1 // SPDX-License-Identifier: (BSD-3-Clause OR GPL-2.0-only)
2 /* Copyright(c) 2014 - 2020 Intel Corporation */
3 #include <linux/module.h>
4 #include <linux/slab.h>
5 #include <linux/crypto.h>
6 #include <crypto/internal/aead.h>
7 #include <crypto/internal/cipher.h>
8 #include <crypto/internal/skcipher.h>
9 #include <crypto/aes.h>
10 #include <crypto/sha1.h>
11 #include <crypto/sha2.h>
12 #include <crypto/hash.h>
13 #include <crypto/hmac.h>
14 #include <crypto/algapi.h>
15 #include <crypto/authenc.h>
16 #include <crypto/scatterwalk.h>
17 #include <crypto/xts.h>
18 #include <linux/dma-mapping.h>
19 #include "adf_accel_devices.h"
20 #include "qat_algs_send.h"
21 #include "adf_common_drv.h"
22 #include "qat_crypto.h"
23 #include "icp_qat_hw.h"
24 #include "icp_qat_fw.h"
25 #include "icp_qat_fw_la.h"
28 #define QAT_AES_HW_CONFIG_ENC(alg, mode) \
29 ICP_QAT_HW_CIPHER_CONFIG_BUILD(mode, alg, \
30 ICP_QAT_HW_CIPHER_NO_CONVERT, \
31 ICP_QAT_HW_CIPHER_ENCRYPT)
33 #define QAT_AES_HW_CONFIG_DEC(alg, mode) \
34 ICP_QAT_HW_CIPHER_CONFIG_BUILD(mode, alg, \
35 ICP_QAT_HW_CIPHER_KEY_CONVERT, \
36 ICP_QAT_HW_CIPHER_DECRYPT)
38 #define QAT_AES_HW_CONFIG_DEC_NO_CONV(alg, mode) \
39 ICP_QAT_HW_CIPHER_CONFIG_BUILD(mode, alg, \
40 ICP_QAT_HW_CIPHER_NO_CONVERT, \
41 ICP_QAT_HW_CIPHER_DECRYPT)
43 #define HW_CAP_AES_V2(accel_dev) \
44 (GET_HW_DATA(accel_dev)->accel_capabilities_mask & \
45 ICP_ACCEL_CAPABILITIES_AES_V2)
47 static DEFINE_MUTEX(algs_lock);
48 static unsigned int active_devs;
50 /* Common content descriptor */
53 struct qat_enc { /* Encrypt content desc */
54 struct icp_qat_hw_cipher_algo_blk cipher;
55 struct icp_qat_hw_auth_algo_blk hash;
57 struct qat_dec { /* Decrypt content desc */
58 struct icp_qat_hw_auth_algo_blk hash;
59 struct icp_qat_hw_cipher_algo_blk cipher;
64 struct qat_alg_aead_ctx {
65 struct qat_alg_cd *enc_cd;
66 struct qat_alg_cd *dec_cd;
67 dma_addr_t enc_cd_paddr;
68 dma_addr_t dec_cd_paddr;
69 struct icp_qat_fw_la_bulk_req enc_fw_req;
70 struct icp_qat_fw_la_bulk_req dec_fw_req;
71 struct crypto_shash *hash_tfm;
72 enum icp_qat_hw_auth_algo qat_hash_alg;
73 struct qat_crypto_instance *inst;
75 struct sha1_state sha1;
76 struct sha256_state sha256;
77 struct sha512_state sha512;
79 char ipad[SHA512_BLOCK_SIZE]; /* sufficient for SHA-1/SHA-256 as well */
80 char opad[SHA512_BLOCK_SIZE];
83 struct qat_alg_skcipher_ctx {
84 struct icp_qat_hw_cipher_algo_blk *enc_cd;
85 struct icp_qat_hw_cipher_algo_blk *dec_cd;
86 dma_addr_t enc_cd_paddr;
87 dma_addr_t dec_cd_paddr;
88 struct icp_qat_fw_la_bulk_req enc_fw_req;
89 struct icp_qat_fw_la_bulk_req dec_fw_req;
90 struct qat_crypto_instance *inst;
91 struct crypto_skcipher *ftfm;
92 struct crypto_cipher *tweak;
97 static int qat_get_inter_state_size(enum icp_qat_hw_auth_algo qat_hash_alg)
99 switch (qat_hash_alg) {
100 case ICP_QAT_HW_AUTH_ALGO_SHA1:
101 return ICP_QAT_HW_SHA1_STATE1_SZ;
102 case ICP_QAT_HW_AUTH_ALGO_SHA256:
103 return ICP_QAT_HW_SHA256_STATE1_SZ;
104 case ICP_QAT_HW_AUTH_ALGO_SHA512:
105 return ICP_QAT_HW_SHA512_STATE1_SZ;
111 static int qat_alg_do_precomputes(struct icp_qat_hw_auth_algo_blk *hash,
112 struct qat_alg_aead_ctx *ctx,
114 unsigned int auth_keylen)
116 SHASH_DESC_ON_STACK(shash, ctx->hash_tfm);
117 int block_size = crypto_shash_blocksize(ctx->hash_tfm);
118 int digest_size = crypto_shash_digestsize(ctx->hash_tfm);
119 __be32 *hash_state_out;
120 __be64 *hash512_state_out;
123 memset(ctx->ipad, 0, block_size);
124 memset(ctx->opad, 0, block_size);
125 shash->tfm = ctx->hash_tfm;
127 if (auth_keylen > block_size) {
128 int ret = crypto_shash_digest(shash, auth_key,
129 auth_keylen, ctx->ipad);
133 memcpy(ctx->opad, ctx->ipad, digest_size);
135 memcpy(ctx->ipad, auth_key, auth_keylen);
136 memcpy(ctx->opad, auth_key, auth_keylen);
139 for (i = 0; i < block_size; i++) {
140 char *ipad_ptr = ctx->ipad + i;
141 char *opad_ptr = ctx->opad + i;
142 *ipad_ptr ^= HMAC_IPAD_VALUE;
143 *opad_ptr ^= HMAC_OPAD_VALUE;
146 if (crypto_shash_init(shash))
149 if (crypto_shash_update(shash, ctx->ipad, block_size))
152 hash_state_out = (__be32 *)hash->sha.state1;
153 hash512_state_out = (__be64 *)hash_state_out;
155 switch (ctx->qat_hash_alg) {
156 case ICP_QAT_HW_AUTH_ALGO_SHA1:
157 if (crypto_shash_export(shash, &ctx->sha1))
159 for (i = 0; i < digest_size >> 2; i++, hash_state_out++)
160 *hash_state_out = cpu_to_be32(ctx->sha1.state[i]);
162 case ICP_QAT_HW_AUTH_ALGO_SHA256:
163 if (crypto_shash_export(shash, &ctx->sha256))
165 for (i = 0; i < digest_size >> 2; i++, hash_state_out++)
166 *hash_state_out = cpu_to_be32(ctx->sha256.state[i]);
168 case ICP_QAT_HW_AUTH_ALGO_SHA512:
169 if (crypto_shash_export(shash, &ctx->sha512))
171 for (i = 0; i < digest_size >> 3; i++, hash512_state_out++)
172 *hash512_state_out = cpu_to_be64(ctx->sha512.state[i]);
178 if (crypto_shash_init(shash))
181 if (crypto_shash_update(shash, ctx->opad, block_size))
184 offset = round_up(qat_get_inter_state_size(ctx->qat_hash_alg), 8);
188 hash_state_out = (__be32 *)(hash->sha.state1 + offset);
189 hash512_state_out = (__be64 *)hash_state_out;
