3 files changed, 297 insertions, 7 deletions
diff --git a/crypto/aead.c b/crypto/aead.c
index 15335ed9010a..9f7aca891926 100644
--- a/crypto/aead.c
+++ b/crypto/aead.c
@@ -12,14 +12,16 @@
 *
 */
-#include <crypto/algapi.h>
+#include <crypto/internal/aead.h>
-#include <linux/errno.h>
+#include <linux/err.h>
 #include <linux/init.h>
 #include <linux/kernel.h>
 #include <linux/module.h>
 #include <linux/slab.h>
 #include <linux/seq_file.h>
+#include "internal.h"
 static int setkey_unaligned(struct crypto_aead *tfm, const u8 *key,
                            unsigned int keylen)
 {
@@ -55,18 +57,20 @@ static int setkey(struct crypto_aead *tfm, const u8 *key, unsigned int keylen)
 int crypto_aead_setauthsize(struct crypto_aead *tfm, unsigned int authsize)
 {
+        struct aead_tfm *crt = crypto_aead_crt(tfm);
        int err;
        if (authsize > crypto_aead_alg(tfm)->maxauthsize)
                return -EINVAL;
        if (crypto_aead_alg(tfm)->setauthsize) {
-                err = crypto_aead_alg(tfm)->setauthsize(tfm, authsize);
+                err = crypto_aead_alg(tfm)->setauthsize(crt->base, authsize);
                if (err)
                        return err;
        }
-        crypto_aead_crt(tfm)->authsize = authsize;
+        crypto_aead_crt(crt->base)->authsize = authsize;
+        crt->authsize = authsize;
        return 0;
 }
 EXPORT_SYMBOL_GPL(crypto_aead_setauthsize);
@@ -90,11 +94,13 @@ static int crypto_init_aead_ops(struct crypto_tfm *tfm, u32 type, u32 mask)
        if (max(alg->maxauthsize, alg->ivsize) > PAGE_SIZE / 8)
                return -EINVAL;
-        crt->setkey = setkey;
+        crt->setkey = tfm->__crt_alg->cra_flags & CRYPTO_ALG_GENIV ?
+                      alg->setkey : setkey;
        crt->encrypt = alg->encrypt;
        crt->decrypt = alg->decrypt;
        crt->givencrypt = alg->givencrypt ?: no_givcrypt;
        crt->givdecrypt = alg->givdecrypt ?: no_givcrypt;
+        crt->base = __crypto_aead_cast(tfm);
        crt->ivsize = alg->ivsize;
        crt->authsize = alg->maxauthsize;
@@ -111,6 +117,7 @@ static void crypto_aead_show(struct seq_file *m, struct crypto_alg *alg)
        seq_printf(m, "blocksize    : %u\n", alg->cra_blocksize);
        seq_printf(m, "ivsize       : %u\n", aead->ivsize);
        seq_printf(m, "maxauthsize  : %u\n", aead->maxauthsize);
+        seq_printf(m, "geniv        : %s\n", aead->geniv ?: "<built-in>");
 }
 const struct crypto_type crypto_aead_type = {
@@ -122,5 +129,204 @@ const struct crypto_type crypto_aead_type = {
 };
 EXPORT_SYMBOL_GPL(crypto_aead_type);
+static int aead_null_givencrypt(struct aead_givcrypt_request *req)
+{
+        return crypto_aead_encrypt(&req->areq);
+}
+static int aead_null_givdecrypt(struct aead_givcrypt_request *req)
+{
+        return crypto_aead_decrypt(&req->areq);
+}
+static int crypto_init_nivaead_ops(struct crypto_tfm *tfm, u32 type, u32 mask)
+{
+        struct aead_alg *alg = &tfm->__crt_alg->cra_aead;
+        struct aead_tfm *crt = &tfm->crt_aead;
+        if (max(alg->maxauthsize, alg->ivsize) > PAGE_SIZE / 8)
+                return -EINVAL;
+        crt->setkey = setkey;
+        crt->encrypt = alg->encrypt;
+        crt->decrypt = alg->decrypt;
+        if (!alg->ivsize) {
+                crt->givencrypt = aead_null_givencrypt;
