Loading...
1/*
2 * algif_hash: User-space interface for hash algorithms
3 *
4 * This file provides the user-space API for hash algorithms.
5 *
6 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
7 *
8 * This program is free software; you can redistribute it and/or modify it
9 * under the terms of the GNU General Public License as published by the Free
10 * Software Foundation; either version 2 of the License, or (at your option)
11 * any later version.
12 *
13 */
14
15#include <crypto/hash.h>
16#include <crypto/if_alg.h>
17#include <linux/init.h>
18#include <linux/kernel.h>
19#include <linux/mm.h>
20#include <linux/module.h>
21#include <linux/net.h>
22#include <net/sock.h>
23
24struct hash_ctx {
25 struct af_alg_sgl sgl;
26
27 u8 *result;
28
29 struct crypto_wait wait;
30
31 unsigned int len;
32 bool more;
33
34 struct ahash_request req;
35};
36
37static int hash_alloc_result(struct sock *sk, struct hash_ctx *ctx)
38{
39 unsigned ds;
40
41 if (ctx->result)
42 return 0;
43
44 ds = crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req));
45
46 ctx->result = sock_kmalloc(sk, ds, GFP_KERNEL);
47 if (!ctx->result)
48 return -ENOMEM;
49
50 memset(ctx->result, 0, ds);
51
52 return 0;
53}
54
55static void hash_free_result(struct sock *sk, struct hash_ctx *ctx)
56{
57 unsigned ds;
58
59 if (!ctx->result)
60 return;
61
62 ds = crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req));
63
64 sock_kzfree_s(sk, ctx->result, ds);
65 ctx->result = NULL;
66}
67
68static int hash_sendmsg(struct socket *sock, struct msghdr *msg,
69 size_t ignored)
70{
71 int limit = ALG_MAX_PAGES * PAGE_SIZE;
72 struct sock *sk = sock->sk;
73 struct alg_sock *ask = alg_sk(sk);
74 struct hash_ctx *ctx = ask->private;
75 long copied = 0;
76 int err;
77
78 if (limit > sk->sk_sndbuf)
79 limit = sk->sk_sndbuf;
80
81 lock_sock(sk);
82 if (!ctx->more) {
83 if ((msg->msg_flags & MSG_MORE))
84 hash_free_result(sk, ctx);
85
86 err = crypto_wait_req(crypto_ahash_init(&ctx->req), &ctx->wait);
87 if (err)
88 goto unlock;
89 }
90
91 ctx->more = 0;
92
93 while (msg_data_left(msg)) {
94 int len = msg_data_left(msg);
95
96 if (len > limit)
97 len = limit;
98
99 len = af_alg_make_sg(&ctx->sgl, &msg->msg_iter, len);
100 if (len < 0) {
101 err = copied ? 0 : len;
102 goto unlock;
103 }
104
105 ahash_request_set_crypt(&ctx->req, ctx->sgl.sg, NULL, len);
106
107 err = crypto_wait_req(crypto_ahash_update(&ctx->req),
108 &ctx->wait);
109 af_alg_free_sg(&ctx->sgl);
110 if (err)
111 goto unlock;
112
113 copied += len;
114 iov_iter_advance(&msg->msg_iter, len);
115 }
116
117 err = 0;
118
119 ctx->more = msg->msg_flags & MSG_MORE;
120 if (!ctx->more) {
121 err = hash_alloc_result(sk, ctx);
122 if (err)
123 goto unlock;
124
125 ahash_request_set_crypt(&ctx->req, NULL, ctx->result, 0);
126 err = crypto_wait_req(crypto_ahash_final(&ctx->req),
127 &ctx->wait);
128 }
129
130unlock:
131 release_sock(sk);
132
133 return err ?: copied;
134}
135
136static ssize_t hash_sendpage(struct socket *sock, struct page *page,
137 int offset, size_t size, int flags)
138{
139 struct sock *sk = sock->sk;
140 struct alg_sock *ask = alg_sk(sk);
141 struct hash_ctx *ctx = ask->private;
