drivers/crypto/chelsio/chcr_algo.c at v4.13-rc3

tjh.dev / kernel
fork
Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel os linux
fork
kernel / drivers / crypto / chelsio / chcr_algo.c
at v4.13-rc3 3724 lines 110 kB view raw
wrap content
   1/*
   2 * This file is part of the Chelsio T6 Crypto driver for Linux.
   3 *
   4 * Copyright (c) 2003-2016 Chelsio Communications, Inc. All rights reserved.
   5 *
   6 * This software is available to you under a choice of one of two
   7 * licenses.  You may choose to be licensed under the terms of the GNU
   8 * General Public License (GPL) Version 2, available from the file
   9 * COPYING in the main directory of this source tree, or the
  10 * OpenIB.org BSD license below:
  11 *
  12 *     Redistribution and use in source and binary forms, with or
  13 *     without modification, are permitted provided that the following
  14 *     conditions are met:
  15 *
  16 *      - Redistributions of source code must retain the above
  17 *        copyright notice, this list of conditions and the following
  18 *        disclaimer.
  19 *
  20 *      - Redistributions in binary form must reproduce the above
  21 *        copyright notice, this list of conditions and the following
  22 *        disclaimer in the documentation and/or other materials
  23 *        provided with the distribution.
  24 *
  25 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
  26 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
  27 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
  28 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
  29 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
  30 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
  31 * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
  32 * SOFTWARE.
  33 *
  34 * Written and Maintained by:
  35 *	Manoj Malviya (manojmalviya@chelsio.com)
  36 *	Atul Gupta (atul.gupta@chelsio.com)
  37 *	Jitendra Lulla (jlulla@chelsio.com)
  38 *	Yeshaswi M R Gowda (yeshaswi@chelsio.com)
  39 *	Harsh Jain (harsh@chelsio.com)
  40 */
  41
  42#define pr_fmt(fmt) "chcr:" fmt
  43
  44#include <linux/kernel.h>
  45#include <linux/module.h>
  46#include <linux/crypto.h>
  47#include <linux/cryptohash.h>
  48#include <linux/skbuff.h>
  49#include <linux/rtnetlink.h>
  50#include <linux/highmem.h>
  51#include <linux/scatterlist.h>
  52
  53#include <crypto/aes.h>
  54#include <crypto/algapi.h>
  55#include <crypto/hash.h>
  56#include <crypto/sha.h>
  57#include <crypto/authenc.h>
  58#include <crypto/ctr.h>
  59#include <crypto/gf128mul.h>
  60#include <crypto/internal/aead.h>
  61#include <crypto/null.h>
  62#include <crypto/internal/skcipher.h>
  63#include <crypto/aead.h>
  64#include <crypto/scatterwalk.h>
  65#include <crypto/internal/hash.h>
  66
  67#include "t4fw_api.h"
  68#include "t4_msg.h"
  69#include "chcr_core.h"
  70#include "chcr_algo.h"
  71#include "chcr_crypto.h"
  72
  73static inline  struct chcr_aead_ctx *AEAD_CTX(struct chcr_context *ctx)
  74{
  75	return ctx->crypto_ctx->aeadctx;
  76}
  77
  78static inline struct ablk_ctx *ABLK_CTX(struct chcr_context *ctx)
  79{
  80	return ctx->crypto_ctx->ablkctx;
  81}
  82
  83static inline struct hmac_ctx *HMAC_CTX(struct chcr_context *ctx)
  84{
  85	return ctx->crypto_ctx->hmacctx;
  86}
  87
  88static inline struct chcr_gcm_ctx *GCM_CTX(struct chcr_aead_ctx *gctx)
  89{
  90	return gctx->ctx->gcm;
  91}
  92
  93static inline struct chcr_authenc_ctx *AUTHENC_CTX(struct chcr_aead_ctx *gctx)
  94{
  95	return gctx->ctx->authenc;
  96}
  97
  98static inline struct uld_ctx *ULD_CTX(struct chcr_context *ctx)
  99{
 100	return ctx->dev->u_ctx;
 101}
 102
 103static inline int is_ofld_imm(const struct sk_buff *skb)
 104{
 105	return (skb->len <= CRYPTO_MAX_IMM_TX_PKT_LEN);
 106}
 107
 108/*
 109 *	sgl_len - calculates the size of an SGL of the given capacity
 110 *	@n: the number of SGL entries
 111 *	Calculates the number of flits needed for a scatter/gather list that
 112 *	can hold the given number of entries.
 113 */
 114static inline unsigned int sgl_len(unsigned int n)
 115{
 116	n--;
 117	return (3 * n) / 2 + (n & 1) + 2;
 118}
 119
 120static void chcr_verify_tag(struct aead_request *req, u8 *input, int *err)
 121{
 122	u8 temp[SHA512_DIGEST_SIZE];
 123	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
 124	int authsize = crypto_aead_authsize(tfm);
 125	struct cpl_fw6_pld *fw6_pld;
 126	int cmp = 0;
 127
 128	fw6_pld = (struct cpl_fw6_pld *)input;
 129	if ((get_aead_subtype(tfm) == CRYPTO_ALG_SUB_TYPE_AEAD_RFC4106) ||
 130	    (get_aead_subtype(tfm) == CRYPTO_ALG_SUB_TYPE_AEAD_GCM)) {
 131		cmp = crypto_memneq(&fw6_pld->data[2], (fw6_pld + 1), authsize);
 132	} else {
 133
 134		sg_pcopy_to_buffer(req->src, sg_nents(req->src), temp,
 135				authsize, req->assoclen +
 136				req->cryptlen - authsize);
 137		cmp = crypto_memneq(temp, (fw6_pld + 1), authsize);
 138	}
 139	if (cmp)
 140		*err = -EBADMSG;
 141	else
 142		*err = 0;
 143}
 144
 145/*
 146 *	chcr_handle_resp - Unmap the DMA buffers associated with the request
 147 *	@req: crypto request
 148 */
 149int chcr_handle_resp(struct crypto_async_request *req, unsigned char *input,
 150			 int err)
 151{
 152	struct crypto_tfm *tfm = req->tfm;
 153	struct chcr_context *ctx = crypto_tfm_ctx(tfm);
 154	struct uld_ctx *u_ctx = ULD_CTX(ctx);
 155	struct chcr_req_ctx ctx_req;
 156	unsigned int digestsize, updated_digestsize;
 157	struct adapter *adap = padap(ctx->dev);
 158
 159	switch (tfm->__crt_alg->cra_flags & CRYPTO_ALG_TYPE_MASK) {
 160	case CRYPTO_ALG_TYPE_AEAD:
 161		ctx_req.req.aead_req = aead_request_cast(req);
 162		ctx_req.ctx.reqctx = aead_request_ctx(ctx_req.req.aead_req);
 163		dma_unmap_sg(&u_ctx->lldi.pdev->dev, ctx_req.ctx.reqctx->dst,
 164			     ctx_req.ctx.reqctx->dst_nents, DMA_FROM_DEVICE);
 165		if (ctx_req.ctx.reqctx->skb) {
 166			kfree_skb(ctx_req.ctx.reqctx->skb);
 167			ctx_req.ctx.reqctx->skb = NULL;
 168		}
 169		free_new_sg(ctx_req.ctx.reqctx->newdstsg);
 170		ctx_req.ctx.reqctx->newdstsg = NULL;
 171		if (ctx_req.ctx.reqctx->verify == VERIFY_SW) {
 172			chcr_verify_tag(ctx_req.req.aead_req, input,
 173					&err);
 174			ctx_req.ctx.reqctx->verify = VERIFY_HW;
 175		}
 176		ctx_req.req.aead_req->base.complete(req, err);
 177		break;
 178
 179	case CRYPTO_ALG_TYPE_ABLKCIPHER:
 180		 err = chcr_handle_cipher_resp(ablkcipher_request_cast(req),
 181					       input, err);
 182		break;
 183
 184	case CRYPTO_ALG_TYPE_AHASH:
 185		ctx_req.req.ahash_req = ahash_request_cast(req);
 186		ctx_req.ctx.ahash_ctx =
 187			ahash_request_ctx(ctx_req.req.ahash_req);
 188		digestsize =
 189			crypto_ahash_digestsize(crypto_ahash_reqtfm(
 190							ctx_req.req.ahash_req));
 191		updated_digestsize = digestsize;
 192		if (digestsize == SHA224_DIGEST_SIZE)
 193			updated_digestsize = SHA256_DIGEST_SIZE;
 194		else if (digestsize == SHA384_DIGEST_SIZE)
 195			updated_digestsize = SHA512_DIGEST_SIZE;
 196		if (ctx_req.ctx.ahash_ctx->skb) {
 197			kfree_skb(ctx_req.ctx.ahash_ctx->skb);
 198			ctx_req.ctx.ahash_ctx->skb = NULL;
 199		}
 200		if (ctx_req.ctx.ahash_ctx->result == 1) {
 201			ctx_req.ctx.ahash_ctx->result = 0;
 202			memcpy(ctx_req.req.ahash_req->result, input +
 203			       sizeof(struct cpl_fw6_pld),
 204			       digestsize);
 205		} else {
 206			memcpy(ctx_req.ctx.ahash_ctx->partial_hash, input +
 207			       sizeof(struct cpl_fw6_pld),
 208			       updated_digestsize);
 209		}
 210		ctx_req.req.ahash_req->base.complete(req, err);
 211		break;
 212	}
 213	atomic_inc(&adap->chcr_stats.complete);
 214	return err;
 215}
 216
 217/*
 218 *	calc_tx_flits_ofld - calculate # of flits for an offload packet
 219 *	@skb: the packet
 220 *	Returns the number of flits needed for the given offload packet.
 221 *	These packets are already fully constructed and no additional headers
 222 *	will be added.
 223 */
 224static inline unsigned int calc_tx_flits_ofld(const struct sk_buff *skb)
 225{
 226	unsigned int flits, cnt;
 227
 228	if (is_ofld_imm(skb))
 229		return DIV_ROUND_UP(skb->len, 8);
 230
 231	flits = skb_transport_offset(skb) / 8;   /* headers */
 232	cnt = skb_shinfo(skb)->nr_frags;
 233	if (skb_tail_pointer(skb) != skb_transport_header(skb))
 234		cnt++;
 235	return flits + sgl_len(cnt);
 236}
 237
 238static inline void get_aes_decrypt_key(unsigned char *dec_key,
 239				       const unsigned char *key,
 240				       unsigned int keylength)
 241{
 242	u32 temp;
 243	u32 w_ring[MAX_NK];
 244	int i, j, k;
 245	u8  nr, nk;
 246
 247	switch (keylength) {
 248	case AES_KEYLENGTH_128BIT:
 249		nk = KEYLENGTH_4BYTES;
 250		nr = NUMBER_OF_ROUNDS_10;
 251		break;
 252	case AES_KEYLENGTH_192BIT:
 253		nk = KEYLENGTH_6BYTES;
 254		nr = NUMBER_OF_ROUNDS_12;
 255		break;
 256	case AES_KEYLENGTH_256BIT:
 257		nk = KEYLENGTH_8BYTES;
 258		nr = NUMBER_OF_ROUNDS_14;
 259		break;
 260	default:
 261		return;
 262	}
 263	for (i = 0; i < nk; i++)
 264		w_ring[i] = be32_to_cpu(*(u32 *)&key[4 * i]);
 265
 266	i = 0;
 267	temp = w_ring[nk - 1];
 268	while (i + nk < (nr + 1) * 4) {
 269		if (!(i % nk)) {
 270			/* RotWord(temp) */
 271			temp = (temp << 8) | (temp >> 24);
 272			temp = aes_ks_subword(temp);
 273			temp ^= round_constant[i / nk];
 274		} else if (nk == 8 && (i % 4 == 0)) {
 275			temp = aes_ks_subword(temp);
 276		}
 277		w_ring[i % nk] ^= temp;
 278		temp = w_ring[i % nk];
 279		i++;
 280	}
 281	i--;
 282	for (k = 0, j = i % nk; k < nk; k++) {
 283		*((u32 *)dec_key + k) = htonl(w_ring[j]);
 284		j--;
 285		if (j < 0)
 286			j += nk;
 287	}
 288}
 289
 290static struct crypto_shash *chcr_alloc_shash(unsigned int ds)
 291{
 292	struct crypto_shash *base_hash = ERR_PTR(-EINVAL);
 293
 294	switch (ds) {
 295	case SHA1_DIGEST_SIZE:
 296		base_hash = crypto_alloc_shash("sha1", 0, 0);
 297		break;
 298	case SHA224_DIGEST_SIZE:
 299		base_hash = crypto_alloc_shash("sha224", 0, 0);
 300		break;
 301	case SHA256_DIGEST_SIZE:
 302		base_hash = crypto_alloc_shash("sha256", 0, 0);
 303		break;
 304	case SHA384_DIGEST_SIZE:
 305		base_hash = crypto_alloc_shash("sha384", 0, 0);
 306		break;
 307	case SHA512_DIGEST_SIZE:
 308		base_hash = crypto_alloc_shash("sha512", 0, 0);
 309		break;
 310	}
 311
 312	return base_hash;
 313}
 314
 315static int chcr_compute_partial_hash(struct shash_desc *desc,
 316				     char *iopad, char *result_hash,
 317				     int digest_size)
 318{
 319	struct sha1_state sha1_st;
 320	struct sha256_state sha256_st;
 321	struct sha512_state sha512_st;
 322	int error;
 323
 324	if (digest_size == SHA1_DIGEST_SIZE) {
 325		error = crypto_shash_init(desc) ?:
 326			crypto_shash_update(desc, iopad, SHA1_BLOCK_SIZE) ?:
 327			crypto_shash_export(desc, (void *)&sha1_st);
 328		memcpy(result_hash, sha1_st.state, SHA1_DIGEST_SIZE);
 329	} else if (digest_size == SHA224_DIGEST_SIZE) {
 330		error = crypto_shash_init(desc) ?:
 331			crypto_shash_update(desc, iopad, SHA256_BLOCK_SIZE) ?:
 332			crypto_shash_export(desc, (void *)&sha256_st);
 333		memcpy(result_hash, sha256_st.state, SHA256_DIGEST_SIZE);
 334
 335	} else if (digest_size == SHA256_DIGEST_SIZE) {
 336		error = crypto_shash_init(desc) ?:
 337			crypto_shash_update(desc, iopad, SHA256_BLOCK_SIZE) ?:
 338			crypto_shash_export(desc, (void *)&sha256_st);
 339		memcpy(result_hash, sha256_st.state, SHA256_DIGEST_SIZE);
 340
 341	} else if (digest_size == SHA384_DIGEST_SIZE) {
 342		error = crypto_shash_init(desc) ?:
 343			crypto_shash_update(desc, iopad, SHA512_BLOCK_SIZE) ?:
 344			crypto_shash_export(desc, (void *)&sha512_st);
 345		memcpy(result_hash, sha512_st.state, SHA512_DIGEST_SIZE);
 346
 347	} else if (digest_size == SHA512_DIGEST_SIZE) {
 348		error = crypto_shash_init(desc) ?:
 349			crypto_shash_update(desc, iopad, SHA512_BLOCK_SIZE) ?:
 350			crypto_shash_export(desc, (void *)&sha512_st);
 351		memcpy(result_hash, sha512_st.state, SHA512_DIGEST_SIZE);
 352	} else {
 353		error = -EINVAL;
 354		pr_err("Unknown digest size %d\n", digest_size);
 355	}
 356	return error;
 357}
 358
 359static void chcr_change_order(char *buf, int ds)
 360{
 361	int i;
 362
 363	if (ds == SHA512_DIGEST_SIZE) {
 364		for (i = 0; i < (ds / sizeof(u64)); i++)
 365			*((__be64 *)buf + i) =
 366				cpu_to_be64(*((u64 *)buf + i));
 367	} else {
 368		for (i = 0; i < (ds / sizeof(u32)); i++)
 369			*((__be32 *)buf + i) =
 370				cpu_to_be32(*((u32 *)buf + i));
 371	}
 372}
 373
 374static inline int is_hmac(struct crypto_tfm *tfm)
 375{
 376	struct crypto_alg *alg = tfm->__crt_alg;
 377	struct chcr_alg_template *chcr_crypto_alg =
 378		container_of(__crypto_ahash_alg(alg), struct chcr_alg_template,
 379			     alg.hash);
 380	if (chcr_crypto_alg->type == CRYPTO_ALG_TYPE_HMAC)
 381		return 1;
 382	return 0;
 383}
 384
 385static void write_phys_cpl(struct cpl_rx_phys_dsgl *phys_cpl,
 386			   struct scatterlist *sg,
 387			   struct phys_sge_parm *sg_param)
 388{
 389	struct phys_sge_pairs *to;
 390	unsigned int len = 0, left_size = sg_param->obsize;
 391	unsigned int nents = sg_param->nents, i, j = 0;
 392
 393	phys_cpl->op_to_tid = htonl(CPL_RX_PHYS_DSGL_OPCODE_V(CPL_RX_PHYS_DSGL)
 394				    | CPL_RX_PHYS_DSGL_ISRDMA_V(0));
 395	phys_cpl->pcirlxorder_to_noofsgentr =
 396		htonl(CPL_RX_PHYS_DSGL_PCIRLXORDER_V(0) |
 397		      CPL_RX_PHYS_DSGL_PCINOSNOOP_V(0) |
 398		      CPL_RX_PHYS_DSGL_PCITPHNTENB_V(0) |
 399		      CPL_RX_PHYS_DSGL_PCITPHNT_V(0) |
 400		      CPL_RX_PHYS_DSGL_DCAID_V(0) |
 401		      CPL_RX_PHYS_DSGL_NOOFSGENTR_V(nents));
 402	phys_cpl->rss_hdr_int.opcode = CPL_RX_PHYS_ADDR;
 403	phys_cpl->rss_hdr_int.qid = htons(sg_param->qid);
 404	phys_cpl->rss_hdr_int.hash_val = 0;
 405	to = (struct phys_sge_pairs *)((unsigned char *)phys_cpl +
 406				       sizeof(struct cpl_rx_phys_dsgl));
 407	for (i = 0; nents && left_size; to++) {
 408		for (j = 0; j < 8 && nents && left_size; j++, nents--) {
 409			len = min(left_size, sg_dma_len(sg));
 410			to->len[j] = htons(len);
 411			to->addr[j] = cpu_to_be64(sg_dma_address(sg));
 412			left_size -= len;
 413			sg = sg_next(sg);
 414		}
 415	}
 416}
 417
 418static inline int map_writesg_phys_cpl(struct device *dev,
 419					struct cpl_rx_phys_dsgl *phys_cpl,
 420					struct scatterlist *sg,
 421					struct phys_sge_parm *sg_param)
 422{
 423	if (!sg || !sg_param->nents)
 424		return -EINVAL;
 425
 426	sg_param->nents = dma_map_sg(dev, sg, sg_param->nents, DMA_FROM_DEVICE);
 427	if (sg_param->nents == 0) {
 428		pr_err("CHCR : DMA mapping failed\n");
 429		return -EINVAL;
 430	}
 431	write_phys_cpl(phys_cpl, sg, sg_param);
 432	return 0;
 433}
 434
 435static inline int get_aead_subtype(struct crypto_aead *aead)
 436{
 437	struct aead_alg *alg = crypto_aead_alg(aead);
 438	struct chcr_alg_template *chcr_crypto_alg =
 439		container_of(alg, struct chcr_alg_template, alg.aead);
 440	return chcr_crypto_alg->type & CRYPTO_ALG_SUB_TYPE_MASK;
 441}
 442
 443static inline int get_cryptoalg_subtype(struct crypto_tfm *tfm)
 444{
 445	struct crypto_alg *alg = tfm->__crt_alg;
 446	struct chcr_alg_template *chcr_crypto_alg =
 447		container_of(alg, struct chcr_alg_template, alg.crypto);
 448
 449	return chcr_crypto_alg->type & CRYPTO_ALG_SUB_TYPE_MASK;
 450}
 451
 452static inline void write_buffer_to_skb(struct sk_buff *skb,
 453					unsigned int *frags,
 454					char *bfr,
 455					u8 bfr_len)
 456{
 457	skb->len += bfr_len;
 458	skb->data_len += bfr_len;
 459	skb->truesize += bfr_len;
 460	get_page(virt_to_page(bfr));
 461	skb_fill_page_desc(skb, *frags, virt_to_page(bfr),
 462			   offset_in_page(bfr), bfr_len);
 463	(*frags)++;
 464}
 465
 466
 467static inline void
 468write_sg_to_skb(struct sk_buff *skb, unsigned int *frags,
 469			struct scatterlist *sg, unsigned int count)
 470{
 471	struct page *spage;
 472	unsigned int page_len;
 473
 474	skb->len += count;
 475	skb->data_len += count;
 476	skb->truesize += count;
 477
 478	while (count > 0) {
 479		if (!sg || (!(sg->length)))
 480			break;
 481		spage = sg_page(sg);
 482		get_page(spage);
 483		page_len = min(sg->length, count);
 484		skb_fill_page_desc(skb, *frags, spage, sg->offset, page_len);
 485		(*frags)++;
 486		count -= page_len;
 487		sg = sg_next(sg);
 488	}
 489}
 490
 491static int cxgb4_is_crypto_q_full(struct net_device *dev, unsigned int idx)
 492{
 493	struct adapter *adap = netdev2adap(dev);
 494	struct sge_uld_txq_info *txq_info =
 495		adap->sge.uld_txq_info[CXGB4_TX_CRYPTO];
 496	struct sge_uld_txq *txq;
 497	int ret = 0;
 498
 499	local_bh_disable();
 500	txq = &txq_info->uldtxq[idx];
 501	spin_lock(&txq->sendq.lock);
 502	if (txq->full)
 503		ret = -1;
 504	spin_unlock(&txq->sendq.lock);
 505	local_bh_enable();
 506	return ret;
 507}
 508
 509static int generate_copy_rrkey(struct ablk_ctx *ablkctx,
 510			       struct _key_ctx *key_ctx)
 511{
 512	if (ablkctx->ciph_mode == CHCR_SCMD_CIPHER_MODE_AES_CBC) {
 513		memcpy(key_ctx->key, ablkctx->rrkey, ablkctx->enckey_len);
 514	} else {
 515		memcpy(key_ctx->key,
 516		       ablkctx->key + (ablkctx->enckey_len >> 1),
 517		       ablkctx->enckey_len >> 1);
 518		memcpy(key_ctx->key + (ablkctx->enckey_len >> 1),
 519		       ablkctx->rrkey, ablkctx->enckey_len >> 1);
 520	}
 521	return 0;
 522}
 523static int chcr_sg_ent_in_wr(struct scatterlist *src,
 524			     struct scatterlist *dst,
 525			     unsigned int minsg,
 526			     unsigned int space,
 527			     short int *sent,
 528			     short int *dent)
 529{
 530	int srclen = 0, dstlen = 0;
 531	int srcsg = minsg, dstsg = 0;
 532
 533	*sent = 0;
 534	*dent = 0;
 535	while (src && dst && ((srcsg + 1) <= MAX_SKB_FRAGS) &&
 536	       space > (sgl_ent_len[srcsg + 1] + dsgl_ent_len[dstsg])) {
 537		srclen += src->length;
 538		srcsg++;
 539		while (dst && ((dstsg + 1) <= MAX_DSGL_ENT) &&
 540		       space > (sgl_ent_len[srcsg] + dsgl_ent_len[dstsg + 1])) {
 541			if (srclen <= dstlen)
 542				break;
 543			dstlen += dst->length;
 544			dst = sg_next(dst);
 545			dstsg++;
 546		}
 547		src = sg_next(src);
 548	}
 549	*sent = srcsg - minsg;
 550	*dent = dstsg;
 551	return min(srclen, dstlen);
 552}
 553
 554static int chcr_cipher_fallback(struct crypto_skcipher *cipher,
 555				u32 flags,
 556				struct scatterlist *src,
 557				struct scatterlist *dst,
 558				unsigned int nbytes,
 559				u8 *iv,
 560				unsigned short op_type)
 561{
 562	int err;
 563
 564	SKCIPHER_REQUEST_ON_STACK(subreq, cipher);
 565	skcipher_request_set_tfm(subreq, cipher);
 566	skcipher_request_set_callback(subreq, flags, NULL, NULL);
 567	skcipher_request_set_crypt(subreq, src, dst,
 568				   nbytes, iv);
 569
 570	err = op_type ? crypto_skcipher_decrypt(subreq) :
 571		crypto_skcipher_encrypt(subreq);
 572	skcipher_request_zero(subreq);
 573
 574	return err;
 575
 576}
 577static inline void create_wreq(struct chcr_context *ctx,
 578			       struct chcr_wr *chcr_req,
 579			       void *req, struct sk_buff *skb,
 580			       int kctx_len, int hash_sz,
 581			       int is_iv,
 582			       unsigned int sc_len,
 583			       unsigned int lcb)
 584{
 585	struct uld_ctx *u_ctx = ULD_CTX(ctx);
 586	int iv_loc = IV_DSGL;
 587	int qid = u_ctx->lldi.rxq_ids[ctx->rx_qidx];
 588	unsigned int immdatalen = 0, nr_frags = 0;
 589
 590	if (is_ofld_imm(skb)) {
 591		immdatalen = skb->data_len;
 592		iv_loc = IV_IMMEDIATE;
 593	} else {
 594		nr_frags = skb_shinfo(skb)->nr_frags;
 595	}
 596
 597	chcr_req->wreq.op_to_cctx_size = FILL_WR_OP_CCTX_SIZE(immdatalen,
 598				((sizeof(chcr_req->key_ctx) + kctx_len) >> 4));
 599	chcr_req->wreq.pld_size_hash_size =
 600		htonl(FW_CRYPTO_LOOKASIDE_WR_PLD_SIZE_V(sgl_lengths[nr_frags]) |
 601		      FW_CRYPTO_LOOKASIDE_WR_HASH_SIZE_V(hash_sz));
 602	chcr_req->wreq.len16_pkd =
 603		htonl(FW_CRYPTO_LOOKASIDE_WR_LEN16_V(DIV_ROUND_UP(
 604				    (calc_tx_flits_ofld(skb) * 8), 16)));
 605	chcr_req->wreq.cookie = cpu_to_be64((uintptr_t)req);
 606	chcr_req->wreq.rx_chid_to_rx_q_id =
 607		FILL_WR_RX_Q_ID(ctx->dev->rx_channel_id, qid,
 608				is_iv ? iv_loc : IV_NOP, !!lcb,
 609				ctx->tx_qidx);
 610
 611	chcr_req->ulptx.cmd_dest = FILL_ULPTX_CMD_DEST(ctx->dev->tx_channel_id,
 612						       qid);
 613	chcr_req->ulptx.len = htonl((DIV_ROUND_UP((calc_tx_flits_ofld(skb) * 8),
 614					16) - ((sizeof(chcr_req->wreq)) >> 4)));
 615
 616	chcr_req->sc_imm.cmd_more = FILL_CMD_MORE(immdatalen);
 617	chcr_req->sc_imm.len = cpu_to_be32(sizeof(struct cpl_tx_sec_pdu) +
 618				   sizeof(chcr_req->key_ctx) +
 619				   kctx_len + sc_len + immdatalen);
 620}
 621
 622/**
 623 *	create_cipher_wr - form the WR for cipher operations
 624 *	@req: cipher req.
