Loading...
1// SPDX-License-Identifier: GPL-2.0-or-later
2/*
3 * algif_hash: User-space interface for hash algorithms
4 *
5 * This file provides the user-space API for hash algorithms.
6 *
7 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
8 */
9
10#include <crypto/hash.h>
11#include <crypto/if_alg.h>
12#include <linux/init.h>
13#include <linux/kernel.h>
14#include <linux/mm.h>
15#include <linux/module.h>
16#include <linux/net.h>
17#include <net/sock.h>
18
19struct hash_ctx {
20 struct af_alg_sgl sgl;
21
22 u8 *result;
23
24 struct crypto_wait wait;
25
26 unsigned int len;
27 bool more;
28
29 struct ahash_request req;
30};
31
32static int hash_alloc_result(struct sock *sk, struct hash_ctx *ctx)
33{
34 unsigned ds;
35
36 if (ctx->result)
37 return 0;
38
39 ds = crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req));
40
41 ctx->result = sock_kmalloc(sk, ds, GFP_KERNEL);
42 if (!ctx->result)
43 return -ENOMEM;
44
45 memset(ctx->result, 0, ds);
46
47 return 0;
48}
49
50static void hash_free_result(struct sock *sk, struct hash_ctx *ctx)
51{
52 unsigned ds;
53
54 if (!ctx->result)
55 return;
56
57 ds = crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req));
58
59 sock_kzfree_s(sk, ctx->result, ds);
60 ctx->result = NULL;
61}
62
63static int hash_sendmsg(struct socket *sock, struct msghdr *msg,
64 size_t ignored)
65{
66 int limit = ALG_MAX_PAGES * PAGE_SIZE;
67 struct sock *sk = sock->sk;
68 struct alg_sock *ask = alg_sk(sk);
69 struct hash_ctx *ctx = ask->private;
70 long copied = 0;
71 int err;
72
73 if (limit > sk->sk_sndbuf)
74 limit = sk->sk_sndbuf;
75
76 lock_sock(sk);
77 if (!ctx->more) {
78 if ((msg->msg_flags & MSG_MORE))
79 hash_free_result(sk, ctx);
80
81 err = crypto_wait_req(crypto_ahash_init(&ctx->req), &ctx->wait);
82 if (err)
83 goto unlock;
84 }
85
86 ctx->more = 0;
87
88 while (msg_data_left(msg)) {
89 int len = msg_data_left(msg);
90
91 if (len > limit)
92 len = limit;
93
94 len = af_alg_make_sg(&ctx->sgl, &msg->msg_iter, len);
95 if (len < 0) {
96 err = copied ? 0 : len;
97 goto unlock;
98 }
99
100 ahash_request_set_crypt(&ctx->req, ctx->sgl.sg, NULL, len);
101
102 err = crypto_wait_req(crypto_ahash_update(&ctx->req),
103 &ctx->wait);
104 af_alg_free_sg(&ctx->sgl);
105 if (err)
106 goto unlock;
107
108 copied += len;
109 iov_iter_advance(&msg->msg_iter, len);
110 }
111
112 err = 0;
113
114 ctx->more = msg->msg_flags & MSG_MORE;
115 if (!ctx->more) {
116 err = hash_alloc_result(sk, ctx);
117 if (err)
118 goto unlock;
119
120 ahash_request_set_crypt(&ctx->req, NULL, ctx->result, 0);
121 err = crypto_wait_req(crypto_ahash_final(&ctx->req),
122 &ctx->wait);
123 }
124
125unlock:
126 release_sock(sk);
127
128 return err ?: copied;
129}
130
131static ssize_t hash_sendpage(struct socket *sock, struct page *page,
132 int offset, size_t size, int flags)
133{
134 struct sock *sk = sock->sk;
135 struct alg_sock *ask = alg_sk(sk);
136 struct hash_ctx *ctx = ask->private;
137 int err;
138
139 if (flags & MSG_SENDPAGE_NOTLAST)
140 flags |= MSG_MORE;
141
142 lock_sock(sk);
143 sg_init_table(ctx->sgl.sg, 1);
144 sg_set_page(ctx->sgl.sg, page, size, offset);
