Loading...
1/* SPDX-License-Identifier: GPL-2.0-or-later */
2/*
3 * if_alg: User-space algorithm interface
4 *
5 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
6 */
7
8#ifndef _CRYPTO_IF_ALG_H
9#define _CRYPTO_IF_ALG_H
10
11#include <linux/compiler.h>
12#include <linux/completion.h>
13#include <linux/if_alg.h>
14#include <linux/scatterlist.h>
15#include <linux/types.h>
16#include <linux/atomic.h>
17#include <net/sock.h>
18
19#include <crypto/aead.h>
20#include <crypto/skcipher.h>
21
22#define ALG_MAX_PAGES 16
23
24struct crypto_async_request;
25
26struct alg_sock {
27 /* struct sock must be the first member of struct alg_sock */
28 struct sock sk;
29
30 struct sock *parent;
31
32 unsigned int refcnt;
33 unsigned int nokey_refcnt;
34
35 const struct af_alg_type *type;
36 void *private;
37};
38
39struct af_alg_control {
40 struct af_alg_iv *iv;
41 int op;
42 unsigned int aead_assoclen;
43};
44
45struct af_alg_type {
46 void *(*bind)(const char *name, u32 type, u32 mask);
47 void (*release)(void *private);
48 int (*setkey)(void *private, const u8 *key, unsigned int keylen);
49 int (*accept)(void *private, struct sock *sk);
50 int (*accept_nokey)(void *private, struct sock *sk);
51 int (*setauthsize)(void *private, unsigned int authsize);
52
53 struct proto_ops *ops;
54 struct proto_ops *ops_nokey;
55 struct module *owner;
56 char name[14];
57};
58
59struct af_alg_sgl {
60 struct scatterlist sg[ALG_MAX_PAGES + 1];
61 struct page *pages[ALG_MAX_PAGES];
62 unsigned int npages;
63};
64
65/* TX SGL entry */
66struct af_alg_tsgl {
67 struct list_head list;
68 unsigned int cur; /* Last processed SG entry */
69 struct scatterlist sg[0]; /* Array of SGs forming the SGL */
70};
71
72#define MAX_SGL_ENTS ((4096 - sizeof(struct af_alg_tsgl)) / \
73 sizeof(struct scatterlist) - 1)
74
75/* RX SGL entry */
76struct af_alg_rsgl {
77 struct af_alg_sgl sgl;
78 struct list_head list;
79 size_t sg_num_bytes; /* Bytes of data in that SGL */
80};
81
82/**
83 * struct af_alg_async_req - definition of crypto request
84 * @iocb: IOCB for AIO operations
85 * @sk: Socket the request is associated with
86 * @first_rsgl: First RX SG
87 * @last_rsgl: Pointer to last RX SG
88 * @rsgl_list: Track RX SGs
89 * @tsgl: Private, per request TX SGL of buffers to process
90 * @tsgl_entries: Number of entries in priv. TX SGL
91 * @outlen: Number of output bytes generated by crypto op
92 * @areqlen: Length of this data structure
93 * @cra_u: Cipher request
94 */
95struct af_alg_async_req {
96 struct kiocb *iocb;
97 struct sock *sk;
98
99 struct af_alg_rsgl first_rsgl;
100 struct af_alg_rsgl *last_rsgl;
101 struct list_head rsgl_list;
102
103 struct scatterlist *tsgl;
104 unsigned int tsgl_entries;
105
106 unsigned int outlen;
107 unsigned int areqlen;
108
109 union {
110 struct aead_request aead_req;
111 struct skcipher_request skcipher_req;
112 } cra_u;
113
114 /* req ctx trails this struct */
115};
116
117/**
118 * struct af_alg_ctx - definition of the crypto context
119 *
120 * The crypto context tracks the input data during the lifetime of an AF_ALG
121 * socket.
122 *
123 * @tsgl_list: Link to TX SGL
124 * @iv: IV for cipher operation
125 * @aead_assoclen: Length of AAD for AEAD cipher operations
126 * @completion: Work queue for synchronous operation
127 * @used: TX bytes sent to kernel. This variable is used to
128 * ensure that user space cannot cause the kernel
129 * to allocate too much memory in sendmsg operation.