+                crt->givdecrypt = aead_null_givdecrypt;
+        }
+        crt->base = __crypto_aead_cast(tfm);
+        crt->ivsize = alg->ivsize;
+        crt->authsize = alg->maxauthsize;
+        return 0;
+}
+static void crypto_nivaead_show(struct seq_file *m, struct crypto_alg *alg)
+        __attribute__ ((unused));
+static void crypto_nivaead_show(struct seq_file *m, struct crypto_alg *alg)
+{
+        struct aead_alg *aead = &alg->cra_aead;
+        seq_printf(m, "type         : nivaead\n");
+        seq_printf(m, "blocksize    : %u\n", alg->cra_blocksize);
+        seq_printf(m, "ivsize       : %u\n", aead->ivsize);
+        seq_printf(m, "maxauthsize  : %u\n", aead->maxauthsize);
+        seq_printf(m, "geniv        : %s\n", aead->geniv);
+}
+const struct crypto_type crypto_nivaead_type = {
+        .ctxsize = crypto_aead_ctxsize,
+        .init = crypto_init_nivaead_ops,
+#ifdef CONFIG_PROC_FS
+        .show = crypto_nivaead_show,
+#endif
+};
+EXPORT_SYMBOL_GPL(crypto_nivaead_type);
+static int crypto_grab_nivaead(struct crypto_aead_spawn *spawn,
+                               const char *name, u32 type, u32 mask)
+{
+        struct crypto_alg *alg;
+        int err;
+        type &= ~(CRYPTO_ALG_TYPE_MASK | CRYPTO_ALG_GENIV);
+        type |= CRYPTO_ALG_TYPE_AEAD;
+        mask |= CRYPTO_ALG_TYPE_MASK | CRYPTO_ALG_GENIV;
+        alg = crypto_alg_mod_lookup(name, type, mask);
+        if (IS_ERR(alg))
+                return PTR_ERR(alg);
+        err = crypto_init_spawn(&spawn->base, alg, spawn->base.inst, mask);
+        crypto_mod_put(alg);
+        return err;
+}
+struct crypto_instance *aead_geniv_alloc(struct crypto_template *tmpl,
+                                         struct rtattr **tb, u32 type,
+                                         u32 mask)
+{
+        const char *name;
+        struct crypto_aead_spawn *spawn;
+        struct crypto_attr_type *algt;
+        struct crypto_instance *inst;
+        struct crypto_alg *alg;
+        int err;
+        algt = crypto_get_attr_type(tb);
+        err = PTR_ERR(algt);
+        if (IS_ERR(algt))
+                return ERR_PTR(err);
+        if ((algt->type ^ (CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_GENIV)) &
+            algt->mask)
+                return ERR_PTR(-EINVAL);
+        name = crypto_attr_alg_name(tb[1]);
+        err = PTR_ERR(name);
+        if (IS_ERR(name))
+                return ERR_PTR(err);
+        inst = kzalloc(sizeof(*inst) + sizeof(*spawn), GFP_KERNEL);
+        if (!inst)
+                return ERR_PTR(-ENOMEM);
+        spawn = crypto_instance_ctx(inst);
+        /* Ignore async algorithms if necessary. */
+        mask |= crypto_requires_sync(algt->type, algt->mask);
+        crypto_set_aead_spawn(spawn, inst);
+        err = crypto_grab_nivaead(spawn, name, type, mask);
+        if (err)
+                goto err_free_inst;
+        alg = crypto_aead_spawn_alg(spawn);
+        err = -EINVAL;
+        if (!alg->cra_aead.ivsize)
+                goto err_drop_alg;
+        /*
+         * This is only true if we're constructing an algorithm with its
+         * default IV generator.  For the default generator we elide the
+         * template name and double-check the IV generator.
