]> git.ipfire.org Git - thirdparty/kernel/linux.git/blame - crypto/aead.c
projects / thirdparty / kernel / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
crypto: aead - Preserve in-place processing in old_crypt
[thirdparty/kernel/linux.git] / crypto / aead.c
CommitLineData
1ae97820
HX		 1/*
2 * AEAD: Authenticated Encryption with Associated Data
3922538f 3 *
1ae97820
HX		 4 * This file provides API support for AEAD algorithms.
5 *
6 * Copyright (c) 2007 Herbert Xu <herbert@gondor.apana.org.au>
7 *
8 * This program is free software; you can redistribute it and/or modify it
9 * under the terms of the GNU General Public License as published by the Free
3922538f 10 * Software Foundation; either version 2 of the License, or (at your option)
1ae97820
HX		 11 * any later version.
12 *
13 */
14
5b6d2d7f 15#include <crypto/internal/aead.h>
996d98d8 16#include <crypto/scatterwalk.h>
5b6d2d7f 17#include <linux/err.h>
1ae97820
HX		 18#include <linux/init.h>
19#include <linux/kernel.h>
20#include <linux/module.h>
d29ce988 21#include <linux/rtnetlink.h>
d43c36dc 22#include <linux/sched.h>
1ae97820
HX		 23#include <linux/slab.h>
24#include <linux/seq_file.h>
6ad414fe
SK		 25#include <linux/cryptouser.h>
26#include <net/netlink.h>
1ae97820 27
5b6d2d7f
HX		 28#include "internal.h"
29
5d1d65f8
HX		 30static int aead_null_givencrypt(struct aead_givcrypt_request *req);
31static int aead_null_givdecrypt(struct aead_givcrypt_request *req);
32
1ae97820
HX		 33static int setkey_unaligned(struct crypto_aead *tfm, const u8 *key,
34 unsigned int keylen)
35{
1ae97820
HX		 36 unsigned long alignmask = crypto_aead_alignmask(tfm);
37 int ret;
38 u8 *buffer, *alignbuffer;
39 unsigned long absize;
40
41 absize = keylen + alignmask;
42 buffer = kmalloc(absize, GFP_ATOMIC);
43 if (!buffer)
44 return -ENOMEM;
45
46 alignbuffer = (u8 *)ALIGN((unsigned long)buffer, alignmask + 1);
47 memcpy(alignbuffer, key, keylen);
63293c61 48 ret = tfm->setkey(tfm, alignbuffer, keylen);
1ae97820
HX		 49 memset(alignbuffer, 0, keylen);
50 kfree(buffer);
51 return ret;
52}
53
5d1d65f8
HX		 54int crypto_aead_setkey(struct crypto_aead *tfm,
55 const u8 *key, unsigned int keylen)
1ae97820 56{
1ae97820
HX		 57 unsigned long alignmask = crypto_aead_alignmask(tfm);
58
5d1d65f8
HX		 59 tfm = tfm->child;
60
1ae97820
HX		 61 if ((unsigned long)key & alignmask)
62 return setkey_unaligned(tfm, key, keylen);
63
63293c61 64 return tfm->setkey(tfm, key, keylen);
1ae97820 65}
5d1d65f8 66EXPORT_SYMBOL_GPL(crypto_aead_setkey);
1ae97820 67
7ba683a6
HX		 68int crypto_aead_setauthsize(struct crypto_aead *tfm, unsigned int authsize)
69{
70 int err;
71
30e4c010 72 if (authsize > crypto_aead_maxauthsize(tfm))
7ba683a6
HX		 73 return -EINVAL;
74
63293c61
HX		 75 if (tfm->setauthsize) {
76 err = tfm->setauthsize(tfm->child, authsize);
7ba683a6
HX		 77 if (err)
78 return err;
79 }
80
5d1d65f8
HX		 81 tfm->child->authsize = authsize;
82 tfm->authsize = authsize;
7ba683a6
HX		 83 return 0;
84}
85EXPORT_SYMBOL_GPL(crypto_aead_setauthsize);
86
996d98d8
HX		 87struct aead_old_request {
88 struct scatterlist srcbuf[2];
89 struct scatterlist dstbuf[2];
90 struct aead_request subreq;
91};
92
93unsigned int crypto_aead_reqsize(struct crypto_aead *tfm)
94{
95 return tfm->reqsize + sizeof(struct aead_old_request);
96}
97EXPORT_SYMBOL_GPL(crypto_aead_reqsize);
98
99static int old_crypt(struct aead_request *req,
100 int (*crypt)(struct aead_request *req))
101{
102 struct aead_old_request *nreq = aead_request_ctx(req);
103 struct crypto_aead *aead = crypto_aead_reqtfm(req);
104 struct scatterlist *src, *dst;
105
106 if (req->old)
107 return crypt(req);
108
374d4ad1 109 src = scatterwalk_ffwd(nreq->srcbuf, req->src, req->assoclen);
b455eb80
HX		 110 dst = req->src == req->dst ?
