1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16#include <crypto/internal/skcipher.h>
17#include <linux/err.h>
18#include <linux/kernel.h>
19#include <linux/slab.h>
20#include <linux/seq_file.h>
21#include <linux/cryptouser.h>
22#include <linux/compiler.h>
23#include <net/netlink.h>
24
25#include <crypto/scatterwalk.h>
26
27#include "internal.h"
28
29struct ablkcipher_buffer {
30 struct list_head entry;
31 struct scatter_walk dst;
32 unsigned int len;
33 void *data;
34};
35
36enum {
37 ABLKCIPHER_WALK_SLOW = 1 << 0,
38};
39
40static inline void ablkcipher_buffer_write(struct ablkcipher_buffer *p)
41{
42 scatterwalk_copychunks(p->data, &p->dst, p->len, 1);
43}
44
45void __ablkcipher_walk_complete(struct ablkcipher_walk *walk)
46{
47 struct ablkcipher_buffer *p, *tmp;
48
49 list_for_each_entry_safe(p, tmp, &walk->buffers, entry) {
50 ablkcipher_buffer_write(p);
51 list_del(&p->entry);
52 kfree(p);
53 }
54}
55EXPORT_SYMBOL_GPL(__ablkcipher_walk_complete);
56
57static inline void ablkcipher_queue_write(struct ablkcipher_walk *walk,
58 struct ablkcipher_buffer *p)
59{
60 p->dst = walk->out;
61 list_add_tail(&p->entry, &walk->buffers);
62}
63
64
65
66
67static inline u8 *ablkcipher_get_spot(u8 *start, unsigned int len)
68{
69 u8 *end_page = (u8 *)(((unsigned long)(start + len - 1)) & PAGE_MASK);
70
71 return max(start, end_page);
72}
73
74static inline unsigned int ablkcipher_done_slow(struct ablkcipher_walk *walk,
75 unsigned int bsize)
76{
77 unsigned int n = bsize;
78
79 for (;;) {
80 unsigned int len_this_page = scatterwalk_pagelen(&walk->out);
81
82 if (len_this_page > n)
83 len_this_page = n;
84 scatterwalk_advance(&walk->out, n);
85 if (n == len_this_page)
86 break;
87 n -= len_this_page;
88 scatterwalk_start(&walk->out, sg_next(walk->out.sg));
89 }
90
91 return bsize;
92}
93
94static inline unsigned int ablkcipher_done_fast(struct ablkcipher_walk *walk,
95 unsigned int n)
96{
97 scatterwalk_advance(&walk->in, n);
98 scatterwalk_advance(&walk->out, n);
99
100 return n;
101}
102
103static int ablkcipher_walk_next(struct ablkcipher_request *req,
104 struct ablkcipher_walk *walk);
105
106int ablkcipher_walk_done(struct ablkcipher_request *req,
107 struct ablkcipher_walk *walk, int err)
108{
109 struct crypto_tfm *tfm = req->base.tfm;
110 unsigned int nbytes = 0;
111
112 if (likely(err >= 0)) {
113 unsigned int n = walk->nbytes - err;
114
115 if (likely(!(walk->flags & ABLKCIPHER_WALK_SLOW)))
116 n = ablkcipher_done_fast(walk, n);
117 else if (WARN_ON(err)) {
118 err = -EINVAL;
119 goto err;
120 } else
121 n = ablkcipher_done_slow(walk, n);
122
123 nbytes = walk->total - n;
124 err = 0;
125 }
126
127 scatterwalk_done(&walk->in, 0, nbytes);
128 scatterwalk_done(&walk->out, 1, nbytes);
129
130err:
131 walk->total = nbytes;
132 walk->nbytes = nbytes;
133
134 if (nbytes) {
135 crypto_yield(req->base.flags);
136 return ablkcipher_walk_next(req, walk);
137 }
138
139 if (walk->iv != req->info)
140 memcpy(req->info, walk->iv, tfm->crt_ablkcipher.ivsize);
141 kfree(walk->iv_buffer);
142
143 return err;
144}
145EXPORT_SYMBOL_GPL(ablkcipher_walk_done);
146
147static inline int ablkcipher_next_slow(struct ablkcipher_request *req,
148 struct ablkcipher_walk *walk,
149 unsigned int bsize,
150 unsigned int alignmask,
151 void **src_p, void **dst_p)
152{
153 unsigned aligned_bsize = ALIGN(bsize, alignmask + 1);
154 struct ablkcipher_buffer *p;
155 void *src, *dst, *base;
156 unsigned int n;
157
158 n = ALIGN(sizeof(struct ablkcipher_buffer), alignmask + 1);
159 n += (aligned_bsize * 3 - (alignmask + 1) +