145
146 if (!(flags & MSG_MORE)) {
147 err = hash_alloc_result(sk, ctx);
148 if (err)
149 goto unlock;
150 } else if (!ctx->more)
151 hash_free_result(sk, ctx);
152
153 ahash_request_set_crypt(&ctx->req, ctx->sgl.sg, ctx->result, size);
154
155 if (!(flags & MSG_MORE)) {
156 if (ctx->more)
157 err = crypto_ahash_finup(&ctx->req);
158 else
159 err = crypto_ahash_digest(&ctx->req);
160 } else {
161 if (!ctx->more) {
162 err = crypto_ahash_init(&ctx->req);
163 err = crypto_wait_req(err, &ctx->wait);
164 if (err)
165 goto unlock;
166 }
167
168 err = crypto_ahash_update(&ctx->req);
169 }
170
171 err = crypto_wait_req(err, &ctx->wait);
172 if (err)
173 goto unlock;
174
175 ctx->more = flags & MSG_MORE;
176
177unlock:
178 release_sock(sk);
179
180 return err ?: size;
181}
182
183static int hash_recvmsg(struct socket *sock, struct msghdr *msg, size_t len,
184 int flags)
185{
186 struct sock *sk = sock->sk;
187 struct alg_sock *ask = alg_sk(sk);
188 struct hash_ctx *ctx = ask->private;
189 unsigned ds = crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req));
190 bool result;
191 int err;
192
193 if (len > ds)
194 len = ds;
195 else if (len < ds)
196 msg->msg_flags |= MSG_TRUNC;
197
198 lock_sock(sk);
199 result = ctx->result;
200 err = hash_alloc_result(sk, ctx);
201 if (err)
202 goto unlock;
203
204 ahash_request_set_crypt(&ctx->req, NULL, ctx->result, 0);
205
206 if (!result && !ctx->more) {
207 err = crypto_wait_req(crypto_ahash_init(&ctx->req),
208 &ctx->wait);
209 if (err)
210 goto unlock;
211 }
212
213 if (!result || ctx->more) {
214 ctx->more = 0;
215 err = crypto_wait_req(crypto_ahash_final(&ctx->req),
216 &ctx->wait);
217 if (err)
218 goto unlock;
219 }
220
221 err = memcpy_to_msg(msg, ctx->result, len);
222
223unlock:
224 hash_free_result(sk, ctx);
225 release_sock(sk);
226
227 return err ?: len;
228}
229
230static int hash_accept(struct socket *sock, struct socket *newsock, int flags,
231 bool kern)
232{
233 struct sock *sk = sock->sk;
234 struct alg_sock *ask = alg_sk(sk);
235 struct hash_ctx *ctx = ask->private;
236 struct ahash_request *req = &ctx->req;
237 char state[HASH_MAX_STATESIZE];
238 struct sock *sk2;
239 struct alg_sock *ask2;
240 struct hash_ctx *ctx2;
241 bool more;
242 int err;
243
244 lock_sock(sk);
245 more = ctx->more;
246 err = more ? crypto_ahash_export(req, state) : 0;
247 release_sock(sk);
248
249 if (err)
250 return err;
251
252 err = af_alg_accept(ask->parent, newsock, kern);
253 if (err)
254 return err;
255
256 sk2 = newsock->sk;
257 ask2 = alg_sk(sk2);
258 ctx2 = ask2->private;
259 ctx2->more = more;
260
261 if (!more)
262 return err;
263
264 err = crypto_ahash_import(&ctx2->req, state);
265 if (err) {
266 sock_orphan(sk2);
267 sock_put(sk2);
268 }
269
270 return err;
271}
272
273static struct proto_ops algif_hash_ops = {
274 .family = PF_ALG,
275
276 .connect = sock_no_connect,
277 .socketpair = sock_no_socketpair,
278 .getname = sock_no_getname,
279 .ioctl = sock_no_ioctl,
280 .listen = sock_no_listen,
281 .shutdown = sock_no_shutdown,
282 .getsockopt = sock_no_getsockopt,
283 .mmap = sock_no_mmap,
284 .bind = sock_no_bind,
