18ff59090SHerbert Xu /* 28ff59090SHerbert Xu * algif_skcipher: User-space interface for skcipher algorithms 38ff59090SHerbert Xu * 48ff59090SHerbert Xu * This file provides the user-space API for symmetric key ciphers. 58ff59090SHerbert Xu * 68ff59090SHerbert Xu * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au> 78ff59090SHerbert Xu * 88ff59090SHerbert Xu * This program is free software; you can redistribute it and/or modify it 98ff59090SHerbert Xu * under the terms of the GNU General Public License as published by the Free 108ff59090SHerbert Xu * Software Foundation; either version 2 of the License, or (at your option) 118ff59090SHerbert Xu * any later version. 128ff59090SHerbert Xu * 13e870456dSStephan Mueller * The following concept of the memory management is used: 14e870456dSStephan Mueller * 15e870456dSStephan Mueller * The kernel maintains two SGLs, the TX SGL and the RX SGL. The TX SGL is 16e870456dSStephan Mueller * filled by user space with the data submitted via sendpage/sendmsg. Filling 17e870456dSStephan Mueller * up the TX SGL does not cause a crypto operation -- the data will only be 18e870456dSStephan Mueller * tracked by the kernel. Upon receipt of one recvmsg call, the caller must 19e870456dSStephan Mueller * provide a buffer which is tracked with the RX SGL. 20e870456dSStephan Mueller * 21e870456dSStephan Mueller * During the processing of the recvmsg operation, the cipher request is 22e870456dSStephan Mueller * allocated and prepared. As part of the recvmsg operation, the processed 23e870456dSStephan Mueller * TX buffers are extracted from the TX SGL into a separate SGL. 24e870456dSStephan Mueller * 25e870456dSStephan Mueller * After the completion of the crypto operation, the RX SGL and the cipher 26e870456dSStephan Mueller * request is released. The extracted TX SGL parts are released together with 27e870456dSStephan Mueller * the RX SGL release. 288ff59090SHerbert Xu */ 298ff59090SHerbert Xu 308ff59090SHerbert Xu #include <crypto/scatterwalk.h> 318ff59090SHerbert Xu #include <crypto/skcipher.h> 328ff59090SHerbert Xu #include <crypto/if_alg.h> 338ff59090SHerbert Xu #include <linux/init.h> 348ff59090SHerbert Xu #include <linux/list.h> 358ff59090SHerbert Xu #include <linux/kernel.h> 368ff59090SHerbert Xu #include <linux/mm.h> 378ff59090SHerbert Xu #include <linux/module.h> 388ff59090SHerbert Xu #include <linux/net.h> 398ff59090SHerbert Xu #include <net/sock.h> 408ff59090SHerbert Xu 41dd504589SHerbert Xu struct skcipher_tfm { 42dd504589SHerbert Xu struct crypto_skcipher *skcipher; 43dd504589SHerbert Xu bool has_key; 44dd504589SHerbert Xu }; 45dd504589SHerbert Xu 461b784140SYing Xue static int skcipher_sendmsg(struct socket *sock, struct msghdr *msg, 471b784140SYing Xue size_t size) 488ff59090SHerbert Xu { 498ff59090SHerbert Xu struct sock *sk = sock->sk; 508ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 516454c2b8SHerbert Xu struct sock *psk = ask->parent; 526454c2b8SHerbert Xu struct alg_sock *pask = alg_sk(psk); 536454c2b8SHerbert