mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
synced 2025-01-01 02:33:57 +00:00
This update includes the following changes:
API: - Add linear akcipher/sig API. - Add tfm cloning (hmac, cmac). - Add statesize to crypto_ahash. Algorithms: - Allow only odd e and restrict value in FIPS mode for RSA. - Replace LFSR with SHA3-256 in jitter. - Add interface for gathering of raw entropy in jitter. Drivers: - Fix race on data_avail and actual data in hwrng/virtio. - Add hash and HMAC support in starfive. - Add RSA algo support in starfive. - Add support for PCI device 0x156E in ccp. -----BEGIN PGP SIGNATURE----- iQIzBAABCgAdFiEEn51F/lCuNhUwmDeSxycdCkmxi6cFAmSdECcACgkQxycdCkmx i6dW3g//a4DR6aaqYF8pU4svAzO56a0Plx3DVHUiJ4ygRB7xOzrQqXjCren6wY2a LFuetwxebAhIAPsC79vI+3j8VAIlU9cNVqOxBIJHGY7wFO4m1AjqBjlealzqLrth +nEIeUibqLeRw7imOO4adzSsKuSQgyU5rPtKWfrGqqI3RhuMgfWroCtmJ82jmq5l uMZgB+aGGkzyXztxubHRPeJ3nOFEzo95SscpJ43lOjMcURRBhEa+20jXDhUGwpI7 9ycFV31AW+tfkIprAcliiIzZuwIbzlCkte6AxjAVsN100T/wh9JS1Y+uf1P0oZ9y AUQQKyc8/QpSkzHZPTncat5P6zta28r8Q5neCvEEEGGuOE8Oc6kb0Os+RE5ANMU4 2A/zrKGOMIWeEWwXGc51xT3gxyl/Rn5wLw1pW7Lm4d5osGT9jiVXx/g66hKLpagJ jegI6CqgvUajkRNi7JPVnSAauu0Ay8O6pU37/8gLOXNGVZBqONpRimk9qB05LNSF QYzM2sgYv1tQEmjnG8jLhF5Z8brnqYTv2TZwBX43W10EDQNqUYUDff9Flean5xCb +2mxJc81rgtUffnMXyYvQwKLhVKoLpeLR6Ts455S5aP06WAfoyEJyYTA/LHG24GX H2HdS9g5y/K15k9yygMWaXgAx7O7MjM9gEa2VQakhnByj/eQM0s= =rOLu -----END PGP SIGNATURE----- Merge tag 'v6.5-p1' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6 Pull crypto updates from Herbert Xu: "API: - Add linear akcipher/sig API - Add tfm cloning (hmac, cmac) - Add statesize to crypto_ahash Algorithms: - Allow only odd e and restrict value in FIPS mode for RSA - Replace LFSR with SHA3-256 in jitter - Add interface for gathering of raw entropy in jitter Drivers: - Fix race on data_avail and actual data in hwrng/virtio - Add hash and HMAC support in starfive - Add RSA algo support in starfive - Add support for PCI device 0x156E in ccp" * tag 'v6.5-p1' of git://git.kernel.org/pub/scm/linux/kernel/git/herbert/crypto-2.6: (85 commits) crypto: akcipher - Do not copy dst if it is NULL crypto: sig - Fix verify call crypto: akcipher - Set request tfm on sync path crypto: sm2 - Provide sm2_compute_z_digest when sm2 is disabled hwrng: imx-rngc - switch to DEFINE_SIMPLE_DEV_PM_OPS hwrng: st - keep clock enabled while hwrng is registered hwrng: st - support compile-testing hwrng: imx-rngc - fix the timeout for init and self check KEYS: asymmetric: Use new crypto interface without scatterlists KEYS: asymmetric: Move sm2 code into x509_public_key KEYS: Add forward declaration in asymmetric-parser.h crypto: sig - Add interface for sign/verify crypto: akcipher - Add sync interface without SG lists crypto: cipher - On clone do crypto_mod_get() crypto: api - Add __crypto_alloc_tfmgfp crypto: api - Remove crypto_init_ops() crypto: rsa - allow only odd e and restrict value in FIPS mode crypto: geniv - Split geniv out of AEAD Kconfig option crypto: algboss - Add missing dependency on RNG2 crypto: starfive - Add RSA algo support ...
This commit is contained in:
commit
5d95ff84e6
@ -27,7 +27,18 @@ Description: (RW) Reports the current configuration of the QAT device.
|
||||
|
||||
* sym;asym: the device is configured for running crypto
|
||||
services
|
||||
* asym;sym: identical to sym;asym
|
||||
* dc: the device is configured for running compression services
|
||||
* sym: the device is configured for running symmetric crypto
|
||||
services
|
||||
* asym: the device is configured for running asymmetric crypto
|
||||
services
|
||||
* asym;dc: the device is configured for running asymmetric
|
||||
crypto services and compression services
|
||||
* dc;asym: identical to asym;dc
|
||||
* sym;dc: the device is configured for running symmetric crypto
|
||||
services and compression services
|
||||
* dc;sym: identical to sym;dc
|
||||
|
||||
It is possible to set the configuration only if the device
|
||||
is in the `down` state (see /sys/bus/pci/devices/<BDF>/qat/state)
|
||||
@ -47,3 +58,38 @@ Description: (RW) Reports the current configuration of the QAT device.
|
||||
dc
|
||||
|
||||
This attribute is only available for qat_4xxx devices.
|
||||
|
||||
What: /sys/bus/pci/devices/<BDF>/qat/pm_idle_enabled
|
||||
Date: June 2023
|
||||
KernelVersion: 6.5
|
||||
Contact: qat-linux@intel.com
|
||||
Description: (RW) This configuration option provides a way to force the device into remaining in
|
||||
the MAX power state.
|
||||
If idle support is enabled the device will transition to the `MIN` power state when
|
||||
idle, otherwise will stay in the MAX power state.
|
||||
Write to the file to enable or disable idle support.
|
||||
|
||||
The values are:
|
||||
|
||||
* 0: idle support is disabled
|
||||
* 1: idle support is enabled
|
||||
|
||||
Default value is 1.
|
||||
|
||||
It is possible to set the pm_idle_enabled value only if the device
|
||||
is in the `down` state (see /sys/bus/pci/devices/<BDF>/qat/state)
|
||||
|
||||
The following example shows how to change the pm_idle_enabled of
|
||||
a device::
|
||||
|
||||
# cat /sys/bus/pci/devices/<BDF>/qat/state
|
||||
up
|
||||
# cat /sys/bus/pci/devices/<BDF>/qat/pm_idle_enabled
|
||||
1
|
||||
# echo down > /sys/bus/pci/devices/<BDF>/qat/state
|
||||
# echo 0 > /sys/bus/pci/devices/<BDF>/qat/pm_idle_enabled
|
||||
# echo up > /sys/bus/pci/devices/<BDF>/qat/state
|
||||
# cat /sys/bus/pci/devices/<BDF>/qat/pm_idle_enabled
|
||||
0
|
||||
|
||||
This attribute is only available for qat_4xxx devices.
|
||||
|
@ -24,12 +24,20 @@ properties:
|
||||
deprecated: true
|
||||
description: Kept only for ABI backward compatibility
|
||||
|
||||
- items:
|
||||
- enum:
|
||||
- qcom,ipq4019-qce
|
||||
- qcom,sm8150-qce
|
||||
- const: qcom,qce
|
||||
|
||||
- items:
|
||||
- enum:
|
||||
- qcom,ipq6018-qce
|
||||
- qcom,ipq8074-qce
|
||||
- qcom,msm8996-qce
|
||||
- qcom,qcm2290-qce
|
||||
- qcom,sdm845-qce
|
||||
- qcom,sm6115-qce
|
||||
- const: qcom,ipq4019-qce
|
||||
- const: qcom,qce
|
||||
|
||||
@ -46,16 +54,12 @@ properties:
|
||||
maxItems: 1
|
||||
|
||||
clocks:
|
||||
items:
|
||||
- description: iface clocks register interface.
|
||||
- description: bus clocks data transfer interface.
|
||||
- description: core clocks rest of the crypto block.
|
||||
minItems: 1
|
||||
maxItems: 3
|
||||
|
||||
clock-names:
|
||||
items:
|
||||
- const: iface
|
||||
- const: bus
|
||||
- const: core
|
||||
minItems: 1
|
||||
maxItems: 3
|
||||
|
||||
iommus:
|
||||
minItems: 1
|
||||
@ -89,9 +93,37 @@ allOf:
|
||||
enum:
|
||||
- qcom,crypto-v5.1
|
||||
- qcom,crypto-v5.4
|
||||
- qcom,ipq4019-qce
|
||||
|
||||
- qcom,ipq6018-qce
|
||||
- qcom,ipq8074-qce
|
||||
- qcom,msm8996-qce
|
||||
- qcom,sdm845-qce
|
||||
then:
|
||||
properties:
|
||||
clocks:
|
||||
maxItems: 3
|
||||
clock-names:
|
||||
items:
|
||||
- const: iface
|
||||
- const: bus
|
||||
- const: core
|
||||
required:
|
||||
- clocks
|
||||
- clock-names
|
||||
|
||||
- if:
|
||||
properties:
|
||||
compatible:
|
||||
contains:
|
||||
enum:
|
||||
- qcom,qcm2290-qce
|
||||
- qcom,sm6115-qce
|
||||
then:
|
||||
properties:
|
||||
clocks:
|
||||
maxItems: 1
|
||||
clock-names:
|
||||
items:
|
||||
- const: core
|
||||
required:
|
||||
- clocks
|
||||
- clock-names
|
||||
|
@ -0,0 +1,70 @@
|
||||
# SPDX-License-Identifier: (GPL-2.0-only OR BSD-2-Clause)
|
||||
%YAML 1.2
|
||||
---
|
||||
$id: http://devicetree.org/schemas/crypto/starfive,jh7110-crypto.yaml#
|
||||
$schema: http://devicetree.org/meta-schemas/core.yaml#
|
||||
|
||||
title: StarFive Cryptographic Module
|
||||
|
||||
maintainers:
|
||||
- Jia Jie Ho <jiajie.ho@starfivetech.com>
|
||||
- William Qiu <william.qiu@starfivetech.com>
|
||||
|
||||
properties:
|
||||
compatible:
|
||||
const: starfive,jh7110-crypto
|
||||
|
||||
reg:
|
||||
maxItems: 1
|
||||
|
||||
clocks:
|
||||
items:
|
||||
- description: Hardware reference clock
|
||||
- description: AHB reference clock
|
||||
|
||||
clock-names:
|
||||
items:
|
||||
- const: hclk
|
||||
- const: ahb
|
||||
|
||||
interrupts:
|
||||
maxItems: 1
|
||||
|
||||
resets:
|
||||
maxItems: 1
|
||||
|
||||
dmas:
|
||||
items:
|
||||
- description: TX DMA channel
|
||||
- description: RX DMA channel
|
||||
|
||||
dma-names:
|
||||
items:
|
||||
- const: tx
|
||||
- const: rx
|
||||
|
||||
required:
|
||||
- compatible
|
||||
- reg
|
||||
- clocks
|
||||
- clock-names
|
||||
- resets
|
||||
- dmas
|
||||
- dma-names
|
||||
|
||||
additionalProperties: false
|
||||
|
||||
examples:
|
||||
- |
|
||||
crypto: crypto@16000000 {
|
||||
compatible = "starfive,jh7110-crypto";
|
||||
reg = <0x16000000 0x4000>;
|
||||
clocks = <&clk 15>, <&clk 16>;
|
||||
clock-names = "hclk", "ahb";
|
||||
interrupts = <28>;
|
||||
resets = <&reset 3>;
|
||||
dmas = <&dma 1 2>,
|
||||
<&dma 0 2>;
|
||||
dma-names = "tx", "rx";
|
||||
};
|
||||
...
|
@ -20265,6 +20265,13 @@ F: Documentation/devicetree/bindings/clock/starfive,jh71*.yaml
|
||||
F: drivers/clk/starfive/clk-starfive-jh71*
|
||||
F: include/dt-bindings/clock/starfive?jh71*.h
|
||||
|
||||
STARFIVE CRYPTO DRIVER
|
||||
M: Jia Jie Ho <jiajie.ho@starfivetech.com>
|
||||
M: William Qiu <william.qiu@starfivetech.com>
|
||||
S: Supported
|
||||
F: Documentation/devicetree/bindings/crypto/starfive*
|
||||
F: drivers/crypto/starfive/
|
||||
|
||||
STARFIVE JH71X0 PINCTRL DRIVERS
|
||||
M: Emil Renner Berthing <kernel@esmil.dk>
|
||||
M: Jianlong Huang <jianlong.huang@starfivetech.com>
|
||||
|
@ -26,8 +26,8 @@
|
||||
|
||||
#include "sha1.h"
|
||||
|
||||
asmlinkage void sha1_transform_neon(void *state_h, const char *data,
|
||||
unsigned int rounds);
|
||||
asmlinkage void sha1_transform_neon(struct sha1_state *state_h,
|
||||
const u8 *data, int rounds);
|
||||
|
||||
static int sha1_neon_update(struct shash_desc *desc, const u8 *data,
|
||||
unsigned int len)
|
||||
@ -39,8 +39,7 @@ static int sha1_neon_update(struct shash_desc *desc, const u8 *data,
|
||||
return sha1_update_arm(desc, data, len);
|
||||
|
||||
kernel_neon_begin();
|
||||
sha1_base_do_update(desc, data, len,
|
||||
(sha1_block_fn *)sha1_transform_neon);
|
||||
sha1_base_do_update(desc, data, len, sha1_transform_neon);
|
||||
kernel_neon_end();
|
||||
|
||||
return 0;
|
||||
@ -54,9 +53,8 @@ static int sha1_neon_finup(struct shash_desc *desc, const u8 *data,
|
||||
|
||||
kernel_neon_begin();
|
||||
if (len)
|
||||
sha1_base_do_update(desc, data, len,
|
||||
(sha1_block_fn *)sha1_transform_neon);
|
||||
sha1_base_do_finalize(desc, (sha1_block_fn *)sha1_transform_neon);
|
||||
sha1_base_do_update(desc, data, len, sha1_transform_neon);
|
||||
sha1_base_do_finalize(desc, sha1_transform_neon);
|
||||
kernel_neon_end();
|
||||
|
||||
return sha1_base_finish(desc, out);
|
||||
|
@ -21,8 +21,8 @@
|
||||
|
||||
#include "sha256_glue.h"
|
||||
|
||||
asmlinkage void sha256_block_data_order_neon(u32 *digest, const void *data,
|
||||
unsigned int num_blks);
|
||||
asmlinkage void sha256_block_data_order_neon(struct sha256_state *digest,
|
||||
const u8 *data, int num_blks);
|
||||
|
||||
static int crypto_sha256_neon_update(struct shash_desc *desc, const u8 *data,
|
||||
unsigned int len)
|
||||
@ -34,8 +34,7 @@ static int crypto_sha256_neon_update(struct shash_desc *desc, const u8 *data,
|
||||
return crypto_sha256_arm_update(desc, data, len);
|
||||
|
||||
kernel_neon_begin();
|
||||
sha256_base_do_update(desc, data, len,
|
||||
(sha256_block_fn *)sha256_block_data_order_neon);
|
||||
sha256_base_do_update(desc, data, len, sha256_block_data_order_neon);
|
||||
kernel_neon_end();
|
||||
|
||||
return 0;
|
||||
@ -50,9 +49,8 @@ static int crypto_sha256_neon_finup(struct shash_desc *desc, const u8 *data,
|
||||
kernel_neon_begin();
|
||||
if (len)
|
||||
sha256_base_do_update(desc, data, len,
|
||||
(sha256_block_fn *)sha256_block_data_order_neon);
|
||||
sha256_base_do_finalize(desc,
|
||||
(sha256_block_fn *)sha256_block_data_order_neon);
|
||||
sha256_block_data_order_neon);
|
||||
sha256_base_do_finalize(desc, sha256_block_data_order_neon);
|
||||
kernel_neon_end();
|
||||
|
||||
return sha256_base_finish(desc, out);
|
||||
|
@ -20,8 +20,8 @@
|
||||
MODULE_ALIAS_CRYPTO("sha384-neon");
|
||||
MODULE_ALIAS_CRYPTO("sha512-neon");
|
||||
|
||||
asmlinkage void sha512_block_data_order_neon(u64 *state, u8 const *src,
|
||||
int blocks);
|
||||
asmlinkage void sha512_block_data_order_neon(struct sha512_state *state,
|
||||
const u8 *src, int blocks);
|
||||
|
||||
static int sha512_neon_update(struct shash_desc *desc, const u8 *data,
|
||||
unsigned int len)
|
||||
@ -33,8 +33,7 @@ static int sha512_neon_update(struct shash_desc *desc, const u8 *data,
|
||||
return sha512_arm_update(desc, data, len);
|
||||
|
||||
kernel_neon_begin();
|
||||
sha512_base_do_update(desc, data, len,
|
||||
(sha512_block_fn *)sha512_block_data_order_neon);
|
||||
sha512_base_do_update(desc, data, len, sha512_block_data_order_neon);
|
||||
kernel_neon_end();
|
||||
|
||||
return 0;
|
||||
@ -49,9 +48,8 @@ static int sha512_neon_finup(struct shash_desc *desc, const u8 *data,
|
||||
kernel_neon_begin();
|
||||
if (len)
|
||||
sha512_base_do_update(desc, data, len,
|
||||
(sha512_block_fn *)sha512_block_data_order_neon);
|
||||
sha512_base_do_finalize(desc,
|
||||
(sha512_block_fn *)sha512_block_data_order_neon);
|
||||
sha512_block_data_order_neon);
|
||||
sha512_base_do_finalize(desc, sha512_block_data_order_neon);
|
||||
kernel_neon_end();
|
||||
|
||||
return sha512_base_finish(desc, out);
|
||||
|
@ -12,8 +12,9 @@
|
||||
#include <crypto/internal/simd.h>
|
||||
#include <crypto/sha2.h>
|
||||
#include <crypto/sha256_base.h>
|
||||
#include <linux/types.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/string.h>
|
||||
#include <linux/types.h>
|
||||
|
||||
MODULE_DESCRIPTION("SHA-224/SHA-256 secure hash for arm64");
|
||||
MODULE_AUTHOR("Andy Polyakov <appro@openssl.org>");
|
||||
|
@ -71,8 +71,15 @@ config CRYPTO_AEAD
|
||||
config CRYPTO_AEAD2
|
||||
tristate
|
||||
select CRYPTO_ALGAPI2
|
||||
select CRYPTO_NULL2
|
||||
select CRYPTO_RNG2
|
||||
|
||||
config CRYPTO_SIG
|
||||
tristate
|
||||
select CRYPTO_SIG2
|
||||
select CRYPTO_ALGAPI
|
||||
|
||||
config CRYPTO_SIG2
|
||||
tristate
|
||||
select CRYPTO_ALGAPI2
|
||||
|
||||
config CRYPTO_SKCIPHER
|
||||
tristate
|
||||
@ -82,7 +89,6 @@ config CRYPTO_SKCIPHER
|
||||
config CRYPTO_SKCIPHER2
|
||||
tristate
|
||||
select CRYPTO_ALGAPI2
|
||||
select CRYPTO_RNG2
|
||||
|
||||
config CRYPTO_HASH
|
||||
tristate
|
||||
@ -143,12 +149,14 @@ config CRYPTO_MANAGER
|
||||
|
||||
config CRYPTO_MANAGER2
|
||||
def_tristate CRYPTO_MANAGER || (CRYPTO_MANAGER!=n && CRYPTO_ALGAPI=y)
|
||||
select CRYPTO_AEAD2
|
||||
select CRYPTO_HASH2
|
||||
select CRYPTO_SKCIPHER2
|
||||
select CRYPTO_AKCIPHER2
|
||||
select CRYPTO_KPP2
|
||||
select CRYPTO_ACOMP2
|
||||
select CRYPTO_AEAD2
|
||||
select CRYPTO_AKCIPHER2
|
||||
select CRYPTO_SIG2
|
||||
select CRYPTO_HASH2
|
||||
select CRYPTO_KPP2
|
||||
select CRYPTO_RNG2
|
||||
select CRYPTO_SKCIPHER2
|
||||
|
||||
config CRYPTO_USER
|
||||
tristate "Userspace cryptographic algorithm configuration"
|
||||
@ -833,13 +841,16 @@ config CRYPTO_GCM
|
||||
|
||||
This is required for IPSec ESP (XFRM_ESP).
|
||||
|
||||
config CRYPTO_GENIV
|
||||
tristate
|
||||
select CRYPTO_AEAD
|
||||
select CRYPTO_NULL
|
||||
select CRYPTO_MANAGER
|
||||
select CRYPTO_RNG_DEFAULT
|
||||
|
||||
config CRYPTO_SEQIV
|
||||
tristate "Sequence Number IV Generator"
|
||||
select CRYPTO_AEAD
|
||||
select CRYPTO_SKCIPHER
|
||||
select CRYPTO_NULL
|
||||
select CRYPTO_RNG_DEFAULT
|
||||
select CRYPTO_MANAGER
|
||||
select CRYPTO_GENIV
|
||||
help
|
||||
Sequence Number IV generator
|
||||
|
||||
@ -850,10 +861,7 @@ config CRYPTO_SEQIV
|
||||
|
||||
config CRYPTO_ECHAINIV
|
||||
tristate "Encrypted Chain IV Generator"
|
||||
select CRYPTO_AEAD
|
||||
select CRYPTO_NULL
|
||||
select CRYPTO_RNG_DEFAULT
|
||||
select CRYPTO_MANAGER
|
||||
select CRYPTO_GENIV
|
||||
help
|
||||
Encrypted Chain IV generator
|
||||
|
||||
@ -1277,6 +1285,7 @@ endif # if CRYPTO_DRBG_MENU
|
||||
config CRYPTO_JITTERENTROPY
|
||||
tristate "CPU Jitter Non-Deterministic RNG (Random Number Generator)"
|
||||
select CRYPTO_RNG
|
||||
select CRYPTO_SHA3
|
||||
help
|
||||
CPU Jitter RNG (Random Number Generator) from the Jitterentropy library
|
||||
|
||||
@ -1287,6 +1296,26 @@ config CRYPTO_JITTERENTROPY
|
||||
|
||||
See https://www.chronox.de/jent.html
|
||||
|
||||
config CRYPTO_JITTERENTROPY_TESTINTERFACE
|
||||
bool "CPU Jitter RNG Test Interface"
|
||||
depends on CRYPTO_JITTERENTROPY
|
||||
help
|
||||
The test interface allows a privileged process to capture
|
||||
the raw unconditioned high resolution time stamp noise that
|
||||
is collected by the Jitter RNG for statistical analysis. As
|
||||
this data is used at the same time to generate random bits,
|
||||
the Jitter RNG operates in an insecure mode as long as the
|
||||
recording is enabled. This interface therefore is only
|
||||
intended for testing purposes and is not suitable for
|
||||
production systems.
|
||||
|
||||
The raw noise data can be obtained using the jent_raw_hires
|
||||
debugfs file. Using the option
|
||||
jitterentropy_testing.boot_raw_hires_test=1 the raw noise of
|
||||
the first 1000 entropy events since boot can be sampled.
|
||||
|
||||
If unsure, select N.
|
||||
|
||||
config CRYPTO_KDF800108_CTR
|
||||
tristate
|
||||
select CRYPTO_HMAC
|
||||
@ -1372,6 +1401,9 @@ config CRYPTO_STATS
|
||||
help
|
||||
Enable the gathering of crypto stats.
|
||||
|
||||
Enabling this option reduces the performance of the crypto API. It
|
||||
should only be enabled when there is actually a use case for it.
|
||||
|
||||
This collects data sizes, numbers of requests, and numbers
|
||||
of errors processed by:
|
||||
- AEAD ciphers (encrypt, decrypt)
|
||||
|
@ -14,7 +14,7 @@ crypto_algapi-y := algapi.o scatterwalk.o $(crypto_algapi-y)
|
||||
obj-$(CONFIG_CRYPTO_ALGAPI2) += crypto_algapi.o
|
||||
|
||||
obj-$(CONFIG_CRYPTO_AEAD2) += aead.o
|
||||
obj-$(CONFIG_CRYPTO_AEAD2) += geniv.o
|
||||
obj-$(CONFIG_CRYPTO_GENIV) += geniv.o
|
||||
|
||||
obj-$(CONFIG_CRYPTO_SKCIPHER2) += skcipher.o
|
||||
obj-$(CONFIG_CRYPTO_SEQIV) += seqiv.o
|
||||
@ -25,6 +25,7 @@ crypto_hash-y += shash.o
|
||||
obj-$(CONFIG_CRYPTO_HASH2) += crypto_hash.o
|
||||
|
||||
obj-$(CONFIG_CRYPTO_AKCIPHER2) += akcipher.o
|
||||
obj-$(CONFIG_CRYPTO_SIG2) += sig.o
|
||||
obj-$(CONFIG_CRYPTO_KPP2) += kpp.o
|
||||
|
||||
dh_generic-y := dh.o
|
||||
@ -171,6 +172,7 @@ CFLAGS_jitterentropy.o = -O0
|
||||
KASAN_SANITIZE_jitterentropy.o = n
|
||||
UBSAN_SANITIZE_jitterentropy.o = n
|
||||
jitterentropy_rng-y := jitterentropy.o jitterentropy-kcapi.o
|
||||
obj-$(CONFIG_CRYPTO_JITTERENTROPY_TESTINTERFACE) += jitterentropy-testing.o
|
||||
obj-$(CONFIG_CRYPTO_TEST) += tcrypt.o
|
||||
obj-$(CONFIG_CRYPTO_GHASH) += ghash-generic.o
|
||||
obj-$(CONFIG_CRYPTO_POLYVAL) += polyval-generic.o
|
||||
|
17
crypto/aegis-neon.h
Normal file
17
crypto/aegis-neon.h
Normal file
@ -0,0 +1,17 @@
|
||||
// SPDX-License-Identifier: GPL-2.0-or-later
|
||||
|
||||
#ifndef _AEGIS_NEON_H
|
||||
#define _AEGIS_NEON_H
|
||||
|
||||
void crypto_aegis128_init_neon(void *state, const void *key, const void *iv);
|
||||
void crypto_aegis128_update_neon(void *state, const void *msg);
|
||||
void crypto_aegis128_encrypt_chunk_neon(void *state, void *dst, const void *src,
|
||||
unsigned int size);
|
||||
void crypto_aegis128_decrypt_chunk_neon(void *state, void *dst, const void *src,
|
||||
unsigned int size);
|
||||
int crypto_aegis128_final_neon(void *state, void *tag_xor,
|
||||
unsigned int assoclen,
|
||||
unsigned int cryptlen,
|
||||
unsigned int authsize);
|
||||
|
||||
#endif
|
@ -16,6 +16,7 @@
|
||||
#define AEGIS_BLOCK_SIZE 16
|
||||
|
||||
#include <stddef.h>
|
||||
#include "aegis-neon.h"
|
||||
|
||||
extern int aegis128_have_aes_insn;
|
||||
|
||||
|
@ -7,17 +7,7 @@
|
||||
#include <asm/neon.h>
|
||||
|
||||
#include "aegis.h"
|
||||
|
||||
void crypto_aegis128_init_neon(void *state, const void *key, const void *iv);
|
||||
void crypto_aegis128_update_neon(void *state, const void *msg);
|
||||
void crypto_aegis128_encrypt_chunk_neon(void *state, void *dst, const void *src,
|
||||
unsigned int size);
|
||||
void crypto_aegis128_decrypt_chunk_neon(void *state, void *dst, const void *src,
|
||||
unsigned int size);
|
||||
int crypto_aegis128_final_neon(void *state, void *tag_xor,
|
||||
unsigned int assoclen,
|
||||
unsigned int cryptlen,
|
||||
unsigned int authsize);
|
||||
#include "aegis-neon.h"
|
||||
|
||||
int aegis128_have_aes_insn __ro_after_init;
|
||||
|
||||
|
@ -31,12 +31,6 @@ struct ahash_request_priv {
|
||||
void *ubuf[] CRYPTO_MINALIGN_ATTR;
|
||||
};
|
||||
|
||||
static inline struct ahash_alg *crypto_ahash_alg(struct crypto_ahash *hash)
|
||||
{
|
||||
return container_of(crypto_hash_alg_common(hash), struct ahash_alg,
|
||||
halg);
|
||||
}
|
||||
|
||||
static int hash_walk_next(struct crypto_hash_walk *walk)
|
||||
{
|
||||
unsigned int alignmask = walk->alignmask;
|
||||
@ -432,6 +426,8 @@ static int crypto_ahash_init_tfm(struct crypto_tfm *tfm)
|
||||
|
||||
hash->setkey = ahash_nosetkey;
|
||||
|
||||
crypto_ahash_set_statesize(hash, alg->halg.statesize);
|
||||
|
||||
if (tfm->__crt_alg->cra_type != &crypto_ahash_type)
|
||||
return crypto_init_shash_ops_async(tfm);
|
||||
|
||||
@ -573,6 +569,7 @@ struct crypto_ahash *crypto_clone_ahash(struct crypto_ahash *hash)
|
||||
nhash->import = hash->import;
|
||||
nhash->setkey = hash->setkey;
|
||||
nhash->reqsize = hash->reqsize;
|
||||
nhash->statesize = hash->statesize;
|
||||
|
||||
if (tfm->__crt_alg->cra_type != &crypto_ahash_type)
|
||||
return crypto_clone_shash_ops_async(nhash, hash);
|
||||
|
@ -10,6 +10,7 @@
|
||||
#include <linux/errno.h>
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/scatterlist.h>
|
||||
#include <linux/seq_file.h>
|
||||
#include <linux/slab.h>
|
||||
#include <linux/string.h>
|
||||
@ -17,6 +18,8 @@
|
||||
|
||||
#include "internal.h"
|
||||
|
||||
#define CRYPTO_ALG_TYPE_AHASH_MASK 0x0000000e
|
||||
|
||||
static int __maybe_unused crypto_akcipher_report(
|
||||
struct sk_buff *skb, struct crypto_alg *alg)
|
||||
{
|
||||
@ -105,7 +108,7 @@ static const struct crypto_type crypto_akcipher_type = {
|
||||
.report_stat = crypto_akcipher_report_stat,
|
||||
#endif
|
||||
.maskclear = ~CRYPTO_ALG_TYPE_MASK,
|
||||
.maskset = CRYPTO_ALG_TYPE_MASK,
|
||||
.maskset = CRYPTO_ALG_TYPE_AHASH_MASK,
|
||||
.type = CRYPTO_ALG_TYPE_AKCIPHER,
|
||||
.tfmsize = offsetof(struct crypto_akcipher, base),
|
||||
};
|
||||
@ -186,5 +189,124 @@ int akcipher_register_instance(struct crypto_template *tmpl,
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(akcipher_register_instance);
|
||||
|
||||
int crypto_akcipher_sync_prep(struct crypto_akcipher_sync_data *data)
|
||||
{
|
||||
unsigned int reqsize = crypto_akcipher_reqsize(data->tfm);
|
||||
struct akcipher_request *req;
|
||||
struct scatterlist *sg;
|
||||
unsigned int mlen;
|
||||
unsigned int len;
|
||||
u8 *buf;
|
||||
|
||||
if (data->dst)
|
||||
mlen = max(data->slen, data->dlen);
|
||||
else
|
||||
mlen = data->slen + data->dlen;
|
||||
|
||||
len = sizeof(*req) + reqsize + mlen;
|
||||
if (len < mlen)
|
||||
return -EOVERFLOW;
|
||||
|
||||
req = kzalloc(len, GFP_KERNEL);
|
||||
if (!req)
|
||||
return -ENOMEM;
|
||||
|
||||
data->req = req;
|
||||
akcipher_request_set_tfm(req, data->tfm);
|
||||
|
||||
buf = (u8 *)(req + 1) + reqsize;
|
||||
data->buf = buf;
|
||||
memcpy(buf, data->src, data->slen);
|
||||
|
||||
sg = &data->sg;
|
||||
sg_init_one(sg, buf, mlen);
|
||||
akcipher_request_set_crypt(req, sg, data->dst ? sg : NULL,
|
||||
data->slen, data->dlen);
|
||||
|
||||
crypto_init_wait(&data->cwait);
|
||||
akcipher_request_set_callback(req, CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
crypto_req_done, &data->cwait);
|
||||
|
||||
return 0;
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_akcipher_sync_prep);
|
||||
|
||||
int crypto_akcipher_sync_post(struct crypto_akcipher_sync_data *data, int err)
|
||||
{
|
||||
err = crypto_wait_req(err, &data->cwait);
|
||||
if (data->dst)
|
||||
memcpy(data->dst, data->buf, data->dlen);
|
||||
data->dlen = data->req->dst_len;
|
||||
kfree_sensitive(data->req);
|
||||
return err;
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_akcipher_sync_post);
|
||||
|
||||
int crypto_akcipher_sync_encrypt(struct crypto_akcipher *tfm,
|
||||
const void *src, unsigned int slen,
|
||||
void *dst, unsigned int dlen)
|
||||
{
|
||||
struct crypto_akcipher_sync_data data = {
|
||||
.tfm = tfm,
|
||||
.src = src,
|
||||
.dst = dst,
|
||||
.slen = slen,
|
||||
.dlen = dlen,
|
||||
};
|
||||
|
||||
return crypto_akcipher_sync_prep(&data) ?:
|
||||
crypto_akcipher_sync_post(&data,
|
||||
crypto_akcipher_encrypt(data.req));
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_akcipher_sync_encrypt);
|
||||
|
||||
int crypto_akcipher_sync_decrypt(struct crypto_akcipher *tfm,
|
||||
const void *src, unsigned int slen,
|
||||
void *dst, unsigned int dlen)
|
||||
{
|
||||
struct crypto_akcipher_sync_data data = {
|
||||
.tfm = tfm,
|
||||
.src = src,
|
||||
.dst = dst,
|
||||
.slen = slen,
|
||||
.dlen = dlen,
|
||||
};
|
||||
|
||||
return crypto_akcipher_sync_prep(&data) ?:
|
||||
crypto_akcipher_sync_post(&data,
|
||||
crypto_akcipher_decrypt(data.req)) ?:
|
||||
data.dlen;
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_akcipher_sync_decrypt);
|
||||
|
||||
static void crypto_exit_akcipher_ops_sig(struct crypto_tfm *tfm)
|
||||
{
|
||||
struct crypto_akcipher **ctx = crypto_tfm_ctx(tfm);
|
||||
|
||||
crypto_free_akcipher(*ctx);
|
||||
}
|
||||
|
||||
int crypto_init_akcipher_ops_sig(struct crypto_tfm *tfm)
|
||||
{
|
||||
struct crypto_akcipher **ctx = crypto_tfm_ctx(tfm);
|
||||
struct crypto_alg *calg = tfm->__crt_alg;
|
||||
struct crypto_akcipher *akcipher;
|
||||
|
||||
if (!crypto_mod_get(calg))
|
||||
return -EAGAIN;
|
||||
|
||||
akcipher = crypto_create_tfm(calg, &crypto_akcipher_type);
|
||||
if (IS_ERR(akcipher)) {
|
||||
crypto_mod_put(calg);
|
||||
return PTR_ERR(akcipher);
|
||||
}
|
||||
|
||||
*ctx = akcipher;
|
||||
tfm->exit = crypto_exit_akcipher_ops_sig;
|
||||
|
||||
return 0;
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_init_akcipher_ops_sig);
|
||||
|
||||
MODULE_LICENSE("GPL");
|
||||
MODULE_DESCRIPTION("Generic public key cipher type");
|
||||
|
27
crypto/api.c
27
crypto/api.c
@ -345,15 +345,6 @@ struct crypto_alg *crypto_alg_mod_lookup(const char *name, u32 type, u32 mask)
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_alg_mod_lookup);
|
||||
|
||||
static int crypto_init_ops(struct crypto_tfm *tfm, u32 type, u32 mask)
|
||||
{
|
||||
const struct crypto_type *type_obj = tfm->__crt_alg->cra_type;
|
||||
|
||||
if (type_obj)
|
||||
return type_obj->init(tfm, type, mask);
|
||||
return 0;
|
||||
}
|
||||
|
||||
static void crypto_exit_ops(struct crypto_tfm *tfm)
|
||||
{
|
||||
const struct crypto_type *type = tfm->__crt_alg->cra_type;
|
||||
@ -395,25 +386,21 @@ void crypto_shoot_alg(struct crypto_alg *alg)
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_shoot_alg);
|
||||
|
||||
struct crypto_tfm *__crypto_alloc_tfm(struct crypto_alg *alg, u32 type,
|
||||
u32 mask)
|
||||
struct crypto_tfm *__crypto_alloc_tfmgfp(struct crypto_alg *alg, u32 type,
|
||||
u32 mask, gfp_t gfp)
|
||||
{
|
||||
struct crypto_tfm *tfm = NULL;
|
||||
unsigned int tfm_size;
|
||||
int err = -ENOMEM;
|
||||
|
||||
tfm_size = sizeof(*tfm) + crypto_ctxsize(alg, type, mask);
|
||||
tfm = kzalloc(tfm_size, GFP_KERNEL);
|
||||
tfm = kzalloc(tfm_size, gfp);
|
||||
if (tfm == NULL)
|
||||
goto out_err;
|
||||
|
||||
tfm->__crt_alg = alg;
|
||||
refcount_set(&tfm->refcnt, 1);
|
||||
|
||||
err = crypto_init_ops(tfm, type, mask);
|
||||
if (err)
|
||||
goto out_free_tfm;
|
||||
|
||||
if (!tfm->exit && alg->cra_init && (err = alg->cra_init(tfm)))
|
||||
goto cra_init_failed;
|
||||
|
||||
@ -421,7 +408,6 @@ struct crypto_tfm *__crypto_alloc_tfm(struct crypto_alg *alg, u32 type,
|
||||
|
||||
cra_init_failed:
|
||||
crypto_exit_ops(tfm);
|
||||
out_free_tfm:
|
||||
if (err == -EAGAIN)
|
||||
crypto_shoot_alg(alg);
|
||||
kfree(tfm);
|
||||
@ -430,6 +416,13 @@ struct crypto_tfm *__crypto_alloc_tfm(struct crypto_alg *alg, u32 type,
|
||||
out:
|
||||
return tfm;
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(__crypto_alloc_tfmgfp);
|
||||
|
||||
struct crypto_tfm *__crypto_alloc_tfm(struct crypto_alg *alg, u32 type,
|
||||
u32 mask)
|
||||
{
|
||||
return __crypto_alloc_tfmgfp(alg, type, mask, GFP_KERNEL);
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(__crypto_alloc_tfm);
|
||||
|
||||
/*
|
||||
|
@ -8,18 +8,17 @@
|
||||
*/
|
||||
|
||||
#define pr_fmt(fmt) "PKEY: "fmt
|
||||
#include <linux/module.h>
|
||||
#include <linux/export.h>
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/slab.h>
|
||||
#include <linux/seq_file.h>
|
||||
#include <linux/scatterlist.h>
|
||||
#include <linux/asn1.h>
|
||||
#include <keys/asymmetric-subtype.h>
|
||||
#include <crypto/public_key.h>
|
||||
#include <crypto/akcipher.h>
|
||||
#include <crypto/sm2.h>
|
||||
#include <crypto/sm3_base.h>
|
||||
#include <crypto/public_key.h>
|
||||
#include <crypto/sig.h>
|
||||
#include <keys/asymmetric-subtype.h>
|
||||
#include <linux/asn1.h>
|
||||
#include <linux/err.h>
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/seq_file.h>
|
||||
#include <linux/slab.h>
|
||||
#include <linux/string.h>
|
||||
|
||||
MODULE_DESCRIPTION("In-software asymmetric public-key subtype");
|
||||
MODULE_AUTHOR("Red Hat, Inc.");
|
||||
@ -67,10 +66,13 @@ static void public_key_destroy(void *payload0, void *payload3)
|
||||
static int
|
||||
software_key_determine_akcipher(const struct public_key *pkey,
|
||||
const char *encoding, const char *hash_algo,
|
||||
char alg_name[CRYPTO_MAX_ALG_NAME])
|
||||
char alg_name[CRYPTO_MAX_ALG_NAME], bool *sig,
|
||||
enum kernel_pkey_operation op)
|
||||
{
|
||||
int n;
|
||||
|
||||
*sig = true;
|
||||
|
||||
if (!encoding)
|
||||
return -EINVAL;
|
||||
|
||||
@ -79,14 +81,18 @@ software_key_determine_akcipher(const struct public_key *pkey,
|
||||
* RSA signatures usually use EMSA-PKCS1-1_5 [RFC3447 sec 8.2].
