:MIME-Version:Message-ID:References:Sender:Subject:To;
	bh=0W0r+/qi0mrNxDDFrQjm3lVNeIVGyKafBHiHEepnVcg=;
	b=OQhgjWUGAvJBB+LFLb+aFQ/gV6aGapLe9IEZjtKZBwlLo7tf/vtP+7/fTF2FqpNekcpRKOON/5DTLEYdQgJgQtARF3kqL0V/mkOo7gPTRZiw/88DQpFOrLZGZIu0jS9CSXVt6U2jyWdv4VAizZV781hwFmqX5OrSW35GN8Kj9Vk=
ARC-Authentication-Results: i=1; mx.zohomail.com;
	dkim=pass;
	spf=pass (zohomail.com: domain of gnu.org designates 209.51.188.17 as
 permitted sender)
  smtp.mailfrom=qemu-devel-bounces+importer=patchew.org@nongnu.org;
	dmarc=fail header.from=<helei.sig11@bytedance.com> (p=none dis=none)
Return-Path: <qemu-devel-bounces+importer=patchew.org@nongnu.org>
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) by
 mx.zohomail.com
	with SMTPS id 1667376211561998.697543580809;
 Wed, 2 Nov 2022 01:03:31 -0700 (PDT)
Received: from localhost ([::1] helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <qemu-devel-bounces@nongnu.org>)
	id 1oq8i9-0000VV-I1; Wed, 02 Nov 2022 04:02:57 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10])
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <helei.sig11@bytedance.com>)
 id 1oq8i5-0000Ss-JJ
 for qemu-devel@nongnu.org; Wed, 02 Nov 2022 04:02:54 -0400
Received: from mail-pf1-x433.google.com ([2607:f8b0:4864:20::433])
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128)
 (Exim 4.90_1) (envelope-from <helei.sig11@bytedance.com>)
 id 1oq8i1-00013L-Ol
 for qemu-devel@nongnu.org; Wed, 02 Nov 2022 04:02:53 -0400
Received: by mail-pf1-x433.google.com with SMTP id b185so15707882pfb.9
 for <qemu-devel@nongnu.org>; Wed, 02 Nov 2022 01:02:49 -0700 (PDT)
Received: from FVFDK26JP3YV.bytedance.net ([139.177.225.245])
 by smtp.gmail.com with ESMTPSA id
 v20-20020a63f214000000b0045ff216a0casm3916640pgh.3.2022.11.02.01.02.45
 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
 Wed, 02 Nov 2022 01:02:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=bytedance-com.20210112.gappssmtp.com; s=20210112;
 h=content-transfer-encoding:mime-version:references:in-reply-to
 :message-id:date:subject:cc:to:from:from:to:cc:subject:date
 :message-id:reply-to;
 bh=0W0r+/qi0mrNxDDFrQjm3lVNeIVGyKafBHiHEepnVcg=;
 b=iEeRNATldNKXJLKZmlrS6BDkq8MFVXFwBH4nTwzUn9Bg9tnVT9FpBLmm0tZVcOLpPv
 NYdu7JWWZDRijgdEyYGN2qnYRYriPK37Ftj3YbUM80jQnYkLpdDcCNa6VJyezxBKIVO6
 gq7WI/5JbWXKlVDGxuqfHOzzr7wW9F5qSK9cDW12haTSoHHSC9WrhJ9Hey6qJRCoiorH
 b+lq3xOhYyhNxYxA33SJpmUfyYSYmmu/XOb1rYsTcYjZuoSAIjXUKKkPYIrfbjTpwPA3
 EY+gWl8SjlHHjEyySXLKigA0+Qqw0OBJZ8yOwDJlmBU56RzD+EtSu34Oa5To2Q1uWC4L
 yB8w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20210112;
 h=content-transfer-encoding:mime-version:references:in-reply-to
 :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc
 :subject:date:message-id:reply-to;
 bh=0W0r+/qi0mrNxDDFrQjm3lVNeIVGyKafBHiHEepnVcg=;
 b=F3WOnFTszI1ZA0kl9ZKPpRAhsi+6l2Zzng0apQAeWo0g5hVCAklTA2ehQkSLBxNcsY
 3rnoPM14v6kYdR+FPCbIcm1THHz/MYT6a1Ohf8h8T4kKBQPPYpzG2OuaTz+6+bwia5Pd
 WC5rzru5Dn/jOaz2qXMwarB/TE1n/CDGeA5SaT3StVBq8SbIPMImv5gTDNL8uCyfBk6F
 IS05CCfKMvXaEjuKMVNqOR0P7dWJlpjZSMF/h4i/Eb6lXtgKsmLBFkhD9w6r5qI8W3W+
 7rNdEl348vAIipLTtw284GcCIwyLi71dnZHQ6SFblt49m4CB/WIBJ2jtyOtd+txbW+pS
 G1wA==
X-Gm-Message-State: ACrzQf0hkFi9PfVTuxvw/X+I62PDytT/pIPKocx1Nb4u4KmQrDrwbpPV
 6HMdkk/Yefa+RCv611eqK8OdFA==
X-Google-Smtp-Source: 
 AMsMyM4emMQ5JSWVXxQINFgQVAG6ZTpVCOKp8ETaf2OPpvPsA2r6SqT327otQYoZRWzCw7+eb1c+8w==
X-Received: by 2002:a62:51c3:0:b0:56b:a0e2:3c51 with SMTP id
 f186-20020a6251c3000000b0056ba0e23c51mr23990922pfb.68.1667376167966;
 Wed, 02 Nov 2022 01:02:47 -0700 (PDT)
From: Lei He <helei.sig11@bytedance.com>
To: mst@redhat.com,
	arei.gonglei@huawei.com,
	berrange@redhat.com
Cc: pizhenwei@bytedance.com, qemu-devel@nongnu.org,
 Lei He <helei.sig11@bytedance.com>
Subject: [PATCH v3 1/4] virtio-crypto: Support asynchronous mode
Date: Wed,  2 Nov 2022 16:02:10 +0800
Message-Id: <20221102080213.46788-2-helei.sig11@bytedance.com>
X-Mailer: git-send-email 2.29.2
In-Reply-To: <20221102080213.46788-1-helei.sig11@bytedance.com>
References: <20221102080213.46788-1-helei.sig11@bytedance.com>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable
Received-SPF: pass (zohomail.com: domain of gnu.org designates 209.51.188.17
 as permitted sender) client-ip=209.51.188.17;
 envelope-from=qemu-devel-bounces+importer=patchew.org@nongnu.org;
 helo=lists.gnu.org;
Received-SPF: pass client-ip=2607:f8b0:4864:20::433;
 envelope-from=helei.sig11@bytedance.com; helo=mail-pf1-x433.google.com
X-Spam_score_int: -18
X-Spam_score: -1.9
X-Spam_bar: -
X-Spam_report: (-1.9 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001,
 SPF_PASS=-0.001 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: qemu-devel@nongnu.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <https://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
 <mailto:qemu-devel-request@nongnu.org?subject=subscribe>
Sender: "Qemu-devel" <qemu-devel-bounces@nongnu.org>
Errors-To: qemu-devel-bounces+importer=patchew.org@nongnu.org
X-ZohoMail-DKIM: pass (identity @bytedance-com.20210112.gappssmtp.com)
X-ZM-MESSAGEID: 1667376214152100003
Content-Type: text/plain; charset="utf-8"

virtio-crypto: Modify the current interface of virtio-crypto
device to support asynchronous mode.

