1 // SPDX-License-Identifier: GPL-2.0-only
2 /*
3 * pcrypt - Parallel crypto wrapper.
4 *
5 * Copyright (C) 2009 secunet Security Networks AG
6 * Copyright (C) 2009 Steffen Klassert <steffen.klassert@secunet.com>
7 */
8
9 #include <crypto/algapi.h>
10 #include <crypto/internal/aead.h>
11 #include <linux/atomic.h>
12 #include <linux/err.h>
13 #include <linux/init.h>
14 #include <linux/module.h>
15 #include <linux/slab.h>
16 #include <linux/notifier.h>
17 #include <linux/kobject.h>
18 #include <linux/cpu.h>
19 #include <crypto/pcrypt.h>
20
21 static struct padata_instance *pencrypt;
22 static struct padata_instance *pdecrypt;
23 static struct kset *pcrypt_kset;
24
25 struct pcrypt_instance_ctx {
26 struct crypto_aead_spawn spawn;
27 atomic_t tfm_count;
28 };
29
30 struct pcrypt_aead_ctx {
31 struct crypto_aead *child;
32 unsigned int cb_cpu;
33 };
34
pcrypt_aead_setkey(struct crypto_aead * parent,const u8 * key,unsigned int keylen)35 static int pcrypt_aead_setkey(struct crypto_aead *parent,
36 const u8 *key, unsigned int keylen)
37 {
38 struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(parent);
39
40 return crypto_aead_setkey(ctx->child, key, keylen);
41 }
42
pcrypt_aead_setauthsize(struct crypto_aead * parent,unsigned int authsize)43 static int pcrypt_aead_setauthsize(struct crypto_aead *parent,
44 unsigned int authsize)
45 {
46 struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(parent);
47
48 return crypto_aead_setauthsize(ctx->child, authsize);
49 }
50
pcrypt_aead_serial(struct padata_priv * padata)51 static void pcrypt_aead_serial(struct padata_priv *padata)
52 {
53 struct pcrypt_request *preq = pcrypt_padata_request(padata);
54 struct aead_request *req = pcrypt_request_ctx(preq);
55
56 aead_request_complete(req->base.data, padata->info);
57 }
58
pcrypt_aead_done(struct crypto_async_request * areq,int err)59 static void pcrypt_aead_done(struct crypto_async_request *areq, int err)
60 {
61 struct aead_request *req = areq->data;
62 struct pcrypt_request *preq = aead_request_ctx(req);
63 struct padata_priv *padata = pcrypt_request_padata(preq);
64
65 padata->info = err;
66 req->base.flags &= ~CRYPTO_TFM_REQ_MAY_SLEEP;
67
68 padata_do_serial(padata);
69 }
70
pcrypt_aead_enc(struct padata_priv * padata)71 static void pcrypt_aead_enc(struct padata_priv *padata)
72 {
73 struct pcrypt_request *preq = pcrypt_padata_request(padata);
74 struct aead_request *req = pcrypt_request_ctx(preq);
75
76 padata->info = crypto_aead_encrypt(req);
77
78 if (padata->info == -EINPROGRESS)
79 return;
80
81 padata_do_serial(padata);
82 }
83
pcrypt_aead_encrypt(struct aead_request * req)84 static int pcrypt_aead_encrypt(struct aead_request *req)
85 {
86 int err;
87 struct pcrypt_request *preq = aead_request_ctx(req);
88 struct aead_request *creq = pcrypt_request_ctx(preq);
89 struct padata_priv *padata = pcrypt_request_padata(preq);
90 struct crypto_aead *aead = crypto_aead_reqtfm(req);
91 struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(aead);
92 u32 flags = aead_request_flags(req);
93
94 memset(padata, 0, sizeof(struct padata_priv));
95
96 padata->parallel = pcrypt_aead_enc;
97 padata->serial = pcrypt_aead_serial;
98
99 aead_request_set_tfm(creq, ctx->child);
100 aead_request_set_callback(creq, flags & ~CRYPTO_TFM_REQ_MAY_SLEEP,
101 pcrypt_aead_done, req);
102 aead_request_set_crypt(creq, req->src, req->dst,
103 req->cryptlen, req->iv);
104 aead_request_set_ad(creq, req->assoclen);
105
106 err = padata_do_parallel(pencrypt, padata, &ctx->cb_cpu);
107 if (!err)
108 return -EINPROGRESS;
109
110 return err;
111 }
112
pcrypt_aead_dec(struct padata_priv * padata)113 static void pcrypt_aead_dec(struct padata_priv *padata)
114 {
115 struct pcrypt_request *preq = pcrypt_padata_request(padata);
116 struct aead_request *req = pcrypt_request_ctx(preq);