+         */
+        if (algt->mask & CRYPTO_ALG_GENIV) {
+                if (strcmp(tmpl->name, alg->cra_aead.geniv))
+                        goto err_drop_alg;
+                memcpy(inst->alg.cra_name, alg->cra_name, CRYPTO_MAX_ALG_NAME);
+                memcpy(inst->alg.cra_driver_name, alg->cra_driver_name,
+                       CRYPTO_MAX_ALG_NAME);
+        } else {
+                err = -ENAMETOOLONG;
+                if (snprintf(inst->alg.cra_name, CRYPTO_MAX_ALG_NAME,
+                             "%s(%s)", tmpl->name, alg->cra_name) >=
+                    CRYPTO_MAX_ALG_NAME)
+                        goto err_drop_alg;
+                if (snprintf(inst->alg.cra_driver_name, CRYPTO_MAX_ALG_NAME,
+                             "%s(%s)", tmpl->name, alg->cra_driver_name) >=
+                    CRYPTO_MAX_ALG_NAME)
+                        goto err_drop_alg;
+        }
+        inst->alg.cra_flags = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_GENIV;
+        inst->alg.cra_flags |= alg->cra_flags & CRYPTO_ALG_ASYNC;
+        inst->alg.cra_priority = alg->cra_priority;
+        inst->alg.cra_blocksize = alg->cra_blocksize;
+        inst->alg.cra_alignmask = alg->cra_alignmask;
+        inst->alg.cra_type = &crypto_aead_type;
+        inst->alg.cra_aead.ivsize = alg->cra_aead.ivsize;
+        inst->alg.cra_aead.maxauthsize = alg->cra_aead.maxauthsize;
+        inst->alg.cra_aead.geniv = alg->cra_aead.geniv;
+        inst->alg.cra_aead.setkey = alg->cra_aead.setkey;
+        inst->alg.cra_aead.setauthsize = alg->cra_aead.setauthsize;
+        inst->alg.cra_aead.encrypt = alg->cra_aead.encrypt;
+        inst->alg.cra_aead.decrypt = alg->cra_aead.decrypt;
+out:
+        return inst;
+err_drop_alg:
+        crypto_drop_aead(spawn);
+err_free_inst:
+        kfree(inst);
+        inst = ERR_PTR(err);
+        goto out;
+}
+EXPORT_SYMBOL_GPL(aead_geniv_alloc);
+void aead_geniv_free(struct crypto_instance *inst)
+{
+        crypto_drop_aead(crypto_instance_ctx(inst));
+        kfree(inst);
+}
+EXPORT_SYMBOL_GPL(aead_geniv_free);
+int aead_geniv_init(struct crypto_tfm *tfm)
+{
+        struct crypto_instance *inst = (void *)tfm->__crt_alg;
+        struct crypto_aead *aead;
+        aead = crypto_spawn_aead(crypto_instance_ctx(inst));
+        if (IS_ERR(aead))
+                return PTR_ERR(aead);
+        tfm->crt_aead.base = aead;
+        tfm->crt_aead.reqsize += crypto_aead_reqsize(aead);
+        return 0;
+}
+EXPORT_SYMBOL_GPL(aead_geniv_init);
+void aead_geniv_exit(struct crypto_tfm *tfm)
+{
+        crypto_free_aead(tfm->crt_aead.base);
+}
+EXPORT_SYMBOL_GPL(aead_geniv_exit);
 MODULE_LICENSE("GPL");
 MODULE_DESCRIPTION("Authenticated Encryption with Associated Data (AEAD)");
diff --git a/include/crypto/internal/aead.h b/include/crypto/internal/aead.h
new file mode 100644
index 000000000000..eb4eee7a7804
--- /dev/null
+++ b/include/crypto/internal/aead.h
@@ -0,0 +1,77 @@
+/*
+ * AEAD: Authenticated Encryption with Associated Data
+ * 
+ * Copyright (c) 2007 Herbert Xu <herbert@gondor.apana.org.au>
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms of the GNU General Public License as published by the Free
+ * Software Foundation; either version 2 of the License, or (at your option) 
+ * any later version.
+ *
+ */
+#ifndef _CRYPTO_INTERNAL_AEAD_H
+#define _CRYPTO_INTERNAL_AEAD_H
+#include <crypto/aead.h>
+#include <crypto/algapi.h>
+#include <linux/types.h>
+struct rtattr;
+struct crypto_aead_spawn {
+        struct crypto_spawn base;
+};
+extern const struct crypto_type crypto_nivaead_type;
+static inline void crypto_set_aead_spawn(
+        struct crypto_aead_spawn *spawn, struct crypto_instance *inst)
+{
+        crypto_set_spawn(&spawn->base, inst);
+}
+static inline void crypto_drop_aead(struct crypto_aead_spawn *spawn)
+{
+        crypto_drop_spawn(&spawn->base);
+}
+static inline struct crypto_alg *crypto_aead_spawn_alg(
+        struct crypto_aead_spawn *spawn)
+{
+        return spawn->base.alg;
+}
+static inline struct crypto_aead *crypto_spawn_aead(
+        struct crypto_aead_spawn *spawn)
+{
+        return __crypto_aead_cast(
+                crypto_spawn_tfm(&spawn->base, CRYPTO_ALG_TYPE_AEAD,
+                                 CRYPTO_ALG_TYPE_MASK));
+}
+struct crypto_instance *aead_geniv_alloc(struct crypto_template *tmpl,
+                                         struct rtattr **tb, u32 type,
+                                         u32 mask);
