1004a403cSLoc Ho /* 2004a403cSLoc Ho * Asynchronous Cryptographic Hash operations. 3004a403cSLoc Ho * 4004a403cSLoc Ho * This is the asynchronous version of hash.c with notification of 5004a403cSLoc Ho * completion via a callback. 6004a403cSLoc Ho * 7004a403cSLoc Ho * Copyright (c) 2008 Loc Ho <lho@amcc.com> 8004a403cSLoc Ho * 9004a403cSLoc Ho * This program is free software; you can redistribute it and/or modify it 10004a403cSLoc Ho * under the terms of the GNU General Public License as published by the Free 11004a403cSLoc Ho * Software Foundation; either version 2 of the License, or (at your option) 12004a403cSLoc Ho * any later version. 13004a403cSLoc Ho * 14004a403cSLoc Ho */ 15004a403cSLoc Ho 1620036252SHerbert Xu #include <crypto/internal/hash.h> 1720036252SHerbert Xu #include <crypto/scatterwalk.h> 1875ecb231SHerbert Xu #include <linux/bug.h> 19004a403cSLoc Ho #include <linux/err.h> 20004a403cSLoc Ho #include <linux/kernel.h> 21004a403cSLoc Ho #include <linux/module.h> 22004a403cSLoc Ho #include <linux/sched.h> 23004a403cSLoc Ho #include <linux/slab.h> 24004a403cSLoc Ho #include <linux/seq_file.h> 256238cbaeSSteffen Klassert #include <linux/cryptouser.h> 26d8c34b94SGideon Israel Dsouza #include <linux/compiler.h> 276238cbaeSSteffen Klassert #include <net/netlink.h> 28004a403cSLoc Ho 29004a403cSLoc Ho #include "internal.h" 30004a403cSLoc Ho 3166f6ce5eSHerbert Xu struct ahash_request_priv { 3266f6ce5eSHerbert Xu crypto_completion_t complete; 3366f6ce5eSHerbert Xu void *data; 3466f6ce5eSHerbert Xu u8 *result; 35ef0579b6SHerbert Xu u32 flags; 3666f6ce5eSHerbert Xu void *ubuf[] CRYPTO_MINALIGN_ATTR; 3766f6ce5eSHerbert Xu }; 3866f6ce5eSHerbert Xu 3988056ec3SHerbert Xu static inline struct ahash_alg *crypto_ahash_alg(struct crypto_ahash *hash) 4088056ec3SHerbert Xu { 4188056ec3SHerbert Xu return container_of(crypto_hash_alg_common(hash), struct ahash_alg, 4288056ec3SHerbert Xu halg); 4388056ec3SHerbert Xu } 4488056ec3SHerbert Xu 4520036252SHerbert Xu static int hash_walk_next(struct crypto_hash_walk *walk) 4620036252SHerbert Xu { 4720036252SHerbert Xu unsigned int alignmask = walk->alignmask; 4820036252SHerbert Xu unsigned int offset = walk->offset; 4920036252SHerbert Xu unsigned int nbytes = min(walk->entrylen, 5020036252SHerbert Xu ((unsigned int)(PAGE_SIZE)) - offset); 5120036252SHerbert Xu 5275ecb231SHerbert Xu if (walk->flags & CRYPTO_ALG_ASYNC) 5375ecb231SHerbert Xu walk->data = kmap(walk->pg); 5475ecb231SHerbert Xu else 55f0dfc0b0SCong Wang walk->data = kmap_atomic(walk->pg); 5620036252SHerbert Xu walk->data += offset; 5720036252SHerbert Xu 5823a75eeeSSzilveszter Ördög if (offset & alignmask) { 5923a75eeeSSzilveszter Ördög unsigned int unaligned = alignmask + 1 - (offset & alignmask); 60b516d514SJoshua I. James 6123a75eeeSSzilveszter Ördög if (nbytes > unaligned) 6223a75eeeSSzilveszter Ördög nbytes = unaligned; 6323a75eeeSSzilveszter Ördög } 6420036252SHerbert Xu 6520036252SHerbert Xu walk->entrylen -= nbytes; 6620036252SHerbert Xu return nbytes; 6720036252SHerbert Xu } 6820036252SHerbert Xu 6920036252SHerbert Xu static int hash_walk_new_entry(struct crypto_hash_walk *walk) 7020036252SHerbert Xu { 7120036252SHerbert Xu struct scatterlist *sg; 7220036252SHerbert Xu 7320036252SHerbert Xu sg = walk->sg; 7420036252SHerbert Xu walk->offset = sg->offset; 7513f4bb78SHerbert Xu walk->pg = sg_page(walk->sg) + (walk->offset >> PAGE_SHIFT); 7613f4bb78SHerbert Xu walk->offset = offset_in_page(walk->offset); 7720036252SHerbert Xu walk->entrylen = sg->length; 7820036252SHerbert Xu 7920036252SHerbert Xu if (walk->entrylen > walk->total) 8020036252SHerbert Xu walk->entrylen = walk->total; 8120036252SHerbert Xu walk->total -= walk->entrylen; 8220036252SHerbert Xu 8320036252SHerbert Xu return hash_walk_next(walk); 8420036252SHerbert Xu } 8520036252SHerbert Xu 8620036252SHerbert Xu int crypto_hash_walk_done(struct crypto_hash_walk *walk, int err) 8720036252SHerbert Xu { 8820036252SHerbert Xu unsigned int alignmask = walk->alignmask; 8920036252SHerbert Xu unsigned int