18ff59090SHerbert Xu /* 28ff59090SHerbert Xu * algif_skcipher: User-space interface for skcipher algorithms 38ff59090SHerbert Xu * 48ff59090SHerbert Xu * This file provides the user-space API for symmetric key ciphers. 58ff59090SHerbert Xu * 68ff59090SHerbert Xu * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au> 78ff59090SHerbert Xu * 88ff59090SHerbert Xu * This program is free software; you can redistribute it and/or modify it 98ff59090SHerbert Xu * under the terms of the GNU General Public License as published by the Free 108ff59090SHerbert Xu * Software Foundation; either version 2 of the License, or (at your option) 118ff59090SHerbert Xu * any later version. 128ff59090SHerbert Xu * 138ff59090SHerbert Xu */ 148ff59090SHerbert Xu 158ff59090SHerbert Xu #include <crypto/scatterwalk.h> 168ff59090SHerbert Xu #include <crypto/skcipher.h> 178ff59090SHerbert Xu #include <crypto/if_alg.h> 188ff59090SHerbert Xu #include <linux/init.h> 198ff59090SHerbert Xu #include <linux/list.h> 208ff59090SHerbert Xu #include <linux/kernel.h> 218ff59090SHerbert Xu #include <linux/mm.h> 228ff59090SHerbert Xu #include <linux/module.h> 238ff59090SHerbert Xu #include <linux/net.h> 248ff59090SHerbert Xu #include <net/sock.h> 258ff59090SHerbert Xu 268ff59090SHerbert Xu struct skcipher_sg_list { 278ff59090SHerbert Xu struct list_head list; 288ff59090SHerbert Xu 298ff59090SHerbert Xu int cur; 308ff59090SHerbert Xu 318ff59090SHerbert Xu struct scatterlist sg[0]; 328ff59090SHerbert Xu }; 338ff59090SHerbert Xu 34dd504589SHerbert Xu struct skcipher_tfm { 35dd504589SHerbert Xu struct crypto_skcipher *skcipher; 36dd504589SHerbert Xu bool has_key; 37dd504589SHerbert Xu }; 38dd504589SHerbert Xu 398ff59090SHerbert Xu struct skcipher_ctx { 408ff59090SHerbert Xu struct list_head tsgl; 418ff59090SHerbert Xu struct af_alg_sgl rsgl; 428ff59090SHerbert Xu 438ff59090SHerbert Xu void *iv; 448ff59090SHerbert Xu 458ff59090SHerbert Xu struct af_alg_completion completion; 468ff59090SHerbert Xu 47a596999bSTadeusz Struk atomic_t inflight; 48652d5b8aSLABBE Corentin size_t used; 498ff59090SHerbert Xu 508ff59090SHerbert Xu unsigned int len; 518ff59090SHerbert Xu bool more; 528ff59090SHerbert Xu bool merge; 538ff59090SHerbert Xu bool enc; 548ff59090SHerbert Xu 550d96e4baSHerbert Xu struct skcipher_request req; 568ff59090SHerbert Xu }; 578ff59090SHerbert Xu 58a596999bSTadeusz Struk struct skcipher_async_rsgl { 59a596999bSTadeusz Struk struct af_alg_sgl sgl; 60a596999bSTadeusz Struk struct list_head list; 61a596999bSTadeusz Struk }; 62a596999bSTadeusz Struk 63a596999bSTadeusz Struk struct skcipher_async_req { 64a596999bSTadeusz Struk struct kiocb *iocb; 65a596999bSTadeusz Struk struct skcipher_async_rsgl first_sgl; 66a596999bSTadeusz Struk struct list_head list; 67a596999bSTadeusz Struk struct scatterlist *tsg; 68ec69bbfbSHerbert Xu atomic_t *inflight; 69ec69bbfbSHerbert Xu struct skcipher_request req; 70a596999bSTadeusz Struk }; 71a596999bSTadeusz Struk 72e2cffb5fSOndrej Kozina #define MAX_SGL_ENTS ((4096 - sizeof(struct skcipher_sg_list)) / \ 738ff59090SHerbert Xu sizeof(struct scatterlist) - 1) 748ff59090SHerbert Xu 75a596999bSTadeusz Struk static void skcipher_free_async_sgls(struct skcipher_async_req *sreq) 76a596999bSTadeusz Struk { 77a596999bSTadeusz Struk struct skcipher_async_rsgl *rsgl, *tmp; 78a596999bSTadeusz Struk struct scatterlist *sgl; 79a596999bSTadeusz Struk struct scatterlist *sg; 80a596999bSTadeusz Struk int i, n; 81a596999bSTadeusz Struk 82a596999bSTadeusz Struk list_for_each_entry_safe(rsgl, tmp, &sreq->list, list) { 83a596999bSTadeusz Struk af_alg_free_sg(&rsgl->sgl); 84a596999bSTadeusz Struk if (rsgl != &sreq->first_sgl) 85a596999bSTadeusz Struk kfree(rsgl); 86a596999bSTadeusz Struk } 87a596999bSTadeusz Struk sgl = sreq->tsg; 88a596999bSTadeusz Struk n = sg_nents(sgl); 89a596999bSTadeusz Struk for_each_sg(sgl, sg, n, i) 90a596999bSTadeusz Struk put_page(sg_page(sg)); 91a596999bSTadeusz Struk 92a596999bSTadeusz Struk kfree(sreq->tsg); 93a596999bSTadeusz Struk } 94a596999bSTadeusz Struk 95a596999bSTadeusz Struk static void skcipher_async_cb(struct crypto_async_request *req, int err) 96a596999bSTadeusz Struk { 97ec69bbfbSHerbert Xu struct skcipher_async_req *sreq = req->data; 98a596999bSTadeusz Struk struct kiocb *iocb = sreq->iocb; 99a596999bSTadeusz Struk 100ec69bbfbSHerbert Xu atomic_dec(sreq->inflight); 101a596999bSTadeusz Struk skcipher_free_async_sgls(sreq); 102ec69bbfbSHerbert Xu kzfree(sreq); 103237dae88SAl Viro iocb->ki_complete(iocb, err, err); 104a596999bSTadeusz Struk } 105a596999bSTadeusz Struk 1060f6bb83cSHerbert Xu static inline int skcipher_sndbuf(struct sock *sk) 1078ff59090SHerbert Xu { 1088ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 1098ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 1108ff59090SHerbert Xu 1110f6bb83cSHerbert Xu return max_t(int, max_t(int, sk->sk_sndbuf & PAGE_MASK, PAGE_SIZE) - 1120f6bb83cSHerbert Xu ctx->used, 0); 1130f6bb83cSHerbert Xu } 1140f6bb83cSHerbert Xu 1150f6bb83cSHerbert Xu static inline bool skcipher_writable(struct sock *sk) 1160f6bb83cSHerbert Xu { 1170f6bb83cSHerbert Xu return PAGE_SIZE <= skcipher_sndbuf(sk); 1188ff59090SHerbert Xu } 1198ff59090SHerbert Xu 1208ff59090SHerbert Xu static int skcipher_alloc_sgl(struct sock *sk) 1218ff59090SHerbert Xu { 1228ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 1238ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 1248ff59090SHerbert Xu