+void aead_geniv_free(struct crypto_instance *inst);
+int aead_geniv_init(struct crypto_tfm *tfm);
+void aead_geniv_exit(struct crypto_tfm *tfm);
+static inline struct crypto_aead *aead_geniv_base(struct crypto_aead *geniv)
+{
+        return crypto_aead_crt(geniv)->base;
+}
+static inline void *aead_givcrypt_reqctx(struct aead_givcrypt_request *req)
+{
+        return aead_request_ctx(&req->areq);
+}
+static inline void aead_givcrypt_complete(struct aead_givcrypt_request *req,
+                                          int err)
+{
+        aead_request_complete(&req->areq, err);
+}
+#endif  /* _CRYPTO_INTERNAL_AEAD_H */
diff --git a/include/linux/crypto.h b/include/linux/crypto.h
index 7524928bff93..639385a9672d 100644
--- a/include/linux/crypto.h
+++ b/include/linux/crypto.h
@@ -206,6 +206,8 @@ struct aead_alg {
        int (*givencrypt)(struct aead_givcrypt_request *req);
        int (*givdecrypt)(struct aead_givcrypt_request *req);
+        const char *geniv;
        unsigned int ivsize;
        unsigned int maxauthsize;
 };
@@ -353,6 +355,9 @@ struct aead_tfm {
        int (*decrypt)(struct aead_request *req);
        int (*givencrypt)(struct aead_givcrypt_request *req);
        int (*givdecrypt)(struct aead_givcrypt_request *req);
+        struct crypto_aead *base;
        unsigned int ivsize;
        unsigned int authsize;
        unsigned int reqsize;
@@ -781,7 +786,9 @@ static inline void crypto_aead_clear_flags(struct crypto_aead *tfm, u32 flags)
 static inline int crypto_aead_setkey(struct crypto_aead *tfm, const u8 *key,
                                     unsigned int keylen)
 {
-        return crypto_aead_crt(tfm)->setkey(tfm, key, keylen);
+        struct aead_tfm *crt = crypto_aead_crt(tfm);
+        return crt->setkey(crt->base, key, keylen);
 }
 int crypto_aead_setauthsize(struct crypto_aead *tfm, unsigned int authsize);
@@ -809,7 +816,7 @@ static inline unsigned int crypto_aead_reqsize(struct crypto_aead *tfm)
 static inline void aead_request_set_tfm(struct aead_request *req,
                                        struct crypto_aead *tfm)
 {
-        req->base.tfm = crypto_aead_tfm(tfm);
+        req->base.tfm = crypto_aead_tfm(crypto_aead_crt(tfm)->base);
 }
 static inline struct aead_request *aead_request_alloc(struct crypto_aead *tfm,

diff --git a/crypto/aead.c b/crypto/aead.c index 15335ed9010a..9f7aca891926 100644 --- a/crypto/aead.c +++ b/crypto/aead.c
@@ -12,14 +12,16 @@
12	*	12	*
13	*/	13	*/
14		14
15	#include <crypto/algapi.h>	15	#include <crypto/internal/aead.h>
16	#include <linux/errno.h>	16	#include <linux/err.h>
17	#include <linux/init.h>	17	#include <linux/init.h>
18	#include <linux/kernel.h>	18	#include <linux/kernel.h>
19	#include <linux/module.h>	19	#include <linux/module.h>
20	#include <linux/slab.h>	20	#include <linux/slab.h>
21	#include <linux/seq_file.h>	21	#include <linux/seq_file.h>
22		22
		23	#include "internal.h"
		24
23	static int setkey_unaligned(struct crypto_aead tfm, const u8 key,	25	static int setkey_unaligned(struct crypto_aead tfm, const u8 key,
24	unsigned int keylen)	26	unsigned int keylen)
25	{	27	{
@@ -55,18 +57,20 @@ static int setkey(struct crypto_aead tfm, const u8 key, unsigned int keylen)
55		57
56	int crypto_aead_setauthsize(struct crypto_aead *tfm, unsigned int authsize)	58	int crypto_aead_setauthsize(struct crypto_aead *tfm, unsigned int authsize)
57	{	59	{
		60	struct aead_tfm *crt = crypto_aead_crt(tfm);
58	int err;	61	int err;
59		62
60	if (authsize > crypto_aead_alg(tfm)->maxauthsize)	63	if (authsize > crypto_aead_alg(tfm)->maxauthsize)
61	return -EINVAL;	64	return -EINVAL;
62		65
63	if (crypto_aead_alg(tfm)->setauthsize) {	66	if (crypto_aead_alg(tfm)->setauthsize) {
64	err = crypto_aead_alg(tfm)->setauthsize(tfm, authsize);	67	err = crypto_aead_alg(tfm)->setauthsize(crt->base, authsize);
65	if (err)	68	if (err)
66	return err;	69	return err;
67	}	70	}
68		71
69	crypto_aead_crt(tfm)->authsize = authsize;	72	crypto_aead_crt(crt->base)->authsize = authsize;
		73	crt->authsize = authsize;
70	return 0;	74	return 0;
71	}	75	}
72	EXPORT_SYMBOL_GPL(crypto_aead_setauthsize);	76	EXPORT_SYMBOL_GPL(crypto_aead_setauthsize);
@@ -90,11 +94,13 @@ static int crypto_init_aead_ops(struct crypto_tfm *tfm, u32 type, u32 mask)
90	if (max(alg->maxauthsize, alg->ivsize) > PAGE_SIZE / 8)	94	if (max(alg->maxauthsize, alg->ivsize) > PAGE_SIZE / 8)
91	return -EINVAL;	95	return -EINVAL;
92		96
93	crt->setkey = setkey;	97	crt->setkey = tfm->__crt_alg->cra_flags & CRYPTO_ALG_GENIV ?
