Commit e28d2af4 authored by Ingo Tuchscherer's avatar Ingo Tuchscherer Committed by Martin Schwidefsky

s390/zcrypt: add multi domain support

Currently the ap infrastructure only supports one domain at a time.
This feature extends the generic cryptographic device driver to
support multiple cryptographic domains simultaneously.

There are now card and queue devices on the AP bus with independent
card and queue drivers. The new /sys layout is as follows:

/sys/bus/ap
    devices
        <xx>.<yyyy> -> ../../../devices/ap/card<xx>/<xx>.<yyyy>
        ...
        card<xx> -> ../../../devices/ap/card<xx>
        ...
    drivers
        <drv>card
            card<xx> -> ../../../../devices/ap/card<xx>
        <drv>queue
            <xx>.<yyyy> -> ../../../../devices/ap/card<xx>/<xx>.<yyyy>
            ...

/sys/devices/ap
    card<xx>
        <xx>.<yyyy>
            driver -> ../../../../bus/ap/drivers/<zzz>queue
            ...
        driver -> ../../../bus/ap/drivers/<drv>card
        ...

The two digit <xx> field is the card number, the four digit <yyyy>
field is the queue number and <drv> is the name of the device driver,
e.g. "cex4".

For compatability /sys/bus/ap/card<xx> for the old layout has to exist,
including the attributes that used to reside there.

With additional contributions from Harald Freudenberger and
Martin Schwidefsky.
Signed-off-by: default avatarIngo Tuchscherer <ingo.tuchscherer@linux.vnet.ibm.com>
Signed-off-by: default avatarMartin Schwidefsky <schwidefsky@de.ibm.com>
parent 34a15167
...@@ -2,10 +2,11 @@ ...@@ -2,10 +2,11 @@
# S/390 crypto devices # S/390 crypto devices
# #
ap-objs := ap_bus.o ap-objs := ap_bus.o ap_card.o ap_queue.o
obj-$(subst m,y,$(CONFIG_ZCRYPT)) += ap.o obj-$(subst m,y,$(CONFIG_ZCRYPT)) += ap.o
# zcrypt_api.o and zcrypt_msgtype*.o depend on ap.o # zcrypt_api.o and zcrypt_msgtype*.o depend on ap.o
zcrypt-objs := zcrypt_api.o zcrypt_msgtype6.o zcrypt_msgtype50.o zcrypt-objs := zcrypt_api.o zcrypt_card.o zcrypt_queue.o
zcrypt-objs += zcrypt_msgtype6.o zcrypt_msgtype50.o
obj-$(CONFIG_ZCRYPT) += zcrypt.o obj-$(CONFIG_ZCRYPT) += zcrypt.o
# adapter drivers depend on ap.o and zcrypt.o # adapter drivers depend on ap.o and zcrypt.o
obj-$(CONFIG_ZCRYPT) += zcrypt_pcixcc.o zcrypt_cex2a.o zcrypt_cex4.o obj-$(CONFIG_ZCRYPT) += zcrypt_pcixcc.o zcrypt_cex2a.o zcrypt_cex4.o
This diff is collapsed.
...@@ -27,7 +27,6 @@ ...@@ -27,7 +27,6 @@
#define _AP_BUS_H_ #define _AP_BUS_H_
#include <linux/device.h> #include <linux/device.h>
#include <linux/mod_devicetable.h>
#include <linux/types.h> #include <linux/types.h>
#define AP_DEVICES 64 /* Number of AP devices. */ #define AP_DEVICES 64 /* Number of AP devices. */
...@@ -38,14 +37,17 @@ ...@@ -38,14 +37,17 @@
extern int ap_domain_index; extern int ap_domain_index;
extern spinlock_t ap_list_lock;
extern struct list_head ap_card_list;
/** /**
* The ap_qid_t identifier of an ap queue. It contains a * The ap_qid_t identifier of an ap queue. It contains a
* 6 bit device index and a 4 bit queue index (domain). * 6 bit card index and a 4 bit queue index (domain).
*/ */
typedef unsigned int ap_qid_t; typedef unsigned int ap_qid_t;
#define AP_MKQID(_device, _queue) (((_device) & 63) << 8 | ((_queue) & 255)) #define AP_MKQID(_card, _queue) (((_card) & 63) << 8 | ((_queue) & 255))
#define AP_QID_DEVICE(_qid) (((_qid) >> 8) & 63) #define AP_QID_CARD(_qid) (((_qid) >> 8) & 63)
#define AP_QID_QUEUE(_qid) ((_qid) & 255) #define AP_QID_QUEUE(_qid) ((_qid) & 255)
/** /**
...@@ -55,7 +57,7 @@ typedef unsigned int ap_qid_t; ...@@ -55,7 +57,7 @@ typedef unsigned int ap_qid_t;
* @queue_full: Is 1 if the queue is full * @queue_full: Is 1 if the queue is full
* @pad: A 4 bit pad * @pad: A 4 bit pad
* @int_enabled: Shows if interrupts are enabled for the AP * @int_enabled: Shows if interrupts are enabled for the AP
* @response_conde: Holds the 8 bit response code * @response_code: Holds the 8 bit response code
* @pad2: A 16 bit pad * @pad2: A 16 bit pad
* *
* The ap queue status word is returned by all three AP functions * The ap queue status word is returned by all three AP functions
...@@ -167,7 +169,8 @@ struct ap_driver { ...@@ -167,7 +169,8 @@ struct ap_driver {
int (*probe)(struct ap_device *); int (*probe)(struct ap_device *);
void (*remove)(struct ap_device *); void (*remove)(struct ap_device *);
int request_timeout; /* request timeout in jiffies */ void (*suspend)(struct ap_device *);
void (*resume)(struct ap_device *);
}; };
#define to_ap_drv(x) container_of((x), struct ap_driver, driver) #define to_ap_drv(x) container_of((x), struct ap_driver, driver)
...@@ -175,38 +178,50 @@ struct ap_driver { ...@@ -175,38 +178,50 @@ struct ap_driver {
int ap_driver_register(struct ap_driver *, struct module *, char *); int ap_driver_register(struct ap_driver *, struct module *, char *);
void ap_driver_unregister(struct ap_driver *); void ap_driver_unregister(struct ap_driver *);
typedef enum ap_wait (ap_func_t)(struct ap_device *ap_dev);
struct ap_device { struct ap_device {
struct device device; struct device device;
struct ap_driver *drv; /* Pointer to AP device driver. */ struct ap_driver *drv; /* Pointer to AP device driver. */
spinlock_t lock; /* Per device lock. */ int device_type; /* AP device type. */
struct list_head list; /* private list of all AP devices. */ };
enum ap_state state; /* State of the AP device. */ #define to_ap_dev(x) container_of((x), struct ap_device, device)
ap_qid_t qid; /* AP queue id. */ struct ap_card {
int queue_depth; /* AP queue depth.*/ struct ap_device ap_dev;
int device_type; /* AP device type. */ struct list_head list; /* Private list of AP cards. */
struct list_head queues; /* List of assoc. AP queues */
void *private; /* ap driver private pointer. */
int raw_hwtype; /* AP raw hardware type. */ int raw_hwtype; /* AP raw hardware type. */
unsigned int functions; /* AP device function bitfield. */ unsigned int functions; /* AP device function bitfield. */
struct timer_list timeout; /* Timer for request timeouts. */ int queue_depth; /* AP queue depth.*/
int id; /* AP card number. */
};
#define to_ap_card(x) container_of((x), struct ap_card, ap_dev.device)
struct ap_queue {
struct ap_device ap_dev;
struct list_head list; /* Private list of AP queues. */
struct ap_card *card; /* Ptr to assoc. AP card. */
spinlock_t lock; /* Per device lock. */
void *private; /* ap driver private pointer. */
ap_qid_t qid; /* AP queue id. */
int interrupt; /* indicate if interrupts are enabled */ int interrupt; /* indicate if interrupts are enabled */
int queue_count; /* # messages currently on AP queue. */ int queue_count; /* # messages currently on AP queue. */
enum ap_state state; /* State of the AP device. */
struct list_head pendingq; /* List of message sent to AP queue. */
int pendingq_count; /* # requests on pendingq list. */ int pendingq_count; /* # requests on pendingq list. */
struct list_head requestq; /* List of message yet to be sent. */
int requestq_count; /* # requests on requestq list. */ int requestq_count; /* # requests on requestq list. */
int total_request_count; /* # requests ever for this AP device. */ int total_request_count; /* # requests ever for this AP device. */
int request_timeout; /* Request timout in jiffies. */
struct timer_list timeout; /* Timer for request timeouts. */
struct list_head pendingq; /* List of message sent to AP queue. */
struct list_head requestq; /* List of message yet to be sent. */
struct ap_message *reply; /* Per device reply message. */ struct ap_message *reply; /* Per device reply message. */
void *private; /* ap driver private pointer. */
}; };
#define to_ap_dev(x) container_of((x), struct ap_device, device) #define to_ap_queue(x) container_of((x), struct ap_queue, ap_dev.device)
typedef enum ap_wait (ap_func_t)(struct ap_queue *queue);
struct ap_message { struct ap_message {
struct list_head list; /* Request queueing. */ struct list_head list; /* Request queueing. */
...@@ -218,7 +233,7 @@ struct ap_message { ...@@ -218,7 +233,7 @@ struct ap_message {
void *private; /* ap driver private pointer. */ void *private; /* ap driver private pointer. */
unsigned int special:1; /* Used for special commands. */ unsigned int special:1; /* Used for special commands. */
/* receive is called from tasklet context */ /* receive is called from tasklet context */
void (*receive)(struct ap_device *, struct ap_message *, void (*receive)(struct ap_queue *, struct ap_message *,
struct ap_message *); struct ap_message *);
}; };
...@@ -233,10 +248,6 @@ struct ap_config_info { ...@@ -233,10 +248,6 @@ struct ap_config_info {
unsigned char reserved4[16]; unsigned char reserved4[16];
} __packed; } __packed;
#define AP_DEVICE(dt) \
.dev_type=(dt), \
.match_flags=AP_DEVICE_ID_MATCH_DEVICE_TYPE,
/** /**
* ap_init_message() - Initialize ap_message. * ap_init_message() - Initialize ap_message.