191 switch (ctx->qat_hash_alg) {
192 case ICP_QAT_HW_AUTH_ALGO_SHA1:
193 if (crypto_shash_export(shash, &ctx->sha1))
195 for (i = 0; i < digest_size >> 2; i++, hash_state_out++)
196 *hash_state_out = cpu_to_be32(ctx->sha1.state[i]);
198 case ICP_QAT_HW_AUTH_ALGO_SHA256:
199 if (crypto_shash_export(shash, &ctx->sha256))
201 for (i = 0; i < digest_size >> 2; i++, hash_state_out++)
202 *hash_state_out = cpu_to_be32(ctx->sha256.state[i]);
204 case ICP_QAT_HW_AUTH_ALGO_SHA512:
205 if (crypto_shash_export(shash, &ctx->sha512))
207 for (i = 0; i < digest_size >> 3; i++, hash512_state_out++)
208 *hash512_state_out = cpu_to_be64(ctx->sha512.state[i]);
213 memzero_explicit(ctx->ipad, block_size);
214 memzero_explicit(ctx->opad, block_size);
218 static void qat_alg_init_common_hdr(struct icp_qat_fw_comn_req_hdr *header)
221 ICP_QAT_FW_COMN_HDR_FLAGS_BUILD(ICP_QAT_FW_COMN_REQ_FLAG_SET);
222 header->service_type = ICP_QAT_FW_COMN_REQ_CPM_FW_LA;
223 header->comn_req_flags =
224 ICP_QAT_FW_COMN_FLAGS_BUILD(QAT_COMN_CD_FLD_TYPE_64BIT_ADR,
225 QAT_COMN_PTR_TYPE_SGL);
226 ICP_QAT_FW_LA_PARTIAL_SET(header->serv_specif_flags,
227 ICP_QAT_FW_LA_PARTIAL_NONE);
228 ICP_QAT_FW_LA_CIPH_IV_FLD_FLAG_SET(header->serv_specif_flags,
229 ICP_QAT_FW_CIPH_IV_16BYTE_DATA);
230 ICP_QAT_FW_LA_PROTO_SET(header->serv_specif_flags,
231 ICP_QAT_FW_LA_NO_PROTO);
232 ICP_QAT_FW_LA_UPDATE_STATE_SET(header->serv_specif_flags,
233 ICP_QAT_FW_LA_NO_UPDATE_STATE);
236 static int qat_alg_aead_init_enc_session(struct crypto_aead *aead_tfm,
238 struct crypto_authenc_keys *keys,
241 struct qat_alg_aead_ctx *ctx = crypto_aead_ctx(aead_tfm);
242 unsigned int digestsize = crypto_aead_authsize(aead_tfm);
243 struct qat_enc *enc_ctx = &ctx->enc_cd->qat_enc_cd;
244 struct icp_qat_hw_cipher_algo_blk *cipher = &enc_ctx->cipher;
245 struct icp_qat_hw_auth_algo_blk *hash =
246 (struct icp_qat_hw_auth_algo_blk *)((char *)enc_ctx +
247 sizeof(struct icp_qat_hw_auth_setup) + keys->enckeylen);
248 struct icp_qat_fw_la_bulk_req *req_tmpl = &ctx->enc_fw_req;
249 struct icp_qat_fw_comn_req_hdr_cd_pars *cd_pars = &req_tmpl->cd_pars;
250 struct icp_qat_fw_comn_req_hdr *header = &req_tmpl->comn_hdr;
251 void *ptr = &req_tmpl->cd_ctrl;
252 struct icp_qat_fw_cipher_cd_ctrl_hdr *cipher_cd_ctrl = ptr;
253 struct icp_qat_fw_auth_cd_ctrl_hdr *hash_cd_ctrl = ptr;
256 cipher->aes.cipher_config.val = QAT_AES_HW_CONFIG_ENC(alg, mode);
257 memcpy(cipher->aes.key, keys->enckey, keys->enckeylen);
258 hash->sha.inner_setup.auth_config.config =
259 ICP_QAT_HW_AUTH_CONFIG_BUILD(ICP_QAT_HW_AUTH_MODE1,
260 ctx->qat_hash_alg, digestsize);
261 hash->sha.inner_setup.auth_counter.counter =
262 cpu_to_be32(crypto_shash_blocksize(ctx->hash_tfm));
264 if (qat_alg_do_precomputes(hash, ctx, keys->authkey, keys->authkeylen))
268 qat_alg_init_common_hdr(header);
269 header->service_cmd_id = ICP_QAT_FW_LA_CMD_CIPHER_HASH;
270 ICP_QAT_FW_LA_DIGEST_IN_BUFFER_SET(header->serv_specif_flags,
271 ICP_QAT_FW_LA_DIGEST_IN_BUFFER);
272 ICP_QAT_FW_LA_RET_AUTH_SET(header->serv_specif_flags,
273 ICP_QAT_FW_LA_RET_AUTH_RES);
274 ICP_QAT_FW_LA_CMP_AUTH_SET(header->serv_specif_flags,
275 ICP_QAT_FW_LA_NO_CMP_AUTH_RES);
276 cd_pars->u.s.content_desc_addr = ctx->enc_cd_paddr;
277 cd_pars->u.s.content_desc_params_sz = sizeof(struct qat_alg_cd) >> 3;
279 /* Cipher CD config setup */
280 cipher_cd_ctrl->cipher_key_sz = keys->enckeylen >> 3;
281 cipher_cd_ctrl->cipher_state_sz = AES_BLOCK_SIZE >> 3;
282 cipher_cd_ctrl->cipher_cfg_offset = 0;
283 ICP_QAT_FW_COMN_CURR_ID_SET(cipher_cd_ctrl, ICP_QAT_FW_SLICE_CIPHER);
284 ICP_QAT_FW_COMN_NEXT_ID_SET(cipher_cd_ctrl, ICP_QAT_FW_SLICE_AUTH);
285 /* Auth CD config setup */
286 hash_cd_ctrl->hash_cfg_offset = ((char *)hash - (char *)cipher) >> 3;
287 hash_cd_ctrl->hash_flags = ICP_QAT_FW_AUTH_HDR_FLAG_NO_NESTED;
288 hash_cd_ctrl->inner_res_sz = digestsize;
289 hash_cd_ctrl->final_sz = digestsize;
291 switch (ctx->qat_hash_alg) {
292 case ICP_QAT_HW_AUTH_ALGO_SHA1:
293 hash_cd_ctrl->inner_state1_sz =
294 round_up(ICP_QAT_HW_SHA1_STATE1_SZ, 8);
295 hash_cd_ctrl->inner_state2_sz =
296 round_up(ICP_QAT_HW_SHA1_STATE2_SZ, 8);
298 case ICP_QAT_HW_AUTH_ALGO_SHA256:
299 hash_cd_ctrl->inner_state1_sz = ICP_QAT_HW_SHA256_STATE1_SZ;
300 hash_cd_ctrl->inner_state2_sz = ICP_QAT_HW_SHA256_STATE2_SZ;
302 case ICP_QAT_HW_AUTH_ALGO_SHA512:
303 hash_cd_ctrl->inner_state1_sz = ICP_QAT_HW_SHA512_STATE1_SZ;
304 hash_cd_ctrl->inner_state2_sz = ICP_QAT_HW_SHA512_STATE2_SZ;
309 hash_cd_ctrl->inner_state2_offset = hash_cd_ctrl->hash_cfg_offset +
310 ((sizeof(struct icp_qat_hw_auth_setup) +
311 round_up(hash_cd_ctrl->inner_state1_sz, 8)) >> 3);
312 ICP_QAT_FW_COMN_CURR_ID_SET(hash_cd_ctrl, ICP_QAT_FW_SLICE_AUTH);
313 ICP_QAT_FW_COMN_NEXT_ID_SET(hash_cd_ctrl, ICP_QAT_FW_SLICE_DRAM_WR);
317 static int qat_alg_aead_init_dec_session(struct crypto_aead *aead_tfm,
319 struct crypto_authenc_keys *keys,
322 struct qat_alg_aead_ctx *ctx = crypto_aead_ctx(aead_tfm);
323 unsigned int digestsize = crypto_aead_authsize(aead_tfm);
324 struct qat_dec *dec_ctx = &ctx->dec_cd->qat_dec_cd;
325 struct icp_qat_hw_auth_algo_blk *hash = &dec_ctx->hash;
