1 // SPDX-License-Identifier: GPL-2.0-only
2 /*
3  * pcrypt - Parallel crypto wrapper.
4  *
5  * Copyright (C) 2009 secunet Security Networks AG
6  * Copyright (C) 2009 Steffen Klassert <steffen.klassert@secunet.com>
7  */
8 
9 #include <crypto/algapi.h>
10 #include <crypto/internal/aead.h>
11 #include <linux/atomic.h>
12 #include <linux/err.h>
13 #include <linux/init.h>
14 #include <linux/module.h>
15 #include <linux/slab.h>
16 #include <linux/kobject.h>
17 #include <linux/cpu.h>
18 #include <crypto/pcrypt.h>
19 
20 static struct padata_instance *pencrypt;
21 static struct padata_instance *pdecrypt;
22 static struct kset           *pcrypt_kset;
23 
24 struct pcrypt_instance_ctx {
25 	struct crypto_aead_spawn spawn;
26 	struct padata_shell *psenc;
27 	struct padata_shell *psdec;
28 	atomic_t tfm_count;
29 };
30 
31 struct pcrypt_aead_ctx {
32 	struct crypto_aead *child;
33 	unsigned int cb_cpu;
34 };
35 
pcrypt_tfm_ictx(struct crypto_aead * tfm)36 static inline struct pcrypt_instance_ctx *pcrypt_tfm_ictx(
37 	struct crypto_aead *tfm)
38 {
39 	return aead_instance_ctx(aead_alg_instance(tfm));
40 }
41 
pcrypt_aead_setkey(struct crypto_aead * parent,const u8 * key,unsigned int keylen)42 static int pcrypt_aead_setkey(struct crypto_aead *parent,
43 			      const u8 *key, unsigned int keylen)
44 {
45 	struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(parent);
46 
47 	return crypto_aead_setkey(ctx->child, key, keylen);
48 }
49 
pcrypt_aead_setauthsize(struct crypto_aead * parent,unsigned int authsize)50 static int pcrypt_aead_setauthsize(struct crypto_aead *parent,
51 				   unsigned int authsize)
52 {
53 	struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(parent);
54 
55 	return crypto_aead_setauthsize(ctx->child, authsize);
56 }
57 
pcrypt_aead_serial(struct padata_priv * padata)58 static void pcrypt_aead_serial(struct padata_priv *padata)
59 {
60 	struct pcrypt_request *preq = pcrypt_padata_request(padata);
61 	struct aead_request *req = pcrypt_request_ctx(preq);
62 
63 	aead_request_complete(req->base.data, padata->info);
64 }
65 
pcrypt_aead_done(struct crypto_async_request * areq,int err)66 static void pcrypt_aead_done(struct crypto_async_request *areq, int err)
67 {
68 	struct aead_request *req = areq->data;
69 	struct pcrypt_request *preq = aead_request_ctx(req);
70 	struct padata_priv *padata = pcrypt_request_padata(preq);
71 
72 	padata->info = err;
73 
74 	padata_do_serial(padata);
75 }
76 
pcrypt_aead_enc(struct padata_priv * padata)77 static void pcrypt_aead_enc(struct padata_priv *padata)
78 {
79 	struct pcrypt_request *preq = pcrypt_padata_request(padata);
80 	struct aead_request *req = pcrypt_request_ctx(preq);
81 
82 	padata->info = crypto_aead_encrypt(req);
83 
84 	if (padata->info == -EINPROGRESS)
85 		return;
86 
87 	padata_do_serial(padata);
88 }
89 
pcrypt_aead_encrypt(struct aead_request * req)90 static int pcrypt_aead_encrypt(struct aead_request *req)
91 {
92 	int err;