 625 *	@ctx: crypto driver context of the request.
 626 *	@qid: ingress qid where response of this WR should be received.
 627 *	@op_type:	encryption or decryption
 628 */
 629static struct sk_buff *create_cipher_wr(struct cipher_wr_param *wrparam)
 630{
 631	struct crypto_ablkcipher *tfm = crypto_ablkcipher_reqtfm(wrparam->req);
 632	struct chcr_context *ctx = crypto_ablkcipher_ctx(tfm);
 633	struct uld_ctx *u_ctx = ULD_CTX(ctx);
 634	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
 635	struct sk_buff *skb = NULL;
 636	struct chcr_wr *chcr_req;
 637	struct cpl_rx_phys_dsgl *phys_cpl;
 638	struct chcr_blkcipher_req_ctx *reqctx =
 639		ablkcipher_request_ctx(wrparam->req);
 640	struct phys_sge_parm sg_param;
 641	unsigned int frags = 0, transhdr_len, phys_dsgl;
 642	int error;
 643	unsigned int ivsize = AES_BLOCK_SIZE, kctx_len;
 644	gfp_t flags = wrparam->req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP ?
 645			GFP_KERNEL : GFP_ATOMIC;
 646	struct adapter *adap = padap(ctx->dev);
 647
 648	phys_dsgl = get_space_for_phys_dsgl(reqctx->dst_nents);
 649
 650	kctx_len = (DIV_ROUND_UP(ablkctx->enckey_len, 16) * 16);
 651	transhdr_len = CIPHER_TRANSHDR_SIZE(kctx_len, phys_dsgl);
 652	skb = alloc_skb((transhdr_len + sizeof(struct sge_opaque_hdr)), flags);
 653	if (!skb) {
 654		error = -ENOMEM;
 655		goto err;
 656	}
 657	skb_reserve(skb, sizeof(struct sge_opaque_hdr));
 658	chcr_req = __skb_put_zero(skb, transhdr_len);
 659	chcr_req->sec_cpl.op_ivinsrtofst =
 660		FILL_SEC_CPL_OP_IVINSR(ctx->dev->rx_channel_id, 2, 1);
 661
 662	chcr_req->sec_cpl.pldlen = htonl(ivsize + wrparam->bytes);
 663	chcr_req->sec_cpl.aadstart_cipherstop_hi =
 664			FILL_SEC_CPL_CIPHERSTOP_HI(0, 0, ivsize + 1, 0);
 665
 666	chcr_req->sec_cpl.cipherstop_lo_authinsert =
 667			FILL_SEC_CPL_AUTHINSERT(0, 0, 0, 0);
 668	chcr_req->sec_cpl.seqno_numivs = FILL_SEC_CPL_SCMD0_SEQNO(reqctx->op, 0,
 669							 ablkctx->ciph_mode,
 670							 0, 0, ivsize >> 1);
 671	chcr_req->sec_cpl.ivgen_hdrlen = FILL_SEC_CPL_IVGEN_HDRLEN(0, 0, 0,
 672							  0, 1, phys_dsgl);
 673
 674	chcr_req->key_ctx.ctx_hdr = ablkctx->key_ctx_hdr;
 675	if ((reqctx->op == CHCR_DECRYPT_OP) &&
 676	    (!(get_cryptoalg_subtype(crypto_ablkcipher_tfm(tfm)) ==
 677	       CRYPTO_ALG_SUB_TYPE_CTR)) &&
 678	    (!(get_cryptoalg_subtype(crypto_ablkcipher_tfm(tfm)) ==
 679	       CRYPTO_ALG_SUB_TYPE_CTR_RFC3686))) {
 680		generate_copy_rrkey(ablkctx, &chcr_req->key_ctx);
 681	} else {
 682		if ((ablkctx->ciph_mode == CHCR_SCMD_CIPHER_MODE_AES_CBC) ||
 683		    (ablkctx->ciph_mode == CHCR_SCMD_CIPHER_MODE_AES_CTR)) {
 684			memcpy(chcr_req->key_ctx.key, ablkctx->key,
 685			       ablkctx->enckey_len);
 686		} else {
 687			memcpy(chcr_req->key_ctx.key, ablkctx->key +
 688			       (ablkctx->enckey_len >> 1),
 689			       ablkctx->enckey_len >> 1);
 690			memcpy(chcr_req->key_ctx.key +
 691			       (ablkctx->enckey_len >> 1),
 692			       ablkctx->key,
 693			       ablkctx->enckey_len >> 1);
 694		}
 695	}
 696	phys_cpl = (struct cpl_rx_phys_dsgl *)((u8 *)(chcr_req + 1) + kctx_len);
 697	sg_param.nents = reqctx->dst_nents;
 698	sg_param.obsize =  wrparam->bytes;
 699	sg_param.qid = wrparam->qid;
 700	error = map_writesg_phys_cpl(&u_ctx->lldi.pdev->dev, phys_cpl,
 701				       reqctx->dst, &sg_param);
 702	if (error)
 703		goto map_fail1;
 704
 705	skb_set_transport_header(skb, transhdr_len);
 706	write_buffer_to_skb(skb, &frags, reqctx->iv, ivsize);
 707	write_sg_to_skb(skb, &frags, wrparam->srcsg, wrparam->bytes);
 708	atomic_inc(&adap->chcr_stats.cipher_rqst);
 709	create_wreq(ctx, chcr_req, &(wrparam->req->base), skb, kctx_len, 0, 1,
 710			sizeof(struct cpl_rx_phys_dsgl) + phys_dsgl,
 711			ablkctx->ciph_mode == CHCR_SCMD_CIPHER_MODE_AES_CBC);
 712	reqctx->skb = skb;
 713	skb_get(skb);
 714	return skb;
 715map_fail1:
 716	kfree_skb(skb);
 717err:
 718	return ERR_PTR(error);
 719}
 720
 721static inline int chcr_keyctx_ck_size(unsigned int keylen)
 722{
 723	int ck_size = 0;
 724
 725	if (keylen == AES_KEYSIZE_128)
 726		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_128;
 727	else if (keylen == AES_KEYSIZE_192)
 728		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_192;
 729	else if (keylen == AES_KEYSIZE_256)
 730		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_256;
 731	else
 732		ck_size = 0;
 733
 734	return ck_size;
 735}
 736static int chcr_cipher_fallback_setkey(struct crypto_ablkcipher *cipher,
 737				       const u8 *key,
 738				       unsigned int keylen)
 739{
 740	struct crypto_tfm *tfm = crypto_ablkcipher_tfm(cipher);
 741	struct chcr_context *ctx = crypto_ablkcipher_ctx(cipher);
 742	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
 743	int err = 0;
 744
 745	crypto_skcipher_clear_flags(ablkctx->sw_cipher, CRYPTO_TFM_REQ_MASK);
 746	crypto_skcipher_set_flags(ablkctx->sw_cipher, cipher->base.crt_flags &
 747				  CRYPTO_TFM_REQ_MASK);
 748	err = crypto_skcipher_setkey(ablkctx->sw_cipher, key, keylen);
 749	tfm->crt_flags &= ~CRYPTO_TFM_RES_MASK;
 750	tfm->crt_flags |=
 751		crypto_skcipher_get_flags(ablkctx->sw_cipher) &
 752		CRYPTO_TFM_RES_MASK;
 753	return err;
 754}
 755
 756static int chcr_aes_cbc_setkey(struct crypto_ablkcipher *cipher,
 757			       const u8 *key,
 758			       unsigned int keylen)
 759{
 760	struct chcr_context *ctx = crypto_ablkcipher_ctx(cipher);
 761	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
 762	unsigned int ck_size, context_size;
 763	u16 alignment = 0;
 764	int err;
 765
 766	err = chcr_cipher_fallback_setkey(cipher, key, keylen);
 767	if (err)
 768		goto badkey_err;
 769
 770	ck_size = chcr_keyctx_ck_size(keylen);
 771	alignment = ck_size == CHCR_KEYCTX_CIPHER_KEY_SIZE_192 ? 8 : 0;
 772	memcpy(ablkctx->key, key, keylen);
 773	ablkctx->enckey_len = keylen;
 774	get_aes_decrypt_key(ablkctx->rrkey, ablkctx->key, keylen << 3);
 775	context_size = (KEY_CONTEXT_HDR_SALT_AND_PAD +
 776			keylen + alignment) >> 4;
 777
 778	ablkctx->key_ctx_hdr = FILL_KEY_CTX_HDR(ck_size, CHCR_KEYCTX_NO_KEY,
 779						0, 0, context_size);
 780	ablkctx->ciph_mode = CHCR_SCMD_CIPHER_MODE_AES_CBC;
 781	return 0;
 782badkey_err:
 783	crypto_ablkcipher_set_flags(cipher, CRYPTO_TFM_RES_BAD_KEY_LEN);
 784	ablkctx->enckey_len = 0;
 785
 786	return err;
 787}
 788
 789static int chcr_aes_ctr_setkey(struct crypto_ablkcipher *cipher,
 790				   const u8 *key,
 791				   unsigned int keylen)
 792{
 793	struct chcr_context *ctx = crypto_ablkcipher_ctx(cipher);
 794	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
 795	unsigned int ck_size, context_size;
 796	u16 alignment = 0;
 797	int err;
 798
 799	err = chcr_cipher_fallback_setkey(cipher, key, keylen);
 800	if (err)
 801		goto badkey_err;
 802	ck_size = chcr_keyctx_ck_size(keylen);
 803	alignment = (ck_size == CHCR_KEYCTX_CIPHER_KEY_SIZE_192) ? 8 : 0;
 804	memcpy(ablkctx->key, key, keylen);
 805	ablkctx->enckey_len = keylen;
 806	context_size = (KEY_CONTEXT_HDR_SALT_AND_PAD +
 807			keylen + alignment) >> 4;
 808
 809	ablkctx->key_ctx_hdr = FILL_KEY_CTX_HDR(ck_size, CHCR_KEYCTX_NO_KEY,
 810						0, 0, context_size);
 811	ablkctx->ciph_mode = CHCR_SCMD_CIPHER_MODE_AES_CTR;
 812
 813	return 0;
 814badkey_err:
 815	crypto_ablkcipher_set_flags(cipher, CRYPTO_TFM_RES_BAD_KEY_LEN);
 816	ablkctx->enckey_len = 0;
 817
 818	return err;
 819}
 820
 821static int chcr_aes_rfc3686_setkey(struct crypto_ablkcipher *cipher,
 822				   const u8 *key,
 823				   unsigned int keylen)
 824{
 825	struct chcr_context *ctx = crypto_ablkcipher_ctx(cipher);
 826	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
 827	unsigned int ck_size, context_size;
 828	u16 alignment = 0;
 829	int err;
 830
 831	if (keylen < CTR_RFC3686_NONCE_SIZE)
 832		return -EINVAL;
 833	memcpy(ablkctx->nonce, key + (keylen - CTR_RFC3686_NONCE_SIZE),
 834	       CTR_RFC3686_NONCE_SIZE);
 835
 836	keylen -= CTR_RFC3686_NONCE_SIZE;
 837	err = chcr_cipher_fallback_setkey(cipher, key, keylen);
 838	if (err)
 839		goto badkey_err;
 840
 841	ck_size = chcr_keyctx_ck_size(keylen);
 842	alignment = (ck_size == CHCR_KEYCTX_CIPHER_KEY_SIZE_192) ? 8 : 0;
 843	memcpy(ablkctx->key, key, keylen);
 844	ablkctx->enckey_len = keylen;
 845	context_size = (KEY_CONTEXT_HDR_SALT_AND_PAD +
 846			keylen + alignment) >> 4;
 847
 848	ablkctx->key_ctx_hdr = FILL_KEY_CTX_HDR(ck_size, CHCR_KEYCTX_NO_KEY,
 849						0, 0, context_size);
 850	ablkctx->ciph_mode = CHCR_SCMD_CIPHER_MODE_AES_CTR;
 851
 852	return 0;
 853badkey_err:
 854	crypto_ablkcipher_set_flags(cipher, CRYPTO_TFM_RES_BAD_KEY_LEN);
 855	ablkctx->enckey_len = 0;
 856
 857	return err;
 858}
 859static void ctr_add_iv(u8 *dstiv, u8 *srciv, u32 add)
 860{
 861	unsigned int size = AES_BLOCK_SIZE;
 862	__be32 *b = (__be32 *)(dstiv + size);
 863	u32 c, prev;
 864
 865	memcpy(dstiv, srciv, AES_BLOCK_SIZE);
 866	for (; size >= 4; size -= 4) {
 867		prev = be32_to_cpu(*--b);
 868		c = prev + add;
 869		*b = cpu_to_be32(c);
 870		if (prev < c)
 871			break;
 872		add = 1;
 873	}
 874
 875}
 876
 877static unsigned int adjust_ctr_overflow(u8 *iv, u32 bytes)
 878{
 879	__be32 *b = (__be32 *)(iv + AES_BLOCK_SIZE);
 880	u64 c;
 881	u32 temp = be32_to_cpu(*--b);
 882
 883	temp = ~temp;
 884	c = (u64)temp +  1; // No of block can processed withou overflow
 885	if ((bytes / AES_BLOCK_SIZE) > c)
 886		bytes = c * AES_BLOCK_SIZE;
 887	return bytes;
 888}
 889
 890static int chcr_update_tweak(struct ablkcipher_request *req, u8 *iv)
 891{
 892	struct crypto_ablkcipher *tfm = crypto_ablkcipher_reqtfm(req);
 893	struct chcr_context *ctx = crypto_ablkcipher_ctx(tfm);
 894	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
 895	struct chcr_blkcipher_req_ctx *reqctx = ablkcipher_request_ctx(req);
 896	struct crypto_cipher *cipher;
 897	int ret, i;
 898	u8 *key;
 899	unsigned int keylen;
 900
 901	cipher = ablkctx->aes_generic;
 902	memcpy(iv, req->info, AES_BLOCK_SIZE);
 903
 904	keylen = ablkctx->enckey_len / 2;
 905	key = ablkctx->key + keylen;
 906	ret = crypto_cipher_setkey(cipher, key, keylen);
 907	if (ret)
 908		goto out;
 909
 910	crypto_cipher_encrypt_one(cipher, iv, iv);
 911	for (i = 0; i < (reqctx->processed / AES_BLOCK_SIZE); i++)
 912		gf128mul_x_ble((le128 *)iv, (le128 *)iv);
 913
 914	crypto_cipher_decrypt_one(cipher, iv, iv);
 915out:
 916	return ret;
 917}
 918
 919static int chcr_update_cipher_iv(struct ablkcipher_request *req,
 920				   struct cpl_fw6_pld *fw6_pld, u8 *iv)
 921{
 922	struct crypto_ablkcipher *tfm = crypto_ablkcipher_reqtfm(req);
 923	struct chcr_blkcipher_req_ctx *reqctx = ablkcipher_request_ctx(req);
 924	int subtype = get_cryptoalg_subtype(crypto_ablkcipher_tfm(tfm));
 925	int ret = 0;
 926
 927	if (subtype == CRYPTO_ALG_SUB_TYPE_CTR)
 928		ctr_add_iv(iv, req->info, (reqctx->processed /
 929			   AES_BLOCK_SIZE));
 930	else if (subtype == CRYPTO_ALG_SUB_TYPE_CTR_RFC3686)
 931		*(__be32 *)(reqctx->iv + CTR_RFC3686_NONCE_SIZE +
 932			CTR_RFC3686_IV_SIZE) = cpu_to_be32((reqctx->processed /
 933						AES_BLOCK_SIZE) + 1);
 934	else if (subtype == CRYPTO_ALG_SUB_TYPE_XTS)
 935		ret = chcr_update_tweak(req, iv);
 936	else if (subtype == CRYPTO_ALG_SUB_TYPE_CBC) {
 937		if (reqctx->op)
 938			sg_pcopy_to_buffer(req->src, sg_nents(req->src), iv,
 939					   16,
 940					   reqctx->processed - AES_BLOCK_SIZE);
 941		else
 942			memcpy(iv, &fw6_pld->data[2], AES_BLOCK_SIZE);
 943	}
 944
 945	return ret;
 946
 947}
 948
 949/* We need separate function for final iv because in rfc3686  Initial counter
 950 * starts from 1 and buffer size of iv is 8 byte only which remains constant
 951 * for subsequent update requests
 952 */
 953
 954static int chcr_final_cipher_iv(struct ablkcipher_request *req,
 955				   struct cpl_fw6_pld *fw6_pld, u8 *iv)
 956{
 957	struct crypto_ablkcipher *tfm = crypto_ablkcipher_reqtfm(req);
 958	struct chcr_blkcipher_req_ctx *reqctx = ablkcipher_request_ctx(req);
 959	int subtype = get_cryptoalg_subtype(crypto_ablkcipher_tfm(tfm));
 960	int ret = 0;
 961
 962	if (subtype == CRYPTO_ALG_SUB_TYPE_CTR)
 963		ctr_add_iv(iv, req->info, (reqctx->processed /
 964			   AES_BLOCK_SIZE));
 965	else if (subtype == CRYPTO_ALG_SUB_TYPE_XTS)
 966		ret = chcr_update_tweak(req, iv);
 967	else if (subtype == CRYPTO_ALG_SUB_TYPE_CBC) {
 968		if (reqctx->op)
 969			sg_pcopy_to_buffer(req->src, sg_nents(req->src), iv,
 970					   16,
 971					   reqctx->processed - AES_BLOCK_SIZE);
 972		else
 973			memcpy(iv, &fw6_pld->data[2], AES_BLOCK_SIZE);
 974
 975	}
 976	return ret;
 977
 978}
 979
 980
 981static int chcr_handle_cipher_resp(struct ablkcipher_request *req,
 982				   unsigned char *input, int err)
 983{
 984	struct crypto_ablkcipher *tfm = crypto_ablkcipher_reqtfm(req);
 985	struct chcr_context *ctx = crypto_ablkcipher_ctx(tfm);
 986	struct uld_ctx *u_ctx = ULD_CTX(ctx);
 987	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
 988	struct sk_buff *skb;
 989	struct cpl_fw6_pld *fw6_pld = (struct cpl_fw6_pld *)input;
 990	struct chcr_blkcipher_req_ctx *reqctx = ablkcipher_request_ctx(req);
 991	struct  cipher_wr_param wrparam;
 992	int bytes;
 993
 994	dma_unmap_sg(&u_ctx->lldi.pdev->dev, reqctx->dst, reqctx->dst_nents,
 995		     DMA_FROM_DEVICE);
 996
 997	if (reqctx->skb) {
 998		kfree_skb(reqctx->skb);
 999		reqctx->skb = NULL;
1000	}
1001	if (err)
1002		goto complete;
1003
1004	if (req->nbytes == reqctx->processed) {
1005		err = chcr_final_cipher_iv(req, fw6_pld, req->info);
1006		goto complete;
1007	}
1008
1009	if (unlikely(cxgb4_is_crypto_q_full(u_ctx->lldi.ports[0],
1010					    ctx->tx_qidx))) {
1011		if (!(req->base.flags & CRYPTO_TFM_REQ_MAY_BACKLOG)) {
1012			err = -EBUSY;
1013			goto complete;
1014		}
1015
1016	}
1017	wrparam.srcsg = scatterwalk_ffwd(reqctx->srcffwd, req->src,
1018				       reqctx->processed);
1019	reqctx->dst = scatterwalk_ffwd(reqctx->dstffwd, reqctx->dstsg,
1020					 reqctx->processed);
1021	if (!wrparam.srcsg || !reqctx->dst) {
1022		pr_err("Input sg list length less that nbytes\n");
1023		err = -EINVAL;
1024		goto complete;
1025	}
1026	bytes = chcr_sg_ent_in_wr(wrparam.srcsg, reqctx->dst, 1,
1027				 SPACE_LEFT(ablkctx->enckey_len),
1028				 &wrparam.snent, &reqctx->dst_nents);
1029	if ((bytes + reqctx->processed) >= req->nbytes)
1030		bytes  = req->nbytes - reqctx->processed;
1031	else
1032		bytes = ROUND_16(bytes);
1033	err = chcr_update_cipher_iv(req, fw6_pld, reqctx->iv);
1034	if (err)
1035		goto complete;
1036
1037	if (unlikely(bytes == 0)) {
1038		err = chcr_cipher_fallback(ablkctx->sw_cipher,
1039				     req->base.flags,
1040				     wrparam.srcsg,
1041				     reqctx->dst,
1042				     req->nbytes - reqctx->processed,
1043				     reqctx->iv,
1044				     reqctx->op);
1045		goto complete;
1046	}
1047
1048	if (get_cryptoalg_subtype(crypto_ablkcipher_tfm(tfm)) ==
1049	    CRYPTO_ALG_SUB_TYPE_CTR)
1050		bytes = adjust_ctr_overflow(reqctx->iv, bytes);
1051	reqctx->processed += bytes;
1052	wrparam.qid = u_ctx->lldi.rxq_ids[ctx->rx_qidx];
1053	wrparam.req = req;
1054	wrparam.bytes = bytes;
1055	skb = create_cipher_wr(&wrparam);
1056	if (IS_ERR(skb)) {
1057		pr_err("chcr : %s : Failed to form WR. No memory\n", __func__);
1058		err = PTR_ERR(skb);
1059		goto complete;
1060	}
1061	skb->dev = u_ctx->lldi.ports[0];
1062	set_wr_txq(skb, CPL_PRIORITY_DATA, ctx->tx_qidx);
1063	chcr_send_wr(skb);
1064	return 0;
1065complete:
1066	free_new_sg(reqctx->newdstsg);
1067	reqctx->newdstsg = NULL;
1068	req->base.complete(&req->base, err);
1069	return err;
1070}
1071
1072static int process_cipher(struct ablkcipher_request *req,
1073				  unsigned short qid,
1074				  struct sk_buff **skb,
1075				  unsigned short op_type)
1076{
1077	struct crypto_ablkcipher *tfm = crypto_ablkcipher_reqtfm(req);
1078	unsigned int ivsize = crypto_ablkcipher_ivsize(tfm);
1079	struct chcr_blkcipher_req_ctx *reqctx = ablkcipher_request_ctx(req);
1080	struct chcr_context *ctx = crypto_ablkcipher_ctx(tfm);
1081	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
1082	struct	cipher_wr_param wrparam;
1083	int bytes, nents, err = -EINVAL;
1084
1085	reqctx->newdstsg = NULL;
1086	reqctx->processed = 0;
1087	if (!req->info)
1088		goto error;
1089	if ((ablkctx->enckey_len == 0) || (ivsize > AES_BLOCK_SIZE) ||
1090	    (req->nbytes == 0) ||
1091	    (req->nbytes % crypto_ablkcipher_blocksize(tfm))) {
1092		pr_err("AES: Invalid value of Key Len %d nbytes %d IV Len %d\n",
1093		       ablkctx->enckey_len, req->nbytes, ivsize);
1094		goto error;
1095	}
1096	wrparam.srcsg = req->src;
1097	if (is_newsg(req->dst, &nents)) {
1098		reqctx->newdstsg = alloc_new_sg(req->dst, nents);
1099		if (IS_ERR(reqctx->newdstsg))
1100			return PTR_ERR(reqctx->newdstsg);
1101		reqctx->dstsg = reqctx->newdstsg;
1102	} else {
1103		reqctx->dstsg = req->dst;
1104	}
1105	bytes = chcr_sg_ent_in_wr(wrparam.srcsg, reqctx->dstsg, MIN_CIPHER_SG,
1106				 SPACE_LEFT(ablkctx->enckey_len),
1107				 &wrparam.snent,
1108				 &reqctx->dst_nents);
1109	if ((bytes + reqctx->processed) >= req->nbytes)
1110		bytes  = req->nbytes - reqctx->processed;
1111	else
1112		bytes = ROUND_16(bytes);
1113	if (unlikely(bytes > req->nbytes))
1114		bytes = req->nbytes;
1115	if (get_cryptoalg_subtype(crypto_ablkcipher_tfm(tfm)) ==
1116				  CRYPTO_ALG_SUB_TYPE_CTR) {
1117		bytes = adjust_ctr_overflow(req->info, bytes);
1118	}
1119	if (get_cryptoalg_subtype(crypto_ablkcipher_tfm(tfm)) ==
1120	    CRYPTO_ALG_SUB_TYPE_CTR_RFC3686) {
1121		memcpy(reqctx->iv, ablkctx->nonce, CTR_RFC3686_NONCE_SIZE);
1122		memcpy(reqctx->iv + CTR_RFC3686_NONCE_SIZE, req->info,
1123				CTR_RFC3686_IV_SIZE);
1124
1125		/* initialize counter portion of counter block */
1126		*(__be32 *)(reqctx->iv + CTR_RFC3686_NONCE_SIZE +
1127			CTR_RFC3686_IV_SIZE) = cpu_to_be32(1);
1128
1129	} else {
1130
1131		memcpy(reqctx->iv, req->info, ivsize);
1132	}
1133	if (unlikely(bytes == 0)) {
1134		err = chcr_cipher_fallback(ablkctx->sw_cipher,
1135					   req->base.flags,
1136					   req->src,
1137					   req->dst,
1138					   req->nbytes,
1139					   req->info,
1140					   op_type);
1141		goto error;
1142	}
1143	reqctx->processed = bytes;
1144	reqctx->dst = reqctx->dstsg;
1145	reqctx->op = op_type;
1146	wrparam.qid = qid;
1147	wrparam.req = req;
1148	wrparam.bytes = bytes;
1149	*skb = create_cipher_wr(&wrparam);
1150	if (IS_ERR(*skb)) {
1151		err = PTR_ERR(*skb);
1152		goto error;
1153	}
1154
1155	return 0;
1156error:
1157	free_new_sg(reqctx->newdstsg);
1158	reqctx->newdstsg = NULL;
1159	return err;
1160}
1161
1162static int chcr_aes_encrypt(struct ablkcipher_request *req)
1163{
1164	struct crypto_ablkcipher *tfm = crypto_ablkcipher_reqtfm(req);
1165	struct chcr_context *ctx = crypto_ablkcipher_ctx(tfm);
1166	struct sk_buff *skb = NULL;
1167	int err;
1168	struct uld_ctx *u_ctx = ULD_CTX(ctx);
1169
1170	if (unlikely(cxgb4_is_crypto_q_full(u_ctx->lldi.ports[0],
1171					    ctx->tx_qidx))) {
1172		if (!(req->base.flags & CRYPTO_TFM_REQ_MAY_BACKLOG))
1173			return -EBUSY;
1174	}
1175
1176	err = process_cipher(req, u_ctx->lldi.rxq_ids[ctx->rx_qidx], &skb,
1177			       CHCR_ENCRYPT_OP);
