crypto: akcipher - Changes to asymmetric key API

obj-$(CONFIG_CRYPTO_PCOMP2) += pcompress.o

obj-$(CONFIG_CRYPTO_AKCIPHER2) += akcipher.o

$(obj)/rsakey-asn1.o: $(obj)/rsakey-asn1.c $(obj)/rsakey-asn1.h

clean-files += rsakey-asn1.c rsakey-asn1.h

$(obj)/rsapubkey-asn1.o: $(obj)/rsapubkey-asn1.c $(obj)/rsapubkey-asn1.h

$(obj)/rsaprivkey-asn1.o: $(obj)/rsaprivkey-asn1.c $(obj)/rsaprivkey-asn1.h

clean-files += rsapubkey-asn1.c rsapubkey-asn1.h

clean-files += rsaprivkey-asn1.c rsaprivkey-asn1.h

rsa_generic-y := rsakey-asn1.o

rsa_generic-y := rsapubkey-asn1.o

rsa_generic-y += rsaprivkey-asn1.o

rsa_generic-y += rsa.o

rsa_generic-y += rsa_helper.o

obj-$(CONFIG_CRYPTO_RSA) += rsa_generic.o

		goto err_free_c;

	}

	m = mpi_read_raw_data(req->src, req->src_len);

	if (!m) {

	ret = -ENOMEM;

	m = mpi_read_raw_from_sgl(req->src, req->src_len);

	if (!m)

		goto err_free_c;

	}

	ret = _rsa_enc(pkey, c, m);

	if (ret)

		goto err_free_m;

	ret = mpi_read_buffer(c, req->dst, req->dst_len, &req->dst_len, &sign);

	ret = mpi_write_to_sgl(c, req->dst, &req->dst_len, &sign);

	if (ret)

		goto err_free_m;

	if (sign < 0) {

	if (sign < 0)

		ret = -EBADMSG;

		goto err_free_m;

	}

err_free_m:

	mpi_free(m);

		goto err_free_m;

	}

	c = mpi_read_raw_data(req->src, req->src_len);

	if (!c) {

	ret = -ENOMEM;

	c = mpi_read_raw_from_sgl(req->src, req->src_len);

	if (!c)

		goto err_free_m;

	}

	ret = _rsa_dec(pkey, m, c);

	if (ret)

		goto err_free_c;

	ret = mpi_read_buffer(m, req->dst, req->dst_len, &req->dst_len, &sign);

	ret = mpi_write_to_sgl(m, req->dst, &req->dst_len, &sign);

	if (ret)

		goto err_free_c;

	if (sign < 0) {

	if (sign < 0)

		ret = -EBADMSG;

		goto err_free_c;

	}

err_free_c:

	mpi_free(c);

err_free_m:

		goto err_free_s;

	}

	m = mpi_read_raw_data(req->src, req->src_len);

	if (!m) {

	ret = -ENOMEM;

	m = mpi_read_raw_from_sgl(req->src, req->src_len);

	if (!m)

		goto err_free_s;

	}

	ret = _rsa_sign(pkey, s, m);

	if (ret)

		goto err_free_m;

	ret = mpi_read_buffer(s, req->dst, req->dst_len, &req->dst_len, &sign);

	ret = mpi_write_to_sgl(s, req->dst, &req->dst_len, &sign);

	if (ret)

		goto err_free_m;

	if (sign < 0) {

	if (sign < 0)

		ret = -EBADMSG;

		goto err_free_m;

	}

err_free_m:

	mpi_free(m);

		goto err_free_m;

	}

	s = mpi_read_raw_data(req->src, req->src_len);

	ret = -ENOMEM;

	s = mpi_read_raw_from_sgl(req->src, req->src_len);

	if (!s) {

		ret = -ENOMEM;

		goto err_free_m;

	if (ret)

		goto err_free_s;

	ret = mpi_read_buffer(m, req->dst, req->dst_len, &req->dst_len, &sign);

	ret = mpi_write_to_sgl(m, req->dst, &req->dst_len, &sign);

	if (ret)

		goto err_free_s;

	if (sign < 0) {

	if (sign < 0)

		ret = -EBADMSG;

		goto err_free_s;

	}

err_free_s:

	mpi_free(s);

	return -EINVAL;

}

static int rsa_setkey(struct crypto_akcipher *tfm, const void *key,

static int rsa_set_pub_key(struct crypto_akcipher *tfm, const void *key,

			   unsigned int keylen)