285 .setsockopt = sock_no_setsockopt,
286
287 .release = af_alg_release,
288 .sendmsg = hash_sendmsg,
289 .sendpage = hash_sendpage,
290 .recvmsg = hash_recvmsg,
291 .accept = hash_accept,
292};
293
294static int hash_check_key(struct socket *sock)
295{
296 int err = 0;
297 struct sock *psk;
298 struct alg_sock *pask;
299 struct crypto_ahash *tfm;
300 struct sock *sk = sock->sk;
301 struct alg_sock *ask = alg_sk(sk);
302
303 lock_sock(sk);
304 if (ask->refcnt)
305 goto unlock_child;
306
307 psk = ask->parent;
308 pask = alg_sk(ask->parent);
309 tfm = pask->private;
310
311 err = -ENOKEY;
312 lock_sock_nested(psk, SINGLE_DEPTH_NESTING);
313 if (crypto_ahash_get_flags(tfm) & CRYPTO_TFM_NEED_KEY)
314 goto unlock;
315
316 if (!pask->refcnt++)
317 sock_hold(psk);
318
319 ask->refcnt = 1;
320 sock_put(psk);
321
322 err = 0;
323
324unlock:
325 release_sock(psk);
326unlock_child:
327 release_sock(sk);
328
329 return err;
330}
331
332static int hash_sendmsg_nokey(struct socket *sock, struct msghdr *msg,
333 size_t size)
334{
335 int err;
336
337 err = hash_check_key(sock);
338 if (err)
339 return err;
340
341 return hash_sendmsg(sock, msg, size);
342}
343
344static ssize_t hash_sendpage_nokey(struct socket *sock, struct page *page,
345 int offset, size_t size, int flags)
346{
347 int err;
348
349 err = hash_check_key(sock);
350 if (err)
351 return err;
352
353 return hash_sendpage(sock, page, offset, size, flags);
354}
355
356static int hash_recvmsg_nokey(struct socket *sock, struct msghdr *msg,
357 size_t ignored, int flags)
358{
359 int err;
360
361 err = hash_check_key(sock);
362 if (err)
363 return err;
364
365 return hash_recvmsg(sock, msg, ignored, flags);
366}
367
368static int hash_accept_nokey(struct socket *sock, struct socket *newsock,
369 int flags, bool kern)
370{
371 int err;
372
373 err = hash_check_key(sock);
374 if (err)
375 return err;
376
377 return hash_accept(sock, newsock, flags, kern);
378}
379
380static struct proto_ops algif_hash_ops_nokey = {
381 .family = PF_ALG,
382
383 .connect = sock_no_connect,
384 .socketpair = sock_no_socketpair,
385 .getname = sock_no_getname,
386 .ioctl = sock_no_ioctl,
387 .listen = sock_no_listen,
388 .shutdown = sock_no_shutdown,
389 .getsockopt = sock_no_getsockopt,
390 .mmap = sock_no_mmap,
391 .bind = sock_no_bind,
392 .setsockopt = sock_no_setsockopt,
393
394 .release = af_alg_release,
395 .sendmsg = hash_sendmsg_nokey,
396 .sendpage = hash_sendpage_nokey,
397 .recvmsg = hash_recvmsg_nokey,
398 .accept = hash_accept_nokey,
399};
400
401static void *hash_bind(const char *name, u32 type, u32 mask)
402{
403 return crypto_alloc_ahash(name, type, mask);
404}
405
406static void hash_release(void *private)
407{
408 crypto_free_ahash(private);
409}
410
411static int hash_setkey(void *private, const u8 *key, unsigned int keylen)
412{
413 return crypto_ahash_setkey(private, key, keylen);
414}
415
416static void hash_sock_destruct(struct sock *sk)
417{
418 struct alg_sock *ask = alg_sk(sk);
419 struct hash_ctx *ctx = ask->private;
420
421 hash_free_result(sk, ctx);
422 sock_kfree_s(sk, ctx, ctx->len);