1178	if (err || !skb)
1179		return  err;
1180	skb->dev = u_ctx->lldi.ports[0];
1181	set_wr_txq(skb, CPL_PRIORITY_DATA, ctx->tx_qidx);
1182	chcr_send_wr(skb);
1183	return -EINPROGRESS;
1184}
1185
1186static int chcr_aes_decrypt(struct ablkcipher_request *req)
1187{
1188	struct crypto_ablkcipher *tfm = crypto_ablkcipher_reqtfm(req);
1189	struct chcr_context *ctx = crypto_ablkcipher_ctx(tfm);
1190	struct uld_ctx *u_ctx = ULD_CTX(ctx);
1191	struct sk_buff *skb = NULL;
1192	int err;
1193
1194	if (unlikely(cxgb4_is_crypto_q_full(u_ctx->lldi.ports[0],
1195					    ctx->tx_qidx))) {
1196		if (!(req->base.flags & CRYPTO_TFM_REQ_MAY_BACKLOG))
1197			return -EBUSY;
1198	}
1199
1200	 err = process_cipher(req, u_ctx->lldi.rxq_ids[ctx->rx_qidx], &skb,
1201			       CHCR_DECRYPT_OP);
1202	if (err || !skb)
1203		return err;
1204	skb->dev = u_ctx->lldi.ports[0];
1205	set_wr_txq(skb, CPL_PRIORITY_DATA, ctx->tx_qidx);
1206	chcr_send_wr(skb);
1207	return -EINPROGRESS;
1208}
1209
1210static int chcr_device_init(struct chcr_context *ctx)
1211{
1212	struct uld_ctx *u_ctx = NULL;
1213	struct adapter *adap;
1214	unsigned int id;
1215	int txq_perchan, txq_idx, ntxq;
1216	int err = 0, rxq_perchan, rxq_idx;
1217
1218	id = smp_processor_id();
1219	if (!ctx->dev) {
1220		u_ctx = assign_chcr_device();
1221		if (!u_ctx) {
1222			pr_err("chcr device assignment fails\n");
1223			goto out;
1224		}
1225		ctx->dev = u_ctx->dev;
1226		adap = padap(ctx->dev);
1227		ntxq = min_not_zero((unsigned int)u_ctx->lldi.nrxq,
1228				    adap->vres.ncrypto_fc);
1229		rxq_perchan = u_ctx->lldi.nrxq / u_ctx->lldi.nchan;
1230		txq_perchan = ntxq / u_ctx->lldi.nchan;
1231		rxq_idx = ctx->dev->tx_channel_id * rxq_perchan;
1232		rxq_idx += id % rxq_perchan;
1233		txq_idx = ctx->dev->tx_channel_id * txq_perchan;
1234		txq_idx += id % txq_perchan;
1235		spin_lock(&ctx->dev->lock_chcr_dev);
1236		ctx->rx_qidx = rxq_idx;
1237		ctx->tx_qidx = txq_idx;
1238		ctx->dev->tx_channel_id = !ctx->dev->tx_channel_id;
1239		ctx->dev->rx_channel_id = 0;
1240		spin_unlock(&ctx->dev->lock_chcr_dev);
1241	}
1242out:
1243	return err;
1244}
1245
1246static int chcr_cra_init(struct crypto_tfm *tfm)
1247{
1248	struct crypto_alg *alg = tfm->__crt_alg;
1249	struct chcr_context *ctx = crypto_tfm_ctx(tfm);
1250	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
1251
1252	ablkctx->sw_cipher = crypto_alloc_skcipher(alg->cra_name, 0,
1253				CRYPTO_ALG_ASYNC | CRYPTO_ALG_NEED_FALLBACK);
1254	if (IS_ERR(ablkctx->sw_cipher)) {
1255		pr_err("failed to allocate fallback for %s\n", alg->cra_name);
1256		return PTR_ERR(ablkctx->sw_cipher);
1257	}
1258
1259	if (get_cryptoalg_subtype(tfm) == CRYPTO_ALG_SUB_TYPE_XTS) {
1260		/* To update tweak*/
1261		ablkctx->aes_generic = crypto_alloc_cipher("aes-generic", 0, 0);
1262		if (IS_ERR(ablkctx->aes_generic)) {
1263			pr_err("failed to allocate aes cipher for tweak\n");
1264			return PTR_ERR(ablkctx->aes_generic);
1265		}
1266	} else
1267		ablkctx->aes_generic = NULL;
1268
1269	tfm->crt_ablkcipher.reqsize =  sizeof(struct chcr_blkcipher_req_ctx);
1270	return chcr_device_init(crypto_tfm_ctx(tfm));
1271}
1272
1273static int chcr_rfc3686_init(struct crypto_tfm *tfm)
1274{
1275	struct crypto_alg *alg = tfm->__crt_alg;
1276	struct chcr_context *ctx = crypto_tfm_ctx(tfm);
1277	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
1278
1279	/*RFC3686 initialises IV counter value to 1, rfc3686(ctr(aes))
1280	 * cannot be used as fallback in chcr_handle_cipher_response
1281	 */
1282	ablkctx->sw_cipher = crypto_alloc_skcipher("ctr(aes)", 0,
1283				CRYPTO_ALG_ASYNC | CRYPTO_ALG_NEED_FALLBACK);
1284	if (IS_ERR(ablkctx->sw_cipher)) {
1285		pr_err("failed to allocate fallback for %s\n", alg->cra_name);
1286		return PTR_ERR(ablkctx->sw_cipher);
1287	}
1288	tfm->crt_ablkcipher.reqsize =  sizeof(struct chcr_blkcipher_req_ctx);
1289	return chcr_device_init(crypto_tfm_ctx(tfm));
1290}
1291
1292
1293static void chcr_cra_exit(struct crypto_tfm *tfm)
1294{
1295	struct chcr_context *ctx = crypto_tfm_ctx(tfm);
1296	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
1297
1298	crypto_free_skcipher(ablkctx->sw_cipher);
1299	if (ablkctx->aes_generic)
1300		crypto_free_cipher(ablkctx->aes_generic);
1301}
1302
1303static int get_alg_config(struct algo_param *params,
1304			  unsigned int auth_size)
1305{
1306	switch (auth_size) {
1307	case SHA1_DIGEST_SIZE:
1308		params->mk_size = CHCR_KEYCTX_MAC_KEY_SIZE_160;
1309		params->auth_mode = CHCR_SCMD_AUTH_MODE_SHA1;
1310		params->result_size = SHA1_DIGEST_SIZE;
1311		break;
1312	case SHA224_DIGEST_SIZE:
1313		params->mk_size = CHCR_KEYCTX_MAC_KEY_SIZE_256;
1314		params->auth_mode = CHCR_SCMD_AUTH_MODE_SHA224;
1315		params->result_size = SHA256_DIGEST_SIZE;
1316		break;
1317	case SHA256_DIGEST_SIZE:
1318		params->mk_size = CHCR_KEYCTX_MAC_KEY_SIZE_256;
1319		params->auth_mode = CHCR_SCMD_AUTH_MODE_SHA256;
1320		params->result_size = SHA256_DIGEST_SIZE;
1321		break;
1322	case SHA384_DIGEST_SIZE:
1323		params->mk_size = CHCR_KEYCTX_MAC_KEY_SIZE_512;
1324		params->auth_mode = CHCR_SCMD_AUTH_MODE_SHA512_384;
1325		params->result_size = SHA512_DIGEST_SIZE;
1326		break;
1327	case SHA512_DIGEST_SIZE:
1328		params->mk_size = CHCR_KEYCTX_MAC_KEY_SIZE_512;
1329		params->auth_mode = CHCR_SCMD_AUTH_MODE_SHA512_512;
1330		params->result_size = SHA512_DIGEST_SIZE;
1331		break;
1332	default:
1333		pr_err("chcr : ERROR, unsupported digest size\n");
1334		return -EINVAL;
1335	}
1336	return 0;
1337}
1338
1339static inline void chcr_free_shash(struct crypto_shash *base_hash)
1340{
1341		crypto_free_shash(base_hash);
1342}
1343
1344/**
1345 *	create_hash_wr - Create hash work request
1346 *	@req - Cipher req base
1347 */
1348static struct sk_buff *create_hash_wr(struct ahash_request *req,
1349				      struct hash_wr_param *param)
1350{
1351	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(req);
1352	struct crypto_ahash *tfm = crypto_ahash_reqtfm(req);
1353	struct chcr_context *ctx = crypto_tfm_ctx(crypto_ahash_tfm(tfm));
1354	struct hmac_ctx *hmacctx = HMAC_CTX(ctx);
1355	struct sk_buff *skb = NULL;
1356	struct chcr_wr *chcr_req;
1357	unsigned int frags = 0, transhdr_len, iopad_alignment = 0;
1358	unsigned int digestsize = crypto_ahash_digestsize(tfm);
1359	unsigned int kctx_len = 0;
1360	u8 hash_size_in_response = 0;
1361	gfp_t flags = req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP ? GFP_KERNEL :
1362		GFP_ATOMIC;
1363	struct adapter *adap = padap(ctx->dev);
1364
1365	iopad_alignment = KEYCTX_ALIGN_PAD(digestsize);
1366	kctx_len = param->alg_prm.result_size + iopad_alignment;
1367	if (param->opad_needed)
1368		kctx_len += param->alg_prm.result_size + iopad_alignment;
1369
1370	if (req_ctx->result)
1371		hash_size_in_response = digestsize;
1372	else
1373		hash_size_in_response = param->alg_prm.result_size;
1374	transhdr_len = HASH_TRANSHDR_SIZE(kctx_len);
1375	skb = alloc_skb((transhdr_len + sizeof(struct sge_opaque_hdr)), flags);
1376	if (!skb)
1377		return skb;
1378
1379	skb_reserve(skb, sizeof(struct sge_opaque_hdr));
1380	chcr_req = __skb_put_zero(skb, transhdr_len);
1381
1382	chcr_req->sec_cpl.op_ivinsrtofst =
1383		FILL_SEC_CPL_OP_IVINSR(ctx->dev->rx_channel_id, 2, 0);
1384	chcr_req->sec_cpl.pldlen = htonl(param->bfr_len + param->sg_len);
1385
1386	chcr_req->sec_cpl.aadstart_cipherstop_hi =
1387		FILL_SEC_CPL_CIPHERSTOP_HI(0, 0, 0, 0);
1388	chcr_req->sec_cpl.cipherstop_lo_authinsert =
1389		FILL_SEC_CPL_AUTHINSERT(0, 1, 0, 0);
1390	chcr_req->sec_cpl.seqno_numivs =
1391		FILL_SEC_CPL_SCMD0_SEQNO(0, 0, 0, param->alg_prm.auth_mode,
1392					 param->opad_needed, 0);
1393
1394	chcr_req->sec_cpl.ivgen_hdrlen =
1395		FILL_SEC_CPL_IVGEN_HDRLEN(param->last, param->more, 0, 1, 0, 0);
1396
1397	memcpy(chcr_req->key_ctx.key, req_ctx->partial_hash,
1398	       param->alg_prm.result_size);
1399
1400	if (param->opad_needed)
1401		memcpy(chcr_req->key_ctx.key +
1402		       ((param->alg_prm.result_size <= 32) ? 32 :
1403			CHCR_HASH_MAX_DIGEST_SIZE),
1404		       hmacctx->opad, param->alg_prm.result_size);
1405
1406	chcr_req->key_ctx.ctx_hdr = FILL_KEY_CTX_HDR(CHCR_KEYCTX_NO_KEY,
1407					    param->alg_prm.mk_size, 0,
1408					    param->opad_needed,
1409					    ((kctx_len +
1410					     sizeof(chcr_req->key_ctx)) >> 4));
1411	chcr_req->sec_cpl.scmd1 = cpu_to_be64((u64)param->scmd1);
1412
1413	skb_set_transport_header(skb, transhdr_len);
1414	if (param->bfr_len != 0)
1415		write_buffer_to_skb(skb, &frags, req_ctx->reqbfr,
1416				    param->bfr_len);
1417	if (param->sg_len != 0)
1418		write_sg_to_skb(skb, &frags, req->src, param->sg_len);
1419	atomic_inc(&adap->chcr_stats.digest_rqst);
1420	create_wreq(ctx, chcr_req, &req->base, skb, kctx_len,
1421		    hash_size_in_response, 0, DUMMY_BYTES, 0);
1422	req_ctx->skb = skb;
1423	skb_get(skb);
1424	return skb;
1425}
1426
1427static int chcr_ahash_update(struct ahash_request *req)
1428{
1429	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(req);
1430	struct crypto_ahash *rtfm = crypto_ahash_reqtfm(req);
1431	struct chcr_context *ctx = crypto_tfm_ctx(crypto_ahash_tfm(rtfm));
1432	struct uld_ctx *u_ctx = NULL;
1433	struct sk_buff *skb;
1434	u8 remainder = 0, bs;
1435	unsigned int nbytes = req->nbytes;
1436	struct hash_wr_param params;
1437
1438	bs = crypto_tfm_alg_blocksize(crypto_ahash_tfm(rtfm));
1439
1440	u_ctx = ULD_CTX(ctx);
1441	if (unlikely(cxgb4_is_crypto_q_full(u_ctx->lldi.ports[0],
1442					    ctx->tx_qidx))) {
1443		if (!(req->base.flags & CRYPTO_TFM_REQ_MAY_BACKLOG))
1444			return -EBUSY;
1445	}
1446
1447	if (nbytes + req_ctx->reqlen >= bs) {
1448		remainder = (nbytes + req_ctx->reqlen) % bs;
1449		nbytes = nbytes + req_ctx->reqlen - remainder;
1450	} else {
1451		sg_pcopy_to_buffer(req->src, sg_nents(req->src), req_ctx->reqbfr
1452				   + req_ctx->reqlen, nbytes, 0);
1453		req_ctx->reqlen += nbytes;
1454		return 0;
1455	}
1456
1457	params.opad_needed = 0;
1458	params.more = 1;
1459	params.last = 0;
1460	params.sg_len = nbytes - req_ctx->reqlen;
1461	params.bfr_len = req_ctx->reqlen;
1462	params.scmd1 = 0;
1463	get_alg_config(&params.alg_prm, crypto_ahash_digestsize(rtfm));
1464	req_ctx->result = 0;
1465	req_ctx->data_len += params.sg_len + params.bfr_len;
1466	skb = create_hash_wr(req, &params);
1467	if (!skb)
1468		return -ENOMEM;
1469
1470	if (remainder) {
1471		u8 *temp;
1472		/* Swap buffers */
1473		temp = req_ctx->reqbfr;
1474		req_ctx->reqbfr = req_ctx->skbfr;
1475		req_ctx->skbfr = temp;
1476		sg_pcopy_to_buffer(req->src, sg_nents(req->src),
1477				   req_ctx->reqbfr, remainder, req->nbytes -
1478				   remainder);
1479	}
1480	req_ctx->reqlen = remainder;
1481	skb->dev = u_ctx->lldi.ports[0];
1482	set_wr_txq(skb, CPL_PRIORITY_DATA, ctx->tx_qidx);
1483	chcr_send_wr(skb);
1484
1485	return -EINPROGRESS;
1486}
1487
1488static void create_last_hash_block(char *bfr_ptr, unsigned int bs, u64 scmd1)
1489{
1490	memset(bfr_ptr, 0, bs);
1491	*bfr_ptr = 0x80;
1492	if (bs == 64)
1493		*(__be64 *)(bfr_ptr + 56) = cpu_to_be64(scmd1  << 3);
1494	else
1495		*(__be64 *)(bfr_ptr + 120) =  cpu_to_be64(scmd1  << 3);
1496}
1497
1498static int chcr_ahash_final(struct ahash_request *req)
1499{
1500	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(req);
1501	struct crypto_ahash *rtfm = crypto_ahash_reqtfm(req);
1502	struct chcr_context *ctx = crypto_tfm_ctx(crypto_ahash_tfm(rtfm));
1503	struct hash_wr_param params;
1504	struct sk_buff *skb;
1505	struct uld_ctx *u_ctx = NULL;
1506	u8 bs = crypto_tfm_alg_blocksize(crypto_ahash_tfm(rtfm));
1507
1508	u_ctx = ULD_CTX(ctx);
1509	if (is_hmac(crypto_ahash_tfm(rtfm)))
1510		params.opad_needed = 1;
1511	else
1512		params.opad_needed = 0;
1513	params.sg_len = 0;
1514	get_alg_config(&params.alg_prm, crypto_ahash_digestsize(rtfm));
1515	req_ctx->result = 1;
1516	params.bfr_len = req_ctx->reqlen;
1517	req_ctx->data_len += params.bfr_len + params.sg_len;
1518	if (req_ctx->reqlen == 0) {
1519		create_last_hash_block(req_ctx->reqbfr, bs, req_ctx->data_len);
1520		params.last = 0;
1521		params.more = 1;
1522		params.scmd1 = 0;
1523		params.bfr_len = bs;
1524
1525	} else {
1526		params.scmd1 = req_ctx->data_len;
1527		params.last = 1;
1528		params.more = 0;
1529	}
1530	skb = create_hash_wr(req, &params);
1531	if (!skb)
1532		return -ENOMEM;
1533
1534	skb->dev = u_ctx->lldi.ports[0];
1535	set_wr_txq(skb, CPL_PRIORITY_DATA, ctx->tx_qidx);
1536	chcr_send_wr(skb);
1537	return -EINPROGRESS;
1538}
1539
1540static int chcr_ahash_finup(struct ahash_request *req)
1541{
1542	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(req);
1543	struct crypto_ahash *rtfm = crypto_ahash_reqtfm(req);
1544	struct chcr_context *ctx = crypto_tfm_ctx(crypto_ahash_tfm(rtfm));
1545	struct uld_ctx *u_ctx = NULL;
1546	struct sk_buff *skb;
1547	struct hash_wr_param params;
1548	u8  bs;
1549
1550	bs = crypto_tfm_alg_blocksize(crypto_ahash_tfm(rtfm));
1551	u_ctx = ULD_CTX(ctx);
1552
1553	if (unlikely(cxgb4_is_crypto_q_full(u_ctx->lldi.ports[0],
1554					    ctx->tx_qidx))) {
1555		if (!(req->base.flags & CRYPTO_TFM_REQ_MAY_BACKLOG))
1556			return -EBUSY;
1557	}
1558
1559	if (is_hmac(crypto_ahash_tfm(rtfm)))
1560		params.opad_needed = 1;
1561	else
1562		params.opad_needed = 0;
1563
1564	params.sg_len = req->nbytes;
1565	params.bfr_len = req_ctx->reqlen;
1566	get_alg_config(&params.alg_prm, crypto_ahash_digestsize(rtfm));
1567	req_ctx->data_len += params.bfr_len + params.sg_len;
1568	req_ctx->result = 1;
1569	if ((req_ctx->reqlen + req->nbytes) == 0) {
1570		create_last_hash_block(req_ctx->reqbfr, bs, req_ctx->data_len);
1571		params.last = 0;
1572		params.more = 1;
1573		params.scmd1 = 0;
1574		params.bfr_len = bs;
1575	} else {
1576		params.scmd1 = req_ctx->data_len;
1577		params.last = 1;
1578		params.more = 0;
1579	}
1580
1581	skb = create_hash_wr(req, &params);
1582	if (!skb)
1583		return -ENOMEM;
1584
1585	skb->dev = u_ctx->lldi.ports[0];
1586	set_wr_txq(skb, CPL_PRIORITY_DATA, ctx->tx_qidx);
1587	chcr_send_wr(skb);
1588
1589	return -EINPROGRESS;
1590}
1591
1592static int chcr_ahash_digest(struct ahash_request *req)
1593{
1594	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(req);
1595	struct crypto_ahash *rtfm = crypto_ahash_reqtfm(req);
1596	struct chcr_context *ctx = crypto_tfm_ctx(crypto_ahash_tfm(rtfm));
1597	struct uld_ctx *u_ctx = NULL;
1598	struct sk_buff *skb;
1599	struct hash_wr_param params;
1600	u8  bs;
1601
1602	rtfm->init(req);
1603	bs = crypto_tfm_alg_blocksize(crypto_ahash_tfm(rtfm));
1604
1605	u_ctx = ULD_CTX(ctx);
1606	if (unlikely(cxgb4_is_crypto_q_full(u_ctx->lldi.ports[0],
1607					    ctx->tx_qidx))) {
1608		if (!(req->base.flags & CRYPTO_TFM_REQ_MAY_BACKLOG))
1609			return -EBUSY;
1610	}
1611
1612	if (is_hmac(crypto_ahash_tfm(rtfm)))
1613		params.opad_needed = 1;
1614	else
1615		params.opad_needed = 0;
1616
1617	params.last = 0;
1618	params.more = 0;
1619	params.sg_len = req->nbytes;
1620	params.bfr_len = 0;
1621	params.scmd1 = 0;
1622	get_alg_config(&params.alg_prm, crypto_ahash_digestsize(rtfm));
1623	req_ctx->result = 1;
1624	req_ctx->data_len += params.bfr_len + params.sg_len;
1625
1626	if (req->nbytes == 0) {
1627		create_last_hash_block(req_ctx->reqbfr, bs, 0);
1628		params.more = 1;
1629		params.bfr_len = bs;
1630	}
1631
1632	skb = create_hash_wr(req, &params);
1633	if (!skb)
1634		return -ENOMEM;
1635
1636	skb->dev = u_ctx->lldi.ports[0];
1637	set_wr_txq(skb, CPL_PRIORITY_DATA, ctx->tx_qidx);
1638	chcr_send_wr(skb);
1639	return -EINPROGRESS;
1640}
1641
1642static int chcr_ahash_export(struct ahash_request *areq, void *out)
1643{
1644	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(areq);
1645	struct chcr_ahash_req_ctx *state = out;
1646
1647	state->reqlen = req_ctx->reqlen;
1648	state->data_len = req_ctx->data_len;
1649	memcpy(state->bfr1, req_ctx->reqbfr, req_ctx->reqlen);
1650	memcpy(state->partial_hash, req_ctx->partial_hash,
1651	       CHCR_HASH_MAX_DIGEST_SIZE);
1652		return 0;
1653}
1654
1655static int chcr_ahash_import(struct ahash_request *areq, const void *in)
1656{
1657	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(areq);
1658	struct chcr_ahash_req_ctx *state = (struct chcr_ahash_req_ctx *)in;
1659
1660	req_ctx->reqlen = state->reqlen;
1661	req_ctx->data_len = state->data_len;
1662	req_ctx->reqbfr = req_ctx->bfr1;
1663	req_ctx->skbfr = req_ctx->bfr2;
1664	memcpy(req_ctx->bfr1, state->bfr1, CHCR_HASH_MAX_BLOCK_SIZE_128);
1665	memcpy(req_ctx->partial_hash, state->partial_hash,
1666	       CHCR_HASH_MAX_DIGEST_SIZE);
1667	return 0;
1668}
1669
1670static int chcr_ahash_setkey(struct crypto_ahash *tfm, const u8 *key,
1671			     unsigned int keylen)
1672{
1673	struct chcr_context *ctx = crypto_tfm_ctx(crypto_ahash_tfm(tfm));
1674	struct hmac_ctx *hmacctx = HMAC_CTX(ctx);
1675	unsigned int digestsize = crypto_ahash_digestsize(tfm);
1676	unsigned int bs = crypto_tfm_alg_blocksize(crypto_ahash_tfm(tfm));
1677	unsigned int i, err = 0, updated_digestsize;
1678
1679	SHASH_DESC_ON_STACK(shash, hmacctx->base_hash);
1680
1681	/* use the key to calculate the ipad and opad. ipad will sent with the
1682	 * first request's data. opad will be sent with the final hash result
1683	 * ipad in hmacctx->ipad and opad in hmacctx->opad location
1684	 */
1685	shash->tfm = hmacctx->base_hash;
1686	shash->flags = crypto_shash_get_flags(hmacctx->base_hash);
1687	if (keylen > bs) {
1688		err = crypto_shash_digest(shash, key, keylen,
1689					  hmacctx->ipad);
1690		if (err)
1691			goto out;
1692		keylen = digestsize;
1693	} else {
1694		memcpy(hmacctx->ipad, key, keylen);
1695	}
1696	memset(hmacctx->ipad + keylen, 0, bs - keylen);
1697	memcpy(hmacctx->opad, hmacctx->ipad, bs);
1698
1699	for (i = 0; i < bs / sizeof(int); i++) {
1700		*((unsigned int *)(&hmacctx->ipad) + i) ^= IPAD_DATA;
1701		*((unsigned int *)(&hmacctx->opad) + i) ^= OPAD_DATA;
1702	}
1703
1704	updated_digestsize = digestsize;
1705	if (digestsize == SHA224_DIGEST_SIZE)
1706		updated_digestsize = SHA256_DIGEST_SIZE;
1707	else if (digestsize == SHA384_DIGEST_SIZE)
1708		updated_digestsize = SHA512_DIGEST_SIZE;
1709	err = chcr_compute_partial_hash(shash, hmacctx->ipad,
1710					hmacctx->ipad, digestsize);
1711	if (err)
1712		goto out;
1713	chcr_change_order(hmacctx->ipad, updated_digestsize);
1714
1715	err = chcr_compute_partial_hash(shash, hmacctx->opad,
1716					hmacctx->opad, digestsize);
1717	if (err)
1718		goto out;
1719	chcr_change_order(hmacctx->opad, updated_digestsize);
1720out:
1721	return err;
1722}
1723
1724static int chcr_aes_xts_setkey(struct crypto_ablkcipher *cipher, const u8 *key,
1725			       unsigned int key_len)
1726{
1727	struct chcr_context *ctx = crypto_ablkcipher_ctx(cipher);
1728	struct ablk_ctx *ablkctx = ABLK_CTX(ctx);
1729	unsigned short context_size = 0;
1730	int err;
1731
1732	err = chcr_cipher_fallback_setkey(cipher, key, key_len);
1733	if (err)
1734		goto badkey_err;
1735
1736	memcpy(ablkctx->key, key, key_len);
1737	ablkctx->enckey_len = key_len;
1738	get_aes_decrypt_key(ablkctx->rrkey, ablkctx->key, key_len << 2);
1739	context_size = (KEY_CONTEXT_HDR_SALT_AND_PAD + key_len) >> 4;