{

	struct rsa_key *pkey = akcipher_tfm_ctx(tfm);

	int ret;

	ret = rsa_parse_pub_key(pkey, key, keylen);

	if (ret)

		return ret;

	if (rsa_check_key_length(mpi_get_size(pkey->n) << 3)) {

		rsa_free_key(pkey);

		ret = -EINVAL;

	}

	return ret;

}

static int rsa_set_priv_key(struct crypto_akcipher *tfm, const void *key,

			    unsigned int keylen)

{

	struct rsa_key *pkey = akcipher_tfm_ctx(tfm);

	int ret;

	ret = rsa_parse_key(pkey, key, keylen);

	ret = rsa_parse_priv_key(pkey, key, keylen);

	if (ret)

		return ret;

	return ret;

}

static int rsa_max_size(struct crypto_akcipher *tfm)

{

	struct rsa_key *pkey = akcipher_tfm_ctx(tfm);

	return pkey->n ? mpi_get_size(pkey->n) : -EINVAL;

}

static void rsa_exit_tfm(struct crypto_akcipher *tfm)

{

	struct rsa_key *pkey = akcipher_tfm_ctx(tfm);

	.decrypt = rsa_dec,

	.sign = rsa_sign,

	.verify = rsa_verify,

	.setkey = rsa_setkey,

	.set_priv_key = rsa_set_priv_key,

	.set_pub_key = rsa_set_pub_key,

	.max_size = rsa_max_size,

	.exit = rsa_exit_tfm,

	.base = {

		.cra_name = "rsa",

#include <linux/err.h>

#include <linux/fips.h>

#include <crypto/internal/rsa.h>

#include "rsakey-asn1.h"

#include "rsapubkey-asn1.h"

#include "rsaprivkey-asn1.h"

int rsa_get_n(void *context, size_t hdrlen, unsigned char tag,

	      const void *value, size_t vlen)

EXPORT_SYMBOL_GPL(rsa_free_key);

/**

 * rsa_parse_key() - extracts an rsa key from BER encoded buffer

 * rsa_parse_pub_key() - extracts an rsa public key from BER encoded buffer

 *			 and stores it in the provided struct rsa_key

 *

 * @rsa_key:	struct rsa_key key representation

 *

 * Return:	0 on success or error code in case of error

 */

int rsa_parse_key(struct rsa_key *rsa_key, const void *key,

int rsa_parse_pub_key(struct rsa_key *rsa_key, const void *key,

		      unsigned int key_len)

{

	int ret;

	free_mpis(rsa_key);

	ret = asn1_ber_decoder(&rsakey_decoder, rsa_key, key, key_len);

	ret = asn1_ber_decoder(&rsapubkey_decoder, rsa_key, key, key_len);

	if (ret < 0)

		goto error;

	free_mpis(rsa_key);

	return ret;

}

EXPORT_SYMBOL_GPL(rsa_parse_key);

EXPORT_SYMBOL_GPL(rsa_parse_pub_key);

/**

 * rsa_parse_pub_key() - extracts an rsa private key from BER encoded buffer

 *			 and stores it in the provided struct rsa_key

 *

 * @rsa_key:	struct rsa_key key representation

 * @key:	key in BER format

 * @key_len:	length of key

 *

 * Return:	0 on success or error code in case of error

 */

int rsa_parse_priv_key(struct rsa_key *rsa_key, const void *key,

		       unsigned int key_len)

{

	int ret;

	free_mpis(rsa_key);

	ret = asn1_ber_decoder(&rsaprivkey_decoder, rsa_key, key, key_len);

	if (ret < 0)

		goto error;

	return 0;

error:

	free_mpis(rsa_key);

	return ret;

}

EXPORT_SYMBOL_GPL(rsa_parse_priv_key);

RsaKey ::= SEQUENCE {

	n INTEGER ({ rsa_get_n }),

	e INTEGER ({ rsa_get_e }),

	d INTEGER ({ rsa_get_d })

}

RsaPrivKey ::= SEQUENCE {

	version		INTEGER,

	n		INTEGER ({ rsa_get_n }),

	e		INTEGER ({ rsa_get_e }),

	d		INTEGER ({ rsa_get_d }),

	prime1		INTEGER,

	prime2		INTEGER,

	exponent1	INTEGER,

	exponent2	INTEGER,

	coefficient	INTEGER

}