111 src : scatterwalk_ffwd(nreq->dstbuf, req->dst, req->assoclen);
996d98d8
HX		 112
113 aead_request_set_tfm(&nreq->subreq, aead);
114 aead_request_set_callback(&nreq->subreq, aead_request_flags(req),
115 req->base.complete, req->base.data);
116 aead_request_set_crypt(&nreq->subreq, src, dst, req->cryptlen,
117 req->iv);
118 aead_request_set_assoc(&nreq->subreq, req->src, req->assoclen);
119
120 return crypt(&nreq->subreq);
121}
122
123static int old_encrypt(struct aead_request *req)
124{
125 struct crypto_aead *aead = crypto_aead_reqtfm(req);
2d0f230f 126 struct old_aead_alg *alg = crypto_old_aead_alg(aead);
996d98d8
HX		 127
128 return old_crypt(req, alg->encrypt);
129}
130
131static int old_decrypt(struct aead_request *req)
132{
133 struct crypto_aead *aead = crypto_aead_reqtfm(req);
2d0f230f 134 struct old_aead_alg *alg = crypto_old_aead_alg(aead);
996d98d8
HX		 135
136 return old_crypt(req, alg->decrypt);
137}
138
aedb30dc 139static int no_givcrypt(struct aead_givcrypt_request *req)
743edf57
HX		 140{
141 return -ENOSYS;
142}
143
63293c61 144static int crypto_old_aead_init_tfm(struct crypto_tfm *tfm)
1ae97820 145{
2d0f230f 146 struct old_aead_alg *alg = &tfm->__crt_alg->cra_aead;
5d1d65f8 147 struct crypto_aead *crt = __crypto_aead_cast(tfm);
1ae97820 148
7ba683a6 149 if (max(alg->maxauthsize, alg->ivsize) > PAGE_SIZE / 8)
1ae97820
HX		 150 return -EINVAL;
151
63293c61
HX		 152 crt->setkey = alg->setkey;
153 crt->setauthsize = alg->setauthsize;
996d98d8
HX		 154 crt->encrypt = old_encrypt;
155 crt->decrypt = old_decrypt;
5d1d65f8
HX		 156 if (alg->ivsize) {
157 crt->givencrypt = alg->givencrypt ?: no_givcrypt;
158 crt->givdecrypt = alg->givdecrypt ?: no_givcrypt;
159 } else {
160 crt->givencrypt = aead_null_givencrypt;
161 crt->givdecrypt = aead_null_givdecrypt;
162 }
163 crt->child = __crypto_aead_cast(tfm);
7ba683a6 164 crt->authsize = alg->maxauthsize;
1ae97820
HX		 165
166 return 0;
167}
168
63293c61
HX		 169static int crypto_aead_init_tfm(struct crypto_tfm *tfm)
170{
171 struct crypto_aead *aead = __crypto_aead_cast(tfm);
172 struct aead_alg *alg = crypto_aead_alg(aead);
173
174 if (crypto_old_aead_alg(aead)->encrypt)
175 return crypto_old_aead_init_tfm(tfm);
176
177 aead->setkey = alg->setkey;
178 aead->setauthsize = alg->setauthsize;
179 aead->encrypt = alg->encrypt;
180 aead->decrypt = alg->decrypt;
181 aead->child = __crypto_aead_cast(tfm);
63293c61
HX		 182 aead->authsize = alg->maxauthsize;
183
184 return 0;
185}
186
3acc8473 187#ifdef CONFIG_NET
63293c61 188static int crypto_old_aead_report(struct sk_buff *skb, struct crypto_alg *alg)
6ad414fe
SK		 189{
190 struct crypto_report_aead raead;