struct skcipher_sg_list *sgl; 1258ff59090SHerbert Xu struct scatterlist *sg = NULL; 1268ff59090SHerbert Xu 1278ff59090SHerbert Xu sgl = list_entry(ctx->tsgl.prev, struct skcipher_sg_list, list); 1288ff59090SHerbert Xu if (!list_empty(&ctx->tsgl)) 1298ff59090SHerbert Xu sg = sgl->sg; 1308ff59090SHerbert Xu 1318ff59090SHerbert Xu if (!sg || sgl->cur >= MAX_SGL_ENTS) { 1328ff59090SHerbert Xu sgl = sock_kmalloc(sk, sizeof(*sgl) + 1338ff59090SHerbert Xu sizeof(sgl->sg[0]) * (MAX_SGL_ENTS + 1), 1348ff59090SHerbert Xu GFP_KERNEL); 1358ff59090SHerbert Xu if (!sgl) 1368ff59090SHerbert Xu return -ENOMEM; 1378ff59090SHerbert Xu 1388ff59090SHerbert Xu sg_init_table(sgl->sg, MAX_SGL_ENTS + 1); 1398ff59090SHerbert Xu sgl->cur = 0; 1408ff59090SHerbert Xu 1418ff59090SHerbert Xu if (sg) 142c56f6d12SDan Williams sg_chain(sg, MAX_SGL_ENTS + 1, sgl->sg); 1438ff59090SHerbert Xu 1448ff59090SHerbert Xu list_add_tail(&sgl->list, &ctx->tsgl); 1458ff59090SHerbert Xu } 1468ff59090SHerbert Xu 1478ff59090SHerbert Xu return 0; 1488ff59090SHerbert Xu } 1498ff59090SHerbert Xu 150652d5b8aSLABBE Corentin static void skcipher_pull_sgl(struct sock *sk, size_t used, int put) 1518ff59090SHerbert Xu { 1528ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 1538ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 1548ff59090SHerbert Xu struct skcipher_sg_list *sgl; 1558ff59090SHerbert Xu struct scatterlist *sg; 1568ff59090SHerbert Xu int i; 1578ff59090SHerbert Xu 1588ff59090SHerbert Xu while (!list_empty(&ctx->tsgl)) { 1598ff59090SHerbert Xu sgl = list_first_entry(&ctx->tsgl, struct skcipher_sg_list, 1608ff59090SHerbert Xu list); 1618ff59090SHerbert Xu sg = sgl->sg; 1628ff59090SHerbert Xu 1638ff59090SHerbert Xu for (i = 0; i < sgl->cur; i++) { 164652d5b8aSLABBE Corentin size_t plen = min_t(size_t, used, sg[i].length); 1658ff59090SHerbert Xu 1668ff59090SHerbert Xu if (!sg_page(sg + i)) 1678ff59090SHerbert Xu continue; 1688ff59090SHerbert Xu 1698ff59090SHerbert Xu sg[i].length -= plen; 1708ff59090SHerbert Xu sg[i].offset += plen; 1718ff59090SHerbert Xu 1728ff59090SHerbert Xu used -= plen; 1738ff59090SHerbert Xu ctx->used -= plen; 1748ff59090SHerbert Xu 1758ff59090SHerbert Xu if (sg[i].length) 1768ff59090SHerbert Xu return; 177a596999bSTadeusz Struk if (put) 1788ff59090SHerbert Xu put_page(sg_page(sg + i)); 1798ff59090SHerbert Xu sg_assign_page(sg + i, NULL); 1808ff59090SHerbert Xu } 1818ff59090SHerbert Xu 1828ff59090SHerbert Xu list_del(&sgl->list); 1838ff59090SHerbert Xu sock_kfree_s(sk, sgl, 1848ff59090SHerbert Xu sizeof(*sgl) + sizeof(sgl->sg[0]) * 1858ff59090SHerbert Xu (MAX_SGL_ENTS + 1)); 1868ff59090SHerbert Xu } 1878ff59090SHerbert Xu 1888ff59090SHerbert Xu if (!ctx->used) 1898ff59090SHerbert Xu ctx->merge = 0; 1908ff59090SHerbert Xu } 1918ff59090SHerbert Xu 1928ff59090SHerbert Xu static void skcipher_free_sgl(struct sock *sk) 1938ff59090SHerbert Xu { 1948ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 1958ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 1968ff59090SHerbert Xu 197a596999bSTadeusz Struk skcipher_pull_sgl(sk, ctx->used, 1); 1988ff59090SHerbert Xu } 1998ff59090SHerbert Xu 2008ff59090SHerbert Xu static int skcipher_wait_for_wmem(struct sock *sk, unsigned flags) 2018ff59090SHerbert Xu { 2028ff59090SHerbert Xu long timeout; 2038ff59090SHerbert Xu DEFINE_WAIT(wait); 2048ff59090SHerbert Xu int err = -ERESTARTSYS; 2058ff59090SHerbert Xu 2068ff59090SHerbert Xu if (flags & MSG_DONTWAIT) 2078ff59090SHerbert Xu return -EAGAIN; 2088ff59090SHerbert Xu 2099cd3e072SEric Dumazet sk_set_bit(SOCKWQ_ASYNC_NOSPACE, sk); 2108ff59090SHerbert Xu 2118ff59090SHerbert Xu for (;;) { 2128ff59090SHerbert Xu if (signal_pending(current)) 2138ff59090SHerbert Xu break; 2148ff59090SHerbert Xu prepare_to_wait(sk_sleep(sk), &wait, TASK_INTERRUPTIBLE); 2158ff59090SHerbert Xu timeout = MAX_SCHEDULE_TIMEOUT; 2168ff59090SHerbert Xu if (sk_wait_event(sk, &timeout, skcipher_writable(sk))) { 2178ff59090SHerbert Xu err = 0; 2188ff59090SHerbert Xu break; 2198ff59090SHerbert Xu } 2208ff59090SHerbert Xu } 2218ff59090SHerbert Xu finish_wait(sk_sleep(sk), &wait); 2228ff59090SHerbert Xu 2238ff59090SHerbert Xu return err; 2248ff59090SHerbert Xu } 2258ff59090SHerbert Xu 2268ff59090SHerbert Xu static void skcipher_wmem_wakeup(struct sock *sk) 2278ff59090SHerbert Xu { 2288ff59090SHerbert Xu struct socket_wq *wq; 2298ff59090SHerbert Xu 2308ff59090SHerbert Xu if (!skcipher_writable(sk)) 2318ff59090SHerbert Xu return; 2328ff59090SHerbert Xu 2338ff59090SHerbert Xu rcu_read_lock(); 2348ff59090SHerbert Xu wq = rcu_dereference(sk->sk_wq); 2351ce0bf50SHerbert Xu if (skwq_has_sleeper(wq)) 2368ff59090SHerbert Xu wake_up_interruptible_sync_poll(&wq->wait, POLLIN | 2378ff59090SHerbert Xu POLLRDNORM | 2388ff59090SHerbert Xu POLLRDBAND); 2398ff59090SHerbert Xu sk_wake_async(sk, SOCK_WAKE_WAITD, POLL_IN); 2408ff59090SHerbert Xu rcu_read_unlock(); 2418ff59090SHerbert Xu } 2428ff59090SHerbert Xu 2438ff59090SHerbert Xu static int skcipher_wait_for_data(struct sock *sk, unsigned flags) 2448ff59090SHerbert Xu { 2458ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 2468ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 2478ff59090SHerbert Xu long timeout; 2488ff59090SHerbert Xu DEFINE_WAIT(wait); 2498ff59090SHerbert Xu int err = -ERESTARTSYS; 2508ff59090SHerbert Xu 2518ff59090SHerbert Xu if (flags & MSG_DONTWAIT) { 2528ff59090SHerbert Xu return -EAGAIN; 2538ff59090SHerbert Xu } 2548ff59090SHerbert