160 (alignmask & ~(crypto_tfm_ctx_alignment() - 1)));
161
162 p = kmalloc(n, GFP_ATOMIC);
163 if (!p)
164 return ablkcipher_walk_done(req, walk, -ENOMEM);
165
166 base = p + 1;
167
168 dst = (u8 *)ALIGN((unsigned long)base, alignmask + 1);
169 src = dst = ablkcipher_get_spot(dst, bsize);
170
171 p->len = bsize;
172 p->data = dst;
173
174 scatterwalk_copychunks(src, &walk->in, bsize, 0);
175
176 ablkcipher_queue_write(walk, p);
177
178 walk->nbytes = bsize;
179 walk->flags |= ABLKCIPHER_WALK_SLOW;
180
181 *src_p = src;
182 *dst_p = dst;
183
184 return 0;
185}
186
187static inline int ablkcipher_copy_iv(struct ablkcipher_walk *walk,
188 struct crypto_tfm *tfm,
189 unsigned int alignmask)
190{
191 unsigned bs = walk->blocksize;
192 unsigned int ivsize = tfm->crt_ablkcipher.ivsize;
193 unsigned aligned_bs = ALIGN(bs, alignmask + 1);
194 unsigned int size = aligned_bs * 2 + ivsize + max(aligned_bs, ivsize) -
195 (alignmask + 1);
196 u8 *iv;
197
198 size += alignmask & ~(crypto_tfm_ctx_alignment() - 1);
199 walk->iv_buffer = kmalloc(size, GFP_ATOMIC);
200 if (!walk->iv_buffer)
201 return -ENOMEM;
202
203 iv = (u8 *)ALIGN((unsigned long)walk->iv_buffer, alignmask + 1);
204 iv = ablkcipher_get_spot(iv, bs) + aligned_bs;
205 iv = ablkcipher_get_spot(iv, bs) + aligned_bs;
206 iv = ablkcipher_get_spot(iv, ivsize);
207
208 walk->iv = memcpy(iv, walk->iv, ivsize);
209 return 0;
210}
211
212static inline int ablkcipher_next_fast(struct ablkcipher_request *req,
213 struct ablkcipher_walk *walk)
214{
215 walk->src.page = scatterwalk_page(&walk->in);
216 walk->src.offset = offset_in_page(walk->in.offset);
217 walk->dst.page = scatterwalk_page(&walk->out);
218 walk->dst.offset = offset_in_page(walk->out.offset);
219
220 return 0;
221}
222
223static int ablkcipher_walk_next(struct ablkcipher_request *req,
224 struct ablkcipher_walk *walk)
225{
226 struct crypto_tfm *tfm = req->base.tfm;
227 unsigned int alignmask, bsize, n;
228 void *src, *dst;
229 int err;
230
231 alignmask = crypto_tfm_alg_alignmask(tfm);
232 n = walk->total;
233 if (unlikely(n < crypto_tfm_alg_blocksize(tfm))) {
234 req->base.flags |= CRYPTO_TFM_RES_BAD_BLOCK_LEN;
235 return ablkcipher_walk_done(req, walk, -EINVAL);
236 }
237
238 walk->flags &= ~ABLKCIPHER_WALK_SLOW;
239 src = dst = NULL;
240
241 bsize = min(walk->blocksize, n);
242 n = scatterwalk_clamp(&walk->in, n);
243 n = scatterwalk_clamp(&walk->out, n);
244
245 if (n < bsize ||
246 !scatterwalk_aligned(&walk->in, alignmask) ||
247 !scatterwalk_aligned(&walk->out, alignmask)) {
248 err = ablkcipher_next_slow(req, walk, bsize, alignmask,
249 &src, &dst);
250 goto set_phys_lowmem;
251 }
252
253 walk->nbytes = n;
254
255 return ablkcipher_next_fast(req, walk);
256
257set_phys_lowmem:
258 if (err >= 0) {
259 walk->src.page = virt_to_page(src);
260 walk->dst.page = virt_to_page(dst);
261 walk->src.offset = ((unsigned long)src & (PAGE_SIZE - 1));
262 walk->dst.offset = ((unsigned long)dst & (PAGE_SIZE - 1));
263 }
264
265 return err;
266}
267
268static int ablkcipher_walk_first(struct ablkcipher_request *req,
269 struct ablkcipher_walk *walk)
270{
271 struct crypto_tfm *tfm = req->base.tfm;
272 unsigned int alignmask;
273
274 alignmask = crypto_tfm_alg_alignmask(tfm);
275 if (WARN_ON_ONCE(in_irq()))
276 return -EDEADLK;
277
278 walk->iv = req->info;
279 walk->nbytes = walk->total;
280 if (unlikely(!walk->total))
281 return 0;
282
283 walk->iv_buffer = NULL;
284 if (unlikely(((unsigned long)walk->iv & alignmask))) {
285 int err = ablkcipher_copy_iv(walk, tfm, alignmask);