130 * @rcvused: Total RX bytes to be filled by kernel. This variable
131 * is used to ensure user space cannot cause the kernel
132 * to allocate too much memory in a recvmsg operation.
133 * @more: More data to be expected from user space?
134 * @merge: Shall new data from user space be merged into existing
135 * SG?
136 * @enc: Cryptographic operation to be performed when
137 * recvmsg is invoked.
138 * @len: Length of memory allocated for this data structure.
139 */
140struct af_alg_ctx {
141 struct list_head tsgl_list;
142
143 void *iv;
144 size_t aead_assoclen;
145
146 struct crypto_wait wait;
147
148 size_t used;
149 atomic_t rcvused;
150
151 bool more;
152 bool merge;
153 bool enc;
154
155 unsigned int len;
156};
157
158int af_alg_register_type(const struct af_alg_type *type);
159int af_alg_unregister_type(const struct af_alg_type *type);
160
161int af_alg_release(struct socket *sock);
162void af_alg_release_parent(struct sock *sk);
163int af_alg_accept(struct sock *sk, struct socket *newsock, bool kern);
164
165int af_alg_make_sg(struct af_alg_sgl *sgl, struct iov_iter *iter, int len);
166void af_alg_free_sg(struct af_alg_sgl *sgl);
167
168static inline struct alg_sock *alg_sk(struct sock *sk)
169{
170 return (struct alg_sock *)sk;
171}
172
173/**
174 * Size of available buffer for sending data from user space to kernel.
175 *
176 * @sk socket of connection to user space
177 * @return number of bytes still available
178 */
179static inline int af_alg_sndbuf(struct sock *sk)
180{
181 struct alg_sock *ask = alg_sk(sk);
182 struct af_alg_ctx *ctx = ask->private;
183
184 return max_t(int, max_t(int, sk->sk_sndbuf & PAGE_MASK, PAGE_SIZE) -
185 ctx->used, 0);
186}
187
188/**
189 * Can the send buffer still be written to?
190 *
191 * @sk socket of connection to user space
192 * @return true => writable, false => not writable
193 */
194static inline bool af_alg_writable(struct sock *sk)
195{
196 return PAGE_SIZE <= af_alg_sndbuf(sk);
197}
198
199/**
200 * Size of available buffer used by kernel for the RX user space operation.
201 *
202 * @sk socket of connection to user space
203 * @return number of bytes still available
204 */
205static inline int af_alg_rcvbuf(struct sock *sk)
206{
207 struct alg_sock *ask = alg_sk(sk);
208 struct af_alg_ctx *ctx = ask->private;
209
210 return max_t(int, max_t(int, sk->sk_rcvbuf & PAGE_MASK, PAGE_SIZE) -
211 atomic_read(&ctx->rcvused), 0);
212}
213
214/**
215 * Can the RX buffer still be written to?
216 *
217 * @sk socket of connection to user space
218 * @return true => writable, false => not writable
219 */
220static inline bool af_alg_readable(struct sock *sk)
221{
222 return PAGE_SIZE <= af_alg_rcvbuf(sk);
223}
224
225unsigned int af_alg_count_tsgl(struct sock *sk, size_t bytes, size_t offset);
226void af_alg_pull_tsgl(struct sock *sk, size_t used, struct scatterlist *dst,
227 size_t dst_offset);
228void af_alg_wmem_wakeup(struct sock *sk);
229int af_alg_wait_for_data(struct sock *sk, unsigned flags);
230int af_alg_sendmsg(struct socket *sock, struct msghdr *msg, size_t size,
231 unsigned int ivsize);
232ssize_t af_alg_sendpage(struct socket *sock, struct page *page,
233 int offset, size_t size, int flags);
234void af_alg_free_resources(struct af_alg_async_req *areq);
235void af_alg_async_cb(struct crypto_async_request *_req, int err);
236__poll_t af_alg_poll(struct file *file, struct socket *sock,
237 poll_table *wait);
238struct af_alg_async_req *af_alg_alloc_areq(struct sock *sk,
239 unsigned int areqlen);
240int af_alg_get_rsgl(struct sock *sk, struct msghdr *msg, int flags,