		98	alg->setkey : setkey;
94	crt->encrypt = alg->encrypt;	99	crt->encrypt = alg->encrypt;
95	crt->decrypt = alg->decrypt;	100	crt->decrypt = alg->decrypt;
96	crt->givencrypt = alg->givencrypt ?: no_givcrypt;	101	crt->givencrypt = alg->givencrypt ?: no_givcrypt;
97	crt->givdecrypt = alg->givdecrypt ?: no_givcrypt;	102	crt->givdecrypt = alg->givdecrypt ?: no_givcrypt;
		103	crt->base = __crypto_aead_cast(tfm);
98	crt->ivsize = alg->ivsize;	104	crt->ivsize = alg->ivsize;
99	crt->authsize = alg->maxauthsize;	105	crt->authsize = alg->maxauthsize;
100		106
@@ -111,6 +117,7 @@ static void crypto_aead_show(struct seq_file m, struct crypto_alg alg)
111	seq_printf(m, "blocksize : %u\n", alg->cra_blocksize);	117	seq_printf(m, "blocksize : %u\n", alg->cra_blocksize);
112	seq_printf(m, "ivsize : %u\n", aead->ivsize);	118	seq_printf(m, "ivsize : %u\n", aead->ivsize);
113	seq_printf(m, "maxauthsize : %u\n", aead->maxauthsize);	119	seq_printf(m, "maxauthsize : %u\n", aead->maxauthsize);
		120	seq_printf(m, "geniv : %s\n", aead->geniv ?: "<built-in>");
114	}	121	}
115		122
116	const struct crypto_type crypto_aead_type = {	123	const struct crypto_type crypto_aead_type = {
@@ -122,5 +129,204 @@ const struct crypto_type crypto_aead_type = {
122	};	129	};
123	EXPORT_SYMBOL_GPL(crypto_aead_type);	130	EXPORT_SYMBOL_GPL(crypto_aead_type);
124		131
		132	static int aead_null_givencrypt(struct aead_givcrypt_request *req)
		133	{
		134	return crypto_aead_encrypt(&req->areq);
		135	}
		136
		137	static int aead_null_givdecrypt(struct aead_givcrypt_request *req)
		138	{
		139	return crypto_aead_decrypt(&req->areq);
		140	}
		141
		142	static int crypto_init_nivaead_ops(struct crypto_tfm *tfm, u32 type, u32 mask)
		143	{
		144	struct aead_alg *alg = &tfm->__crt_alg->cra_aead;
		145	struct aead_tfm *crt = &tfm->crt_aead;
		146
		147	if (max(alg->maxauthsize, alg->ivsize) > PAGE_SIZE / 8)
		148	return -EINVAL;
		149
		150	crt->setkey = setkey;
		151	crt->encrypt = alg->encrypt;
		152	crt->decrypt = alg->decrypt;
		153	if (!alg->ivsize) {
		154	crt->givencrypt = aead_null_givencrypt;
		155	crt->givdecrypt = aead_null_givdecrypt;
		156	}
		157	crt->base = __crypto_aead_cast(tfm);
		158	crt->ivsize = alg->ivsize;
		159	crt->authsize = alg->maxauthsize;
		160
		161	return 0;
		162	}
		163
		164	static void crypto_nivaead_show(struct seq_file m, struct crypto_alg alg)
		165	__attribute__ ((unused));
		166	static void crypto_nivaead_show(struct seq_file m, struct crypto_alg alg)
		167	{
		168	struct aead_alg *aead = &alg->cra_aead;
		169
