1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0-only
2*4882a593Smuzhiyun /*
3*4882a593Smuzhiyun * Copyright 2016 Broadcom
4*4882a593Smuzhiyun */
5*4882a593Smuzhiyun
6*4882a593Smuzhiyun /*
7*4882a593Smuzhiyun * This file works with the SPU2 version of the SPU. SPU2 has different message
8*4882a593Smuzhiyun * formats than the previous version of the SPU. All SPU message format
9*4882a593Smuzhiyun * differences should be hidden in the spux.c,h files.
10*4882a593Smuzhiyun */
11*4882a593Smuzhiyun
12*4882a593Smuzhiyun #include <linux/kernel.h>
13*4882a593Smuzhiyun #include <linux/string.h>
14*4882a593Smuzhiyun
15*4882a593Smuzhiyun #include "util.h"
16*4882a593Smuzhiyun #include "spu.h"
17*4882a593Smuzhiyun #include "spu2.h"
18*4882a593Smuzhiyun
19*4882a593Smuzhiyun #define SPU2_TX_STATUS_LEN 0 /* SPU2 has no STATUS in input packet */
20*4882a593Smuzhiyun
21*4882a593Smuzhiyun /*
22*4882a593Smuzhiyun * Controlled by pkt_stat_cnt field in CRYPTO_SS_SPU0_CORE_SPU2_CONTROL0
23*4882a593Smuzhiyun * register. Defaults to 2.
24*4882a593Smuzhiyun */
25*4882a593Smuzhiyun #define SPU2_RX_STATUS_LEN 2
26*4882a593Smuzhiyun
27*4882a593Smuzhiyun enum spu2_proto_sel {
28*4882a593Smuzhiyun SPU2_PROTO_RESV = 0,
29*4882a593Smuzhiyun SPU2_MACSEC_SECTAG8_ECB = 1,
30*4882a593Smuzhiyun SPU2_MACSEC_SECTAG8_SCB = 2,
31*4882a593Smuzhiyun SPU2_MACSEC_SECTAG16 = 3,
32*4882a593Smuzhiyun SPU2_MACSEC_SECTAG16_8_XPN = 4,
33*4882a593Smuzhiyun SPU2_IPSEC = 5,
34*4882a593Smuzhiyun SPU2_IPSEC_ESN = 6,
35*4882a593Smuzhiyun SPU2_TLS_CIPHER = 7,
36*4882a593Smuzhiyun SPU2_TLS_AEAD = 8,
37*4882a593Smuzhiyun SPU2_DTLS_CIPHER = 9,
38*4882a593Smuzhiyun SPU2_DTLS_AEAD = 10
39*4882a593Smuzhiyun };
40*4882a593Smuzhiyun
41*4882a593Smuzhiyun static char *spu2_cipher_type_names[] = { "None", "AES128", "AES192", "AES256",
42*4882a593Smuzhiyun "DES", "3DES"
43*4882a593Smuzhiyun };
44*4882a593Smuzhiyun
45*4882a593Smuzhiyun static char *spu2_cipher_mode_names[] = { "ECB", "CBC", "CTR", "CFB", "OFB",
46*4882a593Smuzhiyun "XTS", "CCM", "GCM"
47*4882a593Smuzhiyun };
48*4882a593Smuzhiyun
49*4882a593Smuzhiyun static char *spu2_hash_type_names[] = { "None", "AES128", "AES192", "AES256",
50*4882a593Smuzhiyun "Reserved", "Reserved", "MD5", "SHA1", "SHA224", "SHA256", "SHA384",
51*4882a593Smuzhiyun "SHA512", "SHA512/224", "SHA512/256", "SHA3-224", "SHA3-256",
52*4882a593Smuzhiyun "SHA3-384", "SHA3-512"
53*4882a593Smuzhiyun };
54*4882a593Smuzhiyun
55*4882a593Smuzhiyun static char *spu2_hash_mode_names[] = { "CMAC", "CBC-MAC", "XCBC-MAC", "HMAC",
56*4882a593Smuzhiyun "Rabin", "CCM", "GCM", "Reserved"
57*4882a593Smuzhiyun };
58*4882a593Smuzhiyun
spu2_ciph_type_name(enum spu2_cipher_type cipher_type)59*4882a593Smuzhiyun static char *spu2_ciph_type_name(enum spu2_cipher_type cipher_type)
60*4882a593Smuzhiyun {
61*4882a593Smuzhiyun if (cipher_type >= SPU2_CIPHER_TYPE_LAST)
62*4882a593Smuzhiyun return "Reserved";
63*4882a593Smuzhiyun return spu2_cipher_type_names[cipher_type];
64*4882a593Smuzhiyun }
65*4882a593Smuzhiyun
spu2_ciph_mode_name(enum spu2_cipher_mode cipher_mode)66*4882a593Smuzhiyun static char *spu2_ciph_mode_name(enum spu2_cipher_mode cipher_mode)
67*4882a593Smuzhiyun {
68*4882a593Smuzhiyun if (cipher_mode >= SPU2_CIPHER_MODE_LAST)
69*4882a593Smuzhiyun return "Reserved";
70*4882a593Smuzhiyun return spu2_cipher_mode_names[cipher_mode];
71*4882a593Smuzhiyun }
72*4882a593Smuzhiyun
spu2_hash_type_name(enum spu2_hash_type hash_type)73*4882a593Smuzhiyun static char *spu2_hash_type_name(enum spu2_hash_type hash_type)
74*4882a593Smuzhiyun {
75*4882a593Smuzhiyun if (hash_type >= SPU2_HASH_TYPE_LAST)
76*4882a593Smuzhiyun return "Reserved";
77*4882a593Smuzhiyun return spu2_hash_type_names[hash_type];
78*4882a593Smuzhiyun }
79*4882a593Smuzhiyun
spu2_hash_mode_name(enum spu2_hash_mode hash_mode)80*4882a593Smuzhiyun static char *spu2_hash_mode_name(enum spu2_hash_mode hash_mode)
81*4882a593Smuzhiyun {
82*4882a593Smuzhiyun if (hash_mode >= SPU2_HASH_MODE_LAST)
83*4882a593Smuzhiyun return "Reserved";
84*4882a593Smuzhiyun return spu2_hash_mode_names[hash_mode];
85*4882a593Smuzhiyun }
86*4882a593Smuzhiyun
87*4882a593Smuzhiyun /*
88*4882a593Smuzhiyun * Convert from a software cipher mode value to the corresponding value
89*4882a593Smuzhiyun * for SPU2.
90*4882a593Smuzhiyun */
spu2_cipher_mode_xlate(enum spu_cipher_mode cipher_mode,enum spu2_cipher_mode * spu2_mode)91*4882a593Smuzhiyun static int spu2_cipher_mode_xlate(enum spu_cipher_mode cipher_mode,
92*4882a593Smuzhiyun enum spu2_cipher_mode *spu2_mode)
93*4882a593Smuzhiyun {
94*4882a593Smuzhiyun switch (cipher_mode) {
95*4882a593Smuzhiyun case CIPHER_MODE_ECB:
96*4882a593Smuzhiyun *spu2_mode = SPU2_CIPHER_MODE_ECB;
97*4882a593Smuzhiyun break;
98*4882a593Smuzhiyun case CIPHER_MODE_CBC:
99*4882a593Smuzhiyun *spu2_mode = SPU2_CIPHER_MODE_CBC;
100*4882a593Smuzhiyun break;
101*4882a593Smuzhiyun case CIPHER_MODE_OFB:
102*4882a593Smuzhiyun *spu2_mode = SPU2_CIPHER_MODE_OFB;
103*4882a593Smuzhiyun break;
104*4882a593Smuzhiyun case CIPHER_MODE_CFB:
105*4882a593Smuzhiyun *spu2_mode = SPU2_CIPHER_MODE_CFB;
106*4882a593Smuzhiyun break;
107*4882a593Smuzhiyun case CIPHER_MODE_CTR:
108*4882a593Smuzhiyun *spu2_mode = SPU2_CIPHER_MODE_CTR;
109*4882a593Smuzhiyun break;
110*4882a593Smuzhiyun case CIPHER_MODE_CCM:
111*4882a593Smuzhiyun *spu2_mode = SPU2_CIPHER_MODE_CCM;
112*4882a593Smuzhiyun break;
113*4882a593Smuzhiyun case CIPHER_MODE_GCM:
114*4882a593Smuzhiyun *spu2_mode = SPU2_CIPHER_MODE_GCM;
115*4882a593Smuzhiyun break;
116*4882a593Smuzhiyun case CIPHER_MODE_XTS:
117*4882a593Smuzhiyun *spu2_mode = SPU2_CIPHER_MODE_XTS;
118*4882a593Smuzhiyun break;
119*4882a593Smuzhiyun default:
120*4882a593Smuzhiyun return -EINVAL;
121*4882a593Smuzhiyun }
122*4882a593Smuzhiyun return 0;
123*4882a593Smuzhiyun }
124*4882a593Smuzhiyun
125*4882a593Smuzhiyun /**
126*4882a593Smuzhiyun * spu2_cipher_xlate() - Convert a cipher {alg/mode/type} triple to a SPU2
127*4882a593Smuzhiyun * cipher type and mode.
128*4882a593Smuzhiyun * @cipher_alg: [in] cipher algorithm value from software enumeration
129*4882a593Smuzhiyun * @cipher_mode: [in] cipher mode value from software enumeration
130*4882a593Smuzhiyun * @cipher_type: [in] cipher type value from software enumeration
131*4882a593Smuzhiyun * @spu2_type: [out] cipher type value used by spu2 hardware
132*4882a593Smuzhiyun * @spu2_mode: [out] cipher mode value used by spu2 hardware
133*4882a593Smuzhiyun *
134*4882a593Smuzhiyun * Return: 0 if successful
135*4882a593Smuzhiyun */
spu2_cipher_xlate(enum spu_cipher_alg cipher_alg,enum spu_cipher_mode cipher_mode,enum spu_cipher_type cipher_type,enum spu2_cipher_type * spu2_type,enum spu2_cipher_mode * spu2_mode)136*4882a593Smuzhiyun static int spu2_cipher_xlate(enum spu_cipher_alg cipher_alg,
137*4882a593Smuzhiyun enum spu_cipher_mode cipher_mode,
138*4882a593Smuzhiyun enum spu_cipher_type cipher_type,
139*4882a593Smuzhiyun enum spu2_cipher_type *spu2_type,
140*4882a593Smuzhiyun enum spu2_cipher_mode *spu2_mode)
141*4882a593Smuzhiyun {
142*4882a593Smuzhiyun int err;
143*4882a593Smuzhiyun
144*4882a593Smuzhiyun err = spu2_cipher_mode_xlate(cipher_mode, spu2_mode);
145*4882a593Smuzhiyun if (err) {
146*4882a593Smuzhiyun flow_log("Invalid cipher mode %d\n", cipher_mode);
147*4882a593Smuzhiyun return err;
148*4882a593Smuzhiyun }
149*4882a593Smuzhiyun
150*4882a593Smuzhiyun switch (cipher_alg) {
151*4882a593Smuzhiyun case CIPHER_ALG_NONE:
152*4882a593Smuzhiyun *spu2_type = SPU2_CIPHER_TYPE_NONE;
153*4882a593Smuzhiyun break;
154*4882a593Smuzhiyun case CIPHER_ALG_RC4:
155*4882a593Smuzhiyun /* SPU2 does not support RC4 */
156*4882a593Smuzhiyun err = -EINVAL;
157*4882a593Smuzhiyun *spu2_type = SPU2_CIPHER_TYPE_NONE;
158*4882a593Smuzhiyun break;
159*4882a593Smuzhiyun case CIPHER_ALG_DES:
160*4882a593Smuzhiyun *spu2_type = SPU2_CIPHER_TYPE_DES;
161*4882a593Smuzhiyun break;
162*4882a593Smuzhiyun case CIPHER_ALG_3DES:
163*4882a593Smuzhiyun *spu2_type = SPU2_CIPHER_TYPE_3DES;
164*4882a593Smuzhiyun break;
165*4882a593Smuzhiyun case CIPHER_ALG_AES:
166*4882a593Smuzhiyun switch (cipher_type) {
167*4882a593Smuzhiyun case CIPHER_TYPE_AES128:
168*4882a593Smuzhiyun *spu2_type = SPU2_CIPHER_TYPE_AES128;
169*4882a593Smuzhiyun break;
170*4882a593Smuzhiyun case CIPHER_TYPE_AES192:
171*4882a593Smuzhiyun *spu2_type = SPU2_CIPHER_TYPE_AES192;
172*4882a593Smuzhiyun break;
173*4882a593Smuzhiyun case CIPHER_TYPE_AES256:
174*4882a593Smuzhiyun *spu2_type = SPU2_CIPHER_TYPE_AES256;
175*4882a593Smuzhiyun break;
176*4882a593Smuzhiyun default:
177*4882a593Smuzhiyun err = -EINVAL;
178*4882a593Smuzhiyun }
179*4882a593Smuzhiyun break;
180*4882a593Smuzhiyun case CIPHER_ALG_LAST:
181*4882a593Smuzhiyun default:
182*4882a593Smuzhiyun err = -EINVAL;
183*4882a593Smuzhiyun break;
184*4882a593Smuzhiyun }
185*4882a593Smuzhiyun
186*4882a593Smuzhiyun if (err)
187*4882a593Smuzhiyun flow_log("Invalid cipher alg %d or type %d\n",
188*4882a593Smuzhiyun cipher_alg, cipher_type);
189*4882a593Smuzhiyun return err;
190*4882a593Smuzhiyun }
191*4882a593Smuzhiyun
192*4882a593Smuzhiyun /*
193*4882a593Smuzhiyun * Convert from a software hash mode value to the corresponding value
194*4882a593Smuzhiyun * for SPU2. Note that HASH_MODE_NONE and HASH_MODE_XCBC have the same value.
