1d2912cb1SThomas Gleixner // SPDX-License-Identifier: GPL-2.0-only 24133da73SXiang Gao /* 34133da73SXiang Gao * Copyright 2003-2004, Instant802 Networks, Inc. 44133da73SXiang Gao * Copyright 2005-2006, Devicescape Software, Inc. 54133da73SXiang Gao * Copyright 2014-2015, Qualcomm Atheros, Inc. 64133da73SXiang Gao * 74133da73SXiang Gao * Rewrite: Copyright (C) 2013 Linaro Ltd <ard.biesheuvel@linaro.org> 84133da73SXiang Gao */ 94133da73SXiang Gao 104133da73SXiang Gao #include <linux/kernel.h> 114133da73SXiang Gao #include <linux/types.h> 124133da73SXiang Gao #include <linux/err.h> 134133da73SXiang Gao #include <linux/scatterlist.h> 144133da73SXiang Gao #include <crypto/aead.h> 154133da73SXiang Gao 164133da73SXiang Gao #include "aead_api.h" 174133da73SXiang Gao 184133da73SXiang Gao int aead_encrypt(struct crypto_aead *tfm, u8 *b_0, u8 *aad, size_t aad_len, 194133da73SXiang Gao u8 *data, size_t data_len, u8 *mic) 204133da73SXiang Gao { 219e97964dSJohannes Berg size_t mic_len = crypto_aead_authsize(tfm); 224133da73SXiang Gao struct scatterlist sg[3]; 234133da73SXiang Gao struct aead_request *aead_req; 244133da73SXiang Gao int reqsize = sizeof(*aead_req) + crypto_aead_reqsize(tfm); 254133da73SXiang Gao u8 *__aad; 264133da73SXiang Gao 274133da73SXiang Gao aead_req = kzalloc(reqsize + aad_len, GFP_ATOMIC); 284133da73SXiang Gao if (!aead_req) 294133da73SXiang Gao return -ENOMEM; 304133da73SXiang Gao 314133da73SXiang Gao __aad = (u8 *)aead_req + reqsize; 324133da73SXiang Gao memcpy(__aad, aad, aad_len); 334133da73SXiang Gao 344133da73SXiang Gao sg_init_table(sg, 3); 354133da73SXiang Gao sg_set_buf(&sg[0], __aad, aad_len); 364133da73SXiang Gao sg_set_buf(&sg[1], data, data_len); 374133da73SXiang Gao sg_set_buf(&sg[2], mic, mic_len); 384133da73SXiang Gao 394133da73SXiang Gao aead_request_set_tfm(aead_req, tfm); 404133da73SXiang Gao aead_request_set_crypt(aead_req, sg, sg, data_len, b_0); 414133da73SXiang Gao aead_request_set_ad(aead_req, sg[0].length); 424133da73SXiang Gao 434133da73SXiang Gao crypto_aead_encrypt(aead_req); 444133da73SXiang Gao kzfree(aead_req); 454133da73SXiang Gao 464133da73SXiang Gao return 0; 474133da73SXiang Gao } 484133da73SXiang Gao 494133da73SXiang Gao int aead_decrypt(struct crypto_aead *tfm, u8 *b_0, u8 *aad, size_t aad_len, 504133da73SXiang Gao u8 *data, size_t data_len, u8 *mic) 514133da73SXiang Gao { 529e97964dSJohannes Berg size_t mic_len = crypto_aead_authsize(tfm); 534133da73SXiang Gao struct scatterlist sg[3]; 544133da73SXiang Gao struct aead_request *aead_req; 554133da73SXiang Gao int reqsize = sizeof(*aead_req) + crypto_aead_reqsize(tfm); 564133da73SXiang Gao u8 *__aad; 574133da73SXiang Gao int err; 584133da73SXiang Gao 594133da73SXiang Gao if (data_len == 0) 604133da73SXiang Gao return -EINVAL; 614133da73SXiang Gao 624133da73SXiang Gao aead_req = kzalloc(reqsize + aad_len, GFP_ATOMIC); 634133da73SXiang Gao if (!aead_req) 644133da73SXiang Gao return -ENOMEM; 654133da73SXiang Gao 664133da73SXiang Gao __aad = (u8 *)aead_req + reqsize; 674133da73SXiang Gao memcpy(__aad, aad, aad_len); 684133da73SXiang Gao 694133da73SXiang Gao sg_init_table(sg, 3); 704133da73SXiang Gao sg_set_buf(&sg[0], __aad, aad_len); 714133da73SXiang Gao sg_set_buf(&sg[1], data, data_len); 724133da73SXiang Gao sg_set_buf(&sg[2], mic, mic_len); 734133da73SXiang Gao 744133da73SXiang Gao aead_request_set_tfm(aead_req, tfm); 754133da73SXiang Gao aead_request_set_crypt(aead_req, sg, sg, data_len + mic_len, b_0); 764133da73SXiang Gao aead_request_set_ad(aead_req, sg[0].length); 774133da73SXiang Gao 784133da73SXiang Gao err = crypto_aead_decrypt(aead_req); 794133da73SXiang Gao kzfree(aead_req); 804133da73SXiang Gao 814133da73SXiang Gao return err; 824133da73SXiang Gao } 834133da73SXiang Gao 844133da73SXiang Gao struct crypto_aead * 854133da73SXiang Gao aead_key_setup_encrypt(const char *alg, const u8 key[], 864133da73SXiang Gao size_t key_len, size_t mic_len) 874133da73SXiang Gao { 884133da73SXiang Gao struct crypto_aead *tfm; 894133da73SXiang Gao int err; 904133da73SXiang Gao 914133da73SXiang Gao tfm = crypto_alloc_aead(alg, 0, CRYPTO_ALG_ASYNC); 924133da73SXiang Gao if (IS_ERR(tfm)) 934133da73SXiang Gao return tfm; 944133da73SXiang Gao 954133da73SXiang Gao err = crypto_aead_setkey(tfm, key, key_len); 964133da73SXiang Gao if (err) 974133da73SXiang Gao goto free_aead; 984133da73SXiang Gao err = crypto_aead_setauthsize(tfm, mic_len); 994133da73SXiang Gao if (err) 1004133da73SXiang Gao goto free_aead; 1014133da73SXiang Gao 1024133da73SXiang Gao return tfm; 1034133da73SXiang Gao 1044133da73SXiang Gao free_aead: 1054133da73SXiang Gao crypto_free_aead(tfm); 1064133da73SXiang Gao return ERR_PTR(err); 1074133da73SXiang Gao } 1084133da73SXiang Gao 1094133da73SXiang Gao void aead_key_free(struct crypto_aead *tfm) 1104133da73SXiang Gao { 1114133da73SXiang Gao crypto_free_aead(tfm); 1124133da73SXiang Gao } 113