1 /* SPDX-License-Identifier: GPL-2.0 */
2 /* Copyright (C) 2012-2018 ARM Limited or its affiliates. */
5 * ARM CryptoCell AEAD Crypto API
11 #include <linux/kernel.h>
12 #include <crypto/algapi.h>
13 #include <crypto/ctr.h>
15 /* mac_cmp - HW writes 8 B but all bytes hold the same value */
16 #define ICV_CMP_SIZE 8
17 #define CCM_CONFIG_BUF_SIZE (AES_BLOCK_SIZE * 3)
18 #define MAX_MAC_SIZE SHA256_DIGEST_SIZE
20 /* defines for AES GCM configuration buffer */
21 #define GCM_BLOCK_LEN_SIZE 8
23 #define GCM_BLOCK_RFC4_IV_OFFSET 4
24 #define GCM_BLOCK_RFC4_IV_SIZE 8 /* IV size for rfc's */
25 #define GCM_BLOCK_RFC4_NONCE_OFFSET 0
26 #define GCM_BLOCK_RFC4_NONCE_SIZE 4
28 /* Offsets into AES CCM configuration buffer */
29 #define CCM_B0_OFFSET 0
30 #define CCM_A0_OFFSET 16
31 #define CCM_CTR_COUNT_0_OFFSET 32
32 /* CCM B0 and CTR_COUNT constants. */
33 #define CCM_BLOCK_NONCE_OFFSET 1 /* Nonce offset inside B0 and CTR_COUNT */
34 #define CCM_BLOCK_NONCE_SIZE 3 /* Nonce size inside B0 and CTR_COUNT */
35 #define CCM_BLOCK_IV_OFFSET 4 /* IV offset inside B0 and CTR_COUNT */
36 #define CCM_BLOCK_IV_SIZE 8 /* IV size inside B0 and CTR_COUNT */
38 enum aead_ccm_header_size
{
39 ccm_header_size_null
= -1,
40 ccm_header_size_zero
= 0,
41 ccm_header_size_2
= 2,
42 ccm_header_size_6
= 6,
43 ccm_header_size_max
= S32_MAX
47 /* Allocate cache line although only 4 bytes are needed to
48 * assure next field falls @ cache line
49 * Used for both: digest HW compare and CCM/GCM MAC value
51 u8 mac_buf
[MAX_MAC_SIZE
] ____cacheline_aligned
;
52 u8 ctr_iv
[AES_BLOCK_SIZE
] ____cacheline_aligned
;
55 u8 gcm_iv_inc1
[AES_BLOCK_SIZE
] ____cacheline_aligned
;
56 u8 gcm_iv_inc2
[AES_BLOCK_SIZE
] ____cacheline_aligned
;
57 u8 hkey
[AES_BLOCK_SIZE
] ____cacheline_aligned
;
59 u8 len_a
[GCM_BLOCK_LEN_SIZE
] ____cacheline_aligned
;
60 u8 len_c
[GCM_BLOCK_LEN_SIZE
];
63 u8 ccm_config
[CCM_CONFIG_BUF_SIZE
] ____cacheline_aligned
;
64 /* HW actual size input */
65 unsigned int hw_iv_size ____cacheline_aligned
;
66 /* used to prevent cache coherence problem */
67 u8 backup_mac
[MAX_MAC_SIZE
];
68 u8
*backup_iv
; /*store iv for generated IV flow*/
69 u8
*backup_giv
; /*store iv for rfc3686(ctr) flow*/
70 u32 assoclen
; /* internal assoclen */
71 dma_addr_t mac_buf_dma_addr
; /* internal ICV DMA buffer */
72 /* buffer for internal ccm configurations */
73 dma_addr_t ccm_iv0_dma_addr
;
74 dma_addr_t icv_dma_addr
; /* Phys. address of ICV */
77 /* buffer for internal gcm configurations */
78 dma_addr_t gcm_iv_inc1_dma_addr
;
79 /* buffer for internal gcm configurations */
80 dma_addr_t gcm_iv_inc2_dma_addr
;
81 dma_addr_t hkey_dma_addr
; /* Phys. address of hkey */
82 dma_addr_t gcm_block_len_dma_addr
; /* Phys. address of gcm block len */
85 u8
*icv_virt_addr
; /* Virt. address of ICV */
86 struct async_gen_req_ctx gen_ctx
;
90 struct scatterlist
*src_sgl
;
91 struct scatterlist
*dst_sgl
;
92 unsigned int src_offset
;
93 unsigned int dst_offset
;
94 enum cc_req_dma_buf_type assoc_buff_type
;
95 enum cc_req_dma_buf_type data_buff_type
;
96 struct mlli_params mlli_params
;
97 unsigned int cryptlen
;
98 struct scatterlist ccm_adata_sg
;
99 enum aead_ccm_header_size ccm_hdr_size
;
100 unsigned int req_authsize
;
101 enum drv_cipher_mode cipher_mode
;
102 bool is_icv_fragmented
;
104 bool plaintext_authenticate_only
; //for gcm_rfc4543
107 int cc_aead_alloc(struct cc_drvdata
*drvdata
);
108 int cc_aead_free(struct cc_drvdata
*drvdata
);
110 #endif /*__CC_AEAD_H__*/