diff options
Diffstat (limited to 'include/crypto/internal')
| -rw-r--r-- | include/crypto/internal/blake2s.h | 24 | ||||
| -rw-r--r-- | include/crypto/internal/chacha.h | 43 | ||||
| -rw-r--r-- | include/crypto/internal/des.h | 12 | ||||
| -rw-r--r-- | include/crypto/internal/poly1305.h | 58 | ||||
| -rw-r--r-- | include/crypto/internal/skcipher.h | 62 | 
5 files changed, 125 insertions, 74 deletions
| diff --git a/include/crypto/internal/blake2s.h b/include/crypto/internal/blake2s.h new file mode 100644 index 000000000000..74ff77032e52 --- /dev/null +++ b/include/crypto/internal/blake2s.h @@ -0,0 +1,24 @@ +/* SPDX-License-Identifier: GPL-2.0 OR MIT */ + +#ifndef BLAKE2S_INTERNAL_H +#define BLAKE2S_INTERNAL_H + +#include <crypto/blake2s.h> + +struct blake2s_tfm_ctx { +	u8 key[BLAKE2S_KEY_SIZE]; +	unsigned int keylen; +}; + +void blake2s_compress_generic(struct blake2s_state *state,const u8 *block, +			      size_t nblocks, const u32 inc); + +void blake2s_compress_arch(struct blake2s_state *state,const u8 *block, +			   size_t nblocks, const u32 inc); + +static inline void blake2s_set_lastblock(struct blake2s_state *state) +{ +	state->f[0] = -1; +} + +#endif /* BLAKE2S_INTERNAL_H */ diff --git a/include/crypto/internal/chacha.h b/include/crypto/internal/chacha.h new file mode 100644 index 000000000000..aa5d4a16aac5 --- /dev/null +++ b/include/crypto/internal/chacha.h @@ -0,0 +1,43 @@ +/* SPDX-License-Identifier: GPL-2.0 */ + +#ifndef _CRYPTO_INTERNAL_CHACHA_H +#define _CRYPTO_INTERNAL_CHACHA_H + +#include <crypto/chacha.h> +#include <crypto/internal/skcipher.h> +#include <linux/crypto.h> + +struct chacha_ctx { +	u32 key[8]; +	int nrounds; +}; + +static inline int chacha_setkey(struct crypto_skcipher *tfm, const u8 *key, +				unsigned int keysize, int nrounds) +{ +	struct chacha_ctx *ctx = crypto_skcipher_ctx(tfm); +	int i; + +	if (keysize != CHACHA_KEY_SIZE) +		return -EINVAL; + +	for (i = 0; i < ARRAY_SIZE(ctx->key); i++) +		ctx->key[i] = get_unaligned_le32(key + i * sizeof(u32)); + +	ctx->nrounds = nrounds; +	return 0; +} + +static inline int chacha20_setkey(struct crypto_skcipher *tfm, const u8 *key, +				  unsigned int keysize) +{ +	return chacha_setkey(tfm, key, keysize, 20); +} + +static int inline chacha12_setkey(struct crypto_skcipher *tfm, const u8 *key, +				  unsigned int keysize) +{ +	return chacha_setkey(tfm, key, keysize, 12); +} + +#endif /* _CRYPTO_CHACHA_H */ diff --git a/include/crypto/internal/des.h b/include/crypto/internal/des.h index 81ea1a425e9c..f62a2bb1866b 100644 --- a/include/crypto/internal/des.h +++ b/include/crypto/internal/des.h @@ -117,18 +117,6 @@ static inline int verify_skcipher_des3_key(struct crypto_skcipher *tfm,  	return crypto_des3_ede_verify_key(crypto_skcipher_tfm(tfm), key);  } -static inline int verify_ablkcipher_des_key(struct crypto_ablkcipher *tfm, -					    const u8 *key) -{ -	return crypto_des_verify_key(crypto_ablkcipher_tfm(tfm), key); -} - -static inline int verify_ablkcipher_des3_key(struct crypto_ablkcipher *tfm, -					     const u8 *key) -{ -	return crypto_des3_ede_verify_key(crypto_ablkcipher_tfm(tfm), key); -} -  static inline int verify_aead_des_key(struct crypto_aead *tfm, const u8 *key,  				      int keylen)  { diff --git a/include/crypto/internal/poly1305.h b/include/crypto/internal/poly1305.h new file mode 100644 index 000000000000..479b0cab2a1a --- /dev/null +++ b/include/crypto/internal/poly1305.h @@ -0,0 +1,58 @@ +/* SPDX-License-Identifier: GPL-2.0 */ +/* + * Common values for the Poly1305 algorithm + */ + +#ifndef _CRYPTO_INTERNAL_POLY1305_H +#define _CRYPTO_INTERNAL_POLY1305_H + +#include <asm/unaligned.h> +#include <linux/types.h> +#include <crypto/poly1305.h> + +/* + * Poly1305 core functions.  These implement the ε-almost-∆-universal hash + * function underlying the Poly1305 MAC, i.e. they don't add an encrypted nonce + * ("s key") at the end.  