195*4882a593Smuzhiyun */
spu2_hash_mode_xlate(enum hash_mode hash_mode,enum spu2_hash_mode * spu2_mode)196*4882a593Smuzhiyun static int spu2_hash_mode_xlate(enum hash_mode hash_mode,
197*4882a593Smuzhiyun enum spu2_hash_mode *spu2_mode)
198*4882a593Smuzhiyun {
199*4882a593Smuzhiyun switch (hash_mode) {
200*4882a593Smuzhiyun case HASH_MODE_XCBC:
201*4882a593Smuzhiyun *spu2_mode = SPU2_HASH_MODE_XCBC_MAC;
202*4882a593Smuzhiyun break;
203*4882a593Smuzhiyun case HASH_MODE_CMAC:
204*4882a593Smuzhiyun *spu2_mode = SPU2_HASH_MODE_CMAC;
205*4882a593Smuzhiyun break;
206*4882a593Smuzhiyun case HASH_MODE_HMAC:
207*4882a593Smuzhiyun *spu2_mode = SPU2_HASH_MODE_HMAC;
208*4882a593Smuzhiyun break;
209*4882a593Smuzhiyun case HASH_MODE_CCM:
210*4882a593Smuzhiyun *spu2_mode = SPU2_HASH_MODE_CCM;
211*4882a593Smuzhiyun break;
212*4882a593Smuzhiyun case HASH_MODE_GCM:
213*4882a593Smuzhiyun *spu2_mode = SPU2_HASH_MODE_GCM;
214*4882a593Smuzhiyun break;
215*4882a593Smuzhiyun default:
216*4882a593Smuzhiyun return -EINVAL;
217*4882a593Smuzhiyun }
218*4882a593Smuzhiyun return 0;
219*4882a593Smuzhiyun }
220*4882a593Smuzhiyun
221*4882a593Smuzhiyun /**
222*4882a593Smuzhiyun * spu2_hash_xlate() - Convert a hash {alg/mode/type} triple to a SPU2 hash type
223*4882a593Smuzhiyun * and mode.
224*4882a593Smuzhiyun * @hash_alg: [in] hash algorithm value from software enumeration
225*4882a593Smuzhiyun * @hash_mode: [in] hash mode value from software enumeration
226*4882a593Smuzhiyun * @hash_type: [in] hash type value from software enumeration
227*4882a593Smuzhiyun * @ciph_type: [in] cipher type value from software enumeration
228*4882a593Smuzhiyun * @spu2_type: [out] hash type value used by SPU2 hardware
229*4882a593Smuzhiyun * @spu2_mode: [out] hash mode value used by SPU2 hardware
230*4882a593Smuzhiyun *
231*4882a593Smuzhiyun * Return: 0 if successful
232*4882a593Smuzhiyun */
233*4882a593Smuzhiyun static int
spu2_hash_xlate(enum hash_alg hash_alg,enum hash_mode hash_mode,enum hash_type hash_type,enum spu_cipher_type ciph_type,enum spu2_hash_type * spu2_type,enum spu2_hash_mode * spu2_mode)234*4882a593Smuzhiyun spu2_hash_xlate(enum hash_alg hash_alg, enum hash_mode hash_mode,
235*4882a593Smuzhiyun enum hash_type hash_type, enum spu_cipher_type ciph_type,
236*4882a593Smuzhiyun enum spu2_hash_type *spu2_type, enum spu2_hash_mode *spu2_mode)
237*4882a593Smuzhiyun {
238*4882a593Smuzhiyun int err;
239*4882a593Smuzhiyun
240*4882a593Smuzhiyun err = spu2_hash_mode_xlate(hash_mode, spu2_mode);
241*4882a593Smuzhiyun if (err) {
242*4882a593Smuzhiyun flow_log("Invalid hash mode %d\n", hash_mode);
243*4882a593Smuzhiyun return err;
244*4882a593Smuzhiyun }
245*4882a593Smuzhiyun
246*4882a593Smuzhiyun switch (hash_alg) {
247*4882a593Smuzhiyun case HASH_ALG_NONE:
248*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_NONE;
249*4882a593Smuzhiyun break;
250*4882a593Smuzhiyun case HASH_ALG_MD5:
251*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_MD5;
252*4882a593Smuzhiyun break;
253*4882a593Smuzhiyun case HASH_ALG_SHA1:
254*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA1;
255*4882a593Smuzhiyun break;
256*4882a593Smuzhiyun case HASH_ALG_SHA224:
257*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA224;
258*4882a593Smuzhiyun break;
259*4882a593Smuzhiyun case HASH_ALG_SHA256:
260*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA256;
261*4882a593Smuzhiyun break;
262*4882a593Smuzhiyun case HASH_ALG_SHA384:
263*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA384;
264*4882a593Smuzhiyun break;
265*4882a593Smuzhiyun case HASH_ALG_SHA512:
266*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA512;
267*4882a593Smuzhiyun break;
268*4882a593Smuzhiyun case HASH_ALG_AES:
269*4882a593Smuzhiyun switch (ciph_type) {
270*4882a593Smuzhiyun case CIPHER_TYPE_AES128:
271*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_AES128;
272*4882a593Smuzhiyun break;
273*4882a593Smuzhiyun case CIPHER_TYPE_AES192:
274*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_AES192;
275*4882a593Smuzhiyun break;
276*4882a593Smuzhiyun case CIPHER_TYPE_AES256:
277*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_AES256;
278*4882a593Smuzhiyun break;
279*4882a593Smuzhiyun default:
280*4882a593Smuzhiyun err = -EINVAL;
281*4882a593Smuzhiyun }
282*4882a593Smuzhiyun break;
283*4882a593Smuzhiyun case HASH_ALG_SHA3_224:
284*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA3_224;
285*4882a593Smuzhiyun break;
286*4882a593Smuzhiyun case HASH_ALG_SHA3_256:
287*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA3_256;
288*4882a593Smuzhiyun break;
289*4882a593Smuzhiyun case HASH_ALG_SHA3_384:
290*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA3_384;
291*4882a593Smuzhiyun break;
292*4882a593Smuzhiyun case HASH_ALG_SHA3_512:
293*4882a593Smuzhiyun *spu2_type = SPU2_HASH_TYPE_SHA3_512;
294*4882a593Smuzhiyun break;
295*4882a593Smuzhiyun case HASH_ALG_LAST:
296*4882a593Smuzhiyun default:
297*4882a593Smuzhiyun err = -EINVAL;
298*4882a593Smuzhiyun break;
299*4882a593Smuzhiyun }
300*4882a593Smuzhiyun
301*4882a593Smuzhiyun if (err)
302*4882a593Smuzhiyun flow_log("Invalid hash alg %d or type %d\n",
303*4882a593Smuzhiyun hash_alg, hash_type);
304*4882a593Smuzhiyun return err;
305*4882a593Smuzhiyun }
306*4882a593Smuzhiyun
307*4882a593Smuzhiyun /* Dump FMD ctrl0. The ctrl0 input is in host byte order */
spu2_dump_fmd_ctrl0(u64 ctrl0)308*4882a593Smuzhiyun static void spu2_dump_fmd_ctrl0(u64 ctrl0)
309*4882a593Smuzhiyun {
310*4882a593Smuzhiyun enum spu2_cipher_type ciph_type;
311*4882a593Smuzhiyun enum spu2_cipher_mode ciph_mode;
312*4882a593Smuzhiyun enum spu2_hash_type hash_type;
313*4882a593Smuzhiyun enum spu2_hash_mode hash_mode;
314*4882a593Smuzhiyun char *ciph_name;
315*4882a593Smuzhiyun char *ciph_mode_name;
316*4882a593Smuzhiyun char *hash_name;
317*4882a593Smuzhiyun char *hash_mode_name;
318*4882a593Smuzhiyun u8 cfb;
319*4882a593Smuzhiyun u8 proto;
320*4882a593Smuzhiyun
321*4882a593Smuzhiyun packet_log(" FMD CTRL0 %#16llx\n", ctrl0);
322*4882a593Smuzhiyun if (ctrl0 & SPU2_CIPH_ENCRYPT_EN)
323*4882a593Smuzhiyun packet_log(" encrypt\n");
324*4882a593Smuzhiyun else
325*4882a593Smuzhiyun packet_log(" decrypt\n");
326*4882a593Smuzhiyun
327*4882a593Smuzhiyun ciph_type = (ctrl0 & SPU2_CIPH_TYPE) >> SPU2_CIPH_TYPE_SHIFT;
328*4882a593Smuzhiyun ciph_name = spu2_ciph_type_name(ciph_type);
329*4882a593Smuzhiyun packet_log(" Cipher type: %s\n", ciph_name);
330*4882a593Smuzhiyun
331*4882a593Smuzhiyun if (ciph_type != SPU2_CIPHER_TYPE_NONE) {
332*4882a593Smuzhiyun ciph_mode = (ctrl0 & SPU2_CIPH_MODE) >> SPU2_CIPH_MODE_SHIFT;
333*4882a593Smuzhiyun ciph_mode_name = spu2_ciph_mode_name(ciph_mode);
334*4882a593Smuzhiyun packet_log(" Cipher mode: %s\n", ciph_mode_name);
335*4882a593Smuzhiyun }
336*4882a593Smuzhiyun
337*4882a593Smuzhiyun cfb = (ctrl0 & SPU2_CFB_MASK) >> SPU2_CFB_MASK_SHIFT;
338*4882a593Smuzhiyun packet_log(" CFB %#x\n", cfb);
339*4882a593Smuzhiyun
340*4882a593Smuzhiyun proto = (ctrl0 & SPU2_PROTO_SEL) >> SPU2_PROTO_SEL_SHIFT;
341*4882a593Smuzhiyun packet_log(" protocol %#x\n", proto);
342*4882a593Smuzhiyun
343*4882a593Smuzhiyun if (ctrl0 & SPU2_HASH_FIRST)
344*4882a593Smuzhiyun packet_log(" hash first\n");
345*4882a593Smuzhiyun else
346*4882a593Smuzhiyun packet_log(" cipher first\n");
347*4882a593Smuzhiyun
348*4882a593Smuzhiyun if (ctrl0 & SPU2_CHK_TAG)
349*4882a593Smuzhiyun packet_log(" check tag\n");
350*4882a593Smuzhiyun
351*4882a593Smuzhiyun hash_type = (ctrl0 & SPU2_HASH_TYPE) >> SPU2_HASH_TYPE_SHIFT;
352*4882a593Smuzhiyun hash_name = spu2_hash_type_name(hash_type);
353*4882a593Smuzhiyun packet_log(" Hash type: %s\n", hash_name);
354*4882a593Smuzhiyun
355*4882a593Smuzhiyun if (hash_type != SPU2_HASH_TYPE_NONE) {
356*4882a593Smuzhiyun hash_mode = (ctrl0 & SPU2_HASH_MODE) >> SPU2_HASH_MODE_SHIFT;
357*4882a593Smuzhiyun hash_mode_name = spu2_hash_mode_name(hash_mode);
358*4882a593Smuzhiyun packet_log(" Hash mode: %s\n", hash_mode_name);
359*4882a593Smuzhiyun }
360*4882a593Smuzhiyun
361*4882a593Smuzhiyun if (ctrl0 & SPU2_CIPH_PAD_EN) {
362*4882a593Smuzhiyun packet_log(" Cipher pad: %#2llx\n",
363*4882a593Smuzhiyun (ctrl0 & SPU2_CIPH_PAD) >> SPU2_CIPH_PAD_SHIFT);
364*4882a593Smuzhiyun }
365*4882a593Smuzhiyun }
366*4882a593Smuzhiyun
367*4882a593Smuzhiyun /* Dump FMD ctrl1. The ctrl1 input is in host byte order */
spu2_dump_fmd_ctrl1(u64 ctrl1)368*4882a593Smuzhiyun static void spu2_dump_fmd_ctrl1(u64 ctrl1)
369*4882a593Smuzhiyun {
370*4882a593Smuzhiyun u8 hash_key_len;
371*4882a593Smuzhiyun u8 ciph_key_len;
372*4882a593Smuzhiyun u8 ret_iv_len;
373*4882a593Smuzhiyun u8 iv_offset;
374*4882a593Smuzhiyun u8 iv_len;
