1004a403cSLoc Ho /* 2004a403cSLoc Ho * Asynchronous Cryptographic Hash operations. 3004a403cSLoc Ho * 4004a403cSLoc Ho * This is the asynchronous version of hash.c with notification of 5004a403cSLoc Ho * completion via a callback. 6004a403cSLoc Ho * 7004a403cSLoc Ho * Copyright (c) 2008 Loc Ho <lho@amcc.com> 8004a403cSLoc Ho * 9004a403cSLoc Ho * This program is free software; you can redistribute it and/or modify it 10004a403cSLoc Ho * under the terms of the GNU General Public License as published by the Free 11004a403cSLoc Ho * Software Foundation; either version 2 of the License, or (at your option) 12004a403cSLoc Ho * any later version. 13004a403cSLoc Ho * 14004a403cSLoc Ho */ 15004a403cSLoc Ho 1620036252SHerbert Xu #include <crypto/internal/hash.h> 1720036252SHerbert Xu #include <crypto/scatterwalk.h> 1875ecb231SHerbert Xu #include <linux/bug.h> 19004a403cSLoc Ho #include <linux/err.h> 20004a403cSLoc Ho #include <linux/kernel.h> 21004a403cSLoc Ho #include <linux/module.h> 22004a403cSLoc Ho #include <linux/sched.h> 23004a403cSLoc Ho #include <linux/slab.h> 24004a403cSLoc Ho #include <linux/seq_file.h> 256238cbaeSSteffen Klassert #include <linux/cryptouser.h> 26d8c34b94SGideon Israel Dsouza #include <linux/compiler.h> 276238cbaeSSteffen Klassert #include <net/netlink.h> 28004a403cSLoc Ho 29004a403cSLoc Ho #include "internal.h" 30004a403cSLoc Ho 3166f6ce5eSHerbert Xu struct ahash_request_priv { 3266f6ce5eSHerbert Xu crypto_completion_t complete; 3366f6ce5eSHerbert Xu void *data; 3466f6ce5eSHerbert Xu u8 *result; 35ef0579b6SHerbert Xu u32 flags; 3666f6ce5eSHerbert Xu void *ubuf[] CRYPTO_MINALIGN_ATTR; 3766f6ce5eSHerbert Xu }; 3866f6ce5eSHerbert Xu 3988056ec3SHerbert Xu static inline struct ahash_alg *crypto_ahash_alg(struct crypto_ahash *hash) 4088056ec3SHerbert Xu { 4188056ec3SHerbert Xu return container_of(crypto_hash_alg_common(hash), struct ahash_alg, 4288056ec3SHerbert Xu halg); 4388056ec3SHerbert Xu } 4488056ec3SHerbert Xu 4520036252SHerbert Xu static int hash_walk_next(struct crypto_hash_walk *walk) 4620036252SHerbert Xu { 4720036252SHerbert Xu unsigned int alignmask = walk->alignmask; 4820036252SHerbert Xu unsigned int offset = walk->offset; 4920036252SHerbert Xu unsigned int nbytes = min(walk->entrylen, 5020036252SHerbert Xu ((unsigned int)(PAGE_SIZE)) - offset); 5120036252SHerbert Xu 5275ecb231SHerbert Xu if (walk->flags & CRYPTO_ALG_ASYNC) 5375ecb231SHerbert Xu walk->data = kmap(walk->pg); 5475ecb231SHerbert Xu else 55f0dfc0b0SCong Wang walk->data = kmap_atomic(walk->pg); 5620036252SHerbert Xu walk->data += offset; 5720036252SHerbert Xu 5823a75eeeSSzilveszter Ördög if (offset & alignmask) { 5923a75eeeSSzilveszter Ördög unsigned int unaligned = alignmask + 1 - (offset & alignmask); 60b516d514SJoshua I. James 6123a75eeeSSzilveszter Ördög if (nbytes > unaligned) 6223a75eeeSSzilveszter Ördög nbytes = unaligned; 6323a75eeeSSzilveszter Ördög } 6420036252SHerbert Xu 6520036252SHerbert Xu walk->entrylen -= nbytes; 6620036252SHerbert Xu return nbytes; 6720036252SHerbert Xu } 6820036252SHerbert Xu 6920036252SHerbert Xu static int hash_walk_new_entry(struct crypto_hash_walk *walk) 7020036252SHerbert Xu { 7120036252SHerbert Xu struct scatterlist *sg; 7220036252SHerbert Xu 7320036252SHerbert Xu sg = walk->sg; 7420036252SHerbert Xu walk->offset = sg->offset; 7513f4bb78SHerbert Xu walk->pg = sg_page(walk->sg) + (walk->offset >> PAGE_SHIFT); 7613f4bb78SHerbert Xu walk->offset = offset_in_page(walk->offset); 7720036252SHerbert Xu walk->entrylen = sg->length; 7820036252SHerbert Xu 7920036252SHerbert Xu if (walk->entrylen > walk->total) 8020036252SHerbert Xu walk->entrylen = walk->total; 8120036252SHerbert Xu walk->total -= walk->entrylen; 8220036252SHerbert Xu 8320036252SHerbert Xu return hash_walk_next(walk); 8420036252SHerbert Xu } 8520036252SHerbert Xu 8620036252SHerbert Xu int crypto_hash_walk_done(struct crypto_hash_walk *walk, int err) 