They also only support block-aligned inputs. + */ +void poly1305_core_setkey(struct poly1305_key *key, const u8 *raw_key); +static inline void poly1305_core_init(struct poly1305_state *state) +{ +	*state = (struct poly1305_state){}; +} + +void poly1305_core_blocks(struct poly1305_state *state, +			  const struct poly1305_key *key, const void *src, +			  unsigned int nblocks, u32 hibit); +void poly1305_core_emit(const struct poly1305_state *state, void *dst); + +/* + * Poly1305 requires a unique key for each tag, which implies that we can't set + * it on the tfm that gets accessed by multiple users simultaneously. Instead we + * expect the key as the first 32 bytes in the update() call. + */ +static inline +unsigned int crypto_poly1305_setdesckey(struct poly1305_desc_ctx *dctx, +					const u8 *src, unsigned int srclen) +{ +	if (!dctx->sset) { +		if (!dctx->rset && srclen >= POLY1305_BLOCK_SIZE) { +			poly1305_core_setkey(dctx->r, src); +			src += POLY1305_BLOCK_SIZE; +			srclen -= POLY1305_BLOCK_SIZE; +			dctx->rset = 1; +		} +		if (srclen >= POLY1305_BLOCK_SIZE) { +			dctx->s[0] = get_unaligned_le32(src +  0); +			dctx->s[1] = get_unaligned_le32(src +  4); +			dctx->s[2] = get_unaligned_le32(src +  8); +			dctx->s[3] = get_unaligned_le32(src + 12); +			src += POLY1305_BLOCK_SIZE; +			srclen -= POLY1305_BLOCK_SIZE; +			dctx->sset = true; +		} +	} +	return srclen; +} + +#endif diff --git a/include/crypto/internal/skcipher.h b/include/crypto/internal/skcipher.h index 734b6f7081b8..921c409fe1b1 100644 --- a/include/crypto/internal/skcipher.h +++ b/include/crypto/internal/skcipher.h @@ -153,17 +153,6 @@ static inline void skcipher_walk_abort(struct skcipher_walk *walk)  	skcipher_walk_done(walk, -ECANCELED);  } -static inline void ablkcipher_request_complete(struct ablkcipher_request *req, -					       int err) -{ -	req->base.complete(&req->base, err); -} - -static inline u32 ablkcipher_request_flags(struct ablkcipher_request *req) -{ -	return req->base.flags; -} -  static inline void *crypto_skcipher_ctx(struct crypto_skcipher *tfm)  {  	return crypto_tfm_ctx(&tfm->base); @@ -182,73 +171,22 @@ static inline u32 skcipher_request_flags(struct skcipher_request *req)  static inline unsigned int crypto_skcipher_alg_min_keysize(  	struct skcipher_alg *alg)  { -	if ((alg->base.cra_flags & CRYPTO_ALG_TYPE_MASK) == -	    CRYPTO_ALG_TYPE_BLKCIPHER) -		return alg->base.cra_blkcipher.min_keysize; - -	if (alg->base.cra_ablkcipher.encrypt) -		return alg->base.cra_ablkcipher.min_keysize; -  	return alg->min_keysize;  }  static inline unsigned int crypto_skcipher_alg_max_keysize(  	struct skcipher_alg *alg)  { -	if ((alg->base.cra_flags & CRYPTO_ALG_TYPE_MASK) == -	    CRYPTO_ALG_TYPE_BLKCIPHER) -		return alg->base.cra_blkcipher.max_keysize; - -	if (alg->base.cra_ablkcipher.encrypt) -		return alg->base.cra_ablkcipher.max_keysize; -  	return alg->max_keysize;  } -static inline unsigned int crypto_skcipher_alg_chunksize( -	struct skcipher_alg *alg) -{ -	if ((alg->base.cra_flags & CRYPTO_ALG_TYPE_MASK) == -	    CRYPTO_ALG_TYPE_BLKCIPHER) -		return alg->base.cra_blocksize; - -	if (alg->base.cra_ablkcipher.encrypt) -		return alg->base.cra_blocksize; - -	return alg->chunksize; -} -  static inline unsigned int crypto_skcipher_alg_walksize(  	struct skcipher_alg *alg)  { -	if ((alg->base.cra_flags & CRYPTO_ALG_TYPE_MASK) == -	    CRYPTO_ALG_TYPE_BLKCIPHER) -		return alg->base.cra_blocksize; - -	if (alg->base.cra_ablkcipher.encrypt) -		return alg->base.cra_blocksize; -  	return alg->walksize;  }  /** - * crypto_skcipher_chunksize() - obtain chunk size - * @tfm: cipher handle - * - * The block size is set to one for ciphers such as CTR.  However, - * you still need to provide incremental updates in multiples of - * the underlying block size as the IV does not have sub-block - * granularity.  This is known in this API as the chunk size. - * - * Return: chunk size in bytes - */ -static inline unsigned int crypto_skcipher_chunksize( -	struct crypto_skcipher *tfm) -{ -	return crypto_skcipher_alg_chunksize(crypto_skcipher_alg(tfm)); -} - -/**   * crypto_skcipher_walksize() - obtain walk size   * @tfm: cipher handle   * | 