423 af_alg_release_parent(sk);
424}
425
426static int hash_accept_parent_nokey(void *private, struct sock *sk)
427{
428 struct crypto_ahash *tfm = private;
429 struct alg_sock *ask = alg_sk(sk);
430 struct hash_ctx *ctx;
431 unsigned int len = sizeof(*ctx) + crypto_ahash_reqsize(tfm);
432
433 ctx = sock_kmalloc(sk, len, GFP_KERNEL);
434 if (!ctx)
435 return -ENOMEM;
436
437 ctx->result = NULL;
438 ctx->len = len;
439 ctx->more = 0;
440 crypto_init_wait(&ctx->wait);
441
442 ask->private = ctx;
443
444 ahash_request_set_tfm(&ctx->req, tfm);
445 ahash_request_set_callback(&ctx->req, CRYPTO_TFM_REQ_MAY_BACKLOG,
446 crypto_req_done, &ctx->wait);
447
448 sk->sk_destruct = hash_sock_destruct;
449
450 return 0;
451}
452
453static int hash_accept_parent(void *private, struct sock *sk)
454{
455 struct crypto_ahash *tfm = private;
456
457 if (crypto_ahash_get_flags(tfm) & CRYPTO_TFM_NEED_KEY)
458 return -ENOKEY;
459
460 return hash_accept_parent_nokey(private, sk);
461}
462
463static const struct af_alg_type algif_type_hash = {
464 .bind = hash_bind,
465 .release = hash_release,
466 .setkey = hash_setkey,
467 .accept = hash_accept_parent,
468 .accept_nokey = hash_accept_parent_nokey,
469 .ops = &algif_hash_ops,
470 .ops_nokey = &algif_hash_ops_nokey,
471 .name = "hash",
472 .owner = THIS_MODULE
473};
474
475static int __init algif_hash_init(void)
476{
477 return af_alg_register_type(&algif_type_hash);
478}
479
480static void __exit algif_hash_exit(void)
481{
482 int err = af_alg_unregister_type(&algif_type_hash);
483 BUG_ON(err);
484}
485
486module_init(algif_hash_init);
487module_exit(algif_hash_exit);
488MODULE_LICENSE("GPL");
1/*
2 * algif_hash: User-space interface for hash algorithms
3 *
4 * This file provides the user-space API for hash algorithms.
5 *
6 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
7 *
8 * This program is free software; you can redistribute it and/or modify it
9 * under the terms of the GNU General Public License as published by the Free
10 * Software Foundation; either version 2 of the License, or (at your option)
11 * any later version.
12 *
13 */
14
15#include <crypto/hash.h>
16#include <crypto/if_alg.h>
17#include <linux/init.h>
18#include <linux/kernel.h>
19#include <linux/mm.h>
20#include <linux/module.h>
21#include <linux/net.h>
22#include <net/sock.h>
23
24struct hash_ctx {
25 struct af_alg_sgl sgl;
26
27 u8 *result;
28
29 struct af_alg_completion completion;
30
31 unsigned int len;
32 bool more;
33
34 struct ahash_request req;
35};
36
37static int hash_sendmsg(struct kiocb *unused, struct socket *sock,
38 struct msghdr *msg, size_t ignored)
39{
40 int limit = ALG_MAX_PAGES * PAGE_SIZE;
41 struct sock *sk = sock->sk;
42 struct alg_sock *ask = alg_sk(sk);
43 struct hash_ctx *ctx = ask->private;
44 unsigned long iovlen;
45 struct iovec *iov;
46 long copied = 0;
47 int err;
48
49 if (limit > sk->sk_sndbuf)
50 limit = sk->sk_sndbuf;
51
52 lock_sock(sk);
53 if (!ctx->more) {
54 err = crypto_ahash_init(&ctx->req);
55 if (err)
56 goto unlock;
57 }
58
59 ctx->more = 0;
60
61 for (iov = msg->msg_iov, iovlen = msg->msg_iovlen; iovlen > 0;