142 int err;
143
144 if (flags & MSG_SENDPAGE_NOTLAST)
145 flags |= MSG_MORE;
146
147 lock_sock(sk);
148 sg_init_table(ctx->sgl.sg, 1);
149 sg_set_page(ctx->sgl.sg, page, size, offset);
150
151 if (!(flags & MSG_MORE)) {
152 err = hash_alloc_result(sk, ctx);
153 if (err)
154 goto unlock;
155 } else if (!ctx->more)
156 hash_free_result(sk, ctx);
157
158 ahash_request_set_crypt(&ctx->req, ctx->sgl.sg, ctx->result, size);
159
160 if (!(flags & MSG_MORE)) {
161 if (ctx->more)
162 err = crypto_ahash_finup(&ctx->req);
163 else
164 err = crypto_ahash_digest(&ctx->req);
165 } else {
166 if (!ctx->more) {
167 err = crypto_ahash_init(&ctx->req);
168 err = crypto_wait_req(err, &ctx->wait);
169 if (err)
170 goto unlock;
171 }
172
173 err = crypto_ahash_update(&ctx->req);
174 }
175
176 err = crypto_wait_req(err, &ctx->wait);
177 if (err)
178 goto unlock;
179
180 ctx->more = flags & MSG_MORE;
181
182unlock:
183 release_sock(sk);
184
185 return err ?: size;
186}
187
188static int hash_recvmsg(struct socket *sock, struct msghdr *msg, size_t len,
189 int flags)
190{
191 struct sock *sk = sock->sk;
192 struct alg_sock *ask = alg_sk(sk);
193 struct hash_ctx *ctx = ask->private;
194 unsigned ds = crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req));
195 bool result;
196 int err;
197
198 if (len > ds)
199 len = ds;
200 else if (len < ds)
201 msg->msg_flags |= MSG_TRUNC;
202
203 lock_sock(sk);
204 result = ctx->result;
205 err = hash_alloc_result(sk, ctx);
206 if (err)
207 goto unlock;
208
209 ahash_request_set_crypt(&ctx->req, NULL, ctx->result, 0);
210
211 if (!result && !ctx->more) {
212 err = crypto_wait_req(crypto_ahash_init(&ctx->req),
213 &ctx->wait);
214 if (err)
215 goto unlock;
216 }
217
218 if (!result || ctx->more) {
219 ctx->more = 0;
220 err = crypto_wait_req(crypto_ahash_final(&ctx->req),
221 &ctx->wait);
222 if (err)
223 goto unlock;
224 }
225
226 err = memcpy_to_msg(msg, ctx->result, len);
227
228unlock:
229 hash_free_result(sk, ctx);
230 release_sock(sk);
231
232 return err ?: len;
233}
234
235static int hash_accept(struct socket *sock, struct socket *newsock, int flags,
236 bool kern)
237{
238 struct sock *sk = sock->sk;
239 struct alg_sock *ask = alg_sk(sk);
240 struct hash_ctx *ctx = ask->private;
241 struct ahash_request *req = &ctx->req;
242 char state[crypto_ahash_statesize(crypto_ahash_reqtfm(req)) ? : 1];
243 struct sock *sk2;
244 struct alg_sock *ask2;
245 struct hash_ctx *ctx2;
246 bool more;
247 int err;
248
249 lock_sock(sk);
250 more = ctx->more;
251 err = more ? crypto_ahash_export(req, state) : 0;
252 release_sock(sk);
253
254 if (err)
255 return err;
256
257 err = af_alg_accept(ask->parent, newsock, kern);
258 if (err)
259 return err;
260
261 sk2 = newsock->sk;
262 ask2 = alg_sk(sk2);
263 ctx2 = ask2->private;
264 ctx2->more = more;
265
266 if (!more)
267 return err;
268
269 err = crypto_ahash_import(&ctx2->req, state);
270 if (err) {
271 sock_orphan(sk2);
272 sock_put(sk2);
273 }
274
275 return err;
276}
277
278static struct proto_ops algif_hash_ops = {
279 .family = PF_ALG,
280
281 .connect = sock_no_connect,
282 .socketpair = sock_no_socketpair,
283 .getname = sock_no_getname,