326 struct icp_qat_hw_cipher_algo_blk *cipher =
327 (struct icp_qat_hw_cipher_algo_blk *)((char *)dec_ctx +
328 sizeof(struct icp_qat_hw_auth_setup) +
329 roundup(crypto_shash_digestsize(ctx->hash_tfm), 8) * 2);
330 struct icp_qat_fw_la_bulk_req *req_tmpl = &ctx->dec_fw_req;
331 struct icp_qat_fw_comn_req_hdr_cd_pars *cd_pars = &req_tmpl->cd_pars;
332 struct icp_qat_fw_comn_req_hdr *header = &req_tmpl->comn_hdr;
333 void *ptr = &req_tmpl->cd_ctrl;
334 struct icp_qat_fw_cipher_cd_ctrl_hdr *cipher_cd_ctrl = ptr;
335 struct icp_qat_fw_auth_cd_ctrl_hdr *hash_cd_ctrl = ptr;
336 struct icp_qat_fw_la_auth_req_params *auth_param =
337 (struct icp_qat_fw_la_auth_req_params *)
338 ((char *)&req_tmpl->serv_specif_rqpars +
339 sizeof(struct icp_qat_fw_la_cipher_req_params));
342 cipher->aes.cipher_config.val = QAT_AES_HW_CONFIG_DEC(alg, mode);
343 memcpy(cipher->aes.key, keys->enckey, keys->enckeylen);
344 hash->sha.inner_setup.auth_config.config =
345 ICP_QAT_HW_AUTH_CONFIG_BUILD(ICP_QAT_HW_AUTH_MODE1,
348 hash->sha.inner_setup.auth_counter.counter =
349 cpu_to_be32(crypto_shash_blocksize(ctx->hash_tfm));
351 if (qat_alg_do_precomputes(hash, ctx, keys->authkey, keys->authkeylen))
355 qat_alg_init_common_hdr(header);
356 header->service_cmd_id = ICP_QAT_FW_LA_CMD_HASH_CIPHER;
357 ICP_QAT_FW_LA_DIGEST_IN_BUFFER_SET(header->serv_specif_flags,
358 ICP_QAT_FW_LA_DIGEST_IN_BUFFER);
359 ICP_QAT_FW_LA_RET_AUTH_SET(header->serv_specif_flags,
360 ICP_QAT_FW_LA_NO_RET_AUTH_RES);
361 ICP_QAT_FW_LA_CMP_AUTH_SET(header->serv_specif_flags,
362 ICP_QAT_FW_LA_CMP_AUTH_RES);
363 cd_pars->u.s.content_desc_addr = ctx->dec_cd_paddr;
364 cd_pars->u.s.content_desc_params_sz = sizeof(struct qat_alg_cd) >> 3;
366 /* Cipher CD config setup */
367 cipher_cd_ctrl->cipher_key_sz = keys->enckeylen >> 3;
368 cipher_cd_ctrl->cipher_state_sz = AES_BLOCK_SIZE >> 3;
369 cipher_cd_ctrl->cipher_cfg_offset =
370 (sizeof(struct icp_qat_hw_auth_setup) +
371 roundup(crypto_shash_digestsize(ctx->hash_tfm), 8) * 2) >> 3;
372 ICP_QAT_FW_COMN_CURR_ID_SET(cipher_cd_ctrl, ICP_QAT_FW_SLICE_CIPHER);
373 ICP_QAT_FW_COMN_NEXT_ID_SET(cipher_cd_ctrl, ICP_QAT_FW_SLICE_DRAM_WR);
375 /* Auth CD config setup */
376 hash_cd_ctrl->hash_cfg_offset = 0;
377 hash_cd_ctrl->hash_flags = ICP_QAT_FW_AUTH_HDR_FLAG_NO_NESTED;
378 hash_cd_ctrl->inner_res_sz = digestsize;
379 hash_cd_ctrl->final_sz = digestsize;
381 switch (ctx->qat_hash_alg) {
382 case ICP_QAT_HW_AUTH_ALGO_SHA1:
383 hash_cd_ctrl->inner_state1_sz =
384 round_up(ICP_QAT_HW_SHA1_STATE1_SZ, 8);
385 hash_cd_ctrl->inner_state2_sz =
386 round_up(ICP_QAT_HW_SHA1_STATE2_SZ, 8);
388 case ICP_QAT_HW_AUTH_ALGO_SHA256:
389 hash_cd_ctrl->inner_state1_sz = ICP_QAT_HW_SHA256_STATE1_SZ;
390 hash_cd_ctrl->inner_state2_sz = ICP_QAT_HW_SHA256_STATE2_SZ;
392 case ICP_QAT_HW_AUTH_ALGO_SHA512:
393 hash_cd_ctrl->inner_state1_sz = ICP_QAT_HW_SHA512_STATE1_SZ;
394 hash_cd_ctrl->inner_state2_sz = ICP_QAT_HW_SHA512_STATE2_SZ;
400 hash_cd_ctrl->inner_state2_offset = hash_cd_ctrl->hash_cfg_offset +
401 ((sizeof(struct icp_qat_hw_auth_setup) +
402 round_up(hash_cd_ctrl->inner_state1_sz, 8)) >> 3);
403 auth_param->auth_res_sz = digestsize;
404 ICP_QAT_FW_COMN_CURR_ID_SET(hash_cd_ctrl, ICP_QAT_FW_SLICE_AUTH);
405 ICP_QAT_FW_COMN_NEXT_ID_SET(hash_cd_ctrl, ICP_QAT_FW_SLICE_CIPHER);
409 static void qat_alg_skcipher_init_com(struct qat_alg_skcipher_ctx *ctx,
410 struct icp_qat_fw_la_bulk_req *req,
411 struct icp_qat_hw_cipher_algo_blk *cd,
412 const u8 *key, unsigned int keylen)
414 struct icp_qat_fw_comn_req_hdr_cd_pars *cd_pars = &req->cd_pars;
415 struct icp_qat_fw_comn_req_hdr *header = &req->comn_hdr;
416 struct icp_qat_fw_cipher_cd_ctrl_hdr *cd_ctrl = (void *)&req->cd_ctrl;
417 bool aes_v2_capable = HW_CAP_AES_V2(ctx->inst->accel_dev);
418 int mode = ctx->mode;
420 qat_alg_init_common_hdr(header);
421 header->service_cmd_id = ICP_QAT_FW_LA_CMD_CIPHER;
422 cd_pars->u.s.content_desc_params_sz =
423 sizeof(struct icp_qat_hw_cipher_algo_blk) >> 3;
425 if (aes_v2_capable && mode == ICP_QAT_HW_CIPHER_XTS_MODE) {
426 ICP_QAT_FW_LA_SLICE_TYPE_SET(header->serv_specif_flags,
427 ICP_QAT_FW_LA_USE_UCS_SLICE_TYPE);
429 /* Store both XTS keys in CD, only the first key is sent
430 * to the HW, the second key is used for tweak calculation
432 memcpy(cd->ucs_aes.key, key, keylen);
434 } else if (aes_v2_capable && mode == ICP_QAT_HW_CIPHER_CTR_MODE) {
435 ICP_QAT_FW_LA_SLICE_TYPE_SET(header->serv_specif_flags,
436 ICP_QAT_FW_LA_USE_UCS_SLICE_TYPE);
437 memcpy(cd->ucs_aes.key, key, keylen);
438 keylen = round_up(keylen, 16);
440 memcpy(cd->aes.key, key, keylen);
443 /* Cipher CD config setup */
444 cd_ctrl->cipher_key_sz = keylen >> 3;
445 cd_ctrl->cipher_state_sz = AES_BLOCK_SIZE >> 3;
446 cd_ctrl->cipher_cfg_offset = 0;
447 ICP_QAT_FW_COMN_CURR_ID_SET(cd_ctrl, ICP_QAT_FW_SLICE_CIPHER);
448 ICP_QAT_FW_COMN_NEXT_ID_SET(cd_ctrl, ICP_QAT_FW_SLICE_DRAM_WR);
451 static void qat_alg_skcipher_init_enc(struct qat_alg_skcipher_ctx *ctx,
452 int alg, const u8 *key,
453 unsigned int keylen, int mode)
455 struct icp_qat_hw_cipher_algo_blk *enc_cd = ctx->enc_cd;