Xu 2559cd3e072SEric Dumazet sk_set_bit(SOCKWQ_ASYNC_WAITDATA, sk); 2568ff59090SHerbert Xu 2578ff59090SHerbert Xu for (;;) { 2588ff59090SHerbert Xu if (signal_pending(current)) 2598ff59090SHerbert Xu break; 2608ff59090SHerbert Xu prepare_to_wait(sk_sleep(sk), &wait, TASK_INTERRUPTIBLE); 2618ff59090SHerbert Xu timeout = MAX_SCHEDULE_TIMEOUT; 2628ff59090SHerbert Xu if (sk_wait_event(sk, &timeout, ctx->used)) { 2638ff59090SHerbert Xu err = 0; 2648ff59090SHerbert Xu break; 2658ff59090SHerbert Xu } 2668ff59090SHerbert Xu } 2678ff59090SHerbert Xu finish_wait(sk_sleep(sk), &wait); 2688ff59090SHerbert Xu 2699cd3e072SEric Dumazet sk_clear_bit(SOCKWQ_ASYNC_WAITDATA, sk); 2708ff59090SHerbert Xu 2718ff59090SHerbert Xu return err; 2728ff59090SHerbert Xu } 2738ff59090SHerbert Xu 2748ff59090SHerbert Xu static void skcipher_data_wakeup(struct sock *sk) 2758ff59090SHerbert Xu { 2768ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 2778ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 2788ff59090SHerbert Xu struct socket_wq *wq; 2798ff59090SHerbert Xu 2808ff59090SHerbert Xu if (!ctx->used) 2818ff59090SHerbert Xu return; 2828ff59090SHerbert Xu 2838ff59090SHerbert Xu rcu_read_lock(); 2848ff59090SHerbert Xu wq = rcu_dereference(sk->sk_wq); 2851ce0bf50SHerbert Xu if (skwq_has_sleeper(wq)) 2868ff59090SHerbert Xu wake_up_interruptible_sync_poll(&wq->wait, POLLOUT | 2878ff59090SHerbert Xu POLLRDNORM | 2888ff59090SHerbert Xu POLLRDBAND); 2898ff59090SHerbert Xu sk_wake_async(sk, SOCK_WAKE_SPACE, POLL_OUT); 2908ff59090SHerbert Xu rcu_read_unlock(); 2918ff59090SHerbert Xu } 2928ff59090SHerbert Xu 2931b784140SYing Xue static int skcipher_sendmsg(struct socket *sock, struct msghdr *msg, 2941b784140SYing Xue size_t size) 2958ff59090SHerbert Xu { 2968ff59090SHerbert Xu struct sock *sk = sock->sk; 2978ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 298*6454c2b8SHerbert Xu struct sock *psk = ask->parent; 299*6454c2b8SHerbert Xu struct alg_sock *pask = alg_sk(psk); 3008ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 301*6454c2b8SHerbert Xu struct skcipher_tfm *skc = pask->private; 302*6454c2b8SHerbert Xu struct crypto_skcipher *tfm = skc->skcipher; 3030d96e4baSHerbert Xu unsigned ivsize = crypto_skcipher_ivsize(tfm); 3048ff59090SHerbert Xu struct skcipher_sg_list *sgl; 3058ff59090SHerbert Xu struct af_alg_control con = {}; 3068ff59090SHerbert Xu long copied = 0; 3078ff59090SHerbert Xu bool enc = 0; 308f26b7b80SStephan Mueller bool init = 0; 3098ff59090SHerbert Xu int err; 3108ff59090SHerbert Xu int i; 3118ff59090SHerbert Xu 3128ff59090SHerbert Xu if (msg->msg_controllen) { 3138ff59090SHerbert Xu err = af_alg_cmsg_send(msg, &con); 3148ff59090SHerbert Xu if (err) 3158ff59090SHerbert Xu return err; 3168ff59090SHerbert Xu 317f26b7b80SStephan Mueller init = 1; 3188ff59090SHerbert Xu switch (con.op) { 3198ff59090SHerbert Xu case ALG_OP_ENCRYPT: 3208ff59090SHerbert Xu enc = 1; 3218ff59090SHerbert Xu break; 3228ff59090SHerbert Xu case ALG_OP_DECRYPT: 3238ff59090SHerbert Xu enc = 0; 3248ff59090SHerbert Xu break; 3258ff59090SHerbert Xu default: 3268ff59090SHerbert Xu return -EINVAL; 3278ff59090SHerbert Xu } 3288ff59090SHerbert Xu 3298ff59090SHerbert Xu if (con.iv && con.iv->ivlen != ivsize) 3308ff59090SHerbert Xu return -EINVAL; 3318ff59090SHerbert Xu } 3328ff59090SHerbert Xu 3338ff59090SHerbert Xu err = -EINVAL; 3348ff59090SHerbert Xu 3358ff59090SHerbert Xu lock_sock(sk); 3368ff59090SHerbert Xu if (!ctx->more && ctx->used) 3378ff59090SHerbert Xu goto unlock; 3388ff59090SHerbert Xu 339f26b7b80SStephan Mueller if (init) { 3408ff59090SHerbert Xu ctx->enc = enc; 3418ff59090SHerbert Xu if (con.iv) 3428ff59090SHerbert Xu memcpy(ctx->iv, con.iv->iv, ivsize); 3438ff59090SHerbert Xu } 3448ff59090SHerbert Xu 3458ff59090SHerbert Xu while (size) { 3468ff59090SHerbert Xu struct scatterlist *sg; 3478ff59090SHerbert Xu unsigned long len = size; 348652d5b8aSLABBE Corentin size_t plen; 3498ff59090SHerbert Xu 3508ff59090SHerbert Xu if (ctx->merge) { 3518ff59090SHerbert Xu sgl = list_entry(ctx->tsgl.prev, 3528ff59090SHerbert Xu struct skcipher_sg_list, list); 3538ff59090SHerbert Xu sg = sgl->sg + sgl->cur - 1; 3548ff59090SHerbert Xu len = min_t(unsigned long, len, 3558ff59090SHerbert Xu PAGE_SIZE - sg->offset - sg->length); 3568ff59090SHerbert Xu 3576ce8e9ceSAl Viro err = memcpy_from_msg(page_address(sg_page(sg)) + 3588ff59090SHerbert Xu sg->offset + sg->length, 3596ce8e9ceSAl Viro msg, len); 3608ff59090SHerbert Xu if (err) 3618ff59090SHerbert Xu goto unlock; 3628ff59090SHerbert Xu 3638ff59090SHerbert Xu sg->length += len; 3648ff59090SHerbert Xu ctx->merge = (sg->offset + sg->length) & 3658ff59090SHerbert Xu (PAGE_SIZE - 1); 3668ff59090SHerbert Xu 3678ff59090SHerbert Xu ctx->used += len; 3688ff59090SHerbert Xu copied += len; 3698ff59090SHerbert Xu size -= len; 3708ff59090SHerbert Xu continue; 3718ff59090SHerbert Xu } 3728ff59090SHerbert Xu 3730f6bb83cSHerbert Xu if (!skcipher_writable(sk)) { 3748ff59090SHerbert Xu err = skcipher_wait_for_wmem(sk, msg->msg_flags); 3758ff59090SHerbert Xu if (err) 3768ff59090SHerbert Xu goto unlock; 3778ff59090SHerbert Xu } 3788ff59090SHerbert Xu 3790f6bb83cSHerbert Xu len = min_t(unsigned long, len, skcipher_sndbuf(sk)); 3808ff59090SHerbert Xu 3818ff59090SHerbert Xu err = skcipher_alloc_sgl(sk); 3828ff59090SHerbert Xu if (err) 3838ff59090SHerbert Xu goto unlock; 3848ff59090SHerbert Xu 3858ff59090SHerbert Xu sgl = list_entry(ctx->tsgl.prev, struct