2 * Authenc: Simple AEAD wrapper for IPsec
4 * Copyright (c) 2007 Herbert Xu <herbert@gondor.apana.org.au>
6 * This program is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the Free
8 * Software Foundation; either version 2 of the License, or (at your option)
13 #include <crypto/aead.h>
14 #include <crypto/internal/hash.h>
15 #include <crypto/internal/skcipher.h>
16 #include <crypto/authenc.h>
17 #include <crypto/scatterwalk.h>
18 #include <linux/err.h>
19 #include <linux/init.h>
20 #include <linux/kernel.h>
21 #include <linux/module.h>
22 #include <linux/rtnetlink.h>
23 #include <linux/slab.h>
24 #include <linux/spinlock.h>
26 typedef u8
*(*authenc_ahash_t
)(struct aead_request
*req
, unsigned int flags
);
28 struct authenc_instance_ctx
{
29 struct crypto_ahash_spawn auth
;
30 struct crypto_skcipher_spawn enc
;
33 struct crypto_authenc_ctx
{
35 struct crypto_ahash
*auth
;
36 struct crypto_ablkcipher
*enc
;
39 struct authenc_request_ctx
{
40 unsigned int cryptlen
;
41 struct scatterlist
*sg
;
42 struct scatterlist asg
[2];
43 struct scatterlist cipher
[2];
44 crypto_completion_t complete
;
45 crypto_completion_t update_complete
;
49 static void authenc_request_complete(struct aead_request
*req
, int err
)
51 if (err
!= -EINPROGRESS
)
52 aead_request_complete(req
, err
);
55 static int crypto_authenc_setkey(struct crypto_aead
*authenc
, const u8
*key
,
58 unsigned int authkeylen
;
59 unsigned int enckeylen
;
60 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
61 struct crypto_ahash
*auth
= ctx
->auth
;
62 struct crypto_ablkcipher
*enc
= ctx
->enc
;
63 struct rtattr
*rta
= (void *)key
;
64 struct crypto_authenc_key_param
*param
;
67 if (!RTA_OK(rta
, keylen
))
69 if (rta
->rta_type
!= CRYPTO_AUTHENC_KEYA_PARAM
)
71 if (RTA_PAYLOAD(rta
) < sizeof(*param
))
74 param
= RTA_DATA(rta
);
75 enckeylen
= be32_to_cpu(param
->enckeylen
);
77 key
+= RTA_ALIGN(rta
->rta_len
);
78 keylen
-= RTA_ALIGN(rta
->rta_len
);
80 if (keylen
< enckeylen
)
83 authkeylen
= keylen
- enckeylen
;
85 crypto_ahash_clear_flags(auth
, CRYPTO_TFM_REQ_MASK
);
86 crypto_ahash_set_flags(auth
, crypto_aead_get_flags(authenc
) &
88 err
= crypto_ahash_setkey(auth
, key
, authkeylen
);
89 crypto_aead_set_flags(authenc
, crypto_ahash_get_flags(auth
) &
95 crypto_ablkcipher_clear_flags(enc
, CRYPTO_TFM_REQ_MASK
);
96 crypto_ablkcipher_set_flags(enc
, crypto_aead_get_flags(authenc
) &
98 err
= crypto_ablkcipher_setkey(enc
, key
+ authkeylen
, enckeylen
);
99 crypto_aead_set_flags(authenc
, crypto_ablkcipher_get_flags(enc
) &
100 CRYPTO_TFM_RES_MASK
);
106 crypto_aead_set_flags(authenc
, CRYPTO_TFM_RES_BAD_KEY_LEN
);
110 static void authenc_geniv_ahash_update_done(struct crypto_async_request
*areq
,
113 struct aead_request
*req
= areq
->data
;
114 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
115 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
116 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
117 struct ahash_request
*ahreq
= (void *)(areq_ctx
->tail
+ ctx
->reqoff
);
122 ahash_request_set_crypt(ahreq
, areq_ctx
->sg
, ahreq
->result
,
124 ahash_request_set_callback(ahreq