Signed-off-by: lei he <helei.sig11@bytedance.com>
Reviewed-by: Michael S. Tsirkin <mst@redhat.com>
---
 backends/cryptodev-builtin.c    |  69 ++++++---
 backends/cryptodev-vhost-user.c |  51 ++++--
 backends/cryptodev.c            |  44 +++---
 hw/virtio/virtio-crypto.c       | 335 ++++++++++++++++++++++--------------=
----
 include/sysemu/cryptodev.h      |  60 ++++---
 5 files changed, 343 insertions(+), 216 deletions(-)

diff --git a/backends/cryptodev-builtin.c b/backends/cryptodev-builtin.c
index 125cbad1d3..cda6ca3b71 100644
--- a/backends/cryptodev-builtin.c
+++ b/backends/cryptodev-builtin.c
@@ -355,42 +355,62 @@ static int cryptodev_builtin_create_akcipher_session(
     return index;
 }
=20
-static int64_t cryptodev_builtin_create_session(
+static int cryptodev_builtin_create_session(
            CryptoDevBackend *backend,
            CryptoDevBackendSessionInfo *sess_info,
-           uint32_t queue_index, Error **errp)
+           uint32_t queue_index,
+           CryptoDevCompletionFunc cb,
+           void *opaque)
 {
     CryptoDevBackendBuiltin *builtin =3D
                       CRYPTODEV_BACKEND_BUILTIN(backend);
     CryptoDevBackendSymSessionInfo *sym_sess_info;
     CryptoDevBackendAsymSessionInfo *asym_sess_info;
+    int ret, status;
+    Error *local_error =3D NULL;
=20
     switch (sess_info->op_code) {
     case VIRTIO_CRYPTO_CIPHER_CREATE_SESSION:
         sym_sess_info =3D &sess_info->u.sym_sess_info;
-        return cryptodev_builtin_create_cipher_session(
-                           builtin, sym_sess_info, errp);
+        ret =3D cryptodev_builtin_create_cipher_session(
+                    builtin, sym_sess_info, &local_error);
+        break;
=20
     case VIRTIO_CRYPTO_AKCIPHER_CREATE_SESSION:
         asym_sess_info =3D &sess_info->u.asym_sess_info;
-        return cryptodev_builtin_create_akcipher_session(
-                           builtin, asym_sess_info, errp);
+        ret =3D cryptodev_builtin_create_akcipher_session(
+                           builtin, asym_sess_info, &local_error);
+        break;
=20
     case VIRTIO_CRYPTO_HASH_CREATE_SESSION:
     case VIRTIO_CRYPTO_MAC_CREATE_SESSION:
     default:
-        error_setg(errp, "Unsupported opcode :%" PRIu32 "",
+        error_setg(&local_error, "Unsupported opcode :%" PRIu32 "",
                    sess_info->op_code);
-        return -1;
+        return -VIRTIO_CRYPTO_NOTSUPP;
     }
=20
-    return -1;
+    if (local_error) {
+        error_report_err(local_error);
+    }
+    if (ret < 0) {
+        status =3D -VIRTIO_CRYPTO_ERR;
+    } else {
+        sess_info->session_id =3D ret;
+        status =3D VIRTIO_CRYPTO_OK;
+    }
+    if (cb) {
+        cb(opaque, status);
+    }
+    return 0;
 }
=20
 static int cryptodev_builtin_close_session(
            CryptoDevBackend *backend,
            uint64_t session_id,
-           uint32_t queue_index, Error **errp)
+           uint32_t queue_index,
+           CryptoDevCompletionFunc cb,
+           void *opaque)
 {
     CryptoDevBackendBuiltin *builtin =3D
                       CRYPTODEV_BACKEND_BUILTIN(backend);
@@ -407,6 +427,9 @@ static int cryptodev_builtin_close_session(
=20
     g_free(session);
     builtin->sessions[session_id] =3D NULL;
+    if (cb) {
+        cb(opaque, VIRTIO_CRYPTO_OK);
+    }
     return 0;
 }
=20
@@ -506,7 +529,9 @@ static int cryptodev_builtin_asym_operation(
 static int cryptodev_builtin_operation(
                  CryptoDevBackend *backend,
                  CryptoDevBackendOpInfo *op_info,
-                 uint32_t queue_index, Error **errp)
+                 uint32_t queue_index,
+                 CryptoDevCompletionFunc cb,
+                 void *opaque)
 {
     CryptoDevBackendBuiltin *builtin =3D
                       CRYPTODEV_BACKEND_BUILTIN(backend);
@@ -514,11 +539,12 @@ static int cryptodev_builtin_operation(
     CryptoDevBackendSymOpInfo *sym_op_info;
     CryptoDevBackendAsymOpInfo *asym_op_info;
     enum CryptoDevBackendAlgType algtype =3D op_info->algtype;
-    int ret =3D -VIRTIO_CRYPTO_ERR;
+    int status =3D -VIRTIO_CRYPTO_ERR;
+    Error *local_error =3D NULL;
=20
     if (op_info->session_id >=3D MAX_NUM_SESSIONS ||
               builtin->sessions[op_info->session_id] =3D=3D NULL) {
-        error_setg(errp, "Cannot find a valid session id: %" PRIu64 "",
+        error_setg(&local_error, "Cannot find a valid session id: %" PRIu6=
4 "",
                    op_info->session_id);
         return -VIRTIO_CRYPTO_INVSESS;
     }
@@ -526,14 +552,21 @@ static int cryptodev_builtin_operation(
     sess =3D builtin->sessions[op_info->session_id];
     if (algtype =3D=3D CRYPTODEV_BACKEND_ALG_SYM) {
         sym_op_info =3D op_info->u.sym_op_info;
-        ret =3D cryptodev_builtin_sym_operation(sess, sym_op_info, errp);
+        status =3D cryptodev_builtin_sym_operation(sess, sym_op_info,
+                                                 &local_error);
     } else if (algtype =3D=3D CRYPTODEV_BACKEND_ALG_ASYM) {
         asym_op_info =3D op_info->u.asym_op_info;
-        ret =3D cryptodev_builtin_asym_operation(sess, op_info->op_code,
-                                               asym_op_info, errp);
+        status =3D cryptodev_builtin_asym_operation(sess, op_info->op_code,
+                                                  asym_op_info, &local_err=
or);
     }
=20
-    return ret;
+    if (local_error) {
+        error_report_err(local_error);
+    }
+    if (cb) {
+        cb(opaque, status);
+    }
+    return 0;
 }
=20
 static void cryptodev_builtin_cleanup(
@@ -548,7 +581,7 @@ static void cryptodev_builtin_cleanup(
=20
     for (i =3D 0; i < MAX_NUM_SESSIONS; i++) {
         if (builtin->sessions[i] !=3D NULL) {