2d0f230f 191 struct old_aead_alg *aead = &alg->cra_aead;
6ad414fe 192
9a5467bf
MK		 193 strncpy(raead.type, "aead", sizeof(raead.type));
194 strncpy(raead.geniv, aead->geniv ?: "<built-in>", sizeof(raead.geniv));
6ad414fe
SK		 195
196 raead.blocksize = alg->cra_blocksize;
197 raead.maxauthsize = aead->maxauthsize;
198 raead.ivsize = aead->ivsize;
199
6662df33
DM		 200 if (nla_put(skb, CRYPTOCFGA_REPORT_AEAD,
201 sizeof(struct crypto_report_aead), &raead))
202 goto nla_put_failure;
6ad414fe
SK		 203 return 0;
204
205nla_put_failure:
206 return -EMSGSIZE;
207}
3acc8473 208#else
63293c61 209static int crypto_old_aead_report(struct sk_buff *skb, struct crypto_alg *alg)
3acc8473
HX		 210{
211 return -ENOSYS;
212}
213#endif
6ad414fe 214
63293c61 215static void crypto_old_aead_show(struct seq_file *m, struct crypto_alg *alg)
1ae97820 216 __attribute__ ((unused));
63293c61 217static void crypto_old_aead_show(struct seq_file *m, struct crypto_alg *alg)
1ae97820 218{
2d0f230f 219 struct old_aead_alg *aead = &alg->cra_aead;
1ae97820
HX		 220
221 seq_printf(m, "type : aead\n");
189ed66e
HX		 222 seq_printf(m, "async : %s\n", alg->cra_flags & CRYPTO_ALG_ASYNC ?
223 "yes" : "no");
1ae97820
HX		 224 seq_printf(m, "blocksize : %u\n", alg->cra_blocksize);
225 seq_printf(m, "ivsize : %u\n", aead->ivsize);
7ba683a6 226 seq_printf(m, "maxauthsize : %u\n", aead->maxauthsize);
5b6d2d7f 227 seq_printf(m, "geniv : %s\n", aead->geniv ?: "<built-in>");
1ae97820
HX		 228}
229
230const struct crypto_type crypto_aead_type = {
5d1d65f8
HX		 231 .extsize = crypto_alg_extsize,
232 .init_tfm = crypto_aead_init_tfm,
1ae97820 233#ifdef CONFIG_PROC_FS
63293c61 234 .show = crypto_old_aead_show,
1ae97820 235#endif
63293c61 236 .report = crypto_old_aead_report,
5d1d65f8
HX		 237 .lookup = crypto_lookup_aead,
238 .maskclear = ~(CRYPTO_ALG_TYPE_MASK | CRYPTO_ALG_GENIV),
239 .maskset = CRYPTO_ALG_TYPE_MASK,
240 .type = CRYPTO_ALG_TYPE_AEAD,
241 .tfmsize = offsetof(struct crypto_aead, base),
1ae97820
HX		 242};
243EXPORT_SYMBOL_GPL(crypto_aead_type);
244
63293c61
HX		 245#ifdef CONFIG_NET
246static int crypto_aead_report(struct sk_buff *skb, struct crypto_alg *alg)
247{
248 struct crypto_report_aead raead;
249 struct aead_alg *aead = container_of(alg, struct aead_alg, base);
250
251 strncpy(raead.type, "aead", sizeof(raead.type));
252 strncpy(raead.geniv, "<none>", sizeof(raead.geniv));
253
254 raead.blocksize = alg->cra_blocksize;
255 raead.maxauthsize = aead->maxauthsize;
256 raead.ivsize = aead->ivsize;
257
258 if (nla_put(skb, CRYPTOCFGA_REPORT_AEAD,
259 sizeof(struct crypto_report_aead), &raead))
260 goto nla_put_failure;
261 return 0;
262
263nla_put_failure:
264 return -EMSGSIZE;
265}
266#else