Xu struct skcipher_tfm *skc = pask->private; 546454c2b8SHerbert Xu struct crypto_skcipher *tfm = skc->skcipher; 550d96e4baSHerbert Xu unsigned ivsize = crypto_skcipher_ivsize(tfm); 568ff59090SHerbert Xu 572d97591eSStephan Mueller return af_alg_sendmsg(sock, msg, size, ivsize); 58a596999bSTadeusz Struk } 59a596999bSTadeusz Struk 60e870456dSStephan Mueller static int _skcipher_recvmsg(struct socket *sock, struct msghdr *msg, 61e870456dSStephan Mueller size_t ignored, int flags) 62a596999bSTadeusz Struk { 63a596999bSTadeusz Struk struct sock *sk = sock->sk; 64a596999bSTadeusz Struk struct alg_sock *ask = alg_sk(sk); 65ec69bbfbSHerbert Xu struct sock *psk = ask->parent; 66ec69bbfbSHerbert Xu struct alg_sock *pask = alg_sk(psk); 672d97591eSStephan Mueller struct af_alg_ctx *ctx = ask->private; 68ec69bbfbSHerbert Xu struct skcipher_tfm *skc = pask->private; 69ec69bbfbSHerbert Xu struct crypto_skcipher *tfm = skc->skcipher; 70e870456dSStephan Mueller unsigned int bs = crypto_skcipher_blocksize(tfm); 712d97591eSStephan Mueller struct af_alg_async_req *areq; 72e870456dSStephan Mueller int err = 0; 73e870456dSStephan Mueller size_t len = 0; 74ec69bbfbSHerbert Xu 75*11edb555SStephan Mueller if (!ctx->used) { 76*11edb555SStephan Mueller err = af_alg_wait_for_data(sk, flags); 77*11edb555SStephan Mueller if (err) 78*11edb555SStephan Mueller return err; 79*11edb555SStephan Mueller } 80*11edb555SStephan Mueller 81e870456dSStephan Mueller /* Allocate cipher request for current operation. */ 822d97591eSStephan Mueller areq = af_alg_alloc_areq(sk, sizeof(struct af_alg_async_req) + 832d97591eSStephan Mueller crypto_skcipher_reqsize(tfm)); 842d97591eSStephan Mueller if (IS_ERR(areq)) 852d97591eSStephan Mueller return PTR_ERR(areq); 86ec69bbfbSHerbert Xu 87e870456dSStephan Mueller /* convert iovecs of output buffers into RX SGL */ 882d97591eSStephan Mueller err = af_alg_get_rsgl(sk, msg, flags, areq, -1, &len); 89a596999bSTadeusz Struk if (err) 90a596999bSTadeusz Struk goto free; 91a596999bSTadeusz Struk 92e870456dSStephan Mueller /* Process only as much RX buffers for which we have TX data */ 93e870456dSStephan Mueller if (len > ctx->used) 94e870456dSStephan Mueller len = ctx->used; 95033f46b3Stadeusz.struk@intel.com 96e870456dSStephan Mueller /* 97e870456dSStephan Mueller * If more buffers are to be expected to be processed, process only 98e870456dSStephan Mueller * full block size buffers. 99e870456dSStephan Mueller */ 100e870456dSStephan Mueller if (ctx->more || len < ctx->used) 101e870456dSStephan Mueller len -= len % bs; 102a596999bSTadeusz Struk 103e870456dSStephan Mueller /* 104e870456dSStephan Mueller * Create a per request TX SGL for this request which tracks the 105e870456dSStephan Mueller * SG entries from the global TX SGL. 106e870456dSStephan Mueller */ 1072d97591eSStephan Mueller areq->tsgl_entries = af_alg_count_tsgl(sk, len, 0); 108e870456dSStephan Mueller if (!areq->tsgl_entries) 109e870456dSStephan Mueller areq->tsgl_entries = 1; 110e870456dSStephan Mueller