-            cryptodev_builtin_close_session(backend, i, 0, &error_abort);
+            cryptodev_builtin_close_session(backend, i, 0, NULL, NULL);
         }
     }
=20
diff --git a/backends/cryptodev-vhost-user.c b/backends/cryptodev-vhost-use=
r.c
index f9c5867e38..ab3028e045 100644
--- a/backends/cryptodev-vhost-user.c
+++ b/backends/cryptodev-vhost-user.c
@@ -259,13 +259,18 @@ static int64_t cryptodev_vhost_user_sym_create_sessio=
n(
     return -1;
 }
=20
-static int64_t cryptodev_vhost_user_create_session(
+static int cryptodev_vhost_user_create_session(
            CryptoDevBackend *backend,
            CryptoDevBackendSessionInfo *sess_info,
-           uint32_t queue_index, Error **errp)
+           uint32_t queue_index,
+           CryptoDevCompletionFunc cb,
+           void *opaque)
 {
     uint32_t op_code =3D sess_info->op_code;
     CryptoDevBackendSymSessionInfo *sym_sess_info;
+    int64_t ret;
+    Error *local_error =3D NULL;
+    int status;
=20
     switch (op_code) {
     case VIRTIO_CRYPTO_CIPHER_CREATE_SESSION:
@@ -273,27 +278,42 @@ static int64_t cryptodev_vhost_user_create_session(
     case VIRTIO_CRYPTO_MAC_CREATE_SESSION:
     case VIRTIO_CRYPTO_AEAD_CREATE_SESSION:
         sym_sess_info =3D &sess_info->u.sym_sess_info;
-        return cryptodev_vhost_user_sym_create_session(backend, sym_sess_i=
nfo,
-                   queue_index, errp);
+        ret =3D cryptodev_vhost_user_sym_create_session(backend, sym_sess_=
info,
+                   queue_index, &local_error);
+        break;
+
     default:
-        error_setg(errp, "Unsupported opcode :%" PRIu32 "",
+        error_setg(&local_error, "Unsupported opcode :%" PRIu32 "",
                    sess_info->op_code);
-        return -1;
-
+        return -VIRTIO_CRYPTO_NOTSUPP;
     }
=20
-    return -1;
+    if (local_error) {
+        error_report_err(local_error);
+    }
+    if (ret < 0) {
+        status =3D -VIRTIO_CRYPTO_ERR;
+    } else {
+        sess_info->session_id =3D ret;
+        status =3D VIRTIO_CRYPTO_OK;
+    }
+    if (cb) {
+        cb(opaque, status);
+    }
+    return 0;
 }
=20
 static int cryptodev_vhost_user_close_session(
            CryptoDevBackend *backend,
            uint64_t session_id,
-           uint32_t queue_index, Error **errp)
+           uint32_t queue_index,
+           CryptoDevCompletionFunc cb,
+           void *opaque)
 {
     CryptoDevBackendClient *cc =3D
                   backend->conf.peers.ccs[queue_index];
     CryptoDevBackendVhost *vhost_crypto;
-    int ret;
+    int ret =3D -1, status;
=20
     vhost_crypto =3D cryptodev_vhost_user_get_vhost(cc, backend, queue_ind=
ex);
     if (vhost_crypto) {
@@ -301,12 +321,17 @@ static int cryptodev_vhost_user_close_session(
         ret =3D dev->vhost_ops->vhost_crypto_close_session(dev,
                                                          session_id);
         if (ret < 0) {
-            return -1;
+            status =3D -VIRTIO_CRYPTO_ERR;
         } else {
-            return 0;
+            status =3D VIRTIO_CRYPTO_OK;
         }
+    } else {
+        status =3D -VIRTIO_CRYPTO_NOTSUPP;
     }
-    return -1;
+    if (cb) {
+        cb(opaque, status);
+    }
+    return 0;
 }
=20
 static void cryptodev_vhost_user_cleanup(
diff --git a/backends/cryptodev.c b/backends/cryptodev.c
index 33eb4e1a70..54ee8c81f5 100644
--- a/backends/cryptodev.c
+++ b/backends/cryptodev.c
@@ -26,6 +26,7 @@
 #include "qapi/error.h"
 #include "qapi/visitor.h"
 #include "qemu/config-file.h"
+#include "qemu/error-report.h"
 #include "qom/object_interfaces.h"
 #include "hw/virtio/virtio-crypto.h"
=20
@@ -72,69 +73,72 @@ void cryptodev_backend_cleanup(
     }
 }
=20
-int64_t cryptodev_backend_create_session(
+int cryptodev_backend_create_session(
            CryptoDevBackend *backend,
            CryptoDevBackendSessionInfo *sess_info,
-           uint32_t queue_index, Error **errp)
+           uint32_t queue_index,
+           CryptoDevCompletionFunc cb,
+           void *opaque)
 {
     CryptoDevBackendClass *bc =3D
                       CRYPTODEV_BACKEND_GET_CLASS(backend);
=20
     if (bc->create_session) {
-        return bc->create_session(backend, sess_info, queue_index, errp);
+        return bc->create_session(backend, sess_info, queue_index, cb, opa=
que);
     }
-
-    return -1;
+    return -VIRTIO_CRYPTO_NOTSUPP;
 }
=20
 int cryptodev_backend_close_session(
            CryptoDevBackend *backend,
            uint64_t session_id,
-           uint32_t queue_index, Error **errp)
+           uint32_t queue_index,
+           CryptoDevCompletionFunc cb,
+           void *opaque)
 {
     CryptoDevBackendClass *bc =3D
                       CRYPTODEV_BACKEND_GET_CLASS(backend);
=20
     if (bc->close_session) {
-        return bc->close_session(backend, session_id, queue_index, errp);
+        return bc->close_session(backend, session_id, queue_index, cb, opa=
que);
     }
-
-    return -1;
+    return -VIRTIO_CRYPTO_NOTSUPP;
 }
=20
 static int cryptodev_backend_operation(
                  CryptoDevBackend *backend,
                  CryptoDevBackendOpInfo *op_info,
-                 uint32_t queue_index, Error **errp)
+                 uint32_t queue_index,
+                 CryptoDevCompletionFunc cb,
+                 void *opaque)
 {
     CryptoDevBackendClass *bc =3D
                       CRYPTODEV_BACKEND_GET_CLASS(backend);
=20
     if (bc->do_op) {
-        return bc->do_op(backend, op_info, queue_index, errp);
+        return bc->do_op(backend, op_info, queue_index, cb, opaque);
     }
-
-    return -VIRTIO_CRYPTO_ERR;
+    return -VIRTIO_CRYPTO_NOTSUPP;
 }
=20
 int cryptodev_backend_crypto_operation(
                  CryptoDevBackend *backend,