267static int crypto_aead_report(struct sk_buff *skb, struct crypto_alg *alg)
268{
269 return -ENOSYS;
270}
271#endif
272
273static void crypto_aead_show(struct seq_file *m, struct crypto_alg *alg)
274 __attribute__ ((unused));
275static void crypto_aead_show(struct seq_file *m, struct crypto_alg *alg)
276{
277 struct aead_alg *aead = container_of(alg, struct aead_alg, base);
278
279 seq_printf(m, "type : aead\n");
280 seq_printf(m, "async : %s\n", alg->cra_flags & CRYPTO_ALG_ASYNC ?
281 "yes" : "no");
282 seq_printf(m, "blocksize : %u\n", alg->cra_blocksize);
283 seq_printf(m, "ivsize : %u\n", aead->ivsize);
284 seq_printf(m, "maxauthsize : %u\n", aead->maxauthsize);
285 seq_printf(m, "geniv : <none>\n");
286}
287
288static const struct crypto_type crypto_new_aead_type = {
289 .extsize = crypto_alg_extsize,
290 .init_tfm = crypto_aead_init_tfm,
291#ifdef CONFIG_PROC_FS
292 .show = crypto_aead_show,
293#endif
294 .report = crypto_aead_report,
295 .maskclear = ~CRYPTO_ALG_TYPE_MASK,
296 .maskset = CRYPTO_ALG_TYPE_MASK,
297 .type = CRYPTO_ALG_TYPE_AEAD,
298 .tfmsize = offsetof(struct crypto_aead, base),
299};
300
5b6d2d7f
HX		 301static int aead_null_givencrypt(struct aead_givcrypt_request *req)
302{
303 return crypto_aead_encrypt(&req->areq);
304}
305
306static int aead_null_givdecrypt(struct aead_givcrypt_request *req)
307{
308 return crypto_aead_decrypt(&req->areq);
309}
310
3acc8473 311#ifdef CONFIG_NET
b735d0a9
SK		 312static int crypto_nivaead_report(struct sk_buff *skb, struct crypto_alg *alg)
313{
314 struct crypto_report_aead raead;
2d0f230f 315 struct old_aead_alg *aead = &alg->cra_aead;
b735d0a9 316
9a5467bf
MK		 317 strncpy(raead.type, "nivaead", sizeof(raead.type));
318 strncpy(raead.geniv, aead->geniv, sizeof(raead.geniv));
b735d0a9
SK		 319
320 raead.blocksize = alg->cra_blocksize;
321 raead.maxauthsize = aead->maxauthsize;
322 raead.ivsize = aead->ivsize;
323
6662df33
DM		 324 if (nla_put(skb, CRYPTOCFGA_REPORT_AEAD,
325 sizeof(struct crypto_report_aead), &raead))
326 goto nla_put_failure;
b735d0a9
SK		 327 return 0;
328
329nla_put_failure:
330 return -EMSGSIZE;
331}
3acc8473
HX		 332#else
333static int crypto_nivaead_report(struct sk_buff *skb, struct crypto_alg *alg)
334{
335 return -ENOSYS;
336}
337#endif
b735d0a9
SK		 338
339
5b6d2d7f
HX		 340static void crypto_nivaead_show(struct seq_file *m, struct crypto_alg *alg)
341 __attribute__ ((unused));
342static void crypto_nivaead_show(struct seq_file *m, struct crypto_alg *alg)
343{
2d0f230f 344 struct old_aead_alg *aead = &alg->cra_aead;
5b6d2d7f
HX		 345
346 seq_printf(m, "type : nivaead\n");
189ed66e
HX		 347 seq_printf(m, "async : %s\n", alg->cra_flags & CRYPTO_ALG_ASYNC ?