|
||||
*/
|
||||
if (strcmp(encoding, "pkcs1") == 0) {
|
||||
if (!hash_algo)
|
||||
if (!hash_algo) {
|
||||
*sig = false;
|
||||
n = snprintf(alg_name, CRYPTO_MAX_ALG_NAME,
|
||||
"pkcs1pad(%s)",
|
||||
pkey->pkey_algo);
|
||||
else
|
||||
} else {
|
||||
*sig = op == kernel_pkey_sign ||
|
||||
op == kernel_pkey_verify;
|
||||
n = snprintf(alg_name, CRYPTO_MAX_ALG_NAME,
|
||||
"pkcs1pad(%s,%s)",
|
||||
pkey->pkey_algo, hash_algo);
|
||||
}
|
||||
return n >= CRYPTO_MAX_ALG_NAME ? -EINVAL : 0;
|
||||
}
|
||||
if (strcmp(encoding, "raw") != 0)
|
||||
@ -97,6 +103,7 @@ software_key_determine_akcipher(const struct public_key *pkey,
|
||||
*/
|
||||
if (hash_algo)
|
||||
return -EINVAL;
|
||||
*sig = false;
|
||||
} else if (strncmp(pkey->pkey_algo, "ecdsa", 5) == 0) {
|
||||
if (strcmp(encoding, "x962") != 0)
|
||||
return -EINVAL;
|
||||
@ -154,37 +161,70 @@ static int software_key_query(const struct kernel_pkey_params *params,
|
||||
struct crypto_akcipher *tfm;
|
||||
struct public_key *pkey = params->key->payload.data[asym_crypto];
|
||||
char alg_name[CRYPTO_MAX_ALG_NAME];
|
||||
struct crypto_sig *sig;
|
||||
u8 *key, *ptr;
|
||||
int ret, len;
|
||||
bool issig;
|
||||
|
||||
ret = software_key_determine_akcipher(pkey, params->encoding,
|
||||
params->hash_algo, alg_name);
|
||||
params->hash_algo, alg_name,
|
||||
&issig, kernel_pkey_sign);
|
||||
if (ret < 0)
|
||||
return ret;
|
||||
|
||||
tfm = crypto_alloc_akcipher(alg_name, 0, 0);
|
||||
if (IS_ERR(tfm))
|
||||
return PTR_ERR(tfm);
|
||||
|
||||
ret = -ENOMEM;
|
||||
key = kmalloc(pkey->keylen + sizeof(u32) * 2 + pkey->paramlen,
|
||||
GFP_KERNEL);
|
||||
if (!key)
|
||||
goto error_free_tfm;
|
||||
return -ENOMEM;
|
||||
|
||||
memcpy(key, pkey->key, pkey->keylen);
|
||||
ptr = key + pkey->keylen;
|
||||
ptr = pkey_pack_u32(ptr, pkey->algo);
|
||||
ptr = pkey_pack_u32(ptr, pkey->paramlen);
|
||||
memcpy(ptr, pkey->params, pkey->paramlen);
|
||||
|
||||
if (issig) {
|
||||
sig = crypto_alloc_sig(alg_name, 0, 0);
|
||||
if (IS_ERR(sig))
|
||||
goto error_free_key;
|
||||
|
||||
if (pkey->key_is_private)
|
||||
ret = crypto_sig_set_privkey(sig, key, pkey->keylen);
|
||||
else
|
||||
ret = crypto_sig_set_pubkey(sig, key, pkey->keylen);
|
||||
if (ret < 0)
|
||||
goto error_free_tfm;
|
||||
|
||||
len = crypto_sig_maxsize(sig);
|
||||
|
||||
info->supported_ops = KEYCTL_SUPPORTS_VERIFY;
|
||||
if (pkey->key_is_private)
|
||||
info->supported_ops |= KEYCTL_SUPPORTS_SIGN;
|
||||
|
||||
if (strcmp(params->encoding, "pkcs1") == 0) {
|
||||
info->supported_ops |= KEYCTL_SUPPORTS_ENCRYPT;
|
||||
if (pkey->key_is_private)
|
||||
info->supported_ops |= KEYCTL_SUPPORTS_DECRYPT;
|
||||
}
|
||||
} else {
|
||||
tfm = crypto_alloc_akcipher(alg_name, 0, 0);
|
||||
if (IS_ERR(tfm))
|
||||
goto error_free_key;
|
||||
|
||||
if (pkey->key_is_private)
|
||||
ret = crypto_akcipher_set_priv_key(tfm, key, pkey->keylen);
|
||||
else
|
||||
ret = crypto_akcipher_set_pub_key(tfm, key, pkey->keylen);
|
||||
if (ret < 0)
|
||||
goto error_free_key;
|
||||
goto error_free_tfm;
|
||||
|
||||
len = crypto_akcipher_maxsize(tfm);
|
||||
|
||||
info->supported_ops = KEYCTL_SUPPORTS_ENCRYPT;
|
||||
if (pkey->key_is_private)
|
||||
info->supported_ops |= KEYCTL_SUPPORTS_DECRYPT;
|
||||
}
|
||||
|
||||
info->key_size = len * 8;
|
||||
|
||||
if (strncmp(pkey->pkey_algo, "ecdsa", 5) == 0) {
|
||||
@ -210,17 +250,16 @@ static int software_key_query(const struct kernel_pkey_params *params,
|
||||
|
||||
info->max_enc_size = len;
|
||||
info->max_dec_size = len;
|
||||
info->supported_ops = (KEYCTL_SUPPORTS_ENCRYPT |
|
||||
KEYCTL_SUPPORTS_VERIFY);
|
||||
if (pkey->key_is_private)
|
||||
info->supported_ops |= (KEYCTL_SUPPORTS_DECRYPT |
|
||||
KEYCTL_SUPPORTS_SIGN);
|
||||
|
||||
ret = 0;
|
||||
|
||||
error_free_tfm:
|
||||
if (issig)
|
||||
crypto_free_sig(sig);
|
||||
else
|
||||
crypto_free_akcipher(tfm);
|
||||
error_free_key:
|
||||
kfree(key);
|
||||
error_free_tfm:
|
||||
crypto_free_akcipher(tfm);
|
||||
pr_devel("<==%s() = %d\n", __func__, ret);
|
||||
return ret;
|
||||
}
|
||||
@ -232,34 +271,26 @@ static int software_key_eds_op(struct kernel_pkey_params *params,
|
||||
const void *in, void *out)
|
||||
{
|
||||
const struct public_key *pkey = params->key->payload.data[asym_crypto];
|
||||
struct akcipher_request *req;
|
||||
struct crypto_akcipher *tfm;
|
||||
struct crypto_wait cwait;
|
||||
struct scatterlist in_sg, out_sg;
|
||||
char alg_name[CRYPTO_MAX_ALG_NAME];
|
||||
struct crypto_akcipher *tfm;
|
||||
struct crypto_sig *sig;
|
||||
char *key, *ptr;
|
||||
bool issig;
|
||||
int ksz;
|
||||
int ret;
|
||||
|
||||
pr_devel("==>%s()\n", __func__);
|
||||
|
||||
ret = software_key_determine_akcipher(pkey, params->encoding,
|
||||
params->hash_algo, alg_name);
|
||||
params->hash_algo, alg_name,
|
||||
&issig, params->op);
|
||||
if (ret < 0)
|
||||
return ret;
|
||||
|
||||
tfm = crypto_alloc_akcipher(alg_name, 0, 0);
|
||||
if (IS_ERR(tfm))
|
||||
return PTR_ERR(tfm);
|
||||
|
||||
ret = -ENOMEM;
|
||||
req = akcipher_request_alloc(tfm, GFP_KERNEL);
|
||||
if (!req)
|
||||
goto error_free_tfm;
|
||||
|
||||
key = kmalloc(pkey->keylen + sizeof(u32) * 2 + pkey->paramlen,
|
||||
GFP_KERNEL);
|
||||
if (!key)
|
||||
goto error_free_req;
|
||||
return -ENOMEM;
|
||||
|
||||
memcpy(key, pkey->key, pkey->keylen);
|
||||
ptr = key + pkey->keylen;
|
||||
@ -267,123 +298,84 @@ static int software_key_eds_op(struct kernel_pkey_params *params,
|
||||
ptr = pkey_pack_u32(ptr, pkey->paramlen);
|
||||
memcpy(ptr, pkey->params, pkey->paramlen);
|
||||
|
||||
if (issig) {
|
||||
sig = crypto_alloc_sig(alg_name, 0, 0);
|
||||
if (IS_ERR(sig))
|
||||
goto error_free_key;
|
||||
|
||||
if (pkey->key_is_private)
|
||||
ret = crypto_sig_set_privkey(sig, key, pkey->keylen);
|
||||
else
|
||||
ret = crypto_sig_set_pubkey(sig, key, pkey->keylen);
|
||||
if (ret)
|
||||
goto error_free_tfm;
|
||||
|
||||
ksz = crypto_sig_maxsize(sig);
|
||||
} else {
|
||||
tfm = crypto_alloc_akcipher(alg_name, 0, 0);
|
||||
if (IS_ERR(tfm))
|
||||
goto error_free_key;
|
||||
|
||||
if (pkey->key_is_private)
|
||||
ret = crypto_akcipher_set_priv_key(tfm, key, pkey->keylen);
|
||||
else
|
||||
ret = crypto_akcipher_set_pub_key(tfm, key, pkey->keylen);
|
||||
if (ret)
|
||||
goto error_free_key;
|
||||
goto error_free_tfm;
|
||||
|
||||
sg_init_one(&in_sg, in, params->in_len);
|
||||
sg_init_one(&out_sg, out, params->out_len);
|
||||
akcipher_request_set_crypt(req, &in_sg, &out_sg, params->in_len,
|
||||
params->out_len);
|
||||
crypto_init_wait(&cwait);
|
||||
akcipher_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG |
|
||||
CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
crypto_req_done, &cwait);
|
||||
ksz = crypto_akcipher_maxsize(tfm);
|
||||
}
|
||||
|
||||
ret = -EINVAL;
|
||||
|
||||
/* Perform the encryption calculation. */
|
||||
switch (params->op) {
|
||||
case kernel_pkey_encrypt:
|
||||
ret = crypto_akcipher_encrypt(req);
|
||||
if (issig)
|
||||
break;
|
||||
ret = crypto_akcipher_sync_encrypt(tfm, in, params->in_len,
|
||||
out, params->out_len);
|
||||
break;
|
||||
case kernel_pkey_decrypt:
|
||||
ret = crypto_akcipher_decrypt(req);
|
||||
if (issig)
|
||||
break;
|
||||
ret = crypto_akcipher_sync_decrypt(tfm, in, params->in_len,
|
||||
out, params->out_len);
|
||||
break;
|
||||
case kernel_pkey_sign:
|
||||
ret = crypto_akcipher_sign(req);
|
||||
if (!issig)
|
||||
break;
|
||||
ret = crypto_sig_sign(sig, in, params->in_len,
|
||||
out, params->out_len);
|
||||
break;
|
||||
default:
|
||||
BUG();
|
||||
}
|
||||
|
||||
ret = crypto_wait_req(ret, &cwait);
|
||||
if (ret == 0)
|
||||
ret = req->dst_len;
|
||||
ret = ksz;
|
||||
|
||||
error_free_tfm:
|
||||
if (issig)
|
||||
crypto_free_sig(sig);
|
||||
else
|
||||
crypto_free_akcipher(tfm);
|
||||
error_free_key:
|
||||
kfree(key);
|
||||
error_free_req:
|
||||
akcipher_request_free(req);
|
||||
error_free_tfm:
|
||||
crypto_free_akcipher(tfm);
|
||||
pr_devel("<==%s() = %d\n", __func__, ret);
|
||||
return ret;
|
||||
}
|
||||
|
||||
#if IS_REACHABLE(CONFIG_CRYPTO_SM2)
|
||||
static int cert_sig_digest_update(const struct public_key_signature *sig,
|
||||
struct crypto_akcipher *tfm_pkey)
|
||||
{
|
||||
struct crypto_shash *tfm;
|
||||
struct shash_desc *desc;
|
||||
size_t desc_size;
|
||||
unsigned char dgst[SM3_DIGEST_SIZE];
|
||||
int ret;
|
||||
|
||||
BUG_ON(!sig->data);
|
||||
|
||||
/* SM2 signatures always use the SM3 hash algorithm */
|
||||
if (!sig->hash_algo || strcmp(sig->hash_algo, "sm3") != 0)
|
||||
return -EINVAL;
|
||||
|
||||
ret = sm2_compute_z_digest(tfm_pkey, SM2_DEFAULT_USERID,
|
||||
SM2_DEFAULT_USERID_LEN, dgst);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
tfm = crypto_alloc_shash(sig->hash_algo, 0, 0);
|
||||
if (IS_ERR(tfm))
|
||||
return PTR_ERR(tfm);
|
||||
|
||||
desc_size = crypto_shash_descsize(tfm) + sizeof(*desc);
|
||||
desc = kzalloc(desc_size, GFP_KERNEL);
|
||||
if (!desc) {
|
||||
ret = -ENOMEM;
|
||||
goto error_free_tfm;
|
||||
}
|
||||
|
||||
desc->tfm = tfm;
|
||||
|
||||
ret = crypto_shash_init(desc);
|
||||
if (ret < 0)
|
||||
goto error_free_desc;
|
||||
|
||||
ret = crypto_shash_update(desc, dgst, SM3_DIGEST_SIZE);
|
||||
if (ret < 0)
|
||||
goto error_free_desc;
|
||||
|
||||
ret = crypto_shash_finup(desc, sig->data, sig->data_size, sig->digest);
|
||||
|
||||
error_free_desc:
|
||||
kfree(desc);
|
||||
error_free_tfm:
|
||||
crypto_free_shash(tfm);
|
||||
return ret;
|
||||
}
|
||||
#else
|
||||
static inline int cert_sig_digest_update(
|
||||
const struct public_key_signature *sig,
|
||||
struct crypto_akcipher *tfm_pkey)
|
||||
{
|
||||
return -ENOTSUPP;
|
||||
}
|
||||
#endif /* ! IS_REACHABLE(CONFIG_CRYPTO_SM2) */
|
||||
|
||||
/*
|
||||
* Verify a signature using a public key.
|
||||
*/
|
||||
int public_key_verify_signature(const struct public_key *pkey,
|
||||
const struct public_key_signature *sig)
|
||||
{
|
||||
struct crypto_wait cwait;
|
||||
struct crypto_akcipher *tfm;
|
||||
struct akcipher_request *req;
|
||||
struct scatterlist src_sg;
|
||||
char alg_name[CRYPTO_MAX_ALG_NAME];
|
||||
char *buf, *ptr;
|
||||
size_t buf_len;
|
||||
struct crypto_sig *tfm;
|
||||
char *key, *ptr;
|
||||
bool issig;
|
||||
int ret;
|
||||
|
||||
pr_devel("==>%s()\n", __func__);
|
||||
@ -408,63 +400,40 @@ int public_key_verify_signature(const struct public_key *pkey,
|
||||
}
|
||||
|
||||
ret = software_key_determine_akcipher(pkey, sig->encoding,
|
||||
sig->hash_algo, alg_name);
|
||||
sig->hash_algo, alg_name,
|
||||
&issig, kernel_pkey_verify);
|
||||
if (ret < 0)
|
||||
return ret;
|
||||
|
||||
tfm = crypto_alloc_akcipher(alg_name, 0, 0);
|
||||
tfm = crypto_alloc_sig(alg_name, 0, 0);
|
||||
if (IS_ERR(tfm))
|
||||
return PTR_ERR(tfm);
|
||||
|
||||
ret = -ENOMEM;
|
||||
req = akcipher_request_alloc(tfm, GFP_KERNEL);
|
||||
if (!req)
|
||||
key = kmalloc(pkey->keylen + sizeof(u32) * 2 + pkey->paramlen,
|
||||
GFP_KERNEL);
|
||||
if (!key)
|
||||
goto error_free_tfm;
|
||||
|
||||
buf_len = max_t(size_t, pkey->keylen + sizeof(u32) * 2 + pkey->paramlen,
|
||||
sig->s_size + sig->digest_size);
|
||||
|
||||
buf = kmalloc(buf_len, GFP_KERNEL);
|
||||
if (!buf)
|
||||
goto error_free_req;
|
||||
|
||||
memcpy(buf, pkey->key, pkey->keylen);
|
||||
ptr = buf + pkey->keylen;
|
||||
memcpy(key, pkey->key, pkey->keylen);
|
||||
ptr = key + pkey->keylen;
|
||||
ptr = pkey_pack_u32(ptr, pkey->algo);
|
||||
ptr = pkey_pack_u32(ptr, pkey->paramlen);
|
||||
memcpy(ptr, pkey->params, pkey->paramlen);
|
||||
|
||||
if (pkey->key_is_private)
|
||||
ret = crypto_akcipher_set_priv_key(tfm, buf, pkey->keylen);
|
||||
ret = crypto_sig_set_privkey(tfm, key, pkey->keylen);
|
||||
else
|
||||
ret = crypto_akcipher_set_pub_key(tfm, buf, pkey->keylen);
|
||||
ret = crypto_sig_set_pubkey(tfm, key, pkey->keylen);
|
||||
if (ret)
|
||||
goto error_free_buf;
|
||||
goto error_free_key;
|
||||
|
||||
if (strcmp(pkey->pkey_algo, "sm2") == 0 && sig->data_size) {
|
||||
ret = cert_sig_digest_update(sig, tfm);
|
||||
if (ret)
|
||||
goto error_free_buf;
|
||||
}
|
||||
ret = crypto_sig_verify(tfm, sig->s, sig->s_size,
|
||||
sig->digest, sig->digest_size);
|
||||
|
||||
memcpy(buf, sig->s, sig->s_size);
|
||||
memcpy(buf + sig->s_size, sig->digest, sig->digest_size);
|
||||
|
||||
sg_init_one(&src_sg, buf, sig->s_size + sig->digest_size);
|
||||
akcipher_request_set_crypt(req, &src_sg, NULL, sig->s_size,
|
||||
sig->digest_size);
|
||||
crypto_init_wait(&cwait);
|
||||
akcipher_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG |
|
||||
CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
crypto_req_done, &cwait);
|
||||
ret = crypto_wait_req(crypto_akcipher_verify(req), &cwait);
|
||||
|
||||
error_free_buf:
|
||||
kfree(buf);
|
||||
error_free_req:
|
||||
akcipher_request_free(req);
|
||||
error_free_key:
|
||||
kfree(key);
|
||||
error_free_tfm:
|
||||
crypto_free_akcipher(tfm);
|
||||
crypto_free_sig(tfm);
|
||||
pr_devel("<==%s() = %d\n", __func__, ret);
|
||||
if (WARN_ON_ONCE(ret > 0))
|
||||
ret = -EINVAL;
|
||||
|
@ -6,13 +6,15 @@
|
||||
*/
|
||||
|
||||
#define pr_fmt(fmt) "X.509: "fmt
|
||||
#include <crypto/hash.h>
|
||||
#include <crypto/sm2.h>
|
||||
#include <keys/asymmetric-parser.h>
|
||||
#include <keys/asymmetric-subtype.h>
|
||||
#include <keys/system_keyring.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/slab.h>
|
||||
#include <keys/asymmetric-subtype.h>
|
||||
#include <keys/asymmetric-parser.h>
|
||||
#include <keys/system_keyring.h>
|
||||
#include <crypto/hash.h>
|
||||
#include <linux/string.h>
|
||||
#include "asymmetric_keys.h"
|
||||
#include "x509_parser.h"
|
||||
|
||||
@ -30,9 +32,6 @@ int x509_get_sig_params(struct x509_certificate *cert)
|
||||
|
||||
pr_devel("==>%s()\n", __func__);
|
||||
|
||||
sig->data = cert->tbs;
|
||||
sig->data_size = cert->tbs_size;
|
||||
|
||||
sig->s = kmemdup(cert->raw_sig, cert->raw_sig_size, GFP_KERNEL);
|
||||
if (!sig->s)
|
||||
return -ENOMEM;
|
||||
@ -65,7 +64,21 @@ int x509_get_sig_params(struct x509_certificate *cert)
|
||||
|
||||
desc->tfm = tfm;
|
||||
|
||||
ret = crypto_shash_digest(desc, cert->tbs, cert->tbs_size, sig->digest);
|
||||
if (strcmp(cert->pub->pkey_algo, "sm2") == 0) {
|
||||
ret = strcmp(sig->hash_algo, "sm3") != 0 ? -EINVAL :
|
||||
crypto_shash_init(desc) ?:
|
||||
sm2_compute_z_digest(desc, cert->pub->key,
|
||||
cert->pub->keylen, sig->digest) ?:
|
||||
crypto_shash_init(desc) ?:
|
||||
crypto_shash_update(desc, sig->digest,
|
||||
sig->digest_size) ?:
|
||||
crypto_shash_finup(desc, cert->tbs, cert->tbs_size,
|
||||
sig->digest);
|
||||
} else {
|
||||
ret = crypto_shash_digest(desc, cert->tbs, cert->tbs_size,
|
||||
sig->digest);
|
||||
}
|
||||
|
||||
if (ret < 0)
|
||||
goto error_2;
|
||||
|
||||
|
@ -90,3 +90,31 @@ void crypto_cipher_decrypt_one(struct crypto_cipher *tfm,
|
||||
cipher_crypt_one(tfm, dst, src, false);
|
||||
}
|
||||
EXPORT_SYMBOL_NS_GPL(crypto_cipher_decrypt_one, CRYPTO_INTERNAL);
|
||||
|
||||
struct crypto_cipher *crypto_clone_cipher(struct crypto_cipher *cipher)
|
||||
{
|
||||
struct crypto_tfm *tfm = crypto_cipher_tfm(cipher);
|
||||
struct crypto_alg *alg = tfm->__crt_alg;
|
||||
struct crypto_cipher *ncipher;
|
||||
struct crypto_tfm *ntfm;
|
||||
|
||||
if (alg->cra_init)
|
||||
return ERR_PTR(-ENOSYS);
|
||||
|
||||
if (unlikely(!crypto_mod_get(alg)))
|
||||
return ERR_PTR(-ESTALE);
|
||||
|
||||
ntfm = __crypto_alloc_tfmgfp(alg, CRYPTO_ALG_TYPE_CIPHER,
|
||||
CRYPTO_ALG_TYPE_MASK, GFP_ATOMIC);
|
||||
if (IS_ERR(ntfm)) {
|
||||
crypto_mod_put(alg);
|
||||
return ERR_CAST(ntfm);
|
||||
}
|
||||
|
||||
ntfm->crt_flags = tfm->crt_flags;
|
||||
|
||||
ncipher = __crypto_cipher_cast(ntfm);
|
||||
|
||||
return ncipher;
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_clone_cipher);
|
||||
|
@ -198,13 +198,14 @@ static int crypto_cmac_digest_final(struct shash_desc *pdesc, u8 *out)
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int cmac_init_tfm(struct crypto_tfm *tfm)
|
||||
static int cmac_init_tfm(struct crypto_shash *tfm)
|
||||
{
|
||||
struct shash_instance *inst = shash_alg_instance(tfm);
|
||||
struct cmac_tfm_ctx *ctx = crypto_shash_ctx(tfm);
|
||||
struct crypto_cipher_spawn *spawn;
|
||||
struct crypto_cipher *cipher;
|
||||
struct crypto_instance *inst = (void *)tfm->__crt_alg;
|
||||
struct crypto_cipher_spawn *spawn = crypto_instance_ctx(inst);
|
||||
struct cmac_tfm_ctx *ctx = crypto_tfm_ctx(tfm);
|
||||
|
||||
spawn = shash_instance_ctx(inst);
|
||||
cipher = crypto_spawn_cipher(spawn);
|
||||
if (IS_ERR(cipher))
|
||||
return PTR_ERR(cipher);
|
||||
@ -212,11 +213,26 @@ static int cmac_init_tfm(struct crypto_tfm *tfm)
|
||||
ctx->child = cipher;
|
||||
|
||||
return 0;
|
||||
};
|
||||
}
|
||||
|
||||
static void cmac_exit_tfm(struct crypto_tfm *tfm)
|
||||
static int cmac_clone_tfm(struct crypto_shash *tfm, struct crypto_shash *otfm)
|
||||
{
|
||||
struct cmac_tfm_ctx *ctx = crypto_tfm_ctx(tfm);
|
||||
struct cmac_tfm_ctx *octx = crypto_shash_ctx(otfm);
|
||||
struct cmac_tfm_ctx *ctx = crypto_shash_ctx(tfm);
|
||||
struct crypto_cipher *cipher;
|
||||
|
||||
cipher = crypto_clone_cipher(octx->child);
|
||||
if (IS_ERR(cipher))
|
||||
return PTR_ERR(cipher);
|
||||
|
||||
ctx->child = cipher;
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static void cmac_exit_tfm(struct crypto_shash *tfm)
|
||||
{
|
||||
struct cmac_tfm_ctx *ctx = crypto_shash_ctx(tfm);
|
||||
crypto_free_cipher(ctx->child);
|
||||
}
|
||||
|
||||
@ -274,13 +290,13 @@ static int cmac_create(struct crypto_template *tmpl, struct rtattr **tb)
|
||||
~(crypto_tfm_ctx_alignment() - 1))
|
||||
+ alg->cra_blocksize * 2;
|
||||
|
||||
inst->alg.base.cra_init = cmac_init_tfm;
|
||||
inst->alg.base.cra_exit = cmac_exit_tfm;
|
||||
|
||||
inst->alg.init = crypto_cmac_digest_init;
|
||||
inst->alg.update = crypto_cmac_digest_update;
|
||||
inst->alg.final = crypto_cmac_digest_final;
|
||||
inst->alg.setkey = crypto_cmac_digest_setkey;
|
||||
inst->alg.init_tfm = cmac_init_tfm;
|
||||
inst->alg.clone_tfm = cmac_clone_tfm;
|
||||
inst->alg.exit_tfm = cmac_exit_tfm;
|
||||
|
||||
inst->free = shash_free_singlespawn_instance;
|
||||
|
||||
|
@ -177,6 +177,7 @@ static int hmac_clone_tfm(struct crypto_shash *dst, struct crypto_shash *src)
|
||||
static void hmac_exit_tfm(struct crypto_shash *parent)
|
||||
{
|
||||
struct hmac_ctx *ctx = hmac_ctx(parent);
|
||||
|
||||
crypto_free_shash(ctx->hash);
|
||||
}
|
||||
|
||||
|
@ -18,9 +18,12 @@
|
||||
#include <linux/numa.h>
|
||||
#include <linux/refcount.h>
|
||||
#include <linux/rwsem.h>
|
||||
#include <linux/scatterlist.h>
|
||||
#include <linux/sched.h>
|
||||
#include <linux/types.h>
|
||||
|
||||
struct akcipher_request;
|
||||
struct crypto_akcipher;
|
||||
struct crypto_instance;
|
||||
struct crypto_template;
|
||||
|
||||
@ -32,6 +35,19 @@ struct crypto_larval {
|
||||
bool test_started;
|
||||
};
|
||||
|
||||
struct crypto_akcipher_sync_data {
|
||||
struct crypto_akcipher *tfm;
|
||||
const void *src;
|
||||
void *dst;
|
||||
unsigned int slen;
|
||||
unsigned int dlen;
|
||||
|
||||
struct akcipher_request *req;
|
||||
struct crypto_wait cwait;
|
||||
struct scatterlist sg;
|
||||
u8 *buf;
|
||||
};
|
||||
|
||||
enum {
|
||||
CRYPTOA_UNSPEC,
|
||||
CRYPTOA_ALG,
|
||||
@ -102,6 +118,8 @@ void crypto_remove_spawns(struct crypto_alg *alg, struct list_head *list,
|
||||
struct crypto_alg *nalg);
|
||||
void crypto_remove_final(struct list_head *list);
|
||||
void crypto_shoot_alg(struct crypto_alg *alg);
|
||||
struct crypto_tfm *__crypto_alloc_tfmgfp(struct crypto_alg *alg, u32 type,
|
||||
u32 mask, gfp_t gfp);
|
||||
struct crypto_tfm *__crypto_alloc_tfm(struct crypto_alg *alg, u32 type,
|
||||
u32 mask);
|
||||
void *crypto_create_tfm_node(struct crypto_alg *alg,
|
||||
@ -109,6 +127,10 @@ void *crypto_create_tfm_node(struct crypto_alg *alg,
|
||||
void *crypto_clone_tfm(const struct crypto_type *frontend,
|
||||
struct crypto_tfm *otfm);
|
||||
|
||||
int crypto_akcipher_sync_prep(struct crypto_akcipher_sync_data *data);
|
||||
int crypto_akcipher_sync_post(struct crypto_akcipher_sync_data *data, int err);
|
||||
int crypto_init_akcipher_ops_sig(struct crypto_tfm *tfm);
|
||||
|
||||
static inline void *crypto_create_tfm(struct crypto_alg *alg,
|
||||
const struct crypto_type *frontend)
|
||||
{
|
||||
|
@ -2,7 +2,7 @@
|
||||
* Non-physical true random number generator based on timing jitter --
|
||||
* Linux Kernel Crypto API specific code
|
||||
*
|
||||
* Copyright Stephan Mueller <smueller@chronox.de>, 2015
|
||||
* Copyright Stephan Mueller <smueller@chronox.de>, 2015 - 2023
|
||||
*
|
||||
* Redistribution and use in source and binary forms, with or without
|
||||
* modification, are permitted provided that the following conditions
|
||||
@ -37,6 +37,8 @@
|
||||
* DAMAGE.
|
||||
*/
|
||||
|
||||
#include <crypto/hash.h>
|
||||
#include <crypto/sha3.h>
|
||||
#include <linux/fips.h>
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/module.h>
|
||||
@ -46,6 +48,8 @@
|
||||
|
||||
#include "jitterentropy.h"
|
||||
|
||||
#define JENT_CONDITIONING_HASH "sha3-256-generic"
|
||||
|
||||
/***************************************************************************
|
||||
* Helper function
|
||||
***************************************************************************/
|
||||
@ -60,11 +64,6 @@ void jent_zfree(void *ptr)
|
||||
kfree_sensitive(ptr);
|
||||
}
|
||||
|
||||
void jent_memcpy(void *dest, const void *src, unsigned int n)
|
||||
{
|
||||
memcpy(dest, src, n);
|
||||
}
|
||||
|
||||
/*
|
||||
* Obtain a high-resolution time stamp value. The time stamp is used to measure
|
||||
* the execution time of a given code path and its variations. Hence, the time
|
||||
@ -89,6 +88,92 @@ void jent_get_nstime(__u64 *out)
|
||||
tmp = ktime_get_ns();
|
||||
|
||||
*out = tmp;
|
||||
jent_raw_hires_entropy_store(tmp);
|
||||
}
|
||||
|
||||
int jent_hash_time(void *hash_state, __u64 time, u8 *addtl,
|
||||
unsigned int addtl_len, __u64 hash_loop_cnt,
|
||||
unsigned int stuck)
|
||||
{
|
||||
struct shash_desc *hash_state_desc = (struct shash_desc *)hash_state;
|
||||
SHASH_DESC_ON_STACK(desc, hash_state_desc->tfm);
|
||||
u8 intermediary[SHA3_256_DIGEST_SIZE];
|
||||
__u64 j = 0;
|
||||
int ret;
|
||||
|
||||
desc->tfm = hash_state_desc->tfm;
|
||||
|
||||
if (sizeof(intermediary) != crypto_shash_digestsize(desc->tfm)) {
|
||||
pr_warn_ratelimited("Unexpected digest size\n");
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
/*
|
||||
* This loop fills a buffer which is injected into the entropy pool.
|
||||
* The main reason for this loop is to execute something over which we
|
||||
* can perform a timing measurement. The injection of the resulting
|
||||
* data into the pool is performed to ensure the result is used and
|
||||
* the compiler cannot optimize the loop away in case the result is not
|
||||
* used at all. Yet that data is considered "additional information"
|
||||
* considering the terminology from SP800-90A without any entropy.
|
||||
*
|
||||
* Note, it does not matter which or how much data you inject, we are
|
||||
* interested in one Keccack1600 compression operation performed with
|
||||
* the crypto_shash_final.
|
||||
*/
|
||||
for (j = 0; j < hash_loop_cnt; j++) {
|
||||
ret = crypto_shash_init(desc) ?:
|
||||
crypto_shash_update(desc, intermediary,
|
||||
sizeof(intermediary)) ?:
|
||||
crypto_shash_finup(desc, addtl, addtl_len, intermediary);
|
||||
if (ret)
|
||||
goto err;
|
||||
}
|
||||
|
||||
/*
|
||||
* Inject the data from the previous loop into the pool. This data is
|
||||
* not considered to contain any entropy, but it stirs the pool a bit.
|
||||
*/
|
||||
ret = crypto_shash_update(desc, intermediary, sizeof(intermediary));
|
||||
if (ret)
|
||||
goto err;
|
||||
|
||||
/*
|
||||
* Insert the time stamp into the hash context representing the pool.
|
||||
*
|
||||
* If the time stamp is stuck, do not finally insert the value into the
|
||||
* entropy pool. Although this operation should not do any harm even
|
||||
* when the time stamp has no entropy, SP800-90B requires that any
|
||||
* conditioning operation to have an identical amount of input data
|
||||
* according to section 3.1.5.
|
||||
*/
|
||||
if (!stuck) {
|
||||
ret = crypto_shash_update(hash_state_desc, (u8 *)&time,
|
||||
sizeof(__u64));
|
||||
}
|
||||
|
||||
err:
|
||||
shash_desc_zero(desc);
|
||||
memzero_explicit(intermediary, sizeof(intermediary));
|
||||
|
||||
return ret;
|
||||
}
|
||||
|
||||
int jent_read_random_block(void *hash_state, char *dst, unsigned int dst_len)
|
||||
{
|
||||
struct shash_desc *hash_state_desc = (struct shash_desc *)hash_state;
|
||||
u8 jent_block[SHA3_256_DIGEST_SIZE];
|
||||
/* Obtain data from entropy pool and re-initialize it */
|
||||
int ret = crypto_shash_final(hash_state_desc, jent_block) ?:
|
||||
crypto_shash_init(hash_state_desc) ?:
|
||||
crypto_shash_update(hash_state_desc, jent_block,
|
||||
sizeof(jent_block));
|
||||
|
||||
if (!ret && dst_len)
|
||||
memcpy(dst, jent_block, dst_len);
|
||||
|
||||
memzero_explicit(jent_block, sizeof(jent_block));
|
||||
return ret;
|
||||
}
|
||||
|
||||
/***************************************************************************
|
||||
@ -98,32 +183,82 @@ void jent_get_nstime(__u64 *out)
|
||||
struct jitterentropy {
|
||||
spinlock_t jent_lock;
|
||||
struct rand_data *entropy_collector;
|
||||
struct crypto_shash *tfm;
|
||||
struct shash_desc *sdesc;
|
||||
};
|
||||
|
||||
static int jent_kcapi_init(struct crypto_tfm *tfm)
|
||||
{
|
||||
struct jitterentropy *rng = crypto_tfm_ctx(tfm);
|
||||
int ret = 0;
|
||||
|
||||
rng->entropy_collector = jent_entropy_collector_alloc(1, 0);
|
||||
if (!rng->entropy_collector)
|
||||
ret = -ENOMEM;
|
||||
|
||||
spin_lock_init(&rng->jent_lock);
|
||||
return ret;
|
||||
}
|
||||
|
||||
static void jent_kcapi_cleanup(struct crypto_tfm *tfm)
|
||||
{
|
||||
struct jitterentropy *rng = crypto_tfm_ctx(tfm);
|
||||
|
||||
spin_lock(&rng->jent_lock);
|
||||
|
||||
if (rng->sdesc) {
|
||||
shash_desc_zero(rng->sdesc);
|
||||
kfree(rng->sdesc);
|
||||
}
|
||||
rng->sdesc = NULL;
|
||||
|
||||
if (rng->tfm)
|
||||
crypto_free_shash(rng->tfm);
|
||||
rng->tfm = NULL;
|
||||
|
||||
if (rng->entropy_collector)
|
||||
jent_entropy_collector_free(rng->entropy_collector);
|
||||
rng->entropy_collector = NULL;
|
||||
spin_unlock(&rng->jent_lock);
|
||||
}
|
||||
|
||||
static int jent_kcapi_init(struct crypto_tfm *tfm)
|
||||
{
|
||||
struct jitterentropy *rng = crypto_tfm_ctx(tfm);
|
||||
struct crypto_shash *hash;
|
||||
struct shash_desc *sdesc;
|
||||
int size, ret = 0;
|
||||
|
||||
spin_lock_init(&rng->jent_lock);
|
||||
|
||||
/*
|
||||
* Use SHA3-256 as conditioner. We allocate only the generic
|
||||
* implementation as we are not interested in high-performance. The
|
||||
* execution time of the SHA3 operation is measured and adds to the
|
||||
* Jitter RNG's unpredictable behavior. If we have a slower hash
|
||||
* implementation, the execution timing variations are larger. When
|
||||
* using a fast implementation, we would need to call it more often
|
||||
* as its variations are lower.
|
||||
*/
|
||||
hash = crypto_alloc_shash(JENT_CONDITIONING_HASH, 0, 0);
|
||||
if (IS_ERR(hash)) {
|
||||
pr_err("Cannot allocate conditioning digest\n");
|
||||
return PTR_ERR(hash);
|
||||
}
|
||||
rng->tfm = hash;
|
||||
|
||||
size = sizeof(struct shash_desc) + crypto_shash_descsize(hash);
|
||||
sdesc = kmalloc(size, GFP_KERNEL);
|
||||
if (!sdesc) {
|
||||
ret = -ENOMEM;
|
||||
goto err;
|
||||
}
|
||||
|
||||
sdesc->tfm = hash;
|
||||
crypto_shash_init(sdesc);
|
||||
rng->sdesc = sdesc;
|
||||
|
||||
rng->entropy_collector = jent_entropy_collector_alloc(1, 0, sdesc);
|
||||
if (!rng->entropy_collector) {
|
||||
ret = -ENOMEM;
|
||||
goto err;
|
||||
}
|
||||
|
||||
spin_lock_init(&rng->jent_lock);
|
||||
return 0;
|
||||
|
||||
err:
|
||||
jent_kcapi_cleanup(tfm);
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int jent_kcapi_random(struct crypto_rng *tfm,
|
||||
const u8 *src, unsigned int slen,
|
||||
u8 *rdata, unsigned int dlen)
|
||||
@ -180,20 +315,34 @@ static struct rng_alg jent_alg = {
|
||||
.cra_module = THIS_MODULE,
|
||||
.cra_init = jent_kcapi_init,
|
||||
.cra_exit = jent_kcapi_cleanup,
|
||||
|
||||
}
|
||||
};
|
||||
|
||||
static int __init jent_mod_init(void)
|
||||
{
|
||||
SHASH_DESC_ON_STACK(desc, tfm);
|
||||
struct crypto_shash *tfm;
|
||||
int ret = 0;
|
||||
|
||||
ret = jent_entropy_init();
|
||||
jent_testing_init();
|
||||
|
||||
tfm = crypto_alloc_shash(JENT_CONDITIONING_HASH, 0, 0);
|
||||
if (IS_ERR(tfm)) {
|
||||
jent_testing_exit();
|
||||
return PTR_ERR(tfm);
|
||||
}
|
||||
|
||||
desc->tfm = tfm;
|
||||
crypto_shash_init(desc);
|
||||
ret = jent_entropy_init(desc);
|
||||
shash_desc_zero(desc);
|
||||
crypto_free_shash(tfm);
|
||||
if (ret) {
|
||||
/* Handle permanent health test error */
|
||||
if (fips_enabled)
|
||||
panic("jitterentropy: Initialization failed with host not compliant with requirements: %d\n", ret);
|
||||
|
||||
jent_testing_exit();
|
||||
pr_info("jitterentropy: Initialization failed with host not compliant with requirements: %d\n", ret);
|
||||
return -EFAULT;
|
||||
}
|
||||
@ -202,6 +351,7 @@ static int __init jent_mod_init(void)
|
||||
|
||||
static void __exit jent_mod_exit(void)
|
||||
{
|
||||
jent_testing_exit();
|
||||
crypto_unregister_rng(&jent_alg);
|
||||
}
|
||||
|
||||
|
294
crypto/jitterentropy-testing.c
Normal file
294
crypto/jitterentropy-testing.c
Normal file
@ -0,0 +1,294 @@
|
||||
/* SPDX-License-Identifier: GPL-2.0 OR BSD-2-Clause */
|
||||
/*
|
||||
* Test interface for Jitter RNG.
|
||||
*
|
||||
* Copyright (C) 2023, Stephan Mueller <smueller@chronox.de>
|
||||
*/
|
||||
|
||||
#include <linux/debugfs.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/uaccess.h>
|
||||
|
||||
#include "jitterentropy.h"
|
||||
|
||||
#define JENT_TEST_RINGBUFFER_SIZE (1<<10)
|
||||
#define JENT_TEST_RINGBUFFER_MASK (JENT_TEST_RINGBUFFER_SIZE - 1)
|
||||
|
||||
struct jent_testing {
|
||||
u32 jent_testing_rb[JENT_TEST_RINGBUFFER_SIZE];
|
||||
u32 rb_reader;
|
||||
atomic_t rb_writer;
|
||||
atomic_t jent_testing_enabled;
|
||||
spinlock_t lock;
|
||||
wait_queue_head_t read_wait;
|
||||
};
|
||||
|
||||
static struct dentry *jent_raw_debugfs_root = NULL;
|
||||
|
||||
/*************************** Generic Data Handling ****************************/
|
||||
|
||||
/*
|
||||
* boot variable:
|
||||
* 0 ==> No boot test, gathering of runtime data allowed
|
||||
* 1 ==> Boot test enabled and ready for collecting data, gathering runtime
|
||||
* data is disabled
|
||||
* 2 ==> Boot test completed and disabled, gathering of runtime data is
|
||||
* disabled
|
||||
*/
|
||||
|
||||
static void jent_testing_reset(struct jent_testing *data)
|
||||
{
|
||||
unsigned long flags;
|
||||
|
||||
spin_lock_irqsave(&data->lock, flags);
|
||||
data->rb_reader = 0;
|
||||
atomic_set(&data->rb_writer, 0);
|
||||
spin_unlock_irqrestore(&data->lock, flags);
|
||||
}
|
||||
|
||||
static void jent_testing_data_init(struct jent_testing *data, u32 boot)
|
||||
{
|
||||
/*
|
||||
* The boot time testing implies we have a running test. If the
|
||||
* caller wants to clear it, he has to unset the boot_test flag
|
||||
* at runtime via sysfs to enable regular runtime testing
|
||||
*/
|
||||
if (boot)
|
||||
return;
|
||||
|
||||
jent_testing_reset(data);
|
||||
atomic_set(&data->jent_testing_enabled, 1);
|
||||
pr_warn("Enabling data collection\n");
|
||||
}
|
||||
|
||||
static void jent_testing_fini(struct jent_testing *data, u32 boot)
|
||||
{
|
||||
/* If we have boot data, we do not reset yet to allow data to be read */
|
||||
if (boot)
|
||||
return;
|
||||
|
||||
atomic_set(&data->jent_testing_enabled, 0);
|
||||
jent_testing_reset(data);
|
||||
pr_warn("Disabling data collection\n");
|
||||
}
|
||||
|
||||
static bool jent_testing_store(struct jent_testing *data, u32 value,
|
||||
u32 *boot)
|
||||
{
|
||||
unsigned long flags;
|
||||
|
||||
if (!atomic_read(&data->jent_testing_enabled) && (*boot != 1))
|
||||
return false;
|
||||
|
||||
spin_lock_irqsave(&data->lock, flags);
|
||||
|
||||
/*
|
||||
* Disable entropy testing for boot time testing after ring buffer
|
||||
* is filled.
|
||||
*/
|
||||
if (*boot) {
|
||||
if (((u32)atomic_read(&data->rb_writer)) >
|
||||
JENT_TEST_RINGBUFFER_SIZE) {
|
||||
*boot = 2;
|
||||
pr_warn_once("One time data collection test disabled\n");
|
||||
spin_unlock_irqrestore(&data->lock, flags);
|
||||
return false;
|
||||
}
|
||||
|
||||
if (atomic_read(&data->rb_writer) == 1)
|
||||
pr_warn("One time data collection test enabled\n");
|
||||
}
|
||||
|
||||
data->jent_testing_rb[((u32)atomic_read(&data->rb_writer)) &
|
||||
JENT_TEST_RINGBUFFER_MASK] = value;
|
||||
atomic_inc(&data->rb_writer);
|
||||
|
||||
spin_unlock_irqrestore(&data->lock, flags);
|
||||
|
||||
if (wq_has_sleeper(&data->read_wait))
|
||||
wake_up_interruptible(&data->read_wait);
|
||||
|
||||
return true;
|
||||
}
|
||||
|
||||
static bool jent_testing_have_data(struct jent_testing *data)
|
||||
{
|
||||
return ((((u32)atomic_read(&data->rb_writer)) &
|
||||
JENT_TEST_RINGBUFFER_MASK) !=
|
||||
(data->rb_reader & JENT_TEST_RINGBUFFER_MASK));
|
||||
}
|
||||
|
||||
static int jent_testing_reader(struct jent_testing *data, u32 *boot,
|
||||
u8 *outbuf, u32 outbuflen)
|
||||
{
|
||||
unsigned long flags;
|
||||
int collected_data = 0;
|
||||
|
||||
jent_testing_data_init(data, *boot);
|
||||
|
||||
while (outbuflen) {
|
||||
u32 writer = (u32)atomic_read(&data->rb_writer);
|
||||
|
||||
spin_lock_irqsave(&data->lock, flags);
|
||||
|
||||
/* We have no data or reached the writer. */
|
||||
if (!writer || (writer == data->rb_reader)) {
|
||||
|
||||
spin_unlock_irqrestore(&data->lock, flags);
|
||||
|
||||
/*
|
||||
* Now we gathered all boot data, enable regular data
|
||||
* collection.
|
||||
*/
|
||||
if (*boot) {
|
||||
*boot = 0;
|
||||
goto out;
|
||||
}
|
||||
|
||||
wait_event_interruptible(data->read_wait,
|
||||
jent_testing_have_data(data));
|
||||
if (signal_pending(current)) {
|
||||
collected_data = -ERESTARTSYS;
|
||||
goto out;
|
||||
}
|
||||
|
||||
continue;
|
||||
}
|
||||
|
||||
/* We copy out word-wise */
|
||||
if (outbuflen < sizeof(u32)) {
|
||||
spin_unlock_irqrestore(&data->lock, flags);
|
||||
goto out;
|
||||
}
|
||||
|
||||
memcpy(outbuf, &data->jent_testing_rb[data->rb_reader],
|
||||
sizeof(u32));
|
||||
data->rb_reader++;
|
||||
|
||||
spin_unlock_irqrestore(&data->lock, flags);
|
||||
|
||||
outbuf += sizeof(u32);
|
||||
outbuflen -= sizeof(u32);
|
||||
collected_data += sizeof(u32);
|
||||
}
|
||||
|
||||
out:
|
||||
jent_testing_fini(data, *boot);
|
||||
return collected_data;
|
||||
}
|
||||
|
||||
static int jent_testing_extract_user(struct file *file, char __user *buf,
|
||||
size_t nbytes, loff_t *ppos,
|
||||
int (*reader)(u8 *outbuf, u32 outbuflen))
|
||||
{
|
||||
u8 *tmp, *tmp_aligned;
|
||||
int ret = 0, large_request = (nbytes > 256);
|
||||
|
||||
if (!nbytes)
|
||||
return 0;
|
||||
|
||||
/*
|
||||
* The intention of this interface is for collecting at least
|
||||
* 1000 samples due to the SP800-90B requirements. So, we make no
|
||||
* effort in avoiding allocating more memory that actually needed
|
||||
* by the user. Hence, we allocate sufficient memory to always hold
|
||||
* that amount of data.
|
||||
*/
|
||||
tmp = kmalloc(JENT_TEST_RINGBUFFER_SIZE + sizeof(u32), GFP_KERNEL);
|
||||
if (!tmp)
|
||||
return -ENOMEM;
|
||||
|
||||
tmp_aligned = PTR_ALIGN(tmp, sizeof(u32));
|
||||
|
||||
while (nbytes) {
|
||||
int i;
|
||||
|
||||
if (large_request && need_resched()) {
|
||||
if (signal_pending(current)) {
|
||||
if (ret == 0)
|
||||
ret = -ERESTARTSYS;
|
||||
break;
|
||||
}
|
||||
schedule();
|
||||
}
|
||||
|
||||
i = min_t(int, nbytes, JENT_TEST_RINGBUFFER_SIZE);
|
||||
i = reader(tmp_aligned, i);
|
||||
if (i <= 0) {
|
||||
if (i < 0)
|
||||
ret = i;
|
||||
break;
|
||||
}
|
||||
if (copy_to_user(buf, tmp_aligned, i)) {
|
||||
ret = -EFAULT;
|
||||
break;
|
||||
}
|
||||
|
||||
nbytes -= i;
|
||||
buf += i;
|
||||
ret += i;
|
||||
}
|
||||
|
||||
kfree_sensitive(tmp);
|
||||
|
||||
if (ret > 0)
|
||||
*ppos += ret;
|
||||
|
||||
return ret;
|
||||
}
|
||||
|
||||
/************** Raw High-Resolution Timer Entropy Data Handling **************/
|
||||
|
||||
static u32 boot_raw_hires_test = 0;
|
||||
module_param(boot_raw_hires_test, uint, 0644);
|
||||
MODULE_PARM_DESC(boot_raw_hires_test,
|
||||
"Enable gathering boot time high resolution timer entropy of the first Jitter RNG entropy events");
|
||||
|
||||
static struct jent_testing jent_raw_hires = {
|
||||
.rb_reader = 0,
|
||||
.rb_writer = ATOMIC_INIT(0),
|
||||
.lock = __SPIN_LOCK_UNLOCKED(jent_raw_hires.lock),
|
||||
.read_wait = __WAIT_QUEUE_HEAD_INITIALIZER(jent_raw_hires.read_wait)
|
||||
};
|
||||
|
||||
int jent_raw_hires_entropy_store(__u32 value)
|
||||
{
|
||||
return jent_testing_store(&jent_raw_hires, value, &boot_raw_hires_test);
|
||||
}
|
||||
EXPORT_SYMBOL(jent_raw_hires_entropy_store);
|
||||
|
||||
static int jent_raw_hires_entropy_reader(u8 *outbuf, u32 outbuflen)
|
||||
{
|
||||
return jent_testing_reader(&jent_raw_hires, &boot_raw_hires_test,
|
||||
outbuf, outbuflen);
|
||||
}
|
||||
|
||||
static ssize_t jent_raw_hires_read(struct file *file, char __user *to,
|
||||
size_t count, loff_t *ppos)
|
||||
{
|
||||
return jent_testing_extract_user(file, to, count, ppos,
|
||||
jent_raw_hires_entropy_reader);
|
||||
}
|
||||
|
||||
static const struct file_operations jent_raw_hires_fops = {
|
||||
.owner = THIS_MODULE,
|
||||
.read = jent_raw_hires_read,
|
||||
};
|
||||
|
||||
/******************************* Initialization *******************************/
|
||||
|
||||
void jent_testing_init(void)
|
||||
{
|
||||
jent_raw_debugfs_root = debugfs_create_dir(KBUILD_MODNAME, NULL);
|
||||
|
||||
debugfs_create_file_unsafe("jent_raw_hires", 0400,
|
||||
jent_raw_debugfs_root, NULL,
|
||||
&jent_raw_hires_fops);
|
||||
}
|
||||
EXPORT_SYMBOL(jent_testing_init);
|
||||
|
||||
void jent_testing_exit(void)
|
||||
{
|
||||
debugfs_remove_recursive(jent_raw_debugfs_root);
|
||||
}
|
||||
EXPORT_SYMBOL(jent_testing_exit);
|
@ -2,7 +2,7 @@
|
||||
* Non-physical true random number generator based on timing jitter --
|
||||
* Jitter RNG standalone code.