* Initialize a message before using. Otherwise this might result in * Initialize a message before using. Otherwise this might result in
...@@ -251,6 +262,12 @@ static inline void ap_init_message(struct ap_message *ap_msg) ...@@ -251,6 +262,12 @@ static inline void ap_init_message(struct ap_message *ap_msg)
ap_msg->receive = NULL; ap_msg->receive = NULL;
} }
#define for_each_ap_card(_ac) \
list_for_each_entry(_ac, &ap_card_list, list)
#define for_each_ap_queue(_aq, _ac) \
list_for_each_entry(_aq, &(_ac)->queues, list)
/* /*
* Note: don't use ap_send/ap_recv after using ap_queue_message * Note: don't use ap_send/ap_recv after using ap_queue_message
* for the first time. Otherwise the ap message queue will get * for the first time. Otherwise the ap message queue will get
...@@ -259,11 +276,26 @@ static inline void ap_init_message(struct ap_message *ap_msg) ...@@ -259,11 +276,26 @@ static inline void ap_init_message(struct ap_message *ap_msg)
int ap_send(ap_qid_t, unsigned long long, void *, size_t); int ap_send(ap_qid_t, unsigned long long, void *, size_t);
int ap_recv(ap_qid_t, unsigned long long *, void *, size_t); int ap_recv(ap_qid_t, unsigned long long *, void *, size_t);
void ap_queue_message(struct ap_device *ap_dev, struct ap_message *ap_msg); enum ap_wait ap_sm_event(struct ap_queue *aq, enum ap_event event);
void ap_cancel_message(struct ap_device *ap_dev, struct ap_message *ap_msg); enum ap_wait ap_sm_event_loop(struct ap_queue *aq, enum ap_event event);
void ap_flush_queue(struct ap_device *ap_dev);
void ap_queue_message(struct ap_queue *aq, struct ap_message *ap_msg);
void ap_cancel_message(struct ap_queue *aq, struct ap_message *ap_msg);
void ap_flush_queue(struct ap_queue *aq);
void *ap_airq_ptr(void);
void ap_wait(enum ap_wait wait);
void ap_request_timeout(unsigned long data);
void ap_bus_force_rescan(void); void ap_bus_force_rescan(void);
void ap_device_init_reply(struct ap_device *ap_dev, struct ap_message *ap_msg);
void ap_queue_init_reply(struct ap_queue *aq, struct ap_message *ap_msg);
struct ap_queue *ap_queue_create(ap_qid_t qid, int device_type);
void ap_queue_remove(struct ap_queue *aq);
void ap_queue_suspend(struct ap_device *ap_dev);
void ap_queue_resume(struct ap_device *ap_dev);
struct ap_card *ap_card_create(int id, int queue_depth, int device_type,
unsigned int device_functions);
int ap_module_init(void); int ap_module_init(void);
void ap_module_exit(void); void ap_module_exit(void);
......
/*
* Copyright IBM Corp. 2016
* Author(s): Martin Schwidefsky <schwidefsky@de.ibm.com>
*
* Adjunct processor bus, card related code.
*/
#define KMSG_COMPONENT "ap"
#define pr_fmt(fmt) KMSG_COMPONENT ": " fmt
#include <linux/init.h>
#include <linux/slab.h>
#include <asm/facility.h>
#include "ap_bus.h"
#include "ap_asm.h"
/*
* AP card related attributes.
*/
static ssize_t ap_hwtype_show(struct device *dev,
struct device_attribute *attr, char *buf)
{
struct ap_card *ac = to_ap_card(dev);
return snprintf(buf, PAGE_SIZE, "%d\n", ac->ap_dev.device_type);
}
static DEVICE_ATTR(hwtype, 0444, ap_hwtype_show, NULL);
static ssize_t ap_raw_hwtype_show(struct device *dev,
struct device_attribute *attr, char *buf)
{
struct ap_card *ac = to_ap_card(dev);
return snprintf(buf, PAGE_SIZE, "%d\n", ac->raw_hwtype);
}
static DEVICE_ATTR(raw_hwtype, 0444, ap_raw_hwtype_show, NULL);
static ssize_t ap_depth_show(struct device *dev, struct device_attribute *attr,
char *buf)
{
struct ap_card *ac = to_ap_card(dev);
return snprintf(buf, PAGE_SIZE, "%d\n", ac->queue_depth);
}
static DEVICE_ATTR(depth, 0444, ap_depth_show, NULL);
static ssize_t ap_functions_show(struct device *dev,
struct device_attribute *attr, char *buf)
{
struct ap_card *ac = to_ap_card(dev);
return snprintf(buf, PAGE_SIZE, "0x%08X\n", ac->functions);
}
static DEVICE_ATTR(ap_functions, 0444, ap_functions_show, NULL);
static ssize_t ap_request_count_show(struct device *dev,
struct device_attribute *attr,
char *buf)
{
struct ap_card *ac = to_ap_card(dev);
struct ap_queue *aq;
unsigned int req_cnt;
req_cnt = 0;
spin_lock_bh(&ap_list_lock);
for_each_ap_queue(aq, ac)
req_cnt += aq->total_request_count;
spin_unlock_bh(&ap_list_lock);
return snprintf(buf, PAGE_SIZE, "%d\n", req_cnt);
}
static DEVICE_ATTR(request_count, 0444, ap_request_count_show, NULL);
static ssize_t ap_requestq_count_show(struct device *dev,
struct device_attribute *attr, char *buf)
{
struct ap_card *ac = to_ap_card(dev);
struct ap_queue *aq;
unsigned int reqq_cnt;
reqq_cnt = 0;
spin_lock_bh(&ap_list_lock);
for_each_ap_queue(aq, ac)
reqq_cnt += aq->requestq_count;
spin_unlock_bh(&ap_list_lock);
return snprintf(buf, PAGE_SIZE, "%d\n", reqq_cnt);
}
static DEVICE_ATTR(requestq_count, 0444, ap_requestq_count_show, NULL);
static ssize_t ap_pendingq_count_show(struct device *dev,
struct device_attribute *attr, char *buf)
{
struct ap_card *ac = to_ap_card(dev);
struct ap_queue *aq;
unsigned int penq_cnt;
penq_cnt = 0;
spin_lock_bh(&ap_list_lock);
for_each_ap_queue(aq, ac)
penq_cnt += aq->pendingq_count;
spin_unlock_bh(&ap_list_lock);
return snprintf(buf, PAGE_SIZE, "%d\n", penq_cnt);
}
static DEVICE_ATTR(pendingq_count, 0444, ap_pendingq_count_show, NULL);
static ssize_t ap_modalias_show(struct device *dev,
struct device_attribute *attr, char *buf)
{
return sprintf(buf, "ap:t%02X\n", to_ap_dev(dev)->device_type);
}
static DEVICE_ATTR(modalias, 0444, ap_modalias_show, NULL);
static struct attribute *ap_card_dev_attrs[] = {
&dev_attr_hwtype.attr,
&dev_attr_raw_hwtype.attr,
&dev_attr_depth.attr,
&dev_attr_ap_functions.attr,
&dev_attr_request_count.attr,
&dev_attr_requestq_count.attr,
&dev_attr_pendingq_count.attr,
&dev_attr_modalias.attr,
NULL
};
static struct attribute_group ap_card_dev_attr_group = {
.attrs = ap_card_dev_attrs
};
static const struct attribute_group *ap_card_dev_attr_groups[] = {
&ap_card_dev_attr_group,
NULL
};
struct device_type ap_card_type = {
.name = "ap_card",
.groups = ap_card_dev_attr_groups,
};
static void ap_card_device_release(struct device *dev)
{
kfree(to_ap_card(dev));
}
struct ap_card *ap_card_create(int id, int queue_depth, int device_type,
unsigned int functions)
{
struct ap_card *ac;
ac = kzalloc(sizeof(*ac), GFP_KERNEL);
if (!ac)
return NULL;
INIT_LIST_HEAD(&ac->queues);
ac->ap_dev.device.release = ap_card_device_release;
ac->ap_dev.device.type = &ap_card_type;
ac->ap_dev.device_type = device_type;
/* CEX6 toleration: map to CEX5 */
if (device_type == AP_DEVICE_TYPE_CEX6)
ac->ap_dev.device_type = AP_DEVICE_TYPE_CEX5;
ac->raw_hwtype = device_type;
ac->queue_depth = queue_depth;
ac->functions = functions;
ac->id = id;
return ac;
}
This diff is collapsed.