286
287 if (err)
288 return err;
289 }
290
291 scatterwalk_start(&walk->in, walk->in.sg);
292 scatterwalk_start(&walk->out, walk->out.sg);
293
294 return ablkcipher_walk_next(req, walk);
295}
296
297int ablkcipher_walk_phys(struct ablkcipher_request *req,
298 struct ablkcipher_walk *walk)
299{
300 walk->blocksize = crypto_tfm_alg_blocksize(req->base.tfm);
301 return ablkcipher_walk_first(req, walk);
302}
303EXPORT_SYMBOL_GPL(ablkcipher_walk_phys);
304
305static int setkey_unaligned(struct crypto_ablkcipher *tfm, const u8 *key,
306 unsigned int keylen)
307{
308 struct ablkcipher_alg *cipher = crypto_ablkcipher_alg(tfm);
309 unsigned long alignmask = crypto_ablkcipher_alignmask(tfm);
310 int ret;
311 u8 *buffer, *alignbuffer;
312 unsigned long absize;
313
314 absize = keylen + alignmask;
315 buffer = kmalloc(absize, GFP_ATOMIC);
316 if (!buffer)
317 return -ENOMEM;
318
319 alignbuffer = (u8 *)ALIGN((unsigned long)buffer, alignmask + 1);
320 memcpy(alignbuffer, key, keylen);
321 ret = cipher->setkey(tfm, alignbuffer, keylen);
322 memset(alignbuffer, 0, keylen);
323 kfree(buffer);
324 return ret;
325}
326
327static int setkey(struct crypto_ablkcipher *tfm, const u8 *key,
328 unsigned int keylen)
329{
330 struct ablkcipher_alg *cipher = crypto_ablkcipher_alg(tfm);
331 unsigned long alignmask = crypto_ablkcipher_alignmask(tfm);
332
333 if (keylen < cipher->min_keysize || keylen > cipher->max_keysize) {
334 crypto_ablkcipher_set_flags(tfm, CRYPTO_TFM_RES_BAD_KEY_LEN);
335 return -EINVAL;
336 }
337
338 if ((unsigned long)key & alignmask)
339 return setkey_unaligned(tfm, key, keylen);
340
341 return cipher->setkey(tfm, key, keylen);
342}
343
344static unsigned int crypto_ablkcipher_ctxsize(struct crypto_alg *alg, u32 type,
345 u32 mask)
346{
347 return alg->cra_ctxsize;
348}
349
350static int crypto_init_ablkcipher_ops(struct crypto_tfm *tfm, u32 type,
351 u32 mask)
352{
353 struct ablkcipher_alg *alg = &tfm->__crt_alg->cra_ablkcipher;
354 struct ablkcipher_tfm *crt = &tfm->crt_ablkcipher;
355
356 if (alg->ivsize > PAGE_SIZE / 8)
357 return -EINVAL;
358
359 crt->setkey = setkey;
360 crt->encrypt = alg->encrypt;
361 crt->decrypt = alg->decrypt;
362 crt->base = __crypto_ablkcipher_cast(tfm);
363 crt->ivsize = alg->ivsize;
364
365 return 0;
366}
367
368#ifdef CONFIG_NET
369static int crypto_ablkcipher_report(struct sk_buff *skb, struct crypto_alg *alg)
370{
371 struct crypto_report_blkcipher rblkcipher;
372
373 strncpy(rblkcipher.type, "ablkcipher", sizeof(rblkcipher.type));
374 strncpy(rblkcipher.geniv, alg->cra_ablkcipher.geniv ?: "<default>",
375 sizeof(rblkcipher.geniv));
376
377 rblkcipher.blocksize = alg->cra_blocksize;
378 rblkcipher.min_keysize = alg->cra_ablkcipher.min_keysize;
379 rblkcipher.max_keysize = alg->cra_ablkcipher.max_keysize;
380 rblkcipher.ivsize = alg->cra_ablkcipher.ivsize;
381
382 if (nla_put(skb, CRYPTOCFGA_REPORT_BLKCIPHER,
383 sizeof(struct crypto_report_blkcipher), &rblkcipher))
384 goto nla_put_failure;
385 return 0;
386
387nla_put_failure:
388 return -EMSGSIZE;
389}
390#else
391static int crypto_ablkcipher_report(struct sk_buff *skb, struct crypto_alg *alg)
392{
393 return -ENOSYS;
394}
395#endif
396
397static void crypto_ablkcipher_show(struct seq_file *m, struct crypto_alg *alg)
398 __maybe_unused;
399static void crypto_ablkcipher_show(struct seq_file *m, struct crypto_alg *alg)
400{
401 struct ablkcipher_alg *ablkcipher = &alg->cra_ablkcipher;
402
403 seq_printf(m, "type : ablkcipher\n");
404 seq_printf(m, "async : %s\n", alg->cra_flags & CRYPTO_ALG_ASYNC ?
405 "yes" : "no");
406 seq_printf(m, "blocksize : %u\n", alg->cra_blocksize);
407 seq_printf(m, "min keysize : %u\n", ablkcipher->min_keysize);
408 seq_printf(m, "max keysize : %u\n", ablkcipher->max_keysize);
409 seq_printf(m, "ivsize : %u\n", ablkcipher->ivsize);
410 seq_printf(m, "geniv : %s\n", ablkcipher->geniv ?: "<default>");
411}
412
413const struct crypto_type crypto_ablkcipher_type = {
414 .ctxsize = crypto_ablkcipher_ctxsize,
415 .init = crypto_init_ablkcipher_ops,
416#ifdef CONFIG_PROC_FS
417 .show = crypto_ablkcipher_show,
418#endif
419 .report = crypto_ablkcipher_report,
420};
421EXPORT_SYMBOL_GPL(crypto_ablkcipher_type);
422
423static int crypto_init_givcipher_ops(struct crypto_tfm *tfm, u32 type,
424 u32 mask)
425{
426 struct ablkcipher_alg *alg = &tfm->__crt_alg->cra_ablkcipher;
427 struct ablkcipher_tfm *crt = &tfm->crt_ablkcipher;
428
429 if (alg->ivsize > PAGE_SIZE / 8)
430 return -EINVAL;
431
432 crt->setkey = tfm->__crt_alg->cra_flags & CRYPTO_ALG_GENIV ?
433 alg->setkey : setkey;
434 crt->encrypt = alg->encrypt;
435 crt->decrypt = alg->decrypt;
436 crt->base = __crypto_ablkcipher_cast(tfm);
437 crt->ivsize = alg->ivsize;
438
439 return 0;
440}
441
442#ifdef CONFIG_NET
443static int crypto_givcipher_report(struct sk_buff *skb, struct crypto_alg *alg)
444{
445 struct crypto_report_blkcipher rblkcipher;
446
447 strncpy(rblkcipher.type, "givcipher", sizeof(rblkcipher.type));
448 strncpy(rblkcipher.geniv, alg->cra_ablkcipher.geniv ?: "<built-in>",
449 sizeof(rblkcipher.geniv));
450
451 rblkcipher.blocksize = alg->cra_blocksize;
452 rblkcipher.min_keysize = alg->cra_ablkcipher.min_keysize;
453 rblkcipher.max_keysize = alg->cra_ablkcipher.max_keysize;
454 rblkcipher.ivsize = alg->cra_ablkcipher.ivsize;
455
456 if (nla_put(skb, CRYPTOCFGA_REPORT_BLKCIPHER,
457 sizeof(struct crypto_report_blkcipher), &rblkcipher))
458 goto nla_put_failure;
459 return 0;
460
461nla_put_failure:
462 return -EMSGSIZE;
463}
464#else
465static int crypto_givcipher_report(struct sk_buff *skb, struct crypto_alg *alg)
466{
467 return -ENOSYS;
468}
469#endif
470
471static void crypto_givcipher_show(struct seq_file *m, struct crypto_alg *alg)
472 __maybe_unused;
473static void crypto_givcipher_show(struct seq_file *m, struct crypto_alg *alg)
474{
475 struct ablkcipher_alg *ablkcipher = &alg->cra_ablkcipher;
476
477 seq_printf(m, "type : givcipher\n");
478 seq_printf(m, "async : %s\n", alg->cra_flags & CRYPTO_ALG_ASYNC ?
479 "yes" : "no");
480 seq_printf(m, "blocksize : %u\n", alg->cra_blocksize);
481 seq_printf(m, "min keysize : %u\n", ablkcipher->min_keysize);
482 seq_printf(m, "max keysize : %u\n", ablkcipher->max_keysize);
483 seq_printf(m, "ivsize : %u\n", ablkcipher->ivsize);
484 seq_printf(m, "geniv : %s\n", ablkcipher->geniv ?: "<built-in>");
485}
486
487const struct crypto_type crypto_givcipher_type = {
488 .ctxsize = crypto_ablkcipher_ctxsize,
489 .init = crypto_init_givcipher_ops,
490#ifdef CONFIG_PROC_FS
491 .show = crypto_givcipher_show,
492#endif
493 .report = crypto_givcipher_report,
494};
495EXPORT_SYMBOL_GPL(crypto_givcipher_type);
496