8720036252SHerbert Xu { 8820036252SHerbert Xu unsigned int alignmask = walk->alignmask; 8920036252SHerbert Xu unsigned int nbytes = walk->entrylen; 9020036252SHerbert Xu 9120036252SHerbert Xu walk->data -= walk->offset; 9220036252SHerbert Xu 9320036252SHerbert Xu if (nbytes && walk->offset & alignmask && !err) { 9420036252SHerbert Xu walk->offset = ALIGN(walk->offset, alignmask + 1); 9520036252SHerbert Xu walk->data += walk->offset; 9620036252SHerbert Xu 9720036252SHerbert Xu nbytes = min(nbytes, 9820036252SHerbert Xu ((unsigned int)(PAGE_SIZE)) - walk->offset); 9920036252SHerbert Xu walk->entrylen -= nbytes; 10020036252SHerbert Xu 10120036252SHerbert Xu return nbytes; 10220036252SHerbert Xu } 10320036252SHerbert Xu 10475ecb231SHerbert Xu if (walk->flags & CRYPTO_ALG_ASYNC) 10575ecb231SHerbert Xu kunmap(walk->pg); 10675ecb231SHerbert Xu else { 107f0dfc0b0SCong Wang kunmap_atomic(walk->data); 10875ecb231SHerbert Xu /* 10975ecb231SHerbert Xu * The may sleep test only makes sense for sync users. 11075ecb231SHerbert Xu * Async users don't need to sleep here anyway. 11175ecb231SHerbert Xu */ 11220036252SHerbert Xu crypto_yield(walk->flags); 11375ecb231SHerbert Xu } 11420036252SHerbert Xu 11520036252SHerbert Xu if (err) 11620036252SHerbert Xu return err; 11720036252SHerbert Xu 118d315a0e0SHerbert Xu if (nbytes) { 11920036252SHerbert Xu walk->offset = 0; 120d315a0e0SHerbert Xu walk->pg++; 12120036252SHerbert Xu return hash_walk_next(walk); 122d315a0e0SHerbert Xu } 12320036252SHerbert Xu 12420036252SHerbert Xu if (!walk->total) 12520036252SHerbert Xu return 0; 12620036252SHerbert Xu 1275be4d4c9SCristian Stoica walk->sg = sg_next(walk->sg); 12820036252SHerbert Xu 12920036252SHerbert Xu return hash_walk_new_entry(walk); 13020036252SHerbert Xu } 13120036252SHerbert Xu EXPORT_SYMBOL_GPL(crypto_hash_walk_done); 13220036252SHerbert Xu 13320036252SHerbert Xu int crypto_hash_walk_first(struct ahash_request *req, 13420036252SHerbert Xu struct crypto_hash_walk *walk) 13520036252SHerbert Xu { 13620036252SHerbert Xu walk->total = req->nbytes; 13720036252SHerbert Xu 1386d9529c5STim Chen if (!walk->total) { 1396d9529c5STim Chen walk->entrylen = 0; 14020036252SHerbert Xu return 0; 1416d9529c5STim Chen } 14220036252SHerbert Xu 14320036252SHerbert Xu walk->alignmask = crypto_ahash_alignmask(crypto_ahash_reqtfm(req)); 14420036252SHerbert Xu walk->sg = req->src; 14575ecb231SHerbert Xu walk->flags = req->base.flags & CRYPTO_TFM_REQ_MASK; 14620036252SHerbert Xu 14720036252SHerbert Xu return hash_walk_new_entry(walk); 14820036252SHerbert Xu } 14920036252SHerbert Xu EXPORT_SYMBOL_GPL(crypto_hash_walk_first); 15020036252SHerbert Xu 15175ecb231SHerbert Xu int crypto_ahash_walk_first(struct ahash_request *req, 15275ecb231SHerbert Xu struct crypto_hash_walk *walk) 15375ecb231SHerbert Xu { 15475ecb231SHerbert Xu walk->total = req->nbytes; 15575ecb231SHerbert Xu 1566d9529c5STim Chen if (!walk->total) { 1576d9529c5STim Chen walk->entrylen = 0; 15875ecb231SHerbert Xu return 0; 1596d9529c5STim Chen } 16075ecb231SHerbert Xu 16175ecb231SHerbert Xu walk->alignmask = crypto_ahash_alignmask(crypto_ahash_reqtfm(req)); 16275ecb231SHerbert Xu walk->sg = req->src; 16375ecb231SHerbert Xu walk->flags = req->base.flags & CRYPTO_TFM_REQ_MASK; 16475ecb231SHerbert Xu walk->flags |= CRYPTO_ALG_ASYNC; 16575ecb231SHerbert Xu 16675ecb231SHerbert Xu BUILD_BUG_ON(CRYPTO_TFM_REQ_MASK & CRYPTO_ALG_ASYNC); 16775ecb231SHerbert Xu 16875ecb231SHerbert Xu return hash_walk_new_entry(walk); 16975ecb231SHerbert Xu } 17075ecb231SHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_walk_first); 17175ecb231SHerbert Xu 172004a403cSLoc Ho static int ahash_setkey_unaligned(struct crypto_ahash *tfm, const u8 *key, 173004a403cSLoc Ho unsigned int keylen) 174004a403cSLoc Ho { 175004a403cSLoc Ho unsigned long alignmask = crypto_ahash_alignmask(tfm); 176004a403cSLoc Ho int ret; 177004a403cSLoc Ho u8 *buffer, *alignbuffer; 