375*4882a593Smuzhiyun u8 hash_tag_len;
376*4882a593Smuzhiyun u8 ret_md;
377*4882a593Smuzhiyun
378*4882a593Smuzhiyun packet_log(" FMD CTRL1 %#16llx\n", ctrl1);
379*4882a593Smuzhiyun if (ctrl1 & SPU2_TAG_LOC)
380*4882a593Smuzhiyun packet_log(" Tag after payload\n");
381*4882a593Smuzhiyun
382*4882a593Smuzhiyun packet_log(" Msg includes ");
383*4882a593Smuzhiyun if (ctrl1 & SPU2_HAS_FR_DATA)
384*4882a593Smuzhiyun packet_log("FD ");
385*4882a593Smuzhiyun if (ctrl1 & SPU2_HAS_AAD1)
386*4882a593Smuzhiyun packet_log("AAD1 ");
387*4882a593Smuzhiyun if (ctrl1 & SPU2_HAS_NAAD)
388*4882a593Smuzhiyun packet_log("NAAD ");
389*4882a593Smuzhiyun if (ctrl1 & SPU2_HAS_AAD2)
390*4882a593Smuzhiyun packet_log("AAD2 ");
391*4882a593Smuzhiyun if (ctrl1 & SPU2_HAS_ESN)
392*4882a593Smuzhiyun packet_log("ESN ");
393*4882a593Smuzhiyun packet_log("\n");
394*4882a593Smuzhiyun
395*4882a593Smuzhiyun hash_key_len = (ctrl1 & SPU2_HASH_KEY_LEN) >> SPU2_HASH_KEY_LEN_SHIFT;
396*4882a593Smuzhiyun packet_log(" Hash key len %u\n", hash_key_len);
397*4882a593Smuzhiyun
398*4882a593Smuzhiyun ciph_key_len = (ctrl1 & SPU2_CIPH_KEY_LEN) >> SPU2_CIPH_KEY_LEN_SHIFT;
399*4882a593Smuzhiyun packet_log(" Cipher key len %u\n", ciph_key_len);
400*4882a593Smuzhiyun
401*4882a593Smuzhiyun if (ctrl1 & SPU2_GENIV)
402*4882a593Smuzhiyun packet_log(" Generate IV\n");
403*4882a593Smuzhiyun
404*4882a593Smuzhiyun if (ctrl1 & SPU2_HASH_IV)
405*4882a593Smuzhiyun packet_log(" IV included in hash\n");
406*4882a593Smuzhiyun
407*4882a593Smuzhiyun if (ctrl1 & SPU2_RET_IV)
408*4882a593Smuzhiyun packet_log(" Return IV in output before payload\n");
409*4882a593Smuzhiyun
410*4882a593Smuzhiyun ret_iv_len = (ctrl1 & SPU2_RET_IV_LEN) >> SPU2_RET_IV_LEN_SHIFT;
411*4882a593Smuzhiyun packet_log(" Length of returned IV %u bytes\n",
412*4882a593Smuzhiyun ret_iv_len ? ret_iv_len : 16);
413*4882a593Smuzhiyun
414*4882a593Smuzhiyun iv_offset = (ctrl1 & SPU2_IV_OFFSET) >> SPU2_IV_OFFSET_SHIFT;
415*4882a593Smuzhiyun packet_log(" IV offset %u\n", iv_offset);
416*4882a593Smuzhiyun
417*4882a593Smuzhiyun iv_len = (ctrl1 & SPU2_IV_LEN) >> SPU2_IV_LEN_SHIFT;
418*4882a593Smuzhiyun packet_log(" Input IV len %u bytes\n", iv_len);
419*4882a593Smuzhiyun
420*4882a593Smuzhiyun hash_tag_len = (ctrl1 & SPU2_HASH_TAG_LEN) >> SPU2_HASH_TAG_LEN_SHIFT;
421*4882a593Smuzhiyun packet_log(" Hash tag length %u bytes\n", hash_tag_len);
422*4882a593Smuzhiyun
423*4882a593Smuzhiyun packet_log(" Return ");
424*4882a593Smuzhiyun ret_md = (ctrl1 & SPU2_RETURN_MD) >> SPU2_RETURN_MD_SHIFT;
425*4882a593Smuzhiyun if (ret_md)
426*4882a593Smuzhiyun packet_log("FMD ");
427*4882a593Smuzhiyun if (ret_md == SPU2_RET_FMD_OMD)
428*4882a593Smuzhiyun packet_log("OMD ");
429*4882a593Smuzhiyun else if (ret_md == SPU2_RET_FMD_OMD_IV)
430*4882a593Smuzhiyun packet_log("OMD IV ");
431*4882a593Smuzhiyun if (ctrl1 & SPU2_RETURN_FD)
432*4882a593Smuzhiyun packet_log("FD ");
433*4882a593Smuzhiyun if (ctrl1 & SPU2_RETURN_AAD1)
434*4882a593Smuzhiyun packet_log("AAD1 ");
435*4882a593Smuzhiyun if (ctrl1 & SPU2_RETURN_NAAD)
436*4882a593Smuzhiyun packet_log("NAAD ");
437*4882a593Smuzhiyun if (ctrl1 & SPU2_RETURN_AAD2)
438*4882a593Smuzhiyun packet_log("AAD2 ");
439*4882a593Smuzhiyun if (ctrl1 & SPU2_RETURN_PAY)
440*4882a593Smuzhiyun packet_log("Payload");
441*4882a593Smuzhiyun packet_log("\n");
442*4882a593Smuzhiyun }
443*4882a593Smuzhiyun
444*4882a593Smuzhiyun /* Dump FMD ctrl2. The ctrl2 input is in host byte order */
spu2_dump_fmd_ctrl2(u64 ctrl2)445*4882a593Smuzhiyun static void spu2_dump_fmd_ctrl2(u64 ctrl2)
446*4882a593Smuzhiyun {
447*4882a593Smuzhiyun packet_log(" FMD CTRL2 %#16llx\n", ctrl2);
448*4882a593Smuzhiyun
449*4882a593Smuzhiyun packet_log(" AAD1 offset %llu length %llu bytes\n",
450*4882a593Smuzhiyun ctrl2 & SPU2_AAD1_OFFSET,
451*4882a593Smuzhiyun (ctrl2 & SPU2_AAD1_LEN) >> SPU2_AAD1_LEN_SHIFT);
452*4882a593Smuzhiyun packet_log(" AAD2 offset %llu\n",
453*4882a593Smuzhiyun (ctrl2 & SPU2_AAD2_OFFSET) >> SPU2_AAD2_OFFSET_SHIFT);
454*4882a593Smuzhiyun packet_log(" Payload offset %llu\n",
455*4882a593Smuzhiyun (ctrl2 & SPU2_PL_OFFSET) >> SPU2_PL_OFFSET_SHIFT);
456*4882a593Smuzhiyun }
457*4882a593Smuzhiyun
458*4882a593Smuzhiyun /* Dump FMD ctrl3. The ctrl3 input is in host byte order */
spu2_dump_fmd_ctrl3(u64 ctrl3)459*4882a593Smuzhiyun static void spu2_dump_fmd_ctrl3(u64 ctrl3)
460*4882a593Smuzhiyun {
461*4882a593Smuzhiyun packet_log(" FMD CTRL3 %#16llx\n", ctrl3);
462*4882a593Smuzhiyun
463*4882a593Smuzhiyun packet_log(" Payload length %llu bytes\n", ctrl3 & SPU2_PL_LEN);
464*4882a593Smuzhiyun packet_log(" TLS length %llu bytes\n",
465*4882a593Smuzhiyun (ctrl3 & SPU2_TLS_LEN) >> SPU2_TLS_LEN_SHIFT);
466*4882a593Smuzhiyun }
467*4882a593Smuzhiyun
spu2_dump_fmd(struct SPU2_FMD * fmd)468*4882a593Smuzhiyun static void spu2_dump_fmd(struct SPU2_FMD *fmd)
469*4882a593Smuzhiyun {
470*4882a593Smuzhiyun spu2_dump_fmd_ctrl0(le64_to_cpu(fmd->ctrl0));
471*4882a593Smuzhiyun spu2_dump_fmd_ctrl1(le64_to_cpu(fmd->ctrl1));
472*4882a593Smuzhiyun spu2_dump_fmd_ctrl2(le64_to_cpu(fmd->ctrl2));
473*4882a593Smuzhiyun spu2_dump_fmd_ctrl3(le64_to_cpu(fmd->ctrl3));
474*4882a593Smuzhiyun }
475*4882a593Smuzhiyun
spu2_dump_omd(u8 * omd,u16 hash_key_len,u16 ciph_key_len,u16 hash_iv_len,u16 ciph_iv_len)476*4882a593Smuzhiyun static void spu2_dump_omd(u8 *omd, u16 hash_key_len, u16 ciph_key_len,
477*4882a593Smuzhiyun u16 hash_iv_len, u16 ciph_iv_len)
478*4882a593Smuzhiyun {
479*4882a593Smuzhiyun u8 *ptr = omd;
480*4882a593Smuzhiyun
481*4882a593Smuzhiyun packet_log(" OMD:\n");
482*4882a593Smuzhiyun
483*4882a593Smuzhiyun if (hash_key_len) {
484*4882a593Smuzhiyun packet_log(" Hash Key Length %u bytes\n", hash_key_len);
485*4882a593Smuzhiyun packet_dump(" KEY: ", ptr, hash_key_len);
486*4882a593Smuzhiyun ptr += hash_key_len;
487*4882a593Smuzhiyun }
488*4882a593Smuzhiyun
489*4882a593Smuzhiyun if (ciph_key_len) {
490*4882a593Smuzhiyun packet_log(" Cipher Key Length %u bytes\n", ciph_key_len);
491*4882a593Smuzhiyun packet_dump(" KEY: ", ptr, ciph_key_len);
492*4882a593Smuzhiyun ptr += ciph_key_len;
493*4882a593Smuzhiyun }
494*4882a593Smuzhiyun
495*4882a593Smuzhiyun if (hash_iv_len) {
496*4882a593Smuzhiyun packet_log(" Hash IV Length %u bytes\n", hash_iv_len);
497*4882a593Smuzhiyun packet_dump(" hash IV: ", ptr, hash_iv_len);
498*4882a593Smuzhiyun ptr += ciph_key_len;
499*4882a593Smuzhiyun }
500*4882a593Smuzhiyun
501*4882a593Smuzhiyun if (ciph_iv_len) {
502*4882a593Smuzhiyun packet_log(" Cipher IV Length %u bytes\n", ciph_iv_len);
503*4882a593Smuzhiyun packet_dump(" cipher IV: ", ptr, ciph_iv_len);
504*4882a593Smuzhiyun }
505*4882a593Smuzhiyun }
506*4882a593Smuzhiyun
507*4882a593Smuzhiyun /* Dump a SPU2 header for debug */
spu2_dump_msg_hdr(u8 * buf,unsigned int buf_len)508*4882a593Smuzhiyun void spu2_dump_msg_hdr(u8 *buf, unsigned int buf_len)
509*4882a593Smuzhiyun {
510*4882a593Smuzhiyun struct SPU2_FMD *fmd = (struct SPU2_FMD *)buf;
511*4882a593Smuzhiyun u8 *omd;
512*4882a593Smuzhiyun u64 ctrl1;
513*4882a593Smuzhiyun u16 hash_key_len;
514*4882a593Smuzhiyun u16 ciph_key_len;
515*4882a593Smuzhiyun u16 hash_iv_len;
516*4882a593Smuzhiyun u16 ciph_iv_len;
517*4882a593Smuzhiyun u16 omd_len;
518*4882a593Smuzhiyun
519*4882a593Smuzhiyun packet_log("\n");
520*4882a593Smuzhiyun packet_log("SPU2 message header %p len: %u\n", buf, buf_len);
521*4882a593Smuzhiyun
522*4882a593Smuzhiyun spu2_dump_fmd(fmd);
523*4882a593Smuzhiyun omd = (u8 *)(fmd + 1);
524*4882a593Smuzhiyun
525*4882a593Smuzhiyun ctrl1 = le64_to_cpu(fmd->ctrl1);
526*4882a593Smuzhiyun hash_key_len = (ctrl1 & SPU2_HASH_KEY_LEN) >> SPU2_HASH_KEY_LEN_SHIFT;
527*4882a593Smuzhiyun ciph_key_len = (ctrl1 & SPU2_CIPH_KEY_LEN) >> SPU2_CIPH_KEY_LEN_SHIFT;
528*4882a593Smuzhiyun hash_iv_len = 0;
529*4882a593Smuzhiyun ciph_iv_len = (ctrl1 & SPU2_IV_LEN) >> SPU2_IV_LEN_SHIFT;
530*4882a593Smuzhiyun spu2_dump_omd(omd, hash_key_len, ciph_key_len, hash_iv_len,
531*4882a593Smuzhiyun ciph_iv_len);
532*4882a593Smuzhiyun
533*4882a593Smuzhiyun /* Double check sanity */
534*4882a593Smuzhiyun omd_len = hash_key_len + ciph_key_len + hash_iv_len + ciph_iv_len;
535*4882a593Smuzhiyun if (FMD_SIZE + omd_len != buf_len) {
536*4882a593Smuzhiyun packet_log
537*4882a593Smuzhiyun (" Packet parsed incorrectly. buf_len %u, sum of MD %zu\n",
538*4882a593Smuzhiyun buf_len, FMD_SIZE + omd_len);
539*4882a593Smuzhiyun }
540*4882a593Smuzhiyun packet_log("\n");
541*4882a593Smuzhiyun }
542*4882a593Smuzhiyun
543*4882a593Smuzhiyun /**
544*4882a593Smuzhiyun * spu2_fmd_init() - At setkey time, initialize the fixed meta data for
545*4882a593Smuzhiyun * subsequent skcipher requests for this context.