|
||||
*
|
||||
* Copyright Stephan Mueller <smueller@chronox.de>, 2015 - 2020
|
||||
* Copyright Stephan Mueller <smueller@chronox.de>, 2015 - 2023
|
||||
*
|
||||
* Design
|
||||
* ======
|
||||
@ -47,7 +47,7 @@
|
||||
|
||||
/*
|
||||
* This Jitterentropy RNG is based on the jitterentropy library
|
||||
* version 2.2.0 provided at https://www.chronox.de/jent.html
|
||||
* version 3.4.0 provided at https://www.chronox.de/jent.html
|
||||
*/
|
||||
|
||||
#ifdef __OPTIMIZE__
|
||||
@ -57,18 +57,19 @@
|
||||
typedef unsigned long long __u64;
|
||||
typedef long long __s64;
|
||||
typedef unsigned int __u32;
|
||||
typedef unsigned char u8;
|
||||
#define NULL ((void *) 0)
|
||||
|
||||
/* The entropy pool */
|
||||
struct rand_data {
|
||||
/* SHA3-256 is used as conditioner */
|
||||
#define DATA_SIZE_BITS 256
|
||||
/* all data values that are vital to maintain the security
|
||||
* of the RNG are marked as SENSITIVE. A user must not
|
||||
* access that information while the RNG executes its loops to
|
||||
* calculate the next random value. */
|
||||
__u64 data; /* SENSITIVE Actual random number */
|
||||
__u64 old_data; /* SENSITIVE Previous random number */
|
||||
void *hash_state; /* SENSITIVE hash state entropy pool */
|
||||
__u64 prev_time; /* SENSITIVE Previous time stamp */
|
||||
#define DATA_SIZE_BITS ((sizeof(__u64)) * 8)
|
||||
__u64 last_delta; /* SENSITIVE stuck test */
|
||||
__s64 last_delta2; /* SENSITIVE stuck test */
|
||||
unsigned int osr; /* Oversample rate */
|
||||
@ -117,7 +118,6 @@ struct rand_data {
|
||||
* zero). */
|
||||
#define JENT_ESTUCK 8 /* Too many stuck results during init. */
|
||||
#define JENT_EHEALTH 9 /* Health test failed during initialization */
|
||||
#define JENT_ERCT 10 /* RCT failed during initialization */
|
||||
|
||||
/*
|
||||
* The output n bits can receive more than n bits of min entropy, of course,
|
||||
@ -302,15 +302,13 @@ static int jent_permanent_health_failure(struct rand_data *ec)
|
||||
* an entropy collection.
|
||||
*
|
||||
* Input:
|
||||
* @ec entropy collector struct -- may be NULL
|
||||
* @bits is the number of low bits of the timer to consider
|
||||
* @min is the number of bits we shift the timer value to the right at
|
||||
* the end to make sure we have a guaranteed minimum value
|
||||
*
|
||||
* @return Newly calculated loop counter
|
||||
*/
|
||||
static __u64 jent_loop_shuffle(struct rand_data *ec,
|
||||
unsigned int bits, unsigned int min)
|
||||
static __u64 jent_loop_shuffle(unsigned int bits, unsigned int min)
|
||||
{
|
||||
__u64 time = 0;
|
||||
__u64 shuffle = 0;
|
||||
@ -318,12 +316,7 @@ static __u64 jent_loop_shuffle(struct rand_data *ec,
|
||||
unsigned int mask = (1<<bits) - 1;
|
||||
|
||||
jent_get_nstime(&time);
|
||||
/*
|
||||
* Mix the current state of the random number into the shuffle
|
||||
* calculation to balance that shuffle a bit more.
|
||||
*/
|
||||
if (ec)
|
||||
time ^= ec->data;
|
||||
|
||||
/*
|
||||
* We fold the time value as much as possible to ensure that as many
|
||||
* bits of the time stamp are included as possible.
|
||||
@ -345,81 +338,32 @@ static __u64 jent_loop_shuffle(struct rand_data *ec,
|
||||
* execution time jitter
|
||||
*
|
||||
* This function injects the individual bits of the time value into the
|
||||
* entropy pool using an LFSR.
|
||||
* entropy pool using a hash.
|
||||
*
|
||||
* The code is deliberately inefficient with respect to the bit shifting
|
||||
* and shall stay that way. This function is the root cause why the code
|
||||
* shall be compiled without optimization. This function not only acts as
|
||||
* folding operation, but this function's execution is used to measure
|
||||
* the CPU execution time jitter. Any change to the loop in this function
|
||||
* implies that careful retesting must be done.
|
||||
*
|
||||
* @ec [in] entropy collector struct
|
||||
* @time [in] time stamp to be injected
|
||||
* @loop_cnt [in] if a value not equal to 0 is set, use the given value as
|
||||
* number of loops to perform the folding
|
||||
* @stuck [in] Is the time stamp identified as stuck?
|
||||
* ec [in] entropy collector
|
||||
* time [in] time stamp to be injected
|
||||
* stuck [in] Is the time stamp identified as stuck?
|
||||
*
|
||||
* Output:
|
||||
* updated ec->data
|
||||
*
|
||||
* @return Number of loops the folding operation is performed
|
||||
* updated hash context in the entropy collector or error code
|
||||
*/
|
||||
static void jent_lfsr_time(struct rand_data *ec, __u64 time, __u64 loop_cnt,
|
||||
int stuck)
|
||||
static int jent_condition_data(struct rand_data *ec, __u64 time, int stuck)
|
||||
{
|
||||
unsigned int i;
|
||||
__u64 j = 0;
|
||||
__u64 new = 0;
|
||||
#define MAX_FOLD_LOOP_BIT 4
|
||||
#define MIN_FOLD_LOOP_BIT 0
|
||||
__u64 fold_loop_cnt =
|
||||
jent_loop_shuffle(ec, MAX_FOLD_LOOP_BIT, MIN_FOLD_LOOP_BIT);
|
||||
#define SHA3_HASH_LOOP (1<<3)
|
||||
struct {
|
||||
int rct_count;
|
||||
unsigned int apt_observations;
|
||||
unsigned int apt_count;
|
||||
unsigned int apt_base;
|
||||
} addtl = {
|
||||
ec->rct_count,
|
||||
ec->apt_observations,
|
||||
ec->apt_count,
|
||||
ec->apt_base
|
||||
};
|
||||
|
||||
/*
|
||||
* testing purposes -- allow test app to set the counter, not
|
||||
* needed during runtime
|
||||
*/
|
||||
if (loop_cnt)
|
||||
fold_loop_cnt = loop_cnt;
|
||||
for (j = 0; j < fold_loop_cnt; j++) {
|
||||
new = ec->data;
|
||||
for (i = 1; (DATA_SIZE_BITS) >= i; i++) {
|
||||
__u64 tmp = time << (DATA_SIZE_BITS - i);
|
||||
|
||||
tmp = tmp >> (DATA_SIZE_BITS - 1);
|
||||
|
||||
/*
|
||||
* Fibonacci LSFR with polynomial of
|
||||
* x^64 + x^61 + x^56 + x^31 + x^28 + x^23 + 1 which is
|
||||
* primitive according to
|
||||
* http://poincare.matf.bg.ac.rs/~ezivkovm/publications/primpol1.pdf
|
||||
* (the shift values are the polynomial values minus one
|
||||
* due to counting bits from 0 to 63). As the current
|
||||
* position is always the LSB, the polynomial only needs
|
||||
* to shift data in from the left without wrap.
|
||||
*/
|
||||
tmp ^= ((new >> 63) & 1);
|
||||
tmp ^= ((new >> 60) & 1);
|
||||
tmp ^= ((new >> 55) & 1);
|
||||
tmp ^= ((new >> 30) & 1);
|
||||
tmp ^= ((new >> 27) & 1);
|
||||
tmp ^= ((new >> 22) & 1);
|
||||
new <<= 1;
|
||||
new ^= tmp;
|
||||
}
|
||||
}
|
||||
|
||||
/*
|
||||
* If the time stamp is stuck, do not finally insert the value into
|
||||
* the entropy pool. Although this operation should not do any harm
|
||||
* even when the time stamp has no entropy, SP800-90B requires that
|
||||
* any conditioning operation (SP800-90B considers the LFSR to be a
|
||||
* conditioning operation) to have an identical amount of input
|
||||
* data according to section 3.1.5.
|
||||
*/
|
||||
if (!stuck)
|
||||
ec->data = new;
|
||||
return jent_hash_time(ec->hash_state, time, (u8 *)&addtl, sizeof(addtl),
|
||||
SHA3_HASH_LOOP, stuck);
|
||||
}
|
||||
|
||||
/*
|
||||
@ -453,7 +397,7 @@ static void jent_memaccess(struct rand_data *ec, __u64 loop_cnt)
|
||||
#define MAX_ACC_LOOP_BIT 7
|
||||
#define MIN_ACC_LOOP_BIT 0
|
||||
__u64 acc_loop_cnt =
|
||||
jent_loop_shuffle(ec, MAX_ACC_LOOP_BIT, MIN_ACC_LOOP_BIT);
|
||||
jent_loop_shuffle(MAX_ACC_LOOP_BIT, MIN_ACC_LOOP_BIT);
|
||||
|
||||
if (NULL == ec || NULL == ec->mem)
|
||||
return;
|
||||
@ -521,14 +465,15 @@ static int jent_measure_jitter(struct rand_data *ec)
|
||||
stuck = jent_stuck(ec, current_delta);
|
||||
|
||||
/* Now call the next noise sources which also injects the data */
|
||||
jent_lfsr_time(ec, current_delta, 0, stuck);
|
||||
if (jent_condition_data(ec, current_delta, stuck))
|
||||
stuck = 1;
|
||||
|
||||
return stuck;
|
||||
}
|
||||
|
||||
/*
|
||||
* Generator of one 64 bit random number
|
||||
* Function fills rand_data->data
|
||||
* Function fills rand_data->hash_state
|
||||
*
|
||||
* @ec [in] Reference to entropy collector
|
||||
*/
|
||||
@ -575,7 +520,7 @@ static void jent_gen_entropy(struct rand_data *ec)
|
||||
* @return 0 when request is fulfilled or an error
|
||||
*
|
||||
* The following error codes can occur:
|
||||
* -1 entropy_collector is NULL
|
||||
* -1 entropy_collector is NULL or the generation failed
|
||||
* -2 Intermittent health failure
|
||||
* -3 Permanent health failure
|
||||
*/
|
||||
@ -605,7 +550,7 @@ int jent_read_entropy(struct rand_data *ec, unsigned char *data,
|
||||
* Perform startup health tests and return permanent
|
||||
* error if it fails.
|
||||
*/
|
||||
if (jent_entropy_init())
|
||||
if (jent_entropy_init(ec->hash_state))
|
||||
return -3;
|
||||
|
||||
return -2;
|
||||
@ -615,7 +560,8 @@ int jent_read_entropy(struct rand_data *ec, unsigned char *data,
|
||||
tocopy = (DATA_SIZE_BITS / 8);
|
||||
else
|
||||
tocopy = len;
|
||||
jent_memcpy(p, &ec->data, tocopy);
|
||||
if (jent_read_random_block(ec->hash_state, p, tocopy))
|
||||
return -1;
|
||||
|
||||
len -= tocopy;
|
||||
p += tocopy;
|
||||
@ -629,7 +575,8 @@ int jent_read_entropy(struct rand_data *ec, unsigned char *data,
|
||||
***************************************************************************/
|
||||
|
||||
struct rand_data *jent_entropy_collector_alloc(unsigned int osr,
|
||||
unsigned int flags)
|
||||
unsigned int flags,
|
||||
void *hash_state)
|
||||
{
|
||||
struct rand_data *entropy_collector;
|
||||
|
||||
@ -656,6 +603,8 @@ struct rand_data *jent_entropy_collector_alloc(unsigned int osr,
|
||||
osr = 1; /* minimum sampling rate is 1 */
|
||||
entropy_collector->osr = osr;
|
||||
|
||||
entropy_collector->hash_state = hash_state;
|
||||
|
||||
/* fill the data pad with non-zero values */
|
||||
jent_gen_entropy(entropy_collector);
|
||||
|
||||
@ -669,7 +618,7 @@ void jent_entropy_collector_free(struct rand_data *entropy_collector)
|
||||
jent_zfree(entropy_collector);
|
||||
}
|
||||
|
||||
int jent_entropy_init(void)
|
||||
int jent_entropy_init(void *hash_state)
|
||||
{
|
||||
int i;
|
||||
__u64 delta_sum = 0;
|
||||
@ -682,6 +631,7 @@ int jent_entropy_init(void)
|
||||
|
||||
/* Required for RCT */
|
||||
ec.osr = 1;
|
||||
ec.hash_state = hash_state;
|
||||
|
||||
/* We could perform statistical tests here, but the problem is
|
||||
* that we only have a few loop counts to do testing. These
|
||||
@ -719,7 +669,7 @@ int jent_entropy_init(void)
|
||||
/* Invoke core entropy collection logic */
|
||||
jent_get_nstime(&time);
|
||||
ec.prev_time = time;
|
||||
jent_lfsr_time(&ec, time, 0, 0);
|
||||
jent_condition_data(&ec, time, 0);
|
||||
jent_get_nstime(&time2);
|
||||
|
||||
/* test whether timer works */
|
||||
@ -762,14 +712,12 @@ int jent_entropy_init(void)
|
||||
if ((nonstuck % JENT_APT_WINDOW_SIZE) == 0) {
|
||||
jent_apt_reset(&ec,
|
||||
delta & JENT_APT_WORD_MASK);
|
||||
if (jent_health_failure(&ec))
|
||||
return JENT_EHEALTH;
|
||||
}
|
||||
}
|
||||
|
||||
/* Validate RCT */
|
||||
if (jent_rct_failure(&ec))
|
||||
return JENT_ERCT;
|
||||
/* Validate health test result */
|
||||
if (jent_health_failure(&ec))
|
||||
return JENT_EHEALTH;
|
||||
|
||||
/* test whether we have an increasing timer */
|
||||
if (!(time2 > time))
|
||||
|
@ -2,14 +2,28 @@
|
||||
|
||||
extern void *jent_zalloc(unsigned int len);
|
||||
extern void jent_zfree(void *ptr);
|
||||
extern void jent_memcpy(void *dest, const void *src, unsigned int n);
|
||||
extern void jent_get_nstime(__u64 *out);
|
||||
extern int jent_hash_time(void *hash_state, __u64 time, u8 *addtl,
|
||||
unsigned int addtl_len, __u64 hash_loop_cnt,
|
||||
unsigned int stuck);
|
||||
int jent_read_random_block(void *hash_state, char *dst, unsigned int dst_len);
|
||||
|
||||
struct rand_data;
|
||||
extern int jent_entropy_init(void);
|
||||
extern int jent_entropy_init(void *hash_state);
|
||||
extern int jent_read_entropy(struct rand_data *ec, unsigned char *data,
|
||||
unsigned int len);
|
||||
|
||||
extern struct rand_data *jent_entropy_collector_alloc(unsigned int osr,
|
||||
unsigned int flags);
|
||||
unsigned int flags,
|
||||
void *hash_state);
|
||||
extern void jent_entropy_collector_free(struct rand_data *entropy_collector);
|
||||
|
||||
#ifdef CONFIG_CRYPTO_JITTERENTROPY_TESTINTERFACE
|
||||
int jent_raw_hires_entropy_store(__u32 value);
|
||||
void jent_testing_init(void);
|
||||
void jent_testing_exit(void);
|
||||
#else /* CONFIG_CRYPTO_JITTERENTROPY_TESTINTERFACE */
|
||||
static inline int jent_raw_hires_entropy_store(__u32 value) { return 0; }
|
||||
static inline void jent_testing_init(void) { }
|
||||
static inline void jent_testing_exit(void) { }
|
||||
#endif /* CONFIG_CRYPTO_JITTERENTROPY_TESTINTERFACE */
|
||||
|
36
crypto/rsa.c
36
crypto/rsa.c
@ -205,6 +205,32 @@ static int rsa_check_key_length(unsigned int len)
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
static int rsa_check_exponent_fips(MPI e)
|
||||
{
|
||||
MPI e_max = NULL;
|
||||
|
||||
/* check if odd */
|
||||
if (!mpi_test_bit(e, 0)) {
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
/* check if 2^16 < e < 2^256. */
|
||||
if (mpi_cmp_ui(e, 65536) <= 0) {
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
e_max = mpi_alloc(0);
|
||||
mpi_set_bit(e_max, 256);
|
||||
|
||||
if (mpi_cmp(e, e_max) >= 0) {
|
||||
mpi_free(e_max);
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
mpi_free(e_max);
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int rsa_set_pub_key(struct crypto_akcipher *tfm, const void *key,
|
||||
unsigned int keylen)
|
||||
{
|
||||
@ -232,6 +258,11 @@ static int rsa_set_pub_key(struct crypto_akcipher *tfm, const void *key,
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
if (fips_enabled && rsa_check_exponent_fips(mpi_key->e)) {
|
||||
rsa_free_mpi_key(mpi_key);
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
return 0;
|
||||
|
||||
err:
|
||||
@ -290,6 +321,11 @@ static int rsa_set_priv_key(struct crypto_akcipher *tfm, const void *key,
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
if (fips_enabled && rsa_check_exponent_fips(mpi_key->e)) {
|
||||
rsa_free_mpi_key(mpi_key);
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
return 0;
|
||||
|
||||
err:
|
||||
|
@ -597,7 +597,7 @@ struct crypto_shash *crypto_clone_shash(struct crypto_shash *hash)
|
||||
return hash;
|
||||
}
|
||||
|
||||
if (!alg->clone_tfm)
|
||||
if (!alg->clone_tfm && (alg->init_tfm || alg->base.cra_init))
|
||||
return ERR_PTR(-ENOSYS);
|
||||
|
||||
nhash = crypto_clone_tfm(&crypto_shash_type, tfm);
|
||||
@ -606,11 +606,13 @@ struct crypto_shash *crypto_clone_shash(struct crypto_shash *hash)
|
||||
|
||||
nhash->descsize = hash->descsize;
|
||||
|
||||
if (alg->clone_tfm) {
|
||||
err = alg->clone_tfm(nhash, hash);
|
||||
if (err) {
|
||||
crypto_free_shash(nhash);
|
||||
return ERR_PTR(err);
|
||||
}
|
||||
}
|
||||
|
||||
return nhash;
|
||||
}
|
||||
|
157
crypto/sig.c
Normal file
157
crypto/sig.c
Normal file
@ -0,0 +1,157 @@
|
||||
/* SPDX-License-Identifier: GPL-2.0-or-later */
|
||||
/*
|
||||
* Public Key Signature Algorithm
|
||||
*
|
||||
* Copyright (c) 2023 Herbert Xu <herbert@gondor.apana.org.au>
|
||||
*/
|
||||
|
||||
#include <crypto/akcipher.h>
|
||||
#include <crypto/internal/sig.h>
|
||||
#include <linux/cryptouser.h>
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/scatterlist.h>
|
||||
#include <linux/seq_file.h>
|
||||
#include <linux/string.h>
|
||||
#include <net/netlink.h>
|
||||
|
||||
#include "internal.h"
|
||||
|
||||
#define CRYPTO_ALG_TYPE_SIG_MASK 0x0000000e
|
||||
|
||||
static const struct crypto_type crypto_sig_type;
|
||||
|
||||
static inline struct crypto_sig *__crypto_sig_tfm(struct crypto_tfm *tfm)
|
||||
{
|
||||
return container_of(tfm, struct crypto_sig, base);
|
||||
}
|
||||
|
||||
static int crypto_sig_init_tfm(struct crypto_tfm *tfm)
|
||||
{
|
||||
if (tfm->__crt_alg->cra_type != &crypto_sig_type)
|
||||
return crypto_init_akcipher_ops_sig(tfm);
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static void __maybe_unused crypto_sig_show(struct seq_file *m,
|
||||
struct crypto_alg *alg)
|
||||
{
|
||||
seq_puts(m, "type : sig\n");
|
||||
}
|
||||
|
||||
static int __maybe_unused crypto_sig_report(struct sk_buff *skb,
|
||||
struct crypto_alg *alg)
|
||||
{
|
||||
struct crypto_report_akcipher rsig = {};
|
||||
|
||||
strscpy(rsig.type, "sig", sizeof(rsig.type));
|
||||
|
||||
return nla_put(skb, CRYPTOCFGA_REPORT_AKCIPHER, sizeof(rsig), &rsig);
|
||||
}
|
||||
|
||||
static int __maybe_unused crypto_sig_report_stat(struct sk_buff *skb,
|
||||
struct crypto_alg *alg)
|
||||
{
|
||||
struct crypto_stat_akcipher rsig = {};
|
||||
|
||||
strscpy(rsig.type, "sig", sizeof(rsig.type));
|
||||
|
||||
return nla_put(skb, CRYPTOCFGA_STAT_AKCIPHER, sizeof(rsig), &rsig);
|
||||
}
|
||||
|
||||
static const struct crypto_type crypto_sig_type = {
|
||||
.extsize = crypto_alg_extsize,
|
||||
.init_tfm = crypto_sig_init_tfm,
|
||||
#ifdef CONFIG_PROC_FS
|
||||
.show = crypto_sig_show,
|
||||
#endif
|
||||
#if IS_ENABLED(CONFIG_CRYPTO_USER)
|
||||
.report = crypto_sig_report,
|
||||
#endif
|
||||
#ifdef CONFIG_CRYPTO_STATS
|
||||
.report_stat = crypto_sig_report_stat,
|
||||
#endif
|
||||
.maskclear = ~CRYPTO_ALG_TYPE_MASK,
|
||||
.maskset = CRYPTO_ALG_TYPE_SIG_MASK,
|
||||
.type = CRYPTO_ALG_TYPE_SIG,
|
||||
.tfmsize = offsetof(struct crypto_sig, base),
|
||||
};
|
||||
|
||||
struct crypto_sig *crypto_alloc_sig(const char *alg_name, u32 type, u32 mask)
|
||||
{
|
||||
return crypto_alloc_tfm(alg_name, &crypto_sig_type, type, mask);
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_alloc_sig);
|
||||
|
||||
int crypto_sig_maxsize(struct crypto_sig *tfm)
|
||||
{
|
||||
struct crypto_akcipher **ctx = crypto_sig_ctx(tfm);
|
||||
|
||||
return crypto_akcipher_maxsize(*ctx);
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_sig_maxsize);
|
||||
|
||||
int crypto_sig_sign(struct crypto_sig *tfm,
|
||||
const void *src, unsigned int slen,
|
||||
void *dst, unsigned int dlen)
|
||||
{
|
||||
struct crypto_akcipher **ctx = crypto_sig_ctx(tfm);
|
||||
struct crypto_akcipher_sync_data data = {
|
||||
.tfm = *ctx,
|
||||
.src = src,
|
||||
.dst = dst,
|
||||
.slen = slen,
|
||||
.dlen = dlen,
|
||||
};
|
||||
|
||||
return crypto_akcipher_sync_prep(&data) ?:
|
||||
crypto_akcipher_sync_post(&data,
|
||||
crypto_akcipher_sign(data.req));
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_sig_sign);
|
||||
|
||||
int crypto_sig_verify(struct crypto_sig *tfm,
|
||||
const void *src, unsigned int slen,
|
||||
const void *digest, unsigned int dlen)
|
||||
{
|
||||
struct crypto_akcipher **ctx = crypto_sig_ctx(tfm);
|
||||
struct crypto_akcipher_sync_data data = {
|
||||
.tfm = *ctx,
|
||||
.src = src,
|
||||
.slen = slen,
|
||||
.dlen = dlen,
|
||||
};
|
||||
int err;
|
||||
|
||||
err = crypto_akcipher_sync_prep(&data);
|
||||
if (err)
|
||||
return err;
|
||||
|
||||
memcpy(data.buf + slen, digest, dlen);
|
||||
|
||||
return crypto_akcipher_sync_post(&data,
|
||||
crypto_akcipher_verify(data.req));
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_sig_verify);
|
||||
|
||||
int crypto_sig_set_pubkey(struct crypto_sig *tfm,
|
||||
const void *key, unsigned int keylen)
|
||||
{
|
||||
struct crypto_akcipher **ctx = crypto_sig_ctx(tfm);
|
||||
|
||||
return crypto_akcipher_set_pub_key(*ctx, key, keylen);
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_sig_set_pubkey);
|
||||
|
||||
int crypto_sig_set_privkey(struct crypto_sig *tfm,
|
||||
const void *key, unsigned int keylen)
|
||||
{
|
||||
struct crypto_akcipher **ctx = crypto_sig_ctx(tfm);
|
||||
|
||||
return crypto_akcipher_set_priv_key(*ctx, key, keylen);
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(crypto_sig_set_privkey);
|
||||
|
||||
MODULE_LICENSE("GPL");
|
||||
MODULE_DESCRIPTION("Public Key Signature Algorithms");
|
102
crypto/sm2.c
102
crypto/sm2.c
@ -13,11 +13,14 @@
|
||||
#include <crypto/internal/akcipher.h>
|
||||
#include <crypto/akcipher.h>
|
||||
#include <crypto/hash.h>
|
||||
#include <crypto/sm3.h>
|
||||
#include <crypto/rng.h>
|
||||
#include <crypto/sm2.h>
|
||||
#include "sm2signature.asn1.h"
|
||||
|
||||
/* The default user id as specified in GM/T 0009-2012 */
|
||||
#define SM2_DEFAULT_USERID "1234567812345678"
|
||||
#define SM2_DEFAULT_USERID_LEN 16
|
||||
|
||||
#define MPI_NBYTES(m) ((mpi_get_nbits(m) + 7) / 8)
|
||||
|
||||
struct ecc_domain_parms {
|
||||
@ -60,6 +63,9 @@ static const struct ecc_domain_parms sm2_ecp = {
|
||||
.h = 1
|
||||
};
|
||||
|
||||
static int __sm2_set_pub_key(struct mpi_ec_ctx *ec,
|
||||
const void *key, unsigned int keylen);
|
||||
|
||||
static int sm2_ec_ctx_init(struct mpi_ec_ctx *ec)
|
||||
{
|
||||
const struct ecc_domain_parms *ecp = &sm2_ecp;
|
||||
@ -213,12 +219,13 @@ int sm2_get_signature_s(void *context, size_t hdrlen, unsigned char tag,
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int sm2_z_digest_update(struct sm3_state *sctx,
|
||||
static int sm2_z_digest_update(struct shash_desc *desc,
|
||||
MPI m, unsigned int pbytes)
|
||||
{
|
||||
static const unsigned char zero[32];
|
||||
unsigned char *in;
|
||||
unsigned int inlen;
|
||||
int err;
|
||||
|
||||
in = mpi_get_buffer(m, &inlen, NULL);
|
||||
if (!in)
|
||||
@ -226,21 +233,22 @@ static int sm2_z_digest_update(struct sm3_state *sctx,
|
||||
|
||||
if (inlen < pbytes) {
|
||||
/* padding with zero */
|
||||
sm3_update(sctx, zero, pbytes - inlen);
|
||||
sm3_update(sctx, in, inlen);
|
||||
err = crypto_shash_update(desc, zero, pbytes - inlen) ?:
|
||||
crypto_shash_update(desc, in, inlen);
|
||||
} else if (inlen > pbytes) {
|
||||
/* skip the starting zero */
|
||||
sm3_update(sctx, in + inlen - pbytes, pbytes);
|
||||
err = crypto_shash_update(desc, in + inlen - pbytes, pbytes);
|
||||
} else {
|
||||
sm3_update(sctx, in, inlen);
|
||||
err = crypto_shash_update(desc, in, inlen);
|
||||
}
|
||||
|
||||
kfree(in);
|
||||
return 0;
|
||||
return err;
|
||||
}
|
||||
|
||||
static int sm2_z_digest_update_point(struct sm3_state *sctx,
|
||||
MPI_POINT point, struct mpi_ec_ctx *ec, unsigned int pbytes)
|
||||
static int sm2_z_digest_update_point(struct shash_desc *desc,
|
||||
MPI_POINT point, struct mpi_ec_ctx *ec,
|
||||
unsigned int pbytes)
|
||||
{
|
||||
MPI x, y;
|
||||
int ret = -EINVAL;
|
||||
@ -248,50 +256,68 @@ static int sm2_z_digest_update_point(struct sm3_state *sctx,
|
||||
x = mpi_new(0);
|
||||
y = mpi_new(0);
|
||||
|
||||
if (!mpi_ec_get_affine(x, y, point, ec) &&
|
||||
!sm2_z_digest_update(sctx, x, pbytes) &&
|
||||
!sm2_z_digest_update(sctx, y, pbytes))
|
||||
ret = 0;
|
||||
ret = mpi_ec_get_affine(x, y, point, ec) ? -EINVAL :
|
||||
sm2_z_digest_update(desc, x, pbytes) ?:
|
||||
sm2_z_digest_update(desc, y, pbytes);
|
||||
|
||||
mpi_free(x);
|
||||
mpi_free(y);
|
||||
return ret;
|
||||
}
|
||||
|
||||
int sm2_compute_z_digest(struct crypto_akcipher *tfm,
|
||||
const unsigned char *id, size_t id_len,
|
||||
unsigned char dgst[SM3_DIGEST_SIZE])
|
||||
int sm2_compute_z_digest(struct shash_desc *desc,
|
||||
const void *key, unsigned int keylen, void *dgst)
|
||||
{
|
||||
struct mpi_ec_ctx *ec = akcipher_tfm_ctx(tfm);
|
||||
uint16_t bits_len;
|
||||
unsigned char entl[2];
|
||||
struct sm3_state sctx;
|
||||
struct mpi_ec_ctx *ec;
|
||||
unsigned int bits_len;
|
||||
unsigned int pbytes;
|
||||
u8 entl[2];
|
||||
int err;
|
||||
|
||||
if (id_len > (USHRT_MAX / 8) || !ec->Q)
|
||||
return -EINVAL;
|
||||
ec = kmalloc(sizeof(*ec), GFP_KERNEL);
|
||||
if (!ec)
|
||||
return -ENOMEM;
|
||||
|
||||
bits_len = (uint16_t)(id_len * 8);
|
||||
err = __sm2_set_pub_key(ec, key, keylen);
|
||||
if (err)
|
||||
goto out_free_ec;
|
||||
|
||||
bits_len = SM2_DEFAULT_USERID_LEN * 8;
|
||||
entl[0] = bits_len >> 8;
|
||||
entl[1] = bits_len & 0xff;
|
||||
|
||||
pbytes = MPI_NBYTES(ec->p);
|
||||
|
||||
/* ZA = H256(ENTLA | IDA | a | b | xG | yG | xA | yA) */
|
||||
sm3_init(&sctx);
|
||||
sm3_update(&sctx, entl, 2);
|
||||
sm3_update(&sctx, id, id_len);
|
||||
err = crypto_shash_init(desc);
|
||||
if (err)
|
||||
goto out_deinit_ec;
|
||||
|
||||
if (sm2_z_digest_update(&sctx, ec->a, pbytes) ||
|
||||
sm2_z_digest_update(&sctx, ec->b, pbytes) ||
|
||||
sm2_z_digest_update_point(&sctx, ec->G, ec, pbytes) ||
|
||||
sm2_z_digest_update_point(&sctx, ec->Q, ec, pbytes))
|
||||
return -EINVAL;
|
||||
err = crypto_shash_update(desc, entl, 2);
|
||||
if (err)
|
||||
goto out_deinit_ec;
|
||||
|
||||
sm3_final(&sctx, dgst);
|
||||
return 0;
|
||||
err = crypto_shash_update(desc, SM2_DEFAULT_USERID,
|
||||
SM2_DEFAULT_USERID_LEN);
|
||||
if (err)
|
||||
goto out_deinit_ec;
|
||||
|
||||
err = sm2_z_digest_update(desc, ec->a, pbytes) ?:
|
||||
sm2_z_digest_update(desc, ec->b, pbytes) ?:
|
||||
sm2_z_digest_update_point(desc, ec->G, ec, pbytes) ?:
|
||||
sm2_z_digest_update_point(desc, ec->Q, ec, pbytes);
|
||||
if (err)
|
||||
goto out_deinit_ec;
|
||||
|
||||
err = crypto_shash_final(desc, dgst);
|
||||
|
||||
out_deinit_ec:
|
||||
sm2_ec_ctx_deinit(ec);
|
||||
out_free_ec:
|
||||
kfree(ec);
|
||||
return err;
|
||||
}
|
||||
EXPORT_SYMBOL(sm2_compute_z_digest);
|
||||
EXPORT_SYMBOL_GPL(sm2_compute_z_digest);
|
||||
|
||||
static int _sm2_verify(struct mpi_ec_ctx *ec, MPI hash, MPI sig_r, MPI sig_s)
|
||||
{
|
||||
@ -391,6 +417,14 @@ static int sm2_set_pub_key(struct crypto_akcipher *tfm,
|
||||
const void *key, unsigned int keylen)
|
||||
{
|
||||
struct mpi_ec_ctx *ec = akcipher_tfm_ctx(tfm);
|
||||
|
||||
return __sm2_set_pub_key(ec, key, keylen);
|
||||
|
||||
}
|
||||
|
||||
static int __sm2_set_pub_key(struct mpi_ec_ctx *ec,
|
||||
const void *key, unsigned int keylen)
|
||||
{
|
||||
MPI a;
|
||||
int rc;
|
||||
|
||||
|
@ -335,9 +335,20 @@ config HW_RANDOM_HISI
|
||||
|
||||
If unsure, say Y.
|
||||
|
||||
config HW_RANDOM_HISTB
|
||||
tristate "Hisilicon STB Random Number Generator support"
|
||||
depends on ARCH_HISI || COMPILE_TEST
|
||||
default ARCH_HISI
|
||||
help
|
||||
This driver provides kernel-side support for the Random Number
|
||||
Generator hardware found on Hisilicon Hi37xx SoC.
|
||||
|
||||
To compile this driver as a module, choose M here: the
|
||||
module will be called histb-rng.
|
||||
|
||||
config HW_RANDOM_ST
|
||||
tristate "ST Microelectronics HW Random Number Generator support"
|
||||
depends on HW_RANDOM && ARCH_STI
|
||||
depends on HW_RANDOM && (ARCH_STI || COMPILE_TEST)
|
||||
help
|
||||
This driver provides kernel-side support for the Random Number
|
||||
Generator hardware found on STi series of SoCs.
|
||||
@ -400,9 +411,9 @@ config HW_RANDOM_POLARFIRE_SOC
|
||||
|
||||
config HW_RANDOM_MESON
|
||||
tristate "Amlogic Meson Random Number Generator support"
|
||||
depends on HW_RANDOM
|
||||
depends on ARCH_MESON || COMPILE_TEST
|
||||
default y
|
||||
depends on HAS_IOMEM && OF
|
||||
default HW_RANDOM if ARCH_MESON
|
||||
help
|
||||
This driver provides kernel-side support for the Random Number
|
||||
Generator hardware found on Amlogic Meson SoCs.
|
||||
@ -427,9 +438,9 @@ config HW_RANDOM_CAVIUM
|
||||
|
||||
config HW_RANDOM_MTK
|
||||
tristate "Mediatek Random Number Generator support"
|
||||
depends on HW_RANDOM
|
||||
depends on ARCH_MEDIATEK || COMPILE_TEST
|
||||
default y
|
||||
depends on HAS_IOMEM && OF
|
||||
default HW_RANDOM if ARCH_MEDIATEK
|
||||
help
|
||||
This driver provides kernel-side support for the Random Number
|
||||
Generator hardware found on Mediatek SoCs.
|
||||
@ -456,7 +467,8 @@ config HW_RANDOM_S390
|
||||
config HW_RANDOM_EXYNOS
|
||||
tristate "Samsung Exynos True Random Number Generator support"
|
||||
depends on ARCH_EXYNOS || COMPILE_TEST
|
||||
default HW_RANDOM
|
||||
depends on HAS_IOMEM
|
||||
default HW_RANDOM if ARCH_EXYNOS
|
||||
help
|
||||
This driver provides support for the True Random Number
|
||||
Generator available in Exynos SoCs.
|
||||
@ -483,7 +495,8 @@ config HW_RANDOM_OPTEE
|
||||
config HW_RANDOM_NPCM
|
||||
tristate "NPCM Random Number Generator support"
|
||||
depends on ARCH_NPCM || COMPILE_TEST
|
||||
default HW_RANDOM
|
||||
depends on HAS_IOMEM
|
||||
default HW_RANDOM if ARCH_NPCM
|
||||
help
|
||||
This driver provides support for the Random Number
|
||||
Generator hardware available in Nuvoton NPCM SoCs.