456 struct icp_qat_fw_la_bulk_req *req = &ctx->enc_fw_req;
457 struct icp_qat_fw_comn_req_hdr_cd_pars *cd_pars = &req->cd_pars;
459 qat_alg_skcipher_init_com(ctx, req, enc_cd, key, keylen);
460 cd_pars->u.s.content_desc_addr = ctx->enc_cd_paddr;
461 enc_cd->aes.cipher_config.val = QAT_AES_HW_CONFIG_ENC(alg, mode);
464 static void qat_alg_xts_reverse_key(const u8 *key_forward, unsigned int keylen,
467 struct crypto_aes_ctx aes_expanded;
471 aes_expandkey(&aes_expanded, key_forward, keylen);
472 if (keylen == AES_KEYSIZE_128) {
474 key = (u8 *)aes_expanded.key_enc + (AES_BLOCK_SIZE * nrounds);
475 memcpy(key_reverse, key, AES_BLOCK_SIZE);
477 /* AES_KEYSIZE_256 */
479 key = (u8 *)aes_expanded.key_enc + (AES_BLOCK_SIZE * nrounds);
480 memcpy(key_reverse, key, AES_BLOCK_SIZE);
481 memcpy(key_reverse + AES_BLOCK_SIZE, key - AES_BLOCK_SIZE,
486 static void qat_alg_skcipher_init_dec(struct qat_alg_skcipher_ctx *ctx,
487 int alg, const u8 *key,
488 unsigned int keylen, int mode)
490 struct icp_qat_hw_cipher_algo_blk *dec_cd = ctx->dec_cd;
491 struct icp_qat_fw_la_bulk_req *req = &ctx->dec_fw_req;
492 struct icp_qat_fw_comn_req_hdr_cd_pars *cd_pars = &req->cd_pars;
493 bool aes_v2_capable = HW_CAP_AES_V2(ctx->inst->accel_dev);
495 qat_alg_skcipher_init_com(ctx, req, dec_cd, key, keylen);
496 cd_pars->u.s.content_desc_addr = ctx->dec_cd_paddr;
498 if (aes_v2_capable && mode == ICP_QAT_HW_CIPHER_XTS_MODE) {
499 /* Key reversing not supported, set no convert */
500 dec_cd->aes.cipher_config.val =
501 QAT_AES_HW_CONFIG_DEC_NO_CONV(alg, mode);
503 /* In-place key reversal */
504 qat_alg_xts_reverse_key(dec_cd->ucs_aes.key, keylen / 2,
505 dec_cd->ucs_aes.key);
506 } else if (mode != ICP_QAT_HW_CIPHER_CTR_MODE) {
507 dec_cd->aes.cipher_config.val =
508 QAT_AES_HW_CONFIG_DEC(alg, mode);
510 dec_cd->aes.cipher_config.val =
511 QAT_AES_HW_CONFIG_ENC(alg, mode);
515 static int qat_alg_validate_key(int key_len, int *alg, int mode)
517 if (mode != ICP_QAT_HW_CIPHER_XTS_MODE) {
519 case AES_KEYSIZE_128:
520 *alg = ICP_QAT_HW_CIPHER_ALGO_AES128;
522 case AES_KEYSIZE_192:
523 *alg = ICP_QAT_HW_CIPHER_ALGO_AES192;
525 case AES_KEYSIZE_256:
526 *alg = ICP_QAT_HW_CIPHER_ALGO_AES256;
533 case AES_KEYSIZE_128 << 1:
534 *alg = ICP_QAT_HW_CIPHER_ALGO_AES128;
536 case AES_KEYSIZE_256 << 1:
537 *alg = ICP_QAT_HW_CIPHER_ALGO_AES256;
546 static int qat_alg_aead_init_sessions(struct crypto_aead *tfm, const u8 *key,
547 unsigned int keylen, int mode)
549 struct crypto_authenc_keys keys;
552 if (crypto_authenc_extractkeys(&keys, key, keylen))
555 if (qat_alg_validate_key(keys.enckeylen, &alg, mode))
558 if (qat_alg_aead_init_enc_session(tfm, alg, &keys, mode))
561 if (qat_alg_aead_init_dec_session(tfm, alg, &keys, mode))
564 memzero_explicit(&keys, sizeof(keys));
567 memzero_explicit(&keys, sizeof(keys));
570 memzero_explicit(&keys, sizeof(keys));
574 static int qat_alg_skcipher_init_sessions(struct qat_alg_skcipher_ctx *ctx,
581 if (qat_alg_validate_key(keylen, &alg, mode))
584 qat_alg_skcipher_init_enc(ctx, alg, key, keylen, mode);
585 qat_alg_skcipher_init_dec(ctx, alg, key, keylen, mode);
589 static int qat_alg_aead_rekey(struct crypto_aead *tfm, const u8 *key,
592 struct qat_alg_aead_ctx *ctx = crypto_aead_ctx(tfm);
594 memset(ctx->enc_cd, 0, sizeof(*ctx->enc_cd));
595 memset(ctx->dec_cd, 0, sizeof(*ctx->dec_cd));
596 memset(&ctx->enc_fw_req, 0, sizeof(ctx->enc_fw_req));
597 memset(&ctx->dec_fw_req, 0, sizeof(ctx->dec_fw_req));
599 return qat_alg_aead_init_sessions(tfm, key, keylen,
600 ICP_QAT_HW_CIPHER_CBC_MODE);
603 static int qat_alg_aead_newkey(struct crypto_aead *tfm, const u8 *key,
606 struct qat_alg_aead_ctx *ctx = crypto_aead_ctx(tfm);
607 struct qat_crypto_instance *inst = NULL;
608 int node = numa_node_id();
612 inst = qat_crypto_get_instance_node(node);
615 dev = &GET_DEV(inst->accel_dev);
617 ctx->enc_cd = dma_alloc_coherent(dev, sizeof(*ctx->enc_cd),
624 ctx->dec_cd = dma_alloc_coherent(dev, sizeof(*ctx->dec_cd),
632 ret = qat_alg_aead_init_sessions(tfm, key, keylen,
633 ICP_QAT_HW_CIPHER_CBC_MODE);
640 memset(ctx->dec_cd, 0, sizeof(struct qat_alg_cd));
641 dma_free_coherent(dev, sizeof(struct qat_alg_cd),
642 ctx->dec_cd, ctx->dec_cd_paddr);
645 memset(ctx->enc_cd, 0, sizeof(struct qat_alg_cd));
646 dma_free_coherent(dev, sizeof(struct qat_alg_cd),
647 ctx->enc_cd, ctx->enc_cd_paddr);
651 qat_crypto_put_instance(inst);
655 static int qat_alg_aead_setkey(struct crypto_aead *tfm, const u8 *key,
658 struct qat_alg_aead_ctx *ctx = crypto_aead_ctx(tfm);
661 return qat_alg_aead_rekey(tfm, key, keylen);
663 return qat_alg_aead_newkey(tfm, key, keylen);
666 static void qat_aead_alg_callback(struct icp_qat_fw_la_resp *qat_resp,
667 struct qat_crypto_request *qat_req)
669 struct qat_alg_aead_ctx *ctx = qat_req->aead_ctx;
670 struct qat_crypto_instance *inst = ctx->inst;
671 struct aead_request *areq = qat_req->aead_req;
672 u8 stat_filed = qat_resp->comn_resp.comn_status;
673 int res = 0, qat_res = ICP_QAT_FW_COMN_RESP_CRYPTO_STAT_GET(stat_filed);
675 qat_bl_free_bufl(inst->accel_dev, &qat_req->buf);