93 	struct pcrypt_request *preq = aead_request_ctx(req);
94 	struct aead_request *creq = pcrypt_request_ctx(preq);
95 	struct padata_priv *padata = pcrypt_request_padata(preq);
96 	struct crypto_aead *aead = crypto_aead_reqtfm(req);
97 	struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(aead);
98 	u32 flags = aead_request_flags(req);
99 	struct pcrypt_instance_ctx *ictx;
100 
101 	ictx = pcrypt_tfm_ictx(aead);
102 
103 	memset(padata, 0, sizeof(struct padata_priv));
104 
105 	padata->parallel = pcrypt_aead_enc;
106 	padata->serial = pcrypt_aead_serial;
107 
108 	aead_request_set_tfm(creq, ctx->child);
109 	aead_request_set_callback(creq, flags & ~CRYPTO_TFM_REQ_MAY_SLEEP,
110 				  pcrypt_aead_done, req);
111 	aead_request_set_crypt(creq, req->src, req->dst,
112 			       req->cryptlen, req->iv);
113 	aead_request_set_ad(creq, req->assoclen);
114 
115 	err = padata_do_parallel(ictx->psenc, padata, &ctx->cb_cpu);
116 	if (!err)
117 		return -EINPROGRESS;
118 
119 	return err;
120 }
121 
pcrypt_aead_dec(struct padata_priv * padata)122 static void pcrypt_aead_dec(struct padata_priv *padata)
123 {
124 	struct pcrypt_request *preq = pcrypt_padata_request(padata);
125 	struct aead_request *req = pcrypt_request_ctx(preq);
126 
127 	padata->info = crypto_aead_decrypt(req);
128 
129 	if (padata->info == -EINPROGRESS)
130 		return;
131 
132 	padata_do_serial(padata);
133 }
134 
pcrypt_aead_decrypt(struct aead_request * req)135 static int pcrypt_aead_decrypt(struct aead_request *req)
136 {
137 	int err;
138 	struct pcrypt_request *preq = aead_request_ctx(req);
139 	struct aead_request *creq = pcrypt_request_ctx(preq);
140 	struct padata_priv *padata = pcrypt_request_padata(preq);
141 	struct crypto_aead *aead = crypto_aead_reqtfm(req);
142 	struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(aead);
143 	u32 flags = aead_request_flags(req);
144 	struct pcrypt_instance_ctx *ictx;
145 
146 	ictx = pcrypt_tfm_ictx(aead);
147 
148 	memset(padata, 0, sizeof(struct padata_priv));
149 
150 	padata->parallel = pcrypt_aead_dec;
151 	padata->serial = pcrypt_aead_serial;
152 
153 	aead_request_set_tfm(creq, ctx->child);
154 	aead_request_set_callback(creq, flags & ~CRYPTO_TFM_REQ_MAY_SLEEP,
155 				  pcrypt_aead_done, req);
156 	aead_request_set_crypt(creq, req->src, req->dst,
157 			       req->cryptlen, req->iv);
158 	aead_request_set_ad(creq, req->assoclen);
159 
160 	err = padata_do_parallel(ictx->psdec, padata, &ctx->cb_cpu);
161 	if (!err)
162 		return -EINPROGRESS;
163 
164 	return err;
165 }
166 
pcrypt_aead_init_tfm(struct crypto_aead * tfm)167 static int pcrypt_aead_init_tfm(struct crypto_aead *tfm)
168 {
169 	int cpu, cpu_index;
170 	struct aead_instance *inst = aead_alg_instance(tfm);
171 	struct pcrypt_instance_ctx *ictx = aead_instance_ctx(inst);
172 	struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(tfm);
173 	struct crypto_aead *cipher;
174 
175 	cpu_index = (unsigned int)atomic_inc_return(&ictx->tfm_count) %