348 "yes" : "no");
5b6d2d7f
HX		 349 seq_printf(m, "blocksize : %u\n", alg->cra_blocksize);
350 seq_printf(m, "ivsize : %u\n", aead->ivsize);
351 seq_printf(m, "maxauthsize : %u\n", aead->maxauthsize);
352 seq_printf(m, "geniv : %s\n", aead->geniv);
353}
354
355const struct crypto_type crypto_nivaead_type = {
5d1d65f8
HX		 356 .extsize = crypto_alg_extsize,
357 .init_tfm = crypto_aead_init_tfm,
5b6d2d7f
HX		 358#ifdef CONFIG_PROC_FS
359 .show = crypto_nivaead_show,
360#endif
b735d0a9 361 .report = crypto_nivaead_report,
5d1d65f8
HX		 362 .maskclear = ~(CRYPTO_ALG_TYPE_MASK | CRYPTO_ALG_GENIV),
363 .maskset = CRYPTO_ALG_TYPE_MASK | CRYPTO_ALG_GENIV,
364 .type = CRYPTO_ALG_TYPE_AEAD,
365 .tfmsize = offsetof(struct crypto_aead, base),
5b6d2d7f
HX		 366};
367EXPORT_SYMBOL_GPL(crypto_nivaead_type);
368
369static int crypto_grab_nivaead(struct crypto_aead_spawn *spawn,
370 const char *name, u32 type, u32 mask)
371{
5d1d65f8
HX		 372 spawn->base.frontend = &crypto_nivaead_type;
373 return crypto_grab_spawn(&spawn->base, name, type, mask);
5b6d2d7f
HX		 374}
375
856e3f40
HX		 376struct aead_instance *aead_geniv_alloc(struct crypto_template *tmpl,
377 struct rtattr **tb, u32 type, u32 mask)
5b6d2d7f
HX		 378{
379 const char *name;
380 struct crypto_aead_spawn *spawn;
381 struct crypto_attr_type *algt;
856e3f40
HX		 382 struct aead_instance *inst;
383 struct aead_alg *alg;
384 unsigned int ivsize;
385 unsigned int maxauthsize;
5b6d2d7f
HX		 386 int err;
387
388 algt = crypto_get_attr_type(tb);
5b6d2d7f 389 if (IS_ERR(algt))
3e8afe35 390 return ERR_CAST(algt);
5b6d2d7f
HX		 391
392 if ((algt->type ^ (CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_GENIV)) &
393 algt->mask)
394 return ERR_PTR(-EINVAL);
395
396 name = crypto_attr_alg_name(tb[1]);
5b6d2d7f 397 if (IS_ERR(name))
3e8afe35 398 return ERR_CAST(name);
5b6d2d7f
HX		 399
400 inst = kzalloc(sizeof(*inst) + sizeof(*spawn), GFP_KERNEL);
401 if (!inst)
402 return ERR_PTR(-ENOMEM);
403
856e3f40 404 spawn = aead_instance_ctx(inst);
5b6d2d7f
HX		 405
406 /* Ignore async algorithms if necessary. */
407 mask |= crypto_requires_sync(algt->type, algt->mask);
408
856e3f40 409 crypto_set_aead_spawn(spawn, aead_crypto_instance(inst));
5b6d2d7f
HX		 410 err = crypto_grab_nivaead(spawn, name, type, mask);
411 if (err)
412 goto err_free_inst;
413
856e3f40
HX		 414 alg = crypto_spawn_aead_alg(spawn);
415
30e4c010
HX		 416 ivsize = crypto_aead_alg_ivsize(alg);
417 maxauthsize = crypto_aead_alg_maxauthsize(alg);
5b6d2d7f
HX		 418
419 err = -EINVAL;
856e3f40 420 if (!ivsize)
5b6d2d7f
HX		 421 goto err_drop_alg;
422
423 /*
424 * This is only true if we're constructing an algorithm with its
425 * default IV generator. For the default generator we elide the
426 * template name and double-check the IV generator.