284 .ioctl = sock_no_ioctl,
285 .listen = sock_no_listen,
286 .shutdown = sock_no_shutdown,
287 .getsockopt = sock_no_getsockopt,
288 .mmap = sock_no_mmap,
289 .bind = sock_no_bind,
290 .setsockopt = sock_no_setsockopt,
291 .poll = sock_no_poll,
292
293 .release = af_alg_release,
294 .sendmsg = hash_sendmsg,
295 .sendpage = hash_sendpage,
296 .recvmsg = hash_recvmsg,
297 .accept = hash_accept,
298};
299
300static int hash_check_key(struct socket *sock)
301{
302 int err = 0;
303 struct sock *psk;
304 struct alg_sock *pask;
305 struct crypto_ahash *tfm;
306 struct sock *sk = sock->sk;
307 struct alg_sock *ask = alg_sk(sk);
308
309 lock_sock(sk);
310 if (ask->refcnt)
311 goto unlock_child;
312
313 psk = ask->parent;
314 pask = alg_sk(ask->parent);
315 tfm = pask->private;
316
317 err = -ENOKEY;
318 lock_sock_nested(psk, SINGLE_DEPTH_NESTING);
319 if (crypto_ahash_get_flags(tfm) & CRYPTO_TFM_NEED_KEY)
320 goto unlock;
321
322 if (!pask->refcnt++)
323 sock_hold(psk);
324
325 ask->refcnt = 1;
326 sock_put(psk);
327
328 err = 0;
329
330unlock:
331 release_sock(psk);
332unlock_child:
333 release_sock(sk);
334
335 return err;
336}
337
338static int hash_sendmsg_nokey(struct socket *sock, struct msghdr *msg,
339 size_t size)
340{
341 int err;
342
343 err = hash_check_key(sock);
344 if (err)
345 return err;
346
347 return hash_sendmsg(sock, msg, size);
348}
349
350static ssize_t hash_sendpage_nokey(struct socket *sock, struct page *page,
351 int offset, size_t size, int flags)
352{
353 int err;
354
355 err = hash_check_key(sock);
356 if (err)
357 return err;
358
359 return hash_sendpage(sock, page, offset, size, flags);
360}
361
362static int hash_recvmsg_nokey(struct socket *sock, struct msghdr *msg,
363 size_t ignored, int flags)
364{
365 int err;
366
367 err = hash_check_key(sock);
368 if (err)
369 return err;
370
371 return hash_recvmsg(sock, msg, ignored, flags);
372}
373
374static int hash_accept_nokey(struct socket *sock, struct socket *newsock,
375 int flags, bool kern)
376{
377 int err;
378
379 err = hash_check_key(sock);
380 if (err)
381 return err;
382
383 return hash_accept(sock, newsock, flags, kern);
384}
385
386static struct proto_ops algif_hash_ops_nokey = {
387 .family = PF_ALG,
388
389 .connect = sock_no_connect,
390 .socketpair = sock_no_socketpair,
391 .getname = sock_no_getname,
392 .ioctl = sock_no_ioctl,
393 .listen = sock_no_listen,
394 .shutdown = sock_no_shutdown,
395 .getsockopt = sock_no_getsockopt,
396 .mmap = sock_no_mmap,
397 .bind = sock_no_bind,
398 .setsockopt = sock_no_setsockopt,
399 .poll = sock_no_poll,
400
401 .release = af_alg_release,
402 .sendmsg = hash_sendmsg_nokey,
403 .sendpage = hash_sendpage_nokey,
404 .recvmsg = hash_recvmsg_nokey,
405 .accept = hash_accept_nokey,
406};
407
408static void *hash_bind(const char *name, u32 type, u32 mask)
409{
410 return crypto_alloc_ahash(name, type, mask);
411}
412
413static void hash_release(void *private)
414{
415 crypto_free_ahash(private);
416}
417
418static int hash_setkey(void *private, const u8 *key, unsigned int keylen)
419{
420 return crypto_ahash_setkey(private, key, keylen);
421}
422
423static void hash_sock_destruct(struct sock *sk)
