14133da73SXiang Gao /* 24133da73SXiang Gao * Copyright 2003-2004, Instant802 Networks, Inc. 34133da73SXiang Gao * Copyright 2005-2006, Devicescape Software, Inc. 44133da73SXiang Gao * Copyright 2014-2015, Qualcomm Atheros, Inc. 54133da73SXiang Gao * 64133da73SXiang Gao * Rewrite: Copyright (C) 2013 Linaro Ltd <ard.biesheuvel@linaro.org> 74133da73SXiang Gao * 84133da73SXiang Gao * This program is free software; you can redistribute it and/or modify 94133da73SXiang Gao * it under the terms of the GNU General Public License version 2 as 104133da73SXiang Gao * published by the Free Software Foundation. 114133da73SXiang Gao */ 124133da73SXiang Gao 134133da73SXiang Gao #include <linux/kernel.h> 144133da73SXiang Gao #include <linux/types.h> 154133da73SXiang Gao #include <linux/err.h> 164133da73SXiang Gao #include <linux/scatterlist.h> 174133da73SXiang Gao #include <crypto/aead.h> 184133da73SXiang Gao 194133da73SXiang Gao #include "aead_api.h" 204133da73SXiang Gao 214133da73SXiang Gao int aead_encrypt(struct crypto_aead *tfm, u8 *b_0, u8 *aad, size_t aad_len, 224133da73SXiang Gao u8 *data, size_t data_len, u8 *mic) 234133da73SXiang Gao { 249e97964dSJohannes Berg size_t mic_len = crypto_aead_authsize(tfm); 254133da73SXiang Gao struct scatterlist sg[3]; 264133da73SXiang Gao struct aead_request *aead_req; 274133da73SXiang Gao int reqsize = sizeof(*aead_req) + crypto_aead_reqsize(tfm); 284133da73SXiang Gao u8 *__aad; 294133da73SXiang Gao 304133da73SXiang Gao aead_req = kzalloc(reqsize + aad_len, GFP_ATOMIC); 314133da73SXiang Gao if (!aead_req) 324133da73SXiang Gao return -ENOMEM; 334133da73SXiang Gao 344133da73SXiang Gao __aad = (u8 *)aead_req + reqsize; 354133da73SXiang Gao memcpy(__aad, aad, aad_len); 364133da73SXiang Gao 374133da73SXiang Gao sg_init_table(sg, 3); 384133da73SXiang Gao sg_set_buf(&sg[0], __aad, aad_len); 394133da73SXiang Gao sg_set_buf(&sg[1], data, data_len); 404133da73SXiang Gao sg_set_buf(&sg[2], mic, mic_len); 414133da73SXiang Gao 424133da73SXiang Gao aead_request_set_tfm(aead_req, tfm); 434133da73SXiang Gao aead_request_set_crypt(aead_req, sg, sg, data_len, b_0); 444133da73SXiang Gao aead_request_set_ad(aead_req, sg[0].length); 454133da73SXiang Gao 464133da73SXiang Gao crypto_aead_encrypt(aead_req); 474133da73SXiang Gao kzfree(aead_req); 484133da73SXiang Gao 494133da73SXiang Gao return 0; 504133da73SXiang Gao } 514133da73SXiang Gao 524133da73SXiang Gao int aead_decrypt(struct crypto_aead *tfm, u8 *b_0, u8 *aad, size_t aad_len, 534133da73SXiang Gao u8 *data, size_t data_len, u8 *mic) 544133da73SXiang Gao { 559e97964dSJohannes Berg size_t mic_len = crypto_aead_authsize(tfm); 564133da73SXiang Gao struct scatterlist sg[3]; 574133da73SXiang Gao struct aead_request *aead_req; 584133da73SXiang Gao int reqsize = sizeof(*aead_req) + crypto_aead_reqsize(tfm); 594133da73SXiang Gao u8 *__aad; 604133da73SXiang Gao int err; 614133da73SXiang Gao 624133da73SXiang Gao if (data_len == 0) 634133da73SXiang Gao return -EINVAL; 644133da73SXiang Gao 654133da73SXiang Gao aead_req = kzalloc(reqsize + aad_len, GFP_ATOMIC); 664133da73SXiang Gao if (!aead_req) 674133da73SXiang Gao return -ENOMEM; 684133da73SXiang Gao 694133da73SXiang Gao __aad = (u8 *)aead_req + reqsize; 704133da73SXiang Gao memcpy(__aad, aad, aad_len); 714133da73SXiang Gao 724133da73SXiang Gao sg_init_table(sg, 3); 734133da73SXiang Gao sg_set_buf(&sg[0], __aad, aad_len); 744133da73SXiang Gao sg_set_buf(&sg[1], data, data_len); 754133da73SXiang Gao sg_set_buf(&sg[2], mic, mic_len); 764133da73SXiang Gao 774133da73SXiang Gao aead_request_set_tfm(aead_req, tfm); 784133da73SXiang Gao aead_request_set_crypt(aead_req, sg, sg, data_len + mic_len, b_0); 794133da73SXiang Gao aead_request_set_ad(aead_req, sg[0].length); 804133da73SXiang Gao 814133da73SXiang Gao err = crypto_aead_decrypt(aead_req); 824133da73SXiang Gao kzfree(aead_req); 834133da73SXiang Gao 844133da73SXiang Gao return err; 854133da73SXiang Gao } 864133da73SXiang Gao 874133da73SXiang Gao struct crypto_aead * 884133da73SXiang Gao aead_key_setup_encrypt(const char *alg, const u8 key[], 894133da73SXiang Gao size_t key_len, size_t mic_len) 904133da73SXiang Gao { 914133da73SXiang Gao struct crypto_aead *tfm; 924133da73SXiang Gao int err; 934133da73SXiang Gao 944133da73SXiang Gao tfm = crypto_alloc_aead(alg, 0, CRYPTO_ALG_ASYNC); 954133da73SXiang Gao if (IS_ERR(tfm)) 964133da73SXiang Gao return tfm; 974133da73SXiang Gao 984133da73SXiang Gao err = crypto_aead_setkey(tfm, key, key_len); 994133da73SXiang Gao if (err) 1004133da73SXiang Gao goto free_aead; 1014133da73SXiang Gao err = crypto_aead_setauthsize(tfm, mic_len); 1024133da73SXiang Gao if (err) 1034133da73SXiang Gao goto free_aead; 1044133da73SXiang Gao 1054133da73SXiang Gao return tfm; 1064133da73SXiang Gao 1074133da73SXiang Gao free_aead: 1084133da73SXiang Gao crypto_free_aead(tfm); 1094133da73SXiang Gao return ERR_PTR(err); 1104133da73SXiang Gao } 1114133da73SXiang Gao 1124133da73SXiang Gao void aead_key_free(struct crypto_aead *tfm) 1134133da73SXiang Gao { 1144133da73SXiang Gao crypto_free_aead(tfm); 1154133da73SXiang Gao } 116