62 iovlen--, iov++) {
63 unsigned long seglen = iov->iov_len;
64 char __user *from = iov->iov_base;
65
66 while (seglen) {
67 int len = min_t(unsigned long, seglen, limit);
68 int newlen;
69
70 newlen = af_alg_make_sg(&ctx->sgl, from, len, 0);
71 if (newlen < 0) {
72 err = copied ? 0 : newlen;
73 goto unlock;
74 }
75
76 ahash_request_set_crypt(&ctx->req, ctx->sgl.sg, NULL,
77 newlen);
78
79 err = af_alg_wait_for_completion(
80 crypto_ahash_update(&ctx->req),
81 &ctx->completion);
82
83 af_alg_free_sg(&ctx->sgl);
84
85 if (err)
86 goto unlock;
87
88 seglen -= newlen;
89 from += newlen;
90 copied += newlen;
91 }
92 }
93
94 err = 0;
95
96 ctx->more = msg->msg_flags & MSG_MORE;
97 if (!ctx->more) {
98 ahash_request_set_crypt(&ctx->req, NULL, ctx->result, 0);
99 err = af_alg_wait_for_completion(crypto_ahash_final(&ctx->req),
100 &ctx->completion);
101 }
102
103unlock:
104 release_sock(sk);
105
106 return err ?: copied;
107}
108
109static ssize_t hash_sendpage(struct socket *sock, struct page *page,
110 int offset, size_t size, int flags)
111{
112 struct sock *sk = sock->sk;
113 struct alg_sock *ask = alg_sk(sk);
114 struct hash_ctx *ctx = ask->private;
115 int err;
116
117 if (flags & MSG_SENDPAGE_NOTLAST)
118 flags |= MSG_MORE;
119
120 lock_sock(sk);
121 sg_init_table(ctx->sgl.sg, 1);
122 sg_set_page(ctx->sgl.sg, page, size, offset);
123
124 ahash_request_set_crypt(&ctx->req, ctx->sgl.sg, ctx->result, size);
125
126 if (!(flags & MSG_MORE)) {
127 if (ctx->more)
128 err = crypto_ahash_finup(&ctx->req);
129 else
130 err = crypto_ahash_digest(&ctx->req);
131 } else {
132 if (!ctx->more) {
133 err = crypto_ahash_init(&ctx->req);
134 if (err)
135 goto unlock;
136 }
137
138 err = crypto_ahash_update(&ctx->req);
139 }
140
141 err = af_alg_wait_for_completion(err, &ctx->completion);
142 if (err)
143 goto unlock;
144
145 ctx->more = flags & MSG_MORE;
146
147unlock:
148 release_sock(sk);
149
150 return err ?: size;
151}
152
153static int hash_recvmsg(struct kiocb *unused, struct socket *sock,
154 struct msghdr *msg, size_t len, int flags)
155{
156 struct sock *sk = sock->sk;
157 struct alg_sock *ask = alg_sk(sk);
158 struct hash_ctx *ctx = ask->private;
159 unsigned ds = crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req));
160 int err;
161
162 if (len > ds)
163 len = ds;
164 else if (len < ds)
165 msg->msg_flags |= MSG_TRUNC;
166
167 lock_sock(sk);
168 if (ctx->more) {
169 ctx->more = 0;
170 ahash_request_set_crypt(&ctx->req, NULL, ctx->result, 0);
171 err = af_alg_wait_for_completion(crypto_ahash_final(&ctx->req),
172 &ctx->completion);
173 if (err)
174 goto unlock;
175 }
176
177 err = memcpy_toiovec(msg->msg_iov, ctx->result, len);
178
179unlock:
180 release_sock(sk);
181
182 return err ?: len;
183}
184
185static int hash_accept(struct socket *sock, struct socket *newsock, int flags)
186{
187 struct sock *sk = sock->sk;
188 struct alg_sock *ask = alg_sk(sk);
189 struct hash_ctx *ctx = ask->private;
190 struct ahash_request *req = &ctx->req;
191 char state[crypto_ahash_statesize(crypto_ahash_reqtfm(req))];
192 struct sock *sk2;
193 struct alg_sock *ask2;
194 struct hash_ctx *ctx2;