This diff is collapsed.
...@@ -88,7 +88,7 @@ struct ica_z90_status { ...@@ -88,7 +88,7 @@ struct ica_z90_status {
* Identifier for Crypto Request Performance Index * Identifier for Crypto Request Performance Index
*/ */
enum crypto_ops { enum crypto_ops {
MEX_1K = 0, MEX_1K,
MEX_2K, MEX_2K,
MEX_4K, MEX_4K,
CRT_1K, CRT_1K,
...@@ -99,43 +99,56 @@ enum crypto_ops { ...@@ -99,43 +99,56 @@ enum crypto_ops {
NUM_OPS NUM_OPS
}; };
struct zcrypt_device; struct zcrypt_queue;
struct zcrypt_ops { struct zcrypt_ops {
long (*rsa_modexpo)(struct zcrypt_device *, struct ica_rsa_modexpo *); long (*rsa_modexpo)(struct zcrypt_queue *, struct ica_rsa_modexpo *);
long (*rsa_modexpo_crt)(struct zcrypt_device *, long (*rsa_modexpo_crt)(struct zcrypt_queue *,
struct ica_rsa_modexpo_crt *); struct ica_rsa_modexpo_crt *);
long (*send_cprb)(struct zcrypt_device *, struct ica_xcRB *, long (*send_cprb)(struct zcrypt_queue *, struct ica_xcRB *,
struct ap_message *); struct ap_message *);
long (*send_ep11_cprb)(struct zcrypt_device *, struct ep11_urb *, long (*send_ep11_cprb)(struct zcrypt_queue *, struct ep11_urb *,
struct ap_message *); struct ap_message *);
long (*rng)(struct zcrypt_device *, char *, struct ap_message *); long (*rng)(struct zcrypt_queue *, char *, struct ap_message *);
struct list_head list; /* zcrypt ops list. */ struct list_head list; /* zcrypt ops list. */
struct module *owner; struct module *owner;
int variant; int variant;
char name[128]; char name[128];
}; };
struct zcrypt_device { struct zcrypt_card {
struct list_head list; /* Device list. */ struct list_head list; /* Device list. */
spinlock_t lock; /* Per device lock. */ struct list_head zqueues; /* List of zcrypt queues */
struct kref refcount; /* device refcounting */ struct kref refcount; /* device refcounting */
struct ap_device *ap_dev; /* The "real" ap device. */ struct ap_card *card; /* The "real" ap card device. */
struct zcrypt_ops *ops; /* Crypto operations. */
int online; /* User online/offline */ int online; /* User online/offline */
int user_space_type; /* User space device id. */ int user_space_type; /* User space device id. */
char *type_string; /* User space device name. */ char *type_string; /* User space device name. */
int min_mod_size; /* Min number of bits. */ int min_mod_size; /* Min number of bits. */
int max_mod_size; /* Max number of bits. */ int max_mod_size; /* Max number of bits. */
int short_crt; /* Card has crt length restriction. */ int max_exp_bit_length;
int speed_rating[NUM_OPS]; /* Speed idx of crypto ops. */ int speed_rating[NUM_OPS]; /* Speed idx of crypto ops. */
int load; /* Utilization of the crypto device */ atomic_t load; /* Utilization of the crypto device */
int request_count; /* # current requests. */
debug_info_t *dbf_area; /* debugging */
};
struct zcrypt_queue {
struct list_head list; /* Device list. */
struct kref refcount; /* device refcounting */
struct zcrypt_card *zcard;
struct zcrypt_ops *ops; /* Crypto operations. */
struct ap_queue *queue; /* The "real" ap queue device. */
int online; /* User online/offline */
atomic_t load; /* Utilization of the crypto device */
int request_count; /* # current requests. */ int request_count; /* # current requests. */
struct ap_message reply; /* Per-device reply structure. */ struct ap_message reply; /* Per-device reply structure. */
int max_exp_bit_length;
debug_info_t *dbf_area; /* debugging */ debug_info_t *dbf_area; /* debugging */
}; };
...@@ -143,12 +156,43 @@ struct zcrypt_device { ...@@ -143,12 +156,43 @@ struct zcrypt_device {
/* transport layer rescanning */ /* transport layer rescanning */
extern atomic_t zcrypt_rescan_req; extern atomic_t zcrypt_rescan_req;
struct zcrypt_device *zcrypt_device_alloc(size_t); extern spinlock_t zcrypt_list_lock;
void zcrypt_device_free(struct zcrypt_device *); extern int zcrypt_device_count;
void zcrypt_device_get(struct zcrypt_device *); extern struct list_head zcrypt_card_list;
int zcrypt_device_put(struct zcrypt_device *);
int zcrypt_device_register(struct zcrypt_device *); extern debug_info_t *zcrypt_dbf_common;
void zcrypt_device_unregister(struct zcrypt_device *); extern debug_info_t *zcrypt_dbf_devices;
extern debug_info_t *zcrypt_dbf_cards;
#define for_each_zcrypt_card(_zc) \
list_for_each_entry(_zc, &zcrypt_card_list, list)
#define for_each_zcrypt_queue(_zq, _zc) \
list_for_each_entry(_zq, &(_zc)->zqueues, list)
struct zcrypt_card *zcrypt_card_alloc(void);
void zcrypt_card_free(struct zcrypt_card *);
void zcrypt_card_get(struct zcrypt_card *);
int zcrypt_card_put(struct zcrypt_card *);
int zcrypt_card_register(struct zcrypt_card *);
void zcrypt_card_unregister(struct zcrypt_card *);
struct zcrypt_card *zcrypt_card_get_best(unsigned int *,
unsigned int, unsigned int);
void zcrypt_card_put_best(struct zcrypt_card *, unsigned int);
struct zcrypt_queue *zcrypt_queue_alloc(size_t);
void zcrypt_queue_free(struct zcrypt_queue *);
void zcrypt_queue_get(struct zcrypt_queue *);
int zcrypt_queue_put(struct zcrypt_queue *);
int zcrypt_queue_register(struct zcrypt_queue *);
void zcrypt_queue_unregister(struct zcrypt_queue *);
void zcrypt_queue_force_online(struct zcrypt_queue *, int);
struct zcrypt_queue *zcrypt_queue_get_best(unsigned int, unsigned int);
void zcrypt_queue_put_best(struct zcrypt_queue *, unsigned int);
int zcrypt_rng_device_add(void);
void zcrypt_rng_device_remove(void);
void zcrypt_msgtype_register(struct zcrypt_ops *); void zcrypt_msgtype_register(struct zcrypt_ops *);
void zcrypt_msgtype_unregister(struct zcrypt_ops *); void zcrypt_msgtype_unregister(struct zcrypt_ops *);
struct zcrypt_ops *zcrypt_msgtype(unsigned char *, int); struct zcrypt_ops *zcrypt_msgtype(unsigned char *, int);
......
/*
* zcrypt 2.1.0
*
* Copyright IBM Corp. 2001, 2012
* Author(s): Robert Burroughs
* Eric Rossman (edrossma@us.ibm.com)
* Cornelia Huck <cornelia.huck@de.ibm.com>
*
* Hotplug & misc device support: Jochen Roehrig (roehrig@de.ibm.com)
* Major cleanup & driver split: Martin Schwidefsky <schwidefsky@de.ibm.com>
* Ralph Wuerthner <rwuerthn@de.ibm.com>
* MSGTYPE restruct: Holger Dengler <hd@linux.vnet.ibm.com>
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2, or (at your option)
* any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*/
#include <linux/module.h>
#include <linux/init.h>
#include <linux/interrupt.h>
#include <linux/miscdevice.h>
#include <linux/fs.h>
#include <linux/proc_fs.h>
#include <linux/seq_file.h>
#include <linux/compat.h>
#include <linux/slab.h>
#include <linux/atomic.h>
#include <linux/uaccess.h>
#include <linux/hw_random.h>
#include <linux/debugfs.h>
#include <asm/debug.h>
#include "zcrypt_debug.h"
#include "zcrypt_api.h"
#include "zcrypt_msgtype6.h"
#include "zcrypt_msgtype50.h"
/*
* Device attributes common for all crypto card devices.