skcipher_sg_list, list); 3868ff59090SHerbert Xu sg = sgl->sg; 387202736d9SHerbert Xu if (sgl->cur) 388202736d9SHerbert Xu sg_unmark_end(sg + sgl->cur - 1); 3898ff59090SHerbert Xu do { 3908ff59090SHerbert Xu i = sgl->cur; 391652d5b8aSLABBE Corentin plen = min_t(size_t, len, PAGE_SIZE); 3928ff59090SHerbert Xu 3938ff59090SHerbert Xu sg_assign_page(sg + i, alloc_page(GFP_KERNEL)); 3948ff59090SHerbert Xu err = -ENOMEM; 3958ff59090SHerbert Xu if (!sg_page(sg + i)) 3968ff59090SHerbert Xu goto unlock; 3978ff59090SHerbert Xu 3986ce8e9ceSAl Viro err = memcpy_from_msg(page_address(sg_page(sg + i)), 3996ce8e9ceSAl Viro msg, plen); 4008ff59090SHerbert Xu if (err) { 4018ff59090SHerbert Xu __free_page(sg_page(sg + i)); 4028ff59090SHerbert Xu sg_assign_page(sg + i, NULL); 4038ff59090SHerbert Xu goto unlock; 4048ff59090SHerbert Xu } 4058ff59090SHerbert Xu 4068ff59090SHerbert Xu sg[i].length = plen; 4078ff59090SHerbert Xu len -= plen; 4088ff59090SHerbert Xu ctx->used += plen; 4098ff59090SHerbert Xu copied += plen; 4108ff59090SHerbert Xu size -= plen; 4118ff59090SHerbert Xu sgl->cur++; 4128ff59090SHerbert Xu } while (len && sgl->cur < MAX_SGL_ENTS); 4138ff59090SHerbert Xu 4140f477b65STadeusz Struk if (!size) 4150f477b65STadeusz Struk sg_mark_end(sg + sgl->cur - 1); 4160f477b65STadeusz Struk 4178ff59090SHerbert Xu ctx->merge = plen & (PAGE_SIZE - 1); 4188ff59090SHerbert Xu } 4198ff59090SHerbert Xu 4208ff59090SHerbert Xu err = 0; 4218ff59090SHerbert Xu 4228ff59090SHerbert Xu ctx->more = msg->msg_flags & MSG_MORE; 4238ff59090SHerbert Xu 4248ff59090SHerbert Xu unlock: 4258ff59090SHerbert Xu skcipher_data_wakeup(sk); 4268ff59090SHerbert Xu release_sock(sk); 4278ff59090SHerbert Xu 4288ff59090SHerbert Xu return copied ?: err; 4298ff59090SHerbert Xu } 4308ff59090SHerbert Xu 4318ff59090SHerbert Xu static ssize_t skcipher_sendpage(struct socket *sock, struct page *page, 4328ff59090SHerbert Xu int offset, size_t size, int flags) 4338ff59090SHerbert Xu { 4348ff59090SHerbert Xu struct sock *sk = sock->sk; 4358ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 4368ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 4378ff59090SHerbert Xu struct skcipher_sg_list *sgl; 4388ff59090SHerbert Xu int err = -EINVAL; 4398ff59090SHerbert Xu 440d3f7d56aSShawn Landden if (flags & MSG_SENDPAGE_NOTLAST) 441d3f7d56aSShawn Landden flags |= MSG_MORE; 442d3f7d56aSShawn Landden 4438ff59090SHerbert Xu lock_sock(sk); 4448ff59090SHerbert Xu if (!ctx->more && ctx->used) 4458ff59090SHerbert Xu goto unlock; 4468ff59090SHerbert Xu 4478ff59090SHerbert Xu if (!size) 4488ff59090SHerbert Xu goto done; 4498ff59090SHerbert Xu 4500f6bb83cSHerbert Xu if (!skcipher_writable(sk)) { 4518ff59090SHerbert Xu err = skcipher_wait_for_wmem(sk, flags); 4528ff59090SHerbert Xu if (err) 4538ff59090SHerbert Xu goto unlock; 4548ff59090SHerbert Xu } 4558ff59090SHerbert Xu 4568ff59090SHerbert Xu err = skcipher_alloc_sgl(sk); 4578ff59090SHerbert Xu if (err) 4588ff59090SHerbert Xu goto unlock; 4598ff59090SHerbert Xu 4608ff59090SHerbert Xu ctx->merge = 0; 4618ff59090SHerbert Xu sgl = list_entry(ctx->tsgl.prev, struct skcipher_sg_list, list); 4628ff59090SHerbert Xu 4630f477b65STadeusz Struk if (sgl->cur) 4640f477b65STadeusz Struk sg_unmark_end(sgl->sg + sgl->cur - 1); 4650f477b65STadeusz Struk 4660f477b65STadeusz Struk sg_mark_end(sgl->sg + sgl->cur); 4678ff59090SHerbert Xu get_page(page); 4688ff59090SHerbert Xu sg_set_page(sgl->sg + sgl->cur, page, size, offset); 4698ff59090SHerbert Xu sgl->cur++; 4708ff59090SHerbert Xu ctx->used += size; 4718ff59090SHerbert Xu 4728ff59090SHerbert Xu done: 4738ff59090SHerbert Xu ctx->more = flags & MSG_MORE; 4748ff59090SHerbert Xu 4758ff59090SHerbert Xu unlock: 4768ff59090SHerbert Xu skcipher_data_wakeup(sk); 4778ff59090SHerbert Xu release_sock(sk); 4788ff59090SHerbert Xu 4798ff59090SHerbert Xu return err ?: size; 4808ff59090SHerbert Xu } 4818ff59090SHerbert Xu 482a596999bSTadeusz Struk static int skcipher_all_sg_nents(struct skcipher_ctx *ctx) 483a596999bSTadeusz Struk { 484a596999bSTadeusz Struk struct skcipher_sg_list *sgl; 485a596999bSTadeusz Struk struct scatterlist *sg; 486a596999bSTadeusz Struk int nents = 0; 487a596999bSTadeusz Struk 488a596999bSTadeusz Struk list_for_each_entry(sgl, &ctx->tsgl, list) { 489a596999bSTadeusz Struk sg = sgl->sg; 490a596999bSTadeusz Struk 491a596999bSTadeusz Struk while (!sg->length) 492a596999bSTadeusz Struk sg++; 493a596999bSTadeusz Struk 494a596999bSTadeusz Struk nents += sg_nents(sg); 495a596999bSTadeusz Struk } 496a596999bSTadeusz Struk return nents; 497a596999bSTadeusz Struk } 498a596999bSTadeusz Struk 499a596999bSTadeusz Struk static int skcipher_recvmsg_async(struct socket *sock, struct msghdr *msg, 500a596999bSTadeusz Struk int flags) 501a596999bSTadeusz Struk { 502a596999bSTadeusz Struk struct sock *sk = sock->sk; 503a596999bSTadeusz Struk struct alg_sock *ask = alg_sk(sk); 504ec69bbfbSHerbert Xu struct sock *psk = ask->parent; 505ec69bbfbSHerbert Xu struct alg_sock *pask = alg_sk(psk); 506a596999bSTadeusz Struk struct skcipher_ctx *ctx = ask->private; 507ec69bbfbSHerbert Xu struct skcipher_tfm *skc = pask->private; 508ec69bbfbSHerbert Xu struct crypto_skcipher *tfm = skc->skcipher; 509a596999bSTadeusz Struk struct skcipher_sg_list *sgl; 510a596999bSTadeusz Struk struct scatterlist *sg; 511a596999bSTadeusz Struk struct skcipher_async_req *sreq; 5120d96e4baSHerbert Xu struct skcipher_request *req; 513a596999bSTadeusz