, aead_request_flags(req
) &
125 CRYPTO_TFM_REQ_MAY_SLEEP
,
126 areq_ctx
->complete
, req
);
128 err
= crypto_ahash_finup(ahreq
);
132 scatterwalk_map_and_copy(ahreq
->result
, areq_ctx
->sg
,
134 crypto_aead_authsize(authenc
), 1);
137 authenc_request_complete(req
, err
);
140 static void authenc_geniv_ahash_done(struct crypto_async_request
*areq
, int err
)
142 struct aead_request
*req
= areq
->data
;
143 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
144 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
145 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
146 struct ahash_request
*ahreq
= (void *)(areq_ctx
->tail
+ ctx
->reqoff
);
151 scatterwalk_map_and_copy(ahreq
->result
, areq_ctx
->sg
,
153 crypto_aead_authsize(authenc
), 1);
156 aead_request_complete(req
, err
);
159 static void authenc_verify_ahash_update_done(struct crypto_async_request
*areq
,
163 unsigned int authsize
;
164 struct ablkcipher_request
*abreq
;
165 struct aead_request
*req
= areq
->data
;
166 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
167 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
168 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
169 struct ahash_request
*ahreq
= (void *)(areq_ctx
->tail
+ ctx
->reqoff
);
170 unsigned int cryptlen
= req
->cryptlen
;
175 ahash_request_set_crypt(ahreq
, areq_ctx
->sg
, ahreq
->result
,
177 ahash_request_set_callback(ahreq
, aead_request_flags(req
) &
178 CRYPTO_TFM_REQ_MAY_SLEEP
,
179 areq_ctx
->complete
, req
);
181 err
= crypto_ahash_finup(ahreq
);
185 authsize
= crypto_aead_authsize(authenc
);
186 cryptlen
-= authsize
;
187 ihash
= ahreq
->result
+ authsize
;
188 scatterwalk_map_and_copy(ihash
, areq_ctx
->sg
, areq_ctx
->cryptlen
,
191 err
= memcmp(ihash
, ahreq
->result
, authsize
) ? -EBADMSG
: 0;
195 abreq
= aead_request_ctx(req
);
196 ablkcipher_request_set_tfm(abreq
, ctx
->enc
);
197 ablkcipher_request_set_callback(abreq
, aead_request_flags(req
),
198 req
->base
.complete
, req
->base
.data
);
199 ablkcipher_request_set_crypt(abreq
, req
->src
, req
->dst
,
202 err
= crypto_ablkcipher_decrypt(abreq
);
205 authenc_request_complete(req
, err
);
208 static void authenc_verify_ahash_done(struct crypto_async_request
*areq
,
212 unsigned int authsize
;
213 struct ablkcipher_request
*abreq
;
214 struct aead_request
*req
= areq
->data
;
215 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
216 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
217 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
218 struct ahash_request
*ahreq
= (void *)(areq_ctx
->tail
+ ctx
->reqoff
);
219 unsigned int cryptlen
= req
->cryptlen
;
224 authsize
= crypto_aead_authsize(authenc
);
225 cryptlen
-= authsize
;
226 ihash
= ahreq
->result
+ authsize
;
227 scatterwalk_map_and_copy(ihash
, areq_ctx
->sg
, areq_ctx
->cryptlen
,
230 err
= memcmp(ihash
, ahreq
->result
, authsize
) ? -EBADMSG
: 0;
234 abreq
= aead_request_ctx(req
);
235 ablkcipher_request_set_tfm(abreq
, ctx
->enc
);
236 ablkcipher_request_set_callback(abreq
, aead_request_flags(req
),
237 req
->base
.complete
, req
->base
.data
);
238 ablkcipher_request_set_crypt(abreq
