1 /*
2  * if_alg: User-space algorithm interface
3  *
4  * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
5  *
6  * This program is free software; you can redistribute it and/or modify it
7  * under the terms of the GNU General Public License as published by the Free
8  * Software Foundation; either version 2 of the License, or (at your option)
9  * any later version.
10  *
11  */
12 
13 #ifndef _CRYPTO_IF_ALG_H
14 #define _CRYPTO_IF_ALG_H
15 
16 #include <linux/compiler.h>
17 #include <linux/completion.h>
18 #include <linux/if_alg.h>
19 #include <linux/scatterlist.h>
20 #include <linux/types.h>
21 #include <linux/atomic.h>
22 #include <net/sock.h>
23 
24 #include <crypto/aead.h>
25 #include <crypto/skcipher.h>
26 
27 #define ALG_MAX_PAGES			16
28 
29 struct crypto_async_request;
30 
31 struct alg_sock {
32 	/* struct sock must be the first member of struct alg_sock */
33 	struct sock sk;
34 
35 	struct sock *parent;
36 
37 	unsigned int refcnt;
38 	unsigned int nokey_refcnt;
39 
40 	const struct af_alg_type *type;
41 	void *private;
42 };
43 
44 struct af_alg_control {
45 	struct af_alg_iv *iv;
46 	int op;
47 	unsigned int aead_assoclen;
48 };
49 
50 struct af_alg_type {
51 	void *(*bind)(const char *name, u32 type, u32 mask);
52 	void (*release)(void *private);
53 	int (*setkey)(void *private, const u8 *key, unsigned int keylen);
54 	int (*accept)(void *private, struct sock *sk);
55 	int (*accept_nokey)(void *private, struct sock *sk);
56 	int (*setauthsize)(void *private, unsigned int authsize);
57 
58 	struct proto_ops *ops;
59 	struct proto_ops *ops_nokey;
60 	struct module *owner;
61 	char name[14];
62 };
63 
64 struct af_alg_sgl {
65 	struct scatterlist sg[ALG_MAX_PAGES + 1];
66 	struct page *pages[ALG_MAX_PAGES];
67 	unsigned int npages;
68 };
69 
70 /* TX SGL entry */
71 struct af_alg_tsgl {
72 	struct list_head list;
73 	unsigned int cur;		/* Last processed SG entry */
74 	struct scatterlist sg[0];	/* Array of SGs forming the SGL */
75 };
76 
77 #define MAX_SGL_ENTS ((4096 - sizeof(struct af_alg_tsgl)) / \
78 		      sizeof(struct scatterlist) - 1)
79 
80 /* RX SGL entry */
81 struct af_alg_rsgl {
82 	struct af_alg_sgl sgl;
83 	struct list_head list;
84 	size_t sg_num_bytes;		/* Bytes of data in that SGL */
85 };
86 
87 /**
88  * struct af_alg_async_req - definition of crypto request
89  * @iocb:		IOCB for AIO operations
90  * @sk:			Socket the request is associated with
91  * @first_rsgl:		First RX SG
92  * @last_rsgl:		Pointer to last RX SG
93  * @rsgl_list:		Track RX SGs
94  * @tsgl:		Private, per request TX SGL of buffers to process
95  * @tsgl_entries:	Number of entries in priv. TX SGL
96  * @outlen:		Number of output bytes generated by crypto op
97  * @areqlen:		Length of this data structure
98  * @cra_u:		Cipher request
99  */
100 struct af_alg_async_req {
101 	struct kiocb *iocb;
102 	struct sock *sk;
103 
104 	struct af_alg_rsgl first_rsgl;
105 	struct af_alg_rsgl *last_rsgl;
106 	struct list_head rsgl_list;
107 
108 	struct scatterlist *tsgl;
109 	unsigned int tsgl_entries;
110 
111 	unsigned int outlen;
112 	unsigned int areqlen;
113 
114 	union {
115 		struct aead_request aead_req;
116 		struct skcipher_request skcipher_req;
117 	} cra_u;
118 
119 	/* req ctx trails this struct */
120 };
121 
122 /**
123  * struct af_alg_ctx - definition of the crypto context
124  *
125  * The crypto context tracks the input data during the lifetime of an AF_ALG
126  * socket.
127  *
128  * @tsgl_list:		Link to TX SGL
129  * @iv:			IV for cipher operation
130  * @aead_assoclen:	Length of AAD for AEAD cipher operations
131  * @completion:		Work queue for synchronous operation
132  * @used:		TX bytes sent to kernel. This variable is used to
133  *			ensure that user space cannot cause the kernel
134  *			to allocate too much memory in sendmsg operation.
135  * @rcvused:		Total RX bytes to be filled by kernel. This variable
136  *			is used to ensure user space cannot cause the kernel
137  *			to allocate too much memory in a recvmsg operation.
138  * @more:		More data to be expected from user space?
139  * @merge:		Shall new data from user space be merged into existing
140  *			SG?