|
||||
|
@ -29,6 +29,7 @@ obj-$(CONFIG_HW_RANDOM_NOMADIK) += nomadik-rng.o
|
||||
obj-$(CONFIG_HW_RANDOM_PSERIES) += pseries-rng.o
|
||||
obj-$(CONFIG_HW_RANDOM_POWERNV) += powernv-rng.o
|
||||
obj-$(CONFIG_HW_RANDOM_HISI) += hisi-rng.o
|
||||
obj-$(CONFIG_HW_RANDOM_HISTB) += histb-rng.o
|
||||
obj-$(CONFIG_HW_RANDOM_BCM2835) += bcm2835-rng.o
|
||||
obj-$(CONFIG_HW_RANDOM_IPROC_RNG200) += iproc-rng200.o
|
||||
obj-$(CONFIG_HW_RANDOM_ST) += st-rng.o
|
||||
|
@ -23,14 +23,49 @@
|
||||
#define RNM_PF_RANDOM 0x400
|
||||
#define RNM_TRNG_RESULT 0x408
|
||||
|
||||
/* Extended TRNG Read and Status Registers */
|
||||
#define RNM_PF_TRNG_DAT 0x1000
|
||||
#define RNM_PF_TRNG_RES 0x1008
|
||||
|
||||
struct cn10k_rng {
|
||||
void __iomem *reg_base;
|
||||
struct hwrng ops;
|
||||
struct pci_dev *pdev;
|
||||
/* Octeon CN10K-A A0/A1, CNF10K-A A0/A1 and CNF10K-B A0/B0
|
||||
* does not support extended TRNG registers
|
||||
*/
|
||||
bool extended_trng_regs;
|
||||
};
|
||||
|
||||
#define PLAT_OCTEONTX_RESET_RNG_EBG_HEALTH_STATE 0xc2000b0f
|
||||
|
||||
#define PCI_SUBSYS_DEVID_CN10K_A_RNG 0xB900
|
||||
#define PCI_SUBSYS_DEVID_CNF10K_A_RNG 0xBA00
|
||||
#define PCI_SUBSYS_DEVID_CNF10K_B_RNG 0xBC00
|
||||
|
||||
static bool cn10k_is_extended_trng_regs_supported(struct pci_dev *pdev)
|
||||
{
|
||||
/* CN10K-A A0/A1 */
|
||||
if ((pdev->subsystem_device == PCI_SUBSYS_DEVID_CN10K_A_RNG) &&
|
||||
(!pdev->revision || (pdev->revision & 0xff) == 0x50 ||
|
||||
(pdev->revision & 0xff) == 0x51))
|
||||
return false;
|
||||
|
||||
/* CNF10K-A A0 */
|
||||
if ((pdev->subsystem_device == PCI_SUBSYS_DEVID_CNF10K_A_RNG) &&
|
||||
(!pdev->revision || (pdev->revision & 0xff) == 0x60 ||
|
||||
(pdev->revision & 0xff) == 0x61))
|
||||
return false;
|
||||
|
||||
/* CNF10K-B A0/B0 */
|
||||
if ((pdev->subsystem_device == PCI_SUBSYS_DEVID_CNF10K_B_RNG) &&
|
||||
(!pdev->revision || (pdev->revision & 0xff) == 0x70 ||
|
||||
(pdev->revision & 0xff) == 0x74))
|
||||
return false;
|
||||
|
||||
return true;
|
||||
}
|
||||
|
||||
static unsigned long reset_rng_health_state(struct cn10k_rng *rng)
|
||||
{
|
||||
struct arm_smccc_res res;
|
||||
@ -63,9 +98,23 @@ static int check_rng_health(struct cn10k_rng *rng)
|
||||
return 0;
|
||||
}
|
||||
|
||||
static void cn10k_read_trng(struct cn10k_rng *rng, u64 *value)
|
||||
/* Returns true when valid data available otherwise return false */
|
||||
static bool cn10k_read_trng(struct cn10k_rng *rng, u64 *value)
|
||||
{
|
||||
u16 retry_count = 0;
|
||||
u64 upper, lower;
|
||||
u64 status;
|
||||
|
||||
if (rng->extended_trng_regs) {
|
||||
do {
|
||||
*value = readq(rng->reg_base + RNM_PF_TRNG_DAT);
|
||||
if (*value)
|
||||
return true;
|
||||
status = readq(rng->reg_base + RNM_PF_TRNG_RES);
|
||||
if (!status && (retry_count++ > 0x1000))
|
||||
return false;
|
||||
} while (!status);
|
||||
}
|
||||
|
||||
*value = readq(rng->reg_base + RNM_PF_RANDOM);
|
||||
|
||||
@ -82,6 +131,7 @@ static void cn10k_read_trng(struct cn10k_rng *rng, u64 *value)
|
||||
|
||||
*value = (upper & 0xFFFFFFFF00000000) | (lower & 0xFFFFFFFF);
|
||||
}
|
||||
return true;
|
||||
}
|
||||
|
||||
static int cn10k_rng_read(struct hwrng *hwrng, void *data,
|
||||
@ -100,7 +150,8 @@ static int cn10k_rng_read(struct hwrng *hwrng, void *data,
|
||||
size = max;
|
||||
|
||||
while (size >= 8) {
|
||||
cn10k_read_trng(rng, &value);
|
||||
if (!cn10k_read_trng(rng, &value))
|
||||
goto out;
|
||||
|
||||
*((u64 *)pos) = value;
|
||||
size -= 8;
|
||||
@ -108,7 +159,8 @@ static int cn10k_rng_read(struct hwrng *hwrng, void *data,
|
||||
}
|
||||
|
||||
if (size > 0) {
|
||||
cn10k_read_trng(rng, &value);
|
||||
if (!cn10k_read_trng(rng, &value))
|
||||
goto out;
|
||||
|
||||
while (size > 0) {
|
||||
*pos = (u8)value;
|
||||
@ -118,6 +170,7 @@ static int cn10k_rng_read(struct hwrng *hwrng, void *data,
|
||||
}
|
||||
}
|
||||
|
||||
out:
|
||||
return max - size;
|
||||
}
|
||||
|
||||
@ -147,6 +200,8 @@ static int cn10k_rng_probe(struct pci_dev *pdev, const struct pci_device_id *id)
|
||||
rng->ops.read = cn10k_rng_read;
|
||||
rng->ops.priv = (unsigned long)rng;
|
||||
|
||||
rng->extended_trng_regs = cn10k_is_extended_trng_regs_supported(pdev);
|
||||
|
||||
reset_rng_health_state(rng);
|
||||
|
||||
err = devm_hwrng_register(&pdev->dev, &rng->ops);
|
||||
|
@ -1,31 +1,27 @@
|
||||
// SPDX-License-Identifier: GPL-2.0-or-later OR MIT
|
||||
/*
|
||||
* Device driver for True RNG in HiSTB SoCs
|
||||
*
|
||||
* Copyright (c) 2023 David Yang
|
||||
*/
|
||||
|
||||
#include <crypto/internal/rng.h>
|
||||
#include <linux/device.h>
|
||||
#include <linux/err.h>
|
||||
#include <linux/hw_random.h>
|
||||
#include <linux/io.h>
|
||||
#include <linux/iopoll.h>
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/mod_devicetable.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/mutex.h>
|
||||
#include <linux/of_device.h>
|
||||
#include <linux/platform_device.h>
|
||||
|
||||
#define HISTB_TRNG_CTRL 0x0
|
||||
#define RNG_CTRL 0x0
|
||||
#define RNG_SOURCE GENMASK(1, 0)
|
||||
#define DROP_ENABLE BIT(5)
|
||||
#define POST_PROCESS_ENABLE BIT(7)
|
||||
#define POST_PROCESS_DEPTH GENMASK(15, 8)
|
||||
#define HISTB_TRNG_NUMBER 0x4
|
||||
#define HISTB_TRNG_STAT 0x8
|
||||
#define RNG_NUMBER 0x4
|
||||
#define RNG_STAT 0x8
|
||||
#define DATA_COUNT GENMASK(2, 0) /* max 4 */
|
||||
|
||||
struct histb_trng_priv {
|
||||
struct histb_rng_priv {
|
||||
struct hwrng rng;
|
||||
void __iomem *base;
|
||||
};
|
||||
@ -35,19 +31,19 @@ struct histb_trng_priv {
|
||||
* depth = 1 -> ~1ms
|
||||
* depth = 255 -> ~16ms
|
||||
*/
|
||||
static int histb_trng_wait(void __iomem *base)
|
||||
static int histb_rng_wait(void __iomem *base)
|
||||
{
|
||||
u32 val;
|
||||
|
||||
return readl_relaxed_poll_timeout(base + HISTB_TRNG_STAT, val,
|
||||
return readl_relaxed_poll_timeout(base + RNG_STAT, val,
|
||||
val & DATA_COUNT, 1000, 30 * 1000);
|
||||
}
|
||||
|
||||
static void histb_trng_init(void __iomem *base, unsigned int depth)
|
||||
static void histb_rng_init(void __iomem *base, unsigned int depth)
|
||||
{
|
||||
u32 val;
|
||||
|
||||
val = readl_relaxed(base + HISTB_TRNG_CTRL);
|
||||
val = readl_relaxed(base + RNG_CTRL);
|
||||
|
||||
val &= ~RNG_SOURCE;
|
||||
val |= 2;
|
||||
@ -58,72 +54,72 @@ static void histb_trng_init(void __iomem *base, unsigned int depth)
|
||||
val |= POST_PROCESS_ENABLE;
|
||||
val |= DROP_ENABLE;
|
||||
|
||||
writel_relaxed(val, base + HISTB_TRNG_CTRL);
|
||||
writel_relaxed(val, base + RNG_CTRL);
|
||||
}
|
||||
|
||||
static int histb_trng_read(struct hwrng *rng, void *data, size_t max, bool wait)
|
||||
static int histb_rng_read(struct hwrng *rng, void *data, size_t max, bool wait)
|
||||
{
|
||||
struct histb_trng_priv *priv = container_of(rng, typeof(*priv), rng);
|
||||
struct histb_rng_priv *priv = container_of(rng, typeof(*priv), rng);
|
||||
void __iomem *base = priv->base;
|
||||
|
||||
for (int i = 0; i < max; i += sizeof(u32)) {
|
||||
if (!(readl_relaxed(base + HISTB_TRNG_STAT) & DATA_COUNT)) {
|
||||
if (!(readl_relaxed(base + RNG_STAT) & DATA_COUNT)) {
|
||||
if (!wait)
|
||||
return i;
|
||||
if (histb_trng_wait(base)) {
|
||||
if (histb_rng_wait(base)) {
|
||||
pr_err("failed to generate random number, generated %d\n",
|
||||
i);
|
||||
return i ? i : -ETIMEDOUT;
|
||||
}
|
||||
}
|
||||
*(u32 *) (data + i) = readl_relaxed(base + HISTB_TRNG_NUMBER);
|
||||
*(u32 *) (data + i) = readl_relaxed(base + RNG_NUMBER);
|
||||
}
|
||||
|
||||
return max;
|
||||
}
|
||||
|
||||
static unsigned int histb_trng_get_depth(void __iomem *base)
|
||||
static unsigned int histb_rng_get_depth(void __iomem *base)
|
||||
{
|
||||
return (readl_relaxed(base + HISTB_TRNG_CTRL) & POST_PROCESS_DEPTH) >> 8;
|
||||
return (readl_relaxed(base + RNG_CTRL) & POST_PROCESS_DEPTH) >> 8;
|
||||
}
|
||||
|
||||
static ssize_t
|
||||
depth_show(struct device *dev, struct device_attribute *attr, char *buf)
|
||||
{
|
||||
struct histb_trng_priv *priv = dev_get_drvdata(dev);
|
||||
struct histb_rng_priv *priv = dev_get_drvdata(dev);
|
||||
void __iomem *base = priv->base;
|
||||
|
||||
return sprintf(buf, "%d\n", histb_trng_get_depth(base));
|
||||
return sprintf(buf, "%d\n", histb_rng_get_depth(base));
|
||||
}
|
||||
|
||||
static ssize_t
|
||||
depth_store(struct device *dev, struct device_attribute *attr,
|
||||
const char *buf, size_t count)
|
||||
{
|
||||
struct histb_trng_priv *priv = dev_get_drvdata(dev);
|
||||
struct histb_rng_priv *priv = dev_get_drvdata(dev);
|
||||
void __iomem *base = priv->base;
|
||||
unsigned int depth;
|
||||
|
||||
if (kstrtouint(buf, 0, &depth))
|
||||
return -ERANGE;
|
||||
|
||||
histb_trng_init(base, depth);
|
||||
histb_rng_init(base, depth);
|
||||
return count;
|
||||
}
|
||||
|
||||
static DEVICE_ATTR_RW(depth);
|
||||
|
||||
static struct attribute *histb_trng_attrs[] = {
|
||||
static struct attribute *histb_rng_attrs[] = {
|
||||
&dev_attr_depth.attr,
|
||||
NULL,
|
||||
};
|
||||
|
||||
ATTRIBUTE_GROUPS(histb_trng);
|
||||
ATTRIBUTE_GROUPS(histb_rng);
|
||||
|
||||
static int histb_trng_probe(struct platform_device *pdev)
|
||||
static int histb_rng_probe(struct platform_device *pdev)
|
||||
{
|
||||
struct device *dev = &pdev->dev;
|
||||
struct histb_trng_priv *priv;
|
||||
struct histb_rng_priv *priv;
|
||||
void __iomem *base;
|
||||
int ret;
|
||||
|
||||
@ -133,17 +129,17 @@ static int histb_trng_probe(struct platform_device *pdev)
|
||||
|
||||
base = devm_platform_ioremap_resource(pdev, 0);
|
||||
if (IS_ERR(base))
|
||||
return -ENOMEM;
|
||||
return PTR_ERR(base);
|
||||
|
||||
histb_trng_init(base, 144);
|
||||
if (histb_trng_wait(base)) {
|
||||
histb_rng_init(base, 144);
|
||||
if (histb_rng_wait(base)) {
|
||||
dev_err(dev, "cannot bring up device\n");
|
||||
return -ENODEV;
|
||||
}
|
||||
|
||||
priv->base = base;
|
||||
priv->rng.name = pdev->name;
|
||||
priv->rng.read = histb_trng_read;
|
||||
priv->rng.read = histb_rng_read;
|
||||
ret = devm_hwrng_register(dev, &priv->rng);
|
||||
if (ret) {
|
||||
dev_err(dev, "failed to register hwrng: %d\n", ret);
|
||||
@ -155,22 +151,23 @@ static int histb_trng_probe(struct platform_device *pdev)
|
||||
return 0;
|
||||
}
|
||||
|
||||
static const struct of_device_id histb_trng_of_match[] = {
|
||||
{ .compatible = "hisilicon,histb-trng", },
|
||||
static const struct of_device_id histb_rng_of_match[] = {
|
||||
{ .compatible = "hisilicon,histb-rng", },
|
||||
{ }
|
||||
};
|
||||
MODULE_DEVICE_TABLE(of, histb_rng_of_match);
|
||||
|
||||
static struct platform_driver histb_trng_driver = {
|
||||
.probe = histb_trng_probe,
|
||||
static struct platform_driver histb_rng_driver = {
|
||||
.probe = histb_rng_probe,
|
||||
.driver = {
|
||||
.name = "histb-trng",
|
||||
.of_match_table = histb_trng_of_match,
|
||||
.dev_groups = histb_trng_groups,
|
||||
.name = "histb-rng",
|
||||
.of_match_table = histb_rng_of_match,
|
||||
.dev_groups = histb_rng_groups,
|
||||
},
|
||||
};
|
||||
|
||||
module_platform_driver(histb_trng_driver);
|
||||
module_platform_driver(histb_rng_driver);
|
||||
|
||||
MODULE_DESCRIPTION("HiSTB True RNG");
|
||||
MODULE_DESCRIPTION("Hisilicon STB random number generator driver");
|
||||
MODULE_LICENSE("Dual MIT/GPL");
|
||||
MODULE_AUTHOR("David Yang <mmyangfl@gmail.com>");
|
@ -17,6 +17,7 @@
|
||||
#include <linux/hw_random.h>
|
||||
#include <linux/completion.h>
|
||||
#include <linux/io.h>
|
||||
#include <linux/bitfield.h>
|
||||
|
||||
#define RNGC_VER_ID 0x0000
|
||||
#define RNGC_COMMAND 0x0004
|
||||
@ -26,7 +27,7 @@
|
||||
#define RNGC_FIFO 0x0014
|
||||
|
||||
/* the fields in the ver id register */
|
||||
#define RNGC_TYPE_SHIFT 28
|
||||
#define RNG_TYPE GENMASK(31, 28)
|
||||
#define RNGC_VER_MAJ_SHIFT 8
|
||||
|
||||
/* the rng_type field */
|
||||
@ -34,20 +35,19 @@
|
||||
#define RNGC_TYPE_RNGC 0x2
|
||||
|
||||
|
||||
#define RNGC_CMD_CLR_ERR 0x00000020
|
||||
#define RNGC_CMD_CLR_INT 0x00000010
|
||||
#define RNGC_CMD_SEED 0x00000002
|
||||
#define RNGC_CMD_SELF_TEST 0x00000001
|
||||
#define RNGC_CMD_CLR_ERR BIT(5)
|
||||
#define RNGC_CMD_CLR_INT BIT(4)
|
||||
#define RNGC_CMD_SEED BIT(1)
|
||||
#define RNGC_CMD_SELF_TEST BIT(0)
|
||||
|
||||
#define RNGC_CTRL_MASK_ERROR 0x00000040
|
||||
#define RNGC_CTRL_MASK_DONE 0x00000020
|
||||
#define RNGC_CTRL_AUTO_SEED 0x00000010
|
||||
#define RNGC_CTRL_MASK_ERROR BIT(6)
|
||||
#define RNGC_CTRL_MASK_DONE BIT(5)
|
||||
#define RNGC_CTRL_AUTO_SEED BIT(4)
|
||||
|
||||
#define RNGC_STATUS_ERROR 0x00010000
|
||||
#define RNGC_STATUS_FIFO_LEVEL_MASK 0x00000f00
|
||||
#define RNGC_STATUS_FIFO_LEVEL_SHIFT 8
|
||||
#define RNGC_STATUS_SEED_DONE 0x00000020
|
||||
#define RNGC_STATUS_ST_DONE 0x00000010
|
||||
#define RNGC_STATUS_ERROR BIT(16)
|
||||
#define RNGC_STATUS_FIFO_LEVEL_MASK GENMASK(11, 8)
|
||||
#define RNGC_STATUS_SEED_DONE BIT(5)
|
||||
#define RNGC_STATUS_ST_DONE BIT(4)
|
||||
|
||||
#define RNGC_ERROR_STATUS_STAT_ERR 0x00000008
|
||||
|
||||
@ -110,7 +110,7 @@ static int imx_rngc_self_test(struct imx_rngc *rngc)
|
||||
cmd = readl(rngc->base + RNGC_COMMAND);
|
||||
writel(cmd | RNGC_CMD_SELF_TEST, rngc->base + RNGC_COMMAND);
|
||||
|
||||
ret = wait_for_completion_timeout(&rngc->rng_op_done, RNGC_TIMEOUT);
|
||||
ret = wait_for_completion_timeout(&rngc->rng_op_done, msecs_to_jiffies(RNGC_TIMEOUT));
|
||||
imx_rngc_irq_mask_clear(rngc);
|
||||
if (!ret)
|
||||
return -ETIMEDOUT;
|
||||
@ -122,7 +122,6 @@ static int imx_rngc_read(struct hwrng *rng, void *data, size_t max, bool wait)
|
||||
{
|
||||
struct imx_rngc *rngc = container_of(rng, struct imx_rngc, rng);
|
||||
unsigned int status;
|
||||
unsigned int level;
|
||||
int retval = 0;
|
||||
|
||||
while (max >= sizeof(u32)) {
|
||||
@ -132,11 +131,7 @@ static int imx_rngc_read(struct hwrng *rng, void *data, size_t max, bool wait)
|
||||
if (status & RNGC_STATUS_ERROR)
|
||||
break;
|
||||
|
||||
/* how many random numbers are in FIFO? [0-16] */
|
||||
level = (status & RNGC_STATUS_FIFO_LEVEL_MASK) >>
|
||||
RNGC_STATUS_FIFO_LEVEL_SHIFT;
|
||||
|
||||
if (level) {
|
||||
if (status & RNGC_STATUS_FIFO_LEVEL_MASK) {
|
||||
/* retrieve a random number from FIFO */
|
||||
*(u32 *)data = readl(rngc->base + RNGC_FIFO);
|
||||
|
||||
@ -187,9 +182,7 @@ static int imx_rngc_init(struct hwrng *rng)
|
||||
cmd = readl(rngc->base + RNGC_COMMAND);
|
||||
writel(cmd | RNGC_CMD_SEED, rngc->base + RNGC_COMMAND);
|
||||
|
||||
ret = wait_for_completion_timeout(&rngc->rng_op_done,
|
||||
RNGC_TIMEOUT);
|
||||
|
||||
ret = wait_for_completion_timeout(&rngc->rng_op_done, msecs_to_jiffies(RNGC_TIMEOUT));
|
||||
if (!ret) {
|
||||
ret = -ETIMEDOUT;
|
||||
goto err;
|
||||
@ -229,7 +222,7 @@ static void imx_rngc_cleanup(struct hwrng *rng)
|
||||
imx_rngc_irq_mask_clear(rngc);
|
||||
}
|
||||
|
||||
static int imx_rngc_probe(struct platform_device *pdev)
|
||||
static int __init imx_rngc_probe(struct platform_device *pdev)
|
||||
{
|
||||
struct imx_rngc *rngc;
|
||||
int ret;
|
||||
@ -256,7 +249,7 @@ static int imx_rngc_probe(struct platform_device *pdev)
|
||||
return irq;
|
||||
|
||||
ver_id = readl(rngc->base + RNGC_VER_ID);
|
||||
rng_type = ver_id >> RNGC_TYPE_SHIFT;
|
||||
rng_type = FIELD_GET(RNG_TYPE, ver_id);
|
||||
/*
|
||||
* This driver supports only RNGC and RNGB. (There's a different
|
||||
* driver for RNGA.)
|
||||
@ -305,7 +298,7 @@ static int imx_rngc_probe(struct platform_device *pdev)
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int __maybe_unused imx_rngc_suspend(struct device *dev)
|
||||
static int imx_rngc_suspend(struct device *dev)
|
||||
{
|
||||
struct imx_rngc *rngc = dev_get_drvdata(dev);
|
||||
|
||||
@ -314,7 +307,7 @@ static int __maybe_unused imx_rngc_suspend(struct device *dev)
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int __maybe_unused imx_rngc_resume(struct device *dev)
|
||||
static int imx_rngc_resume(struct device *dev)
|
||||
{
|
||||
struct imx_rngc *rngc = dev_get_drvdata(dev);
|
||||
|
||||
@ -323,10 +316,10 @@ static int __maybe_unused imx_rngc_resume(struct device *dev)
|
||||
return 0;
|
||||
}
|
||||
|
||||
static SIMPLE_DEV_PM_OPS(imx_rngc_pm_ops, imx_rngc_suspend, imx_rngc_resume);
|
||||
static DEFINE_SIMPLE_DEV_PM_OPS(imx_rngc_pm_ops, imx_rngc_suspend, imx_rngc_resume);
|
||||
|
||||
static const struct of_device_id imx_rngc_dt_ids[] = {
|
||||
{ .compatible = "fsl,imx25-rngb", .data = NULL, },
|
||||
{ .compatible = "fsl,imx25-rngb" },
|
||||
{ /* sentinel */ }
|
||||
};
|
||||
MODULE_DEVICE_TABLE(of, imx_rngc_dt_ids);
|
||||
@ -334,7 +327,7 @@ MODULE_DEVICE_TABLE(of, imx_rngc_dt_ids);
|
||||
static struct platform_driver imx_rngc_driver = {
|
||||
.driver = {
|
||||
.name = KBUILD_MODNAME,
|
||||
.pm = &imx_rngc_pm_ops,
|
||||
.pm = pm_sleep_ptr(&imx_rngc_pm_ops),
|
||||
.of_match_table = imx_rngc_dt_ids,
|
||||
},
|
||||
};
|
||||
|
@ -42,7 +42,6 @@
|
||||
|
||||
struct st_rng_data {
|
||||
void __iomem *base;
|
||||
struct clk *clk;
|
||||
struct hwrng ops;
|
||||
};
|
||||
|
||||
@ -85,26 +84,18 @@ static int st_rng_probe(struct platform_device *pdev)
|
||||
if (IS_ERR(base))
|
||||
return PTR_ERR(base);
|
||||
|
||||
clk = devm_clk_get(&pdev->dev, NULL);
|
||||
clk = devm_clk_get_enabled(&pdev->dev, NULL);
|
||||
if (IS_ERR(clk))
|
||||
return PTR_ERR(clk);
|
||||
|
||||
ret = clk_prepare_enable(clk);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
ddata->ops.priv = (unsigned long)ddata;
|
||||
ddata->ops.read = st_rng_read;
|
||||
ddata->ops.name = pdev->name;
|
||||
ddata->base = base;
|
||||
ddata->clk = clk;
|
||||
|
||||
dev_set_drvdata(&pdev->dev, ddata);
|
||||
|
||||
ret = devm_hwrng_register(&pdev->dev, &ddata->ops);
|
||||
if (ret) {
|
||||
dev_err(&pdev->dev, "Failed to register HW RNG\n");
|
||||
clk_disable_unprepare(clk);
|
||||
return ret;
|
||||
}
|
||||
|
||||
@ -113,15 +104,6 @@ static int st_rng_probe(struct platform_device *pdev)
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int st_rng_remove(struct platform_device *pdev)
|
||||
{
|
||||
struct st_rng_data *ddata = dev_get_drvdata(&pdev->dev);
|
||||
|
||||
clk_disable_unprepare(ddata->clk);
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static const struct of_device_id st_rng_match[] __maybe_unused = {
|
||||
{ .compatible = "st,rng" },
|
||||
{},
|
||||
@ -134,7 +116,6 @@ static struct platform_driver st_rng_driver = {
|
||||
.of_match_table = of_match_ptr(st_rng_match),
|
||||
},
|
||||
.probe = st_rng_probe,
|
||||
.remove = st_rng_remove
|
||||
};
|
||||
|
||||
module_platform_driver(st_rng_driver);
|
||||
|
@ -4,6 +4,7 @@
|
||||
* Copyright (C) 2007, 2008 Rusty Russell IBM Corporation
|
||||
*/
|
||||
|
||||
#include <asm/barrier.h>
|
||||
#include <linux/err.h>
|
||||
#include <linux/hw_random.h>
|
||||
#include <linux/scatterlist.h>
|
||||
@ -37,13 +38,13 @@ struct virtrng_info {
|
||||
static void random_recv_done(struct virtqueue *vq)
|
||||
{
|
||||
struct virtrng_info *vi = vq->vdev->priv;
|
||||
unsigned int len;
|
||||
|
||||
/* We can get spurious callbacks, e.g. shared IRQs + virtio_pci. */
|
||||
if (!virtqueue_get_buf(vi->vq, &vi->data_avail))
|
||||
if (!virtqueue_get_buf(vi->vq, &len))
|
||||
return;
|
||||
|
||||
vi->data_idx = 0;
|
||||
|
||||
smp_store_release(&vi->data_avail, len);
|
||||
complete(&vi->have_data);
|
||||
}
|
||||
|
||||
@ -52,7 +53,6 @@ static void request_entropy(struct virtrng_info *vi)
|
||||
struct scatterlist sg;
|
||||
|
||||
reinit_completion(&vi->have_data);
|
||||
vi->data_avail = 0;
|
||||
vi->data_idx = 0;
|
||||
|
||||
sg_init_one(&sg, vi->data, sizeof(vi->data));
|
||||
@ -88,7 +88,7 @@ static int virtio_read(struct hwrng *rng, void *buf, size_t size, bool wait)
|
||||
read = 0;
|
||||
|
||||
/* copy available data */
|
||||
if (vi->data_avail) {
|
||||
if (smp_load_acquire(&vi->data_avail)) {
|
||||
chunk = copy_data(vi, buf, size);
|
||||
size -= chunk;
|
||||
read += chunk;
|
||||
|
@ -807,5 +807,6 @@ config CRYPTO_DEV_SA2UL
|
||||
acceleration for cryptographic algorithms on these devices.
|
||||
|
||||
source "drivers/crypto/aspeed/Kconfig"
|
||||
source "drivers/crypto/starfive/Kconfig"
|
||||
|
||||
endif # CRYPTO_HW
|
||||
|
@ -50,3 +50,4 @@ obj-y += xilinx/
|
||||
obj-y += hisilicon/
|
||||
obj-$(CONFIG_CRYPTO_DEV_AMLOGIC_GXL) += amlogic/
|
||||
obj-y += intel/
|
||||
obj-y += starfive/
|
||||
|
@ -389,7 +389,7 @@ static struct i2c_driver atmel_ecc_driver = {
|
||||
.name = "atmel-ecc",
|
||||
.of_match_table = of_match_ptr(atmel_ecc_dt_ids),
|
||||
},
|
||||
.probe_new = atmel_ecc_probe,
|
||||
.probe = atmel_ecc_probe,
|
||||
.remove = atmel_ecc_remove,
|
||||
.id_table = atmel_ecc_id,
|
||||
};
|
||||
|
@ -141,7 +141,7 @@ static const struct i2c_device_id atmel_sha204a_id[] = {
|
||||
MODULE_DEVICE_TABLE(i2c, atmel_sha204a_id);
|
||||
|
||||
static struct i2c_driver atmel_sha204a_driver = {
|
||||
.probe_new = atmel_sha204a_probe,
|
||||
.probe = atmel_sha204a_probe,
|
||||
.remove = atmel_sha204a_remove,
|
||||
.id_table = atmel_sha204a_id,
|
||||
|
||||
|
@ -162,6 +162,15 @@ config CRYPTO_DEV_FSL_CAAM_PRNG_API
|
||||
config CRYPTO_DEV_FSL_CAAM_BLOB_GEN
|
||||
bool
|
||||
|
||||
config CRYPTO_DEV_FSL_CAAM_RNG_TEST
|
||||
bool "Test caam rng"
|
||||
select CRYPTO_DEV_FSL_CAAM_RNG_API
|
||||
help
|
||||
Selecting this will enable a self-test to run for the
|
||||
caam RNG.
|
||||
This test is several minutes long and executes
|
||||
just before the RNG is registered with the hw_random API.
|
||||
|
||||
endif # CRYPTO_DEV_FSL_CAAM_JR
|
||||
|
||||
endif # CRYPTO_DEV_FSL_CAAM
|
||||
|
@ -172,6 +172,50 @@ static void caam_cleanup(struct hwrng *rng)
|
||||
kfifo_free(&ctx->fifo);
|
||||
}
|
||||
|
||||
#ifdef CONFIG_CRYPTO_DEV_FSL_CAAM_RNG_TEST
|
||||
static inline void test_len(struct hwrng *rng, size_t len, bool wait)
|
||||
{
|
||||
u8 *buf;
|
||||
int read_len;
|
||||
struct caam_rng_ctx *ctx = to_caam_rng_ctx(rng);
|
||||
struct device *dev = ctx->ctrldev;
|
||||
|
||||
buf = kcalloc(CAAM_RNG_MAX_FIFO_STORE_SIZE, sizeof(u8), GFP_KERNEL);
|
||||
|
||||
while (len > 0) {
|
||||
read_len = rng->read(rng, buf, len, wait);
|
||||
|
||||
if (read_len < 0 || (read_len == 0 && wait)) {
|
||||
dev_err(dev, "RNG Read FAILED received %d bytes\n",
|
||||
read_len);
|
||||
kfree(buf);
|
||||
return;
|
||||
}
|
||||
|
||||
print_hex_dump_debug("random bytes@: ",
|
||||
DUMP_PREFIX_ADDRESS, 16, 4,
|
||||
buf, read_len, 1);
|
||||
|
||||
len = len - read_len;
|
||||
}
|
||||
|
||||
kfree(buf);
|
||||
}
|
||||
|
||||
static inline void test_mode_once(struct hwrng *rng, bool wait)
|
||||
{
|
||||
test_len(rng, 32, wait);
|
||||
test_len(rng, 64, wait);
|
||||
test_len(rng, 128, wait);
|
||||
}
|
||||
|
||||
static void self_test(struct hwrng *rng)
|
||||
{
|
||||
pr_info("Executing RNG SELF-TEST with wait\n");
|
||||
test_mode_once(rng, true);
|
||||
}
|
||||
#endif
|
||||
|
||||
static int caam_init(struct hwrng *rng)
|
||||
{
|
||||
struct caam_rng_ctx *ctx = to_caam_rng_ctx(rng);
|
||||
@ -258,6 +302,10 @@ int caam_rng_init(struct device *ctrldev)
|
||||
return ret;
|
||||
}
|
||||
|
||||
#ifdef CONFIG_CRYPTO_DEV_FSL_CAAM_RNG_TEST
|
||||
self_test(&ctx->rng);
|
||||
#endif
|
||||
|
||||
devres_close_group(ctrldev, caam_rng_init);
|
||||
return 0;
|
||||
}
|
||||
|
@ -79,6 +79,15 @@ static void build_deinstantiation_desc(u32 *desc, int handle)
|
||||
append_jump(desc, JUMP_CLASS_CLASS1 | JUMP_TYPE_HALT);
|
||||
}
|
||||
|
||||
static const struct of_device_id imx8m_machine_match[] = {
|
||||
{ .compatible = "fsl,imx8mm", },
|
||||
{ .compatible = "fsl,imx8mn", },
|
||||
{ .compatible = "fsl,imx8mp", },
|
||||
{ .compatible = "fsl,imx8mq", },
|
||||
{ .compatible = "fsl,imx8ulp", },
|
||||
{ }
|
||||
};
|
||||
|
||||
/*
|
||||
* run_descriptor_deco0 - runs a descriptor on DECO0, under direct control of
|
||||
* the software (no JR/QI used).
|
||||
@ -105,10 +114,7 @@ static inline int run_descriptor_deco0(struct device *ctrldev, u32 *desc,
|
||||
* Apparently on i.MX8M{Q,M,N,P} it doesn't matter if virt_en == 1
|
||||
* and the following steps should be performed regardless
|
||||
*/
|
||||
of_machine_is_compatible("fsl,imx8mq") ||
|
||||
of_machine_is_compatible("fsl,imx8mm") ||
|
||||
of_machine_is_compatible("fsl,imx8mn") ||
|
||||
of_machine_is_compatible("fsl,imx8mp")) {
|
||||
of_match_node(imx8m_machine_match, of_root)) {
|
||||
clrsetbits_32(&ctrl->deco_rsr, 0, DECORSR_JR0);
|
||||
|
||||
while (!(rd_reg32(&ctrl->deco_rsr) & DECORSR_VALID) &&
|
||||
@ -344,16 +350,15 @@ static int instantiate_rng(struct device *ctrldev, int state_handle_mask,
|
||||
/*
|
||||
* kick_trng - sets the various parameters for enabling the initialization
|
||||
* of the RNG4 block in CAAM
|
||||
* @pdev - pointer to the platform device
|
||||
* @dev - pointer to the controller device
|
||||
* @ent_delay - Defines the length (in system clocks) of each entropy sample.
|
||||
*/
|
||||
static void kick_trng(struct platform_device *pdev, int ent_delay)
|
||||
static void kick_trng(struct device *dev, int ent_delay)
|
||||
{
|
||||
struct device *ctrldev = &pdev->dev;
|
||||
struct caam_drv_private *ctrlpriv = dev_get_drvdata(ctrldev);
|
||||
struct caam_drv_private *ctrlpriv = dev_get_drvdata(dev);
|
||||
struct caam_ctrl __iomem *ctrl;
|
||||
struct rng4tst __iomem *r4tst;
|
||||
u32 val;
|
||||
u32 val, rtsdctl;
|
||||
|
||||
ctrl = (struct caam_ctrl __iomem *)ctrlpriv->ctrl;
|
||||
r4tst = &ctrl->r4tst[0];
|
||||
@ -369,26 +374,38 @@ static void kick_trng(struct platform_device *pdev, int ent_delay)
|
||||
* Performance-wise, it does not make sense to
|
||||
* set the delay to a value that is lower
|
||||
* than the last one that worked (i.e. the state handles
|
||||
* were instantiated properly. Thus, instead of wasting
|
||||
* time trying to set the values controlling the sample
|
||||
* frequency, the function simply returns.
|
||||
* were instantiated properly).
|
||||
*/
|
||||
val = (rd_reg32(&r4tst->rtsdctl) & RTSDCTL_ENT_DLY_MASK)
|
||||
>> RTSDCTL_ENT_DLY_SHIFT;
|
||||
if (ent_delay <= val)
|
||||
goto start_rng;
|
||||
|
||||
val = rd_reg32(&r4tst->rtsdctl);
|
||||
val = (val & ~RTSDCTL_ENT_DLY_MASK) |
|
||||
(ent_delay << RTSDCTL_ENT_DLY_SHIFT);
|
||||
wr_reg32(&r4tst->rtsdctl, val);
|
||||
rtsdctl = rd_reg32(&r4tst->rtsdctl);
|
||||
val = (rtsdctl & RTSDCTL_ENT_DLY_MASK) >> RTSDCTL_ENT_DLY_SHIFT;
|
||||
if (ent_delay > val) {
|
||||
val = ent_delay;
|
||||
/* min. freq. count, equal to 1/4 of the entropy sample length */
|
||||
wr_reg32(&r4tst->rtfrqmin, ent_delay >> 2);
|
||||
/* disable maximum frequency count */
|
||||
wr_reg32(&r4tst->rtfrqmax, RTFRQMAX_DISABLE);
|
||||
/* read the control register */
|
||||
val = rd_reg32(&r4tst->rtmctl);
|
||||
start_rng:
|
||||
wr_reg32(&r4tst->rtfrqmin, val >> 2);
|
||||
/* max. freq. count, equal to 16 times the entropy sample length */
|
||||
wr_reg32(&r4tst->rtfrqmax, val << 4);
|
||||
}
|
||||
|
||||
wr_reg32(&r4tst->rtsdctl, (val << RTSDCTL_ENT_DLY_SHIFT) |
|
||||
RTSDCTL_SAMP_SIZE_VAL);
|
||||
|
||||
/*
|
||||
* To avoid reprogramming the self-test parameters over and over again,
|
||||
* use RTSDCTL[SAMP_SIZE] as an indicator.
|
||||
*/
|
||||
if ((rtsdctl & RTSDCTL_SAMP_SIZE_MASK) != RTSDCTL_SAMP_SIZE_VAL) {
|
||||
wr_reg32(&r4tst->rtscmisc, (2 << 16) | 32);
|
||||
wr_reg32(&r4tst->rtpkrrng, 570);
|
||||
wr_reg32(&r4tst->rtpkrmax, 1600);
|
||||
wr_reg32(&r4tst->rtscml, (122 << 16) | 317);
|
||||
wr_reg32(&r4tst->rtscrl[0], (80 << 16) | 107);
|
||||
wr_reg32(&r4tst->rtscrl[1], (57 << 16) | 62);
|
||||
wr_reg32(&r4tst->rtscrl[2], (39 << 16) | 39);
|
||||
wr_reg32(&r4tst->rtscrl[3], (27 << 16) | 26);
|
||||
wr_reg32(&r4tst->rtscrl[4], (19 << 16) | 18);
|
||||
wr_reg32(&r4tst->rtscrl[5], (18 << 16) | 17);
|
||||
}
|
||||
|
||||
/*
|
||||
* select raw sampling in both entropy shifter
|
||||
* and statistical checker; ; put RNG4 into run mode
|
||||
@ -618,10 +635,115 @@ static bool needs_entropy_delay_adjustment(void)
|
||||
return false;
|
||||
}
|
||||
|
||||
static int caam_ctrl_rng_init(struct device *dev)
|
||||
{
|
||||
struct caam_drv_private *ctrlpriv = dev_get_drvdata(dev);
|
||||
struct caam_ctrl __iomem *ctrl = ctrlpriv->ctrl;
|
||||
int ret, gen_sk, ent_delay = RTSDCTL_ENT_DLY_MIN;
|
||||
u8 rng_vid;
|
||||
|
||||
if (ctrlpriv->era < 10) {
|
||||
struct caam_perfmon __iomem *perfmon;
|
||||
|
||||
perfmon = ctrlpriv->total_jobrs ?
|
||||
(struct caam_perfmon __iomem *)&ctrlpriv->jr[0]->perfmon :
|
||||
(struct caam_perfmon __iomem *)&ctrl->perfmon;
|
||||
|
||||
rng_vid = (rd_reg32(&perfmon->cha_id_ls) &
|
||||
CHA_ID_LS_RNG_MASK) >> CHA_ID_LS_RNG_SHIFT;
|
||||
} else {
|
||||
struct version_regs __iomem *vreg;
|
||||
|
||||
vreg = ctrlpriv->total_jobrs ?
|
||||
(struct version_regs __iomem *)&ctrlpriv->jr[0]->vreg :
|
||||
(struct version_regs __iomem *)&ctrl->vreg;
|
||||
|
||||
rng_vid = (rd_reg32(&vreg->rng) & CHA_VER_VID_MASK) >>
|
||||
CHA_VER_VID_SHIFT;
|
||||
}
|
||||
|
||||
/*
|
||||
* If SEC has RNG version >= 4 and RNG state handle has not been
|
||||
* already instantiated, do RNG instantiation
|
||||
* In case of SoCs with Management Complex, RNG is managed by MC f/w.
|
||||
*/
|
||||
if (!(ctrlpriv->mc_en && ctrlpriv->pr_support) && rng_vid >= 4) {
|
||||
ctrlpriv->rng4_sh_init =
|
||||
rd_reg32(&ctrl->r4tst[0].rdsta);
|
||||
/*
|
||||
* If the secure keys (TDKEK, JDKEK, TDSK), were already
|
||||
* generated, signal this to the function that is instantiating
|
||||
* the state handles. An error would occur if RNG4 attempts
|
||||
* to regenerate these keys before the next POR.
|
||||
*/
|
||||
gen_sk = ctrlpriv->rng4_sh_init & RDSTA_SKVN ? 0 : 1;
|
||||
ctrlpriv->rng4_sh_init &= RDSTA_MASK;
|
||||
do {
|
||||
int inst_handles =
|
||||
rd_reg32(&ctrl->r4tst[0].rdsta) & RDSTA_MASK;
|
||||
/*
|
||||
* If either SH were instantiated by somebody else
|
||||
* (e.g. u-boot) then it is assumed that the entropy
|
||||
* parameters are properly set and thus the function
|
||||
* setting these (kick_trng(...)) is skipped.
|
||||
* Also, if a handle was instantiated, do not change
|
||||
* the TRNG parameters.
|
||||
*/
|
||||
if (needs_entropy_delay_adjustment())
|
||||
ent_delay = 12000;
|
||||
if (!(ctrlpriv->rng4_sh_init || inst_handles)) {
|
||||
dev_info(dev,
|
||||
"Entropy delay = %u\n",
|
||||
ent_delay);
|
||||
kick_trng(dev, ent_delay);
|
||||
ent_delay += 400;
|
||||
}
|
||||
/*
|
||||
* if instantiate_rng(...) fails, the loop will rerun
|
||||
* and the kick_trng(...) function will modify the
|
||||
* upper and lower limits of the entropy sampling
|
||||
* interval, leading to a successful initialization of
|
||||
* the RNG.
|
||||
*/
|
||||
ret = instantiate_rng(dev, inst_handles,
|
||||
gen_sk);
|
||||
/*
|
||||
* Entropy delay is determined via TRNG characterization.
|
||||
* TRNG characterization is run across different voltages
|
||||
* and temperatures.
|
||||
* If worst case value for ent_dly is identified,
|
||||
* the loop can be skipped for that platform.
|
||||
*/
|
||||
if (needs_entropy_delay_adjustment())
|
||||
break;
|
||||
if (ret == -EAGAIN)
|
||||
/*
|
||||
* if here, the loop will rerun,
|
||||
* so don't hog the CPU
|
||||
*/
|
||||
cpu_relax();
|
||||
} while ((ret == -EAGAIN) && (ent_delay < RTSDCTL_ENT_DLY_MAX));
|
||||
if (ret) {
|
||||
dev_err(dev, "failed to instantiate RNG");
|
||||
return ret;
|
||||
}
|
||||
/*
|
||||
* Set handles initialized by this module as the complement of
|
||||
* the already initialized ones
|
||||
*/
|
||||
ctrlpriv->rng4_sh_init = ~ctrlpriv->rng4_sh_init & RDSTA_MASK;
|
||||
|
||||
/* Enable RDB bit so that RNG works faster */
|
||||
clrsetbits_32(&ctrl->scfgr, 0, SCFGR_RDBENABLE);
|
||||
}
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
/* Probe routine for CAAM top (controller) level */
|
||||
static int caam_probe(struct platform_device *pdev)
|
||||
{
|
||||
int ret, ring, gen_sk, ent_delay = RTSDCTL_ENT_DLY_MIN;
|
||||
int ret, ring;
|
||||
u64 caam_id;
|
||||
const struct soc_device_attribute *imx_soc_match;
|
||||
struct device *dev;
|
||||
@ -631,10 +753,8 @@ static int caam_probe(struct platform_device *pdev)
|
||||
struct caam_perfmon __iomem *perfmon;
|
||||
struct dentry *dfs_root;
|
||||
u32 scfgr, comp_params;
|
||||
u8 rng_vid;
|
||||
int pg_size;
|
||||
int BLOCK_OFFSET = 0;
|
||||
bool pr_support = false;
|
||||
bool reg_access = true;
|
||||
|
||||
ctrlpriv = devm_kzalloc(&pdev->dev, sizeof(*ctrlpriv), GFP_KERNEL);
|
||||
@ -646,6 +766,9 @@ static int caam_probe(struct platform_device *pdev)
|
||||
nprop = pdev->dev.of_node;
|
||||
|
||||
imx_soc_match = soc_device_match(caam_imx_soc_table);
|
||||
if (!imx_soc_match && of_match_node(imx8m_machine_match, of_root))
|
||||
return -EPROBE_DEFER;
|
||||
|
||||
caam_imx = (bool)imx_soc_match;
|
||||
|
||||
if (imx_soc_match) {
|
||||
@ -770,7 +893,8 @@ static int caam_probe(struct platform_device *pdev)
|
||||
|
||||
mc_version = fsl_mc_get_version();
|
||||
if (mc_version)
|
||||
pr_support = check_version(mc_version, 10, 20, 0);
|
||||
ctrlpriv->pr_support = check_version(mc_version, 10, 20,
|
||||
0);
|
||||
else
|
||||
return -EPROBE_DEFER;
|
||||
}
|
||||
@ -861,9 +985,6 @@ static int caam_probe(struct platform_device *pdev)
|
||||
return -ENOMEM;
|
||||
}
|
||||
|
||||
if (!reg_access)
|
||||
goto report_live;
|
||||
|
||||
comp_params = rd_reg32(&perfmon->comp_parms_ls);
|
||||
ctrlpriv->blob_present = !!(comp_params & CTPR_LS_BLOB);
|
||||
|
||||
@ -873,8 +994,6 @@ static int caam_probe(struct platform_device *pdev)
|
||||
* check both here.
|
||||
*/
|
||||
if (ctrlpriv->era < 10) {
|
||||
rng_vid = (rd_reg32(&perfmon->cha_id_ls) &
|
||||
CHA_ID_LS_RNG_MASK) >> CHA_ID_LS_RNG_SHIFT;
|
||||
ctrlpriv->blob_present = ctrlpriv->blob_present &&
|
||||
(rd_reg32(&perfmon->cha_num_ls) & CHA_ID_LS_AES_MASK);
|
||||
} else {
|
||||
@ -884,90 +1003,15 @@ static int caam_probe(struct platform_device *pdev)
|
||||
(struct version_regs __iomem *)&ctrlpriv->jr[0]->vreg :
|
||||
(struct version_regs __iomem *)&ctrl->vreg;
|
||||
|
||||
rng_vid = (rd_reg32(&vreg->rng) & CHA_VER_VID_MASK) >>
|
||||
CHA_VER_VID_SHIFT;
|
||||
ctrlpriv->blob_present = ctrlpriv->blob_present &&
|
||||
(rd_reg32(&vreg->aesa) & CHA_VER_MISC_AES_NUM_MASK);
|
||||
}
|
||||
|
||||
/*
|
||||
* If SEC has RNG version >= 4 and RNG state handle has not been
|
||||
* already instantiated, do RNG instantiation
|
||||
* In case of SoCs with Management Complex, RNG is managed by MC f/w.
|
||||
*/
|
||||
if (!(ctrlpriv->mc_en && pr_support) && rng_vid >= 4) {
|
||||
ctrlpriv->rng4_sh_init =
|
||||
rd_reg32(&ctrl->r4tst[0].rdsta);
|
||||
/*
|
||||
* If the secure keys (TDKEK, JDKEK, TDSK), were already
|
||||
* generated, signal this to the function that is instantiating
|
||||
* the state handles. An error would occur if RNG4 attempts
|
||||
* to regenerate these keys before the next POR.
|
||||
*/
|
||||
gen_sk = ctrlpriv->rng4_sh_init & RDSTA_SKVN ? 0 : 1;
|
||||
ctrlpriv->rng4_sh_init &= RDSTA_MASK;
|
||||
do {
|
||||
int inst_handles =
|
||||
rd_reg32(&ctrl->r4tst[0].rdsta) &
|
||||
RDSTA_MASK;
|
||||
/*
|
||||
* If either SH were instantiated by somebody else
|
||||
* (e.g. u-boot) then it is assumed that the entropy
|
||||
* parameters are properly set and thus the function
|
||||
* setting these (kick_trng(...)) is skipped.
|
||||
* Also, if a handle was instantiated, do not change
|
||||
* the TRNG parameters.
|
||||
*/
|
||||
if (needs_entropy_delay_adjustment())
|
||||
ent_delay = 12000;
|
||||
if (!(ctrlpriv->rng4_sh_init || inst_handles)) {
|
||||
dev_info(dev,
|
||||
"Entropy delay = %u\n",
|
||||
ent_delay);
|
||||
kick_trng(pdev, ent_delay);
|
||||
ent_delay += 400;
|
||||
}
|
||||
/*
|
||||
* if instantiate_rng(...) fails, the loop will rerun
|
||||
* and the kick_trng(...) function will modify the
|
||||
* upper and lower limits of the entropy sampling
|
||||
* interval, leading to a successful initialization of
|
||||
* the RNG.
|
||||
*/
|
||||
ret = instantiate_rng(dev, inst_handles,
|
||||
gen_sk);
|
||||
/*
|
||||
* Entropy delay is determined via TRNG characterization.
|
||||
* TRNG characterization is run across different voltages
|
||||
* and temperatures.
|
||||
* If worst case value for ent_dly is identified,
|
||||
* the loop can be skipped for that platform.
|
||||
*/
|
||||
if (needs_entropy_delay_adjustment())
|
||||
break;
|
||||
if (ret == -EAGAIN)
|
||||
/*
|
||||
* if here, the loop will rerun,
|
||||
* so don't hog the CPU
|
||||
*/
|
||||
cpu_relax();
|
||||
} while ((ret == -EAGAIN) && (ent_delay < RTSDCTL_ENT_DLY_MAX));
|
||||
if (ret) {
|
||||
dev_err(dev, "failed to instantiate RNG");
|
||||
if (reg_access) {
|
||||
ret = caam_ctrl_rng_init(dev);
|
||||
if (ret)
|
||||
return ret;
|
||||
}
|
||||
/*
|
||||
* Set handles initialized by this module as the complement of
|
||||
* the already initialized ones
|
||||
*/
|
||||
ctrlpriv->rng4_sh_init = ~ctrlpriv->rng4_sh_init & RDSTA_MASK;
|
||||
|
||||
/* Enable RDB bit so that RNG works faster */
|
||||
clrsetbits_32(&ctrl->scfgr, 0, SCFGR_RDBENABLE);
|
||||
}
|
||||
|
||||
report_live:
|
||||
/* NOTE: RTIC detection ought to go here, around Si time */
|
||||
|
||||
caam_id = (u64)rd_reg32(&perfmon->caam_id_ms) << 32 |
|
||||
(u64)rd_reg32(&perfmon->caam_id_ls);
|
||||
|
@ -95,6 +95,7 @@ struct caam_drv_private {
|
||||
u8 blob_present; /* Nonzero if BLOB support present in device */
|
||||
u8 mc_en; /* Nonzero if MC f/w is active */
|
||||
u8 optee_en; /* Nonzero if OP-TEE f/w is active */
|
||||
bool pr_support; /* RNG prediction resistance available */
|
||||
int secvio_irq; /* Security violation interrupt number */
|
||||
int virt_en; /* Virtualization enabled in CAAM */
|
||||
int era; /* CAAM Era (internal HW revision) */
|
||||
|
@ -3,7 +3,7 @@
|
||||
* CAAM hardware register-level view
|
||||
*
|
||||
* Copyright 2008-2011 Freescale Semiconductor, Inc.