178004a403cSLoc Ho unsigned long absize; 179004a403cSLoc Ho 180004a403cSLoc Ho absize = keylen + alignmask; 181093900c2SHerbert Xu buffer = kmalloc(absize, GFP_KERNEL); 182004a403cSLoc Ho if (!buffer) 183004a403cSLoc Ho return -ENOMEM; 184004a403cSLoc Ho 185004a403cSLoc Ho alignbuffer = (u8 *)ALIGN((unsigned long)buffer, alignmask + 1); 186004a403cSLoc Ho memcpy(alignbuffer, key, keylen); 187a70c5225SHerbert Xu ret = tfm->setkey(tfm, alignbuffer, keylen); 1888c32c516SHerbert Xu kzfree(buffer); 189004a403cSLoc Ho return ret; 190004a403cSLoc Ho } 191004a403cSLoc Ho 19266f6ce5eSHerbert Xu int crypto_ahash_setkey(struct crypto_ahash *tfm, const u8 *key, 193004a403cSLoc Ho unsigned int keylen) 194004a403cSLoc Ho { 195004a403cSLoc Ho unsigned long alignmask = crypto_ahash_alignmask(tfm); 196*9fa68f62SEric Biggers int err; 197004a403cSLoc Ho 198004a403cSLoc Ho if ((unsigned long)key & alignmask) 199*9fa68f62SEric Biggers err = ahash_setkey_unaligned(tfm, key, keylen); 200*9fa68f62SEric Biggers else 201*9fa68f62SEric Biggers err = tfm->setkey(tfm, key, keylen); 202004a403cSLoc Ho 203*9fa68f62SEric Biggers if (err) 204*9fa68f62SEric Biggers return err; 205*9fa68f62SEric Biggers 206*9fa68f62SEric Biggers crypto_ahash_clear_flags(tfm, CRYPTO_TFM_NEED_KEY); 207*9fa68f62SEric Biggers return 0; 208004a403cSLoc Ho } 20966f6ce5eSHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_setkey); 210004a403cSLoc Ho 2113751f402SHerbert Xu static int ahash_nosetkey(struct crypto_ahash *tfm, const u8 *key, 2123751f402SHerbert Xu unsigned int keylen) 2133751f402SHerbert Xu { 2143751f402SHerbert Xu return -ENOSYS; 2153751f402SHerbert Xu } 2163751f402SHerbert Xu 21766f6ce5eSHerbert Xu static inline unsigned int ahash_align_buffer_size(unsigned len, 21866f6ce5eSHerbert Xu unsigned long mask) 21966f6ce5eSHerbert Xu { 22066f6ce5eSHerbert Xu return len + (mask & ~(crypto_tfm_ctx_alignment() - 1)); 22166f6ce5eSHerbert Xu } 22266f6ce5eSHerbert Xu 2231ffc9fbdSMarek Vasut static int ahash_save_req(struct ahash_request *req, crypto_completion_t cplt) 22466f6ce5eSHerbert Xu { 22566f6ce5eSHerbert Xu struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 22666f6ce5eSHerbert Xu unsigned long alignmask = crypto_ahash_alignmask(tfm); 22766f6ce5eSHerbert Xu unsigned int ds = crypto_ahash_digestsize(tfm); 22866f6ce5eSHerbert Xu struct ahash_request_priv *priv; 22966f6ce5eSHerbert Xu 23066f6ce5eSHerbert Xu priv = kmalloc(sizeof(*priv) + ahash_align_buffer_size(ds, alignmask), 23166f6ce5eSHerbert Xu (req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP) ? 2325befbd5aSSteffen Klassert GFP_KERNEL : GFP_ATOMIC); 23366f6ce5eSHerbert Xu if (!priv) 23466f6ce5eSHerbert Xu return -ENOMEM; 23566f6ce5eSHerbert Xu 236ab6bf4e5SMarek Vasut /* 237ab6bf4e5SMarek Vasut * WARNING: Voodoo programming below! 238ab6bf4e5SMarek Vasut * 239ab6bf4e5SMarek Vasut * The code below is obscure and hard to understand, thus explanation 240ab6bf4e5SMarek Vasut * is necessary. See include/crypto/hash.h and include/linux/crypto.h 241ab6bf4e5SMarek Vasut * to understand the layout of structures used here! 242ab6bf4e5SMarek Vasut * 243ab6bf4e5SMarek Vasut * The code here will replace portions of the ORIGINAL request with 244ab6bf4e5SMarek Vasut * pointers to new code and buffers so the hashing operation can store 245ab6bf4e5SMarek Vasut * the result in aligned buffer. We will call the modified request 246ab6bf4e5SMarek Vasut * an ADJUSTED request. 