xref: /openbmc/linux/net/mac80211/aead_api.c (revision d2912cb1) 
1d2912cb1SThomas Gleixner // SPDX-License-Identifier: GPL-2.0-only
24133da73SXiang Gao /*
34133da73SXiang Gao  * Copyright 2003-2004, Instant802 Networks, Inc.
44133da73SXiang Gao  * Copyright 2005-2006, Devicescape Software, Inc.
54133da73SXiang Gao  * Copyright 2014-2015, Qualcomm Atheros, Inc.
64133da73SXiang Gao  *
74133da73SXiang Gao  * Rewrite: Copyright (C) 2013 Linaro Ltd <ard.biesheuvel@linaro.org>
84133da73SXiang Gao  */
94133da73SXiang Gao 
104133da73SXiang Gao #include <linux/kernel.h>
114133da73SXiang Gao #include <linux/types.h>
124133da73SXiang Gao #include <linux/err.h>
134133da73SXiang Gao #include <linux/scatterlist.h>
144133da73SXiang Gao #include <crypto/aead.h>
154133da73SXiang Gao 
164133da73SXiang Gao #include "aead_api.h"
174133da73SXiang Gao 
184133da73SXiang Gao int aead_encrypt(struct crypto_aead *tfm, u8 *b_0, u8 *aad, size_t aad_len,
194133da73SXiang Gao 		 u8 *data, size_t data_len, u8 *mic)
204133da73SXiang Gao {
219e97964dSJohannes Berg 	size_t mic_len = crypto_aead_authsize(tfm);
224133da73SXiang Gao 	struct scatterlist sg[3];
234133da73SXiang Gao 	struct aead_request *aead_req;
244133da73SXiang Gao 	int reqsize = sizeof(*aead_req) + crypto_aead_reqsize(tfm);
254133da73SXiang Gao 	u8 *__aad;
264133da73SXiang Gao 
274133da73SXiang Gao 	aead_req = kzalloc(reqsize + aad_len, GFP_ATOMIC);
284133da73SXiang Gao 	if (!aead_req)
294133da73SXiang Gao 		return -ENOMEM;
304133da73SXiang Gao 
314133da73SXiang Gao 	__aad = (u8 *)aead_req + reqsize;
324133da73SXiang Gao 	memcpy(__aad, aad, aad_len);
334133da73SXiang Gao 
344133da73SXiang Gao 	sg_init_table(sg, 3);
354133da73SXiang Gao 	sg_set_buf(&sg[0], __aad, aad_len);
364133da73SXiang Gao 	sg_set_buf(&sg[1], data, data_len);
374133da73SXiang Gao 	sg_set_buf(&sg[2], mic, mic_len);
384133da73SXiang Gao 
394133da73SXiang Gao 	aead_request_set_tfm(aead_req, tfm);
404133da73SXiang Gao 	aead_request_set_crypt(aead_req, sg, sg, data_len, b_0);
414133da73SXiang Gao 	aead_request_set_ad(aead_req, sg[0].length);
424133da73SXiang Gao 
434133da73SXiang Gao 	crypto_aead_encrypt(aead_req);
444133da73SXiang Gao 	kzfree(aead_req);
454133da73SXiang Gao 
464133da73SXiang Gao 	return 0;
474133da73SXiang Gao }
484133da73SXiang Gao 
494133da73SXiang Gao int aead_decrypt(struct crypto_aead *tfm, u8 *b_0, u8 *aad, size_t aad_len,
504133da73SXiang Gao 		 u8 *data, size_t data_len, u8 *mic)
514133da73SXiang Gao {
529e97964dSJohannes Berg 	size_t mic_len = crypto_aead_authsize(tfm);
534133da73SXiang Gao 	struct scatterlist sg[3];
544133da73SXiang Gao 	struct aead_request *aead_req;
554133da73SXiang Gao 	int reqsize = sizeof(*aead_req) + crypto_aead_reqsize(tfm);
564133da73SXiang Gao 	u8 *__aad;
574133da73SXiang Gao 	int err;
584133da73SXiang Gao 
594133da73SXiang Gao 	if (data_len == 0)
604133da73SXiang Gao 		return -EINVAL;
614133da73SXiang Gao 
624133da73SXiang Gao 	aead_req = kzalloc(reqsize + aad_len, GFP_ATOMIC);
634133da73SXiang Gao 	if (!aead_req)
644133da73SXiang Gao 		return -ENOMEM;
654133da73SXiang Gao 
664133da73SXiang Gao 	__aad = (u8 *)aead_req + reqsize;
674133da73SXiang Gao 	memcpy(__aad, aad, aad_len);
684133da73SXiang Gao 
694133da73SXiang Gao 	sg_init_table(sg, 3);
704133da73SXiang Gao 	sg_set_buf(&sg[0], __aad, aad_len);
714133da73SXiang Gao 	sg_set_buf(&sg[1], data, data_len);
724133da73SXiang Gao 	sg_set_buf(&sg[2], mic, mic_len);
734133da73SXiang Gao 
744133da73SXiang Gao 	aead_request_set_tfm(aead_req, tfm);
754133da73SXiang Gao 	aead_request_set_crypt(aead_req, sg, sg, data_len + mic_len, b_0);
764133da73SXiang Gao 	aead_request_set_ad(aead_req, sg[0].length);
774133da73SXiang Gao 
784133da73SXiang Gao 	err = crypto_aead_decrypt(aead_req);
794133da73SXiang Gao 	kzfree(aead_req);
804133da73SXiang Gao 
814133da73SXiang Gao 	return err;
824133da73SXiang Gao }
834133da73SXiang Gao 
844133da73SXiang Gao struct crypto_aead *
854133da73SXiang Gao aead_key_setup_encrypt(const char *alg, const u8 key[],
864133da73SXiang Gao 		       size_t key_len, size_t mic_len)
874133da73SXiang Gao {
884133da73SXiang Gao 	struct crypto_aead *tfm;
894133da73SXiang Gao 	int err;
904133da73SXiang Gao 
914133da73SXiang Gao 	tfm = crypto_alloc_aead(alg, 0, CRYPTO_ALG_ASYNC);
924133da73SXiang Gao 	if (IS_ERR(tfm))
934133da73SXiang Gao 		return tfm;
944133da73SXiang Gao 
954133da73SXiang Gao 	err = crypto_aead_setkey(tfm, key, key_len);
964133da73SXiang Gao 	if (err)
974133da73SXiang Gao 		goto free_aead;
984133da73SXiang Gao 	err = crypto_aead_setauthsize(tfm, mic_len);
994133da73SXiang Gao 	if (err)
1004133da73SXiang Gao 		goto free_aead;
1014133da73SXiang Gao 
1024133da73SXiang Gao 	return tfm;
1034133da73SXiang Gao 
1044133da73SXiang Gao free_aead:
1054133da73SXiang Gao 	crypto_free_aead(tfm);
1064133da73SXiang Gao 	return ERR_PTR(err);
1074133da73SXiang Gao }
1084133da73SXiang Gao 
1094133da73SXiang Gao void aead_key_free(struct crypto_aead *tfm)
1104133da73SXiang Gao {
1114133da73SXiang Gao 	crypto_free_aead(tfm);
1124133da73SXiang Gao }
113