676 if (unlikely(qat_res != ICP_QAT_FW_COMN_STATUS_FLAG_OK))
678 aead_request_complete(areq, res);
681 static void qat_alg_update_iv_ctr_mode(struct qat_crypto_request *qat_req)
683 struct skcipher_request *sreq = qat_req->skcipher_req;
688 memcpy(qat_req->iv, sreq->iv, AES_BLOCK_SIZE);
690 iv_lo = be64_to_cpu(qat_req->iv_lo);
691 iv_hi = be64_to_cpu(qat_req->iv_hi);
694 iv_lo += DIV_ROUND_UP(sreq->cryptlen, AES_BLOCK_SIZE);
695 if (iv_lo < iv_lo_prev)
698 qat_req->iv_lo = cpu_to_be64(iv_lo);
699 qat_req->iv_hi = cpu_to_be64(iv_hi);
702 static void qat_alg_update_iv_cbc_mode(struct qat_crypto_request *qat_req)
704 struct skcipher_request *sreq = qat_req->skcipher_req;
705 int offset = sreq->cryptlen - AES_BLOCK_SIZE;
706 struct scatterlist *sgl;
708 if (qat_req->encryption)
713 scatterwalk_map_and_copy(qat_req->iv, sgl, offset, AES_BLOCK_SIZE, 0);
716 static void qat_alg_update_iv(struct qat_crypto_request *qat_req)
718 struct qat_alg_skcipher_ctx *ctx = qat_req->skcipher_ctx;
719 struct device *dev = &GET_DEV(ctx->inst->accel_dev);
722 case ICP_QAT_HW_CIPHER_CTR_MODE:
723 qat_alg_update_iv_ctr_mode(qat_req);
725 case ICP_QAT_HW_CIPHER_CBC_MODE:
726 qat_alg_update_iv_cbc_mode(qat_req);
728 case ICP_QAT_HW_CIPHER_XTS_MODE:
731 dev_warn(dev, "Unsupported IV update for cipher mode %d\n",
736 static void qat_skcipher_alg_callback(struct icp_qat_fw_la_resp *qat_resp,
737 struct qat_crypto_request *qat_req)
739 struct qat_alg_skcipher_ctx *ctx = qat_req->skcipher_ctx;
740 struct qat_crypto_instance *inst = ctx->inst;
741 struct skcipher_request *sreq = qat_req->skcipher_req;
742 u8 stat_filed = qat_resp->comn_resp.comn_status;
743 int res = 0, qat_res = ICP_QAT_FW_COMN_RESP_CRYPTO_STAT_GET(stat_filed);
745 qat_bl_free_bufl(inst->accel_dev, &qat_req->buf);
746 if (unlikely(qat_res != ICP_QAT_FW_COMN_STATUS_FLAG_OK))
749 if (qat_req->encryption)
750 qat_alg_update_iv(qat_req);
752 memcpy(sreq->iv, qat_req->iv, AES_BLOCK_SIZE);
754 skcipher_request_complete(sreq, res);
757 void qat_alg_callback(void *resp)
759 struct icp_qat_fw_la_resp *qat_resp = resp;
760 struct qat_crypto_request *qat_req =
761 (void *)(__force long)qat_resp->opaque_data;
762 struct qat_instance_backlog *backlog = qat_req->alg_req.backlog;
764 qat_req->cb(qat_resp, qat_req);
766 qat_alg_send_backlog(backlog);
769 static int qat_alg_send_sym_message(struct qat_crypto_request *qat_req,
770 struct qat_crypto_instance *inst,
771 struct crypto_async_request *base)
773 struct qat_alg_req *alg_req = &qat_req->alg_req;
775 alg_req->fw_req = (u32 *)&qat_req->req;
776 alg_req->tx_ring = inst->sym_tx;
777 alg_req->base = base;
778 alg_req->backlog = &inst->backlog;
780 return qat_alg_send_message(alg_req);
783 static int qat_alg_aead_dec(struct aead_request *areq)
785 struct crypto_aead *aead_tfm = crypto_aead_reqtfm(areq);
786 struct crypto_tfm *tfm = crypto_aead_tfm(aead_tfm);
787 struct qat_alg_aead_ctx *ctx = crypto_tfm_ctx(tfm);
788 struct qat_crypto_request *qat_req = aead_request_ctx(areq);
789 struct icp_qat_fw_la_cipher_req_params *cipher_param;
790 struct icp_qat_fw_la_auth_req_params *auth_param;
791 struct icp_qat_fw_la_bulk_req *msg;
792 int digst_size = crypto_aead_authsize(aead_tfm);
793 gfp_t f = qat_algs_alloc_flags(&areq->base);
797 cipher_len = areq->cryptlen - digst_size;
798 if (cipher_len % AES_BLOCK_SIZE != 0)
801 ret = qat_bl_sgl_to_bufl(ctx->inst->accel_dev, areq->src, areq->dst,
802 &qat_req->buf, NULL, f);
807 *msg = ctx->dec_fw_req;
808 qat_req->aead_ctx = ctx;
809 qat_req->aead_req = areq;
810 qat_req->cb = qat_aead_alg_callback;
811 qat_req->req.comn_mid.opaque_data = (u64)(__force long)qat_req;
812 qat_req->req.comn_mid.src_data_addr = qat_req->buf.blp;
813 qat_req->req.comn_mid.dest_data_addr = qat_req->buf.bloutp;
814 cipher_param = (void *)&qat_req->req.serv_specif_rqpars;
815 cipher_param->cipher_length = cipher_len;
816 cipher_param->cipher_offset = areq->assoclen;
817 memcpy(cipher_param->u.cipher_IV_array, areq->iv, AES_BLOCK_SIZE);
818 auth_param = (void *)((u8 *)cipher_param + sizeof(*cipher_param));
819 auth_param->auth_off = 0;
820 auth_param->auth_len = areq->assoclen + cipher_param->cipher_length;
822 ret = qat_alg_send_sym_message(qat_req, ctx->inst, &areq->base);
824 qat_bl_free_bufl(ctx->inst->accel_dev, &qat_req->buf);
829 static int qat_alg_aead_enc(struct aead_request *areq)
831 struct crypto_aead *aead_tfm = crypto_aead_reqtfm(areq);
832 struct crypto_tfm *tfm = crypto_aead_tfm(aead_tfm);
833 struct qat_alg_aead_ctx *ctx = crypto_tfm_ctx(tfm);
834 struct qat_crypto_request *qat_req = aead_request_ctx(areq);
835 struct icp_qat_fw_la_cipher_req_params *cipher_param;
836 struct icp_qat_fw_la_auth_req_params *auth_param;
837 gfp_t f = qat_algs_alloc_flags(&areq->base);
838 struct icp_qat_fw_la_bulk_req *msg;
842 if (areq->cryptlen % AES_BLOCK_SIZE != 0)
845 ret = qat_bl_sgl_to_bufl(ctx->inst->accel_dev, areq->src, areq->dst,
846 &qat_req->buf, NULL, f);
851 *msg = ctx->enc_fw_req;
852 qat_req->aead_ctx = ctx;
853 qat_req->aead_req = areq;
854 qat_req->cb = qat_aead_alg_callback;