*/
static ssize_t zcrypt_card_type_show(struct device *dev,
struct device_attribute *attr, char *buf)
{
struct zcrypt_card *zc = to_ap_card(dev)->private;
return snprintf(buf, PAGE_SIZE, "%s\n", zc->type_string);
}
static DEVICE_ATTR(type, 0444, zcrypt_card_type_show, NULL);
static ssize_t zcrypt_card_online_show(struct device *dev,
struct device_attribute *attr,
char *buf)
{
struct zcrypt_card *zc = to_ap_card(dev)->private;
return snprintf(buf, PAGE_SIZE, "%d\n", zc->online);
}
static ssize_t zcrypt_card_online_store(struct device *dev,
struct device_attribute *attr,
const char *buf, size_t count)
{
struct zcrypt_card *zc = to_ap_card(dev)->private;
struct zcrypt_queue *zq;
int online, id;
if (sscanf(buf, "%d\n", &online) != 1 || online < 0 || online > 1)
return -EINVAL;
zc->online = online;
id = zc->card->id;
ZCRYPT_DBF_DEV(DBF_INFO, zc, "card%02xo%dman", id, online);
spin_lock(&zcrypt_list_lock);
list_for_each_entry(zq, &zc->zqueues, list)
zcrypt_queue_force_online(zq, online);
spin_unlock(&zcrypt_list_lock);
return count;
}
static DEVICE_ATTR(online, 0644, zcrypt_card_online_show,
zcrypt_card_online_store);
static struct attribute *zcrypt_card_attrs[] = {
&dev_attr_type.attr,
&dev_attr_online.attr,
NULL,
};
static struct attribute_group zcrypt_card_attr_group = {
.attrs = zcrypt_card_attrs,
};
struct zcrypt_card *zcrypt_card_alloc(void)
{
struct zcrypt_card *zc;
zc = kzalloc(sizeof(struct zcrypt_card), GFP_KERNEL);
if (!zc)
return NULL;
INIT_LIST_HEAD(&zc->list);
INIT_LIST_HEAD(&zc->zqueues);
zc->dbf_area = zcrypt_dbf_cards;
kref_init(&zc->refcount);
return zc;
}
EXPORT_SYMBOL(zcrypt_card_alloc);
void zcrypt_card_free(struct zcrypt_card *zc)
{
kfree(zc);
}
EXPORT_SYMBOL(zcrypt_card_free);
static void zcrypt_card_release(struct kref *kref)
{
struct zcrypt_card *zdev =
container_of(kref, struct zcrypt_card, refcount);
zcrypt_card_free(zdev);
}
void zcrypt_card_get(struct zcrypt_card *zc)
{
kref_get(&zc->refcount);
}
EXPORT_SYMBOL(zcrypt_card_get);
int zcrypt_card_put(struct zcrypt_card *zc)
{
return kref_put(&zc->refcount, zcrypt_card_release);
}
EXPORT_SYMBOL(zcrypt_card_put);
/**
* zcrypt_card_register() - Register a crypto card device.
* @zc: Pointer to a crypto card device
*
* Register a crypto card device. Returns 0 if successful.
*/
int zcrypt_card_register(struct zcrypt_card *zc)
{
int rc;
rc = sysfs_create_group(&zc->card->ap_dev.device.kobj,
&zcrypt_card_attr_group);
if (rc)
return rc;
spin_lock(&zcrypt_list_lock);
list_add_tail(&zc->list, &zcrypt_card_list);
spin_unlock(&zcrypt_list_lock);
zc->online = 1;
return rc;
}
EXPORT_SYMBOL(zcrypt_card_register);
/**
* zcrypt_card_unregister(): Unregister a crypto card device.
* @zc: Pointer to crypto card device
*
* Unregister a crypto card device.
*/
void zcrypt_card_unregister(struct zcrypt_card *zc)
{
spin_lock(&zcrypt_list_lock);
list_del_init(&zc->list);
spin_unlock(&zcrypt_list_lock);
sysfs_remove_group(&zc->card->ap_dev.device.kobj,
&zcrypt_card_attr_group);
}
EXPORT_SYMBOL(zcrypt_card_unregister);
...@@ -31,6 +31,7 @@ ...@@ -31,6 +31,7 @@
#include <linux/err.h> #include <linux/err.h>
#include <linux/atomic.h> #include <linux/atomic.h>
#include <asm/uaccess.h> #include <asm/uaccess.h>
#include <linux/mod_devicetable.h>
#include "ap_bus.h" #include "ap_bus.h"
#include "zcrypt_api.h" #include "zcrypt_api.h"
...@@ -54,108 +55,195 @@ ...@@ -54,108 +55,195 @@
#define CEX2A_CLEANUP_TIME (15*HZ) #define CEX2A_CLEANUP_TIME (15*HZ)
#define CEX3A_CLEANUP_TIME CEX2A_CLEANUP_TIME #define CEX3A_CLEANUP_TIME CEX2A_CLEANUP_TIME
static struct ap_device_id zcrypt_cex2a_ids[] = {
{ AP_DEVICE(AP_DEVICE_TYPE_CEX2A) },
{ AP_DEVICE(AP_DEVICE_TYPE_CEX3A) },
{ /* end of list */ },
};
MODULE_DEVICE_TABLE(ap, zcrypt_cex2a_ids);
MODULE_AUTHOR("IBM Corporation"); MODULE_AUTHOR("IBM Corporation");
MODULE_DESCRIPTION("CEX2A Cryptographic Coprocessor device driver, " \ MODULE_DESCRIPTION("CEX2A Cryptographic Coprocessor device driver, " \
"Copyright IBM Corp. 2001, 2012"); "Copyright IBM Corp. 2001, 2012");
MODULE_LICENSE("GPL"); MODULE_LICENSE("GPL");
static int zcrypt_cex2a_probe(struct ap_device *ap_dev); static struct ap_device_id zcrypt_cex2a_card_ids[] = {
static void zcrypt_cex2a_remove(struct ap_device *ap_dev); { .dev_type = AP_DEVICE_TYPE_CEX2A,
.match_flags = AP_DEVICE_ID_MATCH_CARD_TYPE },
{ .dev_type = AP_DEVICE_TYPE_CEX3A,
.match_flags = AP_DEVICE_ID_MATCH_CARD_TYPE },
{ /* end of list */ },
};
MODULE_DEVICE_TABLE(ap, zcrypt_cex2a_card_ids);
static struct ap_driver zcrypt_cex2a_driver = { static struct ap_device_id zcrypt_cex2a_queue_ids[] = {
.probe = zcrypt_cex2a_probe, { .dev_type = AP_DEVICE_TYPE_CEX2A,
.remove = zcrypt_cex2a_remove, .match_flags = AP_DEVICE_ID_MATCH_QUEUE_TYPE },
.ids = zcrypt_cex2a_ids, { .dev_type = AP_DEVICE_TYPE_CEX3A,
.request_timeout = CEX2A_CLEANUP_TIME, .match_flags = AP_DEVICE_ID_MATCH_QUEUE_TYPE },
{ /* end of list */ },
}; };
MODULE_DEVICE_TABLE(ap, zcrypt_cex2a_queue_ids);
/** /**
* Probe function for CEX2A cards. It always accepts the AP device * Probe function for CEX2A card devices. It always accepts the AP device
* since the bus_match already checked the hardware type. * since the bus_match already checked the card type.
* @ap_dev: pointer to the AP device. * @ap_dev: pointer to the AP device.
*/ */
static int zcrypt_cex2a_probe(struct ap_device *ap_dev) static int zcrypt_cex2a_card_probe(struct ap_device *ap_dev)
{ {
struct zcrypt_device *zdev = NULL; /*
int CEX2A_SPEED_IDX[] = { 800, 1000, 2000, 900, 1200, 2400, 0}; * Normalized speed ratings per crypto adapter
int CEX3A_SPEED_IDX[] = { 400, 500, 1000, 450, 550, 1200, 0}; * MEX_1k, MEX_2k, MEX_4k, CRT_1k, CRT_2k, CRT_4k, RNG, SECKEY
*/
static const int CEX2A_SPEED_IDX[] = {
800, 1000, 2000, 900, 1200, 2400, 0, 0};
static const int CEX3A_SPEED_IDX[] = {
400, 500, 1000, 450, 550, 1200, 0, 0};
struct ap_card *ac = to_ap_card(&ap_dev->device);
struct zcrypt_card *zc;
int rc = 0; int rc = 0;
zc = zcrypt_card_alloc();
if (!zc)
return -ENOMEM;
zc->card = ac;
ac->private = zc;
if (ac->ap_dev.device_type == AP_DEVICE_TYPE_CEX2A) {
zc->min_mod_size = CEX2A_MIN_MOD_SIZE;
zc->max_mod_size = CEX2A_MAX_MOD_SIZE;
memcpy(zc->speed_rating, CEX2A_SPEED_IDX,
sizeof(CEX2A_SPEED_IDX));
zc->max_exp_bit_length = CEX2A_MAX_MOD_SIZE;
zc->type_string = "CEX2A";
zc->user_space_type = ZCRYPT_CEX2A;
} else if (ac->ap_dev.device_type == AP_DEVICE_TYPE_CEX3A) {
zc->min_mod_size = CEX2A_MIN_MOD_SIZE;
zc->max_mod_size = CEX2A_MAX_MOD_SIZE;
zc->max_exp_bit_length = CEX2A_MAX_MOD_SIZE;
if (ap_test_bit(&ac->functions, AP_FUNC_MEX4K) &&
ap_test_bit(&ac->functions, AP_FUNC_CRT4K)) {
zc->max_mod_size = CEX3A_MAX_MOD_SIZE;
zc->max_exp_bit_length = CEX3A_MAX_MOD_SIZE;
}
memcpy(zc->speed_rating, CEX3A_SPEED_IDX,
sizeof(CEX3A_SPEED_IDX));
zc->type_string = "CEX3A";
zc->user_space_type = ZCRYPT_CEX3A;
} else {
zcrypt_card_free(zc);
return -ENODEV;
}
zc->online = 1;
rc = zcrypt_card_register(zc);
if (rc) {
ac->private = NULL;
zcrypt_card_free(zc);
}
return rc;
}
/**
* This is called to remove the CEX2A card driver information
* if an AP card device is removed.
*/
static void zcrypt_cex2a_card_remove(struct ap_device *ap_dev)
{
struct zcrypt_card *zc = to_ap_card(&ap_dev->device)->private;
if (zc)
zcrypt_card_unregister(zc);
}
static struct ap_driver zcrypt_cex2a_card_driver = {
.probe = zcrypt_cex2a_card_probe,
.remove = zcrypt_cex2a_card_remove,
.ids = zcrypt_cex2a_card_ids,
};
/**
* Probe function for CEX2A queue devices. It always accepts the AP device
* since the bus_match already checked the queue type.