areq->tsgl = sock_kmalloc(sk, sizeof(*areq->tsgl) * areq->tsgl_entries, 111e870456dSStephan Mueller GFP_KERNEL); 112e870456dSStephan Mueller if (!areq->tsgl) { 113e870456dSStephan Mueller err = -ENOMEM; 114bc97e57eSHerbert Xu goto free; 115e870456dSStephan Mueller } 116e870456dSStephan Mueller sg_init_table(areq->tsgl, areq->tsgl_entries); 1172d97591eSStephan Mueller af_alg_pull_tsgl(sk, len, areq->tsgl, 0); 1188ff59090SHerbert Xu 119e870456dSStephan Mueller /* Initialize the crypto operation */ 1202d97591eSStephan Mueller skcipher_request_set_tfm(&areq->cra_u.skcipher_req, tfm); 1212d97591eSStephan Mueller skcipher_request_set_crypt(&areq->cra_u.skcipher_req, areq->tsgl, 1222d97591eSStephan Mueller areq->first_rsgl.sgl.sg, len, ctx->iv); 1234f0414e5SHerbert Xu 124e870456dSStephan Mueller if (msg->msg_iocb && !is_sync_kiocb(msg->msg_iocb)) { 125e870456dSStephan Mueller /* AIO operation */ 1267d2c3f54SStephan Mueller sock_hold(sk); 127e870456dSStephan Mueller areq->iocb = msg->msg_iocb; 1282d97591eSStephan Mueller skcipher_request_set_callback(&areq->cra_u.skcipher_req, 129e870456dSStephan Mueller CRYPTO_TFM_REQ_MAY_SLEEP, 1302d97591eSStephan Mueller af_alg_async_cb, areq); 1312d97591eSStephan Mueller err = ctx->enc ? 1322d97591eSStephan Mueller crypto_skcipher_encrypt(&areq->cra_u.skcipher_req) : 1332d97591eSStephan Mueller crypto_skcipher_decrypt(&areq->cra_u.skcipher_req); 1347d2c3f54SStephan Mueller 1357d2c3f54SStephan Mueller /* AIO operation in progress */ 1367d2c3f54SStephan Mueller if (err == -EINPROGRESS || err == -EBUSY) { 1377d2c3f54SStephan Mueller /* Remember output size that will be generated. */ 1387d2c3f54SStephan Mueller areq->outlen = len; 1397d2c3f54SStephan Mueller 1407d2c3f54SStephan Mueller return -EIOCBQUEUED; 1417d2c3f54SStephan Mueller } 1427d2c3f54SStephan Mueller 1437d2c3f54SStephan Mueller sock_put(sk); 144e870456dSStephan Mueller } else { 145e870456dSStephan Mueller /* Synchronous operation */ 1462d97591eSStephan Mueller skcipher_request_set_callback(&areq->cra_u.skcipher_req, 147e870456dSStephan Mueller CRYPTO_TFM_REQ_MAY_SLEEP | 148e870456dSStephan Mueller CRYPTO_TFM_REQ_MAY_BACKLOG, 1492c3f8b16SGilad Ben-Yossef crypto_req_done, &ctx->wait); 1502c3f8b16SGilad Ben-Yossef err = crypto_wait_req(ctx->enc ? 1512d97591eSStephan Mueller crypto_skcipher_encrypt(&areq->cra_u.skcipher_req) : 1522d97591eSStephan Mueller crypto_skcipher_decrypt(&areq->cra_u.skcipher_req), 1532c3f8b16SGilad Ben-Yossef &ctx->wait); 1548ff59090SHerbert Xu } 1558ff59090SHerbert Xu 1568ff59090SHerbert Xu 157e870456dSStephan Mueller free: 1587d2c3f54SStephan Mueller af_alg_free_resources(areq); 1598ff59090SHerbert Xu 160e870456dSStephan Mueller return err ? err : len; 1618ff59090SHerbert Xu } 1628ff59090SHerbert Xu 163a596999bSTadeusz Struk static int skcipher_recvmsg(struct socket *sock, struct msghdr *msg, 164a596999bSTadeusz Struk size_t ignored, int flags) 165a596999bSTadeusz Struk { 166e870456dSStephan Mueller struct sock *sk = sock->sk; 167e870456dSStephan Mueller