-                 void *opaque,
-                 uint32_t queue_index, Error **errp)
+                 void *opaque1,
+                 uint32_t queue_index,
+                 CryptoDevCompletionFunc cb, void *opaque2)
 {
-    VirtIOCryptoReq *req =3D opaque;
+    VirtIOCryptoReq *req =3D opaque1;
     CryptoDevBackendOpInfo *op_info =3D &req->op_info;
     enum CryptoDevBackendAlgType algtype =3D req->flags;
=20
     if ((algtype !=3D CRYPTODEV_BACKEND_ALG_SYM)
         && (algtype !=3D CRYPTODEV_BACKEND_ALG_ASYM)) {
-        error_setg(errp, "Unsupported cryptodev alg type: %" PRIu32 "",
-                   algtype);
-
+        error_report("Unsupported cryptodev alg type: %" PRIu32 "", algtyp=
e);
         return -VIRTIO_CRYPTO_NOTSUPP;
     }
=20
-    return cryptodev_backend_operation(backend, op_info, queue_index, errp=
);
+    return cryptodev_backend_operation(backend, op_info, queue_index,
+                                       cb, opaque2);
 }
=20
 static void
diff --git a/hw/virtio/virtio-crypto.c b/hw/virtio/virtio-crypto.c
index df4bde210b..3ef216977d 100644
--- a/hw/virtio/virtio-crypto.c
+++ b/hw/virtio/virtio-crypto.c
@@ -27,6 +27,37 @@
=20
 #define VIRTIO_CRYPTO_VM_VERSION 1
=20
+typedef struct VirtIOCryptoSessionReq {
+    VirtIODevice *vdev;
+    VirtQueue *vq;
+    VirtQueueElement *elem;
+    CryptoDevBackendSessionInfo info;
+    CryptoDevCompletionFunc cb;
+} VirtIOCryptoSessionReq;
+
+static void virtio_crypto_free_create_session_req(VirtIOCryptoSessionReq *=
sreq)
+{
+    switch (sreq->info.op_code) {
+    case VIRTIO_CRYPTO_CIPHER_CREATE_SESSION:
+        g_free(sreq->info.u.sym_sess_info.cipher_key);
+        g_free(sreq->info.u.sym_sess_info.auth_key);
+        break;
+
+    case VIRTIO_CRYPTO_AKCIPHER_CREATE_SESSION:
+        g_free(sreq->info.u.asym_sess_info.key);
+        break;
+
+    case VIRTIO_CRYPTO_HASH_CREATE_SESSION:
+    case VIRTIO_CRYPTO_MAC_CREATE_SESSION:
+    case VIRTIO_CRYPTO_AEAD_CREATE_SESSION:
+        break;
+
+    default:
+        error_report("Unknown opcode: %u", sreq->info.op_code);
+    }
+    g_free(sreq);
+}
+
 /*
  * Transfer virtqueue index to crypto queue index.
  * The control virtqueue is after the data virtqueues
@@ -75,27 +106,24 @@ virtio_crypto_cipher_session_helper(VirtIODevice *vdev,
     return 0;
 }
=20
-static int64_t
+static int
 virtio_crypto_create_sym_session(VirtIOCrypto *vcrypto,
                struct virtio_crypto_sym_create_session_req *sess_req,
                uint32_t queue_id,
                uint32_t opcode,
-               struct iovec *iov, unsigned int out_num)
+               struct iovec *iov, unsigned int out_num,
+               VirtIOCryptoSessionReq *sreq)
 {
     VirtIODevice *vdev =3D VIRTIO_DEVICE(vcrypto);
-    CryptoDevBackendSessionInfo info;
-    CryptoDevBackendSymSessionInfo *sym_info;
-    int64_t session_id;
+    CryptoDevBackendSymSessionInfo *sym_info =3D &sreq->info.u.sym_sess_in=
fo;
     int queue_index;
     uint32_t op_type;
-    Error *local_err =3D NULL;
     int ret;
=20
-    memset(&info, 0, sizeof(info));
     op_type =3D ldl_le_p(&sess_req->op_type);
-    info.op_code =3D opcode;
+    sreq->info.op_code =3D opcode;
=20
-    sym_info =3D &info.u.sym_sess_info;
+    sym_info =3D &sreq->info.u.sym_sess_info;
     sym_info->op_type =3D op_type;
=20
     if (op_type =3D=3D VIRTIO_CRYPTO_SYM_OP_CIPHER) {
@@ -103,7 +131,7 @@ virtio_crypto_create_sym_session(VirtIOCrypto *vcrypto,
                            &sess_req->u.cipher.para,
                            &iov, &out_num);
         if (ret < 0) {
-            goto err;
+            return ret;
         }
     } else if (op_type =3D=3D VIRTIO_CRYPTO_SYM_OP_ALGORITHM_CHAINING) {
         size_t s;
@@ -112,7 +140,7 @@ virtio_crypto_create_sym_session(VirtIOCrypto *vcrypto,
                            &sess_req->u.chain.para.cipher_param,
                            &iov, &out_num);
         if (ret < 0) {
-            goto err;
+            return ret;
         }
         /* hash part */
         sym_info->alg_chain_order =3D ldl_le_p(
@@ -129,8 +157,7 @@ virtio_crypto_create_sym_session(VirtIOCrypto *vcrypto,
             if (sym_info->auth_key_len > vcrypto->conf.max_auth_key_len) {
                 error_report("virtio-crypto length of auth key is too big:=
 %u",
                              sym_info->auth_key_len);
-                ret =3D -VIRTIO_CRYPTO_ERR;
-                goto err;
+                return -VIRTIO_CRYPTO_ERR;
             }
             /* get auth key */
             if (sym_info->auth_key_len > 0) {
@@ -140,8 +167,7 @@ virtio_crypto_create_sym_session(VirtIOCrypto *vcrypto,
                 if (unlikely(s !=3D sym_info->auth_key_len)) {
                     virtio_error(vdev,
                           "virtio-crypto authenticated key incorrect");
-                    ret =3D -EFAULT;
-                    goto err;
+                    return -EFAULT;
                 }
                 iov_discard_front(&iov, &out_num, sym_info->auth_key_len);
             }
@@ -153,49 +179,30 @@ virtio_crypto_create_sym_session(VirtIOCrypto *vcrypt=
o,
         } else {
             /* VIRTIO_CRYPTO_SYM_HASH_MODE_NESTED */
             error_report("unsupported hash mode");
-            ret =3D -VIRTIO_CRYPTO_NOTSUPP;
-            goto err;
+            return -VIRTIO_CRYPTO_NOTSUPP;
         }
     } else {
         /* VIRTIO_CRYPTO_SYM_OP_NONE */
         error_report("unsupported cipher op_type: VIRTIO_CRYPTO_SYM_OP_NON=
E");
-        ret =3D -VIRTIO_CRYPTO_NOTSUPP;
-        goto err;
+        return -VIRTIO_CRYPTO_NOTSUPP;
     }
=20
     queue_index =3D virtio_crypto_vq2q(queue_id);