Struk struct skcipher_async_rsgl *last_rsgl = NULL; 514*6454c2b8SHerbert Xu unsigned int txbufs = 0, len = 0, tx_nents; 515ec69bbfbSHerbert Xu unsigned int reqsize = crypto_skcipher_reqsize(tfm); 516ec69bbfbSHerbert Xu unsigned int ivsize = crypto_skcipher_ivsize(tfm); 517a596999bSTadeusz Struk int err = -ENOMEM; 518033f46b3Stadeusz.struk@intel.com bool mark = false; 519ec69bbfbSHerbert Xu char *iv; 520ec69bbfbSHerbert Xu 521ec69bbfbSHerbert Xu sreq = kzalloc(sizeof(*sreq) + reqsize + ivsize, GFP_KERNEL); 522ec69bbfbSHerbert Xu if (unlikely(!sreq)) 523ec69bbfbSHerbert Xu goto out; 524ec69bbfbSHerbert Xu 525ec69bbfbSHerbert Xu req = &sreq->req; 526ec69bbfbSHerbert Xu iv = (char *)(req + 1) + reqsize; 527ec69bbfbSHerbert Xu sreq->iocb = msg->msg_iocb; 528ec69bbfbSHerbert Xu INIT_LIST_HEAD(&sreq->list); 529ec69bbfbSHerbert Xu sreq->inflight = &ctx->inflight; 530a596999bSTadeusz Struk 531a596999bSTadeusz Struk lock_sock(sk); 532*6454c2b8SHerbert Xu tx_nents = skcipher_all_sg_nents(ctx); 533a596999bSTadeusz Struk sreq->tsg = kcalloc(tx_nents, sizeof(*sg), GFP_KERNEL); 534ec69bbfbSHerbert Xu if (unlikely(!sreq->tsg)) 535a596999bSTadeusz Struk goto unlock; 536a596999bSTadeusz Struk sg_init_table(sreq->tsg, tx_nents); 537ec69bbfbSHerbert Xu memcpy(iv, ctx->iv, ivsize); 538ec69bbfbSHerbert Xu skcipher_request_set_tfm(req, tfm); 5390d96e4baSHerbert Xu skcipher_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG, 540ec69bbfbSHerbert Xu skcipher_async_cb, sreq); 541a596999bSTadeusz Struk 542a596999bSTadeusz Struk while (iov_iter_count(&msg->msg_iter)) { 543a596999bSTadeusz Struk struct skcipher_async_rsgl *rsgl; 544ac110f49Stadeusz.struk@intel.com int used; 545a596999bSTadeusz Struk 546a596999bSTadeusz Struk if (!ctx->used) { 547a596999bSTadeusz Struk err = skcipher_wait_for_data(sk, flags); 548a596999bSTadeusz Struk if (err) 549a596999bSTadeusz Struk goto free; 550a596999bSTadeusz Struk } 551a596999bSTadeusz Struk sgl = list_first_entry(&ctx->tsgl, 552a596999bSTadeusz Struk struct skcipher_sg_list, list); 553a596999bSTadeusz Struk sg = sgl->sg; 554a596999bSTadeusz Struk 555a596999bSTadeusz Struk while (!sg->length) 556a596999bSTadeusz Struk sg++; 557a596999bSTadeusz Struk 558a596999bSTadeusz Struk used = min_t(unsigned long, ctx->used, 559a596999bSTadeusz Struk iov_iter_count(&msg->msg_iter)); 560a596999bSTadeusz Struk used = min_t(unsigned long, used, sg->length); 561a596999bSTadeusz Struk 562033f46b3Stadeusz.struk@intel.com if (txbufs == tx_nents) { 563a596999bSTadeusz Struk struct scatterlist *tmp; 564a596999bSTadeusz Struk int x; 565a596999bSTadeusz Struk /* Ran out of tx slots in async request 566a596999bSTadeusz Struk * need to expand */ 567a596999bSTadeusz Struk tmp = kcalloc(tx_nents * 2, sizeof(*tmp), 568a596999bSTadeusz Struk GFP_KERNEL); 569a596999bSTadeusz Struk if (!tmp) 570a596999bSTadeusz Struk goto free; 571a596999bSTadeusz Struk 572a596999bSTadeusz Struk sg_init_table(tmp, tx_nents * 2); 573a596999bSTadeusz Struk for (x = 0; x < tx_nents; x++) 574a596999bSTadeusz Struk sg_set_page(&tmp[x], sg_page(&sreq->tsg[x]), 575a596999bSTadeusz Struk sreq->tsg[x].length, 576a596999bSTadeusz Struk sreq->tsg[x].offset); 577a596999bSTadeusz Struk kfree(sreq->tsg); 578a596999bSTadeusz Struk sreq->tsg = tmp; 579a596999bSTadeusz Struk tx_nents *= 2; 580033f46b3Stadeusz.struk@intel.com mark = true; 581a596999bSTadeusz Struk } 582a596999bSTadeusz Struk /* Need to take over the tx sgl from ctx 583a596999bSTadeusz Struk * to the asynch req - these sgls will be freed later */ 584033f46b3Stadeusz.struk@intel.com sg_set_page(sreq->tsg + txbufs++, sg_page(sg), sg->length, 585a596999bSTadeusz Struk sg->offset); 586a596999bSTadeusz Struk 587a596999bSTadeusz Struk if (list_empty(&sreq->list)) { 588a596999bSTadeusz Struk rsgl = &sreq->first_sgl; 589a596999bSTadeusz Struk list_add_tail(&rsgl->list, &sreq->list); 590a596999bSTadeusz Struk } else { 59182d92920STadeusz Struk rsgl = kmalloc(sizeof(*rsgl), GFP_KERNEL); 592a596999bSTadeusz Struk if (!rsgl) { 593a596999bSTadeusz Struk err = -ENOMEM; 594a596999bSTadeusz Struk goto free; 595a596999bSTadeusz Struk } 596a596999bSTadeusz Struk list_add_tail(&rsgl->list, &sreq->list); 597a596999bSTadeusz Struk } 598a596999bSTadeusz Struk 599a596999bSTadeusz Struk used = af_alg_make_sg(&rsgl->sgl, &msg->msg_iter, used); 600a596999bSTadeusz Struk err = used; 601a596999bSTadeusz Struk if (used < 0) 602a596999bSTadeusz Struk goto free; 603a596999bSTadeusz Struk if (last_rsgl) 604a596999bSTadeusz Struk af_alg_link_sg(&last_rsgl->sgl, &rsgl->sgl); 605a596999bSTadeusz Struk 606a596999bSTadeusz Struk last_rsgl = rsgl; 607a596999bSTadeusz Struk len += used; 608a596999bSTadeusz Struk skcipher_pull_sgl(sk, used, 0); 609a596999bSTadeusz Struk iov_iter_advance(&msg->msg_iter, used); 610a596999bSTadeusz Struk } 611a596999bSTadeusz Struk 612033f46b3Stadeusz.struk@intel.com if (mark) 613033f46b3Stadeusz.struk@intel.com sg_mark_end(sreq->tsg + txbufs - 1); 614033f46b3Stadeusz.struk@intel.com 6150d96e4baSHerbert Xu skcipher_request_set_crypt(req, sreq->tsg, sreq->first_sgl.sgl.sg, 616ec69bbfbSHerbert Xu len, iv); 6170d96e4baSHerbert Xu err = ctx->enc ? crypto_skcipher_encrypt(req) : 6180d96e4baSHerbert Xu crypto_skcipher_decrypt(req); 619a596999bSTadeusz Struk if (err == -EINPROGRESS) { 620a596999bSTadeusz Struk atomic_inc(&ctx->inflight); 621a596999bSTadeusz Struk err = -EIOCBQUEUED; 622ec69bbfbSHerbert Xu sreq = NULL; 