, req
->src
, req
->dst
,
241 err
= crypto_ablkcipher_decrypt(abreq
);
244 authenc_request_complete(req
, err
);
247 static u8
*crypto_authenc_ahash_fb(struct aead_request
*req
, unsigned int flags
)
249 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
250 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
251 struct crypto_ahash
*auth
= ctx
->auth
;
252 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
253 struct ahash_request
*ahreq
= (void *)(areq_ctx
->tail
+ ctx
->reqoff
);
254 u8
*hash
= areq_ctx
->tail
;
257 hash
= (u8
*)ALIGN((unsigned long)hash
+ crypto_ahash_alignmask(auth
),
258 crypto_ahash_alignmask(auth
) + 1);
260 ahash_request_set_tfm(ahreq
, auth
);
262 err
= crypto_ahash_init(ahreq
);
266 ahash_request_set_crypt(ahreq
, req
->assoc
, hash
, req
->assoclen
);
267 ahash_request_set_callback(ahreq
, aead_request_flags(req
) & flags
,
268 areq_ctx
->update_complete
, req
);
270 err
= crypto_ahash_update(ahreq
);
274 ahash_request_set_crypt(ahreq
, areq_ctx
->sg
, hash
,
276 ahash_request_set_callback(ahreq
, aead_request_flags(req
) & flags
,
277 areq_ctx
->complete
, req
);
279 err
= crypto_ahash_finup(ahreq
);
286 static u8
*crypto_authenc_ahash(struct aead_request
*req
, unsigned int flags
)
288 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
289 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
290 struct crypto_ahash
*auth
= ctx
->auth
;
291 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
292 struct ahash_request
*ahreq
= (void *)(areq_ctx
->tail
+ ctx
->reqoff
);
293 u8
*hash
= areq_ctx
->tail
;
296 hash
= (u8
*)ALIGN((unsigned long)hash
+ crypto_ahash_alignmask(auth
),
297 crypto_ahash_alignmask(auth
) + 1);
299 ahash_request_set_tfm(ahreq
, auth
);
300 ahash_request_set_crypt(ahreq
, areq_ctx
->sg
, hash
,
302 ahash_request_set_callback(ahreq
, aead_request_flags(req
) & flags
,
303 areq_ctx
->complete
, req
);
305 err
= crypto_ahash_digest(ahreq
);
312 static int crypto_authenc_genicv(struct aead_request
*req
, u8
*iv
,
315 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
316 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
317 struct scatterlist
*dst
= req
->dst
;
318 struct scatterlist
*assoc
= req
->assoc
;
319 struct scatterlist
*cipher
= areq_ctx
->cipher
;
320 struct scatterlist
*asg
= areq_ctx
->asg
;
321 unsigned int ivsize
= crypto_aead_ivsize(authenc
);
322 unsigned int cryptlen
= req
->cryptlen
;
323 authenc_ahash_t authenc_ahash_fn
= crypto_authenc_ahash_fb
;
329 vdst
= PageHighMem(dstp
) ? NULL
: page_address(dstp
) + dst
->offset
;
332 sg_init_table(cipher
, 2);
333 sg_set_buf(cipher
, iv
, ivsize
);
334 scatterwalk_crypto_chain(cipher
, dst
, vdst
== iv
+ ivsize
, 2);
339 if (sg_is_last(assoc
)) {
340 authenc_ahash_fn
= crypto_authenc_ahash
;
341 sg_init_table(asg
, 2);
342 sg_set_page(asg
, sg_page(assoc
), assoc
->length
, assoc
->offset
);
343 scatterwalk_crypto_chain(asg
, dst
, 0, 2);
345 cryptlen
+= req
->assoclen
;
348 areq_ctx
->cryptlen
= cryptlen
;
351 areq_ctx
->complete
= authenc_geniv_ahash_done
;
352 areq_ctx
->update_complete
= authenc_geniv_ahash_update_done
;
354 hash