-    session_id =3D cryptodev_backend_create_session(
-                                     vcrypto->cryptodev,
-                                     &info, queue_index, &local_err);
-    if (session_id >=3D 0) {
-        ret =3D session_id;
-    } else {
-        if (local_err) {
-            error_report_err(local_err);
-        }
-        ret =3D -VIRTIO_CRYPTO_ERR;
-    }
-
-err:
-    g_free(sym_info->cipher_key);
-    g_free(sym_info->auth_key);
-    return ret;
+    return cryptodev_backend_create_session(vcrypto->cryptodev, &sreq->inf=
o,
+                                            queue_index, sreq->cb, sreq);
 }
=20
-static int64_t
+static int
 virtio_crypto_create_asym_session(VirtIOCrypto *vcrypto,
                struct virtio_crypto_akcipher_create_session_req *sess_req,
                uint32_t queue_id, uint32_t opcode,
-               struct iovec *iov, unsigned int out_num)
+               struct iovec *iov, unsigned int out_num,
+               VirtIOCryptoSessionReq *sreq)
 {
     VirtIODevice *vdev =3D VIRTIO_DEVICE(vcrypto);
-    CryptoDevBackendSessionInfo info =3D {0};
-    CryptoDevBackendAsymSessionInfo *asym_info;
-    int64_t session_id;
+    CryptoDevBackendAsymSessionInfo *asym_info =3D &sreq->info.u.asym_sess=
_info;
     int queue_index;
     uint32_t algo, keytype, keylen;
-    g_autofree uint8_t *key =3D NULL;
-    Error *local_err =3D NULL;
=20
     algo =3D ldl_le_p(&sess_req->para.algo);
     keytype =3D ldl_le_p(&sess_req->para.keytype);
@@ -208,20 +215,19 @@ virtio_crypto_create_asym_session(VirtIOCrypto *vcryp=
to,
     }
=20
     if (keylen) {
-        key =3D g_malloc(keylen);
-        if (iov_to_buf(iov, out_num, 0, key, keylen) !=3D keylen) {
+        asym_info->key =3D g_malloc(keylen);
+        if (iov_to_buf(iov, out_num, 0, asym_info->key, keylen) !=3D keyle=
n) {
             virtio_error(vdev, "virtio-crypto asym key incorrect");
             return -EFAULT;
         }
         iov_discard_front(&iov, &out_num, keylen);
     }
=20
-    info.op_code =3D opcode;
-    asym_info =3D &info.u.asym_sess_info;
+    sreq->info.op_code =3D opcode;
+    asym_info =3D &sreq->info.u.asym_sess_info;
     asym_info->algo =3D algo;
     asym_info->keytype =3D keytype;
     asym_info->keylen =3D keylen;
-    asym_info->key =3D key;
     switch (asym_info->algo) {
     case VIRTIO_CRYPTO_AKCIPHER_RSA:
         asym_info->u.rsa.padding_algo =3D
@@ -237,45 +243,95 @@ virtio_crypto_create_asym_session(VirtIOCrypto *vcryp=
to,
     }
=20
     queue_index =3D virtio_crypto_vq2q(queue_id);
-    session_id =3D cryptodev_backend_create_session(vcrypto->cryptodev, &i=
nfo,
-                     queue_index, &local_err);
-    if (session_id < 0) {
-        if (local_err) {
-            error_report_err(local_err);
-        }
-        return -VIRTIO_CRYPTO_ERR;
-    }
-
-    return session_id;
+    return cryptodev_backend_create_session(vcrypto->cryptodev, &sreq->inf=
o,
+                                            queue_index, sreq->cb, sreq);
 }
=20
-static uint8_t
+static int
 virtio_crypto_handle_close_session(VirtIOCrypto *vcrypto,
          struct virtio_crypto_destroy_session_req *close_sess_req,
-         uint32_t queue_id)
+         uint32_t queue_id,
+         VirtIOCryptoSessionReq *sreq)
 {
-    int ret;
     uint64_t session_id;
-    uint32_t status;
-    Error *local_err =3D NULL;
=20
     session_id =3D ldq_le_p(&close_sess_req->session_id);
     DPRINTF("close session, id=3D%" PRIu64 "\n", session_id);
=20
-    ret =3D cryptodev_backend_close_session(
-              vcrypto->cryptodev, session_id, queue_id, &local_err);
-    if (ret =3D=3D 0) {
-        status =3D VIRTIO_CRYPTO_OK;
+    return cryptodev_backend_close_session(
+                vcrypto->cryptodev, session_id, queue_id, sreq->cb, sreq);
+}
+
+static void virtio_crypto_create_session_completion(void *opaque, int ret)
+{
+    VirtIOCryptoSessionReq *sreq =3D (VirtIOCryptoSessionReq *)opaque;
+    VirtQueue *vq =3D sreq->vq;
+    VirtQueueElement *elem =3D sreq->elem;
+    VirtIODevice *vdev =3D sreq->vdev;
+    struct virtio_crypto_session_input input;
+    struct iovec *in_iov =3D elem->in_sg;
+    unsigned in_num =3D elem->in_num;
+    size_t s;
+
+    memset(&input, 0, sizeof(input));
+    /* Serious errors, need to reset virtio crypto device */
+    if (ret =3D=3D -EFAULT) {
+        virtqueue_detach_element(vq, elem, 0);
+        goto out;
+    } else if (ret =3D=3D -VIRTIO_CRYPTO_NOTSUPP) {
+        stl_le_p(&input.status, VIRTIO_CRYPTO_NOTSUPP);
+    } else if (ret =3D=3D -VIRTIO_CRYPTO_KEY_REJECTED) {
+        stl_le_p(&input.status, VIRTIO_CRYPTO_KEY_REJECTED);
+    } else if (ret !=3D VIRTIO_CRYPTO_OK) {
+        stl_le_p(&input.status, VIRTIO_CRYPTO_ERR);
     } else {
-        if (local_err) {
-            error_report_err(local_err);
-        } else {
-            error_report("destroy session failed");
-        }
+        /* Set the session id */
+        stq_le_p(&input.session_id, sreq->info.session_id);
+        stl_le_p(&input.status, VIRTIO_CRYPTO_OK);
+    }
+
+    s =3D iov_from_buf(in_iov, in_num, 0, &input, sizeof(input));
+    if (unlikely(s !=3D sizeof(input))) {
+        virtio_error(vdev, "virtio-crypto input incorrect");
+        virtqueue_detach_element(vq, elem, 0);
+        goto out;
+    }
+    virtqueue_push(vq, elem, sizeof(input));
+    virtio_notify(vdev, vq);
+
+out:
+    g_free(elem);
+    virtio_crypto_free_create_session_req(sreq);
+}
+
+static void virtio_crypto_destroy_session_completion(void *opaque, int ret)
+{
+    VirtIOCryptoSessionReq *sreq =3D (VirtIOCryptoSessionReq *)opaque;
+    VirtQueue *vq =3D sreq->vq;
+    VirtQueueElement *elem =3D sreq->elem;
+    VirtIODevice *vdev =3D sreq->vdev;