546*4882a593Smuzhiyun * @spu2_cipher_type: Cipher algorithm
547*4882a593Smuzhiyun * @spu2_mode: Cipher mode
548*4882a593Smuzhiyun * @cipher_key_len: Length of cipher key, in bytes
549*4882a593Smuzhiyun * @cipher_iv_len: Length of cipher initialization vector, in bytes
550*4882a593Smuzhiyun *
551*4882a593Smuzhiyun * Return: 0 (success)
552*4882a593Smuzhiyun */
spu2_fmd_init(struct SPU2_FMD * fmd,enum spu2_cipher_type spu2_type,enum spu2_cipher_mode spu2_mode,u32 cipher_key_len,u32 cipher_iv_len)553*4882a593Smuzhiyun static int spu2_fmd_init(struct SPU2_FMD *fmd,
554*4882a593Smuzhiyun enum spu2_cipher_type spu2_type,
555*4882a593Smuzhiyun enum spu2_cipher_mode spu2_mode,
556*4882a593Smuzhiyun u32 cipher_key_len, u32 cipher_iv_len)
557*4882a593Smuzhiyun {
558*4882a593Smuzhiyun u64 ctrl0;
559*4882a593Smuzhiyun u64 ctrl1;
560*4882a593Smuzhiyun u64 ctrl2;
561*4882a593Smuzhiyun u64 ctrl3;
562*4882a593Smuzhiyun u32 aad1_offset;
563*4882a593Smuzhiyun u32 aad2_offset;
564*4882a593Smuzhiyun u16 aad1_len = 0;
565*4882a593Smuzhiyun u64 payload_offset;
566*4882a593Smuzhiyun
567*4882a593Smuzhiyun ctrl0 = (spu2_type << SPU2_CIPH_TYPE_SHIFT) |
568*4882a593Smuzhiyun (spu2_mode << SPU2_CIPH_MODE_SHIFT);
569*4882a593Smuzhiyun
570*4882a593Smuzhiyun ctrl1 = (cipher_key_len << SPU2_CIPH_KEY_LEN_SHIFT) |
571*4882a593Smuzhiyun ((u64)cipher_iv_len << SPU2_IV_LEN_SHIFT) |
572*4882a593Smuzhiyun ((u64)SPU2_RET_FMD_ONLY << SPU2_RETURN_MD_SHIFT) | SPU2_RETURN_PAY;
573*4882a593Smuzhiyun
574*4882a593Smuzhiyun /*
575*4882a593Smuzhiyun * AAD1 offset is from start of FD. FD length is always 0 for this
576*4882a593Smuzhiyun * driver. So AAD1_offset is always 0.
577*4882a593Smuzhiyun */
578*4882a593Smuzhiyun aad1_offset = 0;
579*4882a593Smuzhiyun aad2_offset = aad1_offset;
580*4882a593Smuzhiyun payload_offset = 0;
581*4882a593Smuzhiyun ctrl2 = aad1_offset |
582*4882a593Smuzhiyun (aad1_len << SPU2_AAD1_LEN_SHIFT) |
583*4882a593Smuzhiyun (aad2_offset << SPU2_AAD2_OFFSET_SHIFT) |
584*4882a593Smuzhiyun (payload_offset << SPU2_PL_OFFSET_SHIFT);
585*4882a593Smuzhiyun
586*4882a593Smuzhiyun ctrl3 = 0;
587*4882a593Smuzhiyun
588*4882a593Smuzhiyun fmd->ctrl0 = cpu_to_le64(ctrl0);
589*4882a593Smuzhiyun fmd->ctrl1 = cpu_to_le64(ctrl1);
590*4882a593Smuzhiyun fmd->ctrl2 = cpu_to_le64(ctrl2);
591*4882a593Smuzhiyun fmd->ctrl3 = cpu_to_le64(ctrl3);
592*4882a593Smuzhiyun
593*4882a593Smuzhiyun return 0;
594*4882a593Smuzhiyun }
595*4882a593Smuzhiyun
596*4882a593Smuzhiyun /**
597*4882a593Smuzhiyun * spu2_fmd_ctrl0_write() - Write ctrl0 field in fixed metadata (FMD) field of
598*4882a593Smuzhiyun * SPU request packet.
599*4882a593Smuzhiyun * @fmd: Start of FMD field to be written
600*4882a593Smuzhiyun * @is_inbound: true if decrypting. false if encrypting.
601*4882a593Smuzhiyun * @authFirst: true if alg authenticates before encrypting
602*4882a593Smuzhiyun * @protocol: protocol selector
603*4882a593Smuzhiyun * @cipher_type: cipher algorithm
604*4882a593Smuzhiyun * @cipher_mode: cipher mode
605*4882a593Smuzhiyun * @auth_type: authentication type
606*4882a593Smuzhiyun * @auth_mode: authentication mode
607*4882a593Smuzhiyun */
spu2_fmd_ctrl0_write(struct SPU2_FMD * fmd,bool is_inbound,bool auth_first,enum spu2_proto_sel protocol,enum spu2_cipher_type cipher_type,enum spu2_cipher_mode cipher_mode,enum spu2_hash_type auth_type,enum spu2_hash_mode auth_mode)608*4882a593Smuzhiyun static void spu2_fmd_ctrl0_write(struct SPU2_FMD *fmd,
609*4882a593Smuzhiyun bool is_inbound, bool auth_first,
610*4882a593Smuzhiyun enum spu2_proto_sel protocol,
611*4882a593Smuzhiyun enum spu2_cipher_type cipher_type,
612*4882a593Smuzhiyun enum spu2_cipher_mode cipher_mode,
613*4882a593Smuzhiyun enum spu2_hash_type auth_type,
614*4882a593Smuzhiyun enum spu2_hash_mode auth_mode)
615*4882a593Smuzhiyun {
616*4882a593Smuzhiyun u64 ctrl0 = 0;
617*4882a593Smuzhiyun
618*4882a593Smuzhiyun if ((cipher_type != SPU2_CIPHER_TYPE_NONE) && !is_inbound)
619*4882a593Smuzhiyun ctrl0 |= SPU2_CIPH_ENCRYPT_EN;
620*4882a593Smuzhiyun
621*4882a593Smuzhiyun ctrl0 |= ((u64)cipher_type << SPU2_CIPH_TYPE_SHIFT) |
622*4882a593Smuzhiyun ((u64)cipher_mode << SPU2_CIPH_MODE_SHIFT);
623*4882a593Smuzhiyun
624*4882a593Smuzhiyun if (protocol)
625*4882a593Smuzhiyun ctrl0 |= (u64)protocol << SPU2_PROTO_SEL_SHIFT;
626*4882a593Smuzhiyun
627*4882a593Smuzhiyun if (auth_first)
628*4882a593Smuzhiyun ctrl0 |= SPU2_HASH_FIRST;
629*4882a593Smuzhiyun
630*4882a593Smuzhiyun if (is_inbound && (auth_type != SPU2_HASH_TYPE_NONE))
631*4882a593Smuzhiyun ctrl0 |= SPU2_CHK_TAG;
632*4882a593Smuzhiyun
633*4882a593Smuzhiyun ctrl0 |= (((u64)auth_type << SPU2_HASH_TYPE_SHIFT) |
634*4882a593Smuzhiyun ((u64)auth_mode << SPU2_HASH_MODE_SHIFT));
635*4882a593Smuzhiyun
636*4882a593Smuzhiyun fmd->ctrl0 = cpu_to_le64(ctrl0);
637*4882a593Smuzhiyun }
638*4882a593Smuzhiyun
639*4882a593Smuzhiyun /**
640*4882a593Smuzhiyun * spu2_fmd_ctrl1_write() - Write ctrl1 field in fixed metadata (FMD) field of
641*4882a593Smuzhiyun * SPU request packet.
642*4882a593Smuzhiyun * @fmd: Start of FMD field to be written
643*4882a593Smuzhiyun * @assoc_size: Length of additional associated data, in bytes
644*4882a593Smuzhiyun * @auth_key_len: Length of authentication key, in bytes
645*4882a593Smuzhiyun * @cipher_key_len: Length of cipher key, in bytes
646*4882a593Smuzhiyun * @gen_iv: If true, hw generates IV and returns in response
647*4882a593Smuzhiyun * @hash_iv: IV participates in hash. Used for IPSEC and TLS.
648*4882a593Smuzhiyun * @return_iv: Return IV in output packet before payload
649*4882a593Smuzhiyun * @ret_iv_len: Length of IV returned from SPU, in bytes
650*4882a593Smuzhiyun * @ret_iv_offset: Offset into full IV of start of returned IV
651*4882a593Smuzhiyun * @cipher_iv_len: Length of input cipher IV, in bytes
652*4882a593Smuzhiyun * @digest_size: Length of digest (aka, hash tag or ICV), in bytes
653*4882a593Smuzhiyun * @return_payload: Return payload in SPU response
654*4882a593Smuzhiyun * @return_md : return metadata in SPU response
655*4882a593Smuzhiyun *
656*4882a593Smuzhiyun * Packet can have AAD2 w/o AAD1. For algorithms currently supported,
657*4882a593Smuzhiyun * associated data goes in AAD2.
658*4882a593Smuzhiyun */
spu2_fmd_ctrl1_write(struct SPU2_FMD * fmd,bool is_inbound,u64 assoc_size,u64 auth_key_len,u64 cipher_key_len,bool gen_iv,bool hash_iv,bool return_iv,u64 ret_iv_len,u64 ret_iv_offset,u64 cipher_iv_len,u64 digest_size,bool return_payload,bool return_md)659*4882a593Smuzhiyun static void spu2_fmd_ctrl1_write(struct SPU2_FMD *fmd, bool is_inbound,
660*4882a593Smuzhiyun u64 assoc_size,
661*4882a593Smuzhiyun u64 auth_key_len, u64 cipher_key_len,
662*4882a593Smuzhiyun bool gen_iv, bool hash_iv, bool return_iv,
663*4882a593Smuzhiyun u64 ret_iv_len, u64 ret_iv_offset,
664*4882a593Smuzhiyun u64 cipher_iv_len, u64 digest_size,
665*4882a593Smuzhiyun bool return_payload, bool return_md)
666*4882a593Smuzhiyun {
667*4882a593Smuzhiyun u64 ctrl1 = 0;
668*4882a593Smuzhiyun
669*4882a593Smuzhiyun if (is_inbound && digest_size)
670*4882a593Smuzhiyun ctrl1 |= SPU2_TAG_LOC;
671*4882a593Smuzhiyun
672*4882a593Smuzhiyun if (assoc_size) {
673*4882a593Smuzhiyun ctrl1 |= SPU2_HAS_AAD2;
674*4882a593Smuzhiyun ctrl1 |= SPU2_RETURN_AAD2; /* need aad2 for gcm aes esp */
675*4882a593Smuzhiyun }
676*4882a593Smuzhiyun
677*4882a593Smuzhiyun if (auth_key_len)
678*4882a593Smuzhiyun ctrl1 |= ((auth_key_len << SPU2_HASH_KEY_LEN_SHIFT) &
679*4882a593Smuzhiyun SPU2_HASH_KEY_LEN);
680*4882a593Smuzhiyun
681*4882a593Smuzhiyun if (cipher_key_len)
682*4882a593Smuzhiyun ctrl1 |= ((cipher_key_len << SPU2_CIPH_KEY_LEN_SHIFT) &
683*4882a593Smuzhiyun SPU2_CIPH_KEY_LEN);
684*4882a593Smuzhiyun
685*4882a593Smuzhiyun if (gen_iv)
686*4882a593Smuzhiyun ctrl1 |= SPU2_GENIV;
687*4882a593Smuzhiyun
688*4882a593Smuzhiyun if (hash_iv)
689*4882a593Smuzhiyun ctrl1 |= SPU2_HASH_IV;
690*4882a593Smuzhiyun
691*4882a593Smuzhiyun if (return_iv) {
692*4882a593Smuzhiyun ctrl1 |= SPU2_RET_IV;
693*4882a593Smuzhiyun ctrl1 |= ret_iv_len << SPU2_RET_IV_LEN_SHIFT;
694*4882a593Smuzhiyun ctrl1 |= ret_iv_offset << SPU2_IV_OFFSET_SHIFT;
695*4882a593Smuzhiyun }
696*4882a593Smuzhiyun
697*4882a593Smuzhiyun ctrl1 |= ((cipher_iv_len << SPU2_IV_LEN_SHIFT) & SPU2_IV_LEN);
698*4882a593Smuzhiyun
699*4882a593Smuzhiyun if (digest_size)
700*4882a593Smuzhiyun ctrl1 |= ((digest_size << SPU2_HASH_TAG_LEN_SHIFT) &
701*4882a593Smuzhiyun SPU2_HASH_TAG_LEN);
702*4882a593Smuzhiyun
703*4882a593Smuzhiyun /* Let's ask for the output pkt to include FMD, but don't need to
704*4882a593Smuzhiyun * get keys and IVs back in OMD.