= authenc_ahash_fn(req
, flags
);
356 return PTR_ERR(hash
);
358 scatterwalk_map_and_copy(hash
, dst
, cryptlen
,
359 crypto_aead_authsize(authenc
), 1);
363 static void crypto_authenc_encrypt_done(struct crypto_async_request
*req
,
366 struct aead_request
*areq
= req
->data
;
369 struct crypto_aead
*authenc
= crypto_aead_reqtfm(areq
);
370 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
371 struct ablkcipher_request
*abreq
= aead_request_ctx(areq
);
372 u8
*iv
= (u8
*)(abreq
+ 1) +
373 crypto_ablkcipher_reqsize(ctx
->enc
);
375 err
= crypto_authenc_genicv(areq
, iv
, 0);
378 authenc_request_complete(areq
, err
);
381 static int crypto_authenc_encrypt(struct aead_request
*req
)
383 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
384 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
385 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
386 struct crypto_ablkcipher
*enc
= ctx
->enc
;
387 struct scatterlist
*dst
= req
->dst
;
388 unsigned int cryptlen
= req
->cryptlen
;
389 struct ablkcipher_request
*abreq
= (void *)(areq_ctx
->tail
391 u8
*iv
= (u8
*)abreq
- crypto_ablkcipher_ivsize(enc
);
394 ablkcipher_request_set_tfm(abreq
, enc
);
395 ablkcipher_request_set_callback(abreq
, aead_request_flags(req
),
396 crypto_authenc_encrypt_done
, req
);
397 ablkcipher_request_set_crypt(abreq
, req
->src
, dst
, cryptlen
, req
->iv
);
399 memcpy(iv
, req
->iv
, crypto_aead_ivsize(authenc
));
401 err
= crypto_ablkcipher_encrypt(abreq
);
405 return crypto_authenc_genicv(req
, iv
, CRYPTO_TFM_REQ_MAY_SLEEP
);
408 static void crypto_authenc_givencrypt_done(struct crypto_async_request
*req
,
411 struct aead_request
*areq
= req
->data
;
414 struct skcipher_givcrypt_request
*greq
= aead_request_ctx(areq
);
416 err
= crypto_authenc_genicv(areq
, greq
->giv
, 0);
419 authenc_request_complete(areq
, err
);
422 static int crypto_authenc_givencrypt(struct aead_givcrypt_request
*req
)
424 struct crypto_aead
*authenc
= aead_givcrypt_reqtfm(req
);
425 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
426 struct aead_request
*areq
= &req
->areq
;
427 struct skcipher_givcrypt_request
*greq
= aead_request_ctx(areq
);
431 skcipher_givcrypt_set_tfm(greq
, ctx
->enc
);
432 skcipher_givcrypt_set_callback(greq
, aead_request_flags(areq
),
433 crypto_authenc_givencrypt_done
, areq
);
434 skcipher_givcrypt_set_crypt(greq
, areq
->src
, areq
->dst
, areq
->cryptlen
,
436 skcipher_givcrypt_set_giv(greq
, iv
, req
->seq
);
438 err
= crypto_skcipher_givencrypt(greq
);
442 return crypto_authenc_genicv(areq
, iv
, CRYPTO_TFM_REQ_MAY_SLEEP
);
445 static int crypto_authenc_verify(struct aead_request
*req
,
446 authenc_ahash_t authenc_ahash_fn
)
448 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
449 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
452 unsigned int authsize
;
454 areq_ctx
->complete
= authenc_verify_ahash_done
;
455 areq_ctx
->update_complete
= authenc_verify_ahash_update_done
;
457 ohash
= authenc_ahash_fn(req
, CRYPTO_TFM_REQ_MAY_SLEEP
);
459 return PTR_ERR(ohash
);
461 authsize
= crypto_aead_authsize(authenc
);
462 ihash
= ohash
+ authsize
;