|
||||
* Copyright 2018 NXP
|
||||
* Copyright 2018, 2023 NXP
|
||||
*/
|
||||
|
||||
#ifndef REGS_H
|
||||
@ -523,6 +523,8 @@ struct rng4tst {
|
||||
#define RTSDCTL_ENT_DLY_MASK (0xffff << RTSDCTL_ENT_DLY_SHIFT)
|
||||
#define RTSDCTL_ENT_DLY_MIN 3200
|
||||
#define RTSDCTL_ENT_DLY_MAX 12800
|
||||
#define RTSDCTL_SAMP_SIZE_MASK 0xffff
|
||||
#define RTSDCTL_SAMP_SIZE_VAL 512
|
||||
u32 rtsdctl; /* seed control register */
|
||||
union {
|
||||
u32 rtsblim; /* PRGM=1: sparse bit limit register */
|
||||
@ -534,7 +536,15 @@ struct rng4tst {
|
||||
u32 rtfrqmax; /* PRGM=1: freq. count max. limit register */
|
||||
u32 rtfrqcnt; /* PRGM=0: freq. count register */
|
||||
};
|
||||
u32 rsvd1[40];
|
||||
union {
|
||||
u32 rtscmc; /* statistical check run monobit count */
|
||||
u32 rtscml; /* statistical check run monobit limit */
|
||||
};
|
||||
union {
|
||||
u32 rtscrc[6]; /* statistical check run length count */
|
||||
u32 rtscrl[6]; /* statistical check run length limit */
|
||||
};
|
||||
u32 rsvd1[33];
|
||||
#define RDSTA_SKVT 0x80000000
|
||||
#define RDSTA_SKVN 0x40000000
|
||||
#define RDSTA_PR0 BIT(4)
|
||||
|
@ -67,6 +67,11 @@ int psp_send_platform_access_msg(enum psp_platform_access_msg msg,
|
||||
return -ENODEV;
|
||||
|
||||
pa_dev = psp->platform_access_data;
|
||||
|
||||
if (!pa_dev->vdata->cmdresp_reg || !pa_dev->vdata->cmdbuff_addr_lo_reg ||
|
||||
!pa_dev->vdata->cmdbuff_addr_hi_reg)
|
||||
return -ENODEV;
|
||||
|
||||
cmd = psp->io_regs + pa_dev->vdata->cmdresp_reg;
|
||||
lo = psp->io_regs + pa_dev->vdata->cmdbuff_addr_lo_reg;
|
||||
hi = psp->io_regs + pa_dev->vdata->cmdbuff_addr_hi_reg;
|
||||
|
@ -361,6 +361,14 @@ static const struct tee_vdata teev1 = {
|
||||
.ring_rptr_reg = 0x10554, /* C2PMSG_21 */
|
||||
};
|
||||
|
||||
static const struct tee_vdata teev2 = {
|
||||
.cmdresp_reg = 0x10944, /* C2PMSG_17 */
|
||||
.cmdbuff_addr_lo_reg = 0x10948, /* C2PMSG_18 */
|
||||
.cmdbuff_addr_hi_reg = 0x1094c, /* C2PMSG_19 */
|
||||
.ring_wptr_reg = 0x10950, /* C2PMSG_20 */
|
||||
.ring_rptr_reg = 0x10954, /* C2PMSG_21 */
|
||||
};
|
||||
|
||||
static const struct platform_access_vdata pa_v1 = {
|
||||
.cmdresp_reg = 0x10570, /* C2PMSG_28 */
|
||||
.cmdbuff_addr_lo_reg = 0x10574, /* C2PMSG_29 */
|
||||
@ -369,6 +377,11 @@ static const struct platform_access_vdata pa_v1 = {
|
||||
.doorbell_cmd_reg = 0x10a40, /* C2PMSG_80 */
|
||||
};
|
||||
|
||||
static const struct platform_access_vdata pa_v2 = {
|
||||
.doorbell_button_reg = 0x10a24, /* C2PMSG_73 */
|
||||
.doorbell_cmd_reg = 0x10a40, /* C2PMSG_80 */
|
||||
};
|
||||
|
||||
static const struct psp_vdata pspv1 = {
|
||||
.sev = &sevv1,
|
||||
.feature_reg = 0x105fc, /* C2PMSG_63 */
|
||||
@ -399,6 +412,22 @@ static const struct psp_vdata pspv4 = {
|
||||
.intsts_reg = 0x10694, /* P2CMSG_INTSTS */
|
||||
};
|
||||
|
||||
static const struct psp_vdata pspv5 = {
|
||||
.tee = &teev2,
|
||||
.platform_access = &pa_v2,
|
||||
.feature_reg = 0x109fc, /* C2PMSG_63 */
|
||||
.inten_reg = 0x10510, /* P2CMSG_INTEN */
|
||||
.intsts_reg = 0x10514, /* P2CMSG_INTSTS */
|
||||
};
|
||||
|
||||
static const struct psp_vdata pspv6 = {
|
||||
.sev = &sevv2,
|
||||
.tee = &teev2,
|
||||
.feature_reg = 0x109fc, /* C2PMSG_63 */
|
||||
.inten_reg = 0x10510, /* P2CMSG_INTEN */
|
||||
.intsts_reg = 0x10514, /* P2CMSG_INTSTS */
|
||||
};
|
||||
|
||||
#endif
|
||||
|
||||
static const struct sp_dev_vdata dev_vdata[] = {
|
||||
@ -451,6 +480,18 @@ static const struct sp_dev_vdata dev_vdata[] = {
|
||||
.bar = 2,
|
||||
#ifdef CONFIG_CRYPTO_DEV_SP_PSP
|
||||
.psp_vdata = &pspv3,
|
||||
#endif
|
||||
},
|
||||
{ /* 7 */
|
||||
.bar = 2,
|
||||
#ifdef CONFIG_CRYPTO_DEV_SP_PSP
|
||||
.psp_vdata = &pspv5,
|
||||
#endif
|
||||
},
|
||||
{ /* 8 */
|
||||
.bar = 2,
|
||||
#ifdef CONFIG_CRYPTO_DEV_SP_PSP
|
||||
.psp_vdata = &pspv6,
|
||||
#endif
|
||||
},
|
||||
};
|
||||
@ -463,6 +504,8 @@ static const struct pci_device_id sp_pci_table[] = {
|
||||
{ PCI_VDEVICE(AMD, 0x14CA), (kernel_ulong_t)&dev_vdata[5] },
|
||||
{ PCI_VDEVICE(AMD, 0x15C7), (kernel_ulong_t)&dev_vdata[6] },
|
||||
{ PCI_VDEVICE(AMD, 0x1649), (kernel_ulong_t)&dev_vdata[6] },
|
||||
{ PCI_VDEVICE(AMD, 0x17E0), (kernel_ulong_t)&dev_vdata[7] },
|
||||
{ PCI_VDEVICE(AMD, 0x156E), (kernel_ulong_t)&dev_vdata[8] },
|
||||
/* Last entry must be zero */
|
||||
{ 0, }
|
||||
};
|
||||
|
@ -82,10 +82,3 @@ config CRYPTO_DEV_HISI_TRNG
|
||||
select CRYPTO_RNG
|
||||
help
|
||||
Support for HiSilicon TRNG Driver.
|
||||
|
||||
config CRYPTO_DEV_HISTB_TRNG
|
||||
tristate "Support for HiSTB TRNG Driver"
|
||||
depends on ARCH_HISI || COMPILE_TEST
|
||||
select HW_RANDOM
|
||||
help
|
||||
Support for HiSTB TRNG Driver.
|
||||
|
@ -5,4 +5,4 @@ obj-$(CONFIG_CRYPTO_DEV_HISI_SEC2) += sec2/
|
||||
obj-$(CONFIG_CRYPTO_DEV_HISI_QM) += hisi_qm.o
|
||||
hisi_qm-objs = qm.o sgl.o debugfs.o
|
||||
obj-$(CONFIG_CRYPTO_DEV_HISI_ZIP) += zip/
|
||||
obj-y += trng/
|
||||
obj-$(CONFIG_CRYPTO_DEV_HISI_TRNG) += trng/
|
||||
|
@ -1,5 +1,2 @@
|
||||
obj-$(CONFIG_CRYPTO_DEV_HISI_TRNG) += hisi-trng-v2.o
|
||||
hisi-trng-v2-objs = trng.o
|
||||
|
||||
obj-$(CONFIG_CRYPTO_DEV_HISTB_TRNG) += histb-trng.o
|
||||
histb-trng-objs += trng-stb.o
|
||||
|
@ -1175,9 +1175,9 @@ static int aead_perform(struct aead_request *req, int encrypt,
|
||||
/* The 12 hmac bytes are scattered,
|
||||
* we need to copy them into a safe buffer */
|
||||
req_ctx->hmac_virt = dma_pool_alloc(buffer_pool, flags, &dma);
|
||||
crypt->icv_rev_aes = dma;
|
||||
if (unlikely(!req_ctx->hmac_virt))
|
||||
goto free_buf_dst;
|
||||
crypt->icv_rev_aes = dma;
|
||||
if (!encrypt) {
|
||||
scatterwalk_map_and_copy(req_ctx->hmac_virt,
|
||||
req->src, cryptlen, authsize, 0);
|
||||
|
@ -11,37 +11,76 @@
|
||||
#include "adf_4xxx_hw_data.h"
|
||||
#include "icp_qat_hw.h"
|
||||
|
||||
enum adf_fw_objs {
|
||||
ADF_FW_SYM_OBJ,
|
||||
ADF_FW_ASYM_OBJ,
|
||||
ADF_FW_DC_OBJ,
|
||||
ADF_FW_ADMIN_OBJ,
|
||||
};
|
||||
|
||||
static const char * const adf_4xxx_fw_objs[] = {
|
||||
[ADF_FW_SYM_OBJ] = ADF_4XXX_SYM_OBJ,
|
||||
[ADF_FW_ASYM_OBJ] = ADF_4XXX_ASYM_OBJ,
|
||||
[ADF_FW_DC_OBJ] = ADF_4XXX_DC_OBJ,
|
||||
[ADF_FW_ADMIN_OBJ] = ADF_4XXX_ADMIN_OBJ,
|
||||
};
|
||||
|
||||
static const char * const adf_402xx_fw_objs[] = {
|
||||
[ADF_FW_SYM_OBJ] = ADF_402XX_SYM_OBJ,
|
||||
[ADF_FW_ASYM_OBJ] = ADF_402XX_ASYM_OBJ,
|
||||
[ADF_FW_DC_OBJ] = ADF_402XX_DC_OBJ,
|
||||
[ADF_FW_ADMIN_OBJ] = ADF_402XX_ADMIN_OBJ,
|
||||
};
|
||||
|
||||
struct adf_fw_config {
|
||||
u32 ae_mask;
|
||||
char *obj_name;
|
||||
enum adf_fw_objs obj;
|
||||
};
|
||||
|
||||
static struct adf_fw_config adf_4xxx_fw_cy_config[] = {
|
||||
{0xF0, ADF_4XXX_SYM_OBJ},
|
||||
{0xF, ADF_4XXX_ASYM_OBJ},
|
||||
{0x100, ADF_4XXX_ADMIN_OBJ},
|
||||
static const struct adf_fw_config adf_fw_cy_config[] = {
|
||||
{0xF0, ADF_FW_SYM_OBJ},
|
||||
{0xF, ADF_FW_ASYM_OBJ},
|
||||
{0x100, ADF_FW_ADMIN_OBJ},
|
||||
};
|
||||
|
||||
static struct adf_fw_config adf_4xxx_fw_dc_config[] = {
|
||||
{0xF0, ADF_4XXX_DC_OBJ},
|
||||
{0xF, ADF_4XXX_DC_OBJ},
|
||||
{0x100, ADF_4XXX_ADMIN_OBJ},
|
||||
static const struct adf_fw_config adf_fw_dc_config[] = {
|
||||
{0xF0, ADF_FW_DC_OBJ},
|
||||
{0xF, ADF_FW_DC_OBJ},
|
||||
{0x100, ADF_FW_ADMIN_OBJ},
|
||||
};
|
||||
|
||||
static struct adf_fw_config adf_402xx_fw_cy_config[] = {
|
||||
{0xF0, ADF_402XX_SYM_OBJ},
|
||||
{0xF, ADF_402XX_ASYM_OBJ},
|
||||
{0x100, ADF_402XX_ADMIN_OBJ},
|
||||
static const struct adf_fw_config adf_fw_sym_config[] = {
|
||||
{0xF0, ADF_FW_SYM_OBJ},
|
||||
{0xF, ADF_FW_SYM_OBJ},
|
||||
{0x100, ADF_FW_ADMIN_OBJ},
|
||||
};
|
||||
|
||||
static struct adf_fw_config adf_402xx_fw_dc_config[] = {
|
||||
{0xF0, ADF_402XX_DC_OBJ},
|
||||
{0xF, ADF_402XX_DC_OBJ},
|
||||
{0x100, ADF_402XX_ADMIN_OBJ},
|
||||
static const struct adf_fw_config adf_fw_asym_config[] = {
|
||||
{0xF0, ADF_FW_ASYM_OBJ},
|
||||
{0xF, ADF_FW_ASYM_OBJ},
|
||||
{0x100, ADF_FW_ADMIN_OBJ},
|
||||
};
|
||||
|
||||
static const struct adf_fw_config adf_fw_asym_dc_config[] = {
|
||||
{0xF0, ADF_FW_ASYM_OBJ},
|
||||
{0xF, ADF_FW_DC_OBJ},
|
||||
{0x100, ADF_FW_ADMIN_OBJ},
|
||||
};
|
||||
|
||||
static const struct adf_fw_config adf_fw_sym_dc_config[] = {
|
||||
{0xF0, ADF_FW_SYM_OBJ},
|
||||
{0xF, ADF_FW_DC_OBJ},
|
||||
{0x100, ADF_FW_ADMIN_OBJ},
|
||||
};
|
||||
|
||||
static_assert(ARRAY_SIZE(adf_fw_cy_config) == ARRAY_SIZE(adf_fw_dc_config));
|
||||
static_assert(ARRAY_SIZE(adf_fw_cy_config) == ARRAY_SIZE(adf_fw_sym_config));
|
||||
static_assert(ARRAY_SIZE(adf_fw_cy_config) == ARRAY_SIZE(adf_fw_asym_config));
|
||||
static_assert(ARRAY_SIZE(adf_fw_cy_config) == ARRAY_SIZE(adf_fw_asym_dc_config));
|
||||
static_assert(ARRAY_SIZE(adf_fw_cy_config) == ARRAY_SIZE(adf_fw_sym_dc_config));
|
||||
|
||||
/* Worker thread to service arbiter mappings */
|
||||
static const u32 thrd_to_arb_map_cy[ADF_4XXX_MAX_ACCELENGINES] = {
|
||||
static const u32 default_thrd_to_arb_map[ADF_4XXX_MAX_ACCELENGINES] = {
|
||||
0x5555555, 0x5555555, 0x5555555, 0x5555555,
|
||||
0xAAAAAAA, 0xAAAAAAA, 0xAAAAAAA, 0xAAAAAAA,
|
||||
0x0
|
||||
@ -61,12 +100,26 @@ static struct adf_hw_device_class adf_4xxx_class = {
|
||||
|
||||
enum dev_services {
|
||||
SVC_CY = 0,
|
||||
SVC_CY2,
|
||||
SVC_DC,
|
||||
SVC_SYM,
|
||||
SVC_ASYM,
|
||||
SVC_DC_ASYM,
|
||||
SVC_ASYM_DC,
|
||||
SVC_DC_SYM,
|
||||
SVC_SYM_DC,
|
||||
};
|
||||
|
||||
static const char *const dev_cfg_services[] = {
|
||||
[SVC_CY] = ADF_CFG_CY,
|
||||
[SVC_CY2] = ADF_CFG_ASYM_SYM,
|
||||
[SVC_DC] = ADF_CFG_DC,
|
||||
[SVC_SYM] = ADF_CFG_SYM,
|
||||
[SVC_ASYM] = ADF_CFG_ASYM,
|
||||
[SVC_DC_ASYM] = ADF_CFG_DC_ASYM,
|
||||
[SVC_ASYM_DC] = ADF_CFG_ASYM_DC,
|
||||
[SVC_DC_SYM] = ADF_CFG_DC_SYM,
|
||||
[SVC_SYM_DC] = ADF_CFG_SYM_DC,
|
||||
};
|
||||
|
||||
static int get_service_enabled(struct adf_accel_dev *accel_dev)
|
||||
@ -156,45 +209,50 @@ static void set_msix_default_rttable(struct adf_accel_dev *accel_dev)
|
||||
static u32 get_accel_cap(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
struct pci_dev *pdev = accel_dev->accel_pci_dev.pci_dev;
|
||||
u32 capabilities_cy, capabilities_dc;
|
||||
u32 capabilities_sym, capabilities_asym, capabilities_dc;
|
||||
u32 fusectl1;
|
||||
|
||||
/* Read accelerator capabilities mask */
|
||||
pci_read_config_dword(pdev, ADF_4XXX_FUSECTL1_OFFSET, &fusectl1);
|
||||
|
||||
capabilities_cy = ICP_ACCEL_CAPABILITIES_CRYPTO_SYMMETRIC |
|
||||
ICP_ACCEL_CAPABILITIES_CRYPTO_ASYMMETRIC |
|
||||
capabilities_sym = ICP_ACCEL_CAPABILITIES_CRYPTO_SYMMETRIC |
|
||||
ICP_ACCEL_CAPABILITIES_CIPHER |
|
||||
ICP_ACCEL_CAPABILITIES_AUTHENTICATION |
|
||||
ICP_ACCEL_CAPABILITIES_SHA3 |
|
||||
ICP_ACCEL_CAPABILITIES_SHA3_EXT |
|
||||
ICP_ACCEL_CAPABILITIES_HKDF |
|
||||
ICP_ACCEL_CAPABILITIES_ECEDMONT |
|
||||
ICP_ACCEL_CAPABILITIES_CHACHA_POLY |
|
||||
ICP_ACCEL_CAPABILITIES_AESGCM_SPC |
|
||||
ICP_ACCEL_CAPABILITIES_AES_V2;
|
||||
|
||||
/* A set bit in fusectl1 means the feature is OFF in this SKU */
|
||||
if (fusectl1 & ICP_ACCEL_4XXX_MASK_CIPHER_SLICE) {
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_CRYPTO_SYMMETRIC;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_HKDF;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_CIPHER;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_CRYPTO_SYMMETRIC;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_HKDF;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_CIPHER;
|
||||
}
|
||||
|
||||
if (fusectl1 & ICP_ACCEL_4XXX_MASK_UCS_SLICE) {
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_CHACHA_POLY;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_AESGCM_SPC;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_AES_V2;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_CIPHER;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_CHACHA_POLY;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_AESGCM_SPC;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_AES_V2;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_CIPHER;
|
||||
}
|
||||
|
||||
if (fusectl1 & ICP_ACCEL_4XXX_MASK_AUTH_SLICE) {
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_AUTHENTICATION;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_SHA3;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_SHA3_EXT;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_CIPHER;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_AUTHENTICATION;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_SHA3;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_SHA3_EXT;
|
||||
capabilities_sym &= ~ICP_ACCEL_CAPABILITIES_CIPHER;
|
||||
}
|
||||
|
||||
capabilities_asym = ICP_ACCEL_CAPABILITIES_CRYPTO_ASYMMETRIC |
|
||||
ICP_ACCEL_CAPABILITIES_CIPHER |
|
||||
ICP_ACCEL_CAPABILITIES_ECEDMONT;
|
||||
|
||||
if (fusectl1 & ICP_ACCEL_4XXX_MASK_PKE_SLICE) {
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_CRYPTO_ASYMMETRIC;
|
||||
capabilities_cy &= ~ICP_ACCEL_CAPABILITIES_ECEDMONT;
|
||||
capabilities_asym &= ~ICP_ACCEL_CAPABILITIES_CRYPTO_ASYMMETRIC;
|
||||
capabilities_asym &= ~ICP_ACCEL_CAPABILITIES_ECEDMONT;
|
||||
}
|
||||
|
||||
capabilities_dc = ICP_ACCEL_CAPABILITIES_COMPRESSION |
|
||||
@ -211,12 +269,23 @@ static u32 get_accel_cap(struct adf_accel_dev *accel_dev)
|
||||
|
||||
switch (get_service_enabled(accel_dev)) {
|
||||
case SVC_CY:
|
||||
return capabilities_cy;
|
||||
case SVC_CY2:
|
||||
return capabilities_sym | capabilities_asym;
|
||||
case SVC_DC:
|
||||
return capabilities_dc;
|
||||
}
|
||||
|
||||
case SVC_SYM:
|
||||
return capabilities_sym;
|
||||
case SVC_ASYM:
|
||||
return capabilities_asym;
|
||||
case SVC_ASYM_DC:
|
||||
case SVC_DC_ASYM:
|
||||
return capabilities_asym | capabilities_dc;
|
||||
case SVC_SYM_DC:
|
||||
case SVC_DC_SYM:
|
||||
return capabilities_sym | capabilities_dc;
|
||||
default:
|
||||
return 0;
|
||||
}
|
||||
}
|
||||
|
||||
static enum dev_sku_info get_sku(struct adf_hw_device_data *self)
|
||||
@ -227,13 +296,11 @@ static enum dev_sku_info get_sku(struct adf_hw_device_data *self)
|
||||
static const u32 *adf_get_arbiter_mapping(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
switch (get_service_enabled(accel_dev)) {
|
||||
case SVC_CY:
|
||||
return thrd_to_arb_map_cy;
|
||||
case SVC_DC:
|
||||
return thrd_to_arb_map_dc;
|
||||
default:
|
||||
return default_thrd_to_arb_map;
|
||||
}
|
||||
|
||||
return NULL;
|
||||
}
|
||||
|
||||
static void get_arb_info(struct arb_info *arb_info)
|
||||
@ -304,47 +371,83 @@ static int adf_init_device(struct adf_accel_dev *accel_dev)
|
||||
|
||||
static u32 uof_get_num_objs(void)
|
||||
{
|
||||
BUILD_BUG_ON_MSG(ARRAY_SIZE(adf_4xxx_fw_cy_config) !=
|
||||
ARRAY_SIZE(adf_4xxx_fw_dc_config),
|
||||
"Size mismatch between adf_4xxx_fw_*_config arrays");
|
||||
|
||||
return ARRAY_SIZE(adf_4xxx_fw_cy_config);
|
||||
return ARRAY_SIZE(adf_fw_cy_config);
|
||||
}
|
||||
|
||||
static char *uof_get_name_4xxx(struct adf_accel_dev *accel_dev, u32 obj_num)
|
||||
static const char *uof_get_name(struct adf_accel_dev *accel_dev, u32 obj_num,
|
||||
const char * const fw_objs[], int num_objs)
|
||||
{
|
||||
int id;
|
||||
|
||||
switch (get_service_enabled(accel_dev)) {
|
||||
case SVC_CY:
|
||||
return adf_4xxx_fw_cy_config[obj_num].obj_name;
|
||||
case SVC_CY2:
|
||||
id = adf_fw_cy_config[obj_num].obj;
|
||||
break;
|
||||
case SVC_DC:
|
||||
return adf_4xxx_fw_dc_config[obj_num].obj_name;
|
||||
id = adf_fw_dc_config[obj_num].obj;
|
||||
break;
|
||||
case SVC_SYM:
|
||||
id = adf_fw_sym_config[obj_num].obj;
|
||||
break;
|
||||
case SVC_ASYM:
|
||||
id = adf_fw_asym_config[obj_num].obj;
|
||||
break;
|
||||
case SVC_ASYM_DC:
|
||||
case SVC_DC_ASYM:
|
||||
id = adf_fw_asym_dc_config[obj_num].obj;
|
||||
break;
|
||||
case SVC_SYM_DC:
|
||||
case SVC_DC_SYM:
|
||||
id = adf_fw_sym_dc_config[obj_num].obj;
|
||||
break;
|
||||
default:
|
||||
id = -EINVAL;
|
||||
break;
|
||||
}
|
||||
|
||||
if (id < 0 || id > num_objs)
|
||||
return NULL;
|
||||
|
||||
return fw_objs[id];
|
||||
}
|
||||
|
||||
static char *uof_get_name_402xx(struct adf_accel_dev *accel_dev, u32 obj_num)
|
||||
static const char *uof_get_name_4xxx(struct adf_accel_dev *accel_dev, u32 obj_num)
|
||||
{
|
||||
switch (get_service_enabled(accel_dev)) {
|
||||
case SVC_CY:
|
||||
return adf_402xx_fw_cy_config[obj_num].obj_name;
|
||||
case SVC_DC:
|
||||
return adf_402xx_fw_dc_config[obj_num].obj_name;
|
||||
}
|
||||
int num_fw_objs = ARRAY_SIZE(adf_4xxx_fw_objs);
|
||||
|
||||
return NULL;
|
||||
return uof_get_name(accel_dev, obj_num, adf_4xxx_fw_objs, num_fw_objs);
|
||||
}
|
||||
|
||||
static const char *uof_get_name_402xx(struct adf_accel_dev *accel_dev, u32 obj_num)
|
||||
{
|
||||
int num_fw_objs = ARRAY_SIZE(adf_402xx_fw_objs);
|
||||
|
||||
return uof_get_name(accel_dev, obj_num, adf_402xx_fw_objs, num_fw_objs);
|
||||
}
|
||||
|
||||
static u32 uof_get_ae_mask(struct adf_accel_dev *accel_dev, u32 obj_num)
|
||||
{
|
||||
switch (get_service_enabled(accel_dev)) {
|
||||
case SVC_CY:
|
||||
return adf_4xxx_fw_cy_config[obj_num].ae_mask;
|
||||
return adf_fw_cy_config[obj_num].ae_mask;
|
||||
case SVC_DC:
|
||||
return adf_4xxx_fw_dc_config[obj_num].ae_mask;
|
||||
}
|
||||
|
||||
return adf_fw_dc_config[obj_num].ae_mask;
|
||||
case SVC_CY2:
|
||||
return adf_fw_cy_config[obj_num].ae_mask;
|
||||
case SVC_SYM:
|
||||
return adf_fw_sym_config[obj_num].ae_mask;
|
||||
case SVC_ASYM:
|
||||
return adf_fw_asym_config[obj_num].ae_mask;
|
||||
case SVC_ASYM_DC:
|
||||
case SVC_DC_ASYM:
|
||||
return adf_fw_asym_dc_config[obj_num].ae_mask;
|
||||
case SVC_SYM_DC:
|
||||
case SVC_DC_SYM:
|
||||
return adf_fw_sym_dc_config[obj_num].ae_mask;
|
||||
default:
|
||||
return 0;
|
||||
}
|
||||
}
|
||||
|
||||
void adf_init_hw_data_4xxx(struct adf_hw_device_data *hw_data, u32 dev_id)
|
||||
|
@ -72,7 +72,7 @@ enum icp_qat_4xxx_slice_mask {
|
||||
ICP_ACCEL_4XXX_MASK_COMPRESS_SLICE = BIT(3),
|
||||
ICP_ACCEL_4XXX_MASK_UCS_SLICE = BIT(4),
|
||||
ICP_ACCEL_4XXX_MASK_EIA3_SLICE = BIT(5),
|
||||
ICP_ACCEL_4XXX_MASK_SMX_SLICE = BIT(6),
|
||||
ICP_ACCEL_4XXX_MASK_SMX_SLICE = BIT(7),
|
||||
};
|
||||
|
||||
void adf_init_hw_data_4xxx(struct adf_hw_device_data *hw_data, u32 dev_id);
|
||||
|
@ -7,6 +7,7 @@
|
||||
#include <adf_accel_devices.h>
|
||||
#include <adf_cfg.h>
|
||||
#include <adf_common_drv.h>
|
||||
#include <adf_dbgfs.h>
|
||||
|
||||
#include "adf_4xxx_hw_data.h"
|
||||
#include "qat_compression.h"
|
||||
@ -24,11 +25,25 @@ MODULE_DEVICE_TABLE(pci, adf_pci_tbl);
|
||||
enum configs {
|
||||
DEV_CFG_CY = 0,
|
||||
DEV_CFG_DC,
|
||||
DEV_CFG_SYM,
|
||||
DEV_CFG_ASYM,
|
||||
DEV_CFG_ASYM_SYM,
|
||||
DEV_CFG_ASYM_DC,
|
||||
DEV_CFG_DC_ASYM,
|
||||
DEV_CFG_SYM_DC,
|
||||
DEV_CFG_DC_SYM,
|
||||
};
|
||||
|
||||
static const char * const services_operations[] = {
|
||||
ADF_CFG_CY,
|
||||
ADF_CFG_DC,
|
||||
ADF_CFG_SYM,
|
||||
ADF_CFG_ASYM,
|
||||
ADF_CFG_ASYM_SYM,
|
||||
ADF_CFG_ASYM_DC,
|
||||
ADF_CFG_DC_ASYM,
|
||||
ADF_CFG_SYM_DC,
|
||||
ADF_CFG_DC_SYM,
|
||||
};
|
||||
|
||||
static void adf_cleanup_accel(struct adf_accel_dev *accel_dev)
|
||||
@ -37,8 +52,8 @@ static void adf_cleanup_accel(struct adf_accel_dev *accel_dev)
|
||||
adf_clean_hw_data_4xxx(accel_dev->hw_device);
|
||||
accel_dev->hw_device = NULL;
|
||||
}
|
||||
adf_dbgfs_exit(accel_dev);
|
||||
adf_cfg_dev_remove(accel_dev);
|
||||
debugfs_remove(accel_dev->debugfs_dir);
|
||||
adf_devmgr_rm_dev(accel_dev, NULL);
|
||||
}
|
||||
|
||||
@ -241,6 +256,21 @@ static int adf_comp_dev_config(struct adf_accel_dev *accel_dev)
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int adf_no_dev_config(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
unsigned long val;
|
||||
int ret;
|
||||
|
||||
val = 0;
|
||||
ret = adf_cfg_add_key_value_param(accel_dev, ADF_KERNEL_SEC, ADF_NUM_DC,
|
||||
&val, ADF_DEC);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
return adf_cfg_add_key_value_param(accel_dev, ADF_KERNEL_SEC, ADF_NUM_CY,
|
||||
&val, ADF_DEC);
|
||||
}
|
||||
|
||||
int adf_gen4_dev_config(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
char services[ADF_CFG_MAX_VAL_LEN_IN_BYTES] = {0};
|
||||
@ -265,11 +295,15 @@ int adf_gen4_dev_config(struct adf_accel_dev *accel_dev)
|
||||
|
||||
switch (ret) {
|
||||
case DEV_CFG_CY:
|
||||
case DEV_CFG_ASYM_SYM:
|
||||
ret = adf_crypto_dev_config(accel_dev);
|
||||
break;
|
||||
case DEV_CFG_DC:
|
||||
ret = adf_comp_dev_config(accel_dev);
|
||||
break;
|
||||
default:
|
||||
ret = adf_no_dev_config(accel_dev);
|
||||
break;
|
||||
}
|
||||
|
||||
if (ret)
|
||||
@ -289,7 +323,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
struct adf_accel_dev *accel_dev;
|
||||
struct adf_accel_pci *accel_pci_dev;
|
||||
struct adf_hw_device_data *hw_data;
|
||||
char name[ADF_DEVICE_NAME_LENGTH];
|
||||
unsigned int i, bar_nr;
|
||||
unsigned long bar_mask;
|
||||
struct adf_bar *bar;
|
||||
@ -348,12 +381,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
goto out_err;
|
||||
}
|
||||
|
||||
/* Create dev top level debugfs entry */
|
||||
snprintf(name, sizeof(name), "%s%s_%s", ADF_DEVICE_NAME_PREFIX,
|
||||
hw_data->dev_class->name, pci_name(pdev));
|
||||
|
||||
accel_dev->debugfs_dir = debugfs_create_dir(name, NULL);
|
||||
|
||||
/* Create device configuration table */
|
||||
ret = adf_cfg_dev_add(accel_dev);
|
||||
if (ret)
|
||||
@ -410,6 +437,8 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
goto out_err;
|
||||
}
|
||||
|
||||
adf_dbgfs_init(accel_dev);
|
||||
|
||||
ret = adf_dev_up(accel_dev, true);
|
||||
if (ret)
|
||||
goto out_err_dev_stop;
|
||||
|
@ -16,6 +16,7 @@
|
||||
#include <adf_accel_devices.h>
|
||||
#include <adf_common_drv.h>
|
||||
#include <adf_cfg.h>
|
||||
#include <adf_dbgfs.h>
|
||||
#include "adf_c3xxx_hw_data.h"
|
||||
|
||||
static const struct pci_device_id adf_pci_tbl[] = {
|
||||
@ -65,8 +66,8 @@ static void adf_cleanup_accel(struct adf_accel_dev *accel_dev)
|
||||
kfree(accel_dev->hw_device);
|
||||
accel_dev->hw_device = NULL;
|
||||
}
|
||||
adf_dbgfs_exit(accel_dev);
|
||||
adf_cfg_dev_remove(accel_dev);
|
||||
debugfs_remove(accel_dev->debugfs_dir);
|
||||
adf_devmgr_rm_dev(accel_dev, NULL);
|
||||
}
|
||||
|
||||
@ -75,7 +76,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
struct adf_accel_dev *accel_dev;
|
||||
struct adf_accel_pci *accel_pci_dev;
|
||||
struct adf_hw_device_data *hw_data;
|
||||
char name[ADF_DEVICE_NAME_LENGTH];
|
||||
unsigned int i, bar_nr;
|
||||
unsigned long bar_mask;
|
||||
int ret;
|
||||
@ -142,12 +142,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
goto out_err;
|
||||
}
|
||||
|
||||
/* Create dev top level debugfs entry */
|
||||
snprintf(name, sizeof(name), "%s%s_%s", ADF_DEVICE_NAME_PREFIX,
|
||||
hw_data->dev_class->name, pci_name(pdev));
|
||||
|
||||
accel_dev->debugfs_dir = debugfs_create_dir(name, NULL);
|
||||
|
||||
/* Create device configuration table */
|
||||
ret = adf_cfg_dev_add(accel_dev);
|
||||
if (ret)
|
||||
@ -199,6 +193,8 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
goto out_err_free_reg;
|
||||
}
|
||||
|
||||
adf_dbgfs_init(accel_dev);
|
||||
|
||||
ret = adf_dev_up(accel_dev, true);
|
||||
if (ret)
|
||||
goto out_err_dev_stop;
|
||||
|
@ -16,6 +16,7 @@
|
||||
#include <adf_accel_devices.h>
|
||||
#include <adf_common_drv.h>
|
||||
#include <adf_cfg.h>
|
||||
#include <adf_dbgfs.h>
|
||||
#include "adf_c3xxxvf_hw_data.h"
|
||||
|
||||
static const struct pci_device_id adf_pci_tbl[] = {
|
||||
@ -64,8 +65,8 @@ static void adf_cleanup_accel(struct adf_accel_dev *accel_dev)
|
||||
kfree(accel_dev->hw_device);
|
||||
accel_dev->hw_device = NULL;
|
||||
}
|
||||
adf_dbgfs_exit(accel_dev);
|
||||
adf_cfg_dev_remove(accel_dev);
|
||||
debugfs_remove(accel_dev->debugfs_dir);
|
||||
pf = adf_devmgr_pci_to_accel_dev(accel_pci_dev->pci_dev->physfn);
|
||||
adf_devmgr_rm_dev(accel_dev, pf);
|
||||
}
|
||||
@ -76,7 +77,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
struct adf_accel_dev *pf;
|
||||
struct adf_accel_pci *accel_pci_dev;
|
||||
struct adf_hw_device_data *hw_data;
|
||||
char name[ADF_DEVICE_NAME_LENGTH];
|
||||
unsigned int i, bar_nr;
|
||||
unsigned long bar_mask;
|
||||
int ret;
|
||||
@ -123,12 +123,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
hw_data->ae_mask = hw_data->get_ae_mask(hw_data);
|
||||
accel_pci_dev->sku = hw_data->get_sku(hw_data);
|
||||
|
||||
/* Create dev top level debugfs entry */
|
||||
snprintf(name, sizeof(name), "%s%s_%s", ADF_DEVICE_NAME_PREFIX,
|
||||
hw_data->dev_class->name, pci_name(pdev));
|
||||
|
||||
accel_dev->debugfs_dir = debugfs_create_dir(name, NULL);
|
||||
|
||||
/* Create device configuration table */
|
||||
ret = adf_cfg_dev_add(accel_dev);
|
||||
if (ret)
|
||||
@ -173,6 +167,8 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
/* Completion for VF2PF request/response message exchange */
|
||||
init_completion(&accel_dev->vf.msg_received);
|
||||
|
||||
adf_dbgfs_init(accel_dev);
|
||||
|
||||
ret = adf_dev_up(accel_dev, false);
|
||||
if (ret)
|
||||
goto out_err_dev_stop;
|
||||
|
@ -16,6 +16,7 @@
|
||||
#include <adf_accel_devices.h>
|
||||
#include <adf_common_drv.h>
|
||||
#include <adf_cfg.h>
|
||||
#include <adf_dbgfs.h>
|
||||
#include "adf_c62x_hw_data.h"
|
||||
|
||||
static const struct pci_device_id adf_pci_tbl[] = {
|
||||
@ -65,8 +66,8 @@ static void adf_cleanup_accel(struct adf_accel_dev *accel_dev)
|
||||
kfree(accel_dev->hw_device);
|
||||
accel_dev->hw_device = NULL;
|
||||
}
|
||||
adf_dbgfs_exit(accel_dev);
|
||||
adf_cfg_dev_remove(accel_dev);
|
||||
debugfs_remove(accel_dev->debugfs_dir);
|
||||
adf_devmgr_rm_dev(accel_dev, NULL);
|
||||
}
|
||||
|
||||
@ -75,7 +76,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
struct adf_accel_dev *accel_dev;
|
||||
struct adf_accel_pci *accel_pci_dev;
|
||||
struct adf_hw_device_data *hw_data;
|
||||
char name[ADF_DEVICE_NAME_LENGTH];
|
||||
unsigned int i, bar_nr;
|
||||
unsigned long bar_mask;
|
||||
int ret;
|
||||
@ -142,12 +142,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
goto out_err;
|
||||
}
|
||||
|
||||
/* Create dev top level debugfs entry */
|
||||
snprintf(name, sizeof(name), "%s%s_%s", ADF_DEVICE_NAME_PREFIX,
|
||||
hw_data->dev_class->name, pci_name(pdev));
|
||||
|
||||
accel_dev->debugfs_dir = debugfs_create_dir(name, NULL);
|
||||
|
||||
/* Create device configuration table */
|
||||
ret = adf_cfg_dev_add(accel_dev);
|
||||
if (ret)
|
||||
@ -199,6 +193,8 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
goto out_err_free_reg;
|
||||
}
|
||||
|
||||
adf_dbgfs_init(accel_dev);
|
||||
|
||||
ret = adf_dev_up(accel_dev, true);
|
||||
if (ret)
|
||||
goto out_err_dev_stop;
|
||||
|
@ -16,6 +16,7 @@
|
||||
#include <adf_accel_devices.h>
|
||||
#include <adf_common_drv.h>
|
||||
#include <adf_cfg.h>
|
||||
#include <adf_dbgfs.h>
|
||||
#include "adf_c62xvf_hw_data.h"
|
||||
|
||||
static const struct pci_device_id adf_pci_tbl[] = {
|
||||
@ -64,8 +65,8 @@ static void adf_cleanup_accel(struct adf_accel_dev *accel_dev)
|
||||
kfree(accel_dev->hw_device);
|
||||
accel_dev->hw_device = NULL;
|
||||
}
|
||||
adf_dbgfs_exit(accel_dev);
|
||||
adf_cfg_dev_remove(accel_dev);
|
||||
debugfs_remove(accel_dev->debugfs_dir);
|
||||
pf = adf_devmgr_pci_to_accel_dev(accel_pci_dev->pci_dev->physfn);
|
||||
adf_devmgr_rm_dev(accel_dev, pf);
|
||||
}
|
||||
@ -76,7 +77,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
struct adf_accel_dev *pf;
|
||||
struct adf_accel_pci *accel_pci_dev;
|
||||
struct adf_hw_device_data *hw_data;
|
||||
char name[ADF_DEVICE_NAME_LENGTH];
|
||||
unsigned int i, bar_nr;
|
||||
unsigned long bar_mask;
|
||||
int ret;
|
||||
@ -123,12 +123,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
hw_data->ae_mask = hw_data->get_ae_mask(hw_data);
|
||||
accel_pci_dev->sku = hw_data->get_sku(hw_data);
|
||||
|
||||
/* Create dev top level debugfs entry */
|
||||
snprintf(name, sizeof(name), "%s%s_%s", ADF_DEVICE_NAME_PREFIX,
|
||||
hw_data->dev_class->name, pci_name(pdev));
|
||||
|
||||
accel_dev->debugfs_dir = debugfs_create_dir(name, NULL);
|
||||
|
||||
/* Create device configuration table */
|
||||
ret = adf_cfg_dev_add(accel_dev);
|
||||
if (ret)
|
||||
@ -173,6 +167,8 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
/* Completion for VF2PF request/response message exchange */
|
||||
init_completion(&accel_dev->vf.msg_received);
|
||||
|
||||
adf_dbgfs_init(accel_dev);
|
||||
|
||||
ret = adf_dev_up(accel_dev, false);
|
||||
if (ret)
|
||||
goto out_err_dev_stop;
|
||||
|
@ -27,7 +27,9 @@ intel_qat-objs := adf_cfg.o \
|
||||
qat_hal.o \
|
||||
qat_bl.o
|
||||
|
||||
intel_qat-$(CONFIG_DEBUG_FS) += adf_transport_debug.o
|
||||
intel_qat-$(CONFIG_DEBUG_FS) += adf_transport_debug.o \
|
||||
adf_dbgfs.o
|
||||
|
||||
intel_qat-$(CONFIG_PCI_IOV) += adf_sriov.o adf_vf_isr.o adf_pfvf_utils.o \
|
||||
adf_pfvf_pf_msg.o adf_pfvf_pf_proto.o \
|
||||
adf_pfvf_vf_msg.o adf_pfvf_vf_proto.o \
|
||||
|
@ -202,7 +202,7 @@ struct adf_hw_device_data {
|
||||
int (*ring_pair_reset)(struct adf_accel_dev *accel_dev, u32 bank_nr);
|
||||
void (*reset_device)(struct adf_accel_dev *accel_dev);
|
||||
void (*set_msix_rttable)(struct adf_accel_dev *accel_dev);
|
||||
char *(*uof_get_name)(struct adf_accel_dev *accel_dev, u32 obj_num);
|
||||
const char *(*uof_get_name)(struct adf_accel_dev *accel_dev, u32 obj_num);
|
||||
u32 (*uof_get_num_objs)(void);
|
||||
u32 (*uof_get_ae_mask)(struct adf_accel_dev *accel_dev, u32 obj_num);
|
||||
int (*dev_config)(struct adf_accel_dev *accel_dev);
|
||||
|
@ -13,7 +13,7 @@ static int adf_ae_fw_load_images(struct adf_accel_dev *accel_dev, void *fw_addr,
|
||||
struct adf_fw_loader_data *loader_data = accel_dev->fw_loader;
|
||||
struct adf_hw_device_data *hw_device = accel_dev->hw_device;
|
||||
struct icp_qat_fw_loader_handle *loader;
|
||||
char *obj_name;
|
||||
const char *obj_name;
|
||||
u32 num_objs;
|
||||
u32 ae_mask;
|
||||
int i;
|
||||
|
@ -286,7 +286,6 @@ int adf_init_admin_pm(struct adf_accel_dev *accel_dev, u32 idle_delay)
|
||||
|
||||
return adf_send_admin(accel_dev, &req, &resp, ae_mask);
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(adf_init_admin_pm);
|
||||
|
||||
int adf_init_admin_comms(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
|
@ -74,16 +74,31 @@ int adf_cfg_dev_add(struct adf_accel_dev *accel_dev)
|
||||
INIT_LIST_HEAD(&dev_cfg_data->sec_list);
|
||||
init_rwsem(&dev_cfg_data->lock);
|
||||
accel_dev->cfg = dev_cfg_data;
|
||||
|
||||
/* accel_dev->debugfs_dir should always be non-NULL here */
|
||||
dev_cfg_data->debug = debugfs_create_file("dev_cfg", S_IRUSR,
|
||||
accel_dev->debugfs_dir,
|
||||
dev_cfg_data,
|
||||
&qat_dev_cfg_fops);
|
||||
return 0;
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(adf_cfg_dev_add);
|
||||
|
||||
void adf_cfg_dev_dbgfs_add(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
struct adf_cfg_device_data *dev_cfg_data = accel_dev->cfg;
|
||||
|
||||
dev_cfg_data->debug = debugfs_create_file("dev_cfg", 0400,
|
||||
accel_dev->debugfs_dir,
|
||||
dev_cfg_data,
|
||||
&qat_dev_cfg_fops);
|
||||
}
|
||||
|
||||
void adf_cfg_dev_dbgfs_rm(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
struct adf_cfg_device_data *dev_cfg_data = accel_dev->cfg;
|
||||
|
||||
if (!dev_cfg_data)
|
||||
return;
|
||||
|
||||
debugfs_remove(dev_cfg_data->debug);
|
||||
dev_cfg_data->debug = NULL;
|
||||
}
|
||||
|
||||
static void adf_cfg_section_del_all(struct list_head *head);
|
||||
|
||||
void adf_cfg_del_all(struct adf_accel_dev *accel_dev)
|
||||
@ -116,7 +131,6 @@ void adf_cfg_dev_remove(struct adf_accel_dev *accel_dev)
|
||||
down_write(&dev_cfg_data->lock);
|
||||
adf_cfg_section_del_all(&dev_cfg_data->sec_list);
|
||||
up_write(&dev_cfg_data->lock);
|
||||
debugfs_remove(dev_cfg_data->debug);
|
||||
kfree(dev_cfg_data);
|
||||
accel_dev->cfg = NULL;
|
||||
}
|
||||
|
@ -31,6 +31,8 @@ struct adf_cfg_device_data {
|
||||
|
||||
int adf_cfg_dev_add(struct adf_accel_dev *accel_dev);
|
||||
void adf_cfg_dev_remove(struct adf_accel_dev *accel_dev);
|
||||
void adf_cfg_dev_dbgfs_add(struct adf_accel_dev *accel_dev);
|
||||
void adf_cfg_dev_dbgfs_rm(struct adf_accel_dev *accel_dev);
|
||||
int adf_cfg_section_add(struct adf_accel_dev *accel_dev, const char *name);
|
||||
void adf_cfg_del_all(struct adf_accel_dev *accel_dev);
|
||||
int adf_cfg_add_key_value_param(struct adf_accel_dev *accel_dev,
|
||||
|
@ -25,7 +25,15 @@
|
||||
#define ADF_DC "Dc"
|
||||
#define ADF_CFG_DC "dc"
|
||||
#define ADF_CFG_CY "sym;asym"
|
||||
#define ADF_CFG_SYM "sym"
|
||||
#define ADF_CFG_ASYM "asym"
|
||||
#define ADF_CFG_ASYM_SYM "asym;sym"
|
||||
#define ADF_CFG_ASYM_DC "asym;dc"
|
||||
#define ADF_CFG_DC_ASYM "dc;asym"
|
||||
#define ADF_CFG_SYM_DC "sym;dc"
|
||||
#define ADF_CFG_DC_SYM "dc;sym"
|
||||
#define ADF_SERVICES_ENABLED "ServicesEnabled"
|
||||
#define ADF_PM_IDLE_SUPPORT "PmIdleSupport"
|
||||
#define ADF_ETRMGR_COALESCING_ENABLED "InterruptCoalescingEnabled"
|
||||
#define ADF_ETRMGR_COALESCING_ENABLED_FORMAT \
|
||||
ADF_ETRMGR_BANK "%d" ADF_ETRMGR_COALESCING_ENABLED
|
||||
|
@ -187,7 +187,7 @@ void qat_uclo_del_obj(struct icp_qat_fw_loader_handle *handle);
|
||||
int qat_uclo_wr_mimage(struct icp_qat_fw_loader_handle *handle, void *addr_ptr,
|
||||
int mem_size);
|
||||
int qat_uclo_map_obj(struct icp_qat_fw_loader_handle *handle,
|
||||
void *addr_ptr, u32 mem_size, char *obj_name);
|
||||
void *addr_ptr, u32 mem_size, const char *obj_name);
|
||||
int qat_uclo_set_cfg_ae_mask(struct icp_qat_fw_loader_handle *handle,
|
||||
unsigned int cfg_ae_mask);
|
||||
int adf_init_misc_wq(void);
|
||||
|
69
drivers/crypto/intel/qat/qat_common/adf_dbgfs.c
Normal file
69
drivers/crypto/intel/qat/qat_common/adf_dbgfs.c
Normal file
@ -0,0 +1,69 @@
|
||||
// SPDX-License-Identifier: GPL-2.0-only
|
||||
/* Copyright(c) 2023 Intel Corporation */
|
||||
|
||||
#include <linux/debugfs.h>
|
||||
#include "adf_accel_devices.h"
|
||||
#include "adf_cfg.h"
|
||||
#include "adf_common_drv.h"
|
||||
#include "adf_dbgfs.h"
|
||||
|
||||
/**
|
||||
* adf_dbgfs_init() - add persistent debugfs entries
|
||||
* @accel_dev: Pointer to acceleration device.