141  * @enc:		Cryptographic operation to be performed when
142  *			recvmsg is invoked.
143  * @len:		Length of memory allocated for this data structure.
144  */
145 struct af_alg_ctx {
146 	struct list_head tsgl_list;
147 
148 	void *iv;
149 	size_t aead_assoclen;
150 
151 	struct crypto_wait wait;
152 
153 	size_t used;
154 	atomic_t rcvused;
155 
156 	bool more;
157 	bool merge;
158 	bool enc;
159 
160 	unsigned int len;
161 };
162 
163 int af_alg_register_type(const struct af_alg_type *type);
164 int af_alg_unregister_type(const struct af_alg_type *type);
165 
166 int af_alg_release(struct socket *sock);
167 void af_alg_release_parent(struct sock *sk);
168 int af_alg_accept(struct sock *sk, struct socket *newsock, bool kern);
169 
170 int af_alg_make_sg(struct af_alg_sgl *sgl, struct iov_iter *iter, int len);
171 void af_alg_free_sg(struct af_alg_sgl *sgl);
172 void af_alg_link_sg(struct af_alg_sgl *sgl_prev, struct af_alg_sgl *sgl_new);
173 
174 int af_alg_cmsg_send(struct msghdr *msg, struct af_alg_control *con);
175 
alg_sk(struct sock * sk)176 static inline struct alg_sock *alg_sk(struct sock *sk)
177 {
178 	return (struct alg_sock *)sk;
179 }
180 
181 /**
182  * Size of available buffer for sending data from user space to kernel.
183  *
184  * @sk socket of connection to user space
185  * @return number of bytes still available
186  */
af_alg_sndbuf(struct sock * sk)187 static inline int af_alg_sndbuf(struct sock *sk)
188 {
189 	struct alg_sock *ask = alg_sk(sk);
190 	struct af_alg_ctx *ctx = ask->private;
191 
192 	return max_t(int, max_t(int, sk->sk_sndbuf & PAGE_MASK, PAGE_SIZE) -
193 			  ctx->used, 0);
194 }
195 
196 /**
197  * Can the send buffer still be written to?
198  *
199  * @sk socket of connection to user space
200  * @return true => writable, false => not writable
201  */
af_alg_writable(struct sock * sk)202 static inline bool af_alg_writable(struct sock *sk)
203 {
204 	return PAGE_SIZE <= af_alg_sndbuf(sk);
205 }
206 
207 /**
208  * Size of available buffer used by kernel for the RX user space operation.
209  *
210  * @sk socket of connection to user space
211  * @return number of bytes still available
212  */
af_alg_rcvbuf(struct sock * sk)213 static inline int af_alg_rcvbuf(struct sock *sk)
214 {
215 	struct alg_sock *ask = alg_sk(sk);
216 	struct af_alg_ctx *ctx = ask->private;
217 
218 	return max_t(int, max_t(int, sk->sk_rcvbuf & PAGE_MASK, PAGE_SIZE) -
219 		     atomic_read(&ctx->rcvused), 0);
220 }
221 
222 /**
223  * Can the RX buffer still be written to?
224  *
225  * @sk socket of connection to user space
226  * @return true => writable, false => not writable
227  */
af_alg_readable(struct sock * sk)228 static inline bool af_alg_readable(struct sock *sk)
229 {
230 	return PAGE_SIZE <= af_alg_rcvbuf(sk);
231 }
232 
233 int af_alg_alloc_tsgl(struct sock *sk);
234 unsigned int af_alg_count_tsgl(struct sock *sk, size_t bytes, size_t offset);
235 void af_alg_pull_tsgl(struct sock *sk, size_t used, struct scatterlist *dst,
236 		      size_t dst_offset);
237 void af_alg_free_areq_sgls(struct af_alg_async_req *areq);
238 int af_alg_wait_for_wmem(struct sock *sk, unsigned int flags);
239 void af_alg_wmem_wakeup(struct sock *sk);
240 int af_alg_wait_for_data(struct sock *sk, unsigned flags);
241 void af_alg_data_wakeup(struct sock *sk);
242 int af_alg_sendmsg(struct socket *sock, struct msghdr *msg, size_t size,
243 		   unsigned int ivsize);
244 ssize_t af_alg_sendpage(struct socket *sock, struct page *page,
245 			int offset, size_t size, int flags);
246 void af_alg_free_resources(struct af_alg_async_req *areq);
247 void af_alg_async_cb(struct crypto_async_request *_req, int err);
248 __poll_t af_alg_poll(struct file *file, struct socket *sock,
249 			 poll_table *wait);
250 struct af_alg_async_req *af_alg_alloc_areq(struct sock *sk,
251 					   unsigned int areqlen);
252 int af_alg_get_rsgl(struct sock *sk, struct msghdr *msg, int flags,
253 		    struct af_alg_async_req *areq, size_t maxsize,
254 		    size_t *outlen);
255 
256 #endif	/* _CRYPTO_IF_ALG_H */
257