463 scatterwalk_map_and_copy(ihash
, areq_ctx
->sg
, areq_ctx
->cryptlen
,
465 return memcmp(ihash
, ohash
, authsize
) ? -EBADMSG
: 0;
468 static int crypto_authenc_iverify(struct aead_request
*req
, u8
*iv
,
469 unsigned int cryptlen
)
471 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
472 struct authenc_request_ctx
*areq_ctx
= aead_request_ctx(req
);
473 struct scatterlist
*src
= req
->src
;
474 struct scatterlist
*assoc
= req
->assoc
;
475 struct scatterlist
*cipher
= areq_ctx
->cipher
;
476 struct scatterlist
*asg
= areq_ctx
->asg
;
477 unsigned int ivsize
= crypto_aead_ivsize(authenc
);
478 authenc_ahash_t authenc_ahash_fn
= crypto_authenc_ahash_fb
;
483 vsrc
= PageHighMem(srcp
) ? NULL
: page_address(srcp
) + src
->offset
;
486 sg_init_table(cipher
, 2);
487 sg_set_buf(cipher
, iv
, ivsize
);
488 scatterwalk_crypto_chain(cipher
, src
, vsrc
== iv
+ ivsize
, 2);
493 if (sg_is_last(assoc
)) {
494 authenc_ahash_fn
= crypto_authenc_ahash
;
495 sg_init_table(asg
, 2);
496 sg_set_page(asg
, sg_page(assoc
), assoc
->length
, assoc
->offset
);
497 scatterwalk_crypto_chain(asg
, src
, 0, 2);
499 cryptlen
+= req
->assoclen
;
502 areq_ctx
->cryptlen
= cryptlen
;
505 return crypto_authenc_verify(req
, authenc_ahash_fn
);
508 static int crypto_authenc_decrypt(struct aead_request
*req
)
510 struct crypto_aead
*authenc
= crypto_aead_reqtfm(req
);
511 struct crypto_authenc_ctx
*ctx
= crypto_aead_ctx(authenc
);
512 struct ablkcipher_request
*abreq
= aead_request_ctx(req
);
513 unsigned int cryptlen
= req
->cryptlen
;
514 unsigned int authsize
= crypto_aead_authsize(authenc
);
518 if (cryptlen
< authsize
)
520 cryptlen
-= authsize
;
522 err
= crypto_authenc_iverify(req
, iv
, cryptlen
);
526 ablkcipher_request_set_tfm(abreq
, ctx
->enc
);
527 ablkcipher_request_set_callback(abreq
, aead_request_flags(req
),
528 req
->base
.complete
, req
->base
.data
);
529 ablkcipher_request_set_crypt(abreq
, req
->src
, req
->dst
, cryptlen
, iv
);
531 return crypto_ablkcipher_decrypt(abreq
);
534 static int crypto_authenc_init_tfm(struct crypto_tfm
*tfm
)
536 struct crypto_instance
*inst
= crypto_tfm_alg_instance(tfm
);
537 struct authenc_instance_ctx
*ictx
= crypto_instance_ctx(inst
);
538 struct crypto_authenc_ctx
*ctx
= crypto_tfm_ctx(tfm
);
539 struct crypto_ahash
*auth
;
540 struct crypto_ablkcipher
*enc
;
543 auth
= crypto_spawn_ahash(&ictx
->auth
);
545 return PTR_ERR(auth
);
547 enc
= crypto_spawn_skcipher(&ictx
->enc
);
555 ctx
->reqoff
= ALIGN(2 * crypto_ahash_digestsize(auth
) +
556 crypto_ahash_alignmask(auth
),
557 crypto_ahash_alignmask(auth
) + 1) +
558 crypto_ablkcipher_ivsize(enc
);
560 tfm
->crt_aead
.reqsize
= sizeof(struct authenc_request_ctx
) +
563 crypto_ahash_reqsize(auth
) +
564 sizeof(struct ahash_request
),
565 sizeof(struct skcipher_givcrypt_request
) +
566 crypto_ablkcipher_reqsize(enc
));
571 crypto_free_ahash(auth
);
575 static void crypto_authenc_exit_tfm(struct crypto_tfm
*tfm
)
577 struct crypto_authenc_ctx
*ctx
= crypto_tfm_ctx(tfm
);
579 crypto_free_ahash(ctx
->auth
);
580 crypto_free_ablkcipher(ctx
->enc
);
583 static struct crypto_instance
