Gitiles
Code Review Sign In
review.shift-gmbh.com / SHIFTPHONES / kernel / common / 01e661ebfbad40e6280fb8ec25f2861d39ba4387 / . / security / keys / big_key.c
blob: 2806e70d7f8fcddfd1b39a1fed8114975ff1c82c [file] [log] [blame]
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]1/* Large capacity key type
2 *
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]3 * Copyright (C) 2017 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]4 * Copyright (C) 2013 Red Hat, Inc. All Rights Reserved.
5 * Written by David Howells (dhowells@redhat.com)
6 *
7 * This program is free software; you can redistribute it and/or
8 * modify it under the terms of the GNU General Public Licence
9 * as published by the Free Software Foundation; either version
10 * 2 of the Licence, or (at your option) any later version.
11 */
12
David Howells7df3e592016-10-26 15:02:01 +0100[diff] [blame]13#define pr_fmt(fmt) "big_key: "fmt
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]14#include <linux/init.h>
15#include <linux/seq_file.h>
16#include <linux/file.h>
17#include <linux/shmem_fs.h>
18#include <linux/err.h>
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]19#include <linux/scatterlist.h>
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]20#include <linux/random.h>
Randy Dunlap514c6032018-04-05 16:25:34 -0700[diff] [blame]21#include <linux/vmalloc.h>
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]22#include <keys/user-type.h>
23#include <keys/big_key-type.h>
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]24#include <crypto/aead.h>
Tycho Andersena964f392018-04-24 14:26:37 -0600[diff] [blame]25#include <crypto/gcm.h>
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]26
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]27struct big_key_buf {
28 unsigned int nr_pages;
29 void *virt;
30 struct scatterlist *sg;
31 struct page *pages[];
32};
33
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]34/*
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]35 * Layout of key payload words.
36 */
37enum {
38 big_key_data,
39 big_key_path,
40 big_key_path_2nd_part,
41 big_key_len,
42};
43
44/*
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]45 * Crypto operation with big_key data
46 */
47enum big_key_op {
48 BIG_KEY_ENC,
49 BIG_KEY_DEC,
50};
51
52/*
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]53 * If the data is under this limit, there's no point creating a shm file to
54 * hold it as the permanently resident metadata for the shmem fs will be at
55 * least as large as the data.
56 */
57#define BIG_KEY_FILE_THRESHOLD (sizeof(struct inode) + sizeof(struct dentry))
58
59/*
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]60 * Key size for big_key data encryption
61 */
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]62#define ENC_KEY_SIZE 32
63
64/*
65 * Authentication tag length
66 */
67#define ENC_AUTHTAG_SIZE 16
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]68
69/*
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]70 * big_key defined keys take an arbitrary string as the description and an
71 * arbitrary blob of data as the payload
72 */
73struct key_type key_type_big_key = {
74 .name = "big_key",
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]75 .preparse = big_key_preparse,
76 .free_preparse = big_key_free_preparse,
77 .instantiate = generic_key_instantiate,
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]78 .revoke = big_key_revoke,
79 .destroy = big_key_destroy,
80 .describe = big_key_describe,
81 .read = big_key_read,
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]82 /* no ->update(); don't add it without changing big_key_crypt() nonce */
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]83};
84
85/*
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]86 * Crypto names for big_key data authenticated encryption
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]87 */
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]88static const char big_key_alg_name[] = "gcm(aes)";
Tycho Andersena964f392018-04-24 14:26:37 -0600[diff] [blame]89#define BIG_KEY_IV_SIZE GCM_AES_IV_SIZE
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]90
91/*
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]92 * Crypto algorithms for big_key data authenticated encryption
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]93 */
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]94static struct crypto_aead *big_key_aead;
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]95
96/*
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]97 * Since changing the key affects the entire object, we need a mutex.
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]98 */
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]99static DEFINE_MUTEX(big_key_aead_lock);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]100
101/*
102 * Encrypt/decrypt big_key data
103 */
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]104static int big_key_crypt(enum big_key_op op, struct big_key_buf *buf, size_t datalen, u8 *key)
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]105{
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]106 int ret;
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]107 struct aead_request *aead_req;
108 /* We always use a zero nonce. The reason we can get away with this is
109 * because we're using a different randomly generated key for every
110 * different encryption. Notably, too, key_type_big_key doesn't define
111 * an .update function, so there's no chance we'll wind up reusing the
112 * key to encrypt updated data. Simply put: one key, one encryption.