int ret = 0; 168e870456dSStephan Mueller 169e870456dSStephan Mueller lock_sock(sk); 170e870456dSStephan Mueller while (msg_data_left(msg)) { 171e870456dSStephan Mueller int err = _skcipher_recvmsg(sock, msg, ignored, flags); 172e870456dSStephan Mueller 173e870456dSStephan Mueller /* 174e870456dSStephan Mueller * This error covers -EIOCBQUEUED which implies that we can 175e870456dSStephan Mueller * only handle one AIO request. If the caller wants to have 176e870456dSStephan Mueller * multiple AIO requests in parallel, he must make multiple 177e870456dSStephan Mueller * separate AIO calls. 1785703c826SStephan Mueller * 1795703c826SStephan Mueller * Also return the error if no data has been processed so far. 180e870456dSStephan Mueller */ 181e870456dSStephan Mueller if (err <= 0) { 1825703c826SStephan Mueller if (err == -EIOCBQUEUED || !ret) 183e870456dSStephan Mueller ret = err; 184e870456dSStephan Mueller goto out; 185e870456dSStephan Mueller } 186e870456dSStephan Mueller 187e870456dSStephan Mueller ret += err; 188e870456dSStephan Mueller } 189e870456dSStephan Mueller 190e870456dSStephan Mueller out: 1912d97591eSStephan Mueller af_alg_wmem_wakeup(sk); 192e870456dSStephan Mueller release_sock(sk); 193e870456dSStephan Mueller return ret; 194a596999bSTadeusz Struk } 1958ff59090SHerbert Xu 1968ff59090SHerbert Xu 1978ff59090SHerbert Xu static struct proto_ops algif_skcipher_ops = { 1988ff59090SHerbert Xu .family = PF_ALG, 1998ff59090SHerbert Xu 2008ff59090SHerbert Xu .connect = sock_no_connect, 2018ff59090SHerbert Xu .socketpair = sock_no_socketpair, 2028ff59090SHerbert Xu .getname = sock_no_getname, 2038ff59090SHerbert Xu .ioctl = sock_no_ioctl, 2048ff59090SHerbert Xu .listen = sock_no_listen, 2058ff59090SHerbert Xu .shutdown = sock_no_shutdown, 2068ff59090SHerbert Xu .getsockopt = sock_no_getsockopt, 2078ff59090SHerbert Xu .mmap = sock_no_mmap, 2088ff59090SHerbert Xu .bind = sock_no_bind, 2098ff59090SHerbert Xu .accept = sock_no_accept, 2108ff59090SHerbert Xu .setsockopt = sock_no_setsockopt, 2118ff59090SHerbert Xu 2128ff59090SHerbert Xu .release = af_alg_release, 2138ff59090SHerbert Xu .sendmsg = skcipher_sendmsg, 2142d97591eSStephan Mueller .sendpage = af_alg_sendpage, 2158ff59090SHerbert Xu .recvmsg = skcipher_recvmsg, 2162d97591eSStephan Mueller .poll = af_alg_poll, 2178ff59090SHerbert Xu }; 2188ff59090SHerbert Xu 219a0fa2d03SHerbert Xu static int skcipher_check_key(struct socket *sock) 220a0fa2d03SHerbert Xu { 2211822793aSHerbert Xu int err = 0; 222a0fa2d03SHerbert Xu struct sock *psk; 223a0fa2d03SHerbert Xu struct alg_sock *pask; 224a0fa2d03SHerbert Xu struct skcipher_tfm *tfm; 225a0fa2d03SHerbert Xu struct sock *sk = sock->sk; 226a0fa2d03SHerbert Xu struct alg_sock *ask = alg_sk(sk); 227a0fa2d03SHerbert Xu 2281822793aSHerbert Xu lock_sock(sk); 229a0fa2d03SHerbert Xu if (ask->refcnt) 2301822793aSHerbert Xu goto unlock_child; 231a0fa2d03SHerbert Xu 232a0fa2d03SHerbert Xu psk = ask->parent; 233a0fa2d03SHerbert Xu pask = alg_sk(ask->parent); 234a0fa2d03SHerbert Xu