623a596999bSTadeusz Struk goto unlock; 624a596999bSTadeusz Struk } 625a596999bSTadeusz Struk free: 626a596999bSTadeusz Struk skcipher_free_async_sgls(sreq); 627a596999bSTadeusz Struk unlock: 628a596999bSTadeusz Struk skcipher_wmem_wakeup(sk); 629a596999bSTadeusz Struk release_sock(sk); 630ec69bbfbSHerbert Xu kzfree(sreq); 631ec69bbfbSHerbert Xu out: 632a596999bSTadeusz Struk return err; 633a596999bSTadeusz Struk } 634a596999bSTadeusz Struk 635a596999bSTadeusz Struk static int skcipher_recvmsg_sync(struct socket *sock, struct msghdr *msg, 636a596999bSTadeusz Struk int flags) 6378ff59090SHerbert Xu { 6388ff59090SHerbert Xu struct sock *sk = sock->sk; 6398ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 640*6454c2b8SHerbert Xu struct sock *psk = ask->parent; 641*6454c2b8SHerbert Xu struct alg_sock *pask = alg_sk(psk); 6428ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 643*6454c2b8SHerbert Xu struct skcipher_tfm *skc = pask->private; 644*6454c2b8SHerbert Xu struct crypto_skcipher *tfm = skc->skcipher; 645*6454c2b8SHerbert Xu unsigned bs = crypto_skcipher_blocksize(tfm); 6468ff59090SHerbert Xu struct skcipher_sg_list *sgl; 6478ff59090SHerbert Xu struct scatterlist *sg; 6488ff59090SHerbert Xu int err = -EAGAIN; 6498ff59090SHerbert Xu int used; 6508ff59090SHerbert Xu long copied = 0; 6518ff59090SHerbert Xu 6528ff59090SHerbert Xu lock_sock(sk); 65301e97e65SAl Viro while (msg_data_left(msg)) { 6549399f0c5SLinus Torvalds if (!ctx->used) { 6558ff59090SHerbert Xu err = skcipher_wait_for_data(sk, flags); 6568ff59090SHerbert Xu if (err) 6578ff59090SHerbert Xu goto unlock; 6588ff59090SHerbert Xu } 6598ff59090SHerbert Xu 66001e97e65SAl Viro used = min_t(unsigned long, ctx->used, msg_data_left(msg)); 6618ff59090SHerbert Xu 6621d10eb2fSAl Viro used = af_alg_make_sg(&ctx->rsgl, &msg->msg_iter, used); 663bc97e57eSHerbert Xu err = used; 664bc97e57eSHerbert Xu if (err < 0) 665bc97e57eSHerbert Xu goto unlock; 666bc97e57eSHerbert Xu 6678ff59090SHerbert Xu if (ctx->more || used < ctx->used) 6688ff59090SHerbert Xu used -= used % bs; 6698ff59090SHerbert Xu 6708ff59090SHerbert Xu err = -EINVAL; 6718ff59090SHerbert Xu if (!used) 672bc97e57eSHerbert Xu goto free; 6738ff59090SHerbert Xu 6744f0414e5SHerbert Xu sgl = list_first_entry(&ctx->tsgl, 6754f0414e5SHerbert Xu struct skcipher_sg_list, list); 6764f0414e5SHerbert Xu sg = sgl->sg; 6774f0414e5SHerbert Xu 6784f0414e5SHerbert Xu while (!sg->length) 6794f0414e5SHerbert Xu sg++; 6804f0414e5SHerbert Xu 6810d96e4baSHerbert Xu skcipher_request_set_crypt(&ctx->req, sg, ctx->rsgl.sg, used, 6828ff59090SHerbert Xu ctx->iv); 6838ff59090SHerbert Xu 6848ff59090SHerbert Xu err = af_alg_wait_for_completion( 6858ff59090SHerbert Xu ctx->enc ? 6860d96e4baSHerbert Xu crypto_skcipher_encrypt(&ctx->req) : 6870d96e4baSHerbert Xu crypto_skcipher_decrypt(&ctx->req), 6888ff59090SHerbert Xu &ctx->completion); 6898ff59090SHerbert Xu 690bc97e57eSHerbert Xu free: 6918ff59090SHerbert Xu af_alg_free_sg(&ctx->rsgl); 6928ff59090SHerbert Xu 6938ff59090SHerbert Xu if (err) 6948ff59090SHerbert Xu goto unlock; 6958ff59090SHerbert Xu 6968ff59090SHerbert Xu copied += used; 697a596999bSTadeusz Struk skcipher_pull_sgl(sk, used, 1); 6981d10eb2fSAl Viro iov_iter_advance(&msg->msg_iter, used); 6998ff59090SHerbert Xu } 7008ff59090SHerbert Xu 7018ff59090SHerbert Xu err = 0; 7028ff59090SHerbert Xu 7038ff59090SHerbert Xu unlock: 7048ff59090SHerbert Xu skcipher_wmem_wakeup(sk); 7058ff59090SHerbert Xu release_sock(sk); 7068ff59090SHerbert Xu 7078ff59090SHerbert Xu return copied ?: err; 7088ff59090SHerbert Xu } 7098ff59090SHerbert Xu 710a596999bSTadeusz Struk static int skcipher_recvmsg(struct socket *sock, struct msghdr *msg, 711a596999bSTadeusz Struk size_t ignored, int flags) 712a596999bSTadeusz Struk { 713a596999bSTadeusz Struk return (msg->msg_iocb && !is_sync_kiocb(msg->msg_iocb)) ? 714a596999bSTadeusz Struk skcipher_recvmsg_async(sock, msg, flags) : 715a596999bSTadeusz Struk skcipher_recvmsg_sync(sock, msg, flags); 716a596999bSTadeusz Struk } 7178ff59090SHerbert Xu 7188ff59090SHerbert Xu static unsigned int skcipher_poll(struct file *file, struct socket *sock, 7198ff59090SHerbert Xu poll_table *wait) 7208ff59090SHerbert Xu { 7218ff59090SHerbert Xu struct sock *sk = sock->sk; 7228ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 7238ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 7248ff59090SHerbert Xu unsigned int mask; 7258ff59090SHerbert Xu 7268ff59090SHerbert Xu sock_poll_wait(file, sk_sleep(sk), wait); 7278ff59090SHerbert Xu mask = 0; 7288ff59090SHerbert Xu 7298ff59090SHerbert Xu if (ctx->used) 7308ff59090SHerbert Xu mask |= POLLIN | POLLRDNORM; 7318ff59090SHerbert Xu 7328ff59090SHerbert Xu if (skcipher_writable(sk)) 7338ff59090SHerbert Xu mask |= POLLOUT | POLLWRNORM | POLLWRBAND; 7348ff59090SHerbert Xu 7358ff59090SHerbert Xu return mask; 7368ff59090SHerbert Xu } 7378ff59090SHerbert Xu 7388ff59090SHerbert Xu static struct proto_ops algif_skcipher_ops = { 7398ff59090SHerbert Xu .family = PF_ALG, 7408ff59090SHerbert Xu 7418ff59090SHerbert Xu .connect = sock_no_connect, 7428ff59090SHerbert Xu .socketpair = sock_no_socketpair, 7438ff59090SHerbert Xu .getname = sock_no_getname, 7448ff59090SHerbert Xu .ioctl = sock_no_ioctl, 7458ff59090SHerbert Xu .listen = sock_no_listen, 7468ff59090SHerbert Xu .shutdown = sock_no_shutdown, 7478ff59090SHerbert Xu .getsockopt = sock_no_getsockopt, 7488ff59090SHerbert Xu .mmap = sock_no_mmap, 7498ff59090SHerbert Xu .bind = sock_no_bind, 7508ff59090SHerbert Xu .accept = sock_no_accept, 7518ff59090SHerbert Xu .setsockopt = sock_no_setsockopt, 7528ff59090SHerbert Xu 7538ff59090SHerbert Xu .release = af_alg_release, 7548ff59090SHerbert Xu .sendmsg = skcipher_sendmsg, 7558ff59090SHerbert Xu .sendpage = skcipher_sendpage, 7568ff59090SHerbert Xu .recvmsg = skcipher_recvmsg, 7578ff59090SHerbert Xu .poll = skcipher_poll, 7588ff59090SHerbert Xu }; 7598ff59090SHerbert Xu 760a0fa2d03SHerbert Xu static int skcipher_check_key(struct socket *sock) 761a0fa2d03SHerbert Xu { 7621822793aSHerbert Xu int err = 0; 763a0fa2d03SHerbert Xu struct sock *psk; 764a0fa2d03SHerbert Xu struct alg_sock *pask; 765a0fa2d03SHerbert Xu struct skcipher_tfm *tfm; 766a0fa2d03SHerbert Xu struct sock *sk = sock->sk; 767a0fa2d03SHerbert Xu struct alg_sock *ask = alg_sk(sk); 768a0fa2d03SHerbert Xu 7691822793aSHerbert Xu lock_sock(sk); 770a0fa2d03SHerbert Xu if (ask->refcnt) 7711822793aSHerbert Xu goto unlock_child; 772a0fa2d03SHerbert Xu 773a0fa2d03SHerbert Xu psk = ask->parent; 774a0fa2d03SHerbert Xu pask = alg_sk(ask->parent); 775a0fa2d03SHerbert Xu tfm = pask->private; 776a0fa2d03SHerbert Xu 777a0fa2d03SHerbert Xu err = -ENOKEY; 7781822793aSHerbert Xu lock_sock_nested(psk, SINGLE_DEPTH_NESTING); 779a0fa2d03SHerbert Xu if (!tfm->has_key) 780a0fa2d03SHerbert Xu goto unlock; 781a0fa2d03SHerbert Xu 782a0fa2d03SHerbert Xu if (!pask->refcnt++) 783a0fa2d03SHerbert Xu sock_hold(psk); 784a0fa2d03SHerbert Xu 785a0fa2d03SHerbert Xu ask->refcnt = 1; 786a0fa2d03SHerbert Xu sock_put(psk); 787a0fa2d03SHerbert Xu 788a0fa2d03SHerbert Xu err = 0; 789a0fa2d03SHerbert Xu 790a0fa2d03SHerbert Xu unlock: 791a0fa2d03SHerbert Xu release_sock(psk); 7921822793aSHerbert Xu unlock_child: 7931822793aSHerbert Xu release_sock(sk); 794a0fa2d03SHerbert Xu 795a0fa2d03SHerbert Xu return err; 796a0fa2d03SHerbert Xu } 797a0fa2d03SHerbert Xu 798a0fa2d03SHerbert Xu static int skcipher_sendmsg_nokey(struct socket *sock, struct msghdr *msg, 799a0fa2d03SHerbert Xu size_t size) 800a0fa2d03SHerbert Xu { 801a0fa2d03SHerbert Xu int err; 802a0fa2d03SHerbert Xu 803a0fa2d03SHerbert Xu err = skcipher_check_key(sock); 804a0fa2d03SHerbert Xu if (err) 805a0fa2d03SHerbert Xu return err; 806a0fa2d03SHerbert Xu 807a0fa2d03SHerbert Xu return skcipher_sendmsg(sock, msg, size); 808a0fa2d03SHerbert Xu } 809a0fa2d03SHerbert Xu 810a0fa2d03SHerbert Xu static ssize_t skcipher_sendpage_nokey(struct socket *sock, struct page *page, 811a0fa2d03SHerbert Xu int offset, size_t size, int flags) 812a0fa2d03SHerbert Xu { 813a0fa2d03SHerbert Xu int err; 814a0fa2d03SHerbert Xu 815a0fa2d03SHerbert Xu err = skcipher_check_key(sock); 816a0fa2d03SHerbert Xu if (err) 817a0fa2d03SHerbert Xu return err; 818a0fa2d03SHerbert Xu 819a0fa2d03SHerbert Xu return skcipher_sendpage(sock, page, offset, size, flags); 820a0fa2d03SHerbert Xu } 821a0fa2d03SHerbert Xu 822a0fa2d03SHerbert Xu static int skcipher_recvmsg_nokey(struct socket *sock, struct msghdr *msg, 823a0fa2d03SHerbert Xu size_t ignored, int flags) 824a0fa2d03SHerbert Xu { 825a0fa2d03SHerbert Xu int err; 826a0fa2d03SHerbert Xu 827a0fa2d03SHerbert Xu err = skcipher_check_key(sock); 828a0fa2d03SHerbert Xu if (err) 829a0fa2d03SHerbert Xu return err; 830a0fa2d03SHerbert Xu 831a0fa2d03SHerbert Xu return skcipher_recvmsg(sock, msg, ignored, flags); 832a0fa2d03SHerbert Xu } 833a0fa2d03SHerbert Xu 834a0fa2d03SHerbert Xu static struct proto_ops algif_skcipher_ops_nokey = { 835a0fa2d03SHerbert Xu .family = PF_ALG, 836a0fa2d03SHerbert Xu 837a0fa2d03SHerbert Xu .connect = sock_no_connect, 838a0fa2d03SHerbert Xu .socketpair = sock_no_socketpair, 839a0fa2d03SHerbert Xu .getname = sock_no_getname, 840a0fa2d03SHerbert Xu .ioctl = sock_no_ioctl, 841a0fa2d03SHerbert Xu .listen = sock_no_listen, 842a0fa2d03SHerbert Xu .shutdown = sock_no_shutdown, 843a0fa2d03SHerbert Xu .getsockopt = sock_no_getsockopt, 844a0fa2d03SHerbert Xu .mmap = sock_no_mmap, 845a0fa2d03SHerbert Xu .bind = sock_no_bind, 846a0fa2d03SHerbert Xu .accept = sock_no_accept, 847a0fa2d03SHerbert Xu .setsockopt = sock_no_setsockopt, 848a0fa2d03SHerbert Xu 849a0fa2d03SHerbert Xu .release = af_alg_release, 850a0fa2d03SHerbert Xu .sendmsg = skcipher_sendmsg_nokey, 851a0fa2d03SHerbert Xu .sendpage = skcipher_sendpage_nokey, 852a0fa2d03SHerbert Xu .recvmsg = skcipher_recvmsg_nokey, 853a0fa2d03SHerbert Xu .poll = skcipher_poll, 854a0fa2d03SHerbert Xu }; 855a0fa2d03SHerbert Xu 8568ff59090SHerbert Xu static void *skcipher_bind(const char *name, u32 type, u32 mask) 8578ff59090SHerbert Xu { 858dd504589SHerbert Xu struct skcipher_tfm *tfm; 859dd504589SHerbert Xu struct crypto_skcipher *skcipher; 860dd504589SHerbert Xu 861dd504589SHerbert Xu tfm = kzalloc(sizeof(*tfm), GFP_KERNEL); 862dd504589SHerbert Xu if (!tfm) 863dd504589SHerbert Xu return ERR_PTR(-ENOMEM); 864dd504589SHerbert Xu 865dd504589SHerbert Xu skcipher = crypto_alloc_skcipher(name, type, mask); 866dd504589SHerbert Xu if (IS_ERR(skcipher)) { 867dd504589SHerbert Xu kfree(tfm); 868dd504589SHerbert Xu return ERR_CAST(skcipher); 869dd504589SHerbert Xu } 870dd504589SHerbert Xu 871dd504589SHerbert Xu tfm->skcipher = skcipher; 872dd504589SHerbert Xu 873dd504589SHerbert Xu return tfm; 8748ff59090SHerbert Xu } 8758ff59090SHerbert Xu 8768ff59090SHerbert Xu static void skcipher_release(void *private) 8778ff59090SHerbert Xu { 878dd504589SHerbert Xu struct skcipher_tfm *tfm = private; 879dd504589SHerbert