linux/crypto/cipher.c

2874c5fdSThomas Gleixner// SPDX-License-Identifier: GPL-2.0-or-later
1da177e4SLinus Torvalds/*
1da177e4SLinus Torvalds * Cryptographic API.
1da177e4SLinus Torvalds *
e8cfed5eSEric Biggers * Single-block cipher operations.
1da177e4SLinus Torvalds *
1da177e4SLinus Torvalds * Copyright (c) 2002 James Morris <jmorris@intercode.com.au>
c774e93eSHerbert Xu * Copyright (c) 2005 Herbert Xu <herbert@gondor.apana.org.au>
1da177e4SLinus Torvalds */
f1ddcaf3SHerbert Xu
6650c4deSSalvatore Mesoraca#include <crypto/algapi.h>
0eb76ba2SArd Biesheuvel#include <crypto/internal/cipher.h>
1da177e4SLinus Torvalds#include <linux/kernel.h>
1da177e4SLinus Torvalds#include <linux/crypto.h>
1da177e4SLinus Torvalds#include <linux/errno.h>
791b4d5fSHerbert Xu#include <linux/slab.h>
1da177e4SLinus Torvalds#include <linux/string.h>
1da177e4SLinus Torvalds#include "internal.h"
1da177e4SLinus Torvalds
e8cfed5eSEric Biggersstatic int setkey_unaligned(struct crypto_cipher *tfm, const u8 *key,
791b4d5fSHerbert Xu			    unsigned int keylen)
ca7c3938SSebastian Siewior{
e8cfed5eSEric Biggers	struct cipher_alg *cia = crypto_cipher_alg(tfm);
e8cfed5eSEric Biggers	unsigned long alignmask = crypto_cipher_alignmask(tfm);
ca7c3938SSebastian Siewior	int ret;
ca7c3938SSebastian Siewior	u8 *buffer, *alignbuffer;
ca7c3938SSebastian Siewior	unsigned long absize;
ca7c3938SSebastian Siewior
ca7c3938SSebastian Siewior	absize = keylen + alignmask;
ca7c3938SSebastian Siewior	buffer = kmalloc(absize, GFP_ATOMIC);
ca7c3938SSebastian Siewior	if (!buffer)
ca7c3938SSebastian Siewior		return -ENOMEM;
ca7c3938SSebastian Siewior
ca7c3938SSebastian Siewior	alignbuffer = (u8 *)ALIGN((unsigned long)buffer, alignmask + 1);
ca7c3938SSebastian Siewior	memcpy(alignbuffer, key, keylen);
e8cfed5eSEric Biggers	ret = cia->cia_setkey(crypto_cipher_tfm(tfm), alignbuffer, keylen);
*b502d4a0SHailey Mothershead	kfree_sensitive(buffer);
ca7c3938SSebastian Siewior	return ret;
ca7c3938SSebastian Siewior
ca7c3938SSebastian Siewior}
ca7c3938SSebastian Siewior
e8cfed5eSEric Biggersint crypto_cipher_setkey(struct crypto_cipher *tfm,
e8cfed5eSEric Biggers			 const u8 *key, unsigned int keylen)
1da177e4SLinus Torvalds{
e8cfed5eSEric Biggers	struct cipher_alg *cia = crypto_cipher_alg(tfm);
e8cfed5eSEric Biggers	unsigned long alignmask = crypto_cipher_alignmask(tfm);
1da177e4SLinus Torvalds
674f368aSEric Biggers	if (keylen < cia->cia_min_keysize || keylen > cia->cia_max_keysize)
1da177e4SLinus Torvalds		return -EINVAL;
ca7c3938SSebastian Siewior
ca7c3938SSebastian Siewior	if ((unsigned long)key & alignmask)
ca7c3938SSebastian Siewior		return setkey_unaligned(tfm, key, keylen);
ca7c3938SSebastian Siewior
e8cfed5eSEric Biggers	return cia->cia_setkey(crypto_cipher_tfm(tfm), key, keylen);
1da177e4SLinus Torvalds}
0eb76ba2SArd BiesheuvelEXPORT_SYMBOL_NS_GPL(crypto_cipher_setkey, CRYPTO_INTERNAL);
1da177e4SLinus Torvalds
e8cfed5eSEric Biggersstatic inline void cipher_crypt_one(struct crypto_cipher *tfm,