176 		    cpumask_weight(cpu_online_mask);
177 
178 	ctx->cb_cpu = cpumask_first(cpu_online_mask);
179 	for (cpu = 0; cpu < cpu_index; cpu++)
180 		ctx->cb_cpu = cpumask_next(ctx->cb_cpu, cpu_online_mask);
181 
182 	cipher = crypto_spawn_aead(&ictx->spawn);
183 
184 	if (IS_ERR(cipher))
185 		return PTR_ERR(cipher);
186 
187 	ctx->child = cipher;
188 	crypto_aead_set_reqsize(tfm, sizeof(struct pcrypt_request) +
189 				     sizeof(struct aead_request) +
190 				     crypto_aead_reqsize(cipher));
191 
192 	return 0;
193 }
194 
pcrypt_aead_exit_tfm(struct crypto_aead * tfm)195 static void pcrypt_aead_exit_tfm(struct crypto_aead *tfm)
196 {
197 	struct pcrypt_aead_ctx *ctx = crypto_aead_ctx(tfm);
198 
199 	crypto_free_aead(ctx->child);
200 }
201 
pcrypt_free(struct aead_instance * inst)202 static void pcrypt_free(struct aead_instance *inst)
203 {
204 	struct pcrypt_instance_ctx *ctx = aead_instance_ctx(inst);
205 
206 	crypto_drop_aead(&ctx->spawn);
207 	padata_free_shell(ctx->psdec);
208 	padata_free_shell(ctx->psenc);
209 	kfree(inst);
210 }
211 
pcrypt_init_instance(struct crypto_instance * inst,struct crypto_alg * alg)212 static int pcrypt_init_instance(struct crypto_instance *inst,
213 				struct crypto_alg *alg)
214 {
215 	if (snprintf(inst->alg.cra_driver_name, CRYPTO_MAX_ALG_NAME,
216 		     "pcrypt(%s)", alg->cra_driver_name) >= CRYPTO_MAX_ALG_NAME)
217 		return -ENAMETOOLONG;
218 
219 	memcpy(inst->alg.cra_name, alg->cra_name, CRYPTO_MAX_ALG_NAME);
220 
221 	inst->alg.cra_priority = alg->cra_priority + 100;
222 	inst->alg.cra_blocksize = alg->cra_blocksize;
223 	inst->alg.cra_alignmask = alg->cra_alignmask;
224 
225 	return 0;
226 }
227 
pcrypt_create_aead(struct crypto_template * tmpl,struct rtattr ** tb,struct crypto_attr_type * algt)228 static int pcrypt_create_aead(struct crypto_template *tmpl, struct rtattr **tb,
229 			      struct crypto_attr_type *algt)
230 {
231 	struct pcrypt_instance_ctx *ctx;
232 	struct aead_instance *inst;
233 	struct aead_alg *alg;
234 	u32 mask = crypto_algt_inherited_mask(algt);
235 	int err;
236 
237 	inst = kzalloc(sizeof(*inst) + sizeof(*ctx), GFP_KERNEL);
238 	if (!inst)
239 		return -ENOMEM;
240 
241 	err = -ENOMEM;
242 
243 	ctx = aead_instance_ctx(inst);
244 	ctx->psenc = padata_alloc_shell(pencrypt);
245 	if (!ctx->psenc)
246 		goto err_free_inst;
247 
248 	ctx->psdec = padata_alloc_shell(pdecrypt);
249 	if (!ctx->psdec)
250 		goto err_free_inst;
251 
252 	err = crypto_grab_aead(&ctx->spawn, aead_crypto_instance(inst),
253 			       crypto_attr_alg_name(tb[1]), 0, mask);
254 	if (err)
255 		goto err_free_inst;
256 
257 	alg = crypto_spawn_aead_alg(&ctx->spawn);
258 	err = pcrypt_init_instance(aead_crypto_instance(inst), &alg->base);
259 	if (err)
260 		goto err_free_inst;
261 
262 	inst->alg.base.cra_flags |= CRYPTO_ALG_ASYNC;
263 
264 	inst->alg.ivsize = crypto_aead_alg_ivsize(alg);
265 	inst->alg.maxauthsize = crypto_aead_alg_maxauthsize(alg);
266 