* @ap_dev: pointer to the AP device.
*/
static int zcrypt_cex2a_queue_probe(struct ap_device *ap_dev)
{
struct ap_queue *aq = to_ap_queue(&ap_dev->device);
struct zcrypt_queue *zq = NULL;
int rc;
switch (ap_dev->device_type) { switch (ap_dev->device_type) {
case AP_DEVICE_TYPE_CEX2A: case AP_DEVICE_TYPE_CEX2A:
zdev = zcrypt_device_alloc(CEX2A_MAX_RESPONSE_SIZE); zq = zcrypt_queue_alloc(CEX2A_MAX_RESPONSE_SIZE);
if (!zdev) if (!zq)
return -ENOMEM; return -ENOMEM;
zdev->user_space_type = ZCRYPT_CEX2A;
zdev->type_string = "CEX2A";
zdev->min_mod_size = CEX2A_MIN_MOD_SIZE;
zdev->max_mod_size = CEX2A_MAX_MOD_SIZE;
zdev->short_crt = 1;
memcpy(zdev->speed_rating, CEX2A_SPEED_IDX,
sizeof(CEX2A_SPEED_IDX));
zdev->max_exp_bit_length = CEX2A_MAX_MOD_SIZE;
break; break;
case AP_DEVICE_TYPE_CEX3A: case AP_DEVICE_TYPE_CEX3A:
zdev = zcrypt_device_alloc(CEX3A_MAX_RESPONSE_SIZE); zq = zcrypt_queue_alloc(CEX3A_MAX_RESPONSE_SIZE);
if (!zdev) if (!zq)
return -ENOMEM; return -ENOMEM;
zdev->user_space_type = ZCRYPT_CEX3A;
zdev->type_string = "CEX3A";
zdev->min_mod_size = CEX2A_MIN_MOD_SIZE;
zdev->max_mod_size = CEX2A_MAX_MOD_SIZE;
zdev->max_exp_bit_length = CEX2A_MAX_MOD_SIZE;
if (ap_test_bit(&ap_dev->functions, AP_FUNC_MEX4K) &&
ap_test_bit(&ap_dev->functions, AP_FUNC_CRT4K)) {
zdev->max_mod_size = CEX3A_MAX_MOD_SIZE;
zdev->max_exp_bit_length = CEX3A_MAX_MOD_SIZE;
}
zdev->short_crt = 1;
memcpy(zdev->speed_rating, CEX3A_SPEED_IDX,
sizeof(CEX3A_SPEED_IDX));
break; break;
} }
if (!zdev) if (!zq)
return -ENODEV; return -ENODEV;
zdev->ops = zcrypt_msgtype(MSGTYPE50_NAME, MSGTYPE50_VARIANT_DEFAULT); zq->ops = zcrypt_msgtype(MSGTYPE50_NAME, MSGTYPE50_VARIANT_DEFAULT);
zdev->ap_dev = ap_dev; zq->queue = aq;
zdev->online = 1; zq->online = 1;
zdev->load = zdev->speed_rating[0]; atomic_set(&zq->load, 0);
ap_device_init_reply(ap_dev, &zdev->reply); ap_queue_init_reply(aq, &zq->reply);
ap_dev->private = zdev; aq->request_timeout = CEX2A_CLEANUP_TIME,
rc = zcrypt_device_register(zdev); aq->private = zq;
rc = zcrypt_queue_register(zq);
if (rc) { if (rc) {
ap_dev->private = NULL; aq->private = NULL;
zcrypt_device_free(zdev); zcrypt_queue_free(zq);
} }
return rc; return rc;
} }
/** /**
* This is called to remove the extended CEX2A driver information * This is called to remove the CEX2A queue driver information
* if an AP device is removed. * if an AP queue device is removed.
*/ */
static void zcrypt_cex2a_remove(struct ap_device *ap_dev) static void zcrypt_cex2a_queue_remove(struct ap_device *ap_dev)
{ {
struct zcrypt_device *zdev = ap_dev->private; struct ap_queue *aq = to_ap_queue(&ap_dev->device);
struct zcrypt_queue *zq = aq->private;
zcrypt_device_unregister(zdev); ap_queue_remove(aq);
if (zq)
zcrypt_queue_unregister(zq);
} }
static struct ap_driver zcrypt_cex2a_queue_driver = {
.probe = zcrypt_cex2a_queue_probe,
.remove = zcrypt_cex2a_queue_remove,
.suspend = ap_queue_suspend,
.resume = ap_queue_resume,
.ids = zcrypt_cex2a_queue_ids,
};
int __init zcrypt_cex2a_init(void) int __init zcrypt_cex2a_init(void)
{ {
return ap_driver_register(&zcrypt_cex2a_driver, THIS_MODULE, "cex2a"); int rc;
rc = ap_driver_register(&zcrypt_cex2a_card_driver,
THIS_MODULE, "cex2acard");
if (rc)
return rc;
rc = ap_driver_register(&zcrypt_cex2a_queue_driver,
THIS_MODULE, "cex2aqueue");
if (rc)
ap_driver_unregister(&zcrypt_cex2a_card_driver);
return rc;
} }
void __exit zcrypt_cex2a_exit(void) void __exit zcrypt_cex2a_exit(void)
{ {
ap_driver_unregister(&zcrypt_cex2a_driver); ap_driver_unregister(&zcrypt_cex2a_queue_driver);
ap_driver_unregister(&zcrypt_cex2a_card_driver);
} }
module_init(zcrypt_cex2a_init); module_init(zcrypt_cex2a_init);
......
This diff is collapsed.
...@@ -87,7 +87,7 @@ struct error_hdr { ...@@ -87,7 +87,7 @@ struct error_hdr {
#define REP88_ERROR_OPERAND 0x84 /* CEX2A */ #define REP88_ERROR_OPERAND 0x84 /* CEX2A */
#define REP88_ERROR_OPERAND_EVEN_MOD 0x85 /* CEX2A */ #define REP88_ERROR_OPERAND_EVEN_MOD 0x85 /* CEX2A */
static inline int convert_error(struct zcrypt_device *zdev, static inline int convert_error(struct zcrypt_queue *zq,
struct ap_message *reply) struct ap_message *reply)
{ {
struct error_hdr *ehdr = reply->message; struct error_hdr *ehdr = reply->message;
...@@ -110,11 +110,13 @@ static inline int convert_error(struct zcrypt_device *zdev, ...@@ -110,11 +110,13 @@ static inline int convert_error(struct zcrypt_device *zdev,
* and then repeat the request. * and then repeat the request.
*/ */
atomic_set(&zcrypt_rescan_req, 1); atomic_set(&zcrypt_rescan_req, 1);
zdev->online = 0; zq->online = 0;
pr_err("Cryptographic device %x failed and was set offline\n", pr_err("Cryptographic device %02x.%04x failed and was set offline\n",
AP_QID_DEVICE(zdev->ap_dev->qid)); AP_QID_CARD(zq->queue->qid),
ZCRYPT_DBF_DEV(DBF_ERR, zdev, "dev%04xo%drc%d", AP_QID_QUEUE(zq->queue->qid));
AP_QID_DEVICE(zdev->ap_dev->qid), zdev->online, ZCRYPT_DBF_DEV(DBF_ERR, zq, "dev%02x%04xo%drc%d",
AP_QID_CARD(zq->queue->qid),
AP_QID_QUEUE(zq->queue->qid), zq->online,
ehdr->reply_code); ehdr->reply_code);
return -EAGAIN; return -EAGAIN;
case REP82_ERROR_TRANSPORT_FAIL: case REP82_ERROR_TRANSPORT_FAIL:
...@@ -122,19 +124,23 @@ static inline int convert_error(struct zcrypt_device *zdev, ...@@ -122,19 +124,23 @@ static inline int convert_error(struct zcrypt_device *zdev,
// REP88_ERROR_MODULE_FAILURE // '10' CEX2A // REP88_ERROR_MODULE_FAILURE // '10' CEX2A
/* If a card fails disable it and repeat the request. */ /* If a card fails disable it and repeat the request. */
atomic_set(&zcrypt_rescan_req, 1); atomic_set(&zcrypt_rescan_req, 1);
zdev->online = 0; zq->online = 0;
pr_err("Cryptographic device %x failed and was set offline\n", pr_err("Cryptographic device %02x.%04x failed and was set offline\n",
AP_QID_DEVICE(zdev->ap_dev->qid)); AP_QID_CARD(zq->queue->qid),
ZCRYPT_DBF_DEV(DBF_ERR, zdev, "dev%04xo%drc%d", AP_QID_QUEUE(zq->queue->qid));
AP_QID_DEVICE(zdev->ap_dev->qid), zdev->online, ZCRYPT_DBF_DEV(DBF_ERR, zq, "dev%02x%04xo%drc%d",
AP_QID_CARD(zq->queue->qid),
AP_QID_QUEUE(zq->queue->qid), zq->online,
ehdr->reply_code); ehdr->reply_code);
return -EAGAIN; return -EAGAIN;
default: default:
zdev->online = 0; zq->online = 0;
pr_err("Cryptographic device %x failed and was set offline\n", pr_err("Cryptographic device %02x.%04x failed and was set offline\n",
AP_QID_DEVICE(zdev->ap_dev->qid)); AP_QID_CARD(zq->queue->qid),
ZCRYPT_DBF_DEV(DBF_ERR, zdev, "dev%04xo%drc%d", AP_QID_QUEUE(zq->queue->qid));
AP_QID_DEVICE(zdev->ap_dev->qid), zdev->online, ZCRYPT_DBF_DEV(DBF_ERR, zq, "dev%02x%04xo%drc%d",
AP_QID_CARD(zq->queue->qid),
AP_QID_QUEUE(zq->queue->qid), zq->online,
ehdr->reply_code); ehdr->reply_code);
return -EAGAIN; /* repeat the request on a different device. */ return -EAGAIN; /* repeat the request on a different device. */
} }
......