nbytes = walk->entrylen; 9020036252SHerbert Xu 9120036252SHerbert Xu walk->data -= walk->offset; 9220036252SHerbert Xu 9320036252SHerbert Xu if (nbytes && walk->offset & alignmask && !err) { 9420036252SHerbert Xu walk->offset = ALIGN(walk->offset, alignmask + 1); 9520036252SHerbert Xu nbytes = min(nbytes, 9620036252SHerbert Xu ((unsigned int)(PAGE_SIZE)) - walk->offset); 9720036252SHerbert Xu walk->entrylen -= nbytes; 9820036252SHerbert Xu 99900a081fSHerbert Xu if (nbytes) { 100900a081fSHerbert Xu walk->data += walk->offset; 10120036252SHerbert Xu return nbytes; 10220036252SHerbert Xu } 103900a081fSHerbert Xu } 10420036252SHerbert Xu 10575ecb231SHerbert Xu if (walk->flags & CRYPTO_ALG_ASYNC) 10675ecb231SHerbert Xu kunmap(walk->pg); 10775ecb231SHerbert Xu else { 108f0dfc0b0SCong Wang kunmap_atomic(walk->data); 10975ecb231SHerbert Xu /* 11075ecb231SHerbert Xu * The may sleep test only makes sense for sync users. 11175ecb231SHerbert Xu * Async users don't need to sleep here anyway. 11275ecb231SHerbert Xu */ 11320036252SHerbert Xu crypto_yield(walk->flags); 11475ecb231SHerbert Xu } 11520036252SHerbert Xu 11620036252SHerbert Xu if (err) 11720036252SHerbert Xu return err; 11820036252SHerbert Xu 119d315a0e0SHerbert Xu if (nbytes) { 12020036252SHerbert Xu walk->offset = 0; 121d315a0e0SHerbert Xu walk->pg++; 12220036252SHerbert Xu return hash_walk_next(walk); 123d315a0e0SHerbert Xu } 12420036252SHerbert Xu 12520036252SHerbert Xu if (!walk->total) 12620036252SHerbert Xu return 0; 12720036252SHerbert Xu 1285be4d4c9SCristian Stoica walk->sg = sg_next(walk->sg); 12920036252SHerbert Xu 13020036252SHerbert Xu return hash_walk_new_entry(walk); 13120036252SHerbert Xu } 13220036252SHerbert Xu EXPORT_SYMBOL_GPL(crypto_hash_walk_done); 13320036252SHerbert Xu 13420036252SHerbert Xu int crypto_hash_walk_first(struct ahash_request *req, 13520036252SHerbert Xu struct crypto_hash_walk *walk) 13620036252SHerbert Xu { 13720036252SHerbert Xu walk->total = req->nbytes; 13820036252SHerbert Xu 1396d9529c5STim Chen if (!walk->total) { 1406d9529c5STim Chen walk->entrylen = 0; 14120036252SHerbert Xu return 0; 1426d9529c5STim Chen } 14320036252SHerbert Xu 14420036252SHerbert Xu walk->alignmask = crypto_ahash_alignmask(crypto_ahash_reqtfm(req)); 14520036252SHerbert Xu walk->sg = req->src; 14675ecb231SHerbert Xu walk->flags = req->base.flags & CRYPTO_TFM_REQ_MASK; 14720036252SHerbert Xu 14820036252SHerbert Xu return hash_walk_new_entry(walk); 14920036252SHerbert Xu } 15020036252SHerbert Xu EXPORT_SYMBOL_GPL(crypto_hash_walk_first); 15120036252SHerbert Xu 15275ecb231SHerbert Xu int crypto_ahash_walk_first(struct ahash_request *req, 15375ecb231SHerbert Xu struct crypto_hash_walk *walk) 15475ecb231SHerbert Xu { 15575ecb231SHerbert Xu walk->total = req->nbytes; 15675ecb231SHerbert Xu 1576d9529c5STim Chen if (!walk->total) { 1586d9529c5STim Chen walk->entrylen = 0; 15975ecb231SHerbert Xu return 0; 1606d9529c5STim Chen } 16175ecb231SHerbert Xu 16275ecb231SHerbert Xu walk->alignmask = crypto_ahash_alignmask(crypto_ahash_reqtfm(req)); 16375ecb231SHerbert Xu walk->sg = req->src; 16475ecb231SHerbert Xu walk->flags = req->base.flags & CRYPTO_TFM_REQ_MASK; 16575ecb231SHerbert Xu walk->flags |= CRYPTO_ALG_ASYNC; 16675ecb231SHerbert Xu 16775ecb231SHerbert Xu BUILD_BUG_ON(CRYPTO_TFM_REQ_MASK & CRYPTO_ALG_ASYNC); 16875ecb231SHerbert Xu 16975ecb231SHerbert Xu return hash_walk_new_entry(walk); 17075ecb231SHerbert Xu } 17175ecb231SHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_walk_first); 17275ecb231SHerbert Xu 173004a403cSLoc Ho static int ahash_setkey_unaligned(struct crypto_ahash *tfm, const u8 *key, 174004a403cSLoc Ho unsigned int keylen) 175004a403cSLoc Ho { 176004a403cSLoc Ho unsigned long alignmask = crypto_ahash_alignmask(tfm); 177004a403cSLoc Ho int ret; 178004a403cSLoc Ho u8 *buffer, *alignbuffer; 179004a403cSLoc Ho unsigned long absize; 180004a403cSLoc Ho 181004a403cSLoc Ho absize = keylen + alignmask; 182093900c2SHerbert Xu buffer = kmalloc(absize, GFP_KERNEL); 183004a403cSLoc Ho if (!buffer) 184004a403cSLoc Ho return -ENOMEM; 185004a403cSLoc Ho 186004a403cSLoc Ho alignbuffer = (u8 *)ALIGN((unsigned long)buffer, alignmask + 1); 187004a403cSLoc Ho memcpy(alignbuffer, key, keylen); 188a70c5225SHerbert Xu ret = tfm->setkey(tfm, alignbuffer, keylen); 1898c32c516SHerbert Xu kzfree(buffer); 190004a403cSLoc Ho return ret; 191004a403cSLoc Ho } 192004a403cSLoc Ho 193*ba7d7433SEric Biggers static int ahash_nosetkey(struct crypto_ahash *tfm, const u8 *key, 194*ba7d7433SEric Biggers unsigned int keylen) 195*ba7d7433SEric Biggers { 196*ba7d7433SEric Biggers return -ENOSYS; 197*ba7d7433SEric Biggers } 198*ba7d7433SEric Biggers 199*ba7d7433SEric Biggers static void ahash_set_needkey(struct crypto_ahash *tfm) 200*ba7d7433SEric Biggers { 201*ba7d7433SEric Biggers const struct hash_alg_common *alg = crypto_hash_alg_common(tfm); 202*ba7d7433SEric Biggers 203*ba7d7433SEric Biggers if (tfm->setkey != ahash_nosetkey && 204*ba7d7433SEric Biggers !(alg->base.cra_flags & CRYPTO_ALG_OPTIONAL_KEY)) 205*ba7d7433SEric Biggers crypto_ahash_set_flags(tfm, CRYPTO_TFM_NEED_KEY); 206*ba7d7433SEric Biggers } 207*ba7d7433SEric Biggers 20866f6ce5eSHerbert Xu int crypto_ahash_setkey(struct crypto_ahash *tfm, const u8 *key, 209004a403cSLoc Ho unsigned int keylen) 210004a403cSLoc Ho { 211004a403cSLoc Ho unsigned long alignmask = crypto_ahash_alignmask(tfm); 2129fa68f62SEric Biggers int err; 213004a403cSLoc Ho 214004a403cSLoc Ho if ((unsigned long)key & alignmask) 2159fa68f62SEric Biggers err = ahash_setkey_unaligned(tfm, key, keylen); 2169fa68f62SEric Biggers else 2179fa68f62SEric Biggers err = tfm->setkey(tfm, key, keylen); 218004a403cSLoc Ho 219*ba7d7433SEric Biggers if (unlikely(err)) { 220*ba7d7433SEric Biggers ahash_set_needkey(tfm); 2219fa68f62SEric Biggers return err; 222*ba7d7433SEric Biggers } 2239fa68f62SEric Biggers 2249fa68f62SEric Biggers crypto_ahash_clear_flags(tfm, CRYPTO_TFM_NEED_KEY); 2259fa68f62SEric Biggers return 0; 226004a403cSLoc Ho } 22766f6ce5eSHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_setkey); 228004a403cSLoc Ho 22966f6ce5eSHerbert Xu static inline unsigned int ahash_align_buffer_size(unsigned len, 23066f6ce5eSHerbert Xu unsigned long mask) 23166f6ce5eSHerbert Xu { 23266f6ce5eSHerbert Xu return len + (mask & ~(crypto_tfm_ctx_alignment() - 1)); 23366f6ce5eSHerbert Xu } 23466f6ce5eSHerbert Xu 2351ffc9fbdSMarek Vasut static int ahash_save_req(struct ahash_request *req, crypto_completion_t cplt) 23666f6ce5eSHerbert Xu { 23766f6ce5eSHerbert Xu struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 23866f6ce5eSHerbert Xu unsigned long alignmask = crypto_ahash_alignmask(tfm); 23966f6ce5eSHerbert Xu unsigned int ds = crypto_ahash_digestsize(tfm); 24066f6ce5eSHerbert Xu struct ahash_request_priv *priv; 24166f6ce5eSHerbert Xu 24266f6ce5eSHerbert Xu priv = kmalloc(sizeof(*priv) + ahash_align_buffer_size(ds, alignmask), 24366f6ce5eSHerbert Xu (req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP) ? 2445befbd5aSSteffen Klassert GFP_KERNEL : GFP_ATOMIC); 24566f6ce5eSHerbert Xu if (!priv) 24666f6ce5eSHerbert Xu return -ENOMEM; 24766f6ce5eSHerbert Xu 248ab6bf4e5SMarek Vasut /* 249ab6bf4e5SMarek Vasut * WARNING: Voodoo programming below! 250ab6bf4e5SMarek Vasut * 251ab6bf4e5SMarek Vasut * The code below is obscure and hard to understand, thus explanation 252ab6bf4e5SMarek Vasut * is necessary. See include/crypto/hash.h and include/linux/crypto.h 253ab6bf4e5SMarek Vasut * to understand the layout of structures used here! 254ab6bf4e5SMarek Vasut * 255ab6bf4e5SMarek Vasut * The code here will replace portions of the ORIGINAL request with 256ab6bf4e5SMarek Vasut * pointers to new code and buffers so the hashing operation can store 257ab6bf4e5SMarek Vasut * the result in aligned buffer. We will call the modified request 258ab6bf4e5SMarek Vasut * an ADJUSTED request. 