247ab6bf4e5SMarek Vasut * 248ab6bf4e5SMarek Vasut * The newly mangled request will look as such: 249ab6bf4e5SMarek Vasut * 250ab6bf4e5SMarek Vasut * req { 251ab6bf4e5SMarek Vasut * .result = ADJUSTED[new aligned buffer] 252ab6bf4e5SMarek Vasut * .base.complete = ADJUSTED[pointer to completion function] 253ab6bf4e5SMarek Vasut * .base.data = ADJUSTED[*req (pointer to self)] 254ab6bf4e5SMarek Vasut * .priv = ADJUSTED[new priv] { 255ab6bf4e5SMarek Vasut * .result = ORIGINAL(result) 256ab6bf4e5SMarek Vasut * .complete = ORIGINAL(base.complete) 257ab6bf4e5SMarek Vasut * .data = ORIGINAL(base.data) 258ab6bf4e5SMarek Vasut * } 259ab6bf4e5SMarek Vasut */ 260ab6bf4e5SMarek Vasut 26166f6ce5eSHerbert Xu priv->result = req->result; 26266f6ce5eSHerbert Xu priv->complete = req->base.complete; 26366f6ce5eSHerbert Xu priv->data = req->base.data; 264ef0579b6SHerbert Xu priv->flags = req->base.flags; 265ef0579b6SHerbert Xu 266ab6bf4e5SMarek Vasut /* 267ab6bf4e5SMarek Vasut * WARNING: We do not backup req->priv here! The req->priv 268ab6bf4e5SMarek Vasut * is for internal use of the Crypto API and the 269ab6bf4e5SMarek Vasut * user must _NOT_ _EVER_ depend on it's content! 270ab6bf4e5SMarek Vasut */ 27166f6ce5eSHerbert Xu 27266f6ce5eSHerbert Xu req->result = PTR_ALIGN((u8 *)priv->ubuf, alignmask + 1); 2731ffc9fbdSMarek Vasut req->base.complete = cplt; 27466f6ce5eSHerbert Xu req->base.data = req; 27566f6ce5eSHerbert Xu req->priv = priv; 27666f6ce5eSHerbert Xu 2771ffc9fbdSMarek Vasut return 0; 2781ffc9fbdSMarek Vasut } 2791ffc9fbdSMarek Vasut 280ef0579b6SHerbert Xu static void ahash_restore_req(struct ahash_request *req, int err) 2811ffc9fbdSMarek Vasut { 2821ffc9fbdSMarek Vasut struct ahash_request_priv *priv = req->priv; 2831ffc9fbdSMarek Vasut 284ef0579b6SHerbert Xu if (!err) 285ef0579b6SHerbert Xu memcpy(priv->result, req->result, 286ef0579b6SHerbert Xu crypto_ahash_digestsize(crypto_ahash_reqtfm(req))); 287ef0579b6SHerbert Xu 2881ffc9fbdSMarek Vasut /* Restore the original crypto request. */ 2891ffc9fbdSMarek Vasut req->result = priv->result; 290ef0579b6SHerbert Xu 291ef0579b6SHerbert Xu ahash_request_set_callback(req, priv->flags, 292ef0579b6SHerbert Xu priv->complete, priv->data); 2931ffc9fbdSMarek Vasut req->priv = NULL; 2941ffc9fbdSMarek Vasut 2951ffc9fbdSMarek Vasut /* Free the req->priv.priv from the ADJUSTED request. */ 2961ffc9fbdSMarek Vasut kzfree(priv); 2971ffc9fbdSMarek Vasut } 2981ffc9fbdSMarek Vasut 299ef0579b6SHerbert Xu static void ahash_notify_einprogress(struct ahash_request *req) 3001ffc9fbdSMarek Vasut { 3011ffc9fbdSMarek Vasut struct ahash_request_priv *priv = req->priv; 302ef0579b6SHerbert Xu struct crypto_async_request oreq; 3031ffc9fbdSMarek Vasut 304ef0579b6SHerbert Xu oreq.data = priv->data; 3051ffc9fbdSMarek Vasut 306ef0579b6SHerbert Xu priv->complete(&oreq, -EINPROGRESS); 3071ffc9fbdSMarek Vasut } 3081ffc9fbdSMarek Vasut 3091ffc9fbdSMarek Vasut static void ahash_op_unaligned_done(struct crypto_async_request *req, int err) 3101ffc9fbdSMarek Vasut { 3111ffc9fbdSMarek Vasut struct ahash_request *areq = req->data; 3121ffc9fbdSMarek Vasut 313ef0579b6SHerbert Xu if (err == -EINPROGRESS) { 314ef0579b6SHerbert Xu ahash_notify_einprogress(areq); 315ef0579b6SHerbert Xu return; 316ef0579b6SHerbert Xu } 317ef0579b6SHerbert Xu 3181ffc9fbdSMarek Vasut /* 3191ffc9fbdSMarek Vasut * Restore the original request, see ahash_op_unaligned() for what 3201ffc9fbdSMarek Vasut * goes where. 3211ffc9fbdSMarek Vasut * 3221ffc9fbdSMarek Vasut * The "struct ahash_request *req" here is in fact the "req.base" 3231ffc9fbdSMarek Vasut * from the ADJUSTED request from ahash_op_unaligned(), thus as it 3241ffc9fbdSMarek Vasut * is a pointer to self, it is also the ADJUSTED "req" . 3251ffc9fbdSMarek Vasut */ 3261ffc9fbdSMarek Vasut 3271ffc9fbdSMarek Vasut /* First copy req->result into req->priv.result */ 328ef0579b6SHerbert Xu ahash_restore_req(areq, err); 3291ffc9fbdSMarek Vasut 3301ffc9fbdSMarek Vasut /* Complete the ORIGINAL request. */ 3311ffc9fbdSMarek Vasut areq->base.complete(&areq->base, err); 3321ffc9fbdSMarek Vasut } 3331ffc9fbdSMarek Vasut 3341ffc9fbdSMarek Vasut static int ahash_op_unaligned(struct ahash_request *req, 3351ffc9fbdSMarek Vasut int (*op)(struct ahash_request *)) 3361ffc9fbdSMarek Vasut { 3371ffc9fbdSMarek Vasut int err; 3381ffc9fbdSMarek Vasut 3391ffc9fbdSMarek Vasut err = ahash_save_req(req, ahash_op_unaligned_done); 3401ffc9fbdSMarek Vasut if (err) 3411ffc9fbdSMarek Vasut return err; 3421ffc9fbdSMarek Vasut 34366f6ce5eSHerbert Xu err = op(req); 3444e5b0ad5SGilad Ben-Yossef if (err == -EINPROGRESS || err == -EBUSY) 345ef0579b6SHerbert Xu return err; 346ef0579b6SHerbert Xu 347ef0579b6SHerbert Xu ahash_restore_req(req, err); 34866f6ce5eSHerbert Xu 34966f6ce5eSHerbert Xu return err; 35066f6ce5eSHerbert Xu } 35166f6ce5eSHerbert Xu 35266f6ce5eSHerbert Xu static int crypto_ahash_op(struct ahash_request *req, 35366f6ce5eSHerbert Xu int (*op)(struct ahash_request *)) 35466f6ce5eSHerbert Xu { 35566f6ce5eSHerbert Xu struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 35666f6ce5eSHerbert Xu unsigned long alignmask = crypto_ahash_alignmask(tfm); 35766f6ce5eSHerbert Xu 35866f6ce5eSHerbert Xu if ((unsigned long)req->result & alignmask) 35966f6ce5eSHerbert Xu return ahash_op_unaligned(req, op); 36066f6ce5eSHerbert Xu 36166f6ce5eSHerbert Xu return op(req); 36266f6ce5eSHerbert Xu } 36366f6ce5eSHerbert Xu 36466f6ce5eSHerbert Xu int crypto_ahash_final(struct ahash_request *req) 36566f6ce5eSHerbert Xu { 36666f6ce5eSHerbert Xu return crypto_ahash_op(req, crypto_ahash_reqtfm(req)->final); 36766f6ce5eSHerbert Xu } 36866f6ce5eSHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_final); 36966f6ce5eSHerbert Xu 37066f6ce5eSHerbert Xu int crypto_ahash_finup(struct ahash_request *req) 37166f6ce5eSHerbert Xu { 37266f6ce5eSHerbert Xu return crypto_ahash_op(req, crypto_ahash_reqtfm(req)->finup); 37366f6ce5eSHerbert Xu } 37466f6ce5eSHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_finup); 37566f6ce5eSHerbert Xu 37666f6ce5eSHerbert Xu int crypto_ahash_digest(struct ahash_request *req) 37766f6ce5eSHerbert Xu { 378*9fa68f62SEric Biggers struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 379*9fa68f62SEric Biggers 380*9fa68f62SEric Biggers if (crypto_ahash_get_flags(tfm) & CRYPTO_TFM_NEED_KEY) 381*9fa68f62SEric Biggers return -ENOKEY; 382*9fa68f62SEric Biggers 383*9fa68f62SEric Biggers return crypto_ahash_op(req, tfm->digest); 38466f6ce5eSHerbert Xu } 38566f6ce5eSHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_digest); 38666f6ce5eSHerbert Xu 38766f6ce5eSHerbert Xu static void ahash_def_finup_done2(struct crypto_async_request *req, int err) 38866f6ce5eSHerbert Xu { 38966f6ce5eSHerbert Xu struct ahash_request *areq = req->data; 39066f6ce5eSHerbert Xu 391ef0579b6SHerbert Xu if (err == -EINPROGRESS) 392ef0579b6SHerbert Xu return; 393ef0579b6SHerbert Xu 394ef0579b6SHerbert Xu ahash_restore_req(areq, err); 39566f6ce5eSHerbert Xu 396d4a7a0fbSMarek Vasut areq->base.complete(&areq->base, err); 39766f6ce5eSHerbert Xu } 39866f6ce5eSHerbert Xu 39966f6ce5eSHerbert Xu static int ahash_def_finup_finish1(struct ahash_request *req, int err) 40066f6ce5eSHerbert Xu { 40166f6ce5eSHerbert Xu if (err) 40266f6ce5eSHerbert Xu goto out; 40366f6ce5eSHerbert Xu 40466f6ce5eSHerbert Xu req->base.complete = ahash_def_finup_done2; 405ef0579b6SHerbert Xu 40666f6ce5eSHerbert Xu err = crypto_ahash_reqtfm(req)->final(req); 4074e5b0ad5SGilad Ben-Yossef if (err == -EINPROGRESS || err == -EBUSY) 408ef0579b6SHerbert Xu return err; 40966f6ce5eSHerbert Xu 41066f6ce5eSHerbert Xu out: 411ef0579b6SHerbert Xu ahash_restore_req(req, err); 41266f6ce5eSHerbert Xu return err; 41366f6ce5eSHerbert Xu } 41466f6ce5eSHerbert Xu 41566f6ce5eSHerbert Xu static void ahash_def_finup_done1(struct crypto_async_request *req, int err) 41666f6ce5eSHerbert Xu { 41766f6ce5eSHerbert Xu struct ahash_request *areq = req->data; 41866f6ce5eSHerbert Xu 419ef0579b6SHerbert Xu if (err == -EINPROGRESS) { 420ef0579b6SHerbert Xu ahash_notify_einprogress(areq); 421ef0579b6SHerbert Xu return; 422ef0579b6SHerbert Xu } 423ef0579b6SHerbert Xu 424ef0579b6SHerbert Xu areq->base.flags &= ~CRYPTO_TFM_REQ_MAY_SLEEP; 425ef0579b6SHerbert Xu 42666f6ce5eSHerbert Xu err = ahash_def_finup_finish1(areq, err); 427ef0579b6SHerbert Xu if (areq->priv) 428ef0579b6SHerbert Xu return; 42966f6ce5eSHerbert Xu 430d4a7a0fbSMarek Vasut areq->base.complete(&areq->base, err); 43166f6ce5eSHerbert Xu } 43266f6ce5eSHerbert Xu 43366f6ce5eSHerbert Xu static int ahash_def_finup(struct ahash_request *req) 43466f6ce5eSHerbert Xu { 43566f6ce5eSHerbert Xu struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 436d4a7a0fbSMarek Vasut int err; 43766f6ce5eSHerbert Xu 438d4a7a0fbSMarek Vasut err = ahash_save_req(req, ahash_def_finup_done1); 439d4a7a0fbSMarek Vasut if (err) 440d4a7a0fbSMarek Vasut return err; 44166f6ce5eSHerbert Xu 442d4a7a0fbSMarek Vasut err = tfm->update(req); 4434e5b0ad5SGilad Ben-Yossef if (err == -EINPROGRESS || err == -EBUSY) 444ef0579b6SHerbert Xu return err; 445ef0579b6SHerbert Xu 446d4a7a0fbSMarek Vasut return ahash_def_finup_finish1(req, err); 44766f6ce5eSHerbert Xu } 44866f6ce5eSHerbert Xu 44966f6ce5eSHerbert Xu static int ahash_no_export(struct ahash_request *req, void *out) 45066f6ce5eSHerbert Xu { 45166f6ce5eSHerbert Xu return -ENOSYS; 45266f6ce5eSHerbert Xu } 45366f6ce5eSHerbert Xu 45466f6ce5eSHerbert Xu static int ahash_no_import(struct ahash_request *req, const void *in) 45566f6ce5eSHerbert Xu { 45666f6ce5eSHerbert Xu return -ENOSYS; 45766f6ce5eSHerbert Xu } 45866f6ce5eSHerbert Xu 45988056ec3SHerbert Xu static int crypto_ahash_init_tfm(struct crypto_tfm *tfm) 46088056ec3SHerbert Xu { 46188056ec3SHerbert Xu struct crypto_ahash *hash = __crypto_ahash_cast(tfm); 46288056ec3SHerbert Xu struct ahash_alg *alg = crypto_ahash_alg(hash); 46388056ec3SHerbert Xu 46466f6ce5eSHerbert Xu hash->setkey = ahash_nosetkey; 46566f6ce5eSHerbert Xu hash->export = ahash_no_export; 46666f6ce5eSHerbert Xu hash->import = ahash_no_import; 46766f6ce5eSHerbert Xu 46888056ec3SHerbert Xu if (tfm->__crt_alg->cra_type != &crypto_ahash_type) 46988056ec3SHerbert Xu return crypto_init_shash_ops_async(tfm); 47088056ec3SHerbert Xu 47188056ec3SHerbert Xu hash->init = alg->init; 47288056ec3SHerbert Xu hash->update = alg->update; 47388056ec3SHerbert Xu hash->final = alg->final; 47466f6ce5eSHerbert Xu hash->finup = alg->finup ?: ahash_def_finup; 47588056ec3SHerbert Xu hash->digest = alg->digest; 47666f6ce5eSHerbert Xu 477a5596d63SHerbert Xu if (alg->setkey) { 47866f6ce5eSHerbert Xu hash->setkey = alg->setkey; 479*9fa68f62SEric Biggers if (!(alg->halg.base.cra_flags & CRYPTO_ALG_OPTIONAL_KEY)) 480*9fa68f62SEric Biggers crypto_ahash_set_flags(hash, CRYPTO_TFM_NEED_KEY); 481a5596d63SHerbert Xu } 48266f6ce5eSHerbert Xu if (alg->export) 48366f6ce5eSHerbert Xu hash->export = alg->export; 48466f6ce5eSHerbert Xu if (alg->import) 48566f6ce5eSHerbert Xu hash->import = alg->import; 48688056ec3SHerbert Xu 48788056ec3SHerbert Xu return 0; 48888056ec3SHerbert Xu } 48988056ec3SHerbert Xu 49088056ec3SHerbert Xu static unsigned int crypto_ahash_extsize(struct crypto_alg *alg) 49188056ec3SHerbert Xu { 4922495cf25SHerbert Xu if (alg->cra_type != &crypto_ahash_type) 49388056ec3SHerbert Xu return sizeof(struct crypto_shash *); 4942495cf25SHerbert Xu 4952495cf25SHerbert Xu return crypto_alg_extsize(alg); 49688056ec3SHerbert Xu } 49788056ec3SHerbert Xu 4983acc8473SHerbert Xu #ifdef CONFIG_NET 4996238cbaeSSteffen Klassert static int crypto_ahash_report(struct sk_buff *skb, struct crypto_alg *alg) 5006238cbaeSSteffen Klassert { 5016238cbaeSSteffen Klassert struct crypto_report_hash rhash; 5026238cbaeSSteffen Klassert 5039a5467bfSMathias Krause strncpy(rhash.type, "ahash", sizeof(rhash.type)); 5046238cbaeSSteffen Klassert 5056238cbaeSSteffen Klassert rhash.blocksize = alg->cra_blocksize; 5066238cbaeSSteffen Klassert rhash.digestsize = __crypto_hash_alg_common(alg)->digestsize; 5076238cbaeSSteffen Klassert 5086662df33SDavid S. Miller if (nla_put(skb, CRYPTOCFGA_REPORT_HASH, 5096662df33SDavid S. Miller sizeof(struct crypto_report_hash), &rhash)) 5106662df33SDavid S. Miller goto nla_put_failure; 