117
118 padata->info = crypto_aead_decrypt(req);
119
120 if (padata->info == -EINPROGRESS)
121 return;
122
123 padata_do_serial(padata);
124 }
125
pcrypt_aead_decrypt(struct aead_request * req)126 static int pcrypt_aead_decrypt(struct aead_request *req)
127 {
128 int err;
129 struct pcrypt_request *preq = aead_request_ctx(req);
130 struct aead_request *creq = pcrypt_request_ctx(preq);
131 struct padata_priv *padata = pcrypt_request_padata(preq);
132 struct crypto_aead *aead = crypto_aead_reqtfm(req);
133 struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(aead);
134 u32 flags = aead_request_flags(req);
135
136 memset(padata, 0, sizeof(struct padata_priv));
137
138 padata->parallel = pcrypt_aead_dec;
139 padata->serial = pcrypt_aead_serial;
140
141 aead_request_set_tfm(creq, ctx->child);
142 aead_request_set_callback(creq, flags & ~CRYPTO_TFM_REQ_MAY_SLEEP,
143 pcrypt_aead_done, req);
144 aead_request_set_crypt(creq, req->src, req->dst,
145 req->cryptlen, req->iv);
146 aead_request_set_ad(creq, req->assoclen);
147
148 err = padata_do_parallel(pdecrypt, padata, &ctx->cb_cpu);
149 if (!err)
150 return -EINPROGRESS;
151
152 return err;
153 }
154
pcrypt_aead_init_tfm(struct crypto_aead * tfm)155 static int pcrypt_aead_init_tfm(struct crypto_aead *tfm)
156 {
157 int cpu, cpu_index;
158 struct aead_instance *inst = aead_alg_instance(tfm);
159 struct pcrypt_instance_ctx *ictx = aead_instance_ctx(inst);
160 struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(tfm);
161 struct crypto_aead *cipher;
162
163 cpu_index = (unsigned int)atomic_inc_return(&ictx->tfm_count) %
164 cpumask_weight(cpu_online_mask);
165
166 ctx->cb_cpu = cpumask_first(cpu_online_mask);
167 for (cpu = 0; cpu < cpu_index; cpu++)
168 ctx->cb_cpu = cpumask_next(ctx->cb_cpu, cpu_online_mask);
169
170 cipher = crypto_spawn_aead(&ictx->spawn);
171
172 if (IS_ERR(cipher))
173 return PTR_ERR(cipher);
174
175 ctx->child = cipher;
176 crypto_aead_set_reqsize(tfm, sizeof(struct pcrypt_request) +
177 sizeof(struct aead_request) +
178 crypto_aead_reqsize(cipher));
179
180 return 0;
181 }
182
pcrypt_aead_exit_tfm(struct crypto_aead * tfm)183 static void pcrypt_aead_exit_tfm(struct crypto_aead *tfm)
184 {
185 struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(tfm);
186
187 crypto_free_aead(ctx->child);
188 }
189
pcrypt_free(struct aead_instance * inst)190 static void pcrypt_free(struct aead_instance *inst)
191 {
192 struct pcrypt_instance_ctx *ctx = aead_instance_ctx(inst);
193
194 crypto_drop_aead(&ctx->spawn);
195 kfree(inst);
196 }
197
pcrypt_init_instance(struct crypto_instance * inst,struct crypto_alg * alg)198 static int pcrypt_init_instance(struct crypto_instance *inst,
199 struct crypto_alg *alg)
200 {
201 if (snprintf(inst->alg.cra_driver_name, CRYPTO_MAX_ALG_NAME,
202 "pcrypt(%s)", alg->cra_driver_name) >= CRYPTO_MAX_ALG_NAME)
203 return -ENAMETOOLONG;
204
205 memcpy(inst->alg.cra_name, alg->cra_name, CRYPTO_MAX_ALG_NAME);
206
207 inst->alg.cra_priority = alg->cra_priority + 100;
208 inst->alg.cra_blocksize = alg->cra_blocksize;
209 inst->alg.cra_alignmask = alg->cra_alignmask;
210
211 return 0;
212 }
213
pcrypt_create_aead(struct crypto_template * tmpl,struct rtattr ** tb,u32 type,u32 mask)214 static int pcrypt_create_aead(struct crypto_template *tmpl, struct rtattr **tb,
215 u32 type, u32 mask)
216 {
217 struct pcrypt_instance_ctx *ctx;
218 struct crypto_attr_type *algt;
219 struct aead_instance *inst;
220 struct aead_alg *alg;
221 const char *name;
222 int err;
223
224 algt = crypto_get_attr_type(tb);
225 if (IS_ERR(algt))
226 return PTR_ERR(algt);
227
228 name = crypto_attr_alg_name(tb[1]);
229 if (IS_ERR(name))
230 return PTR_ERR(name);
231
232 inst = kzalloc(sizeof(*inst) + sizeof(*ctx), GFP_KERNEL);
233 if (!inst)
234 return -ENOMEM;
235