259ab6bf4e5SMarek Vasut * 260ab6bf4e5SMarek Vasut * The newly mangled request will look as such: 261ab6bf4e5SMarek Vasut * 262ab6bf4e5SMarek Vasut * req { 263ab6bf4e5SMarek Vasut * .result = ADJUSTED[new aligned buffer] 264ab6bf4e5SMarek Vasut * .base.complete = ADJUSTED[pointer to completion function] 265ab6bf4e5SMarek Vasut * .base.data = ADJUSTED[*req (pointer to self)] 266ab6bf4e5SMarek Vasut * .priv = ADJUSTED[new priv] { 267ab6bf4e5SMarek Vasut * .result = ORIGINAL(result) 268ab6bf4e5SMarek Vasut * .complete = ORIGINAL(base.complete) 269ab6bf4e5SMarek Vasut * .data = ORIGINAL(base.data) 270ab6bf4e5SMarek Vasut * } 271ab6bf4e5SMarek Vasut */ 272ab6bf4e5SMarek Vasut 27366f6ce5eSHerbert Xu priv->result = req->result; 27466f6ce5eSHerbert Xu priv->complete = req->base.complete; 27566f6ce5eSHerbert Xu priv->data = req->base.data; 276ef0579b6SHerbert Xu priv->flags = req->base.flags; 277ef0579b6SHerbert Xu 278ab6bf4e5SMarek Vasut /* 279ab6bf4e5SMarek Vasut * WARNING: We do not backup req->priv here! The req->priv 280ab6bf4e5SMarek Vasut * is for internal use of the Crypto API and the 281ab6bf4e5SMarek Vasut * user must _NOT_ _EVER_ depend on it's content! 282ab6bf4e5SMarek Vasut */ 28366f6ce5eSHerbert Xu 28466f6ce5eSHerbert Xu req->result = PTR_ALIGN((u8 *)priv->ubuf, alignmask + 1); 2851ffc9fbdSMarek Vasut req->base.complete = cplt; 28666f6ce5eSHerbert Xu req->base.data = req; 28766f6ce5eSHerbert Xu req->priv = priv; 28866f6ce5eSHerbert Xu 2891ffc9fbdSMarek Vasut return 0; 2901ffc9fbdSMarek Vasut } 2911ffc9fbdSMarek Vasut 292ef0579b6SHerbert Xu static void ahash_restore_req(struct ahash_request *req, int err) 2931ffc9fbdSMarek Vasut { 2941ffc9fbdSMarek Vasut struct ahash_request_priv *priv = req->priv; 2951ffc9fbdSMarek Vasut 296ef0579b6SHerbert Xu if (!err) 297ef0579b6SHerbert Xu memcpy(priv->result, req->result, 298ef0579b6SHerbert Xu crypto_ahash_digestsize(crypto_ahash_reqtfm(req))); 299ef0579b6SHerbert Xu 3001ffc9fbdSMarek Vasut /* Restore the original crypto request. */ 3011ffc9fbdSMarek Vasut req->result = priv->result; 302ef0579b6SHerbert Xu 303ef0579b6SHerbert Xu ahash_request_set_callback(req, priv->flags, 304ef0579b6SHerbert Xu priv->complete, priv->data); 3051ffc9fbdSMarek Vasut req->priv = NULL; 3061ffc9fbdSMarek Vasut 3071ffc9fbdSMarek Vasut /* Free the req->priv.priv from the ADJUSTED request. */ 3081ffc9fbdSMarek Vasut kzfree(priv); 3091ffc9fbdSMarek Vasut } 3101ffc9fbdSMarek Vasut 311ef0579b6SHerbert Xu static void ahash_notify_einprogress(struct ahash_request *req) 3121ffc9fbdSMarek Vasut { 3131ffc9fbdSMarek Vasut struct ahash_request_priv *priv = req->priv; 314ef0579b6SHerbert Xu struct crypto_async_request oreq; 3151ffc9fbdSMarek Vasut 316ef0579b6SHerbert Xu oreq.data = priv->data; 3171ffc9fbdSMarek Vasut 318ef0579b6SHerbert Xu priv->complete(&oreq, -EINPROGRESS); 3191ffc9fbdSMarek Vasut } 3201ffc9fbdSMarek Vasut 3211ffc9fbdSMarek Vasut static void ahash_op_unaligned_done(struct crypto_async_request *req, int err) 3221ffc9fbdSMarek Vasut { 3231ffc9fbdSMarek Vasut struct ahash_request *areq = req->data; 3241ffc9fbdSMarek Vasut 325ef0579b6SHerbert Xu if (err == -EINPROGRESS) { 326ef0579b6SHerbert Xu ahash_notify_einprogress(areq); 327ef0579b6SHerbert Xu return; 328ef0579b6SHerbert Xu } 329ef0579b6SHerbert Xu 3301ffc9fbdSMarek Vasut /* 3311ffc9fbdSMarek Vasut * Restore the original request, see ahash_op_unaligned() for what 3321ffc9fbdSMarek Vasut * goes where. 3331ffc9fbdSMarek Vasut * 3341ffc9fbdSMarek Vasut * The "struct ahash_request *req" here is in fact the "req.base" 3351ffc9fbdSMarek Vasut * from the ADJUSTED request from ahash_op_unaligned(), thus as it 3361ffc9fbdSMarek Vasut * is a pointer to self, it is also the ADJUSTED "req" . 