1740	ablkctx->key_ctx_hdr =
1741		FILL_KEY_CTX_HDR((key_len == AES_KEYSIZE_256) ?
1742				 CHCR_KEYCTX_CIPHER_KEY_SIZE_128 :
1743				 CHCR_KEYCTX_CIPHER_KEY_SIZE_256,
1744				 CHCR_KEYCTX_NO_KEY, 1,
1745				 0, context_size);
1746	ablkctx->ciph_mode = CHCR_SCMD_CIPHER_MODE_AES_XTS;
1747	return 0;
1748badkey_err:
1749	crypto_ablkcipher_set_flags(cipher, CRYPTO_TFM_RES_BAD_KEY_LEN);
1750	ablkctx->enckey_len = 0;
1751
1752	return err;
1753}
1754
1755static int chcr_sha_init(struct ahash_request *areq)
1756{
1757	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(areq);
1758	struct crypto_ahash *tfm = crypto_ahash_reqtfm(areq);
1759	int digestsize =  crypto_ahash_digestsize(tfm);
1760
1761	req_ctx->data_len = 0;
1762	req_ctx->reqlen = 0;
1763	req_ctx->reqbfr = req_ctx->bfr1;
1764	req_ctx->skbfr = req_ctx->bfr2;
1765	req_ctx->skb = NULL;
1766	req_ctx->result = 0;
1767	copy_hash_init_values(req_ctx->partial_hash, digestsize);
1768	return 0;
1769}
1770
1771static int chcr_sha_cra_init(struct crypto_tfm *tfm)
1772{
1773	crypto_ahash_set_reqsize(__crypto_ahash_cast(tfm),
1774				 sizeof(struct chcr_ahash_req_ctx));
1775	return chcr_device_init(crypto_tfm_ctx(tfm));
1776}
1777
1778static int chcr_hmac_init(struct ahash_request *areq)
1779{
1780	struct chcr_ahash_req_ctx *req_ctx = ahash_request_ctx(areq);
1781	struct crypto_ahash *rtfm = crypto_ahash_reqtfm(areq);
1782	struct chcr_context *ctx = crypto_tfm_ctx(crypto_ahash_tfm(rtfm));
1783	struct hmac_ctx *hmacctx = HMAC_CTX(ctx);
1784	unsigned int digestsize = crypto_ahash_digestsize(rtfm);
1785	unsigned int bs = crypto_tfm_alg_blocksize(crypto_ahash_tfm(rtfm));
1786
1787	chcr_sha_init(areq);
1788	req_ctx->data_len = bs;
1789	if (is_hmac(crypto_ahash_tfm(rtfm))) {
1790		if (digestsize == SHA224_DIGEST_SIZE)
1791			memcpy(req_ctx->partial_hash, hmacctx->ipad,
1792			       SHA256_DIGEST_SIZE);
1793		else if (digestsize == SHA384_DIGEST_SIZE)
1794			memcpy(req_ctx->partial_hash, hmacctx->ipad,
1795			       SHA512_DIGEST_SIZE);
1796		else
1797			memcpy(req_ctx->partial_hash, hmacctx->ipad,
1798			       digestsize);
1799	}
1800	return 0;
1801}
1802
1803static int chcr_hmac_cra_init(struct crypto_tfm *tfm)
1804{
1805	struct chcr_context *ctx = crypto_tfm_ctx(tfm);
1806	struct hmac_ctx *hmacctx = HMAC_CTX(ctx);
1807	unsigned int digestsize =
1808		crypto_ahash_digestsize(__crypto_ahash_cast(tfm));
1809
1810	crypto_ahash_set_reqsize(__crypto_ahash_cast(tfm),
1811				 sizeof(struct chcr_ahash_req_ctx));
1812	hmacctx->base_hash = chcr_alloc_shash(digestsize);
1813	if (IS_ERR(hmacctx->base_hash))
1814		return PTR_ERR(hmacctx->base_hash);
1815	return chcr_device_init(crypto_tfm_ctx(tfm));
1816}
1817
1818static void chcr_hmac_cra_exit(struct crypto_tfm *tfm)
1819{
1820	struct chcr_context *ctx = crypto_tfm_ctx(tfm);
1821	struct hmac_ctx *hmacctx = HMAC_CTX(ctx);
1822
1823	if (hmacctx->base_hash) {
1824		chcr_free_shash(hmacctx->base_hash);
1825		hmacctx->base_hash = NULL;
1826	}
1827}
1828
1829static int is_newsg(struct scatterlist *sgl, unsigned int *newents)
1830{
1831	int nents = 0;
1832	int ret = 0;
1833
1834	while (sgl) {
1835		if (sgl->length > CHCR_SG_SIZE)
1836			ret = 1;
1837		nents += DIV_ROUND_UP(sgl->length, CHCR_SG_SIZE);
1838		sgl = sg_next(sgl);
1839	}
1840	*newents = nents;
1841	return ret;
1842}
1843
1844static inline void free_new_sg(struct scatterlist *sgl)
1845{
1846	kfree(sgl);
1847}
1848
1849static struct scatterlist *alloc_new_sg(struct scatterlist *sgl,
1850				       unsigned int nents)
1851{
1852	struct scatterlist *newsg, *sg;
1853	int i, len, processed = 0;
1854	struct page *spage;
1855	int offset;
1856
1857	newsg = kmalloc_array(nents, sizeof(struct scatterlist), GFP_KERNEL);
1858	if (!newsg)
1859		return ERR_PTR(-ENOMEM);
1860	sg = newsg;
1861	sg_init_table(sg, nents);
1862	offset = sgl->offset;
1863	spage = sg_page(sgl);
1864	for (i = 0; i < nents; i++) {
1865		len = min_t(u32, sgl->length - processed, CHCR_SG_SIZE);
1866		sg_set_page(sg, spage, len, offset);
1867		processed += len;
1868		offset += len;
1869		if (offset >= PAGE_SIZE) {
1870			offset = offset % PAGE_SIZE;
1871			spage++;
1872		}
1873		if (processed == sgl->length) {
1874			processed = 0;
1875			sgl = sg_next(sgl);
1876			if (!sgl)
1877				break;
1878			spage = sg_page(sgl);
1879			offset = sgl->offset;
1880		}
1881		sg = sg_next(sg);
1882	}
1883	return newsg;
1884}
1885
1886static int chcr_copy_assoc(struct aead_request *req,
1887				struct chcr_aead_ctx *ctx)
1888{
1889	SKCIPHER_REQUEST_ON_STACK(skreq, ctx->null);
1890
1891	skcipher_request_set_tfm(skreq, ctx->null);
1892	skcipher_request_set_callback(skreq, aead_request_flags(req),
1893			NULL, NULL);
1894	skcipher_request_set_crypt(skreq, req->src, req->dst, req->assoclen,
1895			NULL);
1896
1897	return crypto_skcipher_encrypt(skreq);
1898}
1899static int chcr_aead_need_fallback(struct aead_request *req, int src_nent,
1900				   int aadmax, int wrlen,
1901				   unsigned short op_type)
1902{
1903	unsigned int authsize = crypto_aead_authsize(crypto_aead_reqtfm(req));
1904
1905	if (((req->cryptlen - (op_type ? authsize : 0)) == 0) ||
1906	    (req->assoclen > aadmax) ||
1907	    (src_nent > MAX_SKB_FRAGS) ||
1908	    (wrlen > MAX_WR_SIZE))
1909		return 1;
1910	return 0;
1911}
1912
1913static int chcr_aead_fallback(struct aead_request *req, unsigned short op_type)
1914{
1915	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
1916	struct chcr_context *ctx = crypto_aead_ctx(tfm);
1917	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
1918	struct aead_request *subreq = aead_request_ctx(req);
1919
1920	aead_request_set_tfm(subreq, aeadctx->sw_cipher);
1921	aead_request_set_callback(subreq, req->base.flags,
1922				  req->base.complete, req->base.data);
1923	 aead_request_set_crypt(subreq, req->src, req->dst, req->cryptlen,
1924				 req->iv);
1925	 aead_request_set_ad(subreq, req->assoclen);
1926	return op_type ? crypto_aead_decrypt(subreq) :
1927		crypto_aead_encrypt(subreq);
1928}
1929
1930static struct sk_buff *create_authenc_wr(struct aead_request *req,
1931					 unsigned short qid,
1932					 int size,
1933					 unsigned short op_type)
1934{
1935	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
1936	struct chcr_context *ctx = crypto_aead_ctx(tfm);
1937	struct uld_ctx *u_ctx = ULD_CTX(ctx);
1938	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
1939	struct chcr_authenc_ctx *actx = AUTHENC_CTX(aeadctx);
1940	struct chcr_aead_reqctx *reqctx = aead_request_ctx(req);
1941	struct sk_buff *skb = NULL;
1942	struct chcr_wr *chcr_req;
1943	struct cpl_rx_phys_dsgl *phys_cpl;
1944	struct phys_sge_parm sg_param;
1945	struct scatterlist *src;
1946	unsigned int frags = 0, transhdr_len;
1947	unsigned int ivsize = crypto_aead_ivsize(tfm), dst_size = 0;
1948	unsigned int   kctx_len = 0, nents;
1949	unsigned short stop_offset = 0;
1950	unsigned int  assoclen = req->assoclen;
1951	unsigned int  authsize = crypto_aead_authsize(tfm);
1952	int error = -EINVAL, src_nent;
1953	int null = 0;
1954	gfp_t flags = req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP ? GFP_KERNEL :
1955		GFP_ATOMIC;
1956	struct adapter *adap = padap(ctx->dev);
1957
1958	reqctx->newdstsg = NULL;
1959	dst_size = req->assoclen + req->cryptlen + (op_type ? -authsize :
1960						   authsize);
1961	if (aeadctx->enckey_len == 0 || (req->cryptlen <= 0))
1962		goto err;
1963
1964	if (op_type && req->cryptlen < crypto_aead_authsize(tfm))
1965		goto err;
1966	src_nent = sg_nents_for_len(req->src, req->assoclen + req->cryptlen);
1967	if (src_nent < 0)
1968		goto err;
1969	src = scatterwalk_ffwd(reqctx->srcffwd, req->src, req->assoclen);
1970
1971	if (req->src != req->dst) {
1972		error = chcr_copy_assoc(req, aeadctx);
1973		if (error)
1974			return ERR_PTR(error);
1975	}
1976	if (dst_size && is_newsg(req->dst, &nents)) {
1977		reqctx->newdstsg = alloc_new_sg(req->dst, nents);
1978		if (IS_ERR(reqctx->newdstsg))
1979			return ERR_CAST(reqctx->newdstsg);
1980		reqctx->dst = scatterwalk_ffwd(reqctx->dstffwd,
1981					       reqctx->newdstsg, req->assoclen);
1982	} else {
1983		if (req->src == req->dst)
1984			reqctx->dst = src;
1985		else
1986			reqctx->dst = scatterwalk_ffwd(reqctx->dstffwd,
1987						       req->dst, req->assoclen);
1988	}
1989	if (get_aead_subtype(tfm) == CRYPTO_ALG_SUB_TYPE_AEAD_NULL) {
1990		null = 1;
1991		assoclen = 0;
1992	}
1993	reqctx->dst_nents = sg_nents_for_len(reqctx->dst, req->cryptlen +
1994					     (op_type ? -authsize : authsize));
1995	if (reqctx->dst_nents < 0) {
1996		pr_err("AUTHENC:Invalid Destination sg entries\n");
1997		error = -EINVAL;
1998		goto err;
1999	}
2000	dst_size = get_space_for_phys_dsgl(reqctx->dst_nents);
2001	kctx_len = (ntohl(KEY_CONTEXT_CTX_LEN_V(aeadctx->key_ctx_hdr)) << 4)
2002		- sizeof(chcr_req->key_ctx);
2003	transhdr_len = CIPHER_TRANSHDR_SIZE(kctx_len, dst_size);
2004	if (chcr_aead_need_fallback(req, src_nent + MIN_AUTH_SG,
2005			T6_MAX_AAD_SIZE,
2006			transhdr_len + (sgl_len(src_nent + MIN_AUTH_SG) * 8),
2007				op_type)) {
2008		atomic_inc(&adap->chcr_stats.fallback);
2009		free_new_sg(reqctx->newdstsg);
2010		reqctx->newdstsg = NULL;
2011		return ERR_PTR(chcr_aead_fallback(req, op_type));
2012	}
2013	skb = alloc_skb((transhdr_len + sizeof(struct sge_opaque_hdr)), flags);
2014	if (!skb) {
2015		error = -ENOMEM;
2016		goto err;
2017	}
2018
2019	/* LLD is going to write the sge hdr. */
2020	skb_reserve(skb, sizeof(struct sge_opaque_hdr));
2021
2022	/* Write WR */
2023	chcr_req = __skb_put_zero(skb, transhdr_len);
2024
2025	stop_offset = (op_type == CHCR_ENCRYPT_OP) ? 0 : authsize;
2026
2027	/*
2028	 * Input order	is AAD,IV and Payload. where IV should be included as
2029	 * the part of authdata. All other fields should be filled according
2030	 * to the hardware spec
2031	 */
2032	chcr_req->sec_cpl.op_ivinsrtofst =
2033		FILL_SEC_CPL_OP_IVINSR(ctx->dev->rx_channel_id, 2,
2034				       (ivsize ? (assoclen + 1) : 0));
2035	chcr_req->sec_cpl.pldlen = htonl(assoclen + ivsize + req->cryptlen);
2036	chcr_req->sec_cpl.aadstart_cipherstop_hi = FILL_SEC_CPL_CIPHERSTOP_HI(
2037					assoclen ? 1 : 0, assoclen,
2038					assoclen + ivsize + 1,
2039					(stop_offset & 0x1F0) >> 4);
2040	chcr_req->sec_cpl.cipherstop_lo_authinsert = FILL_SEC_CPL_AUTHINSERT(
2041					stop_offset & 0xF,
2042					null ? 0 : assoclen + ivsize + 1,
2043					stop_offset, stop_offset);
2044	chcr_req->sec_cpl.seqno_numivs = FILL_SEC_CPL_SCMD0_SEQNO(op_type,
2045					(op_type == CHCR_ENCRYPT_OP) ? 1 : 0,
2046					CHCR_SCMD_CIPHER_MODE_AES_CBC,
2047					actx->auth_mode, aeadctx->hmac_ctrl,
2048					ivsize >> 1);
2049	chcr_req->sec_cpl.ivgen_hdrlen =  FILL_SEC_CPL_IVGEN_HDRLEN(0, 0, 1,
2050					 0, 1, dst_size);
2051
2052	chcr_req->key_ctx.ctx_hdr = aeadctx->key_ctx_hdr;
2053	if (op_type == CHCR_ENCRYPT_OP)
2054		memcpy(chcr_req->key_ctx.key, aeadctx->key,
2055		       aeadctx->enckey_len);
2056	else
2057		memcpy(chcr_req->key_ctx.key, actx->dec_rrkey,
2058		       aeadctx->enckey_len);
2059
2060	memcpy(chcr_req->key_ctx.key + (DIV_ROUND_UP(aeadctx->enckey_len, 16) <<
2061					4), actx->h_iopad, kctx_len -
2062				(DIV_ROUND_UP(aeadctx->enckey_len, 16) << 4));
2063
2064	phys_cpl = (struct cpl_rx_phys_dsgl *)((u8 *)(chcr_req + 1) + kctx_len);
2065	sg_param.nents = reqctx->dst_nents;
2066	sg_param.obsize = req->cryptlen + (op_type ? -authsize : authsize);
2067	sg_param.qid = qid;
2068	error = map_writesg_phys_cpl(&u_ctx->lldi.pdev->dev, phys_cpl,
2069					reqctx->dst, &sg_param);
2070	if (error)
2071		goto dstmap_fail;
2072
2073	skb_set_transport_header(skb, transhdr_len);
2074
2075	if (assoclen) {
2076		/* AAD buffer in */
2077		write_sg_to_skb(skb, &frags, req->src, assoclen);
2078
2079	}
2080	write_buffer_to_skb(skb, &frags, req->iv, ivsize);
2081	write_sg_to_skb(skb, &frags, src, req->cryptlen);
2082	atomic_inc(&adap->chcr_stats.cipher_rqst);
2083	create_wreq(ctx, chcr_req, &req->base, skb, kctx_len, size, 1,
2084		   sizeof(struct cpl_rx_phys_dsgl) + dst_size, 0);
2085	reqctx->skb = skb;
2086	skb_get(skb);
2087
2088	return skb;
2089dstmap_fail:
2090	/* ivmap_fail: */
2091	kfree_skb(skb);
2092err:
2093	free_new_sg(reqctx->newdstsg);
2094	reqctx->newdstsg = NULL;
2095	return ERR_PTR(error);
2096}
2097
2098static int set_msg_len(u8 *block, unsigned int msglen, int csize)
2099{
2100	__be32 data;
2101
2102	memset(block, 0, csize);
2103	block += csize;
2104
2105	if (csize >= 4)
2106		csize = 4;
2107	else if (msglen > (unsigned int)(1 << (8 * csize)))
2108		return -EOVERFLOW;
2109
2110	data = cpu_to_be32(msglen);
2111	memcpy(block - csize, (u8 *)&data + 4 - csize, csize);
2112
2113	return 0;
2114}
2115
2116static void generate_b0(struct aead_request *req,
2117			struct chcr_aead_ctx *aeadctx,
2118			unsigned short op_type)
2119{
2120	unsigned int l, lp, m;
2121	int rc;
2122	struct crypto_aead *aead = crypto_aead_reqtfm(req);
2123	struct chcr_aead_reqctx *reqctx = aead_request_ctx(req);
2124	u8 *b0 = reqctx->scratch_pad;
2125
2126	m = crypto_aead_authsize(aead);
2127
2128	memcpy(b0, reqctx->iv, 16);
2129
2130	lp = b0[0];
2131	l = lp + 1;
2132
2133	/* set m, bits 3-5 */
2134	*b0 |= (8 * ((m - 2) / 2));
2135
2136	/* set adata, bit 6, if associated data is used */
2137	if (req->assoclen)
2138		*b0 |= 64;
2139	rc = set_msg_len(b0 + 16 - l,
2140			 (op_type == CHCR_DECRYPT_OP) ?
2141			 req->cryptlen - m : req->cryptlen, l);
2142}
2143
2144static inline int crypto_ccm_check_iv(const u8 *iv)
2145{
2146	/* 2 <= L <= 8, so 1 <= L' <= 7. */
2147	if (iv[0] < 1 || iv[0] > 7)
2148		return -EINVAL;
2149
2150	return 0;
2151}
2152
2153static int ccm_format_packet(struct aead_request *req,
2154			     struct chcr_aead_ctx *aeadctx,
2155			     unsigned int sub_type,
2156			     unsigned short op_type)
2157{
2158	struct chcr_aead_reqctx *reqctx = aead_request_ctx(req);
2159	int rc = 0;
2160
2161	if (sub_type == CRYPTO_ALG_SUB_TYPE_AEAD_RFC4309) {
2162		reqctx->iv[0] = 3;
2163		memcpy(reqctx->iv + 1, &aeadctx->salt[0], 3);
2164		memcpy(reqctx->iv + 4, req->iv, 8);
2165		memset(reqctx->iv + 12, 0, 4);
2166		*((unsigned short *)(reqctx->scratch_pad + 16)) =
2167			htons(req->assoclen - 8);
2168	} else {
2169		memcpy(reqctx->iv, req->iv, 16);
2170		*((unsigned short *)(reqctx->scratch_pad + 16)) =
2171			htons(req->assoclen);
2172	}
2173	generate_b0(req, aeadctx, op_type);
2174	/* zero the ctr value */
2175	memset(reqctx->iv + 15 - reqctx->iv[0], 0, reqctx->iv[0] + 1);
2176	return rc;
2177}
2178
2179static void fill_sec_cpl_for_aead(struct cpl_tx_sec_pdu *sec_cpl,
2180				  unsigned int dst_size,
2181				  struct aead_request *req,
2182				  unsigned short op_type,
2183					  struct chcr_context *chcrctx)
2184{
2185	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
2186	struct chcr_aead_ctx *aeadctx = AEAD_CTX(crypto_aead_ctx(tfm));
2187	unsigned int ivsize = AES_BLOCK_SIZE;
2188	unsigned int cipher_mode = CHCR_SCMD_CIPHER_MODE_AES_CCM;
2189	unsigned int mac_mode = CHCR_SCMD_AUTH_MODE_CBCMAC;
2190	unsigned int c_id = chcrctx->dev->rx_channel_id;
2191	unsigned int ccm_xtra;
2192	unsigned char tag_offset = 0, auth_offset = 0;
2193	unsigned int assoclen;
2194
2195	if (get_aead_subtype(tfm) == CRYPTO_ALG_SUB_TYPE_AEAD_RFC4309)
2196		assoclen = req->assoclen - 8;
2197	else
2198		assoclen = req->assoclen;
2199	ccm_xtra = CCM_B0_SIZE +
2200		((assoclen) ? CCM_AAD_FIELD_SIZE : 0);
2201
2202	auth_offset = req->cryptlen ?