236 ctx = aead_instance_ctx(inst);
237 crypto_set_aead_spawn(&ctx->spawn, aead_crypto_instance(inst));
238
239 err = crypto_grab_aead(&ctx->spawn, name, 0, 0);
240 if (err)
241 goto out_free_inst;
242
243 alg = crypto_spawn_aead_alg(&ctx->spawn);
244 err = pcrypt_init_instance(aead_crypto_instance(inst), &alg->base);
245 if (err)
246 goto out_drop_aead;
247
248 inst->alg.base.cra_flags = CRYPTO_ALG_ASYNC;
249
250 inst->alg.ivsize = crypto_aead_alg_ivsize(alg);
251 inst->alg.maxauthsize = crypto_aead_alg_maxauthsize(alg);
252
253 inst->alg.base.cra_ctxsize = sizeof(struct pcrypt_aead_ctx);
254
255 inst->alg.init = pcrypt_aead_init_tfm;
256 inst->alg.exit = pcrypt_aead_exit_tfm;
257
258 inst->alg.setkey = pcrypt_aead_setkey;
259 inst->alg.setauthsize = pcrypt_aead_setauthsize;
260 inst->alg.encrypt = pcrypt_aead_encrypt;
261 inst->alg.decrypt = pcrypt_aead_decrypt;
262
263 inst->free = pcrypt_free;
264
265 err = aead_register_instance(tmpl, inst);
266 if (err)
267 goto out_drop_aead;
268
269 out:
270 return err;
271
272 out_drop_aead:
273 crypto_drop_aead(&ctx->spawn);
274 out_free_inst:
275 kfree(inst);
276 goto out;
277 }
278
pcrypt_create(struct crypto_template * tmpl,struct rtattr ** tb)279 static int pcrypt_create(struct crypto_template *tmpl, struct rtattr **tb)
280 {
281 struct crypto_attr_type *algt;
282
283 algt = crypto_get_attr_type(tb);
284 if (IS_ERR(algt))
285 return PTR_ERR(algt);
286
287 switch (algt->type & algt->mask & CRYPTO_ALG_TYPE_MASK) {
288 case CRYPTO_ALG_TYPE_AEAD:
289 return pcrypt_create_aead(tmpl, tb, algt->type, algt->mask);
290 }
291
292 return -EINVAL;
293 }
294
pcrypt_sysfs_add(struct padata_instance * pinst,const char * name)295 static int pcrypt_sysfs_add(struct padata_instance *pinst, const char *name)
296 {
297 int ret;
298
299 pinst->kobj.kset = pcrypt_kset;
300 ret = kobject_add(&pinst->kobj, NULL, "%s", name);
301 if (!ret)
302 kobject_uevent(&pinst->kobj, KOBJ_ADD);
303
304 return ret;
305 }
306
pcrypt_init_padata(struct padata_instance ** pinst,const char * name)307 static int pcrypt_init_padata(struct padata_instance **pinst, const char *name)
308 {
309 int ret = -ENOMEM;
310
311 *pinst = padata_alloc_possible(name);
312 if (!*pinst)
313 return ret;
314
315 ret = pcrypt_sysfs_add(*pinst, name);
316 if (ret)
317 padata_free(*pinst);
318
319 return ret;
320 }
321
pcrypt_fini_padata(struct padata_instance * pinst)322 static void pcrypt_fini_padata(struct padata_instance *pinst)
323 {
324 padata_stop(pinst);
325 padata_free(pinst);
326 }
327
328 static struct crypto_template pcrypt_tmpl = {
329 .name = "pcrypt",
330 .create = pcrypt_create,
331 .module = THIS_MODULE,
332 };
333
pcrypt_init(void)334 static int __init pcrypt_init(void)
335 {
336 int err = -ENOMEM;
337
338 pcrypt_kset = kset_create_and_add("pcrypt", NULL, kernel_kobj);
339 if (!pcrypt_kset)
340 goto err;
341
342 err = pcrypt_init_padata(&pencrypt, "pencrypt");
343 if (err)
344 goto err_unreg_kset;
345
346 err = pcrypt_init_padata(&pdecrypt, "pdecrypt");
347 if (err)
348 goto err_deinit_pencrypt;
349
350 padata_start(pencrypt);
351 padata_start(pdecrypt);
352
353 return crypto_register_template(&pcrypt_tmpl);
354
355 err_deinit_pencrypt:
356 pcrypt_fini_padata(pencrypt);
357 err_unreg_kset:
358 kset_unregister(pcrypt_kset);
359 err:
360 return err;
361 }
362
pcrypt_exit(void)363 static void __exit pcrypt_exit(void)
364 {
365 crypto_unregister_template(&pcrypt_tmpl);
366
367 pcrypt_fini_padata(pencrypt);
368 pcrypt_fini_padata(pdecrypt);
369
370 kset_unregister(pcrypt_kset);
371 }
372
373 subsys_initcall(pcrypt_init);
374 module_exit(pcrypt_exit);
375
376 MODULE_LICENSE("GPL");
377 MODULE_AUTHOR("Steffen Klassert <steffen.klassert@secunet.com>");
378 MODULE_DESCRIPTION("Parallel crypto wrapper");
379 MODULE_ALIAS_CRYPTO("pcrypt");
380