267 	inst->alg.base.cra_ctxsize = sizeof(struct pcrypt_aead_ctx);
268 
269 	inst->alg.init = pcrypt_aead_init_tfm;
270 	inst->alg.exit = pcrypt_aead_exit_tfm;
271 
272 	inst->alg.setkey = pcrypt_aead_setkey;
273 	inst->alg.setauthsize = pcrypt_aead_setauthsize;
274 	inst->alg.encrypt = pcrypt_aead_encrypt;
275 	inst->alg.decrypt = pcrypt_aead_decrypt;
276 
277 	inst->free = pcrypt_free;
278 
279 	err = aead_register_instance(tmpl, inst);
280 	if (err) {
281 err_free_inst:
282 		pcrypt_free(inst);
283 	}
284 	return err;
285 }
286 
pcrypt_create(struct crypto_template * tmpl,struct rtattr ** tb)287 static int pcrypt_create(struct crypto_template *tmpl, struct rtattr **tb)
288 {
289 	struct crypto_attr_type *algt;
290 
291 	algt = crypto_get_attr_type(tb);
292 	if (IS_ERR(algt))
293 		return PTR_ERR(algt);
294 
295 	switch (algt->type & algt->mask & CRYPTO_ALG_TYPE_MASK) {
296 	case CRYPTO_ALG_TYPE_AEAD:
297 		return pcrypt_create_aead(tmpl, tb, algt);
298 	}
299 
300 	return -EINVAL;
301 }
302 
pcrypt_sysfs_add(struct padata_instance * pinst,const char * name)303 static int pcrypt_sysfs_add(struct padata_instance *pinst, const char *name)
304 {
305 	int ret;
306 
307 	pinst->kobj.kset = pcrypt_kset;
308 	ret = kobject_add(&pinst->kobj, NULL, "%s", name);
309 	if (!ret)
310 		kobject_uevent(&pinst->kobj, KOBJ_ADD);
311 
312 	return ret;
313 }
314 
pcrypt_init_padata(struct padata_instance ** pinst,const char * name)315 static int pcrypt_init_padata(struct padata_instance **pinst, const char *name)
316 {
317 	int ret = -ENOMEM;
318 
319 	*pinst = padata_alloc(name);
320 	if (!*pinst)
321 		return ret;
322 
323 	ret = pcrypt_sysfs_add(*pinst, name);
324 	if (ret)
325 		padata_free(*pinst);
326 
327 	return ret;
328 }
329 
330 static struct crypto_template pcrypt_tmpl = {
331 	.name = "pcrypt",
332 	.create = pcrypt_create,
333 	.module = THIS_MODULE,
334 };
335 
pcrypt_init(void)336 static int __init pcrypt_init(void)
337 {
338 	int err = -ENOMEM;
339 
340 	pcrypt_kset = kset_create_and_add("pcrypt", NULL, kernel_kobj);
341 	if (!pcrypt_kset)
342 		goto err;
343 
344 	err = pcrypt_init_padata(&pencrypt, "pencrypt");
345 	if (err)
346 		goto err_unreg_kset;
347 
348 	err = pcrypt_init_padata(&pdecrypt, "pdecrypt");
349 	if (err)
350 		goto err_deinit_pencrypt;
351 
352 	return crypto_register_template(&pcrypt_tmpl);
353 
354 err_deinit_pencrypt:
355 	padata_free(pencrypt);
356 err_unreg_kset:
357 	kset_unregister(pcrypt_kset);
358 err:
359 	return err;
360 }
361 
pcrypt_exit(void)362 static void __exit pcrypt_exit(void)
363 {
364 	crypto_unregister_template(&pcrypt_tmpl);
365 
366 	padata_free(pencrypt);
367 	padata_free(pdecrypt);
368 
369 	kset_unregister(pcrypt_kset);
370 }
371 
372 subsys_initcall(pcrypt_init);
373 module_exit(pcrypt_exit);
374 
375 MODULE_LICENSE("GPL");
376 MODULE_AUTHOR("Steffen Klassert <steffen.klassert@secunet.com>");
377 MODULE_DESCRIPTION("Parallel crypto wrapper");
378 MODULE_ALIAS_CRYPTO("pcrypt");
379