mirror of
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
synced 2024-12-29 17:25:38 +00:00
65c4c93caa
Commit 6cb8815f41
("crypto: sig - Add interface for sign/verify")
began a transition of asymmetric sign/verify operations from
crypto_akcipher to a new crypto_sig frontend.
Internally, the crypto_sig frontend still uses akcipher_alg as backend,
however:
"The link between sig and akcipher is meant to be temporary. The
plan is to create a new low-level API for sig and then migrate
the signature code over to that from akcipher."
https://lore.kernel.org/r/ZrG6w9wsb-iiLZIF@gondor.apana.org.au/
"having a separate alg for sig is definitely where we want to
be since there is very little that the two types actually share."
https://lore.kernel.org/r/ZrHlpz4qnre0zWJO@gondor.apana.org.au/
Take the next step of that migration and augment the crypto_sig frontend
with a sig_alg backend to which all algorithms can be moved.
During the migration, there will briefly be signature algorithms that
are still based on crypto_akcipher, whilst others are already based on
crypto_sig. Allow for that by building a fork into crypto_sig_*() API
calls (i.e. crypto_sig_maxsize() and friends) such that one of the two
backends is selected based on the transform's cra_type.
Signed-off-by: Lukas Wunner <lukas@wunner.de>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
98 lines
2.3 KiB
C
98 lines
2.3 KiB
C
/* SPDX-License-Identifier: GPL-2.0-or-later */
|
|
/*
|
|
* Public Key Signature Algorithm
|
|
*
|
|
* Copyright (c) 2023 Herbert Xu <herbert@gondor.apana.org.au>
|
|
*/
|
|
#ifndef _CRYPTO_INTERNAL_SIG_H
|
|
#define _CRYPTO_INTERNAL_SIG_H
|
|
|
|
#include <crypto/algapi.h>
|
|
#include <crypto/sig.h>
|
|
|
|
struct sig_instance {
|
|
void (*free)(struct sig_instance *inst);
|
|
union {
|
|
struct {
|
|
char head[offsetof(struct sig_alg, base)];
|
|
struct crypto_instance base;
|
|
};
|
|
struct sig_alg alg;
|
|
};
|
|
};
|
|
|
|
struct crypto_sig_spawn {
|
|
struct crypto_spawn base;
|
|
};
|
|
|
|
static inline void *crypto_sig_ctx(struct crypto_sig *tfm)
|
|
{
|
|
return crypto_tfm_ctx(&tfm->base);
|
|
}
|
|
|
|
/**
|
|
* crypto_register_sig() -- Register public key signature algorithm
|
|
*
|
|
* Function registers an implementation of a public key signature algorithm
|
|
*
|
|
* @alg: algorithm definition
|
|
*
|
|
* Return: zero on success; error code in case of error
|
|
*/
|
|
int crypto_register_sig(struct sig_alg *alg);
|
|
|
|
/**
|
|
* crypto_unregister_sig() -- Unregister public key signature algorithm
|
|
*
|
|
* Function unregisters an implementation of a public key signature algorithm
|
|
*
|
|
* @alg: algorithm definition
|
|
*/
|
|
void crypto_unregister_sig(struct sig_alg *alg);
|
|
|
|
int sig_register_instance(struct crypto_template *tmpl,
|
|
struct sig_instance *inst);
|
|
|
|
static inline struct sig_instance *sig_instance(struct crypto_instance *inst)
|
|
{
|
|
return container_of(&inst->alg, struct sig_instance, alg.base);
|
|
}
|
|
|
|
static inline struct sig_instance *sig_alg_instance(struct crypto_sig *tfm)
|
|
{
|
|
return sig_instance(crypto_tfm_alg_instance(&tfm->base));
|
|
}
|
|
|
|
static inline struct crypto_instance *sig_crypto_instance(struct sig_instance
|
|
*inst)
|
|
{
|
|
return container_of(&inst->alg.base, struct crypto_instance, alg);
|
|
}
|
|
|
|
static inline void *sig_instance_ctx(struct sig_instance *inst)
|
|
{
|
|
return crypto_instance_ctx(sig_crypto_instance(inst));
|
|
}
|
|
|
|
int crypto_grab_sig(struct crypto_sig_spawn *spawn,
|
|
struct crypto_instance *inst,
|
|
const char *name, u32 type, u32 mask);
|
|
|
|
static inline struct crypto_sig *crypto_spawn_sig(struct crypto_sig_spawn
|
|
*spawn)
|
|
{
|
|
return crypto_spawn_tfm2(&spawn->base);
|
|
}
|
|
|
|
static inline void crypto_drop_sig(struct crypto_sig_spawn *spawn)
|
|
{
|
|
crypto_drop_spawn(&spawn->base);
|
|
}
|
|
|
|
static inline struct sig_alg *crypto_spawn_sig_alg(struct crypto_sig_spawn
|
|
*spawn)
|
|
{
|
|
return container_of(spawn->base.alg, struct sig_alg, base);
|
|
}
|
|
#endif
|