241 struct af_alg_async_req *areq, size_t maxsize,
242 size_t *outlen);
243
244#endif /* _CRYPTO_IF_ALG_H */
1/* SPDX-License-Identifier: GPL-2.0-or-later */
2/*
3 * if_alg: User-space algorithm interface
4 *
5 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
6 */
7
8#ifndef _CRYPTO_IF_ALG_H
9#define _CRYPTO_IF_ALG_H
10
11#include <linux/compiler.h>
12#include <linux/completion.h>
13#include <linux/if_alg.h>
14#include <linux/scatterlist.h>
15#include <linux/types.h>
16#include <linux/atomic.h>
17#include <net/sock.h>
18
19#include <crypto/aead.h>
20#include <crypto/skcipher.h>
21
22#define ALG_MAX_PAGES 16
23
24struct crypto_async_request;
25
26struct alg_sock {
27 /* struct sock must be the first member of struct alg_sock */
28 struct sock sk;
29
30 struct sock *parent;
31
32 atomic_t refcnt;
33 atomic_t nokey_refcnt;
34
35 const struct af_alg_type *type;
36 void *private;
37};
38
39struct af_alg_control {
40 struct af_alg_iv *iv;
41 int op;
42 unsigned int aead_assoclen;
43};
44
45struct af_alg_type {
46 void *(*bind)(const char *name, u32 type, u32 mask);
47 void (*release)(void *private);
48 int (*setkey)(void *private, const u8 *key, unsigned int keylen);
49 int (*setentropy)(void *private, sockptr_t entropy, unsigned int len);
50 int (*accept)(void *private, struct sock *sk);
51 int (*accept_nokey)(void *private, struct sock *sk);
52 int (*setauthsize)(void *private, unsigned int authsize);
53
54 struct proto_ops *ops;
55 struct proto_ops *ops_nokey;
56 struct module *owner;
57 char name[14];
58};
59
60struct af_alg_sgl {
61 struct scatterlist sg[ALG_MAX_PAGES + 1];
62 struct page *pages[ALG_MAX_PAGES];
63 unsigned int npages;
64};
65
66/* TX SGL entry */
67struct af_alg_tsgl {
68 struct list_head list;
69 unsigned int cur; /* Last processed SG entry */
70 struct scatterlist sg[]; /* Array of SGs forming the SGL */
71};
72
73#define MAX_SGL_ENTS ((4096 - sizeof(struct af_alg_tsgl)) / \
74 sizeof(struct scatterlist) - 1)
75
76/* RX SGL entry */
77struct af_alg_rsgl {
78 struct af_alg_sgl sgl;
79 struct list_head list;
80 size_t sg_num_bytes; /* Bytes of data in that SGL */
81};
82
83/**
84 * struct af_alg_async_req - definition of crypto request
85 * @iocb: IOCB for AIO operations
86 * @sk: Socket the request is associated with
87 * @first_rsgl: First RX SG
88 * @last_rsgl: Pointer to last RX SG
89 * @rsgl_list: Track RX SGs
90 * @tsgl: Private, per request TX SGL of buffers to process
91 * @tsgl_entries: Number of entries in priv. TX SGL
92 * @outlen: Number of output bytes generated by crypto op
93 * @areqlen: Length of this data structure
94 * @cra_u: Cipher request
95 */
96struct af_alg_async_req {
97 struct kiocb *iocb;
98 struct sock *sk;
99
100 struct af_alg_rsgl first_rsgl;
101 struct af_alg_rsgl *last_rsgl;
102 struct list_head rsgl_list;
103
104 struct scatterlist *tsgl;
105 unsigned int tsgl_entries;
106
107 unsigned int outlen;
108 unsigned int areqlen;
109
110 union {
111 struct aead_request aead_req;
112 struct skcipher_request skcipher_req;
113 } cra_u;
114
115 /* req ctx trails this struct */
116};
117
118/**
119 * struct af_alg_ctx - definition of the crypto context
120 *
121 * The crypto context tracks the input data during the lifetime of an AF_ALG
122 * socket.
123 *
124 * @tsgl_list: Link to TX SGL
125 * @iv: IV for cipher operation
126 * @aead_assoclen: Length of AAD for AEAD cipher operations
127 * @completion: Work queue for synchronous operation
128 * @used: TX bytes sent to kernel. This variable is used to
129 * ensure that user space cannot cause the kernel
130 * to allocate too much memory in sendmsg operation.
131 * @rcvused: Total RX bytes to be filled by kernel. This variable
132 * is used to ensure user space cannot cause the kernel
133 * to allocate too much memory in a recvmsg operation.
134 * @more: More data to be expected from user space?
135 * @merge: Shall new data from user space be merged into existing
136 * SG?
137 * @enc: Cryptographic operation to be performed when
138 * recvmsg is invoked.
139 * @init: True if metadata has been sent.
140 * @len: Length of memory allocated for this data structure.
141 */
142struct af_alg_ctx {
143 struct list_head tsgl_list;
144
145 void *iv;
146 size_t aead_assoclen;
147
148 struct crypto_wait wait;
149
150 size_t used;
151 atomic_t rcvused;
152
153 bool more;
154 bool merge;
155 bool enc;
156 bool init;
157
158 unsigned int len;
159};
160
161int af_alg_register_type(const struct af_alg_type *type);
162int af_alg_unregister_type(const struct af_alg_type *type);
163
164int af_alg_release(struct socket *sock);
165void af_alg_release_parent(struct sock *sk);
166int af_alg_accept(struct sock *sk, struct socket *newsock, bool kern);
167
168int af_alg_make_sg(struct af_alg_sgl *sgl, struct iov_iter *iter, int len);
169void af_alg_free_sg(struct af_alg_sgl *sgl);
170
171static inline struct alg_sock *alg_sk(struct sock *sk)
172{
173 return (struct alg_sock *)sk;
174}
175
176/**
177 * Size of available buffer for sending data from user space to kernel.
178 *
179 * @sk socket of connection to user space
180 * @return number of bytes still available
181 */
182static inline int af_alg_sndbuf(struct sock *sk)
183{
184 struct alg_sock *ask = alg_sk(sk);
185 struct af_alg_ctx *ctx = ask->private;
186
187 return max_t(int, max_t(int, sk->sk_sndbuf & PAGE_MASK, PAGE_SIZE) -
188 ctx->used, 0);
189}
190
191/**
192 * Can the send buffer still be written to?
193 *
194 * @sk socket of connection to user space
195 * @return true => writable, false => not writable
196 */
197static inline bool af_alg_writable(struct sock *sk)
198{
199 return PAGE_SIZE <= af_alg_sndbuf(sk);
200}
201
202/**
203 * Size of available buffer used by kernel for the RX user space operation.
204 *
205 * @sk socket of connection to user space
206 * @return number of bytes still available
207 */
208static inline int af_alg_rcvbuf(struct sock *sk)
209{
210 struct alg_sock *ask = alg_sk(sk);
211 struct af_alg_ctx *ctx = ask->private;
212
213 return max_t(int, max_t(int, sk->sk_rcvbuf & PAGE_MASK, PAGE_SIZE) -
214 atomic_read(&ctx->rcvused), 0);
215}
216
217/**
218 * Can the RX buffer still be written to?
219 *
220 * @sk socket of connection to user space
221 * @return true => writable, false => not writable
222 */
223static inline bool af_alg_readable(struct sock *sk)
224{
225 return PAGE_SIZE <= af_alg_rcvbuf(sk);
226}
227
228unsigned int af_alg_count_tsgl(struct sock *sk, size_t bytes, size_t offset);
229void af_alg_pull_tsgl(struct sock *sk, size_t used, struct scatterlist *dst,
230 size_t dst_offset);
231void af_alg_wmem_wakeup(struct sock *sk);
232int af_alg_wait_for_data(struct sock *sk, unsigned flags, unsigned min);
233int af_alg_sendmsg(struct socket *sock, struct msghdr *msg, size_t size,
234 unsigned int ivsize);
235ssize_t af_alg_sendpage(struct socket *sock, struct page *page,
236 int offset, size_t size, int flags);
237void af_alg_free_resources(struct af_alg_async_req *areq);
238void af_alg_async_cb(struct crypto_async_request *_req, int err);
239__poll_t af_alg_poll(struct file *file, struct socket *sock,
240 poll_table *wait);
241struct af_alg_async_req *af_alg_alloc_areq(struct sock *sk,
242 unsigned int areqlen);
243int af_alg_get_rsgl(struct sock *sk, struct msghdr *msg, int flags,
244 struct af_alg_async_req *areq, size_t maxsize,
245 size_t *outlen);
246
247#endif /* _CRYPTO_IF_ALG_H */