tfm = pask->private; 235a0fa2d03SHerbert Xu 236a0fa2d03SHerbert Xu err = -ENOKEY; 2371822793aSHerbert Xu lock_sock_nested(psk, SINGLE_DEPTH_NESTING); 238a0fa2d03SHerbert Xu if (!tfm->has_key) 239a0fa2d03SHerbert Xu goto unlock; 240a0fa2d03SHerbert Xu 241a0fa2d03SHerbert Xu if (!pask->refcnt++) 242a0fa2d03SHerbert Xu sock_hold(psk); 243a0fa2d03SHerbert Xu 244a0fa2d03SHerbert Xu ask->refcnt = 1; 245a0fa2d03SHerbert Xu sock_put(psk); 246a0fa2d03SHerbert Xu 247a0fa2d03SHerbert Xu err = 0; 248a0fa2d03SHerbert Xu 249a0fa2d03SHerbert Xu unlock: 250a0fa2d03SHerbert Xu release_sock(psk); 2511822793aSHerbert Xu unlock_child: 2521822793aSHerbert Xu release_sock(sk); 253a0fa2d03SHerbert Xu 254a0fa2d03SHerbert Xu return err; 255a0fa2d03SHerbert Xu } 256a0fa2d03SHerbert Xu 257a0fa2d03SHerbert Xu static int skcipher_sendmsg_nokey(struct socket *sock, struct msghdr *msg, 258a0fa2d03SHerbert Xu size_t size) 259a0fa2d03SHerbert Xu { 260a0fa2d03SHerbert Xu int err; 261a0fa2d03SHerbert Xu 262a0fa2d03SHerbert Xu err = skcipher_check_key(sock); 263a0fa2d03SHerbert Xu if (err) 264a0fa2d03SHerbert Xu return err; 265a0fa2d03SHerbert Xu 266a0fa2d03SHerbert Xu return skcipher_sendmsg(sock, msg, size); 267a0fa2d03SHerbert Xu } 268a0fa2d03SHerbert Xu 269a0fa2d03SHerbert Xu static ssize_t skcipher_sendpage_nokey(struct socket *sock, struct page *page, 270a0fa2d03SHerbert Xu int offset, size_t size, int flags) 271a0fa2d03SHerbert Xu { 272a0fa2d03SHerbert Xu int err; 273a0fa2d03SHerbert Xu 274a0fa2d03SHerbert Xu err = skcipher_check_key(sock); 275a0fa2d03SHerbert Xu if (err) 276a0fa2d03SHerbert Xu return err; 277a0fa2d03SHerbert Xu 2782d97591eSStephan Mueller return af_alg_sendpage(sock, page, offset, size, flags); 279a0fa2d03SHerbert Xu } 280a0fa2d03SHerbert Xu 281a0fa2d03SHerbert Xu static int skcipher_recvmsg_nokey(struct socket *sock, struct msghdr *msg, 282a0fa2d03SHerbert Xu size_t ignored, int flags) 283a0fa2d03SHerbert Xu { 284a0fa2d03SHerbert Xu int err; 285a0fa2d03SHerbert Xu 286a0fa2d03SHerbert Xu err = skcipher_check_key(sock); 287a0fa2d03SHerbert Xu if (err) 288a0fa2d03SHerbert Xu return err; 289a0fa2d03SHerbert Xu 290a0fa2d03SHerbert Xu return skcipher_recvmsg(sock, msg, ignored, flags); 291a0fa2d03SHerbert Xu } 292a0fa2d03SHerbert Xu 293a0fa2d03SHerbert Xu static struct proto_ops algif_skcipher_ops_nokey = { 294a0fa2d03SHerbert Xu .family = PF_ALG, 295a0fa2d03SHerbert Xu 296a0fa2d03SHerbert Xu .connect = sock_no_connect, 297a0fa2d03SHerbert Xu .socketpair = sock_no_socketpair, 298a0fa2d03SHerbert Xu .getname = sock_no_getname, 299a0fa2d03SHerbert Xu .ioctl = sock_no_ioctl, 300a0fa2d03SHerbert Xu .listen = sock_no_listen, 301a0fa2d03SHerbert Xu .shutdown = sock_no_shutdown, 302a0fa2d03SHerbert Xu .getsockopt = sock_no_getsockopt, 303a0fa2d03SHerbert Xu .mmap = sock_no_mmap, 304a0fa2d03SHerbert Xu .bind = sock_no_bind, 305a0fa2d03SHerbert Xu .accept = sock_no_accept, 306a0fa2d03SHerbert Xu .setsockopt = sock_no_setsockopt, 307a0fa2d03SHerbert Xu 308a0fa2d03SHerbert Xu .release = af_alg_release, 309a0fa2d03SHerbert Xu .sendmsg = skcipher_sendmsg_nokey, 310a0fa2d03SHerbert Xu .sendpage = skcipher_sendpage_nokey, 311a0fa2d03SHerbert Xu .recvmsg = skcipher_recvmsg_nokey, 3122d97591eSStephan Mueller .poll = af_alg_poll, 313a0fa2d03SHerbert Xu }; 314a0fa2d03SHerbert Xu 3158ff59090SHerbert Xu static void *skcipher_bind(const char *name, u32 type, u32 mask) 3168ff59090SHerbert Xu { 317dd504589SHerbert Xu struct skcipher_tfm *tfm; 318dd504589SHerbert Xu struct crypto_skcipher *skcipher; 319dd504589SHerbert Xu 320dd504589SHerbert Xu tfm = kzalloc(sizeof(*tfm), GFP_KERNEL); 321dd504589SHerbert Xu if (!tfm) 322dd504589SHerbert Xu return ERR_PTR(-ENOMEM); 323dd504589SHerbert Xu 324dd504589SHerbert Xu skcipher = crypto_alloc_skcipher(name, type, mask); 325dd504589SHerbert Xu if (IS_ERR(skcipher)) { 326dd504589SHerbert Xu kfree(tfm); 327dd504589SHerbert Xu return ERR_CAST(skcipher); 328dd504589SHerbert Xu } 329dd504589SHerbert Xu 330dd504589SHerbert Xu tfm->skcipher = skcipher; 331dd504589SHerbert Xu 332dd504589SHerbert Xu return tfm; 3338ff59090SHerbert Xu } 3348ff59090SHerbert Xu 3358ff59090SHerbert Xu static void skcipher_release(void *private) 3368ff59090SHerbert Xu { 337dd504589SHerbert Xu struct skcipher_tfm *tfm = private; 338dd504589SHerbert Xu 339dd504589SHerbert Xu crypto_free_skcipher(tfm->skcipher); 340dd504589SHerbert Xu kfree(tfm); 3418ff59090SHerbert Xu } 3428ff59090SHerbert Xu 3438ff59090SHerbert Xu static int skcipher_setkey(void *private, const u8 *key, unsigned int keylen) 3448ff59090SHerbert Xu { 345dd504589SHerbert Xu struct skcipher_tfm *tfm = private; 346dd504589SHerbert Xu int err; 347dd504589SHerbert Xu 348dd504589SHerbert Xu err = crypto_skcipher_setkey(tfm->skcipher, key, keylen); 349dd504589SHerbert Xu tfm->has_key = !err; 350dd504589SHerbert Xu 351dd504589SHerbert Xu return err; 3528ff59090SHerbert Xu } 3538ff59090SHerbert Xu 3548ff59090SHerbert Xu static void skcipher_sock_destruct(struct sock *sk) 3558ff59090SHerbert Xu { 3568ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 3572d97591eSStephan Mueller struct af_alg_ctx *ctx = ask->private; 358e870456dSStephan Mueller struct sock *psk = ask->parent; 359e870456dSStephan Mueller struct alg_sock *pask = alg_sk(psk); 360e870456dSStephan Mueller struct skcipher_tfm *skc = pask->private; 361e870456dSStephan Mueller struct crypto_skcipher *tfm = skc->skcipher; 3628ff59090SHerbert Xu 3632d97591eSStephan Mueller af_alg_pull_tsgl(sk, ctx->used, NULL, 0); 3640d96e4baSHerbert Xu sock_kzfree_s(sk, ctx->iv, crypto_skcipher_ivsize(tfm)); 3658ff59090SHerbert Xu sock_kfree_s(sk, ctx, ctx->len); 3668ff59090SHerbert Xu af_alg_release_parent(sk); 3678ff59090SHerbert Xu } 3688ff59090SHerbert Xu 369d7b65aeeSHerbert Xu static int skcipher_accept_parent_nokey(void *private, struct sock *sk) 3708ff59090SHerbert Xu { 3712d97591eSStephan Mueller struct af_alg_ctx *ctx; 3728ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 373dd504589SHerbert Xu struct skcipher_tfm *tfm = private; 374dd504589SHerbert