3371ffc9fbdSMarek Vasut */ 3381ffc9fbdSMarek Vasut 3391ffc9fbdSMarek Vasut /* First copy req->result into req->priv.result */ 340ef0579b6SHerbert Xu ahash_restore_req(areq, err); 3411ffc9fbdSMarek Vasut 3421ffc9fbdSMarek Vasut /* Complete the ORIGINAL request. */ 3431ffc9fbdSMarek Vasut areq->base.complete(&areq->base, err); 3441ffc9fbdSMarek Vasut } 3451ffc9fbdSMarek Vasut 3461ffc9fbdSMarek Vasut static int ahash_op_unaligned(struct ahash_request *req, 3471ffc9fbdSMarek Vasut int (*op)(struct ahash_request *)) 3481ffc9fbdSMarek Vasut { 3491ffc9fbdSMarek Vasut int err; 3501ffc9fbdSMarek Vasut 3511ffc9fbdSMarek Vasut err = ahash_save_req(req, ahash_op_unaligned_done); 3521ffc9fbdSMarek Vasut if (err) 3531ffc9fbdSMarek Vasut return err; 3541ffc9fbdSMarek Vasut 35566f6ce5eSHerbert Xu err = op(req); 3564e5b0ad5SGilad Ben-Yossef if (err == -EINPROGRESS || err == -EBUSY) 357ef0579b6SHerbert Xu return err; 358ef0579b6SHerbert Xu 359ef0579b6SHerbert Xu ahash_restore_req(req, err); 36066f6ce5eSHerbert Xu 36166f6ce5eSHerbert Xu return err; 36266f6ce5eSHerbert Xu } 36366f6ce5eSHerbert Xu 36466f6ce5eSHerbert Xu static int crypto_ahash_op(struct ahash_request *req, 36566f6ce5eSHerbert Xu int (*op)(struct ahash_request *)) 36666f6ce5eSHerbert Xu { 36766f6ce5eSHerbert Xu struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 36866f6ce5eSHerbert Xu unsigned long alignmask = crypto_ahash_alignmask(tfm); 36966f6ce5eSHerbert Xu 37066f6ce5eSHerbert Xu if ((unsigned long)req->result & alignmask) 37166f6ce5eSHerbert Xu return ahash_op_unaligned(req, op); 37266f6ce5eSHerbert Xu 37366f6ce5eSHerbert Xu return op(req); 37466f6ce5eSHerbert Xu } 37566f6ce5eSHerbert Xu 37666f6ce5eSHerbert Xu int crypto_ahash_final(struct ahash_request *req) 37766f6ce5eSHerbert Xu { 378f7d76e05SCorentin Labbe struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 379f7d76e05SCorentin Labbe struct crypto_alg *alg = tfm->base.__crt_alg; 380f7d76e05SCorentin Labbe unsigned int nbytes = req->nbytes; 381cac5818cSCorentin Labbe int ret; 382cac5818cSCorentin Labbe 383f7d76e05SCorentin Labbe crypto_stats_get(alg); 384cac5818cSCorentin Labbe ret = crypto_ahash_op(req, crypto_ahash_reqtfm(req)->final); 385f7d76e05SCorentin Labbe crypto_stats_ahash_final(nbytes, ret, alg); 386cac5818cSCorentin Labbe return ret; 38766f6ce5eSHerbert Xu } 38866f6ce5eSHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_final); 38966f6ce5eSHerbert Xu 39066f6ce5eSHerbert Xu int crypto_ahash_finup(struct ahash_request *req) 39166f6ce5eSHerbert Xu { 392f7d76e05SCorentin Labbe struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 393f7d76e05SCorentin Labbe struct crypto_alg *alg = tfm->base.__crt_alg; 394f7d76e05SCorentin Labbe unsigned int nbytes = req->nbytes; 395cac5818cSCorentin Labbe int ret; 396cac5818cSCorentin Labbe 397f7d76e05SCorentin Labbe crypto_stats_get(alg); 398cac5818cSCorentin Labbe ret = crypto_ahash_op(req, crypto_ahash_reqtfm(req)->finup); 399f7d76e05SCorentin Labbe crypto_stats_ahash_final(nbytes, ret, alg); 400cac5818cSCorentin Labbe return ret; 40166f6ce5eSHerbert Xu } 40266f6ce5eSHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_finup); 40366f6ce5eSHerbert Xu 40466f6ce5eSHerbert Xu int crypto_ahash_digest(struct ahash_request *req) 40566f6ce5eSHerbert Xu { 4069fa68f62SEric Biggers struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 407f7d76e05SCorentin Labbe struct crypto_alg *alg = tfm->base.__crt_alg; 408f7d76e05SCorentin Labbe unsigned int nbytes = req->nbytes; 409cac5818cSCorentin Labbe int ret; 4109fa68f62SEric Biggers 411f7d76e05SCorentin Labbe crypto_stats_get(alg); 4129fa68f62SEric Biggers if (crypto_ahash_get_flags(tfm) & CRYPTO_TFM_NEED_KEY) 413cac5818cSCorentin Labbe ret = -ENOKEY; 414cac5818cSCorentin Labbe else 415cac5818cSCorentin Labbe ret = crypto_ahash_op(req, tfm->digest); 416f7d76e05SCorentin Labbe crypto_stats_ahash_final(nbytes, ret, alg); 417cac5818cSCorentin Labbe return ret; 41866f6ce5eSHerbert Xu } 41966f6ce5eSHerbert Xu EXPORT_SYMBOL_GPL(crypto_ahash_digest); 42066f6ce5eSHerbert Xu 42166f6ce5eSHerbert Xu static void ahash_def_finup_done2(struct crypto_async_request *req, int err) 42266f6ce5eSHerbert Xu { 42366f6ce5eSHerbert Xu struct ahash_request *areq = req->data; 42466f6ce5eSHerbert Xu 425ef0579b6SHerbert Xu if (err == -EINPROGRESS) 426ef0579b6SHerbert Xu return; 427ef0579b6SHerbert Xu 428ef0579b6SHerbert Xu ahash_restore_req(areq, err); 42966f6ce5eSHerbert Xu 430d4a7a0fbSMarek Vasut areq->base.complete(&areq->base, err); 43166f6ce5eSHerbert