705*4882a593Smuzhiyun */
706*4882a593Smuzhiyun if (return_md)
707*4882a593Smuzhiyun ctrl1 |= ((u64)SPU2_RET_FMD_ONLY << SPU2_RETURN_MD_SHIFT);
708*4882a593Smuzhiyun else
709*4882a593Smuzhiyun ctrl1 |= ((u64)SPU2_RET_NO_MD << SPU2_RETURN_MD_SHIFT);
710*4882a593Smuzhiyun
711*4882a593Smuzhiyun /* Crypto API does not get assoc data back. So no need for AAD2. */
712*4882a593Smuzhiyun
713*4882a593Smuzhiyun if (return_payload)
714*4882a593Smuzhiyun ctrl1 |= SPU2_RETURN_PAY;
715*4882a593Smuzhiyun
716*4882a593Smuzhiyun fmd->ctrl1 = cpu_to_le64(ctrl1);
717*4882a593Smuzhiyun }
718*4882a593Smuzhiyun
719*4882a593Smuzhiyun /**
720*4882a593Smuzhiyun * spu2_fmd_ctrl2_write() - Set the ctrl2 field in the fixed metadata field of
721*4882a593Smuzhiyun * SPU2 header.
722*4882a593Smuzhiyun * @fmd: Start of FMD field to be written
723*4882a593Smuzhiyun * @cipher_offset: Number of bytes from Start of Packet (end of FD field) where
724*4882a593Smuzhiyun * data to be encrypted or decrypted begins
725*4882a593Smuzhiyun * @auth_key_len: Length of authentication key, in bytes
726*4882a593Smuzhiyun * @auth_iv_len: Length of authentication initialization vector, in bytes
727*4882a593Smuzhiyun * @cipher_key_len: Length of cipher key, in bytes
728*4882a593Smuzhiyun * @cipher_iv_len: Length of cipher IV, in bytes
729*4882a593Smuzhiyun */
spu2_fmd_ctrl2_write(struct SPU2_FMD * fmd,u64 cipher_offset,u64 auth_key_len,u64 auth_iv_len,u64 cipher_key_len,u64 cipher_iv_len)730*4882a593Smuzhiyun static void spu2_fmd_ctrl2_write(struct SPU2_FMD *fmd, u64 cipher_offset,
731*4882a593Smuzhiyun u64 auth_key_len, u64 auth_iv_len,
732*4882a593Smuzhiyun u64 cipher_key_len, u64 cipher_iv_len)
733*4882a593Smuzhiyun {
734*4882a593Smuzhiyun u64 ctrl2;
735*4882a593Smuzhiyun u64 aad1_offset;
736*4882a593Smuzhiyun u64 aad2_offset;
737*4882a593Smuzhiyun u16 aad1_len = 0;
738*4882a593Smuzhiyun u64 payload_offset;
739*4882a593Smuzhiyun
740*4882a593Smuzhiyun /* AAD1 offset is from start of FD. FD length always 0. */
741*4882a593Smuzhiyun aad1_offset = 0;
742*4882a593Smuzhiyun
743*4882a593Smuzhiyun aad2_offset = aad1_offset;
744*4882a593Smuzhiyun payload_offset = cipher_offset;
745*4882a593Smuzhiyun ctrl2 = aad1_offset |
746*4882a593Smuzhiyun (aad1_len << SPU2_AAD1_LEN_SHIFT) |
747*4882a593Smuzhiyun (aad2_offset << SPU2_AAD2_OFFSET_SHIFT) |
748*4882a593Smuzhiyun (payload_offset << SPU2_PL_OFFSET_SHIFT);
749*4882a593Smuzhiyun
750*4882a593Smuzhiyun fmd->ctrl2 = cpu_to_le64(ctrl2);
751*4882a593Smuzhiyun }
752*4882a593Smuzhiyun
753*4882a593Smuzhiyun /**
754*4882a593Smuzhiyun * spu2_fmd_ctrl3_write() - Set the ctrl3 field in FMD
755*4882a593Smuzhiyun * @fmd: Fixed meta data. First field in SPU2 msg header.
756*4882a593Smuzhiyun * @payload_len: Length of payload, in bytes
757*4882a593Smuzhiyun */
spu2_fmd_ctrl3_write(struct SPU2_FMD * fmd,u64 payload_len)758*4882a593Smuzhiyun static void spu2_fmd_ctrl3_write(struct SPU2_FMD *fmd, u64 payload_len)
759*4882a593Smuzhiyun {
760*4882a593Smuzhiyun u64 ctrl3;
761*4882a593Smuzhiyun
762*4882a593Smuzhiyun ctrl3 = payload_len & SPU2_PL_LEN;
763*4882a593Smuzhiyun
764*4882a593Smuzhiyun fmd->ctrl3 = cpu_to_le64(ctrl3);
765*4882a593Smuzhiyun }
766*4882a593Smuzhiyun
767*4882a593Smuzhiyun /**
768*4882a593Smuzhiyun * spu2_ctx_max_payload() - Determine the maximum length of the payload for a
769*4882a593Smuzhiyun * SPU message for a given cipher and hash alg context.
770*4882a593Smuzhiyun * @cipher_alg: The cipher algorithm
771*4882a593Smuzhiyun * @cipher_mode: The cipher mode
772*4882a593Smuzhiyun * @blocksize: The size of a block of data for this algo
773*4882a593Smuzhiyun *
774*4882a593Smuzhiyun * For SPU2, the hardware generally ignores the PayloadLen field in ctrl3 of
775*4882a593Smuzhiyun * FMD and just keeps computing until it receives a DMA descriptor with the EOF
776*4882a593Smuzhiyun * flag set. So we consider the max payload to be infinite. AES CCM is an
777*4882a593Smuzhiyun * exception.
778*4882a593Smuzhiyun *
779*4882a593Smuzhiyun * Return: Max payload length in bytes
780*4882a593Smuzhiyun */
spu2_ctx_max_payload(enum spu_cipher_alg cipher_alg,enum spu_cipher_mode cipher_mode,unsigned int blocksize)781*4882a593Smuzhiyun u32 spu2_ctx_max_payload(enum spu_cipher_alg cipher_alg,
782*4882a593Smuzhiyun enum spu_cipher_mode cipher_mode,
783*4882a593Smuzhiyun unsigned int blocksize)
784*4882a593Smuzhiyun {
785*4882a593Smuzhiyun if ((cipher_alg == CIPHER_ALG_AES) &&
786*4882a593Smuzhiyun (cipher_mode == CIPHER_MODE_CCM)) {
787*4882a593Smuzhiyun u32 excess = SPU2_MAX_PAYLOAD % blocksize;
788*4882a593Smuzhiyun
789*4882a593Smuzhiyun return SPU2_MAX_PAYLOAD - excess;
790*4882a593Smuzhiyun } else {
791*4882a593Smuzhiyun return SPU_MAX_PAYLOAD_INF;
792*4882a593Smuzhiyun }
793*4882a593Smuzhiyun }
794*4882a593Smuzhiyun
795*4882a593Smuzhiyun /**
796*4882a593Smuzhiyun * spu_payload_length() - Given a SPU2 message header, extract the payload
797*4882a593Smuzhiyun * length.
798*4882a593Smuzhiyun * @spu_hdr: Start of SPU message header (FMD)
799*4882a593Smuzhiyun *
800*4882a593Smuzhiyun * Return: payload length, in bytes
801*4882a593Smuzhiyun */
spu2_payload_length(u8 * spu_hdr)802*4882a593Smuzhiyun u32 spu2_payload_length(u8 *spu_hdr)
803*4882a593Smuzhiyun {
804*4882a593Smuzhiyun struct SPU2_FMD *fmd = (struct SPU2_FMD *)spu_hdr;
805*4882a593Smuzhiyun u32 pl_len;
806*4882a593Smuzhiyun u64 ctrl3;
807*4882a593Smuzhiyun
808*4882a593Smuzhiyun ctrl3 = le64_to_cpu(fmd->ctrl3);
809*4882a593Smuzhiyun pl_len = ctrl3 & SPU2_PL_LEN;
810*4882a593Smuzhiyun
811*4882a593Smuzhiyun return pl_len;
812*4882a593Smuzhiyun }
813*4882a593Smuzhiyun
814*4882a593Smuzhiyun /**
815*4882a593Smuzhiyun * spu_response_hdr_len() - Determine the expected length of a SPU response
816*4882a593Smuzhiyun * header.
817*4882a593Smuzhiyun * @auth_key_len: Length of authentication key, in bytes
818*4882a593Smuzhiyun * @enc_key_len: Length of encryption key, in bytes
819*4882a593Smuzhiyun *
820*4882a593Smuzhiyun * For SPU2, includes just FMD. OMD is never requested.
821*4882a593Smuzhiyun *
822*4882a593Smuzhiyun * Return: Length of FMD, in bytes
823*4882a593Smuzhiyun */
spu2_response_hdr_len(u16 auth_key_len,u16 enc_key_len,bool is_hash)824*4882a593Smuzhiyun u16 spu2_response_hdr_len(u16 auth_key_len, u16 enc_key_len, bool is_hash)
825*4882a593Smuzhiyun {
826*4882a593Smuzhiyun return FMD_SIZE;
827*4882a593Smuzhiyun }
828*4882a593Smuzhiyun
829*4882a593Smuzhiyun /**
830*4882a593Smuzhiyun * spu_hash_pad_len() - Calculate the length of hash padding required to extend
831*4882a593Smuzhiyun * data to a full block size.
832*4882a593Smuzhiyun * @hash_alg: hash algorithm
833*4882a593Smuzhiyun * @hash_mode: hash mode
834*4882a593Smuzhiyun * @chunksize: length of data, in bytes
835*4882a593Smuzhiyun * @hash_block_size: size of a hash block, in bytes
836*4882a593Smuzhiyun *
837*4882a593Smuzhiyun * SPU2 hardware does all hash padding
838*4882a593Smuzhiyun *
839*4882a593Smuzhiyun * Return: length of hash pad in bytes
840*4882a593Smuzhiyun */
spu2_hash_pad_len(enum hash_alg hash_alg,enum hash_mode hash_mode,u32 chunksize,u16 hash_block_size)841*4882a593Smuzhiyun u16 spu2_hash_pad_len(enum hash_alg hash_alg, enum hash_mode hash_mode,
842*4882a593Smuzhiyun u32 chunksize, u16 hash_block_size)
843*4882a593Smuzhiyun {
844*4882a593Smuzhiyun return 0;
845*4882a593Smuzhiyun }
846*4882a593Smuzhiyun
847*4882a593Smuzhiyun /**
848*4882a593Smuzhiyun * spu2_gcm_ccm_padlen() - Determine the length of GCM/CCM padding for either
849*4882a593Smuzhiyun * the AAD field or the data.
850*4882a593Smuzhiyun *
851*4882a593Smuzhiyun * Return: 0. Unlike SPU-M, SPU2 hardware does any GCM/CCM padding required.
852*4882a593Smuzhiyun */
spu2_gcm_ccm_pad_len(enum spu_cipher_mode cipher_mode,unsigned int data_size)853*4882a593Smuzhiyun u32 spu2_gcm_ccm_pad_len(enum spu_cipher_mode cipher_mode,
854*4882a593Smuzhiyun unsigned int data_size)
855*4882a593Smuzhiyun {
856*4882a593Smuzhiyun return 0;
857*4882a593Smuzhiyun }
858*4882a593Smuzhiyun
859*4882a593Smuzhiyun /**
860*4882a593Smuzhiyun * spu_assoc_resp_len() - Determine the size of the AAD2 buffer needed to catch
861*4882a593Smuzhiyun * associated data in a SPU2 output packet.
862*4882a593Smuzhiyun * @cipher_mode: cipher mode
863*4882a593Smuzhiyun * @assoc_len: length of additional associated data, in bytes
864*4882a593Smuzhiyun * @iv_len: length of initialization vector, in bytes
865*4882a593Smuzhiyun * @is_encrypt: true if encrypting. false if decrypt.