424{
425 struct alg_sock *ask = alg_sk(sk);
426 struct hash_ctx *ctx = ask->private;
427
428 hash_free_result(sk, ctx);
429 sock_kfree_s(sk, ctx, ctx->len);
430 af_alg_release_parent(sk);
431}
432
433static int hash_accept_parent_nokey(void *private, struct sock *sk)
434{
435 struct crypto_ahash *tfm = private;
436 struct alg_sock *ask = alg_sk(sk);
437 struct hash_ctx *ctx;
438 unsigned int len = sizeof(*ctx) + crypto_ahash_reqsize(tfm);
439
440 ctx = sock_kmalloc(sk, len, GFP_KERNEL);
441 if (!ctx)
442 return -ENOMEM;
443
444 ctx->result = NULL;
445 ctx->len = len;
446 ctx->more = 0;
447 crypto_init_wait(&ctx->wait);
448
449 ask->private = ctx;
450
451 ahash_request_set_tfm(&ctx->req, tfm);
452 ahash_request_set_callback(&ctx->req, CRYPTO_TFM_REQ_MAY_BACKLOG,
453 crypto_req_done, &ctx->wait);
454
455 sk->sk_destruct = hash_sock_destruct;
456
457 return 0;
458}
459
460static int hash_accept_parent(void *private, struct sock *sk)
461{
462 struct crypto_ahash *tfm = private;
463
464 if (crypto_ahash_get_flags(tfm) & CRYPTO_TFM_NEED_KEY)
465 return -ENOKEY;
466
467 return hash_accept_parent_nokey(private, sk);
468}
469
470static const struct af_alg_type algif_type_hash = {
471 .bind = hash_bind,
472 .release = hash_release,
473 .setkey = hash_setkey,
474 .accept = hash_accept_parent,
475 .accept_nokey = hash_accept_parent_nokey,
476 .ops = &algif_hash_ops,
477 .ops_nokey = &algif_hash_ops_nokey,
478 .name = "hash",
479 .owner = THIS_MODULE
480};
481
482static int __init algif_hash_init(void)
483{
484 return af_alg_register_type(&algif_type_hash);
485}
486
487static void __exit algif_hash_exit(void)
488{
489 int err = af_alg_unregister_type(&algif_type_hash);
490 BUG_ON(err);
491}
492
493module_init(algif_hash_init);
494module_exit(algif_hash_exit);
495MODULE_LICENSE("GPL");
1/*
2 * algif_hash: User-space interface for hash algorithms
3 *
4 * This file provides the user-space API for hash algorithms.
5 *
6 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
7 *
8 * This program is free software; you can redistribute it and/or modify it
9 * under the terms of the GNU General Public License as published by the Free
10 * Software Foundation; either version 2 of the License, or (at your option)
11 * any later version.
12 *
13 */
14
15#include <crypto/hash.h>
16#include <crypto/if_alg.h>
17#include <linux/init.h>
18#include <linux/kernel.h>
19#include <linux/mm.h>
20#include <linux/module.h>
21#include <linux/net.h>
22#include <net/sock.h>
23
24struct hash_ctx {
25 struct af_alg_sgl sgl;
26
27 u8 *result;
28
29 struct af_alg_completion completion;
30
31 unsigned int len;
32 bool more;
33
34 struct ahash_request req;
35};
36
37static int hash_sendmsg(struct kiocb *unused, struct socket *sock,
38 struct msghdr *msg, size_t ignored)
39{
40 int limit = ALG_MAX_PAGES * PAGE_SIZE;
41 struct sock *sk = sock->sk;
42 struct alg_sock *ask = alg_sk(sk);
43 struct hash_ctx *ctx = ask->private;
44 unsigned long iovlen;
45 struct iovec *iov;
46 long copied = 0;
47 int err;
48
49 if (limit > sk->sk_sndbuf)
50 limit = sk->sk_sndbuf;
51
52 lock_sock(sk);
53 if (!ctx->more) {
54 err = crypto_ahash_init(&ctx->req);