113 */
Tycho Andersena964f392018-04-24 14:26:37 -0600[diff] [blame]114 u8 zero_nonce[BIG_KEY_IV_SIZE];
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]115
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]116 aead_req = aead_request_alloc(big_key_aead, GFP_KERNEL);
117 if (!aead_req)
118 return -ENOMEM;
119
120 memset(zero_nonce, 0, sizeof(zero_nonce));
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]121 aead_request_set_crypt(aead_req, buf->sg, buf->sg, datalen, zero_nonce);
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]122 aead_request_set_callback(aead_req, CRYPTO_TFM_REQ_MAY_SLEEP, NULL, NULL);
123 aead_request_set_ad(aead_req, 0);
124
125 mutex_lock(&big_key_aead_lock);
126 if (crypto_aead_setkey(big_key_aead, key, ENC_KEY_SIZE)) {
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]127 ret = -EAGAIN;
128 goto error;
129 }
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]130 if (op == BIG_KEY_ENC)
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]131 ret = crypto_aead_encrypt(aead_req);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]132 else
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]133 ret = crypto_aead_decrypt(aead_req);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]134error:
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]135 mutex_unlock(&big_key_aead_lock);
136 aead_request_free(aead_req);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]137 return ret;
138}
139
140/*
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]141 * Free up the buffer.
142 */
143static void big_key_free_buffer(struct big_key_buf *buf)
144{
145 unsigned int i;
146
147 if (buf->virt) {
148 memset(buf->virt, 0, buf->nr_pages * PAGE_SIZE);
149 vunmap(buf->virt);
150 }
151
152 for (i = 0; i < buf->nr_pages; i++)
153 if (buf->pages[i])
154 __free_page(buf->pages[i]);
155
156 kfree(buf);
157}
158
159/*
160 * Allocate a buffer consisting of a set of pages with a virtual mapping
161 * applied over them.
162 */
163static void *big_key_alloc_buffer(size_t len)
164{
165 struct big_key_buf *buf;
166 unsigned int npg = (len + PAGE_SIZE - 1) >> PAGE_SHIFT;
167 unsigned int i, l;
168
169 buf = kzalloc(sizeof(struct big_key_buf) +
170 sizeof(struct page) * npg +
171 sizeof(struct scatterlist) * npg,
172 GFP_KERNEL);
173 if (!buf)
174 return NULL;
175
176 buf->nr_pages = npg;
177 buf->sg = (void *)(buf->pages + npg);
178 sg_init_table(buf->sg, npg);
179
180 for (i = 0; i < buf->nr_pages; i++) {
181 buf->pages[i] = alloc_page(GFP_KERNEL);
182 if (!buf->pages[i])
183 goto nomem;
184
185 l = min_t(size_t, len, PAGE_SIZE);
186 sg_set_page(&buf->sg[i], buf->pages[i], l, 0);
187 len -= l;
188 }
189
190 buf->virt = vmap(buf->pages, buf->nr_pages, VM_MAP, PAGE_KERNEL);
191 if (!buf->virt)
192 goto nomem;
193
194 return buf;
195
196nomem:
197 big_key_free_buffer(buf);
198 return NULL;
199}
200
201/*
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]202 * Preparse a big key
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]203 */
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]204int big_key_preparse(struct key_preparsed_payload *prep)
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]205{
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]206 struct big_key_buf *buf;
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]207 struct path *path = (struct path *)&prep->payload.data[big_key_path];
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]208 struct file *file;
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]209 u8 *enckey;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]210 ssize_t written;
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]211 size_t datalen = prep->datalen, enclen = datalen + ENC_AUTHTAG_SIZE;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]212 int ret;
213
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]214 if (datalen <= 0 || datalen > 1024 * 1024 || !prep->data)
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]215 return -EINVAL;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]216
217 /* Set an arbitrary quota */
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]218 prep->quotalen = 16;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]219
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]220 prep->payload.data[big_key_len] = (void *)(unsigned long)datalen;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]221
222 if (datalen > BIG_KEY_FILE_THRESHOLD) {
223 /* Create a shmem file to store the data in. This will permit the data
224 * to be swapped out if needed.
225 *
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]226 * File content is stored encrypted with randomly generated key.
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]227 */
Christoph Hellwige13ec932017-09-01 17:39:14 +0200[diff] [blame]228 loff_t pos = 0;
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]229
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]230 buf = big_key_alloc_buffer(enclen);
231 if (!buf)
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]232 return -ENOMEM;
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]233 memcpy(buf->virt, prep->data, datalen);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]234
235 /* generate random key */
236 enckey = kmalloc(ENC_KEY_SIZE, GFP_KERNEL);
237 if (!enckey) {
238 ret = -ENOMEM;
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]239 goto error;
Wei Yongjund2b86972013-10-30 11:23:02 +0800[diff] [blame]240 }
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]241 ret = get_random_bytes_wait(enckey, ENC_KEY_SIZE);
242 if (unlikely(ret))
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]243 goto err_enckey;
244
245 /* encrypt aligned data */
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]246 ret = big_key_crypt(BIG_KEY_ENC, buf, datalen, enckey);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]247 if (ret)
248 goto err_enckey;
249
250 /* save aligned data to file */
251 file = shmem_kernel_file_setup("", enclen, 0);
252 if (IS_ERR(file)) {
253 ret = PTR_ERR(file);
254 goto err_enckey;
255 }
256
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]257 written = kernel_write(file, buf->virt, enclen, &pos);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]258 if (written != enclen) {
David Howells97826c82013-11-13 16:51:06 +0000[diff] [blame]259 ret = written;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]260 if (written >= 0)
261 ret = -ENOMEM;
262 goto err_fput;
263 }
264
265 /* Pin the mount and dentry to the key so that we can open it again
266 * later
267 */
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]268 prep->payload.data[big_key_data] = enckey;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]269 *path = file->f_path;
270 path_get(path);
271 fput(file);
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]272 big_key_free_buffer(buf);
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]273 } else {
274 /* Just store the data in a buffer */
275 void *data = kmalloc(datalen, GFP_KERNEL);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]276
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]277 if (!data)
278 return -ENOMEM;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]279
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]280 prep->payload.data[big_key_data] = data;
281 memcpy(data, prep->data, prep->datalen);
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]282 }
283 return 0;
284
285err_fput:
286 fput(file);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]287err_enckey:
Jason A. Donenfeld91080182017-09-20 16:58:38 +0200[diff] [blame]288 kzfree(enckey);
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]289error:
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]290 big_key_free_buffer(buf);
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]291 return ret;
292}
293
294/*
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]295 * Clear preparsement.
296 */
297void big_key_free_preparse(struct key_preparsed_payload *prep)
298{
299 if (prep->datalen > BIG_KEY_FILE_THRESHOLD) {
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]300 struct path *path = (struct path *)&prep->payload.data[big_key_path];
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]301
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]302 path_put(path);
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]303 }
Jason A. Donenfeld91080182017-09-20 16:58:38 +0200[diff] [blame]304 kzfree(prep->payload.data[big_key_data]);
David Howells002edaf2014-07-18 18:56:36 +0100[diff] [blame]305}
306
307/*
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]308 * dispose of the links from a revoked keyring
309 * - called with the key sem write-locked
310 */
311void big_key_revoke(struct key *key)
312{
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]313 struct path *path = (struct path *)&key->payload.data[big_key_path];
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]314
315 /* clear the quota */
316 key_payload_reserve(key, 0);
David Howells363b02d2017-10-04 16:43:25 +0100[diff] [blame]317 if (key_is_positive(key) &&
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]318 (size_t)key->payload.data[big_key_len] > BIG_KEY_FILE_THRESHOLD)
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]319 vfs_truncate(path, 0);
320}
321
322/*
323 * dispose of the data dangling from the corpse of a big_key key
324 */
325void big_key_destroy(struct key *key)
326{
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]327 size_t datalen = (size_t)key->payload.data[big_key_len];
328
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]329 if (datalen > BIG_KEY_FILE_THRESHOLD) {
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]330 struct path *path = (struct path *)&key->payload.data[big_key_path];
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]331
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]332 path_put(path);
333 path->mnt = NULL;
334 path->dentry = NULL;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]335 }
Jason A. Donenfeld91080182017-09-20 16:58:38 +0200[diff] [blame]336 kzfree(key->payload.data[big_key_data]);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]337 key->payload.data[big_key_data] = NULL;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]338}
339
340/*
341 * describe the big_key key
342 */
343void big_key_describe(const struct key *key, struct seq_file *m)
344{
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]345 size_t datalen = (size_t)key->payload.data[big_key_len];
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]346
347 seq_puts(m, key->description);
348
David Howells363b02d2017-10-04 16:43:25 +0100[diff] [blame]349 if (key_is_positive(key))
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]350 seq_printf(m, ": %zu [%s]",
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]351 datalen,
352 datalen > BIG_KEY_FILE_THRESHOLD ? "file" : "buff");
353}
354
355/*
356 * read the key data
357 * - the key's semaphore is read-locked
358 */
359long big_key_read(const struct key *key, char __user *buffer, size_t buflen)
360{
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]361 size_t datalen = (size_t)key->payload.data[big_key_len];
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]362 long ret;
363
364 if (!buffer || buflen < datalen)
365 return datalen;
366
367 if (datalen > BIG_KEY_FILE_THRESHOLD) {
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]368 struct big_key_buf *buf;
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]369 struct path *path = (struct path *)&key->payload.data[big_key_path];
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]370 struct file *file;
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]371 u8 *enckey = (u8 *)key->payload.data[big_key_data];
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]372 size_t enclen = datalen + ENC_AUTHTAG_SIZE;
Christoph Hellwigbdd1d2d2017-09-01 17:39:13 +0200[diff] [blame]373 loff_t pos = 0;
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]374
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]375 buf = big_key_alloc_buffer(enclen);
376 if (!buf)
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]377 return -ENOMEM;
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]378
379 file = dentry_open(path, O_RDONLY, current_cred());
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]380 if (IS_ERR(file)) {
381 ret = PTR_ERR(file);
382 goto error;
383 }
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]384
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]385 /* read file to kernel and decrypt */
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]386 ret = kernel_read(file, buf->virt, enclen, &pos);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]387 if (ret >= 0 && ret != enclen) {
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]388 ret = -EIO;
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]389 goto err_fput;
390 }
391
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]392 ret = big_key_crypt(BIG_KEY_DEC, buf, enclen, enckey);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]393 if (ret)
394 goto err_fput;
395
396 ret = datalen;
397
398 /* copy decrypted data to user */
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]399 if (copy_to_user(buffer, buf->virt, datalen) != 0)
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]400 ret = -EFAULT;
401
402err_fput:
403 fput(file);
404error:
David Howellsd9f4bb12018-02-22 14:38:34 +0000[diff] [blame]405 big_key_free_buffer(buf);
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]406 } else {
407 ret = datalen;
David Howells146aa8b2015-10-21 14:04:48 +0100[diff] [blame]408 if (copy_to_user(buffer, key->payload.data[big_key_data],
409 datalen) != 0)
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]410 ret = -EFAULT;
411 }
412
413 return ret;
414}
415
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]416/*
417 * Register key type
418 */
David Howellsab3c3582013-09-24 10:35:18 +0100[diff] [blame]419static int __init big_key_init(void)
420{
David Howells7df3e592016-10-26 15:02:01 +0100[diff] [blame]421 int ret;
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]422
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]423 /* init block cipher */
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]424 big_key_aead = crypto_alloc_aead(big_key_alg_name, 0, CRYPTO_ALG_ASYNC);
425 if (IS_ERR(big_key_aead)) {
426 ret = PTR_ERR(big_key_aead);
David Howells7df3e592016-10-26 15:02:01 +0100[diff] [blame]427 pr_err("Can't alloc crypto: %d\n", ret);
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]428 return ret;
David Howells7df3e592016-10-26 15:02:01 +0100[diff] [blame]429 }
Tycho Andersena964f392018-04-24 14:26:37 -0600[diff] [blame]430
431 if (unlikely(crypto_aead_ivsize(big_key_aead) != BIG_KEY_IV_SIZE)) {
432 WARN(1, "big key algorithm changed?");
433 ret = -EINVAL;
434 goto free_aead;
435 }
436
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]437 ret = crypto_aead_setauthsize(big_key_aead, ENC_AUTHTAG_SIZE);
438 if (ret < 0) {
439 pr_err("Can't set crypto auth tag len: %d\n", ret);
440 goto free_aead;
441 }
David Howells7df3e592016-10-26 15:02:01 +0100[diff] [blame]442
443 ret = register_key_type(&key_type_big_key);
444 if (ret < 0) {
445 pr_err("Can't register type: %d\n", ret);
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]446 goto free_aead;
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]447 }
448
449 return 0;
450
Jason A. Donenfeld428490e2017-09-20 16:58:39 +0200[diff] [blame]451free_aead:
452 crypto_free_aead(big_key_aead);
Kirill Marinushkin13100a72016-04-12 19:54:58 +0100[diff] [blame]453 return ret;
454}
455
David Howells7df3e592016-10-26 15:02:01 +0100[diff] [blame]456late_initcall(big_key_init);