*crypto_authenc_alloc(struct rtattr
**tb
)
585 struct crypto_attr_type
*algt
;
586 struct crypto_instance
*inst
;
587 struct hash_alg_common
*auth
;
588 struct crypto_alg
*auth_base
;
589 struct crypto_alg
*enc
;
590 struct authenc_instance_ctx
*ctx
;
591 const char *enc_name
;
594 algt
= crypto_get_attr_type(tb
);
599 if ((algt
->type
^ CRYPTO_ALG_TYPE_AEAD
) & algt
->mask
)
600 return ERR_PTR(-EINVAL
);
602 auth
= ahash_attr_alg(tb
[1], CRYPTO_ALG_TYPE_HASH
,
603 CRYPTO_ALG_TYPE_AHASH_MASK
);
605 return ERR_CAST(auth
);
607 auth_base
= &auth
->base
;
609 enc_name
= crypto_attr_alg_name(tb
[2]);
610 err
= PTR_ERR(enc_name
);
611 if (IS_ERR(enc_name
))
614 inst
= kzalloc(sizeof(*inst
) + sizeof(*ctx
), GFP_KERNEL
);
619 ctx
= crypto_instance_ctx(inst
);
621 err
= crypto_init_ahash_spawn(&ctx
->auth
, auth
, inst
);
625 crypto_set_skcipher_spawn(&ctx
->enc
, inst
);
626 err
= crypto_grab_skcipher(&ctx
->enc
, enc_name
, 0,
627 crypto_requires_sync(algt
->type
,
632 enc
= crypto_skcipher_spawn_alg(&ctx
->enc
);
635 if (snprintf(inst
->alg
.cra_name
, CRYPTO_MAX_ALG_NAME
,
636 "authenc(%s,%s)", auth_base
->cra_name
, enc
->cra_name
) >=
640 if (snprintf(inst
->alg
.cra_driver_name
, CRYPTO_MAX_ALG_NAME
,
641 "authenc(%s,%s)", auth_base
->cra_driver_name
,
642 enc
->cra_driver_name
) >= CRYPTO_MAX_ALG_NAME
)
645 inst
->alg
.cra_flags
= CRYPTO_ALG_TYPE_AEAD
;
646 inst
->alg
.cra_flags
|= enc
->cra_flags
& CRYPTO_ALG_ASYNC
;
647 inst
->alg
.cra_priority
= enc
->cra_priority
*
648 10 + auth_base
->cra_priority
;
649 inst
->alg
.cra_blocksize
= enc
->cra_blocksize
;
650 inst
->alg
.cra_alignmask
= auth_base
->cra_alignmask
| enc
->cra_alignmask
;
651 inst
->alg
.cra_type
= &crypto_aead_type
;
653 inst
->alg
.cra_aead
.ivsize
= enc
->cra_ablkcipher
.ivsize
;
654 inst
->alg
.cra_aead
.maxauthsize
= auth
->digestsize
;
656 inst
->alg
.cra_ctxsize
= sizeof(struct crypto_authenc_ctx
);
658 inst
->alg
.cra_init
= crypto_authenc_init_tfm
;
659 inst
->alg
.cra_exit
= crypto_authenc_exit_tfm
;
661 inst
->alg
.cra_aead
.setkey
= crypto_authenc_setkey
;
662 inst
->alg
.cra_aead
.encrypt
= crypto_authenc_encrypt
;
663 inst
->alg
.cra_aead
.decrypt
= crypto_authenc_decrypt
;
664 inst
->alg
.cra_aead
.givencrypt
= crypto_authenc_givencrypt
;
667 crypto_mod_put(auth_base
);
671 crypto_drop_skcipher(&ctx
->enc
);
673 crypto_drop_ahash(&ctx
->auth
);
681 static void crypto_authenc_free(struct crypto_instance
*inst
)
683 struct authenc_instance_ctx
*ctx
= crypto_instance_ctx(inst
);
685 crypto_drop_skcipher(&ctx
->enc
);
686 crypto_drop_ahash(&ctx
->auth
);
690 static struct crypto_template crypto_authenc_tmpl
= {
692 .alloc
= crypto_authenc_alloc
,
693 .free
= crypto_authenc_free
,
694 .module
= THIS_MODULE
,
697 static int __init
crypto_authenc_module_init(void)
699 return crypto_register_template(&crypto_authenc_tmpl
);
702 static void __exit
crypto_authenc_module_exit(void)
704 crypto_unregister_template(&crypto_authenc_tmpl
);
707 module_init(crypto_authenc_module_init
);
708 module_exit(crypto_authenc_module_exit
);
710 MODULE_LICENSE("GPL");
711 MODULE_DESCRIPTION("Simple AEAD wrapper for IPsec");