		170	seq_printf(m, "type : nivaead\n");
		171	seq_printf(m, "blocksize : %u\n", alg->cra_blocksize);
		172	seq_printf(m, "ivsize : %u\n", aead->ivsize);
		173	seq_printf(m, "maxauthsize : %u\n", aead->maxauthsize);
		174	seq_printf(m, "geniv : %s\n", aead->geniv);
		175	}
		176
		177	const struct crypto_type crypto_nivaead_type = {
		178	.ctxsize = crypto_aead_ctxsize,
		179	.init = crypto_init_nivaead_ops,
		180	#ifdef CONFIG_PROC_FS
		181	.show = crypto_nivaead_show,
		182	#endif
		183	};
		184	EXPORT_SYMBOL_GPL(crypto_nivaead_type);
		185
		186	static int crypto_grab_nivaead(struct crypto_aead_spawn *spawn,
		187	const char *name, u32 type, u32 mask)
		188	{
		189	struct crypto_alg *alg;
		190	int err;
		191
		192	type &= ~(CRYPTO_ALG_TYPE_MASK \| CRYPTO_ALG_GENIV);
		193	type \|= CRYPTO_ALG_TYPE_AEAD;
		194	mask \|= CRYPTO_ALG_TYPE_MASK \| CRYPTO_ALG_GENIV;
		195
		196	alg = crypto_alg_mod_lookup(name, type, mask);
		197	if (IS_ERR(alg))
		198	return PTR_ERR(alg);
		199
		200	err = crypto_init_spawn(&spawn->base, alg, spawn->base.inst, mask);
		201	crypto_mod_put(alg);
		202	return err;
		203	}
		204
		205	struct crypto_instance aead_geniv_alloc(struct crypto_template tmpl,
		206	struct rtattr **tb, u32 type,
		207	u32 mask)
		208	{
		209	const char *name;
		210	struct crypto_aead_spawn *spawn;
		211	struct crypto_attr_type *algt;
		212	struct crypto_instance *inst;
		213	struct crypto_alg *alg;
		214	int err;
		215
		216	algt = crypto_get_attr_type(tb);
		217	err = PTR_ERR(algt);
		218	if (IS_ERR(algt))
		219	return ERR_PTR(err);
		220
		221	if ((algt->type ^ (CRYPTO_ALG_TYPE_AEAD \| CRYPTO_ALG_GENIV)) &
		222	algt->mask)
		223	return ERR_PTR(-EINVAL);
		224
		225	name = crypto_attr_alg_name(tb[1]);
		226	err = PTR_ERR(name);
		227	if (IS_ERR(name))
		228	return ERR_PTR(err);
		229
		230	inst = kzalloc(sizeof(inst) + sizeof(spawn), GFP_KERNEL);
		231	if (!inst)
		232	return ERR_PTR(-ENOMEM);
		233
		234	spawn = crypto_instance_ctx(inst);
		235
		236	/* Ignore async algorithms if necessary. */
		237	mask \|= crypto_requires_sync(algt->type, algt->mask);
		238
		239	crypto_set_aead_spawn(spawn, inst);
		240	err = crypto_grab_nivaead(spawn, name, type, mask);
		241	if (err)
		242	goto err_free_inst;
		243
		244	alg = crypto_aead_spawn_alg(spawn);
		245
		246	err = -EINVAL;
		247	if (!alg->cra_aead.ivsize)
		248	goto err_drop_alg;
		249
		250	/*
		251	* This is only true if we're constructing an algorithm with its
		252	* default IV generator. For the default generator we elide the
		253	* template name and double-check the IV generator.