855 qat_req->req.comn_mid.opaque_data = (u64)(__force long)qat_req;
856 qat_req->req.comn_mid.src_data_addr = qat_req->buf.blp;
857 qat_req->req.comn_mid.dest_data_addr = qat_req->buf.bloutp;
858 cipher_param = (void *)&qat_req->req.serv_specif_rqpars;
859 auth_param = (void *)((u8 *)cipher_param + sizeof(*cipher_param));
861 memcpy(cipher_param->u.cipher_IV_array, iv, AES_BLOCK_SIZE);
862 cipher_param->cipher_length = areq->cryptlen;
863 cipher_param->cipher_offset = areq->assoclen;
865 auth_param->auth_off = 0;
866 auth_param->auth_len = areq->assoclen + areq->cryptlen;
868 ret = qat_alg_send_sym_message(qat_req, ctx->inst, &areq->base);
870 qat_bl_free_bufl(ctx->inst->accel_dev, &qat_req->buf);
875 static int qat_alg_skcipher_rekey(struct qat_alg_skcipher_ctx *ctx,
876 const u8 *key, unsigned int keylen,
879 memset(ctx->enc_cd, 0, sizeof(*ctx->enc_cd));
880 memset(ctx->dec_cd, 0, sizeof(*ctx->dec_cd));
881 memset(&ctx->enc_fw_req, 0, sizeof(ctx->enc_fw_req));
882 memset(&ctx->dec_fw_req, 0, sizeof(ctx->dec_fw_req));
884 return qat_alg_skcipher_init_sessions(ctx, key, keylen, mode);
887 static int qat_alg_skcipher_newkey(struct qat_alg_skcipher_ctx *ctx,
888 const u8 *key, unsigned int keylen,
891 struct qat_crypto_instance *inst = NULL;
893 int node = numa_node_id();
896 inst = qat_crypto_get_instance_node(node);
899 dev = &GET_DEV(inst->accel_dev);
901 ctx->enc_cd = dma_alloc_coherent(dev, sizeof(*ctx->enc_cd),
906 goto out_free_instance;
908 ctx->dec_cd = dma_alloc_coherent(dev, sizeof(*ctx->dec_cd),
916 ret = qat_alg_skcipher_init_sessions(ctx, key, keylen, mode);
923 memset(ctx->dec_cd, 0, sizeof(*ctx->dec_cd));
924 dma_free_coherent(dev, sizeof(*ctx->dec_cd),
925 ctx->dec_cd, ctx->dec_cd_paddr);
928 memset(ctx->enc_cd, 0, sizeof(*ctx->enc_cd));
929 dma_free_coherent(dev, sizeof(*ctx->enc_cd),
930 ctx->enc_cd, ctx->enc_cd_paddr);
934 qat_crypto_put_instance(inst);
938 static int qat_alg_skcipher_setkey(struct crypto_skcipher *tfm,
939 const u8 *key, unsigned int keylen,
942 struct qat_alg_skcipher_ctx *ctx = crypto_skcipher_ctx(tfm);
947 return qat_alg_skcipher_rekey(ctx, key, keylen, mode);
949 return qat_alg_skcipher_newkey(ctx, key, keylen, mode);
952 static int qat_alg_skcipher_cbc_setkey(struct crypto_skcipher *tfm,
953 const u8 *key, unsigned int keylen)
955 return qat_alg_skcipher_setkey(tfm, key, keylen,
956 ICP_QAT_HW_CIPHER_CBC_MODE);
959 static int qat_alg_skcipher_ctr_setkey(struct crypto_skcipher *tfm,
960 const u8 *key, unsigned int keylen)
962 return qat_alg_skcipher_setkey(tfm, key, keylen,
963 ICP_QAT_HW_CIPHER_CTR_MODE);
966 static int qat_alg_skcipher_xts_setkey(struct crypto_skcipher *tfm,
967 const u8 *key, unsigned int keylen)
969 struct qat_alg_skcipher_ctx *ctx = crypto_skcipher_ctx(tfm);
972 ret = xts_verify_key(tfm, key, keylen);
976 if (keylen >> 1 == AES_KEYSIZE_192) {
977 ret = crypto_skcipher_setkey(ctx->ftfm, key, keylen);
981 ctx->fallback = true;
986 ctx->fallback = false;
988 ret = qat_alg_skcipher_setkey(tfm, key, keylen,
989 ICP_QAT_HW_CIPHER_XTS_MODE);
993 if (HW_CAP_AES_V2(ctx->inst->accel_dev))
994 ret = crypto_cipher_setkey(ctx->tweak, key + (keylen / 2),
1000 static void qat_alg_set_req_iv(struct qat_crypto_request *qat_req)
1002 struct icp_qat_fw_la_cipher_req_params *cipher_param;
1003 struct qat_alg_skcipher_ctx *ctx = qat_req->skcipher_ctx;
1004 bool aes_v2_capable = HW_CAP_AES_V2(ctx->inst->accel_dev);
1005 u8 *iv = qat_req->skcipher_req->iv;
1007 cipher_param = (void *)&qat_req->req.serv_specif_rqpars;
1009 if (aes_v2_capable && ctx->mode == ICP_QAT_HW_CIPHER_XTS_MODE)
1010 crypto_cipher_encrypt_one(ctx->tweak,
1011 (u8 *)cipher_param->u.cipher_IV_array,
1014 memcpy(cipher_param->u.cipher_IV_array, iv, AES_BLOCK_SIZE);
1017 static int qat_alg_skcipher_encrypt(struct skcipher_request *req)
1019 struct crypto_skcipher *stfm = crypto_skcipher_reqtfm(req);
1020 struct crypto_tfm *tfm = crypto_skcipher_tfm(stfm);
1021 struct qat_alg_skcipher_ctx *ctx = crypto_tfm_ctx(tfm);
1022 struct qat_crypto_request *qat_req = skcipher_request_ctx(req);
1023 struct icp_qat_fw_la_cipher_req_params *cipher_param;
1024 gfp_t f = qat_algs_alloc_flags(&req->base);
1025 struct icp_qat_fw_la_bulk_req *msg;
1028 if (req->cryptlen == 0)
1031 ret = qat_bl_sgl_to_bufl(ctx->inst->accel_dev, req->src, req->dst,
1032 &qat_req->buf, NULL, f);
1036 msg = &qat_req->req;
1037 *msg = ctx->enc_fw_req;
1038 qat_req->skcipher_ctx = ctx;
1039 qat_req->skcipher_req = req;
1040 qat_req->cb = qat_skcipher_alg_callback;
1041 qat_req->req.comn_mid.opaque_data = (u64)(__force long)qat_req;
1042 qat_req->req.comn_mid.src_data_addr = qat_req->buf.blp;
1043 qat_req->req.comn_mid.dest_data_addr = qat_req->buf.bloutp;
1044 qat_req->encryption = true;
1045 cipher_param = (void *)&qat_req->req.serv_specif_rqpars;
1046 cipher_param->cipher_length = req->cryptlen;
1047 cipher_param->cipher_offset = 0;
1049 qat_alg_set_req_iv(qat_req);
1051 ret = qat_alg_send_sym_message(qat_req, ctx->inst, &req->base);
1053 qat_bl_free_bufl(ctx->inst->accel_dev, &qat_req->buf);
1058 static int qat_alg_skcipher_blk_encrypt(struct skcipher_request *req)
