From e4fc051f8ae1c093b25ca346c2ec351ff3b700d1 Mon Sep 17 00:00:00 2001
From: Hou Zhiqiang <B48286@freescale.com>
Date: Wed, 2 Apr 2014 16:10:43 +0800
Subject: [PATCH 11/26] Add RSA keygen operation and support gendsa command
 with hardware engine

Upstream-status: Pending

Signed-off-by: Hou Zhiqiang <B48286@freescale.com>
Tested-by: Cristian Stoica <cristian.stoica@freescale.com>
---
 crypto/engine/eng_cryptodev.c | 118 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 118 insertions(+)

diff --git a/crypto/engine/eng_cryptodev.c b/crypto/engine/eng_cryptodev.c
index 9f2416e..b2919a8 100644
--- a/crypto/engine/eng_cryptodev.c
+++ b/crypto/engine/eng_cryptodev.c
@@ -1906,6 +1906,121 @@ err:
 	return dsaret;
 }
 
+/* Cryptodev RSA Key Gen routine */
+static int cryptodev_rsa_keygen(RSA *rsa, int bits, BIGNUM *e, BN_GENCB *cb)
+{
+	struct crypt_kop kop;
+	int ret, fd;
+	int p_len, q_len;
+	int i;
+
+	if ((fd = get_asym_dev_crypto()) < 0)
+		return fd;
+
+	if(!rsa->n && ((rsa->n=BN_new()) == NULL)) goto err;
+	if(!rsa->d && ((rsa->d=BN_new()) == NULL)) goto err;
+	if(!rsa->e && ((rsa->e=BN_new()) == NULL)) goto err;
+	if(!rsa->p && ((rsa->p=BN_new()) == NULL)) goto err;
+	if(!rsa->q && ((rsa->q=BN_new()) == NULL)) goto err;
+	if(!rsa->dmp1 && ((rsa->dmp1=BN_new()) == NULL)) goto err;
+	if(!rsa->dmq1 && ((rsa->dmq1=BN_new()) == NULL)) goto err;
+	if(!rsa->iqmp && ((rsa->iqmp=BN_new()) == NULL)) goto err;
+
+	BN_copy(rsa->e, e);
+
+	p_len = (bits+1) / (2 * 8);
+	q_len = (bits - p_len * 8) / 8;
+	memset(&kop, 0, sizeof kop);
+	kop.crk_op = CRK_RSA_GENERATE_KEY;
+
+	/* p length */
+	kop.crk_param[kop.crk_iparams].crp_p = calloc(p_len + 1, sizeof(char));
+	if (!kop.crk_param[kop.crk_iparams].crp_p)
+		goto err;
+	kop.crk_param[kop.crk_iparams].crp_nbits = p_len * 8;
+	memset(kop.crk_param[kop.crk_iparams].crp_p, 0xff, p_len + 1);
+	kop.crk_iparams++;
+	kop.crk_oparams++;
+	/* q length */
+	kop.crk_param[kop.crk_iparams].crp_p = calloc(q_len + 1, sizeof(char));
+	if (!kop.crk_param[kop.crk_iparams].crp_p)
+		goto err;
+	kop.crk_param[kop.crk_iparams].crp_nbits = q_len * 8;
+	memset(kop.crk_param[kop.crk_iparams].crp_p, 0xff, q_len + 1);
+	kop.crk_iparams++;
+	kop.crk_oparams++;
+	/* n length */
+	kop.crk_param[kop.crk_iparams].crp_p = calloc(p_len + q_len + 1, sizeof(char));
+	if (!kop.crk_param[kop.crk_iparams].crp_p)
+		goto err;
+	kop.crk_param[kop.crk_iparams].crp_nbits = bits;
+	memset(kop.crk_param[kop.crk_iparams].crp_p, 0x00, p_len + q_len + 1);
+	kop.crk_iparams++;
+	kop.crk_oparams++;
+	/* d length */
+	kop.crk_param[kop.crk_iparams].crp_p = calloc(p_len + q_len + 1, sizeof(char));
+	if (!kop.crk_param[kop.crk_iparams].crp_p)
+		goto err;
+	kop.crk_param[kop.crk_iparams].crp_nbits = bits;
+	memset(kop.crk_param[kop.crk_iparams].crp_p, 0xff, p_len + q_len + 1);
+	kop.crk_iparams++;
+	kop.crk_oparams++;
+	/* dp1 length */
+	kop.crk_param[kop.crk_iparams].crp_p = calloc(p_len + 1, sizeof(char));
+	if (!kop.crk_param[kop.crk_iparams].crp_p)
+		goto err;
+	kop.crk_param[kop.crk_iparams].crp_nbits = p_len * 8;
+	memset(kop.crk_param[kop.crk_iparams].crp_p, 0xff, p_len + 1);
+	kop.crk_iparams++;
+	kop.crk_oparams++;
+	/* dq1 length */
+	kop.crk_param[kop.crk_iparams].crp_p = calloc(q_len + 1, sizeof(char));
+	if (!kop.crk_param[kop.crk_iparams].crp_p)
+		goto err;
+	kop.crk_param[kop.crk_iparams].crp_nbits = q_len * 8;
+	memset(kop.crk_param[kop.crk_iparams].crp_p, 0xff, q_len + 1);
+	kop.crk_iparams++;
+	kop.crk_oparams++;
+	/* i length */
+	kop.crk_param[kop.crk_iparams].crp_p = calloc(p_len + 1, sizeof(char));
+	if (!kop.crk_param[kop.crk_iparams].crp_p)
+		goto err;
+	kop.crk_param[kop.crk_iparams].crp_nbits = p_len * 8;
+	memset(kop.crk_param[kop.crk_iparams].crp_p, 0xff, p_len + 1);
+	kop.crk_iparams++;
+	kop.crk_oparams++;
+
+	if (ioctl(fd, CIOCKEY, &kop) == 0) {
+		BN_bin2bn(kop.crk_param[0].crp_p,
+				p_len, rsa->p);
+		BN_bin2bn(kop.crk_param[1].crp_p,
+				q_len, rsa->q);
+		BN_bin2bn(kop.crk_param[2].crp_p,
+				bits / 8, rsa->n);
+		BN_bin2bn(kop.crk_param[3].crp_p,
+				bits / 8, rsa->d);
+		BN_bin2bn(kop.crk_param[4].crp_p,
+				p_len, rsa->dmp1);
+		BN_bin2bn(kop.crk_param[5].crp_p,
+				q_len, rsa->dmq1);
+		BN_bin2bn(kop.crk_param[6].crp_p,
+				p_len, rsa->iqmp);
+		return 1;
+	}
+sw_try:
+	{
+		const RSA_METHOD *meth = RSA_PKCS1_SSLeay();
+		ret = (meth->rsa_keygen)(rsa, bits, e, cb);
+	}
+	return ret;
+
+err:
+	for (i = 0; i < CRK_MAXPARAM; i++)
+		free(kop.crk_param[i].crp_p);
+	return 0;
+
+}
+
 /* Cryptodev DSA Key Gen routine */
 static int cryptodev_dsa_keygen(DSA *dsa)
 {
@@ -3896,6 +4011,9 @@ ENGINE_load_cryptodev(void)
 				cryptodev_rsa.rsa_mod_exp_async =
 				    cryptodev_rsa_nocrt_mod_exp_async;
 			}
+			if (cryptodev_asymfeat & CRF_RSA_GENERATE_KEY)
+				cryptodev_rsa.rsa_keygen =
+					cryptodev_rsa_keygen;
 		}
 	}
 
-- 
2.3.5