55 if (err)
56 goto unlock;
57 }
58
59 ctx->more = 0;
60
61 for (iov = msg->msg_iov, iovlen = msg->msg_iovlen; iovlen > 0;
62 iovlen--, iov++) {
63 unsigned long seglen = iov->iov_len;
64 char __user *from = iov->iov_base;
65
66 while (seglen) {
67 int len = min_t(unsigned long, seglen, limit);
68 int newlen;
69
70 newlen = af_alg_make_sg(&ctx->sgl, from, len, 0);
71 if (newlen < 0) {
72 err = copied ? 0 : newlen;
73 goto unlock;
74 }
75
76 ahash_request_set_crypt(&ctx->req, ctx->sgl.sg, NULL,
77 newlen);
78
79 err = af_alg_wait_for_completion(
80 crypto_ahash_update(&ctx->req),
81 &ctx->completion);
82
83 af_alg_free_sg(&ctx->sgl);
84
85 if (err)
86 goto unlock;
87
88 seglen -= newlen;
89 from += newlen;
90 copied += newlen;
91 }
92 }
93
94 err = 0;
95
96 ctx->more = msg->msg_flags & MSG_MORE;
97 if (!ctx->more) {
98 ahash_request_set_crypt(&ctx->req, NULL, ctx->result, 0);
99 err = af_alg_wait_for_completion(crypto_ahash_final(&ctx->req),
100 &ctx->completion);
101 }
102
103unlock:
104 release_sock(sk);
105
106 return err ?: copied;
107}
108
109static ssize_t hash_sendpage(struct socket *sock, struct page *page,
110 int offset, size_t size, int flags)
111{
112 struct sock *sk = sock->sk;
113 struct alg_sock *ask = alg_sk(sk);
114 struct hash_ctx *ctx = ask->private;
115 int err;
116
117 lock_sock(sk);
118 sg_init_table(ctx->sgl.sg, 1);
119 sg_set_page(ctx->sgl.sg, page, size, offset);
120
121 ahash_request_set_crypt(&ctx->req, ctx->sgl.sg, ctx->result, size);
122
123 if (!(flags & MSG_MORE)) {
124 if (ctx->more)
125 err = crypto_ahash_finup(&ctx->req);
126 else
127 err = crypto_ahash_digest(&ctx->req);
128 } else {
129 if (!ctx->more) {
130 err = crypto_ahash_init(&ctx->req);
131 if (err)
132 goto unlock;
133 }
134
135 err = crypto_ahash_update(&ctx->req);
136 }
137
138 err = af_alg_wait_for_completion(err, &ctx->completion);
139 if (err)
140 goto unlock;
141
142 ctx->more = flags & MSG_MORE;
143
144unlock:
145 release_sock(sk);
146
147 return err ?: size;
148}
149
150static int hash_recvmsg(struct kiocb *unused, struct socket *sock,
151 struct msghdr *msg, size_t len, int flags)
152{
153 struct sock *sk = sock->sk;
154 struct alg_sock *ask = alg_sk(sk);
155 struct hash_ctx *ctx = ask->private;
156 unsigned ds = crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req));
157 int err;
158
159 if (len > ds)
160 len = ds;
161 else if (len < ds)
162 msg->msg_flags |= MSG_TRUNC;
163
164 lock_sock(sk);
165 if (ctx->more) {
166 ctx->more = 0;
167 ahash_request_set_crypt(&ctx->req, NULL, ctx->result, 0);
168 err = af_alg_wait_for_completion(crypto_ahash_final(&ctx->req),
169 &ctx->completion);
170 if (err)
171 goto unlock;
172 }
173
174 err = memcpy_toiovec(msg->msg_iov, ctx->result, len);
175
176unlock:
177 release_sock(sk);
178
179 return err ?: len;
180}
181
182static int hash_accept(struct socket *sock, struct socket *newsock, int flags)
183{
184 struct sock *sk = sock->sk;
185 struct alg_sock *ask = alg_sk(sk);
186 struct hash_ctx *ctx = ask->private;
187 struct ahash_request *req = &ctx->req;
188 char state[crypto_ahash_statesize(crypto_ahash_reqtfm(req))];
189 struct sock *sk2;