195 int err;
196
197 err = crypto_ahash_export(req, state);
198 if (err)
199 return err;
200
201 err = af_alg_accept(ask->parent, newsock);
202 if (err)
203 return err;
204
205 sk2 = newsock->sk;
206 ask2 = alg_sk(sk2);
207 ctx2 = ask2->private;
208 ctx2->more = 1;
209
210 err = crypto_ahash_import(&ctx2->req, state);
211 if (err) {
212 sock_orphan(sk2);
213 sock_put(sk2);
214 }
215
216 return err;
217}
218
219static struct proto_ops algif_hash_ops = {
220 .family = PF_ALG,
221
222 .connect = sock_no_connect,
223 .socketpair = sock_no_socketpair,
224 .getname = sock_no_getname,
225 .ioctl = sock_no_ioctl,
226 .listen = sock_no_listen,
227 .shutdown = sock_no_shutdown,
228 .getsockopt = sock_no_getsockopt,
229 .mmap = sock_no_mmap,
230 .bind = sock_no_bind,
231 .setsockopt = sock_no_setsockopt,
232 .poll = sock_no_poll,
233
234 .release = af_alg_release,
235 .sendmsg = hash_sendmsg,
236 .sendpage = hash_sendpage,
237 .recvmsg = hash_recvmsg,
238 .accept = hash_accept,
239};
240
241static void *hash_bind(const char *name, u32 type, u32 mask)
242{
243 return crypto_alloc_ahash(name, type, mask);
244}
245
246static void hash_release(void *private)
247{
248 crypto_free_ahash(private);
249}
250
251static int hash_setkey(void *private, const u8 *key, unsigned int keylen)
252{
253 return crypto_ahash_setkey(private, key, keylen);
254}
255
256static void hash_sock_destruct(struct sock *sk)
257{
258 struct alg_sock *ask = alg_sk(sk);
259 struct hash_ctx *ctx = ask->private;
260
261 sock_kfree_s(sk, ctx->result,
262 crypto_ahash_digestsize(crypto_ahash_reqtfm(&ctx->req)));
263 sock_kfree_s(sk, ctx, ctx->len);
264 af_alg_release_parent(sk);
265}
266
267static int hash_accept_parent(void *private, struct sock *sk)
268{
269 struct hash_ctx *ctx;
270 struct alg_sock *ask = alg_sk(sk);
271 unsigned len = sizeof(*ctx) + crypto_ahash_reqsize(private);
272 unsigned ds = crypto_ahash_digestsize(private);
273
274 ctx = sock_kmalloc(sk, len, GFP_KERNEL);
275 if (!ctx)
276 return -ENOMEM;
277
278 ctx->result = sock_kmalloc(sk, ds, GFP_KERNEL);
279 if (!ctx->result) {
280 sock_kfree_s(sk, ctx, len);
281 return -ENOMEM;
282 }
283
284 memset(ctx->result, 0, ds);
285
286 ctx->len = len;
287 ctx->more = 0;
288 af_alg_init_completion(&ctx->completion);
289
290 ask->private = ctx;
291
292 ahash_request_set_tfm(&ctx->req, private);
293 ahash_request_set_callback(&ctx->req, CRYPTO_TFM_REQ_MAY_BACKLOG,
294 af_alg_complete, &ctx->completion);
295
296 sk->sk_destruct = hash_sock_destruct;
297
298 return 0;
299}
300
301static const struct af_alg_type algif_type_hash = {
302 .bind = hash_bind,
303 .release = hash_release,
304 .setkey = hash_setkey,
305 .accept = hash_accept_parent,
306 .ops = &algif_hash_ops,
307 .name = "hash",
308 .owner = THIS_MODULE
309};
310
311static int __init algif_hash_init(void)
312{
313 return af_alg_register_type(&algif_type_hash);
314}
315
316static void __exit algif_hash_exit(void)
317{
318 int err = af_alg_unregister_type(&algif_type_hash);
319 BUG_ON(err);
320}
321
322module_init(algif_hash_init);
323module_exit(algif_hash_exit);
324MODULE_LICENSE("GPL");