427 */
428 if (algt->mask & CRYPTO_ALG_GENIV) {
856e3f40
HX		 429 if (!alg->base.cra_aead.encrypt)
430 goto err_drop_alg;
431 if (strcmp(tmpl->name, alg->base.cra_aead.geniv))
5b6d2d7f
HX		 432 goto err_drop_alg;
433
856e3f40 434 memcpy(inst->alg.base.cra_name, alg->base.cra_name,
5b6d2d7f 435 CRYPTO_MAX_ALG_NAME);
856e3f40
HX		 436 memcpy(inst->alg.base.cra_driver_name,
437 alg->base.cra_driver_name, CRYPTO_MAX_ALG_NAME);
438
439 inst->alg.base.cra_flags = CRYPTO_ALG_TYPE_AEAD |
440 CRYPTO_ALG_GENIV;
441 inst->alg.base.cra_flags |= alg->base.cra_flags &
442 CRYPTO_ALG_ASYNC;
443 inst->alg.base.cra_priority = alg->base.cra_priority;
444 inst->alg.base.cra_blocksize = alg->base.cra_blocksize;
445 inst->alg.base.cra_alignmask = alg->base.cra_alignmask;
446 inst->alg.base.cra_type = &crypto_aead_type;
447
448 inst->alg.base.cra_aead.ivsize = ivsize;
449 inst->alg.base.cra_aead.maxauthsize = maxauthsize;
450
451 inst->alg.base.cra_aead.setkey = alg->base.cra_aead.setkey;
452 inst->alg.base.cra_aead.setauthsize =
453 alg->base.cra_aead.setauthsize;
454 inst->alg.base.cra_aead.encrypt = alg->base.cra_aead.encrypt;
455 inst->alg.base.cra_aead.decrypt = alg->base.cra_aead.decrypt;
456
457 goto out;
5b6d2d7f
HX		 458 }
459
856e3f40
HX		 460 err = -ENAMETOOLONG;
461 if (snprintf(inst->alg.base.cra_name, CRYPTO_MAX_ALG_NAME,
462 "%s(%s)", tmpl->name, alg->base.cra_name) >=
463 CRYPTO_MAX_ALG_NAME)
464 goto err_drop_alg;
465 if (snprintf(inst->alg.base.cra_driver_name, CRYPTO_MAX_ALG_NAME,
466 "%s(%s)", tmpl->name, alg->base.cra_driver_name) >=
467 CRYPTO_MAX_ALG_NAME)
468 goto err_drop_alg;
5b6d2d7f 469
d1ee1f02 470 inst->alg.base.cra_flags = alg->base.cra_flags & CRYPTO_ALG_ASYNC;
856e3f40
HX		 471 inst->alg.base.cra_priority = alg->base.cra_priority;
472 inst->alg.base.cra_blocksize = alg->base.cra_blocksize;
473 inst->alg.base.cra_alignmask = alg->base.cra_alignmask;
5b6d2d7f 474
856e3f40
HX		 475 inst->alg.ivsize = ivsize;
476 inst->alg.maxauthsize = maxauthsize;
5b6d2d7f
HX		 477
478out:
479 return inst;
480
481err_drop_alg:
482 crypto_drop_aead(spawn);
483err_free_inst:
484 kfree(inst);
485 inst = ERR_PTR(err);
486 goto out;
487}
488EXPORT_SYMBOL_GPL(aead_geniv_alloc);
489
856e3f40 490void aead_geniv_free(struct aead_instance *inst)
5b6d2d7f 491{
856e3f40 492 crypto_drop_aead(aead_instance_ctx(inst));
5b6d2d7f
HX		 493 kfree(inst);
494}
495EXPORT_SYMBOL_GPL(aead_geniv_free);
496
497int aead_geniv_init(struct crypto_tfm *tfm)
498{
499 struct crypto_instance *inst = (void *)tfm->__crt_alg;
5d1d65f8 500 struct crypto_aead *child;
5b6d2d7f
HX		 501 struct crypto_aead *aead;
502
5d1d65f8 503 aead = __crypto_aead_cast(tfm);