190 struct alg_sock *ask2;
191 struct hash_ctx *ctx2;
192 int err;
193
194 err = crypto_ahash_export(req, state);
195 if (err)
196 return err;
197
198 err = af_alg_accept(ask->parent, newsock);
199 if (err)
200 return err;
201
202 sk2 = newsock->sk;
203 ask2 = alg_sk(sk2);
204 ctx2 = ask2->private;
205 ctx2->more = 1;
206
207 err = crypto_ahash_import(&ctx2->req, state);
208 if (err) {
209 sock_orphan(sk2);
210 sock_put(sk2);
211 }
212
213 return err;
214}
215
216static struct proto_ops algif_hash_ops = {
217 .family = PF_ALG,
218
219 .connect = sock_no_connect,
220 .socketpair = sock_no_socketpair,
221 .getname = sock_no_getname,
222 .ioctl = sock_no_ioctl,
223 .listen = sock_no_listen,
224 .shutdown = sock_no_shutdown,
225 .getsockopt = sock_no_getsockopt,
226 .mmap = sock_no_mmap,
227 .bind = sock_no_bind,
228 .setsockopt = sock_no_setsockopt,
229 .poll = sock_no_poll,
230
231 .release = af_alg_release,
232 .sendmsg = hash_sendmsg,
233 .sendpage = hash_sendpage,
234 .recvmsg = hash_recvmsg,
235 .accept = hash_accept,
236};
237
238static void *hash_bind(const char *name, u32 type, u32 mask)
239{
240 return crypto_alloc_ahash(name, type, mask);
241}
242
243static void hash_release(void *private)
244{
245 crypto_free_ahash(private);
246}
247
248static int hash_setkey(void *private, const u8 *key, unsigned int keylen)
249{
250 return crypto_ahash_setkey(private, key, keylen);
251}
252
253static void hash_sock_destruct(struct sock *sk)
254{
255 struct alg_sock *ask = alg_sk(sk);
256 struct hash_ctx *ctx = ask->private;
257
258 sock_kfree_s(sk, ctx->result,
259 crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req)));
260 sock_kfree_s(sk, ctx, ctx->len);
261 af_alg_release_parent(sk);
262}
263
264static int hash_accept_parent(void *private, struct sock *sk)
265{
266 struct hash_ctx *ctx;
267 struct alg_sock *ask = alg_sk(sk);
268 unsigned len = sizeof(*ctx) + crypto_ahash_reqsize(private);
269 unsigned ds = crypto_ahash_digestsize(private);
270
271 ctx = sock_kmalloc(sk, len, GFP_KERNEL);
272 if (!ctx)
273 return -ENOMEM;
274
275 ctx->result = sock_kmalloc(sk, ds, GFP_KERNEL);
276 if (!ctx->result) {
277 sock_kfree_s(sk, ctx, len);
278 return -ENOMEM;
279 }
280
281 memset(ctx->result, 0, ds);
282
283 ctx->len = len;
284 ctx->more = 0;
285 af_alg_init_completion(&ctx->completion);
286
287 ask->private = ctx;
288
289 ahash_request_set_tfm(&ctx->req, private);
290 ahash_request_set_callback(&ctx->req, CRYPTO_TFM_REQ_MAY_BACKLOG,
291 af_alg_complete, &ctx->completion);
292
293 sk->sk_destruct = hash_sock_destruct;
294
295 return 0;
296}
297
298static const struct af_alg_type algif_type_hash = {
299 .bind = hash_bind,
300 .release = hash_release,
301 .setkey = hash_setkey,
302 .accept = hash_accept_parent,
303 .ops = &algif_hash_ops,
304 .name = "hash",
305 .owner = THIS_MODULE
306};
307
308static int __init algif_hash_init(void)
309{
310 return af_alg_register_type(&algif_type_hash);
311}
312
313static void __exit algif_hash_exit(void)
314{
315 int err = af_alg_unregister_type(&algif_type_hash);
316 BUG_ON(err);
317}
318
319module_init(algif_hash_init);
320module_exit(algif_hash_exit);
321MODULE_LICENSE("GPL");