drivers/net/ethernet/mellanox/mlx5/core/lib/crypto.c

   1 // SPDX-License-Identifier: GPL-2.0 OR Linux-OpenIB
   2 // Copyright (c) 2019 Mellanox Technologies.
   3
   4 #include "mlx5_core.h"
   5
   6 int mlx5_create_encryption_key(struct mlx5_core_dev *mdev,
   7                                void *key, u32 sz_bytes,
   8                                u32 *p_key_id)
   9 {
  10         u32 in[MLX5_ST_SZ_DW(create_encryption_key_in)] = {};
  11         u32 out[MLX5_ST_SZ_DW(general_obj_out_cmd_hdr)];
  12         u32 sz_bits = sz_bytes * BITS_PER_BYTE;
  13         u8  general_obj_key_size;
  14         u64 general_obj_types;
  15         void *obj, *key_p;
  16         int err;
  17
  18         obj = MLX5_ADDR_OF(create_encryption_key_in, in, encryption_key_object);
  19         key_p = MLX5_ADDR_OF(encryption_key_obj, obj, key);
  20
  21         general_obj_types = MLX5_CAP_GEN_64(mdev, general_obj_types);
  22         if (!(general_obj_types &
  23               MLX5_HCA_CAP_GENERAL_OBJECT_TYPES_ENCRYPTION_KEY))
  24                 return -EINVAL;
  25
  26         switch (sz_bits) {
  27         case 128:
  28                 general_obj_key_size =
  29                         MLX5_GENERAL_OBJECT_TYPE_ENCRYPTION_KEY_KEY_SIZE_128;
  30                 key_p += sz_bytes;
  31                 break;
  32         case 256:
  33                 general_obj_key_size =
  34                         MLX5_GENERAL_OBJECT_TYPE_ENCRYPTION_KEY_KEY_SIZE_256;
  35                 break;
  36         default:
  37                 return -EINVAL;
  38         }
  39
  40         memcpy(key_p, key, sz_bytes);
  41
  42         MLX5_SET(encryption_key_obj, obj, key_size, general_obj_key_size);
  43         MLX5_SET(encryption_key_obj, obj, key_type,
  44                  MLX5_GENERAL_OBJECT_TYPE_ENCRYPTION_KEY_TYPE_DEK);
  45         MLX5_SET(general_obj_in_cmd_hdr, in, opcode,
  46                  MLX5_CMD_OP_CREATE_GENERAL_OBJECT);
  47         MLX5_SET(general_obj_in_cmd_hdr, in, obj_type,
  48                  MLX5_GENERAL_OBJECT_TYPES_ENCRYPTION_KEY);
  49         MLX5_SET(encryption_key_obj, obj, pd, mdev->mlx5e_res.pdn);
  50
  51         err = mlx5_cmd_exec(mdev, in, sizeof(in), out, sizeof(out));
  52         if (!err)
  53                 *p_key_id = MLX5_GET(general_obj_out_cmd_hdr, out, obj_id);
  54
  55         /* avoid leaking key on the stack */
  56         memzero_explicit(in, sizeof(in));
  57
  58         return err;
  59 }
  60
  61 void mlx5_destroy_encryption_key(struct mlx5_core_dev *mdev, u32 key_id)
  62 {
  63         u32 in[MLX5_ST_SZ_DW(general_obj_in_cmd_hdr)] = {};
  64         u32 out[MLX5_ST_SZ_DW(general_obj_out_cmd_hdr)];
  65
  66         MLX5_SET(general_obj_in_cmd_hdr, in, opcode,
  67                  MLX5_CMD_OP_DESTROY_GENERAL_OBJECT);
  68         MLX5_SET(general_obj_in_cmd_hdr, in, obj_type,
  69                  MLX5_GENERAL_OBJECT_TYPES_ENCRYPTION_KEY);
  70         MLX5_SET(general_obj_in_cmd_hdr, in, obj_id, key_id);
  71
  72         mlx5_cmd_exec(mdev, in, sizeof(in), out, sizeof(out));
  73 }