5b6d2d7f 504
5d1d65f8
HX		 505 child = crypto_spawn_aead(crypto_instance_ctx(inst));
506 if (IS_ERR(child))
507 return PTR_ERR(child);
508
509 aead->child = child;
510 aead->reqsize += crypto_aead_reqsize(child);
5b6d2d7f
HX		 511
512 return 0;
513}
514EXPORT_SYMBOL_GPL(aead_geniv_init);
515
516void aead_geniv_exit(struct crypto_tfm *tfm)
517{
5d1d65f8 518 crypto_free_aead(__crypto_aead_cast(tfm)->child);
5b6d2d7f
HX		 519}
520EXPORT_SYMBOL_GPL(aead_geniv_exit);
521
d29ce988
HX		 522static int crypto_nivaead_default(struct crypto_alg *alg, u32 type, u32 mask)
523{
524 struct rtattr *tb[3];
525 struct {
526 struct rtattr attr;
527 struct crypto_attr_type data;
528 } ptype;
529 struct {
530 struct rtattr attr;
531 struct crypto_attr_alg data;
532 } palg;
533 struct crypto_template *tmpl;
534 struct crypto_instance *inst;
535 struct crypto_alg *larval;
536 const char *geniv;
537 int err;
538
539 larval = crypto_larval_lookup(alg->cra_driver_name,
540 CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_GENIV,
541 CRYPTO_ALG_TYPE_MASK | CRYPTO_ALG_GENIV);
542 err = PTR_ERR(larval);
543 if (IS_ERR(larval))
544 goto out;
545
546 err = -EAGAIN;
547 if (!crypto_is_larval(larval))
548 goto drop_larval;
549
550 ptype.attr.rta_len = sizeof(ptype);
551 ptype.attr.rta_type = CRYPTOA_TYPE;
552 ptype.data.type = type | CRYPTO_ALG_GENIV;
553 /* GENIV tells the template that we're making a default geniv. */
554 ptype.data.mask = mask | CRYPTO_ALG_GENIV;
555 tb[0] = &ptype.attr;
556
557 palg.attr.rta_len = sizeof(palg);
558 palg.attr.rta_type = CRYPTOA_ALG;
559 /* Must use the exact name to locate ourselves. */
560 memcpy(palg.data.name, alg->cra_driver_name, CRYPTO_MAX_ALG_NAME);
561 tb[1] = &palg.attr;
562
563 tb[2] = NULL;
564
565 geniv = alg->cra_aead.geniv;
566
567 tmpl = crypto_lookup_template(geniv);
568 err = -ENOENT;
569 if (!tmpl)
570 goto kill_larval;
571
72af865d
HX		 572 if (tmpl->create) {
573 err = tmpl->create(tmpl, tb);
574 if (err)
575 goto put_tmpl;
576 goto ok;
577 }
578
d29ce988
HX		 579 inst = tmpl->alloc(tb);
580 err = PTR_ERR(inst);
581 if (IS_ERR(inst))
582 goto put_tmpl;
583
4fad478a
JJ		 584 err = crypto_register_instance(tmpl, inst);
585 if (err) {
d29ce988
HX		 586 tmpl->free(inst);
587 goto put_tmpl;
588 }
589
72af865d 590ok:
d29ce988
HX		 591 /* Redo the lookup to use the instance we just registered. */
592 err = -EAGAIN;
593
594put_tmpl:
595 crypto_tmpl_put(tmpl);
596kill_larval:
597 crypto_larval_kill(larval);
598drop_larval:
599 crypto_mod_put(larval);
600out:
601 crypto_mod_put(alg);
602 return err;
603}
604
1e122994 605struct crypto_alg *crypto_lookup_aead(const char *name, u32 type, u32 mask)