|
||||
*
|
||||
* This function creates debugfs entries that are persistent through a device
|
||||
* state change (from up to down or vice versa).
|
||||
*/
|
||||
void adf_dbgfs_init(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
char name[ADF_DEVICE_NAME_LENGTH];
|
||||
void *ret;
|
||||
|
||||
/* Create dev top level debugfs entry */
|
||||
snprintf(name, sizeof(name), "%s%s_%s", ADF_DEVICE_NAME_PREFIX,
|
||||
accel_dev->hw_device->dev_class->name,
|
||||
pci_name(accel_dev->accel_pci_dev.pci_dev));
|
||||
|
||||
ret = debugfs_create_dir(name, NULL);
|
||||
if (IS_ERR_OR_NULL(ret))
|
||||
return;
|
||||
|
||||
accel_dev->debugfs_dir = ret;
|
||||
|
||||
adf_cfg_dev_dbgfs_add(accel_dev);
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(adf_dbgfs_init);
|
||||
|
||||
/**
|
||||
* adf_dbgfs_exit() - remove persistent debugfs entries
|
||||
* @accel_dev: Pointer to acceleration device.
|
||||
*/
|
||||
void adf_dbgfs_exit(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
adf_cfg_dev_dbgfs_rm(accel_dev);
|
||||
debugfs_remove(accel_dev->debugfs_dir);
|
||||
}
|
||||
EXPORT_SYMBOL_GPL(adf_dbgfs_exit);
|
||||
|
||||
/**
|
||||
* adf_dbgfs_add() - add non-persistent debugfs entries
|
||||
* @accel_dev: Pointer to acceleration device.
|
||||
*
|
||||
* This function creates debugfs entries that are not persistent through
|
||||
* a device state change (from up to down or vice versa).
|
||||
*/
|
||||
void adf_dbgfs_add(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
if (!accel_dev->debugfs_dir)
|
||||
return;
|
||||
}
|
||||
|
||||
/**
|
||||
* adf_dbgfs_rm() - remove non-persistent debugfs entries
|
||||
* @accel_dev: Pointer to acceleration device.
|
||||
*/
|
||||
void adf_dbgfs_rm(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
if (!accel_dev->debugfs_dir)
|
||||
return;
|
||||
}
|
29
drivers/crypto/intel/qat/qat_common/adf_dbgfs.h
Normal file
29
drivers/crypto/intel/qat/qat_common/adf_dbgfs.h
Normal file
@ -0,0 +1,29 @@
|
||||
/* SPDX-License-Identifier: GPL-2.0-only */
|
||||
/* Copyright(c) 2023 Intel Corporation */
|
||||
|
||||
#ifndef ADF_DBGFS_H
|
||||
#define ADF_DBGFS_H
|
||||
|
||||
#ifdef CONFIG_DEBUG_FS
|
||||
void adf_dbgfs_init(struct adf_accel_dev *accel_dev);
|
||||
void adf_dbgfs_add(struct adf_accel_dev *accel_dev);
|
||||
void adf_dbgfs_rm(struct adf_accel_dev *accel_dev);
|
||||
void adf_dbgfs_exit(struct adf_accel_dev *accel_dev);
|
||||
#else
|
||||
static inline void adf_dbgfs_init(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
}
|
||||
|
||||
static inline void adf_dbgfs_add(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
}
|
||||
|
||||
static inline void adf_dbgfs_rm(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
}
|
||||
|
||||
static inline void adf_dbgfs_exit(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
}
|
||||
#endif
|
||||
#endif
|
@ -23,15 +23,25 @@ struct adf_gen4_pm_data {
|
||||
|
||||
static int send_host_msg(struct adf_accel_dev *accel_dev)
|
||||
{
|
||||
char pm_idle_support_cfg[ADF_CFG_MAX_VAL_LEN_IN_BYTES] = {};
|
||||
void __iomem *pmisc = adf_get_pmisc_base(accel_dev);
|
||||
bool pm_idle_support;
|
||||
u32 msg;
|
||||
int ret;
|
||||
|
||||
msg = ADF_CSR_RD(pmisc, ADF_GEN4_PM_HOST_MSG);
|
||||
if (msg & ADF_GEN4_PM_MSG_PENDING)
|
||||
return -EBUSY;
|
||||
|
||||
adf_cfg_get_param_value(accel_dev, ADF_GENERAL_SEC,
|
||||
ADF_PM_IDLE_SUPPORT, pm_idle_support_cfg);
|
||||
ret = kstrtobool(pm_idle_support_cfg, &pm_idle_support);
|
||||
if (ret)
|
||||
pm_idle_support = true;
|
||||
|
||||
/* Send HOST_MSG */
|
||||
msg = FIELD_PREP(ADF_GEN4_PM_MSG_PAYLOAD_BIT_MASK, PM_SET_MIN);
|
||||
msg = FIELD_PREP(ADF_GEN4_PM_MSG_PAYLOAD_BIT_MASK,
|
||||
pm_idle_support ? PM_SET_MIN : PM_NO_CHANGE);
|
||||
msg |= ADF_GEN4_PM_MSG_PENDING;
|
||||
ADF_CSR_WR(pmisc, ADF_GEN4_PM_HOST_MSG, msg);
|
||||
|
||||
|
@ -37,6 +37,7 @@
|
||||
|
||||
#define ADF_GEN4_PM_DEFAULT_IDLE_FILTER (0x0)
|
||||
#define ADF_GEN4_PM_MAX_IDLE_FILTER (0x7)
|
||||
#define ADF_GEN4_PM_DEFAULT_IDLE_SUPPORT (0x1)
|
||||
|
||||
int adf_gen4_enable_pm(struct adf_accel_dev *accel_dev);
|
||||
bool adf_gen4_handle_pm_interrupt(struct adf_accel_dev *accel_dev);
|
||||
|
@ -7,6 +7,7 @@
|
||||
#include "adf_accel_devices.h"
|
||||
#include "adf_cfg.h"
|
||||
#include "adf_common_drv.h"
|
||||
#include "adf_dbgfs.h"
|
||||
|
||||
static LIST_HEAD(service_table);
|
||||
static DEFINE_MUTEX(service_lock);
|
||||
@ -216,6 +217,9 @@ static int adf_dev_start(struct adf_accel_dev *accel_dev)
|
||||
clear_bit(ADF_STATUS_STARTED, &accel_dev->status);
|
||||
return -EFAULT;
|
||||
}
|
||||
|
||||
adf_dbgfs_add(accel_dev);
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
@ -240,6 +244,8 @@ static void adf_dev_stop(struct adf_accel_dev *accel_dev)
|
||||
!test_bit(ADF_STATUS_STARTING, &accel_dev->status))
|
||||
return;
|
||||
|
||||
adf_dbgfs_rm(accel_dev);
|
||||
|
||||
clear_bit(ADF_STATUS_STARTING, &accel_dev->status);
|
||||
clear_bit(ADF_STATUS_STARTED, &accel_dev->status);
|
||||
|
||||
|
@ -78,6 +78,13 @@ static ssize_t state_store(struct device *dev, struct device_attribute *attr,
|
||||
static const char * const services_operations[] = {
|
||||
ADF_CFG_CY,
|
||||
ADF_CFG_DC,
|
||||
ADF_CFG_SYM,
|
||||
ADF_CFG_ASYM,
|
||||
ADF_CFG_ASYM_SYM,
|
||||
ADF_CFG_ASYM_DC,
|
||||
ADF_CFG_DC_ASYM,
|
||||
ADF_CFG_SYM_DC,
|
||||
ADF_CFG_DC_SYM,
|
||||
};
|
||||
|
||||
static ssize_t cfg_services_show(struct device *dev, struct device_attribute *attr,
|
||||
@ -145,12 +152,65 @@ static ssize_t cfg_services_store(struct device *dev, struct device_attribute *a
|
||||
return count;
|
||||
}
|
||||
|
||||
static ssize_t pm_idle_enabled_show(struct device *dev, struct device_attribute *attr,
|
||||
char *buf)
|
||||
{
|
||||
char pm_idle_enabled[ADF_CFG_MAX_VAL_LEN_IN_BYTES] = {};
|
||||
struct adf_accel_dev *accel_dev;
|
||||
int ret;
|
||||
|
||||
accel_dev = adf_devmgr_pci_to_accel_dev(to_pci_dev(dev));
|
||||
if (!accel_dev)
|
||||
return -EINVAL;
|
||||
|
||||
ret = adf_cfg_get_param_value(accel_dev, ADF_GENERAL_SEC,
|
||||
ADF_PM_IDLE_SUPPORT, pm_idle_enabled);
|
||||
if (ret)
|
||||
return sysfs_emit(buf, "1\n");
|
||||
|
||||
return sysfs_emit(buf, "%s\n", pm_idle_enabled);
|
||||
}
|
||||
|
||||
static ssize_t pm_idle_enabled_store(struct device *dev, struct device_attribute *attr,
|
||||
const char *buf, size_t count)
|
||||
{
|
||||
unsigned long pm_idle_enabled_cfg_val;
|
||||
struct adf_accel_dev *accel_dev;
|
||||
bool pm_idle_enabled;
|
||||
int ret;
|
||||
|
||||
ret = kstrtobool(buf, &pm_idle_enabled);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
pm_idle_enabled_cfg_val = pm_idle_enabled;
|
||||
accel_dev = adf_devmgr_pci_to_accel_dev(to_pci_dev(dev));
|
||||
if (!accel_dev)
|
||||
return -EINVAL;
|
||||
|
||||
if (adf_dev_started(accel_dev)) {
|
||||
dev_info(dev, "Device qat_dev%d must be down to set pm_idle_enabled.\n",
|
||||
accel_dev->accel_id);
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
ret = adf_cfg_add_key_value_param(accel_dev, ADF_GENERAL_SEC,
|
||||
ADF_PM_IDLE_SUPPORT, &pm_idle_enabled_cfg_val,
|
||||
ADF_DEC);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
return count;
|
||||
}
|
||||
static DEVICE_ATTR_RW(pm_idle_enabled);
|
||||
|
||||
static DEVICE_ATTR_RW(state);
|
||||
static DEVICE_ATTR_RW(cfg_services);
|
||||
|
||||
static struct attribute *qat_attrs[] = {
|
||||
&dev_attr_state.attr,
|
||||
&dev_attr_cfg_services.attr,
|
||||
&dev_attr_pm_idle_enabled.attr,
|
||||
NULL,
|
||||
};
|
||||
|
||||
|
@ -87,8 +87,7 @@ enum icp_qat_capabilities_mask {
|
||||
ICP_ACCEL_CAPABILITIES_AUTHENTICATION = BIT(3),
|
||||
ICP_ACCEL_CAPABILITIES_RESERVED_1 = BIT(4),
|
||||
ICP_ACCEL_CAPABILITIES_COMPRESSION = BIT(5),
|
||||
ICP_ACCEL_CAPABILITIES_LZS_COMPRESSION = BIT(6),
|
||||
ICP_ACCEL_CAPABILITIES_RAND = BIT(7),
|
||||
/* Bits 6-7 are currently reserved */
|
||||
ICP_ACCEL_CAPABILITIES_ZUC = BIT(8),
|
||||
ICP_ACCEL_CAPABILITIES_SHA3 = BIT(9),
|
||||
/* Bits 10-11 are currently reserved */
|
||||
|
@ -106,7 +106,6 @@ static int qat_get_inter_state_size(enum icp_qat_hw_auth_algo qat_hash_alg)
|
||||
default:
|
||||
return -EFAULT;
|
||||
}
|
||||
return -EFAULT;
|
||||
}
|
||||
|
||||
static int qat_alg_do_precomputes(struct icp_qat_hw_auth_algo_blk *hash,
|
||||
|
@ -170,15 +170,14 @@ static void qat_dh_cb(struct icp_qat_fw_pke_resp *resp)
|
||||
}
|
||||
|
||||
areq->dst_len = req->ctx.dh->p_size;
|
||||
dma_unmap_single(dev, req->out.dh.r, req->ctx.dh->p_size,
|
||||
DMA_FROM_DEVICE);
|
||||
if (req->dst_align) {
|
||||
scatterwalk_map_and_copy(req->dst_align, areq->dst, 0,
|
||||
areq->dst_len, 1);
|
||||
kfree_sensitive(req->dst_align);
|
||||
}
|
||||
|
||||
dma_unmap_single(dev, req->out.dh.r, req->ctx.dh->p_size,
|
||||
DMA_FROM_DEVICE);
|
||||
|
||||
dma_unmap_single(dev, req->phy_in, sizeof(struct qat_dh_input_params),
|
||||
DMA_TO_DEVICE);
|
||||
dma_unmap_single(dev, req->phy_out,
|
||||
@ -521,12 +520,14 @@ static void qat_rsa_cb(struct icp_qat_fw_pke_resp *resp)
|
||||
|
||||
err = (err == ICP_QAT_FW_COMN_STATUS_FLAG_OK) ? 0 : -EINVAL;
|
||||
|
||||
kfree_sensitive(req->src_align);
|
||||
|
||||
dma_unmap_single(dev, req->in.rsa.enc.m, req->ctx.rsa->key_sz,
|
||||
DMA_TO_DEVICE);
|
||||
|
||||
kfree_sensitive(req->src_align);
|
||||
|
||||
areq->dst_len = req->ctx.rsa->key_sz;
|
||||
dma_unmap_single(dev, req->out.rsa.enc.c, req->ctx.rsa->key_sz,
|
||||
DMA_FROM_DEVICE);
|
||||
if (req->dst_align) {
|
||||
scatterwalk_map_and_copy(req->dst_align, areq->dst, 0,
|
||||
areq->dst_len, 1);
|
||||
@ -534,9 +535,6 @@ static void qat_rsa_cb(struct icp_qat_fw_pke_resp *resp)
|
||||
kfree_sensitive(req->dst_align);
|
||||
}
|
||||
|
||||
dma_unmap_single(dev, req->out.rsa.enc.c, req->ctx.rsa->key_sz,
|
||||
DMA_FROM_DEVICE);
|
||||
|
||||
dma_unmap_single(dev, req->phy_in, sizeof(struct qat_rsa_input_params),
|
||||
DMA_TO_DEVICE);
|
||||
dma_unmap_single(dev, req->phy_out,
|
||||
|
@ -1685,7 +1685,7 @@ static void qat_uclo_del_mof(struct icp_qat_fw_loader_handle *handle)
|
||||
}
|
||||
|
||||
static int qat_uclo_seek_obj_inside_mof(struct icp_qat_mof_handle *mobj_handle,
|
||||
char *obj_name, char **obj_ptr,
|
||||
const char *obj_name, char **obj_ptr,
|
||||
unsigned int *obj_size)
|
||||
{
|
||||
struct icp_qat_mof_objhdr *obj_hdr = mobj_handle->obj_table.obj_hdr;
|
||||
@ -1837,8 +1837,8 @@ static int qat_uclo_check_mof_format(struct icp_qat_mof_file_hdr *mof_hdr)
|
||||
|
||||
static int qat_uclo_map_mof_obj(struct icp_qat_fw_loader_handle *handle,
|
||||
struct icp_qat_mof_file_hdr *mof_ptr,
|
||||
u32 mof_size, char *obj_name, char **obj_ptr,
|
||||
unsigned int *obj_size)
|
||||
u32 mof_size, const char *obj_name,
|
||||
char **obj_ptr, unsigned int *obj_size)
|
||||
{
|
||||
struct icp_qat_mof_chunkhdr *mof_chunkhdr;
|
||||
unsigned int file_id = mof_ptr->file_id;
|
||||
@ -1888,7 +1888,7 @@ static int qat_uclo_map_mof_obj(struct icp_qat_fw_loader_handle *handle,
|
||||
}
|
||||
|
||||
int qat_uclo_map_obj(struct icp_qat_fw_loader_handle *handle,
|
||||
void *addr_ptr, u32 mem_size, char *obj_name)
|
||||
void *addr_ptr, u32 mem_size, const char *obj_name)
|
||||
{
|
||||
char *obj_addr;
|
||||
u32 obj_size;
|
||||
|
@ -16,6 +16,7 @@
|
||||
#include <adf_accel_devices.h>
|
||||
#include <adf_common_drv.h>
|
||||
#include <adf_cfg.h>
|
||||
#include <adf_dbgfs.h>
|
||||
#include "adf_dh895xcc_hw_data.h"
|
||||
|
||||
static const struct pci_device_id adf_pci_tbl[] = {
|
||||
@ -65,8 +66,8 @@ static void adf_cleanup_accel(struct adf_accel_dev *accel_dev)
|
||||
kfree(accel_dev->hw_device);
|
||||
accel_dev->hw_device = NULL;
|
||||
}
|
||||
adf_dbgfs_exit(accel_dev);
|
||||
adf_cfg_dev_remove(accel_dev);
|
||||
debugfs_remove(accel_dev->debugfs_dir);
|
||||
adf_devmgr_rm_dev(accel_dev, NULL);
|
||||
}
|
||||
|
||||
@ -75,7 +76,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
struct adf_accel_dev *accel_dev;
|
||||
struct adf_accel_pci *accel_pci_dev;
|
||||
struct adf_hw_device_data *hw_data;
|
||||
char name[ADF_DEVICE_NAME_LENGTH];
|
||||
unsigned int i, bar_nr;
|
||||
unsigned long bar_mask;
|
||||
int ret;
|
||||
@ -140,12 +140,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
goto out_err;
|
||||
}
|
||||
|
||||
/* Create dev top level debugfs entry */
|
||||
snprintf(name, sizeof(name), "%s%s_%s", ADF_DEVICE_NAME_PREFIX,
|
||||
hw_data->dev_class->name, pci_name(pdev));
|
||||
|
||||
accel_dev->debugfs_dir = debugfs_create_dir(name, NULL);
|
||||
|
||||
/* Create device configuration table */
|
||||
ret = adf_cfg_dev_add(accel_dev);
|
||||
if (ret)
|
||||
@ -199,6 +193,8 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
goto out_err_free_reg;
|
||||
}
|
||||
|
||||
adf_dbgfs_init(accel_dev);
|
||||
|
||||
ret = adf_dev_up(accel_dev, true);
|
||||
if (ret)
|
||||
goto out_err_dev_stop;
|
||||
|
@ -16,6 +16,7 @@
|
||||
#include <adf_accel_devices.h>
|
||||
#include <adf_common_drv.h>
|
||||
#include <adf_cfg.h>
|
||||
#include <adf_dbgfs.h>
|
||||
#include "adf_dh895xccvf_hw_data.h"
|
||||
|
||||
static const struct pci_device_id adf_pci_tbl[] = {
|
||||
@ -64,8 +65,8 @@ static void adf_cleanup_accel(struct adf_accel_dev *accel_dev)
|
||||
kfree(accel_dev->hw_device);
|
||||
accel_dev->hw_device = NULL;
|
||||
}
|
||||
adf_dbgfs_exit(accel_dev);
|
||||
adf_cfg_dev_remove(accel_dev);
|
||||
debugfs_remove(accel_dev->debugfs_dir);
|
||||
pf = adf_devmgr_pci_to_accel_dev(accel_pci_dev->pci_dev->physfn);
|
||||
adf_devmgr_rm_dev(accel_dev, pf);
|
||||
}
|
||||
@ -76,7 +77,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
struct adf_accel_dev *pf;
|
||||
struct adf_accel_pci *accel_pci_dev;
|
||||
struct adf_hw_device_data *hw_data;
|
||||
char name[ADF_DEVICE_NAME_LENGTH];
|
||||
unsigned int i, bar_nr;
|
||||
unsigned long bar_mask;
|
||||
int ret;
|
||||
@ -123,12 +123,6 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
hw_data->ae_mask = hw_data->get_ae_mask(hw_data);
|
||||
accel_pci_dev->sku = hw_data->get_sku(hw_data);
|
||||
|
||||
/* Create dev top level debugfs entry */
|
||||
snprintf(name, sizeof(name), "%s%s_%s", ADF_DEVICE_NAME_PREFIX,
|
||||
hw_data->dev_class->name, pci_name(pdev));
|
||||
|
||||
accel_dev->debugfs_dir = debugfs_create_dir(name, NULL);
|
||||
|
||||
/* Create device configuration table */
|
||||
ret = adf_cfg_dev_add(accel_dev);
|
||||
if (ret)
|
||||
@ -173,6 +167,8 @@ static int adf_probe(struct pci_dev *pdev, const struct pci_device_id *ent)
|
||||
/* Completion for VF2PF request/response message exchange */
|
||||
init_completion(&accel_dev->vf.msg_received);
|
||||
|
||||
adf_dbgfs_init(accel_dev);
|
||||
|
||||
ret = adf_dev_up(accel_dev, false);
|
||||
if (ret)
|
||||
goto out_err_dev_stop;
|
||||
|
@ -297,7 +297,7 @@ static int mv_cesa_des_setkey(struct crypto_skcipher *cipher, const u8 *key,
|
||||
static int mv_cesa_des3_ede_setkey(struct crypto_skcipher *cipher,
|
||||
const u8 *key, unsigned int len)
|
||||
{
|
||||
struct mv_cesa_des_ctx *ctx = crypto_skcipher_ctx(cipher);
|
||||
struct mv_cesa_des3_ctx *ctx = crypto_skcipher_ctx(cipher);
|
||||
int err;
|
||||
|
||||
err = verify_skcipher_des3_key(cipher, key);
|
||||
|
@ -40,10 +40,25 @@ enum otx2_cpt_eng_type {
|
||||
};
|
||||
|
||||
/* Take mbox id from end of CPT mbox range in AF (range 0xA00 - 0xBFF) */
|
||||
#define MBOX_MSG_RX_INLINE_IPSEC_LF_CFG 0xBFE
|
||||
#define MBOX_MSG_GET_ENG_GRP_NUM 0xBFF
|
||||
#define MBOX_MSG_GET_CAPS 0xBFD
|
||||
#define MBOX_MSG_GET_KVF_LIMITS 0xBFC
|
||||
|
||||
/*
|
||||
* Message request to config cpt lf for inline inbound ipsec.
|
||||
* This message is only used between CPT PF <-> CPT VF
|
||||
*/
|
||||
struct otx2_cpt_rx_inline_lf_cfg {
|
||||
struct mbox_msghdr hdr;
|
||||
u16 sso_pf_func;
|
||||
u16 param1;
|
||||
u16 param2;
|
||||
u16 opcode;
|
||||
u32 credit;
|
||||
u32 reserved;
|
||||
};
|
||||
|
||||
/*
|
||||
* Message request and response to get engine group number
|
||||
* which has attached a given type of engines (SE, AE, IE)
|
||||
|
@ -141,6 +141,8 @@ int otx2_cpt_attach_rscrs_msg(struct otx2_cptlfs_info *lfs)
|
||||
req->hdr.sig = OTX2_MBOX_REQ_SIG;
|
||||
req->hdr.pcifunc = 0;
|
||||
req->cptlfs = lfs->lfs_num;
|
||||
req->cpt_blkaddr = lfs->blkaddr;
|
||||
req->modify = 1;
|
||||
ret = otx2_cpt_send_mbox_msg(mbox, lfs->pdev);
|
||||
if (ret)
|
||||
return ret;
|
||||
@ -168,6 +170,7 @@ int otx2_cpt_detach_rsrcs_msg(struct otx2_cptlfs_info *lfs)
|
||||
req->hdr.id = MBOX_MSG_DETACH_RESOURCES;
|
||||
req->hdr.sig = OTX2_MBOX_REQ_SIG;
|
||||
req->hdr.pcifunc = 0;
|
||||
req->cptlfs = 1;
|
||||
ret = otx2_cpt_send_mbox_msg(mbox, lfs->pdev);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
@ -13,10 +13,10 @@ static void cptlf_do_set_done_time_wait(struct otx2_cptlf_info *lf,
|
||||
{
|
||||
union otx2_cptx_lf_done_wait done_wait;
|
||||
|
||||
done_wait.u = otx2_cpt_read64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
OTX2_CPT_LF_DONE_WAIT);
|
||||
done_wait.u = otx2_cpt_read64(lf->lfs->reg_base, lf->lfs->blkaddr,
|
||||
lf->slot, OTX2_CPT_LF_DONE_WAIT);
|
||||
done_wait.s.time_wait = time_wait;
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, lf->lfs->blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_DONE_WAIT, done_wait.u);
|
||||
}
|
||||
|
||||
@ -24,10 +24,10 @@ static void cptlf_do_set_done_num_wait(struct otx2_cptlf_info *lf, int num_wait)
|
||||
{
|
||||
union otx2_cptx_lf_done_wait done_wait;
|
||||
|
||||
done_wait.u = otx2_cpt_read64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
OTX2_CPT_LF_DONE_WAIT);
|
||||
done_wait.u = otx2_cpt_read64(lf->lfs->reg_base, lf->lfs->blkaddr,
|
||||
lf->slot, OTX2_CPT_LF_DONE_WAIT);
|
||||
done_wait.s.num_wait = num_wait;
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, lf->lfs->blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_DONE_WAIT, done_wait.u);
|
||||
}
|
||||
|
||||
@ -147,7 +147,7 @@ static void cptlf_set_misc_intrs(struct otx2_cptlfs_info *lfs, u8 enable)
|
||||
irq_misc.s.nwrp = 0x1;
|
||||
|
||||
for (slot = 0; slot < lfs->lfs_num; slot++)
|
||||
otx2_cpt_write64(lfs->reg_base, BLKADDR_CPT0, slot, reg,
|
||||
otx2_cpt_write64(lfs->reg_base, lfs->blkaddr, slot, reg,
|
||||
irq_misc.u);
|
||||
}
|
||||
|
||||
@ -157,7 +157,7 @@ static void cptlf_enable_intrs(struct otx2_cptlfs_info *lfs)
|
||||
|
||||
/* Enable done interrupts */
|
||||
for (slot = 0; slot < lfs->lfs_num; slot++)
|
||||
otx2_cpt_write64(lfs->reg_base, BLKADDR_CPT0, slot,
|
||||
otx2_cpt_write64(lfs->reg_base, lfs->blkaddr, slot,
|
||||
OTX2_CPT_LF_DONE_INT_ENA_W1S, 0x1);
|
||||
/* Enable Misc interrupts */
|
||||
cptlf_set_misc_intrs(lfs, true);
|
||||
@ -168,7 +168,7 @@ static void cptlf_disable_intrs(struct otx2_cptlfs_info *lfs)
|
||||
int slot;
|
||||
|
||||
for (slot = 0; slot < lfs->lfs_num; slot++)
|
||||
otx2_cpt_write64(lfs->reg_base, BLKADDR_CPT0, slot,
|
||||
otx2_cpt_write64(lfs->reg_base, lfs->blkaddr, slot,
|
||||
OTX2_CPT_LF_DONE_INT_ENA_W1C, 0x1);
|
||||
cptlf_set_misc_intrs(lfs, false);
|
||||
}
|
||||
@ -177,7 +177,7 @@ static inline int cptlf_read_done_cnt(struct otx2_cptlf_info *lf)
|
||||
{
|
||||
union otx2_cptx_lf_done irq_cnt;
|
||||
|
||||
irq_cnt.u = otx2_cpt_read64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
irq_cnt.u = otx2_cpt_read64(lf->lfs->reg_base, lf->lfs->blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_DONE);
|
||||
return irq_cnt.s.done;
|
||||
}
|
||||
@ -189,8 +189,8 @@ static irqreturn_t cptlf_misc_intr_handler(int __always_unused irq, void *arg)
|
||||
struct device *dev;
|
||||
|
||||
dev = &lf->lfs->pdev->dev;
|
||||
irq_misc.u = otx2_cpt_read64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
OTX2_CPT_LF_MISC_INT);
|
||||
irq_misc.u = otx2_cpt_read64(lf->lfs->reg_base, lf->lfs->blkaddr,
|
||||
lf->slot, OTX2_CPT_LF_MISC_INT);
|
||||
irq_misc_ack.u = 0x0;
|
||||
|
||||
if (irq_misc.s.fault) {
|
||||
@ -222,7 +222,7 @@ static irqreturn_t cptlf_misc_intr_handler(int __always_unused irq, void *arg)
|
||||
}
|
||||
|
||||
/* Acknowledge interrupts */
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, lf->lfs->blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_MISC_INT, irq_misc_ack.u);
|
||||
|
||||
return IRQ_HANDLED;
|
||||
@ -237,13 +237,13 @@ static irqreturn_t cptlf_done_intr_handler(int irq, void *arg)
|
||||
/* Read the number of completed requests */
|
||||
irq_cnt = cptlf_read_done_cnt(lf);
|
||||
if (irq_cnt) {
|
||||
done_wait.u = otx2_cpt_read64(lf->lfs->reg_base, BLKADDR_CPT0,
|
||||
done_wait.u = otx2_cpt_read64(lf->lfs->reg_base, lf->lfs->blkaddr,
|
||||
lf->slot, OTX2_CPT_LF_DONE_WAIT);
|
||||
/* Acknowledge the number of completed requests */
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, lf->lfs->blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_DONE_ACK, irq_cnt);
|
||||
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, lf->lfs->blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_DONE_WAIT, done_wait.u);
|
||||
if (unlikely(!lf->wqe)) {
|
||||
dev_err(&lf->lfs->pdev->dev, "No work for LF %d\n",
|
||||
@ -393,7 +393,7 @@ int otx2_cptlf_init(struct otx2_cptlfs_info *lfs, u8 eng_grp_mask, int pri,
|
||||
OTX2_CPT_LMT_LF_LMTLINEX(0));
|
||||
|
||||
lfs->lf[slot].ioreg = lfs->reg_base +
|
||||
OTX2_CPT_RVU_FUNC_ADDR_S(BLKADDR_CPT0, slot,
|
||||
OTX2_CPT_RVU_FUNC_ADDR_S(lfs->blkaddr, slot,
|
||||
OTX2_CPT_LF_NQX(0));
|
||||
}
|
||||
/* Send request to attach LFs */
|
||||
|
@ -180,7 +180,7 @@ static inline void otx2_cptlf_set_iqueues_base_addr(
|
||||
|
||||
for (slot = 0; slot < lfs->lfs_num; slot++) {
|
||||
lf_q_base.u = lfs->lf[slot].iqueue.dma_addr;
|
||||
otx2_cpt_write64(lfs->reg_base, BLKADDR_CPT0, slot,
|
||||
otx2_cpt_write64(lfs->reg_base, lfs->blkaddr, slot,
|
||||
OTX2_CPT_LF_Q_BASE, lf_q_base.u);
|
||||
}
|
||||
}
|
||||
@ -191,7 +191,7 @@ static inline void otx2_cptlf_do_set_iqueue_size(struct otx2_cptlf_info *lf)
|
||||
|
||||
lf_q_size.s.size_div40 = OTX2_CPT_SIZE_DIV40 +
|
||||
OTX2_CPT_EXTRA_SIZE_DIV40;
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, lf->lfs->blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_Q_SIZE, lf_q_size.u);
|
||||
}
|
||||
|
||||
@ -207,15 +207,16 @@ static inline void otx2_cptlf_do_disable_iqueue(struct otx2_cptlf_info *lf)
|
||||
{
|
||||
union otx2_cptx_lf_ctl lf_ctl = { .u = 0x0 };
|
||||
union otx2_cptx_lf_inprog lf_inprog;
|
||||
u8 blkaddr = lf->lfs->blkaddr;
|
||||
int timeout = 20;
|
||||
|
||||
/* Disable instructions enqueuing */
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_CTL, lf_ctl.u);
|
||||
|
||||
/* Wait for instruction queue to become empty */
|
||||
do {
|
||||
lf_inprog.u = otx2_cpt_read64(lf->lfs->reg_base, BLKADDR_CPT0,
|
||||
lf_inprog.u = otx2_cpt_read64(lf->lfs->reg_base, blkaddr,
|
||||
lf->slot, OTX2_CPT_LF_INPROG);
|
||||
if (!lf_inprog.s.inflight)
|
||||
break;
|
||||
@ -234,7 +235,7 @@ static inline void otx2_cptlf_do_disable_iqueue(struct otx2_cptlf_info *lf)
|
||||
* the queue should be empty at this point
|
||||
*/
|
||||
lf_inprog.s.eena = 0x0;
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_INPROG, lf_inprog.u);
|
||||
}
|
||||
|
||||
@ -249,14 +250,15 @@ static inline void otx2_cptlf_disable_iqueues(struct otx2_cptlfs_info *lfs)
|
||||
static inline void otx2_cptlf_set_iqueue_enq(struct otx2_cptlf_info *lf,
|
||||
bool enable)
|
||||
{
|
||||
u8 blkaddr = lf->lfs->blkaddr;
|
||||
union otx2_cptx_lf_ctl lf_ctl;
|
||||
|
||||
lf_ctl.u = otx2_cpt_read64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
lf_ctl.u = otx2_cpt_read64(lf->lfs->reg_base, blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_CTL);
|
||||
|
||||
/* Set iqueue's enqueuing */
|
||||
lf_ctl.s.ena = enable ? 0x1 : 0x0;
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_CTL, lf_ctl.u);
|
||||
}
|
||||
|
||||
@ -269,13 +271,14 @@ static inline void otx2_cptlf_set_iqueue_exec(struct otx2_cptlf_info *lf,
|
||||
bool enable)
|
||||
{
|
||||
union otx2_cptx_lf_inprog lf_inprog;
|
||||
u8 blkaddr = lf->lfs->blkaddr;
|
||||
|
||||
lf_inprog.u = otx2_cpt_read64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
lf_inprog.u = otx2_cpt_read64(lf->lfs->reg_base, blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_INPROG);
|
||||
|
||||
/* Set iqueue's execution */
|
||||
lf_inprog.s.eena = enable ? 0x1 : 0x0;
|
||||
otx2_cpt_write64(lf->lfs->reg_base, BLKADDR_CPT0, lf->slot,
|
||||
otx2_cpt_write64(lf->lfs->reg_base, blkaddr, lf->slot,
|
||||
OTX2_CPT_LF_INPROG, lf_inprog.u);
|
||||
}
|
||||
|
||||
@ -364,6 +367,18 @@ static inline bool otx2_cptlf_started(struct otx2_cptlfs_info *lfs)
|
||||
return atomic_read(&lfs->state) == OTX2_CPTLF_STARTED;
|
||||
}
|
||||
|
||||
static inline void otx2_cptlf_set_dev_info(struct otx2_cptlfs_info *lfs,
|
||||
struct pci_dev *pdev,
|
||||
void __iomem *reg_base,
|
||||
struct otx2_mbox *mbox,
|
||||
int blkaddr)
|
||||
{
|
||||
lfs->pdev = pdev;
|
||||
lfs->reg_base = reg_base;
|
||||
lfs->mbox = mbox;
|
||||
lfs->blkaddr = blkaddr;
|
||||
}
|
||||
|
||||
int otx2_cptlf_init(struct otx2_cptlfs_info *lfs, u8 eng_grp_msk, int pri,
|
||||
int lfs_num);
|
||||
void otx2_cptlf_shutdown(struct otx2_cptlfs_info *lfs);
|
||||
|
@ -31,6 +31,7 @@ struct otx2_cptpf_dev {
|
||||
struct otx2_cptvf_info vf[OTX2_CPT_MAX_VFS_NUM];
|
||||
struct otx2_cpt_eng_grps eng_grps;/* Engine groups information */
|
||||
struct otx2_cptlfs_info lfs; /* CPT LFs attached to this PF */
|
||||
struct otx2_cptlfs_info cpt1_lfs; /* CPT1 LFs attached to this PF */
|
||||
/* HW capabilities for each engine type */
|
||||
union otx2_cpt_eng_caps eng_caps[OTX2_CPT_MAX_ENG_TYPES];
|
||||
bool is_eng_caps_discovered;
|
||||
@ -40,6 +41,9 @@ struct otx2_cptpf_dev {
|
||||
struct work_struct afpf_mbox_work;
|
||||
struct workqueue_struct *afpf_mbox_wq;
|
||||
|
||||
struct otx2_mbox afpf_mbox_up;
|
||||
struct work_struct afpf_mbox_up_work;
|
||||
|
||||
/* VF <=> PF mbox */
|
||||
struct otx2_mbox vfpf_mbox;
|
||||
struct workqueue_struct *vfpf_mbox_wq;
|
||||
@ -52,8 +56,10 @@ struct otx2_cptpf_dev {
|
||||
u8 pf_id; /* RVU PF number */
|
||||
u8 max_vfs; /* Maximum number of VFs supported by CPT */
|
||||
u8 enabled_vfs; /* Number of enabled VFs */
|
||||
u8 sso_pf_func_ovrd; /* SSO PF_FUNC override bit */
|
||||
u8 kvf_limits; /* Kernel crypto limits */
|
||||
bool has_cpt1;
|
||||
u8 rsrc_req_blkaddr;
|
||||
|
||||
/* Devlink */
|
||||
struct devlink *dl;
|
||||
@ -61,6 +67,7 @@ struct otx2_cptpf_dev {
|
||||
|
||||
irqreturn_t otx2_cptpf_afpf_mbox_intr(int irq, void *arg);
|
||||
void otx2_cptpf_afpf_mbox_handler(struct work_struct *work);
|
||||
void otx2_cptpf_afpf_mbox_up_handler(struct work_struct *work);
|
||||
irqreturn_t otx2_cptpf_vfpf_mbox_intr(int irq, void *arg);
|
||||
void otx2_cptpf_vfpf_mbox_handler(struct work_struct *work);
|
||||
|
||||
|
@ -13,6 +13,8 @@
|
||||
#define OTX2_CPT_DRV_NAME "rvu_cptpf"
|
||||
#define OTX2_CPT_DRV_STRING "Marvell RVU CPT Physical Function Driver"
|
||||
|
||||
#define CPT_UC_RID_CN9K_B0 1
|
||||
|
||||
static void cptpf_enable_vfpf_mbox_intr(struct otx2_cptpf_dev *cptpf,
|
||||
int num_vfs)
|
||||
{
|
||||
@ -473,10 +475,19 @@ static int cptpf_afpf_mbox_init(struct otx2_cptpf_dev *cptpf)
|
||||
if (err)
|
||||
goto error;
|
||||
|
||||
err = otx2_mbox_init(&cptpf->afpf_mbox_up, cptpf->afpf_mbox_base,
|
||||
pdev, cptpf->reg_base, MBOX_DIR_PFAF_UP, 1);
|
||||
if (err)
|
||||
goto mbox_cleanup;
|
||||
|
||||
INIT_WORK(&cptpf->afpf_mbox_work, otx2_cptpf_afpf_mbox_handler);
|
||||
INIT_WORK(&cptpf->afpf_mbox_up_work, otx2_cptpf_afpf_mbox_up_handler);
|
||||
mutex_init(&cptpf->lock);
|
||||
|
||||
return 0;
|
||||
|
||||
mbox_cleanup:
|
||||
otx2_mbox_destroy(&cptpf->afpf_mbox);
|
||||
error:
|
||||
destroy_workqueue(cptpf->afpf_mbox_wq);
|
||||
return err;
|
||||
@ -486,6 +497,33 @@ static void cptpf_afpf_mbox_destroy(struct otx2_cptpf_dev *cptpf)
|
||||
{
|
||||
destroy_workqueue(cptpf->afpf_mbox_wq);
|
||||
otx2_mbox_destroy(&cptpf->afpf_mbox);
|
||||
otx2_mbox_destroy(&cptpf->afpf_mbox_up);
|
||||
}
|
||||
|
||||
static ssize_t sso_pf_func_ovrd_show(struct device *dev,
|
||||
struct device_attribute *attr, char *buf)
|
||||
{
|
||||
struct otx2_cptpf_dev *cptpf = dev_get_drvdata(dev);
|
||||
|
||||
return sprintf(buf, "%d\n", cptpf->sso_pf_func_ovrd);
|
||||
}
|
||||
|
||||
static ssize_t sso_pf_func_ovrd_store(struct device *dev,
|
||||
struct device_attribute *attr,
|
||||
const char *buf, size_t count)
|
||||
{
|
||||
struct otx2_cptpf_dev *cptpf = dev_get_drvdata(dev);
|
||||
u8 sso_pf_func_ovrd;
|
||||
|
||||
if (!(cptpf->pdev->revision == CPT_UC_RID_CN9K_B0))
|
||||
return count;
|
||||
|
||||
if (kstrtou8(buf, 0, &sso_pf_func_ovrd))
|
||||
return -EINVAL;
|
||||
|
||||
cptpf->sso_pf_func_ovrd = sso_pf_func_ovrd;
|
||||
|
||||
return count;
|
||||
}
|
||||
|
||||
static ssize_t kvf_limits_show(struct device *dev,
|
||||
@ -518,8 +556,11 @@ static ssize_t kvf_limits_store(struct device *dev,
|
||||
}
|
||||
|
||||
static DEVICE_ATTR_RW(kvf_limits);
|
||||
static DEVICE_ATTR_RW(sso_pf_func_ovrd);
|
||||
|
||||
static struct attribute *cptpf_attrs[] = {
|
||||
&dev_attr_kvf_limits.attr,
|
||||
&dev_attr_sso_pf_func_ovrd.attr,
|
||||
NULL
|
||||
};
|
||||
|
||||
|
@ -5,6 +5,20 @@
|
||||
#include "otx2_cptpf.h"
|
||||
#include "rvu_reg.h"
|
||||
|
||||
/* Fastpath ipsec opcode with inplace processing */
|
||||
#define CPT_INLINE_RX_OPCODE (0x26 | (1 << 6))
|
||||
#define CN10K_CPT_INLINE_RX_OPCODE (0x29 | (1 << 6))
|
||||
|
||||
#define cpt_inline_rx_opcode(pdev) \
|
||||
({ \
|
||||
u8 opcode; \
|
||||
if (is_dev_otx2(pdev)) \
|
||||
opcode = CPT_INLINE_RX_OPCODE; \
|
||||
else \
|
||||
opcode = CN10K_CPT_INLINE_RX_OPCODE; \
|
||||
(opcode); \
|
||||
})
|
||||
|
||||
/*
|
||||
* CPT PF driver version, It will be incremented by 1 for every feature
|
||||
* addition in CPT mailbox messages.