2203		(assoclen + ivsize + 1 + ccm_xtra) : 0;
2204	if (op_type == CHCR_DECRYPT_OP) {
2205		if (crypto_aead_authsize(tfm) != req->cryptlen)
2206			tag_offset = crypto_aead_authsize(tfm);
2207		else
2208			auth_offset = 0;
2209	}
2210
2211
2212	sec_cpl->op_ivinsrtofst = FILL_SEC_CPL_OP_IVINSR(c_id,
2213					 2, (ivsize ?  (assoclen + 1) :  0) +
2214					 ccm_xtra);
2215	sec_cpl->pldlen =
2216		htonl(assoclen + ivsize + req->cryptlen + ccm_xtra);
2217	/* For CCM there wil be b0 always. So AAD start will be 1 always */
2218	sec_cpl->aadstart_cipherstop_hi = FILL_SEC_CPL_CIPHERSTOP_HI(
2219					1, assoclen + ccm_xtra, assoclen
2220					+ ivsize + 1 + ccm_xtra, 0);
2221
2222	sec_cpl->cipherstop_lo_authinsert = FILL_SEC_CPL_AUTHINSERT(0,
2223					auth_offset, tag_offset,
2224					(op_type == CHCR_ENCRYPT_OP) ? 0 :
2225					crypto_aead_authsize(tfm));
2226	sec_cpl->seqno_numivs =  FILL_SEC_CPL_SCMD0_SEQNO(op_type,
2227					(op_type == CHCR_ENCRYPT_OP) ? 0 : 1,
2228					cipher_mode, mac_mode,
2229					aeadctx->hmac_ctrl, ivsize >> 1);
2230
2231	sec_cpl->ivgen_hdrlen = FILL_SEC_CPL_IVGEN_HDRLEN(0, 0, 1, 0,
2232					1, dst_size);
2233}
2234
2235int aead_ccm_validate_input(unsigned short op_type,
2236			    struct aead_request *req,
2237			    struct chcr_aead_ctx *aeadctx,
2238			    unsigned int sub_type)
2239{
2240	if (sub_type != CRYPTO_ALG_SUB_TYPE_AEAD_RFC4309) {
2241		if (crypto_ccm_check_iv(req->iv)) {
2242			pr_err("CCM: IV check fails\n");
2243			return -EINVAL;
2244		}
2245	} else {
2246		if (req->assoclen != 16 && req->assoclen != 20) {
2247			pr_err("RFC4309: Invalid AAD length %d\n",
2248			       req->assoclen);
2249			return -EINVAL;
2250		}
2251	}
2252	if (aeadctx->enckey_len == 0) {
2253		pr_err("CCM: Encryption key not set\n");
2254		return -EINVAL;
2255	}
2256	return 0;
2257}
2258
2259unsigned int fill_aead_req_fields(struct sk_buff *skb,
2260				  struct aead_request *req,
2261				  struct scatterlist *src,
2262				  unsigned int ivsize,
2263				  struct chcr_aead_ctx *aeadctx)
2264{
2265	unsigned int frags = 0;
2266	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
2267	struct chcr_aead_reqctx *reqctx = aead_request_ctx(req);
2268	/* b0 and aad length(if available) */
2269
2270	write_buffer_to_skb(skb, &frags, reqctx->scratch_pad, CCM_B0_SIZE +
2271				(req->assoclen ?  CCM_AAD_FIELD_SIZE : 0));
2272	if (req->assoclen) {
2273		if (get_aead_subtype(tfm) == CRYPTO_ALG_SUB_TYPE_AEAD_RFC4309)
2274			write_sg_to_skb(skb, &frags, req->src,
2275					req->assoclen - 8);
2276		else
2277			write_sg_to_skb(skb, &frags, req->src, req->assoclen);
2278	}
2279	write_buffer_to_skb(skb, &frags, reqctx->iv, ivsize);
2280	if (req->cryptlen)
2281		write_sg_to_skb(skb, &frags, src, req->cryptlen);
2282
2283	return frags;
2284}
2285
2286static struct sk_buff *create_aead_ccm_wr(struct aead_request *req,
2287					  unsigned short qid,
2288					  int size,
2289					  unsigned short op_type)
2290{
2291	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
2292	struct chcr_context *ctx = crypto_aead_ctx(tfm);
2293	struct uld_ctx *u_ctx = ULD_CTX(ctx);
2294	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2295	struct chcr_aead_reqctx *reqctx = aead_request_ctx(req);
2296	struct sk_buff *skb = NULL;
2297	struct chcr_wr *chcr_req;
2298	struct cpl_rx_phys_dsgl *phys_cpl;
2299	struct phys_sge_parm sg_param;
2300	struct scatterlist *src;
2301	unsigned int frags = 0, transhdr_len, ivsize = AES_BLOCK_SIZE;
2302	unsigned int dst_size = 0, kctx_len, nents;
2303	unsigned int sub_type;
2304	unsigned int authsize = crypto_aead_authsize(tfm);
2305	int error = -EINVAL, src_nent;
2306	gfp_t flags = req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP ? GFP_KERNEL :
2307		GFP_ATOMIC;
2308	struct adapter *adap = padap(ctx->dev);
2309
2310	dst_size = req->assoclen + req->cryptlen + (op_type ? -authsize :
2311						   authsize);
2312	reqctx->newdstsg = NULL;
2313	if (op_type && req->cryptlen < crypto_aead_authsize(tfm))
2314		goto err;
2315	src_nent = sg_nents_for_len(req->src, req->assoclen + req->cryptlen);
2316	if (src_nent < 0)
2317		goto err;
2318
2319	sub_type = get_aead_subtype(tfm);
2320	src = scatterwalk_ffwd(reqctx->srcffwd, req->src, req->assoclen);
2321	if (req->src != req->dst) {
2322		error = chcr_copy_assoc(req, aeadctx);
2323		if (error) {
2324			pr_err("AAD copy to destination buffer fails\n");
2325			return ERR_PTR(error);
2326		}
2327	}
2328	if (dst_size && is_newsg(req->dst, &nents)) {
2329		reqctx->newdstsg = alloc_new_sg(req->dst, nents);
2330		if (IS_ERR(reqctx->newdstsg))
2331			return ERR_CAST(reqctx->newdstsg);
2332		reqctx->dst = scatterwalk_ffwd(reqctx->dstffwd,
2333					       reqctx->newdstsg, req->assoclen);
2334	} else {
2335		if (req->src == req->dst)
2336			reqctx->dst = src;
2337		else
2338			reqctx->dst = scatterwalk_ffwd(reqctx->dstffwd,
2339						       req->dst, req->assoclen);
2340	}
2341	reqctx->dst_nents = sg_nents_for_len(reqctx->dst, req->cryptlen +
2342					     (op_type ? -authsize : authsize));
2343	if (reqctx->dst_nents < 0) {
2344		pr_err("CCM:Invalid Destination sg entries\n");
2345		error = -EINVAL;
2346		goto err;
2347	}
2348	error = aead_ccm_validate_input(op_type, req, aeadctx, sub_type);
2349	if (error)
2350		goto err;
2351
2352	dst_size = get_space_for_phys_dsgl(reqctx->dst_nents);
2353	kctx_len = ((DIV_ROUND_UP(aeadctx->enckey_len, 16)) << 4) * 2;
2354	transhdr_len = CIPHER_TRANSHDR_SIZE(kctx_len, dst_size);
2355	if (chcr_aead_need_fallback(req, src_nent + MIN_CCM_SG,
2356			    T6_MAX_AAD_SIZE - 18,
2357			    transhdr_len + (sgl_len(src_nent + MIN_CCM_SG) * 8),
2358			    op_type)) {
2359		atomic_inc(&adap->chcr_stats.fallback);
2360		free_new_sg(reqctx->newdstsg);
2361		reqctx->newdstsg = NULL;
2362		return ERR_PTR(chcr_aead_fallback(req, op_type));
2363	}
2364
2365	skb = alloc_skb((transhdr_len + sizeof(struct sge_opaque_hdr)),  flags);
2366
2367	if (!skb) {
2368		error = -ENOMEM;
2369		goto err;
2370	}
2371
2372	skb_reserve(skb, sizeof(struct sge_opaque_hdr));
2373
2374	chcr_req = __skb_put_zero(skb, transhdr_len);
2375
2376	fill_sec_cpl_for_aead(&chcr_req->sec_cpl, dst_size, req, op_type, ctx);
2377
2378	chcr_req->key_ctx.ctx_hdr = aeadctx->key_ctx_hdr;
2379	memcpy(chcr_req->key_ctx.key, aeadctx->key, aeadctx->enckey_len);
2380	memcpy(chcr_req->key_ctx.key + (DIV_ROUND_UP(aeadctx->enckey_len, 16) *
2381					16), aeadctx->key, aeadctx->enckey_len);
2382
2383	phys_cpl = (struct cpl_rx_phys_dsgl *)((u8 *)(chcr_req + 1) + kctx_len);
2384	error = ccm_format_packet(req, aeadctx, sub_type, op_type);
2385	if (error)
2386		goto dstmap_fail;
2387
2388	sg_param.nents = reqctx->dst_nents;
2389	sg_param.obsize = req->cryptlen + (op_type ? -authsize : authsize);
2390	sg_param.qid = qid;
2391	error = map_writesg_phys_cpl(&u_ctx->lldi.pdev->dev, phys_cpl,
2392				 reqctx->dst, &sg_param);
2393	if (error)
2394		goto dstmap_fail;
2395
2396	skb_set_transport_header(skb, transhdr_len);
2397	frags = fill_aead_req_fields(skb, req, src, ivsize, aeadctx);
2398	atomic_inc(&adap->chcr_stats.aead_rqst);
2399	create_wreq(ctx, chcr_req, &req->base, skb, kctx_len, 0, 1,
2400		    sizeof(struct cpl_rx_phys_dsgl) + dst_size, 0);
2401	reqctx->skb = skb;
2402	skb_get(skb);
2403	return skb;
2404dstmap_fail:
2405	kfree_skb(skb);
2406err:
2407	free_new_sg(reqctx->newdstsg);
2408	reqctx->newdstsg = NULL;
2409	return ERR_PTR(error);
2410}
2411
2412static struct sk_buff *create_gcm_wr(struct aead_request *req,
2413				     unsigned short qid,
2414				     int size,
2415				     unsigned short op_type)
2416{
2417	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
2418	struct chcr_context *ctx = crypto_aead_ctx(tfm);
2419	struct uld_ctx *u_ctx = ULD_CTX(ctx);
2420	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2421	struct chcr_aead_reqctx  *reqctx = aead_request_ctx(req);
2422	struct sk_buff *skb = NULL;
2423	struct chcr_wr *chcr_req;
2424	struct cpl_rx_phys_dsgl *phys_cpl;
2425	struct phys_sge_parm sg_param;
2426	struct scatterlist *src;
2427	unsigned int frags = 0, transhdr_len;
2428	unsigned int ivsize = AES_BLOCK_SIZE;
2429	unsigned int dst_size = 0, kctx_len, nents, assoclen = req->assoclen;
2430	unsigned char tag_offset = 0;
2431	unsigned int authsize = crypto_aead_authsize(tfm);
2432	int error = -EINVAL, src_nent;
2433	gfp_t flags = req->base.flags & CRYPTO_TFM_REQ_MAY_SLEEP ? GFP_KERNEL :
2434		GFP_ATOMIC;
2435	struct adapter *adap = padap(ctx->dev);
2436
2437	reqctx->newdstsg = NULL;
2438	dst_size = assoclen + req->cryptlen + (op_type ? -authsize :
2439						    authsize);
2440	/* validate key size */
2441	if (aeadctx->enckey_len == 0)
2442		goto err;
2443
2444	if (op_type && req->cryptlen < crypto_aead_authsize(tfm))
2445		goto err;
2446	src_nent = sg_nents_for_len(req->src, assoclen + req->cryptlen);
2447	if (src_nent < 0)
2448		goto err;
2449
2450	src = scatterwalk_ffwd(reqctx->srcffwd, req->src, assoclen);
2451	if (req->src != req->dst) {
2452		error = chcr_copy_assoc(req, aeadctx);
2453		if (error)
2454			return	ERR_PTR(error);
2455	}
2456
2457	if (dst_size && is_newsg(req->dst, &nents)) {
2458		reqctx->newdstsg = alloc_new_sg(req->dst, nents);
2459		if (IS_ERR(reqctx->newdstsg))
2460			return ERR_CAST(reqctx->newdstsg);
2461		reqctx->dst = scatterwalk_ffwd(reqctx->dstffwd,
2462					       reqctx->newdstsg, assoclen);
2463	} else {
2464		if (req->src == req->dst)
2465			reqctx->dst = src;
2466		else
2467			reqctx->dst = scatterwalk_ffwd(reqctx->dstffwd,
2468						       req->dst, assoclen);
2469	}
2470
2471	reqctx->dst_nents = sg_nents_for_len(reqctx->dst, req->cryptlen +
2472					     (op_type ? -authsize : authsize));
2473	if (reqctx->dst_nents < 0) {
2474		pr_err("GCM:Invalid Destination sg entries\n");
2475		error = -EINVAL;
2476		goto err;
2477	}
2478
2479
2480	dst_size = get_space_for_phys_dsgl(reqctx->dst_nents);
2481	kctx_len = ((DIV_ROUND_UP(aeadctx->enckey_len, 16)) << 4) +
2482		AEAD_H_SIZE;
2483	transhdr_len = CIPHER_TRANSHDR_SIZE(kctx_len, dst_size);
2484	if (chcr_aead_need_fallback(req, src_nent + MIN_GCM_SG,
2485			    T6_MAX_AAD_SIZE,
2486			    transhdr_len + (sgl_len(src_nent + MIN_GCM_SG) * 8),
2487			    op_type)) {
2488		atomic_inc(&adap->chcr_stats.fallback);
2489		free_new_sg(reqctx->newdstsg);
2490		reqctx->newdstsg = NULL;
2491		return ERR_PTR(chcr_aead_fallback(req, op_type));
2492	}
2493	skb = alloc_skb((transhdr_len + sizeof(struct sge_opaque_hdr)), flags);
2494	if (!skb) {
2495		error = -ENOMEM;
2496		goto err;
2497	}
2498
2499	/* NIC driver is going to write the sge hdr. */
2500	skb_reserve(skb, sizeof(struct sge_opaque_hdr));
2501
2502	chcr_req = __skb_put_zero(skb, transhdr_len);
2503
2504	if (get_aead_subtype(tfm) == CRYPTO_ALG_SUB_TYPE_AEAD_RFC4106)
2505		assoclen = req->assoclen - 8;
2506
2507	tag_offset = (op_type == CHCR_ENCRYPT_OP) ? 0 : authsize;
2508	chcr_req->sec_cpl.op_ivinsrtofst = FILL_SEC_CPL_OP_IVINSR(
2509					ctx->dev->rx_channel_id, 2, (ivsize ?
2510					(assoclen + 1) : 0));
2511	chcr_req->sec_cpl.pldlen =
2512		htonl(assoclen + ivsize + req->cryptlen);
2513	chcr_req->sec_cpl.aadstart_cipherstop_hi = FILL_SEC_CPL_CIPHERSTOP_HI(
2514					assoclen ? 1 : 0, assoclen,
2515					assoclen + ivsize + 1, 0);
2516		chcr_req->sec_cpl.cipherstop_lo_authinsert =
2517			FILL_SEC_CPL_AUTHINSERT(0, assoclen + ivsize + 1,
2518						tag_offset, tag_offset);
2519		chcr_req->sec_cpl.seqno_numivs =
2520			FILL_SEC_CPL_SCMD0_SEQNO(op_type, (op_type ==
2521					CHCR_ENCRYPT_OP) ? 1 : 0,
2522					CHCR_SCMD_CIPHER_MODE_AES_GCM,
2523					CHCR_SCMD_AUTH_MODE_GHASH,
2524					aeadctx->hmac_ctrl, ivsize >> 1);
2525	chcr_req->sec_cpl.ivgen_hdrlen =  FILL_SEC_CPL_IVGEN_HDRLEN(0, 0, 1,
2526					0, 1, dst_size);
2527	chcr_req->key_ctx.ctx_hdr = aeadctx->key_ctx_hdr;
2528	memcpy(chcr_req->key_ctx.key, aeadctx->key, aeadctx->enckey_len);
2529	memcpy(chcr_req->key_ctx.key + (DIV_ROUND_UP(aeadctx->enckey_len, 16) *
2530				16), GCM_CTX(aeadctx)->ghash_h, AEAD_H_SIZE);
2531
2532	/* prepare a 16 byte iv */
2533	/* S   A   L  T |  IV | 0x00000001 */
2534	if (get_aead_subtype(tfm) ==
2535	    CRYPTO_ALG_SUB_TYPE_AEAD_RFC4106) {
2536		memcpy(reqctx->iv, aeadctx->salt, 4);
2537		memcpy(reqctx->iv + 4, req->iv, 8);
2538	} else {
2539		memcpy(reqctx->iv, req->iv, 12);
2540	}
2541	*((unsigned int *)(reqctx->iv + 12)) = htonl(0x01);
2542
2543	phys_cpl = (struct cpl_rx_phys_dsgl *)((u8 *)(chcr_req + 1) + kctx_len);
2544	sg_param.nents = reqctx->dst_nents;
