forked from mirrors/linux
65c4c93caa
Commit 6cb8815f41 ("crypto: sig - Add interface for sign/verify")
began a transition of asymmetric sign/verify operations from
crypto_akcipher to a new crypto_sig frontend.
Internally, the crypto_sig frontend still uses akcipher_alg as backend,
however:
"The link between sig and akcipher is meant to be temporary. The
plan is to create a new low-level API for sig and then migrate
the signature code over to that from akcipher."
https://lore.kernel.org/r/ZrG6w9wsb-iiLZIF@gondor.apana.org.au/
"having a separate alg for sig is definitely where we want to
be since there is very little that the two types actually share."
https://lore.kernel.org/r/ZrHlpz4qnre0zWJO@gondor.apana.org.au/
Take the next step of that migration and augment the crypto_sig frontend
with a sig_alg backend to which all algorithms can be moved.
During the migration, there will briefly be signature algorithms that
are still based on crypto_akcipher, whilst others are already based on
crypto_sig. Allow for that by building a fork into crypto_sig_*() API
calls (i.e. crypto_sig_maxsize() and friends) such that one of the two
backends is selected based on the transform's cra_type.
Signed-off-by: Lukas Wunner <lukas@wunner.de>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
218 lines
5.8 KiB
C
218 lines
5.8 KiB
C
/* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */
|
|
/*
|
|
* Crypto user configuration API.
|
|
*
|
|
* Copyright (C) 2011 secunet Security Networks AG
|
|
* Copyright (C) 2011 Steffen Klassert <steffen.klassert@secunet.com>
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify it
|
|
* under the terms and conditions of the GNU General Public License,
|
|
* version 2, as published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope it will be useful, but WITHOUT
|
|
* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
|
|
* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
|
|
* more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License along with
|
|
* this program; if not, write to the Free Software Foundation, Inc.,
|
|
* 51 Franklin St - Fifth Floor, Boston, MA 02110-1301 USA.
|
|
*/
|
|
|
|
#ifndef _UAPI_LINUX_CRYPTOUSER_H
|
|
#define _UAPI_LINUX_CRYPTOUSER_H
|
|
|
|
#include <linux/types.h>
|
|
|
|
/* Netlink configuration messages. */
|
|
enum {
|
|
CRYPTO_MSG_BASE = 0x10,
|
|
CRYPTO_MSG_NEWALG = 0x10,
|
|
CRYPTO_MSG_DELALG,
|
|
CRYPTO_MSG_UPDATEALG,
|
|
CRYPTO_MSG_GETALG,
|
|
CRYPTO_MSG_DELRNG,
|
|
CRYPTO_MSG_GETSTAT, /* No longer supported, do not use. */
|
|
__CRYPTO_MSG_MAX
|
|
};
|
|
#define CRYPTO_MSG_MAX (__CRYPTO_MSG_MAX - 1)
|
|
#define CRYPTO_NR_MSGTYPES (CRYPTO_MSG_MAX + 1 - CRYPTO_MSG_BASE)
|
|
|
|
#define CRYPTO_MAX_NAME 64
|
|
|
|
/* Netlink message attributes. */
|
|
enum crypto_attr_type_t {
|
|
CRYPTOCFGA_UNSPEC,
|
|
CRYPTOCFGA_PRIORITY_VAL, /* __u32 */
|
|
CRYPTOCFGA_REPORT_LARVAL, /* struct crypto_report_larval */
|
|
CRYPTOCFGA_REPORT_HASH, /* struct crypto_report_hash */
|
|
CRYPTOCFGA_REPORT_BLKCIPHER, /* struct crypto_report_blkcipher */
|
|
CRYPTOCFGA_REPORT_AEAD, /* struct crypto_report_aead */
|
|
CRYPTOCFGA_REPORT_COMPRESS, /* struct crypto_report_comp */
|
|
CRYPTOCFGA_REPORT_RNG, /* struct crypto_report_rng */
|
|
CRYPTOCFGA_REPORT_CIPHER, /* struct crypto_report_cipher */
|
|
CRYPTOCFGA_REPORT_AKCIPHER, /* struct crypto_report_akcipher */
|
|
CRYPTOCFGA_REPORT_KPP, /* struct crypto_report_kpp */
|
|
CRYPTOCFGA_REPORT_ACOMP, /* struct crypto_report_acomp */
|
|
CRYPTOCFGA_STAT_LARVAL, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_HASH, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_BLKCIPHER, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_AEAD, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_COMPRESS, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_RNG, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_CIPHER, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_AKCIPHER, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_KPP, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_STAT_ACOMP, /* No longer supported, do not use. */