|
||||
@ -112,6 +126,139 @@ static int handle_msg_kvf_limits(struct otx2_cptpf_dev *cptpf,
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int send_inline_ipsec_inbound_msg(struct otx2_cptpf_dev *cptpf,
|
||||
int sso_pf_func, u8 slot)
|
||||
{
|
||||
struct cpt_inline_ipsec_cfg_msg *req;
|
||||
struct pci_dev *pdev = cptpf->pdev;
|
||||
|
||||
req = (struct cpt_inline_ipsec_cfg_msg *)
|
||||
otx2_mbox_alloc_msg_rsp(&cptpf->afpf_mbox, 0,
|
||||
sizeof(*req), sizeof(struct msg_rsp));
|
||||
if (req == NULL) {
|
||||
dev_err(&pdev->dev, "RVU MBOX failed to get message.\n");
|
||||
return -EFAULT;
|
||||
}
|
||||
memset(req, 0, sizeof(*req));
|
||||
req->hdr.id = MBOX_MSG_CPT_INLINE_IPSEC_CFG;
|
||||
req->hdr.sig = OTX2_MBOX_REQ_SIG;
|
||||
req->hdr.pcifunc = OTX2_CPT_RVU_PFFUNC(cptpf->pf_id, 0);
|
||||
req->dir = CPT_INLINE_INBOUND;
|
||||
req->slot = slot;
|
||||
req->sso_pf_func_ovrd = cptpf->sso_pf_func_ovrd;
|
||||
req->sso_pf_func = sso_pf_func;
|
||||
req->enable = 1;
|
||||
|
||||
return otx2_cpt_send_mbox_msg(&cptpf->afpf_mbox, pdev);
|
||||
}
|
||||
|
||||
static int rx_inline_ipsec_lf_cfg(struct otx2_cptpf_dev *cptpf, u8 egrp,
|
||||
struct otx2_cpt_rx_inline_lf_cfg *req)
|
||||
{
|
||||
struct nix_inline_ipsec_cfg *nix_req;
|
||||
struct pci_dev *pdev = cptpf->pdev;
|
||||
int ret;
|
||||
|
||||
nix_req = (struct nix_inline_ipsec_cfg *)
|
||||
otx2_mbox_alloc_msg_rsp(&cptpf->afpf_mbox, 0,
|
||||
sizeof(*nix_req),
|
||||
sizeof(struct msg_rsp));
|
||||
if (nix_req == NULL) {
|
||||
dev_err(&pdev->dev, "RVU MBOX failed to get message.\n");
|
||||
return -EFAULT;
|
||||
}
|
||||
memset(nix_req, 0, sizeof(*nix_req));
|
||||
nix_req->hdr.id = MBOX_MSG_NIX_INLINE_IPSEC_CFG;
|
||||
nix_req->hdr.sig = OTX2_MBOX_REQ_SIG;
|
||||
nix_req->enable = 1;
|
||||
if (!req->credit || req->credit > OTX2_CPT_INST_QLEN_MSGS)
|
||||
nix_req->cpt_credit = OTX2_CPT_INST_QLEN_MSGS - 1;
|
||||
else
|
||||
nix_req->cpt_credit = req->credit - 1;
|
||||
nix_req->gen_cfg.egrp = egrp;
|
||||
if (req->opcode)
|
||||
nix_req->gen_cfg.opcode = req->opcode;
|
||||
else
|
||||
nix_req->gen_cfg.opcode = cpt_inline_rx_opcode(pdev);
|
||||
nix_req->gen_cfg.param1 = req->param1;
|
||||
nix_req->gen_cfg.param2 = req->param2;
|
||||
nix_req->inst_qsel.cpt_pf_func = OTX2_CPT_RVU_PFFUNC(cptpf->pf_id, 0);
|
||||
nix_req->inst_qsel.cpt_slot = 0;
|
||||
ret = otx2_cpt_send_mbox_msg(&cptpf->afpf_mbox, pdev);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
if (cptpf->has_cpt1) {
|
||||
ret = send_inline_ipsec_inbound_msg(cptpf, req->sso_pf_func, 1);
|
||||
if (ret)
|
||||
return ret;
|
||||
}
|
||||
|
||||
return send_inline_ipsec_inbound_msg(cptpf, req->sso_pf_func, 0);
|
||||
}
|
||||
|
||||
static int handle_msg_rx_inline_ipsec_lf_cfg(struct otx2_cptpf_dev *cptpf,
|
||||
struct mbox_msghdr *req)
|
||||
{
|
||||
struct otx2_cpt_rx_inline_lf_cfg *cfg_req;
|
||||
u8 egrp;
|
||||
int ret;
|
||||
|
||||
cfg_req = (struct otx2_cpt_rx_inline_lf_cfg *)req;
|
||||
if (cptpf->lfs.lfs_num) {
|
||||
dev_err(&cptpf->pdev->dev,
|
||||
"LF is already configured for RX inline ipsec.\n");
|
||||
return -EEXIST;
|
||||
}
|
||||
/*
|
||||
* Allow LFs to execute requests destined to only grp IE_TYPES and
|
||||
* set queue priority of each LF to high
|
||||
*/
|
||||
egrp = otx2_cpt_get_eng_grp(&cptpf->eng_grps, OTX2_CPT_IE_TYPES);
|
||||
if (egrp == OTX2_CPT_INVALID_CRYPTO_ENG_GRP) {
|
||||
dev_err(&cptpf->pdev->dev,
|
||||
"Engine group for inline ipsec is not available\n");
|
||||
return -ENOENT;
|
||||
}
|
||||
|
||||
otx2_cptlf_set_dev_info(&cptpf->lfs, cptpf->pdev, cptpf->reg_base,
|
||||
&cptpf->afpf_mbox, BLKADDR_CPT0);
|
||||
ret = otx2_cptlf_init(&cptpf->lfs, 1 << egrp, OTX2_CPT_QUEUE_HI_PRIO,
|
||||
1);
|
||||
if (ret) {
|
||||
dev_err(&cptpf->pdev->dev,
|
||||
"LF configuration failed for RX inline ipsec.\n");
|
||||
return ret;
|
||||
}
|
||||
|
||||
if (cptpf->has_cpt1) {
|
||||
cptpf->rsrc_req_blkaddr = BLKADDR_CPT1;
|
||||
otx2_cptlf_set_dev_info(&cptpf->cpt1_lfs, cptpf->pdev,
|
||||
cptpf->reg_base, &cptpf->afpf_mbox,
|
||||
BLKADDR_CPT1);
|
||||
ret = otx2_cptlf_init(&cptpf->cpt1_lfs, 1 << egrp,
|
||||
OTX2_CPT_QUEUE_HI_PRIO, 1);
|
||||
if (ret) {
|
||||
dev_err(&cptpf->pdev->dev,
|
||||
"LF configuration failed for RX inline ipsec.\n");
|
||||
goto lf_cleanup;
|
||||
}
|
||||
cptpf->rsrc_req_blkaddr = 0;
|
||||
}
|
||||
|
||||
ret = rx_inline_ipsec_lf_cfg(cptpf, egrp, cfg_req);
|
||||
if (ret)
|
||||
goto lf1_cleanup;
|
||||
|
||||
return 0;
|
||||
|
||||
lf1_cleanup:
|
||||
otx2_cptlf_shutdown(&cptpf->cpt1_lfs);
|
||||
lf_cleanup:
|
||||
otx2_cptlf_shutdown(&cptpf->lfs);
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int cptpf_handle_vf_req(struct otx2_cptpf_dev *cptpf,
|
||||
struct otx2_cptvf_info *vf,
|
||||
struct mbox_msghdr *req, int size)
|
||||
@ -132,6 +279,10 @@ static int cptpf_handle_vf_req(struct otx2_cptpf_dev *cptpf,
|
||||
case MBOX_MSG_GET_KVF_LIMITS:
|
||||
err = handle_msg_kvf_limits(cptpf, vf, req);
|
||||
break;
|
||||
case MBOX_MSG_RX_INLINE_IPSEC_LF_CFG:
|
||||
err = handle_msg_rx_inline_ipsec_lf_cfg(cptpf, req);
|
||||
break;
|
||||
|
||||
default:
|
||||
err = forward_to_af(cptpf, vf, req, size);
|
||||
break;
|
||||
@ -224,14 +375,28 @@ void otx2_cptpf_vfpf_mbox_handler(struct work_struct *work)
|
||||
irqreturn_t otx2_cptpf_afpf_mbox_intr(int __always_unused irq, void *arg)
|
||||
{
|
||||
struct otx2_cptpf_dev *cptpf = arg;
|
||||
struct otx2_mbox_dev *mdev;
|
||||
struct otx2_mbox *mbox;
|
||||
struct mbox_hdr *hdr;
|
||||
u64 intr;
|
||||
|
||||
/* Read the interrupt bits */
|
||||
intr = otx2_cpt_read64(cptpf->reg_base, BLKADDR_RVUM, 0, RVU_PF_INT);
|
||||
|
||||
if (intr & 0x1ULL) {
|
||||
mbox = &cptpf->afpf_mbox;
|
||||
mdev = &mbox->dev[0];
|
||||
hdr = mdev->mbase + mbox->rx_start;
|
||||
if (hdr->num_msgs)
|
||||
/* Schedule work queue function to process the MBOX request */
|
||||
queue_work(cptpf->afpf_mbox_wq, &cptpf->afpf_mbox_work);
|
||||
|
||||
mbox = &cptpf->afpf_mbox_up;
|
||||
mdev = &mbox->dev[0];
|
||||
hdr = mdev->mbase + mbox->rx_start;
|
||||
if (hdr->num_msgs)
|
||||
/* Schedule work queue function to process the MBOX request */
|
||||
queue_work(cptpf->afpf_mbox_wq, &cptpf->afpf_mbox_up_work);
|
||||
/* Clear and ack the interrupt */
|
||||
otx2_cpt_write64(cptpf->reg_base, BLKADDR_RVUM, 0, RVU_PF_INT,
|
||||
0x1ULL);
|
||||
@ -242,6 +407,7 @@ irqreturn_t otx2_cptpf_afpf_mbox_intr(int __always_unused irq, void *arg)
|
||||
static void process_afpf_mbox_msg(struct otx2_cptpf_dev *cptpf,
|
||||
struct mbox_msghdr *msg)
|
||||
{
|
||||
struct otx2_cptlfs_info *lfs = &cptpf->lfs;
|
||||
struct device *dev = &cptpf->pdev->dev;
|
||||
struct cpt_rd_wr_reg_msg *rsp_rd_wr;
|
||||
|
||||
@ -254,6 +420,8 @@ static void process_afpf_mbox_msg(struct otx2_cptpf_dev *cptpf,
|
||||
msg->sig, msg->id);
|
||||
return;
|
||||
}
|
||||
if (cptpf->rsrc_req_blkaddr == BLKADDR_CPT1)
|
||||
lfs = &cptpf->cpt1_lfs;
|
||||
|
||||
switch (msg->id) {
|
||||
case MBOX_MSG_READY:
|
||||
@ -273,11 +441,14 @@ static void process_afpf_mbox_msg(struct otx2_cptpf_dev *cptpf,
|
||||
break;
|
||||
case MBOX_MSG_ATTACH_RESOURCES:
|
||||
if (!msg->rc)
|
||||
cptpf->lfs.are_lfs_attached = 1;
|
||||
lfs->are_lfs_attached = 1;
|
||||
break;
|
||||
case MBOX_MSG_DETACH_RESOURCES:
|
||||
if (!msg->rc)
|
||||
cptpf->lfs.are_lfs_attached = 0;
|
||||
lfs->are_lfs_attached = 0;
|
||||
break;
|
||||
case MBOX_MSG_CPT_INLINE_IPSEC_CFG:
|
||||
case MBOX_MSG_NIX_INLINE_IPSEC_CFG:
|
||||
break;
|
||||
|
||||
default:
|
||||
@ -367,3 +538,71 @@ void otx2_cptpf_afpf_mbox_handler(struct work_struct *work)
|
||||
}
|
||||
otx2_mbox_reset(afpf_mbox, 0);
|
||||
}
|
||||
|
||||
static void handle_msg_cpt_inst_lmtst(struct otx2_cptpf_dev *cptpf,
|
||||
struct mbox_msghdr *msg)
|
||||
{
|
||||
struct cpt_inst_lmtst_req *req = (struct cpt_inst_lmtst_req *)msg;
|
||||
struct otx2_cptlfs_info *lfs = &cptpf->lfs;
|
||||
struct msg_rsp *rsp;
|
||||
|
||||
if (cptpf->lfs.lfs_num)
|
||||
lfs->ops->send_cmd((union otx2_cpt_inst_s *)req->inst, 1,
|
||||
&lfs->lf[0]);
|
||||
|
||||
rsp = (struct msg_rsp *)otx2_mbox_alloc_msg(&cptpf->afpf_mbox_up, 0,
|
||||
sizeof(*rsp));
|
||||
if (!rsp)
|
||||
return;
|
||||
|
||||
rsp->hdr.id = msg->id;
|
||||
rsp->hdr.sig = OTX2_MBOX_RSP_SIG;
|
||||
rsp->hdr.pcifunc = 0;
|
||||
rsp->hdr.rc = 0;
|
||||
}
|
||||
|
||||
static void process_afpf_mbox_up_msg(struct otx2_cptpf_dev *cptpf,
|
||||
struct mbox_msghdr *msg)
|
||||
{
|
||||
if (msg->id >= MBOX_MSG_MAX) {
|
||||
dev_err(&cptpf->pdev->dev,
|
||||
"MBOX msg with unknown ID %d\n", msg->id);
|
||||
return;
|
||||
}
|
||||
|
||||
switch (msg->id) {
|
||||
case MBOX_MSG_CPT_INST_LMTST:
|
||||
handle_msg_cpt_inst_lmtst(cptpf, msg);
|
||||
break;
|
||||
default:
|
||||
otx2_reply_invalid_msg(&cptpf->afpf_mbox_up, 0, 0, msg->id);
|
||||
}
|
||||
}
|
||||
|
||||
void otx2_cptpf_afpf_mbox_up_handler(struct work_struct *work)
|
||||
{
|
||||
struct otx2_cptpf_dev *cptpf;
|
||||
struct otx2_mbox_dev *mdev;
|
||||
struct mbox_hdr *rsp_hdr;
|
||||
struct mbox_msghdr *msg;
|
||||
struct otx2_mbox *mbox;
|
||||
int offset, i;
|
||||
|
||||
cptpf = container_of(work, struct otx2_cptpf_dev, afpf_mbox_up_work);
|
||||
mbox = &cptpf->afpf_mbox_up;
|
||||
mdev = &mbox->dev[0];
|
||||
/* Sync mbox data into memory */
|
||||
smp_wmb();
|
||||
|
||||
rsp_hdr = (struct mbox_hdr *)(mdev->mbase + mbox->rx_start);
|
||||
offset = mbox->rx_start + ALIGN(sizeof(*rsp_hdr), MBOX_MSG_ALIGN);
|
||||
|
||||
for (i = 0; i < rsp_hdr->num_msgs; i++) {
|
||||
msg = (struct mbox_msghdr *)(mdev->mbase + offset);
|
||||
|
||||
process_afpf_mbox_up_msg(cptpf, msg);
|
||||
|
||||
offset = mbox->rx_start + msg->next_msgoff;
|
||||
}
|
||||
otx2_mbox_msg_send(mbox, 0);
|
||||
}
|
||||
|
@ -1504,11 +1504,9 @@ int otx2_cpt_discover_eng_capabilities(struct otx2_cptpf_dev *cptpf)
|
||||
if (ret)
|
||||
goto delete_grps;
|
||||
|
||||
lfs->pdev = pdev;
|
||||
lfs->reg_base = cptpf->reg_base;
|
||||
lfs->mbox = &cptpf->afpf_mbox;
|
||||
lfs->blkaddr = BLKADDR_CPT0;
|
||||
ret = otx2_cptlf_init(&cptpf->lfs, OTX2_CPT_ALL_ENG_GRPS_MASK,
|
||||
otx2_cptlf_set_dev_info(lfs, cptpf->pdev, cptpf->reg_base,
|
||||
&cptpf->afpf_mbox, BLKADDR_CPT0);
|
||||
ret = otx2_cptlf_init(lfs, OTX2_CPT_ALL_ENG_GRPS_MASK,
|
||||
OTX2_CPT_QUEUE_HI_PRIO, 1);
|
||||
if (ret)
|
||||
goto delete_grps;
|
||||
@ -1562,7 +1560,7 @@ int otx2_cpt_discover_eng_capabilities(struct otx2_cptpf_dev *cptpf)
|
||||
free_result:
|
||||
kfree(result);
|
||||
lf_cleanup:
|
||||
otx2_cptlf_shutdown(&cptpf->lfs);
|
||||
otx2_cptlf_shutdown(lfs);
|
||||
delete_grps:
|
||||
delete_engine_grps(pdev, &cptpf->eng_grps);
|
||||
|
||||
|
@ -19,6 +19,7 @@ struct otx2_cptvf_dev {
|
||||
struct otx2_mbox pfvf_mbox;
|
||||
struct work_struct pfvf_mbox_work;
|
||||
struct workqueue_struct *pfvf_mbox_wq;
|
||||
int blkaddr;
|
||||
void *bbuf_base;
|
||||
unsigned long cap_flag;
|
||||
};
|
||||
|
@ -277,12 +277,11 @@ static int cptvf_lf_init(struct otx2_cptvf_dev *cptvf)
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
lfs->reg_base = cptvf->reg_base;
|
||||
lfs->pdev = cptvf->pdev;
|
||||
lfs->mbox = &cptvf->pfvf_mbox;
|
||||
|
||||
lfs_num = cptvf->lfs.kvf_limits ? cptvf->lfs.kvf_limits :
|
||||
num_online_cpus();
|
||||
|
||||
otx2_cptlf_set_dev_info(lfs, cptvf->pdev, cptvf->reg_base,
|
||||
&cptvf->pfvf_mbox, cptvf->blkaddr);
|
||||
ret = otx2_cptlf_init(lfs, eng_grp_msk, OTX2_CPT_QUEUE_HI_PRIO,
|
||||
lfs_num);
|
||||
if (ret)
|
||||
@ -380,6 +379,7 @@ static int otx2_cptvf_probe(struct pci_dev *pdev,
|
||||
if (ret)
|
||||
goto destroy_pfvf_mbox;
|
||||
|
||||
cptvf->blkaddr = BLKADDR_CPT0;
|
||||
/* Initialize CPT LFs */
|
||||
ret = cptvf_lf_init(cptvf);
|
||||
if (ret)
|
||||
|
@ -9,6 +9,7 @@
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/of.h>
|
||||
#include <linux/of_address.h>
|
||||
#include <linux/of_device.h>
|
||||
#include <linux/cpumask.h>
|
||||
#include <linux/slab.h>
|
||||
@ -1795,11 +1796,9 @@ static int grab_mdesc_irq_props(struct mdesc_handle *mdesc,
|
||||
struct spu_mdesc_info *ip,
|
||||
const char *node_name)
|
||||
{
|
||||
const unsigned int *reg;
|
||||
u64 node;
|
||||
u64 node, reg;
|
||||
|
||||
reg = of_get_property(dev->dev.of_node, "reg", NULL);
|
||||
if (!reg)
|
||||
if (of_property_read_reg(dev->dev.of_node, 0, ®, NULL) < 0)
|
||||
return -ENODEV;
|
||||
|
||||
mdesc_for_each_node_by_name(mdesc, node, "virtual-device") {
|
||||
@ -1810,7 +1809,7 @@ static int grab_mdesc_irq_props(struct mdesc_handle *mdesc,
|
||||
if (!name || strcmp(name, node_name))
|
||||
continue;
|
||||
chdl = mdesc_get_property(mdesc, node, "cfg-handle", NULL);
|
||||
if (!chdl || (*chdl != *reg))
|
||||
if (!chdl || (*chdl != reg))
|
||||
continue;
|
||||
ip->cfg_handle = *chdl;
|
||||
return get_irq_props(mdesc, node, ip);
|
||||
|
@ -1,7 +1,6 @@
|
||||
# SPDX-License-Identifier: GPL-2.0
|
||||
obj-$(CONFIG_CRYPTO_DEV_NX_ENCRYPT) += nx-crypto.o
|
||||
nx-crypto-objs := nx.o \
|
||||
nx_debugfs.o \
|
||||
nx-aes-cbc.o \
|
||||
nx-aes-ecb.o \
|
||||
nx-aes-gcm.o \
|
||||
@ -11,6 +10,7 @@ nx-crypto-objs := nx.o \
|
||||
nx-sha256.o \
|
||||
nx-sha512.o
|
||||
|
||||
nx-crypto-$(CONFIG_DEBUG_FS) += nx_debugfs.o
|
||||
obj-$(CONFIG_CRYPTO_DEV_NX_COMPRESS_PSERIES) += nx-compress-pseries.o nx-compress.o
|
||||
obj-$(CONFIG_CRYPTO_DEV_NX_COMPRESS_POWERNV) += nx-compress-powernv.o nx-compress.o
|
||||
nx-compress-objs := nx-842.o
|
||||
|
@ -170,8 +170,8 @@ struct nx_sg *nx_walk_and_build(struct nx_sg *, unsigned int,
|
||||
void nx_debugfs_init(struct nx_crypto_driver *);
|
||||
void nx_debugfs_fini(struct nx_crypto_driver *);
|
||||
#else
|
||||
#define NX_DEBUGFS_INIT(drv) (0)
|
||||
#define NX_DEBUGFS_FINI(drv) (0)
|
||||
#define NX_DEBUGFS_INIT(drv) do {} while (0)
|
||||
#define NX_DEBUGFS_FINI(drv) do {} while (0)
|
||||
#endif
|
||||
|
||||
#define NX_PAGE_NUM(x) ((u64)(x) & 0xfffffffffffff000ULL)
|
||||
|
@ -170,7 +170,7 @@ struct sa_tfm_ctx;
|
||||
* the following range, so avoid using it.
|
||||
*/
|
||||
#define SA_UNSAFE_DATA_SZ_MIN 240
|
||||
#define SA_UNSAFE_DATA_SZ_MAX 256
|
||||
#define SA_UNSAFE_DATA_SZ_MAX 255
|
||||
|
||||
struct sa_match_data;
|
||||
|
||||
|
20
drivers/crypto/starfive/Kconfig
Normal file
20
drivers/crypto/starfive/Kconfig
Normal file
@ -0,0 +1,20 @@
|
||||
#
|
||||
# StarFive crypto drivers configuration
|
||||
#
|
||||
|
||||
config CRYPTO_DEV_JH7110
|
||||
tristate "StarFive JH7110 cryptographic engine driver"
|
||||
depends on SOC_STARFIVE || AMBA_PL08X || COMPILE_TEST
|
||||
depends on HAS_DMA
|
||||
select CRYPTO_ENGINE
|
||||
select CRYPTO_HMAC
|
||||
select CRYPTO_SHA256
|
||||
select CRYPTO_SHA512
|
||||
select CRYPTO_SM3_GENERIC
|
||||
select CRYPTO_RSA
|
||||
help
|
||||
Support for StarFive JH7110 crypto hardware acceleration engine.
|
||||
This module provides acceleration for public key algo,
|
||||
skciphers, AEAD and hash functions.
|
||||
|
||||
If you choose 'M' here, this module will be called jh7110-crypto.
|
4
drivers/crypto/starfive/Makefile
Normal file
4
drivers/crypto/starfive/Makefile
Normal file
@ -0,0 +1,4 @@
|
||||
# SPDX-License-Identifier: GPL-2.0
|
||||
|
||||
obj-$(CONFIG_CRYPTO_DEV_JH7110) += jh7110-crypto.o
|
||||
jh7110-crypto-objs := jh7110-cryp.o jh7110-hash.o jh7110-rsa.o
|
258
drivers/crypto/starfive/jh7110-cryp.c
Normal file
258
drivers/crypto/starfive/jh7110-cryp.c
Normal file
@ -0,0 +1,258 @@
|
||||
// SPDX-License-Identifier: GPL-2.0
|
||||
/*
|
||||
* Cryptographic API.
|
||||
*
|
||||
* Support for StarFive hardware cryptographic engine.
|
||||
* Copyright (c) 2022 StarFive Technology
|
||||
*
|
||||
*/
|
||||
|
||||
#include <linux/clk.h>
|
||||
#include <linux/delay.h>
|
||||
#include <linux/interrupt.h>
|
||||
#include <linux/iopoll.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/of_device.h>
|
||||
#include <linux/platform_device.h>
|
||||
#include <linux/pm_runtime.h>
|
||||
#include <linux/reset.h>
|
||||
|
||||
#include "jh7110-cryp.h"
|
||||
|
||||
#define DRIVER_NAME "jh7110-crypto"
|
||||
|
||||
struct starfive_dev_list {
|
||||
struct list_head dev_list;
|
||||
spinlock_t lock; /* protect dev_list */
|
||||
};
|
||||
|
||||
static struct starfive_dev_list dev_list = {
|
||||
.dev_list = LIST_HEAD_INIT(dev_list.dev_list),
|
||||
.lock = __SPIN_LOCK_UNLOCKED(dev_list.lock),
|
||||
};
|
||||
|
||||
struct starfive_cryp_dev *starfive_cryp_find_dev(struct starfive_cryp_ctx *ctx)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = NULL, *tmp;
|
||||
|
||||
spin_lock_bh(&dev_list.lock);
|
||||
if (!ctx->cryp) {
|
||||
list_for_each_entry(tmp, &dev_list.dev_list, list) {
|
||||
cryp = tmp;
|
||||
break;
|
||||
}
|
||||
ctx->cryp = cryp;
|
||||
} else {
|
||||
cryp = ctx->cryp;
|
||||
}
|
||||
|
||||
spin_unlock_bh(&dev_list.lock);
|
||||
|
||||
return cryp;
|
||||
}
|
||||
|
||||
static int starfive_dma_init(struct starfive_cryp_dev *cryp)
|
||||
{
|
||||
dma_cap_mask_t mask;
|
||||
|
||||
dma_cap_zero(mask);
|
||||
dma_cap_set(DMA_SLAVE, mask);
|
||||
|
||||
cryp->tx = dma_request_chan(cryp->dev, "tx");
|
||||
if (IS_ERR(cryp->tx))
|
||||
return dev_err_probe(cryp->dev, PTR_ERR(cryp->tx),
|
||||
"Error requesting tx dma channel.\n");
|
||||
|
||||
cryp->rx = dma_request_chan(cryp->dev, "rx");
|
||||
if (IS_ERR(cryp->rx)) {
|
||||
dma_release_channel(cryp->tx);
|
||||
return dev_err_probe(cryp->dev, PTR_ERR(cryp->rx),
|
||||
"Error requesting rx dma channel.\n");
|
||||
}
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static void starfive_dma_cleanup(struct starfive_cryp_dev *cryp)
|
||||
{
|
||||
dma_release_channel(cryp->tx);
|
||||
dma_release_channel(cryp->rx);
|
||||
}
|
||||
|
||||
static irqreturn_t starfive_cryp_irq(int irq, void *priv)
|
||||
{
|
||||
u32 status;
|
||||
struct starfive_cryp_dev *cryp = (struct starfive_cryp_dev *)priv;
|
||||
|
||||
status = readl(cryp->base + STARFIVE_IE_FLAG_OFFSET);
|
||||
if (status & STARFIVE_IE_FLAG_HASH_DONE) {
|
||||
status = readl(cryp->base + STARFIVE_IE_MASK_OFFSET);
|
||||
status |= STARFIVE_IE_MASK_HASH_DONE;
|
||||
writel(status, cryp->base + STARFIVE_IE_MASK_OFFSET);
|
||||
tasklet_schedule(&cryp->hash_done);
|
||||
}
|
||||
|
||||
if (status & STARFIVE_IE_FLAG_PKA_DONE) {
|
||||
status = readl(cryp->base + STARFIVE_IE_MASK_OFFSET);
|
||||
status |= STARFIVE_IE_MASK_PKA_DONE;
|
||||
writel(status, cryp->base + STARFIVE_IE_MASK_OFFSET);
|
||||
complete(&cryp->pka_done);
|
||||
}
|
||||
|
||||
return IRQ_HANDLED;
|
||||
}
|
||||
|
||||
static int starfive_cryp_probe(struct platform_device *pdev)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp;
|
||||
struct resource *res;
|
||||
int irq;
|
||||
int ret;
|
||||
|
||||
cryp = devm_kzalloc(&pdev->dev, sizeof(*cryp), GFP_KERNEL);
|
||||
if (!cryp)
|
||||
return -ENOMEM;
|
||||
|
||||
platform_set_drvdata(pdev, cryp);
|
||||
cryp->dev = &pdev->dev;
|
||||
|
||||
cryp->base = devm_platform_get_and_ioremap_resource(pdev, 0, &res);
|
||||
if (IS_ERR(cryp->base))
|
||||
return dev_err_probe(&pdev->dev, PTR_ERR(cryp->base),
|
||||
"Error remapping memory for platform device\n");
|
||||
|
||||
tasklet_init(&cryp->hash_done, starfive_hash_done_task, (unsigned long)cryp);
|
||||
|
||||
cryp->phys_base = res->start;
|
||||
cryp->dma_maxburst = 32;
|
||||
|
||||
cryp->hclk = devm_clk_get(&pdev->dev, "hclk");
|
||||
if (IS_ERR(cryp->hclk))
|
||||
return dev_err_probe(&pdev->dev, PTR_ERR(cryp->hclk),
|
||||
"Error getting hardware reference clock\n");
|
||||
|
||||
cryp->ahb = devm_clk_get(&pdev->dev, "ahb");
|
||||
if (IS_ERR(cryp->ahb))
|
||||
return dev_err_probe(&pdev->dev, PTR_ERR(cryp->ahb),
|
||||
"Error getting ahb reference clock\n");
|
||||
|
||||
cryp->rst = devm_reset_control_get_shared(cryp->dev, NULL);
|
||||
if (IS_ERR(cryp->rst))
|
||||
return dev_err_probe(&pdev->dev, PTR_ERR(cryp->rst),
|
||||
"Error getting hardware reset line\n");
|
||||
|
||||
init_completion(&cryp->pka_done);
|
||||
|
||||
irq = platform_get_irq(pdev, 0);
|
||||
if (irq < 0)
|
||||
return irq;
|
||||
|
||||
ret = devm_request_irq(&pdev->dev, irq, starfive_cryp_irq, 0, pdev->name,
|
||||
(void *)cryp);
|
||||
if (ret)
|
||||
return dev_err_probe(&pdev->dev, irq,
|
||||
"Failed to register interrupt handler\n");
|
||||
|
||||
clk_prepare_enable(cryp->hclk);
|
||||
clk_prepare_enable(cryp->ahb);
|
||||
reset_control_deassert(cryp->rst);
|
||||
|
||||
spin_lock(&dev_list.lock);
|
||||
list_add(&cryp->list, &dev_list.dev_list);
|
||||
spin_unlock(&dev_list.lock);
|
||||
|
||||
ret = starfive_dma_init(cryp);
|
||||
if (ret) {
|
||||
if (ret == -EPROBE_DEFER)
|
||||
goto err_probe_defer;
|
||||
else
|
||||
goto err_dma_init;
|
||||
}
|
||||
|
||||
/* Initialize crypto engine */
|
||||
cryp->engine = crypto_engine_alloc_init(&pdev->dev, 1);
|
||||
if (!cryp->engine) {
|
||||
ret = -ENOMEM;
|
||||
goto err_engine;
|
||||
}
|
||||
|
||||
ret = crypto_engine_start(cryp->engine);
|
||||
if (ret)
|
||||
goto err_engine_start;
|
||||
|
||||
ret = starfive_hash_register_algs();
|
||||
if (ret)
|
||||
goto err_algs_hash;
|
||||
|
||||
ret = starfive_rsa_register_algs();
|
||||
if (ret)
|
||||
goto err_algs_rsa;
|
||||
|
||||
return 0;
|
||||
|
||||
err_algs_rsa:
|
||||
starfive_hash_unregister_algs();
|
||||
err_algs_hash:
|
||||
crypto_engine_stop(cryp->engine);
|
||||
err_engine_start:
|
||||
crypto_engine_exit(cryp->engine);
|
||||
err_engine:
|
||||
starfive_dma_cleanup(cryp);
|
||||
err_dma_init:
|
||||
spin_lock(&dev_list.lock);
|
||||
list_del(&cryp->list);
|
||||
spin_unlock(&dev_list.lock);
|
||||
|
||||
clk_disable_unprepare(cryp->hclk);
|
||||
clk_disable_unprepare(cryp->ahb);
|
||||
reset_control_assert(cryp->rst);
|
||||
|
||||
tasklet_kill(&cryp->hash_done);
|
||||
err_probe_defer:
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int starfive_cryp_remove(struct platform_device *pdev)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = platform_get_drvdata(pdev);
|
||||
|
||||
starfive_hash_unregister_algs();
|
||||
starfive_rsa_unregister_algs();
|
||||
|
||||
tasklet_kill(&cryp->hash_done);
|
||||
|
||||
crypto_engine_stop(cryp->engine);
|
||||
crypto_engine_exit(cryp->engine);
|
||||
|
||||
starfive_dma_cleanup(cryp);
|
||||
|
||||
spin_lock(&dev_list.lock);
|
||||
list_del(&cryp->list);
|
||||
spin_unlock(&dev_list.lock);
|
||||
|
||||
clk_disable_unprepare(cryp->hclk);
|
||||
clk_disable_unprepare(cryp->ahb);
|
||||
reset_control_assert(cryp->rst);
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static const struct of_device_id starfive_dt_ids[] __maybe_unused = {
|
||||
{ .compatible = "starfive,jh7110-crypto", .data = NULL},
|
||||
{},
|
||||
};
|
||||
MODULE_DEVICE_TABLE(of, starfive_dt_ids);
|
||||
|
||||
static struct platform_driver starfive_cryp_driver = {
|
||||
.probe = starfive_cryp_probe,
|
||||
.remove = starfive_cryp_remove,
|
||||
.driver = {
|
||||
.name = DRIVER_NAME,
|
||||
.of_match_table = starfive_dt_ids,
|
||||
},
|
||||
};
|
||||
|
||||
module_platform_driver(starfive_cryp_driver);
|
||||
|
||||
MODULE_LICENSE("GPL");
|
||||
MODULE_DESCRIPTION("StarFive JH7110 Cryptographic Module");
|
172
drivers/crypto/starfive/jh7110-cryp.h
Normal file
172
drivers/crypto/starfive/jh7110-cryp.h
Normal file
@ -0,0 +1,172 @@
|
||||
/* SPDX-License-Identifier: GPL-2.0 */
|
||||
#ifndef __STARFIVE_STR_H__
|
||||
#define __STARFIVE_STR_H__
|
||||
|
||||
#include <linux/delay.h>
|
||||
#include <linux/dma-mapping.h>
|
||||
#include <linux/dmaengine.h>
|
||||
|
||||
#include <crypto/engine.h>
|
||||
#include <crypto/sha2.h>
|
||||
#include <crypto/sm3.h>
|
||||
|
||||
#define STARFIVE_ALG_CR_OFFSET 0x0
|
||||
#define STARFIVE_ALG_FIFO_OFFSET 0x4
|
||||
#define STARFIVE_IE_MASK_OFFSET 0x8
|
||||
#define STARFIVE_IE_FLAG_OFFSET 0xc
|
||||
#define STARFIVE_DMA_IN_LEN_OFFSET 0x10
|
||||
#define STARFIVE_DMA_OUT_LEN_OFFSET 0x14
|
||||
|
||||
#define STARFIVE_IE_MASK_HASH_DONE 0x4
|
||||
#define STARFIVE_IE_MASK_PKA_DONE 0x8
|
||||
#define STARFIVE_IE_FLAG_HASH_DONE 0x4
|
||||
#define STARFIVE_IE_FLAG_PKA_DONE 0x8
|
||||
|
||||
#define STARFIVE_MSG_BUFFER_SIZE SZ_16K
|
||||
#define MAX_KEY_SIZE SHA512_BLOCK_SIZE
|
||||
|
||||
union starfive_hash_csr {
|
||||
u32 v;
|
||||
struct {
|
||||
u32 start :1;
|
||||
u32 reset :1;
|
||||
u32 ie :1;
|
||||
u32 firstb :1;
|
||||
#define STARFIVE_HASH_SM3 0x0
|
||||
#define STARFIVE_HASH_SHA224 0x3
|
||||
#define STARFIVE_HASH_SHA256 0x4
|
||||
#define STARFIVE_HASH_SHA384 0x5
|
||||
#define STARFIVE_HASH_SHA512 0x6
|
||||
#define STARFIVE_HASH_MODE_MASK 0x7
|
||||
u32 mode :3;
|
||||
u32 rsvd_1 :1;
|
||||
u32 final :1;
|
||||
u32 rsvd_2 :2;
|
||||
#define STARFIVE_HASH_HMAC_FLAGS 0x800
|
||||
u32 hmac :1;
|
||||
u32 rsvd_3 :1;
|
||||
#define STARFIVE_HASH_KEY_DONE BIT(13)
|
||||
u32 key_done :1;
|
||||
u32 key_flag :1;
|
||||
u32 hmac_done :1;
|
||||
#define STARFIVE_HASH_BUSY BIT(16)
|
||||
u32 busy :1;
|
||||
u32 hashdone :1;
|
||||
u32 rsvd_4 :14;
|
||||
};
|
||||
};
|
||||
|
||||
union starfive_pka_cacr {
|
||||
u32 v;
|
||||
struct {
|
||||
u32 start :1;
|
||||
u32 reset :1;
|
||||
u32 ie :1;
|
||||
u32 rsvd_0 :1;
|
||||
u32 fifo_mode :1;
|
||||
u32 not_r2 :1;
|
||||
u32 ecc_sub :1;
|
||||
u32 pre_expf :1;
|
||||
u32 cmd :4;
|
||||
u32 rsvd_1 :1;
|
||||
u32 ctrl_dummy :1;
|
||||
u32 ctrl_false :1;
|
||||
u32 cln_done :1;
|
||||
u32 opsize :6;
|
||||
u32 rsvd_2 :2;
|
||||
u32 exposize :6;
|
||||
u32 rsvd_3 :1;
|
||||
u32 bigendian :1;
|
||||
};
|
||||
};
|
||||
|
||||
struct starfive_rsa_key {
|
||||
u8 *n;
|
||||
u8 *e;
|
||||
u8 *d;
|
||||
int e_bitlen;
|
||||
int d_bitlen;
|
||||
int bitlen;
|
||||
size_t key_sz;
|
||||
};
|
||||
|
||||
union starfive_alg_cr {
|
||||
u32 v;
|
||||
struct {
|
||||
u32 start :1;
|
||||
u32 aes_dma_en :1;
|
||||
u32 rsvd_0 :1;
|
||||
u32 hash_dma_en :1;
|
||||
u32 alg_done :1;
|
||||
u32 rsvd_1 :3;
|
||||
u32 clear :1;
|
||||
u32 rsvd_2 :23;
|
||||
};
|
||||
};
|
||||
|
||||
struct starfive_cryp_ctx {
|
||||
struct crypto_engine_ctx enginectx;
|
||||
struct starfive_cryp_dev *cryp;
|
||||
struct starfive_cryp_request_ctx *rctx;
|
||||
|
||||
unsigned int hash_mode;
|
||||
u8 key[MAX_KEY_SIZE];
|
||||
int keylen;
|
||||
bool is_hmac;
|
||||
struct starfive_rsa_key rsa_key;
|
||||
struct crypto_akcipher *akcipher_fbk;
|
||||
struct crypto_ahash *ahash_fbk;
|
||||
};
|
||||
|
||||
struct starfive_cryp_dev {
|
||||
struct list_head list;
|
||||
struct device *dev;
|
||||
struct clk *hclk;
|
||||
struct clk *ahb;
|
||||
struct reset_control *rst;
|
||||
|
||||
void __iomem *base;
|
||||
phys_addr_t phys_base;
|
||||
|
||||
u32 dma_maxburst;
|
||||
struct dma_chan *tx;
|
||||
struct dma_chan *rx;
|
||||
struct dma_slave_config cfg_in;
|
||||
struct dma_slave_config cfg_out;
|
||||
struct crypto_engine *engine;
|
||||
struct tasklet_struct hash_done;
|
||||
struct completion pka_done;
|
||||
int err;
|
||||
union starfive_alg_cr alg_cr;
|
||||
union {
|
||||
struct ahash_request *hreq;
|
||||
} req;
|
||||
};
|
||||
|
||||
struct starfive_cryp_request_ctx {
|
||||
union {
|
||||
union starfive_hash_csr hash;
|
||||
union starfive_pka_cacr pka;
|
||||
} csr;
|
||||
|
||||
struct scatterlist *in_sg;
|
||||
struct scatterlist *out_sg;
|
||||
struct ahash_request ahash_fbk_req;
|
||||
size_t total;
|
||||
size_t nents;
|
||||
unsigned int blksize;
|
||||
unsigned int digsize;
|
||||
unsigned long in_sg_len;
|
||||
u8 rsa_data[] __aligned(sizeof(u32));
|
||||
};
|
||||
|
||||
struct starfive_cryp_dev *starfive_cryp_find_dev(struct starfive_cryp_ctx *ctx);
|
||||
|
||||
int starfive_hash_register_algs(void);
|
||||
void starfive_hash_unregister_algs(void);
|
||||
|
||||
int starfive_rsa_register_algs(void);
|
||||
void starfive_rsa_unregister_algs(void);
|
||||
|
||||
void starfive_hash_done_task(unsigned long param);
|
||||
#endif
|
899
drivers/crypto/starfive/jh7110-hash.c
Normal file
899
drivers/crypto/starfive/jh7110-hash.c
Normal file
@ -0,0 +1,899 @@
|
||||
// SPDX-License-Identifier: GPL-2.0
|
||||
/*
|
||||
* Hash function and HMAC support for StarFive driver
|
||||
*
|
||||
* Copyright (c) 2022 StarFive Technology
|
||||
*
|
||||
*/
|
||||
|
||||
#include <linux/clk.h>
|
||||
#include <linux/crypto.h>
|
||||
#include <linux/dma-direct.h>
|
||||
#include <linux/interrupt.h>
|
||||
#include <linux/io.h>
|
||||
#include <linux/iopoll.h>
|
||||
#include <linux/kernel.h>
|
||||
#include <linux/module.h>
|
||||
#include <linux/of_device.h>
|
||||
#include <linux/platform_device.h>
|
||||
#include <linux/pm_runtime.h>
|
||||
#include <linux/reset.h>
|
||||
#include <linux/amba/pl080.h>
|
||||
|
||||
#include <crypto/hash.h>
|
||||
#include <crypto/scatterwalk.h>
|
||||
#include <crypto/internal/hash.h>
|
||||
|
||||
#include "jh7110-cryp.h"
|
||||
|
||||
#define STARFIVE_HASH_REGS_OFFSET 0x300
|
||||
#define STARFIVE_HASH_SHACSR (STARFIVE_HASH_REGS_OFFSET + 0x0)
|
||||
#define STARFIVE_HASH_SHAWDR (STARFIVE_HASH_REGS_OFFSET + 0x4)
|
||||
#define STARFIVE_HASH_SHARDR (STARFIVE_HASH_REGS_OFFSET + 0x8)
|
||||
#define STARFIVE_HASH_SHAWSR (STARFIVE_HASH_REGS_OFFSET + 0xC)
|
||||
#define STARFIVE_HASH_SHAWLEN3 (STARFIVE_HASH_REGS_OFFSET + 0x10)
|
||||
#define STARFIVE_HASH_SHAWLEN2 (STARFIVE_HASH_REGS_OFFSET + 0x14)
|
||||
#define STARFIVE_HASH_SHAWLEN1 (STARFIVE_HASH_REGS_OFFSET + 0x18)
|
||||
#define STARFIVE_HASH_SHAWLEN0 (STARFIVE_HASH_REGS_OFFSET + 0x1C)
|
||||
#define STARFIVE_HASH_SHAWKR (STARFIVE_HASH_REGS_OFFSET + 0x20)
|
||||
#define STARFIVE_HASH_SHAWKLEN (STARFIVE_HASH_REGS_OFFSET + 0x24)
|
||||
|
||||
#define STARFIVE_HASH_BUFLEN SHA512_BLOCK_SIZE
|
||||
#define STARFIVE_HASH_RESET 0x2
|
||||
|
||||
static inline int starfive_hash_wait_busy(struct starfive_cryp_ctx *ctx)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
u32 status;
|
||||
|
||||
return readl_relaxed_poll_timeout(cryp->base + STARFIVE_HASH_SHACSR, status,
|
||||
!(status & STARFIVE_HASH_BUSY), 10, 100000);
|
||||
}
|
||||
|
||||
static inline int starfive_hash_wait_key_done(struct starfive_cryp_ctx *ctx)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
u32 status;
|
||||
|
||||
return readl_relaxed_poll_timeout(cryp->base + STARFIVE_HASH_SHACSR, status,
|
||||
(status & STARFIVE_HASH_KEY_DONE), 10, 100000);
|
||||
}
|
||||
|
||||
static int starfive_hash_hmac_key(struct starfive_cryp_ctx *ctx)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ctx->rctx;
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
int klen = ctx->keylen, loop;
|
||||
unsigned int *key = (unsigned int *)ctx->key;
|
||||
unsigned char *cl;
|
||||
|
||||
writel(ctx->keylen, cryp->base + STARFIVE_HASH_SHAWKLEN);
|
||||
|
||||
rctx->csr.hash.hmac = 1;
|
||||
rctx->csr.hash.key_flag = 1;
|
||||
|
||||
writel(rctx->csr.hash.v, cryp->base + STARFIVE_HASH_SHACSR);
|
||||
|
||||
for (loop = 0; loop < klen / sizeof(unsigned int); loop++, key++)
|
||||
writel(*key, cryp->base + STARFIVE_HASH_SHAWKR);
|
||||
|
||||
if (klen & 0x3) {
|
||||
cl = (unsigned char *)key;
|
||||
for (loop = 0; loop < (klen & 0x3); loop++, cl++)
|
||||
writeb(*cl, cryp->base + STARFIVE_HASH_SHAWKR);
|
||||
}
|
||||
|
||||
if (starfive_hash_wait_key_done(ctx))
|
||||
return dev_err_probe(cryp->dev, -ETIMEDOUT, "starfive_hash_wait_key_done error\n");
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static void starfive_hash_start(void *param)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = param;
|
||||
struct starfive_cryp_request_ctx *rctx = ctx->rctx;
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
union starfive_alg_cr alg_cr;
|
||||
union starfive_hash_csr csr;
|
||||
u32 stat;
|
||||
|
||||
dma_unmap_sg(cryp->dev, rctx->in_sg, rctx->in_sg_len, DMA_TO_DEVICE);
|
||||
|
||||
alg_cr.v = 0;
|
||||
alg_cr.clear = 1;
|
||||
|
||||
writel(alg_cr.v, cryp->base + STARFIVE_ALG_CR_OFFSET);
|
||||
|
||||
csr.v = readl(cryp->base + STARFIVE_HASH_SHACSR);
|
||||
csr.firstb = 0;
|
||||
csr.final = 1;
|
||||
|
||||
stat = readl(cryp->base + STARFIVE_IE_MASK_OFFSET);
|
||||
stat &= ~STARFIVE_IE_MASK_HASH_DONE;
|
||||
writel(stat, cryp->base + STARFIVE_IE_MASK_OFFSET);
|
||||
writel(csr.v, cryp->base + STARFIVE_HASH_SHACSR);
|
||||
}
|
||||
|
||||
static int starfive_hash_xmit_dma(struct starfive_cryp_ctx *ctx)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ctx->rctx;
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
struct dma_async_tx_descriptor *in_desc;
|
||||
union starfive_alg_cr alg_cr;
|
||||
int total_len;
|
||||
int ret;
|
||||
|
||||
if (!rctx->total) {
|
||||
starfive_hash_start(ctx);
|
||||
return 0;
|
||||
}
|
||||
|
||||
writel(rctx->total, cryp->base + STARFIVE_DMA_IN_LEN_OFFSET);
|
||||
|
||||
total_len = rctx->total;
|
||||
total_len = (total_len & 0x3) ? (((total_len >> 2) + 1) << 2) : total_len;
|
||||
sg_dma_len(rctx->in_sg) = total_len;
|
||||
|
||||
alg_cr.v = 0;
|
||||
alg_cr.start = 1;
|
||||
alg_cr.hash_dma_en = 1;
|
||||
|
||||
writel(alg_cr.v, cryp->base + STARFIVE_ALG_CR_OFFSET);
|
||||
|
||||
ret = dma_map_sg(cryp->dev, rctx->in_sg, rctx->in_sg_len, DMA_TO_DEVICE);
|
||||
if (!ret)
|
||||
return dev_err_probe(cryp->dev, -EINVAL, "dma_map_sg() error\n");
|
||||
|
||||
cryp->cfg_in.direction = DMA_MEM_TO_DEV;
|
||||
cryp->cfg_in.src_addr_width = DMA_SLAVE_BUSWIDTH_4_BYTES;
|
||||
cryp->cfg_in.dst_addr_width = DMA_SLAVE_BUSWIDTH_4_BYTES;
|
||||
cryp->cfg_in.src_maxburst = cryp->dma_maxburst;
|
||||
cryp->cfg_in.dst_maxburst = cryp->dma_maxburst;
|
||||
cryp->cfg_in.dst_addr = cryp->phys_base + STARFIVE_ALG_FIFO_OFFSET;
|
||||
|
||||
dmaengine_slave_config(cryp->tx, &cryp->cfg_in);
|
||||
|
||||
in_desc = dmaengine_prep_slave_sg(cryp->tx, rctx->in_sg,
|
||||
ret, DMA_MEM_TO_DEV,
|
||||
DMA_PREP_INTERRUPT | DMA_CTRL_ACK);
|
||||
|
||||
if (!in_desc)
|
||||
return -EINVAL;
|
||||
|
||||
in_desc->callback = starfive_hash_start;
|
||||
in_desc->callback_param = ctx;
|
||||
|
||||
dmaengine_submit(in_desc);
|
||||
dma_async_issue_pending(cryp->tx);
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int starfive_hash_xmit(struct starfive_cryp_ctx *ctx)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ctx->rctx;
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
int ret = 0;
|
||||
|
||||
rctx->csr.hash.v = 0;
|
||||
rctx->csr.hash.reset = 1;
|
||||
writel(rctx->csr.hash.v, cryp->base + STARFIVE_HASH_SHACSR);
|
||||
|
||||
if (starfive_hash_wait_busy(ctx))
|
||||
return dev_err_probe(cryp->dev, -ETIMEDOUT, "Error resetting engine.\n");
|
||||
|
||||
rctx->csr.hash.v = 0;
|
||||
rctx->csr.hash.mode = ctx->hash_mode;
|
||||
rctx->csr.hash.ie = 1;
|
||||
|
||||
if (ctx->is_hmac) {
|
||||
ret = starfive_hash_hmac_key(ctx);
|
||||
if (ret)
|
||||
return ret;
|
||||
} else {
|
||||
rctx->csr.hash.start = 1;
|
||||
rctx->csr.hash.firstb = 1;
|
||||
writel(rctx->csr.hash.v, cryp->base + STARFIVE_HASH_SHACSR);
|
||||
}
|
||||
|
||||
return starfive_hash_xmit_dma(ctx);
|
||||
}
|
||||
|
||||
static int starfive_hash_copy_hash(struct ahash_request *req)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(crypto_ahash_reqtfm(req));
|
||||
int count, *data;
|
||||
int mlen;
|
||||
|
||||
if (!req->result)
|
||||
return 0;
|
||||
|
||||
mlen = rctx->digsize / sizeof(u32);
|
||||
data = (u32 *)req->result;
|
||||
|
||||
for (count = 0; count < mlen; count++)
|
||||
data[count] = readl(ctx->cryp->base + STARFIVE_HASH_SHARDR);
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
void starfive_hash_done_task(unsigned long param)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = (struct starfive_cryp_dev *)param;
|
||||
int err = cryp->err;
|
||||
|
||||
if (!err)
|
||||