2545	sg_param.obsize = req->cryptlen + (op_type ? -authsize : authsize);
2546	sg_param.qid = qid;
2547	error = map_writesg_phys_cpl(&u_ctx->lldi.pdev->dev, phys_cpl,
2548					  reqctx->dst, &sg_param);
2549	if (error)
2550		goto dstmap_fail;
2551
2552	skb_set_transport_header(skb, transhdr_len);
2553	write_sg_to_skb(skb, &frags, req->src, assoclen);
2554	write_buffer_to_skb(skb, &frags, reqctx->iv, ivsize);
2555	write_sg_to_skb(skb, &frags, src, req->cryptlen);
2556	atomic_inc(&adap->chcr_stats.aead_rqst);
2557	create_wreq(ctx, chcr_req, &req->base, skb, kctx_len, size, 1,
2558			sizeof(struct cpl_rx_phys_dsgl) + dst_size,
2559			reqctx->verify);
2560	reqctx->skb = skb;
2561	skb_get(skb);
2562	return skb;
2563
2564dstmap_fail:
2565	/* ivmap_fail: */
2566	kfree_skb(skb);
2567err:
2568	free_new_sg(reqctx->newdstsg);
2569	reqctx->newdstsg = NULL;
2570	return ERR_PTR(error);
2571}
2572
2573
2574
2575static int chcr_aead_cra_init(struct crypto_aead *tfm)
2576{
2577	struct chcr_context *ctx = crypto_aead_ctx(tfm);
2578	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2579	struct aead_alg *alg = crypto_aead_alg(tfm);
2580
2581	aeadctx->sw_cipher = crypto_alloc_aead(alg->base.cra_name, 0,
2582					       CRYPTO_ALG_NEED_FALLBACK |
2583					       CRYPTO_ALG_ASYNC);
2584	if  (IS_ERR(aeadctx->sw_cipher))
2585		return PTR_ERR(aeadctx->sw_cipher);
2586	crypto_aead_set_reqsize(tfm, max(sizeof(struct chcr_aead_reqctx),
2587				 sizeof(struct aead_request) +
2588				 crypto_aead_reqsize(aeadctx->sw_cipher)));
2589	aeadctx->null = crypto_get_default_null_skcipher();
2590	if (IS_ERR(aeadctx->null))
2591		return PTR_ERR(aeadctx->null);
2592	return chcr_device_init(ctx);
2593}
2594
2595static void chcr_aead_cra_exit(struct crypto_aead *tfm)
2596{
2597	struct chcr_context *ctx = crypto_aead_ctx(tfm);
2598	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2599
2600	crypto_put_default_null_skcipher();
2601	crypto_free_aead(aeadctx->sw_cipher);
2602}
2603
2604static int chcr_authenc_null_setauthsize(struct crypto_aead *tfm,
2605					unsigned int authsize)
2606{
2607	struct chcr_aead_ctx *aeadctx = AEAD_CTX(crypto_aead_ctx(tfm));
2608
2609	aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_NOP;
2610	aeadctx->mayverify = VERIFY_HW;
2611	return crypto_aead_setauthsize(aeadctx->sw_cipher, authsize);
2612}
2613static int chcr_authenc_setauthsize(struct crypto_aead *tfm,
2614				    unsigned int authsize)
2615{
2616	struct chcr_aead_ctx *aeadctx = AEAD_CTX(crypto_aead_ctx(tfm));
2617	u32 maxauth = crypto_aead_maxauthsize(tfm);
2618
2619	/*SHA1 authsize in ipsec is 12 instead of 10 i.e maxauthsize / 2 is not
2620	 * true for sha1. authsize == 12 condition should be before
2621	 * authsize == (maxauth >> 1)
2622	 */
2623	if (authsize == ICV_4) {
2624		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_PL1;
2625		aeadctx->mayverify = VERIFY_HW;
2626	} else if (authsize == ICV_6) {
2627		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_PL2;
2628		aeadctx->mayverify = VERIFY_HW;
2629	} else if (authsize == ICV_10) {
2630		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_TRUNC_RFC4366;
2631		aeadctx->mayverify = VERIFY_HW;
2632	} else if (authsize == ICV_12) {
2633		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_IPSEC_96BIT;
2634		aeadctx->mayverify = VERIFY_HW;
2635	} else if (authsize == ICV_14) {
2636		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_PL3;
2637		aeadctx->mayverify = VERIFY_HW;
2638	} else if (authsize == (maxauth >> 1)) {
2639		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_DIV2;
2640		aeadctx->mayverify = VERIFY_HW;
2641	} else if (authsize == maxauth) {
2642		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_NO_TRUNC;
2643		aeadctx->mayverify = VERIFY_HW;
2644	} else {
2645		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_NO_TRUNC;
2646		aeadctx->mayverify = VERIFY_SW;
2647	}
2648	return crypto_aead_setauthsize(aeadctx->sw_cipher, authsize);
2649}
2650
2651
2652static int chcr_gcm_setauthsize(struct crypto_aead *tfm, unsigned int authsize)
2653{
2654	struct chcr_aead_ctx *aeadctx = AEAD_CTX(crypto_aead_ctx(tfm));
2655
2656	switch (authsize) {
2657	case ICV_4:
2658		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_PL1;
2659		aeadctx->mayverify = VERIFY_HW;
2660		break;
2661	case ICV_8:
2662		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_DIV2;
2663		aeadctx->mayverify = VERIFY_HW;
2664		break;
2665	case ICV_12:
2666		 aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_IPSEC_96BIT;
2667		 aeadctx->mayverify = VERIFY_HW;
2668		break;
2669	case ICV_14:
2670		 aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_PL3;
2671		 aeadctx->mayverify = VERIFY_HW;
2672		break;
2673	case ICV_16:
2674		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_NO_TRUNC;
2675		aeadctx->mayverify = VERIFY_HW;
2676		break;
2677	case ICV_13:
2678	case ICV_15:
2679		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_NO_TRUNC;
2680		aeadctx->mayverify = VERIFY_SW;
2681		break;
2682	default:
2683
2684		  crypto_tfm_set_flags((struct crypto_tfm *) tfm,
2685			CRYPTO_TFM_RES_BAD_KEY_LEN);
2686		return -EINVAL;
2687	}
2688	return crypto_aead_setauthsize(aeadctx->sw_cipher, authsize);
2689}
2690
2691static int chcr_4106_4309_setauthsize(struct crypto_aead *tfm,
2692					  unsigned int authsize)
2693{
2694	struct chcr_aead_ctx *aeadctx = AEAD_CTX(crypto_aead_ctx(tfm));
2695
2696	switch (authsize) {
2697	case ICV_8:
2698		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_DIV2;
2699		aeadctx->mayverify = VERIFY_HW;
2700		break;
2701	case ICV_12:
2702		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_IPSEC_96BIT;
2703		aeadctx->mayverify = VERIFY_HW;
2704		break;
2705	case ICV_16:
2706		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_NO_TRUNC;
2707		aeadctx->mayverify = VERIFY_HW;
2708		break;
2709	default:
2710		crypto_tfm_set_flags((struct crypto_tfm *)tfm,
2711				     CRYPTO_TFM_RES_BAD_KEY_LEN);
2712		return -EINVAL;
2713	}
2714	return crypto_aead_setauthsize(aeadctx->sw_cipher, authsize);
2715}
2716
2717static int chcr_ccm_setauthsize(struct crypto_aead *tfm,
2718				unsigned int authsize)
2719{
2720	struct chcr_aead_ctx *aeadctx = AEAD_CTX(crypto_aead_ctx(tfm));
2721
2722	switch (authsize) {
2723	case ICV_4:
2724		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_PL1;
2725		aeadctx->mayverify = VERIFY_HW;
2726		break;
2727	case ICV_6:
2728		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_PL2;
2729		aeadctx->mayverify = VERIFY_HW;
2730		break;
2731	case ICV_8:
2732		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_DIV2;
2733		aeadctx->mayverify = VERIFY_HW;
2734		break;
2735	case ICV_10:
2736		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_TRUNC_RFC4366;
2737		aeadctx->mayverify = VERIFY_HW;
2738		break;
2739	case ICV_12:
2740		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_IPSEC_96BIT;
2741		aeadctx->mayverify = VERIFY_HW;
2742		break;
2743	case ICV_14:
2744		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_PL3;
2745		aeadctx->mayverify = VERIFY_HW;
2746		break;
2747	case ICV_16:
2748		aeadctx->hmac_ctrl = CHCR_SCMD_HMAC_CTRL_NO_TRUNC;
2749		aeadctx->mayverify = VERIFY_HW;
2750		break;
2751	default:
2752		crypto_tfm_set_flags((struct crypto_tfm *)tfm,
2753				     CRYPTO_TFM_RES_BAD_KEY_LEN);
2754		return -EINVAL;
2755	}
2756	return crypto_aead_setauthsize(aeadctx->sw_cipher, authsize);
2757}
2758
2759static int chcr_ccm_common_setkey(struct crypto_aead *aead,
2760				const u8 *key,
2761				unsigned int keylen)
2762{
2763	struct chcr_context *ctx = crypto_aead_ctx(aead);
2764	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2765	unsigned char ck_size, mk_size;
2766	int key_ctx_size = 0;
2767
2768	key_ctx_size = sizeof(struct _key_ctx) +
2769		((DIV_ROUND_UP(keylen, 16)) << 4)  * 2;
2770	if (keylen == AES_KEYSIZE_128) {
2771		mk_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_128;
2772		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_128;
2773	} else if (keylen == AES_KEYSIZE_192) {
2774		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_192;
2775		mk_size = CHCR_KEYCTX_MAC_KEY_SIZE_192;
2776	} else if (keylen == AES_KEYSIZE_256) {
2777		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_256;
2778		mk_size = CHCR_KEYCTX_MAC_KEY_SIZE_256;
2779	} else {
2780		crypto_tfm_set_flags((struct crypto_tfm *)aead,
2781				     CRYPTO_TFM_RES_BAD_KEY_LEN);
2782		aeadctx->enckey_len = 0;
2783		return	-EINVAL;
2784	}
2785	aeadctx->key_ctx_hdr = FILL_KEY_CTX_HDR(ck_size, mk_size, 0, 0,
2786						key_ctx_size >> 4);
2787	memcpy(aeadctx->key, key, keylen);
2788	aeadctx->enckey_len = keylen;
2789
2790	return 0;
2791}
2792
2793static int chcr_aead_ccm_setkey(struct crypto_aead *aead,
2794				const u8 *key,
2795				unsigned int keylen)
2796{
2797	struct chcr_context *ctx = crypto_aead_ctx(aead);
2798	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2799	int error;
2800
2801	crypto_aead_clear_flags(aeadctx->sw_cipher, CRYPTO_TFM_REQ_MASK);
2802	crypto_aead_set_flags(aeadctx->sw_cipher, crypto_aead_get_flags(aead) &
2803			      CRYPTO_TFM_REQ_MASK);
2804	error = crypto_aead_setkey(aeadctx->sw_cipher, key, keylen);
2805	crypto_aead_clear_flags(aead, CRYPTO_TFM_RES_MASK);
2806	crypto_aead_set_flags(aead, crypto_aead_get_flags(aeadctx->sw_cipher) &
2807			      CRYPTO_TFM_RES_MASK);
2808	if (error)
2809		return error;
2810	return chcr_ccm_common_setkey(aead, key, keylen);
2811}
2812
2813static int chcr_aead_rfc4309_setkey(struct crypto_aead *aead, const u8 *key,
2814				    unsigned int keylen)
2815{
2816	struct chcr_context *ctx = crypto_aead_ctx(aead);
2817	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2818	int error;
2819
2820	if (keylen < 3) {
2821		crypto_tfm_set_flags((struct crypto_tfm *)aead,
2822				     CRYPTO_TFM_RES_BAD_KEY_LEN);
2823		aeadctx->enckey_len = 0;
2824		return	-EINVAL;
2825	}
2826	crypto_aead_clear_flags(aeadctx->sw_cipher, CRYPTO_TFM_REQ_MASK);
2827	crypto_aead_set_flags(aeadctx->sw_cipher, crypto_aead_get_flags(aead) &
2828			      CRYPTO_TFM_REQ_MASK);
2829	error = crypto_aead_setkey(aeadctx->sw_cipher, key, keylen);
2830	crypto_aead_clear_flags(aead, CRYPTO_TFM_RES_MASK);
2831	crypto_aead_set_flags(aead, crypto_aead_get_flags(aeadctx->sw_cipher) &
2832			      CRYPTO_TFM_RES_MASK);
2833	if (error)
2834		return error;
2835	keylen -= 3;
2836	memcpy(aeadctx->salt, key + keylen, 3);
2837	return chcr_ccm_common_setkey(aead, key, keylen);
2838}
2839
2840static int chcr_gcm_setkey(struct crypto_aead *aead, const u8 *key,
2841			   unsigned int keylen)
2842{
2843	struct chcr_context *ctx = crypto_aead_ctx(aead);
2844	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2845	struct chcr_gcm_ctx *gctx = GCM_CTX(aeadctx);
2846	struct crypto_cipher *cipher;
2847	unsigned int ck_size;
2848	int ret = 0, key_ctx_size = 0;
2849
2850	aeadctx->enckey_len = 0;
2851	crypto_aead_clear_flags(aeadctx->sw_cipher, CRYPTO_TFM_REQ_MASK);
2852	crypto_aead_set_flags(aeadctx->sw_cipher, crypto_aead_get_flags(aead)
2853			      & CRYPTO_TFM_REQ_MASK);
2854	ret = crypto_aead_setkey(aeadctx->sw_cipher, key, keylen);
2855	crypto_aead_clear_flags(aead, CRYPTO_TFM_RES_MASK);
2856	crypto_aead_set_flags(aead, crypto_aead_get_flags(aeadctx->sw_cipher) &
2857			      CRYPTO_TFM_RES_MASK);
2858	if (ret)
2859		goto out;
2860
2861	if (get_aead_subtype(aead) == CRYPTO_ALG_SUB_TYPE_AEAD_RFC4106 &&
2862	    keylen > 3) {
2863		keylen -= 4;  /* nonce/salt is present in the last 4 bytes */
2864		memcpy(aeadctx->salt, key + keylen, 4);
2865	}
2866	if (keylen == AES_KEYSIZE_128) {
2867		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_128;
2868	} else if (keylen == AES_KEYSIZE_192) {
2869		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_192;
2870	} else if (keylen == AES_KEYSIZE_256) {
2871		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_256;
2872	} else {
2873		crypto_tfm_set_flags((struct crypto_tfm *)aead,
2874				     CRYPTO_TFM_RES_BAD_KEY_LEN);
2875		pr_err("GCM: Invalid key length %d\n", keylen);
2876		ret = -EINVAL;
2877		goto out;
2878	}
2879
2880	memcpy(aeadctx->key, key, keylen);
2881	aeadctx->enckey_len = keylen;
2882	key_ctx_size = sizeof(struct _key_ctx) +
2883		((DIV_ROUND_UP(keylen, 16)) << 4) +
2884		AEAD_H_SIZE;
2885		aeadctx->key_ctx_hdr = FILL_KEY_CTX_HDR(ck_size,
2886						CHCR_KEYCTX_MAC_KEY_SIZE_128,
2887						0, 0,
2888						key_ctx_size >> 4);
2889	/* Calculate the H = CIPH(K, 0 repeated 16 times).