|
|
CRYPTOCFGA_REPORT_SIG, /* struct crypto_report_sig */
|
|
__CRYPTOCFGA_MAX
|
|
|
|
#define CRYPTOCFGA_MAX (__CRYPTOCFGA_MAX - 1)
|
|
};
|
|
|
|
struct crypto_user_alg {
|
|
char cru_name[CRYPTO_MAX_NAME];
|
|
char cru_driver_name[CRYPTO_MAX_NAME];
|
|
char cru_module_name[CRYPTO_MAX_NAME];
|
|
__u32 cru_type;
|
|
__u32 cru_mask;
|
|
__u32 cru_refcnt;
|
|
__u32 cru_flags;
|
|
};
|
|
|
|
/* No longer supported, do not use. */
|
|
struct crypto_stat_aead {
|
|
char type[CRYPTO_MAX_NAME];
|
|
__u64 stat_encrypt_cnt;
|
|
__u64 stat_encrypt_tlen;
|
|
__u64 stat_decrypt_cnt;
|
|
__u64 stat_decrypt_tlen;
|
|
__u64 stat_err_cnt;
|
|
};
|
|
|
|
/* No longer supported, do not use. */
|
|
struct crypto_stat_akcipher {
|
|
char type[CRYPTO_MAX_NAME];
|
|
__u64 stat_encrypt_cnt;
|
|
__u64 stat_encrypt_tlen;
|
|
__u64 stat_decrypt_cnt;
|
|
__u64 stat_decrypt_tlen;
|
|
__u64 stat_verify_cnt;
|
|
__u64 stat_sign_cnt;
|
|
__u64 stat_err_cnt;
|
|
};
|
|
|
|
/* No longer supported, do not use. */
|
|
struct crypto_stat_cipher {
|
|
char type[CRYPTO_MAX_NAME];
|
|
__u64 stat_encrypt_cnt;
|
|
__u64 stat_encrypt_tlen;
|
|
__u64 stat_decrypt_cnt;
|
|
__u64 stat_decrypt_tlen;
|
|
__u64 stat_err_cnt;
|
|
};
|
|
|
|
/* No longer supported, do not use. */
|
|
struct crypto_stat_compress {
|
|
char type[CRYPTO_MAX_NAME];
|
|
__u64 stat_compress_cnt;
|
|
__u64 stat_compress_tlen;
|
|
__u64 stat_decompress_cnt;
|
|
__u64 stat_decompress_tlen;
|
|
__u64 stat_err_cnt;
|
|
};
|
|
|
|
/* No longer supported, do not use. */
|
|
struct crypto_stat_hash {
|
|
char type[CRYPTO_MAX_NAME];
|
|
__u64 stat_hash_cnt;
|
|
__u64 stat_hash_tlen;
|
|
__u64 stat_err_cnt;
|
|
};
|
|
|
|
/* No longer supported, do not use. */
|
|
struct crypto_stat_kpp {
|
|
char type[CRYPTO_MAX_NAME];
|
|
__u64 stat_setsecret_cnt;
|
|
__u64 stat_generate_public_key_cnt;
|
|
__u64 stat_compute_shared_secret_cnt;
|
|
__u64 stat_err_cnt;
|
|
};
|
|
|
|
/* No longer supported, do not use. */
|
|
struct crypto_stat_rng {
|
|
char type[CRYPTO_MAX_NAME];
|
|
__u64 stat_generate_cnt;
|
|
__u64 stat_generate_tlen;
|
|
__u64 stat_seed_cnt;
|
|
__u64 stat_err_cnt;
|
|
};
|
|
|
|
/* No longer supported, do not use. */
|
|
struct crypto_stat_larval {
|
|
char type[CRYPTO_MAX_NAME];
|
|
};
|
|
|
|
struct crypto_report_larval {
|
|
char type[CRYPTO_MAX_NAME];
|
|
};
|
|
|
|
struct crypto_report_hash {
|
|
char type[CRYPTO_MAX_NAME];
|
|
unsigned int blocksize;
|
|
unsigned int digestsize;
|
|
};
|
|
|
|
struct crypto_report_cipher {
|
|
char type[CRYPTO_MAX_NAME];
|
|
unsigned int blocksize;
|
|
unsigned int min_keysize;
|
|
unsigned int max_keysize;
|
|
};
|
|
|
|
struct crypto_report_blkcipher {
|
|
char type[CRYPTO_MAX_NAME];
|
|
char geniv[CRYPTO_MAX_NAME];
|
|
unsigned int blocksize;
|
|
unsigned int min_keysize;
|
|
unsigned int max_keysize;
|
|
unsigned int ivsize;
|
|
};
|
|
|
|
struct crypto_report_aead {
|
|
char type[CRYPTO_MAX_NAME];
|
|
char geniv[CRYPTO_MAX_NAME];
|
|
unsigned int blocksize;
|
|
unsigned int maxauthsize;
|
|
unsigned int ivsize;
|
|
};
|
|
|
|
struct crypto_report_comp {
|
|
char type[CRYPTO_MAX_NAME];
|
|
};
|
|
|
|
struct crypto_report_rng {
|
|
char type[CRYPTO_MAX_NAME];
|
|
unsigned int seedsize;
|
|
};
|
|
|
|
struct crypto_report_akcipher {
|
|
char type[CRYPTO_MAX_NAME];
|
|
};
|
|
|
|
struct crypto_report_kpp {
|
|
char type[CRYPTO_MAX_NAME];
|
|
};
|
|
|
|
struct crypto_report_acomp {
|
|
char type[CRYPTO_MAX_NAME];
|
|
};
|
|
|
|
struct crypto_report_sig {
|
|
char type[CRYPTO_MAX_NAME];
|
|
};
|
|
|
|
#define CRYPTO_REPORT_MAXSIZE (sizeof(struct crypto_user_alg) + \
|
|
sizeof(struct crypto_report_blkcipher))
|
|
|
|
#endif /* _UAPI_LINUX_CRYPTOUSER_H */
|