		254	*/
		255	if (algt->mask & CRYPTO_ALG_GENIV) {
		256	if (strcmp(tmpl->name, alg->cra_aead.geniv))
		257	goto err_drop_alg;
		258
		259	memcpy(inst->alg.cra_name, alg->cra_name, CRYPTO_MAX_ALG_NAME);
		260	memcpy(inst->alg.cra_driver_name, alg->cra_driver_name,
		261	CRYPTO_MAX_ALG_NAME);
		262	} else {
		263	err = -ENAMETOOLONG;
		264	if (snprintf(inst->alg.cra_name, CRYPTO_MAX_ALG_NAME,
		265	"%s(%s)", tmpl->name, alg->cra_name) >=
		266	CRYPTO_MAX_ALG_NAME)
		267	goto err_drop_alg;
		268	if (snprintf(inst->alg.cra_driver_name, CRYPTO_MAX_ALG_NAME,
		269	"%s(%s)", tmpl->name, alg->cra_driver_name) >=
		270	CRYPTO_MAX_ALG_NAME)
		271	goto err_drop_alg;
		272	}
		273
		274	inst->alg.cra_flags = CRYPTO_ALG_TYPE_AEAD \| CRYPTO_ALG_GENIV;
		275	inst->alg.cra_flags \|= alg->cra_flags & CRYPTO_ALG_ASYNC;
		276	inst->alg.cra_priority = alg->cra_priority;
		277	inst->alg.cra_blocksize = alg->cra_blocksize;
		278	inst->alg.cra_alignmask = alg->cra_alignmask;
		279	inst->alg.cra_type = &crypto_aead_type;
		280
		281	inst->alg.cra_aead.ivsize = alg->cra_aead.ivsize;
		282	inst->alg.cra_aead.maxauthsize = alg->cra_aead.maxauthsize;
		283	inst->alg.cra_aead.geniv = alg->cra_aead.geniv;
		284
		285	inst->alg.cra_aead.setkey = alg->cra_aead.setkey;
		286	inst->alg.cra_aead.setauthsize = alg->cra_aead.setauthsize;
		287	inst->alg.cra_aead.encrypt = alg->cra_aead.encrypt;
		288	inst->alg.cra_aead.decrypt = alg->cra_aead.decrypt;
		289
		290	out:
		291	return inst;
		292
		293	err_drop_alg:
		294	crypto_drop_aead(spawn);
		295	err_free_inst:
		296	kfree(inst);
		297	inst = ERR_PTR(err);
		298	goto out;
		299	}
		300	EXPORT_SYMBOL_GPL(aead_geniv_alloc);
		301
		302	void aead_geniv_free(struct crypto_instance *inst)
		303	{
		304	crypto_drop_aead(crypto_instance_ctx(inst));
		305	kfree(inst);
		306	}
		307	EXPORT_SYMBOL_GPL(aead_geniv_free);
		308
		309	int aead_geniv_init(struct crypto_tfm *tfm)
		310	{
		311	struct crypto_instance inst = (void )tfm->__crt_alg;
		312	struct crypto_aead *aead;
		313
		314	aead = crypto_spawn_aead(crypto_instance_ctx(inst));
		315	if (IS_ERR(aead))
		316	return PTR_ERR(aead);
		317
		318	tfm->crt_aead.base = aead;
		319	tfm->crt_aead.reqsize += crypto_aead_reqsize(aead);
		320
		321	return 0;
		322	}
		323	EXPORT_SYMBOL_GPL(aead_geniv_init);
		324
		325	void aead_geniv_exit(struct crypto_tfm *tfm)
		326	{
		327	crypto_free_aead(tfm->crt_aead.base);
		328	}
		329	EXPORT_SYMBOL_GPL(aead_geniv_exit);
		330
125	MODULE_LICENSE("GPL");	331	MODULE_LICENSE("GPL");
126	MODULE_DESCRIPTION("Authenticated Encryption with Associated Data (AEAD)");	332	MODULE_DESCRIPTION("Authenticated Encryption with Associated Data (AEAD)");


diff --git a/include/crypto/internal/aead.h b/include/crypto/internal/aead.h new file mode 100644 index 000000000000..eb4eee7a7804 --- /dev/null +++ b/include/crypto/internal/aead.h
@@ -0,0 +1,77 @@
		1	/*
		2	* AEAD: Authenticated Encryption with Associated Data
		3	*
		4	* Copyright (c) 2007 Herbert Xu <herbert@gondor.apana.org.au>
		5	*
		6	* This program is free software; you can redistribute it and/or modify it
		7	* under the terms of the GNU General Public License as published by the Free
		8	* Software Foundation; either version 2 of the License, or (at your option)
		9	* any later version.