866*4882a593Smuzhiyun *
867*4882a593Smuzhiyun * Return: Length of buffer to catch associated data in response
868*4882a593Smuzhiyun */
spu2_assoc_resp_len(enum spu_cipher_mode cipher_mode,unsigned int assoc_len,unsigned int iv_len,bool is_encrypt)869*4882a593Smuzhiyun u32 spu2_assoc_resp_len(enum spu_cipher_mode cipher_mode,
870*4882a593Smuzhiyun unsigned int assoc_len, unsigned int iv_len,
871*4882a593Smuzhiyun bool is_encrypt)
872*4882a593Smuzhiyun {
873*4882a593Smuzhiyun u32 resp_len = assoc_len;
874*4882a593Smuzhiyun
875*4882a593Smuzhiyun if (is_encrypt)
876*4882a593Smuzhiyun /* gcm aes esp has to write 8-byte IV in response */
877*4882a593Smuzhiyun resp_len += iv_len;
878*4882a593Smuzhiyun return resp_len;
879*4882a593Smuzhiyun }
880*4882a593Smuzhiyun
881*4882a593Smuzhiyun /*
882*4882a593Smuzhiyun * spu_aead_ivlen() - Calculate the length of the AEAD IV to be included
883*4882a593Smuzhiyun * in a SPU request after the AAD and before the payload.
884*4882a593Smuzhiyun * @cipher_mode: cipher mode
885*4882a593Smuzhiyun * @iv_ctr_len: initialization vector length in bytes
886*4882a593Smuzhiyun *
887*4882a593Smuzhiyun * For SPU2, AEAD IV is included in OMD and does not need to be repeated
888*4882a593Smuzhiyun * prior to the payload.
889*4882a593Smuzhiyun *
890*4882a593Smuzhiyun * Return: Length of AEAD IV in bytes
891*4882a593Smuzhiyun */
spu2_aead_ivlen(enum spu_cipher_mode cipher_mode,u16 iv_len)892*4882a593Smuzhiyun u8 spu2_aead_ivlen(enum spu_cipher_mode cipher_mode, u16 iv_len)
893*4882a593Smuzhiyun {
894*4882a593Smuzhiyun return 0;
895*4882a593Smuzhiyun }
896*4882a593Smuzhiyun
897*4882a593Smuzhiyun /**
898*4882a593Smuzhiyun * spu2_hash_type() - Determine the type of hash operation.
899*4882a593Smuzhiyun * @src_sent: The number of bytes in the current request that have already
900*4882a593Smuzhiyun * been sent to the SPU to be hashed.
901*4882a593Smuzhiyun *
902*4882a593Smuzhiyun * SPU2 always does a FULL hash operation
903*4882a593Smuzhiyun */
spu2_hash_type(u32 src_sent)904*4882a593Smuzhiyun enum hash_type spu2_hash_type(u32 src_sent)
905*4882a593Smuzhiyun {
906*4882a593Smuzhiyun return HASH_TYPE_FULL;
907*4882a593Smuzhiyun }
908*4882a593Smuzhiyun
909*4882a593Smuzhiyun /**
910*4882a593Smuzhiyun * spu2_digest_size() - Determine the size of a hash digest to expect the SPU to
911*4882a593Smuzhiyun * return.
912*4882a593Smuzhiyun * alg_digest_size: Number of bytes in the final digest for the given algo
913*4882a593Smuzhiyun * alg: The hash algorithm
914*4882a593Smuzhiyun * htype: Type of hash operation (init, update, full, etc)
915*4882a593Smuzhiyun *
916*4882a593Smuzhiyun */
spu2_digest_size(u32 alg_digest_size,enum hash_alg alg,enum hash_type htype)917*4882a593Smuzhiyun u32 spu2_digest_size(u32 alg_digest_size, enum hash_alg alg,
918*4882a593Smuzhiyun enum hash_type htype)
919*4882a593Smuzhiyun {
920*4882a593Smuzhiyun return alg_digest_size;
921*4882a593Smuzhiyun }
922*4882a593Smuzhiyun
923*4882a593Smuzhiyun /**
924*4882a593Smuzhiyun * spu_create_request() - Build a SPU2 request message header, includint FMD and
925*4882a593Smuzhiyun * OMD.
926*4882a593Smuzhiyun * @spu_hdr: Start of buffer where SPU request header is to be written
927*4882a593Smuzhiyun * @req_opts: SPU request message options
928*4882a593Smuzhiyun * @cipher_parms: Parameters related to cipher algorithm
929*4882a593Smuzhiyun * @hash_parms: Parameters related to hash algorithm
930*4882a593Smuzhiyun * @aead_parms: Parameters related to AEAD operation
931*4882a593Smuzhiyun * @data_size: Length of data to be encrypted or authenticated. If AEAD, does
932*4882a593Smuzhiyun * not include length of AAD.
933*4882a593Smuzhiyun *
934*4882a593Smuzhiyun * Construct the message starting at spu_hdr. Caller should allocate this buffer
935*4882a593Smuzhiyun * in DMA-able memory at least SPU_HEADER_ALLOC_LEN bytes long.
936*4882a593Smuzhiyun *
937*4882a593Smuzhiyun * Return: the length of the SPU header in bytes. 0 if an error occurs.
938*4882a593Smuzhiyun */
spu2_create_request(u8 * spu_hdr,struct spu_request_opts * req_opts,struct spu_cipher_parms * cipher_parms,struct spu_hash_parms * hash_parms,struct spu_aead_parms * aead_parms,unsigned int data_size)939*4882a593Smuzhiyun u32 spu2_create_request(u8 *spu_hdr,
940*4882a593Smuzhiyun struct spu_request_opts *req_opts,
941*4882a593Smuzhiyun struct spu_cipher_parms *cipher_parms,
942*4882a593Smuzhiyun struct spu_hash_parms *hash_parms,
943*4882a593Smuzhiyun struct spu_aead_parms *aead_parms,
944*4882a593Smuzhiyun unsigned int data_size)
945*4882a593Smuzhiyun {
946*4882a593Smuzhiyun struct SPU2_FMD *fmd;
947*4882a593Smuzhiyun u8 *ptr;
948*4882a593Smuzhiyun unsigned int buf_len;
949*4882a593Smuzhiyun int err;
950*4882a593Smuzhiyun enum spu2_cipher_type spu2_ciph_type = SPU2_CIPHER_TYPE_NONE;
951*4882a593Smuzhiyun enum spu2_cipher_mode spu2_ciph_mode;
952*4882a593Smuzhiyun enum spu2_hash_type spu2_auth_type = SPU2_HASH_TYPE_NONE;
953*4882a593Smuzhiyun enum spu2_hash_mode spu2_auth_mode;
954*4882a593Smuzhiyun bool return_md = true;
955*4882a593Smuzhiyun enum spu2_proto_sel proto = SPU2_PROTO_RESV;
956*4882a593Smuzhiyun
957*4882a593Smuzhiyun /* size of the payload */
958*4882a593Smuzhiyun unsigned int payload_len =
959*4882a593Smuzhiyun hash_parms->prebuf_len + data_size + hash_parms->pad_len -
960*4882a593Smuzhiyun ((req_opts->is_aead && req_opts->is_inbound) ?
961*4882a593Smuzhiyun hash_parms->digestsize : 0);
962*4882a593Smuzhiyun
963*4882a593Smuzhiyun /* offset of prebuf or data from start of AAD2 */
964*4882a593Smuzhiyun unsigned int cipher_offset = aead_parms->assoc_size +
965*4882a593Smuzhiyun aead_parms->aad_pad_len + aead_parms->iv_len;
966*4882a593Smuzhiyun
967*4882a593Smuzhiyun #ifdef DEBUG
968*4882a593Smuzhiyun /* total size of the data following OMD (without STAT word padding) */
969*4882a593Smuzhiyun unsigned int real_db_size = spu_real_db_size(aead_parms->assoc_size,
970*4882a593Smuzhiyun aead_parms->iv_len,
971*4882a593Smuzhiyun hash_parms->prebuf_len,
972*4882a593Smuzhiyun data_size,
973*4882a593Smuzhiyun aead_parms->aad_pad_len,
974*4882a593Smuzhiyun aead_parms->data_pad_len,
975*4882a593Smuzhiyun hash_parms->pad_len);
976*4882a593Smuzhiyun #endif
977*4882a593Smuzhiyun unsigned int assoc_size = aead_parms->assoc_size;
978*4882a593Smuzhiyun
979*4882a593Smuzhiyun if (req_opts->is_aead &&
980*4882a593Smuzhiyun (cipher_parms->alg == CIPHER_ALG_AES) &&
981*4882a593Smuzhiyun (cipher_parms->mode == CIPHER_MODE_GCM))
982*4882a593Smuzhiyun /*
983*4882a593Smuzhiyun * On SPU 2, aes gcm cipher first on encrypt, auth first on
984*4882a593Smuzhiyun * decrypt
985*4882a593Smuzhiyun */
986*4882a593Smuzhiyun req_opts->auth_first = req_opts->is_inbound;
987*4882a593Smuzhiyun
988*4882a593Smuzhiyun /* and do opposite for ccm (auth 1st on encrypt) */
989*4882a593Smuzhiyun if (req_opts->is_aead &&
990*4882a593Smuzhiyun (cipher_parms->alg == CIPHER_ALG_AES) &&
991*4882a593Smuzhiyun (cipher_parms->mode == CIPHER_MODE_CCM))
992*4882a593Smuzhiyun req_opts->auth_first = !req_opts->is_inbound;
993*4882a593Smuzhiyun
994*4882a593Smuzhiyun flow_log("%s()\n", __func__);
995*4882a593Smuzhiyun flow_log(" in:%u authFirst:%u\n",
996*4882a593Smuzhiyun req_opts->is_inbound, req_opts->auth_first);
997*4882a593Smuzhiyun flow_log(" cipher alg:%u mode:%u type %u\n", cipher_parms->alg,
998*4882a593Smuzhiyun cipher_parms->mode, cipher_parms->type);
999*4882a593Smuzhiyun flow_log(" is_esp: %s\n", req_opts->is_esp ? "yes" : "no");
1000*4882a593Smuzhiyun flow_log(" key: %d\n", cipher_parms->key_len);
1001*4882a593Smuzhiyun flow_dump(" key: ", cipher_parms->key_buf, cipher_parms->key_len);
1002*4882a593Smuzhiyun flow_log(" iv: %d\n", cipher_parms->iv_len);
1003*4882a593Smuzhiyun flow_dump(" iv: ", cipher_parms->iv_buf, cipher_parms->iv_len);
1004*4882a593Smuzhiyun flow_log(" auth alg:%u mode:%u type %u\n",
1005*4882a593Smuzhiyun hash_parms->alg, hash_parms->mode, hash_parms->type);
1006*4882a593Smuzhiyun flow_log(" digestsize: %u\n", hash_parms->digestsize);
1007*4882a593Smuzhiyun flow_log(" authkey: %d\n", hash_parms->key_len);
1008*4882a593Smuzhiyun flow_dump(" authkey: ", hash_parms->key_buf, hash_parms->key_len);
1009*4882a593Smuzhiyun flow_log(" assoc_size:%u\n", assoc_size);
1010*4882a593Smuzhiyun flow_log(" prebuf_len:%u\n", hash_parms->prebuf_len);
1011*4882a593Smuzhiyun flow_log(" data_size:%u\n", data_size);
1012*4882a593Smuzhiyun flow_log(" hash_pad_len:%u\n", hash_parms->pad_len);
1013*4882a593Smuzhiyun flow_log(" real_db_size:%u\n", real_db_size);
1014*4882a593Smuzhiyun flow_log(" cipher_offset:%u payload_len:%u\n",
1015*4882a593Smuzhiyun cipher_offset, payload_len);
1016*4882a593Smuzhiyun flow_log(" aead_iv: %u\n", aead_parms->iv_len);
1017*4882a593Smuzhiyun
1018*4882a593Smuzhiyun /* Convert to spu2 values for cipher alg, hash alg */
1019*4882a593Smuzhiyun err = spu2_cipher_xlate(cipher_parms->alg, cipher_parms->mode,
1020*4882a593Smuzhiyun cipher_parms->type,
1021*4882a593Smuzhiyun &spu2_ciph_type, &spu2_ciph_mode);
1022*4882a593Smuzhiyun
1023*4882a593Smuzhiyun /* If we are doing GCM hashing only - either via rfc4543 transform
1024*4882a593Smuzhiyun * or because we happen to do GCM with AAD only and no payload - we
1025*4882a593Smuzhiyun * need to configure hardware to use hash key rather than cipher key
1026*4882a593Smuzhiyun * and put data into payload. This is because unlike SPU-M, running
1027*4882a593Smuzhiyun * GCM cipher with 0 size payload is not permitted.