Xu struct crypto_skcipher *skcipher = tfm->skcipher; 375e870456dSStephan Mueller unsigned int len = sizeof(*ctx); 3768ff59090SHerbert Xu 3778ff59090SHerbert Xu ctx = sock_kmalloc(sk, len, GFP_KERNEL); 3788ff59090SHerbert Xu if (!ctx) 3798ff59090SHerbert Xu return -ENOMEM; 3808ff59090SHerbert Xu 381dd504589SHerbert Xu ctx->iv = sock_kmalloc(sk, crypto_skcipher_ivsize(skcipher), 3828ff59090SHerbert Xu GFP_KERNEL); 3838ff59090SHerbert Xu if (!ctx->iv) { 3848ff59090SHerbert Xu sock_kfree_s(sk, ctx, len); 3858ff59090SHerbert Xu return -ENOMEM; 3868ff59090SHerbert Xu } 3878ff59090SHerbert Xu 388dd504589SHerbert Xu memset(ctx->iv, 0, crypto_skcipher_ivsize(skcipher)); 3898ff59090SHerbert Xu 390e870456dSStephan Mueller INIT_LIST_HEAD(&ctx->tsgl_list); 3918ff59090SHerbert Xu ctx->len = len; 3928ff59090SHerbert Xu ctx->used = 0; 393e870456dSStephan Mueller ctx->rcvused = 0; 3948ff59090SHerbert Xu ctx->more = 0; 3958ff59090SHerbert Xu ctx->merge = 0; 3968ff59090SHerbert Xu ctx->enc = 0; 3972c3f8b16SGilad Ben-Yossef crypto_init_wait(&ctx->wait); 3988ff59090SHerbert Xu 3998ff59090SHerbert Xu ask->private = ctx; 4008ff59090SHerbert Xu 4018ff59090SHerbert Xu sk->sk_destruct = skcipher_sock_destruct; 4028ff59090SHerbert Xu 4038ff59090SHerbert Xu return 0; 4048ff59090SHerbert Xu } 4058ff59090SHerbert Xu 406a0fa2d03SHerbert Xu static int skcipher_accept_parent(void *private, struct sock *sk) 407a0fa2d03SHerbert Xu { 408a0fa2d03SHerbert Xu struct skcipher_tfm *tfm = private; 409a0fa2d03SHerbert Xu 4106e8d8ecfSHerbert Xu if (!tfm->has_key && crypto_skcipher_has_setkey(tfm->skcipher)) 411a0fa2d03SHerbert Xu return -ENOKEY; 412a0fa2d03SHerbert Xu 413d7b65aeeSHerbert Xu return skcipher_accept_parent_nokey(private, sk); 414a0fa2d03SHerbert Xu } 415a0fa2d03SHerbert Xu 4168ff59090SHerbert Xu static const struct af_alg_type algif_type_skcipher = { 4178ff59090SHerbert Xu .bind = skcipher_bind, 4188ff59090SHerbert Xu .release = skcipher_release, 4198ff59090SHerbert Xu .setkey = skcipher_setkey, 4208ff59090SHerbert Xu .accept = skcipher_accept_parent, 421a0fa2d03SHerbert Xu .accept_nokey = skcipher_accept_parent_nokey, 4228ff59090SHerbert Xu .ops = &algif_skcipher_ops, 423a0fa2d03SHerbert Xu .ops_nokey = &algif_skcipher_ops_nokey, 4248ff59090SHerbert Xu .name = "skcipher", 4258ff59090SHerbert Xu .owner = THIS_MODULE 4268ff59090SHerbert Xu }; 4278ff59090SHerbert Xu 4288ff59090SHerbert Xu static int __init algif_skcipher_init(void) 4298ff59090SHerbert Xu { 4308ff59090SHerbert Xu return af_alg_register_type(&algif_type_skcipher); 4318ff59090SHerbert Xu } 4328ff59090SHerbert Xu 4338ff59090SHerbert Xu static void __exit algif_skcipher_exit(void) 4348ff59090SHerbert Xu { 4358ff59090SHerbert Xu int err = af_alg_unregister_type(&algif_type_skcipher); 4368ff59090SHerbert Xu BUG_ON(err); 4378ff59090SHerbert Xu } 4388ff59090SHerbert Xu 4398ff59090SHerbert Xu module_init(algif_skcipher_init); 4408ff59090SHerbert Xu module_exit(algif_skcipher_exit); 4418ff59090SHerbert Xu MODULE_LICENSE("GPL"); 442