...@@ -53,9 +53,6 @@ MODULE_DESCRIPTION("Cryptographic Accelerator (message type 50), " \ ...@@ -53,9 +53,6 @@ MODULE_DESCRIPTION("Cryptographic Accelerator (message type 50), " \
"Copyright IBM Corp. 2001, 2012"); "Copyright IBM Corp. 2001, 2012");
MODULE_LICENSE("GPL"); MODULE_LICENSE("GPL");
static void zcrypt_cex2a_receive(struct ap_device *, struct ap_message *,
struct ap_message *);
/** /**
* The type 50 message family is associated with a CEX2A card. * The type 50 message family is associated with a CEX2A card.
* *
...@@ -208,13 +205,13 @@ unsigned int get_rsa_crt_fc(struct ica_rsa_modexpo_crt *crt, int *fcode) ...@@ -208,13 +205,13 @@ unsigned int get_rsa_crt_fc(struct ica_rsa_modexpo_crt *crt, int *fcode)
/** /**
* Convert a ICAMEX message to a type50 MEX message. * Convert a ICAMEX message to a type50 MEX message.
* *
* @zdev: crypto device pointer * @zq: crypto queue pointer
* @zreq: crypto request pointer * @ap_msg: crypto request pointer
* @mex: pointer to user input data * @mex: pointer to user input data
* *
* Returns 0 on success or -EFAULT. * Returns 0 on success or -EFAULT.
*/ */
static int ICAMEX_msg_to_type50MEX_msg(struct zcrypt_device *zdev, static int ICAMEX_msg_to_type50MEX_msg(struct zcrypt_queue *zq,
struct ap_message *ap_msg, struct ap_message *ap_msg,
struct ica_rsa_modexpo *mex) struct ica_rsa_modexpo *mex)
{ {
...@@ -266,13 +263,13 @@ static int ICAMEX_msg_to_type50MEX_msg(struct zcrypt_device *zdev, ...@@ -266,13 +263,13 @@ static int ICAMEX_msg_to_type50MEX_msg(struct zcrypt_device *zdev,
/** /**
* Convert a ICACRT message to a type50 CRT message. * Convert a ICACRT message to a type50 CRT message.
* *
* @zdev: crypto device pointer * @zq: crypto queue pointer
* @zreq: crypto request pointer * @ap_msg: crypto request pointer
* @crt: pointer to user input data * @crt: pointer to user input data
* *
* Returns 0 on success or -EFAULT. * Returns 0 on success or -EFAULT.
*/ */
static int ICACRT_msg_to_type50CRT_msg(struct zcrypt_device *zdev, static int ICACRT_msg_to_type50CRT_msg(struct zcrypt_queue *zq,
struct ap_message *ap_msg, struct ap_message *ap_msg,
struct ica_rsa_modexpo_crt *crt) struct ica_rsa_modexpo_crt *crt)
{ {
...@@ -315,7 +312,7 @@ static int ICACRT_msg_to_type50CRT_msg(struct zcrypt_device *zdev, ...@@ -315,7 +312,7 @@ static int ICACRT_msg_to_type50CRT_msg(struct zcrypt_device *zdev,
u = crb2->u + sizeof(crb2->u) - short_len; u = crb2->u + sizeof(crb2->u) - short_len;
inp = crb2->message + sizeof(crb2->message) - mod_len; inp = crb2->message + sizeof(crb2->message) - mod_len;
} else if ((mod_len <= 512) && /* up to 4096 bit key size */ } else if ((mod_len <= 512) && /* up to 4096 bit key size */
(zdev->max_mod_size == CEX3A_MAX_MOD_SIZE)) { /* >= CEX3A */ (zq->zcard->max_mod_size == CEX3A_MAX_MOD_SIZE)) {
struct type50_crb3_msg *crb3 = ap_msg->message; struct type50_crb3_msg *crb3 = ap_msg->message;
memset(crb3, 0, sizeof(*crb3)); memset(crb3, 0, sizeof(*crb3));
ap_msg->length = sizeof(*crb3); ap_msg->length = sizeof(*crb3);
...@@ -349,14 +346,14 @@ static int ICACRT_msg_to_type50CRT_msg(struct zcrypt_device *zdev, ...@@ -349,14 +346,14 @@ static int ICACRT_msg_to_type50CRT_msg(struct zcrypt_device *zdev,
/** /**
* Copy results from a type 80 reply message back to user space. * Copy results from a type 80 reply message back to user space.
* *
* @zdev: crypto device pointer * @zq: crypto device pointer
* @reply: reply AP message. * @reply: reply AP message.
* @data: pointer to user output data * @data: pointer to user output data
* @length: size of user output data * @length: size of user output data
* *
* Returns 0 on success or -EFAULT. * Returns 0 on success or -EFAULT.
*/ */
static int convert_type80(struct zcrypt_device *zdev, static int convert_type80(struct zcrypt_queue *zq,
struct ap_message *reply, struct ap_message *reply,
char __user *outputdata, char __user *outputdata,
unsigned int outputdatalength) unsigned int outputdatalength)
...@@ -366,16 +363,18 @@ static int convert_type80(struct zcrypt_device *zdev, ...@@ -366,16 +363,18 @@ static int convert_type80(struct zcrypt_device *zdev,
if (t80h->len < sizeof(*t80h) + outputdatalength) { if (t80h->len < sizeof(*t80h) + outputdatalength) {
/* The result is too short, the CEX2A card may not do that.. */ /* The result is too short, the CEX2A card may not do that.. */
zdev->online = 0; zq->online = 0;
pr_err("Cryptographic device %x failed and was set offline\n", pr_err("Cryptographic device %02x.%04x failed and was set offline\n",
AP_QID_DEVICE(zdev->ap_dev->qid)); AP_QID_CARD(zq->queue->qid),
ZCRYPT_DBF_DEV(DBF_ERR, zdev, "dev%04xo%drc%d", AP_QID_QUEUE(zq->queue->qid));
AP_QID_DEVICE(zdev->ap_dev->qid), ZCRYPT_DBF_DEV(DBF_ERR, zq, "dev%02x%04xo%drc%d",
zdev->online, t80h->code); AP_QID_CARD(zq->queue->qid),
AP_QID_QUEUE(zq->queue->qid),
zq->online, t80h->code);
return -EAGAIN; /* repeat the request on a different device. */ return -EAGAIN; /* repeat the request on a different device. */
} }
if (zdev->user_space_type == ZCRYPT_CEX2A) if (zq->zcard->user_space_type == ZCRYPT_CEX2A)
BUG_ON(t80h->len > CEX2A_MAX_RESPONSE_SIZE); BUG_ON(t80h->len > CEX2A_MAX_RESPONSE_SIZE);
else else
BUG_ON(t80h->len > CEX3A_MAX_RESPONSE_SIZE); BUG_ON(t80h->len > CEX3A_MAX_RESPONSE_SIZE);
...@@ -385,7 +384,7 @@ static int convert_type80(struct zcrypt_device *zdev, ...@@ -385,7 +384,7 @@ static int convert_type80(struct zcrypt_device *zdev,
return 0; return 0;
} }
static int convert_response(struct zcrypt_device *zdev, static int convert_response(struct zcrypt_queue *zq,
struct ap_message *reply, struct ap_message *reply,
char __user *outputdata, char __user *outputdata,
unsigned int outputdatalength) unsigned int outputdatalength)
...@@ -394,16 +393,19 @@ static int convert_response(struct zcrypt_device *zdev, ...@@ -394,16 +393,19 @@ static int convert_response(struct zcrypt_device *zdev,
switch (((unsigned char *) reply->message)[1]) { switch (((unsigned char *) reply->message)[1]) {
case TYPE82_RSP_CODE: case TYPE82_RSP_CODE:
case TYPE88_RSP_CODE: case TYPE88_RSP_CODE:
return convert_error(zdev, reply); return convert_error(zq, reply);
case TYPE80_RSP_CODE: case TYPE80_RSP_CODE:
return convert_type80(zdev, reply, return convert_type80(zq, reply,
outputdata, outputdatalength); outputdata, outputdatalength);
default: /* Unknown response type, this should NEVER EVER happen */ default: /* Unknown response type, this should NEVER EVER happen */
zdev->online = 0; zq->online = 0;
pr_err("Cryptographic device %x failed and was set offline\n", pr_err("Cryptographic device %02x.%04x failed and was set offline\n",
AP_QID_DEVICE(zdev->ap_dev->qid)); AP_QID_CARD(zq->queue->qid),
ZCRYPT_DBF_DEV(DBF_ERR, zdev, "dev%04xo%dfail", AP_QID_QUEUE(zq->queue->qid));
AP_QID_DEVICE(zdev->ap_dev->qid), zdev->online); ZCRYPT_DBF_DEV(DBF_ERR, zq, "dev%02x%04xo%dfail",
AP_QID_CARD(zq->queue->qid),
AP_QID_QUEUE(zq->queue->qid),
zq->online);
return -EAGAIN; /* repeat the request on a different device. */ return -EAGAIN; /* repeat the request on a different device. */
} }
} }
...@@ -412,11 +414,11 @@ static int convert_response(struct zcrypt_device *zdev, ...@@ -412,11 +414,11 @@ static int convert_response(struct zcrypt_device *zdev,
* This function is called from the AP bus code after a crypto request * This function is called from the AP bus code after a crypto request
* "msg" has finished with the reply message "reply". * "msg" has finished with the reply message "reply".