5116238cbaeSSteffen Klassert return 0; 5126238cbaeSSteffen Klassert 5136238cbaeSSteffen Klassert nla_put_failure: 5146238cbaeSSteffen Klassert return -EMSGSIZE; 5156238cbaeSSteffen Klassert } 5163acc8473SHerbert Xu #else 5173acc8473SHerbert Xu static int crypto_ahash_report(struct sk_buff *skb, struct crypto_alg *alg) 5183acc8473SHerbert Xu { 5193acc8473SHerbert Xu return -ENOSYS; 5203acc8473SHerbert Xu } 5213acc8473SHerbert Xu #endif 5226238cbaeSSteffen Klassert 523004a403cSLoc Ho static void crypto_ahash_show(struct seq_file *m, struct crypto_alg *alg) 524d8c34b94SGideon Israel Dsouza __maybe_unused; 525004a403cSLoc Ho static void crypto_ahash_show(struct seq_file *m, struct crypto_alg *alg) 526004a403cSLoc Ho { 527004a403cSLoc Ho seq_printf(m, "type : ahash\n"); 528004a403cSLoc Ho seq_printf(m, "async : %s\n", alg->cra_flags & CRYPTO_ALG_ASYNC ? 529004a403cSLoc Ho "yes" : "no"); 530004a403cSLoc Ho seq_printf(m, "blocksize : %u\n", alg->cra_blocksize); 53188056ec3SHerbert Xu seq_printf(m, "digestsize : %u\n", 53288056ec3SHerbert Xu __crypto_hash_alg_common(alg)->digestsize); 533004a403cSLoc Ho } 534004a403cSLoc Ho 535004a403cSLoc Ho const struct crypto_type crypto_ahash_type = { 53688056ec3SHerbert Xu .extsize = crypto_ahash_extsize, 53788056ec3SHerbert Xu .init_tfm = crypto_ahash_init_tfm, 538004a403cSLoc Ho #ifdef CONFIG_PROC_FS 539004a403cSLoc Ho .show = crypto_ahash_show, 540004a403cSLoc Ho #endif 5416238cbaeSSteffen Klassert .report = crypto_ahash_report, 54288056ec3SHerbert Xu .maskclear = ~CRYPTO_ALG_TYPE_MASK, 54388056ec3SHerbert Xu .maskset = CRYPTO_ALG_TYPE_AHASH_MASK, 54488056ec3SHerbert Xu .type = CRYPTO_ALG_TYPE_AHASH, 54588056ec3SHerbert Xu .tfmsize = offsetof(struct crypto_ahash, base), 546004a403cSLoc Ho }; 547004a403cSLoc Ho EXPORT_SYMBOL_GPL(crypto_ahash_type); 548004a403cSLoc Ho 54988056ec3SHerbert Xu struct crypto_ahash *crypto_alloc_ahash(const char *alg_name, u32 type, 55088056ec3SHerbert Xu u32 mask) 55188056ec3SHerbert Xu { 55288056ec3SHerbert Xu return crypto_alloc_tfm(alg_name, &crypto_ahash_type, type, mask); 55388056ec3SHerbert Xu } 55488056ec3SHerbert Xu EXPORT_SYMBOL_GPL(crypto_alloc_ahash); 55588056ec3SHerbert Xu 5568d18e34cSHerbert Xu int crypto_has_ahash(const char *alg_name, u32 type, u32 mask) 5578d18e34cSHerbert Xu { 5588d18e34cSHerbert Xu return crypto_type_has_alg(alg_name, &crypto_ahash_type, type, mask); 5598d18e34cSHerbert Xu } 5608d18e34cSHerbert Xu EXPORT_SYMBOL_GPL(crypto_has_ahash); 5618d18e34cSHerbert Xu 56201c2deceSHerbert Xu static int ahash_prepare_alg(struct ahash_alg *alg) 56301c2deceSHerbert Xu { 56401c2deceSHerbert Xu struct crypto_alg *base = &alg->halg.base; 56501c2deceSHerbert Xu 56601c2deceSHerbert Xu if (alg->halg.digestsize > PAGE_SIZE / 8 || 5678996eafdSRussell King alg->halg.statesize > PAGE_SIZE / 8 || 5688996eafdSRussell King alg->halg.statesize == 0) 56901c2deceSHerbert Xu return -EINVAL; 57001c2deceSHerbert Xu 57101c2deceSHerbert Xu base->cra_type = &crypto_ahash_type; 57201c2deceSHerbert Xu base->cra_flags &= ~CRYPTO_ALG_TYPE_MASK; 57301c2deceSHerbert Xu base->cra_flags |= CRYPTO_ALG_TYPE_AHASH; 57401c2deceSHerbert Xu 57501c2deceSHerbert Xu return 0; 57601c2deceSHerbert Xu } 57701c2deceSHerbert Xu 57801c2deceSHerbert Xu int crypto_register_ahash(struct ahash_alg *alg) 57901c2deceSHerbert Xu { 58001c2deceSHerbert Xu struct crypto_alg *base = &alg->halg.base; 58101c2deceSHerbert Xu int err; 58201c2deceSHerbert Xu 58301c2deceSHerbert Xu err = ahash_prepare_alg(alg); 58401c2deceSHerbert Xu if (err) 58501c2deceSHerbert Xu return err; 58601c2deceSHerbert Xu 58701c2deceSHerbert Xu return crypto_register_alg(base); 58801c2deceSHerbert Xu } 58901c2deceSHerbert Xu EXPORT_SYMBOL_GPL(crypto_register_ahash); 59001c2deceSHerbert Xu 59101c2deceSHerbert Xu int crypto_unregister_ahash(struct ahash_alg *alg) 59201c2deceSHerbert Xu { 59301c2deceSHerbert Xu return crypto_unregister_alg(&alg->halg.base); 59401c2deceSHerbert Xu } 59501c2deceSHerbert Xu EXPORT_SYMBOL_GPL(crypto_unregister_ahash); 59601c2deceSHerbert Xu 5976f7473c5SRabin Vincent int crypto_register_ahashes(struct ahash_alg *algs, int count) 5986f7473c5SRabin Vincent { 5996f7473c5SRabin Vincent int i, ret; 6006f7473c5SRabin Vincent 6016f7473c5SRabin Vincent for (i = 0; i < count; i++) { 6026f7473c5SRabin Vincent ret = crypto_register_ahash(&algs[i]); 6036f7473c5SRabin Vincent if (ret) 6046f7473c5SRabin Vincent goto err; 6056f7473c5SRabin Vincent } 6066f7473c5SRabin Vincent 6076f7473c5SRabin Vincent return 0; 6086f7473c5SRabin Vincent 6096f7473c5SRabin Vincent err: 6106f7473c5SRabin Vincent for (--i; i >= 0; --i) 6116f7473c5SRabin Vincent crypto_unregister_ahash(&algs[i]); 6126f7473c5SRabin Vincent 6136f7473c5SRabin Vincent return ret; 6146f7473c5SRabin Vincent } 6156f7473c5SRabin Vincent EXPORT_SYMBOL_GPL(crypto_register_ahashes); 6166f7473c5SRabin Vincent 6176f7473c5SRabin Vincent void crypto_unregister_ahashes(struct ahash_alg *algs, int count) 6186f7473c5SRabin Vincent { 6196f7473c5SRabin Vincent int i; 6206f7473c5SRabin Vincent 6216f7473c5SRabin Vincent for (i = count - 1; i >= 0; --i) 6226f7473c5SRabin Vincent crypto_unregister_ahash(&algs[i]); 6236f7473c5SRabin Vincent } 6246f7473c5SRabin Vincent EXPORT_SYMBOL_GPL(crypto_unregister_ahashes); 6256f7473c5SRabin Vincent 62601c2deceSHerbert Xu int ahash_register_instance(struct crypto_template *tmpl, 62701c2deceSHerbert Xu struct ahash_instance *inst) 62801c2deceSHerbert Xu { 62901c2deceSHerbert Xu int err; 63001c2deceSHerbert Xu 63101c2deceSHerbert Xu err = ahash_prepare_alg(&inst->alg); 63201c2deceSHerbert Xu if (err) 63301c2deceSHerbert Xu return err; 63401c2deceSHerbert Xu 63501c2deceSHerbert Xu return crypto_register_instance(tmpl, ahash_crypto_instance(inst)); 63601c2deceSHerbert Xu } 63701c2deceSHerbert Xu EXPORT_SYMBOL_GPL(ahash_register_instance); 63801c2deceSHerbert Xu 63901c2deceSHerbert Xu void ahash_free_instance(struct crypto_instance *inst) 64001c2deceSHerbert Xu { 64101c2deceSHerbert Xu crypto_drop_spawn(crypto_instance_ctx(inst)); 64201c2deceSHerbert Xu kfree(ahash_instance(inst)); 64301c2deceSHerbert Xu } 64401c2deceSHerbert Xu EXPORT_SYMBOL_GPL(ahash_free_instance); 64501c2deceSHerbert Xu 64601c2deceSHerbert Xu int crypto_init_ahash_spawn(struct crypto_ahash_spawn *spawn, 64701c2deceSHerbert Xu struct hash_alg_common *alg, 64801c2deceSHerbert Xu struct crypto_instance *inst) 64901c2deceSHerbert Xu { 65001c2deceSHerbert Xu return crypto_init_spawn2(&spawn->base, &alg->base, inst, 65101c2deceSHerbert Xu &crypto_ahash_type); 65201c2deceSHerbert Xu } 65301c2deceSHerbert Xu EXPORT_SYMBOL_GPL(crypto_init_ahash_spawn); 65401c2deceSHerbert Xu 65501c2deceSHerbert Xu struct hash_alg_common *ahash_attr_alg(struct rtattr *rta, u32 type, u32 mask) 65601c2deceSHerbert Xu { 65701c2deceSHerbert Xu struct crypto_alg *alg; 65801c2deceSHerbert Xu 65901c2deceSHerbert Xu alg = crypto_attr_alg2(rta, &crypto_ahash_type, type, mask); 66001c2deceSHerbert Xu return IS_ERR(alg) ? ERR_CAST(alg) : __crypto_hash_alg_common(alg); 66101c2deceSHerbert Xu } 66201c2deceSHerbert Xu EXPORT_SYMBOL_GPL(ahash_attr_alg); 66301c2deceSHerbert Xu 664cd6ed77aSEric Biggers bool crypto_hash_alg_has_setkey(struct hash_alg_common *halg) 665cd6ed77aSEric Biggers { 666cd6ed77aSEric Biggers struct crypto_alg *alg = &halg->base; 667cd6ed77aSEric Biggers 668cd6ed77aSEric Biggers if (alg->cra_type != &crypto_ahash_type) 669cd6ed77aSEric Biggers return crypto_shash_alg_has_setkey(__crypto_shash_alg(alg)); 670cd6ed77aSEric Biggers 671cd6ed77aSEric Biggers return __crypto_ahash_alg(alg)->setkey != NULL; 672cd6ed77aSEric Biggers } 673cd6ed77aSEric Biggers EXPORT_SYMBOL_GPL(crypto_hash_alg_has_setkey); 674cd6ed77aSEric Biggers 675004a403cSLoc Ho MODULE_LICENSE("GPL"); 676004a403cSLoc Ho MODULE_DESCRIPTION("Asynchronous cryptographic hash type"); 677