2890	 * It will go in key context
2891	 */
2892	cipher = crypto_alloc_cipher("aes-generic", 0, 0);
2893	if (IS_ERR(cipher)) {
2894		aeadctx->enckey_len = 0;
2895		ret = -ENOMEM;
2896		goto out;
2897	}
2898
2899	ret = crypto_cipher_setkey(cipher, key, keylen);
2900	if (ret) {
2901		aeadctx->enckey_len = 0;
2902		goto out1;
2903	}
2904	memset(gctx->ghash_h, 0, AEAD_H_SIZE);
2905	crypto_cipher_encrypt_one(cipher, gctx->ghash_h, gctx->ghash_h);
2906
2907out1:
2908	crypto_free_cipher(cipher);
2909out:
2910	return ret;
2911}
2912
2913static int chcr_authenc_setkey(struct crypto_aead *authenc, const u8 *key,
2914				   unsigned int keylen)
2915{
2916	struct chcr_context *ctx = crypto_aead_ctx(authenc);
2917	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
2918	struct chcr_authenc_ctx *actx = AUTHENC_CTX(aeadctx);
2919	/* it contains auth and cipher key both*/
2920	struct crypto_authenc_keys keys;
2921	unsigned int bs;
2922	unsigned int max_authsize = crypto_aead_alg(authenc)->maxauthsize;
2923	int err = 0, i, key_ctx_len = 0;
2924	unsigned char ck_size = 0;
2925	unsigned char pad[CHCR_HASH_MAX_BLOCK_SIZE_128] = { 0 };
2926	struct crypto_shash *base_hash = ERR_PTR(-EINVAL);
2927	struct algo_param param;
2928	int align;
2929	u8 *o_ptr = NULL;
2930
2931	crypto_aead_clear_flags(aeadctx->sw_cipher, CRYPTO_TFM_REQ_MASK);
2932	crypto_aead_set_flags(aeadctx->sw_cipher, crypto_aead_get_flags(authenc)
2933			      & CRYPTO_TFM_REQ_MASK);
2934	err = crypto_aead_setkey(aeadctx->sw_cipher, key, keylen);
2935	crypto_aead_clear_flags(authenc, CRYPTO_TFM_RES_MASK);
2936	crypto_aead_set_flags(authenc, crypto_aead_get_flags(aeadctx->sw_cipher)
2937			      & CRYPTO_TFM_RES_MASK);
2938	if (err)
2939		goto out;
2940
2941	if (crypto_authenc_extractkeys(&keys, key, keylen) != 0) {
2942		crypto_aead_set_flags(authenc, CRYPTO_TFM_RES_BAD_KEY_LEN);
2943		goto out;
2944	}
2945
2946	if (get_alg_config(&param, max_authsize)) {
2947		pr_err("chcr : Unsupported digest size\n");
2948		goto out;
2949	}
2950	if (keys.enckeylen == AES_KEYSIZE_128) {
2951		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_128;
2952	} else if (keys.enckeylen == AES_KEYSIZE_192) {
2953		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_192;
2954	} else if (keys.enckeylen == AES_KEYSIZE_256) {
2955		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_256;
2956	} else {
2957		pr_err("chcr : Unsupported cipher key\n");
2958		goto out;
2959	}
2960
2961	/* Copy only encryption key. We use authkey to generate h(ipad) and
2962	 * h(opad) so authkey is not needed again. authkeylen size have the
2963	 * size of the hash digest size.
2964	 */
2965	memcpy(aeadctx->key, keys.enckey, keys.enckeylen);
2966	aeadctx->enckey_len = keys.enckeylen;
2967	get_aes_decrypt_key(actx->dec_rrkey, aeadctx->key,
2968			    aeadctx->enckey_len << 3);
2969
2970	base_hash  = chcr_alloc_shash(max_authsize);
2971	if (IS_ERR(base_hash)) {
2972		pr_err("chcr : Base driver cannot be loaded\n");
2973		aeadctx->enckey_len = 0;
2974		return -EINVAL;
2975	}
2976	{
2977		SHASH_DESC_ON_STACK(shash, base_hash);
2978		shash->tfm = base_hash;
2979		shash->flags = crypto_shash_get_flags(base_hash);
2980		bs = crypto_shash_blocksize(base_hash);
2981		align = KEYCTX_ALIGN_PAD(max_authsize);
2982		o_ptr =  actx->h_iopad + param.result_size + align;
2983
2984		if (keys.authkeylen > bs) {
2985			err = crypto_shash_digest(shash, keys.authkey,
2986						  keys.authkeylen,
2987						  o_ptr);
2988			if (err) {
2989				pr_err("chcr : Base driver cannot be loaded\n");
2990				goto out;
2991			}
2992			keys.authkeylen = max_authsize;
2993		} else
2994			memcpy(o_ptr, keys.authkey, keys.authkeylen);
2995
2996		/* Compute the ipad-digest*/
2997		memset(pad + keys.authkeylen, 0, bs - keys.authkeylen);
2998		memcpy(pad, o_ptr, keys.authkeylen);
2999		for (i = 0; i < bs >> 2; i++)
3000			*((unsigned int *)pad + i) ^= IPAD_DATA;
3001
3002		if (chcr_compute_partial_hash(shash, pad, actx->h_iopad,
3003					      max_authsize))
3004			goto out;
3005		/* Compute the opad-digest */
3006		memset(pad + keys.authkeylen, 0, bs - keys.authkeylen);
3007		memcpy(pad, o_ptr, keys.authkeylen);
3008		for (i = 0; i < bs >> 2; i++)
3009			*((unsigned int *)pad + i) ^= OPAD_DATA;
3010
3011		if (chcr_compute_partial_hash(shash, pad, o_ptr, max_authsize))
3012			goto out;
3013
3014		/* convert the ipad and opad digest to network order */
3015		chcr_change_order(actx->h_iopad, param.result_size);
3016		chcr_change_order(o_ptr, param.result_size);
3017		key_ctx_len = sizeof(struct _key_ctx) +
3018			((DIV_ROUND_UP(keys.enckeylen, 16)) << 4) +
3019			(param.result_size + align) * 2;
3020		aeadctx->key_ctx_hdr = FILL_KEY_CTX_HDR(ck_size, param.mk_size,
3021						0, 1, key_ctx_len >> 4);
3022		actx->auth_mode = param.auth_mode;
3023		chcr_free_shash(base_hash);
3024
3025		return 0;
3026	}
3027out:
3028	aeadctx->enckey_len = 0;
3029	if (!IS_ERR(base_hash))
3030		chcr_free_shash(base_hash);
3031	return -EINVAL;
3032}
3033
3034static int chcr_aead_digest_null_setkey(struct crypto_aead *authenc,
3035					const u8 *key, unsigned int keylen)
3036{
3037	struct chcr_context *ctx = crypto_aead_ctx(authenc);
3038	struct chcr_aead_ctx *aeadctx = AEAD_CTX(ctx);
3039	struct chcr_authenc_ctx *actx = AUTHENC_CTX(aeadctx);
3040	struct crypto_authenc_keys keys;
3041	int err;
3042	/* it contains auth and cipher key both*/
3043	int key_ctx_len = 0;
3044	unsigned char ck_size = 0;
3045
3046	crypto_aead_clear_flags(aeadctx->sw_cipher, CRYPTO_TFM_REQ_MASK);
3047	crypto_aead_set_flags(aeadctx->sw_cipher, crypto_aead_get_flags(authenc)
3048			      & CRYPTO_TFM_REQ_MASK);
3049	err = crypto_aead_setkey(aeadctx->sw_cipher, key, keylen);
3050	crypto_aead_clear_flags(authenc, CRYPTO_TFM_RES_MASK);
3051	crypto_aead_set_flags(authenc, crypto_aead_get_flags(aeadctx->sw_cipher)
3052			      & CRYPTO_TFM_RES_MASK);
3053	if (err)
3054		goto out;
3055
3056	if (crypto_authenc_extractkeys(&keys, key, keylen) != 0) {
3057		crypto_aead_set_flags(authenc, CRYPTO_TFM_RES_BAD_KEY_LEN);
3058		goto out;
3059	}
3060	if (keys.enckeylen == AES_KEYSIZE_128) {
3061		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_128;
3062	} else if (keys.enckeylen == AES_KEYSIZE_192) {
3063		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_192;
3064	} else if (keys.enckeylen == AES_KEYSIZE_256) {
3065		ck_size = CHCR_KEYCTX_CIPHER_KEY_SIZE_256;
3066	} else {
3067		pr_err("chcr : Unsupported cipher key\n");
3068		goto out;
3069	}
3070	memcpy(aeadctx->key, keys.enckey, keys.enckeylen);
3071	aeadctx->enckey_len = keys.enckeylen;
3072	get_aes_decrypt_key(actx->dec_rrkey, aeadctx->key,
3073				    aeadctx->enckey_len << 3);
3074	key_ctx_len =  sizeof(struct _key_ctx)
3075		+ ((DIV_ROUND_UP(keys.enckeylen, 16)) << 4);
3076
3077	aeadctx->key_ctx_hdr = FILL_KEY_CTX_HDR(ck_size, CHCR_KEYCTX_NO_KEY, 0,
3078						0, key_ctx_len >> 4);
3079	actx->auth_mode = CHCR_SCMD_AUTH_MODE_NOP;
3080	return 0;
3081out:
3082	aeadctx->enckey_len = 0;
3083	return -EINVAL;
3084}
3085static int chcr_aead_encrypt(struct aead_request *req)
3086{
3087	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
3088	struct chcr_aead_reqctx *reqctx = aead_request_ctx(req);
3089
3090	reqctx->verify = VERIFY_HW;
3091
3092	switch (get_aead_subtype(tfm)) {
3093	case CRYPTO_ALG_SUB_TYPE_AEAD_AUTHENC:
3094	case CRYPTO_ALG_SUB_TYPE_AEAD_NULL:
3095		return chcr_aead_op(req, CHCR_ENCRYPT_OP, 0,
3096				    create_authenc_wr);
3097	case CRYPTO_ALG_SUB_TYPE_AEAD_CCM:
3098	case CRYPTO_ALG_SUB_TYPE_AEAD_RFC4309:
3099		return chcr_aead_op(req, CHCR_ENCRYPT_OP, 0,
3100				    create_aead_ccm_wr);
3101	default:
3102		return chcr_aead_op(req, CHCR_ENCRYPT_OP, 0,
3103				    create_gcm_wr);
3104	}
3105}
3106
3107static int chcr_aead_decrypt(struct aead_request *req)
3108{
3109	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
3110	struct chcr_aead_ctx *aeadctx = AEAD_CTX(crypto_aead_ctx(tfm));
3111	struct chcr_aead_reqctx *reqctx = aead_request_ctx(req);
3112	int size;
3113
3114	if (aeadctx->mayverify == VERIFY_SW) {
3115		size = crypto_aead_maxauthsize(tfm);
3116		reqctx->verify = VERIFY_SW;
3117	} else {
3118		size = 0;
3119		reqctx->verify = VERIFY_HW;
3120	}
3121
3122	switch (get_aead_subtype(tfm)) {
3123	case CRYPTO_ALG_SUB_TYPE_AEAD_AUTHENC:
3124	case CRYPTO_ALG_SUB_TYPE_AEAD_NULL:
3125		return chcr_aead_op(req, CHCR_DECRYPT_OP, size,
3126				    create_authenc_wr);
3127	case CRYPTO_ALG_SUB_TYPE_AEAD_CCM:
3128	case CRYPTO_ALG_SUB_TYPE_AEAD_RFC4309:
3129		return chcr_aead_op(req, CHCR_DECRYPT_OP, size,
3130				    create_aead_ccm_wr);
3131	default:
3132		return chcr_aead_op(req, CHCR_DECRYPT_OP, size,
3133				    create_gcm_wr);
3134	}
3135}
3136
3137static int chcr_aead_op(struct aead_request *req,
3138			  unsigned short op_type,
3139			  int size,
3140			  create_wr_t create_wr_fn)
3141{
3142	struct crypto_aead *tfm = crypto_aead_reqtfm(req);
3143	struct chcr_context *ctx = crypto_aead_ctx(tfm);
3144	struct uld_ctx *u_ctx;
3145	struct sk_buff *skb;
3146
3147	if (!ctx->dev) {
3148		pr_err("chcr : %s : No crypto device.\n", __func__);
3149		return -ENXIO;
3150	}
3151	u_ctx = ULD_CTX(ctx);
3152	if (cxgb4_is_crypto_q_full(u_ctx->lldi.ports[0],
3153				   ctx->tx_qidx)) {
3154		if (!(req->base.flags & CRYPTO_TFM_REQ_MAY_BACKLOG))
3155			return -EBUSY;
3156	}
3157
3158	/* Form a WR from req */
3159	skb = create_wr_fn(req, u_ctx->lldi.rxq_ids[ctx->rx_qidx], size,
3160			   op_type);
3161
3162	if (IS_ERR(skb) || !skb)
3163		return PTR_ERR(skb);
3164
3165	skb->dev = u_ctx->lldi.ports[0];
3166	set_wr_txq(skb, CPL_PRIORITY_DATA, ctx->tx_qidx);
3167	chcr_send_wr(skb);
3168	return -EINPROGRESS;
3169}
3170static struct chcr_alg_template driver_algs[] = {
3171	/* AES-CBC */
3172	{
3173		.type = CRYPTO_ALG_TYPE_ABLKCIPHER | CRYPTO_ALG_SUB_TYPE_CBC,
3174		.is_registered = 0,
3175		.alg.crypto = {
3176			.cra_name		= "cbc(aes)",
3177			.cra_driver_name	= "cbc-aes-chcr",
3178			.cra_blocksize		= AES_BLOCK_SIZE,
3179			.cra_init		= chcr_cra_init,
3180			.cra_exit		= chcr_cra_exit,
3181			.cra_u.ablkcipher	= {
3182				.min_keysize	= AES_MIN_KEY_SIZE,
3183				.max_keysize	= AES_MAX_KEY_SIZE,
3184				.ivsize		= AES_BLOCK_SIZE,
3185				.setkey			= chcr_aes_cbc_setkey,
3186				.encrypt		= chcr_aes_encrypt,
3187				.decrypt		= chcr_aes_decrypt,
3188			}
3189		}
3190	},
3191	{
3192		.type = CRYPTO_ALG_TYPE_ABLKCIPHER | CRYPTO_ALG_SUB_TYPE_XTS,
3193		.is_registered = 0,
3194		.alg.crypto =   {
3195			.cra_name		= "xts(aes)",
3196			.cra_driver_name	= "xts-aes-chcr",
3197			.cra_blocksize		= AES_BLOCK_SIZE,
3198			.cra_init		= chcr_cra_init,
3199			.cra_exit		= NULL,
3200			.cra_u .ablkcipher = {
3201					.min_keysize	= 2 * AES_MIN_KEY_SIZE,
3202					.max_keysize	= 2 * AES_MAX_KEY_SIZE,
3203					.ivsize		= AES_BLOCK_SIZE,
3204					.setkey		= chcr_aes_xts_setkey,
3205					.encrypt	= chcr_aes_encrypt,
3206					.decrypt	= chcr_aes_decrypt,
3207				}
3208			}
3209	},
3210	{
3211		.type = CRYPTO_ALG_TYPE_ABLKCIPHER | CRYPTO_ALG_SUB_TYPE_CTR,
3212		.is_registered = 0,
3213		.alg.crypto = {
3214			.cra_name		= "ctr(aes)",
3215			.cra_driver_name	= "ctr-aes-chcr",
3216			.cra_blocksize		= 1,
3217			.cra_init		= chcr_cra_init,
3218			.cra_exit		= chcr_cra_exit,
3219			.cra_u.ablkcipher	= {
3220				.min_keysize	= AES_MIN_KEY_SIZE,
3221				.max_keysize	= AES_MAX_KEY_SIZE,
3222				.ivsize		= AES_BLOCK_SIZE,
3223				.setkey		= chcr_aes_ctr_setkey,
3224				.encrypt	= chcr_aes_encrypt,
3225				.decrypt	= chcr_aes_decrypt,
3226			}
3227		}
3228	},
3229	{
3230		.type = CRYPTO_ALG_TYPE_ABLKCIPHER |
3231			CRYPTO_ALG_SUB_TYPE_CTR_RFC3686,
3232		.is_registered = 0,
3233		.alg.crypto = {
3234			.cra_name		= "rfc3686(ctr(aes))",
3235			.cra_driver_name	= "rfc3686-ctr-aes-chcr",
3236			.cra_blocksize		= 1,
3237			.cra_init		= chcr_rfc3686_init,
3238			.cra_exit		= chcr_cra_exit,
3239			.cra_u.ablkcipher	= {
3240				.min_keysize	= AES_MIN_KEY_SIZE +
3241					CTR_RFC3686_NONCE_SIZE,
3242				.max_keysize	= AES_MAX_KEY_SIZE +
3243					CTR_RFC3686_NONCE_SIZE,
3244				.ivsize		= CTR_RFC3686_IV_SIZE,
3245				.setkey		= chcr_aes_rfc3686_setkey,
3246				.encrypt	= chcr_aes_encrypt,
3247				.decrypt	= chcr_aes_decrypt,
3248				.geniv          = "seqiv",
3249			}
3250		}
3251	},
3252	/* SHA */
3253	{
3254		.type = CRYPTO_ALG_TYPE_AHASH,
3255		.is_registered = 0,
3256		.alg.hash = {
3257			.halg.digestsize = SHA1_DIGEST_SIZE,
3258			.halg.base = {
3259				.cra_name = "sha1",
3260				.cra_driver_name = "sha1-chcr",
3261				.cra_blocksize = SHA1_BLOCK_SIZE,
3262			}
3263		}
3264	},
3265	{
3266		.type = CRYPTO_ALG_TYPE_AHASH,
3267		.is_registered = 0,
3268		.alg.hash = {
3269			.halg.digestsize = SHA256_DIGEST_SIZE,
3270			.halg.base = {
3271				.cra_name = "sha256",
3272				.cra_driver_name = "sha256-chcr",
3273				.cra_blocksize = SHA256_BLOCK_SIZE,
3274			}
3275		}
3276	},
3277	{
3278		.type = CRYPTO_ALG_TYPE_AHASH,
3279		.is_registered = 0,
3280		.alg.hash = {
3281			.halg.digestsize = SHA224_DIGEST_SIZE,
3282			.halg.base = {
3283				.cra_name = "sha224",
3284				.cra_driver_name = "sha224-chcr",
3285				.cra_blocksize = SHA224_BLOCK_SIZE,
3286			}
3287		}
3288	},
3289	{
3290		.type = CRYPTO_ALG_TYPE_AHASH,
3291		.is_registered = 0,
3292		.alg.hash = {
3293			.halg.digestsize = SHA384_DIGEST_SIZE,
3294			.halg.base = {
3295				.cra_name = "sha384",
3296				.cra_driver_name = "sha384-chcr",
3297				.cra_blocksize = SHA384_BLOCK_SIZE,
3298			}
3299		}
3300	},
3301	{
3302		.type = CRYPTO_ALG_TYPE_AHASH,
3303		.is_registered = 0,
3304		.alg.hash = {
3305			.halg.digestsize = SHA512_DIGEST_SIZE,
3306			.halg.base = {
3307				.cra_name = "sha512",
3308				.cra_driver_name = "sha512-chcr",
3309				.cra_blocksize = SHA512_BLOCK_SIZE,
3310			}
3311		}
3312	},
3313	/* HMAC */
3314	{
3315		.type = CRYPTO_ALG_TYPE_HMAC,
3316		.is_registered = 0,
3317		.alg.hash = {
3318			.halg.digestsize = SHA1_DIGEST_SIZE,
3319			.halg.base = {
3320				.cra_name = "hmac(sha1)",
3321				.cra_driver_name = "hmac-sha1-chcr",
3322				.cra_blocksize = SHA1_BLOCK_SIZE,
3323			}
3324		}
3325	},
3326	{
3327		.type = CRYPTO_ALG_TYPE_HMAC,
3328		.is_registered = 0,
3329		.alg.hash = {
3330			.halg.digestsize = SHA224_DIGEST_SIZE,
3331			.halg.base = {
3332				.cra_name = "hmac(sha224)",
3333				.cra_driver_name = "hmac-sha224-chcr",
3334				.cra_blocksize = SHA224_BLOCK_SIZE,
3335			}
3336		}
3337	},
3338	{
3339		.type = CRYPTO_ALG_TYPE_HMAC,
3340		.is_registered = 0,
3341		.alg.hash = {
3342			.halg.digestsize = SHA256_DIGEST_SIZE,
3343			.halg.base = {
3344				.cra_name = "hmac(sha256)",
3345				.cra_driver_name = "hmac-sha256-chcr",
3346				.cra_blocksize = SHA256_BLOCK_SIZE,
3347			}
3348		}
3349	},
3350	{
3351		.type = CRYPTO_ALG_TYPE_HMAC,
3352		.is_registered = 0,
3353		.alg.hash = {
3354			.halg.digestsize = SHA384_DIGEST_SIZE,
3355			.halg.base = {
3356				.cra_name = "hmac(sha384)",
3357				.cra_driver_name = "hmac-sha384-chcr",
3358				.cra_blocksize = SHA384_BLOCK_SIZE,
3359			}
3360		}
3361	},
3362	{
3363		.type = CRYPTO_ALG_TYPE_HMAC,
3364		.is_registered = 0,
3365		.alg.hash = {
3366			.halg.digestsize = SHA512_DIGEST_SIZE,
3367			.halg.base = {
3368				.cra_name = "hmac(sha512)",
3369				.cra_driver_name = "hmac-sha512-chcr",
3370				.cra_blocksize = SHA512_BLOCK_SIZE,
3371			}
3372		}
3373	},
3374	/* Add AEAD Algorithms */
3375	{
3376		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_GCM,
3377		.is_registered = 0,
3378		.alg.aead = {
3379			.base = {
3380				.cra_name = "gcm(aes)",
3381				.cra_driver_name = "gcm-aes-chcr",
3382				.cra_blocksize	= 1,
3383				.cra_priority = CHCR_AEAD_PRIORITY,
3384				.cra_ctxsize =	sizeof(struct chcr_context) +
3385						sizeof(struct chcr_aead_ctx) +
3386						sizeof(struct chcr_gcm_ctx),
3387			},
3388			.ivsize = 12,
3389			.maxauthsize = GHASH_DIGEST_SIZE,
3390			.setkey = chcr_gcm_setkey,
3391			.setauthsize = chcr_gcm_setauthsize,
3392		}
3393	},
3394	{
3395		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_RFC4106,
3396		.is_registered = 0,
3397		.alg.aead = {
3398			.base = {
3399				.cra_name = "rfc4106(gcm(aes))",
3400				.cra_driver_name = "rfc4106-gcm-aes-chcr",
3401				.cra_blocksize	 = 1,
3402				.cra_priority = CHCR_AEAD_PRIORITY + 1,
3403				.cra_ctxsize =	sizeof(struct chcr_context) +
3404						sizeof(struct chcr_aead_ctx) +
3405						sizeof(struct chcr_gcm_ctx),
3406
3407			},
3408			.ivsize = 8,
3409			.maxauthsize	= GHASH_DIGEST_SIZE,
3410			.setkey = chcr_gcm_setkey,
3411			.setauthsize	= chcr_4106_4309_setauthsize,
3412		}
3413	},
3414	{
3415		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_CCM,
3416		.is_registered = 0,
3417		.alg.aead = {
3418			.base = {
3419				.cra_name = "ccm(aes)",
3420				.cra_driver_name = "ccm-aes-chcr",
3421				.cra_blocksize	 = 1,
3422				.cra_priority = CHCR_AEAD_PRIORITY,
3423				.cra_ctxsize =	sizeof(struct chcr_context) +
3424						sizeof(struct chcr_aead_ctx),
3425
3426			},
3427			.ivsize = AES_BLOCK_SIZE,
3428			.maxauthsize	= GHASH_DIGEST_SIZE,
3429			.setkey = chcr_aead_ccm_setkey,
3430			.setauthsize	= chcr_ccm_setauthsize,
3431		}
3432	},
3433	{
3434		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_RFC4309,
3435		.is_registered = 0,
3436		.alg.aead = {
3437			.base = {
3438				.cra_name = "rfc4309(ccm(aes))",
3439				.cra_driver_name = "rfc4309-ccm-aes-chcr",
3440				.cra_blocksize	 = 1,
3441				.cra_priority = CHCR_AEAD_PRIORITY + 1,
3442				.cra_ctxsize =	sizeof(struct chcr_context) +
3443						sizeof(struct chcr_aead_ctx),
3444
3445			},
3446			.ivsize = 8,
3447			.maxauthsize	= GHASH_DIGEST_SIZE,
3448			.setkey = chcr_aead_rfc4309_setkey,
3449			.setauthsize = chcr_4106_4309_setauthsize,
3450		}
3451	},
3452	{
3453		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_AUTHENC,
3454		.is_registered = 0,
3455		.alg.aead = {
3456			.base = {
3457				.cra_name = "authenc(hmac(sha1),cbc(aes))",
3458				.cra_driver_name =
3459					"authenc-hmac-sha1-cbc-aes-chcr",
3460				.cra_blocksize	 = AES_BLOCK_SIZE,
3461				.cra_priority = CHCR_AEAD_PRIORITY,
3462				.cra_ctxsize =	sizeof(struct chcr_context) +
3463						sizeof(struct chcr_aead_ctx) +
3464						sizeof(struct chcr_authenc_ctx),
3465
3466			},
3467			.ivsize = AES_BLOCK_SIZE,
3468			.maxauthsize = SHA1_DIGEST_SIZE,
3469			.setkey = chcr_authenc_setkey,
3470			.setauthsize = chcr_authenc_setauthsize,
3471		}
3472	},
3473	{
3474		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_AUTHENC,
3475		.is_registered = 0,
3476		.alg.aead = {
3477			.base = {
3478
3479				.cra_name = "authenc(hmac(sha256),cbc(aes))",
3480				.cra_driver_name =
3481					"authenc-hmac-sha256-cbc-aes-chcr",
3482				.cra_blocksize	 = AES_BLOCK_SIZE,
3483				.cra_priority = CHCR_AEAD_PRIORITY,
3484				.cra_ctxsize =	sizeof(struct chcr_context) +
3485						sizeof(struct chcr_aead_ctx) +
3486						sizeof(struct chcr_authenc_ctx),
3487
3488			},
3489			.ivsize = AES_BLOCK_SIZE,
3490			.maxauthsize	= SHA256_DIGEST_SIZE,
3491			.setkey = chcr_authenc_setkey,
3492			.setauthsize = chcr_authenc_setauthsize,
3493		}
3494	},
3495	{
3496		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_AUTHENC,
3497		.is_registered = 0,
3498		.alg.aead = {
3499			.base = {
3500				.cra_name = "authenc(hmac(sha224),cbc(aes))",
3501				.cra_driver_name =
3502					"authenc-hmac-sha224-cbc-aes-chcr",
3503				.cra_blocksize	 = AES_BLOCK_SIZE,
3504				.cra_priority = CHCR_AEAD_PRIORITY,
3505				.cra_ctxsize =	sizeof(struct chcr_context) +
3506						sizeof(struct chcr_aead_ctx) +
3507						sizeof(struct chcr_authenc_ctx),
3508			},
3509			.ivsize = AES_BLOCK_SIZE,
3510			.maxauthsize = SHA224_DIGEST_SIZE,
3511			.setkey = chcr_authenc_setkey,
3512			.setauthsize = chcr_authenc_setauthsize,
3513		}
3514	},
3515	{
3516		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_AUTHENC,
3517		.is_registered = 0,
3518		.alg.aead = {
3519			.base = {
3520				.cra_name = "authenc(hmac(sha384),cbc(aes))",
3521				.cra_driver_name =
3522					"authenc-hmac-sha384-cbc-aes-chcr",
3523				.cra_blocksize	 = AES_BLOCK_SIZE,
3524				.cra_priority = CHCR_AEAD_PRIORITY,
3525				.cra_ctxsize =	sizeof(struct chcr_context) +
3526						sizeof(struct chcr_aead_ctx) +
3527						sizeof(struct chcr_authenc_ctx),
3528
3529			},
3530			.ivsize = AES_BLOCK_SIZE,
3531			.maxauthsize = SHA384_DIGEST_SIZE,
3532			.setkey = chcr_authenc_setkey,
3533			.setauthsize = chcr_authenc_setauthsize,
3534		}
3535	},
3536	{
3537		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_AUTHENC,
3538		.is_registered = 0,
3539		.alg.aead = {
3540			.base = {
3541				.cra_name = "authenc(hmac(sha512),cbc(aes))",
3542				.cra_driver_name =
3543					"authenc-hmac-sha512-cbc-aes-chcr",
3544				.cra_blocksize	 = AES_BLOCK_SIZE,
3545				.cra_priority = CHCR_AEAD_PRIORITY,
3546				.cra_ctxsize =	sizeof(struct chcr_context) +
3547						sizeof(struct chcr_aead_ctx) +
3548						sizeof(struct chcr_authenc_ctx),
3549
3550			},
3551			.ivsize = AES_BLOCK_SIZE,
3552			.maxauthsize = SHA512_DIGEST_SIZE,
3553			.setkey = chcr_authenc_setkey,
3554			.setauthsize = chcr_authenc_setauthsize,
3555		}
3556	},
3557	{
3558		.type = CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_SUB_TYPE_AEAD_NULL,
3559		.is_registered = 0,
3560		.alg.aead = {
3561			.base = {
3562				.cra_name = "authenc(digest_null,cbc(aes))",
3563				.cra_driver_name =
3564					"authenc-digest_null-cbc-aes-chcr",
3565				.cra_blocksize	 = AES_BLOCK_SIZE,
3566				.cra_priority = CHCR_AEAD_PRIORITY,
3567				.cra_ctxsize =	sizeof(struct chcr_context) +
3568						sizeof(struct chcr_aead_ctx) +
3569						sizeof(struct chcr_authenc_ctx),
3570
3571			},
3572			.ivsize  = AES_BLOCK_SIZE,
3573			.maxauthsize = 0,
3574			.setkey  = chcr_aead_digest_null_setkey,
3575			.setauthsize = chcr_authenc_null_setauthsize,
3576		}
3577	},
3578};
3579
3580/*
3581 *	chcr_unregister_alg - Deregister crypto algorithms with
3582 *	kernel framework.
3583 */
3584static int chcr_unregister_alg(void)
3585{
3586	int i;
3587
3588	for (i = 0; i < ARRAY_SIZE(driver_algs); i++) {
3589		switch (driver_algs[i].type & CRYPTO_ALG_TYPE_MASK) {
3590		case CRYPTO_ALG_TYPE_ABLKCIPHER:
3591			if (driver_algs[i].is_registered)
3592				crypto_unregister_alg(
3593						&driver_algs[i].alg.crypto);
3594			break;
3595		case CRYPTO_ALG_TYPE_AEAD:
3596			if (driver_algs[i].is_registered)
3597				crypto_unregister_aead(
3598						&driver_algs[i].alg.aead);
3599			break;
3600		case CRYPTO_ALG_TYPE_AHASH:
3601			if (driver_algs[i].is_registered)
3602				crypto_unregister_ahash(
3603						&driver_algs[i].alg.hash);
3604			break;
3605		}
3606		driver_algs[i].is_registered = 0;
3607	}
3608	return 0;
3609}
3610
3611#define SZ_AHASH_CTX sizeof(struct chcr_context)
3612#define SZ_AHASH_H_CTX (sizeof(struct chcr_context) + sizeof(struct hmac_ctx))
3613#define SZ_AHASH_REQ_CTX sizeof(struct chcr_ahash_req_ctx)
3614#define AHASH_CRA_FLAGS (CRYPTO_ALG_TYPE_AHASH | CRYPTO_ALG_ASYNC)
3615
3616/*
3617 *	chcr_register_alg - Register crypto algorithms with kernel framework.
3618 */
3619static int chcr_register_alg(void)
3620{
3621	struct crypto_alg ai;
3622	struct ahash_alg *a_hash;
3623	int err = 0, i;
3624	char *name = NULL;
3625
3626	for (i = 0; i < ARRAY_SIZE(driver_algs); i++) {
3627		if (driver_algs[i].is_registered)
3628			continue;
3629		switch (driver_algs[i].type & CRYPTO_ALG_TYPE_MASK) {
3630		case CRYPTO_ALG_TYPE_ABLKCIPHER:
3631			driver_algs[i].alg.crypto.cra_priority =
3632				CHCR_CRA_PRIORITY;
3633			driver_algs[i].alg.crypto.cra_module = THIS_MODULE;
3634			driver_algs[i].alg.crypto.cra_flags =
3635				CRYPTO_ALG_TYPE_ABLKCIPHER | CRYPTO_ALG_ASYNC |
3636				CRYPTO_ALG_NEED_FALLBACK;
3637			driver_algs[i].alg.crypto.cra_ctxsize =
3638				sizeof(struct chcr_context) +
3639				sizeof(struct ablk_ctx);
3640			driver_algs[i].alg.crypto.cra_alignmask = 0;
3641			driver_algs[i].alg.crypto.cra_type =
3642				&crypto_ablkcipher_type;
3643			err = crypto_register_alg(&driver_algs[i].alg.crypto);
3644			name = driver_algs[i].alg.crypto.cra_driver_name;
3645			break;
3646		case CRYPTO_ALG_TYPE_AEAD:
3647			driver_algs[i].alg.aead.base.cra_flags =
3648				CRYPTO_ALG_TYPE_AEAD | CRYPTO_ALG_ASYNC |
3649				CRYPTO_ALG_NEED_FALLBACK;
3650			driver_algs[i].alg.aead.encrypt = chcr_aead_encrypt;
3651			driver_algs[i].alg.aead.decrypt = chcr_aead_decrypt;
3652			driver_algs[i].alg.aead.init = chcr_aead_cra_init;
3653			driver_algs[i].alg.aead.exit = chcr_aead_cra_exit;
3654			driver_algs[i].alg.aead.base.cra_module = THIS_MODULE;
3655			err = crypto_register_aead(&driver_algs[i].alg.aead);
3656			name = driver_algs[i].alg.aead.base.cra_driver_name;
3657			break;
3658		case CRYPTO_ALG_TYPE_AHASH:
3659			a_hash = &driver_algs[i].alg.hash;
3660			a_hash->update = chcr_ahash_update;
3661			a_hash->final = chcr_ahash_final;
3662			a_hash->finup = chcr_ahash_finup;
3663			a_hash->digest = chcr_ahash_digest;
3664			a_hash->export = chcr_ahash_export;
3665			a_hash->import = chcr_ahash_import;
3666			a_hash->halg.statesize = SZ_AHASH_REQ_CTX;
3667			a_hash->halg.base.cra_priority = CHCR_CRA_PRIORITY;
3668			a_hash->halg.base.cra_module = THIS_MODULE;
3669			a_hash->halg.base.cra_flags = AHASH_CRA_FLAGS;
3670			a_hash->halg.base.cra_alignmask = 0;
3671			a_hash->halg.base.cra_exit = NULL;
3672			a_hash->halg.base.cra_type = &crypto_ahash_type;
3673
3674			if (driver_algs[i].type == CRYPTO_ALG_TYPE_HMAC) {
3675				a_hash->halg.base.cra_init = chcr_hmac_cra_init;
3676				a_hash->halg.base.cra_exit = chcr_hmac_cra_exit;
3677				a_hash->init = chcr_hmac_init;
3678				a_hash->setkey = chcr_ahash_setkey;
3679				a_hash->halg.base.cra_ctxsize = SZ_AHASH_H_CTX;
3680			} else {
3681				a_hash->init = chcr_sha_init;
3682				a_hash->halg.base.cra_ctxsize = SZ_AHASH_CTX;
3683				a_hash->halg.base.cra_init = chcr_sha_cra_init;
3684			}
3685			err = crypto_register_ahash(&driver_algs[i].alg.hash);
3686			ai = driver_algs[i].alg.hash.halg.base;
3687			name = ai.cra_driver_name;
3688			break;
3689		}
3690		if (err) {
3691			pr_err("chcr : %s : Algorithm registration failed\n",
3692			       name);
3693			goto register_err;
3694		} else {
3695			driver_algs[i].is_registered = 1;
3696		}
3697	}
3698	return 0;
3699
3700register_err:
3701	chcr_unregister_alg();
3702	return err;
3703}
3704
3705/*
3706 *	start_crypto - Register the crypto algorithms.
3707 *	This should called once when the first device comesup. After this
3708 *	kernel will start calling driver APIs for crypto operations.
3709 */
3710int start_crypto(void)
3711{
3712	return chcr_register_alg();
3713}
3714
3715/*
3716 *	stop_crypto - Deregister all the crypto algorithms with kernel.
3717 *	This should be called once when the last device goes down. After this
3718 *	kernel will not call the driver API for crypto operations.
3719 */
3720int stop_crypto(void)
3721{
3722	chcr_unregister_alg();
3723	return 0;
3724}
Configure Feed

Configure Feed