1060 if (req->cryptlen % AES_BLOCK_SIZE != 0)
1063 return qat_alg_skcipher_encrypt(req);
1066 static int qat_alg_skcipher_xts_encrypt(struct skcipher_request *req)
1068 struct crypto_skcipher *stfm = crypto_skcipher_reqtfm(req);
1069 struct qat_alg_skcipher_ctx *ctx = crypto_skcipher_ctx(stfm);
1070 struct skcipher_request *nreq = skcipher_request_ctx(req);
1072 if (req->cryptlen < XTS_BLOCK_SIZE)
1075 if (ctx->fallback) {
1076 memcpy(nreq, req, sizeof(*req));
1077 skcipher_request_set_tfm(nreq, ctx->ftfm);
1078 return crypto_skcipher_encrypt(nreq);
1081 return qat_alg_skcipher_encrypt(req);
1084 static int qat_alg_skcipher_decrypt(struct skcipher_request *req)
1086 struct crypto_skcipher *stfm = crypto_skcipher_reqtfm(req);
1087 struct crypto_tfm *tfm = crypto_skcipher_tfm(stfm);
1088 struct qat_alg_skcipher_ctx *ctx = crypto_tfm_ctx(tfm);
1089 struct qat_crypto_request *qat_req = skcipher_request_ctx(req);
1090 struct icp_qat_fw_la_cipher_req_params *cipher_param;
1091 gfp_t f = qat_algs_alloc_flags(&req->base);
1092 struct icp_qat_fw_la_bulk_req *msg;
1095 if (req->cryptlen == 0)
1098 ret = qat_bl_sgl_to_bufl(ctx->inst->accel_dev, req->src, req->dst,
1099 &qat_req->buf, NULL, f);
1103 msg = &qat_req->req;
1104 *msg = ctx->dec_fw_req;
1105 qat_req->skcipher_ctx = ctx;
1106 qat_req->skcipher_req = req;
1107 qat_req->cb = qat_skcipher_alg_callback;
1108 qat_req->req.comn_mid.opaque_data = (u64)(__force long)qat_req;
1109 qat_req->req.comn_mid.src_data_addr = qat_req->buf.blp;
1110 qat_req->req.comn_mid.dest_data_addr = qat_req->buf.bloutp;
1111 qat_req->encryption = false;
1112 cipher_param = (void *)&qat_req->req.serv_specif_rqpars;
1113 cipher_param->cipher_length = req->cryptlen;
1114 cipher_param->cipher_offset = 0;
1116 qat_alg_set_req_iv(qat_req);
1117 qat_alg_update_iv(qat_req);
1119 ret = qat_alg_send_sym_message(qat_req, ctx->inst, &req->base);
1121 qat_bl_free_bufl(ctx->inst->accel_dev, &qat_req->buf);
1126 static int qat_alg_skcipher_blk_decrypt(struct skcipher_request *req)
1128 if (req->cryptlen % AES_BLOCK_SIZE != 0)
1131 return qat_alg_skcipher_decrypt(req);
1134 static int qat_alg_skcipher_xts_decrypt(struct skcipher_request *req)
1136 struct crypto_skcipher *stfm = crypto_skcipher_reqtfm(req);
1137 struct qat_alg_skcipher_ctx *ctx = crypto_skcipher_ctx(stfm);
1138 struct skcipher_request *nreq = skcipher_request_ctx(req);
1140 if (req->cryptlen < XTS_BLOCK_SIZE)
1143 if (ctx->fallback) {
1144 memcpy(nreq, req, sizeof(*req));
1145 skcipher_request_set_tfm(nreq, ctx->ftfm);
1146 return crypto_skcipher_decrypt(nreq);
1149 return qat_alg_skcipher_decrypt(req);
1152 static int qat_alg_aead_init(struct crypto_aead *tfm,
1153 enum icp_qat_hw_auth_algo hash,
1154 const char *hash_name)
1156 struct qat_alg_aead_ctx *ctx = crypto_aead_ctx(tfm);
1158 ctx->hash_tfm = crypto_alloc_shash(hash_name, 0, 0);
1159 if (IS_ERR(ctx->hash_tfm))
1160 return PTR_ERR(ctx->hash_tfm);
1161 ctx->qat_hash_alg = hash;
1162 crypto_aead_set_reqsize(tfm, sizeof(struct qat_crypto_request));
1166 static int qat_alg_aead_sha1_init(struct crypto_aead *tfm)
1168 return qat_alg_aead_init(tfm, ICP_QAT_HW_AUTH_ALGO_SHA1, "sha1");
1171 static int qat_alg_aead_sha256_init(struct crypto_aead *tfm)
1173 return qat_alg_aead_init(tfm, ICP_QAT_HW_AUTH_ALGO_SHA256, "sha256");
1176 static int qat_alg_aead_sha512_init(struct crypto_aead *tfm)
1178 return qat_alg_aead_init(tfm, ICP_QAT_HW_AUTH_ALGO_SHA512, "sha512");
1181 static void qat_alg_aead_exit(struct crypto_aead *tfm)
1183 struct qat_alg_aead_ctx *ctx = crypto_aead_ctx(tfm);
1184 struct qat_crypto_instance *inst = ctx->inst;
1187 crypto_free_shash(ctx->hash_tfm);
1192 dev = &GET_DEV(inst->accel_dev);
1194 memset(ctx->enc_cd, 0, sizeof(struct qat_alg_cd));
1195 dma_free_coherent(dev, sizeof(struct qat_alg_cd),
1196 ctx->enc_cd, ctx->enc_cd_paddr);
1199 memset(ctx->dec_cd, 0, sizeof(struct qat_alg_cd));
1200 dma_free_coherent(dev, sizeof(struct qat_alg_cd),
1201 ctx->dec_cd, ctx->dec_cd_paddr);
1203 qat_crypto_put_instance(inst);
1206 static int qat_alg_skcipher_init_tfm(struct crypto_skcipher *tfm)
1208 crypto_skcipher_set_reqsize(tfm, sizeof(struct qat_crypto_request));
1212 static int qat_alg_skcipher_init_xts_tfm(struct crypto_skcipher *tfm)
1214 struct qat_alg_skcipher_ctx *ctx = crypto_skcipher_ctx(tfm);
1217 ctx->ftfm = crypto_alloc_skcipher("xts(aes)", 0,
1218 CRYPTO_ALG_NEED_FALLBACK);
1219 if (IS_ERR(ctx->ftfm))
1220 return PTR_ERR(ctx->ftfm);
1222 ctx->tweak = crypto_alloc_cipher("aes", 0, 0);
1223 if (IS_ERR(ctx->tweak)) {
1224 crypto_free_skcipher(ctx->ftfm);
1225 return PTR_ERR(ctx->tweak);
1228 reqsize = max(sizeof(struct qat_crypto_request),
1229 sizeof(struct skcipher_request) +
1230 crypto_skcipher_reqsize(ctx->ftfm));
1231 crypto_skcipher_set_reqsize(tfm, reqsize);
1236 static void qat_alg_skcipher_exit_tfm(struct crypto_skcipher *tfm)
1238 struct qat_alg_skcipher_ctx *ctx = crypto_skcipher_ctx(tfm);
1239 struct qat_crypto_instance *inst = ctx->inst;
1245 dev = &GET_DEV(inst->accel_dev);
1247 memset(ctx->enc_cd, 0,