* It is called from tasklet context. * It is called from tasklet context.
* @ap_dev: pointer to the AP device * @aq: pointer to the AP device
* @msg: pointer to the AP message * @msg: pointer to the AP message
* @reply: pointer to the AP reply message * @reply: pointer to the AP reply message
*/ */
static void zcrypt_cex2a_receive(struct ap_device *ap_dev, static void zcrypt_cex2a_receive(struct ap_queue *aq,
struct ap_message *msg, struct ap_message *msg,
struct ap_message *reply) struct ap_message *reply)
{ {
...@@ -432,7 +434,7 @@ static void zcrypt_cex2a_receive(struct ap_device *ap_dev, ...@@ -432,7 +434,7 @@ static void zcrypt_cex2a_receive(struct ap_device *ap_dev,
goto out; /* ap_msg->rc indicates the error */ goto out; /* ap_msg->rc indicates the error */
t80h = reply->message; t80h = reply->message;
if (t80h->type == TYPE80_RSP_CODE) { if (t80h->type == TYPE80_RSP_CODE) {
if (ap_dev->device_type == AP_DEVICE_TYPE_CEX2A) if (aq->ap_dev.device_type == AP_DEVICE_TYPE_CEX2A)
length = min_t(int, length = min_t(int,
CEX2A_MAX_RESPONSE_SIZE, t80h->len); CEX2A_MAX_RESPONSE_SIZE, t80h->len);
else else
...@@ -450,11 +452,11 @@ static atomic_t zcrypt_step = ATOMIC_INIT(0); ...@@ -450,11 +452,11 @@ static atomic_t zcrypt_step = ATOMIC_INIT(0);
/** /**
* The request distributor calls this function if it picked the CEX2A * The request distributor calls this function if it picked the CEX2A
* device to handle a modexpo request. * device to handle a modexpo request.
* @zdev: pointer to zcrypt_device structure that identifies the * @zq: pointer to zcrypt_queue structure that identifies the
* CEX2A device to the request distributor * CEX2A device to the request distributor
* @mex: pointer to the modexpo request buffer * @mex: pointer to the modexpo request buffer
*/ */
static long zcrypt_cex2a_modexpo(struct zcrypt_device *zdev, static long zcrypt_cex2a_modexpo(struct zcrypt_queue *zq,
struct ica_rsa_modexpo *mex) struct ica_rsa_modexpo *mex)
{ {
struct ap_message ap_msg; struct ap_message ap_msg;
...@@ -462,7 +464,7 @@ static long zcrypt_cex2a_modexpo(struct zcrypt_device *zdev, ...@@ -462,7 +464,7 @@ static long zcrypt_cex2a_modexpo(struct zcrypt_device *zdev,
int rc; int rc;
ap_init_message(&ap_msg); ap_init_message(&ap_msg);
if (zdev->user_space_type == ZCRYPT_CEX2A) if (zq->zcard->user_space_type == ZCRYPT_CEX2A)
ap_msg.message = kmalloc(MSGTYPE50_CRB2_MAX_MSG_SIZE, ap_msg.message = kmalloc(MSGTYPE50_CRB2_MAX_MSG_SIZE,
GFP_KERNEL); GFP_KERNEL);
else else
...@@ -474,20 +476,20 @@ static long zcrypt_cex2a_modexpo(struct zcrypt_device *zdev, ...@@ -474,20 +476,20 @@ static long zcrypt_cex2a_modexpo(struct zcrypt_device *zdev,
ap_msg.psmid = (((unsigned long long) current->pid) << 32) + ap_msg.psmid = (((unsigned long long) current->pid) << 32) +
atomic_inc_return(&zcrypt_step); atomic_inc_return(&zcrypt_step);
ap_msg.private = &work; ap_msg.private = &work;
rc = ICAMEX_msg_to_type50MEX_msg(zdev, &ap_msg, mex); rc = ICAMEX_msg_to_type50MEX_msg(zq, &ap_msg, mex);
if (rc) if (rc)
goto out_free; goto out_free;
init_completion(&work); init_completion(&work);
ap_queue_message(zdev->ap_dev, &ap_msg); ap_queue_message(zq->queue, &ap_msg);
rc = wait_for_completion_interruptible(&work); rc = wait_for_completion_interruptible(&work);
if (rc == 0) { if (rc == 0) {
rc = ap_msg.rc; rc = ap_msg.rc;
if (rc == 0) if (rc == 0)
rc = convert_response(zdev, &ap_msg, mex->outputdata, rc = convert_response(zq, &ap_msg, mex->outputdata,
mex->outputdatalength); mex->outputdatalength);
} else } else
/* Signal pending. */ /* Signal pending. */
ap_cancel_message(zdev->ap_dev, &ap_msg); ap_cancel_message(zq->queue, &ap_msg);
out_free: out_free:
kfree(ap_msg.message); kfree(ap_msg.message);
return rc; return rc;
...@@ -496,11 +498,11 @@ static long zcrypt_cex2a_modexpo(struct zcrypt_device *zdev, ...@@ -496,11 +498,11 @@ static long zcrypt_cex2a_modexpo(struct zcrypt_device *zdev,
/** /**
* The request distributor calls this function if it picked the CEX2A * The request distributor calls this function if it picked the CEX2A
* device to handle a modexpo_crt request. * device to handle a modexpo_crt request.
* @zdev: pointer to zcrypt_device structure that identifies the * @zq: pointer to zcrypt_queue structure that identifies the
* CEX2A device to the request distributor * CEX2A device to the request distributor
* @crt: pointer to the modexpoc_crt request buffer * @crt: pointer to the modexpoc_crt request buffer
*/ */
static long zcrypt_cex2a_modexpo_crt(struct zcrypt_device *zdev, static long zcrypt_cex2a_modexpo_crt(struct zcrypt_queue *zq,
struct ica_rsa_modexpo_crt *crt) struct ica_rsa_modexpo_crt *crt)
{ {
struct ap_message ap_msg; struct ap_message ap_msg;
...@@ -508,7 +510,7 @@ static long zcrypt_cex2a_modexpo_crt(struct zcrypt_device *zdev, ...@@ -508,7 +510,7 @@ static long zcrypt_cex2a_modexpo_crt(struct zcrypt_device *zdev,
int rc; int rc;
ap_init_message(&ap_msg); ap_init_message(&ap_msg);
if (zdev->user_space_type == ZCRYPT_CEX2A) if (zq->zcard->user_space_type == ZCRYPT_CEX2A)
ap_msg.message = kmalloc(MSGTYPE50_CRB2_MAX_MSG_SIZE, ap_msg.message = kmalloc(MSGTYPE50_CRB2_MAX_MSG_SIZE,
GFP_KERNEL); GFP_KERNEL);
else else
...@@ -520,20 +522,20 @@ static long zcrypt_cex2a_modexpo_crt(struct zcrypt_device *zdev, ...@@ -520,20 +522,20 @@ static long zcrypt_cex2a_modexpo_crt(struct zcrypt_device *zdev,
ap_msg.psmid = (((unsigned long long) current->pid) << 32) + ap_msg.psmid = (((unsigned long long) current->pid) << 32) +
atomic_inc_return(&zcrypt_step); atomic_inc_return(&zcrypt_step);
ap_msg.private = &work; ap_msg.private = &work;
rc = ICACRT_msg_to_type50CRT_msg(zdev, &ap_msg, crt); rc = ICACRT_msg_to_type50CRT_msg(zq, &ap_msg, crt);
if (rc) if (rc)
goto out_free; goto out_free;
init_completion(&work); init_completion(&work);
ap_queue_message(zdev->ap_dev, &ap_msg); ap_queue_message(zq->queue, &ap_msg);
rc = wait_for_completion_interruptible(&work); rc = wait_for_completion_interruptible(&work);
if (rc == 0) { if (rc == 0) {
rc = ap_msg.rc; rc = ap_msg.rc;
if (rc == 0) if (rc == 0)
rc = convert_response(zdev, &ap_msg, crt->outputdata, rc = convert_response(zq, &ap_msg, crt->outputdata,
crt->outputdatalength); crt->outputdatalength);
} else } else
/* Signal pending. */ /* Signal pending. */
ap_cancel_message(zdev->ap_dev, &ap_msg); ap_cancel_message(zq->queue, &ap_msg);
out_free: out_free:
kfree(ap_msg.message); kfree(ap_msg.message);
return rc; return rc;
......
This diff is collapsed.