+    struct iovec *in_iov =3D elem->in_sg;
+    unsigned in_num =3D elem->in_num;
+    uint8_t status;
+    size_t s;
+
+    if (ret < 0) {
         status =3D VIRTIO_CRYPTO_ERR;
+    } else {
+        status =3D VIRTIO_CRYPTO_OK;
+    }
+    s =3D iov_from_buf(in_iov, in_num, 0, &status, sizeof(status));
+    if (unlikely(s !=3D sizeof(status))) {
+        virtio_error(vdev, "virtio-crypto status incorrect");
+        virtqueue_detach_element(vq, elem, 0);
+        goto out;
     }
+    virtqueue_push(vq, elem, sizeof(status));
+    virtio_notify(vdev, vq);
=20
-    return status;
+out:
+    g_free(elem);
+    g_free(sreq);
 }
=20
 static void virtio_crypto_handle_ctrl(VirtIODevice *vdev, VirtQueue *vq)
@@ -283,16 +339,16 @@ static void virtio_crypto_handle_ctrl(VirtIODevice *v=
dev, VirtQueue *vq)
     VirtIOCrypto *vcrypto =3D VIRTIO_CRYPTO(vdev);
     struct virtio_crypto_op_ctrl_req ctrl;
     VirtQueueElement *elem;
-    struct iovec *in_iov;
-    struct iovec *out_iov;
-    unsigned in_num;
+    VirtIOCryptoSessionReq *sreq;
     unsigned out_num;
+    unsigned in_num;
     uint32_t queue_id;
     uint32_t opcode;
     struct virtio_crypto_session_input input;
-    int64_t session_id;
-    uint8_t status;
     size_t s;
+    int ret;
+    struct iovec *out_iov;
+    struct iovec *in_iov;
=20
     for (;;) {
         g_autofree struct iovec *out_iov_copy =3D NULL;
@@ -327,44 +383,34 @@ static void virtio_crypto_handle_ctrl(VirtIODevice *v=
dev, VirtQueue *vq)
         opcode =3D ldl_le_p(&ctrl.header.opcode);
         queue_id =3D ldl_le_p(&ctrl.header.queue_id);
=20
-        memset(&input, 0, sizeof(input));
+        sreq =3D g_new0(VirtIOCryptoSessionReq, 1);
+        sreq->vdev =3D vdev;
+        sreq->vq =3D vq;
+        sreq->elem =3D elem;
+
         switch (opcode) {
         case VIRTIO_CRYPTO_CIPHER_CREATE_SESSION:
-            session_id =3D virtio_crypto_create_sym_session(vcrypto,
-                             &ctrl.u.sym_create_session,
-                             queue_id, opcode,
-                             out_iov, out_num);
-            goto check_session;
+            sreq->cb =3D virtio_crypto_create_session_completion;
+            ret =3D virtio_crypto_create_sym_session(vcrypto,
+                            &ctrl.u.sym_create_session,
+                            queue_id, opcode,
+                            out_iov, out_num,
+                            sreq);
+            if (ret < 0) {
+                virtio_crypto_create_session_completion(sreq, ret);
+            }
+            break;
=20
         case VIRTIO_CRYPTO_AKCIPHER_CREATE_SESSION:
-            session_id =3D virtio_crypto_create_asym_session(vcrypto,
+            sreq->cb =3D virtio_crypto_create_session_completion;
+            ret =3D virtio_crypto_create_asym_session(vcrypto,
                              &ctrl.u.akcipher_create_session,
                              queue_id, opcode,
-                             out_iov, out_num);
-
-check_session:
-            /* Serious errors, need to reset virtio crypto device */
-            if (session_id =3D=3D -EFAULT) {
-                virtqueue_detach_element(vq, elem, 0);
-                break;
-            } else if (session_id =3D=3D -VIRTIO_CRYPTO_NOTSUPP) {
-                stl_le_p(&input.status, VIRTIO_CRYPTO_NOTSUPP);
-            } else if (session_id =3D=3D -VIRTIO_CRYPTO_ERR) {
-                stl_le_p(&input.status, VIRTIO_CRYPTO_ERR);
-            } else {
-                /* Set the session id */
-                stq_le_p(&input.session_id, session_id);
-                stl_le_p(&input.status, VIRTIO_CRYPTO_OK);
-            }
-
-            s =3D iov_from_buf(in_iov, in_num, 0, &input, sizeof(input));
-            if (unlikely(s !=3D sizeof(input))) {
-                virtio_error(vdev, "virtio-crypto input incorrect");
-                virtqueue_detach_element(vq, elem, 0);
-                break;
+                             out_iov, out_num,
+                             sreq);
+            if (ret < 0) {
+                virtio_crypto_create_session_completion(sreq, ret);
             }
-            virtqueue_push(vq, elem, sizeof(input));
-            virtio_notify(vdev, vq);
             break;
=20
         case VIRTIO_CRYPTO_CIPHER_DESTROY_SESSION:
@@ -372,37 +418,36 @@ check_session:
         case VIRTIO_CRYPTO_MAC_DESTROY_SESSION:
         case VIRTIO_CRYPTO_AEAD_DESTROY_SESSION:
         case VIRTIO_CRYPTO_AKCIPHER_DESTROY_SESSION:
-            status =3D virtio_crypto_handle_close_session(vcrypto,
-                   &ctrl.u.destroy_session, queue_id);
-            /* The status only occupy one byte, we can directly use it */
-            s =3D iov_from_buf(in_iov, in_num, 0, &status, sizeof(status));
-            if (unlikely(s !=3D sizeof(status))) {
-                virtio_error(vdev, "virtio-crypto status incorrect");
-                virtqueue_detach_element(vq, elem, 0);
-                break;
+            sreq->cb =3D virtio_crypto_destroy_session_completion;
+            ret =3D virtio_crypto_handle_close_session(vcrypto,
+                   &ctrl.u.destroy_session, queue_id,
+                   sreq);
+            if (ret < 0) {
+                virtio_crypto_destroy_session_completion(sreq, ret);
             }
-            virtqueue_push(vq, elem, sizeof(status));
-            virtio_notify(vdev, vq);
             break;
+
         case VIRTIO_CRYPTO_HASH_CREATE_SESSION:
         case VIRTIO_CRYPTO_MAC_CREATE_SESSION:
         case VIRTIO_CRYPTO_AEAD_CREATE_SESSION:
         default:
+            memset(&input, 0, sizeof(input));
             error_report("virtio-crypto unsupported ctrl opcode: %d", opco=
de);
             stl_le_p(&input.status, VIRTIO_CRYPTO_NOTSUPP);
             s =3D iov_from_buf(in_iov, in_num, 0, &input, sizeof(input));
             if (unlikely(s !=3D sizeof(input))) {
                 virtio_error(vdev, "virtio-crypto input incorrect");
                 virtqueue_detach_element(vq, elem, 0);
-                break;
+            } else {
+                virtqueue_push(vq, elem, sizeof(input));
+                virtio_notify(vdev, vq);
             }
-            virtqueue_push(vq, elem, sizeof(input));
-            virtio_notify(vdev, vq);
+            g_free(sreq);
+            g_free(elem);
=20
             break;
         } /* end switch case */
=20
-        g_free(elem);
     } /* end for loop */
 }
=20
@@ -448,6 +493,7 @@ static void virtio_crypto_free_request(VirtIOCryptoReq =
*req)
         }
     }
=20
+    g_free(req->in_iov);
     g_free(req);
 }
=20
@@ -458,6 +504,7 @@ virtio_crypto_sym_input_data_helper(VirtIODevice *vdev,
                 CryptoDevBackendSymOpInfo *sym_op_info)
 {
     size_t s, len;
+    struct iovec *in_iov =3D req->in_iov;
=20
     if (status !=3D VIRTIO_CRYPTO_OK) {
         return;
@@ -465,18 +512,18 @@ virtio_crypto_sym_input_data_helper(VirtIODevice *vde=
v,
=20
     len =3D sym_op_info->src_len;
     /* Save the cipher result */
-    s =3D iov_from_buf(req->in_iov, req->in_num, 0, sym_op_info->dst, len);
+    s =3D iov_from_buf(in_iov, req->in_num, 0, sym_op_info->dst, len);
     if (s !=3D len) {
         virtio_error(vdev, "virtio-crypto dest data incorrect");
         return;
     }
=20
-    iov_discard_front(&req->in_iov, &req->in_num, len);
+    iov_discard_front(&in_iov, &req->in_num, len);
=20
     if (sym_op_info->op_type =3D=3D
                       VIRTIO_CRYPTO_SYM_OP_ALGORITHM_CHAINING) {
         /* Save the digest result */
-        s =3D iov_from_buf(req->in_iov, req->in_num, 0,
+        s =3D iov_from_buf(in_iov, req->in_num, 0,
                          sym_op_info->digest_result,
                          sym_op_info->digest_result_len);
         if (s !=3D sym_op_info->digest_result_len) {
@@ -491,6 +538,7 @@ virtio_crypto_akcipher_input_data_helper(VirtIODevice *=
vdev,
         CryptoDevBackendAsymOpInfo *asym_op_info)
 {
     size_t s, len;
+    struct iovec *in_iov =3D req->in_iov;
=20
     if (status !=3D VIRTIO_CRYPTO_OK) {
         return;
@@ -501,23 +549,24 @@ virtio_crypto_akcipher_input_data_helper(VirtIODevice=
 *vdev,
         return;
     }
=20
-    s =3D iov_from_buf(req->in_iov, req->in_num, 0, asym_op_info->dst, len=
);
+    s =3D iov_from_buf(in_iov, req->in_num, 0, asym_op_info->dst, len);
     if (s !=3D len) {
         virtio_error(vdev, "virtio-crypto asym dest data incorrect");
         return;
     }
=20
-    iov_discard_front(&req->in_iov, &req->in_num, len);
+    iov_discard_front(&in_iov, &req->in_num, len);
=20
     /* For akcipher, dst_len may be changed after operation */
     req->in_len =3D sizeof(struct virtio_crypto_inhdr) + asym_op_info->dst=
_len;
 }
=20
-
-static void virtio_crypto_req_complete(VirtIOCryptoReq *req, uint8_t statu=
s)
+static void virtio_crypto_req_complete(void *opaque, int ret)
 {
+    VirtIOCryptoReq *req =3D (VirtIOCryptoReq *)opaque;
     VirtIOCrypto *vcrypto =3D req->vcrypto;
     VirtIODevice *vdev =3D VIRTIO_DEVICE(vcrypto);
+    uint8_t status =3D -ret;
=20
     if (req->flags =3D=3D CRYPTODEV_BACKEND_ALG_SYM) {
         virtio_crypto_sym_input_data_helper(vdev, req, status,
@@ -529,6 +578,7 @@ static void virtio_crypto_req_complete(VirtIOCryptoReq =
*req, uint8_t status)
     stb_p(&req->in->status, status);
     virtqueue_push(req->vq, &req->elem, req->in_len);
     virtio_notify(vdev, req->vq);
+    virtio_crypto_free_request(req);
 }
=20
 static VirtIOCryptoReq *
@@ -773,9 +823,7 @@ virtio_crypto_handle_request(VirtIOCryptoReq *request)
     unsigned in_num;
     unsigned out_num;
     uint32_t opcode;
-    uint8_t status =3D VIRTIO_CRYPTO_ERR;
     CryptoDevBackendOpInfo *op_info =3D &request->op_info;
-    Error *local_err =3D NULL;
=20
     if (elem->out_num < 1 || elem->in_num < 1) {
         virtio_error(vdev, "virtio-crypto dataq missing headers");
@@ -815,6 +863,8 @@ virtio_crypto_handle_request(VirtIOCryptoReq *request)
      */
     request->in_num =3D in_num;
     request->in_iov =3D in_iov;
+    /* now, we free the in_iov_copy inside virtio_crypto_free_request */
+    in_iov_copy =3D NULL;
=20
     opcode =3D ldl_le_p(&req.header.opcode);
     op_info->session_id =3D ldq_le_p(&req.header.session_id);
@@ -843,23 +893,15 @@ check_result:
         if (ret =3D=3D -EFAULT) {
             return -1;
         } else if (ret =3D=3D -VIRTIO_CRYPTO_NOTSUPP) {
-            virtio_crypto_req_complete(request, VIRTIO_CRYPTO_NOTSUPP);
-            virtio_crypto_free_request(request);
+            virtio_crypto_req_complete(request, -VIRTIO_CRYPTO_NOTSUPP);
         } else {
-
-            /* Set request's parameter */
             ret =3D cryptodev_backend_crypto_operation(vcrypto->cryptodev,
-                                    request, queue_index, &local_err);
+                                    request, queue_index,
+                                    virtio_crypto_req_complete,
+                                    request);
             if (ret < 0) {
-                status =3D -ret;
-                if (local_err) {
-                    error_report_err(local_err);
-                }
-            } else { /* ret =3D=3D VIRTIO_CRYPTO_OK */
-                status =3D ret;
+                virtio_crypto_req_complete(request, ret);
             }
-            virtio_crypto_req_complete(request, status);
-            virtio_crypto_free_request(request);
         }
         break;
=20
@@ -870,8 +912,7 @@ check_result:
     default:
         error_report("virtio-crypto unsupported dataq opcode: %u",
                      opcode);
-        virtio_crypto_req_complete(request, VIRTIO_CRYPTO_NOTSUPP);
-        virtio_crypto_free_request(request);
+        virtio_crypto_req_complete(request, -VIRTIO_CRYPTO_NOTSUPP);
     }
=20
     return 0;
@@ -1011,7 +1052,7 @@ static void virtio_crypto_device_realize(DeviceState =
*dev, Error **errp)
         vcrypto->vqs[i].vcrypto =3D vcrypto;
     }
=20
-    vcrypto->ctrl_vq =3D virtio_add_queue(vdev, 64, virtio_crypto_handle_c=
trl);
+    vcrypto->ctrl_vq =3D virtio_add_queue(vdev, 1024, virtio_crypto_handle=
_ctrl);
     if (!cryptodev_backend_is_ready(vcrypto->cryptodev)) {
         vcrypto->status &=3D ~VIRTIO_CRYPTO_S_HW_READY;
     } else {
diff --git a/include/sysemu/cryptodev.h b/include/sysemu/cryptodev.h
index 37c3a360fd..32e9f4cf8a 100644
--- a/include/sysemu/cryptodev.h
+++ b/include/sysemu/cryptodev.h
@@ -113,6 +113,7 @@ typedef struct CryptoDevBackendSessionInfo {
         CryptoDevBackendSymSessionInfo sym_sess_info;
         CryptoDevBackendAsymSessionInfo asym_sess_info;
     } u;
+    uint64_t session_id;
 } CryptoDevBackendSessionInfo;
=20
 /**
@@ -188,21 +189,30 @@ typedef struct CryptoDevBackendOpInfo {
     } u;
 } CryptoDevBackendOpInfo;
=20
+typedef void (*CryptoDevCompletionFunc) (void *opaque, int ret);
 struct CryptoDevBackendClass {
     ObjectClass parent_class;
=20
     void (*init)(CryptoDevBackend *backend, Error **errp);
     void (*cleanup)(CryptoDevBackend *backend, Error **errp);
=20
-    int64_t (*create_session)(CryptoDevBackend *backend,
-                       CryptoDevBackendSessionInfo *sess_info,
-                       uint32_t queue_index, Error **errp);
+    int (*create_session)(CryptoDevBackend *backend,
+                          CryptoDevBackendSessionInfo *sess_info,
+                          uint32_t queue_index,
+                          CryptoDevCompletionFunc cb,
+                          void *opaque);
+
     int (*close_session)(CryptoDevBackend *backend,
-                           uint64_t session_id,
-                           uint32_t queue_index, Error **errp);
+                         uint64_t session_id,
+                         uint32_t queue_index,
+                         CryptoDevCompletionFunc cb,
+                         void *opaque);
+
     int (*do_op)(CryptoDevBackend *backend,
-                     CryptoDevBackendOpInfo *op_info,
-                     uint32_t queue_index, Error **errp);
+                 CryptoDevBackendOpInfo *op_info,
+                 uint32_t queue_index,
+                 CryptoDevCompletionFunc cb,
+                 void *opaque);
 };
=20
 typedef enum CryptoDevBackendOptionsType {
@@ -303,15 +313,20 @@ void cryptodev_backend_cleanup(
  * @sess_info: parameters needed by session creating
  * @queue_index: queue index of cryptodev backend client
  * @errp: pointer to a NULL-initialized error object
+ * @cb: callback when session create is compeleted
+ * @opaque: parameter passed to callback
  *
- * Create a session for symmetric/symmetric algorithms
+ * Create a session for symmetric/asymmetric algorithms
  *
- * Returns: session id on success, or -1 on error
+ * Returns: 0 for success and cb will be called when creation is completed,
+ * negative value for error, and cb will not be called.
  */
-int64_t cryptodev_backend_create_session(
+int cryptodev_backend_create_session(
            CryptoDevBackend *backend,
            CryptoDevBackendSessionInfo *sess_info,
-           uint32_t queue_index, Error **errp);
+           uint32_t queue_index,
+           CryptoDevCompletionFunc cb,
+           void *opaque);
=20
 /**
  * cryptodev_backend_close_session:
@@ -319,34 +334,43 @@ int64_t cryptodev_backend_create_session(
  * @session_id: the session id
  * @queue_index: queue index of cryptodev backend client
  * @errp: pointer to a NULL-initialized error object
+ * @cb: callback when session create is compeleted
+ * @opaque: parameter passed to callback
  *
  * Close a session for which was previously
  * created by cryptodev_backend_create_session()
  *
- * Returns: 0 on success, or Negative on error
+ * Returns: 0 for success and cb will be called when creation is completed,
+ * negative value for error, and cb will not be called.
  */
 int cryptodev_backend_close_session(
            CryptoDevBackend *backend,
            uint64_t session_id,
-           uint32_t queue_index, Error **errp);
+           uint32_t queue_index,
+           CryptoDevCompletionFunc cb,
+           void *opaque);
=20
 /**
  * cryptodev_backend_crypto_operation:
  * @backend: the cryptodev backend object
- * @opaque: pointer to a VirtIOCryptoReq object
+ * @opaque1: pointer to a VirtIOCryptoReq object
  * @queue_index: queue index of cryptodev backend client
  * @errp: pointer to a NULL-initialized error object
+ * @cb: callbacks when operation is completed
+ * @opaque2: parameter passed to cb
  *
  * Do crypto operation, such as encryption and
  * decryption
  *
- * Returns: VIRTIO_CRYPTO_OK on success,
- *         or -VIRTIO_CRYPTO_* on error
+ * Returns: 0 for success and cb will be called when creation is completed,
+ * negative value for error, and cb will not be called.
  */
 int cryptodev_backend_crypto_operation(
                  CryptoDevBackend *backend,
-                 void *opaque,
-                 uint32_t queue_index, Error **errp);
+                 void *opaque1,
+                 uint32_t queue_index,
+                 CryptoDevCompletionFunc cb,
+                 void *opaque2);
=20
 /**
  * cryptodev_backend_set_used:
--=20
2.11.0