1028*4882a593Smuzhiyun */
1029*4882a593Smuzhiyun if ((req_opts->is_rfc4543) ||
1030*4882a593Smuzhiyun ((spu2_ciph_mode == SPU2_CIPHER_MODE_GCM) &&
1031*4882a593Smuzhiyun (payload_len == 0))) {
1032*4882a593Smuzhiyun /* Use hashing (only) and set up hash key */
1033*4882a593Smuzhiyun spu2_ciph_type = SPU2_CIPHER_TYPE_NONE;
1034*4882a593Smuzhiyun hash_parms->key_len = cipher_parms->key_len;
1035*4882a593Smuzhiyun memcpy(hash_parms->key_buf, cipher_parms->key_buf,
1036*4882a593Smuzhiyun cipher_parms->key_len);
1037*4882a593Smuzhiyun cipher_parms->key_len = 0;
1038*4882a593Smuzhiyun
1039*4882a593Smuzhiyun if (req_opts->is_rfc4543)
1040*4882a593Smuzhiyun payload_len += assoc_size;
1041*4882a593Smuzhiyun else
1042*4882a593Smuzhiyun payload_len = assoc_size;
1043*4882a593Smuzhiyun cipher_offset = 0;
1044*4882a593Smuzhiyun assoc_size = 0;
1045*4882a593Smuzhiyun }
1046*4882a593Smuzhiyun
1047*4882a593Smuzhiyun if (err)
1048*4882a593Smuzhiyun return 0;
1049*4882a593Smuzhiyun
1050*4882a593Smuzhiyun flow_log("spu2 cipher type %s, cipher mode %s\n",
1051*4882a593Smuzhiyun spu2_ciph_type_name(spu2_ciph_type),
1052*4882a593Smuzhiyun spu2_ciph_mode_name(spu2_ciph_mode));
1053*4882a593Smuzhiyun
1054*4882a593Smuzhiyun err = spu2_hash_xlate(hash_parms->alg, hash_parms->mode,
1055*4882a593Smuzhiyun hash_parms->type,
1056*4882a593Smuzhiyun cipher_parms->type,
1057*4882a593Smuzhiyun &spu2_auth_type, &spu2_auth_mode);
1058*4882a593Smuzhiyun if (err)
1059*4882a593Smuzhiyun return 0;
1060*4882a593Smuzhiyun
1061*4882a593Smuzhiyun flow_log("spu2 hash type %s, hash mode %s\n",
1062*4882a593Smuzhiyun spu2_hash_type_name(spu2_auth_type),
1063*4882a593Smuzhiyun spu2_hash_mode_name(spu2_auth_mode));
1064*4882a593Smuzhiyun
1065*4882a593Smuzhiyun fmd = (struct SPU2_FMD *)spu_hdr;
1066*4882a593Smuzhiyun
1067*4882a593Smuzhiyun spu2_fmd_ctrl0_write(fmd, req_opts->is_inbound, req_opts->auth_first,
1068*4882a593Smuzhiyun proto, spu2_ciph_type, spu2_ciph_mode,
1069*4882a593Smuzhiyun spu2_auth_type, spu2_auth_mode);
1070*4882a593Smuzhiyun
1071*4882a593Smuzhiyun spu2_fmd_ctrl1_write(fmd, req_opts->is_inbound, assoc_size,
1072*4882a593Smuzhiyun hash_parms->key_len, cipher_parms->key_len,
1073*4882a593Smuzhiyun false, false,
1074*4882a593Smuzhiyun aead_parms->return_iv, aead_parms->ret_iv_len,
1075*4882a593Smuzhiyun aead_parms->ret_iv_off,
1076*4882a593Smuzhiyun cipher_parms->iv_len, hash_parms->digestsize,
1077*4882a593Smuzhiyun !req_opts->bd_suppress, return_md);
1078*4882a593Smuzhiyun
1079*4882a593Smuzhiyun spu2_fmd_ctrl2_write(fmd, cipher_offset, hash_parms->key_len, 0,
1080*4882a593Smuzhiyun cipher_parms->key_len, cipher_parms->iv_len);
1081*4882a593Smuzhiyun
1082*4882a593Smuzhiyun spu2_fmd_ctrl3_write(fmd, payload_len);
1083*4882a593Smuzhiyun
1084*4882a593Smuzhiyun ptr = (u8 *)(fmd + 1);
1085*4882a593Smuzhiyun buf_len = sizeof(struct SPU2_FMD);
1086*4882a593Smuzhiyun
1087*4882a593Smuzhiyun /* Write OMD */
1088*4882a593Smuzhiyun if (hash_parms->key_len) {
1089*4882a593Smuzhiyun memcpy(ptr, hash_parms->key_buf, hash_parms->key_len);
1090*4882a593Smuzhiyun ptr += hash_parms->key_len;
1091*4882a593Smuzhiyun buf_len += hash_parms->key_len;
1092*4882a593Smuzhiyun }
1093*4882a593Smuzhiyun if (cipher_parms->key_len) {
1094*4882a593Smuzhiyun memcpy(ptr, cipher_parms->key_buf, cipher_parms->key_len);
1095*4882a593Smuzhiyun ptr += cipher_parms->key_len;
1096*4882a593Smuzhiyun buf_len += cipher_parms->key_len;
1097*4882a593Smuzhiyun }
1098*4882a593Smuzhiyun if (cipher_parms->iv_len) {
1099*4882a593Smuzhiyun memcpy(ptr, cipher_parms->iv_buf, cipher_parms->iv_len);
1100*4882a593Smuzhiyun ptr += cipher_parms->iv_len;
1101*4882a593Smuzhiyun buf_len += cipher_parms->iv_len;
1102*4882a593Smuzhiyun }
1103*4882a593Smuzhiyun
1104*4882a593Smuzhiyun packet_dump(" SPU request header: ", spu_hdr, buf_len);
1105*4882a593Smuzhiyun
1106*4882a593Smuzhiyun return buf_len;
1107*4882a593Smuzhiyun }
1108*4882a593Smuzhiyun
1109*4882a593Smuzhiyun /**
1110*4882a593Smuzhiyun * spu_cipher_req_init() - Build an skcipher SPU2 request message header,
1111*4882a593Smuzhiyun * including FMD and OMD.
1112*4882a593Smuzhiyun * @spu_hdr: Location of start of SPU request (FMD field)
1113*4882a593Smuzhiyun * @cipher_parms: Parameters describing cipher request
1114*4882a593Smuzhiyun *
1115*4882a593Smuzhiyun * Called at setkey time to initialize a msg header that can be reused for all
1116*4882a593Smuzhiyun * subsequent skcipher requests. Construct the message starting at spu_hdr.
1117*4882a593Smuzhiyun * Caller should allocate this buffer in DMA-able memory at least
1118*4882a593Smuzhiyun * SPU_HEADER_ALLOC_LEN bytes long.
1119*4882a593Smuzhiyun *
1120*4882a593Smuzhiyun * Return: the total length of the SPU header (FMD and OMD) in bytes. 0 if an
1121*4882a593Smuzhiyun * error occurs.
1122*4882a593Smuzhiyun */
spu2_cipher_req_init(u8 * spu_hdr,struct spu_cipher_parms * cipher_parms)1123*4882a593Smuzhiyun u16 spu2_cipher_req_init(u8 *spu_hdr, struct spu_cipher_parms *cipher_parms)
1124*4882a593Smuzhiyun {
1125*4882a593Smuzhiyun struct SPU2_FMD *fmd;
1126*4882a593Smuzhiyun u8 *omd;
1127*4882a593Smuzhiyun enum spu2_cipher_type spu2_type = SPU2_CIPHER_TYPE_NONE;
1128*4882a593Smuzhiyun enum spu2_cipher_mode spu2_mode;
1129*4882a593Smuzhiyun int err;
1130*4882a593Smuzhiyun
1131*4882a593Smuzhiyun flow_log("%s()\n", __func__);
1132*4882a593Smuzhiyun flow_log(" cipher alg:%u mode:%u type %u\n", cipher_parms->alg,
1133*4882a593Smuzhiyun cipher_parms->mode, cipher_parms->type);
1134*4882a593Smuzhiyun flow_log(" cipher_iv_len: %u\n", cipher_parms->iv_len);
1135*4882a593Smuzhiyun flow_log(" key: %d\n", cipher_parms->key_len);
1136*4882a593Smuzhiyun flow_dump(" key: ", cipher_parms->key_buf, cipher_parms->key_len);
1137*4882a593Smuzhiyun
1138*4882a593Smuzhiyun /* Convert to spu2 values */
1139*4882a593Smuzhiyun err = spu2_cipher_xlate(cipher_parms->alg, cipher_parms->mode,
1140*4882a593Smuzhiyun cipher_parms->type, &spu2_type, &spu2_mode);
1141*4882a593Smuzhiyun if (err)
1142*4882a593Smuzhiyun return 0;
1143*4882a593Smuzhiyun
1144*4882a593Smuzhiyun flow_log("spu2 cipher type %s, cipher mode %s\n",
1145*4882a593Smuzhiyun spu2_ciph_type_name(spu2_type),
1146*4882a593Smuzhiyun spu2_ciph_mode_name(spu2_mode));
1147*4882a593Smuzhiyun
1148*4882a593Smuzhiyun /* Construct the FMD header */
1149*4882a593Smuzhiyun fmd = (struct SPU2_FMD *)spu_hdr;
1150*4882a593Smuzhiyun err = spu2_fmd_init(fmd, spu2_type, spu2_mode, cipher_parms->key_len,
1151*4882a593Smuzhiyun cipher_parms->iv_len);
1152*4882a593Smuzhiyun if (err)
1153*4882a593Smuzhiyun return 0;
1154*4882a593Smuzhiyun
1155*4882a593Smuzhiyun /* Write cipher key to OMD */
1156*4882a593Smuzhiyun omd = (u8 *)(fmd + 1);
1157*4882a593Smuzhiyun if (cipher_parms->key_buf && cipher_parms->key_len)
1158*4882a593Smuzhiyun memcpy(omd, cipher_parms->key_buf, cipher_parms->key_len);
1159*4882a593Smuzhiyun
1160*4882a593Smuzhiyun packet_dump(" SPU request header: ", spu_hdr,
1161*4882a593Smuzhiyun FMD_SIZE + cipher_parms->key_len + cipher_parms->iv_len);
1162*4882a593Smuzhiyun
1163*4882a593Smuzhiyun return FMD_SIZE + cipher_parms->key_len + cipher_parms->iv_len;
1164*4882a593Smuzhiyun }
1165*4882a593Smuzhiyun
1166*4882a593Smuzhiyun /**
1167*4882a593Smuzhiyun * spu_cipher_req_finish() - Finish building a SPU request message header for a
1168*4882a593Smuzhiyun * block cipher request.
1169*4882a593Smuzhiyun * @spu_hdr: Start of the request message header (MH field)
1170*4882a593Smuzhiyun * @spu_req_hdr_len: Length in bytes of the SPU request header
1171*4882a593Smuzhiyun * @isInbound: 0 encrypt, 1 decrypt
1172*4882a593Smuzhiyun * @cipher_parms: Parameters describing cipher operation to be performed
1173*4882a593Smuzhiyun * @data_size: Length of the data in the BD field
1174*4882a593Smuzhiyun *
1175*4882a593Smuzhiyun * Assumes much of the header was already filled in at setkey() time in
1176*4882a593Smuzhiyun * spu_cipher_req_init().
1177*4882a593Smuzhiyun * spu_cipher_req_init() fills in the encryption key.
1178*4882a593Smuzhiyun */
spu2_cipher_req_finish(u8 * spu_hdr,u16 spu_req_hdr_len,unsigned int is_inbound,struct spu_cipher_parms * cipher_parms,unsigned int data_size)1179*4882a593Smuzhiyun void spu2_cipher_req_finish(u8 *spu_hdr,
1180*4882a593Smuzhiyun u16 spu_req_hdr_len,
1181*4882a593Smuzhiyun unsigned int is_inbound,
1182*4882a593Smuzhiyun struct spu_cipher_parms *cipher_parms,
1183*4882a593Smuzhiyun unsigned int data_size)
1184*4882a593Smuzhiyun {
1185*4882a593Smuzhiyun struct SPU2_FMD *fmd;
1186*4882a593Smuzhiyun u8 *omd; /* start of optional metadata */
1187*4882a593Smuzhiyun u64 ctrl0;
1188*4882a593Smuzhiyun u64 ctrl3;
1189*4882a593Smuzhiyun
1190*4882a593Smuzhiyun flow_log("%s()\n", __func__);
1191*4882a593Smuzhiyun flow_log(" in: %u\n", is_inbound);
1192*4882a593Smuzhiyun flow_log(" cipher alg: %u, cipher_type: %u\n", cipher_parms->alg,
1193*4882a593Smuzhiyun cipher_parms->type);
1194*4882a593Smuzhiyun flow_log(" iv len: %d\n", cipher_parms->iv_len);
1195*4882a593Smuzhiyun flow_dump(" iv: ", cipher_parms->iv_buf, cipher_parms->iv_len);
1196*4882a593Smuzhiyun flow_log(" data_size: %u\n", data_size);
1197*4882a593Smuzhiyun
1198*4882a593Smuzhiyun fmd = (struct SPU2_FMD *)spu_hdr;
1199*4882a593Smuzhiyun omd = (u8 *)(fmd + 1);
1200*4882a593Smuzhiyun
1201*4882a593Smuzhiyun /*
1202*4882a593Smuzhiyun * FMD ctrl0 was initialized at setkey time. update it to indicate
1203*4882a593Smuzhiyun * whether we are encrypting or decrypting.