Xu } 43266f6ce5eSHerbert Xu 43366f6ce5eSHerbert Xu static int ahash_def_finup_finish1(struct ahash_request *req, int err) 43466f6ce5eSHerbert Xu { 43566f6ce5eSHerbert Xu if (err) 43666f6ce5eSHerbert Xu goto out; 43766f6ce5eSHerbert Xu 43866f6ce5eSHerbert Xu req->base.complete = ahash_def_finup_done2; 439ef0579b6SHerbert Xu 44066f6ce5eSHerbert Xu err = crypto_ahash_reqtfm(req)->final(req); 4414e5b0ad5SGilad Ben-Yossef if (err == -EINPROGRESS || err == -EBUSY) 442ef0579b6SHerbert Xu return err; 44366f6ce5eSHerbert Xu 44466f6ce5eSHerbert Xu out: 445ef0579b6SHerbert Xu ahash_restore_req(req, err); 44666f6ce5eSHerbert Xu return err; 44766f6ce5eSHerbert Xu } 44866f6ce5eSHerbert Xu 44966f6ce5eSHerbert Xu static void ahash_def_finup_done1(struct crypto_async_request *req, int err) 45066f6ce5eSHerbert Xu { 45166f6ce5eSHerbert Xu struct ahash_request *areq = req->data; 45266f6ce5eSHerbert Xu 453ef0579b6SHerbert Xu if (err == -EINPROGRESS) { 454ef0579b6SHerbert Xu ahash_notify_einprogress(areq); 455ef0579b6SHerbert Xu return; 456ef0579b6SHerbert Xu } 457ef0579b6SHerbert Xu 458ef0579b6SHerbert Xu areq->base.flags &= ~CRYPTO_TFM_REQ_MAY_SLEEP; 459ef0579b6SHerbert Xu 46066f6ce5eSHerbert Xu err = ahash_def_finup_finish1(areq, err); 461ef0579b6SHerbert Xu if (areq->priv) 462ef0579b6SHerbert Xu return; 46366f6ce5eSHerbert Xu 464d4a7a0fbSMarek Vasut areq->base.complete(&areq->base, err); 46566f6ce5eSHerbert Xu } 46666f6ce5eSHerbert Xu 46766f6ce5eSHerbert Xu static int ahash_def_finup(struct ahash_request *req) 46866f6ce5eSHerbert Xu { 46966f6ce5eSHerbert Xu struct crypto_ahash *tfm = crypto_ahash_reqtfm(req); 470d4a7a0fbSMarek Vasut int err; 47166f6ce5eSHerbert Xu 472d4a7a0fbSMarek Vasut err = ahash_save_req(req, ahash_def_finup_done1); 473d4a7a0fbSMarek Vasut if (err) 474d4a7a0fbSMarek Vasut return err; 47566f6ce5eSHerbert Xu 476d4a7a0fbSMarek Vasut err = tfm->update(req); 4774e5b0ad5SGilad Ben-Yossef if (err == -EINPROGRESS || err == -EBUSY) 478ef0579b6SHerbert Xu return err; 479ef0579b6SHerbert Xu 480d4a7a0fbSMarek Vasut return ahash_def_finup_finish1(req, err); 48166f6ce5eSHerbert Xu } 48266f6ce5eSHerbert Xu 48388056ec3SHerbert Xu static int crypto_ahash_init_tfm(struct crypto_tfm *tfm) 48488056ec3SHerbert Xu { 48588056ec3SHerbert Xu struct crypto_ahash *hash = __crypto_ahash_cast(tfm); 48688056ec3SHerbert Xu struct ahash_alg *alg = crypto_ahash_alg(hash); 48788056ec3SHerbert Xu 48866f6ce5eSHerbert Xu hash->setkey = ahash_nosetkey; 48966f6ce5eSHerbert Xu 49088056ec3SHerbert Xu if (tfm->__crt_alg->cra_type != &crypto_ahash_type) 49188056ec3SHerbert Xu return crypto_init_shash_ops_async(tfm); 49288056ec3SHerbert Xu 49388056ec3SHerbert Xu hash->init = alg->init; 49488056ec3SHerbert Xu hash->update = alg->update; 49588056ec3SHerbert Xu hash->final = alg->final; 49666f6ce5eSHerbert Xu hash->finup = alg->finup ?: ahash_def_finup; 49788056ec3SHerbert Xu hash->digest = alg->digest; 4986f221f7eSKamil Konieczny hash->export = alg->export; 4996f221f7eSKamil Konieczny hash->import = alg->import; 50066f6ce5eSHerbert Xu 501a5596d63SHerbert Xu if (alg->setkey) { 50266f6ce5eSHerbert Xu hash->setkey = alg->setkey; 503*ba7d7433SEric Biggers ahash_set_needkey(hash); 504a5596d63SHerbert Xu } 50588056ec3SHerbert Xu 50688056ec3SHerbert Xu return 0; 50788056ec3SHerbert Xu } 50888056ec3SHerbert Xu 50988056ec3SHerbert Xu static unsigned int crypto_ahash_extsize(struct crypto_alg *alg) 51088056ec3SHerbert Xu { 5112495cf25SHerbert Xu if (alg->cra_type != &crypto_ahash_type) 51288056ec3SHerbert Xu return sizeof(struct crypto_shash *); 5132495cf25SHerbert Xu 5142495cf25SHerbert Xu return crypto_alg_extsize(alg); 51588056ec3SHerbert Xu } 51688056ec3SHerbert Xu 5173acc8473SHerbert Xu #ifdef CONFIG_NET 5186238cbaeSSteffen Klassert static int crypto_ahash_report(struct sk_buff *skb, struct crypto_alg *alg) 5196238cbaeSSteffen Klassert { 5206238cbaeSSteffen Klassert struct crypto_report_hash rhash; 5216238cbaeSSteffen Klassert 52237db69e0SEric Biggers memset(&rhash, 0, sizeof(rhash)); 52337db69e0SEric Biggers 52437db69e0SEric Biggers strscpy(rhash.type, "ahash", sizeof(rhash.type)); 5256238cbaeSSteffen Klassert 5266238cbaeSSteffen Klassert rhash.blocksize = alg->cra_blocksize; 5276238cbaeSSteffen Klassert rhash.digestsize = __crypto_hash_alg_common(alg)->digestsize; 5286238cbaeSSteffen Klassert 52937db69e0SEric Biggers return nla_put(skb, CRYPTOCFGA_REPORT_HASH, sizeof(rhash), &rhash); 5306238cbaeSSteffen Klassert } 5313acc8473SHerbert Xu #else 5323acc8473SHerbert Xu static int crypto_ahash_report(struct sk_buff *skb, struct crypto_alg *alg) 5333acc8473SHerbert Xu { 5343acc8473SHerbert Xu return -ENOSYS; 5353acc8473SHerbert Xu } 5363acc8473SHerbert Xu #endif 5376238cbaeSSteffen Klassert 538004a403cSLoc Ho static void crypto_ahash_show(struct seq_file *m, struct crypto_alg *alg) 539d8c34b94SGideon Israel Dsouza __maybe_unused; 540004a403cSLoc Ho static void crypto_ahash_show(struct seq_file *m, struct crypto_alg *alg) 541004a403cSLoc Ho { 542004a403cSLoc Ho seq_printf(m, "type : ahash\n"); 543004a403cSLoc Ho seq_printf(m, "async : %s\n", alg->cra_flags & CRYPTO_ALG_ASYNC ? 544004a403cSLoc Ho "yes" : "no"); 545004a403cSLoc Ho seq_printf(m, "blocksize : %u\n", alg->cra_blocksize); 54688056ec3SHerbert Xu seq_printf(m, "digestsize : %u\n", 54788056ec3SHerbert Xu __crypto_hash_alg_common(alg)->digestsize); 548004a403cSLoc Ho } 549004a403cSLoc Ho 550004a403cSLoc Ho const struct crypto_type crypto_ahash_type = { 55188056ec3SHerbert Xu .extsize = crypto_ahash_extsize, 55288056ec3SHerbert Xu .init_tfm = crypto_ahash_init_tfm, 553004a403cSLoc Ho #ifdef CONFIG_PROC_FS 554004a403cSLoc Ho .show = crypto_ahash_show, 555004a403cSLoc Ho #endif 5566238cbaeSSteffen Klassert .report = crypto_ahash_report, 55788056ec3SHerbert Xu .maskclear = ~CRYPTO_ALG_TYPE_MASK, 55888056ec3SHerbert Xu .maskset = CRYPTO_ALG_TYPE_AHASH_MASK, 55988056ec3SHerbert Xu .type = CRYPTO_ALG_TYPE_AHASH, 56088056ec3SHerbert Xu .tfmsize = offsetof(struct crypto_ahash, base), 561004a403cSLoc Ho }; 562004a403cSLoc Ho EXPORT_SYMBOL_GPL(crypto_ahash_type); 563004a403cSLoc Ho 56488056ec3SHerbert Xu struct crypto_ahash *crypto_alloc_ahash(const char *alg_name, u32 type, 56588056ec3SHerbert Xu u32 mask) 56688056ec3SHerbert Xu { 56788056ec3SHerbert Xu return crypto_alloc_tfm(alg_name, &crypto_ahash_type, type, mask); 56888056ec3SHerbert Xu } 56988056ec3SHerbert Xu EXPORT_SYMBOL_GPL(crypto_alloc_ahash); 57088056ec3SHerbert Xu 5718d18e34cSHerbert Xu int crypto_has_ahash(const char *alg_name, u32 type, u32 mask) 5728d18e34cSHerbert Xu { 5738d18e34cSHerbert Xu return crypto_type_has_alg(alg_name, &crypto_ahash_type, type, mask); 5748d18e34cSHerbert Xu } 5758d18e34cSHerbert Xu EXPORT_SYMBOL_GPL(crypto_has_ahash); 5768d18e34cSHerbert Xu 57701c2deceSHerbert Xu static int ahash_prepare_alg(struct ahash_alg *alg) 57801c2deceSHerbert Xu { 57901c2deceSHerbert Xu struct crypto_alg *base = &alg->halg.base; 58001c2deceSHerbert Xu 581b68a7ec1SKees Cook if (alg->halg.digestsize > HASH_MAX_DIGESTSIZE || 582b68a7ec1SKees Cook alg->halg.statesize > HASH_MAX_STATESIZE || 5838996eafdSRussell King alg->halg.statesize == 0) 58401c2deceSHerbert Xu return -EINVAL; 58501c2deceSHerbert Xu 58601c2deceSHerbert Xu base->cra_type = &crypto_ahash_type; 58701c2deceSHerbert Xu base->cra_flags &= ~CRYPTO_ALG_TYPE_MASK; 58801c2deceSHerbert Xu base->cra_flags |= CRYPTO_ALG_TYPE_AHASH; 58901c2deceSHerbert Xu 59001c2deceSHerbert Xu return 0; 59101c2deceSHerbert Xu } 59201c2deceSHerbert Xu 59301c2deceSHerbert Xu int crypto_register_ahash(struct ahash_alg *alg) 59401c2deceSHerbert Xu { 59501c2deceSHerbert Xu struct crypto_alg *base = &alg->halg.base; 59601c2deceSHerbert Xu int err; 59701c2deceSHerbert Xu 59801c2deceSHerbert Xu err = ahash_prepare_alg(alg); 59901c2deceSHerbert Xu if (err) 60001c2deceSHerbert Xu return err; 60101c2deceSHerbert Xu 60201c2deceSHerbert Xu return crypto_register_alg(base); 60301c2deceSHerbert Xu } 60401c2deceSHerbert Xu EXPORT_SYMBOL_GPL(crypto_register_ahash); 60501c2deceSHerbert Xu 60601c2deceSHerbert Xu int