...@@ -116,9 +116,11 @@ struct type86_fmt2_ext { ...@@ -116,9 +116,11 @@ struct type86_fmt2_ext {
unsigned int offset4; /* 0x00000000 */ unsigned int offset4; /* 0x00000000 */
} __packed; } __packed;
unsigned int get_cprb_fc(struct ica_xcRB *, struct ap_message *, int *); unsigned int get_cprb_fc(struct ica_xcRB *, struct ap_message *,
unsigned int get_ep11cprb_fc(struct ep11_urb *, struct ap_message *, int *); unsigned int *, unsigned short **);
unsigned int get_rng_fc(struct ap_message *, int *); unsigned int get_ep11cprb_fc(struct ep11_urb *, struct ap_message *,
unsigned int *);
unsigned int get_rng_fc(struct ap_message *, int *, unsigned int *);
#define LOW 10 #define LOW 10
#define MEDIUM 100 #define MEDIUM 100
...@@ -134,7 +136,8 @@ int speed_idx_ep11(int); ...@@ -134,7 +136,8 @@ int speed_idx_ep11(int);
* @ap_msg: pointer to AP message * @ap_msg: pointer to AP message
*/ */
static inline void rng_type6CPRB_msgX(struct ap_message *ap_msg, static inline void rng_type6CPRB_msgX(struct ap_message *ap_msg,
unsigned int random_number_length) unsigned int random_number_length,
unsigned int *domain)
{ {
struct { struct {
struct type6_hdr hdr; struct type6_hdr hdr;
...@@ -172,6 +175,7 @@ static inline void rng_type6CPRB_msgX(struct ap_message *ap_msg, ...@@ -172,6 +175,7 @@ static inline void rng_type6CPRB_msgX(struct ap_message *ap_msg,
msg->verb_length = 0x02; msg->verb_length = 0x02;
msg->key_length = 0x02; msg->key_length = 0x02;
ap_msg->length = sizeof(*msg); ap_msg->length = sizeof(*msg);
*domain = (unsigned short)msg->cprbx.domain;
} }
void zcrypt_msgtype6_init(void); void zcrypt_msgtype6_init(void);
......
This diff is collapsed.
/*
* zcrypt 2.1.0
*
* Copyright IBM Corp. 2001, 2012
* Author(s): Robert Burroughs
* Eric Rossman (edrossma@us.ibm.com)
* Cornelia Huck <cornelia.huck@de.ibm.com>
*
* Hotplug & misc device support: Jochen Roehrig (roehrig@de.ibm.com)
* Major cleanup & driver split: Martin Schwidefsky <schwidefsky@de.ibm.com>
* Ralph Wuerthner <rwuerthn@de.ibm.com>
* MSGTYPE restruct: Holger Dengler <hd@linux.vnet.ibm.com>
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2, or (at your option)
* any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*/
#include <linux/module.h>
#include <linux/init.h>
#include <linux/interrupt.h>
#include <linux/miscdevice.h>
#include <linux/fs.h>
#include <linux/proc_fs.h>
#include <linux/seq_file.h>
#include <linux/compat.h>
#include <linux/slab.h>
#include <linux/atomic.h>
#include <linux/uaccess.h>
#include <linux/hw_random.h>
#include <linux/debugfs.h>
#include <asm/debug.h>
#include "zcrypt_debug.h"
#include "zcrypt_api.h"
#include "zcrypt_msgtype6.h"
#include "zcrypt_msgtype50.h"
/*
* Device attributes common for all crypto queue devices.
*/
static ssize_t zcrypt_queue_online_show(struct device *dev,
struct device_attribute *attr,
char *buf)
{
struct zcrypt_queue *zq = to_ap_queue(dev)->private;
return snprintf(buf, PAGE_SIZE, "%d\n", zq->online);
}
static ssize_t zcrypt_queue_online_store(struct device *dev,
struct device_attribute *attr,
const char *buf, size_t count)
{
struct zcrypt_queue *zq = to_ap_queue(dev)->private;
struct zcrypt_card *zc = zq->zcard;
int online;
if (sscanf(buf, "%d\n", &online) != 1 || online < 0 || online > 1)
return -EINVAL;
if (online && !zc->online)
return -EINVAL;
zq->online = online;
ZCRYPT_DBF_DEV(DBF_INFO, zq, "dev%02x%04xo%dman",
AP_QID_CARD(zq->queue->qid),
AP_QID_QUEUE(zq->queue->qid), online);
if (!online)
ap_flush_queue(zq->queue);
return count;
}
static DEVICE_ATTR(online, 0644, zcrypt_queue_online_show,
zcrypt_queue_online_store);
static struct attribute *zcrypt_queue_attrs[] = {
&dev_attr_online.attr,
NULL,
};
static struct attribute_group zcrypt_queue_attr_group = {
.attrs = zcrypt_queue_attrs,
};
void zcrypt_queue_force_online(struct zcrypt_queue *zq, int online)
{
zq->online = online;
if (!online)
ap_flush_queue(zq->queue);
}
struct zcrypt_queue *zcrypt_queue_alloc(size_t max_response_size)
{
struct zcrypt_queue *zq;
zq = kzalloc(sizeof(struct zcrypt_queue), GFP_KERNEL);
if (!zq)
return NULL;
zq->reply.message = kmalloc(max_response_size, GFP_KERNEL);
if (!zq->reply.message)
goto out_free;
zq->reply.length = max_response_size;
INIT_LIST_HEAD(&zq->list);
zq->dbf_area = zcrypt_dbf_devices;
kref_init(&zq->refcount);
return zq;
out_free:
kfree(zq);
return NULL;
}
EXPORT_SYMBOL(zcrypt_queue_alloc);
void zcrypt_queue_free(struct zcrypt_queue *zq)
{
kfree(zq->reply.message);
kfree(zq);
}
EXPORT_SYMBOL(zcrypt_queue_free);
static void zcrypt_queue_release(struct kref *kref)
{
struct zcrypt_queue *zq =
container_of(kref, struct zcrypt_queue, refcount);
zcrypt_queue_free(zq);
}
void zcrypt_queue_get(struct zcrypt_queue *zq)
{
kref_get(&zq->refcount);
}
EXPORT_SYMBOL(zcrypt_queue_get);
int zcrypt_queue_put(struct zcrypt_queue *zq)
{
return kref_put(&zq->refcount, zcrypt_queue_release);
}
EXPORT_SYMBOL(zcrypt_queue_put);
/**
* zcrypt_queue_register() - Register a crypto queue device.
* @zq: Pointer to a crypto queue device
*
* Register a crypto queue device. Returns 0 if successful.
*/
int zcrypt_queue_register(struct zcrypt_queue *zq)
{
struct zcrypt_card *zc;
int rc;
spin_lock(&zcrypt_list_lock);
zc = zq->queue->card->private;
zcrypt_card_get(zc);
zq->zcard = zc;
zq->online = 1; /* New devices are online by default. */
ZCRYPT_DBF_DEV(DBF_INFO, zq, "dev%02x%04xo%dreg",
AP_QID_CARD(zq->queue->qid),
AP_QID_QUEUE(zq->queue->qid),
zq->online);
list_add_tail(&zq->list, &zc->zqueues);
zcrypt_device_count++;
spin_unlock(&zcrypt_list_lock);
rc = sysfs_create_group(&zq->queue->ap_dev.device.kobj,
&zcrypt_queue_attr_group);
if (rc)
goto out;
get_device(&zq->queue->ap_dev.device);
if (zq->ops->rng) {
rc = zcrypt_rng_device_add();
if (rc)
goto out_unregister;
}
return 0;
out_unregister:
sysfs_remove_group(&zq->queue->ap_dev.device.kobj,
&zcrypt_queue_attr_group);
put_device(&zq->queue->ap_dev.device);
out:
spin_lock(&zcrypt_list_lock);
list_del_init(&zq->list);
spin_unlock(&zcrypt_list_lock);
zcrypt_card_put(zc);
return rc;
}
EXPORT_SYMBOL(zcrypt_queue_register);
/**
* zcrypt_queue_unregister(): Unregister a crypto queue device.
* @zq: Pointer to crypto queue device
*
* Unregister a crypto queue device.
*/
void zcrypt_queue_unregister(struct zcrypt_queue *zq)
{
struct zcrypt_card *zc;
zc = zq->zcard;
spin_lock(&zcrypt_list_lock);
list_del_init(&zq->list);
zcrypt_device_count--;
spin_unlock(&zcrypt_list_lock);
zcrypt_card_put(zc);
if (zq->ops->rng)
zcrypt_rng_device_remove();
sysfs_remove_group(&zq->queue->ap_dev.device.kobj,
&zcrypt_queue_attr_group);
put_device(&zq->queue->ap_dev.device);
zcrypt_queue_put(zq);
}
EXPORT_SYMBOL(zcrypt_queue_unregister);
...@@ -175,7 +175,8 @@ struct ap_device_id { ...@@ -175,7 +175,8 @@ struct ap_device_id {
kernel_ulong_t driver_info; kernel_ulong_t driver_info;
}; };
#define AP_DEVICE_ID_MATCH_DEVICE_TYPE 0x01 #define AP_DEVICE_ID_MATCH_CARD_TYPE 0x01
#define AP_DEVICE_ID_MATCH_QUEUE_TYPE 0x02
/* s390 css bus devices (subchannels) */ /* s390 css bus devices (subchannels) */
struct css_device_id { struct css_device_id {
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment