x86/crypto/nhpoly1305-avx2-glue.c

0f961f9fSEric Biggers// SPDX-License-Identifier: GPL-2.0
0f961f9fSEric Biggers/*
0f961f9fSEric Biggers * NHPoly1305 - ε-almost-∆-universal hash function for Adiantum
0f961f9fSEric Biggers * (AVX2 accelerated version)
0f961f9fSEric Biggers *
0f961f9fSEric Biggers * Copyright 2018 Google LLC
0f961f9fSEric Biggers */
0f961f9fSEric Biggers
0f961f9fSEric Biggers#include <crypto/internal/hash.h>
f2abe0d7SEric Biggers#include <crypto/internal/simd.h>
0f961f9fSEric Biggers#include <crypto/nhpoly1305.h>
0f961f9fSEric Biggers#include <linux/module.h>
0c3dc787SHerbert Xu#include <linux/sizes.h>
f2abe0d7SEric Biggers#include <asm/simd.h>
0f961f9fSEric Biggers
0f961f9fSEric Biggersasmlinkage void nh_avx2(const u32 *key, const u8 *message, size_t message_len,
0f8bc4bdSEric Biggers			__le64 hash[NH_NUM_PASSES]);
0f961f9fSEric Biggers
0f961f9fSEric Biggersstatic int nhpoly1305_avx2_update(struct shash_desc *desc,
0f961f9fSEric Biggers				  const u8 *src, unsigned int srclen)
0f961f9fSEric Biggers{
f2abe0d7SEric Biggers	if (srclen < 64 || !crypto_simd_usable())
0f961f9fSEric Biggers		return crypto_nhpoly1305_update(desc, src, srclen);
0f961f9fSEric Biggers
0f961f9fSEric Biggers	do {
a9a8ba90SJason A. Donenfeld		unsigned int n = min_t(unsigned int, srclen, SZ_4K);
0f961f9fSEric Biggers
0f961f9fSEric Biggers		kernel_fpu_begin();
0f8bc4bdSEric Biggers		crypto_nhpoly1305_update_helper(desc, src, n, nh_avx2);
0f961f9fSEric Biggers		kernel_fpu_end();
0f961f9fSEric Biggers		src += n;
0f961f9fSEric Biggers		srclen -= n;
0f961f9fSEric Biggers	} while (srclen);
0f961f9fSEric Biggers	return 0;
0f961f9fSEric Biggers}
0f961f9fSEric Biggers
*796b06f5SEric Biggersstatic int nhpoly1305_avx2_digest(struct shash_desc *desc,
*796b06f5SEric Biggers				  const u8 *src, unsigned int srclen, u8 *out)
*796b06f5SEric Biggers{
*796b06f5SEric Biggers	return crypto_nhpoly1305_init(desc) ?:
*796b06f5SEric Biggers	       nhpoly1305_avx2_update(desc, src, srclen) ?:
*796b06f5SEric Biggers	       crypto_nhpoly1305_final(desc, out);
*796b06f5SEric Biggers}
*796b06f5SEric Biggers
0f961f9fSEric Biggersstatic struct shash_alg nhpoly1305_alg = {
0f961f9fSEric Biggers	.base.cra_name		= "nhpoly1305",
0f961f9fSEric Biggers	.base.cra_driver_name	= "nhpoly1305-avx2",
0f961f9fSEric Biggers	.base.cra_priority	= 300,
0f961f9fSEric Biggers	.base.cra_ctxsize	= sizeof(struct nhpoly1305_key),
0f961f9fSEric Biggers	.base.cra_module	= THIS_MODULE,
0f961f9fSEric Biggers	.digestsize		= POLY1305_DIGEST_SIZE,
0f961f9fSEric Biggers	.init			= crypto_nhpoly1305_init,
0f961f9fSEric Biggers	.update			= nhpoly1305_avx2_update,
0f961f9fSEric Biggers	.final			= crypto_nhpoly1305_final,
*796b06f5SEric Biggers	.digest			= nhpoly1305_avx2_digest,
0f961f9fSEric Biggers	.setkey			= crypto_nhpoly1305_setkey,
0f961f9fSEric Biggers	.descsize		= sizeof(struct nhpoly1305_state),
0f961f9fSEric Biggers};
0f961f9fSEric Biggers
0f961f9fSEric Biggersstatic int __init nhpoly1305_mod_init(void)
0f961f9fSEric Biggers{
0f961f9fSEric Biggers	if (!boot_cpu_has(X86_FEATURE_AVX2) ||
0f961f9fSEric Biggers	    !boot_cpu_has(X86_FEATURE_OSXSAVE))
0f961f9fSEric Biggers		return -ENODEV;
0f961f9fSEric Biggers
0f961f9fSEric Biggers	return crypto_register_shash(&nhpoly1305_alg);
0f961f9fSEric Biggers}
0f961f9fSEric Biggers
0f961f9fSEric Biggersstatic void __exit nhpoly1305_mod_exit(void)
0f961f9fSEric Biggers{
0f961f9fSEric Biggers	crypto_unregister_shash(&nhpoly1305_alg);
0f961f9fSEric Biggers}
0f961f9fSEric Biggers
0f961f9fSEric Biggersmodule_init(nhpoly1305_mod_init);
0f961f9fSEric Biggersmodule_exit(nhpoly1305_mod_exit);
0f961f9fSEric Biggers
0f961f9fSEric BiggersMODULE_DESCRIPTION("NHPoly1305 ε-almost-∆-universal hash function (AVX2-accelerated)");
0f961f9fSEric BiggersMODULE_LICENSE("GPL v2");
0f961f9fSEric BiggersMODULE_AUTHOR("Eric Biggers <ebiggers@google.com>");
0f961f9fSEric BiggersMODULE_ALIAS_CRYPTO("nhpoly1305");
0f961f9fSEric BiggersMODULE_ALIAS_CRYPTO("nhpoly1305-avx2");