1248 sizeof(struct icp_qat_hw_cipher_algo_blk));
1249 dma_free_coherent(dev,
1250 sizeof(struct icp_qat_hw_cipher_algo_blk),
1251 ctx->enc_cd, ctx->enc_cd_paddr);
1254 memset(ctx->dec_cd, 0,
1255 sizeof(struct icp_qat_hw_cipher_algo_blk));
1256 dma_free_coherent(dev,
1257 sizeof(struct icp_qat_hw_cipher_algo_blk),
1258 ctx->dec_cd, ctx->dec_cd_paddr);
1260 qat_crypto_put_instance(inst);
1263 static void qat_alg_skcipher_exit_xts_tfm(struct crypto_skcipher *tfm)
1265 struct qat_alg_skcipher_ctx *ctx = crypto_skcipher_ctx(tfm);
1268 crypto_free_skcipher(ctx->ftfm);
1271 crypto_free_cipher(ctx->tweak);
1273 qat_alg_skcipher_exit_tfm(tfm);
1276 static struct aead_alg qat_aeads[] = { {
1278 .cra_name = "authenc(hmac(sha1),cbc(aes))",
1279 .cra_driver_name = "qat_aes_cbc_hmac_sha1",
1280 .cra_priority = 4001,
1281 .cra_flags = CRYPTO_ALG_ASYNC | CRYPTO_ALG_ALLOCATES_MEMORY,
1282 .cra_blocksize = AES_BLOCK_SIZE,
1283 .cra_ctxsize = sizeof(struct qat_alg_aead_ctx),
1284 .cra_module = THIS_MODULE,
1286 .init = qat_alg_aead_sha1_init,
1287 .exit = qat_alg_aead_exit,
1288 .setkey = qat_alg_aead_setkey,
1289 .decrypt = qat_alg_aead_dec,
1290 .encrypt = qat_alg_aead_enc,
1291 .ivsize = AES_BLOCK_SIZE,
1292 .maxauthsize = SHA1_DIGEST_SIZE,
1295 .cra_name = "authenc(hmac(sha256),cbc(aes))",
1296 .cra_driver_name = "qat_aes_cbc_hmac_sha256",
1297 .cra_priority = 4001,
1298 .cra_flags = CRYPTO_ALG_ASYNC | CRYPTO_ALG_ALLOCATES_MEMORY,
1299 .cra_blocksize = AES_BLOCK_SIZE,
1300 .cra_ctxsize = sizeof(struct qat_alg_aead_ctx),
1301 .cra_module = THIS_MODULE,
1303 .init = qat_alg_aead_sha256_init,
1304 .exit = qat_alg_aead_exit,
1305 .setkey = qat_alg_aead_setkey,
1306 .decrypt = qat_alg_aead_dec,
1307 .encrypt = qat_alg_aead_enc,
1308 .ivsize = AES_BLOCK_SIZE,
1309 .maxauthsize = SHA256_DIGEST_SIZE,
1312 .cra_name = "authenc(hmac(sha512),cbc(aes))",
1313 .cra_driver_name = "qat_aes_cbc_hmac_sha512",
1314 .cra_priority = 4001,
1315 .cra_flags = CRYPTO_ALG_ASYNC | CRYPTO_ALG_ALLOCATES_MEMORY,
1316 .cra_blocksize = AES_BLOCK_SIZE,
1317 .cra_ctxsize = sizeof(struct qat_alg_aead_ctx),
1318 .cra_module = THIS_MODULE,
1320 .init = qat_alg_aead_sha512_init,
1321 .exit = qat_alg_aead_exit,
1322 .setkey = qat_alg_aead_setkey,
1323 .decrypt = qat_alg_aead_dec,
1324 .encrypt = qat_alg_aead_enc,
1325 .ivsize = AES_BLOCK_SIZE,
1326 .maxauthsize = SHA512_DIGEST_SIZE,
1329 static struct skcipher_alg qat_skciphers[] = { {
1330 .base.cra_name = "cbc(aes)",
1331 .base.cra_driver_name = "qat_aes_cbc",
1332 .base.cra_priority = 4001,
1333 .base.cra_flags = CRYPTO_ALG_ASYNC | CRYPTO_ALG_ALLOCATES_MEMORY,
1334 .base.cra_blocksize = AES_BLOCK_SIZE,
1335 .base.cra_ctxsize = sizeof(struct qat_alg_skcipher_ctx),
1336 .base.cra_alignmask = 0,
1337 .base.cra_module = THIS_MODULE,
1339 .init = qat_alg_skcipher_init_tfm,
1340 .exit = qat_alg_skcipher_exit_tfm,
1341 .setkey = qat_alg_skcipher_cbc_setkey,
1342 .decrypt = qat_alg_skcipher_blk_decrypt,
1343 .encrypt = qat_alg_skcipher_blk_encrypt,
1344 .min_keysize = AES_MIN_KEY_SIZE,
1345 .max_keysize = AES_MAX_KEY_SIZE,
1346 .ivsize = AES_BLOCK_SIZE,
1348 .base.cra_name = "ctr(aes)",
1349 .base.cra_driver_name = "qat_aes_ctr",
1350 .base.cra_priority = 4001,
1351 .base.cra_flags = CRYPTO_ALG_ASYNC | CRYPTO_ALG_ALLOCATES_MEMORY,
1352 .base.cra_blocksize = 1,
1353 .base.cra_ctxsize = sizeof(struct qat_alg_skcipher_ctx),
1354 .base.cra_alignmask = 0,
1355 .base.cra_module = THIS_MODULE,
1357 .init = qat_alg_skcipher_init_tfm,
1358 .exit = qat_alg_skcipher_exit_tfm,
1359 .setkey = qat_alg_skcipher_ctr_setkey,
1360 .decrypt = qat_alg_skcipher_decrypt,
1361 .encrypt = qat_alg_skcipher_encrypt,
1362 .min_keysize = AES_MIN_KEY_SIZE,
1363 .max_keysize = AES_MAX_KEY_SIZE,
1364 .ivsize = AES_BLOCK_SIZE,
1366 .base.cra_name = "xts(aes)",
1367 .base.cra_driver_name = "qat_aes_xts",
1368 .base.cra_priority = 4001,
1369 .base.cra_flags = CRYPTO_ALG_ASYNC | CRYPTO_ALG_NEED_FALLBACK |
1370 CRYPTO_ALG_ALLOCATES_MEMORY,
1371 .base.cra_blocksize = AES_BLOCK_SIZE,
1372 .base.cra_ctxsize = sizeof(struct qat_alg_skcipher_ctx),
1373 .base.cra_alignmask = 0,
1374 .base.cra_module = THIS_MODULE,
1376 .init = qat_alg_skcipher_init_xts_tfm,
1377 .exit = qat_alg_skcipher_exit_xts_tfm,
1378 .setkey = qat_alg_skcipher_xts_setkey,
1379 .decrypt = qat_alg_skcipher_xts_decrypt,
1380 .encrypt = qat_alg_skcipher_xts_encrypt,
1381 .min_keysize = 2 * AES_MIN_KEY_SIZE,
1382 .max_keysize = 2 * AES_MAX_KEY_SIZE,
1383 .ivsize = AES_BLOCK_SIZE,
1386 int qat_algs_register(void)
1390 mutex_lock(&algs_lock);
1391 if (++active_devs != 1)
1394 ret = crypto_register_skciphers(qat_skciphers,
1395 ARRAY_SIZE(qat_skciphers));
1399 ret = crypto_register_aeads(qat_aeads, ARRAY_SIZE(qat_aeads));
1404 mutex_unlock(&algs_lock);
1408 crypto_unregister_skciphers(qat_skciphers, ARRAY_SIZE(qat_skciphers));
1412 void qat_algs_unregister(void)
1414 mutex_lock(&algs_lock);
1415 if (--active_devs != 0)
1418 crypto_unregister_aeads(qat_aeads, ARRAY_SIZE(qat_aeads));
1419 crypto_unregister_skciphers(qat_skciphers, ARRAY_SIZE(qat_skciphers));
1422 mutex_unlock(&algs_lock);