xref: /linux/lib/crypto/arm/curve25519.h (revision d8768fb12a14c30436bd0466b4fc28edeef45078) 
1*68546e56SEric Biggers // SPDX-License-Identifier: GPL-2.0 OR MIT
2*68546e56SEric Biggers /*
3*68546e56SEric Biggers  * Copyright (C) 2015-2019 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.
4*68546e56SEric Biggers  *
5*68546e56SEric Biggers  * Based on public domain code from Daniel J. Bernstein and Peter Schwabe. This
6*68546e56SEric Biggers  * began from SUPERCOP's curve25519/neon2/scalarmult.s, but has subsequently been
7*68546e56SEric Biggers  * manually reworked for use in kernel space.
8*68546e56SEric Biggers  */
9*68546e56SEric Biggers 
10*68546e56SEric Biggers #include <asm/hwcap.h>
11*68546e56SEric Biggers #include <asm/neon.h>
12*68546e56SEric Biggers #include <asm/simd.h>
13*68546e56SEric Biggers #include <crypto/internal/simd.h>
14*68546e56SEric Biggers #include <linux/types.h>
15*68546e56SEric Biggers #include <linux/jump_label.h>
16*68546e56SEric Biggers 
17*68546e56SEric Biggers asmlinkage void curve25519_neon(u8 mypublic[CURVE25519_KEY_SIZE],
18*68546e56SEric Biggers 				const u8 secret[CURVE25519_KEY_SIZE],
19*68546e56SEric Biggers 				const u8 basepoint[CURVE25519_KEY_SIZE]);
20*68546e56SEric Biggers 
21*68546e56SEric Biggers static __ro_after_init DEFINE_STATIC_KEY_FALSE(have_neon);
22*68546e56SEric Biggers 
curve25519_arch(u8 out[CURVE25519_KEY_SIZE],const u8 scalar[CURVE25519_KEY_SIZE],const u8 point[CURVE25519_KEY_SIZE])23*68546e56SEric Biggers static void curve25519_arch(u8 out[CURVE25519_KEY_SIZE],
24*68546e56SEric Biggers 			    const u8 scalar[CURVE25519_KEY_SIZE],
25*68546e56SEric Biggers 			    const u8 point[CURVE25519_KEY_SIZE])
26*68546e56SEric Biggers {
27*68546e56SEric Biggers 	if (static_branch_likely(&have_neon) && crypto_simd_usable()) {
28*68546e56SEric Biggers 		kernel_neon_begin();
29*68546e56SEric Biggers 		curve25519_neon(out, scalar, point);
30*68546e56SEric Biggers 		kernel_neon_end();
31*68546e56SEric Biggers 	} else {
32*68546e56SEric Biggers 		curve25519_generic(out, scalar, point);
33*68546e56SEric Biggers 	}
34*68546e56SEric Biggers }
35*68546e56SEric Biggers 
curve25519_base_arch(u8 pub[CURVE25519_KEY_SIZE],const u8 secret[CURVE25519_KEY_SIZE])36*68546e56SEric Biggers static void curve25519_base_arch(u8 pub[CURVE25519_KEY_SIZE],
37*68546e56SEric Biggers 				 const u8 secret[CURVE25519_KEY_SIZE])
38*68546e56SEric Biggers {
39*68546e56SEric Biggers 	curve25519_arch(pub, secret, curve25519_base_point);
40*68546e56SEric Biggers }
41*68546e56SEric Biggers 
42*68546e56SEric Biggers #define curve25519_mod_init_arch curve25519_mod_init_arch
curve25519_mod_init_arch(void)43*68546e56SEric Biggers static void curve25519_mod_init_arch(void)
44*68546e56SEric Biggers {
45*68546e56SEric Biggers 	if (elf_hwcap & HWCAP_NEON)
46*68546e56SEric Biggers 		static_branch_enable(&have_neon);
47*68546e56SEric Biggers }
48