1204*4882a593Smuzhiyun */
1205*4882a593Smuzhiyun ctrl0 = le64_to_cpu(fmd->ctrl0);
1206*4882a593Smuzhiyun if (is_inbound)
1207*4882a593Smuzhiyun ctrl0 &= ~SPU2_CIPH_ENCRYPT_EN; /* decrypt */
1208*4882a593Smuzhiyun else
1209*4882a593Smuzhiyun ctrl0 |= SPU2_CIPH_ENCRYPT_EN; /* encrypt */
1210*4882a593Smuzhiyun fmd->ctrl0 = cpu_to_le64(ctrl0);
1211*4882a593Smuzhiyun
1212*4882a593Smuzhiyun if (cipher_parms->alg && cipher_parms->iv_buf && cipher_parms->iv_len) {
1213*4882a593Smuzhiyun /* cipher iv provided so put it in here */
1214*4882a593Smuzhiyun memcpy(omd + cipher_parms->key_len, cipher_parms->iv_buf,
1215*4882a593Smuzhiyun cipher_parms->iv_len);
1216*4882a593Smuzhiyun }
1217*4882a593Smuzhiyun
1218*4882a593Smuzhiyun ctrl3 = le64_to_cpu(fmd->ctrl3);
1219*4882a593Smuzhiyun data_size &= SPU2_PL_LEN;
1220*4882a593Smuzhiyun ctrl3 |= data_size;
1221*4882a593Smuzhiyun fmd->ctrl3 = cpu_to_le64(ctrl3);
1222*4882a593Smuzhiyun
1223*4882a593Smuzhiyun packet_dump(" SPU request header: ", spu_hdr, spu_req_hdr_len);
1224*4882a593Smuzhiyun }
1225*4882a593Smuzhiyun
1226*4882a593Smuzhiyun /**
1227*4882a593Smuzhiyun * spu_request_pad() - Create pad bytes at the end of the data.
1228*4882a593Smuzhiyun * @pad_start: Start of buffer where pad bytes are to be written
1229*4882a593Smuzhiyun * @gcm_padding: Length of GCM padding, in bytes
1230*4882a593Smuzhiyun * @hash_pad_len: Number of bytes of padding extend data to full block
1231*4882a593Smuzhiyun * @auth_alg: Authentication algorithm
1232*4882a593Smuzhiyun * @auth_mode: Authentication mode
1233*4882a593Smuzhiyun * @total_sent: Length inserted at end of hash pad
1234*4882a593Smuzhiyun * @status_padding: Number of bytes of padding to align STATUS word
1235*4882a593Smuzhiyun *
1236*4882a593Smuzhiyun * There may be three forms of pad:
1237*4882a593Smuzhiyun * 1. GCM pad - for GCM mode ciphers, pad to 16-byte alignment
1238*4882a593Smuzhiyun * 2. hash pad - pad to a block length, with 0x80 data terminator and
1239*4882a593Smuzhiyun * size at the end
1240*4882a593Smuzhiyun * 3. STAT pad - to ensure the STAT field is 4-byte aligned
1241*4882a593Smuzhiyun */
spu2_request_pad(u8 * pad_start,u32 gcm_padding,u32 hash_pad_len,enum hash_alg auth_alg,enum hash_mode auth_mode,unsigned int total_sent,u32 status_padding)1242*4882a593Smuzhiyun void spu2_request_pad(u8 *pad_start, u32 gcm_padding, u32 hash_pad_len,
1243*4882a593Smuzhiyun enum hash_alg auth_alg, enum hash_mode auth_mode,
1244*4882a593Smuzhiyun unsigned int total_sent, u32 status_padding)
1245*4882a593Smuzhiyun {
1246*4882a593Smuzhiyun u8 *ptr = pad_start;
1247*4882a593Smuzhiyun
1248*4882a593Smuzhiyun /* fix data alignent for GCM */
1249*4882a593Smuzhiyun if (gcm_padding > 0) {
1250*4882a593Smuzhiyun flow_log(" GCM: padding to 16 byte alignment: %u bytes\n",
1251*4882a593Smuzhiyun gcm_padding);
1252*4882a593Smuzhiyun memset(ptr, 0, gcm_padding);
1253*4882a593Smuzhiyun ptr += gcm_padding;
1254*4882a593Smuzhiyun }
1255*4882a593Smuzhiyun
1256*4882a593Smuzhiyun if (hash_pad_len > 0) {
1257*4882a593Smuzhiyun /* clear the padding section */
1258*4882a593Smuzhiyun memset(ptr, 0, hash_pad_len);
1259*4882a593Smuzhiyun
1260*4882a593Smuzhiyun /* terminate the data */
1261*4882a593Smuzhiyun *ptr = 0x80;
1262*4882a593Smuzhiyun ptr += (hash_pad_len - sizeof(u64));
1263*4882a593Smuzhiyun
1264*4882a593Smuzhiyun /* add the size at the end as required per alg */
1265*4882a593Smuzhiyun if (auth_alg == HASH_ALG_MD5)
1266*4882a593Smuzhiyun *(u64 *)ptr = cpu_to_le64((u64)total_sent * 8);
1267*4882a593Smuzhiyun else /* SHA1, SHA2-224, SHA2-256 */
1268*4882a593Smuzhiyun *(u64 *)ptr = cpu_to_be64((u64)total_sent * 8);
1269*4882a593Smuzhiyun ptr += sizeof(u64);
1270*4882a593Smuzhiyun }
1271*4882a593Smuzhiyun
1272*4882a593Smuzhiyun /* pad to a 4byte alignment for STAT */
1273*4882a593Smuzhiyun if (status_padding > 0) {
1274*4882a593Smuzhiyun flow_log(" STAT: padding to 4 byte alignment: %u bytes\n",
1275*4882a593Smuzhiyun status_padding);
1276*4882a593Smuzhiyun
1277*4882a593Smuzhiyun memset(ptr, 0, status_padding);
1278*4882a593Smuzhiyun ptr += status_padding;
1279*4882a593Smuzhiyun }
1280*4882a593Smuzhiyun }
1281*4882a593Smuzhiyun
1282*4882a593Smuzhiyun /**
1283*4882a593Smuzhiyun * spu2_xts_tweak_in_payload() - Indicate that SPU2 does NOT place the XTS
1284*4882a593Smuzhiyun * tweak field in the packet payload (it uses IV instead)
1285*4882a593Smuzhiyun *
1286*4882a593Smuzhiyun * Return: 0
1287*4882a593Smuzhiyun */
spu2_xts_tweak_in_payload(void)1288*4882a593Smuzhiyun u8 spu2_xts_tweak_in_payload(void)
1289*4882a593Smuzhiyun {
1290*4882a593Smuzhiyun return 0;
1291*4882a593Smuzhiyun }
1292*4882a593Smuzhiyun
1293*4882a593Smuzhiyun /**
1294*4882a593Smuzhiyun * spu2_tx_status_len() - Return the length of the STATUS field in a SPU
1295*4882a593Smuzhiyun * response message.
1296*4882a593Smuzhiyun *
1297*4882a593Smuzhiyun * Return: Length of STATUS field in bytes.
1298*4882a593Smuzhiyun */
spu2_tx_status_len(void)1299*4882a593Smuzhiyun u8 spu2_tx_status_len(void)
1300*4882a593Smuzhiyun {
1301*4882a593Smuzhiyun return SPU2_TX_STATUS_LEN;
1302*4882a593Smuzhiyun }
1303*4882a593Smuzhiyun
1304*4882a593Smuzhiyun /**
1305*4882a593Smuzhiyun * spu2_rx_status_len() - Return the length of the STATUS field in a SPU
1306*4882a593Smuzhiyun * response message.
1307*4882a593Smuzhiyun *
1308*4882a593Smuzhiyun * Return: Length of STATUS field in bytes.
1309*4882a593Smuzhiyun */
spu2_rx_status_len(void)1310*4882a593Smuzhiyun u8 spu2_rx_status_len(void)
1311*4882a593Smuzhiyun {
1312*4882a593Smuzhiyun return SPU2_RX_STATUS_LEN;
1313*4882a593Smuzhiyun }
1314*4882a593Smuzhiyun
1315*4882a593Smuzhiyun /**
1316*4882a593Smuzhiyun * spu_status_process() - Process the status from a SPU response message.
1317*4882a593Smuzhiyun * @statp: start of STATUS word
1318*4882a593Smuzhiyun *
1319*4882a593Smuzhiyun * Return: 0 - if status is good and response should be processed
1320*4882a593Smuzhiyun * !0 - status indicates an error and response is invalid
1321*4882a593Smuzhiyun */
spu2_status_process(u8 * statp)1322*4882a593Smuzhiyun int spu2_status_process(u8 *statp)
1323*4882a593Smuzhiyun {
1324*4882a593Smuzhiyun /* SPU2 status is 2 bytes by default - SPU_RX_STATUS_LEN */
1325*4882a593Smuzhiyun u16 status = le16_to_cpu(*(__le16 *)statp);
1326*4882a593Smuzhiyun
1327*4882a593Smuzhiyun if (status == 0)
1328*4882a593Smuzhiyun return 0;
1329*4882a593Smuzhiyun
1330*4882a593Smuzhiyun flow_log("rx status is %#x\n", status);
1331*4882a593Smuzhiyun if (status == SPU2_INVALID_ICV)
1332*4882a593Smuzhiyun return SPU_INVALID_ICV;
1333*4882a593Smuzhiyun
1334*4882a593Smuzhiyun return -EBADMSG;
1335*4882a593Smuzhiyun }
1336*4882a593Smuzhiyun
1337*4882a593Smuzhiyun /**
1338*4882a593Smuzhiyun * spu2_ccm_update_iv() - Update the IV as per the requirements for CCM mode.
1339*4882a593Smuzhiyun *
1340*4882a593Smuzhiyun * @digestsize: Digest size of this request
1341*4882a593Smuzhiyun * @cipher_parms: (pointer to) cipher parmaeters, includes IV buf & IV len
1342*4882a593Smuzhiyun * @assoclen: Length of AAD data
1343*4882a593Smuzhiyun * @chunksize: length of input data to be sent in this req
1344*4882a593Smuzhiyun * @is_encrypt: true if this is an output/encrypt operation
1345*4882a593Smuzhiyun * @is_esp: true if this is an ESP / RFC4309 operation
1346*4882a593Smuzhiyun *
1347*4882a593Smuzhiyun */
spu2_ccm_update_iv(unsigned int digestsize,struct spu_cipher_parms * cipher_parms,unsigned int assoclen,unsigned int chunksize,bool is_encrypt,bool is_esp)1348*4882a593Smuzhiyun void spu2_ccm_update_iv(unsigned int digestsize,
1349*4882a593Smuzhiyun struct spu_cipher_parms *cipher_parms,
1350*4882a593Smuzhiyun unsigned int assoclen, unsigned int chunksize,
1351*4882a593Smuzhiyun bool is_encrypt, bool is_esp)
1352*4882a593Smuzhiyun {
1353*4882a593Smuzhiyun int L; /* size of length field, in bytes */
1354*4882a593Smuzhiyun
1355*4882a593Smuzhiyun /*
1356*4882a593Smuzhiyun * In RFC4309 mode, L is fixed at 4 bytes; otherwise, IV from
1357*4882a593Smuzhiyun * testmgr contains (L-1) in bottom 3 bits of first byte,
1358*4882a593Smuzhiyun * per RFC 3610.
1359*4882a593Smuzhiyun */
1360*4882a593Smuzhiyun if (is_esp)
1361*4882a593Smuzhiyun L = CCM_ESP_L_VALUE;
1362*4882a593Smuzhiyun else
1363*4882a593Smuzhiyun L = ((cipher_parms->iv_buf[0] & CCM_B0_L_PRIME) >>
1364*4882a593Smuzhiyun CCM_B0_L_PRIME_SHIFT) + 1;
1365*4882a593Smuzhiyun
1366*4882a593Smuzhiyun /* SPU2 doesn't want these length bytes nor the first byte... */
1367*4882a593Smuzhiyun cipher_parms->iv_len -= (1 + L);
1368*4882a593Smuzhiyun memmove(cipher_parms->iv_buf, &cipher_parms->iv_buf[1],
1369*4882a593Smuzhiyun cipher_parms->iv_len);
1370*4882a593Smuzhiyun }
1371*4882a593Smuzhiyun
1372*4882a593Smuzhiyun /**
1373*4882a593Smuzhiyun * spu2_wordalign_padlen() - SPU2 does not require padding.
1374*4882a593Smuzhiyun * @data_size: length of data field in bytes
1375*4882a593Smuzhiyun *
1376*4882a593Smuzhiyun * Return: length of status field padding, in bytes (always 0 on SPU2)
1377*4882a593Smuzhiyun */
spu2_wordalign_padlen(u32 data_size)1378*4882a593Smuzhiyun u32 spu2_wordalign_padlen(u32 data_size)
1379*4882a593Smuzhiyun {
1380*4882a593Smuzhiyun return 0;
1381*4882a593Smuzhiyun }
1382