d29ce988
HX		 606{
607 struct crypto_alg *alg;
608
609 alg = crypto_alg_mod_lookup(name, type, mask);
610 if (IS_ERR(alg))
611 return alg;
612
613 if (alg->cra_type == &crypto_aead_type)
614 return alg;
615
616 if (!alg->cra_aead.ivsize)
617 return alg;
618
5852ae42
HX		 619 crypto_mod_put(alg);
620 alg = crypto_alg_mod_lookup(name, type | CRYPTO_ALG_TESTED,
621 mask & ~CRYPTO_ALG_TESTED);
622 if (IS_ERR(alg))
623 return alg;
624
625 if (alg->cra_type == &crypto_aead_type) {
80f7b355 626 if (~alg->cra_flags & (type ^ ~mask) & CRYPTO_ALG_TESTED) {
5852ae42
HX		 627 crypto_mod_put(alg);
628 alg = ERR_PTR(-ENOENT);
629 }
630 return alg;
631 }
632
633 BUG_ON(!alg->cra_aead.ivsize);
634
d29ce988
HX		 635 return ERR_PTR(crypto_nivaead_default(alg, type, mask));
636}
1e122994 637EXPORT_SYMBOL_GPL(crypto_lookup_aead);
d29ce988
HX		 638
639int crypto_grab_aead(struct crypto_aead_spawn *spawn, const char *name,
640 u32 type, u32 mask)
641{
5d1d65f8
HX		 642 spawn->base.frontend = &crypto_aead_type;
643 return crypto_grab_spawn(&spawn->base, name, type, mask);
d29ce988
HX		 644}
645EXPORT_SYMBOL_GPL(crypto_grab_aead);
646
647struct crypto_aead *crypto_alloc_aead(const char *alg_name, u32 type, u32 mask)
648{
5d1d65f8 649 return crypto_alloc_tfm(alg_name, &crypto_aead_type, type, mask);
d29ce988
HX		 650}
651EXPORT_SYMBOL_GPL(crypto_alloc_aead);
652
63293c61
HX		 653static int aead_prepare_alg(struct aead_alg *alg)
654{
655 struct crypto_alg *base = &alg->base;
656
657 if (max(alg->maxauthsize, alg->ivsize) > PAGE_SIZE / 8)
658 return -EINVAL;
659
660 base->cra_type = &crypto_new_aead_type;
661 base->cra_flags &= ~CRYPTO_ALG_TYPE_MASK;
662 base->cra_flags |= CRYPTO_ALG_TYPE_AEAD;
663
664 return 0;
665}
666
667int crypto_register_aead(struct aead_alg *alg)
668{
669 struct crypto_alg *base = &alg->base;
670 int err;
671
672 err = aead_prepare_alg(alg);
673 if (err)
674 return err;
675
676 return crypto_register_alg(base);
677}
678EXPORT_SYMBOL_GPL(crypto_register_aead);
679
680int crypto_unregister_aead(struct aead_alg *alg)
681{
682 return crypto_unregister_alg(&alg->base);
683}
684EXPORT_SYMBOL_GPL(crypto_unregister_aead);
685
686int aead_register_instance(struct crypto_template *tmpl,
687 struct aead_instance *inst)
688{
689 int err;
690
691 err = aead_prepare_alg(&inst->alg);
692 if (err)
693 return err;
694
695 return crypto_register_instance(tmpl, aead_crypto_instance(inst));
696}
697EXPORT_SYMBOL_GPL(aead_register_instance);
698
1ae97820
HX		 699MODULE_LICENSE("GPL");
700MODULE_DESCRIPTION("Authenticated Encryption with Associated Data (AEAD)");
A mirror of Linus' kernel repository