		10	*
		11	*/
		12
		13	#ifndef _CRYPTO_INTERNAL_AEAD_H
		14	#define _CRYPTO_INTERNAL_AEAD_H
		15
		16	#include <crypto/aead.h>
		17	#include <crypto/algapi.h>
		18	#include <linux/types.h>
		19
		20	struct rtattr;
		21
		22	struct crypto_aead_spawn {
		23	struct crypto_spawn base;
		24	};
		25
		26	extern const struct crypto_type crypto_nivaead_type;
		27
		28	static inline void crypto_set_aead_spawn(
		29	struct crypto_aead_spawn spawn, struct crypto_instance inst)
		30	{
		31	crypto_set_spawn(&spawn->base, inst);
		32	}
		33
		34	static inline void crypto_drop_aead(struct crypto_aead_spawn *spawn)
		35	{
		36	crypto_drop_spawn(&spawn->base);
		37	}
		38
		39	static inline struct crypto_alg *crypto_aead_spawn_alg(
		40	struct crypto_aead_spawn *spawn)
		41	{
		42	return spawn->base.alg;
		43	}
		44
		45	static inline struct crypto_aead *crypto_spawn_aead(
		46	struct crypto_aead_spawn *spawn)
		47	{
		48	return __crypto_aead_cast(
		49	crypto_spawn_tfm(&spawn->base, CRYPTO_ALG_TYPE_AEAD,
		50	CRYPTO_ALG_TYPE_MASK));
		51	}
		52
		53	struct crypto_instance aead_geniv_alloc(struct crypto_template tmpl,
		54	struct rtattr **tb, u32 type,
		55	u32 mask);
		56	void aead_geniv_free(struct crypto_instance *inst);
		57	int aead_geniv_init(struct crypto_tfm *tfm);
		58	void aead_geniv_exit(struct crypto_tfm *tfm);
		59
		60	static inline struct crypto_aead aead_geniv_base(struct crypto_aead geniv)
		61	{
		62	return crypto_aead_crt(geniv)->base;
		63	}
		64
		65	static inline void aead_givcrypt_reqctx(struct aead_givcrypt_request req)
		66	{
		67	return aead_request_ctx(&req->areq);
		68	}
		69
		70	static inline void aead_givcrypt_complete(struct aead_givcrypt_request *req,
		71	int err)
		72	{
		73	aead_request_complete(&req->areq, err);
		74	}
		75
		76	#endif /* _CRYPTO_INTERNAL_AEAD_H */
		77


diff --git a/include/linux/crypto.h b/include/linux/crypto.h index 7524928bff93..639385a9672d 100644 --- a/include/linux/crypto.h +++ b/include/linux/crypto.h
@@ -206,6 +206,8 @@ struct aead_alg {
206	int (givencrypt)(struct aead_givcrypt_request req);	206	int (givencrypt)(struct aead_givcrypt_request req);
207	int (givdecrypt)(struct aead_givcrypt_request req);	207	int (givdecrypt)(struct aead_givcrypt_request req);
208		208
		209	const char *geniv;
		210
209	unsigned int ivsize;	211	unsigned int ivsize;
210	unsigned int maxauthsize;	212	unsigned int maxauthsize;
211	};	213	};
@@ -353,6 +355,9 @@ struct aead_tfm {
353	int (decrypt)(struct aead_request req);	355	int (decrypt)(struct aead_request req);
354	int (givencrypt)(struct aead_givcrypt_request req);	356	int (givencrypt)(struct aead_givcrypt_request req);
355	int (givdecrypt)(struct aead_givcrypt_request req);	357	int (givdecrypt)(struct aead_givcrypt_request req);
		358
		359	struct crypto_aead *base;
		360
356	unsigned int ivsize;	361	unsigned int ivsize;
357	unsigned int authsize;	362	unsigned int authsize;
358	unsigned int reqsize;	363	unsigned int reqsize;
@@ -781,7 +786,9 @@ static inline void crypto_aead_clear_flags(struct crypto_aead *tfm, u32 flags)
781	static inline int crypto_aead_setkey(struct crypto_aead tfm, const u8 key,	786	static inline int crypto_aead_setkey(struct crypto_aead tfm, const u8 key,
782	unsigned int keylen)	787	unsigned int keylen)
783	{	788	{
784	return crypto_aead_crt(tfm)->setkey(tfm, key, keylen);	789	struct aead_tfm *crt = crypto_aead_crt(tfm);
		790
		791	return crt->setkey(crt->base, key, keylen);
785	}	792	}
786		793
787	int crypto_aead_setauthsize(struct crypto_aead *tfm, unsigned int authsize);	794	int crypto_aead_setauthsize(struct crypto_aead *tfm, unsigned int authsize);
@@ -809,7 +816,7 @@ static inline unsigned int crypto_aead_reqsize(struct crypto_aead *tfm)
809	static inline void aead_request_set_tfm(struct aead_request *req,	816	static inline void aead_request_set_tfm(struct aead_request *req,
810	struct crypto_aead *tfm)	817	struct crypto_aead *tfm)
811	{	818	{
812	req->base.tfm = crypto_aead_tfm(tfm);	819	req->base.tfm = crypto_aead_tfm(crypto_aead_crt(tfm)->base);
813	}	820	}
814		821
815	static inline struct aead_request aead_request_alloc(struct crypto_aead tfm,	822	static inline struct aead_request aead_request_alloc(struct crypto_aead tfm,