e8cfed5eSEric Biggers				    u8 *dst, const u8 *src, bool enc)
f28776a3SHerbert Xu{
e8cfed5eSEric Biggers	unsigned long alignmask = crypto_cipher_alignmask(tfm);
e8cfed5eSEric Biggers	struct cipher_alg *cia = crypto_cipher_alg(tfm);
e8cfed5eSEric Biggers	void (*fn)(struct crypto_tfm *, u8 *, const u8 *) =
e8cfed5eSEric Biggers		enc ? cia->cia_encrypt : cia->cia_decrypt;
e8cfed5eSEric Biggers
e8cfed5eSEric Biggers	if (unlikely(((unsigned long)dst | (unsigned long)src) & alignmask)) {
e8cfed5eSEric Biggers		unsigned int bs = crypto_cipher_blocksize(tfm);
6650c4deSSalvatore Mesoraca		u8 buffer[MAX_CIPHER_BLOCKSIZE + MAX_CIPHER_ALIGNMASK];
f28776a3SHerbert Xu		u8 *tmp = (u8 *)ALIGN((unsigned long)buffer, alignmask + 1);
f28776a3SHerbert Xu
e8cfed5eSEric Biggers		memcpy(tmp, src, bs);
e8cfed5eSEric Biggers		fn(crypto_cipher_tfm(tfm), tmp, tmp);
e8cfed5eSEric Biggers		memcpy(dst, tmp, bs);
e8cfed5eSEric Biggers	} else {
e8cfed5eSEric Biggers		fn(crypto_cipher_tfm(tfm), dst, src);
e8cfed5eSEric Biggers	}
f28776a3SHerbert Xu}
f28776a3SHerbert Xu
e8cfed5eSEric Biggersvoid crypto_cipher_encrypt_one(struct crypto_cipher *tfm,
f28776a3SHerbert Xu			       u8 *dst, const u8 *src)
f28776a3SHerbert Xu{
e8cfed5eSEric Biggers	cipher_crypt_one(tfm, dst, src, true);
f28776a3SHerbert Xu}
0eb76ba2SArd BiesheuvelEXPORT_SYMBOL_NS_GPL(crypto_cipher_encrypt_one, CRYPTO_INTERNAL);
f28776a3SHerbert Xu
e8cfed5eSEric Biggersvoid crypto_cipher_decrypt_one(struct crypto_cipher *tfm,
f28776a3SHerbert Xu			       u8 *dst, const u8 *src)
f28776a3SHerbert Xu{
e8cfed5eSEric Biggers	cipher_crypt_one(tfm, dst, src, false);
f28776a3SHerbert Xu}
0eb76ba2SArd BiesheuvelEXPORT_SYMBOL_NS_GPL(crypto_cipher_decrypt_one, CRYPTO_INTERNAL);
51d8d6d0SHerbert Xu
51d8d6d0SHerbert Xustruct crypto_cipher *crypto_clone_cipher(struct crypto_cipher *cipher)
51d8d6d0SHerbert Xu{
51d8d6d0SHerbert Xu	struct crypto_tfm *tfm = crypto_cipher_tfm(cipher);
51d8d6d0SHerbert Xu	struct crypto_alg *alg = tfm->__crt_alg;
51d8d6d0SHerbert Xu	struct crypto_cipher *ncipher;
51d8d6d0SHerbert Xu	struct crypto_tfm *ntfm;
51d8d6d0SHerbert Xu
51d8d6d0SHerbert Xu	if (alg->cra_init)
51d8d6d0SHerbert Xu		return ERR_PTR(-ENOSYS);
51d8d6d0SHerbert Xu
9979c6e5SDmitry Safonov	if (unlikely(!crypto_mod_get(alg)))
9979c6e5SDmitry Safonov		return ERR_PTR(-ESTALE);
9979c6e5SDmitry Safonov
fa3b3565SHerbert Xu	ntfm = __crypto_alloc_tfmgfp(alg, CRYPTO_ALG_TYPE_CIPHER,
fa3b3565SHerbert Xu				     CRYPTO_ALG_TYPE_MASK, GFP_ATOMIC);
9979c6e5SDmitry Safonov	if (IS_ERR(ntfm)) {
9979c6e5SDmitry Safonov		crypto_mod_put(alg);
51d8d6d0SHerbert Xu		return ERR_CAST(ntfm);
9979c6e5SDmitry Safonov	}
51d8d6d0SHerbert Xu
51d8d6d0SHerbert Xu	ntfm->crt_flags = tfm->crt_flags;
51d8d6d0SHerbert Xu
51d8d6d0SHerbert Xu	ncipher = __crypto_cipher_cast(ntfm);
51d8d6d0SHerbert Xu
51d8d6d0SHerbert Xu	return ncipher;
51d8d6d0SHerbert Xu}
51d8d6d0SHerbert XuEXPORT_SYMBOL_GPL(crypto_clone_cipher);