Xu 880dd504589SHerbert Xu crypto_free_skcipher(tfm->skcipher); 881dd504589SHerbert Xu kfree(tfm); 8828ff59090SHerbert Xu } 8838ff59090SHerbert Xu 8848ff59090SHerbert Xu static int skcipher_setkey(void *private, const u8 *key, unsigned int keylen) 8858ff59090SHerbert Xu { 886dd504589SHerbert Xu struct skcipher_tfm *tfm = private; 887dd504589SHerbert Xu int err; 888dd504589SHerbert Xu 889dd504589SHerbert Xu err = crypto_skcipher_setkey(tfm->skcipher, key, keylen); 890dd504589SHerbert Xu tfm->has_key = !err; 891dd504589SHerbert Xu 892dd504589SHerbert Xu return err; 8938ff59090SHerbert Xu } 8948ff59090SHerbert Xu 895a596999bSTadeusz Struk static void skcipher_wait(struct sock *sk) 896a596999bSTadeusz Struk { 897a596999bSTadeusz Struk struct alg_sock *ask = alg_sk(sk); 898a596999bSTadeusz Struk struct skcipher_ctx *ctx = ask->private; 899a596999bSTadeusz Struk int ctr = 0; 900a596999bSTadeusz Struk 901a596999bSTadeusz Struk while (atomic_read(&ctx->inflight) && ctr++ < 100) 902a596999bSTadeusz Struk msleep(100); 903a596999bSTadeusz Struk } 904a596999bSTadeusz Struk 9058ff59090SHerbert Xu static void skcipher_sock_destruct(struct sock *sk) 9068ff59090SHerbert Xu { 9078ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 9088ff59090SHerbert Xu struct skcipher_ctx *ctx = ask->private; 9090d96e4baSHerbert Xu struct crypto_skcipher *tfm = crypto_skcipher_reqtfm(&ctx->req); 9108ff59090SHerbert Xu 911a596999bSTadeusz Struk if (atomic_read(&ctx->inflight)) 912a596999bSTadeusz Struk skcipher_wait(sk); 913a596999bSTadeusz Struk 9148ff59090SHerbert Xu skcipher_free_sgl(sk); 9150d96e4baSHerbert Xu sock_kzfree_s(sk, ctx->iv, crypto_skcipher_ivsize(tfm)); 9168ff59090SHerbert Xu sock_kfree_s(sk, ctx, ctx->len); 9178ff59090SHerbert Xu af_alg_release_parent(sk); 9188ff59090SHerbert Xu } 9198ff59090SHerbert Xu 920d7b65aeeSHerbert Xu static int skcipher_accept_parent_nokey(void *private, struct sock *sk) 9218ff59090SHerbert Xu { 9228ff59090SHerbert Xu struct skcipher_ctx *ctx; 9238ff59090SHerbert Xu struct alg_sock *ask = alg_sk(sk); 924dd504589SHerbert Xu struct skcipher_tfm *tfm = private; 925dd504589SHerbert Xu struct crypto_skcipher *skcipher = tfm->skcipher; 926dd504589SHerbert Xu unsigned int len = sizeof(*ctx) + crypto_skcipher_reqsize(skcipher); 9278ff59090SHerbert Xu 9288ff59090SHerbert Xu ctx = sock_kmalloc(sk, len, GFP_KERNEL); 9298ff59090SHerbert Xu if (!ctx) 9308ff59090SHerbert Xu return -ENOMEM; 9318ff59090SHerbert Xu 932dd504589SHerbert Xu ctx->iv = sock_kmalloc(sk, crypto_skcipher_ivsize(skcipher), 9338ff59090SHerbert Xu GFP_KERNEL); 9348ff59090SHerbert Xu if (!ctx->iv) { 9358ff59090SHerbert Xu sock_kfree_s(sk, ctx, len); 9368ff59090SHerbert Xu return -ENOMEM; 9378ff59090SHerbert Xu } 9388ff59090SHerbert Xu 939dd504589SHerbert Xu memset(ctx->iv, 0, crypto_skcipher_ivsize(skcipher)); 9408ff59090SHerbert Xu 9418ff59090SHerbert Xu INIT_LIST_HEAD(&ctx->tsgl); 9428ff59090SHerbert Xu ctx->len = len; 9438ff59090SHerbert Xu ctx->used = 0; 9448ff59090SHerbert Xu ctx->more = 0; 9458ff59090SHerbert Xu ctx->merge = 0; 9468ff59090SHerbert Xu ctx->enc = 0; 947a596999bSTadeusz Struk atomic_set(&ctx->inflight, 0); 9488ff59090SHerbert Xu af_alg_init_completion(&ctx->completion); 9498ff59090SHerbert Xu 9508ff59090SHerbert Xu ask->private = ctx; 9518ff59090SHerbert Xu 952dd504589SHerbert Xu skcipher_request_set_tfm(&ctx->req, skcipher); 9530d96e4baSHerbert Xu skcipher_request_set_callback(&ctx->req, CRYPTO_TFM_REQ_MAY_BACKLOG, 9548ff59090SHerbert Xu af_alg_complete, &ctx->completion); 9558ff59090SHerbert Xu 9568ff59090SHerbert Xu sk->sk_destruct = skcipher_sock_destruct; 9578ff59090SHerbert Xu 9588ff59090SHerbert Xu return 0; 9598ff59090SHerbert Xu } 9608ff59090SHerbert Xu 961a0fa2d03SHerbert Xu static int skcipher_accept_parent(void *private, struct sock *sk) 962a0fa2d03SHerbert Xu { 963a0fa2d03SHerbert Xu struct skcipher_tfm *tfm = private; 964a0fa2d03SHerbert Xu 9656e8d8ecfSHerbert Xu if (!tfm->has_key && crypto_skcipher_has_setkey(tfm->skcipher)) 966a0fa2d03SHerbert Xu return -ENOKEY; 967a0fa2d03SHerbert Xu 968d7b65aeeSHerbert Xu return skcipher_accept_parent_nokey(private, sk); 969a0fa2d03SHerbert Xu } 970a0fa2d03SHerbert Xu 9718ff59090SHerbert Xu static const struct af_alg_type algif_type_skcipher = { 9728ff59090SHerbert Xu .bind = skcipher_bind, 9738ff59090SHerbert Xu .release = skcipher_release, 9748ff59090SHerbert Xu .setkey = skcipher_setkey, 9758ff59090SHerbert Xu .accept = skcipher_accept_parent, 976a0fa2d03SHerbert Xu .accept_nokey = skcipher_accept_parent_nokey, 9778ff59090SHerbert Xu .ops = &algif_skcipher_ops, 978a0fa2d03SHerbert Xu .ops_nokey = &algif_skcipher_ops_nokey, 9798ff59090SHerbert Xu .name = "skcipher", 9808ff59090SHerbert Xu .owner = THIS_MODULE 9818ff59090SHerbert Xu }; 9828ff59090SHerbert Xu 9838ff59090SHerbert Xu static int __init algif_skcipher_init(void) 9848ff59090SHerbert Xu { 9858ff59090SHerbert Xu return af_alg_register_type(&algif_type_skcipher); 9868ff59090SHerbert Xu } 9878ff59090SHerbert Xu 9888ff59090SHerbert Xu static void __exit algif_skcipher_exit(void) 9898ff59090SHerbert Xu { 9908ff59090SHerbert Xu int err = af_alg_unregister_type(&algif_type_skcipher); 9918ff59090SHerbert Xu BUG_ON(err); 9928ff59090SHerbert Xu } 9938ff59090SHerbert Xu 9948ff59090SHerbert Xu module_init(algif_skcipher_init); 9958ff59090SHerbert Xu module_exit(algif_skcipher_exit); 9968ff59090SHerbert Xu MODULE_LICENSE("GPL"); 997