err = starfive_hash_copy_hash(cryp->req.hreq);
|
||||
|
||||
/* Reset to clear hash_done in irq register*/
|
||||
writel(STARFIVE_HASH_RESET, cryp->base + STARFIVE_HASH_SHACSR);
|
||||
|
||||
crypto_finalize_hash_request(cryp->engine, cryp->req.hreq, err);
|
||||
}
|
||||
|
||||
static int starfive_hash_check_aligned(struct scatterlist *sg, size_t total, size_t align)
|
||||
{
|
||||
int len = 0;
|
||||
|
||||
if (!total)
|
||||
return 0;
|
||||
|
||||
if (!IS_ALIGNED(total, align))
|
||||
return -EINVAL;
|
||||
|
||||
while (sg) {
|
||||
if (!IS_ALIGNED(sg->offset, sizeof(u32)))
|
||||
return -EINVAL;
|
||||
|
||||
if (!IS_ALIGNED(sg->length, align))
|
||||
return -EINVAL;
|
||||
|
||||
len += sg->length;
|
||||
sg = sg_next(sg);
|
||||
}
|
||||
|
||||
if (len != total)
|
||||
return -EINVAL;
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int starfive_hash_one_request(struct crypto_engine *engine, void *areq)
|
||||
{
|
||||
struct ahash_request *req = container_of(areq, struct ahash_request,
|
||||
base);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(crypto_ahash_reqtfm(req));
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
|
||||
if (!cryp)
|
||||
return -ENODEV;
|
||||
|
||||
return starfive_hash_xmit(ctx);
|
||||
}
|
||||
|
||||
static int starfive_hash_init(struct ahash_request *req)
|
||||
{
|
||||
struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(tfm);
|
||||
|
||||
ahash_request_set_tfm(&rctx->ahash_fbk_req, ctx->ahash_fbk);
|
||||
ahash_request_set_callback(&rctx->ahash_fbk_req,
|
||||
req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
req->base.complete, req->base.data);
|
||||
|
||||
ahash_request_set_crypt(&rctx->ahash_fbk_req, req->src,
|
||||
req->result, req->nbytes);
|
||||
|
||||
return crypto_ahash_init(&rctx->ahash_fbk_req);
|
||||
}
|
||||
|
||||
static int starfive_hash_update(struct ahash_request *req)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(tfm);
|
||||
|
||||
ahash_request_set_tfm(&rctx->ahash_fbk_req, ctx->ahash_fbk);
|
||||
ahash_request_set_callback(&rctx->ahash_fbk_req,
|
||||
req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
req->base.complete, req->base.data);
|
||||
|
||||
ahash_request_set_crypt(&rctx->ahash_fbk_req, req->src,
|
||||
req->result, req->nbytes);
|
||||
|
||||
return crypto_ahash_update(&rctx->ahash_fbk_req);
|
||||
}
|
||||
|
||||
static int starfive_hash_final(struct ahash_request *req)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(tfm);
|
||||
|
||||
ahash_request_set_tfm(&rctx->ahash_fbk_req, ctx->ahash_fbk);
|
||||
ahash_request_set_callback(&rctx->ahash_fbk_req,
|
||||
req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
req->base.complete, req->base.data);
|
||||
|
||||
ahash_request_set_crypt(&rctx->ahash_fbk_req, req->src,
|
||||
req->result, req->nbytes);
|
||||
|
||||
return crypto_ahash_final(&rctx->ahash_fbk_req);
|
||||
}
|
||||
|
||||
static int starfive_hash_finup(struct ahash_request *req)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(tfm);
|
||||
|
||||
ahash_request_set_tfm(&rctx->ahash_fbk_req, ctx->ahash_fbk);
|
||||
ahash_request_set_callback(&rctx->ahash_fbk_req,
|
||||
req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
req->base.complete, req->base.data);
|
||||
|
||||
ahash_request_set_crypt(&rctx->ahash_fbk_req, req->src,
|
||||
req->result, req->nbytes);
|
||||
|
||||
return crypto_ahash_finup(&rctx->ahash_fbk_req);
|
||||
}
|
||||
|
||||
static int starfive_hash_digest_fb(struct ahash_request *req)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(tfm);
|
||||
|
||||
ahash_request_set_tfm(&rctx->ahash_fbk_req, ctx->ahash_fbk);
|
||||
ahash_request_set_callback(&rctx->ahash_fbk_req, req->base.flags,
|
||||
req->base.complete, req->base.data);
|
||||
|
||||
ahash_request_set_crypt(&rctx->ahash_fbk_req, req->src,
|
||||
req->result, req->nbytes);
|
||||
|
||||
return crypto_ahash_digest(&rctx->ahash_fbk_req);
|
||||
}
|
||||
|
||||
static int starfive_hash_digest(struct ahash_request *req)
|
||||
{
|
||||
struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(tfm);
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
|
||||
memset(rctx, 0, sizeof(struct starfive_cryp_request_ctx));
|
||||
|
||||
cryp->req.hreq = req;
|
||||
rctx->total = req->nbytes;
|
||||
rctx->in_sg = req->src;
|
||||
rctx->blksize = crypto_tfm_alg_blocksize(crypto_ahash_tfm(tfm));
|
||||
rctx->digsize = crypto_ahash_digestsize(tfm);
|
||||
rctx->in_sg_len = sg_nents_for_len(rctx->in_sg, rctx->total);
|
||||
ctx->rctx = rctx;
|
||||
|
||||
if (starfive_hash_check_aligned(rctx->in_sg, rctx->total, rctx->blksize))
|
||||
return starfive_hash_digest_fb(req);
|
||||
|
||||
return crypto_transfer_hash_request_to_engine(cryp->engine, req);
|
||||
}
|
||||
|
||||
static int starfive_hash_export(struct ahash_request *req, void *out)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(tfm);
|
||||
|
||||
ahash_request_set_tfm(&rctx->ahash_fbk_req, ctx->ahash_fbk);
|
||||
ahash_request_set_callback(&rctx->ahash_fbk_req,
|
||||
req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
req->base.complete, req->base.data);
|
||||
|
||||
return crypto_ahash_export(&rctx->ahash_fbk_req, out);
|
||||
}
|
||||
|
||||
static int starfive_hash_import(struct ahash_request *req, const void *in)
|
||||
{
|
||||
struct starfive_cryp_request_ctx *rctx = ahash_request_ctx(req);
|
||||
struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(tfm);
|
||||
|
||||
ahash_request_set_tfm(&rctx->ahash_fbk_req, ctx->ahash_fbk);
|
||||
ahash_request_set_callback(&rctx->ahash_fbk_req,
|
||||
req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP,
|
||||
req->base.complete, req->base.data);
|
||||
|
||||
return crypto_ahash_import(&rctx->ahash_fbk_req, in);
|
||||
}
|
||||
|
||||
static int starfive_hash_init_tfm(struct crypto_ahash *hash,
|
||||
const char *alg_name,
|
||||
unsigned int mode)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(hash);
|
||||
|
||||
ctx->cryp = starfive_cryp_find_dev(ctx);
|
||||
|
||||
if (!ctx->cryp)
|
||||
return -ENODEV;
|
||||
|
||||
ctx->ahash_fbk = crypto_alloc_ahash(alg_name, 0,
|
||||
CRYPTO_ALG_NEED_FALLBACK);
|
||||
|
||||
if (IS_ERR(ctx->ahash_fbk))
|
||||
return dev_err_probe(ctx->cryp->dev, PTR_ERR(ctx->ahash_fbk),
|
||||
"starfive_hash: Could not load fallback driver.\n");
|
||||
|
||||
crypto_ahash_set_statesize(hash, crypto_ahash_statesize(ctx->ahash_fbk));
|
||||
crypto_ahash_set_reqsize(hash, sizeof(struct starfive_cryp_request_ctx) +
|
||||
crypto_ahash_reqsize(ctx->ahash_fbk));
|
||||
|
||||
ctx->keylen = 0;
|
||||
ctx->hash_mode = mode;
|
||||
|
||||
ctx->enginectx.op.do_one_request = starfive_hash_one_request;
|
||||
ctx->enginectx.op.prepare_request = NULL;
|
||||
ctx->enginectx.op.unprepare_request = NULL;
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static void starfive_hash_exit_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(hash);
|
||||
|
||||
crypto_free_ahash(ctx->ahash_fbk);
|
||||
|
||||
ctx->ahash_fbk = NULL;
|
||||
ctx->enginectx.op.do_one_request = NULL;
|
||||
ctx->enginectx.op.prepare_request = NULL;
|
||||
ctx->enginectx.op.unprepare_request = NULL;
|
||||
}
|
||||
|
||||
static int starfive_hash_long_setkey(struct starfive_cryp_ctx *ctx,
|
||||
const u8 *key, unsigned int keylen,
|
||||
const char *alg_name)
|
||||
{
|
||||
struct crypto_wait wait;
|
||||
struct ahash_request *req;
|
||||
struct scatterlist sg;
|
||||
struct crypto_ahash *ahash_tfm;
|
||||
u8 *buf;
|
||||
int ret;
|
||||
|
||||
ahash_tfm = crypto_alloc_ahash(alg_name, 0, 0);
|
||||
if (IS_ERR(ahash_tfm))
|
||||
return PTR_ERR(ahash_tfm);
|
||||
|
||||
req = ahash_request_alloc(ahash_tfm, GFP_KERNEL);
|
||||
if (!req) {
|
||||
ret = -ENOMEM;
|
||||
goto err_free_ahash;
|
||||
}
|
||||
|
||||
crypto_init_wait(&wait);
|
||||
ahash_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG,
|
||||
crypto_req_done, &wait);
|
||||
crypto_ahash_clear_flags(ahash_tfm, ~0);
|
||||
|
||||
buf = kzalloc(keylen + STARFIVE_HASH_BUFLEN, GFP_KERNEL);
|
||||
if (!buf) {
|
||||
ret = -ENOMEM;
|
||||
goto err_free_req;
|
||||
}
|
||||
|
||||
memcpy(buf, key, keylen);
|
||||
sg_init_one(&sg, buf, keylen);
|
||||
ahash_request_set_crypt(req, &sg, ctx->key, keylen);
|
||||
|
||||
ret = crypto_wait_req(crypto_ahash_digest(req), &wait);
|
||||
|
||||
kfree(buf);
|
||||
err_free_req:
|
||||
ahash_request_free(req);
|
||||
err_free_ahash:
|
||||
crypto_free_ahash(ahash_tfm);
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int starfive_hash_setkey(struct crypto_ahash *hash,
|
||||
const u8 *key, unsigned int keylen)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(hash);
|
||||
unsigned int digestsize = crypto_ahash_digestsize(hash);
|
||||
unsigned int blocksize = crypto_ahash_blocksize(hash);
|
||||
const char *alg_name;
|
||||
|
||||
crypto_ahash_setkey(ctx->ahash_fbk, key, keylen);
|
||||
|
||||
if (keylen <= blocksize) {
|
||||
memcpy(ctx->key, key, keylen);
|
||||
ctx->keylen = keylen;
|
||||
return 0;
|
||||
}
|
||||
|
||||
ctx->keylen = digestsize;
|
||||
|
||||
switch (digestsize) {
|
||||
case SHA224_DIGEST_SIZE:
|
||||
alg_name = "sha224-starfive";
|
||||
break;
|
||||
case SHA256_DIGEST_SIZE:
|
||||
if (ctx->hash_mode == STARFIVE_HASH_SM3)
|
||||
alg_name = "sm3-starfive";
|
||||
else
|
||||
alg_name = "sha256-starfive";
|
||||
break;
|
||||
case SHA384_DIGEST_SIZE:
|
||||
alg_name = "sha384-starfive";
|
||||
break;
|
||||
case SHA512_DIGEST_SIZE:
|
||||
alg_name = "sha512-starfive";
|
||||
break;
|
||||
default:
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
return starfive_hash_long_setkey(ctx, key, keylen, alg_name);
|
||||
}
|
||||
|
||||
static int starfive_sha224_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
return starfive_hash_init_tfm(hash, "sha224-generic",
|
||||
STARFIVE_HASH_SHA224);
|
||||
}
|
||||
|
||||
static int starfive_sha256_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
return starfive_hash_init_tfm(hash, "sha256-generic",
|
||||
STARFIVE_HASH_SHA256);
|
||||
}
|
||||
|
||||
static int starfive_sha384_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
return starfive_hash_init_tfm(hash, "sha384-generic",
|
||||
STARFIVE_HASH_SHA384);
|
||||
}
|
||||
|
||||
static int starfive_sha512_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
return starfive_hash_init_tfm(hash, "sha512-generic",
|
||||
STARFIVE_HASH_SHA512);
|
||||
}
|
||||
|
||||
static int starfive_sm3_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
return starfive_hash_init_tfm(hash, "sm3-generic",
|
||||
STARFIVE_HASH_SM3);
|
||||
}
|
||||
|
||||
static int starfive_hmac_sha224_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(hash);
|
||||
|
||||
ctx->is_hmac = true;
|
||||
|
||||
return starfive_hash_init_tfm(hash, "hmac(sha224-generic)",
|
||||
STARFIVE_HASH_SHA224);
|
||||
}
|
||||
|
||||
static int starfive_hmac_sha256_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(hash);
|
||||
|
||||
ctx->is_hmac = true;
|
||||
|
||||
return starfive_hash_init_tfm(hash, "hmac(sha256-generic)",
|
||||
STARFIVE_HASH_SHA256);
|
||||
}
|
||||
|
||||
static int starfive_hmac_sha384_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(hash);
|
||||
|
||||
ctx->is_hmac = true;
|
||||
|
||||
return starfive_hash_init_tfm(hash, "hmac(sha384-generic)",
|
||||
STARFIVE_HASH_SHA384);
|
||||
}
|
||||
|
||||
static int starfive_hmac_sha512_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(hash);
|
||||
|
||||
ctx->is_hmac = true;
|
||||
|
||||
return starfive_hash_init_tfm(hash, "hmac(sha512-generic)",
|
||||
STARFIVE_HASH_SHA512);
|
||||
}
|
||||
|
||||
static int starfive_hmac_sm3_init_tfm(struct crypto_ahash *hash)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = crypto_ahash_ctx(hash);
|
||||
|
||||
ctx->is_hmac = true;
|
||||
|
||||
return starfive_hash_init_tfm(hash, "hmac(sm3-generic)",
|
||||
STARFIVE_HASH_SM3);
|
||||
}
|
||||
|
||||
static struct ahash_alg algs_sha2_sm3[] = {
|
||||
{
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_sha224_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.halg = {
|
||||
.digestsize = SHA224_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sha256_state),
|
||||
.base = {
|
||||
.cra_name = "sha224",
|
||||
.cra_driver_name = "sha224-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SHA224_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_hmac_sha224_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.setkey = starfive_hash_setkey,
|
||||
.halg = {
|
||||
.digestsize = SHA224_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sha256_state),
|
||||
.base = {
|
||||
.cra_name = "hmac(sha224)",
|
||||
.cra_driver_name = "sha224-hmac-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SHA224_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_sha256_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.halg = {
|
||||
.digestsize = SHA256_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sha256_state),
|
||||
.base = {
|
||||
.cra_name = "sha256",
|
||||
.cra_driver_name = "sha256-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SHA256_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_hmac_sha256_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.setkey = starfive_hash_setkey,
|
||||
.halg = {
|
||||
.digestsize = SHA256_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sha256_state),
|
||||
.base = {
|
||||
.cra_name = "hmac(sha256)",
|
||||
.cra_driver_name = "sha256-hmac-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SHA256_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_sha384_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.halg = {
|
||||
.digestsize = SHA384_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sha512_state),
|
||||
.base = {
|
||||
.cra_name = "sha384",
|
||||
.cra_driver_name = "sha384-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SHA384_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_hmac_sha384_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.setkey = starfive_hash_setkey,
|
||||
.halg = {
|
||||
.digestsize = SHA384_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sha512_state),
|
||||
.base = {
|
||||
.cra_name = "hmac(sha384)",
|
||||
.cra_driver_name = "sha384-hmac-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SHA384_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_sha512_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.halg = {
|
||||
.digestsize = SHA512_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sha512_state),
|
||||
.base = {
|
||||
.cra_name = "sha512",
|
||||
.cra_driver_name = "sha512-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SHA512_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_hmac_sha512_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.setkey = starfive_hash_setkey,
|
||||
.halg = {
|
||||
.digestsize = SHA512_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sha512_state),
|
||||
.base = {
|
||||
.cra_name = "hmac(sha512)",
|
||||
.cra_driver_name = "sha512-hmac-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SHA512_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_sm3_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.halg = {
|
||||
.digestsize = SM3_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sm3_state),
|
||||
.base = {
|
||||
.cra_name = "sm3",
|
||||
.cra_driver_name = "sm3-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SM3_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
}, {
|
||||
.init = starfive_hash_init,
|
||||
.update = starfive_hash_update,
|
||||
.final = starfive_hash_final,
|
||||
.finup = starfive_hash_finup,
|
||||
.digest = starfive_hash_digest,
|
||||
.export = starfive_hash_export,
|
||||
.import = starfive_hash_import,
|
||||
.init_tfm = starfive_hmac_sm3_init_tfm,
|
||||
.exit_tfm = starfive_hash_exit_tfm,
|
||||
.setkey = starfive_hash_setkey,
|
||||
.halg = {
|
||||
.digestsize = SM3_DIGEST_SIZE,
|
||||
.statesize = sizeof(struct sm3_state),
|
||||
.base = {
|
||||
.cra_name = "hmac(sm3)",
|
||||
.cra_driver_name = "sm3-hmac-starfive",
|
||||
.cra_priority = 200,
|
||||
.cra_flags = CRYPTO_ALG_ASYNC |
|
||||
CRYPTO_ALG_TYPE_AHASH |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_blocksize = SM3_BLOCK_SIZE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
.cra_alignmask = 3,
|
||||
.cra_module = THIS_MODULE,
|
||||
}
|
||||
}
|
||||
},
|
||||
};
|
||||
|
||||
int starfive_hash_register_algs(void)
|
||||
{
|
||||
return crypto_register_ahashes(algs_sha2_sm3, ARRAY_SIZE(algs_sha2_sm3));
|
||||
}
|
||||
|
||||
void starfive_hash_unregister_algs(void)
|
||||
{
|
||||
crypto_unregister_ahashes(algs_sha2_sm3, ARRAY_SIZE(algs_sha2_sm3));
|
||||
}
|
617
drivers/crypto/starfive/jh7110-rsa.c
Normal file
617
drivers/crypto/starfive/jh7110-rsa.c
Normal file
@ -0,0 +1,617 @@
|
||||
// SPDX-License-Identifier: GPL-2.0
|
||||
/*
|
||||
* StarFive Public Key Algo acceleration driver
|
||||
*
|
||||
* Copyright (c) 2022 StarFive Technology
|
||||
*/
|
||||
|
||||
#include <linux/crypto.h>
|
||||
#include <linux/delay.h>
|
||||
#include <linux/device.h>
|
||||
#include <linux/dma-direct.h>
|
||||
#include <linux/interrupt.h>
|
||||
#include <linux/iopoll.h>
|
||||
#include <linux/io.h>
|
||||
#include <linux/mod_devicetable.h>
|
||||
#include <crypto/akcipher.h>
|
||||
#include <crypto/algapi.h>
|
||||
#include <crypto/internal/akcipher.h>
|
||||
#include <crypto/internal/rsa.h>
|
||||
#include <crypto/scatterwalk.h>
|
||||
|
||||
#include "jh7110-cryp.h"
|
||||
|
||||
#define STARFIVE_PKA_REGS_OFFSET 0x400
|
||||
#define STARFIVE_PKA_CACR_OFFSET (STARFIVE_PKA_REGS_OFFSET + 0x0)
|
||||
#define STARFIVE_PKA_CASR_OFFSET (STARFIVE_PKA_REGS_OFFSET + 0x4)
|
||||
#define STARFIVE_PKA_CAAR_OFFSET (STARFIVE_PKA_REGS_OFFSET + 0x8)
|
||||
#define STARFIVE_PKA_CAER_OFFSET (STARFIVE_PKA_REGS_OFFSET + 0x108)
|
||||
#define STARFIVE_PKA_CANR_OFFSET (STARFIVE_PKA_REGS_OFFSET + 0x208)
|
||||
|
||||
// R^2 mod N and N0'
|
||||
#define CRYPTO_CMD_PRE 0x0
|
||||
// A * R mod N ==> A
|
||||
#define CRYPTO_CMD_ARN 0x5
|
||||
// A * E * R mod N ==> A
|
||||
#define CRYPTO_CMD_AERN 0x6
|
||||
// A * A * R mod N ==> A
|
||||
#define CRYPTO_CMD_AARN 0x7
|
||||
|
||||
#define STARFIVE_RSA_MAX_KEYSZ 256
|
||||
#define STARFIVE_RSA_RESET 0x2
|
||||
|
||||
static inline int starfive_pka_wait_done(struct starfive_cryp_ctx *ctx)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
|
||||
return wait_for_completion_timeout(&cryp->pka_done,
|
||||
usecs_to_jiffies(100000));
|
||||
}
|
||||
|
||||
static inline void starfive_pka_irq_mask_clear(struct starfive_cryp_ctx *ctx)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
u32 stat;
|
||||
|
||||
stat = readl(cryp->base + STARFIVE_IE_MASK_OFFSET);
|
||||
stat &= ~STARFIVE_IE_MASK_PKA_DONE;
|
||||
writel(stat, cryp->base + STARFIVE_IE_MASK_OFFSET);
|
||||
|
||||
reinit_completion(&cryp->pka_done);
|
||||
}
|
||||
|
||||
static void starfive_rsa_free_key(struct starfive_rsa_key *key)
|
||||
{
|
||||
if (key->d)
|
||||
kfree_sensitive(key->d);
|
||||
if (key->e)
|
||||
kfree_sensitive(key->e);
|
||||
if (key->n)
|
||||
kfree_sensitive(key->n);
|
||||
memset(key, 0, sizeof(*key));
|
||||
}
|
||||
|
||||
static unsigned int starfive_rsa_get_nbit(u8 *pa, u32 snum, int key_sz)
|
||||
{
|
||||
u32 i;
|
||||
u8 value;
|
||||
|
||||
i = snum >> 3;
|
||||
|
||||
value = pa[key_sz - i - 1];
|
||||
value >>= snum & 0x7;
|
||||
value &= 0x1;
|
||||
|
||||
return value;
|
||||
}
|
||||
|
||||
static int starfive_rsa_montgomery_form(struct starfive_cryp_ctx *ctx,
|
||||
u32 *out, u32 *in, u8 mont,
|
||||
u32 *mod, int bit_len)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
struct starfive_cryp_request_ctx *rctx = ctx->rctx;
|
||||
int count = rctx->total / sizeof(u32) - 1;
|
||||
int loop;
|
||||
u32 temp;
|
||||
u8 opsize;
|
||||
|
||||
opsize = (bit_len - 1) >> 5;
|
||||
rctx->csr.pka.v = 0;
|
||||
|
||||
writel(rctx->csr.pka.v, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
|
||||
for (loop = 0; loop <= opsize; loop++)
|
||||
writel(mod[opsize - loop], cryp->base + STARFIVE_PKA_CANR_OFFSET + loop * 4);
|
||||
|
||||
if (mont) {
|
||||
rctx->csr.pka.v = 0;
|
||||
rctx->csr.pka.cln_done = 1;
|
||||
rctx->csr.pka.opsize = opsize;
|
||||
rctx->csr.pka.exposize = opsize;
|
||||
rctx->csr.pka.cmd = CRYPTO_CMD_PRE;
|
||||
rctx->csr.pka.start = 1;
|
||||
rctx->csr.pka.not_r2 = 1;
|
||||
rctx->csr.pka.ie = 1;
|
||||
|
||||
starfive_pka_irq_mask_clear(ctx);
|
||||
writel(rctx->csr.pka.v, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
|
||||
if (!starfive_pka_wait_done(ctx))
|
||||
return -ETIMEDOUT;
|
||||
|
||||
for (loop = 0; loop <= opsize; loop++)
|
||||
writel(in[opsize - loop], cryp->base + STARFIVE_PKA_CAAR_OFFSET + loop * 4);
|
||||
|
||||
writel(0x1000000, cryp->base + STARFIVE_PKA_CAER_OFFSET);
|
||||
|
||||
for (loop = 1; loop <= opsize; loop++)
|
||||
writel(0, cryp->base + STARFIVE_PKA_CAER_OFFSET + loop * 4);
|
||||
|
||||
rctx->csr.pka.v = 0;
|
||||
rctx->csr.pka.cln_done = 1;
|
||||
rctx->csr.pka.opsize = opsize;
|
||||
rctx->csr.pka.exposize = opsize;
|
||||
rctx->csr.pka.cmd = CRYPTO_CMD_AERN;
|
||||
rctx->csr.pka.start = 1;
|
||||
rctx->csr.pka.ie = 1;
|
||||
|
||||
starfive_pka_irq_mask_clear(ctx);
|
||||
writel(rctx->csr.pka.v, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
|
||||
if (!starfive_pka_wait_done(ctx))
|
||||
return -ETIMEDOUT;
|
||||
} else {
|
||||
rctx->csr.pka.v = 0;
|
||||
rctx->csr.pka.cln_done = 1;
|
||||
rctx->csr.pka.opsize = opsize;
|
||||
rctx->csr.pka.exposize = opsize;
|
||||
rctx->csr.pka.cmd = CRYPTO_CMD_PRE;
|
||||
rctx->csr.pka.start = 1;
|
||||
rctx->csr.pka.pre_expf = 1;
|
||||
rctx->csr.pka.ie = 1;
|
||||
|
||||
starfive_pka_irq_mask_clear(ctx);
|
||||
writel(rctx->csr.pka.v, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
|
||||
if (!starfive_pka_wait_done(ctx))
|
||||
return -ETIMEDOUT;
|
||||
|
||||
for (loop = 0; loop <= count; loop++)
|
||||
writel(in[count - loop], cryp->base + STARFIVE_PKA_CAER_OFFSET + loop * 4);
|
||||
|
||||
/*pad with 0 up to opsize*/
|
||||
for (loop = count + 1; loop <= opsize; loop++)
|
||||
writel(0, cryp->base + STARFIVE_PKA_CAER_OFFSET + loop * 4);
|
||||
|
||||
rctx->csr.pka.v = 0;
|
||||
rctx->csr.pka.cln_done = 1;
|
||||
rctx->csr.pka.opsize = opsize;
|
||||
rctx->csr.pka.exposize = opsize;
|
||||
rctx->csr.pka.cmd = CRYPTO_CMD_ARN;
|
||||
rctx->csr.pka.start = 1;
|
||||
rctx->csr.pka.ie = 1;
|
||||
|
||||
starfive_pka_irq_mask_clear(ctx);
|
||||
writel(rctx->csr.pka.v, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
|
||||
if (!starfive_pka_wait_done(ctx))
|
||||
return -ETIMEDOUT;
|
||||
}
|
||||
|
||||
for (loop = 0; loop <= opsize; loop++) {
|
||||
temp = readl(cryp->base + STARFIVE_PKA_CAAR_OFFSET + 0x4 * loop);
|
||||
out[opsize - loop] = temp;
|
||||
}
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int starfive_rsa_cpu_start(struct starfive_cryp_ctx *ctx, u32 *result,
|
||||
u8 *de, u32 *n, int key_sz)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
struct starfive_cryp_request_ctx *rctx = ctx->rctx;
|
||||
struct starfive_rsa_key *key = &ctx->rsa_key;
|
||||
u32 temp;
|
||||
int ret = 0;
|
||||
int opsize, mlen, loop;
|
||||
unsigned int *mta;
|
||||
|
||||
opsize = (key_sz - 1) >> 2;
|
||||
|
||||
mta = kmalloc(key_sz, GFP_KERNEL);
|
||||
if (!mta)
|
||||
return -ENOMEM;
|
||||
|
||||
ret = starfive_rsa_montgomery_form(ctx, mta, (u32 *)rctx->rsa_data,
|
||||
0, n, key_sz << 3);
|
||||
if (ret) {
|
||||
dev_err_probe(cryp->dev, ret, "Conversion to Montgomery failed");
|
||||
goto rsa_err;
|
||||
}
|
||||
|
||||
for (loop = 0; loop <= opsize; loop++)
|
||||
writel(mta[opsize - loop],
|
||||
cryp->base + STARFIVE_PKA_CAER_OFFSET + loop * 4);
|
||||
|
||||
for (loop = key->bitlen - 1; loop > 0; loop--) {
|
||||
mlen = starfive_rsa_get_nbit(de, loop - 1, key_sz);
|
||||
|
||||
rctx->csr.pka.v = 0;
|
||||
rctx->csr.pka.cln_done = 1;
|
||||
rctx->csr.pka.opsize = opsize;
|
||||
rctx->csr.pka.exposize = opsize;
|
||||
rctx->csr.pka.cmd = CRYPTO_CMD_AARN;
|
||||
rctx->csr.pka.start = 1;
|
||||
rctx->csr.pka.ie = 1;
|
||||
|
||||
starfive_pka_irq_mask_clear(ctx);
|
||||
writel(rctx->csr.pka.v, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
|
||||
ret = -ETIMEDOUT;
|
||||
if (!starfive_pka_wait_done(ctx))
|
||||
goto rsa_err;
|
||||
|
||||
if (mlen) {
|
||||
rctx->csr.pka.v = 0;
|
||||
rctx->csr.pka.cln_done = 1;
|
||||
rctx->csr.pka.opsize = opsize;
|
||||
rctx->csr.pka.exposize = opsize;
|
||||
rctx->csr.pka.cmd = CRYPTO_CMD_AERN;
|
||||
rctx->csr.pka.start = 1;
|
||||
rctx->csr.pka.ie = 1;
|
||||
|
||||
starfive_pka_irq_mask_clear(ctx);
|
||||
writel(rctx->csr.pka.v, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
|
||||
if (!starfive_pka_wait_done(ctx))
|
||||
goto rsa_err;
|
||||
}
|
||||
}
|
||||
|
||||
for (loop = 0; loop <= opsize; loop++) {
|
||||
temp = readl(cryp->base + STARFIVE_PKA_CAAR_OFFSET + 0x4 * loop);
|
||||
result[opsize - loop] = temp;
|
||||
}
|
||||
|
||||
ret = starfive_rsa_montgomery_form(ctx, result, result, 1, n, key_sz << 3);
|
||||
if (ret)
|
||||
dev_err_probe(cryp->dev, ret, "Conversion from Montgomery failed");
|
||||
rsa_err:
|
||||
kfree(mta);
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int starfive_rsa_start(struct starfive_cryp_ctx *ctx, u8 *result,
|
||||
u8 *de, u8 *n, int key_sz)
|
||||
{
|
||||
return starfive_rsa_cpu_start(ctx, (u32 *)result, de, (u32 *)n, key_sz);
|
||||
}
|
||||
|
||||
static int starfive_rsa_enc_core(struct starfive_cryp_ctx *ctx, int enc)
|
||||
{
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
struct starfive_cryp_request_ctx *rctx = ctx->rctx;
|
||||
struct starfive_rsa_key *key = &ctx->rsa_key;
|
||||
int ret = 0;
|
||||
|
||||
writel(STARFIVE_RSA_RESET, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
|
||||
rctx->total = sg_copy_to_buffer(rctx->in_sg, rctx->nents,
|
||||
rctx->rsa_data, rctx->total);
|
||||
|
||||
if (enc) {
|
||||
key->bitlen = key->e_bitlen;
|
||||
ret = starfive_rsa_start(ctx, rctx->rsa_data, key->e,
|
||||
key->n, key->key_sz);
|
||||
} else {
|
||||
key->bitlen = key->d_bitlen;
|
||||
ret = starfive_rsa_start(ctx, rctx->rsa_data, key->d,
|
||||
key->n, key->key_sz);
|
||||
}
|
||||
|
||||
if (ret)
|
||||
goto err_rsa_crypt;
|
||||
|
||||
sg_copy_buffer(rctx->out_sg, sg_nents(rctx->out_sg),
|
||||
rctx->rsa_data, key->key_sz, 0, 0);
|
||||
|
||||
err_rsa_crypt:
|
||||
writel(STARFIVE_RSA_RESET, cryp->base + STARFIVE_PKA_CACR_OFFSET);
|
||||
kfree(rctx->rsa_data);
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int starfive_rsa_enc(struct akcipher_request *req)
|
||||
{
|
||||
struct crypto_akcipher *tfm = crypto_akcipher_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = akcipher_tfm_ctx(tfm);
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
struct starfive_rsa_key *key = &ctx->rsa_key;
|
||||
struct starfive_cryp_request_ctx *rctx = akcipher_request_ctx(req);
|
||||
int ret;
|
||||
|
||||
if (!key->key_sz) {
|
||||
akcipher_request_set_tfm(req, ctx->akcipher_fbk);
|
||||
ret = crypto_akcipher_encrypt(req);
|
||||
akcipher_request_set_tfm(req, tfm);
|
||||
return ret;
|
||||
}
|
||||
|
||||
if (unlikely(!key->n || !key->e))
|
||||
return -EINVAL;
|
||||
|
||||
if (req->dst_len < key->key_sz)
|
||||
return dev_err_probe(cryp->dev, -EOVERFLOW,
|
||||
"Output buffer length less than parameter n\n");
|
||||
|
||||
rctx->in_sg = req->src;
|
||||
rctx->out_sg = req->dst;
|
||||
rctx->total = req->src_len;
|
||||
rctx->nents = sg_nents(rctx->in_sg);
|
||||
ctx->rctx = rctx;
|
||||
|
||||
return starfive_rsa_enc_core(ctx, 1);
|
||||
}
|
||||
|
||||
static int starfive_rsa_dec(struct akcipher_request *req)
|
||||
{
|
||||
struct crypto_akcipher *tfm = crypto_akcipher_reqtfm(req);
|
||||
struct starfive_cryp_ctx *ctx = akcipher_tfm_ctx(tfm);
|
||||
struct starfive_cryp_dev *cryp = ctx->cryp;
|
||||
struct starfive_rsa_key *key = &ctx->rsa_key;
|
||||
struct starfive_cryp_request_ctx *rctx = akcipher_request_ctx(req);
|
||||
int ret;
|
||||
|
||||
if (!key->key_sz) {
|
||||
akcipher_request_set_tfm(req, ctx->akcipher_fbk);
|
||||
ret = crypto_akcipher_decrypt(req);
|
||||
akcipher_request_set_tfm(req, tfm);
|
||||
return ret;
|
||||
}
|
||||
|
||||
if (unlikely(!key->n || !key->d))
|
||||
return -EINVAL;
|
||||
|
||||
if (req->dst_len < key->key_sz)
|
||||
return dev_err_probe(cryp->dev, -EOVERFLOW,
|
||||
"Output buffer length less than parameter n\n");
|
||||
|
||||
rctx->in_sg = req->src;
|
||||
rctx->out_sg = req->dst;
|
||||
ctx->rctx = rctx;
|
||||
rctx->total = req->src_len;
|
||||
|
||||
return starfive_rsa_enc_core(ctx, 0);
|
||||
}
|
||||
|
||||
static int starfive_rsa_set_n(struct starfive_rsa_key *rsa_key,
|
||||
const char *value, size_t vlen)
|
||||
{
|
||||
const char *ptr = value;
|
||||
unsigned int bitslen;
|
||||
int ret;
|
||||
|
||||
while (!*ptr && vlen) {
|
||||
ptr++;
|
||||
vlen--;
|
||||
}
|
||||
rsa_key->key_sz = vlen;
|
||||
bitslen = rsa_key->key_sz << 3;
|
||||
|
||||
/* check valid key size */
|
||||
if (bitslen & 0x1f)
|
||||
return -EINVAL;
|
||||
|
||||
ret = -ENOMEM;
|
||||
rsa_key->n = kmemdup(ptr, rsa_key->key_sz, GFP_KERNEL);
|
||||
if (!rsa_key->n)
|
||||
goto err;
|
||||
|
||||
return 0;
|
||||
err:
|
||||
rsa_key->key_sz = 0;
|
||||
rsa_key->n = NULL;
|
||||
starfive_rsa_free_key(rsa_key);
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int starfive_rsa_set_e(struct starfive_rsa_key *rsa_key,
|
||||
const char *value, size_t vlen)
|
||||
{
|
||||
const char *ptr = value;
|
||||
unsigned char pt;
|
||||
int loop;
|
||||
|
||||
while (!*ptr && vlen) {
|
||||
ptr++;
|
||||
vlen--;
|
||||
}
|
||||
pt = *ptr;
|
||||
|
||||
if (!rsa_key->key_sz || !vlen || vlen > rsa_key->key_sz) {
|
||||
rsa_key->e = NULL;
|
||||
return -EINVAL;
|
||||
}
|
||||
|
||||
rsa_key->e = kzalloc(rsa_key->key_sz, GFP_KERNEL);
|
||||
if (!rsa_key->e)
|
||||
return -ENOMEM;
|
||||
|
||||
for (loop = 8; loop > 0; loop--) {
|
||||
if (pt >> (loop - 1))
|
||||
break;
|
||||
}
|
||||
|
||||
rsa_key->e_bitlen = (vlen - 1) * 8 + loop;
|
||||
|
||||
memcpy(rsa_key->e + (rsa_key->key_sz - vlen), ptr, vlen);
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int starfive_rsa_set_d(struct starfive_rsa_key *rsa_key,
|
||||
const char *value, size_t vlen)
|
||||
{
|
||||
const char *ptr = value;
|
||||
unsigned char pt;
|
||||
int loop;
|
||||
int ret;
|
||||
|
||||
while (!*ptr && vlen) {
|
||||
ptr++;
|
||||
vlen--;
|
||||
}
|
||||
pt = *ptr;
|
||||
|
||||
ret = -EINVAL;
|
||||
if (!rsa_key->key_sz || !vlen || vlen > rsa_key->key_sz)
|
||||
goto err;
|
||||
|
||||
ret = -ENOMEM;
|
||||
rsa_key->d = kzalloc(rsa_key->key_sz, GFP_KERNEL);
|
||||
if (!rsa_key->d)
|
||||
goto err;
|
||||
|
||||
for (loop = 8; loop > 0; loop--) {
|
||||
if (pt >> (loop - 1))
|
||||
break;
|
||||
}
|
||||
|
||||
rsa_key->d_bitlen = (vlen - 1) * 8 + loop;
|
||||
|
||||
memcpy(rsa_key->d + (rsa_key->key_sz - vlen), ptr, vlen);
|
||||
|
||||
return 0;
|
||||
err:
|
||||
rsa_key->d = NULL;
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int starfive_rsa_setkey(struct crypto_akcipher *tfm, const void *key,
|
||||
unsigned int keylen, bool private)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = akcipher_tfm_ctx(tfm);
|
||||
struct rsa_key raw_key = {NULL};
|
||||
struct starfive_rsa_key *rsa_key = &ctx->rsa_key;
|
||||
int ret;
|
||||
|
||||
if (private)
|
||||
ret = rsa_parse_priv_key(&raw_key, key, keylen);
|
||||
else
|
||||
ret = rsa_parse_pub_key(&raw_key, key, keylen);
|
||||
if (ret < 0)
|
||||
goto err;
|
||||
|
||||
starfive_rsa_free_key(rsa_key);
|
||||
|
||||
/* Use fallback for mod > 256 + 1 byte prefix */
|
||||
if (raw_key.n_sz > STARFIVE_RSA_MAX_KEYSZ + 1)
|
||||
return 0;
|
||||
|
||||
ret = starfive_rsa_set_n(rsa_key, raw_key.n, raw_key.n_sz);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
ret = starfive_rsa_set_e(rsa_key, raw_key.e, raw_key.e_sz);
|
||||
if (ret)
|
||||
goto err;
|
||||
|
||||
if (private) {
|
||||
ret = starfive_rsa_set_d(rsa_key, raw_key.d, raw_key.d_sz);
|
||||
if (ret)
|
||||
goto err;
|
||||
}
|
||||
|
||||
if (!rsa_key->n || !rsa_key->e) {
|
||||
ret = -EINVAL;
|
||||
goto err;
|
||||
}
|
||||
|
||||
if (private && !rsa_key->d) {
|
||||
ret = -EINVAL;
|
||||
goto err;
|
||||
}
|
||||
|
||||
return 0;
|
||||
err:
|
||||
starfive_rsa_free_key(rsa_key);
|
||||
return ret;
|
||||
}
|
||||
|
||||
static int starfive_rsa_set_pub_key(struct crypto_akcipher *tfm, const void *key,
|
||||
unsigned int keylen)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = akcipher_tfm_ctx(tfm);
|
||||
int ret;
|
||||
|
||||
ret = crypto_akcipher_set_pub_key(ctx->akcipher_fbk, key, keylen);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
return starfive_rsa_setkey(tfm, key, keylen, false);
|
||||
}
|
||||
|
||||
static int starfive_rsa_set_priv_key(struct crypto_akcipher *tfm, const void *key,
|
||||
unsigned int keylen)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = akcipher_tfm_ctx(tfm);
|
||||
int ret;
|
||||
|
||||
ret = crypto_akcipher_set_priv_key(ctx->akcipher_fbk, key, keylen);
|
||||
if (ret)
|
||||
return ret;
|
||||
|
||||
return starfive_rsa_setkey(tfm, key, keylen, true);
|
||||
}
|
||||
|
||||
static unsigned int starfive_rsa_max_size(struct crypto_akcipher *tfm)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = akcipher_tfm_ctx(tfm);
|
||||
|
||||
if (ctx->rsa_key.key_sz)
|
||||
return ctx->rsa_key.key_sz;
|
||||
|
||||
return crypto_akcipher_maxsize(ctx->akcipher_fbk);
|
||||
}
|
||||
|
||||
static int starfive_rsa_init_tfm(struct crypto_akcipher *tfm)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = akcipher_tfm_ctx(tfm);
|
||||
|
||||
ctx->akcipher_fbk = crypto_alloc_akcipher("rsa-generic", 0, 0);
|
||||
if (IS_ERR(ctx->akcipher_fbk))
|
||||
return PTR_ERR(ctx->akcipher_fbk);
|
||||
|
||||
ctx->cryp = starfive_cryp_find_dev(ctx);
|
||||
if (!ctx->cryp) {
|
||||
crypto_free_akcipher(ctx->akcipher_fbk);
|
||||
return -ENODEV;
|
||||
}
|
||||
|
||||
akcipher_set_reqsize(tfm, sizeof(struct starfive_cryp_request_ctx) +
|
||||
sizeof(struct crypto_akcipher) + 32);
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
static void starfive_rsa_exit_tfm(struct crypto_akcipher *tfm)
|
||||
{
|
||||
struct starfive_cryp_ctx *ctx = akcipher_tfm_ctx(tfm);
|
||||
struct starfive_rsa_key *key = (struct starfive_rsa_key *)&ctx->rsa_key;
|
||||
|
||||
crypto_free_akcipher(ctx->akcipher_fbk);
|
||||
starfive_rsa_free_key(key);
|
||||
}
|
||||
|
||||
static struct akcipher_alg starfive_rsa = {
|
||||
.encrypt = starfive_rsa_enc,
|
||||
.decrypt = starfive_rsa_dec,
|
||||
.sign = starfive_rsa_dec,
|
||||
.verify = starfive_rsa_enc,
|
||||
.set_pub_key = starfive_rsa_set_pub_key,
|
||||
.set_priv_key = starfive_rsa_set_priv_key,
|
||||
.max_size = starfive_rsa_max_size,
|
||||
.init = starfive_rsa_init_tfm,
|
||||
.exit = starfive_rsa_exit_tfm,
|
||||
.base = {
|
||||
.cra_name = "rsa",
|
||||
.cra_driver_name = "starfive-rsa",
|
||||
.cra_flags = CRYPTO_ALG_TYPE_AKCIPHER |
|
||||
CRYPTO_ALG_NEED_FALLBACK,
|
||||
.cra_priority = 3000,
|
||||
.cra_module = THIS_MODULE,
|
||||
.cra_ctxsize = sizeof(struct starfive_cryp_ctx),
|
||||
},
|
||||
};
|
||||
|
||||
int starfive_rsa_register_algs(void)
|
||||
{
|
||||
return crypto_register_akcipher(&starfive_rsa);
|
||||
}
|
||||
|
||||
void starfive_rsa_unregister_algs(void)
|
||||
{
|
||||
crypto_unregister_akcipher(&starfive_rsa);
|
||||
}
|
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue
Block a user