crypto_unregister_ahash(struct ahash_alg *alg) 60701c2deceSHerbert Xu { 60801c2deceSHerbert Xu return crypto_unregister_alg(&alg->halg.base); 60901c2deceSHerbert Xu } 61001c2deceSHerbert Xu EXPORT_SYMBOL_GPL(crypto_unregister_ahash); 61101c2deceSHerbert Xu 6126f7473c5SRabin Vincent int crypto_register_ahashes(struct ahash_alg *algs, int count) 6136f7473c5SRabin Vincent { 6146f7473c5SRabin Vincent int i, ret; 6156f7473c5SRabin Vincent 6166f7473c5SRabin Vincent for (i = 0; i < count; i++) { 6176f7473c5SRabin Vincent ret = crypto_register_ahash(&algs[i]); 6186f7473c5SRabin Vincent if (ret) 6196f7473c5SRabin Vincent goto err; 6206f7473c5SRabin Vincent } 6216f7473c5SRabin Vincent 6226f7473c5SRabin Vincent return 0; 6236f7473c5SRabin Vincent 6246f7473c5SRabin Vincent err: 6256f7473c5SRabin Vincent for (--i; i >= 0; --i) 6266f7473c5SRabin Vincent crypto_unregister_ahash(&algs[i]); 6276f7473c5SRabin Vincent 6286f7473c5SRabin Vincent return ret; 6296f7473c5SRabin Vincent } 6306f7473c5SRabin Vincent EXPORT_SYMBOL_GPL(crypto_register_ahashes); 6316f7473c5SRabin Vincent 6326f7473c5SRabin Vincent void crypto_unregister_ahashes(struct ahash_alg *algs, int count) 6336f7473c5SRabin Vincent { 6346f7473c5SRabin Vincent int i; 6356f7473c5SRabin Vincent 6366f7473c5SRabin Vincent for (i = count - 1; i >= 0; --i) 6376f7473c5SRabin Vincent crypto_unregister_ahash(&algs[i]); 6386f7473c5SRabin Vincent } 6396f7473c5SRabin Vincent EXPORT_SYMBOL_GPL(crypto_unregister_ahashes); 6406f7473c5SRabin Vincent 64101c2deceSHerbert Xu int ahash_register_instance(struct crypto_template *tmpl, 64201c2deceSHerbert Xu struct ahash_instance *inst) 64301c2deceSHerbert Xu { 64401c2deceSHerbert Xu int err; 64501c2deceSHerbert Xu 64601c2deceSHerbert Xu err = ahash_prepare_alg(&inst->alg); 64701c2deceSHerbert Xu if (err) 64801c2deceSHerbert Xu return err; 64901c2deceSHerbert Xu 65001c2deceSHerbert Xu return crypto_register_instance(tmpl, ahash_crypto_instance(inst)); 65101c2deceSHerbert Xu } 65201c2deceSHerbert Xu EXPORT_SYMBOL_GPL(ahash_register_instance); 65301c2deceSHerbert Xu 65401c2deceSHerbert Xu void ahash_free_instance(struct crypto_instance *inst) 65501c2deceSHerbert Xu { 65601c2deceSHerbert Xu crypto_drop_spawn(crypto_instance_ctx(inst)); 65701c2deceSHerbert Xu kfree(ahash_instance(inst)); 65801c2deceSHerbert Xu } 65901c2deceSHerbert Xu EXPORT_SYMBOL_GPL(ahash_free_instance); 66001c2deceSHerbert Xu 66101c2deceSHerbert Xu int crypto_init_ahash_spawn(struct crypto_ahash_spawn *spawn, 66201c2deceSHerbert Xu struct hash_alg_common *alg, 66301c2deceSHerbert Xu struct crypto_instance *inst) 66401c2deceSHerbert Xu { 66501c2deceSHerbert Xu return crypto_init_spawn2(&spawn->base, &alg->base, inst, 66601c2deceSHerbert Xu &crypto_ahash_type); 66701c2deceSHerbert Xu } 66801c2deceSHerbert Xu EXPORT_SYMBOL_GPL(crypto_init_ahash_spawn); 66901c2deceSHerbert Xu 67001c2deceSHerbert Xu struct hash_alg_common *ahash_attr_alg(struct rtattr *rta, u32 type, u32 mask) 67101c2deceSHerbert Xu { 67201c2deceSHerbert Xu struct crypto_alg *alg; 67301c2deceSHerbert Xu 67401c2deceSHerbert Xu alg = crypto_attr_alg2(rta, &crypto_ahash_type, type, mask); 67501c2deceSHerbert Xu return IS_ERR(alg) ? ERR_CAST(alg) : __crypto_hash_alg_common(alg); 67601c2deceSHerbert Xu } 67701c2deceSHerbert Xu EXPORT_SYMBOL_GPL(ahash_attr_alg); 67801c2deceSHerbert Xu 679cd6ed77aSEric Biggers bool crypto_hash_alg_has_setkey(struct hash_alg_common *halg) 680cd6ed77aSEric Biggers { 681cd6ed77aSEric Biggers struct crypto_alg *alg = &halg->base; 682cd6ed77aSEric Biggers 683cd6ed77aSEric Biggers if (alg->cra_type != &crypto_ahash_type) 684cd6ed77aSEric Biggers return crypto_shash_alg_has_setkey(__crypto_shash_alg(alg)); 685cd6ed77aSEric Biggers 686cd6ed77aSEric Biggers return __crypto_ahash_alg(alg)->setkey != NULL; 687cd6ed77aSEric Biggers } 688cd6ed77aSEric Biggers EXPORT_SYMBOL_GPL(crypto_hash_alg_has_setkey); 689cd6ed77aSEric Biggers 690004a403cSLoc Ho MODULE_LICENSE("GPL"); 691004a403cSLoc Ho MODULE_DESCRIPTION("Asynchronous cryptographic hash type"); 692